View the Certificate Details

About this task

Use this procedure for the following tasks:
  • Displaying the digital certificate for given certificate type or list all the certificate details from the local store for given certificate type.

  • Displaying the CA details for a given trustpoint CA name or listing all the CA details from the local store if the CA name is not specified.

  • Displaying the configured key details for given key name.

  • Displaying the configured subject details.

Procedure

  1. To enter User EXEC mode, log on to the switch.
  2. Display the digital certificate for given certificate type:

    show certificate cert-type [default-tls-certificate] | [intermediate-ca-cert WORD<1-80>] | [offline-ca-cert] | [offline-subject-cert] | [online-ca-cert] | [online-subject-cert] | [root-ca-cert WORD<1-80>]

  3. Display the certificate authority details:

    show certificate ca WORD<1–45>

  4. Display the name and public key of all the key-pairs:

    show certificate key-name

  5. Display the details of the configured subject:

    show certificate subject

Example

Display the Root CA certificate:

Switch:1>show certificate cert-type root-ca-cert
CERT STORE table entry
Certificate Type                :   Root CA Certificate
CommonName                      :   rootCa2
VersionNumber                   :   X.509 v3
SerialNumber                    :   459d8f0363947bc3
IssuerName                      :   CN:rootCa2, EM:, OU:, O:, L:, P:, C:
ValidityPeriodNotBefore         :   06/15/2021 12:16:57
ValidityPeriodNotAfter          :   06/15/2026 12:16:57
CertificateSignatureAlgorithm   :   sha256withRSAEncryption
CertificateSignature            :   83489af9616ad85a17d949988214794f9ebfdbcb81b295972cd4c2956205b6ece1ebca2400c3a2ccf2d4e13bf
362ecf3627d1510f914b76bae3e5d7e89c8de7d81acb24476f16ee372b445fc32ce68dce0915799f47382c12e4d2fa115fa9aac62b34f0e7ef85a653f7b52
f4f8e9074abd4c1990f81f229e28d30712432e55c4f535e8191f316b9741880efb417de0c7133ac2c2952e93a9887a9ca4c95006e0bda4f46fc3c91f4e6e9
93aecfb5278c495d0ee52258099a7e40f457076ec6d29e10373640c97eb1c8928c8412b2b247ca2618cc90fb2f955146add1ee9d5deee1d78e89cbea79cd4
a266ebc8c8b7af025fc78aa24f9d6ad34d519d0b602f36e1
Subject                         :   CN:rootCa2, EM:, OU:, O:, L:, P:, C:
SubjectPublicKeyAlgorithm       :   rsaEncryption
SubjectPublicKey                :   00000000000000020000000100000000300d06092a864886f70d0101010500000000000000010d020000000003
01000100000100c838622e2f0891217ff5c7abc6445f588bc1061acaa7222f55902b07c1238a5f6ea24618266a1fbcac9182311a6d16b93b4d7a8d860520e4
e01c2d3f966efd28388ca6f6b00f2199ed43f3de7669ef3dd63ff4127edf2c584558cebaca79371d4002fba9315ec4fbcaf0ecdbcf3b0b724f3366779057e3
42cfc714a70a616653d016947fd6c1f38d16886b73dfd27885ea789ce4bc54cece726296b444216c3d121c32ee4092db0af3f0e4a3e88f3b6934d824c4f506
1c68ca6e672d643658d6080a720b37c498cf32ff2d17a5399ba42865f202778a7351b5e38ec1fa6f4b39099dc7cb7aef8cd76ef46088619be07e221a8e17
709bbfa129e6661bdd7a8127
HasBasicConstraint              :   1
HasKeyUsage                     :   1
IsCa                            :   1
KeyUsage                        :   117 digitalSignature  keyEncipherment  keyAgreement  keyCertSign  cRLSign
ExtendedKeyUsage                :   TLS Web Client Authentication, OCSP Signing, TLS Web Server Authentication,
CDPUrl                          :   http://192.51.100.9:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=rootCa2

