Sean,
Thank you very much. It works fine now. :)
However, I'm attaching two certificates. ValidateCertPath.java
prints trusted anchor in this case. I don't know why.
I've tried to use Cert Path API for downloading CRLs and it seems it
only supports LDAP, but not HTTP protocol. Is it true? Do you maybe have
one code example? Do I have to manually parse CRL distribution points
field from certificate or Cert Path API do it itself?
What is validated during chain validation? I couldn't find a list.
Possible options are: cert time validity, cert chain signature, CRL...
Is every cert in the chain validated? How about trust anchor?
Thank you very much,
Milan
DEMOSICA.cer
Description: Binary data
MilanDEMO.cer
Description: Binary data
