Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://kyoto.ltta.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=kyoto.ltta.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=kyoto.ltta.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=kyoto.ltta.jp
And you can
check your domain name
.
#
Certificate of
kyoto.ltta.jp
{ "serial": "013E763D639FD6049B4BC9981F0B337F", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "kyoto.ltta.jp", "port": 443, "subjectAltName": "DNS:ltta.jp, DNS:fukui.ltta.jp, DNS:fukushima.ltta.jp, DNS:tochigi.ltta.jp, DNS:kyoto.ltta.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2025/05/02 09:00:00", "expires_at": "2026/06/02 08:59:59", "today": "2026/01/01 08:16:23", "UTC": { "updated_at": "2025-05-02T00:00:00Z", "expires_at": "2026-06-01T23:59:59Z", "today": "2025-12-31T23:16:23Z" }, "remaining_days": 152 }
#
OCSP response of
kyoto.ltta.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 1F5292615682547F8166D81D3D0AAA325C87DD08 Produced At: Dec 31 00:20:35 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: E286E16FA66143C3984E708A7DD7C266E41DC242 Issuer Key Hash: 1F5292615682547F8166D81D3D0AAA325C87DD08 Serial Number: 013E763D639FD6049B4BC9981F0B337F Cert Status: good This Update: Dec 31 00:03:00 2025 GMT Next Update: Jan 6 23:03:00 2026 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 99:be:69:70:f8:ea:43:72:c6:55:58:c6:52:ad:bb:5a:c0:66: 17:cd:6e:36:d5:51:fe:b4:09:ae:ed:1d:15:82:b4:69:ef:62: b3:63:21:67:45:53:d0:58:75:8e:80:06:ff:9d:49:61:91:a7: 12:93:12:62:f5:d7:07:5c:04:f0:64:b5:29:29:19:2b:a5:ed: b3:1d:10:77:80:4e:7e:1e:c8:06:68:d0:80:14:4f:98:46:99: bd:af:02:a1:7e:e6:68:ff:e2:ce:e9:15:a6:c8:b8:50:b7:df: a8:91:1b:c8:c6:11:01:9c:75:6a:fd:be:d3:c1:d2:c3:fb:a3: 41:6f:0b:5d:ed:b5:c9:89:bb:52:af:fd:eb:f0:29:b1:8e:17: e5:61:16:a4:4d:78:be:e2:45:ff:35:6f:b1:32:0f:0e:76:94: fc:08:5b:83:54:91:19:a6:db:ff:61:ff:aa:1f:2c:f7:87:52: aa:9d:28:67:e2:30:f5:67:6c:cc:6a:ae:5f:ce:bf:2a:a8:3a: 60:f6:3a:0f:6c:f3:71:16:56:55:ea:48:ee:3c:78:cc:f9:08: 02:65:a8:aa:17:87:82:4c:d3:b2:ca:41:cd:0f:64:c0:72:44: 32:15:23:61:00:19:89:1f:b3:88:aa:65:46:29:8d:06:95:7c: df:1c:3f:99 ====================================== --- Certificate chain 0 s:CN = ltta.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M04 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 2 00:00:00 2025 GMT; NotAfter: Jun 1 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M04 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:35 2022 GMT; NotAfter: Aug 23 22:26:35 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIQAT52PWOf1gSbS8mYHwszfzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTA0MB4XDTI1MDUwMjAwMDAwMFoXDTI2MDYwMTIzNTk1OVowEjEQ MA4GA1UEAxMHbHR0YS5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AOKblwtzn6IFuhKVktHtaTr40++aTvHr0ufbKQ1mBRpVezP+gzGoWy6oQXpNBw0W /hzbAxAkF8yNNYrWbNbLMeHXcG+M7rm2BwLVJZ59as4xt83y9tOkp1I+D7yLOQj7 fpbxcsD0jJqtIYbvXvjlB4X9l2dvyjdpKvQxytyxvk9uGxDl5N0PoFz3kL0EXwYV 31e/3tfK5BDVn8tYGym5GhUIDqRTOuOIgCr6s22hAttZX9PpWvpQecH48m6DZJEN Ny4LMkgrNQFq950sbhTaxuMs2GwOPiIJGBW4kTVa51jyDefeUt3I2W5foHC1Ef9C RKW4EQ9pIMZE/eNwQ+bZMXsCAwEAAaOCAyAwggMcMB8GA1UdIwQYMBaAFB9SkmFW glR/gWbYHT0KqjJch90IMB0GA1UdDgQWBBSpfFfBim58pOYwd6eURQZdTiZmUTBU BgNVHREETTBLggdsdHRhLmpwgg1mdWt1aS5sdHRhLmpwghFmdWt1c2hpbWEubHR0 YS5qcIIPdG9jaGlnaS5sdHRhLmpwgg1reW90by5sdHRhLmpwMBMGA1UdIAQMMAow CAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2NybC5yMm0wNC5hbWF6 b250cnVzdC5jb20vcjJtMDQuY3JsMHUGCCsGAQUFBwEBBGkwZzAtBggrBgEFBQcw AYYhaHR0cDovL29jc3AucjJtMDQuYW1hem9udHJ1c3QuY29tMDYGCCsGAQUFBzAC hipodHRwOi8vY3J0LnIybTA0LmFtYXpvbnRydXN0LmNvbS9yMm0wNC5jZXIwDAYD VR0TAQH/BAIwADCCAXwGCisGAQQB1nkCBAIEggFsBIIBaAFmAHUADleUvPOuqT4z GyyZB7P3kN+bwj1xMiXdIaklrGHFTiEAAAGWjx55XQAABAMARjBEAiBYSL2XOcIG rrg+fQYxbrmdZDXmyehPGk9TT7SkeZlG9QIgMchd44S4H7kUFsLQt4kobLOB6rzp EPol3Wwt1KelmDYAdQBkEcRspBLsp4kcogIuALyrTygH1B41J6vq/tUDyX3N8AAA AZaPHnmPAAAEAwBGMEQCICW+HLXXaKe1hUtoaH2BbjTURoOZYpDvEy6Xvk19Dv2W AiAIBNqzQm99qa0iFozsi6WJ6lhfDw/ktqgzC50u2u8ERQB2AEmcm2neHXzs/Dbe zYdkprhbrwqHgBnRVVL76esp3fjDAAABlo8eeaQAAAQDAEcwRQIhAPT/h1HWmzWu U/U/3N0Y/RdQCDZ1vzILtlmaiVLuQ/JGAiA+HcRp2sYrg3yLD5gu3PMHrBYZvTtb B+UYj4eyI+0f+TANBgkqhkiG9w0BAQsFAAOCAQEAAUDW3wZPzbfDTxHqQRF8a511 ECbx+5iqPleCkN9nVYTJEsHsZYdH7szg+cdqp4mTBDyLuOXE1JPUwxU2Vjx51A3U 1eHgcOV3XJo1qfvyJdMUYrkLr5L85wTe6w+yo10bDqePkKnBe14HfIwrX1SMq4ho 0N4zTeHZgJYA+eDQEeKcAxOlQExTLwVh26uVnSUrkaGgSD4gI4k9ElkqyqIk5jcP QsWlaDnON5DMDvXFcB3wxy8Ypp4hSt7kSblskS4ISe09runQg1sn+lQ9sUdQmOva /FERFI0ZVXoS+kkCEnzdF2p6obKweDxOEVFRVXV86kUsJf99HcSTKR+18L1hvg== -----END CERTIFICATE----- subject=CN = ltta.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M04 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4863 bytes and written 388 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
kyoto.ltta.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.