Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.gizin.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.gizin.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.gizin.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.gizin.co.jp
And you can
check your domain name
.
#
Certificate of
www.gizin.co.jp
{ "serial": "7025A32FE4372644725A0562045E3B1B", "OCSP_serial": "7025A32FE4372644725A0562045E3B1B", "OCSP_cert_status": "good", "OCSP_this_update": "Apr 28 09:09:03 2024 GMT", "OCSP_next_update": "May 2 09:09:03 2024 GMT", "domainName": "www.gizin.co.jp", "port": 443, "subjectAltName": "DNS:gizin.co.jp, DNS:www.gizin.co.jp", "is_valid": true, "CA": "Japan Registry Services Co., Ltd.", "updated_at": "2024/02/28 14:31:40", "expires_at": "2025/02/28 23:59:59", "today": "2024/04/29 02:51:45", "UTC": { "updated_at": "2024-02-28T05:31:40Z", "expires_at": "2025-02-28T14:59:59Z", "today": "2024-04-28T17:51:45Z" }, "remaining_days": 305 }
#
OCSP response of
www.gizin.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: EBE64FD38B1C6CC8F8D9DF95C4F62D765E18B127 Produced At: Apr 28 17:36:16 2024 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 1DB449849554FCAAF967B74DC546361AF782AF8F Issuer Key Hash: 7C24CE0DA4382DC7B3635EA7787A8D1D4C2EC715 Serial Number: 7025A32FE4372644725A0562045E3B1B Cert Status: good This Update: Apr 28 09:09:03 2024 GMT Next Update: May 2 09:09:03 2024 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 99:49:b0:52:87:89:93:08:12:9b:82:bc:b4:8f:3d:56:92:ef: 41:73:26:c4:56:e2:df:f2:54:0a:f0:5b:8a:90:74:2d:e6:94: 5e:47:9c:c2:8b:97:91:38:44:c1:56:70:71:a9:e0:35:7e:3c: 75:b9:84:e8:20:53:55:e8:ac:3e:8d:5c:b1:6d:37:57:48:23: 1c:c6:3c:8c:f5:ef:60:71:5d:d6:bd:9b:6d:73:d5:17:d8:d0: 4c:4e:dd:e1:f3:ec:16:23:cc:38:83:9e:03:c8:de:68:6c:42: 61:ba:09:34:61:99:e5:77:50:8d:1e:8a:58:cb:a5:d4:72:6d: 55:97:53:1c:a4:b2:e0:b0:ee:e8:14:d1:62:53:7f:e3:87:7f: d8:2e:55:3e:bc:b6:50:3e:b8:65:4a:d9:0d:22:f0:92:67:1d: 82:89:ff:a5:f9:3d:59:68:26:05:c3:e0:ab:af:55:fe:01:bc: f4:30:00:1f:5b:7d:e2:17:5a:59:25:76:82:5d:a9:5c:d5:f3: a9:65:3d:bf:44:da:19:81:b4:22:8e:70:65:c5:d3:1a:c4:8f: 71:e2:64:42:44:e9:7a:4b:c7:af:35:39:72:0a:ee:c8:83:2e: b1:6b:7c:b3:c5:0c:a6:42:de:b6:fa:34:27:7e:09:3f:84:cb: 74:ac:72:ea Certificate: Data: Version: 3 (0x2) Serial Number: 47:25:9a:7c:ae:81:87:e9:06:27:c2:56:a5:99:b2:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 Validity Not Before: Mar 6 06:10:15 2024 GMT Not After : Jul 8 06:10:15 2024 GMT Subject: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 