Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://gizin.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=gizin.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=gizin.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=gizin.co.jp
And you can
check your domain name
.
#
Certificate of
gizin.co.jp
{ "serial": "7025A32FE4372644725A0562045E3B1B", "OCSP_serial": "7025A32FE4372644725A0562045E3B1B", "OCSP_cert_status": "good", "OCSP_this_update": "Nov 20 13:35:24 2024 GMT", "OCSP_next_update": "Nov 24 13:35:24 2024 GMT", "domainName": "gizin.co.jp", "port": 443, "subjectAltName": "DNS:gizin.co.jp, DNS:www.gizin.co.jp", "is_valid": true, "CA": "Japan Registry Services Co., Ltd.", "updated_at": "2024/02/28 14:31:40", "expires_at": "2025/02/28 23:59:59", "today": "2024/11/21 15:30:04", "UTC": { "updated_at": "2024-02-28T05:31:40Z", "expires_at": "2025-02-28T14:59:59Z", "today": "2024-11-21T06:30:04Z" }, "remaining_days": 99 }
#
OCSP response of
gizin.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 279645D5B712827E7510655FAC82960C10539906 Produced At: Nov 21 06:11:36 2024 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 1DB449849554FCAAF967B74DC546361AF782AF8F Issuer Key Hash: 7C24CE0DA4382DC7B3635EA7787A8D1D4C2EC715 Serial Number: 7025A32FE4372644725A0562045E3B1B Cert Status: good This Update: Nov 20 13:35:24 2024 GMT Next Update: Nov 24 13:35:24 2024 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 02:b0:68:6a:0e:bc:72:36:c8:83:c8:79:b7:e2:cc:47:3f:73: a5:63:0d:c3:07:54:8b:70:fd:f4:19:bb:26:f9:29:14:3e:32: 88:8b:6e:07:37:8b:1d:cf:04:c7:2e:ae:af:91:c5:ea:85:9d: 06:37:32:e0:9e:f0:27:30:56:d7:e8:d8:eb:84:ec:0b:d3:ad: 67:f8:16:4c:0b:6e:92:3c:dc:87:3f:fa:33:d0:a3:f1:90:a0: 18:c8:4d:ba:75:63:1b:1d:bc:85:82:98:c5:3a:80:20:d6:ad: 5b:16:55:6d:4d:0f:66:a2:f4:4b:0e:53:40:ce:e3:1d:a7:2f: 9c:1d:92:e1:ed:bb:4b:72:18:21:ab:c6:5d:bb:3d:9e:45:aa: 3e:65:0c:f6:81:bc:7f:f9:11:d9:19:cf:c2:f0:2d:44:22:54: 37:2f:90:77:16:79:fa:1f:4e:a1:23:8e:52:83:96:a0:7f:a5: 7c:e9:9f:43:c5:aa:b1:1f:53:0c:65:e2:73:b7:e7:54:32:a2: f7:26:61:f0:81:41:88:9b:8b:d2:35:65:4b:75:a3:ea:10:23: 47:c8:5f:90:5f:7a:b4:09:6e:b5:f5:1b:a1:f2:92:20:f0:16: 8c:ef:6b:cd:72:5a:1a:76:f8:98:29:f5:0d:0e:05:25:48:62: 0d:a7:2a:3f Certificate: Data: Version: 3 (0x2) Serial Number: 55:68:8e:bd:e4:06:3e:ea:30:4b:55:2d:c7:8b:9d:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 Validity Not Before: Sep 20 05:22:48 2024 GMT Not After : Jan 22 05:22:48 2025 GMT Subject: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 OCSP