Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.circumflex.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.circumflex.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.circumflex.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.circumflex.jp
And you can
check your domain name
.
#
Certificate of
www.circumflex.jp
{ "serial": "28E4FD9D05CA0D8309ED93284E886B19", "OCSP_serial": "28E4FD9D05CA0D8309ED93284E886B19", "OCSP_cert_status": "good", "OCSP_this_update": "Dec 30 06:34:40 2025 GMT", "OCSP_next_update": "Jan 6 05:34:39 2026 GMT", "domainName": "www.circumflex.jp", "port": 443, "subjectAltName": "DNS:admin.turicleta.app, DNS:shikshasalah.in, DNS:www.followbuddha.org, DNS:lp.repair-business-school.com, DNS:aotmepisode2.ninfa.io, DNS:planodeacaomia.marcosinacio.com.br, DNS:www.sahibineulas.com, DNS:app.pharmacielivraison.fr, DNS:accident.test.tada.dev, DNS:www.shivgarjanapratishthan.com, DNS:admin.demo.doc.cr, DNS:drx.rocks, DNS:www.yogagoalsindia.com, DNS:xbg.solutions, DNS:staging4932.tasquet.app, DNS:stroller.gms.church, DNS:www.stillminute.com, DNS:newsletter.arumastudios.com, DNS:www.tseller.com.br, DNS:terrado.live, DNS:christmas.lunch-check.ch, DNS:www.wlslasher.com, DNS:bucket.mymetasoftware.com, DNS:clube.proshooters.app, DNS:bfun.app, DNS:app.acc.scheduler.quietpathtech.com, DNS:www.cameronlowegolf.com, DNS:alfaharmony.com, DNS:quinoacoin.cc, DNS:evento.rogeriossantos.com.br, DNS:www.careerconcierge.io, DNS:projects.kanaeokana.net, DNS:rikoari.com, DNS:admin-staff-payroll.basectech.site, DNS:psifernandamartins.com.br, DNS:nocacademy.bytekast.io, DNS:aessystem.com, DNS:huu.world, DNS:acemyx.com, DNS:mannerenrollment.auxswot.com, DNS:www.minimal.cards, DNS:jkoettgen.com, DNS:mtbear2022.dashport.run, DNS:fendlife.com, DNS:www.circumflex.jp, DNS:admin.coinst.io, DNS:www.electcorrect.com, DNS:compostforthehumanmind.com, DNS:www.606cloud.com, DNS:www.boonmee-recycle.cc, DNS:manager.skala.world, DNS:reeliva.com, DNS:dev.link.1timesports.com, DNS:www.gobulldogs.org, DNS:www.ibg.kr, DNS:admin.digitaltreasury.fund, DNS:lifely-app.sheep-apps.com, DNS:next.backoffice.eprogram.projects.mathematikoi.agency, DNS:www.vbresults.com, DNS:firebasetemplate.michaelwcrawford.com, DNS:www.pablorabadan.com, DNS:www.mnksoft.org, DNS:declaranet.congresoson.gob.mx, DNS:www.clariceejoao.com, DNS:event.sonarworks.com, DNS:penaltyboxiii.com, DNS:mobalpa-sfg.speakylink.com, DNS:www.fitnow.health, DNS:cam-pos-dev.cuasarly.com, DNS:www.sushisagues.com, DNS:sms.gitstel.com, DNS:stg.admin.tokei.day, DNS:stemnova.education, DNS:perkin.info, DNS:wasmerize.com, DNS:mahatvapoorn.com, DNS:x.tmos.es, DNS:call.zbigniew.me, DNS:bbuy.zajno.com, DNS:ngaji.rifkifauzi.id, DNS:www.guttracker.com, DNS:www.adtag2win.com, DNS:svippr.no, DNS:zubairmd.com, DNS:v2admin.heartlinehk.com, DNS:varahibuilder.in, DNS:xscientist.in, DNS:live.scrbrd.com, DNS:www.ourbonfire.com, DNS:wildtrip.ro, DNS:distancelearnings.in, DNS:rival-basketball.jp, DNS:vuabep.vn, DNS:navi.loogia.tech, DNS:www.newvrajsign.com, DNS:www.sparestwowheeler.com, DNS:wellbeing.solsten.io, DNS:mantraengenharia.com.br, DNS:www.annelids.io, DNS:linkscape.riskycase.in", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/12/05 13:11:14", "expires_at": "2026/03/05 14:08:01", "today": "2026/01/01 08:13:40", "UTC": { "updated_at": "2025-12-05T04:11:14Z", "expires_at": "2026-03-05T05:08:01Z", "today": "2025-12-31T23:13:40Z" }, "remaining_days": 63 }
#
OCSP response of
www.circumflex.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: C781F5FD8E88D9003C4D63A2503124A0CE23FE23 Produced At: Dec 30 06:34:40 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 12AB48B9B763DA7E2D86C3DBB3C2773B29372D5A Issuer Key Hash: C781F5FD8E88D9003C4D63A2503124A0CE23FE23 Serial Number: 28E4FD9D05CA0D8309ED93284E886B19 Cert Status: good This Update: Dec 30 06:34:40 2025 GMT Next Update: Jan 6 05:34:39 2026 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 58:5e:6a:6e:de:b6:84:05:29:d4:af:81:fb:86:09:08:1b:b9: 26:15:dc:03:78:db:97:5a:d7:5b:66:06:d7:07:54:af:ae:4e: 7b:26:b4:07:91:d2:4f:df:58:b5:e9:4e:44:b6:e3:75:cb:23: 23:03:dd:74:97:7d:f8:62:2a:32:68:6c:52:86:38:bf:91:17: 28:1e:d4:c3:f0:cf:88:1e:ec:9c:b4:67:d1:0c:49:bd:0a:df: 30:7a:43:ee:08:01:b2:86:29:42:ca:3e:4f:aa:21:0c:ef:d8: b3:5e:96:30:cd:10:ec:de:87:ac:d8:4f:f3:7f:c5:b4:39:97: 0a:43:0c:73:61:53:61:87:8f:9f:fc:c5:e5:b9:58:39:3a:ea: 27:6c:24:a2:8a:2a:ba:49:87:b6:16:19:58:a9:df:ed:db:ec: ef:fb:69:ee:30:f6:9d:0a:3e:05:61:90:3a:0b:5b:11:d9:0c: 2a:02:0d:ed:00:07:8c:78:19:1c:00:e6:4a:fa:07:09:95:6d: 82:42:cc:be:9f:bc:fc:43:f0:d3:9c:19:fb:89:a8:cc:b4:51: 