Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://sea-mew.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=sea-mew.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=sea-mew.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=sea-mew.jp
And you can
check your domain name
.
#
Certificate of
sea-mew.jp
{ "serial": "AED8F06711E275AFA52C673FAF81B385", "OCSP_serial": "AED8F06711E275AFA52C673FAF81B385", "OCSP_cert_status": "good", "OCSP_this_update": "Jul 9 21:35:20 2025 GMT", "OCSP_next_update": "Jul 16 21:35:19 2025 GMT", "domainName": "sea-mew.jp", "port": 443, "subjectAltName": "DNS:sea-mew.jp", "is_valid": true, "CA": "ZeroSSL", "updated_at": "2025/06/29 09:00:00", "expires_at": "2025/09/28 08:59:59", "today": "2025/07/13 11:47:16", "UTC": { "updated_at": "2025-06-29T00:00:00Z", "expires_at": "2025-09-27T23:59:59Z", "today": "2025-07-13T02:47:16Z" }, "remaining_days": 76 }
#
OCSP response of
sea-mew.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 0F6BE64BCE3947AEF67E901E79F0309192C85FA3 Produced At: Jul 9 21:35:20 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 331FFE3FFD0B8416284F948D56C07E0392D8F64D Issuer Key Hash: 0F6BE64BCE3947AEF67E901E79F0309192C85FA3 Serial Number: AED8F06711E275AFA52C673FAF81B385 Cert Status: good This Update: Jul 9 21:35:20 2025 GMT Next Update: Jul 16 21:35:19 2025 GMT Signature Algorithm: ecdsa-with-SHA384 Signature Value: 30:64:02:30:78:7a:38:fb:d7:d8:51:89:07:5e:41:50:b4:5e: 2c:40:e4:06:42:84:69:b5:72:25:fc:34:43:6d:a3:f0:8e:47: c3:09:0e:93:a9:6a:93:36:82:7f:68:32:34:94:99:06:02:30: 4f:f9:6d:9c:e1:fd:ea:c5:75:1e:a6:04:7c:82:5d:e2:f9:17: 01:71:4a:01:a5:06:60:8a:ab:a4:1f:ca:82:37:0a:c5:c9:f2: 0d:f5:27:09:bc:69:94:ef:9c:90:9d:d2 ====================================== --- Certificate chain 0 s:CN = sea-mew.jp i:C = AT, O = ZeroSSL, CN = ZeroSSL ECC Domain Secure Site CA a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Jun 29 00:00:00 2025 GMT; NotAfter: Sep 27 23:59:59 2025 GMT 1 s:C = AT, O = ZeroSSL, CN = ZeroSSL ECC Domain Secure Site CA i:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust ECC Certification Authority a:PKEY: id-ecPublicKey, 384 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Jan 30 00:00:00 2020 GMT; NotAfter: Jan 29 23:59:59 2030 GMT 2 s:C = US, ST = New Jersey, L = Jersey City, O = The USERTRUST Network, CN = USERTrust ECC Certification Authority i:C = GB, ST = Greater Manchester, L = Salford, O = Comodo CA Limited, CN = AAA Certificate Services a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA384 v:NotBefore: Mar 12 00:00:00 2019 GMT; NotAfter: Dec 31 23:59:59 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIID9zCCA32gAwIBAgIRAK7Y8GcR4nWvpSxnP6+Bs4UwCgYIKoZIzj0EAwMwSzEL