Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://e-tan.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=e-tan.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=e-tan.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=e-tan.jp
And you can
check your domain name
.
#
Certificate of
e-tan.jp
{ "serial": "233BA1C804EC89FBE9F1404ABCD3CAFE", "OCSP_serial": "233BA1C804EC89FBE9F1404ABCD3CAFE", "OCSP_cert_status": "good", "OCSP_this_update": "Jul 12 15:39:03 2025 GMT", "OCSP_next_update": "Jul 16 15:39:03 2025 GMT", "domainName": "e-tan.jp", "port": 443, "subjectAltName": "DNS:e-tan.jp, DNS:www.e-tan.jp", "is_valid": true, "CA": "Japan Registry Services Co., Ltd.", "updated_at": "2025/01/30 20:13:52", "expires_at": "2026/01/31 23:59:59", "today": "2025/07/13 12:05:20", "UTC": { "updated_at": "2025-01-30T11:13:52Z", "expires_at": "2026-01-31T14:59:59Z", "today": "2025-07-13T03:05:20Z" }, "remaining_days": 202 }
#
OCSP response of
e-tan.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 7F8F44AD495FE3E1148C3201B7BDECA586A9AD97 Produced At: Jul 13 01:58:55 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 1DB449849554FCAAF967B74DC546361AF782AF8F Issuer Key Hash: 7C24CE0DA4382DC7B3635EA7787A8D1D4C2EC715 Serial Number: 233BA1C804EC89FBE9F1404ABCD3CAFE Cert Status: good This Update: Jul 12 15:39:03 2025 GMT Next Update: Jul 16 15:39:03 2025 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 4d:c6:7e:d5:5c:bf:ce:a2:f2:fb:d7:fb:69:33:d3:88:af:fb: 57:b0:cf:6c:0f:5c:db:9f:f7:65:0d:f6:ae:7b:98:19:d8:e9: 64:43:9b:07:70:39:1e:23:e7:32:d8:04:9a:c9:b4:c7:5b:74: b0:2d:6f:78:9b:37:c6:aa:d0:e9:3f:42:29:06:30:68:f2:9c: a6:bf:1d:24:c8:30:2e:60:ab:bf:35:a0:3d:7b:9d:79:a0:5b: f3:0f:d8:76:aa:ec:6f:dd:75:d2:90:ad:ec:2d:96:03:77:be: 8d:6d:31:b1:27:29:f0:66:29:65:c1:97:32:8b:51:f9:f7:c6: 6b:16:48:f1:42:f4:ff:be:9b:fd:4d:d3:ed:96:82:27:96:1e: 94:9c:a8:1d:44:e9:1e:34:ad:71:ac:a8:71:3c:63:22:d6:ea: e7:c6:60:57:ad:fa:84:a0:3b:83:90:9a:2b:30:cb:82:18:94: 4b:5d:a2:9e:e0:04:96:eb:c9:58:51:f2:72:be:ff:0a:d8:64: bf:ca:9d:3b:91:a2:eb:af:62:7b:df:58:0f:5e:13:68:67:1a: f2:0d:1f:cb:08:38:e0:e5:bd:b6:20:e8:75:19:de:b3:f9:f6: be:9a:51:d5:fb:50:51:2d:54:0b:c2:8c:31:e5:2f:70:fb:1d: 75:92:15:c9 Certificate: Data: Version: 3 (0x2) Serial Number: 74:9e:a6:ec:2e:12:7f:58:9c:da:0c:cc:3d:42:ec:6d Signature Algorithm: sha256WithRSAEncryption Issuer: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 Validity Not Before: Jun 20 05:03:05 2025 GMT Not After : Oct 22 05:03:05 2025 GMT