Categories:
Android (13)
Apple Mac (27)
DH Keys (39)
DSA Keys (70)
EC Keys (871)
Firefox (30)
General (10)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
OpenSSL (236)
Other (7)
Portecle (38)
Publishers (3115)
Revoked Certificates (16)
Root CA (85)
RSA Keys (2509)
Tools (46)
Tutorial (1)
What Is (22)
Windows (127)
Collections:
Other Resources:
OpenSSL "ca -revoke" - Revoke a Certificate
How to revoke a certificate using the OpenSSL "ca" command? The certificate was signed by me with my CA certificate, but now it is no longer needed.
✍: FYIcenter.com
If you want revoke a certificate that was signed by you previously,
you can use the OpenSSL "ca -revoke" command to revoke it.
Actually, the certificate can not be destroyed. It will just be declared as invalid,
The following test shows you how to revoke a certificate using the "ca -revoke" command:
C:\Users\fyicenter>\local\OpenSSL-Win32\bin\openssl.exe OpenSSL> ca -revoke test.crt -keyfile my_ca.key -cert my_ca.crt Using configuration from C:\local\OpenSSL-Win32\bin\openssl.cfg Enter pass phrase for my_ca.key:fyicenter Revoking Certificate 1000. Data Base Updated
Notes about the above test:
⇒ OpenSSL "ca" - Sign the CSR Again
⇐ OpenSSL "ca" Error "failed to update database TXT_DB error number 2"
2016-09-10, 4323👍, 0💬
Popular Posts:
What are the reasons why a X.509 certificate got revoked? When a certificate CA publishes a CRL (Cer...
How to verify or validate a certificate using OpenSSL "verify" command? I got a certificate from the...
How to list all commands in OpenSSL? I don't remember exactly what is the command to generate a CSR....
What is ASN.1 OBJECT IDENTIFIER field type? How to specify OBJECT IDENTIFIER field type in OpenSSL "...
Why I am getting an error: "CryptoException: Could not save keystore"? when exporting my 4096-bit ke...