Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://gizin.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=gizin.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=gizin.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=gizin.co.jp
And you can
check your domain name
.
#
Certificate of
gizin.co.jp
{ "serial": "30E4F2FC60CC04DD0E7A8D13288431D7", "OCSP_serial": "30E4F2FC60CC04DD0E7A8D13288431D7", "OCSP_cert_status": "good", "OCSP_this_update": "May 9 05:40:51 2025 GMT", "OCSP_next_update": "May 13 05:40:51 2025 GMT", "domainName": "gizin.co.jp", "port": 443, "subjectAltName": "DNS:gizin.co.jp, DNS:www.gizin.co.jp", "is_valid": true, "CA": "Japan Registry Services Co., Ltd.", "updated_at": "2025/02/21 10:07:22", "expires_at": "2026/02/28 23:59:59", "today": "2025/05/09 16:06:03", "UTC": { "updated_at": "2025-02-21T01:07:22Z", "expires_at": "2026-02-28T14:59:59Z", "today": "2025-05-09T07:06:03Z" }, "remaining_days": 295 }
#
OCSP response of
gizin.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 908A64DD6CE7352BE63621A812C0447BF9DAFFB8 Produced At: May 9 06:53:09 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 1DB449849554FCAAF967B74DC546361AF782AF8F Issuer Key Hash: 7C24CE0DA4382DC7B3635EA7787A8D1D4C2EC715 Serial Number: 30E4F2FC60CC04DD0E7A8D13288431D7 Cert Status: good This Update: May 9 05:40:51 2025 GMT Next Update: May 13 05:40:51 2025 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 36:cc:0d:ef:d3:ce:c8:c5:8a:7f:2b:8b:f9:59:8f:90:92:73: b3:4a:15:35:7b:78:de:58:9e:1c:2a:e7:49:7b:6b:71:cc:87: 5e:2a:02:0d:6e:d5:da:1f:de:ae:f0:ce:4b:b2:55:20:a8:24: 62:11:f0:72:65:30:80:5d:53:1e:ca:68:70:e0:cf:c7:fb:dc: c3:ac:59:f9:5f:7c:1f:f5:ab:4d:f8:cf:05:c4:4e:41:1f:03: f0:e0:6b:49:2c:3b:80:81:88:63:67:86:32:ee:02:da:01:52: 98:62:82:d1:5f:5c:7e:2d:78:72:d5:bf:1f:08:cf:6f:1e:0e: 35:1b:72:46:b8:da:25:f4:7d:d0:8a:7b:e2:65:d1:00:af:39: 11:aa:54:22:4f:25:07:e5:04:4d:f7:a2:17:0d:20:6f:f3:72: df:de:e4:ac:b8:48:5e:29:9a:ed:44:92:a1:cc:d8:2c:b2:c9: ab:06:fc:60:95:8d:92:af:7c:bc:b2:cc:10:61:b3:e7:a9:a9: 1a:48:2d:33:ff:07:fb:b3:8d:71:e2:b6:17:eb:d0:9a:0c:9b: ec:b1:50:e8:a6:52:24:89:95:af:18:aa:5e:8c:74:b0:73:f7: 7f:df:0f:dd:0c:e8:b6:c5:bc:2d:48:05:2d:bd:27:f0:98:56: a8:ff:ed:1a Certificate: Data: Version: 3 (0x2) Serial Number: 28:e9:0c:c1:d4:49:b3:40:29:1b:bf:ec:69:70:39:9b Signature Algorithm: sha256WithRSAEncryption Issuer: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 Validity Not Before: Mar 21 05:17:11 2025 GMT Not After : Jul 23 05:17:11 2025 GMT