1. Packages
  2. Oracle Cloud Infrastructure
  3. API Docs
  4. CertificatesManagement
  5. getCertificates
Oracle Cloud Infrastructure v2.29.0 published on Wednesday, Apr 9, 2025 by Pulumi

oci.CertificatesManagement.getCertificates

Explore with Pulumi AI

Oracle Cloud Infrastructure v2.29.0 published on Wednesday, Apr 9, 2025 by Pulumi

This data source provides the list of Certificates in Oracle Cloud Infrastructure Certificates Management service.

Lists all certificates that match the query parameters. Optionally, you can use the parameter FilterByCertificateIdQueryParam to limit the result set to a single item that matches the specified certificate.

Example Usage

import * as pulumi from "@pulumi/pulumi";
import * as oci from "@pulumi/oci";

const testCertificates = oci.CertificatesManagement.getCertificates({
    certificateId: testCertificate.id,
    compartmentId: compartmentId,
    issuerCertificateAuthorityId: testCertificateAuthority.id,
    name: certificateName,
    state: certificateState,
});
Copy
import pulumi
import pulumi_oci as oci

test_certificates = oci.CertificatesManagement.get_certificates(certificate_id=test_certificate["id"],
    compartment_id=compartment_id,
    issuer_certificate_authority_id=test_certificate_authority["id"],
    name=certificate_name,
    state=certificate_state)
Copy
package main

import (
	"github.com/pulumi/pulumi-oci/sdk/v2/go/oci/certificatesmanagement"
	"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)

func main() {
	pulumi.Run(func(ctx *pulumi.Context) error {
		_, err := certificatesmanagement.GetCertificates(ctx, &certificatesmanagement.GetCertificatesArgs{
			CertificateId:                pulumi.StringRef(testCertificate.Id),
			CompartmentId:                pulumi.StringRef(compartmentId),
			IssuerCertificateAuthorityId: pulumi.StringRef(testCertificateAuthority.Id),
			Name:                         pulumi.StringRef(certificateName),
			State:                        pulumi.StringRef(certificateState),
		}, nil)
		if err != nil {
			return err
		}
		return nil
	})
}
Copy
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Oci = Pulumi.Oci;

return await Deployment.RunAsync(() => 
{
    var testCertificates = Oci.CertificatesManagement.GetCertificates.Invoke(new()
    {
        CertificateId = testCertificate.Id,
        CompartmentId = compartmentId,
        IssuerCertificateAuthorityId = testCertificateAuthority.Id,
        Name = certificateName,
        State = certificateState,
    });

});
Copy
package generated_program;

import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.oci.CertificatesManagement.CertificatesManagementFunctions;
import com.pulumi.oci.CertificatesManagement.inputs.GetCertificatesArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;

public class App {
    public static void main(String[] args) {
        Pulumi.run(App::stack);
    }

    public static void stack(Context ctx) {
        final var testCertificates = CertificatesManagementFunctions.getCertificates(GetCertificatesArgs.builder()
            .certificateId(testCertificate.id())
            .compartmentId(compartmentId)
            .issuerCertificateAuthorityId(testCertificateAuthority.id())
            .name(certificateName)
            .state(certificateState)
            .build());

    }
}
Copy
variables:
  testCertificates:
    fn::invoke:
      function: oci:CertificatesManagement:getCertificates
      arguments:
        certificateId: ${testCertificate.id}
        compartmentId: ${compartmentId}
        issuerCertificateAuthorityId: ${testCertificateAuthority.id}
        name: ${certificateName}
        state: ${certificateState}
Copy

Using getCertificates

Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.

function getCertificates(args: GetCertificatesArgs, opts?: InvokeOptions): Promise<GetCertificatesResult>
function getCertificatesOutput(args: GetCertificatesOutputArgs, opts?: InvokeOptions): Output<GetCertificatesResult>
Copy
def get_certificates(certificate_id: Optional[str] = None,
                     compartment_id: Optional[str] = None,
                     filters: Optional[Sequence[_certificatesmanagement.GetCertificatesFilter]] = None,
                     issuer_certificate_authority_id: Optional[str] = None,
                     name: Optional[str] = None,
                     state: Optional[str] = None,
                     opts: Optional[InvokeOptions] = None) -> GetCertificatesResult
def get_certificates_output(certificate_id: Optional[pulumi.Input[str]] = None,
                     compartment_id: Optional[pulumi.Input[str]] = None,
                     filters: Optional[pulumi.Input[Sequence[pulumi.Input[_certificatesmanagement.GetCertificatesFilterArgs]]]] = None,
                     issuer_certificate_authority_id: Optional[pulumi.Input[str]] = None,
                     name: Optional[pulumi.Input[str]] = None,
                     state: Optional[pulumi.Input[str]] = None,
                     opts: Optional[InvokeOptions] = None) -> Output[GetCertificatesResult]
Copy
func GetCertificates(ctx *Context, args *GetCertificatesArgs, opts ...InvokeOption) (*GetCertificatesResult, error)
func GetCertificatesOutput(ctx *Context, args *GetCertificatesOutputArgs, opts ...InvokeOption) GetCertificatesResultOutput
Copy

> Note: This function is named GetCertificates in the Go SDK.

public static class GetCertificates 
{
    public static Task<GetCertificatesResult> InvokeAsync(GetCertificatesArgs args, InvokeOptions? opts = null)
    public static Output<GetCertificatesResult> Invoke(GetCertificatesInvokeArgs args, InvokeOptions? opts = null)
}
Copy
public static CompletableFuture<GetCertificatesResult> getCertificates(GetCertificatesArgs args, InvokeOptions options)
public static Output<GetCertificatesResult> getCertificates(GetCertificatesArgs args, InvokeOptions options)
Copy
fn::invoke:
  function: oci:CertificatesManagement/getCertificates:getCertificates
  arguments:
    # arguments dictionary
Copy

The following arguments are supported:

