Certificate Search
This section documents the structure and fields available in TLS certificate data. Each certificate record contains comprehensive metadata including subject and issuer information, validity periods, cryptographic details, and security extensions.
Searchable Fields
The following fields can only be searched on the Professional, Enterprise, and Ultimate plans.
| Field Name | Type | Field semantics, features, & notes |
|---|---|---|
| authority.key_id | text | Unique identifier of the CA's signing key |
| ext_key_usage | text | Extended key usage restrictions and permitted applications |
| issuer.c | text | Two-letter ISO country code of the Certificate Authority |
| issuer.cn | keyword | Common name of the Certificate Authority that issued the certificate |
| issuer.dn | keyword | Complete distinguished name of the Certificate Authority |
| issuer.o | keyword | Organization name of the Certificate Authority |
| issuer.ou | keyword | Organizational unit within the Certificate Authority |
| key_usage | text | Permitted cryptographic operations for the certificate's key |
| pubkey.algo | text | Public key algorithm type (RSA, ECDSA, etc.) |
| pubkey.sha256 | text | SHA256 fingerprint of the certificate's public key |
| sans.dns | keyword | DNS names in SAN extension |
| sans.dns_count | integer | Number of DNS names listed in the Subject Alternative Names extension |
| sha1 | text | SHA1 hash fingerprint of the entire certificate |
| sha256 | text | SHA256 hash fingerprint of the entire certificate |
| sha256_tbs_noct | text | SHA256 hash of the certificate's To-Be-Signed portion excluding Certificate Transparency extensions |
| signature_algo | text | Cryptographic algorithm used to sign the certificate |
| source | text | Origin or collection method used to obtain the certificate |
| subject.c | text | Two-letter ISO country code of the certificate subject |
| subject.cn | keyword | Common name, typically the domain name or entity identifier |
| subject.dn | keyword | Complete distinguished name containing all subject identity attributes |
| subject.key_id | text | Unique identifier for the subject's public key |
| subject.l | text | Locality or city name of the certificate subject |
| subject.o | keyword | Organization name that owns the certificate |
| subject.st | text | State or province name of the certificate subject |
| tags | text | Metadata labels or categories applied to the certificate record |
| valid.days | integer | Number of days the certificate is valid for |
| valid.from | datetime | Start date and time when the certificate becomes valid |
| valid.seconds | integer | Number of seconds the certificate remains valid |
| valid.to | datetime | End date and time when the certificate expires |