import * as pulumi from "@pulumi/pulumi";
export declare class OriginCaCertificate extends pulumi.CustomResource {
    /**
     * Get an existing OriginCaCertificate resource's state with the given name, ID, and optional extra
     * properties used to qualify the lookup.
     *
     * @param name The _unique_ name of the resulting resource.
     * @param id The _unique_ provider ID of the resource to lookup.
     * @param state Any extra arguments used during the lookup.
     * @param opts Optional settings to control the behavior of the CustomResource.
     */
    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: OriginCaCertificateState, opts?: pulumi.CustomResourceOptions): OriginCaCertificate;
    /**
     * Returns true if the given object is an instance of OriginCaCertificate.  This is designed to work even
     * when multiple copies of the Pulumi SDK have been loaded into the same process.
     */
    static isInstance(obj: any): obj is OriginCaCertificate;
    /**
     * The Origin CA certificate. Will be newline-encoded.
     */
    readonly certificate: pulumi.Output<string>;
    /**
     * The Certificate Signing Request (CSR). Must be newline-encoded.
     */
    readonly csr: pulumi.Output<string>;
    /**
     * When the certificate will expire.
     */
    readonly expiresOn: pulumi.Output<string>;
    /**
     * Array of hostnames or wildcard names bound to the certificate.
     * Hostnames must be fully qualified domain names (FQDNs) belonging to zones on your account (e.g., `example.com` or `sub.example.com`). Wildcards are supported only as a `*.` prefix for a single level (e.g., `*.example.com`). Double wildcards (`*.*.example.com`) and interior wildcards (`foo.*.example.com`) are not allowed. The wildcard suffix must be a multi-label domain (`*.example.com` is valid, but `*.com` is not). Unicode/IDN hostnames are accepted and automatically converted to punycode.
     */
    readonly hostnames: pulumi.Output<string[]>;
    /**
     * Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers).
     * Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
     */
    readonly requestType: pulumi.Output<string>;
    /**
     * The number of days for which the certificate should be valid.
     * Available values: 7, 30, 90, 365, 730, 1095, 5475.
     */
    readonly requestedValidity: pulumi.Output<number>;
    /**
     * Create a OriginCaCertificate resource with the given unique name, arguments, and options.
     *
     * @param name The _unique_ name of the resource.
     * @param args The arguments to use to populate this resource's properties.
     * @param opts A bag of options that control this resource's behavior.
     */
    constructor(name: string, args: OriginCaCertificateArgs, opts?: pulumi.CustomResourceOptions);
}
/**
 * Input properties used for looking up and filtering OriginCaCertificate resources.
 */
export interface OriginCaCertificateState {
    /**
     * The Origin CA certificate. Will be newline-encoded.
     */
    certificate?: pulumi.Input<string>;
    /**
     * The Certificate Signing Request (CSR). Must be newline-encoded.
     */
    csr?: pulumi.Input<string>;
    /**
     * When the certificate will expire.
     */
    expiresOn?: pulumi.Input<string>;
    /**
     * Array of hostnames or wildcard names bound to the certificate.
     * Hostnames must be fully qualified domain names (FQDNs) belonging to zones on your account (e.g., `example.com` or `sub.example.com`). Wildcards are supported only as a `*.` prefix for a single level (e.g., `*.example.com`). Double wildcards (`*.*.example.com`) and interior wildcards (`foo.*.example.com`) are not allowed. The wildcard suffix must be a multi-label domain (`*.example.com` is valid, but `*.com` is not). Unicode/IDN hostnames are accepted and automatically converted to punycode.
     */
    hostnames?: pulumi.Input<pulumi.Input<string>[]>;
    /**
     * Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers).
     * Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
     */
    requestType?: pulumi.Input<string>;
    /**
     * The number of days for which the certificate should be valid.
     * Available values: 7, 30, 90, 365, 730, 1095, 5475.
     */
    requestedValidity?: pulumi.Input<number>;
}
/**
 * The set of arguments for constructing a OriginCaCertificate resource.
 */
export interface OriginCaCertificateArgs {
    /**
     * The Certificate Signing Request (CSR). Must be newline-encoded.
     */
    csr: pulumi.Input<string>;
    /**
     * Array of hostnames or wildcard names bound to the certificate.
     * Hostnames must be fully qualified domain names (FQDNs) belonging to zones on your account (e.g., `example.com` or `sub.example.com`). Wildcards are supported only as a `*.` prefix for a single level (e.g., `*.example.com`). Double wildcards (`*.*.example.com`) and interior wildcards (`foo.*.example.com`) are not allowed. The wildcard suffix must be a multi-label domain (`*.example.com` is valid, but `*.com` is not). Unicode/IDN hostnames are accepted and automatically converted to punycode.
     */
    hostnames: pulumi.Input<pulumi.Input<string>[]>;
    /**
     * Signature type desired on certificate ("origin-rsa" (rsa), "origin-ecc" (ecdsa), or "keyless-certificate" (for Keyless SSL servers).
     * Available values: "origin-rsa", "origin-ecc", "keyless-certificate".
     */
    requestType: pulumi.Input<string>;
    /**
     * The number of days for which the certificate should be valid.
     * Available values: 7, 30, 90, 365, 730, 1095, 5475.
     */
    requestedValidity?: pulumi.Input<number>;
}
//# sourceMappingURL=originCaCertificate.d.ts.map