CertificateId string
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
CompartmentId string
A filter that returns only resources that match the given compartment OCID.
Filters Changes to this property will trigger replacement. List<GetCertificatesFilter>
IssuerCertificateAuthorityId string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
Name string
A filter that returns only resources that match the specified name.
State string
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
CertificateId string
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
CompartmentId string
A filter that returns only resources that match the given compartment OCID.
Filters Changes to this property will trigger replacement. []GetCertificatesFilter
IssuerCertificateAuthorityId string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
Name string
A filter that returns only resources that match the specified name.
State string
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
certificateId String
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
compartmentId String
A filter that returns only resources that match the given compartment OCID.
filters Changes to this property will trigger replacement. List<GetCertificatesFilter>
issuerCertificateAuthorityId String
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
name String
A filter that returns only resources that match the specified name.
state String
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
certificateId string
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
compartmentId string
A filter that returns only resources that match the given compartment OCID.
filters Changes to this property will trigger replacement. GetCertificatesFilter[]
issuerCertificateAuthorityId string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
name string
A filter that returns only resources that match the specified name.
state string
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
certificate_id str
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
compartment_id str
A filter that returns only resources that match the given compartment OCID.
filters Changes to this property will trigger replacement. Sequence[certificatesmanagement.GetCertificatesFilter]
issuer_certificate_authority_id str
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
name str
A filter that returns only resources that match the specified name.
state str
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
certificateId String
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
compartmentId String
A filter that returns only resources that match the given compartment OCID.
filters Changes to this property will trigger replacement. List<Property Map>
issuerCertificateAuthorityId String
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
name String
A filter that returns only resources that match the specified name.
state String
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.

getCertificates Result

The following output properties are available:

CertificateCollections List<GetCertificatesCertificateCollection>
The list of certificate_collection.
Id string
The provider-assigned unique ID for this managed resource.
CertificateId string
The OCID of the certificate.
CompartmentId string
The OCID of the compartment where you want to create the certificate.
Filters List<GetCertificatesFilter>
IssuerCertificateAuthorityId string
The OCID of the certificate authority (CA) that issued the certificate.
Name string
A user-friendly name for the certificate. Names are unique within a compartment. Avoid entering confidential information. Valid characters are uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
State string
The current lifecycle state of the certificate.
CertificateCollections []GetCertificatesCertificateCollection
The list of certificate_collection.
Id string
The provider-assigned unique ID for this managed resource.
CertificateId string
The OCID of the certificate.
CompartmentId string
The OCID of the compartment where you want to create the certificate.
Filters []GetCertificatesFilter
IssuerCertificateAuthorityId string
The OCID of the certificate authority (CA) that issued the certificate.
Name string
A user-friendly name for the certificate. Names are unique within a compartment. Avoid entering confidential information. Valid characters are uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
State string
The current lifecycle state of the certificate.
certificateCollections List<GetCertificatesCertificateCollection>
The list of certificate_collection.
id String
The provider-assigned unique ID for this managed resource.
certificateId String
The OCID of the certificate.
compartmentId String
The OCID of the compartment where you want to create the certificate.
filters List<GetCertificatesFilter>
issuerCertificateAuthorityId String
The OCID of the certificate authority (CA) that issued the certificate.
name String
A user-friendly name for the certificate. Names are unique within a compartment. Avoid entering confidential information. Valid characters are uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
state String
The current lifecycle state of the certificate.
certificateCollections GetCertificatesCertificateCollection[]
The list of certificate_collection.
id string
The provider-assigned unique ID for this managed resource.
certificateId string
The OCID of the certificate.
compartmentId string
The OCID of the compartment where you want to create the certificate.
filters GetCertificatesFilter[]
issuerCertificateAuthorityId string
The OCID of the certificate authority (CA) that issued the certificate.
name string
A user-friendly name for the certificate. Names are unique within a compartment. Avoid entering confidential information. Valid characters are uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
state string
The current lifecycle state of the certificate.
certificate_collections Sequence[certificatesmanagement.GetCertificatesCertificateCollection]
The list of certificate_collection.
id str
The provider-assigned unique ID for this managed resource.
certificate_id str
The OCID of the certificate.
compartment_id str
The OCID of the compartment where you want to create the certificate.
filters Sequence[certificatesmanagement.GetCertificatesFilter]
issuer_certificate_authority_id str
The OCID of the certificate authority (CA) that issued the certificate.
name str
A user-friendly name for the certificate. Names are unique within a compartment. Avoid entering confidential information. Valid characters are uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
state str
The current lifecycle state of the certificate.
certificateCollections List<Property Map>
The list of certificate_collection.
id String
The provider-assigned unique ID for this managed resource.
certificateId String
The OCID of the certificate.
compartmentId String
The OCID of the compartment where you want to create the certificate.
filters List<Property Map>
issuerCertificateAuthorityId String
The OCID of the certificate authority (CA) that issued the certificate.
name String
A user-friendly name for the certificate. Names are unique within a compartment. Avoid entering confidential information. Valid characters are uppercase or lowercase letters, numbers, hyphens, underscores, and periods.
state String
The current lifecycle state of the certificate.

