sslcurlssl-certificatetls1.2

curl: Unknown error (0x80092012) - The revocation function was unable to check revocation for the certificate


C:\Users\casta>curl https://c5.ppy.sh
curl: (35) schannel: next InitializeSecurityContext failed: Unknown error (0x80092012) - The revocation function was unable to check revocation for the certificate.

I've made my own CA, and I made a certificate from this CA.

The problem is, when I tried to access website with this certificate, It works fine!

but If I tried with curl or C# applications, It returns error.

C# error is here:

2019-02-28T09:20:33: System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel
2019-02-28T09:20:33: 위치: #=zGFbxUFU_LnBci6wJmmCy1$E=.#=z0YcFrd6MZP1A()
2019-02-28T09:20:33: 위치: #=zuFHGCPNOLQmjQEcRmqQHLnQ=.#=z3NGNjJ0=()

Solution

  • I've been using curl through a mitm proxy for pen-testing and getting the same issue.

    I finally figured that curl needs a parameter telling it not to check certificate revocation, so the command looks something like this:

    curl "https://www.example.com" --ssl-no-revoke -x 127.0.0.1:8081
    

    The -x parameter passes the proxy details - you may not need this.