Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://desede.de
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=desede.de
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=desede.de
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=desede.de
And you can
check your domain name
.
#
Certificate of
desede.de
{ "serial": "7A3150B7DAC275440E90FB322985DF9D", "OCSP_serial": "7A3150B7DAC275440E90FB322985DF9D", "OCSP_cert_status": "good", "OCSP_this_update": "Nov 1 20:37:16 2025 GMT", "OCSP_next_update": "Nov 8 19:37:15 2025 GMT", "domainName": "desede.de", "port": 443, "subjectAltName": "DNS:desede.de", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/09/26 00:16:59", "expires_at": "2025/12/25 01:16:51", "today": "2025/11/03 07:00:46", "UTC": { "updated_at": "2025-09-25T15:16:59Z", "expires_at": "2025-12-24T16:16:51Z", "today": "2025-11-02T22:00:46Z" }, "remaining_days": 51 }
#
OCSP response of
desede.de
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: Nov 1 20:37:16 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 7A3150B7DAC275440E90FB322985DF9D Cert Status: good This Update: Nov 1 20:37:16 2025 GMT Next Update: Nov 8 19:37:15 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:20:4f:07:f2:83:fa:f2:0f:76:d6:86:bb:05:d0:bd: 2f:0d:9e:df:5d:37:1f:0a:78:8b:f5:7e:b8:a6:01:77:3d:cf: 02:21:00:f5:52:61:dc:a8:dd:8e:6f:fd:d1:e5:30:fa:4b:56: e7:89:c4:8e:78:3f:68:7f:df:86:47:e2:26:70:c9:37:30 ====================================== --- Certificate chain 0 s:CN = desede.de i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Sep 25 15:16:59 2025 GMT; NotAfter: Dec 24 16:16:51 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDkjCCAzigAwIBAgIQejFQt9rCdUQOkPsyKYXfnTAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjUwOTI1MTUxNjU5WhcNMjUxMjI0MTYxNjUxWjAUMRIwEAYD VQQDEwlkZXNlZGUuZGUwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATVkdMCAHyv nMUGWm5ibsptY+KBG7YJDcPxhTlabz7CIRWaeRStAhxNT4NsVf74v5TuRDDR1x1c QksBoeS2au5Xo4ICQzCCAj8wDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsG AQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDixKSwglMEQoMVyoeAWkMAZ 0j0IMB8GA1UdIwQYMBaAFJB3kjVnxP+ozKnme9mAeXvMk/k4MF4GCCsGAQUFBwEB BFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdvb2cvcy93ZTEvZWpFMCUG CCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93ZTEuY3J0MBQGA1UdEQQNMAuC CWRlc2VkZS5kZTATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAn hiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvWUg4bnZQb1p1X2cuY3JsMIIBBQYKKwYB BAHWeQIEAgSB9gSB8wDxAHYA3dzKNJXX4RYF55Uy+sef+D0cUN/bADoUEnYKLKy7 yCoAAAGZganoCAAABAMARzBFAiBHlfF2a2KnrCQfxWO6tmOyIhIMhKp0yUw4y8ZN TL2qXQIhAI2mWP9wtVptA8FHh8sZmEkFaqbYqQXyM879udFcoC+SAHcAzPsPaoVx CWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGZgansCQAABAMASDBGAiEA94BG bgaGJJjsEz3UFS9awT7CeK7lNdGm09OKuK5STScCIQCEaxdIu/rRkxi5v+6So/EW alXpjtOnV1nrySqPpwzQajAKBggqhkjOPQQDAgNIADBFAiAirb21TsQ5EQJXqsLP M4nPY4NU5qb3xGf0u6/hVM9CIgIhAM1/hII0RxLQlsofj8LMTtgm55uy0cZDafG9 bXhvG7vn -----END CERTIFICATE----- subject=CN = desede.de issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3093 bytes and written 400 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
desede.de
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.