Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://casuca.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=casuca.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=casuca.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=casuca.jp
And you can
check your domain name
.
#
Certificate of
casuca.jp
{ "serial": "396190F76C8D676DAC4A3BED", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "casuca.jp", "port": 443, "subjectAltName": "DNS:www.casuca.jp, DNS:casuca.jp", "is_valid": true, "CA": "GlobalSign nv-sa", "updated_at": "2024/03/21 03:17:55", "expires_at": "2024/04/27 15:32:35", "today": "2024/04/19 21:06:45", "UTC": { "updated_at": "2024-03-20T18:17:55Z", "expires_at": "2024-04-27T06:32:35Z", "today": "2024-04-19T12:06:45Z" }, "remaining_days": 7 }
#
OCSP response of
casuca.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = www.casuca.jp i:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Mar 20 18:17:55 2024 GMT; NotAfter: Apr 27 06:32:35 2024 GMT 1 s:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 i:OU = GlobalSign Root CA - R6, O = GlobalSign, CN = GlobalSign a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 19 03:43:25 2023 GMT; NotAfter: Jul 19 00:00:00 2026 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgIMOWGQ92yNZ22sSjvtMA0GCSqGSIb3DQEBCwUAMFUxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSswKQYDVQQDEyJH bG9iYWxTaWduIEdDQyBSNiBBbHBoYVNTTCBDQSAyMDIzMB4XDTI0MDMyMDE4MTc1 NVoXDTI0MDQyNzA2MzIzNVowGDEWMBQGA1UEAxMNd3d3LmNhc3VjYS5qcDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPie0GI8TuTPYozJQEHfdFAWr0Ic T7T4rp5b1/mbCnsUCtqxQnIWEiPlTtOpAmuEKL8IgBHApq4cFQM8R5tsKfjn/Ccz dxh5BuOCpfebSkPEZKXi2r1c2bDlChuIFmiVeaRWk/YcIE5Rdbl7sVMrdxCt2Aaq UF+pC43RgimrY0F/77wpVy/pNdQRbiNYiTnoOEBXnLAsNzMLIEE4Vqh4UsX0gwtB YLNjD3XCWToySKGTLTTDTXDaVMZzf+f/gCk0/VPA8zPe+lLksVdXCEJswk0tOwq4 IH80QLP/I2JfkTFiRG+C/yoU3DEho9CbWdTMdvDGbzUKm/7xr1+30+lw2rUCAwEA AaOCA2IwggNeMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMIGZBggrBgEF BQcBAQSBjDCBiTBJBggrBgEFBQcwAoY9aHR0cDovL3NlY3VyZS5nbG9iYWxzaWdu LmNvbS9jYWNlcnQvZ3NnY2NyNmFscGhhc3NsY2EyMDIzLmNydDA8BggrBgEFBQcw AYYwaHR0cDovL29jc3AuZ2xvYmFsc2lnbi5jb20vZ3NnY2NyNmFscGhhc3NsY2Ey MDIzMFcGA1UdIARQME4wCAYGZ4EMAQIBMEIGCisGAQQBoDIKAQMwNDAyBggrBgEF BQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wRAYD VR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9nc2djY3I2 YWxwaGFzc2xjYTIwMjMuY3JsMCMGA1UdEQQcMBqCDXd3dy5jYXN1Y2EuanCCCWNh c3VjYS5qcDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgw FoAUvQW384qTPHPLefoPhRKhd5YYkXQwHQYDVR0OBBYEFFbfq45MG9Bh0+iGLt86 9S+VK/IvMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQA7U3d1Pi25gE6LMFsG /kA7Z9hPw/THvQANLXJv4frUFwAAAY5dFYo2AAAEAwBGMEQCIBe1o56/d9HVvdJ1 MNgQBatd+Mzl+awF2J7teQNMgaamAiBXtDAvyc7amzb4LejlUNdZc4pgo8nKY+vV tfq2uTODvwB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjl0V ihEAAAQDAEcwRQIgcnQ4l9850u5GmaiDAK1FLrH+py+QjbXpVL5HqbvOlOwCIQDt N1ID19zDYmPw9PL2nVPxAqt4XZLtzahYoQRjQp6DzAB2AEiw42vapkc0D+VqAvqd MOscUgHLVt0sgdm7v6s52IRzAAABjl0ViiUAAAQDAEcwRQIhAJnInJ/uaHVaZADI Swd8V7kvrqtftw+GDdaedYeLBTDyAiAM+rC0u5GsYnhJiVDDv5UwLtVGmL0BsSP+ l38MBHKFFTANBgkqhkiG9w0BAQsFAAOCAQEAlYN8fTTz07yudcXCah2W5EOrwq2U F+2fxS2Bxk/ht58aCDHQNN8yS5d0bBdRlchQve4z4ZXj71iG9epz1TRYgd3XltK6 q7GADVbO0raioyRFstsVxcJASlsVsxnvP92276RqqN/e7pCfJrVzp4fbajEMHres Ky3pFNx8Zjjuqevpy1OH+m7Yh/eY7skcCNOVrBi73XgDQCoY93xanijyZn4nx+n8 HK2DgrvUvM83iQQZ5IlqUk3ifY/xDtaSAI9zvpwx4UeVDT349zdudjES9YSmuZOD vtun/XmhBoi9m7pokMOFFZBQNDU4l6x8W9rdcwgPwglUsOiU3rLsDtThWg== -----END CERTIFICATE----- subject=CN = www.casuca.jp issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3715 bytes and written 413 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: FCE27DFDDF91C01E5CB6F83A39EAC7AF3FD3D07A14324EA567590E90415A16E6 Session-ID-ctx: Master-Key: 336D0679597FC2BB0EA6ECA90E2FD7E73A003A54D832B61584D51A4A2E67F1B279771DB3DC59D74F4AC139899C43E59C PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - de 87 46 31 7b 99 9d cf-e3 43 c2 41 00 b9 8e ff ..F1{....C.A.... 0010 - 01 0f c5 57 e3 65 51 45-61 c1 ba fc b0 76 53 df ...W.eQEa....vS. 0020 - 3f 15 a7 bb 55 60 a1 c7-14 31 e6 3a 7d f9 11 62 ?...U`...1.:}..b 0030 - 30 73 61 9a 88 97 1d bf-4b d7 10 90 76 3b 54 5c 0sa.....K...v;T\ 0040 - 84 69 5f c4 19 52 67 0c-8c 84 f6 e2 97 55 09 c3 .i_..Rg......U.. 0050 - 48 b5 28 9c 2e db d1 89-50 d5 32 26 0f 5e e6 9d H.(.....P.2&.^.. 0060 - 8a 1c 87 e9 ba 71 f0 a3-72 e5 f4 7a bc b4 f3 8b .....q..r..z.... 0070 - d5 f5 c7 b9 24 b3 99 e8-e9 c5 3b 7c 34 a3 1b c2 ....$.....;|4... 0080 - 39 bf 05 0c 55 ef d9 ae-fb d8 a7 19 3b 35 b2 c7 9...U.......;5.. 0090 - 3c e3 6c cd 60 03 dc 31-1f bc 69 99 4b 0b 18 e3 <.l.`..1..i.K... 00a0 - a4 7d 45 26 a2 4f 2c 40-55 4f 35 bf 40 35 c6 6c .}E&.O,@UO5.@5.l 00b0 - cc f3 f2 e1 77 68 82 50-67 35 99 21 5b 5a fa e5 ....wh.Pg5.![Z.. Start Time: 1713528405 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
casuca.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.