ssl_client cannot handle inappropriate OCSP
The root cause may be on server side. But as for modern browser, it falls back to CRL to make things work. ssl_client just fails.
This even occurs with github, so it is annoying.
Connecting to gist.githubusercontent.com (151.101.108.133:443)
ssl_client: gist.githubusercontent.com: ocsp verify failed: ocsp response not current
wget: error getting response: Connection reset by peer
(from redmine: issue id 10031, created on 2019-02-25)