Table: oci_certificates_management_certificate_version - Query OCI Certificates Management Certificate Versions using SQL
The Oracle Cloud Infrastructure (OCI) Certificates Management service helps you manage SSL/TLS certificates for your services. It provides a centralized way to upload and manage certificates, including the ability to monitor certificates for expiration. The Certificates Management service supports both Oracle-managed certificates and customer-managed certificates.
Table Usage Guide
The oci_certificates_management_certificate_version table provides insights into each version of a certificate in OCI Certificates Management. As a security administrator, you can explore certificate-specific details through this table, including certificate data, creation time, and associated metadata. Use it to uncover information about certificates, such as their validity period, the entities they are issued to, and the entities they are issued by.
Examples
Basic info
Explore the details of each certificate version in your Oracle Cloud Infrastructure, including its stages, validity, and revocation status. This can be useful in managing your certificates and ensuring they are up to date and secure.
select certificate_id, version_number, stages, serial_number, issuer_ca_version_number, version_name, subject_alternative_names, time_of_deletion, validity, revocation_statusfrom oci_certificates_management_certificate_version;select certificate_id, version_number, stages, serial_number, issuer_ca_version_number, version_name, subject_alternative_names, time_of_deletion, validity, revocation_statusfrom oci_certificates_management_certificate_version;Get all certificate versions
Discover the different versions of your certificates, including details such as stages, validity, and revocation status. This query is useful for maintaining an overview of your certificate statuses and identifying any potential issues or changes that might impact your system's security.
select cmcv.certificate_id, cmcv.version_number, cmcv.stages, cmcv.serial_number, cmcv.issuer_ca_version_number, cmcv.version_name, cmcv.subject_alternative_names, cmcv.time_of_deletion, cmcv.validity, cmcv.revocation_statusfrom oci_certificates_management_certificate_version cmcv inner join oci_certificates_management_certificate cmc on cmcv.certificate_id = cmc.id;select cmcv.certificate_id, cmcv.version_number, cmcv.stages, cmcv.serial_number, cmcv.issuer_ca_version_number, cmcv.version_name, cmcv.subject_alternative_names, cmcv.time_of_deletion, cmcv.validity, cmcv.revocation_statusfrom oci_certificates_management_certificate_version cmcv inner join oci_certificates_management_certificate cmc on cmcv.certificate_id = cmc.id;Count versions by certificate
Explore the number of versions associated with each certificate to effectively manage and track certificate updates. This can be particularly useful in maintaining security standards and ensuring optimal system performance.
select certificate_id, count(version_number)from oci_certificates_management_certificate_versiongroup by certificate_id;select certificate_id, count(version_number)from oci_certificates_management_certificate_versiongroup by certificate_id;List certificate versions created in the last 30 days
Explore which certificate versions were created in the last month. This can be helpful in tracking recent changes and additions to your certificates, ensuring you're up-to-date on your security configurations.
select certificate_id, version_number, time_of_deletion, time_created, serial_numberfrom oci_certificates_management_certificate_versionwhere time_created >= now() - interval '30' day;select certificate_id, version_number, time_of_deletion, time_created, serial_numberfrom oci_certificates_management_certificate_versionwhere time_created >= datetime('now', '-30 day');Schema for oci_certificates_management_certificate_version
| Name | Type | Operators | Description |
|---|---|---|---|
| _ctx | jsonb | Steampipe context in JSON form. | |
| certificate_id | text | = | The OCID of the certificate. |
| issuer_ca_version_number | bigint | The version number of the issuing certificate authority (CA). | |
| revocation_status | jsonb | Revocation details for the certificate. | |
| serial_number | text | A unique certificate identifier used in certificate revocation tracking, formatted as octets. | |
| sp_connection_name | text | =, !=, ~~, ~~*, !~~, !~~* | Steampipe connection name. |
| sp_ctx | jsonb | Steampipe context in JSON form. | |
| stages | jsonb | A list of stages of this entity. | |
| subject_alternative_names | jsonb | A list of subject alternative names. | |
| tenant_id | text | =, !=, ~~, ~~*, !~~, !~~* | The OCID of the Tenant in which the resource is located. |
| time_created | timestamp with time zone | Time that the Certificate Version was created. | |
| time_of_deletion | timestamp with time zone | An optional property indicating when to delete the certificate version. | |
| title | text | Title of the resource. | |
| validity | jsonb | Certificate validity details. | |
| version_name | text | The name of the certificate version. When the value is not null, a name is unique across versions of a given certificate. | |
| version_number | bigint | = | The version number of the certificate. |
Export
This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.
You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:
/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- ociYou can pass the configuration to the command with the --config argument:
steampipe_export_oci --config '<your_config>' oci_certificates_management_certificate_version