curl: Unknown error (0x80092012) - The revocation function was unable to check revocation for the certificate

Question

curl: Unknown error (0x80092012) - The revocation function was unable to check revocation for the certificate

C:\Users\casta>curl https://c5.ppy.sh
curl: (35) schannel: next InitializeSecurityContext failed: Unknown error (0x80092012) - The revocation function was unable to check revocation for the certificate.

I've made my own CA, and I made a certificate from this CA.

The problem is, when I tried to access website with this certificate, It works fine!

but If I tried with curl or C# applications, It returns error.

C# error is here:

2019-02-28T09:20:33: System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel
2019-02-28T09:20:33: 위치: #=zGFbxUFU_LnBci6wJmmCy1$E=.#=z0YcFrd6MZP1A()
2019-02-28T09:20:33: 위치: #=zuFHGCPNOLQmjQEcRmqQHLnQ=.#=z3NGNjJ0=()

ssl

ssl-certificate

tls1.2

asked on Stack Overflow Mar 1, 2019 by

LPOPYui

2 Answers

I've been using curl through a mitm proxy for pen-testing and getting the same issue.

I finally figured that curl needs a parameter telling it not to check certificate revocation, so the command looks something like this:

curl "https://www.example.com" --ssl-no-revoke -x 127.0.0.1:8081

The -x parameter passes the proxy details - you may not need this.

hth

answered on Stack Overflow Jun 7, 2019 by

riemannzz

You can use the --ssl flag and omit the https like this

curl --ssl c5.ppy.sh

answered on Stack Overflow Mar 18, 2020 by

Max

User contributions licensed under CC BY-SA 3.0