Windows Server Group Customer Advisory Team : How to Get the Total Revoked Items from a CRL

Archives

January 2008 (1)
December 2007 (1)
November 2007 (1)
October 2007 (1)
August 2007 (1)
July 2007 (1)
June 2007 (2)
May 2007 (4)
April 2007 (3)
December 2006 (1)
August 2006 (1)
July 2006 (1)
June 2006 (1)
May 2006 (2)
April 2006 (5)

How to Get the Total Revoked Items from a CRL

A customer I work with recently wanted to have a scriptable method to take any given CRL and determine the total number of revoked objects it contains. Luckily, certutil combined with your favorite findstr / grep / regex application can do this quite easily:

certutil.exe –dump <CRLFileName>| findstr "Entries"

The output will be a numerical count of the total number of revoked items. Note that this doesn't need to be run from a CA, nor does it have any dependencies on the issuer's chain.

Posted: Monday, August 20, 2007 7:01 PM by morello

Comments

No Comments

Windows Server Group Customer Advisory Team

Recent Posts

Tags

Archives

How to Get the Total Revoked Items from a CRL

Comments