PKI tools for e.g. checking certificate CRL/OCSP revocation
Project description
PKI tools exposes a high level cryptography
API for e.g.:
- checking revocation of certificates:
- using CRL defined in the x509 CRL distribution points extension (https://datatracker.ietf.org/doc/html/rfc5280.html#section-4.2.1.13)
- using OCSP defined in the x509 Authority Information Access extension (https://datatracker.ietf.org/doc/html/rfc5280.html#section-4.2.2.1)
- loading certificates from PEM format
- saving certificates to files
- reading certificates from files
Docs
Documentation is available at: https://pki-tools.fulder.dev
Quickstart
Install
pip install pki-tools
Usage
Checking OCSP and CRL revocation
from pki_tools import is_revoked
from pki_tools.types import PemCert
cert_pem = """
-----BEGIN CERTIFICATE-----
<CERT_PEM_BYTES>
-----END CERTIFICATE-----
"""
issuer_cert_pem = """
-----BEGIN CERTIFICATE-----
<ISSUER_CERT_PEM_BYTES>
-----END CERTIFICATE-----
"""
if is_revoked(PemCert(cert_pem), PemCert(issuer_cert_pem)):
print("Certificate Revoked!")
For more functions see: Pki Tools
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
pki_tools-0.0.14.tar.gz
(8.2 kB
view hashes)
Built Distribution
pki_tools-0.0.14-py3-none-any.whl
(10.2 kB
view hashes)
Close
Hashes for pki_tools-0.0.14-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 99cc7028ea2044a653b33557dc12be4a1a86f0a6e6bc0897cbcf32e2be8bfe0f |
|
MD5 | 9397bfe6519f2644747fe6c755cac74e |
|
BLAKE2b-256 | 1ba5af1ba8abd35ed4034ecacd4cbb14554bac141caf43599da715cb6729b2c8 |