How to consult certificates issued through OCSP? 
Previous requirements
- Have installed the application on your computer Open SSL. Otherwise, download it by clicking the following Link.
- Place a copy of the Procert certification authority's root certificate in DER format inside the bin folder of the Open SSL application. If you do not have the certificate, you can download it through the following Link and place it in the folder mentioned before.
- Place a copy of the certificate that you want to review in DER format inside the bin folder of the Open SSL application. If you do not have the certificate, you can download it through the following Enlace and place it in the folder mentioned before.
Procedimiento
- To verify through OCSP, click the Start button, All Programs, then Accessories and then Command Prompt.
- Enter the path of the bin folder where the Open SSL application is installed, in which the previously stored certificates are located.
- Then enter the following command (without parentheses) to convert the CA's root certificate to PEM format: openssl x509 -inform der -in (name of the root certificate).cer -out (desired name for the root certificate).pem.
- Next, enter the following command (without parentheses) to convert the certificate to be reviewed to PEM format: openssl x509 -inform der -in (name of the certificate to be reviewed).cer -out (desired name for the certificate to be reviewed).pem
- Finally, enter the following command to perform the certificate verification through OCSP: openssl.exe ocsp -issuer (name of the root certificate).pem -cert (name of the certificate to be verified).pem -url http://ura.procert.net.ve/ocsp -text -noverify -no_nonce