Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://idea-spot.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=idea-spot.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=idea-spot.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=idea-spot.co.jp
And you can
check your domain name
.
#
Certificate of
idea-spot.co.jp
{ "serial": "A84626C5658DA4ED0D46C39FBB5D07F2", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "idea-spot.co.jp", "port": 443, "subjectAltName": "DNS:idea-spot.co.jp, DNS:www.idea-spot.co.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2026/01/30 06:08:57", "expires_at": "2026/04/30 06:08:56", "today": "2026/04/01 10:28:43", "UTC": { "updated_at": "2026-01-29T21:08:57Z", "expires_at": "2026-04-29T21:08:56Z", "today": "2026-04-01T01:28:43Z" }, "remaining_days": 28 }
#
OCSP response of
idea-spot.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = idea-spot.co.jp i:C = US, O = Google Trust Services, CN = WR1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jan 29 21:08:57 2026 GMT; NotAfter: Apr 29 21:08:56 2026 GMT 1 s:C = US, O = Google Trust Services, CN = WR1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R1 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Jun 19 00:00:42 2020 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgIRAKhGJsVljaTtDUbDn7tdB/IwDQYJKoZIhvcNAQELBQAw OzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEM MAoGA1UEAxMDV1IxMB4XDTI2MDEyOTIxMDg1N1oXDTI2MDQyOTIxMDg1NlowGjEY MBYGA1UEAxMPaWRlYS1zcG90LmNvLmpwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAvMxn9Pc51YwZ9J3UDTL9kkASEmA0EeOS7EhWreAuX7OVd1LSKlHU niCOUm8LQbSquTxdsBHz97LcjaOCkzzVzN1IHKUbfXE8gY1l24pArrEy3MH0+7jp 5xG1uUXMfKhYOs1ScXzXAvIktctJW3OWBHJKWBRSwQXzXGq45T8Lkd5TGKVzf9NL 0p0XNaHeQmv7QBibnMWhMK5GmlZLnd+i5OaD4z/RF7AioRZnnhiTJptRl8k0CPFZ 3PA155MtOl25i5sPgCMoh/zOMChVztDqEwCfk7t75JT5gr42XmtGx6cANjFVUYMx 0WRfnlUMowdNOHphEhRybrXOFDeg/l7JuQIDAQABo4ICXTCCAlkwDgYDVR0PAQH/ BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFPHiO7gfyVa0GntTScftpC6XIsOKMB8GA1UdIwQYMBaAFGZpSdTeKpyRA8+J DiS4DjADboguMF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28u cGtpLmdvb2cvcy93cjEvcUVZMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29v Zy93cjEuY3J0MC8GA1UdEQQoMCaCD2lkZWEtc3BvdC5jby5qcIITd3d3LmlkZWEt c3BvdC5jby5qcDATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAn hiVodHRwOi8vYy5wa2kuZ29vZy93cjEvSDJaNmtiZnFKM0UuY3JsMIIBBAYKKwYB BAHWeQIEAgSB9QSB8gDwAHcAlpdkv1VYl633Q4doNwhCd+nwOtX2pPM2bkakPw/K qcYAAAGcC81sTQAABAMASDBGAiEA4yyYxV0xTgdwzf7NmNmvzGgHglasU7oGRZiH 91Jr1bcCIQCWYfWFX0fxxHvbp7Ak3h9tRjPgJelBtivs96MwrqjbBwB1AMs49xWJ fIShRF9bwd37yW7ymlnNRwppBYWwyxTDFFjnAAABnAvNbF4AAAQDAEYwRAIgClbb Ncq3o44gCH09CNqY5RnJf4vN+oTMUyQBVRvYe0QCIA130XN95p546B2k+NMB1liv tnkFgIQPpMaJwBdWY5c9MA0GCSqGSIb3DQEBCwUAA4IBAQCAOPKJcc5H0Ih/KbHp bCJ2jeF/4Rb0wedwLnd2piKS4Ugr1Z/HD3XsVb+uNwtc8Psdy3xLeRl41dNLMR/M 0VOW/XjC02pyAZVZYU4QyXLQOME6Zeq50V/m8y9CgWW6kvN3EJcPeoZDC2ZCtDIF 6KL25pUWvYnOKMylEphwp8vjvX5+Y11W7uEteHhG/3xToZ4KtiHqNouaquGByWUp kx3eMeF0YtpAhzh7MINOjberRycOIr76ScIfFspUca6ZXpvdEJn1NTE2D8DBNVZQ jeCB+935juizrZwIy+VKO+ZWtu3osBqyeqcZvxiGRaR9+gw32YyyERBXeF9ZYYn9 dg4z -----END CERTIFICATE----- subject=CN = idea-spot.co.jp issuer=C = US, O = Google Trust Services, CN = WR1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4578 bytes and written 390 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- --- Post-Handshake New Session Ticket arrived: SSL-Session: Protocol : TLSv1.3 Cipher : TLS_AES_128_GCM_SHA256 Session-ID: E937675115E782E9835DCD77936E801375654715B4A194CAEBF345A17C2BAD50 Session-ID-ctx: Resumption PSK: 022B318687289BFA956C68CA8575C78ECA7636D87B6BF40FF87BCB42E6D72967 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 604800 (seconds) TLS session ticket: 0000 - 53 03 59 4b 0a 1f 79 18-ff d8 97 d2 8c 8b 40 62 S.YK..y.......@b 0010 - 2f f4 72 49 2d 1b 26 a9-e9 51 e3 49 69 dc 2e 08 /.rI-.&..Q.Ii... 0020 - bf 04 ee f5 c3 3f f6 d3-99 81 5e d6 d7 17 51 a8 .....?....^...Q. 0030 - e5 b2 c2 44 47 22 d0 0c-86 4a 41 3d bb 30 ec 12 ...DG"...JA=.0.. 0040 - 03 83 02 0b bd 7d 1f 69-33 9b af a8 b7 1a 7f b8 .....}.i3....... 0050 - 1f 64 65 9a 97 4d e0 a0-b1 c3 7b d7 a3 4c fe b0 .de..M....{..L.. 0060 - 7f af d2 5a b2 1f 50 0d-62 ...Z..P.b Start Time: 1775006924 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no Max Early Data: 0 --- read R BLOCK
#
OCSP response of
idea-spot.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.