Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://ashiya-nishinomiya.take-eats.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=ashiya-nishinomiya.take-eats.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=ashiya-nishinomiya.take-eats.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=ashiya-nishinomiya.take-eats.jp
And you can
check your domain name
.
#
Certificate of
ashiya-nishinomiya.take-eats.jp
{ "serial": "0DBE094315B3FDD5158740D7C3CE47F9", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "ashiya-nishinomiya.take-eats.jp", "port": 443, "subjectAltName": "DNS:*.take-eats.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2023/06/01 09:00:00", "expires_at": "2024/06/30 08:59:59", "today": "2024/04/24 05:09:10", "UTC": { "updated_at": "2023-06-01T00:00:00Z", "expires_at": "2024-06-29T23:59:59Z", "today": "2024-04-23T20:09:10Z" }, "remaining_days": 67 }
#
OCSP response of
ashiya-nishinomiya.take-eats.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.take-eats.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M01 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jun 1 00:00:00 2023 GMT; NotAfter: Jun 29 23:59:59 2024 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M01 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:21:28 2022 GMT; NotAfter: Aug 23 22:21:28 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT 3 s:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 i:C = US, O = "Starfield Technologies, Inc.", OU = Starfield Class 2 Certification Authority a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Sep 2 00:00:00 2009 GMT; NotAfter: Jun 28 17:39:16 2034 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIQDb4JQxWz/dUVh0DXw85H+TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTIzMDYwMTAwMDAwMFoXDTI0MDYyOTIzNTk1OVowGTEX MBUGA1UEAwwOKi50YWtlLWVhdHMuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCrGa12wV+srlyeE+KLWuXfWrVH0WuEvNJkYqzu8hW3esSfaiBeHJ6i 1T5F3EHf/+c+3tm553SZ6UGG/ZF/Kgu4NDTha8DN9iyrSM7PLcG0lson2Yj8wMl/ 78gC5AtuJm/JrL67TUmQ4Cb76J4tYCLe6yu+B0ykZqEwAGQuytEsAk5LTUJX+R5c 3ehYArNUoCgg0Zh4rK/pBia+ABO1GIxanqn9JBonxiuAEU9UWCvUhVmkDERU2xWL nRkcVD5YphxoWfA3uB7MpVTCZCqTtfbtudzNsuPjuqWfl0yrRBknmCQgOVeKhsNi ZIwxrf65UjXaDI1epFhO+0nyW23fZfu3AgMBAAGjggLnMIIC4zAfBgNVHSMEGDAW gBSBuA5jiokSGOX6OztQlZ/m5ZAThTAdBgNVHQ4EFgQU4JE9M1HoIWz6HU/OpTSl PbrJ44owGQYDVR0RBBIwEIIOKi50YWtlLWVhdHMuanAwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAs hipodHRwOi8vY3JsLnIybTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jcmwwEwYD VR0gBAwwCjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5yMm0wMS5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQucjJtMDEuYW1hem9udHJ1c3QuY29tL3IybTAxLmNlcjAMBgNVHRMB Af8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdwDuzdBk1dsazsVct520 zROiModGfLzs3sNRSFlGcR+1mwAAAYh0U8mRAAAEAwBIMEYCIQDV8brxwV7eEFX/ 3SgRM5wrIIk8EkcQf+2PMj3Dio5VnAIhAJnUpfiNjec+yrPXcCJVdyxBeYvzYQzl xqCYIcRO+Oy+AHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGI dFPJwwAABAMARjBEAiB/EEc3fRKJclf6rIuoASDWyH5TYfMO3OW+mJuWrTeiPAIg EoYJX2h8f6j/2PZ8K39PoKTPnHAj1jxd4NXXilEhjMgAdgDatr9rP7W2Ip+bwrtc a+hwkXFsu1GEhTS9pD0wSNf7qwAAAYh0U8mVAAAEAwBHMEUCIF3wmGssnHpdp6GN jS6Or1SohBqz2iJeyVEGQM0kU+ErAiEAuU9wsAqqEchsiud0X3vAYM0qnJd/3q5M JSHblrR5GI4wDQYJKoZIhvcNAQELBQADggEBANyz9dcfPviz02Q6xAHVWiZRZdSF ymNvXDEf3iN/qWUWVd8k2RersvBMOubCcL9KR5ubQtZgKTAaA5hhkUJrhB2XY0jJ uvLk4XwRBTCOQ3W7tuxvzQGPcD5sYNHgdkalXFpO7pz78/H5CSNoguwR6MDvMAQn nSRsAp+dOAh6BwvInZ6XUzuXcRn7JxNoPESgERVcNuL98dbCe13Vakq9gTZ7BNoH CxyqyPO2bglAbf6tB0me5m2tG5TpHKbepzuVFzkdNDjPOeUJCMfLpAsMAK+Rm/1N zeB+zPi4skvdj8jmPUazEVIcYo8Y8s2AG0Z4M/0/iaJzN4QZsDV390Z+DN8= -----END CERTIFICATE----- subject=CN = *.take-eats.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M01 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5571 bytes and written 468 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: F7DDED42BB6F5E4E61A0954C763CE4F4A5044889E54603EAB4A20D4BB6F83590 Session-ID-ctx: Master-Key: 966A7E7DBFBB61A8162B1A90E395D3ABDC60083C7F3B005AB8F66F9794B44CA6547ABB7F32354234D1CB5B60BF5E1CE6 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - d8 3f cf 2f 24 93 4e 04-e0 fd 62 62 14 fa f3 96 .?./$.N...bb.... 0010 - 31 ee 40 67 4c d0 d6 42-e8 af 87 89 e0 a3 a1 65 1.@gL..B.......e 0020 - 89 68 4c fc b3 10 e3 e8-08 2d 2f 88 9a 14 6c 37 .hL......-/...l7 0030 - db 0e c7 41 ce dd b7 fe-28 3a dd 91 b1 28 a6 e0 ...A....(:...(.. 0040 - 2e 28 2b 6b 16 d2 99 ca-47 b7 a7 f7 85 3d b4 c9 .(+k....G....=.. 0050 - 2a b5 1d 00 2b a7 90 b9-ba cf 41 e8 1e 38 55 b8 *...+.....A..8U. 0060 - 02 cf 3f 8e bb 11 cf f3-d7 ..?...... Start Time: 1713902951 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
ashiya-nishinomiya.take-eats.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.