OCSPUrl                         :   http://192.51.100.9:8080/ejbca/publicweb/status/ocsp
CertificateFileName             :   root_ca_cert_dod.mil.der

Display the Intermediate CA certificate:

Switch:1>show certificate cert-type intermediate-ca-cert
CERT STORE table entry
Certificate Type                :   Intermediate CA Certificate
CommonName                      :   subCa1
VersionNumber                   :   X.509 v3
SerialNumber                    :   427c233041d7ef98
IssuerName                      :   CN:rootCa1, EM:, OU:, O:, L:, P:, C:
ValidityPeriodNotBefore         :   03/23/2020 17:25:39
ValidityPeriodNotAfter          :   03/23/2023 17:25:39
CertificateSignatureAlgorithm   :   sha256withRSAEncryption
CertificateSignature            :   8f64d17ed47b467db2754e132cc9f1c9aed24aa9d279e769606caf2390cc21f23cb3d2ef943ed9577f820125893210b
ba2bd3d021c900bab94de8c24b6ba2538cd5843592bd4cefb966cb70ed36a73db0b38a297a85a04d8d021f37f4983e77673b736cf86b37ec49447d44abbb71e6b91
b6b192939de0689d7e5e830753ab2b32bfb22f35dc571256a562c07a783b50f486a46855435c3b51f5ede16e867ff9b3de426e5fd103446a4c7bde5fca82ef273fe
8bdc88d66b5429366a1ad81c7c3bc9bc5b9adf5e60fd9559b679ccc97484f75406aa3669dc98982e74f5e2f382be0700307e57fae1fc9f7a87abc76bf9a75e7678c
5cbea2cabdf80682adeca198
Subject                         :   CN:subCa1, EM:, OU:, O:, L:, P:, C:
SubjectPublicKeyAlgorithm       :   rsaEncryption
SubjectPublicKey                :   00000000000000020000000100000000300d06092a864886f70d0101010500000000000000010d020000000003010001
00000100c12a373907e30965449febe3a25588ffebe1d7cb452b75e14f43f27f5b1e2d0aa371123886c0bf685411d0b4bfac8472cde94c463a3ff15797236038d854
fde48efb4dfb9dd1ea1a16d5a9675c00d6df8e09a5200b3b6d93bfacb6d56bc485bcd66f9b8a06fd10ba601108ae6a4dd0e9ff32ffc5f69faca56ff49db781a5a13e
20ff616d918b81d0da97c823b6240903d18e641b0d35b510784e831a4fe44201162682ea1e82e0215b0ae88d7ff876809e40ba69260da633242fb30e02e23eaf8147
7fb451a9474e3070b8e424b796af710a2b08a82ffaa90ac21bcf0759c8662e536bc170ad1fde3e913c7e28b2a706d40825ce3dbe5efe89958663c7e99e4b
HasBasicConstraint              :   1
HasKeyUsage                     :   1
IsCa                            :   1
KeyUsage                        :   117 digitalSignature  keyEncipherment  keyAgreement  keyCertSign  cRLSign
ExtendedKeyUsage                :   TLS Web Client Authentication, OCSP Signing, TLS Web Server Authentication,
CDPUrl                          :   http://192.51.100.9:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=rootCa1

OCSPUrl                         :   http://192.51.100.9:8080/ejbca/publicweb/status/ocsp
CertificateFileName             :   ca_cert_subCa1.der

Display the offline CA certificate:

