Suspeneded certificates are those that were revoked with reason "Certificate Hold". I'm using this code to do it:
Connect-CertificationAuthority -ComputerName $CN|Get-RevokedRequest -Filter "Disposition -eq 21","NotAfter -ge $DT","RevokedEffectiveWhen -ge $lastDT","RevokedReason -eq 6" -Property "RawCertificate" | %{[IO.File]::WriteAllText("$pathCertSuspendedValidExport\$($_.SerialNumber).cer", $_.RawCertificate)}
My final goal is to get all certificates from database sorted in four folders: issued, lapsed, revoked & suspended. And then refresh them every day.
So certificates, that were placed in Suspended folder, could become unrevoked, so i should place them in Issued folder and remove from Revoked & Suspended folders.
Connect-CertificationAuthority -ComputerName $CN|Get-RevokedRequest -Filter "Disposition -eq 21","NotAfter -ge $DT","RevokedEffectiveWhen -ge $lastDT","RevokedReason -eq 6" -Property "RawCertificate" | %{[IO.File]::WriteAllText("$pathCertSuspendedValidExport\$($_.SerialNumber).cer", $_.RawCertificate)}
My final goal is to get all certificates from database sorted in four folders: issued, lapsed, revoked & suspended. And then refresh them every day.
So certificates, that were placed in Suspended folder, could become unrevoked, so i should place them in Issued folder and remove from Revoked & Suspended folders.