LogoCloudflare API

Origin CA Certificates

OriginCACertificates

Methods

list(, ):
V4PagePaginationArray
<
OriginCACertificate
>
get/certificates

List all existing Origin CA certificates for a given zone. You can use an Origin CA Key as your User Service Key or an API token when calling this endpoint (see above).

get(, ):
OriginCACertificate
get/certificates/{certificate_id}

Get an existing Origin CA certificate by its serial number. You can use an Origin CA Key as your User Service Key or an API token when calling this endpoint (see above).

create(, ):
OriginCACertificate
post/certificates

Create an Origin CA certificate. You can use an Origin CA Key as your User Service Key or an API token when calling this endpoint (see above).

Security

Used when interacting with the Origin CA certificates API. View/change your key.

Example: X-Auth-User-Service-Key: v1.0-144c9defac04969c7bfad8ef-631a41d003a32d25fe878081ef365c49503f7fada600da935e2851a1c7326084b85cbf6429c4b859de8475731dc92a9c329631e6d59e6c73da7b198497172b4cefe071d90d0f5d2719

Parameters
body:
OriginCACertificateCreateParams
csr: string

The Certificate Signing Request (CSR). Must be newline-encoded.

hostnames: Array<string>

Array of hostnames or wildcard names (e.g., *.example.com) bound to the certificate.

request_type:
CertificateRequestType

Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers).

requested_validity?:
RequestValidity

The number of days for which the certificate should be valid.

Returns
OriginCACertificate
csr: string

The Certificate Signing Request (CSR). Must be newline-encoded.

hostnames: Array<string>

Array of hostnames or wildcard names (e.g., *.example.com) bound to the certificate.

request_type:
CertificateRequestType

Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers).

requested_validity:
RequestValidity
(default: 5475)

The number of days for which the certificate should be valid.

id?: string
(maxLength: 32)

Identifier.

certificate?: string

The Origin CA certificate. Will be newline-encoded.

expires_on?: string

When the certificate will expire.

Request example
200Example
delete(, ):
OriginCACertificateDeleteResponse
delete/certificates/{certificate_id}

Revoke an existing Origin CA certificate by its serial number. You can use an Origin CA Key as your User Service Key or an API token when calling this endpoint (see above).

Domain types

OriginCACertificate{…}