This is a discussion on How to retrive the delta CRL location and revocation reason? - Openssl ; Hi Team, =0D I am working on the CRL validation. I am seeing some issues in extracting the - delta crl distribution point and - reason for revocation from the certifiacte. Which structure members in the CRL to be used ...
I am working on the CRL validation. I am seeing some issues in
- delta crl distribution point and
- reason for revocation from the certifiacte. Which structure members in
the CRL to be used to retrieve the information?
Could you please let me know your thoughts on how to access these two
above mentioned information?
Let me explain you my problem clearly:
1. I got the crl from X509_STORE *ctx.
2. After receiving the crl, I checked the certificate, wheather it is
revoked in crl.
3. I found that, the certificate is revoked(serial number is present) 4.
After that, I would like to find the certificate revocation reason. But
I am not able to extract the information.
5. Since the delta crl is enabled, I need to get the cdp (certificate
distribution point) for delta crl. I am not able to retrieve the
Could any body help me in retrieving the
- Delta CRL distribution point and
- CRL reason for revocation=0D
I am using the following data structues for CRL.
/* actual signature */
} X509_CRL ;
typedef struct X509_crl_info_st
STACK_OF(X509_REVOKED) *revoked; //It should give the revocation
STACK_OF(X509_EXTENSION) /*  */ *extensions; //It should give the
cdp for delta crl.
Appreciate your help on the same.
With best regards,
The information contained in this electronic message and any attachments to=
this message are intended for the exclusive use of the addressee(s) and=
may contain proprietary, confidential or privileged information. If you=
are not the intended recipient, you should not disseminate, distribute or=
copy this e-mail. Please notify the sender immediately and destroy all=
copies of this message and any attachments.=0D
WARNING: Computer viruses can be transmitted via email. The recipient=
should check this email and any attachments for the presence of viruses.=
The company accepts no liability for any damage caused by any virus=
transmitted by this email.
OpenSSL Project http://www.openssl.org
Development Mailing List firstname.lastname@example.org
Automated List Manager email@example.com