Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://e-tan.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=e-tan.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=e-tan.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=e-tan.jp
And you can
check your domain name
.
#
Certificate of
e-tan.jp
{ "serial": "233BA1C804EC89FBE9F1404ABCD3CAFE", "OCSP_serial": "233BA1C804EC89FBE9F1404ABCD3CAFE", "OCSP_cert_status": "good", "OCSP_this_update": "Nov 1 23:39:03 2025 GMT", "OCSP_next_update": "Nov 5 23:39:03 2025 GMT", "domainName": "e-tan.jp", "port": 443, "subjectAltName": "DNS:e-tan.jp, DNS:www.e-tan.jp", "is_valid": true, "CA": "Japan Registry Services Co., Ltd.", "updated_at": "2025/01/30 20:13:52", "expires_at": "2026/01/31 23:59:59", "today": "2025/11/03 06:55:54", "UTC": { "updated_at": "2025-01-30T11:13:52Z", "expires_at": "2026-01-31T14:59:59Z", "today": "2025-11-02T21:55:54Z" }, "remaining_days": 89 }
#
OCSP response of
e-tan.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: DE23AD6F41C0DA9E2F14985C5E283F14721811C3 Produced At: Nov 2 21:52:33 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 1DB449849554FCAAF967B74DC546361AF782AF8F Issuer Key Hash: 7C24CE0DA4382DC7B3635EA7787A8D1D4C2EC715 Serial Number: 233BA1C804EC89FBE9F1404ABCD3CAFE Cert Status: good This Update: Nov 1 23:39:03 2025 GMT Next Update: Nov 5 23:39:03 2025 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 69:c8:80:7e:a6:ba:9e:6c:02:ce:49:cc:00:f8:ae:95:53:f7: d0:28:9d:1c:be:50:75:23:ec:2d:a5:b5:40:9a:39:ea:95:91: a3:1c:f5:09:63:7e:aa:01:82:9d:5f:16:c7:58:46:6b:ad:f2: f8:ae:ca:b9:bf:51:4f:08:5a:1a:eb:33:d0:71:33:a6:df:a2: 9a:78:6a:5f:64:31:87:92:bc:af:c8:4c:65:0a:9d:f6:76:39: 6b:e0:10:27:31:fa:87:52:bc:63:a8:82:57:c1:f0:be:6b:ae: 4a:66:36:2a:75:a1:f7:1c:0c:53:31:12:d9:a2:b3:7a:cf:aa: 9f:d1:ab:93:f7:e2:4f:17:10:0e:48:b2:4f:d0:29:48:cd:67: a2:6f:03:d2:14:13:95:54:c8:a3:3c:3b:88:56:0c:b6:62:a4: cc:21:fb:b4:5a:db:01:52:d3:47:0b:ab:49:1e:1a:f2:e6:ff: db:be:4f:83:1e:e3:8c:f1:1d:15:0d:ab:05:1b:52:34:57:01: c2:62:8b:66:08:a8:b2:cd:21:8c:26:aa:f1:30:56:3b:9b:4a: 84:ce:ec:93:8f:35:de:c5:23:05:e1:28:cf:7e:01:e1:3c:bd: d7:81:61:16:d1:68:a9:cb:c6:53:06:57:bc:f5:7b:ec:ea:f6: ea:96:34:8a Certificate: Data: Version: 3 (0x2) Serial Number: 7c:16:81:ec:ad:40:f8:21:9e:98:a6:fe:7f:ba:de:5a Signature Algorithm: sha256WithRSAEncryption Issuer: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 Validity Not Before: Sep 18 06:15:19 2025 GMT Not After : Jan 20 06:15:19 2026 GMT