X.509 Certificate Validation in Java: Build and Verify Chain and Verify CLR with Bouncy Castle

December 1, 2009
For one of my recent projects I needed to implement X.509 certificate validation library that validates a certificate across given set of trusted root certificated and a set of intermediate certificate. Initially I thought this is a problem that has already out-of-the-box solution in BouncyCastle but the CRL verification was found to be unpleasant to