Thank you!
I hadn't realized that the encoding should be primitive when encoding the
good answer and constructed when encoding the revoked answer. It works just
fine now. Once again, thank you!
Regards,
John Allberg
-Ursprungligt meddelande-
Från: [EMAIL PROTECTED]
[mailto:[
Hi!
We're developing a OCSP Responder. During interop testing it was discovered
that openssl verifies the signature on the response nicely when the
certificate is reported as revoked, but fails to verify the signature when
the certificate is reported as valid.
I've tested the signature in Ascerti