I've been searching for this feature too. Have you found a solution?
I have client auth using SSL certificates working perfectly, but don't seem to be able to find more info about OCSP validation by JBoss.
J2SE has support for OCSP since version 5.0. Please check:
Did someone try to combine this with Jboss? Was it working as expected?
There is some useful info on article discussing this topic on glassfish:
But, most of that article is just copied form the first one.