One of the ways we offer certificate validation services is through the Online Certificate Status Protocol (OCSP), which complies with RFC 6960. The OCSP service allows you to determine the validity status of a certificate by querying the trusted servers (OCSP Responders) of the Validation Authority.

The user requesting certificate verification connects to the ANF AC OCSP Server using their OCSP client to query the validity of the certificates they wish to verify. Upon querying, the user receives a digitally signed response from ANF AC confirming the validity of a certificate at a given time. ANF AC also stores and maintains a copy of each generated response.

If you wish to use our OCSP query services, the HTTP request must comply with RFC 6960, including the Content-Type: application/ocsp-request.

The repositories accessed by the OCSP Responder servers are constantly updated and comply with the IETF’s RFC 6960 document (“Online Certificate Status Protocol Algorithm Agility”).

The link to the OCSP service is available to all our CAs and is listed in the Authority Information Access extension of the relevant certificate (http://ocsp.anf.es/spain/AV).

For more information, please consult the ANF AC Validation Policy.