ocsp | PHP library to query HTTPS Certificates revocation status | TLS library

I'm working on pdf signatures using itext7 and currently need to support all PAdES signature levels: B-B, B-T, B-LT, B-LTA https://ec.europa.eu/digital-building-blocks/wikis/display/ESIGKB/What+are+the+B-T-LT+and+LTA+levels+of+an+electronic+signature

My problem is how i can create B-LT signature with itext? I have created B-B and B-T with this code:

I have an API that creates Base64 digest of a PDF Document. Now I want to create another API that takes this digest and PFX and creates an ETSI.CAdES.detached signature and takes LTV informations(Certs chain,OCSP response,CRL) that I want to embed in my PDF to obtain a PAdES-LTV signature using 3rd API(My 3rd API will take CAdES signature and LTV informations obtained from this API and will embed them in my PDF).I dont know how to create this ETSI.CAdES.detached signature using that digest and a PFX with Java and Bouncy Castle.I try to follow this github tutorial.

I'm trying to validate a certificate path with stapled OCSP checking through CertPathValidator. There might be some RFC-protocol that prohibits what I expect to validate just fine, but I've been unable to find this.

Some paint art to describe relations between certificates discussed: overview

When verifying the certificate path I get an exception stating that the responder is not authorized to sign OCSP responses.

CertPathValidatorException: Responder's certificate is not authorized to sign OCSP responses

This is due to sun.security.provider.certpath.OCSPResponse:561. The checks leading to this outcome expect the certificate used to sign the OCSP response (or its issuer) to be the same as the one issuing the certificate of the signature we are verifying.

This is however not the case here. OCSP responders certificate has extended key usage for OCSP-signing, should it not be able to sign OCSP responses when there is an intermediate between the CA and signers certificate?

I created a simple Python program to get the expiry date of SSL cert, from reference on the Internet. It works correctly for cert that is still not expired. But for cert that already expired, an error was raised during the socket handshake due to the cert expiry.

How do I get the expired cert info to extract the expiry date because the connection is refused. Is there a way to force the socket connection to establish even though the cert might be expired?

Code:

I'm having some trouble installing the python cryptography package on my raspberry pi, specifically with python version 3.9.8 (installed with pyenv). The cryptography package is installed on my system using pacman (python-cryptography package), and thus works using the main python interpreter (3.10.1). However, I need some version of python 3.9 specifically for another package I am using in this project. Any time I try to install cryptography through the python 3.9.8 environment, I get the following error:

Nifi v1.15.2 use https and authentication by default whereas it was not the case for older version of Nifi for example v1.13.2. I want to configure nifi v1.15.2 using http and without authentication
I think i have to modify one of these properties but i don't really know which ones
below the initial configuration

when I try to run certbot in my console on my Linux Ubuntu Server 20.04.3 LTS, I get following error:

I've been trying to build Qt 6.2.2 from source. I downloaded the sources package from the online installer but it fails each time, each time with a different error. I've tried a variety of configurations such as:

I have a server running Ubuntu 20.04, nginx and varnish with letsencrypt SSL.

I have installed PHPMyAdmin to the default server block and have another server block for my actual website running magento 2.4.3. This was all working fine until i installed varnish and now when trying to load either site i get the 503 Backend fetch failed error and when i try and load then on port 8080 from the URL i get a "this page cannot be reach" error.

I have configured nginx to listen on port 8080 for both sites, i have set varnish to listen on port 80. I have edited the vcl generated by magento to set the host and port to 127.0.0.1 and 8080 respectively as shown on https://devdocs.magento.com/guides/v2.4/config-guide/varnish/config-varnish-configure.html.

The varnishlog show the backend is unhealthy error but i dont know how to solve this.
The output of netstat -tulpn is: