[Ejbca-develop] Problem when validating expired certificates

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Dear All,

I have implemented a EJBCA CA with CRL and OCSP validation and have the following problem:

The expired certificates have error when trying to validate:
* CRL processing error
Issuer: c=XX, o=ABC, cn=abc.com
This update: 20160701105720Z
Next update: 20160702105720Z
CRL has expired or is not yet valid

* OCSP response has expired or is not yet valid

This problem does not occur with the revoked certificates, these are validated correctly.

Someone has an idea that can be causing this?
Thanks.

Regards,
Enzo

--
Sent from [ProtonMail](https://protonmail.com).