Enhance OCSP_request_verify() so it finds the signers certificate
properly and supports several flags.