Cloudflare v6.10.1 published on Wednesday, Oct 22, 2025 by Pulumi
cloudflare.getOriginCaCertificate
Example Usage
import * as pulumi from "@pulumi/pulumi";
import * as cloudflare from "@pulumi/cloudflare";
const exampleOriginCaCertificate = cloudflare.getOriginCaCertificate({
certificateId: "023e105f4ecef8ad9ca31a8372d0c353",
});
import pulumi
import pulumi_cloudflare as cloudflare
example_origin_ca_certificate = cloudflare.get_origin_ca_certificate(certificate_id="023e105f4ecef8ad9ca31a8372d0c353")
package main
import (
"github.com/pulumi/pulumi-cloudflare/sdk/v6/go/cloudflare"
"github.com/pulumi/pulumi/sdk/v3/go/pulumi"
)
func main() {
pulumi.Run(func(ctx *pulumi.Context) error {
_, err := cloudflare.LookupOriginCaCertificate(ctx, &cloudflare.LookupOriginCaCertificateArgs{
CertificateId: pulumi.StringRef("023e105f4ecef8ad9ca31a8372d0c353"),
}, nil)
if err != nil {
return err
}
return nil
})
}
using System.Collections.Generic;
using System.Linq;
using Pulumi;
using Cloudflare = Pulumi.Cloudflare;
return await Deployment.RunAsync(() =>
{
var exampleOriginCaCertificate = Cloudflare.GetOriginCaCertificate.Invoke(new()
{
CertificateId = "023e105f4ecef8ad9ca31a8372d0c353",
});
});
package generated_program;
import com.pulumi.Context;
import com.pulumi.Pulumi;
import com.pulumi.core.Output;
import com.pulumi.cloudflare.CloudflareFunctions;
import com.pulumi.cloudflare.inputs.GetOriginCaCertificateArgs;
import java.util.List;
import java.util.ArrayList;
import java.util.Map;
import java.io.File;
import java.nio.file.Files;
import java.nio.file.Paths;
public class App {
public static void main(String[] args) {
Pulumi.run(App::stack);
}
public static void stack(Context ctx) {
final var exampleOriginCaCertificate = CloudflareFunctions.getOriginCaCertificate(GetOriginCaCertificateArgs.builder()
.certificateId("023e105f4ecef8ad9ca31a8372d0c353")
.build());
}
}
variables:
exampleOriginCaCertificate:
fn::invoke:
function: cloudflare:getOriginCaCertificate
arguments:
certificateId: 023e105f4ecef8ad9ca31a8372d0c353
Using getOriginCaCertificate
Two invocation forms are available. The direct form accepts plain arguments and either blocks until the result value is available, or returns a Promise-wrapped result. The output form accepts Input-wrapped arguments and returns an Output-wrapped result.
function getOriginCaCertificate(args: GetOriginCaCertificateArgs, opts?: InvokeOptions): Promise<GetOriginCaCertificateResult>
function getOriginCaCertificateOutput(args: GetOriginCaCertificateOutputArgs, opts?: InvokeOptions): Output<GetOriginCaCertificateResult>def get_origin_ca_certificate(certificate_id: Optional[str] = None,
filter: Optional[GetOriginCaCertificateFilter] = None,
opts: Optional[InvokeOptions] = None) -> GetOriginCaCertificateResult
def get_origin_ca_certificate_output(certificate_id: Optional[pulumi.Input[str]] = None,
filter: Optional[pulumi.Input[GetOriginCaCertificateFilterArgs]] = None,
opts: Optional[InvokeOptions] = None) -> Output[GetOriginCaCertificateResult]func LookupOriginCaCertificate(ctx *Context, args *LookupOriginCaCertificateArgs, opts ...InvokeOption) (*LookupOriginCaCertificateResult, error)
func LookupOriginCaCertificateOutput(ctx *Context, args *LookupOriginCaCertificateOutputArgs, opts ...InvokeOption) LookupOriginCaCertificateResultOutput> Note: This function is named LookupOriginCaCertificate in the Go SDK.
public static class GetOriginCaCertificate
{
public static Task<GetOriginCaCertificateResult> InvokeAsync(GetOriginCaCertificateArgs args, InvokeOptions? opts = null)
public static Output<GetOriginCaCertificateResult> Invoke(GetOriginCaCertificateInvokeArgs args, InvokeOptions? opts = null)
}public static CompletableFuture<GetOriginCaCertificateResult> getOriginCaCertificate(GetOriginCaCertificateArgs args, InvokeOptions options)
public static Output<GetOriginCaCertificateResult> getOriginCaCertificate(GetOriginCaCertificateArgs args, InvokeOptions options)
fn::invoke:
function: cloudflare:index/getOriginCaCertificate:getOriginCaCertificate
arguments:
# arguments dictionaryThe following arguments are supported:
- Certificate
Id string - Identifier.