Supporting Types

GetCertificatesCertificateCollection

items This property is required. List<Property Map>

GetCertificatesCertificateCollectionItem

CertificateConfigs This property is required. List<GetCertificatesCertificateCollectionItemCertificateConfig>
CertificateProfileType This property is required. string
The name of the profile used to create the certificate, which depends on the type of certificate you need.
CertificateRevocationListDetails This property is required. List<GetCertificatesCertificateCollectionItemCertificateRevocationListDetail>
The details of the certificate revocation list (CRL).
CertificateRules This property is required. List<GetCertificatesCertificateCollectionItemCertificateRule>
A list of rules that control how the certificate is used and managed.
CompartmentId This property is required. string
A filter that returns only resources that match the given compartment OCID.
ConfigType This property is required. string
The origin of the certificate.
CurrentVersions This property is required. List<GetCertificatesCertificateCollectionItemCurrentVersion>
The details of the certificate version. This object does not contain the certificate contents.
DefinedTags This property is required. Dictionary<string, string>
Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
Description This property is required. string
A brief description of the certificate. Avoid entering confidential information.
FreeformTags This property is required. Dictionary<string, string>
Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
Id This property is required. string
The OCID of the certificate.
IssuerCertificateAuthorityId This property is required. string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
KeyAlgorithm This property is required. string
The algorithm used to create key pairs.
LifecycleDetails This property is required. string
Additional information about the current lifecycle state of the certificate.
Name This property is required. string
A filter that returns only resources that match the specified name.
SignatureAlgorithm This property is required. string
The algorithm used to sign the public key certificate.
State This property is required. string
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
Subjects This property is required. List<GetCertificatesCertificateCollectionItemSubject>
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
TimeCreated This property is required. string
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfDeletion This property is required. string
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
CertificateConfigs This property is required. []GetCertificatesCertificateCollectionItemCertificateConfig
CertificateProfileType This property is required. string
The name of the profile used to create the certificate, which depends on the type of certificate you need.
CertificateRevocationListDetails This property is required. []GetCertificatesCertificateCollectionItemCertificateRevocationListDetail
The details of the certificate revocation list (CRL).
CertificateRules This property is required. []GetCertificatesCertificateCollectionItemCertificateRule
A list of rules that control how the certificate is used and managed.
CompartmentId This property is required. string
A filter that returns only resources that match the given compartment OCID.
ConfigType This property is required. string
The origin of the certificate.
CurrentVersions This property is required. []GetCertificatesCertificateCollectionItemCurrentVersion
The details of the certificate version. This object does not contain the certificate contents.
DefinedTags This property is required. map[string]string
Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
Description This property is required. string
A brief description of the certificate. Avoid entering confidential information.
FreeformTags This property is required. map[string]string
Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
Id This property is required. string
The OCID of the certificate.
IssuerCertificateAuthorityId This property is required. string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
KeyAlgorithm This property is required. string
The algorithm used to create key pairs.
LifecycleDetails This property is required. string
Additional information about the current lifecycle state of the certificate.
Name This property is required. string
A filter that returns only resources that match the specified name.
SignatureAlgorithm This property is required. string
The algorithm used to sign the public key certificate.
State This property is required. string
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
Subjects This property is required. []GetCertificatesCertificateCollectionItemSubject
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
TimeCreated This property is required. string
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfDeletion This property is required. string
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
certificateConfigs This property is required. List<GetCertificatesCertificateCollectionItemCertificateConfig>
certificateProfileType This property is required. String
The name of the profile used to create the certificate, which depends on the type of certificate you need.
certificateRevocationListDetails This property is required. List<GetCertificatesCertificateCollectionItemCertificateRevocationListDetail>
The details of the certificate revocation list (CRL).
certificateRules This property is required. List<GetCertificatesCertificateCollectionItemCertificateRule>
A list of rules that control how the certificate is used and managed.
compartmentId This property is required. String
A filter that returns only resources that match the given compartment OCID.
configType This property is required. String
The origin of the certificate.
currentVersions This property is required. List<GetCertificatesCertificateCollectionItemCurrentVersion>
The details of the certificate version. This object does not contain the certificate contents.
definedTags This property is required. Map<String,String>
Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
description This property is required. String
A brief description of the certificate. Avoid entering confidential information.
freeformTags This property is required. Map<String,String>
Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
id This property is required. String
The OCID of the certificate.
issuerCertificateAuthorityId This property is required. String
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
keyAlgorithm This property is required. String
The algorithm used to create key pairs.
lifecycleDetails This property is required. String
Additional information about the current lifecycle state of the certificate.
name This property is required. String
A filter that returns only resources that match the specified name.
signatureAlgorithm This property is required. String
The algorithm used to sign the public key certificate.
state This property is required. String
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
subjects This property is required. List<GetCertificatesCertificateCollectionItemSubject>
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
timeCreated This property is required. String
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion This property is required. String
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
certificateConfigs This property is required. GetCertificatesCertificateCollectionItemCertificateConfig[]
certificateProfileType This property is required. string
The name of the profile used to create the certificate, which depends on the type of certificate you need.
certificateRevocationListDetails This property is required. GetCertificatesCertificateCollectionItemCertificateRevocationListDetail[]
The details of the certificate revocation list (CRL).
certificateRules This property is required. GetCertificatesCertificateCollectionItemCertificateRule[]
A list of rules that control how the certificate is used and managed.
compartmentId This property is required. string
A filter that returns only resources that match the given compartment OCID.
configType This property is required. string
The origin of the certificate.
currentVersions This property is required. GetCertificatesCertificateCollectionItemCurrentVersion[]
The details of the certificate version. This object does not contain the certificate contents.
definedTags This property is required. {[key: string]: string}
Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
description This property is required. string
A brief description of the certificate. Avoid entering confidential information.
freeformTags This property is required. {[key: string]: string}
Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
id This property is required. string
The OCID of the certificate.
issuerCertificateAuthorityId This property is required. string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
keyAlgorithm This property is required. string
The algorithm used to create key pairs.
lifecycleDetails This property is required. string
Additional information about the current lifecycle state of the certificate.
name This property is required. string
A filter that returns only resources that match the specified name.
signatureAlgorithm This property is required. string
The algorithm used to sign the public key certificate.
state This property is required. string
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
subjects This property is required. GetCertificatesCertificateCollectionItemSubject[]
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
timeCreated This property is required. string
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion This property is required. string
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
certificate_configs This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCertificateConfig]
certificate_profile_type This property is required. str
The name of the profile used to create the certificate, which depends on the type of certificate you need.
certificate_revocation_list_details This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCertificateRevocationListDetail]
The details of the certificate revocation list (CRL).
certificate_rules This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCertificateRule]
A list of rules that control how the certificate is used and managed.
compartment_id This property is required. str
A filter that returns only resources that match the given compartment OCID.
config_type This property is required. str
The origin of the certificate.
current_versions This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCurrentVersion]
The details of the certificate version. This object does not contain the certificate contents.
defined_tags This property is required. Mapping[str, str]
Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
description This property is required. str
A brief description of the certificate. Avoid entering confidential information.
freeform_tags This property is required. Mapping[str, str]
Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
id This property is required. str
The OCID of the certificate.
issuer_certificate_authority_id This property is required. str
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
key_algorithm This property is required. str
The algorithm used to create key pairs.
lifecycle_details This property is required. str
Additional information about the current lifecycle state of the certificate.
name This property is required. str
A filter that returns only resources that match the specified name.
signature_algorithm This property is required. str
The algorithm used to sign the public key certificate.
state This property is required. str
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
subjects This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemSubject]
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
time_created This property is required. str
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_deletion This property is required. str
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
certificateConfigs This property is required. List<Property Map>
certificateProfileType This property is required. String
The name of the profile used to create the certificate, which depends on the type of certificate you need.
certificateRevocationListDetails This property is required. List<Property Map>
The details of the certificate revocation list (CRL).
certificateRules This property is required. List<Property Map>
A list of rules that control how the certificate is used and managed.
compartmentId This property is required. String
A filter that returns only resources that match the given compartment OCID.
configType This property is required. String
The origin of the certificate.
currentVersions This property is required. List<Property Map>
The details of the certificate version. This object does not contain the certificate contents.
definedTags This property is required. Map<String>
Defined tags for this resource. Each key is predefined and scoped to a namespace. For more information, see Resource Tags. Example: {"Operations.CostCenter": "42"}
description This property is required. String
A brief description of the certificate. Avoid entering confidential information.
freeformTags This property is required. Map<String>
Free-form tags for this resource. Each tag is a simple key-value pair with no predefined name, type, or namespace. For more information, see Resource Tags. Example: {"Department": "Finance"}
id This property is required. String
The OCID of the certificate.
issuerCertificateAuthorityId This property is required. String
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
keyAlgorithm This property is required. String
The algorithm used to create key pairs.
lifecycleDetails This property is required. String
Additional information about the current lifecycle state of the certificate.
name This property is required. String
A filter that returns only resources that match the specified name.
signatureAlgorithm This property is required. String
The algorithm used to sign the public key certificate.
state This property is required. String
A filter that returns only resources that match the given lifecycle state. The state value is case-insensitive.
subjects This property is required. List<Property Map>
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
timeCreated This property is required. String
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion This property is required. String
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