Subject: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 OCSP Responder Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a6:0f:00:a1:d4:3e:71:b4:83:33:8b:bf:e5:df: 58:77:54:17:53:eb:b9:79:6c:de:7e:31:55:f0:53: 42:b2:bb:81:0a:6b:a6:b9:bf:6b:6b:7d:6e:c0:0f: 97:bf:31:e3:53:9e:44:ed:83:3d:d3:b8:4d:41:f7: b3:86:93:51:a9:fe:1c:7f:28:0b:c5:59:26:52:4b: 7f:52:a3:cd:e6:c6:53:f2:53:a7:b4:5b:bb:af:62: 18:31:26:ae:2a:12:2e:4b:6b:e2:ca:6f:dc:fc:58: 56:6a:3d:5b:dd:5e:e7:09:76:56:f2:ff:88:c9:8c: db:97:65:ec:8d:a1:e5:9f:f5:93:2d:6b:48:49:e0: fd:06:b9:68:d7:5e:38:c8:7a:96:82:e7:11:cc:ed: ca:53:b2:6d:dd:16:93:56:87:e0:bd:be:12:d7:5a: c8:d9:99:47:f5:de:51:7b:1a:a3:39:10:9c:7b:82: 1a:8d:ec:38:22:0a:c1:a2:03:f6:7a:06:f7:b8:6e: 21:53:ee:7b:71:12:3c:ec:55:47:e9:91:0e:13:26: 28:00:72:cb:8e:24:da:6b:d1:4d:09:21:f2:0c:4b: 1f:ce:d7:f2:93:d1:78:7e:82:ad:a3:22:cc:53:3d: 99:ed:99:d0:00:2e:7c:8a:f1:79:26:e9:49:b0:cd: 4b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7C:24:CE:0D:A4:38:2D:C7:B3:63:5E:A7:78:7A:8D:1D:4C:2E:C7:15 OCSP No Check: X509v3 Extended Key Usage: OCSP Signing X509v3 Subject Key Identifier: 90:8A:64:DD:6C:E7:35:2B:E6:36:21:A8:12:C0:44:7B:F9:DA:FF:B8 X509v3 Key Usage: critical Digital Signature Signature Algorithm: sha256WithRSAEncryption Signature Value: 07:9f:64:91:1f:fc:55:29:c0:52:d2:68:a8:10:12:fc:c7:42: 13:67:aa:05:aa:27:95:40:87:31:2d:66:a1:82:af:aa:7b:e0: e0:b1:e7:2d:6e:e3:6e:be:0d:1d:25:3f:52:cf:88:14:19:d8: b6:45:28:f4:68:46:3e:8a:08:92:5d:de:93:bb:bf:af:d5:97: 78:f9:6d:d0:20:52:2a:1d:e1:32:d6:c9:58:be:e5:ab:a1:20: fc:07:02:00:33:e7:0c:96:29:5c:78:54:21:13:df:4e:b5:3f: 30:74:d5:cd:fd:4e:df:02:3c:40:b1:dc:14:0c:2d:4c:b5:02: 06:48:fd:5c:a2:75:e7:7c:ec:98:a1:3f:80:e1:29:7c:3d:b1: 18:4a:f3:a8:2f:0b:a6:f1:13:d2:bb:cd:9c:ac:cc:0d:29:c3: 8b:1b:87:10:2b:cc:7f:aa:b1:a1:f1:24:ec:f5:72:d2:e5:97: aa:95:a6:c9:46:68:7f:1f:86:42:b5:ad:de:17:de:0d:24:e4: 33:3b:e3:fe:a1:c9:f4:64:fc:a5:9e:82:d3:f4:96:c2:59:c7: d7:14:d7:39:6a:5f:94:09:04:1b:4d:7f:f9:a5:0b:22:f9:da: 55:d9:b5:20:e8:53:55:4b:88:66:e5:ac:31:17:18:a0:dd:eb: 64:d3:11:b7 -----BEGIN CERTIFICATE----- MIID4zCCAsugAwIBAgIQKOkMwdRJs0ApG7/saXA5mzANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDMyMTA1MTcxMVoXDTI1MDcyMzA1MTcxMVoweDELMAkG A1UEBhMCSlAxKjAoBgNVBAoTIUphcGFuIFJlZ2lzdHJ5IFNlcnZpY2VzIENvLiwg THRkLjE9MDsGA1UEAxM0SlBSUyBEb21haW4gVmFsaWRhdGlvbiBBdXRob3JpdHkg LSBHNCBPQ1NQIFJlc3BvbmRlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYPAKHUPnG0gzOLv+XfWHdUF1PruXls3n4xVfBTQrK7gQprprm/a2t9bsAP l78x41OeRO2DPdO4TUH3s4aTUan+HH8oC8VZJlJLf1KjzebGU/JTp7Rbu69iGDEm