- Filter
Get
Origin Ca Certificate Filter
- Certificate
Id string - Identifier.
- Filter
Get
Origin Ca Certificate Filter
- certificate
Id String - Identifier.
- filter
Get
Origin Ca Certificate Filter
- certificate
Id string - Identifier.
- filter
Get
Origin Ca Certificate Filter
- certificate_
id str - Identifier.
- filter
Get
Origin Ca Certificate Filter
- certificate
Id String - Identifier.
- filter Property Map
getOriginCaCertificate Result
The following output properties are available:
- Certificate string
- The Origin CA certificate. Will be newline-encoded.
- Csr string
- The Certificate Signing Request (CSR). Must be newline-encoded.
- Expires
On string - When the certificate will expire.
- Hostnames List<string>
- Array of hostnames or wildcard names (e.g., *.example.com) bound to the certificate.
- Id string
- Identifier.
- Request
Type string - Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers). Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
- Requested
Validity double - The number of days for which the certificate should be valid. Available values: 7, 30, 90, 365, 730, 1095, 5475.
- Certificate
Id string - Identifier.
- Filter
Get
Origin Ca Certificate Filter
- Certificate string
- The Origin CA certificate. Will be newline-encoded.
- Csr string
- The Certificate Signing Request (CSR). Must be newline-encoded.
- Expires
On string - When the certificate will expire.
- Hostnames []string
- Array of hostnames or wildcard names (e.g., *.example.com) bound to the certificate.
- Id string
- Identifier.
- Request
Type string - Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers). Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
- Requested
Validity float64 - The number of days for which the certificate should be valid. Available values: 7, 30, 90, 365, 730, 1095, 5475.
- Certificate
Id string - Identifier.
- Filter
Get
Origin Ca Certificate Filter
- certificate String
- The Origin CA certificate. Will be newline-encoded.
- csr String
- The Certificate Signing Request (CSR). Must be newline-encoded.
- expires
On String - When the certificate will expire.
- hostnames List<String>
- Array of hostnames or wildcard names (e.g., *.example.com) bound to the certificate.
- id String
- Identifier.
- request
Type String - Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers). Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
- requested
Validity Double - The number of days for which the certificate should be valid. Available values: 7, 30, 90, 365, 730, 1095, 5475.
- certificate
Id String - Identifier.
- filter
Get
Origin Ca Certificate Filter
- certificate string
- The Origin CA certificate. Will be newline-encoded.
- csr string
- The Certificate Signing Request (CSR). Must be newline-encoded.
- expires
On string - When the certificate will expire.
- hostnames string[]
- Array of hostnames or wildcard names (e.g., *.example.com) bound to the certificate.
- id string
- Identifier.
- request
Type string - Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers). Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
- requested
Validity number - The number of days for which the certificate should be valid. Available values: 7, 30, 90, 365, 730, 1095, 5475.
- certificate
Id string - Identifier.
- filter
Get
Origin Ca Certificate Filter
- certificate str
- The Origin CA certificate. Will be newline-encoded.
- csr str
- The Certificate Signing Request (CSR). Must be newline-encoded.
- expires_
on str - When the certificate will expire.
- hostnames Sequence[str]
- Array of hostnames or wildcard names (e.g., *.example.com) bound to the certificate.
- id str
- Identifier.
- request_
type str - Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers). Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
- requested_
validity float - The number of days for which the certificate should be valid. Available values: 7, 30, 90, 365, 730, 1095, 5475.
- certificate_
id str - Identifier.
- filter
Get
Origin Ca Certificate Filter
- certificate String
- The Origin CA certificate. Will be newline-encoded.
- csr String
- The Certificate Signing Request (CSR). Must be newline-encoded.
- expires
On String - When the certificate will expire.
- hostnames List<String>
- Array of hostnames or wildcard names (e.g., *.example.com) bound to the certificate.
- id String
- Identifier.
- request
Type String - Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers). Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
- requested
Validity Number - The number of days for which the certificate should be valid. Available values: 7, 30, 90, 365, 730, 1095, 5475.
- certificate
Id String - Identifier.
- filter Property Map
Supporting Types
GetOriginCaCertificateFilter
Package Details
- Repository
- Cloudflare pulumi/pulumi-cloudflare
- License
- Apache-2.0
- Notes
- This Pulumi package is based on the
cloudflareTerraform Provider.
