Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://status.mamisrv.ne.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=status.mamisrv.ne.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=status.mamisrv.ne.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=status.mamisrv.ne.jp
And you can
check your domain name
.
#
Certificate of
status.mamisrv.ne.jp
{ "serial": "528713590C5A39FC0E49366797358247", "OCSP_serial": "528713590C5A39FC0E49366797358247", "OCSP_cert_status": "good", "OCSP_this_update": "May 4 17:55:07 2025 GMT", "OCSP_next_update": "May 11 16:55:06 2025 GMT", "domainName": "status.mamisrv.ne.jp", "port": 443, "subjectAltName": "DNS:mamisrv.ne.jp, DNS:*.mamisrv.ne.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/04/11 22:28:13", "expires_at": "2025/07/10 23:25:57", "today": "2025/05/09 15:56:56", "UTC": { "updated_at": "2025-04-11T13:28:13Z", "expires_at": "2025-07-10T14:25:57Z", "today": "2025-05-09T06:56:56Z" }, "remaining_days": 62 }
#
OCSP response of
status.mamisrv.ne.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: May 4 17:55:07 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 528713590C5A39FC0E49366797358247 Cert Status: good This Update: May 4 17:55:07 2025 GMT Next Update: May 11 16:55:06 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:20:78:09:f8:71:df:69:ba:c1:49:e5:91:c7:55:f7: ec:a8:ca:df:ee:a7:82:4a:d4:e9:e1:ad:e6:24:d1:5d:95:4d: 02:21:00:fd:54:f2:b8:6a:5f:ab:c2:fa:57:85:c7:4a:41:5a: 46:f7:b3:fb:1b:44:d9:69:4a:88:a0:8d:8d:b8:99:de:fb ====================================== --- Certificate chain 0 s:CN = mamisrv.ne.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Apr 11 13:28:13 2025 GMT; NotAfter: Jul 10 14:25:57 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDqjCCA1CgAwIBAgIQUocTWQxaOfwOSTZnlzWCRzAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjUwNDExMTMyODEzWhcNMjUwNzEwMTQyNTU3WjAYMRYwFAYD VQQDEw1tYW1pc3J2Lm5lLmpwMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE2Fhc er7K+2fnRjY0qL+qmveRhW/famFSqtLJCyucVH+w6yxt3FFPpxwv6O/wAaeKwuUj sVgiqrQ+K1wpNqezkKOCAlcwggJTMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAK BggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTRBHk5fvyJXUBpOYQR 9V8+xOLhrzAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEF BQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL1Vv YzAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDApBgNVHREE IjAggg1tYW1pc3J2Lm5lLmpwgg8qLm1hbWlzcnYubmUuanAwEwYDVR0gBAwwCjAI BgZngQwBAgEwNgYDVR0fBC8wLTAroCmgJ4YlaHR0cDovL2MucGtpLmdvb2cvd2Ux L19keFYxbVRtb0pjLmNybDCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ABLxTjS9 U3JMhAYZw48/ehP457Vih4icbTAFhOvlhiY6AAABliVAUn4AAAQDAEcwRQIgOOm9 lZOc2wbced0A1dhT3yFepYFpwGSbb7oy+duh1TwCIQCpIK2fvlqWi1og1pewAouO D7q7YtbIrBANlzF6BLCbkQB2AO08S9boBsKkogBX28sk4jgB31Ev7cSGxXAPIN23 Pj/gAAABliVAUp8AAAQDAEcwRQIga/S5U1UOv/QKIUrZHixRExLW9IJdXtY4mICj AwkPk/UCIQDblhAiIdD5S8CMhIzkYprRpAbRitUj+sYGqZEakR9W5jAKBggqhkjO PQQDAgNIADBFAiAlfUnKgPpwsD9U1QPLktwwhiHlOKiIJx9CnKhTRGCcvwIhANN1 3o7aEtre+CvrAtilEDuLEKlfVIybxV75DE8w5lvM -----END CERTIFICATE----- subject=CN = mamisrv.ne.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3118 bytes and written 411 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
status.mamisrv.ne.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.