Switch:1>show certificate cert-type offline-ca-cert
CERT table entry
Certificate Type                :   Offline CA Certificate
VersionNumber                   :   X.509 v3
SerialNumber                    :   427c233041d7ef98
IssuerName                      :   CN:rootCa1, EM:, OU:, O:, L:, P:, C:
ValidityPeriodNotBefore         :   03/23/2020 17:25:39
ValidityPeriodNotAfter          :   03/23/2023 17:25:39
CertificateSignatureAlgorithm   :   sha256withRSAEncryption
CertificateSignature            :   8f64d17ed47b467db2754e132cc9f1c9aed24aa9d279e769606caf2390cc21f23cb3d2ef943ed9577f820125893210b
ba2bd3d021c900bab94de8c24b6ba2538cd5843592bd4cefb966cb70ed36a73db0b38a297a85a04d8d021f37f4983e77673b736cf86b37ec49447d44abbb71e6b91
b6b192939de0689d7e5e830753ab2b32bfb22f35dc571256a562c07a783b50f486a46855435c3b51f5ede16e867ff9b3de426e5fd103446a4c7bde5fca82ef273fe
8bdc88d66b5429366a1ad81c7c3bc9bc5b9adf5e60fd9559b679ccc97484f75406aa3669dc98982e74f5e2f382be0700307e57fae1fc9f7a87abc76bf9a75e7678c
5cbea2cabdf80682adeca198
Subject                         :   CN:subCa1, EM:, OU:, O:, L:, P:, C:
SubjectPublicKeyAlgorithm       :   rsaEncryption
SubjectPublicKey                :   00000000000000020000000100000000300d06092a864886f70d0101010500000000000000010d02000000000301000
100000100c12a373907e30965449febe3a25588ffebe1d7cb452b75e14f43f27f5b1e2d0aa371123886c0bf685411d0b4bfac8472cde94c463a3ff15797236038d8
54fde48efb4dfb9dd1ea1a16d5a9675c00d6df8e09a5200b3b6d93bfacb6d56bc485bcd66f9b8a06fd10ba601108ae6a4dd0e9ff32ffc5f69faca56ff49db781a5a
13e20ff616d918b81d0da97c823b6240903d18e641b0d35b510784e831a4fe44201162682ea1e82e0215b0ae88d7ff876809e40ba69260da633242fb30e02e23eaf
81477fb451a9474e3070b8e424b796af710a2b08a82ffaa90ac21bcf0759c8662e536bc170ad1fde3e913c7e28b2a706d40825ce3dbe5efe89958663c7e99e4b
HasBasicConstraint              :   1
HasKeyUsage                     :   1
IsCa                            :   1
KeyUsage                        :   117 digitalSignature  keyEncipherment  keyAgreement  keyCertSign  cRLSign
ExtendedKeyUsage                :   TLS Web Client Authentication, OCSP Signing, TLS Web Server Authentication,
CDPUrl                          :   http://192.51.100.9:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=rootCa1
OCSPUrl                         :   http://192.51.100.9:8080/ejbca/publicweb/status/ocsp

Display the online CA certificate:

Switch:1>show certificate cert-type online-ca-cert
CERT table entry
Certificate Type                :   Online CA Certificate
VersionNumber                   :   X.509 v3
SerialNumber                    :   7421f65a4b75939c
IssuerName                      :   CN:rootCa2, EM:, OU:, O:, L:, P:, C:
ValidityPeriodNotBefore         :   06/15/2021 12:17:50
ValidityPeriodNotAfter          :   06/15/2024 12:17:50
CertificateSignatureAlgorithm   :   sha256withRSAEncryption
CertificateSignature            :   0b4f1d95da7f55d0e942814d24105c6ca7a688f5a4d51e6afa28ee676b577166730f74f5c69de1a36047d6daff4
0e0d8766a752fd85e604c010202d9730f3455ace621c1613ffbb8ac809f890ac1fdf9aa352db378757b6ffd3c2988bdc153c5a6f7232905a8d19b15e5191d0c
ab4959e98de6a52e7b5e0851219f2a35fdf71a7ffb373171fbe69d7a0fd621e003ff729edb5e113aae7018ff0d0871f0fbdcf5b9eb0a5e5c0564091a66a085d
d7c3fafe802fd6db9c84bd3801b28ac6752a9b2090685339cbf4a61e815cb402790dd9bcf847ba5010786112ac346e91a724cd73155316f6132e3c5fc489939
9fad736955db7ed855bf25b7638a0b61ff5b015c
Subject                         :   CN:subCa2, EM:, OU:, O:, L:, P:, C:
SubjectPublicKeyAlgorithm       :   rsaEncryption
SubjectPublicKey                :   00000000000000020000000100000000300d06092a864886f70d0101010500000000000000010d0200000000030
1000100000100947866ff749a7944d4471c4ae96aadc6a44ef289fe7a9dbdf45e2d581d28bb7f0c51c3c51b1623479437a69731287ab2a84091fe2b17625689
cc189fd513d240d42b1251c7e044740461c940ec49b64343d911dd89c3c24942b3dfc5585941833cfd157b3957fc4f36304dde7d236b710eef09a97ab5bf184
355acfeddbe197ca93a4350568d3b6ac1edd4bafd1ff223e6aca16bc3887582bd97101ca87bb678d48bcba6f0cfbd217271a8c1b04c01baaf8aeb9803bbb625
e73693ca7477fc6916ae0ebe48f411f67f9785324fd9d3ab673bf1a35c5f75d3b05443254918b24aea55e94f14ac3190ee24a22164e7696c778e5034e6ba7d5
2de100b0a8e65459b
HasBasicConstraint              :   1
HasKeyUsage                     :   1
IsCa                            :   1
KeyUsage                        :   117 digitalSignature  keyEncipherment  keyAgreement  keyCertSign  cRLSign
ExtendedKeyUsage                :   TLS Web Client Authentication, OCSP Signing, TLS Web Server Authentication,
CDPUrl                          :   http://192.51.100.9:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=rootCa2
OCSPUrl                         :   http://192.51.100.9:8080/ejbca/publicweb/status/ocsp

