1PrettyPrintCrl(1)             PKI CRL Print Tool             PrettyPrintCrl(1)
2
3
4

NAME

6       PrettyPrintCrl   -  reads a certificate revocation list (CRL) stored in
7       an ASCII base-64 encoded file and outputs it in a readable format.
8
9

SYNOPSIS

11       PrettyPrintCrl <input_file> [output_file]
12
13

DESCRIPTION

15       The PrettyPrintCrl command provides  a  command-line  utility  used  to
16       print  the  contents of a CRL stored as ASCII base-64 encoded data in a
17       file to a readable format.  The output of this command is displayed  to
18       standard output, but can be optionally saved into a specified file.
19
20

OPTIONS

22       <input_file>
23              Mandatory.  Specifies  the  path  to  the file that contains the
24              ASCII base-64 encoded CRL.
25
26
27       [output_file]
28              Optional. Specifies the path to the file to write  the  CRL.  If
29              the output file is not specified, the CRL information is written
30              to the standard output.
31
32

EXAMPLES

34       The following example PrettyPrintCrl command takes  the  ASCII  base-64
35       encoded  CRL  in  the  ascii_data.crl  file  and  writes the CRL in the
36       pretty-print format to the output file crl.out:
37
38              PrettyPrintCrl ascii_data.crl crl.out
39
40       For this example, the base-64 encoded CRL data in the ascii_data.crl looks like the following:
41
42              -----BEGIN X509 CRL-----
43              MIICVDCCATwCAQEwDQYJKoZIhvcNAQELBQAwTjErMCkGA1UECgwidXNlcnN5cy5y
44              ZWRoYXQuY29tIFNlY3VyaXR5IERvbWFpbjEfMB0GA1UEAwwWQ0EgU2lnbmluZyBD
45              ZXJ0aWZpY2F0ZRcNMTYwNzIyMjExMjUwWhcNMTYwNzIyMjMwMDAwWjCBiDAgAgEK
46              Fw0xNjA3MjIyMDU1MTZaMAwwCgYDVR0VBAMKAQYwIAIBCRcNMTYwNzIyMjEwMTU2
47              WjAMMAoGA1UdFQQDCgEGMCACAQgXDTE2MDcyMjIxMTIyNVowDDAKBgNVHRUEAwoB
48              ATAgAgEHFw0xNjA3MjIyMTAxNTZaMAwwCgYDVR0VBAMKAQagLzAtMB8GA1UdIwQY
49              MBaAFLs2mF1ly4jghyM3b1v3r4uK67q1MAoGA1UdFAQDAgEKMA0GCSqGSIb3DQEB
50              CwUAA4IBAQCjnwpdLVU4sg3GnOFQiHpBuWspevzj0poHQs9b4Uv17o0MC4irftkR
51              zRBVgwLvdSd5WFEUSbhWVjhS4o4w84BXdmti/+UBS+mOVNxiKqs3Z7Fxcg+mCsiH
52              SDWT3iiqZVqlPMOKDzIQGj4XeArSBK13qjNdwKzVJZlXYfwzdDtyVKBJcoETXGZ3
53              irU8RTXo7OhO6xKDAaHjzVVynjfGdIDaavl1fjwXFufwZBeiXm1zyyFSvDUdny4G
54              29NTmM2945jCESeR7DV2q1LHG/v2rzCOKTWdPdXTPCics05KzUA4S6X+mp051wkh
55              yJM2LYpV6lKV6JiczHLrgf5QcqfwSkTX
56              -----END X509 CRL-----
57
58       The CRL in pretty-print format in the crl.out file looks like the following:
59
60                  Certificate Revocation List:
61                      Data:
62                          Version:  v2
63                          Signature Algorithm: SHA256withRSA - 1.2.840.113549.1.1.11
64                          Issuer: CN=CA Signing Certificate,O=example.com Security Domain
65                          This Update: Friday, July 22, 2016 3:12:50 PM MDT America/Denver
66                          Next Update: Friday, July 22, 2016 5:00:00 PM MDT America/Denver
67                          Revoked Certificates:
68                              Serial Number: 0xA
69                              Revocation Date: Friday, July 22, 2016 2:55:16 PM MDT America/Denver
70                              Extensions:
71                                  Identifier: Revocation Reason - 2.5.29.21
72                                      Critical: no
73                                      Reason: CA_Compromise
