Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://e-tan.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=e-tan.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=e-tan.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=e-tan.jp
And you can
check your domain name
.
#
Certificate of
e-tan.jp
{ "serial": "233BA1C804EC89FBE9F1404ABCD3CAFE", "OCSP_serial": "233BA1C804EC89FBE9F1404ABCD3CAFE", "OCSP_cert_status": "good", "OCSP_this_update": "May 22 06:47:52 2025 GMT", "OCSP_next_update": "May 26 06:47:52 2025 GMT", "domainName": "e-tan.jp", "port": 443, "subjectAltName": "DNS:e-tan.jp, DNS:www.e-tan.jp", "is_valid": true, "CA": "Japan Registry Services Co., Ltd.", "updated_at": "2025/01/30 20:13:52", "expires_at": "2026/01/31 23:59:59", "today": "2025/05/22 23:12:31", "UTC": { "updated_at": "2025-01-30T11:13:52Z", "expires_at": "2026-01-31T14:59:59Z", "today": "2025-05-22T14:12:31Z" }, "remaining_days": 254 }
#
OCSP response of
e-tan.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 908A64DD6CE7352BE63621A812C0447BF9DAFFB8 Produced At: May 22 13:50:02 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 1DB449849554FCAAF967B74DC546361AF782AF8F Issuer Key Hash: 7C24CE0DA4382DC7B3635EA7787A8D1D4C2EC715 Serial Number: 233BA1C804EC89FBE9F1404ABCD3CAFE Cert Status: good This Update: May 22 06:47:52 2025 GMT Next Update: May 26 06:47:52 2025 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 36:7c:99:be:7c:ec:e9:68:00:b2:7e:84:22:44:ce:be:08:41: 2f:d0:1c:14:1d:8f:ab:22:6f:ad:ec:50:ba:a1:db:b9:93:3a: 10:f5:90:8f:f1:2b:9a:b9:05:ae:17:6e:51:96:73:12:ca:07: 10:eb:f8:fa:9d:2e:70:a6:bb:30:63:c1:85:61:17:ec:44:b2: d7:d9:48:5f:9d:2f:13:c5:f3:2b:f9:70:69:4e:44:1c:a9:e7: d1:ba:ab:c2:a4:0b:29:f8:56:54:39:49:c1:e4:f8:4d:3e:f6: f3:34:43:74:6d:00:b3:12:ce:cf:87:a1:8c:55:40:85:f2:52: c0:93:db:a0:dd:12:a0:fd:89:63:7f:eb:62:c4:57:a0:62:25: 18:18:fe:b1:b5:48:70:e8:ba:0e:fd:6c:9b:d7:fe:29:fe:dd: 3e:ce:d1:1c:73:55:98:34:11:8c:6f:9c:db:85:5b:05:c9:e2: d4:df:88:84:17:48:45:9e:e6:c1:48:5d:48:5a:fd:d7:6d:23: e2:8c:8e:cd:13:37:1a:dd:5b:c7:78:09:ce:4a:8b:c1:0a:fa: 6e:1a:d0:7f:61:de:92:00:f9:c6:b0:01:96:bc:7a:fd:d1:58: 26:bc:de:73:77:66:c9:b2:86:b4:84:71:bf:6b:3f:0c:62:86: 25:35:3d:70 Certificate: Data: Version: 3 (0x2) Serial Number: 28:e9:0c:c1:d4:49:b3:40:29:1b:bf:ec:69:70:39:9b Signature Algorithm: sha256WithRSAEncryption Issuer: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 Validity Not Before: Mar 21 05:17:11 2025 GMT Not After : Jul 23 05:17:11 2025 GMT