Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.gizin.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.gizin.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.gizin.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.gizin.co.jp
And you can
check your domain name
.
#
Certificate of
www.gizin.co.jp
{ "serial": "30E4F2FC60CC04DD0E7A8D13288431D7", "OCSP_serial": "30E4F2FC60CC04DD0E7A8D13288431D7", "OCSP_cert_status": "good", "OCSP_this_update": "May 9 05:40:51 2025 GMT", "OCSP_next_update": "May 13 05:40:51 2025 GMT", "domainName": "www.gizin.co.jp", "port": 443, "subjectAltName": "DNS:gizin.co.jp, DNS:www.gizin.co.jp", "is_valid": true, "CA": "Japan Registry Services Co., Ltd.", "updated_at": "2025/02/21 10:07:22", "expires_at": "2026/02/28 23:59:59", "today": "2025/05/09 23:20:43", "UTC": { "updated_at": "2025-02-21T01:07:22Z", "expires_at": "2026-02-28T14:59:59Z", "today": "2025-05-09T14:20:43Z" }, "remaining_days": 295 }
#
OCSP response of
www.gizin.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 908A64DD6CE7352BE63621A812C0447BF9DAFFB8 Produced At: May 9 13:31:27 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: 1DB449849554FCAAF967B74DC546361AF782AF8F Issuer Key Hash: 7C24CE0DA4382DC7B3635EA7787A8D1D4C2EC715 Serial Number: 30E4F2FC60CC04DD0E7A8D13288431D7 Cert Status: good This Update: May 9 05:40:51 2025 GMT Next Update: May 13 05:40:51 2025 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 5d:f9:4e:de:59:42:13:36:03:b1:d5:96:26:40:fd:dd:b4:f6: e3:62:8d:66:15:81:8d:4c:a0:0b:65:86:65:e4:09:87:f2:ca: ad:26:15:62:97:2f:5b:30:46:28:e2:c0:f7:5b:1a:ec:24:1b: d7:43:32:dd:17:ee:c8:dc:65:ac:c9:d2:66:3e:fe:81:54:a7: 4d:b0:5f:c5:82:ca:78:57:ac:61:16:c3:cc:07:6c:26:f9:8e: 0d:cc:da:d1:88:5b:85:5e:93:4d:63:d7:79:d3:4c:7a:d0:44: 0a:14:ba:b2:a0:6b:73:84:71:b1:dc:aa:e8:d4:7b:fb:09:1c: 32:9c:2e:18:48:ca:de:7b:24:0b:29:e4:0d:fe:1a:20:fb:d9: 9f:5c:52:51:09:4a:69:fd:4e:6a:10:92:48:ef:fa:fa:b1:fc: 5c:24:5b:11:60:b7:8c:33:e9:5e:5d:64:1a:3d:12:6c:17:a8: 98:9d:a0:17:e6:1f:0d:1b:5a:8a:55:0d:bb:92:58:f1:04:93: 6f:02:d2:40:26:fb:bd:01:55:0c:0d:18:6a:15:99:52:4d:63: 13:38:8f:2f:97:c6:a1:44:ec:57:77:35:1c:b8:62:42:06:dd: 93:fb:d4:8b:ea:f4:af:b9:68:0f:5c:0f:65:b5:7f:ca:2e:d1: a1:fa:94:81 Certificate: Data: Version: 3 (0x2) Serial Number: 28:e9:0c:c1:d4:49:b3:40:29:1b:bf:ec:69:70:39:9b Signature Algorithm: sha256WithRSAEncryption Issuer: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 Validity Not Before: Mar 21 05:17:11 2025 GMT Not After : Jul 23 05:17:11 2025 GMT Subject: C=JP, O=Japan Registry Services Co., Ltd., CN=JPRS Domain Validation Authority - G4 OCSP