Can CRL and CA Issuers urls contain spaces?

Question

I am using OpenSSL

For example, I have a CRL/CA Issuers URL that is like this:

http://pki.example.com/Example Intermediate Certificate Authority.crl

#CA Issuers
caIssuers;URI.0 = http://pki.example.com/Example Intermediate Certificate Authority.crt

So, I add them to the config file like:

 crlDistributionPoints = @crl_section
 authorityInfoAccess = @ocsp_section

 [crl_section]
 URI.0 = http://pki.example.com/Example Intermediate Certificate Authority.crl

 [ocsp_section]
 OCSP;URI.0 = http://pki.example.com/ocsp/
 caIssuers;URI.0 = http://pki.example.com/Example Intermediate Certificate Authority.crt

Is the above config going to result in an invalid cert?

Let us [continue this discussion in chat](https://chat.stackexchange.com/rooms/119462/discussion-between-steffen-ullrich-and-chi-c-j-rajeeva-lochana). — Steffen Ullrich, Feb 07 '21 at 11:17

Infra · Accepted Answer · 2021-02-07T12:55:53.567

1

Generally URL cannot contain Space and Only Allowed to Use in URL 0-9,a-z _- (dash).If you need to use space in url try it with _ (underscore). CRL is not specialized URL and same rule apply for them as well.

edited Feb 07 '21 at 12:55

answered Feb 07 '21 at 12:46

Infra

650
1
6
19

Can CRL and CA Issuers urls contain spaces?

I am using OpenSSL

1 Answers1