Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.casuca.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.casuca.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.casuca.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.casuca.jp
And you can
check your domain name
.
#
Certificate of
www.casuca.jp
{ "serial": "2B5BCEC092B5462727B95DD6", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.casuca.jp", "port": 443, "subjectAltName": "DNS:www.casuca.jp, DNS:casuca.jp", "is_valid": true, "CA": "GlobalSign nv-sa", "updated_at": "2024/11/21 03:18:00", "expires_at": "2024/12/27 15:32:35", "today": "2024/11/21 15:58:39", "UTC": { "updated_at": "2024-11-20T18:18:00Z", "expires_at": "2024-12-27T06:32:35Z", "today": "2024-11-21T06:58:39Z" }, "remaining_days": 35 }
#
OCSP response of
www.casuca.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = www.casuca.jp i:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 20 18:18:00 2024 GMT; NotAfter: Dec 27 06:32:35 2024 GMT 1 s:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 i:OU = GlobalSign Root CA - R6, O = GlobalSign, CN = GlobalSign a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 19 03:43:25 2023 GMT; NotAfter: Jul 19 00:00:00 2026 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgIMK1vOwJK1RicnuV3WMA0GCSqGSIb3DQEBCwUAMFUxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSswKQYDVQQDEyJH bG9iYWxTaWduIEdDQyBSNiBBbHBoYVNTTCBDQSAyMDIzMB4XDTI0MTEyMDE4MTgw MFoXDTI0MTIyNzA2MzIzNVowGDEWMBQGA1UEAxMNd3d3LmNhc3VjYS5qcDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPie0GI8TuTPYozJQEHfdFAWr0Ic T7T4rp5b1/mbCnsUCtqxQnIWEiPlTtOpAmuEKL8IgBHApq4cFQM8R5tsKfjn/Ccz dxh5BuOCpfebSkPEZKXi2r1c2bDlChuIFmiVeaRWk/YcIE5Rdbl7sVMrdxCt2Aaq UF+pC43RgimrY0F/77wpVy/pNdQRbiNYiTnoOEBXnLAsNzMLIEE4Vqh4UsX0gwtB YLNjD3XCWToySKGTLTTDTXDaVMZzf+f/gCk0/VPA8zPe+lLksVdXCEJswk0tOwq4 IH80QLP/I2JfkTFiRG+C/yoU3DEho9CbWdTMdvDGbzUKm/7xr1+30+lw2rUCAwEA AaOCA2MwggNfMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMIGZBggrBgEF BQcBAQSBjDCBiTBJBggrBgEFBQcwAoY9aHR0cDovL3NlY3VyZS5nbG9iYWxzaWdu LmNvbS9jYWNlcnQvZ3NnY2NyNmFscGhhc3NsY2EyMDIzLmNydDA8BggrBgEFBQcw AYYwaHR0cDovL29jc3AuZ2xvYmFsc2lnbi5jb20vZ3NnY2NyNmFscGhhc3NsY2Ey MDIzMFcGA1UdIARQME4wCAYGZ4EMAQIBMEIGCisGAQQBoDIKAQMwNDAyBggrBgEF BQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wRAYD VR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9nc2djY3I2 YWxwaGFzc2xjYTIwMjMuY3JsMCMGA1UdEQQcMBqCDXd3dy5jYXN1Y2EuanCCCWNh c3VjYS5qcDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgw FoAUvQW384qTPHPLefoPhRKhd5YYkXQwHQYDVR0OBBYEFFbfq45MG9Bh0+iGLt86 9S+VK/IvMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgA/F0tP1yJHWJQdZRyE vg0S7ZA3fx+FauvBvyiF7PhkbgAAAZNKy618AAAEAwBHMEUCIQDahp1rH3Dj+sdI NqbioUTrt8NRDXIdr8wL4Ca5Rb3zbQIgPjl1Za1Ahyi4ADQyVxMOaa2fjfTHsz4k LkMwLkXGffwAdgDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAZNK y61sAAAEAwBHMEUCIFhoQ4/AAVcIRGUk4JmflKHpOFJi9JGGMMCmFcNkcsPXAiEA 4g6AdnxwyTEDUXN23NccOFkywS1SJBpovG6Gll/PgTcAdgB2/4g/Crb7lVHCYcz1 h7o0tKTNuyncaEIKn+ZnTFo6dAAAAZNKy62gAAAEAwBHMEUCIExS6DGUUUbJTZ0j If6UtRSWggtAgwAgdT7sYwD7KwfCAiEAsd0Z9WRLrWiZuIy0lSKdBT9qT9fvdvrf 8SDslF8t/S4wDQYJKoZIhvcNAQELBQADggEBAKueZdQIevsL5thwYivmn1io6nJy H5F5AxyhvE0XnIUE2TqF6ivqqplFqUAVEQ96IzRT2+znOKX2djv6XxIfcJoRMTAH zq3t1k7r2T9Od+8VZttb8Nk7eeOREd1WcKCCJd7ZgUmsyTo8z9OWrZWlgchQYBnN pwx0atpMm3xgiCJ+6ZmqfN6Z32FaovOfAN+Y0uAMBtEFRQ3Mn9HghEETN5nAjBGs +A/54sf0PhhCo9Z/2NPUn+dHdudJ574b7hg/OUoEQek0IvaDrsPED/o1xqu9TzVz M1cnGopU+pI5kijRu3KQSWBroQDg1ZNdhw9cxZoNIoOliT4s7kzNaC9m7mc= -----END CERTIFICATE----- subject=CN = www.casuca.jp issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3716 bytes and written 417 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: 1ED489EC57FD457C818882BFB8C91871E7B6269EB48ADA9AAF71D1C9B4DA61F9 Session-ID-ctx: Master-Key: CB688DC844394A1B8AF1E8462798B4FF11A20E1D7FCEDFCC2C5AAF6AF51E8F3A15B21A1B85EC3D19DD3CE842100CEB41 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 13 03 10 d8 1b 75 cd 62-67 69 d7 82 ff 1f 5a 94 .....u.bgi....Z. 0010 - 6a 33 7e 22 64 33 2d 2a-7e 4d cc c3 01 55 0f e3 j3~"d3-*~M...U.. 0020 - e9 8f 78 4d 90 60 1a 8c-5f 52 92 d1 ec 3f 60 08 ..xM.`.._R...?`. 0030 - e7 4c 5e e8 42 6a 41 81-da e2 7b 38 41 f0 c9 a3 .L^.BjA...{8A... 0040 - 9c 96 32 a8 cf c4 ab b6-b5 46 f5 31 f6 12 58 3e ..2......F.1..X> 0050 - e3 fd 30 c8 31 f6 57 3a-95 ca ca bd 0b b9 49 b4 ..0.1.W:......I. 0060 - a1 1c c8 15 d9 cb 8e db-05 7b 62 01 c8 69 dc c7 .........{b..i.. 0070 - d9 87 43 1b fe 6d 7b 1d-b2 99 fc 6e 6d af 9f 41 ..C..m{....nm..A 0080 - 4c a9 db 15 d5 1e bf 8e-53 74 ff 9b ba f7 73 24 L.......St....s$ 0090 - 42 89 eb 2c 19 cf 2a fb-a5 7c 7e 79 f8 87 59 55 B..,..*..|~y..YU 00a0 - c9 28 99 06 44 b9 59 61-9a e5 9e 10 8c ca af f0 .(..D.Ya........ 00b0 - e4 c0 f2 b8 bf 13 68 57-df 4d 82 1c 44 cd 85 5f ......hW.M..D.._ Start Time: 1732172319 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.casuca.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.