Years ago, I have generated a revocation certificate and printed it on paper. Now
I have converted it back into file form, and I want to see what’s in it.
$ ./gpg2 --help | grep -a rev
--gen-revoke Ein Schlüsselwiderruf-Zertifikat erzeugen
No words of printing the contents of a key revocation certificate.
No question about printing what’s in a key revocation certificate.
GPG doesn’t add a comment to the key revocation certificate, telling the human
reader for which key ID this certificate applies, when it has been generated or
some other hint.
The data of the key revocation certificate is not encoded in ASN.1. If it were, it
would be easy to decipher.
Looking at the base-64 decoded data, I managed to find the last 12 digits of my
key ID. Why only 12 digits?
So how can I print the information about the revocation certificate, like this?
$ gpg --show-revoke revoke.asc
revocation certificate for key [...] BACC F5EE
reason: 1 (key no longer valid)
reason: I accidentally published this key in a local newspaper
valid: yes (the signature of the revocation certificate matches the public key)