Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.kanenaka-n.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.kanenaka-n.co.jp
And you can
check your domain name
.
#
Certificate of
www.kanenaka-n.co.jp
{ "serial": "019B4B74EA862A88D0BD2180B90202B0", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.kanenaka-n.co.jp", "port": 443, "subjectAltName": "DNS:kanenaka-n.co.jp, DNS:www.kanenaka-n.co.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2023/12/04 09:00:00", "expires_at": "2025/01/03 08:59:59", "today": "2024/04/28 04:02:43", "UTC": { "updated_at": "2023-12-04T00:00:00Z", "expires_at": "2025-01-02T23:59:59Z", "today": "2024-04-27T19:02:43Z" }, "remaining_days": 250 }
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = kanenaka-n.co.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Dec 4 00:00:00 2023 GMT; NotAfter: Jan 2 23:59:59 2025 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT 3 s:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 i:C = US, O = "Starfield Technologies, Inc.", OU = Starfield Class 2 Certification Authority a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Sep 2 00:00:00 2009 GMT; NotAfter: Jun 28 17:39:16 2034 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF4zCCBMugAwIBAgIQAZtLdOqGKojQvSGAuQICsDANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTIzMTIwNDAwMDAwMFoXDTI1MDEwMjIzNTk1OVowGzEZ MBcGA1UEAxMQa2FuZW5ha2Etbi5jby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJx68MOiNzMgmuYQdqkkF8Bws4j9lJYgiCDVf7sGyRda0FU9Ev6X 1DABXcUm881sNsPbev+4lwoqTjHMFi5F/Q+0aRUwglKGIpufBRh7kWrICJ3XrUKD KxIB0OaQIswt02P8jCTN17EtCR7j6tP3jLlWDNe28TXPKqhQ049JF/eO4zwCOBNs iy0ZE/lHdHzhr4Hu0HqqPC1Da9zoI8kaU8AHhYkyQX7hz1kUSCjo/WQni4LlTjAc MMxJz2nLau32qYfV8izJaSknUzyYzFvka/znu5XTLsIIvjhef3xsgLtH7rDa10IW B3rujVmlSu9xsBqgKdqg9qnpMamfAeVU2Q0CAwEAAaOCAwAwggL8MB8GA1UdIwQY MBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBQOP+k15CnSTd8u+rlk Og5aNzSMfzAxBgNVHREEKjAoghBrYW5lbmFrYS1uLmNvLmpwghR3d3cua2FuZW5h a2Etbi5jby5qcDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyG Kmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1Bggr BgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpv bnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250 cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB/wQCMAAwggF/BgorBgEEAdZ5AgQC BIIBbwSCAWsBaQB2AE51oydcmhDDOFts1N8/Uusd8OCOG41pwLH6ZLFimjnfAAAB jDI9pHEAAAQDAEcwRQIhALZObdEa6OkiKFHh/AyYydEaMrdH6DGugQ3MzLFB4Mjf AiB0TDuZS4EveUEU3soHbJZeLaN/KNz+9YfAR0j00qQPKAB3AD8XS0/XIkdYlB1l HIS+DRLtkDd/H4Vq68G/KIXs+GRuAAABjDI9pMYAAAQDAEgwRgIhAPb2wRqw8vOI /dh5ll9gAeMx+xKDTgU6FsO3GorOnmUHAiEAr2v/fEw53tJPIwXHKloAPvaxhXBa 4xDjrXae7gP0yxEAdgB9WR4S4XgqexxhZ3xe/fjQh1wUoE6VnrkDL9kOjC55uAAA AYwyPaSvAAAEAwBHMEUCIQDt3XDZwtLTuZtwSlTJcAbsWhk+zhxAWEkSMPKR2Z70 VgIgRhiouBlAIWjqJohtergUYRj4sXLCiCUmgs1R0+yJrS0wDQYJKoZIhvcNAQEL BQADggEBAH25kSDrThl/7txD0l7KOGOfaZOQyyKMkwMCHxGfrVofuSYR+k5ZAAEi rD26yZvo2A8zE7pU4+RXgIoL0Mwwxv4tru8kFm/Z2Ygz0h2FqAbdBcgQPaUAQ2OO Hpi/ftvo4rD13whLlm4OBnNvp5LO5PSjXD0XVfURIPfuVAwF45BS4wegQbPFxIpV tmdsLp89qQjakI/+R8hFcgZNVX/9k+Wri1BNfdjYkz51aRef5UIF+67HWP8dsoJe J6fc75gYqA0A/lh/WIxCRK4ElgZIdkCG2eJDwUCm1+Zm/yCUktO99dyPaKlTvH9P a8NveTLlCcxR0bK0d41pv88g4JA8SCo= -----END CERTIFICATE----- subject=CN = kanenaka-n.co.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5598 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 5AE684808FFB1B72A2F69D09DD8B461306D392423CA936C0D087595FB35B2ED9 Session-ID-ctx: Master-Key: D15EE42287BE42D4874A24241850045711B674F661E56847F6EC2D83AF1B892ECFBD04EF219F104B0EBED5C11E276979 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 5e b3 cf 8b 16 ac 3f 3a-9b bb dd e7 a8 8e 8d 7a ^.....?:.......z 0010 - d4 66 6a 00 38 51 b4 86-b2 14 e8 9a 20 d8 e3 2b .fj.8Q...... ..+ 0020 - 1a 77 3a 90 39 4d d0 d3-58 92 6a c6 05 94 24 c5 .w:.9M..X.j...$. 0030 - 50 e0 63 2e 9e 84 f5 b6-7b 24 a6 b0 0c 6b 9e 82 P.c.....{$...k.. 0040 - 58 c4 08 ac d8 d4 87 f2-f8 b1 0f 7a 2c 05 36 c8 X..........z,.6. 0050 - d9 b4 f5 36 71 a9 90 7e-55 ab ea 4b 99 fb 6d 88 ...6q..~U..K..m. 0060 - 84 17 1e d7 7c f7 99 a5-08 ....|.... Start Time: 1714244563 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.