I’ve just tried to verify the OCSP response but was unable so far. The certificate itself verifies successfully on the local certificate chain, but the OCSP part is somehow broken. Local verification: Intermediate Certificate verification: #> openssl verify chain1.pem chain1.pem: OK Server Cert…

Unable to verify OCSP response

jsha December 17, 2015, 7:22pm 3

That is correct. And the OCSP Signing key usage is only required for dedicated OCSP signing certs. Signing OCSP directly from the issuer doesn't require additional extensions.

1 Like

Topic		Replies	Views
OCSP response error signer certificate not found Server	0	3704	November 18, 2015
OCSP Responder Error: unauthorized Help	10	7721	November 1, 2020
Where can I find OCSP responder certificate? Feature Requests	1	3807	November 7, 2015
Is OCSP responder broken? Issuance Tech	3	7299	April 1, 2018
[Solved] Cannot verify ocsp Server	2	10683	November 8, 2015

Unable to verify OCSP response

Related topics