Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://test.ebisu-womens.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=test.ebisu-womens.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=test.ebisu-womens.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=test.ebisu-womens.jp
And you can
check your domain name
.
#
Certificate of
test.ebisu-womens.jp
{ "serial": "05A6AE61077AB906E8B8E57D4B521E0C", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "test.ebisu-womens.jp", "port": 443, "subjectAltName": "DNS:*.ebisu-womens.jp, DNS:ebisu-womens.jp", "is_valid": true, "CA": "DigiCert Inc", "updated_at": "2023/08/25 09:00:00", "expires_at": "2024/08/26 08:59:59", "today": "2024/04/28 21:27:27", "UTC": { "updated_at": "2023-08-25T00:00:00Z", "expires_at": "2024-08-25T23:59:59Z", "today": "2024-04-28T12:27:27Z" }, "remaining_days": 119 }
#
OCSP response of
test.ebisu-womens.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.ebisu-womens.jp i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 25 00:00:00 2023 GMT; NotAfter: Aug 25 23:59:59 2024 GMT 1 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 2 12:24:33 2017 GMT; NotAfter: Nov 2 12:24:33 2027 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIHMTCCBhmgAwIBAgIQBaauYQd6uQbouOV9S1IeDDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZSYXBpZFNTTCBUTFMgUlNBIENBIEcx MB4XDTIzMDgyNTAwMDAwMFoXDTI0MDgyNTIzNTk1OVowHDEaMBgGA1UEAwwRKi5l YmlzdS13b21lbnMuanAwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDM K9baoeKObTfHFiev/rBvdXKcvh3cHgUBmydVRR+MnFh3n/V507KY3VmcQ6vACkhu wDatUMnqSupTCOID0RVUrnz1Qg+fw4/46zLbtrcR9ca2tE7YQZsZUzXj+iOncDet b2f3jC6MuU4+rsW6j8Yx5JURipffeSLcJqucAeVOAxQCZgauqtmeScVV7t6q/6ku qwmqbeDMfvchM1pz751HP7PAUJvfec1ME6CG4HkNd/wukUbMdgWYu9V/C191A0TR ZeTUOUZwp5NruRy1NWc4G1b0kj4ORBvyULneudwg5fNjxkLesj0Fph5R7iWWkigP 9872QWgs5LaFz7oC6vcUdWn9NTMNlT/bOKM4/feYzWD1ESvwMAJk8o8wtV+G7nZk NnVCHFplwj+FnTkJmhcfLPRv5lMAm5B8Ozh7GDZCnTVk9/+VVMweWT4xCGSTPYqF JBEOzovW3veh7AVWiIB/NBfwxNwx3C90LUqu7TAixd31OSjo7e72rYVex/OSHDZA UJ7geUg6HMei6wXN4F8e2z1JlPMfA+Mu9mZeT/Ggp3LzHzqZ0TMSyC6XEmKK84lg dcUwBGbWKWq0OOQh75m29Xnm4D8tB25dqw+qaQWASK5Mbib6qFEHhLTqpZ9dhJLK 4fhKEjp7BEd28sDiSbaITTrlLBkv0nYJTV6TGtwT5wIDAQABo4IDKTCCAyUwHwYD VR0jBBgwFoAUDNtsgkkPSmcKuBTuesRIUojrVjgwHQYDVR0OBBYEFO20CmBcaloy IMf1udGBt3lglzlfMC0GA1UdEQQmMCSCESouZWJpc3Utd29tZW5zLmpwgg9lYmlz dS13b21lbnMuanAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjA/BgNVHR8EODA2MDSgMqAwhi5odHRwOi8vY2RwLnJhcGlkc3Ns LmNvbS9SYXBpZFNTTFRMU1JTQUNBRzEuY3JsMD4GA1UdIAQ3MDUwMwYGZ4EMAQIB MCkwJwYIKwYBBQUHAgEWG2h0dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzB2Bggr BgEFBQcBAQRqMGgwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMucmFwaWRzc2wu Y29tMD4GCCsGAQUFBzAChjJodHRwOi8vY2FjZXJ0cy5yYXBpZHNzbC5jb20vUmFw aWRTU0xUTFNSU0FDQUcxLmNydDAJBgNVHRMEAjAAMIIBfwYKKwYBBAHWeQIEAgSC AW8EggFrAWkAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAYoq TfnFAAAEAwBIMEYCIQC01TrU8vvp/ZA07xye8gEnMt8i+wwcNKzco/CLg+Q7XAIh AJWNDrpXZoe5sP2UqlgapkTyD70Y/EVoPx1WRPchD/a1AHcASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGKKk35rwAABAMASDBGAiEA/pg0F3j2UkGE sDoreFMaLfycktrBfqBQhHB4anvMfO8CIQDHSsjGbMXKJpUge+VHfi7ln2zgwX3b IeiAO1affP28TwB1ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAAB iipN+XkAAAQDAEYwRAIgX4+agLzZ/ErRbe4KgcHrN/CEEvz2ZaGApTeoghlUVwUC IAhSnwEQxKU6Z3Agz4HzXvHggisj7tKYg90CBBu7A/SLMA0GCSqGSIb3DQEBCwUA A4IBAQAvsQAscmRLPd3bs7iEHnHPhsER08Y/7g4SL51BTH8jVtiml9b+MMeEjQPg QkDtcBSzP5GfZapzdwWVFnQN/pgnlf3u2jbdU7Fw69/XE+Iv3u2OIOHXKLUkIvkQ gFzR5NwLHowPaH9SuY/M/+crUmNvLyEHFEQ8xIKgwUKZA4mZ9nazmAIYxBJttAiP oHygNzu3j0GodPqedY/2MPOXZHmPx07DUyOfSAmhWdEUj5qd3AfykgrYey0YdZu5 ynOZifp3XtQF1ZHIzIvhqPX7o4tbYEvg7xRTP4j8IOlO0SWFc2q3NbAqS1+Nux8U 32VaENunIT/M4ue8lf41bMBtvXRW -----END CERTIFICATE----- subject=CN = *.ebisu-womens.jp issuer=C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4017 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 4096 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: F15F6D25A68A6FB7E0563E18BC454F68C7866A6E710762666BEE05E497D36673 Session-ID-ctx: Master-Key: 2EAF29563F669B2C8A606970F8C1D5D38595924F8F29CB77945DE84033B8B34728469A8448A10BA7566FC92B259D176A PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - b7 86 df 04 b7 2c fc 6f-a2 fc 52 56 4d 44 6f 49 .....,.o..RVMDoI 0010 - c9 15 e6 9a c0 fb bb c4-d5 84 a7 44 73 02 20 83 ...........Ds. . 0020 - 89 86 17 40 41 9a 48 22-6a b8 1e 3f cc 0e 4a 2e ...@A.H"j..?..J. 0030 - 87 c0 b9 e1 cc 4b 7e 33-6b a3 11 8b 9b 96 d0 a7 .....K~3k....... 0040 - e1 db cb a3 fa e0 b9 05-0d ce 75 38 c9 53 42 91 ..........u8.SB. 0050 - 21 d9 67 b4 98 dc 42 81-25 ef 93 ea 17 82 ba d3 !.g...B.%....... 0060 - 9d 6b b3 39 91 e7 b8 b7-ba 6a 08 75 d4 b6 1d 8e .k.9.....j.u.... 0070 - ed 3c 79 50 a9 f9 0a c8-4e 16 35 a1 f5 e5 4d 27 .<yP....N.5...M' 0080 - e9 a3 f7 fe e3 d9 c9 d7-c2 7d f7 8a 2a 77 9f 86 .........}..*w.. 0090 - 74 63 87 77 60 b1 58 d2-8f 4f 9a fe a8 56 43 42 tc.w`.X..O...VCB 00a0 - 6e 06 90 bb c5 bb c2 ee-44 0f ac 89 65 39 bf 4c n.......D...e9.L 00b0 - 19 9d 5c bb ab 79 84 a9-9a 8e 01 d5 52 46 f8 59 ..\..y......RF.Y 00c0 - 04 9c b7 9b e6 11 07 3e-7b 24 42 fe ca 06 a6 3a .......>{$B....: Start Time: 1714307247 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
test.ebisu-womens.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.