[Help-gnutls] Does verify_peers2 check cert expiration?

[Nikos Mavrogiannopoulos]

Sam Varshavchik wrote:
> After calling gnutls_certificate_verify_peers2(), I call
> gnutls_certificate_get_peers(), take the first cert, and call
> gnutls_x509_crt_get_activation_time() and
> gnutls_x509_crt_get_expiration_time(), and verify that the certificate
> has not expired.
> 
> Am I doing too much work? The man page for

No. Your checks are fine.

regards,
Nikos