Subject: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 OCSP Responder Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:97:1f:75:89:74:6a:90:1a:36:58:ac:dc:11:9d: 25:6c:08:d6:2b:7b:03:7a:09:ed:7a:42:0f:ff:6a: 40:e1:90:fd:f8:60:b3:ff:e3:38:59:a5:49:71:e0: b5:e9:b8:21:17:ca:49:88:78:77:ec:6d:4d:27:ac: ea:e8:48:9c:f0:6f:e3:81:5a:4f:89:e3:9a:85:97: b7:a6:3a:9a:6e:37:e2:92:84:f6:63:26:78:be:1d: 31:b6:fd:31:66:2c:50:19:23:a9:67:9f:da:63:3f: c5:34:c8:b4:72:dc:45:4e:9c:5e:ca:57:1a:dc:ee: fa:d8:7d:45:d6:1c:38:bd:5e:e8:13:d8:37:bc:ee: a5:2f:da:ec:05:20:e6:73:3e:d3:e4:34:b9:7e:01: e7:24:5a:d6:15:2c:26:7d:59:0c:d0:5f:e6:7e:4f: 1d:ae:63:c7:c4:47:ca:9f:07:8e:43:62:fe:26:2c: b9:ce:45:4e:06:6e:7f:01:29:e5:92:4c:86:f2:53: 33:f8:46:c8:19:1c:82:01:65:0e:44:3a:85:9d:ec: b3:66:d8:23:7b:8f:3c:fa:12:ac:d1:b9:8b:c4:15: 53:79:e7:be:7d:27:ba:23:7e:eb:bb:52:8f:93:66: 1c:b2:90:13:0d:71:44:5a:f7:86:39:ed:3e:78:1e: fe:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7C:24:CE:0D:A4:38:2D:C7:B3:63:5E:A7:78:7A:8D:1D:4C:2E:C7:15 OCSP No Check: X509v3 Extended Key Usage: OCSP Signing X509v3 Subject Key Identifier: 7F:8F:44:AD:49:5F:E3:E1:14:8C:32:01:B7:BD:EC:A5:86:A9:AD:97 X509v3 Key Usage: critical Digital Signature Signature Algorithm: sha256WithRSAEncryption Signature Value: 85:0f:9c:aa:f6:87:b9:e7:e2:da:7f:5c:f6:dc:0e:51:6d:e0: 39:59:83:60:3e:02:a7:42:08:f2:57:ec:4f:df:e5:02:1d:a1: 92:5b:52:9a:0f:e1:8e:35:05:c1:19:36:8d:31:ff:c6:e0:14: b3:66:38:96:41:f3:ed:db:7d:22:b0:3a:00:37:3e:b7:e8:65: 63:02:17:22:2a:23:72:d8:26:65:0b:4c:3b:f0:85:a8:d2:93: 2b:8f:45:25:6b:7e:55:bd:36:25:45:55:29:a1:f9:e8:76:16: 08:6a:b6:b6:67:cb:3b:2f:23:cb:f0:d8:c4:d2:10:88:2e:9d: 18:92:25:c3:e3:63:db:04:ad:e0:05:e7:76:d0:95:0c:87:a9: a7:94:3e:58:26:32:c1:67:24:36:98:3b:88:af:ff:9f:41:c4: 69:df:d1:3e:81:29:e7:1d:f5:ac:a6:4b:0f:72:55:46:e4:ff: 35:42:49:14:1d:be:e8:83:cb:03:b7:77:8f:68:8b:b9:92:8b: 76:b2:d6:e4:da:cb:c3:58:49:9c:5b:90:48:1d:62:2f:e0:6f: 01:30:df:e3:23:da:f2:b5:11:0d:c9:ca:b2:58:27:87:74:04: 2a:11:0c:38:02:e0:75:b3:df:fa:45:a8:e8:f4:b0:5f:30:cf: 99:bc:46:02 -----BEGIN CERTIFICATE----- MIID4zCCAsugAwIBAgIQdJ6m7C4Sf1ic2gzMPULsbTANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDYyMDA1MDMwNVoXDTI1MTAyMjA1MDMwNVoweDELMAkG A1UEBhMCSlAxKjAoBgNVBAoTIUphcGFuIFJlZ2lzdHJ5IFNlcnZpY2VzIENvLiwg THRkLjE9MDsGA1UEAxM0SlBSUyBEb21haW4gVmFsaWRhdGlvbiBBdXRob3JpdHkg LSBHNCBPQ1NQIFJlc3BvbmRlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJcfdYl0apAaNlis3BGdJWwI1it7A3oJ7XpCD/9qQOGQ/fhgs//jOFmlSXHg