Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://test.ebisu-womens.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=test.ebisu-womens.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=test.ebisu-womens.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=test.ebisu-womens.jp
And you can
check your domain name
.
#
Certificate of
test.ebisu-womens.jp
{ "serial": "02CD43430CA934A7C13D77ACA721F8C8", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "test.ebisu-womens.jp", "port": 443, "subjectAltName": "DNS:*.ebisu-womens.jp, DNS:ebisu-womens.jp", "is_valid": true, "CA": "DigiCert Inc", "updated_at": "2024/08/19 09:00:00", "expires_at": "2025/08/27 08:59:59", "today": "2024/11/21 15:21:53", "UTC": { "updated_at": "2024-08-19T00:00:00Z", "expires_at": "2025-08-26T23:59:59Z", "today": "2024-11-21T06:21:53Z" }, "remaining_days": 278 }
#
OCSP response of
test.ebisu-womens.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.ebisu-womens.jp i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 19 00:00:00 2024 GMT; NotAfter: Aug 26 23:59:59 2025 GMT 1 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 2 12:24:33 2017 GMT; NotAfter: Nov 2 12:24:33 2027 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIQAs1DQwypNKfBPXespyH4yDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZSYXBpZFNTTCBUTFMgUlNBIENBIEcx MB4XDTI0MDgxOTAwMDAwMFoXDTI1MDgyNjIzNTk1OVowHDEaMBgGA1UEAwwRKi5l YmlzdS13b21lbnMuanAwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDM K9baoeKObTfHFiev/rBvdXKcvh3cHgUBmydVRR+MnFh3n/V507KY3VmcQ6vACkhu wDatUMnqSupTCOID0RVUrnz1Qg+fw4/46zLbtrcR9ca2tE7YQZsZUzXj+iOncDet b2f3jC6MuU4+rsW6j8Yx5JURipffeSLcJqucAeVOAxQCZgauqtmeScVV7t6q/6ku qwmqbeDMfvchM1pz751HP7PAUJvfec1ME6CG4HkNd/wukUbMdgWYu9V/C191A0TR ZeTUOUZwp5NruRy1NWc4G1b0kj4ORBvyULneudwg5fNjxkLesj0Fph5R7iWWkigP 9872QWgs5LaFz7oC6vcUdWn9NTMNlT/bOKM4/feYzWD1ESvwMAJk8o8wtV+G7nZk NnVCHFplwj+FnTkJmhcfLPRv5lMAm5B8Ozh7GDZCnTVk9/+VVMweWT4xCGSTPYqF JBEOzovW3veh7AVWiIB/NBfwxNwx3C90LUqu7TAixd31OSjo7e72rYVex/OSHDZA UJ7geUg6HMei6wXN4F8e2z1JlPMfA+Mu9mZeT/Ggp3LzHzqZ0TMSyC6XEmKK84lg dcUwBGbWKWq0OOQh75m29Xnm4D8tB25dqw+qaQWASK5Mbib6qFEHhLTqpZ9dhJLK 4fhKEjp7BEd28sDiSbaITTrlLBkv0nYJTV6TGtwT5wIDAQABo4IDLDCCAygwHwYD VR0jBBgwFoAUDNtsgkkPSmcKuBTuesRIUojrVjgwHQYDVR0OBBYEFO20CmBcaloy IMf1udGBt3lglzlfMC0GA1UdEQQmMCSCESouZWJpc3Utd29tZW5zLmpwgg9lYmlz dS13b21lbnMuanAwPgYDVR0gBDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYb aHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0 cDovL2NkcC5yYXBpZHNzbC5jb20vUmFwaWRTU0xUTFNSU0FDQUcxLmNybDB2Bggr BgEFBQcBAQRqMGgwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMucmFwaWRzc2wu