user2368632
Reputation: 1073
How to obtain certificate revocation URL's?
For firewall purposes, trying to identify the cert revocation URL's for the major root CA's. Are these documented somewhere?
Upvotes: 0
Views: 789
Answers (1)
Julian
Reputation: 347
In addition to Crypt32's answer you should be able to get a CRL from a certificate itself. For instance if you look at the certificate for https://www.google.com (using a browser) you can see a CRL distribution point of http://crl.pki.goog/GTS1O1.crl The two certificates above it in the chain also have CRLs.
Upvotes: 1
Related Questions
- Add CRL (certificate revocating list) url to certificates
- CRL verification recursively
- How to check revocation status of X509Certificate chain using JAVA?
- Android: where should I look for certificate revocation list?
- Where are the Certificate Revocation List (CRL) stores?
- Certificate Revocation List c#
- Offline revocation mode
- How to check for revocation list only from the CRL?
- Checking a X509 Certificate Revocation
- The revocation function was unable to check revocation for the certificate