PKI tools for e.g. checking certificate CRL/OCSP revocation
Project description
PKI tools exposes a high level cryptography
API for e.g.:
- checking revocation of certificates:
- using CRL defined in the x509 CRL distribution points extension (https://datatracker.ietf.org/doc/html/rfc5280.html#section-4.2.1.13)
- using OCSP defined in the x509 Authority Information Access extension (https://datatracker.ietf.org/doc/html/rfc5280.html#section-4.2.2.1)
- loading certificates from PEM format
- saving certificates to files
- reading certificates from files
Docs
Documentation is available at: https://pki-tools.fulder.dev
Quickstart
Install
pip install pki-tools
Usage
Checking OCSP and CRL revocation
from pki_tools import is_revoked
from pki_tools.types import PemCert
cert_pem = """
-----BEGIN CERTIFICATE-----
<CERT_PEM_BYTES>
-----END CERTIFICATE-----
"""
issuer_cert_pem = """
-----BEGIN CERTIFICATE-----
<ISSUER_CERT_PEM_BYTES>
-----END CERTIFICATE-----
"""
if is_revoked(PemCert(cert_pem), PemCert(issuer_cert_pem)):
print("Certificate Revoked!")
For more functions see: Pki Tools
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
pki_tools-0.0.18.tar.gz
(8.3 kB
view hashes)
Built Distribution
pki_tools-0.0.18-py3-none-any.whl
(10.3 kB
view hashes)
Close
Hashes for pki_tools-0.0.18-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 014f1863b9607daf861eea0a06ca1b112c0632810fa0fda7bca2bdeca248f3f1 |
|
MD5 | de2bd1dfc986838b6a00dcdc38c18d58 |
|
BLAKE2b-256 | b56b7f7e2315b1d730f4b66a7c35e85554baa45e12b5818a823f80eb6bb7967f |