rioSLktr4spv3PxYVmo9W91e5wl2VvL/iMmM25dl7I2h5Z/1ky1rSEng/Qa5aNde OMh6loLnEcztylOybd0Wk1aH4L2+EtdayNmZR/XeUXsaozkQnHuCGo3sOCIKwaID 9noG97huIVPue3ESPOxVR+mRDhMmKAByy44k2mvRTQkh8gxLH87X8pPReH6CraMi zFM9me2Z0AAufIrxeSbpSbDNS2cCAwEAAaN4MHYwHwYDVR0jBBgwFoAUfCTODaQ4 LcezY16neHqNHUwuxxUwDwYJKwYBBQUHMAEFBAIFADATBgNVHSUEDDAKBggrBgEF BQcDCTAdBgNVHQ4EFgQUkIpk3WznNSvmNiGoEsBEe/na/7gwDgYDVR0PAQH/BAQD AgeAMA0GCSqGSIb3DQEBCwUAA4IBAQAHn2SRH/xVKcBS0mioEBL8x0ITZ6oFqieV QIcxLWahgq+qe+DgsectbuNuvg0dJT9Sz4gUGdi2RSj0aEY+igiSXd6Tu7+v1Zd4 +W3QIFIqHeEy1slYvuWroSD8BwIAM+cMlilceFQhE99OtT8wdNXN/U7fAjxAsdwU DC1MtQIGSP1conXnfOyYoT+A4Sl8PbEYSvOoLwum8RPSu82crMwNKcOLG4cQK8x/ qrGh8STs9XLS5ZeqlabJRmh/H4ZCta3eF94NJOQzO+P+ocn0ZPylnoLT9JbCWcfX FNc5al+UCQQbTX/5pQsi+dpV2bUg6FNVS4hm5awxFxig3etk0xG3 -----END CERTIFICATE----- ====================================== --- Certificate chain 0 s:CN = gizin.co.jp i:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Feb 21 01:07:22 2025 GMT; NotAfter: Feb 28 14:59:59 2026 GMT 1 s:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 i:C = JP, O = "SECOM Trust Systems CO.,LTD.", OU = Security Communication RootCA2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 22 10:40:53 2020 GMT; NotAfter: May 29 05:00:39 2029 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIG0jCCBbqgAwIBAgIQMOTy/GDMBN0Oeo0TKIQx1zANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDIyMTAxMDcyMloXDTI2MDIyODE0NTk1OVowFjEUMBIG A1UEAxMLZ2l6aW4uY28uanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDukwaVrRNOgEuHGPJuDQ58eO72bbcdzSSgNk0XKNWlKoErRH9WcN2C4SzVR820 RpClNN7kwVDT2Vvr90iVTj8pWf6hGV2xQtyaB0qSENiFn0kaXYFGfNywEmGee4sL 1qaxwKn/SRM2HK5hWpyif03Vmt4gfXJIa8a0JGWQBS7BVqPHf50msc5Aa0Xj6GYr xlBCWFAPizdnl0+das3j+7oJkHRY1/TPLwSPf/QxE5Le/FCXa+Ntx/zCmFqf1MIm PiXqEE+2gU7Sv64mTv3eYVf//fXdJX2KYdRQU7G247udt9BibVeznYx/YxPvCg5b QdlCUrKuRhel6CVO13p8jHolAgMBAAGjggPHMIIDwzAfBgNVHSMEGDAWgBR8JM4N pDgtx7NjXqd4eo0dTC7HFTCBkAYIKwYBBQUHAQEEgYMwgYAwTwYIKwYBBQUHMAKG Q2h0dHA6Ly9yZXBvLnB1YmNlcnQuanBycy5qcC9zcHBjYS9qcHJzL2R2Y2FfZzQv SlBSU19EVkNBX0c0X0RFUi5jZXIwLQYIKwYBBQUHMAGGIWh0dHA6Ly9kdi5nNC5v Y3NwLnB1YmNlcnQuanBycy5qcDAnBgNVHREEIDAeggtnaXppbi5jby5qcIIPd3d3 LmdpemluLmNvLmpwMFkGA1UdIARSMFAwRAYLKwYBBAGDpEMBAQQwNTAzBggrBgEF BQcCARYnaHR0cDovL2pwcnMuanAvcHViY2VydC9pbmZvL3JlcG9zaXRvcnkvMAgG BmeBDAECATATBgNVHSUEDDAKBggrBgEFBQcDATBLBgNVHR8ERDBCMECgPqA8hjpo dHRwOi8vcmVwby5wdWJjZXJ0LmpwcnMuanAvc3BwY2EvanBycy9kdmNhX2c0L2Z1 bGxjcmwuY3JsMB0GA1UdDgQWBBTPyIYSyrboxphLNtOWBnAxjhw1gzAOBgNVHQ8B