Subject: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 OCSP Responder Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a6:0f:00:a1:d4:3e:71:b4:83:33:8b:bf:e5:df: 58:77:54:17:53:eb:b9:79:6c:de:7e:31:55:f0:53: 42:b2:bb:81:0a:6b:a6:b9:bf:6b:6b:7d:6e:c0:0f: 97:bf:31:e3:53:9e:44:ed:83:3d:d3:b8:4d:41:f7: b3:86:93:51:a9:fe:1c:7f:28:0b:c5:59:26:52:4b: 7f:52:a3:cd:e6:c6:53:f2:53:a7:b4:5b:bb:af:62: 18:31:26:ae:2a:12:2e:4b:6b:e2:ca:6f:dc:fc:58: 56:6a:3d:5b:dd:5e:e7:09:76:56:f2:ff:88:c9:8c: db:97:65:ec:8d:a1:e5:9f:f5:93:2d:6b:48:49:e0: fd:06:b9:68:d7:5e:38:c8:7a:96:82:e7:11:cc:ed: ca:53:b2:6d:dd:16:93:56:87:e0:bd:be:12:d7:5a: c8:d9:99:47:f5:de:51:7b:1a:a3:39:10:9c:7b:82: 1a:8d:ec:38:22:0a:c1:a2:03:f6:7a:06:f7:b8:6e: 21:53:ee:7b:71:12:3c:ec:55:47:e9:91:0e:13:26: 28:00:72:cb:8e:24:da:6b:d1:4d:09:21:f2:0c:4b: 1f:ce:d7:f2:93:d1:78:7e:82:ad:a3:22:cc:53:3d: 99:ed:99:d0:00:2e:7c:8a:f1:79:26:e9:49:b0:cd: 4b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7C:24:CE:0D:A4:38:2D:C7:B3:63:5E:A7:78:7A:8D:1D:4C:2E:C7:15 OCSP No Check: X509v3 Extended Key Usage: OCSP Signing X509v3 Subject Key Identifier: 90:8A:64:DD:6C:E7:35:2B:E6:36:21:A8:12:C0:44:7B:F9:DA:FF:B8 X509v3 Key Usage: critical Digital Signature Signature Algorithm: sha256WithRSAEncryption Signature Value: 07:9f:64:91:1f:fc:55:29:c0:52:d2:68:a8:10:12:fc:c7:42: 13:67:aa:05:aa:27:95:40:87:31:2d:66:a1:82:af:aa:7b:e0: e0:b1:e7:2d:6e:e3:6e:be:0d:1d:25:3f:52:cf:88:14:19:d8: b6:45:28:f4:68:46:3e:8a:08:92:5d:de:93:bb:bf:af:d5:97: 78:f9:6d:d0:20:52:2a:1d:e1:32:d6:c9:58:be:e5:ab:a1:20: fc:07:02:00:33:e7:0c:96:29:5c:78:54:21:13:df:4e:b5:3f: 30:74:d5:cd:fd:4e:df:02:3c:40:b1:dc:14:0c:2d:4c:b5:02: 06:48:fd:5c:a2:75:e7:7c:ec:98:a1:3f:80:e1:29:7c:3d:b1: 18:4a:f3:a8:2f:0b:a6:f1:13:d2:bb:cd:9c:ac:cc:0d:29:c3: 8b:1b:87:10:2b:cc:7f:aa:b1:a1:f1:24:ec:f5:72:d2:e5:97: aa:95:a6:c9:46:68:7f:1f:86:42:b5:ad:de:17:de:0d:24:e4: 33:3b:e3:fe:a1:c9:f4:64:fc:a5:9e:82:d3:f4:96:c2:59:c7: d7:14:d7:39:6a:5f:94:09:04:1b:4d:7f:f9:a5:0b:22:f9:da: 55:d9:b5:20:e8:53:55:4b:88:66:e5:ac:31:17:18:a0:dd:eb: 64:d3:11:b7 -----BEGIN CERTIFICATE----- MIID4zCCAsugAwIBAgIQKOkMwdRJs0ApG7/saXA5mzANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDMyMTA1MTcxMVoXDTI1MDcyMzA1MTcxMVoweDELMAkG A1UEBhMCSlAxKjAoBgNVBAoTIUphcGFuIFJlZ2lzdHJ5IFNlcnZpY2VzIENvLiwg THRkLjE9MDsGA1UEAxM0SlBSUyBEb21haW4gVmFsaWRhdGlvbiBBdXRob3JpdHkg LSBHNCBPQ1NQIFJlc3BvbmRlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYPAKHUPnG0gzOLv+XfWHdUF1PruXls3n4xVfBTQrK7gQprprm/a2t9bsAP