This plugin provides information about X509 CRL accessible via file.
- Clone the repository
git clone git@github.com:jcgonnard/telegraf-input-x590crl.git
- Build the plugin
go build -o x509_crl cmd/main.go
- Call it from telegraf
[[inputs.execd]]
command = ["/path/to/x509_crl", "-config", "/path/to/x509_crl.conf"]
signal = "none"
# Reads metrics from a X509 CRL
[[inputs.x509_crl]]
## List certificate sources
sources = ["/etc/nginx/ssl/mycrl.pem"]
- x509_crl
- tags:
- source - source of the CRL
- issuer - the CA's DN that generated the CRL
- version
- fields:
- startdate (int, seconds) - when the CRL was generated
- enddate (int, seconds) - when the CRL has to be renewed
- expiry (int, seconds) - time to expiration - can be negative when expired
- has_expired (boolean) - is it still valid
- revoked_certificates (int) - number of revoked certificated
- tags:
x509_crl,issuer:CN=ac,O=Alsace\ Reseau\ Neutre,L=Strasbourg,ST=Alsace,C=FR,source:/tmp/x509crl_tmp_file241751718,version:0 end_date:1583509523i,has_expired:false,revoked_certificates:0i,expiry:42i,start_date:1580917523i 1563582256000000000