GetCertificate - Edge Security Acceleration - Alibaba Cloud Documentation Center

This topic is generated by a machine translation engine without any human intervention. ALIBABA CLOUD DOES NOT GUARANTEE THE ACCURACY OF MACHINE TRANSLATED CONTENT. To request a human-translated version of this topic or provide feedback on this translation, please include it in the feedback form.

Retrieve the certificate, private key, and certificate information

Debugging

You can run this interface directly in OpenAPI Explorer, saving you the trouble of calculating signatures. After running successfully, OpenAPI Explorer can automatically generate SDK code samples.

Debug

Authorization information

The following table shows the authorization information corresponding to the API. The authorization information can be used in the Action policy element to grant a RAM user or RAM role the permissions to call this API operation. Description:

Operation: the value that you can use in the Action element to specify the operation on a resource.
Access level: the access level of each operation. The levels are read, write, and list.
Resource type: the type of the resource on which you can authorize the RAM user or the RAM role to perform the operation. Take note of the following items:
- For mandatory resource types, indicate with a prefix of * .
- If the permissions cannot be granted at the resource level, All Resources is used in the Resource type column of the operation.
Condition Key: the condition key that is defined by the cloud service.
Associated operation: other operations that the RAM user or the RAM role must have permissions to perform to complete the operation. To complete the operation, the RAM user or the RAM role must have the permissions to perform the associated operations.

Operation	Access level	Resource type	Condition key	Associated operation
esa:GetCertificate	list	*Site `acs:esa:{#regionId}:{#accountId}:site/{#SiteId}`	none	none

Request parameters

Parameter	Type	Required	Description	Example
SiteId	long	Yes	Site ID, which can be obtained by calling the ListSites interface.	1234567890123
Id	string	Yes	Certificate ID.	babaded901474b9693acf530e0fb1d95

Response parameters

Parameter	Type	Description	Example
	object	Schema of Response
SiteId	long	Site ID.	1234567890123
SiteName	string	Site name.	example.com
Status	string	Certificate status.	OK
Certificate	string	Certificate content.	-----BEGIN CERTIFICATE-----
Result	object	The certificate information.
CasId	string	Cloud certificate ID.	30000478
Id	string	Certificate ID.	babaded901474b9693acf530e0fb1d95
Name	string	Certificate name.	yourCertName
Region	string	Region.	cn-hangzhou
Status	string	Certificate status.	OK
Type	string	Certificate type.	free
CommonName	string	Common Name (CN) field of the certificate.	www.example.com
NotBefore	string	Start time of the certificate validity period.	2023-11-26T16:00:00Z
NotAfter	string	End time of the certificate validity period.	2023-11-26T16:00:00Z
Issuer	string	Certificate issuer.	DigiCert
IssuerCN	string	Certificate issuing authority.	DigiCert Global Root CA
SAN	string	Subject Alternative Name (SAN) of the certificate.	www.example.com,*.example.com
SigAlg	string	Certificate signature algorithm.	ECDSA-SHA1
PubAlg	string	Certificate public key algorithm.	ECDSA
CreateTime	string	Creation time.	2020-05-12 02:00:53
UpdateTime	string	Update time.	2022-09-22 05:33:13
SerialNumber	string	Serial number of the certificate.	babaded901474b9693acf530e0fb1daa
FingerprintSha256	string	SHA256 fingerprint of the certificate.	1dc5fc9af4eead2570c70d94b416130baeb6d4429b51fd3557379588456aca66
DCV	array<object>	The Domain Control Validation (DCV) information.
DCV	object
Id	string	The DCV ID.	bababf7cdd1546a2ad04c0def1f4c980
Type	string	The DCV type. Valid values: DNS and HTTP.	HTTP
Key	string	The DCV name. It is a TXT record name if Type is DNS or URL if Type is HTTP.	http://www.example.com/.well-known/acme-challenge/pH20CqwS5L3ZnvkhI436DCzadKFuG7QcUcvB_4KsAow
Value	string	The DCV content.	pH20CqwS5L3ZnvkhI436DCzadKFuG7QcUcvB_4KsAow.KfzYo4LH3EgOt7a73G-RqZkbR0eYtLfEUmtmqGmr4FQ
Status	string	The verification status.	pending
ApplyCode	long	The error code returned for certificate application.	2
ApplyMessage	string	The error message returned for certificate application.	canceled
RequestId	string	Request ID.	04F0F334-1335-436C-A1D7-6C044FE73368

Examples

Sample success responses

JSONformat

{
  "SiteId": 1234567890123,
  "SiteName": "example.com ",
  "Status": "OK",
  "Certificate": "-----BEGIN CERTIFICATE-----",
  "Result": {
    "CasId": 30000478,
    "Id": "babaded901474b9693acf530e0fb1d95",
    "Name": "yourCertName",
    "Region": "cn-hangzhou",
    "Status": "OK",
    "Type": "free",
    "CommonName": "www.example.com",
    "NotBefore": "2023-11-26T16:00:00Z",
    "NotAfter": "2023-11-26T16:00:00Z",
    "Issuer": "DigiCert",
    "IssuerCN": "DigiCert Global Root CA",
    "SAN": "www.example.com,*.example.com",
    "SigAlg": "ECDSA-SHA1",
    "PubAlg": "ECDSA",
    "CreateTime": "2020-05-12 02:00:53",
    "UpdateTime": "2022-09-22 05:33:13",
    "SerialNumber": "babaded901474b9693acf530e0fb1daa",
    "FingerprintSha256": "1dc5fc9af4eead2570c70d94b416130baeb6d4429b51fd3557379588456aca66",
    "DCV": [
      {
        "Id": "bababf7cdd1546a2ad04c0def1f4c980",
        "Type": "HTTP",
        "Key": "http://www.example.com/.well-known/acme-challenge/pH20CqwS5L3ZnvkhI436DCzadKFuG7QcUcvB_4KsAow",
        "Value": "pH20CqwS5L3ZnvkhI436DCzadKFuG7QcUcvB_4KsAow.KfzYo4LH3EgOt7a73G-RqZkbR0eYtLfEUmtmqGmr4FQ",
        "Status": "pending"
      }
    ],
    "ApplyCode": 2,
    "ApplyMessage": "canceled"
  },
  "RequestId": "04F0F334-1335-436C-A1D7-6C044FE73368"
}

Error codes

HTTP status code	Error code	Error message	Description
400	MissingSiteId	Required parameter SiteId missing. Specify SiteId and try again.	Required parameter SiteId missing. Specify SiteId and try again.
400	InternalException	Failed to call the service. Try again later or contact technical support.	Failed to call the service. Try again later or contact technical support.
400	Id.MissingParameter	The parameter Id is required.	The required parameter Id is missing.
403	Unauthorized.InvalidTime	The specified authentication time is invalid.	The authentication time parameter you entered is invalid. Check the parameter value and try again.
403	Unauthorized.InvalidToken	Token authentication failed.	The token you entered is invalid. Please check and enter the correct token and try again.
404	Certificate.NotFound	The specified certificate does not exist.	The specified certificate does not exist.

For a list of error codes, visit the Service error codes.