Thank you for your quick reply.
* You ran the wget on the CRL from on the LDAP server itself and confirmed it.
Yes
* Did you wget every CRL for the entire CA chain?
In my setup, there is only one CRL url that is set in the LDAP server certificate.
This CRL is available thanks to wget.
For the moment, I will try to disable the CRL.
I hope this work around will be accepted by my manager.
Thanks.