Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.kanenaka-n.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.kanenaka-n.co.jp
And you can
check your domain name
.
#
Certificate of
www.kanenaka-n.co.jp
{ "serial": "0348074E2CF37D50FFEEFF2CD1A9BF5B", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.kanenaka-n.co.jp", "port": 443, "subjectAltName": "DNS:kanenaka-n.co.jp, DNS:www.kanenaka-n.co.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2024/11/04 09:00:00", "expires_at": "2025/12/05 08:59:59", "today": "2024/11/21 15:24:35", "UTC": { "updated_at": "2024-11-04T00:00:00Z", "expires_at": "2025-12-04T23:59:59Z", "today": "2024-11-21T06:24:35Z" }, "remaining_days": 378 }
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = kanenaka-n.co.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 4 00:00:00 2024 GMT; NotAfter: Dec 4 23:59:59 2025 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgIQA0gHTizzfVD/7v8s0am/WzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MTEwNDAwMDAwMFoXDTI1MTIwNDIzNTk1OVowGzEZ MBcGA1UEAxMQa2FuZW5ha2Etbi5jby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJIDYycoiU/QM9d9K2R+MnFVh+fukBZSF3yj8LEJ7qXyGtd3Zc/T tqbe91uISquzsDcu9H7w8Br6zgkq3lOCWua0J8lIAMJaD9gwEl7UJ8rUMpVMS33I oJpl48Sy05hxosABRdPPjGXe2f88tfOh4IDX9PxjZ03KE4i823uJRQLzWD01eHkM 8uaC78d1U68BQPU3agd9hKIuhD2nSSIe/GdoaOpqRw+gTrjT9oFgiA2EM7xHDVE3 XD2aatBh5mNC2T18hHDn4f0R6s9dckX8/AJKygP8IThIG0v07PZBPoFMzAR/VUB1 t66zElaZytXgH05M4JI1STLHauJKtN1W8QECAwEAAaOCAwEwggL9MB8GA1UdIwQY MBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBS6+fHCkVgJez4C2cw/ vLRI455o8jAxBgNVHREEKjAoghBrYW5lbmFrYS1uLmNvLmpwghR3d3cua2FuZW5h a2Etbi5jby5qcDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyG Kmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1Bggr BgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpv bnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250 cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQC BIIBcASCAWwBagB3ABLxTjS9U3JMhAYZw48/ehP457Vih4icbTAFhOvlhiY6AAAB kvSdB/UAAAQDAEgwRgIhAKnmfSmZ7px/4mg3EPpl84j1t3TJ0yNuvNa2nTpls9Qv AiEA5kTExdvyqRQ294pUiMJUe9a4t2gPlwioQ0VuVKIo5jAAdwDm0jFjQHeMwRBB Btdxuc7B0kD2loSG+7qHMh39HjeOUAAAAZL0nQe/AAAEAwBIMEYCIQC1fYEK/Ys+ jo6fPDpcpktSTk+/r53GARVskCrTN0cWYAIhAM0naPGmkNqPspaM8A7k6Rhh0yzw Af1f6eBKq9KYlHjaAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAA AAGS9J0HswAABAMARzBFAiBZcCltcMi+iA4KudLbf6cqn/lLhA3mi79awjYhehTP 8QIhALo+BAGqiQrn+kUCJhlLOZYyZZG+J7J8qsd55dOdQvDxMA0GCSqGSIb3DQEB CwUAA4IBAQB0FE73ymZHNN/6ZcuuLk55gk/QPtQs7wN6jNQq7+LUbSHCuFzHaFcG l4RRYOCIs4RNIFF/em51sw6Eap74D6ELCD1JiOT1vplojFpOH04tW3rREZ/Is6sB UsakKjmok6oXHmoy5fUFrzlnEoZ4NkDNOSvrCzWTJonmpXU5M2MbyNc6r4242/XC oP+TTycudBvIfPpqCmiW3c74MQfNBxzMyWj0dzTuleqVIF0PjLjTWipcTQlZETkg QULvRAhXX7Tp2hBpeD1wpTG+NLvGtvCMdXnfsQgWc34c6kshuejOb63vCFdk+b8R 1MZaR3yXWKli00DL73Nd4wPfd8rvgITp -----END CERTIFICATE----- subject=CN = kanenaka-n.co.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4484 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: DAA4ADB0D4E196B116B8E97051037270D1CEDB01CF3D37173293A64E0541B8AE Session-ID-ctx: Master-Key: 32243AB6339211AC2BE02578DF0D1681634C0A43523735F27EB5CBBE98FA179A5C9FD7E2BA5099DCD26B3085E0EBF41F PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 01 88 b5 92 0b 79 9f f9-03 b3 e1 29 1e 91 ff 9c .....y.....).... 0010 - dc c7 8a 0f 75 66 55 2a-94 73 88 e5 21 2b ba 58 ....ufU*.s..!+.X 0020 - fe 3b 83 88 0f 15 84 85-28 1c 82 92 c4 dc 29 b7 .;......(.....). 0030 - c7 a3 4f 8e 78 75 3d c9-87 5d 55 12 cf ac bb 4a ..O.xu=..]U....J 0040 - 37 15 ad 03 b8 3e 10 0c-79 0e 0c 28 d7 e0 82 3b 7....>..y..(...; 0050 - 81 42 37 40 44 e7 1e 3a-ac 31 b2 1b 23 bc 1b 23 .B7@D..:.1..#..# 0060 - 36 8d 04 69 da e8 28 56-74 33 ac c6 11 1c c5 dc 6..i..(Vt3...... 0070 - 9d 64 48 01 7f 86 70 02-f8 20 5b af 81 fd d3 db .dH...p.. [..... 0080 - 95 12 ff 23 3a 6f 2c ad-3e 8c ...#:o,.>. Start Time: 1732170276 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.