As per the research that i did on CRL and OCSP (see here and here), there is no built in mechanism in Python for implementing certificate revocation checks with CRL. The ssl.VERIFY_CRL_CHECK_CHAIN can be leveraged but that also expects us to provide the crl file manually on the client end which is not very efficient. For reference, the WinHTTP library on windows automatically extracts all the crl paths in the certificates and checks them automatically whether the certificate has been revoked or not.
However, i could not find much information whether there is support for OSCP checks in Python 3.6 and whether it can be implemented easily either through a built in method or through a third party package maybe? Ideally, does any solution exist in Python which can automatically extract the crl server/ ocsp responder from the server certificate and then contact the respective service to verify whether the certificate has been revoked or not?