l78x41OeRO2DPdO4TUH3s4aTUan+HH8oC8VZJlJLf1KjzebGU/JTp7Rbu69iGDEm rioSLktr4spv3PxYVmo9W91e5wl2VvL/iMmM25dl7I2h5Z/1ky1rSEng/Qa5aNde OMh6loLnEcztylOybd0Wk1aH4L2+EtdayNmZR/XeUXsaozkQnHuCGo3sOCIKwaID 9noG97huIVPue3ESPOxVR+mRDhMmKAByy44k2mvRTQkh8gxLH87X8pPReH6CraMi zFM9me2Z0AAufIrxeSbpSbDNS2cCAwEAAaN4MHYwHwYDVR0jBBgwFoAUfCTODaQ4 LcezY16neHqNHUwuxxUwDwYJKwYBBQUHMAEFBAIFADATBgNVHSUEDDAKBggrBgEF BQcDCTAdBgNVHQ4EFgQUkIpk3WznNSvmNiGoEsBEe/na/7gwDgYDVR0PAQH/BAQD AgeAMA0GCSqGSIb3DQEBCwUAA4IBAQAHn2SRH/xVKcBS0mioEBL8x0ITZ6oFqieV QIcxLWahgq+qe+DgsectbuNuvg0dJT9Sz4gUGdi2RSj0aEY+igiSXd6Tu7+v1Zd4 +W3QIFIqHeEy1slYvuWroSD8BwIAM+cMlilceFQhE99OtT8wdNXN/U7fAjxAsdwU DC1MtQIGSP1conXnfOyYoT+A4Sl8PbEYSvOoLwum8RPSu82crMwNKcOLG4cQK8x/ qrGh8STs9XLS5ZeqlabJRmh/H4ZCta3eF94NJOQzO+P+ocn0ZPylnoLT9JbCWcfX FNc5al+UCQQbTX/5pQsi+dpV2bUg6FNVS4hm5awxFxig3etk0xG3 -----END CERTIFICATE----- ====================================== --- Certificate chain 0 s:CN = e-tan.jp i:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jan 30 11:13:52 2025 GMT; NotAfter: Jan 31 14:59:59 2026 GMT 1 s:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 i:C = JP, O = "SECOM Trust Systems CO.,LTD.", OU = Security Communication RootCA2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 22 10:40:53 2020 GMT; NotAfter: May 29 05:00:39 2029 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGxzCCBa+gAwIBAgIQIzuhyATsifvp8UBKvNPK/jANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDEzMDExMTM1MloXDTI2MDEzMTE0NTk1OVowEzERMA8G A1UEAxMIZS10YW4uanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl eXbAuNwk4Zv6XzUNYvJs6JHGiNbZ5e5jup9fxznbNY0j26zGhZ2bY5lRag8z5PPv NhD3tl9BOwaO7zcyEy4FF3JIVHx9LfyIH9lek74GB30Qqt4vh2dOKnCPWfb5fHWU Busdcva8ZhZNVRlrOd5wae4ylumkCtlBZaj7UC9qLRBE5+TOovPd7tg8kDZ4UeAI t/easZoC8DiCEzUjMMT/SvKTw4Srcuuss+Kxp6K18IjMAtoF/EjgFapS0Ph2dUBn JKxlRGknHS5AAuAH+les3vTrDWwdQORgI8inrmwwE/eq+aP9pMYTpYYdFXlv/khA gkKxTTqxDPb5MBtx4Fz9AgMBAAGjggO/MIIDuzAfBgNVHSMEGDAWgBR8JM4NpDgt x7NjXqd4eo0dTC7HFTCBkAYIKwYBBQUHAQEEgYMwgYAwTwYIKwYBBQUHMAKGQ2h0 dHA6Ly9yZXBvLnB1YmNlcnQuanBycy5qcC9zcHBjYS9qcHJzL2R2Y2FfZzQvSlBS U19EVkNBX0c0X0RFUi5jZXIwLQYIKwYBBQUHMAGGIWh0dHA6Ly9kdi5nNC5vY3Nw LnB1YmNlcnQuanBycy5qcDAhBgNVHREEGjAYgghlLXRhbi5qcIIMd3d3LmUtdGFu LmpwMFkGA1UdIARSMFAwRAYLKwYBBAGDpEMBAQQwNTAzBggrBgEFBQcCARYnaHR0 cDovL2pwcnMuanAvcHViY2VydC9pbmZvL3JlcG9zaXRvcnkvMAgGBmeBDAECATAT BgNVHSUEDDAKBggrBgEFBQcDATBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vcmVw by5wdWJjZXJ0LmpwcnMuanAvc3BwY2EvanBycy9kdmNhX2c0L2Z1bGxjcmwuY3Js MB0GA1UdDgQWBBTOurUSVMxdmq47nnrgukjYbjW88jAOBgNVHQ8BAf8EBAMCBaAw