i have been setting up a CA and have one hurdle which I cannot figure out. I
have geberated a CRL (currently with no revoked certs). It is regerenced in
the CRL Distribution Points extension of the end entity certs. I can open the
CRL with IE by browsing to the CRL URI. I can import it into
Bonsoir,
Hodie XVII Kal. Oct. MMVII est, Bynum, Don scripsit:
i have been setting up a CA and have one hurdle which I cannot figure
out. I have geberated a CRL (currently with no revoked certs). It is
regerenced in the CRL Distribution Points extension of the end entity
certs.
That is an interesting and accurate observation. i agree that the issuer and
authority should be the same, that I can fix. Another question though: if i
had not included the issuer in the cert or in the CRL, i.e. only have the
authority keyid present (which are the same in the CRL and the
Hey there,
I've recently installed openssl and I cannot create keys or certs with it
for some reason.
If any more information needed for analyzing please let me know.
Make test produced this at the end:
test normal x509v1 certificate
sh ./tx509 2/dev/null
testing X509 conversions
p -