Michael Bell wrote:
> > 1) what's the real return of the command "openssl ca -revoke $filename ....";
>
> The function changes the state of the certificate in OpenSSL'S database
> (index.txt - really a textfile). The "V" is changed to "R". (Please
> check this because I'm not shure that the "R" is correct - I have no
> example present actually.)
I confirm: "V" is changed to "R" , besides I can say that something like a
"revokation code" is added on the same line
>
>
>.........................................................................................
> The CRL is created from OpenSSL's database
> (index.txt and all certificates which includes "R").
>
> Regards Michael
Thanks, you've been very helpful.
Now I can issue my CRL, but I still have some troubles:
the .txt format of CRL (the only one human readable) is correct,
so I suppose also .crl and .pem formats are correct.
I have clicked on the "ca.crl" link so I suppose I've downloaded the
CRL into my browser, but the certificate I revoked is still
"successfully verified".
Anybody know how to correctly download the CRL ?
Have I missed any operation somewhere in this process ?
Regards
marco
_______________________________________________
Openca-Users mailing list
[EMAIL PROTECTED]
http://lists.sourceforge.net/lists/listinfo/openca-users