Responder Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ea:c2:bd:1f:c1:0a:95:05:a2:57:8d:44:ee:70: 0f:df:40:3e:f0:cc:5c:50:ec:40:20:c0:f3:36:ef: 16:39:3f:6b:16:10:08:31:da:19:b0:5d:c5:25:26: c0:40:47:e2:e6:5a:b1:64:45:e7:c9:7d:40:af:5f: b0:6e:db:ea:7c:bd:12:09:88:15:c8:ab:5e:af:2e: c5:c7:57:b3:bb:9e:83:28:12:77:40:73:1e:04:b4: 6d:f4:6e:6d:a1:73:7a:4a:ba:ac:0e:0a:5c:c5:2e: 9c:1b:a3:9a:72:07:5b:4d:44:c1:aa:95:b6:6f:44: 14:64:df:d2:6a:73:d4:67:6c:0a:56:37:7d:03:d5: 6e:7b:20:ca:cf:4a:f0:74:f1:c0:07:ee:b1:f8:ef: 9b:c6:cb:47:b5:35:84:fd:55:0a:02:59:f4:b5:76: 91:d5:df:2d:a4:9b:57:c7:03:16:09:0a:94:c9:04: b6:a2:40:77:9a:02:4b:be:3d:9e:5d:bc:2c:36:71: f2:d3:43:f5:eb:36:58:2a:cb:80:2b:ff:bf:27:4b: a9:8b:af:06:67:7f:29:ad:ac:b4:78:6c:13:e5:1c: 56:b7:56:64:94:2b:5e:fa:67:28:50:f2:16:81:95: 6f:13:5d:0c:2a:a5:d9:57:2f:de:71:8e:2f:00:ea: b9:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7C:24:CE:0D:A4:38:2D:C7:B3:63:5E:A7:78:7A:8D:1D:4C:2E:C7:15 OCSP No Check: X509v3 Extended Key Usage: OCSP Signing X509v3 Subject Key Identifier: 27:96:45:D5:B7:12:82:7E:75:10:65:5F:AC:82:96:0C:10:53:99:06 X509v3 Key Usage: critical Digital Signature Signature Algorithm: sha256WithRSAEncryption Signature Value: 81:66:58:d9:76:dd:ea:b9:b6:b3:a9:bf:ed:3b:bb:88:52:a8: ca:aa:65:15:f1:c8:c6:9d:47:86:9b:7b:71:71:55:92:68:ee: 79:9d:2c:8e:f8:ce:77:86:d5:ae:29:3c:77:2b:26:ec:3c:11: b8:5d:d6:b7:55:8b:82:0a:5d:5b:22:ac:06:f1:00:7a:82:47: 6a:b1:cc:93:1d:f1:c0:6f:e3:fb:20:cb:59:f1:50:82:3b:86: f6:09:6e:fc:bb:0f:ec:f2:d2:b6:5c:62:95:f0:3d:e2:98:5a: f2:43:3d:76:1d:a9:f1:c9:b4:bb:19:91:01:30:f5:43:5f:61: ab:e4:14:ec:bf:f0:69:5e:a5:cb:02:09:4f:96:3f:4d:42:63: 5e:65:47:96:05:48:eb:7f:3d:ef:28:34:4e:bc:66:81:5f:eb: 27:73:28:a0:7f:46:df:6f:af:8d:5d:65:eb:9a:84:77:4e:e3: 84:12:c3:da:69:66:7a:94:d2:8d:3c:90:97:24:be:1c:9c:f5: 2c:33:77:c6:ae:68:73:cd:f6:dd:41:b9:75:80:5e:42:fb:d5: 19:57:48:2f:31:e9:76:08:f1:a6:3c:4e:0d:4a:e2:b9:a1:4f: 63:67:70:aa:c1:00:8f:b1:f5:68:16:be:6d:87:a4:34:39:18: 43:c6:7e:5f -----BEGIN CERTIFICATE----- MIID4zCCAsugAwIBAgIQVWiOveQGPuowS1Utx4udwTANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI0MDkyMDA1MjI0OFoXDTI1MDEyMjA1MjI0OFoweDELMAkG A1UEBhMCSlAxKjAoBgNVBAoTIUphcGFuIFJlZ2lzdHJ5IFNlcnZpY2VzIENvLiwg THRkLjE9MDsGA1UEAxM0SlBSUyBEb21haW4gVmFsaWRhdGlvbiBBdXRob3JpdHkg LSBHNCBPQ1NQIFJlc3BvbmRlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOrCvR/BCpUFoleNRO5wD99APvDMXFDsQCDA8zbvFjk/axYQCDHaGbBdxSUm wEBH4uZasWRF58l9QK9fsG7b6ny9EgmIFcirXq8uxcdXs7uegygSd0BzHgS0bfRu baFzekq6rA4KXMUunBujmnIHW01EwaqVtm9EFGTf0mpz1GdsClY3fQPVbnsgys9K 