The command below will display the detailed information of the SSL certificates imported into FortiNAC using the CLI:

FortiNAC # diagnose system server-certificates show all
Press "TAB" to display all the options

Admin UI                            
Local RADIUS Server (EAP) [radius]  
Local RADIUS Server (RadSec)        
Persistent Agent                    
Portal                              
Remote API [remote_api]

fnac2 # diagnose system server-certificates show all 'Local RADIUS Server (EAP) [radius]' --detail 
---------------------------------------------------
Local RADIUS Server (EAP) [radius]
---------------------------------------------------

Type:               : X.509
Version:            : 3
Serial Number:      : [...]
Signature Algorithm: : SHA256withRSA
Issuer:             : CN=radius
Valid From:         : 7/17/25, 4:52 AM
Valid To:           : 7/17/35, 4:52 AM
Subject:            : CN=radius
OCSP URI:           :
CRL URIs            : [...]
SHA1 Fingerprint:   : [...]
Public Key:         : Sun RSA public key, 2048 bits
  params: null

As well as trusted certificates:

FortiNAC # diagnose system trusted-certificates show all 
Press "TAB" to display all the options

General Trusted CA              
Persistent Agent Cert Check     
RADIUS Endpoint Trust (RadSec)  
RADIUS Endpoint Trust [radius]  
WinRM Trusted CA Chain

FortiNAC # diagnose system trusted-certificates show all 'RADIUS Endpoint Trust [radius]' --details
---------------------------------------------------
RADIUS Endpoint Trust [radius]
---------------------------------------------------

Type: : X.509
Version: : 3
Serial Number: : [...]
Signature Algorithm: : SHA256withRSA
Issuer: : CN=radius
Valid From: : 7/21/25, 4:40 AM
Valid To: : 7/21/35, 4:40 AM
Subject: : CN=radius
OCSP URI: :
CRL URIs : []
SHA1 Fingerprint: : [...]
Public Key: : Sun RSA public key, 2048 bits
params: null
modulus: [...]
public exponent: 65537
Usage: :
Extended Usage: :

Related document:

Diagnose commands