Orapki Crl Hash; Orapki Crl List - Oracle Database B10772-01 Administrator's Manual

orapki Utility Commands Summary

orapki crl hash

Purpose
Use this command to generate a hash value of the certificate revocation list (CRL)
issuer to identify the location of the CRL in your file system for certificate
validation.
Syntax
orapki crl hash -crl <crl_filename|URL> [-wallet <wallet_location>]
[-symlink|-copy] <crl_directory> [-summary]

orapki crl list

Purpose
Use this command to display a list of CRLs stored in Oracle Internet Directory. This
is useful for browsing to locate a particular CRL to view or download to your local
file system.
Syntax
orapki crl list -ldap <hostname:ssl_port>
E-10 Oracle Database Advanced Security Administrator's Guide
The -crl parameter specifies the filename that contains the CRL or the URL
where it can be found.
The -wallet parameter (optional) specifies the location of the wallet that
contains the certificate of the certificate authority (CA) who issued the CRL.
Using it causes the tool to verify the validity of the CRL against the CA's
certificate prior to uploading it to the directory.
Depending on your operating system, use either the -symlink or the -copy
parameter:
– (UNIX) use -symlink to create a symbolic link to the CRL at the <crl_
directory> location
– (Windows) use -copy to create a copy of the CRL at the <crl_
directory> location
The -summary parameter (optional) causes the tool to display the CRL issuer's
name.