| Is a REVOKE response for the cert with a reason |
| $ openssl asn1parse -i < [OCSP RESPONSE] |
| 0:d=0 hl=4 l= 322 cons: SEQUENCE |
| 4:d=1 hl=2 l= 1 prim: ENUMERATED :00 |
| 7:d=1 hl=4 l= 315 cons: cont [ 0 ] |
| 11:d=2 hl=4 l= 311 cons: SEQUENCE |
| 15:d=3 hl=2 l= 9 prim: OBJECT :Basic OCSP Response |
| 26:d=3 hl=4 l= 296 prim: OCTET STRING |
| 0:d=0 hl=4 l= 292 cons: SEQUENCE |
| 4:d=1 hl=3 l= 142 cons: SEQUENCE |
| 7:d=2 hl=2 l= 20 cons: cont [ 1 ] |
| 9:d=3 hl=2 l= 18 cons: SEQUENCE |
| 11:d=4 hl=2 l= 16 cons: SET |
| 13:d=5 hl=2 l= 14 cons: SEQUENCE |
| 15:d=6 hl=2 l= 3 prim: OBJECT :commonName |
| 20:d=6 hl=2 l= 7 prim: PRINTABLESTRING :Test CA |
| 29:d=2 hl=2 l= 15 prim: GENERALIZEDTIME :20160304164002Z |
| 46:d=2 hl=2 l= 101 cons: SEQUENCE |
| 48:d=3 hl=2 l= 99 cons: SEQUENCE |
| 50:d=4 hl=2 l= 56 cons: SEQUENCE |
| 52:d=5 hl=2 l= 7 cons: SEQUENCE |
| 54:d=6 hl=2 l= 5 prim: OBJECT :sha1 |
| 61:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:02FF75DA24DE8ADD150FAB689DCCE6E6636D0901 |
| 83:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:7735ACB4DFE7B9DC8259381B7EEDF0882B973534 |
| 105:d=5 hl=2 l= 1 prim: INTEGER :03 |
| 108:d=4 hl=2 l= 22 cons: cont [ 1 ] |
| 110:d=5 hl=2 l= 15 prim: GENERALIZEDTIME :20160304164002Z |
| 127:d=5 hl=2 l= 3 cons: cont [ 0 ] |
| 129:d=6 hl=2 l= 1 prim: ENUMERATED :01 |
| 132:d=4 hl=2 l= 15 prim: GENERALIZEDTIME :20160304164002Z |
| 149:d=1 hl=2 l= 13 cons: SEQUENCE |
| 151:d=2 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption |
| 162:d=2 hl=2 l= 0 prim: NULL |
| 164:d=1 hl=3 l= 129 prim: BIT STRING |
| -----BEGIN OCSP RESPONSE----- |
| MIIBQgoBAKCCATswggE3BgkrBgEFBQcwAQEEggEoMIIBJDCBjqEUMBIxEDAOBgNVBAMTB1Rlc3Q |
| gQ0EYDzIwMTYwMzA0MTY0MDAyWjBlMGMwODAHBgUrDgMCGgQUAv912iTeit0VD6tonczm5mNtCQ |
| EEFHc1rLTf57ncglk4G37t8IgrlzU0AgEDoRYYDzIwMTYwMzA0MTY0MDAyWqADCgEBGA8yMDE2M |
| DMwNDE2NDAwMlowDQYJKoZIhvcNAQEFBQADgYEAdJ2fItNUjBLpAUqtph3z6OGWnlilggMBSayg |
| rAWg/BgxKgxoBv/WXMKgjWKJw2/+gdqXsiXxQiunSvCKK4t7ghhTvelofc5R1KUO3zPU95tsMPX |
| r1PXdp0BSkt+03qWhiB3xyIboZJp1esjcnGnBC3lQD39V7n28AXW+17n73/Q= |
| -----END OCSP RESPONSE----- |
| |
| $ openssl asn1parse -i < [CA CERTIFICATE] |
| 0:d=0 hl=4 l= 408 cons: SEQUENCE |
| 4:d=1 hl=4 l= 257 cons: SEQUENCE |
| 8:d=2 hl=2 l= 3 cons: cont [ 0 ] |
| 10:d=3 hl=2 l= 1 prim: INTEGER :02 |
| 13:d=2 hl=2 l= 1 prim: INTEGER :00 |
| 16:d=2 hl=2 l= 13 cons: SEQUENCE |
| 18:d=3 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption |
| 29:d=3 hl=2 l= 0 prim: NULL |
| 31:d=2 hl=2 l= 18 cons: SEQUENCE |
| 33:d=3 hl=2 l= 16 cons: SET |
| 35:d=4 hl=2 l= 14 cons: SEQUENCE |
| 37:d=5 hl=2 l= 3 prim: OBJECT :commonName |
| 42:d=5 hl=2 l= 7 prim: PRINTABLESTRING :Test CA |
| 51:d=2 hl=2 l= 30 cons: SEQUENCE |
| 53:d=3 hl=2 l= 13 prim: UTCTIME :160304214002Z |
| 68:d=3 hl=2 l= 13 prim: UTCTIME :260302214002Z |
| 83:d=2 hl=2 l= 18 cons: SEQUENCE |
| 85:d=3 hl=2 l= 16 cons: SET |
| 87:d=4 hl=2 l= 14 cons: SEQUENCE |
| 89:d=5 hl=2 l= 3 prim: OBJECT :commonName |
| 94:d=5 hl=2 l= 7 prim: PRINTABLESTRING :Test CA |