Display the offline subject certificate:

Switch:1>show certificate cert-type offline-subject-cert
CERT table entry
Certificate Type                :   Offline Subject Certificate
VersionNumber                   :   X.509 v3
SerialNumber                    :   5de44b25394462b8
IssuerName                      :   CN:subCa1, EM:, OU:, O:, L:, P:, C:
ValidityPeriodNotBefore         :   07/05/2021 12:24:45
ValidityPeriodNotAfter          :   07/05/2022 12:24:45
CertificateSignatureAlgorithm   :   sha256withRSAEncryption
CertificateSignature            :   34f5037b30b0332e15f504316be86afcc41ad0b93699bc8de1b5cbe97a8cc834593837032ab492e0c5eee9a1fe8db
99e8ea7aeb41fdce86818e0c08b1ed9e79a43247383e88fd3ef504a28b1ee525be60cba78291be16f57fb5417433ec9dce601c9b4e77986c5db9430ce6cece48b
3dc143d042614404bdc3c2df16f68bb1b0609e593636a2806b285cb8fa7e470b442b50e4d3c4a663ac99d5d3b429a9b4966ea5ce16da6b7d7c5607832cc6acaea
e578419ba52e11cbe30d2cbb53a05de58e374657fc5983a92c699ba6896160c9f32e6625bd6f71003259773e71d7c89df3ddc0a8603c1a8c8f6e248002f2bd217
1a6e922abf2e8134b311d1897319bbb7
Subject                         :   CN:s15, EM:demo, OU:demo, O:demo, L:demo, P:demo, C:RO
SubjectPublicKeyAlgorithm       :   rsaEncryption
SubjectPublicKey                :   00000000000000020000000100000000300d06092a864886f70d0101010500000000000000010d020000000003010
00100000100c150b1851644aaaef08060f3b3a7a0618758b84184867ffd80b3e02ec30676171fe36e99f5450656fc6e6db672b6239f760c97c3e49639cea5d503
c0e478bf7a4d213d5698d09d63622ccb279addbaa34135c81d70660489b55b6babca594f17d8ed250cf917325df0f73a10896157e6e3a24a584bc713b2e6493d0
59c8efd53bbbf5db0aa95b43c1668ba1053d0fe0e5c44dc889bd35bf11730e5827cb2068048ab97e9f0757514f47332337376eed83a7cb95a53462639f5a47f02
6b0172cfa3ddffee7269e737a32d8f2e5590a9ee07d3f329af4e4f2a73ed9de599916bc25e6ac51e482cbbb71f736ec0e396fc314e5eed3c438efff68d1a31bdb
ed24d55
HasBasicConstraint              :   1
HasKeyUsage                     :   1
IsCa                            :   0
KeyUsage                        :   15 digitalSignature  nonRepudiation  keyEncipherment  dataEncipherment
ExtendedKeyUsage                :   TLS Web Client Authentication, OCSP Signing, TLS Web Server Authentication,
CDPUrl                          :   http://192.51.100.9:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=subCa1
OCSPUrl                         :   http://192.51.100.9:8080/ejbca/publicweb/status/ocsp

