I’m currently looking at adding ocsp requests as part of my Windows GUI https://certifytheweb.com in order to faciliate a scan for revoked certs.
Currently if I try to query
http://ocsp.int-x3.letsencrypt.org (for instance) the response hangs with no result (same for staging) but if I use another responder (e.g.
http://ocsp.digicert.com) I get an instant Unauthorized oscp response (as expected).
Is oscp just super slow or does a certain path for the current ocsp responder just do nothing in it’s response (not http status code, or perhaps not closing the response stream?). There’s a possibility my request is malformed in some way but that probably shouldn’t result in no response (as I presume I’m starving the server of a socket while I wait for no response to come).