Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://ace-d.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=ace-d.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=ace-d.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=ace-d.jp
And you can
check your domain name
.
#
Certificate of
ace-d.jp
{ "serial": "0D7A0FD8FB51244B115EDFDB518021F0", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "ace-d.jp", "port": 443, "subjectAltName": "DNS:ace-d.jp, DNS:www.ace-d.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2025/09/16 09:00:00", "expires_at": "2026/10/16 08:59:59", "today": "2025/11/03 06:41:16", "UTC": { "updated_at": "2025-09-16T00:00:00Z", "expires_at": "2026-10-15T23:59:59Z", "today": "2025-11-02T21:41:16Z" }, "remaining_days": 347 }
#
OCSP response of
ace-d.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = ace-d.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M01 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Sep 16 00:00:00 2025 GMT; NotAfter: Oct 15 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M01 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:21:28 2022 GMT; NotAfter: Aug 23 22:21:28 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFwDCCBKigAwIBAgIQDXoP2PtRJEsRXt/bUYAh8DANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTI1MDkxNjAwMDAwMFoXDTI2MTAxNTIzNTk1OVowEzER MA8GA1UEAxMIYWNlLWQuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQz/TnvhynKQDpSTn03GYJWrMIvvMd/AdQ6DsPFoBWsyZXRa6CuezXNDthuQiQ 7j3ivhK1cc2YfELKfEhHg2yGFXrhPOTyk+e8NTUsBn3luuAaMMAIYvmPqtgMWC5y X3HPfYgbflRg8zZCspiWQT2dVVqWWi+szahELYjkGSeK9Er9YVjOWNA9uGTvYWLG loTiKz7eSEWbM1viWsfgI+VkIhznMp3nF5rSg5gHtG/rdFVUXQmUeY1K9F+95M3Y ALCC/8M9sclzPp3UptQ7MebEcA/mv3k6FqYGpSSaf/BMcloFgJllDkIisGnuEEaE bwxgDfJhqFVfiLMU1ap2BYGHAgMBAAGjggLlMIIC4TAfBgNVHSMEGDAWgBSBuA5j iokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQU+GWqlJHWJESmp3cjwvtYLXqKhD8w IQYDVR0RBBowGIIIYWNlLWQuanCCDHd3dy5hY2UtZC5qcDATBgNVHSAEDDAKMAgG BmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwOwYD VR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVzdC5jb20v cjJtMDEuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0cDovL29j c3AucjJtMDEuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRwOi8vY3J0 LnIybTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/BAIwADCC AX4GCisGAQQB1nkCBAIEggFuBIIBagFoAHcA1219ENGn9XfCx+lf1wC/+YLJM1pl 4dCzAXMXwMjFaXcAAAGZUKmMRAAABAMASDBGAiEArQnKp9h/YwnVoJQGMoaSAISr S1fCa/9LHjnxxp/fGgQCIQDYnO/i89acDLDYhZDF8uxUpErepMx4LVZmkvLTgJOu hgB1AMIxfldFGaNF7n843rKQQevHwiFaIr9/1bWtdprZDlLNAAABmVCpjHgAAAQD AEYwRAIgM+0MtMDt78jXui1eH3m353szrrbL3Rrq/weag4W4Fu4CIE/128hsX/3o IrnKHm80tK2k0Y1VXSDZuVRrEQR2xND/AHYAlE5Dh/rswe+B8xkkJqgYZQHH0184 AgE/cmd9VTcuGdgAAAGZUKmMiwAABAMARzBFAiEA7EOGXug0BPRT1i+w0/nMhfgq tqJjBQ8XSRI3rAd8kDICIGb+Jy3IYtJ9HRUZTL6JH5G4bA0WqSVENqbu5RgE4sQB MA0GCSqGSIb3DQEBCwUAA4IBAQC3eMI8n72CrebMh/m+vYGF1x1K+JrB6x8xqL9Q y/le9vWCnXp0C8IP1X1x65fyKTqF847PAJ04xruNa772Vj/6x0HYIhdsD3AHWauF DlF/SV4+DuRla2Xn07kb58uyKvf6tzfTv1+FjvnuGrkrKmWImYlZVNO/iMY8SYZP h2piS/XmJTns8yqw7mBR990wrq+ZQxNdKpMIrH+1IdVkqv5bDfglHlYafVra/eS/ ogLnBOw4IvYsFy30oDyuSk9CEhgJY6NRPZ+zLsQ8qlvTW/NJmReMyiL1Gd13RCBw gTZ7Sz51g50Jc5gwUGwtsxdb9bZxdkhJxs94Hw1atJ2CxIF5 -----END CERTIFICATE----- subject=CN = ace-d.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M01 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4326 bytes and written 383 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
ace-d.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.