I have configured an OCSP responder for my CA in the AIA extensions, with both the "include in AIA extension" and "include in OCSP extension" options checked.
If I verify a certificate issued by the CA with
certutil -url <certfile>
and then I select "OCSP (from AIA)" and click on "Retrieve", everything looks ok, and the status is verified.
However, if I open the Pkiview console, I see the OCSP AIA location with status "Unable to download".
What does this mean, and how could I fix it?
Thanks,
Paolo
Paolo Tedesco - http://cern.ch/idm