curl-w32/docs/cmdline-opts/cert-status.md

731 B

c SPDX-License-Identifier Long Protocols Added Help Category Multi See-also Example
Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al. curl cert-status TLS 7.41.0 Verify the status of the server cert via OCSP-staple tls boolean
pinnedpubkey
--cert-status $URL

--cert-status

Tells curl to verify the status of the server certificate by using the Certificate Status Request (aka. OCSP stapling) TLS extension.

If this option is enabled and the server sends an invalid (e.g. expired) response, if the response suggests that the server certificate has been revoked, or no response at all is received, the verification fails.

This is currently only implemented in the OpenSSL and GnuTLS backends.