A Python library that offers functionality for validating X.509 digital
certificates, which are widely used in security systems such
as TLS/SSL, email encryption, PDF signatures, and more.
.
The pyhanko-certvalidator library performs the following main tasks:
- Certificate Validation: The library checks the validity of X.509
digital certificates. This includes checking the certificate signature,
expiration date, issuing authority (CA), certificate revocation, and
other important properties.
- Chain of Trust: It helps to build and validate the certificate chain,
that is, the sequence of certificates that links a specific certificate
to a trusted certification authority (root CA).
- CRL (Certificate Revocation Lists) Check: The library checks whether a
certificate has been revoked by querying Certificate Revocation Lists
(CRLs) published by certification authorities.
- Online Certificate Status Protocol (OCSP) Check: In addition to CRL
checking, certvalidator can check the status of a certificate through
the Online Certificate Status Protocol (OCSP) to determine whether the
certificate is still valid.
- Custom Expiration Policy: You can configure and apply custom validity
policies to meet specific certificate validation requirements.
- Extensibility: The library is designed to be extensible and customizable.
.
This is a fork of the python3-certvalidator package.
Installed Size: 436.2 kB
Architectures: all