8HTxwAfusfjvm8bLR7U1hP1VCgJZ9LV2kdXfLaSbV8cDFgkKlMkEtqJAd5oCS749 nl28LDZx8tND9es2WCrLgCv/vydLqYuvBmd/Ka2stHhsE+UcVrdWZJQrXvpnKFDy FoGVbxNdDCql2Vcv3nGOLwDqueECAwEAAaN4MHYwHwYDVR0jBBgwFoAUfCTODaQ4 LcezY16neHqNHUwuxxUwDwYJKwYBBQUHMAEFBAIFADATBgNVHSUEDDAKBggrBgEF BQcDCTAdBgNVHQ4EFgQUJ5ZF1bcSgn51EGVfrIKWDBBTmQYwDgYDVR0PAQH/BAQD AgeAMA0GCSqGSIb3DQEBCwUAA4IBAQCBZljZdt3qubazqb/tO7uIUqjKqmUV8cjG nUeGm3txcVWSaO55nSyO+M53htWuKTx3KybsPBG4Xda3VYuCCl1bIqwG8QB6gkdq scyTHfHAb+P7IMtZ8VCCO4b2CW78uw/s8tK2XGKV8D3imFryQz12HanxybS7GZEB MPVDX2Gr5BTsv/BpXqXLAglPlj9NQmNeZUeWBUjrfz3vKDROvGaBX+sncyigf0bf b6+NXWXrmoR3TuOEEsPaaWZ6lNKNPJCXJL4cnPUsM3fGrmhzzfbdQbl1gF5C+9UZ V0gvMel2CPGmPE4NSuK5oU9jZ3CqwQCPsfVoFr5th6Q0ORhDxn5f -----END CERTIFICATE----- ====================================== --- Certificate chain 0 s:CN = gizin.co.jp i:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Feb 28 05:31:40 2024 GMT; NotAfter: Feb 28 14:59:59 2025 GMT 1 s:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 i:C = JP, O = "SECOM Trust Systems CO.,LTD.", OU = Security Communication RootCA2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 22 10:40:53 2020 GMT; NotAfter: May 29 05:00:39 2029 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIG0jCCBbqgAwIBAgIQcCWjL+Q3JkRyWgViBF47GzANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI0MDIyODA1MzE0MFoXDTI1MDIyODE0NTk1OVowFjEUMBIG A1UEAxMLZ2l6aW4uY28uanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR2wqp4Gok7seBvL0QrcxhnUcoUYHdqcAGEGi2W19uDvMMe94ZmRfED4kCTE+c hwc6baLuUjKDfckstC3Kd9y6i1mbgnoYcCvThrZjdSzEMcEfwTq56qD7slOX1C8P OKuFIbh85YBOBeeO2dVgu4wMhLZE7yKHASu1yOfQxzIcZ2614B+yItXsSspOzCxR 51w1Li9+mD4jYfuXQ8AF6sBGr4yItN4b0Z7QefZluo7FJ6qoaSSlyIGVHQLMuOgE KkfgqAY+IT2/NPaZHN/6oBK3MIsYXhxsd8B8TZBRtDwfu6e7BKMHZZageAUDjIs6 AksHRS11dUDC1A9oaXS1w+yzAgMBAAGjggPHMIIDwzAfBgNVHSMEGDAWgBR8JM4N pDgtx7NjXqd4eo0dTC7HFTCBkAYIKwYBBQUHAQEEgYMwgYAwTwYIKwYBBQUHMAKG Q2h0dHA6Ly9yZXBvLnB1YmNlcnQuanBycy5qcC9zcHBjYS9qcHJzL2R2Y2FfZzQv SlBSU19EVkNBX0c0X0RFUi5jZXIwLQYIKwYBBQUHMAGGIWh0dHA6Ly9kdi5nNC5v Y3NwLnB1YmNlcnQuanBycy5qcDAnBgNVHREEIDAeggtnaXppbi5jby5qcIIPd3d3 LmdpemluLmNvLmpwMFkGA1UdIARSMFAwRAYLKwYBBAGDpEMBAQQwNTAzBggrBgEF BQcCARYnaHR0cDovL2pwcnMuanAvcHViY2VydC9pbmZvL3JlcG9zaXRvcnkvMAgG BmeBDAECATATBgNVHSUEDDAKBggrBgEFBQcDATBLBgNVHR8ERDBCMECgPqA8hjpo dHRwOi8vcmVwby5wdWJjZXJ0LmpwcnMuanAvc3BwY2EvanBycy9kdmNhX2c0L2Z1 bGxjcmwuY3JsMB0GA1UdDgQWBBSivhdkaGzAK4M9Jht1RbNDtaiFNzAOBgNVHQ8B Af8EBAMCBaAwggH2BgorBgEEAdZ5AgQCBIIB5gSCAeIB4AB2AE51oydcmhDDOFts 