Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.circumflex.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.circumflex.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.circumflex.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.circumflex.jp
And you can
check your domain name
.
#
Certificate of
www.circumflex.jp
{ "serial": "2BABDA8A66A86FC40A0188C0C5B67A19", "OCSP_serial": "2BABDA8A66A86FC40A0188C0C5B67A19", "OCSP_cert_status": "good", "OCSP_this_update": "Oct 27 09:01:26 2025 GMT", "OCSP_next_update": "Nov 3 08:01:25 2025 GMT", "domainName": "www.circumflex.jp", "port": 443, "subjectAltName": "DNS:samlock.nz, DNS:declaranet.congresoson.gob.mx, DNS:evento.rogeriossantos.com.br, DNS:drx.rocks, DNS:app.pharmacielivraison.fr, DNS:puntocrossfit.turnosweb.app, DNS:www.yogagoalsindia.com, DNS:www.harmkay.com, DNS:www.prvt.bid, DNS:minimax.niels.codes, DNS:xbg.solutions, DNS:www.shivgarjanapratishthan.com, DNS:rikoari.com, DNS:www.tamu.nkportfolio.com, DNS:isetup.xyz, DNS:celikkafeterya.com, DNS:admin-staff-payroll.basectech.site, DNS:lotosgame.it, DNS:test.calvarybiblechapelpa.org, DNS:www.sahibineulas.com, DNS:terrado.live, DNS:monsanto.pensioenduidelijk.com, DNS:huu.world, DNS:www.wlslasher.com, DNS:www.stillminute.com, DNS:www.printendruk.be, DNS:projects.kanaeokana.net, DNS:manager.skala.world, DNS:www.gobulldogs.org, DNS:mesoreefdao.org, DNS:nocacademy.bytekast.io, DNS:admin.digitaltreasury.fund, DNS:app.fasalsetu.com, DNS:app.piggy.capital, DNS:newsletter.arumastudios.com, DNS:www.careerconcierge.io, DNS:prescottphotos.com, DNS:randomnodes.com, DNS:aotmepisode2.ninfa.io, DNS:businessriver.engineeringawards.ie, DNS:app.acc.scheduler.quietpathtech.com, DNS:dev-app-link.lawallet.com, DNS:inspiredaction.qernilapp.com, DNS:mesonera.com, DNS:sistincon.com, DNS:oilnvinegar.com, DNS:pktbazaar.com, DNS:bucket.mymetasoftware.com, DNS:stroller.gms.church, DNS:punjab-zameen.pk, DNS:www.pablorabadan.com, DNS:rectifya.com, DNS:www.shroom-id.com, DNS:www.autoservicemaasland.nl, DNS:htdc.turbosbir.com, DNS:safetyexcessflowvalve.com, DNS:auth.moneyplanned.com, DNS:ad.igmyd.co.kr, DNS:www.filipstrandberg.com, DNS:www.mnksoft.org, DNS:www.cristianarroyo.dev, DNS:simplysharne.com, DNS:www.posadadeltrebol.com.ar, DNS:pssp.co.kr, DNS:undefeatedsoftware.dev, DNS:southmaingroup.com, DNS:svippr.no, DNS:call.zbigniew.me, DNS:zmalltalker.com, DNS:l.ommnio.com, DNS:lp.repair-business-school.com, DNS:mtbear2022.dashport.run, DNS:www.tseller.com.br, DNS:www.circumflex.jp, DNS:sintpaulushemelvaart.flockim.com, DNS:www.irakaplan.dev, DNS:www.hotelberhamporelodge.com, DNS:admin.turicleta.app, DNS:signin.tallyflex.com, DNS:www.michelb.dev, DNS:admin.demo.doc.cr, DNS:www.ehrlichproductores.com, DNS:vuabep.vn, DNS:shikshasalah.in, DNS:actwisely.de, DNS:www.safetyexcessflowvalve.com, DNS:lukasklein.io, DNS:algo-viz.dbuckley.dev, DNS:querypro.io, DNS:www.rechargemobile.ci, DNS:accident.test.tada.dev, DNS:www.wrench13.com, DNS:placezy.in, DNS:christmas.lunch-check.ch, DNS:dashboard.spicaengine.com, DNS:www.desertedge.co, DNS:www.followbuddha.org, DNS:next.backoffice.eprogram.projects.mathematikoi.agency, DNS:sklad.polypaper.cz, DNS:admin.coinst.io", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/10/09 15:54:10", "expires_at": "2026/01/07 16:51:48", "today": "2025/11/03 06:58:11", "UTC": { "updated_at": "2025-10-09T06:54:10Z", "expires_at": "2026-01-07T07:51:48Z", "today": "2025-11-02T21:58:11Z" }, "remaining_days": 65 }
#
OCSP response of
www.circumflex.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: C781F5FD8E88D9003C4D63A2503124A0CE23FE23 Produced At: Oct 27 09:01:26 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 12AB48B9B763DA7E2D86C3DBB3C2773B29372D5A Issuer Key Hash: C781F5FD8E88D9003C4D63A2503124A0CE23FE23 Serial Number: 2BABDA8A66A86FC40A0188C0C5B67A19 Cert Status: good This Update: Oct 27 09:01:26 2025 GMT Next Update: Nov 3 08:01:25 2025 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 2d:bd:3a:4f:6a:82:fe:ea:8e:c6:33:f8:5f:3e:37:e2:67:e2: 8e:0b:be:4e:b3:cd:f2:93:46:30:2b:34:92:06:b4:66:25:66: 86:b7:2d:b6:e6:81:f5:ee:6d:97:f5:c9:39:9c:4b:c7:3d:f1: 93:3b:ca:d1:93:f6:91:b9:40:1b:25:ed:b3:d6:f0:a0:68:bb: cc:70:04:78:fe:8e:23:4f:3c:69:14:1f:75:d7:4e:b6:d1:6c: e7:67:8f:77:15:b0:56:a8:43:98:a5:c6:87:05:32:be:32:82: 65:14:71:d5:11:e0:11:00:30:e6:82:e9:97:6d:e4:b9:64:da: 15:2d:42:be:a0:2a:f0:ff:e8:63:01:bd:b0:fb:20:69:c9:9c: 3a:60:8b:fb:02:45:46:6f:aa:61:01:30:3e:58:98:71:b8:99: 56:1c:e8:c7:1f:e8:b2:0c:83:f7:97:ca:72:3c:bf:25:8d:0b: 14:41:bd:4b:73:d6:0a:a7:9f:d0:51:bd:fc:3c:1e:fc:99:12: f4:3f:c8:3e:7d:42:35:fd:35:90:30:d0:a3:a0:f0:5f:62:07: 54:19:da:57:a9:ca:c2:22:05:b0:2a:2a:e5:bb:47:bd:33:8a: 60:01:61:7e:29:8a:b2:f7:28:4a:a8:9c:92:43:9b:32:4e:b6: e7:27:7a:8a ====================================== --- Certificate chain 0 s:CN = samlock.nz i:C = US, O = Google Trust Services, CN = WR3 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Oct 9 06:54:10 2025 GMT; NotAfter: Jan 7 07:51:48 2026 GMT 1 s:C = US, O = Google Trust Services, CN = WR3 i:C = US, O = Google Trust Services LLC, CN = GTS Root R1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R1 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Jun 19 00:00:42 2020 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIINjzCCDHegAwIBAgIQK6vaimaob8QKAYjAxbZ6GTANBgkqhkiG9w0BAQsFADA7 MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQww CgYDVQQDEwNXUjMwHhcNMjUxMDA5MDY1NDEwWhcNMjYwMTA3MDc1MTQ4WjAVMRMw EQYDVQQDEwpzYW1sb2NrLm56MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqts0yeLgDWLpXG8sRB2iQ8Ij3zzELdn6D6ExCQIkUHGCv6Huwl9Q8PIIXsiZ yat+iSQvQhBZ9wSHYYuYFWvXDt1Kxj1ANOKFWDkWWviC9zWdhdaKPdlYztCJecN+ nArrGPn6JHopjPGrpoCyNq5OHXNynFGBtfv0aHfPm371Y/eUraUOdEBDMlX3toOc yhILlZnjQh6GldEV9NsGdz5APQ/Fzwnwjvpt4aPJHVPaCF9AGkA0l4YO+qq77J8t vq+d/DXLsdDzu/zHhyZrFyIDa8C5x+cwh8P2ohtDc5YvLg4JhnGypIjY/vxM46ZO lhq1BdEIkF49LQbJWWD5XlVUVQIDAQABo4IKszCCCq8wDgYDVR0PAQH/BAQDAgWg MBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCFF wjusTCzra0+158niw2rRvbPCMB8GA1UdIwQYMBaAFMeB9f2OiNkAPE1jolAxJKDO I/4jMF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdv b2cvcy93cjMvSzZzMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93cjMu Y3J0MIIIgwYDVR0RBIIIejCCCHaCCnNhbWxvY2subnqCHWRlY2xhcmFuZXQuY29u Z3Jlc29zb24uZ29iLm14ghxldmVudG8ucm9nZXJpb3NzYW50b3MuY29tLmJygglk cngucm9ja3OCGWFwcC5waGFybWFjaWVsaXZyYWlzb24uZnKCG3B1bnRvY3Jvc3Nm aXQudHVybm9zd2ViLmFwcIIWd3d3LnlvZ2Fnb2Fsc2luZGlhLmNvbYIPd3d3Lmhh cm1rYXkuY29tggx3d3cucHJ2dC5iaWSCE21pbmltYXgubmllbHMuY29kZXOCDXhi Zy5zb2x1dGlvbnOCHnd3dy5zaGl2Z2FyamFuYXByYXRpc2h0aGFuLmNvbYILcmlr b2FyaS5jb22CGHd3dy50YW11Lm5rcG9ydGZvbGlvLmNvbYIKaXNldHVwLnh5eoIS Y2VsaWtrYWZldGVyeWEuY29tgiJhZG1pbi1zdGFmZi1wYXlyb2xsLmJhc2VjdGVj aC5zaXRlggxsb3Rvc2dhbWUuaXSCHXRlc3QuY2FsdmFyeWJpYmxlY2hhcGVscGEu b3JnghR3d3cuc2FoaWJpbmV1bGFzLmNvbYIMdGVycmFkby5saXZlgh5tb25zYW50 by5wZW5zaW9lbmR1aWRlbGlqay5jb22CCWh1dS53b3JsZIIRd3d3Lndsc2xhc2hl