| Is a valid response for the cert until nextUpdate |
| |
| $ openssl ocsp -resp_text -respin <([OCSP RESPONSE]) |
| OCSP Response Data: |
| OCSP Response Status: successful (0x0) |
| Response Type: Basic OCSP Response |
| Version: 1 (0x0) |
| Responder Id: CN = Test CA |
| Produced At: Mar 2 00:00:00 2017 GMT |
| Responses: |
| Certificate ID: |
| Hash Algorithm: sha1 |
| Issuer Name Hash: 02FF75DA24DE8ADD150FAB689DCCE6E6636D0901 |
| Issuer Key Hash: 84E1BA52A25C543CA972491224BC8B1ECA8B9FF4 |
| Serial Number: 03 |
| Cert Status: good |
| This Update: Mar 1 00:00:00 2017 GMT |
| Next Update: Jun 1 00:00:00 2017 GMT |
| |
| Signature Algorithm: sha1WithRSAEncryption |
| 3f:c0:c3:7b:09:f2:7a:e9:66:02:68:f7:73:4a:f1:7c:31:b1: |
| 90:ba:47:6e:5d:b1:31:16:9c:5a:33:3e:c3:aa:05:80:7b:7e: |
| 6e:32:a0:42:8f:7f:c0:8d:4a:2c:7e:b0:20:f1:56:f4:c8:c5: |
| a2:bf:8e:47:39:34:f0:51:86:20:4c:86:bb:0e:c2:5d:d8:87: |
| 5a:bc:c4:eb:8a:ab:80:6d:d5:ba:66:8d:3b:fe:f0:6d:a4:ed: |
| 19:0a:12:d2:63:7a:ca:24:8a:13:0a:00:65:ae:4d:0e:92:6c: |
| 18:b8:9a:e7:22:37:38:22:8d:3c:42:ad:62:df:67:30:13:9d: |
| 50:e1 |
| -----BEGIN OCSP RESPONSE----- |
| MIIBPwoBAKCCATgwggE0BgkrBgEFBQcwAQEEggElMIIBITCBi6EUMBIxEDAOBgNVBAMTB1Rlc3Q |
| gQ0EYDzIwMTcwMzAyMDAwMDAwWjBiMGAwODAHBgUrDgMCGgQUAv912iTeit0VD6tonczm5mNtCQ |
| EEFIThulKiXFQ8qXJJEiS8ix7Ki5/0AgEDgAAYDzIwMTcwMzAxMDAwMDAwWqARGA8yMDE3MDYwM |
| TAwMDAwMFowDQYJKoZIhvcNAQEFBQADgYEAP8DDewnyeulmAmj3c0rxfDGxkLpHbl2xMRacWjM+ |
| w6oFgHt+bjKgQo9/wI1KLH6wIPFW9MjFor+ORzk08FGGIEyGuw7CXdiHWrzE64qrgG3VumaNO/7 |
| wbaTtGQoS0mN6yiSKEwoAZa5NDpJsGLia5yI3OCKNPEKtYt9nMBOdUOE= |
| -----END OCSP RESPONSE----- |
| |
| $ openssl x509 -text < [CA CERTIFICATE] |
| Certificate: |
| Data: |
| Version: 3 (0x2) |
| Serial Number: 0 (0x0) |
| Signature Algorithm: sha1WithRSAEncryption |
| Issuer: CN=Test CA |
| Validity |
| Not Before: Jan 1 00:00:00 2017 GMT |
| Not After : Jan 1 00:00:00 2018 GMT |
| Subject: CN=Test CA |
| Subject Public Key Info: |
| Public Key Algorithm: rsaEncryption |
| Public-Key: (1024 bit) |
| Modulus: |
| 00:b8:25:2b:ee:59:9a:9d:bc:b4:48:ae:09:ce:0d: |
| ba:c5:83:57:03:92:fd:52:32:55:f5:e4:2e:a6:cf: |
