Openssl ocsp -no_nonce -issuer intermediate.crt -cert cert.crt -url Once done, a request to the OCSP server can be sent by running the following command: If intermediate certificates are received as a single file (.ca-bundle), it will be necessary to open this file with any text editor, extract the very first certificate from it and save the file with the retrieved certificate as, for example, intermediate.crt. *where cert.crt is the end-entity certificate issued to your domain or subdomainĪlternatively, the URI can be retrieved by decoding the certificate online at as shown on the screenshot below: URI of the OCSP server can be retrieved from the client’s certificate with the following command: openssl x509 -in cert.crt -noout -ocsp_uri URI of the Certificate Authority's OCSP server Intermediate certificate that signs the end-entity certificate End-entity SSL certificate (issued to a domain or subdomain) The following tools are required in order to initiate such a check:
![check cert file driver check cert file driver](http://www.thedrivingskool.com/wp-content/uploads/2016/10/driving-lessosn-ass.jpg)
![check cert file driver check cert file driver](https://images.sampletemplates.com/wp-content/uploads/2016/04/25174516/Printable-CDL-Medical-Form.jpg)
![check cert file driver check cert file driver](https://cdn.jjkeller.com/wcsstore/CVCatalogAssetStore/images/promotions/dq-hiring/Driver-Qualification-2-files-400x200.jpg)
Online Certificate Status Protocol (OCSP).In other words, it is possible to check whether the certificate is revoked by the Certificate Authority or not.
Check cert file driver how to#
How to check the certificate revocation statusįor the time being, there are two known methods that provide the possibility to check the revocation status of SSL certificates.