Skip to content

agl/crlset-tools

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 0 tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
README.markdown
 
 
crlset.go
 
 

README.markdown

CRL Set Tools

crlset is a utility program for downloading and dumping the current Chrome CRLSet. It can be built with Go1. See http://golang.org/doc/install.html, but don't pass "-u release" when fetching the repository.

One you have Go installed, run:

% go build crlset.go

First you need to download the current CRL set:

% ./crlset fetch > crl-set
Downloading CRLSet version 59

Then you can dump the contents of the CRL set:

% ./crlset dump crl-set

Revocations are grouped by the SHA-256 hash of the issuing certificate's SubjectPublicKeyInfo and listed as serial numbers.

To also show SPKIs that have been blocked:

% ./crlset dumpSPKIs crl-set

You can also list only the serials issued under a given certificate:

% ./crlset dump crl-set my-ca-cert.pem

About

Tools for dealing with Chrome's CRLSets

Resources

Readme

Stars

134 stars

Watchers

21 watching

Forks

41 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages