Login
      Contents x
      Create CA
        • Print
        • PDF
        Contents

        Create CA

          • Print
          • PDF
          Article Summary

          Summary

          Create a CA.

          You can specify a parent CA for root and intermediate CAs and create the intermediate CA for a direct signature's CA.

          POST https://pca.apigw.ntruss.com/api/v1/ca

          Request

          Request parameters

          ParameterTypeDescription
          issuerTagStringParent CA's caTag
          caTypeString (Required)Type of CA to create (PRIVATE_ROOT, PRIVATE_SUB)

          Request body

          {
    "alias": string,
    "memo": string,
    "keyType": string,
    "period": string,
    "x509Parameters": {
        "commonName": string,
        "altName": string,
        "ip": string,
        "country": string,
        "organization": string,
        "organizationUnit": string,
        "locality": string,
        "stateProvince": string
    }
}
          ParameterTypeDescription
          aliasString (Required)CA name
          memoString (Required)CA memo
          keyTypeString (Required)Key type (RSA2048, RSA4096, EC256, EC521)
          periodString (Required)Validity period (Daily, up to 3,650 days)
          commonNameString (Required)Common name
          altNameString (Required)DNS/Email SANs
          ipString (Required)IP SANs
          countryString (Required)Standard country code (ISO3166-1, Alpha-2)
          localityString (Required)City
          stateProvinceString (Required)Detailed address
          organizationString (Required)Organization
          organizationUnitString (Required)Department

          Response

          Response body

          {
    "caInfo": {
        "signingCount": long,
        "caType": string,
        "caId": long,
        "statusUpdateDate": string,
        "destroyDate": string,
        "alias": string,
        "memo": string,
        "urlInfo": {
            "ocsp": [string],
            "crl": [string],
            "ca": [string]
        },
        "caTag": string,
        "rgstDate": long,
        "status": string
    },
    "caCertInfo": {
        "commonName": string,
        "country": string,
        "issuerName": string,
        "notAfterDate": long,
        "publicKeyAlgorithm": string,
        "notBeforeDate": long,
        "locality": string,
        "stateProvince": string,
        "organizationUnit": string,
        "certPem": string,
        "chainPem": string,
        "signatureAlgorithm": string,
        "serialNo": string,
        "caCertId": long,
        "organization": string
    }
}
          ParameterTypeDescription
          signingCountlongNo. of certificates signed by CA
          caTypeStringCA type (PRIVATE_ROOT, PRIVATE_SUB)
          caIdlongCA identifier
          rgstDatelongRegistration date (timestamp)
          statusUpdateDateStringRecent status change date (timestamp)
          destroyDateStringDeletion date (timestamp)
          aliasStringCA name
          memoStringCA memo
          ocspStringOCSP url
          crlStringCRL URL
          caStringCA URL
          statusStringCA status (ACTIVE, PENDING, DEACTIVATED, DESTROYING)
          commonNameStringCommon name
          countryStringStandard country code (ISO3166-1, Alpha-2)
          issuerNameStringIssued CA name
          notAfterDatelongCertification expiration date (timestamp)
          publicKeyAlgorithmStringEncryption algorithm
          notBeforeDatelongCertification validity start date (timestamp)
          localityStringCity
          stateProvinceStringState/Province
          organizationStringOrganization
          organizationUnitStringDepartment
          certPemStringCA certificate (PEM)
          chainPemStringCertification chain (PEM)
          signatureAlgorithmStringSigning algorithm
          serialNoStringCertification serial number
          caCertIdlongCertification identifier

          Authorization requirements

          createCA

          Was this article helpful?
          What's Next
          Change password!
          Changing your password will log you out immediately. Use the new password to log back in.
          Change profile
          Success!
          First name must have atleast 2 characters. Numbers and special characters are not allowed.
          Last name must have atleast 1 characters. Numbers and special characters are not allowed.
          Enter a valid email
          Enter a valid password
          Your profile has been successfully updated.
          Logout