PKI tools for e.g. checking certificate CRL/OCSP revocation
Project description
PKI tools exposes a high level cryptography
API for e.g.:
- checking revocation of certificates:
- using CRL defined in the x509 CRL distribution points extension (https://datatracker.ietf.org/doc/html/rfc5280.html#section-4.2.1.13)
- using OCSP defined in the x509 Authority Information Access extension (https://datatracker.ietf.org/doc/html/rfc5280.html#section-4.2.2.1)
- loading certificates from PEM format
- saving certificates to files
- reading certificates from files
Docs
Documentation is available at: https://pki-tools.fulder.dev
Quickstart
Install
pip install pki-tools
Usage
Checking OCSP and CRL revocation
from pki_tools import is_revoked
from pki_tools.types import PemCert
cert_pem = """
-----BEGIN CERTIFICATE-----
<CERT_PEM_BYTES>
-----END CERTIFICATE-----
"""
issuer_cert_pem = """
-----BEGIN CERTIFICATE-----
<ISSUER_CERT_PEM_BYTES>
-----END CERTIFICATE-----
"""
if is_revoked(PemCert(cert_pem), PemCert(issuer_cert_pem)):
print("Certificate Revoked!")
For more functions see: Pki Tools
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
pki_tools-0.0.11.tar.gz
(8.0 kB
view hashes)
Built Distribution
pki_tools-0.0.11-py3-none-any.whl
(10.0 kB
view hashes)
Close
Hashes for pki_tools-0.0.11-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 1e1eefe0038b5944960e5d4aa9b5717810ee7b95f18549cc55beeabb6c299d96 |
|
MD5 | 9f0bf654af111aea604731af37b9dffe |
|
BLAKE2b-256 | ceb79cd42c207ebaffbab403479996cbda8801a03e84dc8ac8dceb7e831538df |