public class OCSPVerifier extends Object implements RevocationVerifier
Constructor and Description |
---|
OCSPVerifier(OCSPCache cache) |
Modifier and Type | Method and Description |
---|---|
RevocationStatus |
checkRevocationStatus(X509Certificate peerCert,
X509Certificate issuerCert)
Gets the revocation status (Good, Revoked or Unknown) of the given peer certificate.
|
protected org.bouncycastle.ocsp.OCSPResp |
getOCSPResponse(String serviceUrl,
org.bouncycastle.ocsp.OCSPReq request)
Gets an ASN.1 encoded OCSP response (as defined in RFC 2560) from the given service URL.
|
public OCSPVerifier(OCSPCache cache)
public RevocationStatus checkRevocationStatus(X509Certificate peerCert, X509Certificate issuerCert) throws CertificateVerificationException
checkRevocationStatus
in interface RevocationVerifier
peerCert
- The certificate we want to check if revoked.issuerCert
- Needed to create OCSP request.CertificateVerificationException
protected org.bouncycastle.ocsp.OCSPResp getOCSPResponse(String serviceUrl, org.bouncycastle.ocsp.OCSPReq request) throws CertificateVerificationException
serviceUrl
- URL of the OCSP endpoint.request
- an OCSP request object.CertificateVerificationException
Copyright © 2005-2017 Apache Software Foundation. All Rights Reserved.