Revocation Status               :   unknown
Status                          :   offline-certificate
Installed                       :   1

CertificateFileName             :   self_cert_s15.der

Display the online subject certificate:

Switch:1>show certificate cert-type online-subject-cert 

CERT table entry
Certificate Type                :   Online Subject Certificate
VersionNumber                   :   X.509 v3
SerialNumber                    :   22db2464ad9d616a
IssuerName                      :   CN:subCa2, EM:, OU:, O:, L:, P:, C:
ValidityPeriodNotBefore         :   07/05/2021 12:35:22
ValidityPeriodNotAfter          :   07/05/2022 12:35:22
CertificateSignatureAlgorithm   :   sha256withRSAEncryption
CertificateSignature            :   42309f2e2072abb2fc3214da4b69cb8767375e2b899a01a84af126bca9b65abb3460b901997eb6dfc7687c6cf
611ffcda4bacee80a8be24886be1bbd2a18559cc3f01509c733729c6c22bc83310592d37eb545bd9ae209e87722234c12000acb0983119f9420816ee96a6e
52b028f6e8daa4641e192912f1c4972459d2de8e0f39759f0ca5f841e51460a24922eeb0ada602985666fa154f6c7b088682e247df38f2161f2a57f4e281f
c8c56ea0e6afff6e249c326b62316a42df0a03250b85b9be1c8d3228cd387e63daba5650a2a3d6c1586fc9192557aadbc60e71611b696b43957fa95295ffc
632d7d889e58086356834bd27e4e2b92ac81b1543c7e6993
Subject                         :   CN:clientr1.example.dod.mil, EM:demo@demo.com, OU:demo, O:ExtremeNetworks, L:Salem, P:demo, C:US
SubjectPublicKeyAlgorithm       :   rsaEncryption
SubjectPublicKey                :   00000000000000020000000100000000300d06092a864886f70d0101010500000000000000010d02000000000
301000100000100bdb1cf8382d66a2d2d0d24b4477908641c16423c089d9131781a3ada005e52074e1ff3561e29598f93c53dcb06e4d235335573419bb938
b6ccf93d3e6767d0932e129ea2f556276efce2be825df1f9dc661d3cafee7125f4f7126f5ba7e8d9029623398b7d3fb00063ea0e4bedd56e276c52a6371b2
89de3ee4198ff2397b512b516604eac4e5f0f4a0621d7ac42541491d368f21e17a440aa6130a825a2a7ca6ab1d7a7868f93e4d0d83c7e4973cf204b4f5f65
4abbaa9aa6199247976488b0957e65b656a6d21a2a4ac4d322a36c786d8a8deec763b6aec0d05b0f6bfe87602caecb2cc71e2e4f9f4f8c4d4d4e9b25adf9c
02eb44b763542f0449a326d0f3b
HasBasicConstraint              :   1
HasKeyUsage                     :   1
IsCa                            :   0
KeyUsage                        :   15 digitalSignature  nonRepudiation  keyEncipherment  dataEncipherment
ExtendedKeyUsage                :   TLS Web Client Authentication, OCSP Signing, TLS Web Server Authentication,
CDPUrl                          :   http://192.51.100.9:8080/ejbca/publicweb/webdist/certdist?cmd=crl&issuer=CN=subCa2
OCSPUrl                         :   http://192.51.100.9:8080/ejbca/publicweb/status/ocsp

Revocation Status               :   active
Status                          :   active
Installed                       :   1

