Key |
Returned |
Description |
certificates
complex
|
always |
A list of certificates
|
|
certificate
string
|
when certificate creation is complete |
The ACM Certificate body
Sample:
-----BEGIN CERTIFICATE-----\nMII.....-----END CERTIFICATE-----\n
|
|
certificate_arn
string
|
always |
Certificate ARN
Sample:
arn:aws:acm:ap-southeast-2:123456789012:certificate/abcd1234-abcd-1234-abcd-123456789abc
|
|
certificate_chain
string
|
when certificate creation is complete |
Full certificate chain for the certificate
Sample:
-----BEGIN CERTIFICATE-----\nMII...\n-----END CERTIFICATE-----\n-----BEGIN CERTIFICATE-----\n...
|
|
created_at
string
|
always |
Date certificate was created
Sample:
2017-08-15T10:31:19+10:00
|
|
domain_name
string
|
always |
Domain name for the certificate
Sample:
*.example.com
|
|
domain_validation_options
complex
|
when certificate type is AMAZON_ISSUED |
Options used by ACM to validate the certificate
|
|
|
domain_name
string
|
always |
Fully qualified domain name of the certificate
Sample:
example.com
|
|
|
validation_domain
string
|
always |
The domain name ACM used to send validation emails
Sample:
example.com
|
|
|
validation_emails
list
|
always |
A list of email addresses that ACM used to send domain validation emails
Sample:
['admin@example.com', 'postmaster@example.com']
|
|
|
validation_status
string
|
always |
Validation status of the domain
Sample:
SUCCESS
|
|
failure_reason
string
|
only when certificate issuing failed |
Reason certificate request failed
Sample:
NO_AVAILABLE_CONTACTS
|
|
in_use_by
list
|
always |
A list of ARNs for the AWS resources that are using the certificate.
|
|
issued_at
string
|
always |
Date certificate was issued
Sample:
2017-01-01T00:00:00+10:00
|
|
issuer
string
|
always |
Issuer of the certificate
Sample:
Amazon
|
|
key_algorithm
string
|
always |
Algorithm used to generate the certificate
Sample:
RSA-2048
|
|
not_after
string
|
always |
Date after which the certificate is not valid
Sample:
2019-01-01T00:00:00+10:00
|
|
not_before
string
|
always |
Date before which the certificate is not valid
Sample:
2017-01-01T00:00:00+10:00
|
|
renewal_summary
complex
|
when certificate is issued by Amazon and a renewal has been started |
Information about managed renewal process
|
|
|
domain_validation_options
complex
|
when certificate type is AMAZON_ISSUED |
Options used by ACM to validate the certificate
|
|
|
|
domain_name
string
|
always |
Fully qualified domain name of the certificate
Sample:
example.com
|
|
|
|
validation_domain
string
|
always |
The domain name ACM used to send validation emails
Sample:
example.com
|
|
|
|
validation_emails
list
|
always |
A list of email addresses that ACM used to send domain validation emails
Sample:
['admin@example.com', 'postmaster@example.com']
|
|
|
|
validation_status
string
|
always |
Validation status of the domain
Sample:
SUCCESS
|
|
|
renewal_status
string
|
always |
Status of the domain renewal
Sample:
PENDING_AUTO_RENEWAL
|
|
revocation_reason
string
|
when the certificate has been revoked |
Reason for certificate revocation
Sample:
SUPERCEDED
|
|
revoked_at
string
|
when the certificate has been revoked |
Date certificate was revoked
Sample:
2017-09-01T10:00:00+10:00
|
|
serial
string
|
always |
The serial number of the certificate
Sample:
00:01:02:03:04:05:06:07:08:09:0a:0b:0c:0d:0e:0f
|
|
signature_algorithm
string
|
always |
Algorithm used to sign the certificate
Sample:
SHA256WITHRSA
|
|
status
string
|
always |
Status of the certificate in ACM
Sample:
ISSUED
|
|
subject
string
|
always |
The name of the entity that is associated with the public key contained in the certificate
Sample:
CN=*.example.com
|
|
subject_alternative_names
list
|
always |
Subject Alternative Names for the certificate
Sample:
['*.example.com']
|
|
tags
dict
|
always |
Tags associated with the certificate
Sample:
{'Application': 'helloworld', 'Environment': 'test'}
|
|
type
string
|
always |
The source of the certificate
Sample:
AMAZON_ISSUED
|