| 9e:4b:c4:10:af:24:da:d5:dd:44:a8:d6:28:38:9c: |
| a5:11:c9:0b:70:a1:b5:71:cf:a4:35:c2:6a:17:b1: |
| b5:c7:cf:74:83:ac:7a:d5:3b:12:66:74:f2:4b:15: |
| b0:c2:59:af:0c:78:2c:42:3c:3f:8b:83:b3:1d:9a: |
| c8:bc:ce:b0:c8:f2:1a:a8:0a:1c:bb:6e:6e:d4:c6: |
| 10:66:3c:a8:ec:e3:c4:63:40:f6:79:ec:8b:14:ff: |
| 85:9e:2d:1a:e7:e8:31:56:81 |
| Exponent: 65537 (0x10001) |
| Signature Algorithm: sha1WithRSAEncryption |
| 35:fe:ee:96:31:c7:3d:91:eb:22:53:1f:bf:cc:20:cc:aa:f4: |
| 04:92:3c:8b:50:06:ea:a1:cc:b7:c2:4a:d6:02:af:53:a7:a4: |
| 71:81:78:bc:95:f3:2d:46:c4:83:4c:d5:92:11:7c:c7:67:d3: |
| 47:f6:06:9f:1c:46:da:d6:20:72:47:c2:57:d7:fb:66:d3:35: |
| 82:07:61:13:4e:4d:e6:0c:93:e6:f3:be:98:ff:e8:de:60:a7: |
| 06:94:cd:bb:f5:6e:b3:4e:0b:d6:e9:2b:72:bd:6e:ae:86:23: |
| 2d:44:33:c4:3b:a7:52:12:46:d2:76:95:06:3e:69:0f:72:60: |
| 16:d6 |
| -----BEGIN CA CERTIFICATE----- |
| MIIBnDCCAQWgAwIBAgIBADANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMCIYDzI |
| wMTcwMTAxMDAwMDAwWhgPMjAxODAxMDEwMDAwMDBaMBIxEDAOBgNVBAMTB1Rlc3QgQ0EwgZ8wDQ |
| YJKoZIhvcNAQEBBQADgY0AMIGJAoGBALglK+5Zmp28tEiuCc4NusWDVwOS/VIyVfXkLqbPnkvEE |
| K8k2tXdRKjWKDicpRHJC3ChtXHPpDXCahextcfPdIOsetU7EmZ08ksVsMJZrwx4LEI8P4uDsx2a |
| yLzOsMjyGqgKHLtubtTGEGY8qOzjxGNA9nnsixT/hZ4tGufoMVaBAgMBAAEwDQYJKoZIhvcNAQE |
| FBQADgYEANf7uljHHPZHrIlMfv8wgzKr0BJI8i1AG6qHMt8JK1gKvU6ekcYF4vJXzLUbEg0zVkh |
| F8x2fTR/YGnxxG2tYgckfCV9f7ZtM1ggdhE05N5gyT5vO+mP/o3mCnBpTNu/Vus04L1ukrcr1ur |
| oYjLUQzxDunUhJG0naVBj5pD3JgFtY= |
| -----END CA CERTIFICATE----- |
| |
| $ openssl x509 -text < [CERTIFICATE] |
| Certificate: |
| Data: |
| Version: 3 (0x2) |
| Serial Number: 3 (0x3) |
| Signature Algorithm: sha1WithRSAEncryption |
| Issuer: CN=Test CA |
| Validity |
| Not Before: Jan 1 00:00:00 2017 GMT |
| Not After : Jan 1 00:00:00 2018 GMT |
| Subject: CN=Test Cert |
| Subject Public Key Info: |
| Public Key Algorithm: rsaEncryption |
| Public-Key: (1024 bit) |
| Modulus: |
| 00:d5:12:3f:22:6f:b0:e1:43:c5:93:b3:c3:5b:70: |
| 52:b2:8b:10:ec:11:c4:c4:aa:aa:43:92:c8:d0:f3: |
| 35:23:e3:76:2d:b4:ea:93:26:6f:6a:79:1c:64:51: |
| d3:4d:21:4a:73:83:35:dc:a0:16:74:db:f0:b9:a5: |
