Mirrors/pfSense-Certificate-Viewer
1
0
Fork 0
mirror of https://github.com/alvarsedano/pfSense-Certificate-Viewer.git synced 2025-04-19 08:55:11 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update result-example

Browse Source
This commit is contained in:
Alvaro Sedano 2019-07-22 01:32:34 +02:00 committed by GitHub
parent 685e563c75
commit c415742d86
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 39 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

39
result-example
View File

@ -19,3 +19,42 @@ To avoid issues when some of this certs is revoked, you must revoked all them, a
As example: The execution result shows that the "city1" and "audit03" certs are revoked in the "revocados" CRL.
But due to the duplicity of SerialNumbers, the openVPN tunnel that uses "revocados" as CRL also will consider revoked
the certs "hsanchez" and "uaIntro".
every item of $listaC has these attributes:
PS C:\Users\me\Documents> $listaC[56]
EnhancedKeyUsageList : {Client Authentication (1.3.6.1.5.5.7.3.2)}
DnsNameList : {uaDedicated01}
SendAsTrustedIssuer : False
Archived : False
Extensions : {System.Security.Cryptography.Oid, System.Security.Cryptography.Oid, System.Security.Cryptography.Oid, System.Security.Cryptography.Oid...}
FriendlyName : uaDedicated01(02)
IssuerName : System.Security.Cryptography.X509Certificates.X500DistinguishedName
NotAfter : 12/07/2020 14:10:54
NotBefore : 13/07/2018 14:10:54
HasPrivateKey : False
PrivateKey :
PublicKey : System.Security.Cryptography.X509Certificates.PublicKey
RawData : {18, ...}
SerialNumber : 3F
SubjectName : System.Security.Cryptography.X509Certificates.X500DistinguishedName
SignatureAlgorithm : System.Security.Cryptography.Oid
Thumbprint : 4AD2BBE653414EE1A10E01FB3D26F62D003B52C7
Version : 3
Handle : 2788955271140
Issuer : CN=internal-ca, E=mail@mycompany.com, O=MYCOMP, L=myCity, S=myCity, C=ES
Subject : CN=uaDedicated01, E=mail@mycompany.com, O=MYCOMP, L=myCity, S=myCity, C=ES
IsCA : False
IsServer : False
IsClient : True
sIssuer : internal-ca
sSubject : uaDedicated01
refid : 5b85b04689ad1
isRevoked : True
revokedOn : {revocados, revCAcert}
---
You can show certs that will expire in the next 90 days
$listaC | Where {$_.NotAfter -le (GetDate).AddDays(90)}