This field identifies the CRL distribution point or points to which a certificate user should refer to ascertain if the certificate has been revoked. A certificate user can obtain a CRL from an applicable distribution point or it can obtain a current complete CRL from the CA directory entry.

DoD and ECA CRL Distribution Points (CRLDPs) – DoD Cyber May 29, 2019 Certificate Revocation List (CRL) checking Jul 29, 2019

Add-CRLDistributionPoint - PKI Solutions Inc.

Configure the CDP and AIA Extensions on CA1 | Microsoft Docs You can use this procedure to configure the Certificate Revocation List (CRL) Distribution Point (CDP) and the Authority Information Access (AIA) settings on CA1. To perform this procedure, you must be a member of Domain Admins. To configure the CDP and AIA extensions on CA1. In Server Manager, click Tools and then click Certification Authority. Certificate revocation lists — OpenSSL Certificate

Configure the CDP and AIA Extensions on CA1 | Microsoft Docs

There is no such thing as a non-signed CRL; the signature field is mandatory, and any system that uses the CRL will verify the signature.. In pure X.509, a CRL will be deemed "acceptable" as a source of information about the revocation status of a given certificate E if it is signed by an "allowed revocation issuer": the CRL's signature must match the public key contained in an already CRL Distribution point hostname in the SSL proxy settings Aug 22, 2019 Howto create a certificate using openssl including a CRL I'm having problems using openssl to create a x509 certificate containing a crl distribution point for testing. I've checked the documentation and found the configuration setting crlDistributionPoints for this purpose. Unfortunately openssl always generates x509 version 1 certificates without instead of version 3 certificates with the crl