ci5jb22CE3d3dy5zdGlsbG1pbnV0ZS5jb22CEnd3dy5wcmludGVuZHJ1ay5iZYIX cHJvamVjdHMua2FuYWVva2FuYS5uZXSCE21hbmFnZXIuc2thbGEud29ybGSCEnd3 dy5nb2J1bGxkb2dzLm9yZ4IPbWVzb3JlZWZkYW8ub3JnghZub2NhY2FkZW15LmJ5 dGVrYXN0LmlvghphZG1pbi5kaWdpdGFsdHJlYXN1cnkuZnVuZIIRYXBwLmZhc2Fs c2V0dS5jb22CEWFwcC5waWdneS5jYXBpdGFsghtuZXdzbGV0dGVyLmFydW1hc3R1 ZGlvcy5jb22CFnd3dy5jYXJlZXJjb25jaWVyZ2UuaW+CEnByZXNjb3R0cGhvdG9z LmNvbYIPcmFuZG9tbm9kZXMuY29tghVhb3RtZXBpc29kZTIubmluZmEuaW+CImJ1 c2luZXNzcml2ZXIuZW5naW5lZXJpbmdhd2FyZHMuaWWCI2FwcC5hY2Muc2NoZWR1 bGVyLnF1aWV0cGF0aHRlY2guY29tghlkZXYtYXBwLWxpbmsubGF3YWxsZXQuY29t ghxpbnNwaXJlZGFjdGlvbi5xZXJuaWxhcHAuY29tggxtZXNvbmVyYS5jb22CDXNp c3RpbmNvbi5jb22CD29pbG52aW5lZ2FyLmNvbYINcGt0YmF6YWFyLmNvbYIZYnVj a2V0Lm15bWV0YXNvZnR3YXJlLmNvbYITc3Ryb2xsZXIuZ21zLmNodXJjaIIQcHVu amFiLXphbWVlbi5wa4IUd3d3LnBhYmxvcmFiYWRhbi5jb22CDHJlY3RpZnlhLmNv bYIRd3d3LnNocm9vbS1pZC5jb22CGnd3dy5hdXRvc2VydmljZW1hYXNsYW5kLm5s ghJodGRjLnR1cmJvc2Jpci5jb22CGXNhZmV0eWV4Y2Vzc2Zsb3d2YWx2ZS5jb22C FWF1dGgubW9uZXlwbGFubmVkLmNvbYIOYWQuaWdteWQuY28ua3KCF3d3dy5maWxp cHN0cmFuZGJlcmcuY29tgg93d3cubW5rc29mdC5vcmeCFnd3dy5jcmlzdGlhbmFy cm95by5kZXaCEHNpbXBseXNoYXJuZS5jb22CGnd3dy5wb3NhZGFkZWx0cmVib2wu Y29tLmFyggpwc3NwLmNvLmtyghZ1bmRlZmVhdGVkc29mdHdhcmUuZGV2ghJzb3V0 aG1haW5ncm91cC5jb22CCXN2aXBwci5ub4IQY2FsbC56Ymlnbmlldy5tZYIPem1h bGx0YWxrZXIuY29tggxsLm9tbW5pby5jb22CHWxwLnJlcGFpci1idXNpbmVzcy1z Y2hvb2wuY29tghdtdGJlYXIyMDIyLmRhc2hwb3J0LnJ1boISd3d3LnRzZWxsZXIu Y29tLmJyghF3d3cuY2lyY3VtZmxleC5qcIIgc2ludHBhdWx1c2hlbWVsdmFhcnQu ZmxvY2tpbS5jb22CEXd3dy5pcmFrYXBsYW4uZGV2ghx3d3cuaG90ZWxiZXJoYW1w b3JlbG9kZ2UuY29tghNhZG1pbi50dXJpY2xldGEuYXBwghRzaWduaW4udGFsbHlm bGV4LmNvbYIPd3d3Lm1pY2hlbGIuZGV2ghFhZG1pbi5kZW1vLmRvYy5jcoIad3d3 LmVocmxpY2hwcm9kdWN0b3Jlcy5jb22CCXZ1YWJlcC52boIPc2hpa3NoYXNhbGFo LmluggxhY3R3aXNlbHkuZGWCHXd3dy5zYWZldHlleGNlc3NmbG93dmFsdmUuY29t gg1sdWthc2tsZWluLmlvghVhbGdvLXZpei5kYnVja2xleS5kZXaCC3F1ZXJ5cHJv LmlvghV3d3cucmVjaGFyZ2Vtb2JpbGUuY2mCFmFjY2lkZW50LnRlc3QudGFkYS5k ZXaCEHd3dy53cmVuY2gxMy5jb22CCnBsYWNlenkuaW6CGGNocmlzdG1hcy5sdW5j aC1jaGVjay5jaIIZZGFzaGJvYXJkLnNwaWNhZW5naW5lLmNvbYIRd3d3LmRlc2Vy dGVkZ2UuY2+CFHd3dy5mb2xsb3didWRkaGEub3JngjVuZXh0LmJhY2tvZmZpY2Uu ZXByb2dyYW0ucHJvamVjdHMubWF0aGVtYXRpa29pLmFnZW5jeYISc2tsYWQucG9s eXBhcGVyLmN6gg9hZG1pbi5jb2luc3QuaW8wEwYDVR0gBAwwCjAIBgZngQwBAgEw