Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://test.ebisu-womens.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=test.ebisu-womens.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=test.ebisu-womens.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=test.ebisu-womens.jp
And you can
check your domain name
.
#
Certificate of
test.ebisu-womens.jp
{ "serial": "02CD43430CA934A7C13D77ACA721F8C8", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "test.ebisu-womens.jp", "port": 443, "subjectAltName": "DNS:*.ebisu-womens.jp, DNS:ebisu-womens.jp", "is_valid": true, "CA": "DigiCert Inc", "updated_at": "2024/08/19 09:00:00", "expires_at": "2025/08/27 08:59:59", "today": "2025/07/13 11:39:42", "UTC": { "updated_at": "2024-08-19T00:00:00Z", "expires_at": "2025-08-26T23:59:59Z", "today": "2025-07-13T02:39:42Z" }, "remaining_days": 44 }
#
OCSP response of
test.ebisu-womens.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.ebisu-womens.jp i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 19 00:00:00 2024 GMT; NotAfter: Aug 26 23:59:59 2025 GMT 1 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 2 12:24:33 2017 GMT; NotAfter: Nov 2 12:24:33 2027 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIHNDCCBhygAwIBAgIQAs1DQwypNKfBPXespyH4yDANBgkqhkiG9w0BAQsFADBg MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMR8wHQYDVQQDExZSYXBpZFNTTCBUTFMgUlNBIENBIEcx MB4XDTI0MDgxOTAwMDAwMFoXDTI1MDgyNjIzNTk1OVowHDEaMBgGA1UEAwwRKi5l YmlzdS13b21lbnMuanAwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDM K9baoeKObTfHFiev/rBvdXKcvh3cHgUBmydVRR+MnFh3n/V507KY3VmcQ6vACkhu wDatUMnqSupTCOID0RVUrnz1Qg+fw4/46zLbtrcR9ca2tE7YQZsZUzXj+iOncDet b2f3jC6MuU4+rsW6j8Yx5JURipffeSLcJqucAeVOAxQCZgauqtmeScVV7t6q/6ku qwmqbeDMfvchM1pz751HP7PAUJvfec1ME6CG4HkNd/wukUbMdgWYu9V/C191A0TR ZeTUOUZwp5NruRy1NWc4G1b0kj4ORBvyULneudwg5fNjxkLesj0Fph5R7iWWkigP 9872QWgs5LaFz7oC6vcUdWn9NTMNlT/bOKM4/feYzWD1ESvwMAJk8o8wtV+G7nZk NnVCHFplwj+FnTkJmhcfLPRv5lMAm5B8Ozh7GDZCnTVk9/+VVMweWT4xCGSTPYqF JBEOzovW3veh7AVWiIB/NBfwxNwx3C90LUqu7TAixd31OSjo7e72rYVex/OSHDZA UJ7geUg6HMei6wXN4F8e2z1JlPMfA+Mu9mZeT/Ggp3LzHzqZ0TMSyC6XEmKK84lg dcUwBGbWKWq0OOQh75m29Xnm4D8tB25dqw+qaQWASK5Mbib6qFEHhLTqpZ9dhJLK 4fhKEjp7BEd28sDiSbaITTrlLBkv0nYJTV6TGtwT5wIDAQABo4IDLDCCAygwHwYD VR0jBBgwFoAUDNtsgkkPSmcKuBTuesRIUojrVjgwHQYDVR0OBBYEFO20CmBcaloy IMf1udGBt3lglzlfMC0GA1UdEQQmMCSCESouZWJpc3Utd29tZW5zLmpwgg9lYmlz dS13b21lbnMuanAwPgYDVR0gBDcwNTAzBgZngQwBAgEwKTAnBggrBgEFBQcCARYb aHR0cDovL3d3dy5kaWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwPwYDVR0fBDgwNjA0oDKgMIYuaHR0 cDovL2NkcC5yYXBpZHNzbC5jb20vUmFwaWRTU0xUTFNSU0FDQUcxLmNybDB2Bggr BgEFBQcBAQRqMGgwJgYIKwYBBQUHMAGGGmh0dHA6Ly9zdGF0dXMucmFwaWRzc2wu