wokamoto/chk-certificates.sh

## chk-certificates.sh
#!/bin/bash
LF=$(printf '\\\012_')
LF=${LF%_}
TAB=$'\t'

_ssl_keys=$(find /etc/nginx/conf.d/ -type f -name '*.conf' | xargs grep ssl_certificate | grep -v ssl_certificate_key | sed 's/[#:;]//g' | sort | uniq | awk '{print $1,$3}')
IFS=$LF
for _ssl_key in ${_ssl_keys}; do
  _conf_file=$(echo ${_ssl_key} | awk '{print $1}')
  _cert_key=$(echo ${_ssl_key} | awk '{print $2}')
  if [ -f ${_cert_key} ]; then
    echo "Conf : ${TAB}${_conf_file}"
    echo "Key : ${TAB}${_cert_key}"
    cat ${_cert_key} | openssl x509 -text | grep 'Subject:' | sed "s/^[${TAB} ][${TAB} ]*//g" | awk -F: '{print $1" : ",$2}'
    cat ${_cert_key} | openssl x509 -text | grep 'DNS' | sed 's/,/'"$LF"'/g' | sed "s/^[${TAB} ][${TAB} ]*//g" | awk -F: '{print $1" : ",$2}'
    cat ${_cert_key} | openssl x509 -text | grep 'Not \(Before\|After\)' | sed 's/Not \(Before\|After \):/\1,/g' | sed "s/^[${TAB} ][${TAB} ]*//g" | awk -F, '{print $1" : ",$2}'
    echo
  fi
done

## file1.txt
# bin/chk-certificates.sh
Conf :  /etc/nginx/conf.d/dogmap.jp-ssl.conf
Key :   /etc/letsencrypt/live/dogmap.jp/fullchain.pem
Subject :   CN=dogmap.jp
DNS :  dogmap.jp
DNS :  www.dogmap.jp
Before :   Jun 11 15:00:00 2017 GMT
After  :   Sep  9 15:00:00 2017 GMT

Conf :  /etc/nginx/conf.d/dogmap.jp-ssl.conf
Key :   /etc/letsencrypt/live/www.dogmap.jp/fullchain.pem
Subject :   CN=www.dogmap.jp
DNS :  www.dogmap.jp
Before :   May  7 15:00:00 2017 GMT
After  :   Aug  5 15:00:00 2017 GMT

Conf :  /etc/nginx/conf.d/lab.dogmap.jp-ssl.conf
Key :   /etc/letsencrypt/live/lab.dogmap.jp/fullchain.pem
Subject :   CN=lab.dogmap.jp
DNS :  lab.dogmap.jp
Before :   May 21 15:00:00 2017 GMT
After  :   Aug 19 15:00:00 2017 GMT

Conf :  /etc/nginx/conf.d/lets.ninja-ssl.conf
Key :   /etc/letsencrypt/live/lets.ninja/fullchain.pem
Subject :   CN=lets.ninja
DNS :  lets.ninja
Before :   May 14 15:00:00 2017 GMT
After  :   Aug 12 15:00:00 2017 GMT

Conf :  /etc/nginx/conf.d/lets.ninja-ssl.conf
Key :   /etc/letsencrypt/live/www.lets.ninja/fullchain.pem
Subject :   CN=www.lets.ninja
DNS :  www.lets.ninja
Before :   May  7 15:00:00 2017 GMT
After  :   Aug  5 15:00:00 2017 GMT

Conf :  /etc/nginx/conf.d/shot.dogmap.jp-ssl.conf
Key :   /etc/letsencrypt/live/shot.dogmap.jp/fullchain.pem
Subject :   CN=shot.dogmap.jp
DNS :  shot.dogmap.jp
Before :   May 21 15:00:00 2017 GMT
After  :   Aug 19 15:00:00 2017 GMT

Conf :  /etc/nginx/conf.d/test.dogmap.jp-ssl.conf
Key :   /etc/letsencrypt/live/test.dogmap.jp/fullchain.pem
Subject :   CN=test.dogmap.jp
DNS :  test.dogmap.jp
Before :   May 21 15:00:00 2017 GMT
After  :   Aug 19 15:00:00 2017 GMT
	#!/bin/bash
	LF=$(printf '\\\012_')
	LF=${LF%_}
	TAB=$'\t'