1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABje47naEAAAQDAEcwRQIhAJ61dZ788yl0 llErAmA7OYuX5JChLU+5n6sV4r1tOmBXAiB8AsJt2v1me4aLIiHCe3riedfXhrEe AHM09FUpjg8NjwB3AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAAB je47pAAAAAQDAEgwRgIhAPYgxCMowXCyTjnv0TaqpsoC0JM9gMnfC2rydF7Wi4es AiEA59qAFx+vXsVVCRhb3K7n5jiEG6M+yrcNvx/dOUNx0qEAdgB9WR4S4Xgqexxh Z3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY3uO6bDAAAEAwBHMEUCIQDmznmUnEda C3ZuvRm16K7OL9qSWj6YRYqll7MM5DrDmQIgVESN9x8Q3RSECFYufCBJwYpkk6Qg Tpo1ACRa7PtZ2foAdQDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAA AY3uO6iUAAAEAwBGMEQCIE5Mticm/5/mkVJB6mIZGDJx3jkpN9DDYChQwoL3ZOf+ AiAaG6DIQqu5buBaLWewCs+FTHpjqXWM+XQJYusEsXMnwDANBgkqhkiG9w0BAQsF AAOCAQEAEGU98qt3JzZSR/pa+ENxbcZ1kZOHx8oBoQDjpu+oEQmrdxUVHTMgTuZG n+eUWddogF/yPLyHx6uxerruOCshhMmYkl8AXm3NqMt+TRDSlt/8x9Tc07eo2iVS +QMKmc0I0VKxeFZ9OxefeyTuRfrJ99ggeMmyiATdKi3vkZNkTi5Wr2+THamKVL2i xbuB5Ptf6XSx9Pnv4V5SJii6GHlQvCnQhd+seuJbHSbufnKxq3g6iDg1QAvGOMY/ x+sftnoj3/HGnx1P+wc1AVh8AXjhgKo41HK1+rV7Y5/AwOMnA0t3Tnb/7Uf0B9hl O5smKa44qOrekehF8rxIwh8zW5aOGA== -----END CERTIFICATE----- subject=CN = gizin.co.jp issuer=C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, secp521r1, 521 bits --- SSL handshake has read 5279 bytes and written 516 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: 0FDC053ECB3551044A56665774B3ED46BF0ECB91B98CCCECD1EBB1B1C808F624 Session-ID-ctx: Master-Key: 9B4906E2F71D37B18BDDFE02B2D8A9E5416EBDB108D00C8F02AE54CD5C20EA3597E1E3C265C338FB8EFAABC13557EBCB PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - ed a1 39 35 75 49 ea a9-73 1b 44 e4 45 62 4d 8b ..95uI..s.D.EbM. 0010 - 66 34 4d 97 3e 79 2c b6-c7 40 a7 92 42 e7 8e b9 f4M.>y,..@..B... 0020 - 43 4f 84 31 a7 30 0b 5a-9f 13 78 61 c6 00 67 fa CO.1.0.Z..xa..g. 0030 - 3e 17 b8 ba 3b 89 d6 c7-b0 45 0a d5 46 f3 76 03 >...;....E..F.v. 0040 - 93 1c a3 d5 82 71 16 bc-f5 ab ff c6 81 96 3d f8 .....q........=. 0050 - 6c 7f 48 39 fc 6c 6f 8b-2e de 8b 58 fa a6 8f 70 l.H9.lo....X...p 0060 - a9 64 27 76 78 ab 75 14-1f ac 31 0c 46 9a 9d fc .d'vx.u...1.F... 0070 - 93 0d 9d c0 54 43 13 27-f6 f9 83 c7 92 3b c7 1a ....TC.'.....;.. 0080 - 95 ba 59 99 da 4e fe b6-0e 86 35 d6 0e 4f 8d 57 ..Y..N....5..O.W 0090 - ab a5 20 e7 ed 1c a5 33-7d c7 42 17 e9 df 04 8e .. ....3}.B..... 00a0 - c1 41 28 fc 55 3a 82 37-fc f8 2f 8c f0 4d a7 58 .A(.U:.7../..M.X 00b0 - b0 df 65 4e 2a 4e 1c 22-c7 ce 30 49 f3 8b c3 3b ..eN*N."..0I...; Start Time: 1732170604 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
gizin.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.