Perform OCSP response validation.
policy/protocols/ssl/weak-keys.bro
policy/protocols/ssl/validate-certs.bro