REST Resource: projects.locations.certificateAuthorities.certificates

Resource: Certificate

A Certificate corresponds to a signed X.509 certificate issued by a CertificateAuthority.

JSON representation 
{
  "name": string,
  "lifetime": string,
  "revocationDetails": {
    object (RevocationDetails)
  },
  "pemCertificate": string,
  "certificateDescription": {
    object (CertificateDescription)
  },
  "pemCertificateChain": [
    string
  ],
  "createTime": string,
  "updateTime": string,
  "labels": {
    string: string,
    ...
  },

  // Union field certificate_config can be only one of the following:
  "pemCsr": string,
  "config": {
    object (CertificateConfig)
  }
  // End of list of possible types for union field certificate_config.
}
Fields
name

string

Output only. The resource path for this Certificate in the format projects/*/locations/*/certificateAuthorities/*/certificates/*.
lifetime

string (Duration format)

Required. Immutable. The desired lifetime of a certificate. Used to create the "notBeforeTime" and "notAfterTime" fields inside an X.509 certificate. Note that the lifetime may be truncated if it would extend past the life of any certificate authority in the issuing chain.

A duration in seconds with up to nine fractional digits, terminated by 's'. Example: "3.5s".
revocationDetails

object (RevocationDetails)

Output only. Details regarding the revocation of this Certificate. This Certificate is considered revoked if and only if this field is present.
pemCertificate

string

Output only. The pem-encoded, signed X.509 certificate.
certificateDescription

object (CertificateDescription)

Output only. A structured description of the issued X.509 certificate.
pemCertificateChain[]

string

Output only. The chain that may be used to verify the X.509 certificate. Expected to be in issuer-to-root order according to RFC 5246.
createTime

string (Timestamp format)

Output only. The time at which this Certificate was created.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
updateTime

string (Timestamp format)

Output only. The time at which this Certificate was updated.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".
labels

map (key: string, value: string)

Optional. Labels with user-defined metadata.

An object containing a list of "key": value pairs. Example: { "name": "wrench", "mass": "1.3kg", "count": "3" }.
Union field certificate_config. The config used to create a signed X.509 certificate. certificate_config can be only one of the following:
pemCsr

string

Immutable. A pem-encoded X.509 certificate signing request (CSR).
config

object (CertificateConfig)

Immutable. A description of the certificate and key that does not require X.509 or ASN.1.

RevocationDetails

Describes fields that are relavent to the revocation of a Certificate.

JSON representation 
{
  "revocationState": enum (RevocationReason),
  "revocationTime": string
}
Fields
revocationState

enum (RevocationReason)

Indicates why a Certificate was revoked.
revocationTime

string (Timestamp format)

The time at which this Certificate was revoked.

A timestamp in RFC3339 UTC "Zulu" format, with nanosecond resolution and up to nine fractional digits. Examples: "2014-10-02T15:01:23Z" and "2014-10-02T15:01:23.045123456Z".

Methods

create

 Create a new Certificate in a given Project, Location from a particular CertificateAuthority.

get

 Returns a Certificate.

list

 Lists Certificates.

patch

 Update a Certificate.

revoke

 Revoke a Certificate.