Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://kurotekko.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=kurotekko.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=kurotekko.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=kurotekko.co.jp
And you can
check your domain name
.
#
Certificate of
kurotekko.co.jp
{ "serial": "69A026060992F03A0E3E93BCEF99F265", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "kurotekko.co.jp", "port": 443, "subjectAltName": "DNS:kurotekko.co.jp, DNS:www.kurotekko.co.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/10/08 04:21:33", "expires_at": "2026/01/06 04:21:32", "today": "2025/11/02 17:05:43", "UTC": { "updated_at": "2025-10-07T19:21:33Z", "expires_at": "2026-01-05T19:21:32Z", "today": "2025-11-02T08:05:43Z" }, "remaining_days": 64 }
#
OCSP response of
kurotekko.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = kurotekko.co.jp i:C = US, O = Google Trust Services, CN = WR1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Oct 7 19:21:33 2025 GMT; NotAfter: Jan 5 19:21:32 2026 GMT 1 s:C = US, O = Google Trust Services, CN = WR1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R1 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Jun 19 00:00:42 2020 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFPzCCBCegAwIBAgIQaaAmBgmS8DoOPpO875nyZTANBgkqhkiG9w0BAQsFADA7 MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQww CgYDVQQDEwNXUjEwHhcNMjUxMDA3MTkyMTMzWhcNMjYwMTA1MTkyMTMyWjAaMRgw FgYDVQQDEw9rdXJvdGVra28uY28uanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCU7FRq/MKB5OovTA4o0a92eou6HXtKPqjwNKZGaQtQ4lMTokFhKz8l gGOlnopDSLw2p9JjoWLGj+ZyE+CTHvPlJONy3l14tByUoGMPaNkXVmRnk/E8RdUV SuARobnppnCF34+3R8pn/OOc6Oa9+D5dhZyuaatoguzEbnSfrt7pwRP4qeP4yAzr axc/uCa1wL/CszEjjpv0dj2FXEt6OpqqCTw9KANz2+G7cfzeX82Vq7AfVGB++ff2 +6+8WGicFw0nZgHjOPXeGSBHeuVZ0r8HBSK3Fdje6MjKlosFlz2GkxKvxhTpbdid MxlzYLjDzEepdyLPgrCHL06oP6yRDgH1AgMBAAGjggJeMIICWjAOBgNVHQ8BAf8E BAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU1YbdLsa9pQkg+INDDRN+Y2a9H2owHwYDVR0jBBgwFoAUZmlJ1N4qnJEDz4kO JLgOMANuiC4wXgYIKwYBBQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5w a2kuZ29vZy9zL3dyMS9hYUEwJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29n L3dyMS5jcnQwLwYDVR0RBCgwJoIPa3Vyb3Rla2tvLmNvLmpwghN3d3cua3Vyb3Rl a2tvLmNvLmpwMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeG JWh0dHA6Ly9jLnBraS5nb29nL3dyMS9hc1FScXhtVzFFdy5jcmwwggEFBgorBgEE AdZ5AgQCBIH2BIHzAPEAdwAOV5S8866pPjMbLJkHs/eQ35vCPXEyJd0hqSWsYcVO IQAAAZnAViBBAAAEAwBIMEYCIQCsOKGdRWX6fKrvNZVdjcqCOQjqiPzlPlsYtIzK X3LD+gIhAPKGvET19KymiX1ErmoGBrt7UhaK+L9jux/LfmkD0lg9AHYAFoMtq/Cp JQ8P8DqlRf/Iv8gj0IdL9gQpJ/jnHzMT9foAAAGZwFYgggAABAMARzBFAiEAkJFB G/i+0B2ngS9zDqx6qyC9+FE2KTaTHc7GiXoIvCMCIBmQewa4u9NJuTtOCPWBbM7t xklKmQqZuwd9FrNfagibMA0GCSqGSIb3DQEBCwUAA4IBAQCx4hMXfPhljK8oztcO 4vAACJXHvSPNARVbmpVSqcftu5i8pwaJm3aiYqRfrAy6WRggmUXyufPOxY+WJPQy UAZ7fX5XBIay8IRjzZ9SgiAco//U61wUrNQyOk1COM4Z7nTCkQwvin/Q0jN0hoqB nMdb6OumjW/4U7LPVNhU7dIIee97ity+Hq/iKBqgGUZD7bRCHzU1wS4D3YK52eIT VJ1ky1JlvbMTVXFHaJb0xzDrMARowBXyGTPMfDxnQNVGU2KLPMoG9eGiz9LctVLA xqk2pBBbaNPQpwa4nJ5QUaxeqk2HT2AVewsXhkdoM4wWVrBgvCKD6ntngYUJ/7LB 4DeF -----END CERTIFICATE----- subject=CN = kurotekko.co.jp issuer=C = US, O = Google Trust Services, CN = WR1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4578 bytes and written 390 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- --- Post-Handshake New Session Ticket arrived: SSL-Session: Protocol : TLSv1.3 Cipher : TLS_AES_128_GCM_SHA256 Session-ID: 0ED33DF53BCDA821ED30E2B65801B96B642EBB59C816A2377ACB7CAD8DC2B93F Session-ID-ctx: Resumption PSK: 7CC64C47D1E012B04F061216D4CFBD8C34DCE1B695476BE5F2A237D78CED1D16 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 604800 (seconds) TLS session ticket: 0000 - 44 24 48 22 2d b3 85 ee-e1 5d 9f cb c4 19 fc 60 D$H"-....].....` 0010 - c3 72 d3 fb 31 27 44 f0-72 2f b4 9d d6 a5 5f 0d .r..1'D.r/...._. 0020 - 67 77 84 56 b5 bd 2a 0d-9c e1 11 6d 76 34 cc b0 gw.V..*....mv4.. 0030 - 29 75 73 eb b5 f2 65 88-1c 14 e6 36 b2 58 eb 94 )us...e....6.X.. 0040 - 5c c6 70 f3 85 c7 d6 6c-79 5e f0 ef 43 07 e8 3b \.p....ly^..C..; 0050 - 80 d9 2b 24 e2 0c 85 06-1f 43 81 a6 10 be b0 0e ..+$.....C...... 0060 - 36 ea fc 3c 4e 67 a1 f0-ad 6..<Ng... Start Time: 1762070746 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no Max Early Data: 0 --- read R BLOCK
#
OCSP response of
kurotekko.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.