Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.casuca.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.casuca.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.casuca.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.casuca.jp
And you can
check your domain name
.
#
Certificate of
www.casuca.jp
{ "serial": "57E6BC87776898A2D6606DAA", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.casuca.jp", "port": 443, "subjectAltName": "DNS:www.casuca.jp, DNS:casuca.jp", "is_valid": true, "CA": "GlobalSign nv-sa", "updated_at": "2024/04/21 03:17:54", "expires_at": "2024/05/27 15:32:35", "today": "2024/04/29 02:49:53", "UTC": { "updated_at": "2024-04-20T18:17:54Z", "expires_at": "2024-05-27T06:32:35Z", "today": "2024-04-28T17:49:53Z" }, "remaining_days": 28 }
#
OCSP response of
www.casuca.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = www.casuca.jp i:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Apr 20 18:17:54 2024 GMT; NotAfter: May 27 06:32:35 2024 GMT 1 s:C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 i:OU = GlobalSign Root CA - R6, O = GlobalSign, CN = GlobalSign a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 19 03:43:25 2023 GMT; NotAfter: Jul 19 00:00:00 2026 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgIMV+a8h3domKLWYG2qMA0GCSqGSIb3DQEBCwUAMFUxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMSswKQYDVQQDEyJH bG9iYWxTaWduIEdDQyBSNiBBbHBoYVNTTCBDQSAyMDIzMB4XDTI0MDQyMDE4MTc1 NFoXDTI0MDUyNzA2MzIzNVowGDEWMBQGA1UEAxMNd3d3LmNhc3VjYS5qcDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPie0GI8TuTPYozJQEHfdFAWr0Ic T7T4rp5b1/mbCnsUCtqxQnIWEiPlTtOpAmuEKL8IgBHApq4cFQM8R5tsKfjn/Ccz dxh5BuOCpfebSkPEZKXi2r1c2bDlChuIFmiVeaRWk/YcIE5Rdbl7sVMrdxCt2Aaq UF+pC43RgimrY0F/77wpVy/pNdQRbiNYiTnoOEBXnLAsNzMLIEE4Vqh4UsX0gwtB YLNjD3XCWToySKGTLTTDTXDaVMZzf+f/gCk0/VPA8zPe+lLksVdXCEJswk0tOwq4 IH80QLP/I2JfkTFiRG+C/yoU3DEho9CbWdTMdvDGbzUKm/7xr1+30+lw2rUCAwEA AaOCA2UwggNhMA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMIGZBggrBgEF BQcBAQSBjDCBiTBJBggrBgEFBQcwAoY9aHR0cDovL3NlY3VyZS5nbG9iYWxzaWdu LmNvbS9jYWNlcnQvZ3NnY2NyNmFscGhhc3NsY2EyMDIzLmNydDA8BggrBgEFBQcw AYYwaHR0cDovL29jc3AuZ2xvYmFsc2lnbi5jb20vZ3NnY2NyNmFscGhhc3NsY2Ey MDIzMFcGA1UdIARQME4wCAYGZ4EMAQIBMEIGCisGAQQBoDIKAQMwNDAyBggrBgEF BQcCARYmaHR0cHM6Ly93d3cuZ2xvYmFsc2lnbi5jb20vcmVwb3NpdG9yeS8wRAYD VR0fBD0wOzA5oDegNYYzaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9nc2djY3I2 YWxwaGFzc2xjYTIwMjMuY3JsMCMGA1UdEQQcMBqCDXd3dy5jYXN1Y2EuanCCCWNh c3VjYS5qcDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0jBBgw