Tuesday, March 27, 2012

Checking certificate validity via CRL with openssl

openssl verify -crl_check -CAfile miteff-root-ca-c.crt -untrusted signer-ca-c3-chain.crt https-miteff.com.chain.crt

All certificates are PEM encoded. Here is a description for each of them:
miteff-root-ca-c.crt - the root certificate
signer-ca-c3-chain.crt - the intermediate certificate, with the trusted chain
https-miteff.com.chain.crt - the endpoint certificate, which we want to check. Here is the whole certificate chain

No comments:

Post a Comment