问题描述

Hi,

我正在使用C#.NET开发数字签名验证组件.

I am developing a digital signature verification component  in C# .NET.

在此验证中，我需要针对存储在目录中的离线CRL检查证书吊销状态吗?

 In this verification I need to check the Certificate revocation status against a Offline CRL stored in a directory?

chk下面的代码，我做到了.但是文件状态我找不到任何示例

chk the below code by using  status online  i done that . but status offile i couldn't find any exapmle

X509Chain 链= 新 X509Chain ();

X509Chain chain = new X509Chain();

chain.ChainPolicy.RevocationFlag = X509RevocationFlag .EntireChain;

chain.ChainPolicy.RevocationFlag = X509RevocationFlag.EntireChain;

chain.ChainPolicy.RevocationMode =

chain.ChainPolicy.RevocationMode =

X509RevocationMode .在线； //| X509RevocationMode.Offline;

X509RevocationMode.Online; // | X509RevocationMode.Offline;

chain.ChainPolicy.UrlRetrievalTimeout = 新 TimeSpan (0，0，30);

chain.ChainPolicy.UrlRetrievalTimeout = new TimeSpan(0, 0, 30);

chain.ChainPolicy.VerificationFlags = X509VerificationFlags .NoFlag;

chain.ChainPolicy.VerificationFlags = X509VerificationFlags.NoFlag;

chain.Build(证书);

chain.Build(certificate);

如果 (chain.ChainStatus.Length！= 0)

if (chain.ChainStatus.Length != 0)

控制台 .WriteLine(chain.ChainStatus [0] .Status);

Console.WriteLine(chain.ChainStatus[0].Status);

请让我知道如何使用X509Chain对象进行离线CRL验证吗?我没有找到任何例子.还是有其他机制可以执行此检查?

Could some one please let me know how to use X509Chain object for offline CRL verification? I didnt find any examples.  Or is there any other mechanism to do this checking?

感谢-

Supraja

Supraja

推荐答案

我遇到了同样的问题.有人可以解决吗?

I am having the same issue. Anyone how can I solved it?

谢谢

伊沃(Ivo)