Antonio,
i have updated the NaviServer 5 code to make the OCSP AIA handling more robust. One has to distinguish between the following cases.
- The certificate requires stapling (extension must staple)
- The certificate allows stapling
- The certificate does not allow stapling
It seems the problem you had was the second case, but where a NULL AIA URL was provided.
Please test if possible with OCSP and your certificate. If this still does not work, please mail the certificate to me. If it works, i'll backport the changes to the 4.99 branch to have also a working 4.99 release.
all the best
-g
