Batch analysis support

[grandamp]

As a PKI provider, or, as an auditor, I would like to analyze millions of certificates.

How would that be possible?

[djpackham]

@grandamp, batch support was something we had discussed and added it to our list of possible items to support, though I don't think we had contemplated supporting a batch of millions of certs at one time... Given the use case of a high number of certs it seems including some sort of web service would be more efficient?

[mttcpr]

That's definitely a big 180 from the kind of human readable html single cert output we've talked about. The original purpose of this tool was to check a sample cert to see if you've configured your CA and CMS to put the right stuff in them, not for doing an audit of every certificate issued by a CA.

@grandamp Are you changing your cert profiles that frequently over there? :)