| Bob Beck | bc97b7a | 2023-04-18 08:35:15 -0600 | [diff] [blame^] | 1 | Is an UNKNOWN response for the cert |
| 2 | |
| 3 | $ openssl ocsp -resp_text -respin <([OCSP RESPONSE]) |
| 4 | OCSP Response Data: |
| 5 | OCSP Response Status: successful (0x0) |
| 6 | Response Type: Basic OCSP Response |
| 7 | Version: 1 (0x0) |
| 8 | Responder Id: CN = Test Intermediate CA |
| 9 | Produced At: Mar 2 00:00:00 2017 GMT |
| 10 | Responses: |
| 11 | Certificate ID: |
| 12 | Hash Algorithm: sha1 |
| 13 | Issuer Name Hash: 449B1C5B31C6E9990966523E49C3F773C024190A |
| 14 | Issuer Key Hash: 7F765910653BB5704124C41E94AEFCF940431A66 |
| 15 | Serial Number: 04 |
| 16 | Cert Status: unknown |
| 17 | This Update: Mar 1 00:00:00 2017 GMT |
| 18 | |
| 19 | Signature Algorithm: sha1WithRSAEncryption |
| 20 | 66:e7:9d:45:af:e5:6e:eb:92:f5:b6:89:58:b5:3d:cb:97:0c: |
| 21 | ee:ba:c1:2b:19:cf:af:61:c6:f5:12:5f:29:7f:fb:e9:d3:3a: |
| 22 | 5a:bb:fe:cd:17:2b:8c:4e:c8:b8:26:63:af:8f:7b:8f:67:8a: |
| 23 | d2:0e:33:0d:57:3d:49:ad:10:58:64:b5:81:f4:ac:0f:74:1a: |
| 24 | 1a:2b:1f:02:ab:de:80:48:fb:3c:30:66:11:65:aa:3b:6a:39: |
| 25 | 96:f8:50:00:31:1b:59:15:ba:18:29:be:ea:4f:4d:d9:68:b4: |
| 26 | 75:6d:41:be:a5:59:f7:8c:9c:20:f3:73:8f:f0:c8:0a:59:32: |
| 27 | 49:d7 |
| 28 | -----BEGIN OCSP RESPONSE----- |
| 29 | MIIBNwoBAKCCATAwggEsBgkrBgEFBQcwAQEEggEdMIIBGTCBhaEhMB8xHTAbBgNVBAMMFFRlc3Q |
| 30 | gSW50ZXJtZWRpYXRlIENBGA8yMDE3MDMwMjAwMDAwMFowTzBNMDgwBwYFKw4DAhoEFESbHFsxxu |
| 31 | mZCWZSPknD93PAJBkKBBR/dlkQZTu1cEEkxB6Urvz5QEMaZgIBBIIAGA8yMDE3MDMwMTAwMDAwM |
| 32 | FowCwYJKoZIhvcNAQEFA4GBAGbnnUWv5W7rkvW2iVi1PcuXDO66wSsZz69hxvUSXyl/++nTOlq7 |
| 33 | /s0XK4xOyLgmY6+Pe49nitIOMw1XPUmtEFhktYH0rA90GhorHwKr3oBI+zwwZhFlqjtqOZb4UAA |
| 34 | xG1kVuhgpvupPTdlotHVtQb6lWfeMnCDzc4/wyApZMknX |
| 35 | -----END OCSP RESPONSE----- |
| 36 | |
| 37 | $ openssl x509 -text < [CA CERTIFICATE] |
| 38 | Certificate: |
| 39 | Data: |
| 40 | Version: 3 (0x2) |
| 41 | Serial Number: 1 (0x1) |
| 42 | Signature Algorithm: sha1WithRSAEncryption |
| 43 | Issuer: CN = Test CA |
| 44 | Validity |
| 45 | Not Before: Jan 1 00:00:00 2017 GMT |
| 46 | Not After : Jan 1 00:00:00 2018 GMT |
| 47 | Subject: CN = Test Intermediate CA |
| 48 | Subject Public Key Info: |
| 49 | Public Key Algorithm: rsaEncryption |
| 50 | RSA Public-Key: (1024 bit) |
| 51 | Modulus: |
| 52 | 00:c5:fb:81:a7:1b:6a:61:38:1c:6a:de:dd:db:22: |
| 53 | 61:64:7a:22:a3:3b:1d:e5:92:54:17:ad:39:2e:fe: |
