The T-Systems Trust Center regularly creates certificate revocation lists (CRL), listing all revoked certificates. They can be requested both via the web site and from a directory service (LDAP).

In addition, the server pass certificates can also be checked via OCSP protocol.

For details, refer to the CPS for servers pass.