API Guide

ManualsBrandsDell ManualsAccess PlatformsEMC Networking MX9116n

1071

show crypto crl

Displays the list of installed Certificate Revocation List files.

Syntax

show crypto crl [crl-filename]

Parameters

● crl-filename — (Optional) Enter a CRL filename with the .pem extension.

Default Not configured

Command Mode EXEC

Usage

Information

Use the show crypto crl command to verify the CRLs installed on the switch. In the show output:

● Manually installed CRLs are installed using the crypto crl install command.

● Downloaded CRLs are automatically installed from a configured CDP or when you install a CA

certificate with a specified CDP.

Example

OS10# show crypto crl

--------------------------------------

| Manually installed CRLs |

--------------------------------------

COMODO_Certification_Authority.0.crl.pem

--------------------------------------

| Downloaded CRLs |

--------------------------------------

OS10# show crypto crl COMODO_Certification_Authority.0.crl.pem

Certificate Revocation List (CRL):

Version 2 (0x1)

Signature Algorithm: sha1WithRSAEncryption

Issuer: /C=GB/ST=Greater Manchester/L=Salford/O=COMODO CA Limited/

CN=COMODO Certification

Authority

Last Update: May 8 20:34:21 2019 GMT

Next Update: May 12 20:34:21 2019 GMT

CRL extensions:

X509v3 Authority Key Identifier:

keyid:0B:58:E5:8B:C6:4C:15:37:A4:40:A9:30:A9:21:BE:47:36:5A:56:FF

X509v3 CRL Number:

2904

No Revoked Certificates.

Signature Algorithm: sha1WithRSAEncryption

5b:77:52:c0:a0:4e:77:be:4a:c4:6a:7e:92:98:2e:a1:6b:3c:

ad:2d:ac:db:0a:19:1d:a3:56:98:7f:d6:93:f3:1d:4b:61:40:

c3:e0:40:45:0b:41:4b:66:87:35:2b:3a:4c:f3:f1:7e:44:7e:

fe:7f:51:5d:17:ee:b3:4c:15:75:a6:a0:7b:2e:b1:92:3e:b6:

71:a8:01:8d:78:ac:80:3b:16:f2:f1:a8:fd:09:68:9f:7e:09:

55:c6:80:2c:2f:e7:f3:54:51:94:3a:d8:b4:d6:00:3f:63:b1:

19:f3:42:2a:d2:c4:3b:de:c4:4d:ad:f0:72:c5:b4:25:51:e5:

3c:76:8b:97:3c:db:fe:3f:7f:41:d2:d9:aa:7f:98:90:6b:cf:

27:53:0e:66:83:8e:cc:81:ef:6a:e5:cd:c2:f1:e2:ea:84:4f:

73:bb:90:5a:b3:19:a3:50:6a:c7:b3:99:e4:09:fd:56:99:83:

3a:15:93:b0:4a:49:28:78:69:85:de:fc:06:cc:b9:a5:5b:d9:

4a:b0:46:90:ce:94:3a:9c:f3:04:e4:d7:98:36:29:a8:8b:fe:

72:26:b0:fd:39:5e:14:f5:00:6d:0e:4f:ec:d4:a5:ca:4f:e1:

d9:4f:5a:37:21:e3:a2:fb:80:db:cd:68:0b:a0:fa:58:0d:5e:

40:e1:e4:1c

Supported

Releases

10.5.0 or later

Example: Configure RADIUS over TLS with X.509v3 certificates

This example shows how to install a trusted X.509v3 CA and a host certificate-key pair that supports RADIUS over TLS

authentication.

Security

1079