Queries accelerated domain names associated with an SSL certificate.
Operation description
Rate limit: Each account can call this operation up to 100 times per second.
Try it now
RAM authorization
| Action | Access level | Resource type | Condition key | Dependent action |
|---|---|---|---|---|
| cdn:DescribeCdnDomainByCertificate | get | *All Resource * | None | None |
Request parameters
| Parameter | Type | Required | Description | Example |
|---|---|---|---|---|
| SSLPub | string | Yes | The public key of the SSL certificate. Base64-encode the public key, then encode it again using encodeURIComponent. The public key must be in PEM format. | ****** |
| SSLStatus | boolean | No | Specifies whether to return only domain names with HTTPS enabled or disabled. Valid values: true (return only HTTPS-enabled domain names) and false (return only HTTPS-disabled domain names). | true |
| Exact | boolean | No | Specifies whether to return only domain names that exactly match the SSL certificate. Valid values: true (return only matching domain names) and false (return only non-matching domain names). | true |
Response elements
| Element | Type | Description | Example |
|---|---|---|---|
| RequestId | string | The request ID. | ASAF2FDS-12SADSA-DDSAE3D-DSADCD4C-CDADS2D |
| CertInfos | object | The certificate information. | |
| CertInfo | array\<object\> | The list of certificate details. | |
| CertStartTime | string | The time when the certificate became effective. | Nov 29 23:59:59 2017 GMT |
| CertExpireTime | string | The expiration time of the certificate. | Nov 29 00:00:00 2016 GMT |
| CertCaIsLegacy | string | Indicates whether the SSL certificate is obsolete. Valid values: yes (the certificate is obsolete) and no (the certificate is working as expected). | yes |
| CertSubjectCommonName | string | The name of the SSL certificate owner. | owner |
| CertType | string | The type of the certificate. Valid values: RSA, DSA, and ECDSA. | RSA |
| DomainNames | string | The domain names (DNS fields) that match the SSL certificate. Multiple domain names are separated by commas (,). | \*.example.com,aliyundoc.com |
| CertExpired | string | Indicates whether the SSL certificate has expired. Valid values: yes (the certificate has expired) and no (the certificate has not expired). | yes |
| Issuer | string | The certificate authority (CA) that issued the certificate. | C=US, O=Symantec Corporation, OU=Symantec Trust Network, OU=Domain Validated SSL, CN=Symantec Basic DV SSL CA - G1 |
| DomainList | string | The accelerated domain names that match the SSL certificate. A value is returned only if matching domain names exist. Multiple domain names are separated by commas (,). | example.com,aliyundoc.com |
Examples
Success response
JSON format
{
"RequestId": "ASAF2FDS-12SADSA-DDSAE3D-DSADCD4C-CDADS2D",
"CertInfos": {
"CertInfo": [
{
"CertStartTime": "Nov 29 23:59:59 2017 GMT",
"CertExpireTime": "Nov 29 00:00:00 2016 GMT",
"CertCaIsLegacy": "yes",
"CertSubjectCommonName": "owner",
"CertType": "RSA",
"DomainNames": "*.example.com,aliyundoc.com",
"CertExpired": "yes",
"Issuer": "C=US, O=Symantec Corporation, OU=Symantec Trust Network, OU=Domain Validated SSL, CN=Symantec Basic DV SSL CA - G1",
"DomainList": "example.com,aliyundoc.com"
}
]
}
}Error codes
| HTTP status code | Error code | Error message | Description |
|---|---|---|---|
| 400 | Certificate.FormatError | The format of the certificate is invalid. | The specified certificate is invalid. |
| 400 | SSLPub.MissingParameter | The Cert parameter is required. | |
| 400 | Decode.Error | Error decoding the SSLPub certificate. | |
| 400 | Certificate.DecodeError | An error occurred while decoding the certificate. | |
| 500 | InternalError | The request processing has failed due to backend service exception. |
See Error codes for a complete list.
Release notes
See Release notes for a complete list.
该文章对您有帮助吗?