openssl-crl.pod.in revision 1.1.1.1
1 1.1 christos =pod 2 1.1 christos {- OpenSSL::safe::output_do_not_edit_headers(); -} 3 1.1 christos 4 1.1 christos =head1 NAME 5 1.1 christos 6 1.1 christos openssl-crl - CRL command 7 1.1 christos 8 1.1 christos =head1 SYNOPSIS 9 1.1 christos 10 1.1 christos B<openssl> B<crl> 11 1.1 christos [B<-help>] 12 1.1 christos [B<-inform> B<DER>|B<PEM>] 13 1.1 christos [B<-outform> B<DER>|B<PEM>] 14 1.1 christos [B<-key> I<filename>] 15 1.1 christos [B<-keyform> B<DER>|B<PEM>|B<P12>] 16 1.1 christos [B<-dateopt>] 17 1.1 christos [B<-text>] 18 1.1 christos [B<-in> I<filename>] 19 1.1 christos [B<-out> I<filename>] 20 1.1 christos [B<-gendelta> I<filename>] 21 1.1 christos [B<-badsig>] 22 1.1 christos [B<-verify>] 23 1.1 christos [B<-noout>] 24 1.1 christos [B<-hash>] 25 1.1 christos [B<-hash_old>] 26 1.1 christos [B<-fingerprint>] 27 1.1 christos [B<-crlnumber>] 28 1.1 christos [B<-issuer>] 29 1.1 christos [B<-lastupdate>] 30 1.1 christos [B<-nextupdate>] 31 1.1 christos {- $OpenSSL::safe::opt_name_synopsis -} 32 1.1 christos {- $OpenSSL::safe::opt_trust_synopsis -} 33 1.1 christos {- $OpenSSL::safe::opt_provider_synopsis -} 34 1.1 christos 35 1.1 christos =head1 DESCRIPTION 36 1.1 christos 37 1.1 christos This command processes CRL files in DER or PEM format. 38 1.1 christos 39 1.1 christos =head1 OPTIONS 40 1.1 christos 41 1.1 christos =over 4 42 1.1 christos 43 1.1 christos =item B<-help> 44 1.1 christos 45 1.1 christos Print out a usage message. 46 1.1 christos 47 1.1 christos =item B<-inform> B<DER>|B<PEM> 48 1.1 christos 49 1.1 christos The CRL input format; unspecified by default. 50 1.1 christos See L<openssl-format-options(1)> for details. 51 1.1 christos 52 1.1 christos =item B<-outform> B<DER>|B<PEM> 53 1.1 christos 54 1.1 christos The CRL output format; the default is B<PEM>. 55 1.1 christos See L<openssl-format-options(1)> for details. 56 1.1 christos 57 1.1 christos =item B<-key> I<filename> 58 1.1 christos 59 1.1 christos The private key to be used to sign the CRL. 60 1.1 christos 61 1.1 christos =item B<-keyform> B<DER>|B<PEM>|B<P12> 62 1.1 christos 63 1.1 christos The format of the private key file; unspecified by default. 64 1.1 christos See L<openssl-format-options(1)> for details. 65 1.1 christos 66 1.1 christos =item B<-in> I<filename> 67 1.1 christos 68 1.1 christos This specifies the input filename to read from or standard input if this 69 1.1 christos option is not specified. 70 1.1 christos 71 1.1 christos =item B<-out> I<filename> 72 1.1 christos 73 1.1 christos Specifies the output filename to write to or standard output by 74 1.1 christos default. 75 1.1 christos 76 1.1 christos =item B<-gendelta> I<filename> 77 1.1 christos 78 1.1 christos Output a comparison of the main CRL and the one specified here. 79 1.1 christos 80 1.1 christos =item B<-badsig> 81 1.1 christos 82 1.1 christos Corrupt the signature before writing it; this can be useful 83 1.1 christos for testing. 84 1.1 christos 85 1.1 christos =item B<-dateopt> 86 1.1 christos 87 1.1 christos Specify the date output format. Values are: rfc_822 and iso_8601. 88 1.1 christos Defaults to rfc_822. 89 1.1 christos 90 1.1 christos =item B<-text> 91 1.1 christos 92 1.1 christos Print out the CRL in text form. 93 1.1 christos 94 1.1 christos =item B<-verify> 95 1.1 christos 96 1.1 christos Verify the signature in the CRL. 97 1.1 christos 98 1.1 christos =item B<-noout> 99 1.1 christos 100 1.1 christos Don't output the encoded version of the CRL. 101 1.1 christos 102 1.1 christos =item B<-fingerprint> 103 1.1 christos 104 1.1 christos Output the fingerprint of the CRL. 105 1.1 christos 106 1.1 christos =item B<-crlnumber> 107 1.1 christos 108 1.1 christos Output the number of the CRL. 109 1.1 christos 110 1.1 christos =item B<-hash> 111 1.1 christos 112 1.1 christos Output a hash of the issuer name. This can be use to lookup CRLs in 113 1.1 christos a directory by issuer name. 114 1.1 christos 115 1.1 christos =item B<-hash_old> 116 1.1 christos 117 1.1 christos Outputs the "hash" of the CRL issuer name using the older algorithm 118 1.1 christos as used by OpenSSL before version 1.0.0. 119 1.1 christos 120 1.1 christos =item B<-issuer> 121 1.1 christos 122 1.1 christos Output the issuer name. 123 1.1 christos 124 1.1 christos =item B<-lastupdate> 125 1.1 christos 126 1.1 christos Output the lastUpdate field. 127 1.1 christos 128 1.1 christos =item B<-nextupdate> 129 1.1 christos 130 1.1 christos Output the nextUpdate field. 131 1.1 christos 132 1.1 christos {- $OpenSSL::safe::opt_name_item -} 133 1.1 christos 134 1.1 christos {- $OpenSSL::safe::opt_trust_item -} 135 1.1 christos 136 1.1 christos {- $OpenSSL::safe::opt_provider_item -} 137 1.1 christos 138 1.1 christos =back 139 1.1 christos 140 1.1 christos =head1 EXAMPLES 141 1.1 christos 142 1.1 christos Convert a CRL file from PEM to DER: 143 1.1 christos 144 1.1 christos openssl crl -in crl.pem -outform DER -out crl.der 145 1.1 christos 146 1.1 christos Output the text form of a DER encoded certificate: 147 1.1 christos 148 1.1 christos openssl crl -in crl.der -text -noout 149 1.1 christos 150 1.1 christos =head1 BUGS 151 1.1 christos 152 1.1 christos Ideally it should be possible to create a CRL using appropriate options 153 1.1 christos and files too. 154 1.1 christos 155 1.1 christos =head1 SEE ALSO 156 1.1 christos 157 1.1 christos L<openssl(1)>, 158 1.1 christos L<openssl-crl2pkcs7(1)>, 159 1.1 christos L<openssl-ca(1)>, 160 1.1 christos L<openssl-x509(1)>, 161 1.1 christos L<ossl_store-file(7)> 162 1.1 christos 163 1.1 christos =head1 COPYRIGHT 164 1.1 christos 165 1.1 christos Copyright 2000-2021 The OpenSSL Project Authors. All Rights Reserved. 166 1.1 christos 167 1.1 christos Licensed under the Apache License 2.0 (the "License"). You may not use 168 1.1 christos this file except in compliance with the License. You can obtain a copy 169 1.1 christos in the file LICENSE in the source distribution or at 170 1.1 christos L<https://www.openssl.org/source/license.html>. 171 1.1 christos 172 1.1 christos =cut 173
Indexes created Wed May 06 00:24:28 UTC 2026