Can't get embedded OCSP to validate in Adobe Reader

I am signing a PDF with Bouncy Castle and embedding an OCSP response in the PKCS7. I assemble the signed PDF with PDFBox, but I can't for the life of me get the resulting file to validate properly in Adobe Reader (the OCSP is not recognized). Since the OCSP responder requires signed requests, I have to embed the response in the file.

If someone would have any pointers at all, it would be much appreciated.

I presume it's easier to look at the actual signature/certs/OCSP than my code. The signed PDF is available here:

And the Base64-encoded signature is here:


When I look at the certificate in Adobe Reader, and check Revocation > Problems encountered, it says:

Certificate is not valid for the usage. Must sign the request.

The Revocation-section also says:

An attempt was made to determine whether the certificate is valid by doing 
a revocation check using the Online Certificate Status Protocol (OCSP).

So it seems that the embedded OCSP is skipped altogether.