On Fri, Mar 26, 1999 at 08:59:48PM +0100, [EMAIL PROTECTED]
wrote:
> I have the need to revoke a certificate, anyway I cannot find the revoke
> facility to manage the job ( including altering the index.txt that I think
> is used to manage the CRL (??)).
>
> Where do I find it?? ( command line tool... ).
Here is a simple script to do it. $1 is the certificate serial number
in hex as it appears in the index.txt file.
#!/bin/sh
#
#revoke the $1 cert
#
cp -p demoCA/index.txt demoCA/index.txt.rev.old
if [ $? -ne 0 ] ; then
echo "Copy failed"
exit 2
fi
revtime=`date -u +%y%m%d%H%M%SZ`
awk "BEGIN { FS = \"\t\" } \
\$4 ~/^$1\$/ {OFS = \"\t\"; \$1 = \"R\"; \$3 = \"$revtime\" ;
print \$0 } \
\$4 !~/^$1\$/ {print \$0 }" demoCA/index.txt.rev.old >
demoCA/index.txt
diff demoCA/index.txt.rev.old demoCA/index.txt
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
