SV: Signature verification of OCSP Response

2005-02-28 Thread John Allberg
Thank you! I hadn't realized that the encoding should be primitive when encoding the good answer and constructed when encoding the revoked answer. It works just fine now. Once again, thank you! Regards, John Allberg -Ursprungligt meddelande- Från: [EMAIL PROTECTED] [mailto:[

Signature verification of OCSP Response

2005-02-25 Thread John Allberg
Hi! We're developing a OCSP Responder. During interop testing it was discovered that openssl verifies the signature on the response nicely when the certificate is reported as revoked, but fails to verify the signature when the certificate is reported as valid. I've tested the signature in Ascerti