Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://desede.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=desede.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=desede.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=desede.jp
And you can
check your domain name
.
#
Certificate of
desede.jp
{ "serial": "6653EFE6F188997211091882334171B8", "OCSP_serial": "6653EFE6F188997211091882334171B8", "OCSP_cert_status": "good", "OCSP_this_update": "May 7 17:31:49 2025 GMT", "OCSP_next_update": "May 14 16:31:48 2025 GMT", "domainName": "desede.jp", "port": 443, "subjectAltName": "DNS:desede.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/04/01 20:23:29", "expires_at": "2025/06/30 21:23:27", "today": "2025/05/09 16:03:01", "UTC": { "updated_at": "2025-04-01T11:23:29Z", "expires_at": "2025-06-30T12:23:27Z", "today": "2025-05-09T07:03:01Z" }, "remaining_days": 52 }
#
OCSP response of
desede.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: May 7 17:31:49 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 6653EFE6F188997211091882334171B8 Cert Status: good This Update: May 7 17:31:49 2025 GMT Next Update: May 14 16:31:48 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:21:00:b2:09:b3:ed:16:49:0d:94:9e:25:00:ca:71: 93:b0:75:47:72:6d:44:2e:c8:6d:d7:fa:4a:0d:31:e0:ba:88: a5:02:20:63:17:16:1c:87:91:ea:b6:4a:2a:b4:64:97:12:56: 7a:98:50:99:4d:a9:a7:80:62:11:e8:19:85:27:7d:6b:d4 ====================================== --- Certificate chain 0 s:CN = desede.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Apr 1 11:23:29 2025 GMT; NotAfter: Jun 30 12:23:27 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDkDCCAzegAwIBAgIQZlPv5vGImXIRCRiCM0FxuDAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjUwNDAxMTEyMzI5WhcNMjUwNjMwMTIyMzI3WjAUMRIwEAYD VQQDEwlkZXNlZGUuanAwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATPUJIgVmBJ tnhACcqUdWJzgOnljcHO+zPxzNVc59HIylTVmZrYOhK/IuKwnp+Pri+n7RJgpDAf +7D1gc0ZaVQeo4ICQjCCAj4wDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsG AQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFL6GCW2xEnN7aP215YufUP1x mDBcMB8GA1UdIwQYMBaAFJB3kjVnxP+ozKnme9mAeXvMk/k4MF4GCCsGAQUFBwEB BFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdvb2cvcy93ZTEvWmxNMCUG CCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93ZTEuY3J0MBQGA1UdEQQNMAuC CWRlc2VkZS5qcDATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAn hiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvYnR2ZDY2Wjl1UVkuY3JsMIIBBAYKKwYB BAHWeQIEAgSB9QSB8gDwAHYATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKa Od8AAAGV8U6GPAAABAMARzBFAiEAyfvCnOvhv9SWhgIXQlwAHh7EpYvAqMsW/f8M J2DDABwCIEhCgbisbXqNZE0BUjBwpX0OA+G9ytMgoka5F4bha3PLAHYAE0rfGrWY Qgl4DG/vTHqRpBa3I0nOWFdq367ap8Kr4CIAAAGV8U6IgAAABAMARzBFAiBFF7bZ sjFnzaitVMaqHKs40X62xBQCRO7VKejnWRgvhQIhAKbmwFgpr1S+eLy69Uh8F5xN QRa5LpaU65Q+7rgUhZ7HMAoGCCqGSM49BAMCA0cAMEQCIEhwNgmnJKs91l1JswkF 5Ie9lQZTYaqbDai6BN2ARKzjAiAve57FqKQJXJJ8uSZs3aDsCVnJ/mo+WErATXy0 /TgwmQ== -----END CERTIFICATE----- subject=CN = desede.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3092 bytes and written 400 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
desede.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.