Subject: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 OCSP Responder Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:b4:d4:28:6c:89:f3:75:36:cb:c8:c4:d4:48:75: d4:ee:2d:00:a1:27:0e:41:2f:94:8d:ea:a2:d1:6d: c7:eb:03:b0:66:49:15:90:c1:7b:93:cd:51:bc:e0: 25:c6:3b:66:48:87:5e:75:fb:c3:4c:56:b2:41:8a: ff:0f:27:8e:01:71:3a:2b:a0:3d:4d:59:21:8e:ce: db:e1:5a:d4:17:6d:a5:56:5a:79:bc:1e:bb:4f:40: 18:b9:ba:af:f7:a1:b1:68:c8:1f:e8:b0:9f:0d:de: 16:42:5f:78:d1:2a:7d:da:70:4c:a0:4c:c9:59:e3: 7a:5a:c6:81:1b:0f:e9:3e:09:dd:46:f0:ca:2f:33: f5:87:f5:a9:ae:4d:42:81:79:62:3b:56:07:30:24: 27:ce:91:ac:6e:4a:ed:a2:a2:13:7d:6f:e1:76:12: 8f:e5:d6:3d:7f:e4:2d:7c:65:9f:ae:ab:91:0d:aa: 64:ef:66:8a:0e:57:1f:6a:b1:f3:1a:d7:7d:42:39: c9:49:16:32:9b:1f:d0:85:37:31:3b:f4:82:65:5c: e3:03:c4:64:57:74:4c:e3:3f:51:9a:c5:2c:71:b2: 16:f8:47:b8:59:62:05:a0:59:17:74:23:5a:ec:86: 51:c7:30:96:5b:a8:5d:a8:0e:92:79:a6:28:57:c1: 79:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7C:24:CE:0D:A4:38:2D:C7:B3:63:5E:A7:78:7A:8D:1D:4C:2E:C7:15 OCSP No Check: X509v3 Extended Key Usage: OCSP Signing X509v3 Subject Key Identifier: DE:23:AD:6F:41:C0:DA:9E:2F:14:98:5C:5E:28:3F:14:72:18:11:C3 X509v3 Key Usage: critical Digital Signature Signature Algorithm: sha256WithRSAEncryption Signature Value: 54:07:cc:4a:95:ac:05:af:fe:2f:d5:23:a5:24:f6:2e:5d:da: 17:7f:3e:b7:4e:b8:ce:d5:a3:20:e3:b8:78:f3:fb:34:ab:e7: 75:4b:26:40:e7:a8:eb:9b:d3:cd:f0:8a:4b:07:27:04:b0:2e: b1:3c:c5:c7:97:cb:0a:73:86:91:b6:01:f8:39:a6:08:ed:39: dd:6b:e8:9c:ec:c1:92:b4:7b:72:9a:a4:16:59:56:95:1a:fa: 0a:d3:c3:b4:ca:6e:fe:74:6e:d5:e9:03:49:df:69:b9:0f:23: 58:5b:62:51:c3:a6:c6:f0:d7:10:73:88:8a:d6:6c:67:5e:85: 9e:19:c5:4f:cc:89:91:9b:67:18:fc:29:ed:cb:9b:0e:e4:aa: 2e:1f:ba:2b:f8:9e:80:42:8b:fd:d3:a9:30:d7:ad:d8:bf:3a: 24:9c:6b:f6:bd:62:ae:98:71:60:51:f4:cf:10:a0:94:44:cb: e4:47:35:3b:0b:0d:fd:18:cb:2f:45:0b:f1:c4:24:0c:f4:c0: 1c:51:45:9b:28:52:be:d0:8b:7d:cd:45:c0:cd:89:42:64:5a: 4d:49:5b:26:c7:ef:e4:8d:75:b0:99:48:8b:ca:20:fe:2e:fc: 97:56:f8:bc:2c:aa:01:45:f5:69:34:6b:5b:f3:ad:01:a5:6a: ab:f7:cb:7d -----BEGIN CERTIFICATE----- MIID4zCCAsugAwIBAgIQfBaB7K1A+CGemKb+f7reWjANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDkxODA2MTUxOVoXDTI2MDEyMDA2MTUxOVoweDELMAkG A1UEBhMCSlAxKjAoBgNVBAoTIUphcGFuIFJlZ2lzdHJ5IFNlcnZpY2VzIENvLiwg THRkLjE9MDsGA1UEAxM0SlBSUyBEb21haW4gVmFsaWRhdGlvbiBBdXRob3JpdHkg LSBHNCBPQ1NQIFJlc3BvbmRlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTUKGyJ83U2y8jE1Eh11O4tAKEnDkEvlI3qotFtx+sDsGZJFZDBe5PNUbzg