Experimental

Download 116
Last updated Dec 22, 2024

sonar-check-cert-batch

Check SSL certificates for dst_ip:dst_port combinations from input records with LRU caching

sonar-check-cert-batch [timeout=NUM{m|s}] [cache-size=CACHE-SIZE]
timeout=NUM{m|s}
Connection timeout in seconds (default: 10)
cache-size=CACHE-SIZE
Maximum number of cached certificate results (default: 1000)

Output Fields

FieldTypeNameDescription
cert_errorStringErrorError message if check failed
cert_subjectStringCertificate subjectCertificate subject DN
cert_issuerStringCertificate issuerCertificate issuer DN
cert_san_domainsStringSAN domainsSubject Alternative Names
cert_is_trustedBoolIs trustedWhether certificate is trusted by JDK trust store
cert_is_expiredBoolIs expiredWhether certificate is expired
cert_not_beforeDateValid fromCertificate valid from date
cert_not_afterDateValid untilCertificate expiration date
cert_days_remainingLongDays remainingDays until expiration
cert_key_algorithmStringKey algorithmPublic key algorithm
cert_signature_algorithmStringSignature algorithmCertificate signature algorithm
cert_key_sizeIntegerKey sizeKey size in bits
cert_chain_lengthIntegerChain lengthCertificate chain length
cert_serial_numberStringSerial numberCertificate serial number
cert_cachedBoolCachedWhether result was from cache