Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.hcdr.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.hcdr.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.hcdr.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.hcdr.jp
And you can
check your domain name
.
#
Certificate of
www.hcdr.jp
{ "serial": "3D1F7510676EC59C0E51B82CBAB089CF", "OCSP_serial": "3D1F7510676EC59C0E51B82CBAB089CF", "OCSP_cert_status": "good", "OCSP_this_update": "May 5 22:06:23 2025 GMT", "OCSP_next_update": "May 12 21:06:22 2025 GMT", "domainName": "www.hcdr.jp", "port": 443, "subjectAltName": "DNS:hcdr.jp, DNS:*.hcdr.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2025/05/01 05:39:46", "expires_at": "2025/07/30 06:37:31", "today": "2025/05/09 22:30:20", "UTC": { "updated_at": "2025-04-30T20:39:46Z", "expires_at": "2025-07-29T21:37:31Z", "today": "2025-05-09T13:30:20Z" }, "remaining_days": 81 }
#
OCSP response of
www.hcdr.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: May 5 22:06:23 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: 3D1F7510676EC59C0E51B82CBAB089CF Cert Status: good This Update: May 5 22:06:23 2025 GMT Next Update: May 12 21:06:22 2025 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:46:02:21:00:a8:f5:f3:a9:02:b3:99:1b:ce:8f:7f:8a:70: 4a:96:ff:68:d3:84:87:fe:1c:b5:6f:7e:11:4d:ed:37:c5:df: bd:02:21:00:a6:7f:97:e0:e5:d0:06:47:76:27:88:f6:e6:34: 2f:0e:56:c6:24:4f:80:ec:c8:d1:40:e7:88:79:1f:8f:dd:95 ====================================== --- Certificate chain 0 s:CN = hcdr.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Apr 30 20:39:46 2025 GMT; NotAfter: Jul 29 21:37:31 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDmDCCAz+gAwIBAgIQPR91EGduxZwOUbgsurCJzzAKBggqhkjOPQQDAjA7MQsw CQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMQwwCgYD VQQDEwNXRTEwHhcNMjUwNDMwMjAzOTQ2WhcNMjUwNzI5MjEzNzMxWjASMRAwDgYD VQQDEwdoY2RyLmpwMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEUxAUmo10VhJm abIxpbU72P16OscCTtFL9zurW8ZhFRWjb5TgcSpluvXk0X1L1SzyjgMTaxUOlRu2 SDl/ECkOMKOCAkwwggJIMA4GA1UdDwEB/wQEAwIHgDATBgNVHSUEDDAKBggrBgEF BQcDATAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSprnxRDk0AGeNIZE+KnMeD9Uu+ 5TAfBgNVHSMEGDAWgBSQd5I1Z8T/qMyp5nvZgHl7zJP5ODBeBggrBgEFBQcBAQRS MFAwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vLnBraS5nb29nL3Mvd2UxL1BSODAlBggr BgEFBQcwAoYZaHR0cDovL2kucGtpLmdvb2cvd2UxLmNydDAdBgNVHREEFjAUggdo Y2RyLmpwggkqLmhjZHIuanAwEwYDVR0gBAwwCjAIBgZngQwBAgEwNgYDVR0fBC8w LTAroCmgJ4YlaHR0cDovL2MucGtpLmdvb2cvd2UxL1VTT0RmcWNPeFZNLmNybDCC AQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3ABLxTjS9U3JMhAYZw48/ehP457Vih4ic bTAFhOvlhiY6AAABloikPFAAAAQDAEgwRgIhAMxh26Lp83KfZ1rRAZlfUkSGYsDq b+48e+swARLrCyIvAiEAgUEx17jGViKaRhvZJ4Q/+EgFKs38Y6kXIcARCKrbKIUA dgDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA/kwNsAAAAZaIpDzPAAAEAwBH MEUCIHvuRRfwUnwRpbN/PRvCY0bJWJqrQYE4Tkq8agPn5SSuAiEAvXCUF+tmuMy4 SRzbFwiwvqS372PUYyFrFhkzb00ue0owCgYIKoZIzj0EAwIDRwAwRAIgToHaHmPJ V3NhSWC9gBpkQKETvMiabA9LNR4yB4sgdGQCIAye/dz8BVyYgY8YSH5D6QWCKuFj JIzG1aGtihlHYPQk -----END CERTIFICATE----- subject=CN = hcdr.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3099 bytes and written 402 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
www.hcdr.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.