Responder Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:a6:0f:00:a1:d4:3e:71:b4:83:33:8b:bf:e5:df: 58:77:54:17:53:eb:b9:79:6c:de:7e:31:55:f0:53: 42:b2:bb:81:0a:6b:a6:b9:bf:6b:6b:7d:6e:c0:0f: 97:bf:31:e3:53:9e:44:ed:83:3d:d3:b8:4d:41:f7: b3:86:93:51:a9:fe:1c:7f:28:0b:c5:59:26:52:4b: 7f:52:a3:cd:e6:c6:53:f2:53:a7:b4:5b:bb:af:62: 18:31:26:ae:2a:12:2e:4b:6b:e2:ca:6f:dc:fc:58: 56:6a:3d:5b:dd:5e:e7:09:76:56:f2:ff:88:c9:8c: db:97:65:ec:8d:a1:e5:9f:f5:93:2d:6b:48:49:e0: fd:06:b9:68:d7:5e:38:c8:7a:96:82:e7:11:cc:ed: ca:53:b2:6d:dd:16:93:56:87:e0:bd:be:12:d7:5a: c8:d9:99:47:f5:de:51:7b:1a:a3:39:10:9c:7b:82: 1a:8d:ec:38:22:0a:c1:a2:03:f6:7a:06:f7:b8:6e: 21:53:ee:7b:71:12:3c:ec:55:47:e9:91:0e:13:26: 28:00:72:cb:8e:24:da:6b:d1:4d:09:21:f2:0c:4b: 1f:ce:d7:f2:93:d1:78:7e:82:ad:a3:22:cc:53:3d: 99:ed:99:d0:00:2e:7c:8a:f1:79:26:e9:49:b0:cd: 4b:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Authority Key Identifier: 7C:24:CE:0D:A4:38:2D:C7:B3:63:5E:A7:78:7A:8D:1D:4C:2E:C7:15 OCSP No Check: X509v3 Extended Key Usage: OCSP Signing X509v3 Subject Key Identifier: 90:8A:64:DD:6C:E7:35:2B:E6:36:21:A8:12:C0:44:7B:F9:DA:FF:B8 X509v3 Key Usage: critical Digital Signature Signature Algorithm: sha256WithRSAEncryption Signature Value: 07:9f:64:91:1f:fc:55:29:c0:52:d2:68:a8:10:12:fc:c7:42: 13:67:aa:05:aa:27:95:40:87:31:2d:66:a1:82:af:aa:7b:e0: e0:b1:e7:2d:6e:e3:6e:be:0d:1d:25:3f:52:cf:88:14:19:d8: b6:45:28:f4:68:46:3e:8a:08:92:5d:de:93:bb:bf:af:d5:97: 78:f9:6d:d0:20:52:2a:1d:e1:32:d6:c9:58:be:e5:ab:a1:20: fc:07:02:00:33:e7:0c:96:29:5c:78:54:21:13:df:4e:b5:3f: 30:74:d5:cd:fd:4e:df:02:3c:40:b1:dc:14:0c:2d:4c:b5:02: 06:48:fd:5c:a2:75:e7:7c:ec:98:a1:3f:80:e1:29:7c:3d:b1: 18:4a:f3:a8:2f:0b:a6:f1:13:d2:bb:cd:9c:ac:cc:0d:29:c3: 8b:1b:87:10:2b:cc:7f:aa:b1:a1:f1:24:ec:f5:72:d2:e5:97: aa:95:a6:c9:46:68:7f:1f:86:42:b5:ad:de:17:de:0d:24:e4: 33:3b:e3:fe:a1:c9:f4:64:fc:a5:9e:82:d3:f4:96:c2:59:c7: d7:14:d7:39:6a:5f:94:09:04:1b:4d:7f:f9:a5:0b:22:f9:da: 55:d9:b5:20:e8:53:55:4b:88:66:e5:ac:31:17:18:a0:dd:eb: 64:d3:11:b7 -----BEGIN CERTIFICATE----- MIID4zCCAsugAwIBAgIQKOkMwdRJs0ApG7/saXA5mzANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDMyMTA1MTcxMVoXDTI1MDcyMzA1MTcxMVoweDELMAkG A1UEBhMCSlAxKjAoBgNVBAoTIUphcGFuIFJlZ2lzdHJ5IFNlcnZpY2VzIENvLiwg THRkLjE9MDsGA1UEAxM0SlBSUyBEb21haW4gVmFsaWRhdGlvbiBBdXRob3JpdHkg LSBHNCBPQ1NQIFJlc3BvbmRlcjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKYPAKHUPnG0gzOLv+XfWHdUF1PruXls3n4xVfBTQrK7gQprprm/a2t9bsAP l78x41OeRO2DPdO4TUH3s4aTUan+HH8oC8VZJlJLf1KjzebGU/JTp7Rbu69iGDEm rioSLktr4spv3PxYVmo9W91e5wl2VvL/iMmM25dl7I2h5Z/1ky1rSEng/Qa5aNde OMh6loLnEcztylOybd0Wk1aH4L2+EtdayNmZR/XeUXsaozkQnHuCGo3sOCIKwaID 