GetCertificatesCertificateCollectionItemCertificateConfig

CertificateProfileType This property is required. string
The name of the profile used to create the certificate, which depends on the type of certificate you need.
ConfigType This property is required. string
The origin of the certificate.
CsrPem This property is required. string
IssuerCertificateAuthorityId This property is required. string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
KeyAlgorithm This property is required. string
The algorithm used to create key pairs.
SignatureAlgorithm This property is required. string
The algorithm used to sign the public key certificate.
SubjectAlternativeNames This property is required. List<GetCertificatesCertificateCollectionItemCertificateConfigSubjectAlternativeName>
A list of subject alternative names.
Subjects This property is required. List<GetCertificatesCertificateCollectionItemCertificateConfigSubject>
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
Validities This property is required. List<GetCertificatesCertificateCollectionItemCertificateConfigValidity>
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
VersionName This property is required. string
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
CertificateProfileType This property is required. string
The name of the profile used to create the certificate, which depends on the type of certificate you need.
ConfigType This property is required. string
The origin of the certificate.
CsrPem This property is required. string
IssuerCertificateAuthorityId This property is required. string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
KeyAlgorithm This property is required. string
The algorithm used to create key pairs.
SignatureAlgorithm This property is required. string
The algorithm used to sign the public key certificate.
SubjectAlternativeNames This property is required. []GetCertificatesCertificateCollectionItemCertificateConfigSubjectAlternativeName
A list of subject alternative names.
Subjects This property is required. []GetCertificatesCertificateCollectionItemCertificateConfigSubject
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
Validities This property is required. []GetCertificatesCertificateCollectionItemCertificateConfigValidity
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
VersionName This property is required. string
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
certificateProfileType This property is required. String
The name of the profile used to create the certificate, which depends on the type of certificate you need.
configType This property is required. String
The origin of the certificate.
csrPem This property is required. String
issuerCertificateAuthorityId This property is required. String
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
keyAlgorithm This property is required. String
The algorithm used to create key pairs.
signatureAlgorithm This property is required. String
The algorithm used to sign the public key certificate.
subjectAlternativeNames This property is required. List<GetCertificatesCertificateCollectionItemCertificateConfigSubjectAlternativeName>
A list of subject alternative names.
subjects This property is required. List<GetCertificatesCertificateCollectionItemCertificateConfigSubject>
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
validities This property is required. List<GetCertificatesCertificateCollectionItemCertificateConfigValidity>
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName This property is required. String
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
certificateProfileType This property is required. string
The name of the profile used to create the certificate, which depends on the type of certificate you need.
configType This property is required. string
The origin of the certificate.
csrPem This property is required. string
issuerCertificateAuthorityId This property is required. string
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
keyAlgorithm This property is required. string
The algorithm used to create key pairs.
signatureAlgorithm This property is required. string
The algorithm used to sign the public key certificate.
subjectAlternativeNames This property is required. GetCertificatesCertificateCollectionItemCertificateConfigSubjectAlternativeName[]
A list of subject alternative names.
subjects This property is required. GetCertificatesCertificateCollectionItemCertificateConfigSubject[]
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
validities This property is required. GetCertificatesCertificateCollectionItemCertificateConfigValidity[]
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName This property is required. string
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
certificate_profile_type This property is required. str
The name of the profile used to create the certificate, which depends on the type of certificate you need.
config_type This property is required. str
The origin of the certificate.
csr_pem This property is required. str
issuer_certificate_authority_id This property is required. str
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
key_algorithm This property is required. str
The algorithm used to create key pairs.
signature_algorithm This property is required. str
The algorithm used to sign the public key certificate.
subject_alternative_names This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCertificateConfigSubjectAlternativeName]
A list of subject alternative names.
subjects This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCertificateConfigSubject]
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
validities This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCertificateConfigValidity]
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
version_name This property is required. str
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
certificateProfileType This property is required. String
The name of the profile used to create the certificate, which depends on the type of certificate you need.
configType This property is required. String
The origin of the certificate.
csrPem This property is required. String
issuerCertificateAuthorityId This property is required. String
The OCID of the certificate authority (CA). If the parameter is set to null, the service lists all CAs.
keyAlgorithm This property is required. String
The algorithm used to create key pairs.
signatureAlgorithm This property is required. String
The algorithm used to sign the public key certificate.
subjectAlternativeNames This property is required. List<Property Map>
A list of subject alternative names.
subjects This property is required. List<Property Map>
The subject of the certificate, which is a distinguished name that identifies the entity that owns the public key in the certificate.
validities This property is required. List<Property Map>
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName This property is required. String
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.

