(Objective-C) OCSP Check Domain's Server Certificate Revocation Status

Sends an OCSP request to determine the revocation status for an SSL server certificate.

Chilkat Objective-C Library Downloads MAC OS X (Cocoa) Libs iOS Libs

#import <CkoHttp.h>

// This example requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

CkoHttp *http = [[CkoHttp alloc] init];

// Check the revocation status of the SSL server certificate for chilkatsoft.com
int status = [[http OcspCheck: @"chilkatsoft.com" port: [NSNumber numberWithInt: 443]] intValue];

NSLog(@"%@%d",@"chilkatsoft.com status = ",status);

// The status can have 4 values:
// -1: Unable to check because of an error.
//  0: Good
//  1: Revoked
//  2: Unknown

if (status < 0) {
    NSLog(@"%@",http.LastErrorText);
}

// Now check the status for a revoked server certificate.
status = [[http OcspCheck: @"revoked.badssl.com" port: [NSNumber numberWithInt: 443]] intValue];

NSLog(@"%@%d",@"revoked.badssl.com status = ",status);