ACM / Client / revoke_certificate

revoke_certificate

ACM.Client.revoke_certificate(**kwargs)

Revokes a public ACM certificate. You can only revoke certificates that have been previously exported.

See also: AWS API Documentation

Request Syntax

response = client.revoke_certificate(
    CertificateArn='string',
    RevocationReason='UNSPECIFIED'|'KEY_COMPROMISE'|'CA_COMPROMISE'|'AFFILIATION_CHANGED'|'SUPERCEDED'|'SUPERSEDED'|'CESSATION_OF_OPERATION'|'CERTIFICATE_HOLD'|'REMOVE_FROM_CRL'|'PRIVILEGE_WITHDRAWN'|'A_A_COMPROMISE'
)

Parameters:

• CertificateArn (string) –

  [REQUIRED]

  The Amazon Resource Name (ARN) of the public or private certificate that will be revoked. The ARN must have the following form:

  arn:aws:acm:region:account:certificate/12345678-1234-1234-1234-123456789012

• RevocationReason (string) –

  [REQUIRED]

  Specifies why you revoked the certificate.

Return type:

dict

Returns:

Response Syntax

{
    'CertificateArn': 'string'
}

Response Structure

• (dict) –

  • CertificateArn (string) –

    The Amazon Resource Name (ARN) of the public or private certificate that was revoked.

Exceptions

• ACM.Client.exceptions.ResourceInUseException

• ACM.Client.exceptions.InvalidArnException

• ACM.Client.exceptions.ThrottlingException

• ACM.Client.exceptions.ConflictException

• ACM.Client.exceptions.AccessDeniedException

• ACM.Client.exceptions.ResourceNotFoundException