I couldn’t find any existing CRL check that worked that could hit a URL and check the next update time on a CRL file. Also I didn’t want to use any weird libraries other than curl and openssl. So I wrote this.
Usage: ./check_crl_url -U <url> -w <days> -c <days>
Expected output looks like this:
CRL OK: Expires in 4 Day(s) 21 Hour(s) 55 Minute(s) 24 Second(s).