OCSP Responder Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:ae:a3:86:1e:f6:16:db:b0:be:88:44:5a:19:36: c3:9d:a7:8a:42:f4:9e:52:00:66:82:21:06:c2:5f: 6b:f7:1a:1e:23:4e:43:35:dd:89:79:59:7a:57:93: 61:e0:43:ef:1e:d4:a6:a2:be:28:73:4e:bf:aa:aa: d8:c0:41:49:2d:e1:4f:b9:f0:3d:db:32:82:fd:2c: 0e:77:e1:ef:e5:f3:e3:7d:9b:54:bc:fb:28:4f:bf: 3f:ac:94:be:6f:0a:30:a2:59:0b:21:6f:d8:cf:20: ac:0f:0a:fa:30:ae:cf:e2:e6:90:f8:b4:63:f9:75: eb:24:a0:ba:fd:b0:a0:f7:77:e2:d2:0f:b0:ea:24: 02:8b:f7:eb:aa:18:da:46:9c:ea:05:17:b7:81:d7: 2c:85:50:8b:22:f8:ba:4b:34:3b:96:17:ee:c8:ef: d0:d6:ba:bb:d7:c8:a1:9f:f1:46:04:d7:c4:25:65: 96:47:3d:67:dd:1a:6b:8c:34:6a:1f:b5:b6:e8:9a: a4:99:34:96:6a:6d:a9:c9:c5:62:40:f7:f8:93:d8: 1b:bc:98:b7:40:c3:56:e8:09:c8:71:83:61:54:08: 27:68:e3:fb:db:26:6f:7e:a0:c7:c5:9f:5c:94:b1: 7b:a6:88:df:3b:49:14:ce:b8:c9:76:06:2f:a6:7f: d0:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7C:24:CE:0D:A4:38:2D:C7:B3:63:5E:A7:78:7A:8D:1D:4C:2E:C7:15 OCSP No Check: X509v3 Extended Key Usage: OCSP Signing X509v3 Subject Key Identifier: EB:E6:4F:D3:8B:1C:6C:C8:F8:D9:DF:95:C4:F6:2D:76:5E:18:B1:27 X509v3 Key Usage: critical Digital Signature Signature Algorithm: sha256WithRSAEncryption Signature Value: 1f:27:30:cc:d2:15:e6:70:32:9b:bb:bb:55:c9:78:d9:d7:07: 0a:ec:85:a3:94:99:4c:36:7f:95:8a:18:c0:0a:77:7c:e2:e4: 8c:13:f7:fa:87:bf:bc:9e:4e:03:90:b9:45:ee:74:03:f5:2f: 4e:9b:f8:f1:13:1f:b5:33:ae:ba:50:4c:fa:20:cd:0f:4a:71: a9:3f:14:ad:3b:a4:e9:61:1c:13:40:63:e4:3d:76:7d:b3:df: 54:38:46:c8:57:5a:44:17:07:09:a0:ce:49:0c:a5:27:a8:37: ed:15:30:e6:92:3f:93:88:a1:e1:df:11:2a:ed:93:f1:5e:3c: 95:b7:f7:8c:a4:ac:6c:fd:b2:8f:f0:f2:64:35:26:cc:55:b5: d1:9a:27:82:42:91:9a:66:05:e5:20:be:c4:cb:dd:7a:39:6b: 60:a8:a2:f4:44:54:1e:e4:0e:44:5e:98:37:9e:ac:37:87:3e: aa:ac:90:1c:48:c5:54:a1:58:ff:d2:49:73:62:8c:6a:7c:7a: 14:7d:72:fe:be:ce:45:47:a5:06:51:b8:14:a2:f5:46:11:88: 61:4d:24:02:a3:d7:25:ea:60:ed:9b:bf:0e:12:93:a5:1c:b0: 42:04:41:72:5e:6f:e6:8d:dd:d4:67:c9:ff:e6:2b:6c:13:1e: 98:3c:53:5a -----BEGIN CERTIFICATE----- MIID4zCCAsugAwIBAgIQRyWafK6Bh+kGJ8JWpZmy9zANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI0MDMwNjA2MTAxNVoXDTI0MDcwODA2MTAxNVoweDELMAkG A1UEBhMCSlAxKjAoBgNVBAoTIUphcGFuIFJlZ2lzdHJ5IFNlcnZpY2VzIENvLiwg THRkLjE9MDsGA1UEAxM0SlBSUyBEb21haW4gVmFsaWRhdGlvbiBBdXRob3JpdHkg LSBHNCBPQ1NQIFJlc3BvbmRlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK6jhh72FtuwvohEWhk2w52nikL0nlIAZoIhBsJfa/caHiNOQzXdiXlZeleT YeBD7x7UpqK+KHNOv6qq2MBBSS3hT7nwPdsygv0sDnfh7+Xz432bVLz7KE+/P6yU