| 46:35:8d:53:e8:7d:37:5b:4d:ad:a3:df:d6:ae:01: |
| 38:ad:16:09:6e:fd:65:ad:1c:4b:48:12:1e:48:a7: |
| ff:5b:47:c4:c9:3b:74:85:63:1a:0a:06:b2:9f:b9: |
| cb:ad:dc:3f:24:8b:a4:a7:8a:13:15:45:89:24:c1: |
| a7:3b:c2:a2:c8:74:f1:3f:6f |
| Exponent: 65537 (0x10001) |
| Signature Algorithm: sha1WithRSAEncryption |
| 04:21:70:de:14:92:27:13:e8:d2:b0:51:f0:af:34:75:0b:a7: |
| ff:84:cb:c6:96:30:80:01:f5:c1:3a:c6:81:ee:ba:89:60:33: |
| c3:e5:0f:43:cc:ac:81:8d:09:fb:25:e1:67:40:64:a3:ca:fd: |
| bd:9c:c4:73:e4:bc:4d:8e:e2:70:f1:17:ce:b4:ab:a0:b2:63: |
| 72:25:27:ae:d5:8e:18:73:0d:dc:12:5a:32:1c:b7:da:cd:23: |
| 5b:c8:87:58:08:3e:95:0c:fd:c8:48:a2:75:6e:79:f2:00:82: |
| 6e:b5:cc:71:e3:79:ca:68:85:9b:1b:5c:52:bf:a2:5a:71:e3: |
| 05:b5 |
| -----BEGIN CERTIFICATE----- |
| MIIBnjCCAQegAwIBAgIBAzANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMCIYDzI |
| wMTcwMTAxMDAwMDAwWhgPMjAxODAxMDEwMDAwMDBaMBQxEjAQBgNVBAMTCVRlc3QgQ2VydDCBnz |
| ANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA1RI/Im+w4UPFk7PDW3BSsosQ7BHExKqqQ5LI0PM1I |
| +N2LbTqkyZvankcZFHTTSFKc4M13KAWdNvwuaVGNY1T6H03W02to9/WrgE4rRYJbv1lrRxLSBIe |
| SKf/W0fEyTt0hWMaCgayn7nLrdw/JIukp4oTFUWJJMGnO8KiyHTxP28CAwEAATANBgkqhkiG9w0 |
| BAQUFAAOBgQAEIXDeFJInE+jSsFHwrzR1C6f/hMvGljCAAfXBOsaB7rqJYDPD5Q9DzKyBjQn7Je |
| FnQGSjyv29nMRz5LxNjuJw8RfOtKugsmNyJSeu1Y4Ycw3cEloyHLfazSNbyIdYCD6VDP3ISKJ1b |
| nnyAIJutcxx43nKaIWbG1xSv6JaceMFtQ== |
| -----END CERTIFICATE----- |
| |
| $ openssl asn1parse -i < [OCSP REQUEST] |
| 0:d=0 hl=2 l= 66 cons: SEQUENCE |
| 2:d=1 hl=2 l= 64 cons: SEQUENCE |
| 4:d=2 hl=2 l= 62 cons: SEQUENCE |
| 6:d=3 hl=2 l= 60 cons: SEQUENCE |
| 8:d=4 hl=2 l= 58 cons: SEQUENCE |
| 10:d=5 hl=2 l= 9 cons: SEQUENCE |
| 12:d=6 hl=2 l= 5 prim: OBJECT :sha1 |
| 19:d=6 hl=2 l= 0 prim: NULL |
| 21:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:02FF75DA24DE8ADD150FAB689DCCE6E6636D0901 |
| 43:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:84E1BA52A25C543CA972491224BC8B1ECA8B9FF4 |
| 65:d=5 hl=2 l= 1 prim: INTEGER :03 |
| -----BEGIN OCSP REQUEST----- |
| MEIwQDA+MDwwOjAJBgUrDgMCGgUABBQC/3XaJN6K3RUPq2idzObmY20JAQQUhOG6UqJcVDypckk |
| SJLyLHsqLn/QCAQM= |
| -----END OCSP REQUEST----- |