FoAUvQW384qTPHPLefoPhRKhd5YYkXQwHQYDVR0OBBYEFFbfq45MG9Bh0+iGLt86 9S+VK/IvMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdgA7U3d1Pi25gE6LMFsG /kA7Z9hPw/THvQANLXJv4frUFwAAAY78uqtnAAAEAwBHMEUCIGEgEdWa9nYViQMh PYRtagxaj9h7st9XRFuJQHpoTXbrAiEA7UJYrxMAAtVJ/ADPn2/FZUqnc8BhRxeL y4os5LFswGoAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY78 uqteAAAEAwBIMEYCIQDiJcYWvrpr/v/cAQqbn6TV4PNKr41DFe78udumSikkDwIh AOhCASUvZbcApkpecd13uCjAfLWv7H+5y7zL14mSkF/qAHcAdv+IPwq2+5VRwmHM 9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGO/LqregAABAMASDBGAiEA+zBOhQUC+sUB 1+W3UhhseeFNeDuwyWtn3x5pmzNZh3gCIQCfWGq9amlaPc5Pa/lAX6+JmHS3z1EB aKa8SKIZxCC4DjANBgkqhkiG9w0BAQsFAAOCAQEALdnh42EmFzhIhk6oFNSpW2/d F3dHie+ScSNHHEGvhb0uwWqP/vKfXAheM/JAzayxXLADn25IGt5SkPJsQG6F9dvv aRFoEHgyI09voEdRcEGBl6eIstxDzwa7Xdhcw+w31c83xjqvkTyHCKv/WgmQlOhH o+uX/nz+DFxyf0SBVeSgFtMa8WxaANUcF57xa+TDNWjUcRc9AM8GdORJLJ9ewlhO 8+YZe22KFYYchsZEunKukcYt5dbys4MMq9gRBoXdUdnR92PNEP5CsMLUSungcLjz VKknU3eZYc/fgDBBUQPKhzjvq7rfGZjYO9j8YA+9mLqutTB8Ot3WPJ9hUUr24Q== -----END CERTIFICATE----- subject=CN = www.casuca.jp issuer=C = BE, O = GlobalSign nv-sa, CN = GlobalSign GCC R6 AlphaSSL CA 2023 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 3718 bytes and written 417 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: 12F61C3C61DDE51061E9F8E3C809F637BF2F1A8F1097BBE36EDB0B7C62ED55CA Session-ID-ctx: Master-Key: 2C60C098F3C954D9F0DABE647DC83E2DBCAE839FE75A8F84495B60124BA5B38F50559269B5C8BA6609AE724D964661D4 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - 54 f7 ab ea 66 f7 b3 fe-8c ab b0 2e 5a de 7f c3 T...f.......Z... 0010 - 42 c3 40 e1 c1 bd 71 b3-84 60 b9 3f c1 e6 89 4f B.@...q..`.?...O 0020 - 3e 65 26 24 b2 d5 fe 7b-93 23 e1 eb 61 04 9c 43 >e&$...{.#..a..C 0030 - 2a 70 36 3c be 44 1d 2a-e5 d0 68 6b c4 ed 87 44 *p6<.D.*..hk...D 0040 - 8e f9 8b 92 94 a7 55 10-ef e3 e1 e3 b3 82 b8 bb ......U......... 0050 - 0f b7 f3 4a 13 5e b4 c6-49 4b 96 18 a4 1a 17 6f ...J.^..IK.....o 0060 - 4e 6b c1 51 d5 07 ff 55-24 64 1d 38 58 20 da 1a Nk.Q...U$d.8X .. 0070 - 84 6b 18 e6 b9 25 36 0d-72 e1 e1 d3 cd e7 1c af .k...%6.r....... 0080 - f4 b7 7e 10 bb ab 5d 35-6a 94 81 35 50 6b f8 1d ..~...]5j..5Pk.. 0090 - a7 ad 1e e7 6b 7e a6 a0-8d 5c 8c 78 dd 62 eb 67 ....k~...\.x.b.g 00a0 - fa 55 60 88 ca 3e 2b 1e-ce 15 19 96 e7 66 35 a8 .U`..>+......f5. 00b0 - 7d 2b 48 7d ba 50 4b a3-d1 23 be 1f 64 13 fd a6 }+H}.PK..#..d... Start Time: 1714326593 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.casuca.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.