DescribeCdnDomainByCertificate

更新时间:
复制 MD 格式

Queries accelerated domain names associated with an SSL certificate.

Operation description

Rate limit: Each account can call this operation up to 100 times per second.

Try it now

Test

Try this API in OpenAPI Explorer, no manual signing needed. Successful calls auto-generate SDK code matching your parameters. Download it with built-in credential security for local usage.

RAM authorization

ActionAccess levelResource typeCondition keyDependent action
cdn:DescribeCdnDomainByCertificateget*All Resource *NoneNone

Request parameters

ParameterTypeRequiredDescriptionExample
SSLPubstringYesThe public key of the SSL certificate. Base64-encode the public key, then encode it again using encodeURIComponent. The public key must be in PEM format.******
SSLStatusbooleanNoSpecifies whether to return only domain names with HTTPS enabled or disabled. Valid values: true (return only HTTPS-enabled domain names) and false (return only HTTPS-disabled domain names).true
ExactbooleanNoSpecifies whether to return only domain names that exactly match the SSL certificate. Valid values: true (return only matching domain names) and false (return only non-matching domain names).true

Response elements

ElementTypeDescriptionExample
RequestIdstringThe request ID.ASAF2FDS-12SADSA-DDSAE3D-DSADCD4C-CDADS2D
CertInfosobjectThe certificate information.
CertInfoarray\<object\>The list of certificate details.
CertStartTimestringThe time when the certificate became effective.Nov 29 23:59:59 2017 GMT
CertExpireTimestringThe expiration time of the certificate.Nov 29 00:00:00 2016 GMT
CertCaIsLegacystringIndicates whether the SSL certificate is obsolete. Valid values: yes (the certificate is obsolete) and no (the certificate is working as expected).yes
CertSubjectCommonNamestringThe name of the SSL certificate owner.owner
CertTypestringThe type of the certificate. Valid values: RSA, DSA, and ECDSA.RSA
DomainNamesstringThe domain names (DNS fields) that match the SSL certificate. Multiple domain names are separated by commas (,).\*.example.com,aliyundoc.com
CertExpiredstringIndicates whether the SSL certificate has expired. Valid values: yes (the certificate has expired) and no (the certificate has not expired).yes
IssuerstringThe certificate authority (CA) that issued the certificate.C=US, O=Symantec Corporation, OU=Symantec Trust Network, OU=Domain Validated SSL, CN=Symantec Basic DV SSL CA - G1
DomainListstringThe accelerated domain names that match the SSL certificate. A value is returned only if matching domain names exist. Multiple domain names are separated by commas (,).example.com,aliyundoc.com

Examples

Success response

JSON format

{
  "RequestId": "ASAF2FDS-12SADSA-DDSAE3D-DSADCD4C-CDADS2D",
  "CertInfos": {
    "CertInfo": [
      {
        "CertStartTime": "Nov 29 23:59:59 2017 GMT",
        "CertExpireTime": "Nov 29 00:00:00 2016 GMT",
        "CertCaIsLegacy": "yes",
        "CertSubjectCommonName": "owner",
        "CertType": "RSA",
        "DomainNames": "*.example.com,aliyundoc.com",
        "CertExpired": "yes",
        "Issuer": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, OU=Domain Validated SSL, CN=Symantec Basic DV SSL CA - G1",
        "DomainList": "example.com,aliyundoc.com"
      }
    ]
  }
}

Error codes

HTTP status codeError codeError messageDescription
400Certificate.FormatErrorThe format of the certificate is invalid.The specified certificate is invalid.
400SSLPub.MissingParameterThe Cert parameter is required.
400Decode.ErrorError decoding the SSLPub certificate.
400Certificate.DecodeErrorAn error occurred while decoding the certificate.
500InternalErrorThe request processing has failed due to backend service exception.

See Error codes for a complete list.

Release notes

See Release notes for a complete list.