Y29tMD4GCCsGAQUFBzAChjJodHRwOi8vY2FjZXJ0cy5yYXBpZHNzbC5jb20vUmFw aWRTU0xUTFNSU0FDQUcxLmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIE AgSCAW8EggFrAWkAdwDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAA AZFou5ydAAAEAwBIMEYCIQC4LRdUjlV5DAJBUJxDftbsY1q+7SepVhcCa60lEmZC TgIhAKRn3m1c2f2EPhkBZ4mbzhmT5icNyV4v3ptzvr5ofW7CAHUA5tIxY0B3jMEQ QQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGRaLucdAAABAMARjBEAiBj6/pLZ/Rp eDAvCwlzegny8eMFGww7M34yAsdcZ1nx7QIgUJJeVrn9A0qSwki8lKND83NHTsjp rY/7wNewBMqn5LQAdwDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAA AZFou5xCAAAEAwBIMEYCIQDiW0cF45wALK5LKqU+/eEn6J/lZncDzkSlYO0Aa/+q zgIhAOk/BcYSS4Q/4KEBWOuz+PiFqlOoSOhom5m8e/j8txlVMA0GCSqGSIb3DQEB CwUAA4IBAQB++ZPHpZGAuxVihJ+pP8Fgv+fAR79AlaEpGOu+XOwmNwQh0WpGgRAb YUnr9+ezmOtIZuh9NGWQ+qO4L2kTuPGfijplrLiOTltHIIxd3VTDCEei47nAsp84 9XwOmeR750Q510ap2LJcW0/wRLsfbNzPiI6Dm/5SCMqRAqcLrwq9rJ/kdflyIbt2 VLa8AwWxtx+sk/8uOZjqofp+imKEjLiXm2WDJbbrEvBEQ15QuYM4AToLBBHe5K57 uoNIBzme+C5C6uMdOisPikH86lBZ8APkUNFYrP5YDHV+DbK6UaQhbpn2gZ0zHLEp w36YDl6PafdtjhXLD4OWkQT3aBW6ueRZ -----END CERTIFICATE----- subject=CN = *.ebisu-womens.jp issuer=C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4020 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 4096 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: C4823FD1EF6CED84544A97A73EC63B869D54717D0A7F2CC2E13B55984F0B016F Session-ID-ctx: Master-Key: D4E582CC7F2502E7E2F04972105488EAFBFC3472CE624CBF6905E8F448E54D956FD27FBA5B42DD794B6D09DD1ED54D3E PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 8e 7c db 97 fc 16 f9 8d-e9 fc 84 3d 32 bd 4b df .|.........=2.K. 0010 - c6 63 6a 21 b3 51 95 b4-58 43 2e 40 bf 5c 94 a7 .cj!.Q..XC.@.\.. 0020 - 26 e0 53 58 3a 52 ae 37-d1 85 02 4f 09 a7 f3 66 &.SX:R.7...O...f 0030 - 39 55 97 f4 c3 79 f1 9b-1f 30 ff 61 e9 64 e2 d2 9U...y...0.a.d.. 0040 - ff fa d4 f6 2b a6 d6 38-33 cd e9 78 fd 7a b9 40 ....+..83..x.z.@ 0050 - 68 fc 6d 00 57 69 92 3f-76 e7 99 84 99 6c bd 0b h.m.Wi.?v....l.. 0060 - 19 66 d3 8b 5e ff 83 c2-bd 48 e6 af b5 82 69 ba .f..^....H....i. 0070 - 17 cb 68 78 e6 4c 7c 42-b7 44 94 f0 cf b7 b3 65 ..hx.L|B.D.....e 0080 - 89 4e 3d d7 f4 43 37 b2-d2 0d b3 e4 24 5e 63 aa .N=..C7.....$^c. 0090 - dc 57 a8 e5 f3 3e 45 af-33 c2 bb 20 1b 38 c1 2f .W...>E.3.. .8./ 00a0 - 4e 62 5f 26 52 8e a5 f9-f1 58 c3 76 5e c9 95 cb Nb_&R....X.v^... 00b0 - 6c ce 7b 14 b7 4c c5 a6-2e 44 37 c3 66 65 ea ee l.{..L...D7.fe.. 00c0 - 1f 4e bf 63 d9 01 c0 86-bd f4 fc 9b fd de 4d 7d .N.c..........M} Start Time: 1732170113 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
test.ebisu-womens.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.