GetCertificateStatus

CertificateManagement CS->CSMS OCPP 2.0.1

Sent by the Charging Station to request the revocation status of a certificate via OCSP, enabling it to validate EV certificates during ISO 15118 authentication.

Quick Reference

Required Fields

ocspRequestData OCSPRequestDataType

OCSP request parameters including issuer hash and certificate serial number

ocspRequestData.hashAlgorithm HashAlgorithmEnumType

Hash algorithm: SHA256, SHA384, or SHA512

ocspRequestData.issuerNameHash string(128)

Hash of the issuer's distinguished name

ocspRequestData.issuerKeyHash string(128)

Hash of the issuer's public key

ocspRequestData.serialNumber string(40)

Serial number of the certificate to check

ocspRequestData.responderURL string(512)

URL of the OCSP responder

Example Payload

{
  "ocspRequestData": {
    "hashAlgorithm": "SHA256",
    "issuerNameHash": "a3f1b2c4d5e6f7a8b9c0d1e2f3a4b5c6d7e8f9a0b1c2d3e4f5a6b7c8d9e0f1a2",
    "issuerKeyHash": "b4c2d3e4f5a6b7c8d9e0f1a2b3c4d5e6f7a8b9c0d1e2f3a4b5c6d7e8f9a0b1c2",
    "serialNumber": "01A2B3C4",
    "responderURL": "http://ocsp.example.com"
  }
}

Example Full Frame

[
  2,
  "msg-001",
  "GetCertificateStatus",
  {
    "ocspRequestData": {
      "hashAlgorithm": "SHA256",
      "issuerNameHash": "a3f1b2c4d5e6f7a8b9c0d1e2f3a4b5c6d7e8f9a0b1c2d3e4f5a6b7c8d9e0f1a2",
      "issuerKeyHash": "b4c2d3e4f5a6b7c8d9e0f1a2b3c4d5e6f7a8b9c0d1e2f3a4b5c6d7e8f9a0b1c2",
      "serialNumber": "01A2B3C4",
      "responderURL": "http://ocsp.example.com"
    }
  }
]

Format: [MessageType, MessageId, Action, Payload]

Open in Builder Go to Validator

Overview

GetCertificateStatus allows the Charging Station to ask the CSMS to perform an OCSP check on an EV certificate. This is part of the ISO 15118 Plug & Charge flow, where the CSMS acts as an OCSP relay.

Expected Response

  • status: Accepted or Failed
  • ocspResult: Base64-encoded OCSP response (if Accepted)

Usage Notes

  • The CSMS forwards the OCSP request to the responder URL and returns the result
  • This avoids requiring the Charging Station to have direct internet access for certificate validation

Testing Tips

  • Test with a valid EV certificate’s OCSP data and verify a proper response
  • Test with an unreachable OCSP responder and verify Failed

Common Errors

PropertyConstraintViolation

Cause: responderURL exceeds 512 characters

Solution: Keep the OCSP responder URL under 512 characters

Related Actions

Authorize Get15118EVCertificate InstallCertificate