| 54 | 81:ff:46:0a:70:d6:84:a5:d5:bd:05:d3:f2:a5:98: |
| 55 | 90:fd:e4:ff:d8:d2:cf:7c:d1:f2:78:0d:4a:a1:80: |
| 56 | c8:6a:70:75:84:04:c1:c2:4b:af:17:9b:a2:29:2b: |
| 57 | a7:be:f1:f9:19:80:f3:6a:d4:10:28:51:38:26:97: |
| 58 | ed:ad:06:96:85:a7:b7:7c:78:38:90:44:df:d7:10: |
| 59 | e4:52:a2:49:22:6c:98:71:51:f5:b2:13:6a:7f:08: |
| 60 | 34:7c:d0:c6:99:6f:79:98:f9 |
| 61 | Exponent: 65537 (0x10001) |
| 62 | Signature Algorithm: sha1WithRSAEncryption |
| 63 | 7d:67:0f:39:4e:7c:e3:ba:f2:63:b9:ed:6e:ec:61:f2:8a:4f: |
| 64 | 1e:82:e2:4b:44:04:f8:a5:a1:5a:bc:8c:72:91:6d:bf:03:27: |
| 65 | 21:10:9e:5c:8a:cf:4b:87:83:e0:c2:d7:72:55:d5:42:d3:d1: |
| 66 | 2b:76:b3:42:84:e0:e8:3b:80:b2:5f:55:e7:e0:f6:b6:21:c6: |
| 67 | fd:91:b5:c9:ba:fa:d8:ba:5c:8b:e1:f6:de:5d:cf:39:e6:92: |
| 68 | 22:85:31:1f:c3:ed:19:db:0a:0b:f9:ef:a7:36:4d:e1:54:af: |
| 69 | 8e:c0:59:25:43:e5:69:47:c4:e0:00:1e:21:eb:e6:b4:13:8f: |
| 70 | 30:01 |
| 71 | -----BEGIN CA CERTIFICATE----- |
| 72 | MIIBqTCCARKgAwIBAgIBATANBgkqhkiG9w0BAQUFADASMRAwDgYDVQQDDAdUZXN0IENBMCIYDzI |
| 73 | wMTcwMTAxMDAwMDAwWhgPMjAxODAxMDEwMDAwMDBaMB8xHTAbBgNVBAMMFFRlc3QgSW50ZXJtZW |
| 74 | RpYXRlIENBMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDF+4GnG2phOBxq3t3bImFkeiKjO |
| 75 | x3lklQXrTku/oH/Rgpw1oSl1b0F0/KlmJD95P/Y0s980fJ4DUqhgMhqcHWEBMHCS68Xm6IpK6e+ |
| 76 | 8fkZgPNq1BAoUTgml+2tBpaFp7d8eDiQRN/XEORSokkibJhxUfWyE2p/CDR80MaZb3mY+QIDAQA |
| 77 | BMA0GCSqGSIb3DQEBBQUAA4GBAH1nDzlOfOO68mO57W7sYfKKTx6C4ktEBPiloVq8jHKRbb8DJy |
| 78 | EQnlyKz0uHg+DC13JV1ULT0St2s0KE4Og7gLJfVefg9rYhxv2Rtcm6+ti6XIvh9t5dzznmkiKFM |
| 79 | R/D7RnbCgv576c2TeFUr47AWSVD5WlHxOAAHiHr5rQTjzAB |
| 80 | -----END CA CERTIFICATE----- |
| 81 | |
| 82 | $ openssl x509 -text < [CERTIFICATE] |
| 83 | Certificate: |
| 84 | Data: |
| 85 | Version: 3 (0x2) |
| 86 | Serial Number: 4 (0x4) |
| 87 | Signature Algorithm: sha1WithRSAEncryption |
| 88 | Issuer: CN = Test Intermediate CA |
| 89 | Validity |
| 90 | Not Before: Jan 1 00:00:00 2017 GMT |
| 91 | Not After : Jan 1 00:00:00 2018 GMT |
| 92 | Subject: CN = Test Cert |
| 93 | Subject Public Key Info: |
| 94 | Public Key Algorithm: rsaEncryption |
| 95 | RSA Public-Key: (1024 bit) |
| 96 | Modulus: |
| 97 | 00:d1:d2:a7:fd:5f:56:b8:4a:4a:00:c4:f0:36:48: |
| 98 | 0d:99:1e:ba:ca:8d:8c:0e:e9:5a:f4:31:94:26:f4: |
| 99 | 24:77:0c:2d:76:39:fe:1e:51:9c:b1:3a:b2:61:ae: |
| 100 | f6:2b:41:46:92:81:b4:1e:35:73:bb:df:53:d6:63: |