| 103:d=2 hl=3 l= 159 cons: SEQUENCE |
| 106:d=3 hl=2 l= 13 cons: SEQUENCE |
| 108:d=4 hl=2 l= 9 prim: OBJECT :rsaEncryption |
| 119:d=4 hl=2 l= 0 prim: NULL |
| 121:d=3 hl=3 l= 141 prim: BIT STRING |
| 265:d=1 hl=2 l= 13 cons: SEQUENCE |
| 267:d=2 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption |
| 278:d=2 hl=2 l= 0 prim: NULL |
| 280:d=1 hl=3 l= 129 prim: BIT STRING |
| -----BEGIN CA CERTIFICATE----- |
| MIIBmDCCAQGgAwIBAgIBADANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMB4XDTE |
| 2MDMwNDIxNDAwMloXDTI2MDMwMjIxNDAwMlowEjEQMA4GA1UEAxMHVGVzdCBDQTCBnzANBgkqhk |
| iG9w0BAQEFAAOBjQAwgYkCgYEAxN8IR7ey6jTVUyS6kkCqt2x9/mxnRz77Py6Kwdm3P9jqIwqrC |
| RuqAXfC5QcyeyUaXKCc49bmL7cy64UowTrnIjyqiYOX0VO6t3ZdKcy2/8U2uwdL5oZPlBkpI6mU |
| 7vl+3rKbKkNPNPLv8apwFF1zIHUm1tund152PlMAWQu6rmUCAwEAATANBgkqhkiG9w0BAQUFAAO |
| BgQCYaWdjhx0ARGhs1Dj1N6RXIf0U669nJcx0XkuC/yL5Ji16cjI1s76arVjGK7OPZ011x4/gNM |
| RLj31wyxKsfg3qQdlYkVl89CwtA+KxghQoRhD8cSWY1aOQcm4hM11HE5t5VyNbheSOBVwoOb8wO |
| cgZFERfCNWbcx2a3WYVJCGoUw== |
| -----END CA CERTIFICATE----- |
| |
| $ openssl asn1parse -i < [CERTIFICATE] |
| 0:d=0 hl=4 l= 410 cons: SEQUENCE |
| 4:d=1 hl=4 l= 259 cons: SEQUENCE |
| 8:d=2 hl=2 l= 3 cons: cont [ 0 ] |
| 10:d=3 hl=2 l= 1 prim: INTEGER :02 |
| 13:d=2 hl=2 l= 1 prim: INTEGER :03 |
| 16:d=2 hl=2 l= 13 cons: SEQUENCE |
| 18:d=3 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption |
| 29:d=3 hl=2 l= 0 prim: NULL |
| 31:d=2 hl=2 l= 18 cons: SEQUENCE |
| 33:d=3 hl=2 l= 16 cons: SET |
| 35:d=4 hl=2 l= 14 cons: SEQUENCE |
| 37:d=5 hl=2 l= 3 prim: OBJECT :commonName |
| 42:d=5 hl=2 l= 7 prim: PRINTABLESTRING :Test CA |
| 51:d=2 hl=2 l= 30 cons: SEQUENCE |
| 53:d=3 hl=2 l= 13 prim: UTCTIME :160304214002Z |
| 68:d=3 hl=2 l= 13 prim: UTCTIME :260302214002Z |
| 83:d=2 hl=2 l= 20 cons: SEQUENCE |
| 85:d=3 hl=2 l= 18 cons: SET |
| 87:d=4 hl=2 l= 16 cons: SEQUENCE |
| 89:d=5 hl=2 l= 3 prim: OBJECT :commonName |
| 94:d=5 hl=2 l= 9 prim: PRINTABLESTRING :Test Cert |
| 105:d=2 hl=3 l= 159 cons: SEQUENCE |
| 108:d=3 hl=2 l= 13 cons: SEQUENCE |
| 110:d=4 hl=2 l= 9 prim: OBJECT :rsaEncryption |
| 121:d=4 hl=2 l= 0 prim: NULL |
| 123:d=3 hl=3 l= 141 prim: BIT STRING |
| 267:d=1 hl=2 l= 13 cons: SEQUENCE |
| 269:d=2 hl=2 l= 9 prim: OBJECT :sha1WithRSAEncryption |
| 280:d=2 hl=2 l= 0 prim: NULL |
| 282:d=1 hl=3 l= 129 prim: BIT STRING |
| -----BEGIN CERTIFICATE----- |
| MIIBmjCCAQOgAwIBAgIBAzANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDEwdUZXN0IENBMB4XDTE |
| 2MDMwNDIxNDAwMloXDTI2MDMwMjIxNDAwMlowFDESMBAGA1UEAxMJVGVzdCBDZXJ0MIGfMA0GCS |
| qGSIb3DQEBAQUAA4GNADCBiQKBgQCynU7qbknY0uuN2uYvVj9/UeLaZ+GTuIICagyaSvwhDdEFI |
| ieSELYv5c3TlrIzAzuMlx78eOuhyxyL5SqDe1+YrD4tsHTMoWhSsmjRmKHpxfVScPwgBvnZ3i5d |
| jS/iLKlvoTnH8qPE2QC+B2GgoU8HFEaVg5jI1NACo5gh75ZAawIDAQABMA0GCSqGSIb3DQEBBQU |
| AA4GBAHSL52wcNMvGbcbSI3fZd9ckcx2Kgor0/FZOcjWFaI877E9ok7TGk1uwy5QsTcRZdEuCsl |
| 3Ph9kpZYkiB6JIGrEzvmE5Nmv8VmYtEAX4F1JX6WPETlRR95fA4D4WmHNb2bxBy8bP9wLpced2V |
| 42JEeS36VZs/yhLupvaLx9PcRwM |
| -----END CERTIFICATE----- |