1d:84:0b:e9:c4:15:12:bf:5f:52:24:af:97:c1:a7:55:5c:3d: 15:b6:02:77:80:92:36:45:9f:c2:3f:d6:1d:1c:ab:2b:45:45: 08:7a:a6:c2 ====================================== --- Certificate chain 0 s:CN = admin.turicleta.app i:C = US, O = Google Trust Services, CN = WR3 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Dec 5 04:11:14 2025 GMT; NotAfter: Mar 5 05:08:01 2026 GMT 1 s:C = US, O = Google Trust Services, CN = WR3 i:C = US, O = Google Trust Services LLC, CN = GTS Root R1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R1 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Jun 19 00:00:42 2020 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIINejCCDGKgAwIBAgIQKOT9nQXKDYMJ7ZMoTohrGTANBgkqhkiG9w0BAQsFADA7 MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQww CgYDVQQDEwNXUjMwHhcNMjUxMjA1MDQxMTE0WhcNMjYwMzA1MDUwODAxWjAeMRww GgYDVQQDExNhZG1pbi50dXJpY2xldGEuYXBwMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEArHzJbk1o9thCDPn8EBwPDxRgbYO27ytZaZr48YqRBXXFKzBh 7xok1uGfrOPiL4W9ZASsMfecoW8BcKRL67NFvqRmxWeQcamHH+SkLPui/lKpn22A JgAFY/rrFaMjI9F14W7K24sFxGx39ewcwUor1Edo701TqUuGcFXrw85IKsDInz3X EabKkfRJPZGyrLQiIkej6SVYwQ8B9M1BOvOE3m7cY7gNCOJwJmxwW2b7bU/43WrJ 2DRubSQLytkG719esH4p4AjVia+OZiEgwpYRsEQinoxv3NiFhY1oq+DU2BTJjSeM 6aZYQvVvIX/5T9tdarptYDNbiQUoyTrT22whrwIDAQABo4IKlTCCCpEwDgYDVR0P AQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFGxwJEHEGf1Kbxqb1Y+iFE4mIRDIMB8GA1UdIwQYMBaAFMeB9f2OiNkA PE1jolAxJKDOI/4jMF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDov L28ucGtpLmdvb2cvcy93cjMvS09RMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2ku Z29vZy93cjMuY3J0MIIIZgYDVR0RBIIIXTCCCFmCE2FkbWluLnR1cmljbGV0YS5h cHCCD3NoaWtzaGFzYWxhaC5pboIUd3d3LmZvbGxvd2J1ZGRoYS5vcmeCHWxwLnJl cGFpci1idXNpbmVzcy1zY2hvb2wuY29tghVhb3RtZXBpc29kZTIubmluZmEuaW+C InBsYW5vZGVhY2FvbWlhLm1hcmNvc2luYWNpby5jb20uYnKCFHd3dy5zYWhpYmlu ZXVsYXMuY29tghlhcHAucGhhcm1hY2llbGl2cmFpc29uLmZyghZhY2NpZGVudC50 ZXN0LnRhZGEuZGV2gh53d3cuc2hpdmdhcmphbmFwcmF0aXNodGhhbi5jb22CEWFk bWluLmRlbW8uZG9jLmNygglkcngucm9ja3OCFnd3dy55b2dhZ29hbHNpbmRpYS5j b22CDXhiZy5zb2x1dGlvbnOCF3N0YWdpbmc0OTMyLnRhc3F1ZXQuYXBwghNzdHJv bGxlci5nbXMuY2h1cmNoghN3d3cuc3RpbGxtaW51dGUuY29tghtuZXdzbGV0dGVy LmFydW1hc3R1ZGlvcy5jb22CEnd3dy50c2VsbGVyLmNvbS5icoIMdGVycmFkby5s aXZlghhjaHJpc3RtYXMubHVuY2gtY2hlY2suY2iCEXd3dy53bHNsYXNoZXIuY29t