Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://merrybiz.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=merrybiz.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=merrybiz.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=merrybiz.jp
And you can
check your domain name
.
#
Certificate of
merrybiz.jp
{ "serial": "068A6E537F1460BE38243C9D33E34918", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "merrybiz.jp", "port": 443, "subjectAltName": "DNS:merrybiz.jp, DNS:stg.merrybiz.jp, DNS:dx.merrybiz.jp, DNS:www.merrybiz.jp, DNS:stg.dx.merrybiz.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2024/03/22 09:00:00", "expires_at": "2025/04/21 08:59:59", "today": "2024/04/28 00:58:21", "UTC": { "updated_at": "2024-03-22T00:00:00Z", "expires_at": "2025-04-20T23:59:59Z", "today": "2024-04-27T15:58:21Z" }, "remaining_days": 358 }
#
OCSP response of
merrybiz.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: C03152CD5A50C3827C7471CECBE99CF97AEB82E2 Produced At: Apr 25 14:48:52 2024 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 666D0B709C89E4BE4BEBEC134547E4B695360F8C Issuer Key Hash: C03152CD5A50C3827C7471CECBE99CF97AEB82E2 Serial Number: 068A6E537F1460BE38243C9D33E34918 Cert Status: good This Update: Apr 25 14:33:01 2024 GMT Next Update: May 2 13:33:01 2024 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 0f:aa:7c:ad:aa:3a:f2:79:08:cb:0a:8c:ad:e9:8c:80:6f:e5: 55:92:4b:d4:3c:c0:3b:d1:2f:6d:5d:30:cf:1a:cc:64:03:be: 2f:73:3a:25:27:63:5f:8d:10:7a:07:7c:40:53:18:74:76:84: 63:b2:5f:50:1f:85:0e:58:6a:64:03:60:a3:cd:57:2b:3e:08: 5b:06:bd:8a:8c:96:41:75:d7:d0:7d:a9:de:b7:9f:8f:df:35: ed:60:b4:3d:bd:d4:8d:a3:bb:18:ff:7a:04:93:f4:ad:9f:d3: 75:87:e9:52:fe:09:9a:a4:d6:9c:1b:4e:36:ab:a5:30:e6:7c: 62:a6:c3:db:74:ae:59:4c:d9:fd:bd:0a:5a:2b:d6:d4:3e:4a: 38:49:2b:c4:11:22:2d:a3:9f:55:8b:bb:a4:e6:8a:f7:03:94: d0:1e:4e:97:f4:eb:60:d8:a5:a6:f1:b1:5b:61:63:c9:90:61: 60:5f:a8:cd:5b:2a:75:c8:12:ea:63:07:a8:9b:c5:2c:00:ba: 31:e0:37:95:b4:27:59:66:8c:99:26:3b:c3:56:f6:e0:63:31: 63:bb:94:c2:71:fe:41:c6:95:8b:19:b4:ec:0e:b9:23:8c:8f: 30:ea:7f:0a:31:7d:bf:91:66:41:db:fc:f5:dc:3b:e2:3b:3a: 50:95:e9:10 ====================================== --- Certificate chain 0 s:CN = merrybiz.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M02 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Mar 22 00:00:00 2024 GMT; NotAfter: Apr 20 23:59:59 2025 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M02 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:25:30 2022 GMT; NotAfter: Aug 23 22:25:30 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT 3 s:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 i:C = US, O = "Starfield Technologies, Inc.", OU = Starfield Class 2 Certification Authority a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Sep 2 00:00:00 2009 GMT; NotAfter: Jun 28 17:39:16 2034 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGCDCCBPCgAwIBAgIQBopuU38UYL44JDydM+NJGDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTI0MDMyMjAwMDAwMFoXDTI1MDQyMDIzNTk1OVowFjEU MBIGA1UEAxMLbWVycnliaXouanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCe4wjWoIAFl9VfrKZZGFsvog8EUAhv9dooXjIdvOKdI1/KTouqk/KaN4Pe KNvBJLLL8z5vqlNmVWxcwPVwyIuKYh4kPTzDjsjL+/l1PqkYS09Wr25M/O9EqST0 azWsh8NDhWQRxYtrqTJrDUh2uLbt7vJD4OMjneBMS6PWke2dRN5NtSrh4ppf3L5Z UIwV4ORHXE6CYPH0eczFvfa/Cj6D9kzmheDKpBMiX4l9GfOzoZ2Q7dhSvUNp5lqs vkC0MKP0kfaxWUrdE/4/xHtp3hJddbNU/X+XCNPqAjDTnbmBPB+Jr/f1Axcl2wYV Jc/L9iTt+JGETjMzYnHkOVYr8rS7AgMBAAGjggMqMIIDJjAfBgNVHSMEGDAWgBTA MVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUKhnrMf8+ioKo+/s21GTTmMOG inMwXAYDVR0RBFUwU4ILbWVycnliaXouanCCD3N0Zy5tZXJyeWJpei5qcIIOZHgu bWVycnliaXouanCCD3d3dy5tZXJyeWJpei5qcIISc3RnLmR4Lm1lcnJ5Yml6Lmpw MBMGA1UdIAQMMAowCAYGZ4EMAQIBMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5yMm0wMi5hbWF6b250cnVzdC5jb20vcjJtMDIuY3JsMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDIuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTAyLmFtYXpvbnRydXN0LmNvbS9y Mm0wMi5jZXIwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIBagFo AHcATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGOZPPwRgAABAMA SDBGAiEAortFBdf4mozzhab4MCU0OAXlW45nn1ud/F2Ua35Yj3gCIQCv/KalN7lh tXck6E8kywmz0gx+Pcix3NEq82vybU2UegB1AObSMWNAd4zBEEEG13G5zsHSQPaW hIb7uocyHf0eN45QAAABjmTz8JgAAAQDAEYwRAIgHzn3gVs+DukMbsBtgNeeP/QC VrNjXqXIAIPDKGZeGEwCIESuEjuyU3bxwDOaD6EVP3vxiSIIc2XdrZ2Vcl9zO9NY AHYAouMK5EXvva2bfjjtR2d3U9eCW4SU1yteGyzEuVCkR+cAAAGOZPPxQQAABAMA RzBFAiEA835lbAC6vz+/LsD04FNS3+oSFLswbHa8KGJ8GWpNq3wCIAVB4fD92bAC y1xONFkuVmltFiWGxB7c3seDN6IRujxoMA0GCSqGSIb3DQEBCwUAA4IBAQB4V5ba GEFuYm1EYLgNCofNMvYiXaRz1pIHyg0SvoT309gRr2jCaxaCZ7WllOB9wXyKVNXn 4gjs2WIQ2TmIPOtoMD/YTyLeUkQUZRCZhfDh5pb4kxE2rYZUXfo6I1RrbiuQWW4z zepa4BUAcHPwtglWls2tH1GhWSwXg6/3b8qWMVlNtYNa1HpBePpi2NcPQ5kc0pXB /ivwEUs/ssFSh2st9KXoQR6PC2jJNoz/mo4bQpLSUkyZ14MFZ9yIIvrSn7nGprG7 2D3jwO2HGRen7NZTaidubz2e63Mnp+eKuV/D2GaHy5dovu3UHmdS1g3UGBHNoY05 cadkfRtOBzsfXiY2 -----END CERTIFICATE----- subject=CN = merrybiz.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M02 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 6027 bytes and written 386 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
merrybiz.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.