Forum Discussion

Employee

Aug 24, 2010

CRL - File Format - Updating

Hey All, We're looking to implement client certificate authentication and use a CRL. 1 - Updating the CRL file on a regular basis - best to do with a cron job? 2 - The CR...

config

design

Luke_Lehman

Employee

Aug 25, 2010

Solved.

.crl format is actually DER format. The openssl syntax that I had wasn't correct.

bad syntax: openssl crl -in .crl -outform PEM -out .pem

good syntax: openssl crl -inform der -in .crl -out .pem

Still looking for suggestions as to if a cron job is the best / safest way to obtain the CRL.

Thanks.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

CRL - File Format - Updating

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

How to configure ssh access by key on F5OS

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

Bot Defense causing a lot of false positives

Recommendation for Adv. Lab

iRules for recreation: HTTP Protocol Parser implemented using BIG-IP iRule(unfinished)

Related Content

BIG-IP Geolocation Updates – Part 7

BIG-IP Geolocation Updates – Part 4

BIG-IP Geolocation Updates – Part 5

BIG-IP Geolocation Updates – Part 1

BIG-IP Geolocation Updates – Part 2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS