[feature suggestion] integrate OCSP responder
enables clients to automatically and efficiently query the local CA for the status of X.509 certificates issued by the local CA (self-signed)
https://www.openca.org/projects/ocspd
The OpenCA OCSPD project is aimed to develop a robust and easy-to-install OCSP daemon. The server is developed as a stand-alone application and can be integrated into many different PKI solutions as it does not depend on specific database scheme. Furthermore it can be used as a responder for multiple CAs.
The OCSP Responder is an rfc2560 compliant OCSPD responder. The purpose of such a server is to provide an on-line tool to verify the status of a certificate
dependency on https://www.openca.org/projects/libpki/