Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.desede.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.desede.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.desede.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.desede.jp
And you can
check your domain name
.
#
Certificate of
www.desede.jp
{ "serial": "CC3511BFFC5C46EB137117F4E400FC48", "OCSP_serial": "CC3511BFFC5C46EB137117F4E400FC48", "OCSP_cert_status": "good", "OCSP_this_update": "May 7 17:55:59 2025 GMT", "OCSP_next_update": "May 14 16:55:58 2025 GMT", "domainName": "www.desede.jp", "port": 443, "subjectAltName": "DNS:www.desede.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/04/01 20:24:31", "expires_at": "2025/06/30 21:24:23", "today": "2025/05/09 23:02:06", "UTC": { "updated_at": "2025-04-01T11:24:31Z", "expires_at": "2025-06-30T12:24:23Z", "today": "2025-05-09T14:02:06Z" }, "remaining_days": 51 }
#
OCSP response of
www.desede.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: May 7 17:55:59 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: CC3511BFFC5C46EB137117F4E400FC48 Cert Status: good This Update: May 7 17:55:59 2025 GMT Next Update: May 14 16:55:58 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:21:00:de:07:c2:ab:10:3e:36:ea:bf:69:62:b0:94: 11:b6:a8:65:49:0d:38:06:15:4d:ed:f4:89:88:b6:b6:e2:db: 9a:02:20:15:74:47:29:ad:cf:aa:85:0c:45:2a:3c:ae:43:bd: 8f:d2:a0:64:f1:20:60:80:51:34:14:24:75:d7:c3:ab:5e ====================================== --- Certificate chain 0 s:CN = www.desede.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Apr 1 11:24:31 2025 GMT; NotAfter: Jun 30 12:24:23 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDmTCCAz+gAwIBAgIRAMw1Eb/8XEbrE3EX9OQA/EgwCgYIKoZIzj0EAwIwOzEL MAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoG A1UEAxMDV0UxMB4XDTI1MDQwMTExMjQzMVoXDTI1MDYzMDEyMjQyM1owGDEWMBQG A1UEAxMNd3d3LmRlc2VkZS5qcDBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABHol pjaayAgbq0rzLQQyrWMQxRLNqveZ763iRCKsLNi7dj5UDfyLUfgIhKHnVZJ8SQMC bC0Y5yctIRwm7LMpCGyjggJFMIICQTAOBgNVHQ8BAf8EBAMCB4AwEwYDVR0lBAww CgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU8opTSnrcneyMbA5y oY/lmCFaC5YwHwYDVR0jBBgwFoAUkHeSNWfE/6jMqeZ72YB5e8yT+TgwXgYIKwYB BQUHAQEEUjBQMCcGCCsGAQUFBzABhhtodHRwOi8vby5wa2kuZ29vZy9zL3dlMS96 RFUwJQYIKwYBBQUHMAKGGWh0dHA6Ly9pLnBraS5nb29nL3dlMS5jcnQwGAYDVR0R BBEwD4INd3d3LmRlc2VkZS5qcDATBgNVHSAEDDAKMAgGBmeBDAECATA2BgNVHR8E LzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29vZy93ZTEvSldXM0dqNTZaZDQuY3Js MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYADeHyMCvTDcFAYhIJ6lUu/Ed0fLHX 6TDvDkIetH5OqjQAAAGV8U93vAAABAMARzBFAiAaOrlUlxClVUO/jgBGoPo5NiE7 bz/qaBk4SOD2EPcMFgIhAMyNaC+p4ITgKxLkaOeOi2ybZ6zWr4n6lj2TgnC0ooth AHUATnWjJ1yaEMM4W2zU3z9S6x3w4I4bjWnAsfpksWKaOd8AAAGV8U93rwAABAMA RjBEAiA9/BHTWcZQu3rAKPZvuN5SGkOPrPUwvr9x404mde8bIQIgEfAzQ48q5srO UvV8HcQjvAM3l9cVvPBbK0TgTEihfDkwCgYIKoZIzj0EAwIDSAAwRQIhAPBsK8iO fPWhijtt3Zb6FCe9fayYp64CspgRod2necPwAiB0I+Ha3DFoidT2Sr1EDczGRFoA jxUbmg64WNfUh96aqg== -----END CERTIFICATE----- subject=CN = www.desede.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3101 bytes and written 404 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
www.desede.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.