Making Sure a Certificate Hasn't Been Revoked

Using the URL Retrieval Tool, you can find out whether a certificate's CRL Distribution Points (CDPs) and the Certificate Revocation Lists (CRLs) at those CDPs are valid.

Jan De Clercq

April 24, 2014

1 Min Read
white letters QA on red background

Q: How can I make sure a certificate hasn't been revoked? I would also like to know whether the certificate's CRL Distribution Points (CDPs) and the Certificate Revocation Lists (CRLs) at those CDPs are valid.

A: The easiest way to verify certificate revocation information, CDPs, and CRLs is to use the URL Retrieval Tool, which is invoked using the Certutil.exe command-line tool. Certutil.exe is included in Windows OSs and can be used for different certificate management tasks. Here's how to use it:

  1. Put a copy of the certificate you want to check in the file system—specifically, in the root of your user profile folder. (This is the folder that shows up when you open a command prompt.)

  2. Run the following command to open the URL Retrieval Tool:

certutil -URL

In this command, you must replace with the name of the certificate you want to check (in this example, jan.cer). Note that you don't necessarily need an elevated command prompt to run this command.

  1. In the URL Retrieval Tool, which Figure 1 shows, select the CRLs (from CDP) option and click the Retrieve button.

Figure 1: Launching the URL Retrieval Tool

If the certificate is revoked, you'll get a Revoked status message. If the certificate is valid, you'll get a Verified status message. If the test failed, the Status column will specify Failed.

About the Author

Jan De Clercq

Jan De Clercq

See more from Jan De Clercq
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up

You May Also Like

Editor's Choice

drawings of people with different colored brains
IT Management
Embracing Neurodiversity in IT Workplace to Bridge Talent GapsEmbracing Neurodiversity in IT Workplace to Bridge Talent Gaps
byNathan Eddy
Sep 2, 2024
6 Min Read
circuit board inside a cloud
Cloud Computing
Microclouds: The Next Big Thing in Cloud Computing or Just Another Edge Strategy?Microclouds: The Next Big Thing in Cloud Computing or Just Another Edge Strategy?
byChristopher Tozzi
Sep 5, 2024
4 Min Read
a laptop infected with a virus and above it the words linux ransomware
Linux OS
Linux Ransomware Threats: How Attackers Target Linux SystemsLinux Ransomware Threats: How Attackers Target Linux Systems
byGrant Knoetze
Sep 4, 2024
8 Min Read
Exclusive ITPro Resources
See all ITPro Resources

Featured How Tos

A cartoon of a person sitting at a computer, with speech bubbles—one from the person saying Hello and one from the computer responding with Hello
PowerShell
PowerShell Speech Recognition: How To Set up Voice Commands and ResponsesPowerShell Speech Recognition: Set up Voice Commands and Responses
Migrating From VMware Guide cover
VMWare
Migrating From VMware: Guide to a Successful TransitionMigrating From VMware: Guide to a Successful Transition
a wall and fire with the words linux uncomplicated firewall (ufw) tutorial, configure and manage
Linux OS
Linux UFW (Uncomplicated Firewall) Configuration Made EasyLinux UFW (Uncomplicated Firewall) Configuration Made Easy
Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
Newsletter Sign-Up
Trending

Recent What Is

a laptop infected with a virus and above it the words linux ransomware
Linux OS
Linux Ransomware Threats: How Attackers Target Linux SystemsLinux Ransomware Threats: How Attackers Target Linux Systems
data privacy quiz sample question above a desk
Data Privacy
Data Privacy Quiz: 20 Questions To Test Your KnowledgeData Privacy Quiz: 20 Questions To Test Your Knowledge