Display the CA certificates details:

Switch:1(config)#show certificate ca 


CA table entry
Name                      :   a1
CommonName                :   CaA1
KeyName                   :   rsa_2048
SubjectName               :   
CaUrl                     :   http://192.51.100.9:8080/ejbca/publicweb/apply/scep/test/pkiclient.exe
UsePost                   :   1
SubjectCertValidityDays   :   365
Action                    :   (null)
LastActionStatus          :   (null)
LastActionFailureReason   :   
CA-Auth Sha256Fingerprint :   bd9bb74b3f4d75e86113222a8d291b6349c7a42c457e487b9be0a48b4f09cc7c
UsedFor                   :   


CA table entry
Name                      :   a2
CommonName                :   CaA2
KeyName                   :   pki_key
SubjectName               :   822
CaUrl                     :   http://192.51.100.9:8080/ejbca/publicweb/apply/scep/test/pkiclient.exe
UsePost                   :   1
SubjectCertValidityDays   :   365
Action                    :   (null)
LastActionStatus          :   (null)
LastActionFailureReason   :   
CA-Auth Sha256Fingerprint :   0ccb8d0c38d36cf427187f0e1dd380536c078fd6fae39ec9872187327912056b
UsedFor                   :   Default

Display offline subject certificate details:

#show certificate ca 

CA table entry
Name                      :   823-pki[auto-installed]
CommonName                :   CaA2-1
KeyName                   :   pki
SubjectName               :   823
CaUrl                     :   
UsePost                   :   0
SubjectCertValidityDays   :   0
Action                    :   (null)
LastActionStatus          :   (null)
LastActionFailureReason   :   
CA-Auth Sha256Fingerprint :   
UsedFor                   : 

Display the name and public key of all the key-pairs:

Switch:1>show certificate key-name
Key Name: pki_key
Public Key Value: 00000000000000010000000102000000000301000100000100bdb1cf8382d66a2d2d0d24b4477908641c16423c089d9131781a3ada005e
52074e1ff3561e29598f93c53dcb06e4d235335573419bb938b6ccf93d3e6767d0932e129ea2f556276efce2be825df1f9dc661d3cafee7125f4f7126f5ba7e8
d9029623398b7d3fb00063ea0e4bedd56e276c52a6371b289de3ee4198ff2397b512b516604eac4e5f0f4a0621d7ac42541491d368f21e17a440aa6130a825a2
a7ca6ab1d7a7868f93e4d0d83c7e4973cf204b4f5f654abbaa9aa6199247976488b0957e65b656a6d21a2a4ac4d322a36c786d8a8deec763b6aec0d05b0f6bfe
87602caecb2cc71e2e4f9f4f8c4d4d4e9b25adf9c02eb44b763542f0449a326d0f3b

Key Name: rsa_2048
Public Key Value: 00000000000000010000000102000000000301000100000100c150b1851644aaaef08060f3b3a7a0618758b84184867ffd80b3e02ec306
76171fe36e99f5450656fc6e6db672b6239f760c97c3e49639cea5d503c0e478bf7a4d213d5698d09d63622ccb279addbaa34135c81d70660489b55b6babca59
4f17d8ed250cf917325df0f73a10896157e6e3a24a584bc713b2e6493d059c8efd53bbbf5db0aa95b43c1668ba1053d0fe0e5c44dc889bd35bf11730e5827cb2
068048ab97e9f0757514f47332337376eed83a7cb95a53462639f5a47f026b0172cfa3ddffee7269e737a32d8f2e5590a9ee07d3f329af4e4f2a73ed9de59991
6bc25e6ac51e482cbbb71f736ec0e396fc314e5eed3c438efff68d1a31bdbed24d55

Display the details of the configured subject:

Switch:1>show certificate subject
Subject Name        : client1
Common Name         : client1.example.dod.mil
Email Address       : client1@extemenetworks.com
Organizational Unit : Engineering
Organization        : ExtremeNetworks
Locality            : Salem
Province            : Massachusetts
Country             : US

