Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://ace-d.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=ace-d.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=ace-d.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=ace-d.jp
And you can
check your domain name
.
#
Certificate of
ace-d.jp
{ "serial": "02B03796C0C9F49E0A6163F7C5C7C105", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "ace-d.jp", "port": 443, "subjectAltName": "DNS:ace-d.jp, DNS:www.ace-d.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2024/10/16 09:00:00", "expires_at": "2025/11/15 08:59:59", "today": "2024/11/21 15:57:50", "UTC": { "updated_at": "2024-10-16T00:00:00Z", "expires_at": "2025-11-14T23:59:59Z", "today": "2024-11-21T06:57:50Z" }, "remaining_days": 358 }
#
OCSP response of
ace-d.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = ace-d.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M02 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Oct 16 00:00:00 2024 GMT; NotAfter: Nov 14 23:59:59 2025 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M02 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:25:30 2022 GMT; NotAfter: Aug 23 22:25:30 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIQArA3lsDJ9J4KYWP3xcfBBTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MTAxNjAwMDAwMFoXDTI1MTExNDIzNTk1OVowEzER MA8GA1UEAxMIYWNlLWQuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClJFzOt1VPKY+CvglZ6Xl8OyblCfVW+CZvoSxp4ISuq4F8o312vzcU53LqbGz0 dep21tmWBljvTxFvCZ+2NhilcJOqFE8l4xHtgq02ZsgSo2PfJJCEVIALH3m1cRse EBq98spwEsewz1fCHmtINhCAtdIMQ2bj5XpFuhnuET3IMJFZu1bgQ1mf8K4MvKmz STNmYSApo4SSnpki8bqcjAgrzr1am5RezyK+/JvJERI4AWsZ66XV5Ml7A/6Z0IcA Kl+Gp1TqNgvCOxALTbPwZwGMsWUennp/4ebxyY1SHMHx4nWUYXET0mgkugs7Hkgl Qb9RCnarOzJNWLVUmhOC9dM9AgMBAAGjggLyMIIC7jAfBgNVHSMEGDAWgBTAMVLN WlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUVndJo8fTwRKG1y18CZtMhLKwpaAw IQYDVR0RBBowGIIIYWNlLWQuanCCDHd3dy5hY2UtZC5qcDATBgNVHSAEDDAKMAgG BmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDIuYW1hem9u dHJ1c3QuY29tL3IybTAyLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGG IWh0dHA6Ly9vY3NwLnIybTAyLmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYq aHR0cDovL2NydC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY2VyMAwGA1Ud EwEB/wQCMAAwggGBBgorBgEEAdZ5AgQCBIIBcQSCAW0BawB3ABLxTjS9U3JMhAYZ w48/ehP457Vih4icbTAFhOvlhiY6AAABkpPvF+AAAAQDAEgwRgIhAOYOIiyi/2ly cZ24vbRlVO6nr0a5cS9SnjVq1Hj4v2CtAiEA4fU9mNlUxNcYf+lj4ywu56oxQ98X 7Jgq7uLv8CeRNd8AdwDm0jFjQHeMwRBBBtdxuc7B0kD2loSG+7qHMh39HjeOUAAA AZKT7xddAAAEAwBIMEYCIQC4XWl+yQFnPJq23lrEWHMHeKMuu4mMVP+AcGfiCJcp PAIhAIHWpBMDh4y8tcofkGNyYJGSFkwA5TVzk4poXEV6eAi9AHcAzPsPaoVxCWX+ lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGSk+8XuAAABAMASDBGAiEAgb5jsdzP 7f+G6gTq3ndU+BK+nPmKn0SEz8DWnQylJKQCIQDzUMHEBg7mw76ckfKA0oP9NsIC tWIqHU+3zqXnyyprTTANBgkqhkiG9w0BAQsFAAOCAQEAid3/PJcCl1wx/ztIjuBR 3HvGj0ojOGisdvTgDCBIJpSdNTMdvZAJZHbd1KwM8ry5ADsx4yg1X/7wJBepWZKm JYUHy2wimNufHNY3wwh7sOTqIK0nmUX8Sa3dhJOUIqMusJdlMMbbWEd1nC+E6Rcm soqXdOn0svPFuFvz+T5bbh5qSVEsN2uHahjnVif6LWqF/kGuTU1PdMa/bN/zIlkz 1ab60yIq8aSEN3Zt90yl/mmlzwsYatF1PNtWoYnqA2ORSA4+IV11Je7zP1IFsTNP +K5qokEATlWowuR6UYdyfLV6nLTsoPfBzoVTpX3bNIPlpNFhQqs9uzJnwwFomcso Qg== -----END CERTIFICATE----- subject=CN = ace-d.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M02 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4339 bytes and written 383 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
ace-d.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.