CAs with dual stacked CRL/OCSP servers

Ben Sjoberg bensjoberg at
Fri Dec 5 14:46:13 UTC 2014

Comodo's the only one I know off the top of my head. AAAA records on
both the OCSP and CRL domains.

On Fri, Dec 5, 2014 at 6:06 AM, Rob Seastrom <rs at> wrote:
> At $DAYJOB, we have some applications that we would like to be all
> hipster and *actually check* for certificate revocation.  I know this
> is way out there in terms of trendiness and may offend some folks.
> Difficulty: the clients are running on single stacked IPv6.  We have
> recently been advised by our existing CA that they "do not currently
> have IPv6 support plan" (sic).
> OCSP Stapling sounds like it could be a winner here.  Unfortunately,
> the software support is not quite ready yet on the platform on either
> end of the connection (client or server).
> So...  we're looking around for a vendor that's taken the time to dual
> stack its servers.
> Any leads?
> -r

More information about the NANOG mailing list