A protocol used in determining the current status of digital certificates without requiring CRLs. OCSP clients issue status requests to OCSP responders and suspends acceptance of certificates in question until the responder provides a response. OCSP requests contain the following data:

  • Protocol version
  • Service request
  • Target certificate identifier
  • Optional extensions