Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.ihep.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.ihep.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.ihep.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.ihep.jp
And you can
check your domain name
.
#
Certificate of
www.ihep.jp
{ "serial": "08754C810CBF86D5AB6B6822B68DBF7F", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.ihep.jp", "port": 443, "subjectAltName": "DNS:www.ihep.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2025/05/05 09:00:00", "expires_at": "2026/06/05 08:59:59", "today": "2026/04/01 13:29:05", "UTC": { "updated_at": "2025-05-05T00:00:00Z", "expires_at": "2026-06-04T23:59:59Z", "today": "2026-04-01T04:29:05Z" }, "remaining_days": 64 }
#
OCSP response of
www.ihep.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = www.ihep.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 5 00:00:00 2025 GMT; NotAfter: Jun 4 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFxDCCBKygAwIBAgIQCHVMgQy/htWra2gito2/fzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI1MDUwNTAwMDAwMFoXDTI2MDYwNDIzNTk1OVowFjEU MBIGA1UEAxMLd3d3LmloZXAuanAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDGgDGFxTvxq54jhrFC+G4I3OEnvLpZ98TIjPBDlU8/YPPNgFwjXjSlRYJX xrZ01akV8x3ZAUMpYanGIuKj1VtKbO2y5IrUjorTYJPRsyw80Y3M8/lkSnzBid5o Fp5naVf60BTWDMmgueUUgwG9BR7M4qqM0G+eYHMZYMElIygYqzT6NOpmJgSQJLdE s288Gys8zxFG+PiS7vAzJdtMnaSJLcCcrueaj2jKCkPrNu3Car7cogHu8kLvWjTW BiriZovMx20LShOCwiw9CbXCD3bFnJVsn/b/3glaW8e41O+78YXZXJOSc7mTkBdu M7RgnUzEVWxC3PFstUH3Y5oP/rylAgMBAAGjggLmMIIC4jAfBgNVHSMEGDAWgBRV 2Rhf0hzMAeFYtL6r2VVCAdcuAjAdBgNVHQ4EFgQUDlnw+YJc84QZ9co9ZaUcJwT2 pScwFgYDVR0RBA8wDYILd3d3LmloZXAuanAwEwYDVR0gBAwwCjAIBgZngQwBAgEw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjA7 BgNVHR8ENDAyMDCgLqAshipodHRwOi8vY3JsLnIybTAzLmFtYXpvbnRydXN0LmNv bS9yMm0wMy5jcmwwdQYIKwYBBQUHAQEEaTBnMC0GCCsGAQUFBzABhiFodHRwOi8v b2NzcC5yMm0wMy5hbWF6b250cnVzdC5jb20wNgYIKwYBBQUHMAKGKmh0dHA6Ly9j cnQucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNlcjAMBgNVHRMBAf8EAjAA MIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwCWl2S/VViXrfdDh2g3CEJ36fA6 1fak8zZuRqQ/D8qpxgAAAZad31riAAAEAwBIMEYCIQD0NNl7t8WGdudsUufKT9J2 XtBu+MorjyvRJa6qkapGIgIhAKH7UDuZ60kT7vtofF4TZyNgaIB/o1lPfH7mSvPT ozO3AHYASZybad4dfOz8Nt7Nh2SmuFuvCoeAGdFVUvvp6ynd+MMAAAGWnd9a6wAA BAMARzBFAiAhFZ2yHMO5go7eBqT1sRQR+n1fc1x77UrAr8Q+9dG7qgIhAKrAo33z 1cjuZ9hYqkmYF0tPqTrTjCP/FwBoHeifSdFOAHcAyzj3FYl8hKFEX1vB3fvJbvKa Wc1HCmkFhbDLFMMUWOcAAAGWnd9a8QAABAMASDBGAiEAyPMl36h9lW/VTH01tJDy 2brFR3gAlaWBm3//vtqgQfUCIQDWPzCHrS/LgpWWOLpmFCslU1Ir+T3wJj3jPoOw 6qrLIDANBgkqhkiG9w0BAQsFAAOCAQEAlGDG42KNRpiMgHeBCiiolaMH4jPxBdrz p0hQk4grt/fvpNtdWFeVzWu9f8fZNcCaTZ+TLnx0NAbM9RFke+OBuiPc7qx08yC/ R2SEUojyyIUl+bc2MdCG35tMIyTuOyigYKy1xxIbCCH2aVDvoOSN5hbDTdxkldPm 0NEHH3S+qmnKs2hHivXWvrJ1MPhUjc+6CWrNrSYYwtN0KtxmuRUUtTFGQp5ea3Jg uNbRXbthD2ZCQZr5IHkprtEM0Oy9RZ13eL2Pcm8ZxtR91Fc7l/C+WnUSBHMrOcnV cg0OmWRuDMvXrK8c4nbSvs74dOpceiX1FnbyWv07SkicNdpy0MGdKg== -----END CERTIFICATE----- subject=CN = www.ihep.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4452 bytes and written 448 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 38A8F64CE1540D2F1A33674EC789E9A29584B69273CAFC728CD9ACA4E55E5586 Session-ID-ctx: Master-Key: 6C6FAAB7A9712B973897311F27C397703810F2D98ED68B2F3AEF94F54259C746238F0D7B26EBA1579623C2EA8FE54251 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 84953 (seconds) TLS session ticket: 0000 - 01 c5 24 43 d4 bd d0 cd-c6 ef 40 f7 8e 47 04 80 ..$C......@..G.. 0010 - b9 a8 d2 2f 23 72 e6 53-99 e7 c8 3b d8 b2 25 56 .../#r.S...;..%V 0020 - 54 07 cc b1 f0 02 fe 86-cd d4 0e e7 2a e2 f3 f2 T...........*... 0030 - a8 c1 0b 83 09 e4 28 6e-4b e8 e0 36 a8 47 15 d5 ......(nK..6.G.. 0040 - 6a 94 8c b1 3e 87 3e ad-d6 50 c0 a3 a5 6c 41 52 j...>.>..P...lAR 0050 - 29 2c ac e3 9f 92 bd 05-6a 8a 5a 26 85 68 2d af ),......j.Z&.h-. 0060 - d1 73 6f a1 07 85 a7 dd-f4 a5 41 28 94 21 ad 12 .so.......A(.!.. 0070 - 2e df 77 3e 89 c1 e5 ee-e7 d7 83 41 fe 01 9d 97 ..w>.......A.... 0080 - 74 0e fd 85 56 44 80 3e-5b 1c t...VD.>[. Start Time: 1775017746 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.ihep.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.