9noG97huIVPue3ESPOxVR+mRDhMmKAByy44k2mvRTQkh8gxLH87X8pPReH6CraMi zFM9me2Z0AAufIrxeSbpSbDNS2cCAwEAAaN4MHYwHwYDVR0jBBgwFoAUfCTODaQ4 LcezY16neHqNHUwuxxUwDwYJKwYBBQUHMAEFBAIFADATBgNVHSUEDDAKBggrBgEF BQcDCTAdBgNVHQ4EFgQUkIpk3WznNSvmNiGoEsBEe/na/7gwDgYDVR0PAQH/BAQD AgeAMA0GCSqGSIb3DQEBCwUAA4IBAQAHn2SRH/xVKcBS0mioEBL8x0ITZ6oFqieV QIcxLWahgq+qe+DgsectbuNuvg0dJT9Sz4gUGdi2RSj0aEY+igiSXd6Tu7+v1Zd4 +W3QIFIqHeEy1slYvuWroSD8BwIAM+cMlilceFQhE99OtT8wdNXN/U7fAjxAsdwU DC1MtQIGSP1conXnfOyYoT+A4Sl8PbEYSvOoLwum8RPSu82crMwNKcOLG4cQK8x/ qrGh8STs9XLS5ZeqlabJRmh/H4ZCta3eF94NJOQzO+P+ocn0ZPylnoLT9JbCWcfX FNc5al+UCQQbTX/5pQsi+dpV2bUg6FNVS4hm5awxFxig3etk0xG3 -----END CERTIFICATE----- ====================================== --- Certificate chain 0 s:CN = gizin.co.jp i:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Feb 21 01:07:22 2025 GMT; NotAfter: Feb 28 14:59:59 2026 GMT 1 s:C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 i:C = JP, O = "SECOM Trust Systems CO.,LTD.", OU = Security Communication RootCA2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 22 10:40:53 2020 GMT; NotAfter: May 29 05:00:39 2029 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIG0jCCBbqgAwIBAgIQMOTy/GDMBN0Oeo0TKIQx1zANBgkqhkiG9w0BAQsFADBp MQswCQYDVQQGEwJKUDEqMCgGA1UEChMhSmFwYW4gUmVnaXN0cnkgU2VydmljZXMg Q28uLCBMdGQuMS4wLAYDVQQDEyVKUFJTIERvbWFpbiBWYWxpZGF0aW9uIEF1dGhv cml0eSAtIEc0MB4XDTI1MDIyMTAxMDcyMloXDTI2MDIyODE0NTk1OVowFjEUMBIG A1UEAxMLZ2l6aW4uY28uanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDukwaVrRNOgEuHGPJuDQ58eO72bbcdzSSgNk0XKNWlKoErRH9WcN2C4SzVR820 RpClNN7kwVDT2Vvr90iVTj8pWf6hGV2xQtyaB0qSENiFn0kaXYFGfNywEmGee4sL 1qaxwKn/SRM2HK5hWpyif03Vmt4gfXJIa8a0JGWQBS7BVqPHf50msc5Aa0Xj6GYr xlBCWFAPizdnl0+das3j+7oJkHRY1/TPLwSPf/QxE5Le/FCXa+Ntx/zCmFqf1MIm PiXqEE+2gU7Sv64mTv3eYVf//fXdJX2KYdRQU7G247udt9BibVeznYx/YxPvCg5b QdlCUrKuRhel6CVO13p8jHolAgMBAAGjggPHMIIDwzAfBgNVHSMEGDAWgBR8JM4N pDgtx7NjXqd4eo0dTC7HFTCBkAYIKwYBBQUHAQEEgYMwgYAwTwYIKwYBBQUHMAKG Q2h0dHA6Ly9yZXBvLnB1YmNlcnQuanBycy5qcC9zcHBjYS9qcHJzL2R2Y2FfZzQv SlBSU19EVkNBX0c0X0RFUi5jZXIwLQYIKwYBBQUHMAGGIWh0dHA6Ly9kdi5nNC5v Y3NwLnB1YmNlcnQuanBycy5qcDAnBgNVHREEIDAeggtnaXppbi5jby5qcIIPd3d3 LmdpemluLmNvLmpwMFkGA1UdIARSMFAwRAYLKwYBBAGDpEMBAQQwNTAzBggrBgEF BQcCARYnaHR0cDovL2pwcnMuanAvcHViY2VydC9pbmZvL3JlcG9zaXRvcnkvMAgG BmeBDAECATATBgNVHSUEDDAKBggrBgEFBQcDATBLBgNVHR8ERDBCMECgPqA8hjpo dHRwOi8vcmVwby5wdWJjZXJ0LmpwcnMuanAvc3BwY2EvanBycy9kdmNhX2c0L2Z1 bGxjcmwuY3JsMB0GA1UdDgQWBBTPyIYSyrboxphLNtOWBnAxjhw1gzAOBgNVHQ8B Af8EBAMCBaAwggH2BgorBgEEAdZ5AgQCBIIB5gSCAeIB4AB2AA5XlLzzrqk+Mxss mQez95Dfm8I9cTIl3SGpJaxhxU4hAAABlSYUp5AAAAQDAEcwRQIhAIkoKGvfqSO0 7+Owr6tvLYav3Ngds0Wpc8m1/MmFqqffAiAbCSxvEdnKbmXfx5ZrZ6/XA/2491tf gfj5bOV+S74OtwB1AJaXZL9VWJet90OHaDcIQnfp8DrV9qTzNm5GpD8PyqnGAAAB lSYUrg4AAAQDAEYwRAIgUXvHe05kaZnOAp15v21X5n+Z0ZJ8PhSailzZsYw32UQC IFDAuoobrMm6u62AxQBj3iMlaPy3jmElD5x1NTiNSVTCAHYAZBHEbKQS7KeJHKIC LgC8q08oB9QeNSer6v7VA8l9zfAAAAGVJhSx0AAABAMARzBFAiBuDrqYCg8vNH4Z n9PmhOJvm+qbGsYNYYluPw/DVkWy2QIhANiHP0ZUdnnlz6175rBJ7c+/ADlc/1p0 3xy+gojmOm7SAHcAyzj3FYl8hKFEX1vB3fvJbvKaWc1HCmkFhbDLFMMUWOcAAAGV JhSzwQAABAMASDBGAiEA2yVgn5rpN+KdchHviOUPTHK7VyZ46opSTavuzHKfmM4C IQCw7NYbtawxxm6lQY1GwVYBNQP2gVnCGBLscoGWPjTTvzANBgkqhkiG9w0BAQsF AAOCAQEAWWCW9GAQfrWJdabdBJFnOQC2Xc1k0JImpSr+OMRE7g2A25wu2kO4xCAT rtEiEPCC22G8p1VWLDUM2PyxioLDsp8Kk+QB2qrEMUY8uTtxXpDT1aMKTmOZMxOz qISe1vrdlhbRr4wvb08/nTOOfy9EuHoldPWXUIszpxNZJTp12n4Qj/VlEnn8sk3k pNx4dpzaGfWnHulW/wPeprcVOXx3t6Eh0agnQV8pjxkKVImXQJ0duudPLVWbPEF8 AhBFQ/f8II+PUlIfw1rCuM1zcHZ/3MhOzrW9pN0tsNxamypG3f4OsZah0IErF3hP CrNay8pr+Fov6DA5uxV2ycvVvW0FSw== -----END CERTIFICATE----- subject=CN = gizin.co.jp issuer=C = JP, O = "Japan Registry Services Co., Ltd.", CN = JPRS Domain Validation Authority - G4 --- No client certificate CA names sent Peer signing digest: SHA512 Peer signature type: RSA Server Temp Key: ECDH, secp521r1, 521 bits --- SSL handshake has read 5279 bytes and written 520 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES256-GCM-SHA384 Session-ID: 96E4C20BCAFAF153C43063342CE20B59A1DFFED05370302CB0B3DAF26CE26E7E Session-ID-ctx: Master-Key: AFE697FEF54A087422C22597E44EDC6C209FAFEFA005BC755B136EA74D80AF5B2812A6B3D16EEB92C0110D644820DBBD PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 300 (seconds) TLS session ticket: 0000 - fd a3 5a 04 04 07 f4 58-76 34 61 05 81 6f 30 79 ..Z....Xv4a..o0y 0010 - bf 5b 99 89 2c 05 d4 26-70 f3 b2 ca 45 9b 7d bc .[..,..&p...E.}. 0020 - 1f f8 c1 bc e9 da d9 de-17 c3 fa 9c 36 02 03 4b ............6..K 0030 - 32 73 79 96 08 7e 62 73-63 49 3a ca 8c 60 4e d6 2sy..~bscI:..`N. 0040 - 01 a0 26 16 f4 2d 9e 5b-4c c0 66 6d 91 e9 d0 4a ..&..-.[L.fm...J 0050 - e0 70 18 03 f2 49 0b 21-2e 74 2f 8f e0 cc 62 0a .p...I.!.t/...b. 0060 - c2 c6 e3 76 73 ab 46 39-61 26 91 7e 72 e2 32 ba ...vs.F9a&.~r.2. 0070 - ac cd 02 86 32 be 1b 00-f5 87 56 70 f2 53 6a ba ....2.....Vp.Sj. 0080 - b6 80 70 a7 7e b6 29 04-7f 5c be 88 24 c5 f5 61 ..p.~.)..\..$..a 0090 - a0 19 00 d5 81 70 f2 8c-ed cc e1 3e 68 66 50 90 .....p.....>hfP. 00a0 - 2c d6 4b 7d 36 9d ff ed-8f 3b bb ea a9 d3 c9 7a ,.K}6....;.....z 00b0 - 8f f7 b1 a5 df db 21 d9-96 0c 2c b1 40 1f 57 e4 ......!...,.@.W. Start Time: 1746800444 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: no ---
#
OCSP response of
www.gizin.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.