What is a .CRL file?
CRL is a list of certificates that should no longer be trusted.
- Did you know
- A CRL lets software reject certificates that were revoked before they expired.
- Each CRL is issued and signed by a certificate authority, listing serial numbers of certificates revoked before they expire.
- Entries can carry a reason code such as keyCompromise or superseded, defined by the X.509 standard in RFC 5280.
- What Analyser reads
- Inspect security and crypto files: PEM private/public keys (RSA/EC/Ed25519, PKCS#1 vs PKCS#8, encryption), OpenSSH .pub with SHA-256 fingerprint, PuTTY .ppk, PKCS#10 CSR, X.509 CRL, PKCS#7 bundles, OpenVPN/WireGuard configs, Java KeyStores, Apple .mobileconfig/.mobileprovision, Windows .reg (with autorun flagging), and pcap/pcapng captures - warning when a private key or secret is present.
- Depth of analysis
- .CRL is an identification-grade format: Analyser recognises it from its bytes and decodes the header metadata it carries, rather than opening it in a full viewer. Formats that do get a full viewer are marked "Full" on the formats page.
- Open a .CRL file
- Drag a .CRL file onto the Analyser home page (or tap to pick one). It is identified entirely in your browser - nothing is uploaded, there is no account, and it works offline once installed.