class Aws::SecurityHub::Types::AwsCertificateManagerCertificateDetails

Provides details about an Certificate Manager certificate.

@note When making an API call, you may pass AwsCertificateManagerCertificateDetails

data as a hash:

    {
      certificate_authority_arn: "NonEmptyString",
      created_at: "NonEmptyString",
      domain_name: "NonEmptyString",
      domain_validation_options: [
        {
          domain_name: "NonEmptyString",
          resource_record: {
            name: "NonEmptyString",
            type: "NonEmptyString",
            value: "NonEmptyString",
          },
          validation_domain: "NonEmptyString",
          validation_emails: ["NonEmptyString"],
          validation_method: "NonEmptyString",
          validation_status: "NonEmptyString",
        },
      ],
      extended_key_usages: [
        {
          name: "NonEmptyString",
          o_id: "NonEmptyString",
        },
      ],
      failure_reason: "NonEmptyString",
      imported_at: "NonEmptyString",
      in_use_by: ["NonEmptyString"],
      issued_at: "NonEmptyString",
      issuer: "NonEmptyString",
      key_algorithm: "NonEmptyString",
      key_usages: [
        {
          name: "NonEmptyString",
        },
      ],
      not_after: "NonEmptyString",
      not_before: "NonEmptyString",
      options: {
        certificate_transparency_logging_preference: "NonEmptyString",
      },
      renewal_eligibility: "NonEmptyString",
      renewal_summary: {
        domain_validation_options: [
          {
            domain_name: "NonEmptyString",
            resource_record: {
              name: "NonEmptyString",
              type: "NonEmptyString",
              value: "NonEmptyString",
            },
            validation_domain: "NonEmptyString",
            validation_emails: ["NonEmptyString"],
            validation_method: "NonEmptyString",
            validation_status: "NonEmptyString",
          },
        ],
        renewal_status: "NonEmptyString",
        renewal_status_reason: "NonEmptyString",
        updated_at: "NonEmptyString",
      },
      serial: "NonEmptyString",
      signature_algorithm: "NonEmptyString",
      status: "NonEmptyString",
      subject: "NonEmptyString",
      subject_alternative_names: ["NonEmptyString"],
      type: "NonEmptyString",
    }

@!attribute [rw] certificate_authority_arn

The ARN of the private certificate authority (CA) that will be used
to issue the certificate.
@return [String]

@!attribute [rw] created_at

Indicates when the certificate was requested.

Uses the `date-time` format specified in [RFC 3339 section 5.6,
Internet Date/Time Format][1]. The value cannot contain spaces. For
example, `2020-03-22T13:22:13.933Z`.

[1]: https://tools.ietf.org/html/rfc3339#section-5.6
@return [String]

@!attribute [rw] domain_name

The fully qualified domain name (FQDN), such as www.example.com,
that is secured by the certificate.
@return [String]

@!attribute [rw] domain_validation_options

Contains information about the initial validation of each domain
name that occurs as a result of the `RequestCertificate` request.

Only provided if the certificate type is `AMAZON_ISSUED`.
@return [Array<Types::AwsCertificateManagerCertificateDomainValidationOption>]

@!attribute [rw] extended_key_usages

Contains a list of Extended Key Usage X.509 v3 extension objects.
Each object specifies a purpose for which the certificate public key
can be used and consists of a name and an object identifier (OID).
@return [Array<Types::AwsCertificateManagerCertificateExtendedKeyUsage>]

@!attribute [rw] failure_reason

For a failed certificate request, the reason for the failure.

Valid values: `NO_AVAILABLE_CONTACTS` \|
`ADDITIONAL_VERIFICATION_REQUIRED` \| `DOMAIN_NOT_ALLOWED` \|
`INVALID_PUBLIC_DOMAIN` \| `DOMAIN_VALIDATION_DENIED` \| `CAA_ERROR`
\| `PCA_LIMIT_EXCEEDED` \| `PCA_INVALID_ARN` \| `PCA_INVALID_STATE`
\| `PCA_REQUEST_FAILED` \| `PCA_NAME_CONSTRAINTS_VALIDATION` \|
`PCA_RESOURCE_NOT_FOUND` \| `PCA_INVALID_ARGS` \|
`PCA_INVALID_DURATION` \| `PCA_ACCESS_DENIED` \| `SLR_NOT_FOUND` \|
`OTHER`
@return [String]

@!attribute [rw] imported_at

Indicates when the certificate was imported. Provided if the
certificate type is `IMPORTED`.

