Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.desede.de
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.desede.de
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.desede.de
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.desede.de
And you can
check your domain name
.
#
Certificate of
www.desede.de
{ "serial": "6D919352B30A62EC13069F8B067329D7", "OCSP_serial": "6D919352B30A62EC13069F8B067329D7", "OCSP_cert_status": "good", "OCSP_this_update": "Dec 28 20:48:07 2025 GMT", "OCSP_next_update": "Jan 4 19:48:06 2026 GMT", "domainName": "www.desede.de", "port": 443, "subjectAltName": "DNS:www.desede.de", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/11/23 22:20:03", "expires_at": "2026/02/21 23:20:01", "today": "2026/01/01 08:17:02", "UTC": { "updated_at": "2025-11-23T13:20:03Z", "expires_at": "2026-02-21T14:20:01Z", "today": "2025-12-31T23:17:02Z" }, "remaining_days": 51 }
#
OCSP response of
www.desede.de
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: Dec 28 20:48:07 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 6D919352B30A62EC13069F8B067329D7 Cert Status: good This Update: Dec 28 20:48:07 2025 GMT Next Update: Jan 4 19:48:06 2026 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:20:17:cc:c7:86:1e:13:d7:87:a6:ec:fd:9a:32:23: 98:de:6e:2d:43:f3:17:fa:87:ba:68:12:eb:f3:b3:4e:5e:82: 02:21:00:bd:77:1d:22:56:c9:dd:1d:e2:6a:5e:58:59:96:36: c0:4a:2a:a1:86:a5:7b:bf:0b:8c:ee:fc:e3:d9:71:98:76 ====================================== --- Certificate chain 0 s:CN = www.desede.de i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Nov 23 13:20:03 2025 GMT; NotAfter: Feb 21 14:20:01 2026 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDmjCCA0CgAwIBAgIQbZGTUrMKYuwTBp+LBnMp1zAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjUxMTIzMTMyMDAzWhcNMjYwMjIxMTQyMDAxWjAYMRYwFAYD VQQDEw13d3cuZGVzZWRlLmRlMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEDOt+ TgQ2r4/yFMPj+UdjCPt2mdLmWaIAvgk35Z4XiVTgFTiC/JFymmBrdC3SgI+ssOv7 nIGxxBwX935rkj/A6KOCAkcwggJDMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAK BggrBgEFBQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRbdz1opNEJwQG6l2Ag xb8IMUgntjAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEF BQcBAQRSMFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL2Ja RTAlBggrBgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAYBgNVHREE ETAPgg13d3cuZGVzZWRlLmRlMBMGA1UdIAQMMAowCAYGZ4EMAQIBMDYGA1UdHwQv MC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29nL3dlMS9ZTGxTMUxfWmtLay5jcmww ggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDRbqmlaAd+ZjWgPzel3bwDpTxBEhTU iBj16TGzI8uVBAAAAZqxFgy9AAAEAwBIMEYCIQDVgLJA7JLNo45UKFEKtIIAYJoI H6odeWu/CqsPMCu2xAIhAIrTXSzKEDkQBBZwVHMVnSlGUmQjP/gyCugu4Miexw/Y AHYADleUvPOuqT4zGyyZB7P3kN+bwj1xMiXdIaklrGHFTiEAAAGasRYL3AAABAMA RzBFAiBCjIxApei0Y6jUFbG/RdsSzmD15/wvEnTKQ4B5E8XjdAIhAJC/7WEhGVIE XZ49z+nQt0ZiNaBLurYf6UO9kx0l3gCJMAoGCCqGSM49BAMCA0gAMEUCIQCqAiZv 0/5XHWFKngNJcKnMLixvX+5dFQ8HPg94aHrcpgIgek9NmlRA6iC0g1MbOA4JjB9F hIZc4bG0RbH1OiA7DBM= -----END CERTIFICATE----- subject=CN = www.desede.de issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3101 bytes and written 404 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
www.desede.de
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.