74                              Serial Number: 0x9
75                              Revocation Date: Friday, July 22, 2016 3:01:56 PM MDT America/Denver
76                              Extensions:
77                                  Identifier: Revocation Reason - 2.5.29.21
78                                      Critical: no
79                                      Reason: Affiliation_Changed
80                              Serial Number: 0x8
81                              Revocation Date: Friday, July 22, 2016 3:12:25 PM MDT America/Denver
82                              Extensions:
83                                  Identifier: Revocation Reason - 2.5.29.21
84                                      Critical: no
85                                      Reason: Key_Compromise
86                              Serial Number: 0x7
87                              Revocation Date: Friday, July 22, 2016 3:01:56 PM MDT America/Denver
88                              Extensions:
89                                  Identifier: Revocation Reason - 2.5.29.21
90                                      Critical: no
91                                      Reason: Certificate_Hold
92                      Extensions:
93                          Identifier: Authority Key Identifier - 2.5.29.35
94                              Critical: no
95                              Key Identifier:
96                                  BB:36:98:5D:65:CB:88:E0:87:23:37:6F:5B:F7:AF:8B:
97                                  8A:EB:BA:B5
98                          Identifier: CRL Number - 2.5.29.20
99                              Critical: no
100                              Number: 10
101                      Signature:
102                          Algorithm: SHA256withRSA - 1.2.840.113549.1.1.11
103                          Signature:
104                              A3:9F:0A:5D:2D:55:38:B2:0D:C6:9C:E1:50:88:7A:41:
105                              B9:6B:29:7A:FC:E3:D2:9A:07:42:CF:5B:E1:4B:F5:EE:
106                              8D:0C:0B:88:AB:7E:D9:11:CD:10:55:83:02:EF:75:27:
107                              79:58:51:14:49:B8:56:56:38:52:E2:8E:30:F3:80:57:
108                              76:6B:62:FF:E5:01:4B:E9:8E:54:DC:62:2A:AB:37:67:
109                              B1:71:72:0F:A6:0A:C8:87:48:35:93:DE:28:AA:65:5A:
110                              A5:3C:C3:8A:0F:32:10:1A:3E:17:78:0A:D2:04:AD:77:
111                              AA:33:5D:C0:AC:D5:25:99:57:61:FC:33:74:3B:72:54:
112                              A0:49:72:81:13:5C:66:77:8A:B5:3C:45:35:E8:EC:E8:
113                              4E:EB:12:83:01:A1:E3:CD:55:72:9E:37:C6:74:80:DA:
114                              6A:F9:75:7E:3C:17:16:E7:F0:64:17:A2:5E:6D:73:CB:
115                              21:52:BC:35:1D:9F:2E:06:DB:D3:53:98:CD:BD:E3:98:
116                              C2:11:27:91:EC:35:76:AB:52:C7:1B:FB:F6:AF:30:8E:
117                              29:35:9D:3D:D5:D3:3C:28:9C:B3:4E:4A:CD:40:38:4B:
118                              A5:FE:9A:9D:39:D7:09:21:C8:93:36:2D:8A:55:EA:52:
119                              95:E8:98:9C:CC:72:EB:81:FE:50:72:A7:F0:4A:44:D7
120

AUTHORS

122       Matthew Harmsen <mharmsen@redhat.com>.
123
124

COPYRIGHT

126       Copyright (c) 2016 Red Hat, Inc. This is licensed under the GNU General
127       Public  License, version 2 (GPLv2). A copy of this license is available
128       at http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
129
130

SEE ALSO

132       PrettyPrintCert(1),pki(1)
133
134
135
136version 10.3                     July 20, 2016               PrettyPrintCrl(1)