Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://satotakuya.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=satotakuya.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=satotakuya.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=satotakuya.jp
And you can
check your domain name
.
#
Certificate of
satotakuya.jp
{ "serial": "03275D8084DF3A2172FFD4E546D5388B", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "satotakuya.jp", "port": 443, "subjectAltName": "DNS:satotakuya.jp, DNS:www.satotakuya.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2025/01/26 09:00:00", "expires_at": "2026/02/26 08:59:59", "today": "2025/05/09 15:45:02", "UTC": { "updated_at": "2025-01-26T00:00:00Z", "expires_at": "2026-02-25T23:59:59Z", "today": "2025-05-09T06:45:02Z" }, "remaining_days": 292 }
#
OCSP response of
satotakuya.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = satotakuya.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jan 26 00:00:00 2025 GMT; NotAfter: Feb 25 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgIQAyddgITfOiFy/9TlRtU4izANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI1MDEyNjAwMDAwMFoXDTI2MDIyNTIzNTk1OVowGDEW MBQGA1UEAxMNc2F0b3Rha3V5YS5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBAM2GH61XmzMZzjBF0oYrTkumu5MnnP5SfSek91Kjbo7MuTkeIUXgFppR luFF/nrYsrEh4w5gQU0IxXCXx9ju/F1oDCEuwmZxmrcmfppTRsdsrKItUSiE8r8L 3wBnaDO7/3bbHleEIbeVResG04N3ogyQM7sGdAmBuNo8hgMCOWR3ZA8tHA3nfGFK ZBjiTLoepFu5BDw6lKk0oVi62ME02+wvV4Lrz/qC1qMhrkHJ2vyu+irw5yTDUTf9 vZ55l2h8Be/HYaAnlPAx6L7zaUhOgpfHTeqh+Gn0dttfG4gr1TMIipDL7kYQv8sZ Lo46UekSh2oGwD2ZWOLOyR0pR+JcLbkCAwEAAaOCAvowggL2MB8GA1UdIwQYMBaA FFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBRai9V63ybP7nVbzFQkW5cv BfZTAzArBgNVHREEJDAigg1zYXRvdGFrdXlhLmpwghF3d3cuc2F0b3Rha3V5YS5q cDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9j cmwucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRp MGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNv bTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20v cjJtMDMuY2VyMAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQCBIIBbwSCAWsB aQB2AA5XlLzzrqk+MxssmQez95Dfm8I9cTIl3SGpJaxhxU4hAAABlKAJ9FkAAAQD AEcwRQIge25vmuPcNQ+GmvDOpxJ8kPIQvcyiL+gmw1T7zAcHNOcCIQCMivHsVk53 +4MmKxgCdMLBxd9vzK0Spx6JZafBd6wxYAB2AGQRxGykEuyniRyiAi4AvKtPKAfU HjUnq+r+1QPJfc3wAAABlKAJ9D8AAAQDAEcwRQIhAPp1ynvn3Tpu74QOV9SR3HQH H0Wp3VqqZbvpXlzNktvAAiBJ3dsKCxl4wkumlTr/WoSbUgkvZzY1qZHB6JCOWVst IwB3AEmcm2neHXzs/DbezYdkprhbrwqHgBnRVVL76esp3fjDAAABlKAJ9FQAAAQD AEgwRgIhAPA8X3QRTFtq5BNyyx6VkcOJgxNI/YnR1yRSycBXN14cAiEA2AMRFTrr g8a6FBo2l5xfLgO5XPDuYOTtIQNtf18ICvwwDQYJKoZIhvcNAQELBQADggEBAE2s OoeFTcisDVmv7yk5lG3Rc/0KgpxU2R/c5s06/f4MWYRiCs2ZTlX5zyQsSTFUdhv4 jF8k4BZM3aKCmgt+t2sSrqQ3JR+Tyd0asYB/V949Nkd/OQLdckucgJ0Mk+LlpkIo +hDdglWP0IT/eF0sIl8traGDFWkCIfsI3Te58X+c5Ym5of61o5tsfNff7XMBifn0 5FCyW82vKFoNp0t8tLJG1HJC1rWUCUAyge6qXN8XV6ANZ6t1oj0doAmygT3sKKQt MVJh538/1e+sDlCx95T4TaHBM1wiuS8rPSuElQRd28w0pCOEIC9GjfW08oNWA61a i8Q3XnNBJB8NKL7DAco= -----END CERTIFICATE----- subject=CN = satotakuya.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 4352 bytes and written 388 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
satotakuya.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.