NgYDVR0fBC8wLTAroCmgJ4YlaHR0cDovL2MucGtpLmdvb2cvd3IzL05nYXBLMVZZ OGhVLmNybDCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1AA5XlLzzrqk+MxssmQez 95Dfm8I9cTIl3SGpJaxhxU4hAAABmcf2m/QAAAQDAEYwRAIgQGLyzy6NR8il3NvR cOyqe8fFJRiTnNAh/M0xl3BEKRQCIHr3HGucKF/+MZ4UPiDbGptPizvePQmrB+TT a2AbdwDCAHcAFoMtq/CpJQ8P8DqlRf/Iv8gj0IdL9gQpJ/jnHzMT9foAAAGZx/ac SgAABAMASDBGAiEAlaga+UhalkFPH0M8ntT8iTOrvc2itGipkcQZlHjZaLICIQCb cY4Z3UMKKcLP4RU4zCp6Yl5sk6zueFGmhjsKE/SfBDANBgkqhkiG9w0BAQsFAAOC AQEAXUmIHRf0twFLi1xZI5UQUUfUdDqn3aFQQQZg6Yi7SyAh2o8+TUt2aXu0amtE GSEbQVQFkLpmrx5byvjzD2d8QFfZ8AUASE/FHy83M1DBwaRB2pgYBAnhkBkmpncf LUxDWx1rdyrk+A3MwUip/dd19f0/mM4EKylOx+mbFYRYmncMUyY/WdE4XMZ+FW4t YM0Vcj3U3tmNjB/pu7sLsRwCKByRR5jjeNk+YsKpTB+pT5O7sAla/I0VOPVlyQP+ P3iQ5T5XcaUzP3YdVYUdK6pbZP7QKyG0MLuOTFVdn/HePEmxP8kyb53Q8SJ43tPb B6eysg9qHtGCGz8H4GsPx/C8bw== -----END CERTIFICATE----- subject=CN = samlock.nz issuer=C = US, O = Google Trust Services, CN = WR3 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 7185 bytes and written 392 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) --- --- Post-Handshake New Session Ticket arrived: SSL-Session: Protocol : TLSv1.3 Cipher : TLS_AES_128_GCM_SHA256 Session-ID: 59B0917FC032F392C53765931B03A5B75A94C428DBD0DB97014B45B27B1EE17D Session-ID-ctx: Resumption PSK: D501AA46945FA99EE405E669D9E51E470C8D5598B8D6E43452BE83489F3201B1 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 57 9b 57 b6 f4 a5 4a 26-91 5a 92 09 6d 2c 81 de W.W...J&.Z..m,.. 0010 - 26 06 0e 8e 1f 6c 0f a4-19 76 f7 88 a3 3e e2 4e &....l...v...>.N 0020 - c7 93 b0 4e ea 96 47 a2-70 eb b7 20 91 fd e5 a6 ...N..G.p.. .... 0030 - 40 17 2d be a3 4f 87 48-93 66 59 14 29 a3 4b 46 @.-..O.H.fY.).KF 0040 - b0 9e a1 e2 89 b5 90 4d-6a 9f dc f7 4b 89 6f 90 .......Mj...K.o. 0050 - 77 e9 cb f7 9f 07 34 d5-17 0c 03 22 69 75 a9 c8 w.....4...."iu.. 0060 - 7f 14 5b 84 c7 52 bc 04-ae dc 10 1e bf ad 83 89 ..[..R.......... 0070 - 76 a2 da 4b 48 4a c2 26-95 0d 82 b6 1a b8 74 11 v..KHJ.&......t. 0080 - 46 bd 45 7e 24 04 a6 9d-72 db e6 fd 68 52 bd 2f F.E~$...r...hR./ 0090 - fc b7 51 85 1e 19 13 02-86 61 d0 b6 a0 dd 7b 4e ..Q......a....{N Start Time: 1762120691 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no Max Early Data: 0 --- read R BLOCK
#
OCSP response of
www.circumflex.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.