Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://casuca.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=casuca.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=casuca.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=casuca.jp
And you can
check your domain name
.
#
Certificate of
casuca.jp
{ "serial": "2B5BCEC092B5462727B95DD6", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "casuca.jp", "port": 443, "subjectAltName": "DNS:www.casuca.jp, DNS:casuca.jp", "is_valid": true, "CA": "GlobalSign nv-sa", "updated_at": "2024/11/21 03:18:00", "expires_at": "2024/12/27 15:32:35", "today": "2024/11/21 15:30:22", "UTC": { "updated_at": "2024-11-20T18:18:00Z", "expires_at": "2024-12-27T06:32:35Z", "today": "2024-11-21T06:30:22Z" }, "remaining_days": 36 }
#
OCSP response of
casuca.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = www.casuca.jp i:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 20 18:18:00 2024 GMT; NotAfter: Dec 27 06:32:35 2024 GMT 1 s:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 i:OU = GlobalSign Root CA - R6, O = GlobalSign, CN = GlobalSign a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 19 03:43:25 2023 GMT; NotAfter: Jul 19 00:00:00 2026 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgIMK1vOwJK1RicnuV3WMA0GCSqGSIb3DQEBCwUAMFUxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSswKQYDVQQDEyJH bG9iYWxTaWduIEdDQyBSNiBBbHBoYVNTTCBDQSAyMDIzMB4XDTI0MTEyMDE4MTgw MFoXDTI0MTIyNzA2MzIzNVowGDEWMBQGA1UEAxMNd3d3LmNhc3VjYS5qcDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPie0GI8TuTPYozJQEHfdFAWr0Ic T7T4rp5b1/mbCnsUCtqxQnIWEiPlTtOpAmuEKL8IgBHApq4cFQM8R5tsKfjn/Ccz dxh5BuOCpfebSkPEZKXi2r1c2bDlChuIFmiVeaRWk/YcIE5Rdbl7sVMrdxCt2Aaq UF+pC43RgimrY0F/77wpVy/pNdQRbiNYiTnoOEBXnLAsNzMLIEE4Vqh4UsX0gwtB YLNjD3XCWToySKGTLTTDTXDaVMZzf+f/gCk0/VPA8zPe+lLksVdXCEJswk0tOwq4 IH80QLP/I2JfkTFiRG+C/yoU3DEho9CbWdTMdvDGbzUKm/7xr1+30+lw2rUCAwEA AaOCA2MwggNfMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMIGZBggrBgEF BQcBAQSBjDCBiTBJBggrBgEFBQcwAoY9aHR0cDovL3NlY3VyZS5nbG9iYWxzaWdu LmNvbS9jYWNlcnQvZ3NnY2NyNmFscGhhc3NsY2EyMDIzLmNydDA8BggrBgEFBQcw AYYwaHR0cDovL29jc3AuZ2xvYmFsc2lnbi5jb20vZ3NnY2NyNmFscGhhc3NsY2Ey MDIzMFcGA1UdIARQME4wCAYGZ4EMAQIBMEIGCisGAQQBoDIKAQMwNDAyBggrBgEF BQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wRAYD VR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9nc2djY3I2 YWxwaGFzc2xjYTIwMjMuY3JsMCMGA1UdEQQcMBqCDXd3dy5jYXN1Y2EuanCCCWNh c3VjYS5qcDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgw FoAUvQW384qTPHPLefoPhRKhd5YYkXQwHQYDVR0OBBYEFFbfq45MG9Bh0+iGLt86 9S+VK/IvMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgA/F0tP1yJHWJQdZRyE vg0S7ZA3fx+FauvBvyiF7PhkbgAAAZNKy618AAAEAwBHMEUCIQDahp1rH3Dj+sdI NqbioUTrt8NRDXIdr8wL4Ca5Rb3zbQIgPjl1Za1Ahyi4ADQyVxMOaa2fjfTHsz4k LkMwLkXGffwAdgDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAZNK y61sAAAEAwBHMEUCIFhoQ4/AAVcIRGUk4JmflKHpOFJi9JGGMMCmFcNkcsPXAiEA 4g6AdnxwyTEDUXN23NccOFkywS1SJBpovG6Gll/PgTcAdgB2/4g/Crb7lVHCYcz1 h7o0tKTNuyncaEIKn+ZnTFo6dAAAAZNKy62gAAAEAwBHMEUCIExS6DGUUUbJTZ0j If6UtRSWggtAgwAgdT7sYwD7KwfCAiEAsd0Z9WRLrWiZuIy0lSKdBT9qT9fvdvrf 8SDslF8t/S4wDQYJKoZIhvcNAQELBQADggEBAKueZdQIevsL5thwYivmn1io6nJy H5F5AxyhvE0XnIUE2TqF6ivqqplFqUAVEQ96IzRT2+znOKX2djv6XxIfcJoRMTAH zq3t1k7r2T9Od+8VZttb8Nk7eeOREd1WcKCCJd7ZgUmsyTo8z9OWrZWlgchQYBnN pwx0atpMm3xgiCJ+6ZmqfN6Z32FaovOfAN+Y0uAMBtEFRQ3Mn9HghEETN5nAjBGs +A/54sf0PhhCo9Z/2NPUn+dHdudJ574b7hg/OUoEQek0IvaDrsPED/o1xqu9TzVz M1cnGopU+pI5kijRu3KQSWBroQDg1ZNdhw9cxZoNIoOliT4s7kzNaC9m7mc= -----END CERTIFICATE----- subject=CN = www.casuca.jp issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3716 bytes and written 413 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: 93599543DE510F328C03193A6D2A1551BF1E1562BC0AADBAD078B4C548E7D117 Session-ID-ctx: Master-Key: 0CADBFD01756873E8C31F08E3C87855D0D7B408887DD762A7282A8E541CF293E32B311156D18578DD42A6EA21ED8D751 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - cb db 6c 2e 5c 2b e4 4d-e8 fc 45 60 da b1 b4 bf ..l.\+.M..E`.... 0010 - 8c 81 b7 87 18 c0 da 47-51 d1 d6 ed 2b 43 b8 ea .......GQ...+C.. 0020 - c6 47 4f 80 b2 b1 3d c6-18 e0 0e 04 49 05 c8 89 .GO...=.....I... 0030 - c0 3d af 09 aa cb 2c 97-f7 24 16 69 8d 65 aa 5b .=....,..$.i.e.[ 0040 - 24 35 b1 fe 7b e9 79 db-9e 3f 5a 71 eb 56 d2 d7 $5..{.y..?Zq.V.. 0050 - 3b d8 a7 d6 1e ed c8 0b-50 31 02 f6 56 44 f6 5b ;.......P1..VD.[ 0060 - d5 bc 60 dd e9 cf 04 ba-1d 3f 54 c7 77 b3 20 54 ..`......?T.w. T 0070 - 29 2a 91 15 a3 33 a2 82-10 33 61 37 f5 17 96 ea )*...3...3a7.... 0080 - 08 bf 95 6e 91 42 2d f9-cc 72 cf 92 2f 30 88 23 ...n.B-..r../0.# 0090 - 4a 07 d2 fd 58 d3 1a 67-13 80 8a bf 2c 91 e1 ab J...X..g....,... 00a0 - 04 96 e8 df 25 d2 90 ef-61 e8 fa e7 74 d2 f4 63 ....%...a...t..c 00b0 - 73 c6 53 06 8c ad 0b 72-7c 0d 75 3f 87 1e 3c c4 s.S....r|.u?..<. Start Time: 1732170622 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
casuca.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.