MAkGA1UEBhMCQVQxEDAOBgNVBAoTB1plcm9TU0wxKjAoBgNVBAMTIVplcm9TU0wg RUNDIERvbWFpbiBTZWN1cmUgU2l0ZSBDQTAeFw0yNTA2MjkwMDAwMDBaFw0yNTA5 MjcyMzU5NTlaMBUxEzARBgNVBAMTCnNlYS1tZXcuanAwWTATBgcqhkjOPQIBBggq hkjOPQMBBwNCAATWRCEXYZpWovyGXgT/5n1/+bMAYGD5pQsFtv5+NuxuDOZHR1Uk A2HwxJkEQ61rpEmjjIAo4oCz0wXdS/PuytRQo4ICdjCCAnIwHwYDVR0jBBgwFoAU D2vmS845R672fpAeefAwkZLIX6MwHQYDVR0OBBYEFE+p/TaVILVPYNfxDomCuHjc DBgHMA4GA1UdDwEB/wQEAwIHgDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgJOMCUwIwYI KwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECATCBiAYI KwYBBQUHAQEEfDB6MEsGCCsGAQUFBzAChj9odHRwOi8vemVyb3NzbC5jcnQuc2Vj dGlnby5jb20vWmVyb1NTTEVDQ0RvbWFpblNlY3VyZVNpdGVDQS5jcnQwKwYIKwYB BQUHMAGGH2h0dHA6Ly96ZXJvc3NsLm9jc3Auc2VjdGlnby5jb20wggEEBgorBgEE AdZ5AgQCBIH1BIHyAPAAdgDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvI KgAAAZe6Ves3AAAEAwBHMEUCIQDZR+pp9iXYenG3hwv0XpnlUNu7224PGDWzqyEe V7nL2wIgTh4f4dl8+Ks0WEfsZgZunekzAGdmJLk7Z52EaSlceFcAdgAN4fIwK9MN wUBiEgnqVS78R3R8sdfpMO8OQh60fk6qNAAAAZe6VeseAAAEAwBHMEUCIGi8qE15 uyRz1e8Qj3RwqhhT3omHoM9Gd8MvazMy7AKCAiEAuz5bVRF/p+FweJiMT6POCbMQ XPbfn+RbpuaZoVRL5+QwFQYDVR0RBA4wDIIKc2VhLW1ldy5qcDAKBggqhkjOPQQD AwNoADBlAjEAvFmt0oQHGpFwJEeu/UFhQ2i5ScHmVgtu5t6N0Xgf2zxgAMagr+zC vCjQWUwT1XREAjBgAohw3UwlRMCZotq2of/t0tzDo7NqdZ/lMyxDK/Hmx3Zlg8hF m+nRYSlagwcSxU8= -----END CERTIFICATE----- subject=CN = sea-mew.jp issuer=C = AT, O = ZeroSSL, CN = ZeroSSL ECC Domain Secure Site CA --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3595 bytes and written 385 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- --- Post-Handshake New Session Ticket arrived: SSL-Session: Protocol : TLSv1.3 Cipher : TLS_AES_128_GCM_SHA256 Session-ID: A6ED3AD0E5A2B5421023A5B1FF5C104882FF3D3A18EA9AE0BF656C1318BA822E Session-ID-ctx: Resumption PSK: C323482A81353B0451E170ECEBB75DE5D8CA758084D907B5C5C3A1D59F8D3925 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 604800 (seconds) TLS session ticket: 0000 - 8c a1 dd 73 0d ff f2 6d-42 2d e9 d7 93 3d b5 ed ...s...mB-...=.. 0010 - 52 5d f7 89 b3 ef 52 7f-d7 b2 68 bb 30 93 7c 2c R]....R...h.0.|, 0020 - 3d 7e 20 3a b2 94 0a 1d-21 cf b5 ec e0 a0 b3 52 =~ :....!......R 0030 - 13 d7 68 e4 7d c9 1a 9d-bd 82 1b ea cf 0a 84 29 ..h.}..........) 0040 - d9 30 2c 4d cf 83 0b 3e-f2 11 97 72 bc 73 93 bf .0,M...>...r.s.. 0050 - e8 db 5d 16 10 0a f5 da-70 ec 4f 1c 77 4f 3d f9 ..].....p.O.wO=. 0060 - 77 e1 18 80 7d fd e4 6b-5c 7c 9c 8e b6 9b ee a4 w...}..k\|...... 0070 - 20 Start Time: 1752374836 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no Max Early Data: 0 --- read R BLOCK
#
OCSP response of
sea-mew.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.