Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://acao.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=acao.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=acao.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=acao.jp
And you can
check your domain name
.
#
Certificate of
acao.jp
{ "serial": "F4D9A0B54500B8D012E567E23208FE3F", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "acao.jp", "port": 443, "subjectAltName": "DNS:acao.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2026/03/09 04:02:51", "expires_at": "2026/06/07 04:56:24", "today": "2026/04/01 10:31:22", "UTC": { "updated_at": "2026-03-08T19:02:51Z", "expires_at": "2026-06-06T19:56:24Z", "today": "2026-04-01T01:31:22Z" }, "remaining_days": 66 }
#
OCSP response of
acao.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = acao.jp i:C = US, O = Google Trust Services, CN = WR3 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Mar 8 19:02:51 2026 GMT; NotAfter: Jun 6 19:56:24 2026 GMT 1 s:C = US, O = Google Trust Services, CN = WR3 i:C = US, O = Google Trust Services LLC, CN = GTS Root R1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R1 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Jun 19 00:00:42 2020 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgIRAPTZoLVFALjQEuVn4jII/j8wDQYJKoZIhvcNAQELBQAw OzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEM MAoGA1UEAxMDV1IzMB4XDTI2MDMwODE5MDI1MVoXDTI2MDYwNjE5NTYyNFowEjEQ MA4GA1UEAxMHYWNhby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AL6PW9/vLxf3bSZhioGnghq6X6Pz9bpJ0h14vElTgEw99XJjHbRS8aHv/spQYsSg MTOjGhS2ugL7NUJmgr64uDJwhmDGf8DZSGk+RiVTqYiI7pdkT8BW6NfYIT3GFaZV bHdbWdQ/AePKeIz26tD0VrTFoysCtVllQ4xajpQ1QQRm68oRKX/IqxNbF3QqDtJE AMPKT9dPtLU9VC42aJfgxpd2ZhAO/ia1Spa3BsIUDoPXyVngBTS/z3g78AqzIY1U A6SqW0X0jcT6eDced9eXyAUYXwr6Ne80rRjd8scPsJfnJMN9GieJYNqxpohlPbCO oVdGLbItHNm5DbzhWQYdj6cCAwEAAaOCAkAwggI8MA4GA1UdDwEB/wQEAwIFoDAT BgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTCxG38 G2qt+tyv2mD1kE6jB2bEyjAfBgNVHSMEGDAWgBTHgfX9jojZADxNY6JQMSSgziP+ IzBeBggrBgEFBQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29n L3Mvd3IzLzlOazAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd3IzLmNy dDASBgNVHREECzAJggdhY2FvLmpwMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1Ud HwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dyMy9FSFZMR0dSYWZ1RS5j cmwwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwBJnJtp3h187Pw23s2HZKa4W68K h4AZ0VVS++nrKd34wwAAAZzPC6KqAAAEAwBIMEYCIQCV+y6nCPFjmUjlcw3ox6p5 iLrP6glprjfWP4AN7EOkJgIhAMwynxS9AaTum64IxojUJ4SYa7R1JFxSqZkKuhZn EUSeAHUADleUvPOuqT4zGyyZB7P3kN+bwj1xMiXdIaklrGHFTiEAAAGczwuiowAA BAMARjBEAiByuZdGXXgmk+4Z4xOUzUQadssACfBjiWCBJrIgkC+7IgIgczjvwhqm f/70uz98PkqJGTZloAHU/7R2stUF3KQe4hAwDQYJKoZIhvcNAQELBQADggEBABRE 07KM7g31tWz+huBo3U6OArG176pGdpiCPLrd9yfhN8mTzEyH8WMOZtwV+vb3xlxi ZgbtLcOnPytZe1Xx6GzecjiXm9UJBi4fSI9NJEzcOI5vjvLGLiJNq0c/lTUPvICI 6XsknHf7mlCsTyIYNmhFiMj0HOySYW+wTd3ciOL9bIhFo5ompT4pQ8P4wdHIaxJf puPkHs2ToM7QmtzK1r95PM8g/d1fnL7CLNvfJsEeLL7qfqYKgjsReVyrKLLkAWKs AN/JJyO5qM5eAi5ZDxJGhjGuwm1CwN+JWnw64ku0LM+ZZNJK8wcv8FvUmu9SUh/2 bu6HCn7BcsE5rNA7cZ4= -----END CERTIFICATE----- subject=CN = acao.jp issuer=C = US, O = Google Trust Services, CN = WR3 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4491 bytes and written 398 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
acao.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.