Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://tokyo.take-eats.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=tokyo.take-eats.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=tokyo.take-eats.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=tokyo.take-eats.jp
And you can
check your domain name
.
#
Certificate of
tokyo.take-eats.jp
{ "serial": "0CC13EFDE2C33B157D7658FC049D9608", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "tokyo.take-eats.jp", "port": 443, "subjectAltName": "DNS:*.take-eats.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2026/03/02 09:00:00", "expires_at": "2026/09/16 08:59:59", "today": "2026/04/01 11:56:37", "UTC": { "updated_at": "2026-03-02T00:00:00Z", "expires_at": "2026-09-15T23:59:59Z", "today": "2026-04-01T02:56:37Z" }, "remaining_days": 167 }
#
OCSP response of
tokyo.take-eats.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.take-eats.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M04 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Mar 2 00:00:00 2026 GMT; NotAfter: Sep 15 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M04 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:35 2022 GMT; NotAfter: Aug 23 22:26:35 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgIQDME+/eLDOxV9dlj8BJ2WCDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTA0MB4XDTI2MDMwMjAwMDAwMFoXDTI2MDkxNTIzNTk1OVowGTEX MBUGA1UEAwwOKi50YWtlLWVhdHMuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDb7lrA6cvQGWkIaO4u68cXkzzG96TaUGykFIlsFQzab52jZ8Nc+9t+ DHe9AmuXAZ5Bvy2CDjRF4JehYVtuKZ7nlMjMv0kSMXiDC1geOKunvILar1Xo2LJB D7+1w9GmVMVupDWafAoq//57byFhj3cjAG5ChprRtKSl/Ws6w2BBz6w+K7aXRGbf RZGo5dt9xfYh0mluwc2RjAoc4jorSot/c6xmm5BBRxFLNx1gYkMKtEMp37YpBQeL SU6dCgI3jTARqtNyk14IunyRrwgTuabWfIy+zrubzBoFxozS4LV0vlm8tq7UW795 fu7FNB4z8nKy5YWudY8U3elBHX277Yy5AgMBAAGjggLcMIIC2DAfBgNVHSMEGDAW gBQfUpJhVoJUf4Fm2B09CqoyXIfdCDAdBgNVHQ4EFgQUTV62kpU3RN5IdJCom5mK C+ca/dAwGQYDVR0RBBIwEIIOKi50YWtlLWVhdHMuanAwEwYDVR0gBAwwCjAIBgZn gQwBAgEwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMDsGA1Ud HwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDQuYW1hem9udHJ1c3QuY29tL3Iy bTA0LmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3Nw LnIybTA0LmFtYXpvbnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5y Mm0wNC5hbWF6b250cnVzdC5jb20vcjJtMDQuY2VyMAwGA1UdEwEB/wQCMAAwggF9 BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB1AMIxfldFGaNF7n843rKQQevHwiFaIr9/ 1bWtdprZDlLNAAABnKv2qUsAAAQDAEYwRAIgezGThWkZJpvYFsKb7jYIoC0N26FN WGnkxMDl2Dgh+QACICemPgzkUJjTldkw96dw6XY1lpVWXo0J/OJFGhyySiQ4AHYA 1219ENGn9XfCx+lf1wC/+YLJM1pl4dCzAXMXwMjFaXcAAAGcq/apSwAABAMARzBF AiBCQML8zDumxov4sIpzxO4z3sHTF4Jv/xjmQJD8WaNFuwIhAM/DWOcI60LAyFtA q8NKgQEUk7phNWQgJtM9dfA40JtRAHYAlE5Dh/rswe+B8xkkJqgYZQHH0184AgE/ cmd9VTcuGdgAAAGcq/apWAAABAMARzBFAiB+6UNTL/e1KDHfq7i5Uot8uIN2wTXA Sy2FwVPsKUHINwIhAIFWi0rzqXaq3sb9VQ72O2BN95BXZyNH7wEzbNCYV8WjMA0G CSqGSIb3DQEBCwUAA4IBAQC1eO5XKEkQsNbChdygFTqZWXnw1adt18PpomzXRoXj 5vPelVTAqbmbUl9i6tjeQZRc7mVh5YuyE6owF3aL+L72spolEZ4/bxhLUGtJHKBw i31HCAKDBpPy/PCWVcz6jbIYWi51PAfYvKZy7ezGEE1mtRRWsv6z8YoN/Gr7vi8x 2ebJmK44/CwiZn0vKgoHnFmB7qULZzzmcyIlEiD1rT8QKooMafUWPys9XZoKl5dV 96CtDHiUM/HPnC9IMuZNwRc6+o/4/Szj9pTG2vUp7HCumGdJNj1QkuOZKbxNvh3M Mlx9FRv98ol0x5CMsyoAkj/mQNoWVwd6Nrn9gvyQA9ia -----END CERTIFICATE----- subject=CN = *.take-eats.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M04 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4445 bytes and written 455 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: D24B7CF4671F5B0A3A17CA3EB54DC9A8E10B6BD72DB846BC45269F1316D7DCCA Session-ID-ctx: Master-Key: 75DFBB7966E3BDBB30E9D2489DD6F7243CC0C0F95825171C3694306F6B70BCF2F58A446A02744FC13585F0215D2E0EF3 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 69789 (seconds) TLS session ticket: 0000 - 01 94 2c f6 99 37 83 c4-b2 56 ae 02 ea 7d fd 6f ..,..7...V...}.o 0010 - 48 b1 dc 19 e5 cc b6 a0-bb d5 e1 48 b5 2e 57 40 H..........H..W@ 0020 - de e6 23 87 42 31 43 b4-7b dc ab b0 29 71 12 a5 ..#.B1C.{...)q.. 0030 - 81 83 b3 fc b5 8a 3c 18-4e bf a1 f6 bc 5d bd 51 ......<.N....].Q 0040 - 79 03 03 35 e7 ad f4 eb-18 a4 77 5b 19 a1 c1 d1 y..5......w[.... 0050 - 4b d3 ad 7d 8c 0e 23 dc-7f f8 dd 88 a5 57 b0 c7 K..}..#......W.. 0060 - 64 6d df 4a c7 72 66 80-f5 d2 41 73 48 39 75 4b dm.J.rf...AsH9uK 0070 - 24 77 ce b9 1a 43 7b d2-18 bf 78 11 0e 27 dc 61 $w...C{...x..'.a 0080 - ac 50 2e 5f 49 66 53 89-ea 5f .P._IfS.._ Start Time: 1775012197 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
tokyo.take-eats.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.