Af8EBAMCBaAwggH2BgorBgEEAdZ5AgQCBIIB5gSCAeIB4AB2AA5XlLzzrqk+Mxss mQez95Dfm8I9cTIl3SGpJaxhxU4hAAABlSYUp5AAAAQDAEcwRQIhAIkoKGvfqSO0 7+Owr6tvLYav3Ngds0Wpc8m1/MmFqqffAiAbCSxvEdnKbmXfx5ZrZ6/XA/2491tf gfj5bOV+S74OtwB1AJaXZL9VWJet90OHaDcIQnfp8DrV9qTzNm5GpD8PyqnGAAAB lSYUrg4AAAQDAEYwRAIgUXvHe05kaZnOAp15v21X5n+Z0ZJ8PhSailzZsYw32UQC IFDAuoobrMm6u62AxQBj3iMlaPy3jmElD5x1NTiNSVTCAHYAZBHEbKQS7KeJHKIC LgC8q08oB9QeNSer6v7VA8l9zfAAAAGVJhSx0AAABAMARzBFAiBuDrqYCg8vNH4Z n9PmhOJvm+qbGsYNYYluPw/DVkWy2QIhANiHP0ZUdnnlz6175rBJ7c+/ADlc/1p0 3xy+gojmOm7SAHcAyzj3FYl8hKFEX1vB3fvJbvKaWc1HCmkFhbDLFMMUWOcAAAGV JhSzwQAABAMASDBGAiEA2yVgn5rpN+KdchHviOUPTHK7VyZ46opSTavuzHKfmM4C IQCw7NYbtawxxm6lQY1GwVYBNQP2gVnCGBLscoGWPjTTvzANBgkqhkiG9w0BAQsF AAOCAQEAWWCW9GAQfrWJdabdBJFnOQC2Xc1k0JImpSr+OMRE7g2A25wu2kO4xCAT rtEiEPCC22G8p1VWLDUM2PyxioLDsp8Kk+QB2qrEMUY8uTtxXpDT1aMKTmOZMxOz qISe1vrdlhbRr4wvb08/nTOOfy9EuHoldPWXUIszpxNZJTp12n4Qj/VlEnn8sk3k pNx4dpzaGfWnHulW/wPeprcVOXx3t6Eh0agnQV8pjxkKVImXQJ0duudPLVWbPEF8 AhBFQ/f8II+PUlIfw1rCuM1zcHZ/3MhOzrW9pN0tsNxamypG3f4OsZah0IErF3hP CrNay8pr+Fov6DA5uxV2ycvVvW0FSw== -----END CERTIFICATE----- subject=CN = gizin.co.jp issuer=C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, secp521r1, 521 bits --- SSL handshake has read 5279 bytes and written 516 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: CDEAF1BACF7DC180C6E511456EB36795B8EB98EDA62EB0F3F38AD938D2435C2B Session-ID-ctx: Master-Key: C6FE5EB41837E650D54B6AA227B94B0051ABB850CE584688BC61253E9DAC8403047D3134E51092A23200C6072CE8A47E PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 2f 85 14 3e a4 71 0d 78-37 1b 8d 04 85 5d c6 b7 /..>.q.x7....].. 0010 - 2b f5 e4 91 2c 6a fd b3-8a c6 8d 24 35 67 65 d1 +...,j.....$5ge. 0020 - e0 ea ea 9c 5b e7 df 6a-93 6c 5d 34 ba b9 9c dc ....[..j.l]4.... 0030 - 8e 01 88 f9 35 88 2c ca-a6 e0 95 fc e3 0c 64 33 ....5.,.......d3 0040 - 9a 99 16 c9 59 ae 73 d6-8b c1 b0 84 dc b9 b5 b8 ....Y.s......... 0050 - e1 7c 60 bd 5b 89 5f 21-f3 85 8f fe 65 fb 7e 9a .|`.[._!....e.~. 0060 - c0 be 11 b6 4b ac a7 5f-8c 4a d9 42 d7 f9 e5 dc ....K.._.J.B.... 0070 - f2 61 05 1b 3c a0 34 ee-4d d4 90 1e 48 b7 af cd .a..<.4.M...H... 0080 - 19 5e ad d2 f0 f7 90 83-b3 c7 0a be 9d aa 38 bf .^............8. 0090 - 5b 37 f8 cd bb 87 b7 44-3f 0c 17 5f 73 a0 f4 cf [7.....D?.._s... 00a0 - 4c 7e ff 2d c8 94 38 5e-39 a4 2d 0a 72 03 c0 be L~.-..8^9.-.r... 00b0 - 96 49 7e 2e b0 b6 9a 2a-58 1c d7 f1 54 c4 87 35 .I~....*X...T..5 Start Time: 1746774363 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
gizin.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.