Subject Name        : Global
Common Name         : s15
Email Address       : enduser15@extremenetworks.com
Organizational Unit : Engineering
Organization        : ExtremeNetworks
Locality            : Salem
Province            : Massachusetts
Country             : US

The following example displays the self-signed certificate:

Switch:1>show certificate cert-type default-tls-certificate

Certificate Type                :   Self-signed certificate
VersionNumber                   :   X.509 v3
SerialNumber                    :   2feefda3f54ac70e3d0f1d2a7aa1b4eb23865820
IssuerName                      :   CN:*extremenetworks.com, EM:, OU:VOSS, O:Extreme Networks, L:San Jose, P:CA, C:US
ValidityPeriodNotBefore         :   09/16/2021 10:32:29
ValidityPeriodNotAfter          :   09/15/2022 10:32:29
CertificateSignatureAlgorithm   :   sha256withRSAEncryption
CertificateSignature            :   814924d27cc95af2274e88d0d5174aced2c2eb721053ab8877c001c0433a38737085d3925cae6be
85f605f941814c16cf4f9fc122934d11726e852b1fca95012966f1672505fbfca2f451bab2c9c65ac8ecdfbf05fa295d1076be55d7aef55be41
a9d44688dfcaa30e1c47dc3462c0dde59678d06fac4546175af12942aaee611b816a547e4de5618a96d29f75e5be931c2fe0af1a003481d18b2
2fcabbb39d54721e3acb2bc66f19172b03067a4700911818fb028c680217a10bee365f1c415b9adefa46c4643ebf884786154b6ec3f295fe956
f7fcf360e69308a5bcc6db444bec7a17154f1d1fb6e2e069696fd74692c51362d89ac8b77bc7701f2cf21505
Subject                         :   CN:*extremenetworks.com, EM:, OU:VOSS, O:Extreme Networks, L:San Jose, P:CA, C:US
SubjectPublicKeyAlgorithm       :   rsaEncryption
SubjectPublicKey                :   00000000000000020000000100000000300d06092a864886f70d0101010500000000000000010d02
000000000301000100000100bfa70f688c6f0ceb8cb882940d73b2b1cee00767e46d6173ff265cd05bc27574386c302f08cc58f5dffbac40ca5a
1ac3e8c54c3114553759de2b5cf82ea265ec150ef32b4e8022c9db6427d70a34ef300f65f4f0d87cba3dbe20a2248d7c5b785ef20286a48a6366
f494e669c9e414c629888586e4a6e8079ab0a21c535313026c002ad8e46dbdb55cd3bfc1c8a9738f05f666b9f7d1a324a890e7798122f6058d6a
f4d22c6dc26274e7ab21e992667dba5e73c4f4a074e37d036482343c38e4e1aa6697f9644e2d6d40561459cb259ce8a55b7686d059b1116cabe4
a526c41284ce7369c6711b71ab1b31856119a844d9f6374c9e9e593b42aa4f903ee6f199
SubjectAlternativeNames         :   DNS:*.extremenetworks.com, IP:192.0.2.02, IP:198.51.100.01

Variable Definitions

The following table defines parameters for the show certificate command.

Variable

Value

cert-type default-tls-certificate

Displays the default TLS certificate (self-signed).

cert-type online-ca-cert

Specifies Certificate Authority's Certificate obtained online from Certificate Authority.

cert-type online-subject-cert

Specifies subject certificate obtained online from Certificate Authority.

cert-type offline-ca-cert

Specifies Certificate Authority's certificate obtained offline from Certificate Authority.

cert-type offline-subject-cert

Specifies subject certificate obtained offline from Certificate Authority.

cert-type intermediate-ca-cert [WORD<1-80>]

Specifies the intermediate certificate obtained offline from Certificate Authority.

cert-type root-ca-cert [WORD<1-80>]

Specifies root certificate obtained offline from Root Certificate Authority.

ca [WORD<1–45>]

Specifies name of the Certificate Authority.

If the name is not specified, the command displays the CA details of all configured CA.