Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.ihep.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.ihep.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.ihep.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.ihep.jp
And you can
check your domain name
.
#
Certificate of
www.ihep.jp
{ "serial": "05F64F5C6B8EAAA10737A1A52C2DF730", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.ihep.jp", "port": 443, "subjectAltName": "DNS:www.ihep.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2023/07/03 09:00:00", "expires_at": "2024/08/02 08:59:59", "today": "2024/04/29 02:02:51", "UTC": { "updated_at": "2023-07-03T00:00:00Z", "expires_at": "2024-08-01T23:59:59Z", "today": "2024-04-28T17:02:51Z" }, "remaining_days": 95 }
#
OCSP response of
www.ihep.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = www.ihep.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M02 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Jul 3 00:00:00 2023 GMT; NotAfter: Aug 1 23:59:59 2024 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M02 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:25:30 2022 GMT; NotAfter: Aug 23 22:25:30 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT 3 s:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 i:C = US, O = "Starfield Technologies, Inc.", OU = Starfield Class 2 Certification Authority a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Sep 2 00:00:00 2009 GMT; NotAfter: Jun 28 17:39:16 2034 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIQBfZPXGuOqqEHN6GlLC33MDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAyMB4XDTIzMDcwMzAwMDAwMFoXDTI0MDgwMTIzNTk1OVowFjEU MBIGA1UEAxMLd3d3LmloZXAuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCQnC4/pyr4aVXPX64I5kU7jHKL9ojv1PEh9SiMtLvlWyu6ONXp/zL9JvkQ v600owfzJAs0zRlHTDPJjkWVy8k5ovImnqOuNZ6gyl8nAkWWQOf6M5jtTj/dYN06 bQfnsX8MFOhDcx7SYpDW3d7hxHA/JU4oa5SXk8gyN+GXaU69HMl/G7C8yjD7wHxL MZn4LPyxeSCZ8lRLB7B9mx1TFTvCHqktJ507Y7fwbyMb7/qbpz/Pk2JfGe4mi/YN ksvxWa9ltTldUDntXYluEXnDVfbKI9Cel3ZN/pmNAMrP1vHrCfzoA8NlnG8V5sBF bSLvx04W/6iaPDzwgdu//jBKMAN5AgMBAAGjggLlMIIC4TAfBgNVHSMEGDAWgBTA MVLNWlDDgnx0cc7L6Zz5euuC4jAdBgNVHQ4EFgQUuUc+/hKeVqLzkFNzA3ZCZuxF yX0wFgYDVR0RBA8wDYILd3d3LmloZXAuanAwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7BgNVHR8ENDAyMDCgLqAshipodHRw Oi8vY3JsLnIybTAyLmFtYXpvbnRydXN0LmNvbS9yMm0wMi5jcmwwEwYDVR0gBAww CjAIBgZngQwBAgEwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8v b2NzcC5yMm0wMi5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9j cnQucjJtMDIuYW1hem9udHJ1c3QuY29tL3IybTAyLmNlcjAMBgNVHRMBAf8EAjAA MIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwB2/4g/Crb7lVHCYcz1h7o0tKTN uyncaEIKn+ZnTFo6dAAAAYkZKNpOAAAEAwBIMEYCIQCnFOWnqxPG3k6IfKi5TfZn mgwDLibJiR8pfrqSR63J9QIhAPZcN+QWfr0OwEL4qrMh8ir70/tr8zq2TqE24Kpw 46sZAHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGJGSjaZwAA BAMARzBFAiBFXnCxO3GLUpOukocnGGPbgm09fhZei4WldCn6ZST2oQIhAO1wfxV3 qVeM1gasmJooZnjlDbqb3okPCC9ppPzZbCArAHYAPxdLT9ciR1iUHWUchL4NEu2Q N38fhWrrwb8ohez4ZG4AAAGJGSjahgAABAMARzBFAiEAiwsaCdwhp+YjFws7olIL nhUW1HHTEbfJ0sJaFX7FSk4CIB7yfDUnDe7KaLoMZ3lasDJStn9tI8xGd5B2u6hm auaBMA0GCSqGSIb3DQEBCwUAA4IBAQA/AIlchaKiWH5MzCg7ljE+K4TyjwoUUN0I Jv6GlO/37JLX9lv9/21GSArXANwBUsY3gPOjIgjOyVWEp1b0ioUCkAA1ltI5xP76 NcvASFU3+yH3IqcJ++CbBEULAUmrRLlHRSdS0vl0CmqUyQPBDcBhGbVrHMV4vlrV 7APDpjDvj5DQSRQ6wII6pxIqXgOK8+TZ9/rFw+peGt7xitSfrq9YH35ZfihcChdg hfKca4zR2Lxvh7JlnGENrI190XzA7gc8tTJMN0KNJgqVsQ+GQuOTqvl/O9nIZoRY lug3wqfZq8nYp87gdPQXMNpHsy0HL9IpZT3CeYGFxEJ/2iRELUy4 -----END CERTIFICATE----- subject=CN = www.ihep.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M02 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5566 bytes and written 448 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 9E499E30247FC868DEB2EC27D23BF9CA7BAF8DFD6825A88F8F4BCE04BA393EAF Session-ID-ctx: Master-Key: 247E79137D0F9589CE17259CE12EE116BE703FE7E785AA2AD467DE6FC431AF64EB799F4DC1B9DDF3DBAEA5080F93F923 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 2a 31 ca 4d 79 82 a7 0d-44 f0 a2 6d fd 07 e5 da *1.My...D..m.... 0010 - 81 2c d5 f7 a4 81 01 e3-9f d0 56 65 56 b1 25 f1 .,........VeV.%. 0020 - 8a 26 3e ae fd eb c1 ad-63 f2 d7 d7 c6 5a 80 68 .&>.....c....Z.h 0030 - 9d 9c d6 44 48 e9 3d 33-a8 44 7d a1 b2 05 7c 0e ...DH.=3.D}...|. 0040 - 1f f3 04 ee 49 f9 5c 7c-80 ca 15 9a 7e 99 96 f2 ....I.\|....~... 0050 - 5e 1c fc 51 10 40 f1 e3-70 c0 8f 81 00 15 94 49 ^..Q.@..p......I 0060 - 66 61 00 5c d9 a8 93 bb-3a fa.\....: Start Time: 1714323771 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.ihep.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.