Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://marutsu-kougei.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=marutsu-kougei.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=marutsu-kougei.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=marutsu-kougei.jp
And you can
check your domain name
.
#
Certificate of
marutsu-kougei.jp
{ "serial": "0886D9CA0F07FFD98929AD35401B20FD", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "marutsu-kougei.jp", "port": 443, "subjectAltName": "DNS:marutsu-kougei.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2024/11/18 09:00:00", "expires_at": "2025/12/18 08:59:59", "today": "2024/11/21 16:08:44", "UTC": { "updated_at": "2024-11-18T00:00:00Z", "expires_at": "2025-12-17T23:59:59Z", "today": "2024-11-21T07:08:44Z" }, "remaining_days": 391 }
#
OCSP response of
marutsu-kougei.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = marutsu-kougei.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 18 00:00:00 2024 GMT; NotAfter: Dec 17 23:59:59 2025 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIQCIbZyg8H/9mJKa01QBsg/TANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MTExODAwMDAwMFoXDTI1MTIxNzIzNTk1OVowHDEa MBgGA1UEAxMRbWFydXRzdS1rb3VnZWkuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+OmIraY1ugjrj9qERplfAu7VO6MHsQLSPz5qq6+qeaMjoNdVm zdjJh1aAwP+EMSHO/4ynQTMRUg58XaHO0ekBNiCJEpjo1Mx6wJjCgIDFsVeUpkkd XsW7t2zpbhnAf4oI2hvPUoJYiIF5899u/yNY6Bn0rrJM/GmPgxrJrZTCWw2gU2+A FH/0LqQUGKKGzFtV8qpNIesdzez98HUdcGdJmlt1eSzX5c9GPmwTN5SJBemQCALq YA+msSjokF4nerM2L4mEwwiaURvLZcjNseeHqIInfBW0eBkt78PvkXf014QQwW9h uDPpRyz0bdeU04d+bnpYvNDDB0+SW0qABu2PAgMBAAGjggLrMIIC5zAfBgNVHSME GDAWgBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUV5RVl3hmnXWuoyyH rHMG78sWmKAwHAYDVR0RBBUwE4IRbWFydXRzdS1rb3VnZWkuanAwEwYDVR0gBAww CjAIBgZngQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFt YXpvbnRydXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUF BzABhiFodHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUH MAKGKmh0dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAM BgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwAS8U40vVNy TIQGGcOPP3oT+Oe1YoeInG0wBYTr5YYmOgAAAZM+iQizAAAEAwBIMEYCIQCH58Vq zqWiviGCoxfbqQP81Etih/49tvR4FEdflpJ7HAIhAPUxJv5ZUz8xCDO67eFq4X/l 8ztVDD24eb/FcXhaQh0WAHcA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43 jlAAAAGTPokImAAABAMASDBGAiEA2HaeqjMdoZ83e5dABpi2MW15KkWpAqWg6II+ g6OsbMUCIQCXpFb5QJDAxR6V50DseSijjH+atN3ERMxBntyrxNBsRwB1AMz7D2qF cQll/pWbU87psnwi6YVcDZeNtql+VMD+TA2wAAABkz6JCGkAAAQDAEYwRAIgaoPn zFQFOfUEt8TqECWeH7OQtQLhSitTl3z5Ic92bsECIEOKUNKchOpDE/9SWv8p6yN1 q4EtaBL3aHUDiqMWFwc2MA0GCSqGSIb3DQEBCwUAA4IBAQBZMHAA3e6pRO1cPuN5 BJxnp0Ha+YLTkr2az0N+lgN0wuYpREb2A9tUhldjOab/2Ekj3hqHvWI/bVEItj5G HAbrJqY1RnllTpKFgtkSGCHNthQM60NBrRTRdrUetbokE4R1L19OuMRNTJtqOkuU AfYcUfpT64KK+JQcFSwtVoyEEcI3LttnSRoQFU7lTvQ+E+BE2rmg6O1trvd8kJMp 5jBfZMY53ImuT1cbpeP9Y1RLz/dxiepEmNNgwWMBZaXpuhSGn4oPTfoNX1djDEtm 7tDWwD7mDu3AyyFnMg1rz5r8nLRXwLWzmVyfIDysc25iGM/z/RAnYMkH2LesFd3V ZoRG -----END CERTIFICATE----- subject=CN = marutsu-kougei.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4341 bytes and written 392 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
marutsu-kougei.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.