What is the purpose of the certificates, like caim-srv, in 

/opt/CA/VirtualAppliance/custom/wildfly-ssl-certificates?

How are the certs used and how can the expiration dates be verified?

IGA vAPP.

The ../wildfly-ssl-certificates are the out-of-the-box certificates for vAPP's (IGA Virtual Appliance's) built-in Apache web server/proxy/load-balancer used for accessing Identity Manager, Identity Portal, and Identity Governance on their default ports. 

The certificates typically have a long life (approximately 10 years) and are replaced as needed by normal updates/cumulative releases, so they are not typically something to be concerned about.

Just in case, if you want to see the expiration date you can look for the "valid from...until..." section of the certificate listing by running the following keytool command from /opt/CA/VirtualAppliance/custom/wildfly-ssl-certificates.

       keytool -v -list -keystore caim-srv

When prompted for the password use the default password: changeit

In the resulting output look for a line like this:

Valid from: Wed Nov 02 08:30:39 EDT 2022 until: Sat Oct 30 08:30:39 EDT 2032