ggH0BgorBgEEAdZ5AgQCBIIB5ASCAeAB3gB1AA5XlLzzrqk+MxssmQez95Dfm8I9 cTIl3SGpJaxhxU4hAAABlLb0BvUAAAQDAEYwRAIgMNK5CkhVGmY+ChD/W6VR8kQc pcluSXXqA4L2Pprhz9sCIF0SA6kb8pK76n5nhbu5ReJBeDrhC+kiB9/l6KYFOdBT AHYAlpdkv1VYl633Q4doNwhCd+nwOtX2pPM2bkakPw/KqcYAAAGUtvQNWwAABAMA RzBFAiEA2CA5XP1SfxFsSY42gpgOIytawbFqxa8mx+gM+3/SgSYCIHgSFW5aHA7b FZtR4bZ380CmMuiVpJM1TwBhfCA8ARXyAHUAZBHEbKQS7KeJHKICLgC8q08oB9Qe NSer6v7VA8l9zfAAAAGUtvQQKwAABAMARjBEAiBAQ7RSuTdejpOm66M/TRFDDmE2 FyrS7fAkUQD5ddnyDAIgGP9YVfkhi9a85y0lv6DFFyNIYuSEq0yZecJmrV0wVQMA dgDLOPcViXyEoURfW8Hd+8lu8ppZzUcKaQWFsMsUwxRY5wAAAZS29BILAAAEAwBH MEUCIQDO+QV3P9Wapv+4SXPCV4NhcvkHTU9vy3+BNNaZU2VfPAIgLSgtVAXk0Jwl wl4fDJbnoelJXNgRhsoeKSLEtcjj6z0wDQYJKoZIhvcNAQELBQADggEBAFGRUcJO LcqTQYzg0jOnC9i+vgM31Lnadm2kVGkkbGOcXo+/hO5WC3JkOTWW1M3+w7Tn4lxC epchyxKRPBbEuCeyV6FNz3GXQvlhb9mjkCXL/I0stnWhPw/S8Af7AmHGRjR0v5Xe 54hfP6a8G09tAT6nxMO3SC40mkw1ltNWm8lqWKRzR3w+kPz9QJuSF1DLxj3uKYkw KOw/51ylYEqCvP8pVxbFWyEpBFJd3DTVorS88vv19J6qavNK8wDKOmltUAwtGmsg PWVnlVl54/z9V7BA3tnc+V8bhVCPKTaafjLVBSwO05J5ftPAMuLEVudH8vWzBaM9 /pksTUlhz9oY/mY= -----END CERTIFICATE----- subject=CN = e-tan.jp issuer=C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5200 bytes and written 445 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: 528CCB53502DC7CA56E7FA6544B92B18DFE659FFBF7C517A7C99B8949D114F28 Session-ID-ctx: Master-Key: 5DCE4CF03D3A5A09B86489C0FE45AA2A01863DAE58EC8A876D1A41261D17094EE6D9466E4BDFAA2A18581A658DFCDBFF PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 53 94 16 13 13 f3 f7 a5-e7 b6 9e 36 18 8f 93 83 S..........6.... 0010 - 8b 2a a4 ce d7 ab 35 f9-35 9f 96 78 d8 d2 64 49 .*....5.5..x..dI 0020 - 30 2a c8 a7 38 4d 6c ca-58 65 6b a5 b3 92 7d 46 0*..8Ml.Xek...}F 0030 - 78 15 b1 69 b1 c1 7e 41-c5 47 d6 72 03 d0 be b7 x..i..~A.G.r.... 0040 - ad d7 17 f7 9a e7 f5 5e-ba e6 ad 9c 8f 65 5d 49 .......^.....e]I 0050 - 4d 17 f1 72 4c b3 7e bd-57 a7 7d df d7 32 8a be M..rL.~.W.}..2.. 0060 - 25 5a 99 26 63 8a 3e f2-ac b8 fe b6 42 9d 18 c2 %Z.&c.>.....B... 0070 - 11 21 b8 aa ad 6b a5 f2-67 74 80 c7 d7 32 67 67 .!...k..gt...2gg 0080 - 29 61 91 0f a8 d4 10 9d-4a 23 52 c4 a0 cd b1 f3 )a......J#R..... 0090 - 5c 44 74 02 e8 90 b1 dd-26 8a 19 df 05 fe 45 8c \Dt.....&.....E. 00a0 - 16 58 a2 bc 8e 5f ac 59-87 08 98 40 54 4f bb 85 .X..._.Y...@TO.. 00b0 - 2a dd ad fb 34 00 60 17-df d3 8d bf 73 67 ec bc *...4.`.....sg.. Start Time: 1747923151 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
e-tan.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.