Y29tMD4GCCsGAQUFBzAChjJodHRwOi8vY2FjZXJ0cy5yYXBpZHNzbC5jb20vUmFw aWRTU0xUTFNSU0FDQUcxLmNydDAMBgNVHRMBAf8EAjAAMIIBfwYKKwYBBAHWeQIE AgSCAW8EggFrAWkAdwDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvIKgAA AZFou5ydAAAEAwBIMEYCIQC4LRdUjlV5DAJBUJxDftbsY1q+7SepVhcCa60lEmZC TgIhAKRn3m1c2f2EPhkBZ4mbzhmT5icNyV4v3ptzvr5ofW7CAHUA5tIxY0B3jMEQ QQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGRaLucdAAABAMARjBEAiBj6/pLZ/Rp eDAvCwlzegny8eMFGww7M34yAsdcZ1nx7QIgUJJeVrn9A0qSwki8lKND83NHTsjp rY/7wNewBMqn5LQAdwDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAA AZFou5xCAAAEAwBIMEYCIQDiW0cF45wALK5LKqU+/eEn6J/lZncDzkSlYO0Aa/+q zgIhAOk/BcYSS4Q/4KEBWOuz+PiFqlOoSOhom5m8e/j8txlVMA0GCSqGSIb3DQEB CwUAA4IBAQB++ZPHpZGAuxVihJ+pP8Fgv+fAR79AlaEpGOu+XOwmNwQh0WpGgRAb YUnr9+ezmOtIZuh9NGWQ+qO4L2kTuPGfijplrLiOTltHIIxd3VTDCEei47nAsp84 9XwOmeR750Q510ap2LJcW0/wRLsfbNzPiI6Dm/5SCMqRAqcLrwq9rJ/kdflyIbt2 VLa8AwWxtx+sk/8uOZjqofp+imKEjLiXm2WDJbbrEvBEQ15QuYM4AToLBBHe5K57 uoNIBzme+C5C6uMdOisPikH86lBZ8APkUNFYrP5YDHV+DbK6UaQhbpn2gZ0zHLEp w36YDl6PafdtjhXLD4OWkQT3aBW6ueRZ -----END CERTIFICATE----- subject=CN = *.ebisu-womens.jp issuer=C = US, O = DigiCert Inc, OU = www.digicert.com, CN = RapidSSL TLS RSA CA G1 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4020 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 4096 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: 9026B6DB37B33C7710E1526639003E75C43102CFF85990FFA94AA121CD06E822 Session-ID-ctx: Master-Key: F20031209143D4943C6694DF5AF503003E849708AC423EABE20655B97C8CD544306EC39A13A4877BCDB61695B9D6ADE3 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 38 3a 43 20 6b 5c 73 a7-9e 18 c3 bc 42 00 e6 31 8:C k\s.....B..1 0010 - 25 93 9b 58 cc 39 57 d5-44 a5 05 1f e6 b1 3d fd %..X.9W.D.....=. 0020 - 08 12 aa c3 67 99 93 a1-a2 79 08 e9 ec 99 d6 38 ....g....y.....8 0030 - c8 75 89 14 04 fb 44 94-08 e3 08 18 52 ba b0 e8 .u....D.....R... 0040 - 9c aa 37 05 7b 00 4b dc-cf 64 b8 63 4d 11 f6 51 ..7.{.K..d.cM..Q 0050 - 63 53 10 6e ae 94 2a d8-1d 5b 74 19 98 b2 12 ba cS.n..*..[t..... 0060 - df d7 0e 78 4b c4 00 3a-51 56 54 e5 b6 94 63 ff ...xK..:QVT...c. 0070 - 88 08 81 5e 7a 53 6e 08-c0 6b 49 93 49 61 7d 99 ...^zSn..kI.Ia}. 0080 - 23 c5 1c b8 b4 1b c7 84-eb 20 4b 3b 5b fc 10 27 #........ K;[..' 0090 - dc 43 4f de 92 b7 f7 e0-a4 a4 6e bc bd 88 ea a8 .CO.......n..... 00a0 - ed 52 06 1f 42 a5 2b aa-df 62 ac ff eb dd a7 10 .R..B.+..b...... 00b0 - 5d 14 26 97 5e 84 c4 27-78 57 43 4c 5a 8f df 12 ].&.^..'xWCLZ... 00c0 - e3 3e b0 48 11 22 7d 76-7f ea 49 ca 18 84 a8 2e .>.H."}v..I..... Start Time: 1752374383 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
test.ebisu-womens.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.