Uses the `date-time` format specified in [RFC 3339 section 5.6,
Internet Date/Time Format][1]. The value cannot contain spaces. For
example, `2020-03-22T13:22:13.933Z`.

[1]: https://tools.ietf.org/html/rfc3339#section-5.6
@return [String]

@!attribute [rw] in_use_by

The list of ARNs for the Amazon Web Services resources that use the
certificate.
@return [Array<String>]

@!attribute [rw] issued_at

Indicates when the certificate was issued. Provided if the
certificate type is `AMAZON_ISSUED`.

Uses the `date-time` format specified in [RFC 3339 section 5.6,
Internet Date/Time Format][1]. The value cannot contain spaces. For
example, `2020-03-22T13:22:13.933Z`.

[1]: https://tools.ietf.org/html/rfc3339#section-5.6
@return [String]

@!attribute [rw] issuer

The name of the certificate authority that issued and signed the
certificate.
@return [String]

@!attribute [rw] key_algorithm

The algorithm that was used to generate the public-private key pair.

Valid values: `RSA_2048` \| `RSA_1024` \|` RSA_4096` \|
`EC_prime256v1` \| `EC_secp384r1` \| `EC_secp521r1`
@return [String]

@!attribute [rw] key_usages

A list of key usage X.509 v3 extension objects.
@return [Array<Types::AwsCertificateManagerCertificateKeyUsage>]

@!attribute [rw] not_after

The time after which the certificate becomes invalid.

Uses the `date-time` format specified in [RFC 3339 section 5.6,
Internet Date/Time Format][1]. The value cannot contain spaces. For
example, `2020-03-22T13:22:13.933Z`.

[1]: https://tools.ietf.org/html/rfc3339#section-5.6
@return [String]

@!attribute [rw] not_before

The time before which the certificate is not valid.

Uses the `date-time` format specified in [RFC 3339 section 5.6,
Internet Date/Time Format][1]. The value cannot contain spaces. For
example, `2020-03-22T13:22:13.933Z`.

[1]: https://tools.ietf.org/html/rfc3339#section-5.6
@return [String]

@!attribute [rw] options

Provides a value that specifies whether to add the certificate to a
transparency log.
@return [Types::AwsCertificateManagerCertificateOptions]

@!attribute [rw] renewal_eligibility

Whether the certificate is eligible for renewal.

Valid values: `ELIGIBLE` \| `INELIGIBLE`
@return [String]

@!attribute [rw] renewal_summary

Information about the status of the Certificate Manager managed
renewal for the certificate. Provided only when the certificate type
is `AMAZON_ISSUED`.
@return [Types::AwsCertificateManagerCertificateRenewalSummary]

@!attribute [rw] serial

The serial number of the certificate.
@return [String]

@!attribute [rw] signature_algorithm

The algorithm that was used to sign the certificate.
@return [String]

@!attribute [rw] status

The status of the certificate.

Valid values: `PENDING_VALIDATION` \| `ISSUED` \| `INACTIVE` \|
`EXPIRED` \| `VALIDATION_TIMED_OUT` \| `REVOKED` \| `FAILED`
@return [String]

@!attribute [rw] subject

The name of the entity that is associated with the public key
contained in the certificate.
@return [String]

@!attribute [rw] subject_alternative_names

One or more domain names (subject alternative names) included in the
certificate. This list contains the domain names that are bound to
the public key that is contained in the certificate.

The subject alternative names include the canonical domain name (CN)
of the certificate and additional domain names that can be used to
connect to the website.
@return [Array<String>]

@!attribute [rw] type

The source of the certificate. For certificates that Certificate
Manager provides, `Type` is `AMAZON_ISSUED`. For certificates that
are imported with `ImportCertificate`, `Type` is `IMPORTED`.

Valid values: `IMPORTED` \| `AMAZON_ISSUED` \| `PRIVATE`
@return [String]

@see docs.aws.amazon.com/goto/WebAPI/securityhub-2018-10-26/AwsCertificateManagerCertificateDetails AWS API Documentation

Constants

SENSITIVE