iRules Feature Highlight: X.509 Commands

We have recently updated the iRules api documentation to flesh out all of the events and examples for the iRules commands that have been implemented to manipulate X.509 certificates.

The available X509 iRules commands may be found here: iRules Reference: X509 and include:

• X509::cert_fields - Returns a list of fields to be added to HTTP headers for ModSSL behavior. 
• X509::extensions - Returns the X509 extensions set on an X509 certificate.
• X509::hash - Returns the MD5 hash (fingerprint) of an X509 certificate.
• X509::issuer - Returns the issuer of an X509 certificate.
• X509::not_valid_after - Returns the not-valid-after date of an X509 certificate.
• X509::not_valid_before - Returns the not-valid-before date of an X509 certificate.
• X509::serial_number - Returns the serial number of an X509 certificate.
• X509::signature_algorithm - Returns the signature algorithm of an X509 certificate.
• X509::subject - Returns the subject of an X509 certificate.
• X509::subject_public_key - Returns the subject’s public key of an X509 certificate.
• X509::subject_public_key_RSA_bits - Returns the size of the subject’s public RSA key of an X509 certificate.
• X509::subject_public_key_type - Returns the subject’s public key type of an X509 certificate.
• X509::verify_cert_error_string - Returns an X509 certificate error string.
• X509::version - Returns the version number of an X509 certificate.
• X509::whole - Returns an X509 certificate in PEM format.