| 101 | a4:07:58:e9:0a:40:7a:b7:71:a3:fd:7d:6a:3f:23: |
| 102 | ee:5e:76:90:3f:60:ea:85:6b:74:1b:1f:6a:40:27: |
| 103 | 37:7f:ac:6e:97:ee:13:f7:cb:81:44:26:f3:25:48: |
| 104 | 56:40:ef:33:84:c8:d7:52:66:8a:40:35:ed:ec:67: |
| 105 | 95:c1:35:46:9e:db:9b:ce:9b |
| 106 | Exponent: 65537 (0x10001) |
| 107 | Signature Algorithm: sha1WithRSAEncryption |
| 108 | 8e:94:5a:91:44:aa:ab:e4:bf:c4:ca:a3:ee:10:67:2d:3e:d5: |
| 109 | ac:b8:90:8b:4e:7f:3e:bc:83:bb:b2:c9:0c:a2:ae:fb:6c:b3: |
| 110 | 5d:b7:40:20:9f:9b:7c:3d:5f:67:bc:0e:f9:20:bc:24:67:27: |
| 111 | a9:2e:81:08:e5:3f:ad:e9:b7:eb:a9:c5:58:55:55:f3:26:17: |
| 112 | 26:46:5f:ef:20:38:c9:f2:81:ba:39:d9:28:4b:e8:83:ff:d7: |
| 113 | 2e:87:72:36:77:0f:46:9b:a1:fe:d8:d8:20:50:68:c1:7b:66: |
| 114 | 82:5d:62:94:90:98:71:8b:b9:83:69:a8:65:a4:58:5d:ce:90: |
| 115 | 0a:53 |
| 116 | -----BEGIN CERTIFICATE----- |
| 117 | MIIBqzCCARSgAwIBAgIBBDANBgkqhkiG9w0BAQUFADAfMR0wGwYDVQQDDBRUZXN0IEludGVybWV |
| 118 | kaWF0ZSBDQTAiGA8yMDE3MDEwMTAwMDAwMFoYDzIwMTgwMTAxMDAwMDAwWjAUMRIwEAYDVQQDDA |
| 119 | lUZXN0IENlcnQwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBANHSp/1fVrhKSgDE8DZIDZkeu |
| 120 | sqNjA7pWvQxlCb0JHcMLXY5/h5RnLE6smGu9itBRpKBtB41c7vfU9ZjpAdY6QpAerdxo/19aj8j |
| 121 | 7l52kD9g6oVrdBsfakAnN3+sbpfuE/fLgUQm8yVIVkDvM4TI11JmikA17exnlcE1Rp7bm86bAgM |
| 122 | BAAEwDQYJKoZIhvcNAQEFBQADgYEAjpRakUSqq+S/xMqj7hBnLT7VrLiQi05/PryDu7LJDKKu+2 |
| 123 | yzXbdAIJ+bfD1fZ7wO+SC8JGcnqS6BCOU/rem366nFWFVV8yYXJkZf7yA4yfKBujnZKEvog//XL |
| 124 | odyNncPRpuh/tjYIFBowXtmgl1ilJCYcYu5g2moZaRYXc6QClM= |
| 125 | -----END CERTIFICATE----- |
| 126 | |
| 127 | $ openssl asn1parse -i < [OCSP REQUEST] |
| 128 | 0:d=0 hl=2 l= 66 cons: SEQUENCE |
| 129 | 2:d=1 hl=2 l= 64 cons: SEQUENCE |
| 130 | 4:d=2 hl=2 l= 62 cons: SEQUENCE |
| 131 | 6:d=3 hl=2 l= 60 cons: SEQUENCE |
| 132 | 8:d=4 hl=2 l= 58 cons: SEQUENCE |
| 133 | 10:d=5 hl=2 l= 9 cons: SEQUENCE |
| 134 | 12:d=6 hl=2 l= 5 prim: OBJECT :sha1 |
| 135 | 19:d=6 hl=2 l= 0 prim: NULL |
| 136 | 21:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:449B1C5B31C6E9990966523E49C3F773C024190A |
| 137 | 43:d=5 hl=2 l= 20 prim: OCTET STRING [HEX DUMP]:7F765910653BB5704124C41E94AEFCF940431A66 |
| 138 | 65:d=5 hl=2 l= 1 prim: INTEGER :04 |
| 139 | -----BEGIN OCSP REQUEST----- |
| 140 | MEIwQDA+MDwwOjAJBgUrDgMCGgUABBREmxxbMcbpmQlmUj5Jw/dzwCQZCgQUf3ZZEGU7tXBBJMQ |
| 141 | elK78+UBDGmYCAQQ= |
| 142 | -----END OCSP REQUEST----- |
