Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://croud.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=croud.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=croud.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=croud.jp
And you can
check your domain name
.
#
Certificate of
croud.jp
{ "serial": "161323D7D7272DF30E5CAC6283D09AAF", "OCSP_serial": "161323D7D7272DF30E5CAC6283D09AAF", "OCSP_cert_status": "good", "OCSP_this_update": "May 5 07:58:00 2025 GMT", "OCSP_next_update": "May 12 06:57:59 2025 GMT", "domainName": "croud.jp", "port": 443, "subjectAltName": "DNS:croud.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/04/30 15:26:15", "expires_at": "2025/07/29 16:26:03", "today": "2025/05/09 16:10:31", "UTC": { "updated_at": "2025-04-30T06:26:15Z", "expires_at": "2025-07-29T07:26:03Z", "today": "2025-05-09T07:10:31Z" }, "remaining_days": 81 }
#
OCSP response of
croud.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: May 5 07:58:00 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 161323D7D7272DF30E5CAC6283D09AAF Cert Status: good This Update: May 5 07:58:00 2025 GMT Next Update: May 12 06:57:59 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:46:02:21:00:cd:7b:fd:8c:38:3b:ec:a1:ee:55:67:99:87: f1:e3:e2:2c:ad:9d:cb:dc:f6:8d:cc:d4:b3:36:68:5c:2c:f1: 5f:02:21:00:b3:91:fa:bf:02:f2:52:41:4b:01:42:b4:ab:e9: 3f:a8:cd:f1:95:c9:6b:5a:fc:7d:6f:19:04:5b:9a:8c:04:9a ====================================== --- Certificate chain 0 s:CN = croud.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Apr 30 06:26:15 2025 GMT; NotAfter: Jul 29 07:26:03 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDjzCCAzWgAwIBAgIQFhMj19cnLfMOXKxig9CarzAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjUwNDMwMDYyNjE1WhcNMjUwNzI5MDcyNjAzWjATMREwDwYD VQQDEwhjcm91ZC5qcDBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABNqS+qQN9zNF RZ2ReJWQbGKI+yNg0ucCDHIGMYFhmeeY2Ov9PumWu0KLIAwokktpPIUgrUhZOsq/ ogWEEiBZjUGjggJBMIICPTAOBgNVHQ8BAf8EBAMCB4AwEwYDVR0lBAwwCgYIKwYB BQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUzB9QXyrFBKyp6QzskUipjeuo VeswHwYDVR0jBBgwFoAUkHeSNWfE/6jMqeZ72YB5e8yT+TgwXgYIKwYBBQUHAQEE UjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dlMS9GaE0wJQYI KwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dlMS5jcnQwEwYDVR0RBAwwCoII Y3JvdWQuanAwEwYDVR0gBAwwCjAIBgZngQwBAgEwNgYDVR0fBC8wLTAroCmgJ4Yl aHR0cDovL2MucGtpLmdvb2cvd2UxL3AzaDdVbDh3eDNrLmNybDCCAQQGCisGAQQB 1nkCBAIEgfUEgfIA8AB2AA3h8jAr0w3BQGISCepVLvxHdHyx1+kw7w5CHrR+Tqo0 AAABloWW0sUAAAQDAEcwRQIgVlImrDjQWYxnSp3RfjNdwDLTQTb1v1lhhZMb4tG3 HoMCIQChqf5UKixuVHQaS1dgzfE14o6GYLkGCgT/iUK2qzfxEAB2AN3cyjSV1+EW BeeVMvrHn/g9HFDf2wA6FBJ2Ciysu8gqAAABloWW0uoAAAQDAEcwRQIgFNt1Pnet Gk1EDM2KNtCcieZCZAq9LhAlxyS7Up1E2OMCIQC6nxsekzBOEKKp972ZJOXYYvvN 54+WaQOUm+6wHvGyIjAKBggqhkjOPQQDAgNIADBFAiBh6RBu96irKTVf5M14iYyZ UCQTukYQ3pzQGlzI4JwEIQIhAOmibdJLSQWvAL2rRsszDi9qbvWq2Z4O7dyZJVPO sUpU -----END CERTIFICATE----- subject=CN = croud.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3090 bytes and written 399 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
croud.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.