Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://kepura.com
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=kepura.com
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=kepura.com
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=kepura.com
And you can
check your domain name
.
#
Certificate of
kepura.com
{ "serial": "0EB12C54D712CBEC72074934D8F8FAE1", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "kepura.com", "port": 443, "subjectAltName": "DNS:*.kepura.com, DNS:kepura.com", "is_valid": true, "CA": "Amazon", "updated_at": "2026/02/13 09:00:00", "expires_at": "2027/03/15 08:59:59", "today": "2026/04/01 10:28:45", "UTC": { "updated_at": "2026-02-13T00:00:00Z", "expires_at": "2027-03-14T23:59:59Z", "today": "2026-04-01T01:28:45Z" }, "remaining_days": 347 }
#
OCSP response of
kepura.com
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.kepura.com i:C = US, O = Amazon, CN = Amazon RSA 2048 M01 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Feb 13 00:00:00 2026 GMT; NotAfter: Mar 14 23:59:59 2027 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M01 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:21:28 2022 GMT; NotAfter: Aug 23 22:21:28 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIQDrEsVNcSy+xyB0k02Pj64TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAxMB4XDTI2MDIxMzAwMDAwMFoXDTI3MDMxNDIzNTk1OVowFzEV MBMGA1UEAwwMKi5rZXB1cmEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAwn2m+iye2KBS2BBtL1jE8N1iCA8Xwr3JxuHRF0izDUdqvhgo2NNyUZk8 4G50Oy7OqJzQ518iVkVGIKzUkUwsSFTZGoAbpg/ltyYPju4wyHRiixjnnZMEXjZk lowsqqPJYTUqNfKYL+28pC/67m11YQ5dAMyIIiBhQUrs+29tXSkUXCtJZWWKnZ+n PdEo6o7z6ryvQMCNTMN4mbY+r99FNMPbydGSceeTttG6V4sFozb3iGMkA9i7H/6a kz+vwegp+fmQ6j84okD9QXxhW5FUcU7BYK6cN7Kv/Kq9Kh7A/co53aIacBHsEvWo moBOxknZzsQz7eo62Syem9ncdN+YCwIDAQABo4IC7jCCAuowHwYDVR0jBBgwFoAU gbgOY4qJEhjl+js7UJWf5uWQE4UwHQYDVR0OBBYEFOOvh1K97RwRJQdlizWlnblt 7Wu6MCMGA1UdEQQcMBqCDCoua2VwdXJhLmNvbYIKa2VwdXJhLmNvbTATBgNVHSAE DDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUH AwEwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wMS5hbWF6b250cnVz dC5jb20vcjJtMDEuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcwAYYhaHR0 cDovL29jc3AucjJtMDEuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAChipodHRw Oi8vY3J0LnIybTAxLmFtYXpvbnRydXN0LmNvbS9yMm0wMS5jZXIwDAYDVR0TAQH/ BAIwADCCAYUGCisGAQQB1nkCBAIEggF1BIIBcQFvAHUATGPcmOWcHauI9h6KPd6u j6tEozd7X5uUw/uhnPzBviYAAAGcVGU4HAAABAMARjBEAiBUNk3fClSqWdxNhcsd +pqrJe4UqgnuAZ9yVGh85Fp21QIgEhTfX3ADmfgn8i9CpdjPK/FgTeAsRZoQTqn4 WpS7uiMAdgAcn2gs6frwRWlQ+BuWiofd2zIQ2EzmyLLjglJKxM9ZnwAAAZxUZTg6 AAAEAwBHMEUCIHWdb2gxS7PJmccU5/5Y4vQVraS6wQRi1ZCt4HcIJvT4AiEA/yDk N+s4gVAPntyb1Ztv5y/F8sab+Udy4Y+m9e4lfngAfgCOykcLrN5q86IGsKR6hLdG /h/Gv5U+JeabTuQCSPPG6AAAAZxUZTjNAAgAAAUAAqmTNwQDAEcwRQIgVBC1Ev4g MQUeDgxwkatSeuHpdziW/nJXdDxSHi4K6ZgCIQDA86gI1VHv2/YtU5tpGeoKjRmw xshmVxpa6cfDMDTj8zANBgkqhkiG9w0BAQsFAAOCAQEAov9pVc5EPlwYMcbAOZLj cCUyd0NHI8BtW42CLSbSqV+f60wYyynWJegqTnHyfW9dQGekh9KQNlILwl0uDYGC waJZQ4nOJl/4diLxkpsE2zFuaFTBrSIIrcW3sO2Nj/sz9hai40iaRRv4Ej4QkVtv FMKQjWQOtdl9wDWmZsfXNvLcYDUTyZfgd8Zit85IWuf55D5yc5FY/Z+X1VQSzoq5 vyd8SbphiErDHHoh1LrVRbIxfjsuEbs5Tc8rohjTK/64aNGbLHuQbWHZ4cW2WmvR MPjsXjkY/0GOna+79EP4nAmI6+qRCtuydc7W84wxJiKaZIKuaH/HFvEkli2BYETt +Q== -----END CERTIFICATE----- subject=CN = *.kepura.com issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M01 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4461 bytes and written 447 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 8AEA907CACAB27D762E70F63E0F1F04A86145EC68EB7A31E01C64A17E41C2A6C Session-ID-ctx: Master-Key: 1E3213C75D8F7A2BAD21B11F288C90673D0205AF9F30D1B79F55725B6C82A697B72A7B107DDA3C80256DBC18B32F560E PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 43531 (seconds) TLS session ticket: 0000 - 01 48 8c 65 f8 98 43 b3-4c 92 06 1d 28 53 67 72 .H.e..C.L...(Sgr 0010 - 66 e5 12 7f e2 61 d5 9c-db 58 a3 fa db 8e 3b 40 f....a...X....;@ 0020 - f1 f9 dc 0c b4 55 92 04-d2 26 1e 2f d2 2c 6e 4b .....U...&./.,nK 0030 - 90 41 6f 22 87 7f 9e dd-ae 31 6f 7c ff d1 4e ef .Ao".....1o|..N. 0040 - f7 8e b0 c8 c4 a2 b2 55-73 e2 7a 18 24 9a d0 ba .......Us.z.$... 0050 - 34 7f e3 e7 39 94 21 f8-9d 74 03 25 2b 43 d6 32 4...9.!..t.%+C.2 0060 - 2c cc 7c 0f 92 d7 a8 51-50 0c 63 2e 84 ef 6e c0 ,.|....QP.c...n. 0070 - 80 eb 0d 4e b5 80 fa 63-56 5a dc 56 56 80 e7 ce ...N...cVZ.VV... 0080 - 1a 29 5b a9 05 68 6b 29-53 9c .)[..hk)S. Start Time: 1775006925 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
kepura.com
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.