I am running a job to generate OCSP staples for many our certificates through openssl and two of them are consistently returning an "unauthorized", but are still generating an staple. I had hoped that this might be intermittent and stop happening, but has been persisting for a couple of weeks. The job generates staples for many other certificates which work as expected.
The problem reads the same as this one (not that I'm trying to say they are related).
My domain is: login.dev.nutmeg.co.uk
I ran this command: openssl ocsp -noverify -no_nonce -issuer /ocsp-issuers/r3.i.lencr.org.pem -cert login.dev.nutmeg.co.uk.pem -url http://r3.o.lencr.org -header Host=r3.o.lencr.org -respout login.dev.nutmeg.co.uk.pem.ocsp
It produced this output: Responder Error: unauthorized (6)
My web server is (include version): N/A
Any help which could be offered would be greatly appreciated.