Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.kanenaka-n.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.kanenaka-n.co.jp
And you can
check your domain name
.
#
Certificate of
www.kanenaka-n.co.jp
{ "serial": "073ADB21BE6A55E7CF3C38976607CCD6", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.kanenaka-n.co.jp", "port": 443, "subjectAltName": "DNS:kanenaka-n.co.jp, DNS:www.kanenaka-n.co.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2025/10/06 09:00:00", "expires_at": "2026/11/05 08:59:59", "today": "2026/01/01 10:10:08", "UTC": { "updated_at": "2025-10-06T00:00:00Z", "expires_at": "2026-11-04T23:59:59Z", "today": "2026-01-01T01:10:08Z" }, "remaining_days": 307 }
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = kanenaka-n.co.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M04 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Oct 6 00:00:00 2025 GMT; NotAfter: Nov 4 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M04 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:35 2022 GMT; NotAfter: Aug 23 22:26:35 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF2TCCBMGgAwIBAgIQBzrbIb5qVefPPDiXZgfM1jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTA0MB4XDTI1MTAwNjAwMDAwMFoXDTI2MTEwNDIzNTk1OVowGzEZ MBcGA1UEAxMQa2FuZW5ha2Etbi5jby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOQfcNtp+96jeH494o9xKSZXK44zzFK9wA9+Hg5RXEguvHmHjeLh aDCdp+jXK1zHh+w3WE16/uSl5wggrhAvYp7QEYowBZrfsLimnRYOTY3eMbE6SXPm nzIMXMfshQnfJK5iQVdD0A334GsFf2n5fGG2Zjlko7NK9mGptUiZF3ZejwE1OE6D fOPSKWt1bSVp4Rgv6nOgixlamMDcO3ikKQtmHcXDcOlHrl/hD7o6Ldp7R+tx1+Vw 1hB7yCttXqJxLrXQWmwFP3/K2M4KDQ0Uon48sxm6r1y79rKJyfsdPUzJbn3/yTnq O2VvxhBdjPakn+Vcx1oduiOZTLuO5KSR4TUCAwEAAaOCAvYwggLyMB8GA1UdIwQY MBaAFB9SkmFWglR/gWbYHT0KqjJch90IMB0GA1UdDgQWBBTSxi0E1VDFKZnyFdQl KwfBYimRizAxBgNVHREEKjAoghBrYW5lbmFrYS1uLmNvLmpwghR3d3cua2FuZW5h a2Etbi5jby5qcDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAw EwYDVR0lBAwwCgYIKwYBBQUHAwEwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5yMm0wNC5hbWF6b250cnVzdC5jb20vcjJtMDQuY3JsMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDQuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTA0LmFtYXpvbnRydXN0LmNvbS9y Mm0wNC5jZXIwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFp AHYA1219ENGn9XfCx+lf1wC/+YLJM1pl4dCzAXMXwMjFaXcAAAGZtuOuBwAABAMA RzBFAiEAyi+IcSEI/IHdbJJ7ZV5l9XJAEZXqLZVghnb5HeY4DTcCIEuzMbp5IOTu u+bnHkcrHsf9RCcaBZJT3oXgFg/XTv8CAHcAwjF+V0UZo0XufzjespBB68fCIVoi v3/Vta12mtkOUs0AAAGZtuOuQwAABAMASDBGAiEAq6MhRhm2FY4dI56gvU7oAapx PZuTa6HT1p4eXdU3u8QCIQDRrAbP9e1R5Dqcpu7ERkTx1Z9t70REK71ZoVDhaKNI NQB2AJROQ4f67MHvgfMZJCaoGGUBx9NfOAIBP3JnfVU3LhnYAAABmbbjrlcAAAQD AEcwRQIge8QTfdkTPzI6r3Sehv2JU7NTTwWDclG98KXBSOnD4qoCIQCb0xuNxryk DDHWsoPFKsHwxSp1eC3Plo/0BEznCzmvQzANBgkqhkiG9w0BAQsFAAOCAQEADhcE VjNM2ElEahIa2VjhMvA6Nrb83TTdW9qZsR6HbCqj9YqOM3NgtU1Iq6iqq+n1dvgN dLzoUtG9fusxL+wK2+4vSb+OZvJ14xAsJ+1yo2xeMgkV5zn1kJqmO1aVDRK/NeIt 2P+QdvW9yoBOJIFc9U6MVEyIay/GNhXoFBFGTjBdongGMfgD2wzS4mwakkaIIqYe KiaRJR45YZI0K/v70bBfctoAN2CmJHl2LAYio4Y6VFuNLYMRXqucTtLYYwwfSH8R pJ+UN8W/h9tNk23i2M1DJ+hlrejMKfo/Th+mJoUcJUPSR0sn3AaTJWmUAcYhz+9w PCpsgTcirqfGY4KJGA== -----END CERTIFICATE----- subject=CN = kanenaka-n.co.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M04 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4473 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 591E5272F703A64957E42A5D9A3C5481EBD380044A3B102A6993769E3DE9B502 Session-ID-ctx: Master-Key: 38151690ADC046CBE9A1C61BDBEF2507FBFAADDBC7A7C9BD221AE0B3042D456F1E65D01342525798CCFED25CEC9C2593 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 65464 (seconds) TLS session ticket: 0000 - 01 44 0f 68 30 4a 79 b8-c7 8c d2 f8 ae fd 7b b5 .D.h0Jy.......{. 0010 - 90 11 89 70 3f f9 88 19-ba 2e 61 eb 41 17 f4 88 ...p?.....a.A... 0020 - 31 78 22 7a 96 e7 2c 85-c1 31 09 b3 cf d0 6e ec 1x"z..,..1....n. 0030 - bf 18 12 9f 6c 0f 42 e2-02 73 14 62 c8 70 6b cc ....l.B..s.b.pk. 0040 - 90 c1 83 9d 57 f6 77 5b-ca 3d 6f f7 06 46 49 b3 ....W.w[.=o..FI. 0050 - 76 a3 1c 57 22 38 32 8f-c0 61 fa 8a e1 af 1e 91 v..W"82..a...... 0060 - 4d 22 5e 96 5f 8c b5 5c-20 00 8a 60 2b d9 d9 47 M"^._..\ ..`+..G 0070 - 63 ab ac 47 6a 91 a1 1e-e3 99 92 14 56 8a 04 a3 c..Gj.......V... 0080 - 5c a7 53 fd 38 e4 4c 80-97 38 \.S.8.L..8 Start Time: 1767229809 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.