tem4IRfKSYh4d+xtTSes6uhInPBv44FaT4njmoWXt6Y6mm434pKE9mMmeL4dMbb9 MWYsUBkjqWef2mM/xTTItHLcRU6cXspXGtzu+th9RdYcOL1e6BPYN7zupS/a7AUg 5nM+0+Q0uX4B5yRa1hUsJn1ZDNBf5n5PHa5jx8RHyp8HjkNi/iYsuc5FTgZufwEp 5ZJMhvJTM/hGyBkcggFlDkQ6hZ3ss2bYI3uPPPoSrNG5i8QVU3nnvn0nuiN+67tS j5NmHLKQEw1xRFr3hjntPnge/oMCAwEAAaN4MHYwHwYDVR0jBBgwFoAUfCTODaQ4 LcezY16neHqNHUwuxxUwDwYJKwYBBQUHMAEFBAIFADATBgNVHSUEDDAKBggrBgEF BQcDCTAdBgNVHQ4EFgQUf49ErUlf4+EUjDIBt73spYaprZcwDgYDVR0PAQH/BAQD AgeAMA0GCSqGSIb3DQEBCwUAA4IBAQCFD5yq9oe55+Laf1z23A5RbeA5WYNgPgKn QgjyV+xP3+UCHaGSW1KaD+GONQXBGTaNMf/G4BSzZjiWQfPt230isDoANz636GVj AhciKiNy2CZlC0w78IWo0pMrj0Ula35VvTYlRVUpofnodhYIara2Z8s7LyPL8NjE 0hCILp0YkiXD42PbBK3gBed20JUMh6mnlD5YJjLBZyQ2mDuIr/+fQcRp39E+gSnn HfWspksPclVG5P81QkkUHb7og8sDt3ePaIu5kot2stbk2svDWEmcW5BIHWIv4G8B MN/jI9rytRENycqyWCeHdAQqEQw4AuB1s9/6Rajo9LBfMM+ZvEYC -----END CERTIFICATE----- ====================================== --- Certificate chain 0 s:CN = e-tan.jp i:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jan 30 11:13:52 2025 GMT; NotAfter: Jan 31 14:59:59 2026 GMT 1 s:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 i:C = JP, O = "SECOM Trust Systems CO.,LTD.", OU = Security Communication RootCA2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 22 10:40:53 2020 GMT; NotAfter: May 29 05:00:39 2029 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGxzCCBa+gAwIBAgIQIzuhyATsifvp8UBKvNPK/jANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDEzMDExMTM1MloXDTI2MDEzMTE0NTk1OVowEzERMA8G A1UEAxMIZS10YW4uanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCl eXbAuNwk4Zv6XzUNYvJs6JHGiNbZ5e5jup9fxznbNY0j26zGhZ2bY5lRag8z5PPv NhD3tl9BOwaO7zcyEy4FF3JIVHx9LfyIH9lek74GB30Qqt4vh2dOKnCPWfb5fHWU Busdcva8ZhZNVRlrOd5wae4ylumkCtlBZaj7UC9qLRBE5+TOovPd7tg8kDZ4UeAI t/easZoC8DiCEzUjMMT/SvKTw4Srcuuss+Kxp6K18IjMAtoF/EjgFapS0Ph2dUBn JKxlRGknHS5AAuAH+les3vTrDWwdQORgI8inrmwwE/eq+aP9pMYTpYYdFXlv/khA gkKxTTqxDPb5MBtx4Fz9AgMBAAGjggO/MIIDuzAfBgNVHSMEGDAWgBR8JM4NpDgt x7NjXqd4eo0dTC7HFTCBkAYIKwYBBQUHAQEEgYMwgYAwTwYIKwYBBQUHMAKGQ2h0 dHA6Ly9yZXBvLnB1YmNlcnQuanBycy5qcC9zcHBjYS9qcHJzL2R2Y2FfZzQvSlBS U19EVkNBX0c0X0RFUi5jZXIwLQYIKwYBBQUHMAGGIWh0dHA6Ly9kdi5nNC5vY3Nw LnB1YmNlcnQuanBycy5qcDAhBgNVHREEGjAYgghlLXRhbi5qcIIMd3d3LmUtdGFu LmpwMFkGA1UdIARSMFAwRAYLKwYBBAGDpEMBAQQwNTAzBggrBgEFBQcCARYnaHR0 cDovL2pwcnMuanAvcHViY2VydC9pbmZvL3JlcG9zaXRvcnkvMAgGBmeBDAECATAT BgNVHSUEDDAKBggrBgEFBQcDATBLBgNVHR8ERDBCMECgPqA8hjpodHRwOi8vcmVw by5wdWJjZXJ0LmpwcnMuanAvc3BwY2EvanBycy9kdmNhX2c0L2Z1bGxjcmwuY3Js MB0GA1UdDgQWBBTOurUSVMxdmq47nnrgukjYbjW88jAOBgNVHQ8BAf8EBAMCBaAw