	_ssl_keys=$(find /etc/nginx/conf.d/ -type f -name '*.conf' \| xargs grep ssl_certificate \| grep -v ssl_certificate_key \| sed 's/[#:;]//g' \| sort \| uniq \| awk '{print $1,$3}')
	IFS=$LF
	for _ssl_key in ${_ssl_keys}; do
	_conf_file=$(echo ${_ssl_key} \| awk '{print $1}')
	_cert_key=$(echo ${_ssl_key} \| awk '{print $2}')
	if [ -f ${_cert_key} ]; then
	echo "Conf : ${TAB}${_conf_file}"
	echo "Key : ${TAB}${_cert_key}"
	cat ${_cert_key} \| openssl x509 -text \| grep 'Subject:' \| sed "s/^[${TAB} ][${TAB} ]*//g" \| awk -F: '{print $1" : ",$2}'
	cat ${_cert_key} \| openssl x509 -text \| grep 'DNS' \| sed 's/,/'"$LF"'/g' \| sed "s/^[${TAB} ][${TAB} ]*//g" \| awk -F: '{print $1" : ",$2}'
	cat ${_cert_key} \| openssl x509 -text \| grep 'Not \(Before\\|After\)' \| sed 's/Not \(Before\\|After \):/\1,/g' \| sed "s/^[${TAB} ][${TAB} ]*//g" \| awk -F, '{print $1" : ",$2}'
	echo
	fi
	done
	# bin/chk-certificates.sh
	Conf : /etc/nginx/conf.d/dogmap.jp-ssl.conf
	Key : /etc/letsencrypt/live/dogmap.jp/fullchain.pem
	Subject : CN=dogmap.jp
	DNS : dogmap.jp
	DNS : www.dogmap.jp
	Before : Jun 11 15:00:00 2017 GMT
	After : Sep 9 15:00:00 2017 GMT

	Conf : /etc/nginx/conf.d/dogmap.jp-ssl.conf
	Key : /etc/letsencrypt/live/www.dogmap.jp/fullchain.pem
	Subject : CN=www.dogmap.jp
	DNS : www.dogmap.jp
	Before : May 7 15:00:00 2017 GMT
	After : Aug 5 15:00:00 2017 GMT

	Conf : /etc/nginx/conf.d/lab.dogmap.jp-ssl.conf
	Key : /etc/letsencrypt/live/lab.dogmap.jp/fullchain.pem
	Subject : CN=lab.dogmap.jp
	DNS : lab.dogmap.jp
	Before : May 21 15:00:00 2017 GMT
	After : Aug 19 15:00:00 2017 GMT

	Conf : /etc/nginx/conf.d/lets.ninja-ssl.conf
	Key : /etc/letsencrypt/live/lets.ninja/fullchain.pem
	Subject : CN=lets.ninja
	DNS : lets.ninja
	Before : May 14 15:00:00 2017 GMT
	After : Aug 12 15:00:00 2017 GMT

	Conf : /etc/nginx/conf.d/lets.ninja-ssl.conf
	Key : /etc/letsencrypt/live/www.lets.ninja/fullchain.pem
	Subject : CN=www.lets.ninja
	DNS : www.lets.ninja
	Before : May 7 15:00:00 2017 GMT
	After : Aug 5 15:00:00 2017 GMT

	Conf : /etc/nginx/conf.d/shot.dogmap.jp-ssl.conf
	Key : /etc/letsencrypt/live/shot.dogmap.jp/fullchain.pem
	Subject : CN=shot.dogmap.jp
	DNS : shot.dogmap.jp
	Before : May 21 15:00:00 2017 GMT
	After : Aug 19 15:00:00 2017 GMT

	Conf : /etc/nginx/conf.d/test.dogmap.jp-ssl.conf
	Key : /etc/letsencrypt/live/test.dogmap.jp/fullchain.pem
	Subject : CN=test.dogmap.jp
	DNS : test.dogmap.jp
	Before : May 21 15:00:00 2017 GMT
	After : Aug 19 15:00:00 2017 GMT