Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.kanenaka-n.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.kanenaka-n.co.jp
And you can
check your domain name
.
#
Certificate of
www.kanenaka-n.co.jp
{ "serial": "073ADB21BE6A55E7CF3C38976607CCD6", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.kanenaka-n.co.jp", "port": 443, "subjectAltName": "DNS:kanenaka-n.co.jp, DNS:www.kanenaka-n.co.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2025/10/06 09:00:00", "expires_at": "2026/11/05 08:59:59", "today": "2025/11/02 17:02:57", "UTC": { "updated_at": "2025-10-06T00:00:00Z", "expires_at": "2026-11-04T23:59:59Z", "today": "2025-11-02T08:02:57Z" }, "remaining_days": 367 }
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = kanenaka-n.co.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M04 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Oct 6 00:00:00 2025 GMT; NotAfter: Nov 4 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M04 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:35 2022 GMT; NotAfter: Aug 23 22:26:35 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF2TCCBMGgAwIBAgIQBzrbIb5qVefPPDiXZgfM1jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTA0MB4XDTI1MTAwNjAwMDAwMFoXDTI2MTEwNDIzNTk1OVowGzEZ MBcGA1UEAxMQa2FuZW5ha2Etbi5jby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOQfcNtp+96jeH494o9xKSZXK44zzFK9wA9+Hg5RXEguvHmHjeLh aDCdp+jXK1zHh+w3WE16/uSl5wggrhAvYp7QEYowBZrfsLimnRYOTY3eMbE6SXPm nzIMXMfshQnfJK5iQVdD0A334GsFf2n5fGG2Zjlko7NK9mGptUiZF3ZejwE1OE6D fOPSKWt1bSVp4Rgv6nOgixlamMDcO3ikKQtmHcXDcOlHrl/hD7o6Ldp7R+tx1+Vw 1hB7yCttXqJxLrXQWmwFP3/K2M4KDQ0Uon48sxm6r1y79rKJyfsdPUzJbn3/yTnq O2VvxhBdjPakn+Vcx1oduiOZTLuO5KSR4TUCAwEAAaOCAvYwggLyMB8GA1UdIwQY MBaAFB9SkmFWglR/gWbYHT0KqjJch90IMB0GA1UdDgQWBBTSxi0E1VDFKZnyFdQl KwfBYimRizAxBgNVHREEKjAoghBrYW5lbmFrYS1uLmNvLmpwghR3d3cua2FuZW5h a2Etbi5jby5qcDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAw EwYDVR0lBAwwCgYIKwYBBQUHAwEwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5yMm0wNC5hbWF6b250cnVzdC5jb20vcjJtMDQuY3JsMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDQuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTA0LmFtYXpvbnRydXN0LmNvbS9y Mm0wNC5jZXIwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFp AHYA1219ENGn9XfCx+lf1wC/+YLJM1pl4dCzAXMXwMjFaXcAAAGZtuOuBwAABAMA RzBFAiEAyi+IcSEI/IHdbJJ7ZV5l9XJAEZXqLZVghnb5HeY4DTcCIEuzMbp5IOTu u+bnHkcrHsf9RCcaBZJT3oXgFg/XTv8CAHcAwjF+V0UZo0XufzjespBB68fCIVoi v3/Vta12mtkOUs0AAAGZtuOuQwAABAMASDBGAiEAq6MhRhm2FY4dI56gvU7oAapx PZuTa6HT1p4eXdU3u8QCIQDRrAbP9e1R5Dqcpu7ERkTx1Z9t70REK71ZoVDhaKNI NQB2AJROQ4f67MHvgfMZJCaoGGUBx9NfOAIBP3JnfVU3LhnYAAABmbbjrlcAAAQD AEcwRQIge8QTfdkTPzI6r3Sehv2JU7NTTwWDclG98KXBSOnD4qoCIQCb0xuNxryk DDHWsoPFKsHwxSp1eC3Plo/0BEznCzmvQzANBgkqhkiG9w0BAQsFAAOCAQEADhcE VjNM2ElEahIa2VjhMvA6Nrb83TTdW9qZsR6HbCqj9YqOM3NgtU1Iq6iqq+n1dvgN dLzoUtG9fusxL+wK2+4vSb+OZvJ14xAsJ+1yo2xeMgkV5zn1kJqmO1aVDRK/NeIt 2P+QdvW9yoBOJIFc9U6MVEyIay/GNhXoFBFGTjBdongGMfgD2wzS4mwakkaIIqYe KiaRJR45YZI0K/v70bBfctoAN2CmJHl2LAYio4Y6VFuNLYMRXqucTtLYYwwfSH8R pJ+UN8W/h9tNk23i2M1DJ+hlrejMKfo/Th+mJoUcJUPSR0sn3AaTJWmUAcYhz+9w PCpsgTcirqfGY4KJGA== -----END CERTIFICATE----- subject=CN = kanenaka-n.co.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M04 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4473 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: C4796A71446089A982E3674B9A32929F3F669D6AF34B706622BE6DBF86D553A3 Session-ID-ctx: Master-Key: 02B2BA8B218DCD72608623A455CB330ED580BC8B6C139FF9138002FD345A8E834AB27EF03433A2DDED4D96D8E6103DEA PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 76622 (seconds) TLS session ticket: 0000 - 01 d5 ab 3b c2 93 0c 2f-d2 1b 46 69 13 80 ec bd ...;.../..Fi.... 0010 - dc 1c 31 0f 85 50 ca fa-e6 82 df 53 6c bb 25 e4 ..1..P.....Sl.%. 0020 - 4b 75 e4 9e 17 b5 1a 60-2e 05 37 81 ab 3e 00 ab Ku.....`..7..>.. 0030 - 60 b7 19 71 85 30 ff 91-84 53 ec b8 d8 c3 dd 08 `..q.0...S...... 0040 - 4f 5a d4 61 f4 ba 7c 53-9f d6 f2 e0 ea 7c 60 c0 OZ.a..|S.....|`. 0050 - 3c bd 30 47 e1 c2 0e 4a-eb 94 7b c9 14 2c f8 8f <.0G...J..{..,.. 0060 - 88 65 c8 07 65 40 db 38-06 46 bd 3d 3c 57 fa e0 .e..e@.8.F.=<W.. 0070 - d9 10 21 eb 5c c1 88 af-a8 98 1d cd ce b8 a1 3c ..!.\..........< 0080 - c3 b8 a0 fa f9 98 71 40-37 11 ......q@7. Start Time: 1762070577 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.