GetCertificatesCertificateCollectionItemCertificateConfigSubject

CommonName This property is required. string
Common name or fully-qualified domain name (RDN CN).
Country This property is required. string
Country name (RDN C).
DistinguishedNameQualifier This property is required. string
Distinguished name qualifier(RDN DNQ).
DomainComponent This property is required. string
Domain component (RDN DC).
GenerationQualifier This property is required. string
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
GivenName This property is required. string
Personal given name (RDN G or GN).
Initials This property is required. string
Personal initials.
LocalityName This property is required. string
Locality (RDN L).
Organization This property is required. string
Organization (RDN O).
OrganizationalUnit This property is required. string
Organizational unit (RDN OU).
Pseudonym This property is required. string
Subject pseudonym.
SerialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
StateOrProvinceName This property is required. string
State or province name (RDN ST or S).
Street This property is required. string
Street address (RDN STREET).
Surname This property is required. string
Personal surname (RDN SN).
Title This property is required. string
Title (RDN T or TITLE).
UserId This property is required. string
User ID (RDN UID).
CommonName This property is required. string
Common name or fully-qualified domain name (RDN CN).
Country This property is required. string
Country name (RDN C).
DistinguishedNameQualifier This property is required. string
Distinguished name qualifier(RDN DNQ).
DomainComponent This property is required. string
Domain component (RDN DC).
GenerationQualifier This property is required. string
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
GivenName This property is required. string
Personal given name (RDN G or GN).
Initials This property is required. string
Personal initials.
LocalityName This property is required. string
Locality (RDN L).
Organization This property is required. string
Organization (RDN O).
OrganizationalUnit This property is required. string
Organizational unit (RDN OU).
Pseudonym This property is required. string
Subject pseudonym.
SerialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
StateOrProvinceName This property is required. string
State or province name (RDN ST or S).
Street This property is required. string
Street address (RDN STREET).
Surname This property is required. string
Personal surname (RDN SN).
Title This property is required. string
Title (RDN T or TITLE).
UserId This property is required. string
User ID (RDN UID).
commonName This property is required. String
Common name or fully-qualified domain name (RDN CN).
country This property is required. String
Country name (RDN C).
distinguishedNameQualifier This property is required. String
Distinguished name qualifier(RDN DNQ).
domainComponent This property is required. String
Domain component (RDN DC).
generationQualifier This property is required. String
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName This property is required. String
Personal given name (RDN G or GN).
initials This property is required. String
Personal initials.
localityName This property is required. String
Locality (RDN L).
organization This property is required. String
Organization (RDN O).
organizationalUnit This property is required. String
Organizational unit (RDN OU).
pseudonym This property is required. String
Subject pseudonym.
serialNumber This property is required. String
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName This property is required. String
State or province name (RDN ST or S).
street This property is required. String
Street address (RDN STREET).
surname This property is required. String
Personal surname (RDN SN).
title This property is required. String
Title (RDN T or TITLE).
userId This property is required. String
User ID (RDN UID).
commonName This property is required. string
Common name or fully-qualified domain name (RDN CN).
country This property is required. string
Country name (RDN C).
distinguishedNameQualifier This property is required. string
Distinguished name qualifier(RDN DNQ).
domainComponent This property is required. string
Domain component (RDN DC).
generationQualifier This property is required. string
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName This property is required. string
Personal given name (RDN G or GN).
initials This property is required. string
Personal initials.
localityName This property is required. string
Locality (RDN L).
organization This property is required. string
Organization (RDN O).
organizationalUnit This property is required. string
Organizational unit (RDN OU).
pseudonym This property is required. string
Subject pseudonym.
serialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName This property is required. string
State or province name (RDN ST or S).
street This property is required. string
Street address (RDN STREET).
surname This property is required. string
Personal surname (RDN SN).
title This property is required. string
Title (RDN T or TITLE).
userId This property is required. string
User ID (RDN UID).
common_name This property is required. str
Common name or fully-qualified domain name (RDN CN).
country This property is required. str
Country name (RDN C).
distinguished_name_qualifier This property is required. str
Distinguished name qualifier(RDN DNQ).
domain_component This property is required. str
Domain component (RDN DC).
generation_qualifier This property is required. str
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
given_name This property is required. str
Personal given name (RDN G or GN).
initials This property is required. str
Personal initials.
locality_name This property is required. str
Locality (RDN L).
organization This property is required. str
Organization (RDN O).
organizational_unit This property is required. str
Organizational unit (RDN OU).
pseudonym This property is required. str
Subject pseudonym.
serial_number This property is required. str
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
state_or_province_name This property is required. str
State or province name (RDN ST or S).
street This property is required. str
Street address (RDN STREET).
surname This property is required. str
Personal surname (RDN SN).
title This property is required. str
Title (RDN T or TITLE).
user_id This property is required. str
User ID (RDN UID).
commonName This property is required. String
Common name or fully-qualified domain name (RDN CN).
country This property is required. String
Country name (RDN C).
distinguishedNameQualifier This property is required. String
Distinguished name qualifier(RDN DNQ).
domainComponent This property is required. String
Domain component (RDN DC).
generationQualifier This property is required. String
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName This property is required. String
Personal given name (RDN G or GN).
initials This property is required. String
Personal initials.
localityName This property is required. String
Locality (RDN L).
organization This property is required. String
Organization (RDN O).
organizationalUnit This property is required. String
Organizational unit (RDN OU).
pseudonym This property is required. String
Subject pseudonym.
serialNumber This property is required. String
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName This property is required. String
State or province name (RDN ST or S).
street This property is required. String
Street address (RDN STREET).
surname This property is required. String
Personal surname (RDN SN).
title This property is required. String
Title (RDN T or TITLE).
userId This property is required. String
User ID (RDN UID).

GetCertificatesCertificateCollectionItemCertificateConfigSubjectAlternativeName

Type This property is required. string
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
Value This property is required. string
The subject alternative name.
Type This property is required. string
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
Value This property is required. string
The subject alternative name.
type This property is required. String
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
value This property is required. String
The subject alternative name.
type This property is required. string
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
value This property is required. string
The subject alternative name.
type This property is required. str
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
value This property is required. str
The subject alternative name.
type This property is required. String
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
value This property is required. String
The subject alternative name.

