Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.kanenaka-n.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.kanenaka-n.co.jp
And you can
check your domain name
.
#
Certificate of
www.kanenaka-n.co.jp
{ "serial": "073ADB21BE6A55E7CF3C38976607CCD6", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.kanenaka-n.co.jp", "port": 443, "subjectAltName": "DNS:kanenaka-n.co.jp, DNS:www.kanenaka-n.co.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2025/10/06 09:00:00", "expires_at": "2026/11/05 08:59:59", "today": "2026/04/01 12:00:36", "UTC": { "updated_at": "2025-10-06T00:00:00Z", "expires_at": "2026-11-04T23:59:59Z", "today": "2026-04-01T03:00:36Z" }, "remaining_days": 217 }
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = kanenaka-n.co.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M04 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Oct 6 00:00:00 2025 GMT; NotAfter: Nov 4 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M04 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:35 2022 GMT; NotAfter: Aug 23 22:26:35 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF2TCCBMGgAwIBAgIQBzrbIb5qVefPPDiXZgfM1jANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTA0MB4XDTI1MTAwNjAwMDAwMFoXDTI2MTEwNDIzNTk1OVowGzEZ MBcGA1UEAxMQa2FuZW5ha2Etbi5jby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOQfcNtp+96jeH494o9xKSZXK44zzFK9wA9+Hg5RXEguvHmHjeLh aDCdp+jXK1zHh+w3WE16/uSl5wggrhAvYp7QEYowBZrfsLimnRYOTY3eMbE6SXPm nzIMXMfshQnfJK5iQVdD0A334GsFf2n5fGG2Zjlko7NK9mGptUiZF3ZejwE1OE6D fOPSKWt1bSVp4Rgv6nOgixlamMDcO3ikKQtmHcXDcOlHrl/hD7o6Ldp7R+tx1+Vw 1hB7yCttXqJxLrXQWmwFP3/K2M4KDQ0Uon48sxm6r1y79rKJyfsdPUzJbn3/yTnq O2VvxhBdjPakn+Vcx1oduiOZTLuO5KSR4TUCAwEAAaOCAvYwggLyMB8GA1UdIwQY MBaAFB9SkmFWglR/gWbYHT0KqjJch90IMB0GA1UdDgQWBBTSxi0E1VDFKZnyFdQl KwfBYimRizAxBgNVHREEKjAoghBrYW5lbmFrYS1uLmNvLmpwghR3d3cua2FuZW5h a2Etbi5jby5qcDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAw EwYDVR0lBAwwCgYIKwYBBQUHAwEwOwYDVR0fBDQwMjAwoC6gLIYqaHR0cDovL2Ny bC5yMm0wNC5hbWF6b250cnVzdC5jb20vcjJtMDQuY3JsMHUGCCsGAQUFBwEBBGkw ZzAtBggrBgEFBQcwAYYhaHR0cDovL29jc3AucjJtMDQuYW1hem9udHJ1c3QuY29t MDYGCCsGAQUFBzAChipodHRwOi8vY3J0LnIybTA0LmFtYXpvbnRydXN0LmNvbS9y Mm0wNC5jZXIwDAYDVR0TAQH/BAIwADCCAX8GCisGAQQB1nkCBAIEggFvBIIBawFp AHYA1219ENGn9XfCx+lf1wC/+YLJM1pl4dCzAXMXwMjFaXcAAAGZtuOuBwAABAMA RzBFAiEAyi+IcSEI/IHdbJJ7ZV5l9XJAEZXqLZVghnb5HeY4DTcCIEuzMbp5IOTu u+bnHkcrHsf9RCcaBZJT3oXgFg/XTv8CAHcAwjF+V0UZo0XufzjespBB68fCIVoi v3/Vta12mtkOUs0AAAGZtuOuQwAABAMASDBGAiEAq6MhRhm2FY4dI56gvU7oAapx PZuTa6HT1p4eXdU3u8QCIQDRrAbP9e1R5Dqcpu7ERkTx1Z9t70REK71ZoVDhaKNI NQB2AJROQ4f67MHvgfMZJCaoGGUBx9NfOAIBP3JnfVU3LhnYAAABmbbjrlcAAAQD AEcwRQIge8QTfdkTPzI6r3Sehv2JU7NTTwWDclG98KXBSOnD4qoCIQCb0xuNxryk DDHWsoPFKsHwxSp1eC3Plo/0BEznCzmvQzANBgkqhkiG9w0BAQsFAAOCAQEADhcE VjNM2ElEahIa2VjhMvA6Nrb83TTdW9qZsR6HbCqj9YqOM3NgtU1Iq6iqq+n1dvgN dLzoUtG9fusxL+wK2+4vSb+OZvJ14xAsJ+1yo2xeMgkV5zn1kJqmO1aVDRK/NeIt 2P+QdvW9yoBOJIFc9U6MVEyIay/GNhXoFBFGTjBdongGMfgD2wzS4mwakkaIIqYe KiaRJR45YZI0K/v70bBfctoAN2CmJHl2LAYio4Y6VFuNLYMRXqucTtLYYwwfSH8R pJ+UN8W/h9tNk23i2M1DJ+hlrejMKfo/Th+mJoUcJUPSR0sn3AaTJWmUAcYhz+9w PCpsgTcirqfGY4KJGA== -----END CERTIFICATE----- subject=CN = kanenaka-n.co.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M04 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4473 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 32F79C6F4F027C2D65DA80F738487C794B94EEFFC24B038A173032F8E791860D Session-ID-ctx: Master-Key: 025A1D2C25EB7F078D7CAE0BFD7D420DB58DB7E1851B2413C13D4049EABF71F833E555FAE1140906D0464352BD31AC14 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 82463 (seconds) TLS session ticket: 0000 - 01 2f 45 66 1d be 2e fe-da b8 ee 81 ec 37 d6 20 ./Ef.........7. 0010 - e3 a9 2a 3d 65 59 6c 33-24 d3 5d 3f d0 f9 c4 c2 ..*=eYl3$.]?.... 0020 - ed d1 c7 27 3e ac be 04-00 a1 18 90 36 61 2c 57 ...'>.......6a,W 0030 - e5 a8 34 5b d4 c5 f3 e7-35 c5 b5 41 66 34 9e 50 ..4[....5..Af4.P 0040 - 65 70 df b2 3e a6 3d 29-d7 ec 24 fd 50 1f 20 6a ep..>.=)..$.P. j 0050 - 46 94 ca 9f 1c f7 5b c3-04 0e 19 fc c0 a5 15 55 F.....[........U 0060 - d2 3c d4 8a 8b 9b 6e b7-f6 47 2b c2 0d 38 60 95 .<....n..G+..8`. 0070 - 2f 61 ab 60 bf c6 86 ce-13 35 36 64 21 e9 fe c7 /a.`.....56d!... 0080 - 85 7d d2 a3 84 4c 25 16-73 ec .}...L%.s. Start Time: 1775012436 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.