Potential origin cert download issue

sunh11373 · November 8, 2020, 10:04pm

Hi,

I am trying to use the “Origin Cert” to secure between Cloudflare and my host web server. My understanding is that the downloaded cert should be issued to my domain, such as “mydomain.com”. However, the decoded cert shows:

Issued To: O=Cloudflare, Inc., OU=Cloudflare Origin CA, CN=Cloudflare Origin Certificate
Issued By: C=US, O=Cloudflare, Inc., OU=Cloudflare Origin SSL Certificate Authority, L=San Francisco, ST=California
Serial Number: 21 61 ee 9f 66 d8 6f ef 3c 7b 9f 14 9a c0 ed ac cd fa ff d7

Is the CN supposed to be “mydomain.com” instead of “Cloudflare Origin Certificate” ? I don’t see “mydomain.com” mentioned in any part of the cert.

Thanks

sandro · November 8, 2020, 10:05pm

In case of an Origin certificate the CN will always show that string, however the hostnames for which it was issued still show up in the SANs.

sunh11373 · November 8, 2020, 10:37pm

Thanks for the quick explanation.

system · November 9, 2020, 10:37pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Question regarding Origin Server CA Security	3	788	June 24, 2023
Certificate - Origin server different fqdn to DNS Security	10	3157	April 20, 2021
Origin server SSL certificate but different hostname Getting Started	4	2723	July 21, 2021
Cloudflare is retrieving my server's Origin Certificate Security	3	1887	September 16, 2020
Certificate Usage Issue Inquiry Security	2	4	November 24, 2024

Potential origin cert download issue

Related topics