Windows
By default, Windows caches Certificate Revocation Lists (CRL) and CA certificates to quickly verify certificate chains. The downside of this behavior is that the client does not pick up a newer CRL until the locally cached CRL has expired. To delete OCSP and/or CRL cache from your Windows system:
Go to Start Menu > Run
Type cmd and press Enter
Enter the following command and press Enter to execute:
certutil -urlcache * delete
Mac OS X
Note: After clearing the cache, you need to restart your computer for the changes to take effect.
OS X (through 10.11)
To delete both OCSP and CRL cache, in a terminal, enter the following command:
sudo rm /var/db/crls/*cache.db
That will remove the following files:
OS X 10.12 Sierra
To delete both OCSP and CRL cache in OS X 10.12, open a terminal and run the following command:
sqlite3 ~/Library/Keychains/*/ocspcache.sqlite3 'DELETE FROM ocsp;'
Check your certificate installation for SSL issues and vulnerabilities.