grid:x509certificate : X509Certificate object.

In the X.509 system, a certification authority issues a certificate binding a public key to a particular distinguished name in the X.500 tradition, or to an alternative name such as an e-mail address or a DNS entry.

Object Reference

References to grid:x509certificate are object references.

The name part of the Grid x509certificate object reference has the following components:

  • Serial number of Gird x509certificate

Example: grid:x509certificate/ZGldHdvcmtfdmlldyQxMTk:serialnum1

Restrictions

The object does not support the following operations:

  • Create (insert)

  • Delete

  • Modify (update)

  • Permissions

  • Global search (searches via the search object)

  • Scheduling

  • CSV export

The object cannot be managed on Cloud Platform members.

Fields

These fields are actual members of the object; thus, they can be requested by using _return_fields, if the fields are readable.

The basic version of the object contains the field(s): issuer, serial, subject.

issuer

issuer

Certificate issuer.

Type

String.

Search

The field is available for search via

  • ‘~=’ (regular expression)

  • ‘=’ (exact equality)

  • ‘:=’ (case insensitive search)

Notes

The issuer is part of the base object.

The issuer cannot be updated.

issuer cannot be written.

serial

serial

X509Certificate serial number.

Type

String.

Search

The field is available for search via

  • ‘~=’ (regular expression)

  • ‘=’ (exact equality)

  • ‘:=’ (case insensitive search)

Notes

The serial is part of the base object.

The serial cannot be updated.

serial cannot be written.

subject

subject

A Distinguished Name that is made of multiple relative distinguished names (RDNs).

Type

String.

Search

The field is available for search via

  • ‘~=’ (regular expression)

  • ‘=’ (exact equality)

  • ‘:=’ (case insensitive search)

Notes

The subject is part of the base object.

The subject cannot be updated.

subject cannot be written.

valid_not_after

valid_not_after

Certificate expiry date.

Type

Timestamp.

Search

The field is available for search via

  • ‘!=’ (negative search)

  • ‘>=’ (greater than search)

  • ‘=’ (exact equality)

  • ‘<=’ (less than search)

Notes

The valid_not_after cannot be updated.

valid_not_after cannot be written.

valid_not_before

valid_not_before

Certificate validity start date.

Type

Timestamp.

Search

The field is available for search via

  • ‘!=’ (negative search)

  • ‘>=’ (greater than search)

  • ‘=’ (exact equality)

  • ‘<=’ (less than search)

Notes

The valid_not_before cannot be updated.

valid_not_before cannot be written.

Fields List

Field

Type

Req

R/O

Base

Search

issuer

String

N

Y

Y

: = ~

serial

String

N

Y

Y

: = ~

subject

String

N

Y

Y

: = ~

valid_not_after

Timestamp

N

Y

N

! < = >

valid_not_before

Timestamp

N

Y

N

! < = >