Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://test.ebisu-womens.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=test.ebisu-womens.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=test.ebisu-womens.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=test.ebisu-womens.jp
And you can
check your domain name
.
#
Certificate of
test.ebisu-womens.jp
{ "serial": "02CD43430CA934A7C13D77ACA721F8C8", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "test.ebisu-womens.jp", "port": 443, "subjectAltName": "DNS:*.ebisu-womens.jp, DNS:ebisu-womens.jp", "is_valid": true, "CA": "DigiCert Inc", "updated_at": "2024/08/19 09:00:00", "expires_at": "2025/08/27 08:59:59", "today": "2025/05/09 22:53:49", "UTC": { "updated_at": "2024-08-19T00:00:00Z", "expires_at": "2025-08-26T23:59:59Z", "today": "2025-05-09T13:53:49Z" }, "remaining_days": 109 }
#
OCSP response of
test.ebisu-womens.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.ebisu-womens.jp i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 19 00:00:00 2024 GMT; NotAfter: Aug 26 23:59:59 2025 GMT 1 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 2 12:24:33 2017 GMT; NotAfter: Nov 2 12:24:33 2027 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIQAs1DQwypNKfBPXespyH4yDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZSYXBpZFNTTCBUTFMgUlNBIENBIEcx MB4XDTI0MDgxOTAwMDAwMFoXDTI1MDgyNjIzNTk1OVowHDEaMBgGA1UEAwwRKi5l YmlzdS13b21lbnMuanAwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDM K9baoeKObTfHFiev/rBvdXKcvh3cHgUBmydVRR+MnFh3n/V507KY3VmcQ6vACkhu wDatUMnqSupTCOID0RVUrnz1Qg+fw4/46zLbtrcR9ca2tE7YQZsZUzXj+iOncDet b2f3jC6MuU4+rsW6j8Yx5JURipffeSLcJqucAeVOAxQCZgauqtmeScVV7t6q/6ku qwmqbeDMfvchM1pz751HP7PAUJvfec1ME6CG4HkNd/wukUbMdgWYu9V/C191A0TR ZeTUOUZwp5NruRy1NWc4G1b0kj4ORBvyULneudwg5fNjxkLesj0Fph5R7iWWkigP 9872QWgs5LaFz7oC6vcUdWn9NTMNlT/bOKM4/feYzWD1ESvwMAJk8o8wtV+G7nZk NnVCHFplwj+FnTkJmhcfLPRv5lMAm5B8Ozh7GDZCnTVk9/+VVMweWT4xCGSTPYqF JBEOzovW3veh7AVWiIB/NBfwxNwx3C90LUqu7TAixd31OSjo7e72rYVex/OSHDZA UJ7geUg6HMei6wXN4F8e2z1JlPMfA+Mu9mZeT/Ggp3LzHzqZ0TMSyC6XEmKK84lg dcUwBGbWKWq0OOQh75m29Xnm4D8tB25dqw+qaQWASK5Mbib6qFEHhLTqpZ9dhJLK 4fhKEjp7BEd28sDiSbaITTrlLBkv0nYJTV6TGtwT5wIDAQABo4IDLDCCAygwHwYD VR0jBBgwFoAUDNtsgkkPSmcKuBTuesRIUojrVjgwHQYDVR0OBBYEFO20CmBcaloy IMf1udGBt3lglzlfMC0GA1UdEQQmMCSCESouZWJpc3Utd29tZW5zLmpwgg9lYmlz dS13b21lbnMuanAwPgYDVR0gBDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYb aHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0 cDovL2NkcC5yYXBpZHNzbC5jb20vUmFwaWRTU0xUTFNSU0FDQUcxLmNybDB2Bggr BgEFBQcBAQRqMGgwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMucmFwaWRzc2wu