The display pki peer-certificate command displays the imported certificates of the remote device.
Parameter
|
Description | Value |
|---|---|---|
name peer-name |
Specifies the name of peer certificate. |
The value must be an existing peer certificate file name. |
all |
Displays brief information about all certificates of the remote device. |
- |
This command shows information about imported certificates of the remote device, including signature algorithm, issuer, validity period, subject, public key, and PKI realm.
# Display brief information about all certificates of the remote device.
<HUAWEI> display pki peer-certificate all
Peer certificate name :abcd
Serial Number:
12 19 3c d3 00 00 00 00 04 9a
Subject:
CN=a
Total Number: 1
# Display detailed information about the certificate abcd of the remote device.
<HUAWEI> display pki peer-certificate name abcd
The x509 object type is certificate:
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:19:3c:d3:00:00:00:00:04:9a
Signature Algorithm: sha1WithRSAEncryption
Issuer: CN=CA_ROOT
Validity
Not Before: Feb 19 13:00:22 2013 GMT
Not After : Feb 19 13:10:22 2014 GMT
Subject: CN=a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
Public-Key: (512 bit)
Modulus:
00:b9:8b:47:65:a9:99:ed:58:b2:63:74:65:56:d1:
08:bb:1d:8f:4e:ed:72:a2:4a:ef:d8:45:3d:53:db:
c8:eb:df:53:9e:5f:c7:96:46:65:14:1a:ab:72:e9:
a2:71:c8:7a:f0:51:0c:cc:39:bb:14:75:7d:f1:bc:
88:2c:a7:2e:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:5B:8A:03:58:01:C8:E3:14:BC:18:5B:F9:BD:00:68:5B:D1:90:4E
X509v3 Authority Key Identifier:
keyid:CE:BA:CA:39:C7:AD:6A:CB:85:17:D0:8A:8E:28:02:0B:52:D4:D9:2
B
X509v3 CRL Distribution Points:
Full Name:
URI:http://10.1.1.1:8080/CertEnroll/CA_ROOT.crl
Authority Information Access:
CA Issuers - URI:ldap:///CN=CA_ROOT,CN=AIA,CN=Public%20Key%20Ser
vices,CN=Services,CN=Configuration,DC=esap,DC=com?cACertificate?base?objectClass
=certificationAuthority
CA Issuers - URI:http://www.example.com/CertEnroll/www.example.com
_CA_ROOT.crt
1.3.6.1.4.1.311.20.2:
.0.I.P.S.E.C.I.n.t.e.r.m.e.d.i.a.t.e.O.f.f.l.i.n.e
Signature Algorithm: sha1WithRSAEncryption
bb:8b:77:af:ae:df:2e:0c:bd:7a:29:6e:76:23:ad:7d:69:6d:
0d:16:d9:18:82:ad:4f:52:b3:cd:1c:1a:fc:34:00:33:36:8d:
47:2a:20:24:52:b7:02:75:cc:ab:3b:4c:f8:2a:a9:a9:4f:46:
fb:c2:21:00:c1:b5:c2:67:0c:b1:99:2a:62:7b:71:4d:e7:c2:
93:29:bb:ec:b1:e9:28:82:2f:77:61:ec:28:66:35:cb:5f:15:
04:73:77:d8:26:91:7b:a2:56:74:51:33:0b:f1:04:28:24:b2:
71:58:ad:5c:f8:96:17:0d:f7:b7:5f:4b:b9:ed:09:79:bc:54:
21:c5:9b:90:f7:7b:21:aa:5a:aa:6f:51:e4:79:ce:b8:35:8b:
19:90:51:94:e6:c2:61:f8:24:46:85:4c:a9:69:bd:8a:ef:c2:
64:b8:19:ab:0b:6b:ec:34:41:8d:43:43:44:d1:1b:4c:4a:23:
cd:40:52:7a:2e:8c:5d:b6:62:55:93:45:c8:3e:de:b1:51:82:
d0:bb:7c:b8:09:7b:97:08:7b:93:17:40:a8:6f:2d:ed:f4:3e:
36:10:2a:20:e3:47:e1:fb:ad:fe:97:73:a7:53:d0:f8:52:ca:
b6:0e:e8:f1:df:6c:7a:37:39:bb:82:f9:03:c9:4a:71:65:df:
6f:37:e6:b7
Pki realm name: -
Certificate file name: -
Certificate peer name: abcd
Item
|
Description |
|---|---|
Peer certificate name |
Peer certificate name. |
The x509 object type is certificate |
X.509 object type is certificate. |
Certificate |
Information about a certificate. |
Data |
Data of a certificate. |
Version |
Version of a certificate. |
Serial Number |
Serial number of a certificate. |
Signature Algorithm |
Signature algorithm of a certificate. |
Issuer |
Issuer of a certificate. |
Validity |
Validity period of a certificate. |
Subject |
Subject of the certificate. |
Subject Public Key Info |
Public key of the certificate. |
Public Key Algorithm |
Algorithm of the Public key. |
Public-Key |
Information about the RSA public key. |
Modulus |
Key modulus. |
Exponent |
Key exponent. |
X509v3 extensions |
X.509v3 certificate extensions. |
X509v3 Subject Key Identifier |
Identifier of a subject key. |
X509v3 CRL Distribution Points |
CRL distribution points. |
Full Name |
Full name of CDP. |
Authority Information Access |
Authority information access. |
Pki realm name |
PKI realm name. |
Certificate file name |
Certificate file name. |
Certificate peer name |
Certificate peer name. |