How to revoke a certificat with the Certificate Revocation List (CRL) ?

Certificate Validity Period Not Before Not After Portecle

About

A revoked certificate is a certificate that is in a list containing all revoked certificat.

This list is known as the crl or Certificate Revocation List

Management

Create

With Openssl

# add the certificat into the index
openssl -revoke cert_to_revoke.pem
# Generates the CRL based on information in the index file
openssl ca -gencrl -out crl/your_revoked_certs.crl

Your server should be configured to use this list.

Examine

Csr Portecle Read

  • with the status openssl ca 1)command, you can Displays the revocation status of the certificate with the specified serial number
-status serial

Distribution Points

In the certificate as extension:

Crl Distribution Point





Discover More
Certificate Validity Period Not Before Not After Portecle
Certificat and chain verification

A certificate check is equivalent to an authentication. The signature of the certificate is verified with the public key to check if it was signed (issued) by a trusted party (usually a trusted...
400 Default Page No Required Ssl Certificate
How to configure certification based client authentication with Nginx ?

This article shows you how to configure a client authentication via the ownership of a certificat on a Nginx web server. The server should be already configured for HTTPS as client certificate (client...
Gpg Kleopatra
Pgp (Pretty Good Privacy)

PGP (Pretty Good Privacy) (or OpenPGP) is a standard defined by 4880RFC4880 (OpenPGP Message Format) that define how to securely provide: electronic communications (email) and data storage services....
Public key infrastructure (PKI)

A public key infrastructure (PKI) is the management and database system for: the creation, the signature the storage, the revocation and the distribution of digital certificates and public...
Certificate Usage
What are the possible usages of a cryptographic certificate?

A certificate may have one or more several usages. This articles list them and show you how to discover the usage also known as certificat purpose. extensions A certificate can be used for one or...
Public Key Crypto Pair Key Creation
What is a client certificate authentication ? (SSL/TLS Web)

Client certificate authentication is a certification based authentication mechanism where the client identifies itself to the server by sending a signed certificate. The server just needs to verify the...



Share this page:
Follow us:
Task Runner