Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://c-soa.take-eats.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=c-soa.take-eats.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=c-soa.take-eats.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=c-soa.take-eats.jp
And you can
check your domain name
.
#
Certificate of
c-soa.take-eats.jp
{ "serial": "08053F579B3F9703E6E9C4C9C95D466B", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "c-soa.take-eats.jp", "port": 443, "subjectAltName": "DNS:*.take-eats.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2024/05/01 09:00:00", "expires_at": "2025/05/31 08:59:59", "today": "2024/11/21 15:29:34", "UTC": { "updated_at": "2024-05-01T00:00:00Z", "expires_at": "2025-05-30T23:59:59Z", "today": "2024-11-21T06:29:34Z" }, "remaining_days": 190 }
#
OCSP response of
c-soa.take-eats.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.take-eats.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M02 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 1 00:00:00 2024 GMT; NotAfter: May 30 23:59:59 2025 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M02 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:25:30 2022 GMT; NotAfter: Aug 23 22:25:30 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT 3 s:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 i:C = US, O = "Starfield Technologies, Inc.", OU = Starfield Class 2 Certification Authority a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Sep 2 00:00:00 2009 GMT; NotAfter: Jun 28 17:39:16 2034 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFyTCCBLGgAwIBAgIQCAU/V5s/lwPm6cTJyV1GazANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDUwMTAwMDAwMFoXDTI1MDUzMDIzNTk1OVowGTEX MBUGA1UEAwwOKi50YWtlLWVhdHMuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQC8yO+wPqyRt9+qek0anfUvBcwOXB3Bcj9wK+KsfajVLEBLwD5EWghw h0OhztXpLpoL9LQkD188gPnWucDIQLUwdam7kyMfaOoSiSC2VS7MQMkSaWXzdJ69 abVs8RdNGgUs6wB8zmVJHku4oCg5T6UsFKpw3i7r5ioL4Yk61Ht7LdLJX+w8ZeEi tRz1x72d1dDbiIlamVl7KGSxgQA6DXB1lAVF4U5vnGAGP9MTejRX2tHkMKDmyWq5 1hXZ8zhfh0LK8VZFE+NGmH1S5CD04UsddZ4h61Qg+U5N7eMhfsM6Ti4rP5sevO/R AAjv4JjKnogrd3AHoFw3BhMF7vi58Sc3AgMBAAGjggLoMIIC5DAfBgNVHSMEGDAW gBTAMVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUdxXHXIHnBX+ZR9ccgl+Z +LY9Q1QwGQYDVR0RBBIwEIIOKi50YWtlLWVhdHMuanAwEwYDVR0gBAwwCjAIBgZn gQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAyLmFtYXpvbnRy dXN0LmNvbS9yMm0wMi5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMB Af8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdgBOdaMnXJoQwzhbbNTf P1LrHfDgjhuNacCx+mSxYpo53wAAAY8xpYxzAAAEAwBHMEUCIA4in1Znys15rfLM ALvo1x6nWYYzzbUhVXv9hPqBMsrbAiEAy3Q/boSZGtC0F0AHPjFwa+nXPx1tESmK 3PNryu7a7fQAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY8x pYzHAAAEAwBHMEUCIC9e+8Clsf3t6xceTVD9ayTgHDz0FkPeIwW7xJ0foA1HAiEA 1LvLfgMGhyN8DIRZYAEleQKrR8mY9QqJlMr3D8rc8/gAdwDm0jFjQHeMwRBBBtdx uc7B0kD2loSG+7qHMh39HjeOUAAAAY8xpYzGAAAEAwBIMEYCIQDkpSJQT1JqQlC6 c+Ebh7tRxzNFXRvD0F/euGldsffr3AIhANah3AC6yNcgvAVXF4DEbmbkY69RJ+rA 5KpneKOAMFkGMA0GCSqGSIb3DQEBCwUAA4IBAQAj4B8zLG5NbUvjppKqQeaCQumo n1AWp1W3BNjHYR1dnbQ7yIl6QHSczKCrDIv+QXsmYqwpv/sRQrgqO5BHikB/5XNy OchJs9kddmmJzHt9A4Yv72WQSBAH3tuvUoLwPy46NvwnPG9PGNl/yCxhX6uBu+V+ QTsKedhZpSDT9PbDbsGM5yDDxe50QgsG53edTDVsJYAbr1UJMlF51JfBeVs+3Q5x lzzjQsYvALsYxQeJL4L7z6cQ6RbzJe5BDzaaaNmO5xqMOj1NWUQW72X4j9pafZIl zGPYo5Xscwwy7GCORfLVWgV3l8twGXGZoXeb141Ybe2Ry8abKou4IlnDQlh6 -----END CERTIFICATE----- subject=CN = *.take-eats.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M02 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5605 bytes and written 455 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 5942A40D645CCE4934789340024EEB7887D5C39E443D435256A10FA844AD8E77 Session-ID-ctx: Master-Key: E016FDF106BFA99EF365E9B2DCA2B0B7D405D68C591C37A256B5460023D76537974BA09F724827E6D07A1A518FE28760 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 01 58 73 73 c0 f0 5d fd-18 b2 04 40 42 da b1 dd .Xss..]....@B... 0010 - 8b 2a 58 57 b9 d3 87 bd-cd e9 50 d2 d2 57 cf 55 .*XW......P..W.U 0020 - 80 92 29 2a a0 af 72 0c-9e 00 58 77 97 db 4a b3 ..)*..r...Xw..J. 0030 - 8e f1 ec 6f b0 a5 a0 93-de ea 91 b5 99 94 93 94 ...o............ 0040 - a2 fa 72 27 0e 5f 05 6a-94 2c c4 d2 80 97 7b 07 ..r'._.j.,....{. 0050 - 5c e7 12 1c 3f cd 63 be-9b 01 31 26 02 02 d5 d5 \...?.c...1&.... 0060 - 42 93 7e 6e e8 31 e0 61-09 69 f2 46 0e b5 d5 ad B.~n.1.a.i.F.... 0070 - 4b ae fc b2 a5 36 06 f2-0e b5 62 f2 3a cf a5 6f K....6....b.:..o 0080 - e2 7b 07 d5 ac 79 5f 2c-68 be .{...y_,h. Start Time: 1732170574 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
c-soa.take-eats.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.