Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://acao.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=acao.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=acao.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=acao.jp
And you can
check your domain name
.
#
Certificate of
acao.jp
{ "serial": "A661B2052D669B71105B1A4B322659BB", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "acao.jp", "port": 443, "subjectAltName": "DNS:acao.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/09/26 09:53:47", "expires_at": "2025/12/25 10:47:00", "today": "2025/11/02 17:02:41", "UTC": { "updated_at": "2025-09-26T00:53:47Z", "expires_at": "2025-12-25T01:47:00Z", "today": "2025-11-02T08:02:41Z" }, "remaining_days": 52 }
#
OCSP response of
acao.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = acao.jp i:C = US, O = Google Trust Services, CN = WR3 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Sep 26 00:53:47 2025 GMT; NotAfter: Dec 25 01:47:00 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WR3 i:C = US, O = Google Trust Services LLC, CN = GTS Root R1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R1 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Jun 19 00:00:42 2020 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgIRAKZhsgUtZptxEFsaSzImWbswDQYJKoZIhvcNAQELBQAw OzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEM MAoGA1UEAxMDV1IzMB4XDTI1MDkyNjAwNTM0N1oXDTI1MTIyNTAxNDcwMFowEjEQ MA4GA1UEAxMHYWNhby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AOWY8FYpeAyUZA3mA5HLd4rGvOPYgApHXP8h1xtSqAJSpatg5X2cmKr6Li52dqsQ fUJb/fPikmAwW/IreKnfjnbxSJVR1+OcopVPwRnttlB1B01IhjD3hSTYwl1JxvKW 2OnNYOHPDJT19FXp6VAcDAOew/RlpRDfrOOrYc2L6kN5x7b4Mk6MKPHoRwAh9U4N vb+D1TZeJUXngGKJWCRw0wMUn2+djtmh2DsPu2MhIDzCIy16K+/A87RkAlqRopGI 3Ppq9UByCilJtiJviGJcgSWttEsNPL/kV+rB3kRI68IlYj/7qI4g+WMAEcIlHr/C YpIKcndyh4aCH/7ma2VY1VkCAwEAAaOCAkEwggI9MA4GA1UdDwEB/wQEAwIFoDAT BgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSgcXrH 91iKmRsNlc2DKbnTvf8fHTAfBgNVHSMEGDAWgBTHgfX9jojZADxNY6JQMSSgziP+ IzBeBggrBgEFBQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29n L3Mvd3IzL3BtRTAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd3IzLmNy dDASBgNVHREECzAJggdhY2FvLmpwMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1Ud HwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dyMy8wTG5XZ3VOR1FmZy5j cmwwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDd3Mo0ldfhFgXnlTL6x5/4PRxQ 39sAOhQSdgosrLvIKgAAAZmDuftmAAAEAwBHMEUCIQC/2ngzOBI4RB8mAzCgTie1 FpyBypXuDFVilhEXIb3ntgIgHIIaQ1NmRm38JmcKQa7hrgZyszXOOqJ9sDlR8p79 aboAdwDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAAAZmDuf9cAAAE AwBIMEYCIQC/aZRIDPHNnanLfiz5dlPflJa+I1wMOZ25UiDRH9fzFQIhAJNdhwq8 R9WXRLWBuIn++lVFcD2FVf6Z1zKivFv/d6o5MA0GCSqGSIb3DQEBCwUAA4IBAQAG AtXoPIzoNHz4NskR5p8SLdvFrBsqmtTUfThKd5vSTLc+HwlNOXGR+FcueV1gqPwa GB7oEv0RwNpOr0DrhfJX0nO1hT/bAqiZoMqGdedRHkVqoYzS0yjbBCUzA3vUxueB zpD1UkeVHtR7DDaDtmF8SDmXD7FxSOXdUWnR2ATG4I/g93UWFBAZtrncjtGliEmS mHINa/Eyo9xDDtMk4RuKB782tjuUrCkDe01n6dAna1U+uQOGlnFYSJN91g1JGvUR CG9rFW6Wal0qBPyzufXkgVIHVjQJvubFz6UwtLMd8boNFgKC2S5ylkjAhqTHSqIM 6I4yEVmySLrTZtLG3rnk -----END CERTIFICATE----- subject=CN = acao.jp issuer=C = US, O = Google Trust Services, CN = WR3 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4492 bytes and written 398 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
acao.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.