diff --git a/src/ssl_sock.c b/src/ssl_sock.c
index bb1d69156..2f16d2871 100644
--- a/src/ssl_sock.c
+++ b/src/ssl_sock.c
@@ -622,7 +622,7 @@ static int ssl_sock_load_ocsp_response(struct chunk *ocsp_response, struct certi
 	id = (OCSP_CERTID*)OCSP_SINGLERESP_get0_id(sr);
 
 	rc = OCSP_single_get0_status(sr, &reason, &revtime, &thisupd, &nextupd);
-	if (rc == V_OCSP_CERTSTATUS_UNKNOWN) {
+	if (rc != V_OCSP_CERTSTATUS_GOOD && rc != V_OCSP_CERTSTATUS_REVOKED) {
 		memprintf(err, "OCSP single response: certificate status is unknown");
 		goto out;
 	}