Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://thisisyr.com
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=thisisyr.com
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=thisisyr.com
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=thisisyr.com
And you can
check your domain name
.
#
Certificate of
thisisyr.com
{ "serial": "CD3E2E5C3099F6490E559A0124127D74", "OCSP_serial": "CD3E2E5C3099F6490E559A0124127D74", "OCSP_cert_status": "good", "OCSP_this_update": "May 7 00:23:09 2025 GMT", "OCSP_next_update": "May 13 23:23:08 2025 GMT", "domainName": "thisisyr.com", "port": 443, "subjectAltName": "DNS:thisisyr.com, DNS:*.thisisyr.com", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/04/22 05:03:34", "expires_at": "2025/07/21 06:02:14", "today": "2025/05/09 22:35:26", "UTC": { "updated_at": "2025-04-21T20:03:34Z", "expires_at": "2025-07-20T21:02:14Z", "today": "2025-05-09T13:35:26Z" }, "remaining_days": 72 }
#
OCSP response of
thisisyr.com
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: May 7 00:23:09 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: CD3E2E5C3099F6490E559A0124127D74 Cert Status: good This Update: May 7 00:23:09 2025 GMT Next Update: May 13 23:23:08 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:46:02:21:00:c1:e9:a9:03:ef:67:8a:4d:64:21:63:39:a5: 0f:88:d3:62:d7:ce:46:a9:17:41:95:fb:0f:78:ef:50:99:f3: 5a:02:21:00:fb:87:f5:d0:a6:55:ba:52:ba:42:c1:53:27:3a: 77:49:74:6e:c7:71:69:b6:e0:6a:4f:ac:be:0e:4b:13:63:4a ====================================== --- Certificate chain 0 s:CN = thisisyr.com i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Apr 21 20:03:34 2025 GMT; NotAfter: Jul 20 21:02:14 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDqTCCA0+gAwIBAgIRAM0+LlwwmfZJDlWaASQSfXQwCgYIKoZIzj0EAwIwOzEL MAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoG A1UEAxMDV0UxMB4XDTI1MDQyMTIwMDMzNFoXDTI1MDcyMDIxMDIxNFowFzEVMBMG A1UEAxMMdGhpc2lzeXIuY29tMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEOKqD /0ltTrafCwdKtG8LpfRGK459Um+dMTobft0s/nj6PSdNw+eFDqAuG+mYQYcHmBSV pWrIDc5zNApawyEwNqOCAlYwggJSMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAK BggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS5+/p0of7tfsnnPih6 5ohcIRtcITAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEF BQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL3pU NDAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAnBgNVHREE IDAeggx0aGlzaXN5ci5jb22CDioudGhpc2lzeXIuY29tMBMGA1UdIAQMMAowCAYG Z4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dlMS92 UmJkT0ZMYXJkby5jcmwwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgB9WR4S4Xgq exxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAZZaKd6uAAAEAwBHMEUCICnXmvzr ceTX6B7n0GrFoLkL+n2Mgoh9bVixnmhvJJ4RAiEA0mj3strRE1gQjo8rlB+kp9p/ NAMdBxBzseyZh1iVs7EAdwDd3Mo0ldfhFgXnlTL6x5/4PRxQ39sAOhQSdgosrLvI KgAAAZZaKd0TAAAEAwBIMEYCIQCwqRDoL1U2rbY91quSaIvbTAmgPXvlz1doPRed G8wfOwIhALgDfHzf+4UUBES9Hk+hgqAvzQe1+Dh9Wlao2MTZwSAVMAoGCCqGSM49 BAMCA0gAMEUCIBk/cJtSATACh2umtk3UQru1Z2HyInIpD4cd3CjjDTdoAiEAuwUh COYTCsCrax7z+qqlbrhFkaRNU3k9F6CMtl1gqMc= -----END CERTIFICATE----- subject=CN = thisisyr.com issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3118 bytes and written 403 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
thisisyr.com
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.