On Tue, Sep 6, 2016 at 10:40 AM, Jakob Bohm <jb-openssl at wisemo.com> wrote: ... > Another related (long standing) issue is the inability to > state an "as of" date to the various commands and APIs that > validate signatures, certificates etc. Both past and future > dates can be needed in various use cases. ... That would be really useful. An expired or revoked certificate may still be used to verify a signature generated at a time when the certificate was valid. -- "Well," Brahma said, "even after ten thousand explanations, a fool is no wiser, but an intelligent man requires only two thousand five hundred." - The Mah?bh?rata -------------- next part -------------- An HTML attachment was scrubbed... URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20160906/0eedf995/attachment.html>