GetCertificatesCertificateCollectionItemCertificateConfigValidity

TimeOfValidityNotAfter This property is required. string
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotBefore This property is required. string
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotAfter This property is required. string
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotBefore This property is required. string
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotAfter This property is required. String
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore This property is required. String
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotAfter This property is required. string
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore This property is required. string
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_validity_not_after This property is required. str
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_validity_not_before This property is required. str
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotAfter This property is required. String
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore This property is required. String
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

GetCertificatesCertificateCollectionItemCertificateRevocationListDetail

CustomFormattedUrls This property is required. List<string>
Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
ObjectStorageConfigs This property is required. List<GetCertificatesCertificateCollectionItemCertificateRevocationListDetailObjectStorageConfig>
The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
CustomFormattedUrls This property is required. []string
Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
ObjectStorageConfigs This property is required. []GetCertificatesCertificateCollectionItemCertificateRevocationListDetailObjectStorageConfig
The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
customFormattedUrls This property is required. List<String>
Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageConfigs This property is required. List<GetCertificatesCertificateCollectionItemCertificateRevocationListDetailObjectStorageConfig>
The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
customFormattedUrls This property is required. string[]
Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageConfigs This property is required. GetCertificatesCertificateCollectionItemCertificateRevocationListDetailObjectStorageConfig[]
The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
custom_formatted_urls This property is required. Sequence[str]
Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
object_storage_configs This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCertificateRevocationListDetailObjectStorageConfig]
The details of the Object Storage bucket configured to store the certificate revocation list (CRL).
customFormattedUrls This property is required. List<String>
Optional CRL access points, expressed using a format where the version number of the issuing CA is inserted wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageConfigs This property is required. List<Property Map>
The details of the Object Storage bucket configured to store the certificate revocation list (CRL).

GetCertificatesCertificateCollectionItemCertificateRevocationListDetailObjectStorageConfig

ObjectStorageBucketName This property is required. string
The name of the bucket where the CRL is stored.
ObjectStorageNamespace This property is required. string
The tenancy of the bucket where the CRL is stored.
ObjectStorageObjectNameFormat This property is required. string
The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
ObjectStorageBucketName This property is required. string
The name of the bucket where the CRL is stored.
ObjectStorageNamespace This property is required. string
The tenancy of the bucket where the CRL is stored.
ObjectStorageObjectNameFormat This property is required. string
The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageBucketName This property is required. String
The name of the bucket where the CRL is stored.
objectStorageNamespace This property is required. String
The tenancy of the bucket where the CRL is stored.
objectStorageObjectNameFormat This property is required. String
The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageBucketName This property is required. string
The name of the bucket where the CRL is stored.
objectStorageNamespace This property is required. string
The tenancy of the bucket where the CRL is stored.
objectStorageObjectNameFormat This property is required. string
The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
object_storage_bucket_name This property is required. str
The name of the bucket where the CRL is stored.
object_storage_namespace This property is required. str
The tenancy of the bucket where the CRL is stored.
object_storage_object_name_format This property is required. str
The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.
objectStorageBucketName This property is required. String
The name of the bucket where the CRL is stored.
objectStorageNamespace This property is required. String
The tenancy of the bucket where the CRL is stored.
objectStorageObjectNameFormat This property is required. String
The object name in the bucket where the CRL is stored, expressed using a format where the version number of the issuing CA is inserted as part of the Object Storage object name wherever you include a pair of curly braces. This versioning scheme helps avoid collisions when new CA versions are created. For example, myCrlFileIssuedFromCAVersion{}.crl becomes myCrlFileIssuedFromCAVersion2.crl for CA version 2.

GetCertificatesCertificateCollectionItemCertificateRule

AdvanceRenewalPeriod This property is required. string
A property specifying the period of time, in days, before the certificate's targeted renewal that the process should occur. Expressed in ISO 8601 format.
RenewalInterval This property is required. string
A property specifying how often, in days, a certificate should be renewed. Expressed in ISO 8601 format.
RuleType This property is required. string
The type of rule.
AdvanceRenewalPeriod This property is required. string
A property specifying the period of time, in days, before the certificate's targeted renewal that the process should occur. Expressed in ISO 8601 format.
RenewalInterval This property is required. string
A property specifying how often, in days, a certificate should be renewed. Expressed in ISO 8601 format.
RuleType This property is required. string
The type of rule.
advanceRenewalPeriod This property is required. String
A property specifying the period of time, in days, before the certificate's targeted renewal that the process should occur. Expressed in ISO 8601 format.
renewalInterval This property is required. String
A property specifying how often, in days, a certificate should be renewed. Expressed in ISO 8601 format.
ruleType This property is required. String
The type of rule.
advanceRenewalPeriod This property is required. string
A property specifying the period of time, in days, before the certificate's targeted renewal that the process should occur. Expressed in ISO 8601 format.
renewalInterval This property is required. string
A property specifying how often, in days, a certificate should be renewed. Expressed in ISO 8601 format.
ruleType This property is required. string
The type of rule.
advance_renewal_period This property is required. str
A property specifying the period of time, in days, before the certificate's targeted renewal that the process should occur. Expressed in ISO 8601 format.
renewal_interval This property is required. str
A property specifying how often, in days, a certificate should be renewed. Expressed in ISO 8601 format.
rule_type This property is required. str
The type of rule.
advanceRenewalPeriod This property is required. String
A property specifying the period of time, in days, before the certificate's targeted renewal that the process should occur. Expressed in ISO 8601 format.
renewalInterval This property is required. String
A property specifying how often, in days, a certificate should be renewed. Expressed in ISO 8601 format.
ruleType This property is required. String
The type of rule.

GetCertificatesCertificateCollectionItemCurrentVersion

CertificateId This property is required. string
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
IssuerCaVersionNumber This property is required. string
The version number of the issuing certificate authority (CA).
RevocationStatuses This property is required. List<GetCertificatesCertificateCollectionItemCurrentVersionRevocationStatus>
The current revocation status of the entity.
SerialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
Stages This property is required. List<string>
A list of rotation states for this certificate version.
SubjectAlternativeNames This property is required. List<GetCertificatesCertificateCollectionItemCurrentVersionSubjectAlternativeName>
A list of subject alternative names.
TimeCreated This property is required. string
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfDeletion This property is required. string
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
Validities This property is required. List<GetCertificatesCertificateCollectionItemCurrentVersionValidity>
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
VersionName This property is required. string
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
VersionNumber This property is required. string
The version number of the certificate.
CertificateId This property is required. string
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
IssuerCaVersionNumber This property is required. string
The version number of the issuing certificate authority (CA).
RevocationStatuses This property is required. []GetCertificatesCertificateCollectionItemCurrentVersionRevocationStatus
The current revocation status of the entity.
SerialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
Stages This property is required. []string
A list of rotation states for this certificate version.
SubjectAlternativeNames This property is required. []GetCertificatesCertificateCollectionItemCurrentVersionSubjectAlternativeName
A list of subject alternative names.
TimeCreated This property is required. string
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfDeletion This property is required. string
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
Validities This property is required. []GetCertificatesCertificateCollectionItemCurrentVersionValidity
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
VersionName This property is required. string
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
VersionNumber This property is required. string
The version number of the certificate.
certificateId This property is required. String
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
issuerCaVersionNumber This property is required. String
The version number of the issuing certificate authority (CA).
revocationStatuses This property is required. List<GetCertificatesCertificateCollectionItemCurrentVersionRevocationStatus>
The current revocation status of the entity.
serialNumber This property is required. String
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stages This property is required. List<String>
A list of rotation states for this certificate version.
subjectAlternativeNames This property is required. List<GetCertificatesCertificateCollectionItemCurrentVersionSubjectAlternativeName>
A list of subject alternative names.
timeCreated This property is required. String
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion This property is required. String
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
validities This property is required. List<GetCertificatesCertificateCollectionItemCurrentVersionValidity>
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName This property is required. String
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
versionNumber This property is required. String
The version number of the certificate.
certificateId This property is required. string
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
issuerCaVersionNumber This property is required. string
The version number of the issuing certificate authority (CA).
revocationStatuses This property is required. GetCertificatesCertificateCollectionItemCurrentVersionRevocationStatus[]
The current revocation status of the entity.
serialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stages This property is required. string[]
A list of rotation states for this certificate version.
subjectAlternativeNames This property is required. GetCertificatesCertificateCollectionItemCurrentVersionSubjectAlternativeName[]
A list of subject alternative names.
timeCreated This property is required. string
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion This property is required. string
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
validities This property is required. GetCertificatesCertificateCollectionItemCurrentVersionValidity[]
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName This property is required. string
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
versionNumber This property is required. string
The version number of the certificate.
certificate_id This property is required. str
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
issuer_ca_version_number This property is required. str
The version number of the issuing certificate authority (CA).
revocation_statuses This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCurrentVersionRevocationStatus]
The current revocation status of the entity.
serial_number This property is required. str
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stages This property is required. Sequence[str]
A list of rotation states for this certificate version.
subject_alternative_names This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCurrentVersionSubjectAlternativeName]
A list of subject alternative names.
time_created This property is required. str
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_deletion This property is required. str
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
validities This property is required. Sequence[certificatesmanagement.GetCertificatesCertificateCollectionItemCurrentVersionValidity]
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
version_name This property is required. str
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
version_number This property is required. str
The version number of the certificate.
certificateId This property is required. String
The OCID of the certificate. If the parameter is set to null, the service lists all certificates.
issuerCaVersionNumber This property is required. String
The version number of the issuing certificate authority (CA).
revocationStatuses This property is required. List<Property Map>
The current revocation status of the entity.
serialNumber This property is required. String
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stages This property is required. List<String>
A list of rotation states for this certificate version.
subjectAlternativeNames This property is required. List<Property Map>
A list of subject alternative names.
timeCreated This property is required. String
A property indicating when the certificate was created, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfDeletion This property is required. String
An optional property indicating when to delete the certificate version, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
validities This property is required. List<Property Map>
An object that describes a period of time during which an entity is valid. If this is not provided when you create a certificate, the validity of the issuing CA is used.
versionName This property is required. String
The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate.
versionNumber This property is required. String
The version number of the certificate.

GetCertificatesCertificateCollectionItemCurrentVersionRevocationStatus

RevocationReason This property is required. string
The reason the certificate or certificate authority (CA) was revoked.
TimeOfRevocation This property is required. string
The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
RevocationReason This property is required. string
The reason the certificate or certificate authority (CA) was revoked.
TimeOfRevocation This property is required. string
The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
revocationReason This property is required. String
The reason the certificate or certificate authority (CA) was revoked.
timeOfRevocation This property is required. String
The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
revocationReason This property is required. string
The reason the certificate or certificate authority (CA) was revoked.
timeOfRevocation This property is required. string
The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
revocation_reason This property is required. str
The reason the certificate or certificate authority (CA) was revoked.
time_of_revocation This property is required. str
The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
revocationReason This property is required. String
The reason the certificate or certificate authority (CA) was revoked.
timeOfRevocation This property is required. String
The time when the entity was revoked, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

GetCertificatesCertificateCollectionItemCurrentVersionSubjectAlternativeName

Type This property is required. string
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
Value This property is required. string
The subject alternative name.
Type This property is required. string
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
Value This property is required. string
The subject alternative name.
type This property is required. String
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
value This property is required. String
The subject alternative name.
type This property is required. string
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
value This property is required. string
The subject alternative name.
type This property is required. str
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
value This property is required. str
The subject alternative name.
type This property is required. String
The subject alternative name type. Currently only DNS domain or host names and IP addresses are supported.
value This property is required. String
The subject alternative name.

GetCertificatesCertificateCollectionItemCurrentVersionValidity

TimeOfValidityNotAfter This property is required. string
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotBefore This property is required. string
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotAfter This property is required. string
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
TimeOfValidityNotBefore This property is required. string
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotAfter This property is required. String
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore This property is required. String
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotAfter This property is required. string
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore This property is required. string
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_validity_not_after This property is required. str
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
time_of_validity_not_before This property is required. str
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotAfter This property is required. String
The date on which the certificate validity period ends, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z
timeOfValidityNotBefore This property is required. String
The date on which the certificate validity period begins, expressed in RFC 3339 timestamp format. Example: 2019-04-03T21:10:29.600Z

