Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://desede.com
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=desede.com
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=desede.com
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=desede.com
And you can
check your domain name
.
#
Certificate of
desede.com
{ "serial": "4CB96A030EAFD93A11540594EEBD6CB8", "OCSP_serial": "4CB96A030EAFD93A11540594EEBD6CB8", "OCSP_cert_status": "good", "OCSP_this_update": "May 7 17:41:03 2025 GMT", "OCSP_next_update": "May 14 16:41:02 2025 GMT", "domainName": "desede.com", "port": 443, "subjectAltName": "DNS:desede.com", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/04/01 20:20:50", "expires_at": "2025/06/30 21:20:44", "today": "2025/05/09 15:40:30", "UTC": { "updated_at": "2025-04-01T11:20:50Z", "expires_at": "2025-06-30T12:20:44Z", "today": "2025-05-09T06:40:30Z" }, "remaining_days": 52 }
#
OCSP response of
desede.com
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: May 7 17:41:03 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 4CB96A030EAFD93A11540594EEBD6CB8 Cert Status: good This Update: May 7 17:41:03 2025 GMT Next Update: May 14 16:41:02 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:44:02:20:0c:a6:80:4d:d0:d9:d9:9a:41:e1:01:5a:d7:73: f9:38:26:1c:29:a6:68:90:89:db:0e:b4:03:44:db:fc:d2:cd: 02:20:30:b0:d8:db:55:be:2a:52:08:7e:47:ed:e1:56:8f:bd: ac:81:e3:d6:fe:65:01:ff:7f:4a:b8:66:21:7a:20:bf ====================================== --- Certificate chain 0 s:CN = desede.com i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Apr 1 11:20:50 2025 GMT; NotAfter: Jun 30 12:20:44 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDlTCCAzugAwIBAgIQTLlqAw6v2ToRVAWU7r1suDAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjUwNDAxMTEyMDUwWhcNMjUwNjMwMTIyMDQ0WjAVMRMwEQYD VQQDEwpkZXNlZGUuY29tMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEDiXNXer/ XEBhz4/GNQ+s0znUewMjrz4WUYCjTpH79ZbmGeD8yt8uixEA46pDpFiO+kQEBuHl CGmW4kNnbJUurqOCAkUwggJBMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAKBggr BgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQFLlun2ejjdV1hKybSdjSC X15B6jAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEFBQcB AQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL1RMazAl BggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAVBgNVHREEDjAM ggpkZXNlZGUuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6Ap oCeGJWh0dHA6Ly9jLnBraS5nb29nL3dlMS9qUTU5NUZ0YlBEay5jcmwwggEGBgor BgEEAdZ5AgQCBIH3BIH0APIAdwDgkrP8DB3I52g2H95huZZNClJ4GYpy1nLEsE2l bW9UBAAAAZXxTBkMAAAEAwBIMEYCIQD0iZ8wP21zRlfE9OeX5KuNvG/gpXoGINk2 CWD66jy6kwIhAObMVRDb8qB6IvzoSXi34qN/POYD8bKGDre9QbEsSYluAHcAzxFW 7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGV8UwYuwAABAMASDBGAiEA vr0ooGU9KA6R7h+LgbN1tjwSTGfzuvFrEit0lIaj2GcCIQDYqHhum9J9zjeOQVy3 OyoAqHUpNHVvFO+sEqti3DP96DAKBggqhkjOPQQDAgNIADBFAiEAgiuXjo45kPtl r5gKf4vfQkHwbOdWmJIk3B7GcP46D34CIDEtEe+uhKCYqFJJBTJlqF15yitG9pk3 +50uZn3trq2F -----END CERTIFICATE----- subject=CN = desede.com issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3095 bytes and written 401 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
desede.com
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.