certReq
Click on the red underlined text to get to the source
... revocation status. A new
content encoding is defined for use in the CERTREQ and CERT payloads.
...
... A value of OCSP Content (14) in the Cert Encoding field of a CERTREQ
Payload indicates the presence of zero or more OCSP ...
... certificate hashes in the Certificate Authority field of the CERTREQ
payload. Section 2.2 of [RFC2560 ...
...
In case of (a), the use of hashes in the CERTREQ message is not
needed since the OCSP response is signed by the CA ...
... Designated Responder whereby the sender of the CERTREQ message does
not know the public key in advance. The presence of OCSP ...
... public key in advance. The presence of OCSP Content in
a CERTREQ message will identify one or more OCSP responders trusted
...
... hashes as the Certification Authority value of a single CERTREQ
message. There is no means however to indicate which among those
hashes ...
... Therefore, an OCSP request, as defined in Section 3.1 above, is
transmitted separate from any other CERTREQ payloads in an IKEv2
...
... The Certification Authority value in an OCSP request CERTREQ SHALL be
computed and produced in a manner identical to that of trust anchor
...
... payload corresponding to a
prior OCSP request CERTREQ, the CERTREQ sender SHALL incorporate the
...
...
Upon receipt of an OCSP request CERTREQ payload, the recipient SHOULD
acquire the related OCSP ...
... Initiator also requests an OCSP response via the OCSP request CERTREQ
payload. In (4), the Responder ...