{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "$id": "https://raw.githubusercontent.com/api-evangelist/amazon-private-ca/refs/heads/main/json-schema/amazon-private-ca-import-certificate-authority-certificate-request-schema.json",
  "title": "ImportCertificateAuthorityCertificateRequest",
  "description": "ImportCertificateAuthorityCertificateRequest schema from Amazon Private CA API",
  "type": "object",
  "properties": {
    "CertificateAuthorityArn": {
      "allOf": [
        {
          "$ref": "#/components/schemas/Arn"
        },
        {
          "description": "<p>The Amazon Resource Name (ARN) that was returned when you called <a href=\"https://docs.aws.amazon.com/privateca/latest/APIReference/API_CreateCertificateAuthority.html\">CreateCertificateAuthority</a>. This must be of the form: </p> <p> <code>arn:aws:acm-pca:<i>region</i>:<i>account</i>:certificate-authority/<i>12345678-1234-1234-1234-123456789012</i> </code> </p>"
        }
      ]
    },
    "Certificate": {
      "allOf": [
        {
          "$ref": "#/components/schemas/CertificateBodyBlob"
        },
        {
          "description": "The PEM-encoded certificate for a private CA. This may be a self-signed certificate in the case of a root CA, or it may be signed by another CA that you control."
        }
      ]
    },
    "CertificateChain": {
      "allOf": [
        {
          "$ref": "#/components/schemas/CertificateChainBlob"
        },
        {
          "description": "<p>A PEM-encoded file that contains all of your certificates, other than the certificate you're importing, chaining up to your root CA. Your Amazon Web Services Private CA-hosted or on-premises root certificate is the last in the chain, and each certificate in the chain signs the one preceding. </p> <p>This parameter must be supplied when you import a subordinate CA. When you import a root CA, there is no chain.</p>"
        }
      ]
    }
  },
  "required": [
    "CertificateAuthorityArn",
    "Certificate"
  ]
}