GetCertificatesCertificateCollectionItemSubject

CommonName This property is required. string
Common name or fully-qualified domain name (RDN CN).
Country This property is required. string
Country name (RDN C).
DistinguishedNameQualifier This property is required. string
Distinguished name qualifier(RDN DNQ).
DomainComponent This property is required. string
Domain component (RDN DC).
GenerationQualifier This property is required. string
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
GivenName This property is required. string
Personal given name (RDN G or GN).
Initials This property is required. string
Personal initials.
LocalityName This property is required. string
Locality (RDN L).
Organization This property is required. string
Organization (RDN O).
OrganizationalUnit This property is required. string
Organizational unit (RDN OU).
Pseudonym This property is required. string
Subject pseudonym.
SerialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
StateOrProvinceName This property is required. string
State or province name (RDN ST or S).
Street This property is required. string
Street address (RDN STREET).
Surname This property is required. string
Personal surname (RDN SN).
Title This property is required. string
Title (RDN T or TITLE).
UserId This property is required. string
User ID (RDN UID).
CommonName This property is required. string
Common name or fully-qualified domain name (RDN CN).
Country This property is required. string
Country name (RDN C).
DistinguishedNameQualifier This property is required. string
Distinguished name qualifier(RDN DNQ).
DomainComponent This property is required. string
Domain component (RDN DC).
GenerationQualifier This property is required. string
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
GivenName This property is required. string
Personal given name (RDN G or GN).
Initials This property is required. string
Personal initials.
LocalityName This property is required. string
Locality (RDN L).
Organization This property is required. string
Organization (RDN O).
OrganizationalUnit This property is required. string
Organizational unit (RDN OU).
Pseudonym This property is required. string
Subject pseudonym.
SerialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
StateOrProvinceName This property is required. string
State or province name (RDN ST or S).
Street This property is required. string
Street address (RDN STREET).
Surname This property is required. string
Personal surname (RDN SN).
Title This property is required. string
Title (RDN T or TITLE).
UserId This property is required. string
User ID (RDN UID).
commonName This property is required. String
Common name or fully-qualified domain name (RDN CN).
country This property is required. String
Country name (RDN C).
distinguishedNameQualifier This property is required. String
Distinguished name qualifier(RDN DNQ).
domainComponent This property is required. String
Domain component (RDN DC).
generationQualifier This property is required. String
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName This property is required. String
Personal given name (RDN G or GN).
initials This property is required. String
Personal initials.
localityName This property is required. String
Locality (RDN L).
organization This property is required. String
Organization (RDN O).
organizationalUnit This property is required. String
Organizational unit (RDN OU).
pseudonym This property is required. String
Subject pseudonym.
serialNumber This property is required. String
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName This property is required. String
State or province name (RDN ST or S).
street This property is required. String
Street address (RDN STREET).
surname This property is required. String
Personal surname (RDN SN).
title This property is required. String
Title (RDN T or TITLE).
userId This property is required. String
User ID (RDN UID).
commonName This property is required. string
Common name or fully-qualified domain name (RDN CN).
country This property is required. string
Country name (RDN C).
distinguishedNameQualifier This property is required. string
Distinguished name qualifier(RDN DNQ).
domainComponent This property is required. string
Domain component (RDN DC).
generationQualifier This property is required. string
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName This property is required. string
Personal given name (RDN G or GN).
initials This property is required. string
Personal initials.
localityName This property is required. string
Locality (RDN L).
organization This property is required. string
Organization (RDN O).
organizationalUnit This property is required. string
Organizational unit (RDN OU).
pseudonym This property is required. string
Subject pseudonym.
serialNumber This property is required. string
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName This property is required. string
State or province name (RDN ST or S).
street This property is required. string
Street address (RDN STREET).
surname This property is required. string
Personal surname (RDN SN).
title This property is required. string
Title (RDN T or TITLE).
userId This property is required. string
User ID (RDN UID).
common_name This property is required. str
Common name or fully-qualified domain name (RDN CN).
country This property is required. str
Country name (RDN C).
distinguished_name_qualifier This property is required. str
Distinguished name qualifier(RDN DNQ).
domain_component This property is required. str
Domain component (RDN DC).
generation_qualifier This property is required. str
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
given_name This property is required. str
Personal given name (RDN G or GN).
initials This property is required. str
Personal initials.
locality_name This property is required. str
Locality (RDN L).
organization This property is required. str
Organization (RDN O).
organizational_unit This property is required. str
Organizational unit (RDN OU).
pseudonym This property is required. str
Subject pseudonym.
serial_number This property is required. str
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
state_or_province_name This property is required. str
State or province name (RDN ST or S).
street This property is required. str
Street address (RDN STREET).
surname This property is required. str
Personal surname (RDN SN).
title This property is required. str
Title (RDN T or TITLE).
user_id This property is required. str
User ID (RDN UID).
commonName This property is required. String
Common name or fully-qualified domain name (RDN CN).
country This property is required. String
Country name (RDN C).
distinguishedNameQualifier This property is required. String
Distinguished name qualifier(RDN DNQ).
domainComponent This property is required. String
Domain component (RDN DC).
generationQualifier This property is required. String
Personal generational qualifier (for example, Sr., Jr. 3rd, or IV).
givenName This property is required. String
Personal given name (RDN G or GN).
initials This property is required. String
Personal initials.
localityName This property is required. String
Locality (RDN L).
organization This property is required. String
Organization (RDN O).
organizationalUnit This property is required. String
Organizational unit (RDN OU).
pseudonym This property is required. String
Subject pseudonym.
serialNumber This property is required. String
Unique subject identifier, which is not the same as the certificate serial number (RDN SERIALNUMBER).
stateOrProvinceName This property is required. String
State or province name (RDN ST or S).
street This property is required. String
Street address (RDN STREET).
surname This property is required. String
Personal surname (RDN SN).
title This property is required. String
Title (RDN T or TITLE).
userId This property is required. String
User ID (RDN UID).

GetCertificatesFilter

Name This property is required. string
A filter that returns only resources that match the specified name.
Values This property is required. List<string>
Regex bool
Name This property is required. string
A filter that returns only resources that match the specified name.
Values This property is required. []string
Regex bool
name This property is required. String
A filter that returns only resources that match the specified name.
values This property is required. List<String>
regex Boolean
name This property is required. string
A filter that returns only resources that match the specified name.
values This property is required. string[]
regex boolean
name This property is required. str
A filter that returns only resources that match the specified name.
values This property is required. Sequence[str]
regex bool
name This property is required. String
A filter that returns only resources that match the specified name.
values This property is required. List<String>
regex Boolean

Package Details

Repository
oci pulumi/pulumi-oci
License
Apache-2.0
Notes
This Pulumi package is based on the oci Terraform Provider.
Oracle Cloud Infrastructure v2.29.0 published on Wednesday, Apr 9, 2025 by Pulumi