OCSP Client Test Tool

Prerequisites: You must have a Java JRE or JDK 1.7 or 1.8 (32- or 64-bit) installed.

  1. From the Validation Responder disk image, copy the Tools/ocspclient folder to your target system.

  2. Change directories to the local ocspclient folder.

  3. To display the usage, from the command line, type the following:

    Copy 
    java -jar rtc-ocsp-client.jar

  4. To check responses, type the following:

    Copy 
    java -jar rtc-ocsp-client.jar -issuer " CA.cer" -serial 0x4aef90e3 -url http://responder-server:3502 -VAfile signature.cer

Where:

  • CA.cer is the CA Certificate from the issuing CA of the certificate whose status is to be checked.

  • Serial is the serial number of the certificate whose status is to be checked.

  • VAfile is the OCSP signing certificate of the Validation Authority server on which the Certificate Issuer is registered.

  • url is the Validation Responder server URL.

If the default service is set to OCSP instead of SCVP, then use the following value for the -url argument:

Copy 
http://responder_server:3502

Otherwise, use:

Copy 
http://responder-server:3502/ocsp.