> the Let's Encrypt CA doesn't distribute a CRL (there's literally not > one listed in the CA's certificate), meaning there's nothing for > Xrootd to retrieve. OK, apparently Let's Encrypt is using OSCP https://letsencrypt.org/docs/revoking/ https://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/xrootd/xrootd/issues/716#issuecomment-443786173 ######################################################################## Use REPLY-ALL to reply to list To unsubscribe from the XROOTD-DEV list, click the following link: https://listserv.slac.stanford.edu/cgi-bin/wa?SUBED1=XROOTD-DEV&A=1