ggH0BgorBgEEAdZ5AgQCBIIB5ASCAeAB3gB1AA5XlLzzrqk+MxssmQez95Dfm8I9 cTIl3SGpJaxhxU4hAAABlLb0BvUAAAQDAEYwRAIgMNK5CkhVGmY+ChD/W6VR8kQc pcluSXXqA4L2Pprhz9sCIF0SA6kb8pK76n5nhbu5ReJBeDrhC+kiB9/l6KYFOdBT AHYAlpdkv1VYl633Q4doNwhCd+nwOtX2pPM2bkakPw/KqcYAAAGUtvQNWwAABAMA RzBFAiEA2CA5XP1SfxFsSY42gpgOIytawbFqxa8mx+gM+3/SgSYCIHgSFW5aHA7b FZtR4bZ380CmMuiVpJM1TwBhfCA8ARXyAHUAZBHEbKQS7KeJHKICLgC8q08oB9Qe NSer6v7VA8l9zfAAAAGUtvQQKwAABAMARjBEAiBAQ7RSuTdejpOm66M/TRFDDmE2 FyrS7fAkUQD5ddnyDAIgGP9YVfkhi9a85y0lv6DFFyNIYuSEq0yZecJmrV0wVQMA dgDLOPcViXyEoURfW8Hd+8lu8ppZzUcKaQWFsMsUwxRY5wAAAZS29BILAAAEAwBH MEUCIQDO+QV3P9Wapv+4SXPCV4NhcvkHTU9vy3+BNNaZU2VfPAIgLSgtVAXk0Jwl wl4fDJbnoelJXNgRhsoeKSLEtcjj6z0wDQYJKoZIhvcNAQELBQADggEBAFGRUcJO LcqTQYzg0jOnC9i+vgM31Lnadm2kVGkkbGOcXo+/hO5WC3JkOTWW1M3+w7Tn4lxC epchyxKRPBbEuCeyV6FNz3GXQvlhb9mjkCXL/I0stnWhPw/S8Af7AmHGRjR0v5Xe 54hfP6a8G09tAT6nxMO3SC40mkw1ltNWm8lqWKRzR3w+kPz9QJuSF1DLxj3uKYkw KOw/51ylYEqCvP8pVxbFWyEpBFJd3DTVorS88vv19J6qavNK8wDKOmltUAwtGmsg PWVnlVl54/z9V7BA3tnc+V8bhVCPKTaafjLVBSwO05J5ftPAMuLEVudH8vWzBaM9 /pksTUlhz9oY/mY= -----END CERTIFICATE----- subject=CN = e-tan.jp issuer=C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5200 bytes and written 445 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: EF5991BC801D0504BA187A177DFF98FCFFA59D00AEA1036731866926A8DEF8AA Session-ID-ctx: Master-Key: 73C73FADFD64CE69EEB9153FF49BD633B878BBB52341079669F6C91107006686ACFB42E6972880702C2CFFB79D398F40 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 3b cc 19 9d c4 b1 b2 3f-b4 94 2f 68 76 53 f3 3e ;......?../hvS.> 0010 - 36 c1 10 37 42 61 a3 7b-b2 61 81 aa d9 60 5f 14 6..7Ba.{.a...`_. 0020 - 96 e7 50 d1 60 b1 8f 3a-94 46 c1 10 1c cb 2e e4 ..P.`..:.F...... 0030 - cf 8e e8 c6 77 0b ba 96-2a 5d c9 db 0e 64 a9 56 ....w...*]...d.V 0040 - e2 35 bb 25 3f 6f 86 f9-6f 41 8a 43 10 2b 74 6e .5.%?o..oA.C.+tn 0050 - 8d 06 28 b0 9d 02 d4 a0-8e 08 50 19 03 f0 1d 45 ..(.......P....E 0060 - d6 fb 1d 72 f7 da 4c dd-42 de 2b e9 6c d1 d3 0d ...r..L.B.+.l... 0070 - 9e 74 b5 55 44 67 2d 79-32 d0 54 8d 96 f7 e1 5f .t.UDg-y2.T...._ 0080 - 8a 4f 56 ab 19 26 3e 7a-68 b8 de da 5a 35 b8 af .OV..&>zh...Z5.. 0090 - 28 32 e4 cd 5a c6 75 69-d8 eb f9 b8 47 36 76 84 (2..Z.ui....G6v. 00a0 - 54 da 21 1d 0f 17 33 ad-55 85 30 be 91 6c 21 06 T.!...3.U.0..l!. 00b0 - 81 2e ab 9e c8 54 ba cf-fc 80 b4 9a d3 e5 0d 16 .....T.......... Start Time: 1752375921 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
e-tan.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.