Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://hcdr.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=hcdr.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=hcdr.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=hcdr.jp
And you can
check your domain name
.
#
Certificate of
hcdr.jp
{ "serial": "72882B3806C5DB3D13674C5FA05C0DA7", "OCSP_serial": "72882B3806C5DB3D13674C5FA05C0DA7", "OCSP_cert_status": "good", "OCSP_this_update": "Jul 9 02:06:05 2025 GMT", "OCSP_next_update": "Jul 16 01:06:04 2025 GMT", "domainName": "hcdr.jp", "port": 443, "subjectAltName": "DNS:hcdr.jp, DNS:*.hcdr.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/06/29 07:32:58", "expires_at": "2025/09/27 08:30:27", "today": "2025/07/13 11:31:28", "UTC": { "updated_at": "2025-06-28T22:32:58Z", "expires_at": "2025-09-26T23:30:27Z", "today": "2025-07-13T02:31:28Z" }, "remaining_days": 75 }
#
OCSP response of
hcdr.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: Jul 9 02:06:05 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 72882B3806C5DB3D13674C5FA05C0DA7 Cert Status: good This Update: Jul 9 02:06:05 2025 GMT Next Update: Jul 16 01:06:04 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:20:04:c4:4e:d1:c2:7d:e1:a5:50:a5:f2:61:00:2f: 71:a5:23:06:57:bf:45:8e:a9:ac:21:74:d7:41:63:b7:23:3a: 02:21:00:af:ee:73:04:c4:a3:e7:79:2e:a7:78:45:f3:0d:0a: d2:e1:12:ed:94:61:93:5d:01:48:aa:f6:db:e0:40:81:65 ====================================== --- Certificate chain 0 s:CN = hcdr.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Jun 28 22:32:58 2025 GMT; NotAfter: Sep 26 23:30:27 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDljCCAz2gAwIBAgIQcogrOAbF2z0TZ0xfoFwNpzAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjUwNjI4MjIzMjU4WhcNMjUwOTI2MjMzMDI3WjASMRAwDgYD VQQDEwdoY2RyLmpwMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEoIcDDsPpwsnV dkp2NuqQVz+jJK299ZuUEaWlymNGi9UoN8HGBi2YmUAjrWa4FNytG3dSqUfWi30M 18ngfFWdxKOCAkowggJGMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAKBggrBgEF BQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRYSa9FeXwcKrzELGCpoN90fIZl ZjAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEFBQcBAQRS MFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL2NvZzAlBggr BgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAdBgNVHREEFjAUggdo Y2RyLmpwggkqLmhjZHIuanAwEwYDVR0gBAwwCjAIBgZngQwBAgEwNgYDVR0fBC8w LTAroCmgJ4YlaHR0cDovL2MucGtpLmdvb2cvd2UxL2toRTR6X2c3TEc4LmNybDCC AQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AN3cyjSV1+EWBeeVMvrHn/g9HFDf2wA6 FBJ2Ciysu8gqAAABl7jjE94AAAQDAEYwRAIgYnySRYkRTe6RGGgpmu2CMTSCDLjl 1WaQNfUyYv5TKacCIF5m+WGs1rKIL/PhbLyw5RpMV7iS9uu4fSiGgOWEs65vAHYA zPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAAAAGXuOMT5QAABAMARzBF AiEAhgip6ptvpAZCLv2hLHRD/1J6RGhyqakIa0ep/4tkV+YCIDnVS74bpTltPbEa 0MuBNOR77BllJDvJQDMisOYus3cgMAoGCCqGSM49BAMCA0cAMEQCIAaGudyGug/7 5d0CyfHALar0q2R7Sf/dc7MCGqAU0cX9AiAlJlBS85ryKhL6SZNUUVZTdsgub7c3 JKG1p8GKVmO+GA== -----END CERTIFICATE----- subject=CN = hcdr.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3098 bytes and written 398 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
hcdr.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.