class Aws::Lightsail::Types::Certificate

Describes the full details of an Amazon Lightsail SSL/TLS certificate.

<note markdown=“1”> To get a summary of a certificate, use the `GetCertificates` action and ommit `includeCertificateDetails` from your request. The response will include only the certificate Amazon Resource Name (ARN), certificate name, domain name, and tags.

</note>

@!attribute [rw] arn

The Amazon Resource Name (ARN) of the certificate.
@return [String]

@!attribute [rw] name

The name of the certificate (e.g., `my-certificate`).
@return [String]

@!attribute [rw] domain_name

The domain name of the certificate.
@return [String]

@!attribute [rw] status

The validation status of the certificate.
@return [String]

@!attribute [rw] serial_number

The serial number of the certificate.
@return [String]

@!attribute [rw] subject_alternative_names

An array of strings that specify the alternate domains (e.g.,
`example2.com`) and subdomains (e.g., `blog.example.com`) of the
certificate.
@return [Array<String>]

@!attribute [rw] domain_validation_records

An array of objects that describe the domain validation records of
the certificate.
@return [Array<Types::DomainValidationRecord>]

@!attribute [rw] request_failure_reason

The validation failure reason, if any, of the certificate.

The following failure reasons are possible:

* <b> <code>NO_AVAILABLE_CONTACTS</code> </b> - This failure applies
  to email validation, which is not available for Lightsail
  certificates.

* <b> <code>ADDITIONAL_VERIFICATION_REQUIRED</code> </b> - Lightsail
  requires additional information to process this certificate
  request. This can happen as a fraud-protection measure, such as
  when the domain ranks within the Alexa top 1000 websites. To
  provide the required information, use the [AWS Support Center][1]
  to contact AWS Support.

  <note markdown="1"> You cannot request a certificate for Amazon-owned domain names
  such as those ending in amazonaws.com, cloudfront.net, or
  elasticbeanstalk.com.

   </note>

* <b> <code>DOMAIN_NOT_ALLOWED</code> </b> - One or more of the
  domain names in the certificate request was reported as an unsafe
  domain by [VirusTotal][2]. To correct the problem, search for your
  domain name on the [VirusTotal][2] website. If your domain is
  reported as suspicious, see [Google Help for Hacked Websites][3]
  to learn what you can do.

  If you believe that the result is a false positive, notify the
  organization that is reporting the domain. VirusTotal is an
  aggregate of several antivirus and URL scanners and cannot remove
  your domain from a block list itself. After you correct the
  problem and the VirusTotal registry has been updated, request a
  new certificate.

  If you see this error and your domain is not included in the
  VirusTotal list, visit the [AWS Support Center][1] and create a
  case.

* <b> <code>INVALID_PUBLIC_DOMAIN</code> </b> - One or more of the
  domain names in the certificate request is not valid. Typically,
  this is because a domain name in the request is not a valid
  top-level domain. Try to request a certificate again, correcting
  any spelling errors or typos that were in the failed request, and
  ensure that all domain names in the request are for valid
  top-level domains. For example, you cannot request a certificate
  for `example.invalidpublicdomain` because `invalidpublicdomain` is
  not a valid top-level domain.

* <b> <code>OTHER</code> </b> - Typically, this failure occurs when
  there is a typographical error in one or more of the domain names
  in the certificate request. Try to request a certificate again,
  correcting any spelling errors or typos that were in the failed
  request.

[1]: https://console.aws.amazon.com/support/home
[2]: https://www.virustotal.com/gui/home/url
[3]: https://developers.google.com/web/fundamentals/security/hacked
@return [String]

@!attribute [rw] in_use_resource_count

The number of Lightsail resources that the certificate is attached
to.
@return [Integer]

@!attribute [rw] key_algorithm

The algorithm used to generate the key pair (the public and private
key) of the certificate.
@return [String]

@!attribute [rw] created_at

The timestamp when the certificate was created.
@return [Time]

@!attribute [rw] issued_at

The timestamp when the certificate was issued.
@return [Time]

@!attribute [rw] issuer_ca

The certificate authority that issued the certificate.
@return [String]

@!attribute [rw] not_before

The timestamp when the certificate is first valid.
@return [Time]

@!attribute [rw] not_after

The timestamp when the certificate expires.
@return [Time]

@!attribute [rw] eligible_to_renew

The renewal eligibility of the certificate.
@return [String]

@!attribute [rw] renewal_summary

An object that describes the status of the certificate renewal
managed by Lightsail.
@return [Types::RenewalSummary]

@!attribute [rw] revoked_at

The timestamp when the certificate was revoked. This value is
present only when the certificate status is `REVOKED`.
@return [Time]

@!attribute [rw] revocation_reason

The reason the certificate was revoked. This value is present only
when the certificate status is `REVOKED`.
@return [String]

@!attribute [rw] tags

The tag keys and optional values for the resource. For more
information about tags in Lightsail, see the [Amazon Lightsail
Developer Guide][1].

[1]: https://lightsail.aws.amazon.com/ls/docs/en_us/articles/amazon-lightsail-tags
@return [Array<Types::Tag>]

@!attribute [rw] support_code

The support code. Include this code in your email to support when
you have questions about your Lightsail certificate. This code
enables our support team to look up your Lightsail information more
easily.
@return [String]

@see docs.aws.amazon.com/goto/WebAPI/lightsail-2016-11-28/Certificate AWS API Documentation

Constants

SENSITIVE