Library used to check the OCSP revocation status for a x509 digital certificate.
Project description
OCSP-Requester
Overview
OCSP-Requester is a python package based on Alban Diquet's nassl wrapper and the Python Cryptographic Authority's cryptography package. Relying on a web browser to check the revocation status of a x509 digital certificate has been broken from the beginning, and validating certificates outside of the web browser is a manual process. OCSP-Requester aims to solve this by providing an automated means to check the OCSP revocation status for a x509 digital certificate.
Pre-requisites
Python - Python 3.7 (64-bit) and above.
Installation
pip install ocsp-checker
Usage
from ocspchecker import ocspchecker
ocsp_request = ocspchecker.get_ocsp_status("github.com")
Sample Output
Sample output below, let me know if you want to add more fields/information to the output.
["Target": "microsoft.com", "OCSP URL": "http://ocsp.msocsp.com", "OCSP Status": "OCSPCertStatus.GOOD"]
PLEASE NOTE: If you run this on a network with a MITM SSL proxy, you may receive unintended results (see below):
{
"Error Type": "Certificate Authority Information Access (AIA) Extension Missing",
"Message": "No <ObjectIdentifier(oid=1.3.6.1.5.5.7.1.1, name=authorityInfoAccess)> extension was found for netflix.com. Possible MITM SSL Proxy"
}
Feedback
Send me mail at joe@metlife.com
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for ocsp_checker-1.0.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 0d5d7544d16b9d87b1a43b3cea09f673d9efcd1e4464753020e7caec03a18345 |
|
MD5 | 92a1bab719eccabcf786727ed7563bb3 |
|
BLAKE2b-256 | d1aabfa410b93f5cfddc3f7f8e56ee32e72f7d0aad99f051760e3608af4e3346 |