vm8KMKJZCyFv2M8grA8K+jCuz+LmkPi0Y/l16ySguv2woPd34tIPsOokAov366oY 2kac6gUXt4HXLIVQiyL4uks0O5YX7sjv0Na6u9fIoZ/xRgTXxCVllkc9Z90aa4w0 ah+1tuiapJk0lmptqcnFYkD3+JPYG7yYt0DDVugJyHGDYVQIJ2jj+9smb36gx8Wf XJSxe6aI3ztJFM64yXYGL6Z/0CcCAwEAAaN4MHYwHwYDVR0jBBgwFoAUfCTODaQ4 LcezY16neHqNHUwuxxUwDwYJKwYBBQUHMAEFBAIFADATBgNVHSUEDDAKBggrBgEF BQcDCTAdBgNVHQ4EFgQU6+ZP04scbMj42d+VxPYtdl4YsScwDgYDVR0PAQH/BAQD AgeAMA0GCSqGSIb3DQEBCwUAA4IBAQAfJzDM0hXmcDKbu7tVyXjZ1wcK7IWjlJlM Nn+VihjACnd84uSME/f6h7+8nk4DkLlF7nQD9S9Om/jxEx+1M666UEz6IM0PSnGp PxStO6TpYRwTQGPkPXZ9s99UOEbIV1pEFwcJoM5JDKUnqDftFTDmkj+TiKHh3xEq 7ZPxXjyVt/eMpKxs/bKP8PJkNSbMVbXRmieCQpGaZgXlIL7Ey916OWtgqKL0RFQe 5A5EXpg3nqw3hz6qrJAcSMVUoVj/0klzYoxqfHoUfXL+vs5FR6UGUbgUovVGEYhh TSQCo9cl6mDtm78OEpOlHLBCBEFyXm/mjd3UZ8n/5itsEx6YPFNa -----END CERTIFICATE----- ====================================== --- Certificate chain 0 s:CN = gizin.co.jp i:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Feb 28 05:31:40 2024 GMT; NotAfter: Feb 28 14:59:59 2025 GMT 1 s:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 i:C = JP, O = "SECOM Trust Systems CO.,LTD.", OU = Security Communication RootCA2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 22 10:40:53 2020 GMT; NotAfter: May 29 05:00:39 2029 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIG0jCCBbqgAwIBAgIQcCWjL+Q3JkRyWgViBF47GzANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI0MDIyODA1MzE0MFoXDTI1MDIyODE0NTk1OVowFjEUMBIG A1UEAxMLZ2l6aW4uY28uanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR2wqp4Gok7seBvL0QrcxhnUcoUYHdqcAGEGi2W19uDvMMe94ZmRfED4kCTE+c hwc6baLuUjKDfckstC3Kd9y6i1mbgnoYcCvThrZjdSzEMcEfwTq56qD7slOX1C8P OKuFIbh85YBOBeeO2dVgu4wMhLZE7yKHASu1yOfQxzIcZ2614B+yItXsSspOzCxR 51w1Li9+mD4jYfuXQ8AF6sBGr4yItN4b0Z7QefZluo7FJ6qoaSSlyIGVHQLMuOgE KkfgqAY+IT2/NPaZHN/6oBK3MIsYXhxsd8B8TZBRtDwfu6e7BKMHZZageAUDjIs6 AksHRS11dUDC1A9oaXS1w+yzAgMBAAGjggPHMIIDwzAfBgNVHSMEGDAWgBR8JM4N pDgtx7NjXqd4eo0dTC7HFTCBkAYIKwYBBQUHAQEEgYMwgYAwTwYIKwYBBQUHMAKG Q2h0dHA6Ly9yZXBvLnB1YmNlcnQuanBycy5qcC9zcHBjYS9qcHJzL2R2Y2FfZzQv SlBSU19EVkNBX0c0X0RFUi5jZXIwLQYIKwYBBQUHMAGGIWh0dHA6Ly9kdi5nNC5v Y3NwLnB1YmNlcnQuanBycy5qcDAnBgNVHREEIDAeggtnaXppbi5jby5qcIIPd3d3 LmdpemluLmNvLmpwMFkGA1UdIARSMFAwRAYLKwYBBAGDpEMBAQQwNTAzBggrBgEF BQcCARYnaHR0cDovL2pwcnMuanAvcHViY2VydC9pbmZvL3JlcG9zaXRvcnkvMAgG BmeBDAECATATBgNVHSUEDDAKBggrBgEFBQcDATBLBgNVHR8ERDBCMECgPqA8hjpo dHRwOi8vcmVwby5wdWJjZXJ0LmpwcnMuanAvc3BwY2EvanBycy9kdmNhX2c0L2Z1 bGxjcmwuY3JsMB0GA1UdDgQWBBSivhdkaGzAK4M9Jht1RbNDtaiFNzAOBgNVHQ8B Af8EBAMCBaAwggH2BgorBgEEAdZ5AgQCBIIB5gSCAeIB4AB2AE51oydcmhDDOFts 