LoginSignup
0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?

More than 1 year has passed since last update.

@tyrone-viciedo

PowerShellで証明書の中身データ(不規則な文字列)からthumbprint(サムプリント・指紋)有効期限・発行者などを取り出す

Last updated at Posted at 2023-11-22

どんな人向けか

証明書のテキストファイルから証明書の発行者情報、サムプリント、有効期限などをPowerShellコマンドで取得したい方向け
具体的には
以下の画像の
-----BEGIN CERTIFICATE-----から-----BEGIN CERTIFICATE-----までにある不規則な文字列からサムプリント、有効期限、発行者情報などをpowershellで取得する。

image.png
画像は以下から引用

プログラム

.今回使うクライアント証明書(kingoftime)
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
main.ps1
# 証明書の文字列データ
$Settingcertraw = 'MIIF0TCCBLmgAwIBAgIQB8CRaQmqZ3HvzF6aPKOGtDANBgkqhkiG9w0BAQsFADA8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'

$Settingpfx= New-Object System.Security.Cryptography.X509Certificates.X509Certificate2Collection
$Settingpfx.Import([System.Convert]::FromBase64String($Settingcertraw),$null,[System.Security.Cryptography.X509Certificates.X509KeyStorageFlags]::Exportable)

foreach($pfx in $Settingpfx){
    $pfx.Subject# 証明書の発行者情報
    $pfx.Thumbprint # 証明書のサムプリント
    $pfx.NotAfter # 証明書の有効期限
}
実行結果
CN=s3.ta.kingoftime.jp
2F13CE7702B39565BE8043DC332CDAEBC6F4ADD4

※今回はクライアント側の証明書なので有効期限は記述されてません。サーバ側の証明書は有効期限が出ます。
ほかにも証明書情報を取り出せそうなので、デバッグ機能などで確かめてみてください。

参考文献

0
0
0

Register as a new user and use Qiita more conveniently

  1. You get articles that match your needs
  2. You can efficiently read back useful information
  3. You can use dark theme
What you can do with signing up
Sign upLogin
0
0

Delete article

Deleted articles cannot be recovered.

Draft of this article would be also deleted.

Are you sure you want to delete this article?