curl: Unknown error (0x80092012) - The revocation function was unable to check revocation for the certificate

ssl ssl-certificate tls1.2

54,979

Solution 1

I've been using curl through a mitm proxy for pen-testing and getting the same issue.

I finally figured that curl needs a parameter telling it not to check certificate revocation, so the command looks something like this:

curl "https://www.example.com" --ssl-no-revoke -x 127.0.0.1:8081

The -x parameter passes the proxy details - you may not need this.

hth

Solution 2

You can use the --ssl flag and omit the https like this

curl --ssl c5.ppy.sh

54,979

LPOPYui

Updated on July 09, 2022

Comments

LPOPYui almost 2 years

C:\Users\casta>curl https://c5.ppy.sh
curl: (35) schannel: next InitializeSecurityContext failed: Unknown error (0x80092012) - The revocation function was unable to check revocation for the certificate.

I've made my own CA, and I made a certificate from this CA.

The problem is, when I tried to access website with this certificate, It works fine!

but If I tried with curl or C# applications, It returns error.

C# error is here:

2019-02-28T09:20:33: System.Net.WebException: The request was aborted: Could not create SSL/TLS secure channel
2019-02-28T09:20:33: 위치: #=zGFbxUFU_LnBci6wJmmCy1$E=.#=z0YcFrd6MZP1A()
2019-02-28T09:20:33: 위치: #=zuFHGCPNOLQmjQEcRmqQHLnQ=.#=z3NGNjJ0=()

jeffsdata over 2 years

I got this issue while using PowerShell on a network with a self-signed certificate. Unsure how to tell PowerShell that the cert is fine, though.

LPOPYui over 4 years

Thank you! Finally I resolved it by making CRL list.
Surya over 3 years

How does --ssl flag helps here? Just curious.
Max over 3 years

It tries with ssl and if fails revert to non-secure docs. If you specify https you force curl to use ONLY the SSL.
Surya over 3 years

Understood. Thanks.
Vasanthakumar Jagannathan almost 2 years

Thanks, added --ssl-no-revoke to the command it resolved.