Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://desede.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=desede.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=desede.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=desede.jp
And you can
check your domain name
.
#
Certificate of
desede.jp
{ "serial": "8C79FD61C10A33510E508C11B4E16C90", "OCSP_serial": "8C79FD61C10A33510E508C11B4E16C90", "OCSP_cert_status": "good", "OCSP_this_update": "Dec 29 00:10:06 2025 GMT", "OCSP_next_update": "Jan 4 23:10:05 2026 GMT", "domainName": "desede.jp", "port": 443, "subjectAltName": "DNS:desede.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/11/24 00:19:11", "expires_at": "2026/02/22 01:19:03", "today": "2026/01/01 08:10:06", "UTC": { "updated_at": "2025-11-23T15:19:11Z", "expires_at": "2026-02-21T16:19:03Z", "today": "2025-12-31T23:10:06Z" }, "remaining_days": 51 }
#
OCSP response of
desede.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: Dec 29 00:10:06 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 8C79FD61C10A33510E508C11B4E16C90 Cert Status: good This Update: Dec 29 00:10:06 2025 GMT Next Update: Jan 4 23:10:05 2026 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:20:48:8d:cb:6c:5b:fb:e0:e6:8d:42:af:5c:c1:29: 8f:52:2c:e6:4a:e1:c1:1b:8e:41:f5:87:6f:07:45:46:f7:57: 02:21:00:f4:5a:75:0f:2a:b3:1c:dd:92:cd:aa:ae:5c:4b:ec: 4c:6c:13:28:23:99:cd:e6:f4:81:c8:c2:fb:08:53:b9:a5 ====================================== --- Certificate chain 0 s:CN = desede.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Nov 23 15:19:11 2025 GMT; NotAfter: Feb 21 16:19:03 2026 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDkjCCAzigAwIBAgIRAIx5/WHBCjNRDlCMEbThbJAwCgYIKoZIzj0EAwIwOzEL MAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoG A1UEAxMDV0UxMB4XDTI1MTEyMzE1MTkxMVoXDTI2MDIyMTE2MTkwM1owFDESMBAG A1UEAxMJZGVzZWRlLmpwMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEjdrHsK1m dVJcGE1WjlVybNWozgib0/hcovZOtVfODJL9NVoHk6GTx89fn0SruCa+JH4XRplp lGy93mbToVm9aKOCAkIwggI+MA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAKBggr BgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSlhxYFxfmxp3rmqFzdWVNI exbrijAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEFBQcB AQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL2pIazAl BggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAUBgNVHREEDTAL gglkZXNlZGUuanAwEwYDVR0gBAwwCjAIBgZngQwBAgEwNgYDVR0fBC8wLTAroCmg J4YlaHR0cDovL2MucGtpLmdvb2cvd2UxL1I3TGdBbktENExrLmNybDCCAQQGCisG AQQB1nkCBAIEgfUEgfIA8AB1AJaXZL9VWJet90OHaDcIQnfp8DrV9qTzNm5GpD8P yqnGAAABmrGDIf4AAAQDAEYwRAIgHba4QF2vITeQLUCx08MigFdb5ave5Gzzzx74 tGA1DsUCIHkeTPM0ib0uS0Cb7PcUyaxQWLlA3EV/+Fl+cr6YcKrLAHcAZBHEbKQS 7KeJHKICLgC8q08oB9QeNSer6v7VA8l9zfAAAAGasYMh7gAABAMASDBGAiEAoVF1 5u5TV6i+ZLOdjgsoajguZqwduOG0C+YhG2N5mZUCIQDi1rRCJpELbuCsfmpeJ1Tw TvopcvjOMCm9NDDXpudpmDAKBggqhkjOPQQDAgNIADBFAiAGdBi7kxpeu01gcyCA Fm/3YlMVYI85BFBwrEwMWIydRAIhAL9uMZcJmB9vUlrCh7MR8XPQlH3j+0mUjYWh K3+nOrO+ -----END CERTIFICATE----- subject=CN = desede.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3094 bytes and written 400 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
desede.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.