summaryrefslogtreecommitdiff
path: root/src/openvpn/easy-rsa/Windows/revoke-full.bat
diff options
context:
space:
mode:
Diffstat (limited to 'src/openvpn/easy-rsa/Windows/revoke-full.bat')
-rw-r--r--src/openvpn/easy-rsa/Windows/revoke-full.bat13
1 files changed, 13 insertions, 0 deletions
diff --git a/src/openvpn/easy-rsa/Windows/revoke-full.bat b/src/openvpn/easy-rsa/Windows/revoke-full.bat
new file mode 100644
index 0000000..ef2e4b5
--- /dev/null
+++ b/src/openvpn/easy-rsa/Windows/revoke-full.bat
@@ -0,0 +1,13 @@
+@echo off
+cd %HOME%
+rem revoke cert
+openssl ca -revoke %KEY_DIR%\%1.crt -config %KEY_CONFIG%
+rem generate new crl
+openssl ca -gencrl -out %KEY_DIR%\crl.pem -config %KEY_CONFIG%
+rem test revocation
+rem first concatinate ca cert with newly generated crl
+copy %KEY_DIR%\ca.crt+%KEY_DIR%\crl.pem %KEY_DIR%\revoke_test_file.pem
+rem now verify the revocation
+openssl verify -CAfile %KEY_DIR%\revoke_test_file.pem -crl_check %KEY_DIR%\%1.crt
+rem delete temporary test file
+del /q %KEY_DIR%\revoke_test_file.pem
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-04 20:59:59 +0000