ghlidWNrZXQubXltZXRhc29mdHdhcmUuY29tghVjbHViZS5wcm9zaG9vdGVycy5h cHCCCGJmdW4uYXBwgiNhcHAuYWNjLnNjaGVkdWxlci5xdWlldHBhdGh0ZWNoLmNv bYIXd3d3LmNhbWVyb25sb3dlZ29sZi5jb22CD2FsZmFoYXJtb255LmNvbYINcXVp bm9hY29pbi5jY4IcZXZlbnRvLnJvZ2VyaW9zc2FudG9zLmNvbS5icoIWd3d3LmNh cmVlcmNvbmNpZXJnZS5pb4IXcHJvamVjdHMua2FuYWVva2FuYS5uZXSCC3Jpa29h cmkuY29tgiJhZG1pbi1zdGFmZi1wYXlyb2xsLmJhc2VjdGVjaC5zaXRlghlwc2lm ZXJuYW5kYW1hcnRpbnMuY29tLmJyghZub2NhY2FkZW15LmJ5dGVrYXN0Lmlvgg1h ZXNzeXN0ZW0uY29tgglodXUud29ybGSCCmFjZW15eC5jb22CHG1hbm5lcmVucm9s bG1lbnQuYXV4c3dvdC5jb22CEXd3dy5taW5pbWFsLmNhcmRzgg1qa29ldHRnZW4u Y29tghdtdGJlYXIyMDIyLmRhc2hwb3J0LnJ1boIMZmVuZGxpZmUuY29tghF3d3cu Y2lyY3VtZmxleC5qcIIPYWRtaW4uY29pbnN0LmlvghR3d3cuZWxlY3Rjb3JyZWN0 LmNvbYIaY29tcG9zdGZvcnRoZWh1bWFubWluZC5jb22CEHd3dy42MDZjbG91ZC5j b22CFnd3dy5ib29ubWVlLXJlY3ljbGUuY2OCE21hbmFnZXIuc2thbGEud29ybGSC C3JlZWxpdmEuY29tghhkZXYubGluay4xdGltZXNwb3J0cy5jb22CEnd3dy5nb2J1 bGxkb2dzLm9yZ4IKd3d3LmliZy5rcoIaYWRtaW4uZGlnaXRhbHRyZWFzdXJ5LmZ1 bmSCGWxpZmVseS1hcHAuc2hlZXAtYXBwcy5jb22CNW5leHQuYmFja29mZmljZS5l cHJvZ3JhbS5wcm9qZWN0cy5tYXRoZW1hdGlrb2kuYWdlbmN5ghF3d3cudmJyZXN1 bHRzLmNvbYIlZmlyZWJhc2V0ZW1wbGF0ZS5taWNoYWVsd2NyYXdmb3JkLmNvbYIU d3d3LnBhYmxvcmFiYWRhbi5jb22CD3d3dy5tbmtzb2Z0Lm9yZ4IdZGVjbGFyYW5l dC5jb25ncmVzb3Nvbi5nb2IubXiCFHd3dy5jbGFyaWNlZWpvYW8uY29tghRldmVu dC5zb25hcndvcmtzLmNvbYIRcGVuYWx0eWJveGlpaS5jb22CGm1vYmFscGEtc2Zn LnNwZWFreWxpbmsuY29tghF3d3cuZml0bm93LmhlYWx0aIIYY2FtLXBvcy1kZXYu Y3Vhc2FybHkuY29tghN3d3cuc3VzaGlzYWd1ZXMuY29tgg9zbXMuZ2l0c3RlbC5j b22CE3N0Zy5hZG1pbi50b2tlaS5kYXmCEnN0ZW1ub3ZhLmVkdWNhdGlvboILcGVy a2luLmluZm+CDXdhc21lcml6ZS5jb22CEG1haGF0dmFwb29ybi5jb22CCXgudG1v cy5lc4IQY2FsbC56Ymlnbmlldy5tZYIOYmJ1eS56YWpuby5jb22CE25nYWppLnJp ZmtpZmF1emkuaWSCEnd3dy5ndXR0cmFja2VyLmNvbYIRd3d3LmFkdGFnMndpbi5j b22CCXN2aXBwci5ub4IMenViYWlybWQuY29tghd2MmFkbWluLmhlYXJ0bGluZWhr LmNvbYIQdmFyYWhpYnVpbGRlci5pboINeHNjaWVudGlzdC5pboIPbGl2ZS5zY3Ji cmQuY29tghJ3d3cub3VyYm9uZmlyZS5jb22CC3dpbGR0cmlwLnJvghRkaXN0YW5j ZWxlYXJuaW5ncy5pboITcml2YWwtYmFza2V0YmFsbC5qcIIJdnVhYmVwLnZughBu YXZpLmxvb2dpYS50ZWNoghN3d3cubmV3dnJhanNpZ24uY29tghh3d3cuc3BhcmVz dHdvd2hlZWxlci5jb22CFHdlbGxiZWluZy5zb2xzdGVuLmlvghdtYW50cmFlbmdl bmhhcmlhLmNvbS5icoIPd3d3LmFubmVsaWRzLmlvghZsaW5rc2NhcGUucmlza3lj YXNlLmluMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0 