JcY7ZkiHXnX7w0xWskGK/w8njgFxOiugPU1ZIY7O2+Fa1BdtpVZaebweu09AGLm6 r/ehsWjIH+iwnw3eFkJfeNEqfdpwTKBMyVnjelrGgRsP6T4J3Ubwyi8z9Yf1qa5N QoF5YjtWBzAkJ86RrG5K7aKiE31v4XYSj+XWPX/kLXxln66rkQ2qZO9mig5XH2qx 8xrXfUI5yUkWMpsf0IU3MTv0gmVc4wPEZFd0TOM/UZrFLHGyFvhHuFliBaBZF3Qj WuyGUccwlluoXagOknmmKFfBeUMCAwEAAaN4MHYwHwYDVR0jBBgwFoAUfCTODaQ4 LcezY16neHqNHUwuxxUwDwYJKwYBBQUHMAEFBAIFADATBgNVHSUEDDAKBggrBgEF BQcDCTAdBgNVHQ4EFgQU3iOtb0HA2p4vFJhcXig/FHIYEcMwDgYDVR0PAQH/BAQD AgeAMA0GCSqGSIb3DQEBCwUAA4IBAQBUB8xKlawFr/4v1SOlJPYuXdoXfz63TrjO 1aMg47h48/s0q+d1SyZA56jrm9PN8IpLBycEsC6xPMXHl8sKc4aRtgH4OaYI7Tnd a+ic7MGStHtymqQWWVaVGvoK08O0ym7+dG7V6QNJ32m5DyNYW2JRw6bG8NcQc4iK 1mxnXoWeGcVPzImRm2cY/Cnty5sO5KouH7or+J6AQov906kw163YvzoknGv2vWKu mHFgUfTPEKCURMvkRzU7Cw39GMsvRQvxxCQM9MAcUUWbKFK+0It9zUXAzYlCZFpN SVsmx+/kjXWwmUiLyiD+LvyXVvi8LKoBRfVpNGtb860BpWqr98t9 -----END CERTIFICATE----- ====================================== --- Certificate chain 0 s:CN = e-tan.jp i:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jan 30 11:13:52 2025 GMT; NotAfter: Jan 31 14:59:59 2026 GMT 1 s:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 i:C = JP, O = "SECOM Trust Systems CO.,LTD.", OU = Security Communication RootCA2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 22 10:40:53 2020 GMT; NotAfter: May 29 05:00:39 2029 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGxzCCBa+gAwIBAgIQIzuhyATsifvp8UBKvNPK/jANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDEzMDExMTM1MloXDTI2MDEzMTE0NTk1OVowEzERMA8G A1UEAxMIZS10YW4uanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl eXbAuNwk4Zv6XzUNYvJs6JHGiNbZ5e5jup9fxznbNY0j26zGhZ2bY5lRag8z5PPv NhD3tl9BOwaO7zcyEy4FF3JIVHx9LfyIH9lek74GB30Qqt4vh2dOKnCPWfb5fHWU Busdcva8ZhZNVRlrOd5wae4ylumkCtlBZaj7UC9qLRBE5+TOovPd7tg8kDZ4UeAI t/easZoC8DiCEzUjMMT/SvKTw4Srcuuss+Kxp6K18IjMAtoF/EjgFapS0Ph2dUBn JKxlRGknHS5AAuAH+les3vTrDWwdQORgI8inrmwwE/eq+aP9pMYTpYYdFXlv/khA gkKxTTqxDPb5MBtx4Fz9AgMBAAGjggO/MIIDuzAfBgNVHSMEGDAWgBR8JM4NpDgt x7NjXqd4eo0dTC7HFTCBkAYIKwYBBQUHAQEEgYMwgYAwTwYIKwYBBQUHMAKGQ2h0 dHA6Ly9yZXBvLnB1YmNlcnQuanBycy5qcC9zcHBjYS9qcHJzL2R2Y2FfZzQvSlBS U19EVkNBX0c0X0RFUi5jZXIwLQYIKwYBBQUHMAGGIWh0dHA6Ly9kdi5nNC5vY3Nw LnB1YmNlcnQuanBycy5qcDAhBgNVHREEGjAYgghlLXRhbi5qcIIMd3d3LmUtdGFu LmpwMFkGA1UdIARSMFAwRAYLKwYBBAGDpEMBAQQwNTAzBggrBgEFBQcCARYnaHR0 cDovL2pwcnMuanAvcHViY2VydC9pbmZvL3JlcG9zaXRvcnkvMAgGBmeBDAECATAT BgNVHSUEDDAKBggrBgEFBQcDATBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vcmVw by5wdWJjZXJ0LmpwcnMuanAvc3BwY2EvanBycy9kdmNhX2c0L2Z1bGxjcmwuY3Js MB0GA1UdDgQWBBTOurUSVMxdmq47nnrgukjYbjW88jAOBgNVHQ8BAf8EBAMCBaAw