show crypto ca crl
To display configured certificate revocation lists (CRLs), use the show crypto ca crl command.
show crypto ca crl trustpoint-label
Syntax Description
Name of the trustpoint. The label is case sensitive.
trustpoint-label
Command Default
None
Command Modes
Any configuration mode
Command History
ModificationRelease
This command was introduced.4.1(2)
Usage Guidelines
Use this command to list the serial numbers of the revoked certificates in the CRL of the specified trustpoint.
This command does not require a license.
Examples
This example shows how to display a configured CRL:
switch# show crypto ca crl admin-ca
Trustpoint: admin-ca
CRL:
Certificate Revocation List (CRL):
Version 2 (0x1)
Signature Algorithm: sha1WithRSAEncryption
Issuer: /emailAddress=rviyyoka@cisco.com/C=IN/ST=Kar/L=Bangalore/O=Cisco
Systems/OU=1/CN=cisco-blr
Last Update: Sep 22 07:05:23 2005 GMT
Next Update: Sep 29 19:25:23 2005 GMT
CRL extensions:
X509v3 Authority Key Identifier:
keyid:CF:72:E1:FE:14:60:14:6E:B0:FA:8D:87:18:6B:E8:5F:70:69:05:3F
1.3.6.1.4.1.311.21.1:
...
Revoked Certificates:
Serial Number: 1E0AE838000000000002
Revocation Date: Mar 15 09:12:36 2005 GMT
Serial Number: 1E0AE9AB000000000003
Revocation Date: Mar 15 09:12:45 2005 GMT
Serial Number: 1E721E50000000000004
Revocation Date: Apr 5 11:04:20 2005 GMT
Serial Number: 3D26E445000000000005
Revocation Date: Apr 5 11:04:16 2005 GMT
Serial Number: 3D28F8DF000000000006
Revocation Date: Apr 5 11:04:12 2005 GMT
Cisco Nexus 7000 Series Security Command Reference
725
Show Commands
show crypto ca crl
To Next Page
Loading...
