Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://status.mamisrv.ne.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=status.mamisrv.ne.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=status.mamisrv.ne.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=status.mamisrv.ne.jp
And you can
check your domain name
.
#
Certificate of
status.mamisrv.ne.jp
{ "serial": "6B106EA748F95E1C1162C8811E109A6D", "OCSP_serial": "6B106EA748F95E1C1162C8811E109A6D", "OCSP_cert_status": "good", "OCSP_this_update": "Nov 20 19:08:32 2024 GMT", "OCSP_next_update": "Nov 27 18:08:31 2024 GMT", "domainName": "status.mamisrv.ne.jp", "port": 443, "subjectAltName": "DNS:mamisrv.ne.jp, DNS:*.mamisrv.ne.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2024/10/16 21:59:47", "expires_at": "2025/01/14 21:59:46", "today": "2024/11/21 15:37:07", "UTC": { "updated_at": "2024-10-16T12:59:47Z", "expires_at": "2025-01-14T12:59:46Z", "today": "2024-11-21T06:37:07Z" }, "remaining_days": 54 }
#
OCSP response of
status.mamisrv.ne.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: Nov 20 19:08:32 2024 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 6B106EA748F95E1C1162C8811E109A6D Cert Status: good This Update: Nov 20 19:08:32 2024 GMT Next Update: Nov 27 18:08:31 2024 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:20:5c:1b:76:46:59:22:36:a4:a8:22:fb:47:a6:71: c6:cc:52:61:35:06:a9:7b:41:d6:2e:43:a0:52:73:e7:ea:1b: 02:21:00:ee:48:ff:f3:db:66:b3:73:bc:62:11:31:2d:05:d5: 89:91:03:a4:24:43:47:96:3f:46:1d:b6:9f:17:50:25:91 ====================================== --- Certificate chain 0 s:CN = mamisrv.ne.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Oct 16 12:59:47 2024 GMT; NotAfter: Jan 14 12:59:46 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDqzCCA1CgAwIBAgIQaxBup0j5XhwRYsiBHhCabTAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjQxMDE2MTI1OTQ3WhcNMjUwMTE0MTI1OTQ2WjAYMRYwFAYD VQQDEw1tYW1pc3J2Lm5lLmpwMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEPyBx IJ/CNCJLrb4dm+hKV801vvk7vKIcHWlaOVdO/zRv8csMD2K/K32YTmRcrqycvnp/ a7wQiDoXmzT7K86lyKOCAlcwggJTMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAK BggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTOBANzaNSyGdCrEY5x u7gDKMZ/PDAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEF BQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL2F4 QTAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDApBgNVHREE IjAggg1tYW1pc3J2Lm5lLmpwgg8qLm1hbWlzcnYubmUuanAwEwYDVR0gBAwwCjAI BgZngQwBAgEwNgYDVR0fBC8wLTAroCmgJ4YlaHR0cDovL2MucGtpLmdvb2cvd2Ux L2ZKZWRtTDJwZXRvLmNybDCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AE51oydc mhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABkpWgrdUAAAQDAEcwRQIhAIaZ qnDdQ5X3nLKz7pvh6d/U2oo49zVcdTdvOaG0ip34AiBDHT5YxKZqzdq0npbyx4k5 /VhSiHCXvxA2evnODEfBUwB2AKLjCuRF772tm3447Udnd1PXgluElNcrXhssxLlQ pEfnAAABkpWgreAAAAQDAEcwRQIgWVneC5xr4w3cTPpCAH1BpIZ8ZH3olT6a5dQe 03zktcICIQDvmG+W0zqzJTSbU5IN5E6UF9zEgRmMfJ+N2AE2iCBnNjAKBggqhkjO PQQDAgNJADBGAiEAsbxa2dieA2RZnMcOL/lzXAtbitGtqkHVmyzkL/3VP6sCIQD0 3FMgU8lIGGg1tvIkulDz/QzWoJtj7i5e6mktfROyNg== -----END CERTIFICATE----- subject=CN = mamisrv.ne.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3118 bytes and written 411 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
status.mamisrv.ne.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.