ggH0BgorBgEEAdZ5AgQCBIIB5ASCAeAB3gB1AA5XlLzzrqk+MxssmQez95Dfm8I9 cTIl3SGpJaxhxU4hAAABlLb0BvUAAAQDAEYwRAIgMNK5CkhVGmY+ChD/W6VR8kQc pcluSXXqA4L2Pprhz9sCIF0SA6kb8pK76n5nhbu5ReJBeDrhC+kiB9/l6KYFOdBT AHYAlpdkv1VYl633Q4doNwhCd+nwOtX2pPM2bkakPw/KqcYAAAGUtvQNWwAABAMA RzBFAiEA2CA5XP1SfxFsSY42gpgOIytawbFqxa8mx+gM+3/SgSYCIHgSFW5aHA7b FZtR4bZ380CmMuiVpJM1TwBhfCA8ARXyAHUAZBHEbKQS7KeJHKICLgC8q08oB9Qe NSer6v7VA8l9zfAAAAGUtvQQKwAABAMARjBEAiBAQ7RSuTdejpOm66M/TRFDDmE2 FyrS7fAkUQD5ddnyDAIgGP9YVfkhi9a85y0lv6DFFyNIYuSEq0yZecJmrV0wVQMA dgDLOPcViXyEoURfW8Hd+8lu8ppZzUcKaQWFsMsUwxRY5wAAAZS29BILAAAEAwBH MEUCIQDO+QV3P9Wapv+4SXPCV4NhcvkHTU9vy3+BNNaZU2VfPAIgLSgtVAXk0Jwl wl4fDJbnoelJXNgRhsoeKSLEtcjj6z0wDQYJKoZIhvcNAQELBQADggEBAFGRUcJO LcqTQYzg0jOnC9i+vgM31Lnadm2kVGkkbGOcXo+/hO5WC3JkOTWW1M3+w7Tn4lxC epchyxKRPBbEuCeyV6FNz3GXQvlhb9mjkCXL/I0stnWhPw/S8Af7AmHGRjR0v5Xe 54hfP6a8G09tAT6nxMO3SC40mkw1ltNWm8lqWKRzR3w+kPz9QJuSF1DLxj3uKYkw KOw/51ylYEqCvP8pVxbFWyEpBFJd3DTVorS88vv19J6qavNK8wDKOmltUAwtGmsg PWVnlVl54/z9V7BA3tnc+V8bhVCPKTaafjLVBSwO05J5ftPAMuLEVudH8vWzBaM9 /pksTUlhz9oY/mY= -----END CERTIFICATE----- subject=CN = e-tan.jp issuer=C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5200 bytes and written 445 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: F09FE13C1C6FCB544495CFA31D2B57E62C1582B2BD83A0ECC2D76461821720C4 Session-ID-ctx: Master-Key: BB2789BFE71F1FA13320B63C58C479232E5BFCB9C51A5DD83BABA9CA39A4720330F0FAB38B48241901D9F4D81CA7AEF3 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 10 27 ee 04 3f bb 5d 00-9d a1 08 01 a9 95 48 07 .'..?.].......H. 0010 - b1 45 d1 bb 1d 40 ba 1b-f8 0d 4c ee 03 9f 27 f9 .E...@....L...'. 0020 - f3 89 01 20 41 c4 ba 2a-af 35 39 61 4d 3a 77 7f ... A..*.59aM:w. 0030 - 9c ce 6f 93 98 a2 9f 78-0f f7 91 a5 07 e6 84 68 ..o....x.......h 0040 - 4c cd cc 3b fb 71 4d b7-09 6c 02 d8 c2 dd 8b 42 L..;.qM..l.....B 0050 - 9b 5d 16 78 5d c7 06 07-74 0a 35 73 7d b0 6c ea .].x]...t.5s}.l. 0060 - 8d 39 7e ad 16 0e c3 68-ac b2 13 03 d5 e7 9d 54 .9~....h.......T 0070 - 6e d3 69 2a 35 98 fe 3a-49 8c b7 52 10 42 36 f6 n.i*5..:I..R.B6. 0080 - 16 54 c3 aa a3 42 da 23-cf f5 77 f4 fa e4 97 73 .T...B.#..w....s 0090 - 27 bd 99 f3 55 af c0 70-85 07 20 9d ac 4b 3e 2a '...U..p.. ..K>* 00a0 - a0 0e 63 db 91 d8 f3 14-3f 9d 3e 8e c4 dc e8 be ..c.....?.>..... 00b0 - 82 aa 29 21 57 f8 76 32-77 be a2 03 cc b8 7c a7 ..)!W.v2w.....|. Start Time: 1762120555 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
e-tan.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.