Apple Mac (27)
DH Keys (39)
DSA Keys (70)
EC Keys (971)
Google Chrome (25)
Intermediate CA (152)
Java VM (29)
JDK Keytool (28)
Microsoft CertUtil (29)
Microsoft Edge (9)
Mozilla CertUtil (21)
Revoked Certificates (16)
Root CA (85)
RSA Keys (2635)
What Is (22)
OpenSSL "ca -revoke" - Revoke a Certificate
How to revoke a certificate using the OpenSSL "ca" command? The certificate was signed by me with my CA certificate, but now it is no longer needed.
If you want revoke a certificate that was signed by you previously, you can use the OpenSSL "ca -revoke" command to revoke it. Actually, the certificate can not be destroyed. It will just be declared as invalid,
The following test shows you how to revoke a certificate using the "ca -revoke" command:
C:\Users\fyicenter>\local\OpenSSL-Win32\bin\openssl.exe OpenSSL> ca -revoke test.crt -keyfile my_ca.key -cert my_ca.crt Using configuration from C:\local\OpenSSL-Win32\bin\openssl.cfg Enter pass phrase for my_ca.key:fyicenter Revoking Certificate 1000. Data Base Updated
Notes about the above test:
⇒ OpenSSL "ca" - Sign the CSR Again
⇐ OpenSSL "ca" Error "failed to update database TXT_DB error number 2"
2016-09-10, 5104👍, 0💬
Certificate Summary: Subject: Security Communication EV RootCA1 Issuer: Security Communication EV Ro...
What is CRL (Certificate Revocation List)? A CRL (Certificate Revocation List) is a digitally signed...
What are the reasons why a X.509 certificate got revoked? When a certificate CA publishes a CRL (Cer...
Certificate Summary: Subject: Entrust Root Certification Authority Issuer: Entrust Root Certificatio...
Certificate Summary: Subject: COMODO High-Assurance Secure Server CA Issuer: AddTrust External CA Ro...