Currently we only support getting revoked status of certificates from CRL. This is slower and less ideal for distributed clusters of servers and is much less secure than OCSP. We should add an endpoint that follows the OCSP spec
This should help with the implementation using pyca/cryptogrphy
Currently we only support getting revoked status of certificates from CRL. This is slower and less ideal for distributed clusters of servers and is much less secure than OCSP. We should add an endpoint that follows the OCSP spec
This should help with the implementation using pyca/cryptogrphy