Openssl - How to check if a certificate is revoked or not | ansaurus

tags:

openssl

views:

57

answers:

0

Q:

Openssl - How to check if a certificate is revoked or not

With openssl library, how do i check if the peer certificate is revoked or not. from what i googled:

x509 cerfiticate contains set of crl distribution points, ie set of urls
download the crl from these urls
crl contains serial numbers of certificates that are revoked
if the peer certificate serial number is there in the crl list, then it is revoked

what openssl apis do i use to accomplish this? Also, is this the right way of checking if the certificate is revoked or not?

related questions

OpenSSL and generating CSRs at client side

Encrypting data in Cocoa, decoding in PHP (and vice versa)

SSCrypto/OpenSSL to C# Crypto

How do you test a public/private keypair?

Python memory debugging with GDB

Programmatically Create X509 Certificate using OpenSSL

Understanding engine initialization in OpenSSL

Net::SSLeay post_https compilation error: Too many arguments

Opening an RSA private key from Ruby

How can I parse a Certificate Signing Request with Perl?

How to deploying a self signed SSL certificate to multiple servers

Building libcurl with SSL support on Windows

Self Signed Certificate in Windows without makecert?

"CURLE_OUT_OF_MEMORY" error when posting via https

How would you test an SSL connection?

Crypto/x509 certificate parsing libraries for Python (pyOpenSSL vs Python OpenSSL Wrappers vs...)

Strange call stack, could it be problem in asio's usage of openssl?

Is it a problem if multiple different accepting sockets use the same OpenSSL context?

Ruby on Rails: no such file to load -- openssl on RedHat Linux Enterprise

Using openssl what does "unable to write 'random state'" mean?

Using openssl encryption with Java

C# utility to create a CA

Easy expanation of setting up Openssl on Windows.

Getting ASN.1 Issuer strings from PEM files?

What Certificate Authority Software is Available?