Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

TechLibrary
Navigation

show system certificate

Syntax

show system certificate <certificate-id>

Release Information

Command introduced before Junos OS Release 7.4.

Command introduced in Junos OS Release 11.1 for the QFX Series.

Description

(Encryption interface on M Series, T Series routers, and QFX Series switches only) Display installed certificates signed by the Juniper Networks certificate authority.

Options

none

Display all installed certificates signed by the Juniper Networks certificate authority.

certificate-id

(Optional) Display the details of a particular certificate.

Required Privilege Level

maintenance

List of Sample Output

show system certificate
show system certificate (QFX Series)

Output Fields

Table 1 lists the output fields for the show system certificate command. Output fields are listed in the approximate order in which they appear.

Table 1: show system certificate Output Fields

Field Name

Field Description

Certificate identifier

Unique identifier associated with a certificate. The certificate identifier is the common name of the subject.

Issuer

Subject

Information about the certificate issuer and the distinguished name (DN) of the issuer, respectively:

  • Organization—Name of the owner’s organization.
  • Organizational unit—Name of the owner's department.
  • Country—Two-character country code in which the owner's system is located.
  • State—State in the USA in which the owner is using the certificate.
  • Locality—City in which the owner’s system is located.
  • Common name—Name of the owner of the certificate.
  • E-mail address—E-mail address of the owner of the certificate.

Validity

When a certificate is valid.

Signature algorithm

Encryption algorithm applied to the installed certificate.

Public key algorithm

Encryption algorithm applied to the public key.

Sample Output

show system certificate

user@host> show system certificate 
Certificate identifier: Dallas-v3
  Issuer: 
Organization: Juniper Networks, Organizational unit: Juniper CA, 
Country:  US, State: CA, Locality: Sunnyvale, Common name: Dallas CA, 
E-mail address:ca@juniper.net
  Subject: 
  Organization: Juniper Networks, Organizational unit: Juniper CA, 
Country: US, State: CA, Locality: Sunnyvale, Common name: Dallas-v3, 
E-mail address:ca@juniper.net
Validity:
 Not before: Mar 13 03:23:25 2004 GMT
  Not after: Mar 24 03:23:25 2014 GMT
Signature algorithm: sha1WithRSAEncryption
Public key algorithm: dsaEncryption

show system certificate (QFX Series)

user@host> show system certificate 
Certificate identifier: Dallas-v3
  Issuer: 
Organization: Juniper Networks, Organizational unit: Juniper CA, 
Country:  US, State: CA, Locality: Sunnyvale, Common name: Dallas CA, 
E-mail address:ca@juniper.net
  Subject: 
  Organization: Juniper Networks, Organizational unit: Juniper CA, 
Country: US, State: CA, Locality: Sunnyvale, Common name: Dallas-v3, 
E-mail address:ca@juniper.net
Validity:
 Not before: Mar 13 03:23:25 2004 GMT
  Not after: Mar 24 03:23:25 2014 GMT
Signature algorithm: sha1WithRSAEncryption
Public key algorithm: dsaEncryption

Published: 2014-07-23

Supported Platforms

Published: 2014-07-23

Previous Page Next Page