Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://takutpl.take-eats.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=takutpl.take-eats.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=takutpl.take-eats.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=takutpl.take-eats.jp
And you can
check your domain name
.
#
Certificate of
takutpl.take-eats.jp
{ "serial": "031DAEC5E58FA1C811E96A8C4F00C9B2", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "takutpl.take-eats.jp", "port": 443, "subjectAltName": "DNS:*.take-eats.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2025/04/01 09:00:00", "expires_at": "2026/05/01 08:59:59", "today": "2026/01/01 08:10:07", "UTC": { "updated_at": "2025-04-01T00:00:00Z", "expires_at": "2026-04-30T23:59:59Z", "today": "2025-12-31T23:10:07Z" }, "remaining_days": 120 }
#
OCSP response of
takutpl.take-eats.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.take-eats.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Apr 1 00:00:00 2025 GMT; NotAfter: Apr 30 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgIQAx2uxeWPocgR6WqMTwDJsjANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI1MDQwMTAwMDAwMFoXDTI2MDQzMDIzNTk1OVowGTEX MBUGA1UEAwwOKi50YWtlLWVhdHMuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCzLZoPaj0f+CU8SJi42/kZsfmriBVo8qxmskQGp795CXwFVbAIm8p0 AFiwk6SgSQ03wb/e2CYhARYlE2Hxpu3/yEgrA2fCwhPZ9BkHeXOQ35n9hQLcb55J cdLK5WEtJzAeipSMB4KLq7RcQu87aVAtDBYSnvq0imcTb4XR2F4zb+KCOC7KDrMB KKKoqXs9Wofy4Iw7hSGVttwkSUaXQU2cp8FRvXpUHUQY/t6LtEsHg+2oWahISf9y xcxTMoRzcS2jxLbnSrkXzLh/59VswzrDx8D7An//oVl54Btx/pfOQXAqyof0h8FV FNLcMHAKAa9N/nTjmUXNjFDIP30RcsVVAgMBAAGjggLmMIIC4jAfBgNVHSMEGDAW gBRV2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUorPYSwI4sZY3HPyReCx7 jQFOcKIwGQYDVR0RBBIwEIIOKi50YWtlLWVhdHMuanAwEwYDVR0gBAwwCjAIBgZn gQwBAgEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRy dXN0LmNvbS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFo dHRwOi8vb2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0 dHA6Ly9jcnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMB Af8EAjAAMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFpAWcAdQCWl2S/VViXrfdDh2g3 CEJ36fA61fak8zZuRqQ/D8qpxgAAAZXu0HQpAAAEAwBGMEQCIA9pxzXdyxTFBAgX hdIgPFK8ggA3c+yiiXXMmTeccDYCAiA+8Aj5mE7KxsVWq/Adp4tJBujJkZgO3fde QT3Lc34V0wB2AGQRxGykEuyniRyiAi4AvKtPKAfUHjUnq+r+1QPJfc3wAAABle7Q dBsAAAQDAEcwRQIgbpTdpNd4mrwFT0LJCSHNgovNXAydFI5fO3Dh/256xlgCIQCy pHE2QsIWJRYPsd2X6Pij+dwc28ijjVYA48DI20O6zAB2AEmcm2neHXzs/DbezYdk prhbrwqHgBnRVVL76esp3fjDAAABle7QdC0AAAQDAEcwRQIgD9OjRZkeCDnfgMHd 2pcm5aQxlHlsSEl7IdojnsxeMJ8CIQCTazLaudmzYww9zSHwEcHWXK03UMPJJCBp Kjo11KudWTANBgkqhkiG9w0BAQsFAAOCAQEAV7cxUvgj6Fz1yj/zetm19YlH5Q9y flaw2Fx93Ymxm2ZPGEFIxhNDHPqoMRw/b2WfUjPId13UF/P6+pHL8a7P94O89AU/ 6YN4qcg4sIGZdNWOVxnQ/kI+/v7o89lJhw8xQZdKNgFAp3hpHxzOqr75oHmPSTjV OryunOCm4Fl7x1zIOpP3KIhTdgVU4DEzRfCmx4ebpyn8PifawCJ3qpeSggRDS3Aj qOq3IV7+NGJoKPEWVYlJ9ggdETJQkrvAHbIU8HMFb08ZOA/e4qCVo2VA0Ml8Yjtp WXOdYSntc76Yl0ZHYgAHlgd6JEfEMcfTFVZpZHVTSC3e+BhZVOUw4D8M1g== -----END CERTIFICATE----- subject=CN = *.take-eats.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4455 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 18F52DB035AF6A4658BCA871AA00C0AF3A763FB63978EBDACED64D10D77CF3D9 Session-ID-ctx: Master-Key: E60949B876E8A0288B3E86B1A29D4D05AE1E0D7B81A9050F2A788A12F28CED70744B709C834110C7944410A4DBD005BF PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 50392 (seconds) TLS session ticket: 0000 - 01 1b 5c b3 ef 58 0c e5-47 f1 f9 46 50 5c 84 06 ..\..X..G..FP\.. 0010 - 3a c4 1f 81 87 d2 03 a3-66 22 ed 6d 66 c6 7b c7 :.......f".mf.{. 0020 - eb 3e f1 88 5d 7e f5 46-6f 22 bb 54 d8 0f 95 66 .>..]~.Fo".T...f 0030 - ec ef 23 41 a9 92 90 e9-57 90 64 a6 91 c0 ad 9b ..#A....W.d..... 0040 - ff 35 47 79 a4 48 ab e9-a9 c7 bd b1 f1 a5 22 45 .5Gy.H........"E 0050 - 28 e8 44 46 31 26 d0 de-fa 07 98 72 97 de f7 f4 (.DF1&.....r.... 0060 - 77 30 24 00 2b 4f 5f 32-b3 15 d9 a1 66 b0 9e 02 w0$.+O_2....f... 0070 - 77 b8 4f 85 5f 59 fa ca-47 d6 71 36 d0 6c 53 1f w.O._Y..G.q6.lS. 0080 - 98 c8 9b c5 51 9b 86 e8-59 31 ....Q...Y1 Start Time: 1767222607 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
takutpl.take-eats.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.