Y29tMD4GCCsGAQUFBzAChjJodHRwOi8vY2FjZXJ0cy5yYXBpZHNzbC5jb20vUmFw aWRTU0xUTFNSU0FDQUcxLmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIE AgSCAW8EggFrAWkAdwDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAA AZFou5ydAAAEAwBIMEYCIQC4LRdUjlV5DAJBUJxDftbsY1q+7SepVhcCa60lEmZC TgIhAKRn3m1c2f2EPhkBZ4mbzhmT5icNyV4v3ptzvr5ofW7CAHUA5tIxY0B3jMEQ QQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGRaLucdAAABAMARjBEAiBj6/pLZ/Rp eDAvCwlzegny8eMFGww7M34yAsdcZ1nx7QIgUJJeVrn9A0qSwki8lKND83NHTsjp rY/7wNewBMqn5LQAdwDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAA AZFou5xCAAAEAwBIMEYCIQDiW0cF45wALK5LKqU+/eEn6J/lZncDzkSlYO0Aa/+q zgIhAOk/BcYSS4Q/4KEBWOuz+PiFqlOoSOhom5m8e/j8txlVMA0GCSqGSIb3DQEB CwUAA4IBAQB++ZPHpZGAuxVihJ+pP8Fgv+fAR79AlaEpGOu+XOwmNwQh0WpGgRAb YUnr9+ezmOtIZuh9NGWQ+qO4L2kTuPGfijplrLiOTltHIIxd3VTDCEei47nAsp84 9XwOmeR750Q510ap2LJcW0/wRLsfbNzPiI6Dm/5SCMqRAqcLrwq9rJ/kdflyIbt2 VLa8AwWxtx+sk/8uOZjqofp+imKEjLiXm2WDJbbrEvBEQ15QuYM4AToLBBHe5K57 uoNIBzme+C5C6uMdOisPikH86lBZ8APkUNFYrP5YDHV+DbK6UaQhbpn2gZ0zHLEp w36YDl6PafdtjhXLD4OWkQT3aBW6ueRZ -----END CERTIFICATE----- subject=CN = *.ebisu-womens.jp issuer=C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4020 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 4096 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: F64C733D337C27BC7B9CFF20A50F7AFE0734CA81261AF0594436C6F55399E366 Session-ID-ctx: Master-Key: 9FB0DC57D01BDDE7AF7E3A2F44BDAD7432D2BABF3661373D1F3E1B7D51F900207760987E4CCCEBD03503549EDB0CDE78 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 8e 7c db 97 fc 16 f9 8d-e9 fc 84 3d 32 bd 4b df .|.........=2.K. 0010 - 70 61 b2 3b 53 e0 91 c5-4b 86 ff 54 af 1e f0 b9 pa.;S...K..T.... 0020 - e9 e0 d3 82 2b 0d 0d 9e-95 d4 3e 9b f8 45 d2 2c ....+.....>..E., 0030 - 40 21 99 a8 2d 29 81 d8-74 e1 b5 43 07 78 ca a8 @!..-)..t..C.x.. 0040 - a5 f1 90 43 5d d4 10 0d-6b 3c 48 dc df da 6e 10 ...C]...k<H...n. 0050 - 32 44 0b 4a 3b 7c 19 13-f0 c9 99 69 cc a2 91 4b 2D.J;|.....i...K 0060 - 9d f2 44 f9 52 d4 a9 d0-9b d7 d4 f6 2a c9 1b d4 ..D.R.......*... 0070 - c9 12 47 35 12 4c ab c0-42 14 21 0b 56 0a 99 41 ..G5.L..B.!.V..A 0080 - 66 83 f4 40 96 41 4c f8-cc 01 df 1f 45 cc 57 61 f..@.AL.....E.Wa 0090 - d7 4c 1d 9e 1a 14 f1 cd-11 fd 10 98 f0 49 7b 40 .L...........I{@ 00a0 - 51 aa a0 82 30 a4 e0 30-07 77 b8 ea dc 82 ff 83 Q...0..0.w...... 00b0 - 96 93 19 ce d0 ba 56 29-eb 93 d7 4f c1 89 8e 3c ......V)...O...< 00c0 - 41 03 a3 d7 c2 29 71 79-44 5c fb 27 4d 4f 62 48 A....)qyD\.'MObH Start Time: 1746798829 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
test.ebisu-womens.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.