/AWS1/CL_ACM=>EXPORTCERTIFICATE()
¶
About ExportCertificate¶
Exports a private certificate issued by a private certificate authority (CA) for use anywhere. The exported file contains the certificate, the certificate chain, and the encrypted private 2048-bit RSA key associated with the public key that is embedded in the certificate. For security, you must assign a passphrase for the private key when exporting it.
For information about exporting and formatting a certificate using the ACM console or CLI, see Export a Private Certificate.
Method Signature¶
IMPORTING¶
Required arguments:¶
IV_CERTIFICATEARN
TYPE /AWS1/ACMARN
/AWS1/ACMARN
¶
An Amazon Resource Name (ARN) of the issued certificate. This must be of the form:
arn:aws:acm:region:account:certificate/12345678-1234-1234-1234-123456789012
IV_PASSPHRASE
TYPE /AWS1/ACMPASSPHRASEBLOB
/AWS1/ACMPASSPHRASEBLOB
¶
Passphrase to associate with the encrypted exported private key.
When creating your passphrase, you can use any ASCII character except #, $, or %.
If you want to later decrypt the private key, you must have the passphrase. You can use the following OpenSSL command to decrypt a private key. After entering the command, you are prompted for the passphrase.
openssl rsa -in encrypted_key.pem -out decrypted_key.pem