Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://hatsukano.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=hatsukano.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=hatsukano.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=hatsukano.jp
And you can
check your domain name
.
#
Certificate of
hatsukano.jp
{ "serial": "8B31B9D39251706B0D99E9C0A705C220", "OCSP_serial": "8B31B9D39251706B0D99E9C0A705C220", "OCSP_cert_status": "good", "OCSP_this_update": "May 8 04:22:10 2025 GMT", "OCSP_next_update": "May 15 03:22:09 2025 GMT", "domainName": "hatsukano.jp", "port": 443, "subjectAltName": "DNS:hatsukano.jp, DNS:*.hatsukano.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/05/08 12:22:10", "expires_at": "2025/08/06 13:19:19", "today": "2025/05/09 16:16:07", "UTC": { "updated_at": "2025-05-08T03:22:10Z", "expires_at": "2025-08-06T04:19:19Z", "today": "2025-05-09T07:16:07Z" }, "remaining_days": 88 }
#
OCSP response of
hatsukano.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: May 8 04:22:10 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 8B31B9D39251706B0D99E9C0A705C220 Cert Status: good This Update: May 8 04:22:10 2025 GMT Next Update: May 15 03:22:09 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:20:08:fa:d7:98:77:2d:7f:73:3b:e6:bb:9f:35:5d: f9:3d:8c:e3:0f:3f:27:7d:6b:3d:5b:e2:7b:05:0a:ef:f5:82: 02:21:00:c8:c8:dd:f4:d8:23:fe:e6:86:d2:cf:3b:3d:ba:b8: 4c:2d:a6:4b:0a:b1:c5:69:8e:0f:93:d3:56:dd:69:b4:49 ====================================== --- Certificate chain 0 s:CN = hatsukano.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: May 8 03:22:10 2025 GMT; NotAfter: Aug 6 04:19:19 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDpzCCA06gAwIBAgIRAIsxudOSUXBrDZnpwKcFwiAwCgYIKoZIzj0EAwIwOzEL MAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoG A1UEAxMDV0UxMB4XDTI1MDUwODAzMjIxMFoXDTI1MDgwNjA0MTkxOVowFzEVMBMG A1UEAxMMaGF0c3VrYW5vLmpwMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEZuji YCRip/lGMMEGeGLdayhASNlrV1IM1vCHmjNV2+vlCApZ6sXChK8maT4uKhMPJ8Qw twJKv4DuJ3wBsjNpnqOCAlUwggJRMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAK BggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQLiRIjCH98uryH3h9p uzxlMMzacTAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEF BQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL2l6 RTAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAnBgNVHREE IDAeggxoYXRzdWthbm8uanCCDiouaGF0c3VrYW5vLmpwMBMGA1UdIAQMMAowCAYG Z4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dlMS9K VHdQZGNoX2VDOC5jcmwwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgAS8U40vVNy TIQGGcOPP3oT+Oe1YoeInG0wBYTr5YYmOgAAAZauISiPAAAEAwBHMEUCIEh97Tt5 mJvrW4Os1x32rTpFUWccXHZAkSkSPMCxsQ19AiEAhsszcbapr4qKjno9B5R8S0cA wiNfZJNZ0fYp1xy6ubkAdgDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwN sAAAAZauISjOAAAEAwBHMEUCIGDaM1kf6KVtR+LMR3wJ2v3w/G4zrUCruwQ2Nmd9 OwkdAiEAiYPyPShvfdvpg0MuqltrG1q7aZXu3V1A7hjTFD7GZSgwCgYIKoZIzj0E AwIDRwAwRAIgRO1XLWBdsFiYe5iqXyIdDkNiw00T+N1o4mLdC9Iu5RYCIGSVLKku iKp4bXO4w8uPXHYeVlzYLt3MFuaU4+p/s0nj -----END CERTIFICATE----- subject=CN = hatsukano.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3116 bytes and written 403 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
hatsukano.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.