dHA6Ly9jLnBraS5nb29nL3dyMy9MaW42VXpHOXVNYy5jcmwwggEDBgorBgEEAdZ5 AgQCBIH0BIHxAO8AdgDLOPcViXyEoURfW8Hd+8lu8ppZzUcKaQWFsMsUwxRY5wAA AZrs6/UBAAAEAwBHMEUCIQDxCm3oiefQM1RY2Y94adQhFp+VxeBDH+lhqjWOBaVT mgIgSTVJLn2ud/HDNSKSj6+jvTnp6GrnlksLa+oh+M6iXfkAdQAOV5S8866pPjMb LJkHs/eQ35vCPXEyJd0hqSWsYcVOIQAAAZrs6/TFAAAEAwBGMEQCIB2AW33RjNof pvBnNPkjwUr1TRwRelBAJVnedTTNuf5JAiBjtKBhtIGzzRQFevp7CV5h8g2jQBIp PmJHiIvoJELaEjANBgkqhkiG9w0BAQsFAAOCAQEAgOKnJ5EvgbzcWyAZ2mkx+IgE vPjo06V/FWITkyAmyvEuydlPTOzbWKv6881Abh+dIYxm8UxoVdmUw8bjEnDvXmIV kUTY6kKfOhS/1JQsw6fEs3TQgCSR8cB7PELaxmoET1RJQWasYcLu4J77zp50rD+O iiRPZZwVTRTy/Mgxl8aDSTiX8YNvbVqtAJiliZ+3UVMVVvVTHt/NPE4bW2K2IDCT Ut+OT9HPdms4TK/eg3qe0gz4F1FiGrEUEh1zEtGJ29nw0E+9OjrhoilCIdSmzWke nVVGULvzJmVAcw4+faoVzwnn1nilLFewSS0RdUX+HVFg45K00fjh4yKnWCp0Ow== -----END CERTIFICATE----- subject=CN = admin.turicleta.app issuer=C = US, O = Google Trust Services, CN = WR3 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 7164 bytes and written 392 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- --- Post-Handshake New Session Ticket arrived: SSL-Session: Protocol : TLSv1.3 Cipher : TLS_AES_128_GCM_SHA256 Session-ID: B1453E4D4178CC8810141D475CECEF0C62FF6C318CA59A7FD00283D52BA155F3 Session-ID-ctx: Resumption PSK: D02AED3BE2AA87B318879F30F86775FEE494E8738C92D1085ECBD0384B4F412E PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 12 72 41 33 5b 66 05 da-6a 24 9c 5f de f2 df a8 .rA3[f..j$._.... 0010 - aa 91 91 0e 60 c5 6c 9c-63 82 88 65 da 4a b0 b5 ....`.l.c..e.J.. 0020 - d9 7f 45 f4 d5 56 fa a0-e7 86 55 96 fd 38 4e 42 ..E..V....U..8NB 0030 - 66 04 9f df 6a 5b fc 0a-eb b6 78 80 f0 90 03 ce f...j[....x..... 0040 - a0 cd 0c 71 35 e1 71 e1-ce e3 ac cf 65 35 40 26 ...q5.q.....e5@& 0050 - 24 a4 14 9e 97 b1 fc b5-c2 9d 32 c0 74 28 1b eb $.........2.t(.. 0060 - fe f5 ab 5c 14 dc 60 ae-c2 06 ad 59 89 0f 09 af ...\..`....Y.... 0070 - 2b 6f 4d 54 ff 54 ca 66-5b f2 36 df ef e1 f3 bb +oMT.T.f[.6..... 0080 - 39 18 47 33 a8 6d c8 5b-e0 cb c4 31 9a 45 a8 ce 9.G3.m.[...1.E.. 0090 - 96 d7 7e e4 b3 38 b1 01-ab 7b 4d 71 f7 4f 40 19 ..~..8...{Mq.O@. Start Time: 1767222820 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no Max Early Data: 0 --- read R BLOCK
#
OCSP response of
www.circumflex.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.