26.1. Syntax

26.1. Syntax

The revoker utility has the following syntax: 

revoker  -s serialNumber -n rsa_nickname [-p password
 | -w passwordFile] [-d dbdir] [-v] [-V] [-u] [-r reasoncode]
 [-i numberOfHours] hostname:[port]
Option Description
s Gives the serial numbers in hexadecimal of the certificates to revoke.
n Gives the agent certificate nickname.
p Gives the certificate database password. Not used if the -w option is used.
w Optional. Gives the path to the password file. Not used if the -p option is used.
d Optional. Gives the path to the security databases.
v Optional. Sets the operation in verbose mode.
V Optional. Gives the version of the revoker tool.
u  
r Gives the reason to revoke the certificate. The following are the possible reasons:

  • 0 - Unspecified (default).

  • 1 - The key was compromised.

  • 2 - The CA key was compromised.

  • 3 - The affiliation of the user has changed.

  • 4 - The certificate has been superseded.

  • 5 - Cessation of operation.

  • 6 - The certificate is on hold.

i Sets the invalidity date in hours from current time for when to revoke the certificate.
hostname Gives the hostname of the server to which to send the request.
port Optional. Gives the port number of the server.

Table 26.1.