Hi Mike, I am not sure, but in normal case you only revoke a certificate either when the private key got lost / compromised or if you do not use it any more. So it is ok when you can't reuse the public key.
But perhaps you though of a certificate renewal. This is possible when the certificate timed out. Then you can ask for a new certificate useing the same public key as used before. Hope I could help you with this. Kind regards, Matthias On 1/17/07, Mike Wiseman <[EMAIL PROTECTED]> wrote: > Hi, > > I am experimenting with a PKCS#10 CSR with the intent to see what the > resultant > certificate looks like using various roles. So what I thought I could do was: > submit the > CSR, issue the cert, revoke the cert, submit the *same* CSR, issue the cert, > revoke the > cert... > > The RA (and the CA after I rebuilt the RA) complain about pre-existing public > key after > the first revocation. My question is, if the public key is associated with a > revoked cert, > shouldn't the key be reusable? > > Yes, I could regenerate the PKCS#10 CSR - just wondering why I can't use the > original one. > > Thanks, > > Mike > > > > ------------------------------------------------------------------------- > Take Surveys. Earn Cash. Influence the Future of IT > Join SourceForge.net's Techsay panel and you'll get the chance to share your > opinions on IT & business topics through brief surveys - and earn cash > http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV > _______________________________________________ > Openca-Users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openca-users > ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