1N8/Uusd8OCOG41pwLH6ZLFimjnfAAABje47naEAAAQDAEcwRQIhAJ61dZ788yl0 llErAmA7OYuX5JChLU+5n6sV4r1tOmBXAiB8AsJt2v1me4aLIiHCe3riedfXhrEe AHM09FUpjg8NjwB3AM8RVu7VLnyv84db2Wkum+kacWdKsBfsrAHSW3fOzDsIAAAB je47pAAAAAQDAEgwRgIhAPYgxCMowXCyTjnv0TaqpsoC0JM9gMnfC2rydF7Wi4es AiEA59qAFx+vXsVVCRhb3K7n5jiEG6M+yrcNvx/dOUNx0qEAdgB9WR4S4Xgqexxh Z3xe/fjQh1wUoE6VnrkDL9kOjC55uAAAAY3uO6bDAAAEAwBHMEUCIQDmznmUnEda C3ZuvRm16K7OL9qSWj6YRYqll7MM5DrDmQIgVESN9x8Q3RSECFYufCBJwYpkk6Qg Tpo1ACRa7PtZ2foAdQDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAA AY3uO6iUAAAEAwBGMEQCIE5Mticm/5/mkVJB6mIZGDJx3jkpN9DDYChQwoL3ZOf+ AiAaG6DIQqu5buBaLWewCs+FTHpjqXWM+XQJYusEsXMnwDANBgkqhkiG9w0BAQsF AAOCAQEAEGU98qt3JzZSR/pa+ENxbcZ1kZOHx8oBoQDjpu+oEQmrdxUVHTMgTuZG n+eUWddogF/yPLyHx6uxerruOCshhMmYkl8AXm3NqMt+TRDSlt/8x9Tc07eo2iVS +QMKmc0I0VKxeFZ9OxefeyTuRfrJ99ggeMmyiATdKi3vkZNkTi5Wr2+THamKVL2i xbuB5Ptf6XSx9Pnv4V5SJii6GHlQvCnQhd+seuJbHSbufnKxq3g6iDg1QAvGOMY/ x+sftnoj3/HGnx1P+wc1AVh8AXjhgKo41HK1+rV7Y5/AwOMnA0t3Tnb/7Uf0B9hl O5smKa44qOrekehF8rxIwh8zW5aOGA== -----END CERTIFICATE----- subject=CN = gizin.co.jp issuer=C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, secp521r1, 521 bits --- SSL handshake has read 5279 bytes and written 520 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: 34377E591C1F187CDE33811F5C62FD1C98AAC3E916C275FD33E2C83E2CD42ACE Session-ID-ctx: Master-Key: 900FB4CDBF9ECD9B165F676F013B95DDB1179DA17558388674C12937E94DD64A81A5DA096DE51ABECEAECD8330F5CD33 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - d9 7e d6 d7 0d fc 8e 36-a0 7a 5b 0a dc 67 dc 4c .~.....6.z[..g.L 0010 - c0 c3 7d 35 49 4d ac ed-02 c1 e6 20 bb 24 21 41 ..}5IM..... .$!A 0020 - 22 ed 19 b9 ac 18 cd f1-3b 02 bc e8 2a bc dc ac ".......;...*... 0030 - 0d be db 82 8d 21 ac 9f-b0 27 84 74 9b 67 be d4 .....!...'.t.g.. 0040 - 0f 92 b1 2b ad 0a f8 23-d5 4f 12 3c a5 59 19 79 ...+...#.O.<.Y.y 0050 - 70 27 92 92 6c 9f f5 2b-51 a4 68 82 31 a4 14 17 p'..l..+Q.h.1... 0060 - e1 44 02 3c 3c 63 3e 69-85 5e 36 f5 03 57 66 df .D.<<c>i.^6..Wf. 0070 - 6e a2 31 10 32 1a 64 30-06 0c 30 1b db 08 b0 d2 n.1.2.d0..0..... 0080 - dd c3 24 a6 0a 1e 6f 70-a6 44 57 5c cc 7a 0e 98 ..$...op.DW\.z.. 0090 - 44 2f fd 43 97 11 30 22-29 f5 67 7f ad 6a 2f da D/.C..0").g..j/. 00a0 - 7f d9 ae b9 ec 75 16 8b-2b 9d 39 2b 1e c1 bd 0c .....u..+.9+.... 00b0 - 1b 69 20 6d a0 fa 9e 5e-f3 15 f0 52 ec f5 af c2 .i m...^...R.... Start Time: 1714326705 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
www.gizin.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.