Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.kanenaka-n.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.kanenaka-n.co.jp
And you can
check your domain name
.
#
Certificate of
www.kanenaka-n.co.jp
{ "serial": "0348074E2CF37D50FFEEFF2CD1A9BF5B", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.kanenaka-n.co.jp", "port": 443, "subjectAltName": "DNS:kanenaka-n.co.jp, DNS:www.kanenaka-n.co.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2024/11/04 09:00:00", "expires_at": "2025/12/05 08:59:59", "today": "2025/07/13 11:54:54", "UTC": { "updated_at": "2024-11-04T00:00:00Z", "expires_at": "2025-12-04T23:59:59Z", "today": "2025-07-13T02:54:54Z" }, "remaining_days": 144 }
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = kanenaka-n.co.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 4 00:00:00 2024 GMT; NotAfter: Dec 4 23:59:59 2025 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgIQA0gHTizzfVD/7v8s0am/WzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MTEwNDAwMDAwMFoXDTI1MTIwNDIzNTk1OVowGzEZ MBcGA1UEAxMQa2FuZW5ha2Etbi5jby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJIDYycoiU/QM9d9K2R+MnFVh+fukBZSF3yj8LEJ7qXyGtd3Zc/T tqbe91uISquzsDcu9H7w8Br6zgkq3lOCWua0J8lIAMJaD9gwEl7UJ8rUMpVMS33I oJpl48Sy05hxosABRdPPjGXe2f88tfOh4IDX9PxjZ03KE4i823uJRQLzWD01eHkM 8uaC78d1U68BQPU3agd9hKIuhD2nSSIe/GdoaOpqRw+gTrjT9oFgiA2EM7xHDVE3 XD2aatBh5mNC2T18hHDn4f0R6s9dckX8/AJKygP8IThIG0v07PZBPoFMzAR/VUB1 t66zElaZytXgH05M4JI1STLHauJKtN1W8QECAwEAAaOCAwEwggL9MB8GA1UdIwQY MBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBS6+fHCkVgJez4C2cw/ vLRI455o8jAxBgNVHREEKjAoghBrYW5lbmFrYS1uLmNvLmpwghR3d3cua2FuZW5h a2Etbi5jby5qcDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyG Kmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1Bggr BgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpv bnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250 cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQC BIIBcASCAWwBagB3ABLxTjS9U3JMhAYZw48/ehP457Vih4icbTAFhOvlhiY6AAAB kvSdB/UAAAQDAEgwRgIhAKnmfSmZ7px/4mg3EPpl84j1t3TJ0yNuvNa2nTpls9Qv AiEA5kTExdvyqRQ294pUiMJUe9a4t2gPlwioQ0VuVKIo5jAAdwDm0jFjQHeMwRBB Btdxuc7B0kD2loSG+7qHMh39HjeOUAAAAZL0nQe/AAAEAwBIMEYCIQC1fYEK/Ys+ jo6fPDpcpktSTk+/r53GARVskCrTN0cWYAIhAM0naPGmkNqPspaM8A7k6Rhh0yzw Af1f6eBKq9KYlHjaAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAA AAGS9J0HswAABAMARzBFAiBZcCltcMi+iA4KudLbf6cqn/lLhA3mi79awjYhehTP 8QIhALo+BAGqiQrn+kUCJhlLOZYyZZG+J7J8qsd55dOdQvDxMA0GCSqGSIb3DQEB CwUAA4IBAQB0FE73ymZHNN/6ZcuuLk55gk/QPtQs7wN6jNQq7+LUbSHCuFzHaFcG l4RRYOCIs4RNIFF/em51sw6Eap74D6ELCD1JiOT1vplojFpOH04tW3rREZ/Is6sB UsakKjmok6oXHmoy5fUFrzlnEoZ4NkDNOSvrCzWTJonmpXU5M2MbyNc6r4242/XC oP+TTycudBvIfPpqCmiW3c74MQfNBxzMyWj0dzTuleqVIF0PjLjTWipcTQlZETkg QULvRAhXX7Tp2hBpeD1wpTG+NLvGtvCMdXnfsQgWc34c6kshuejOb63vCFdk+b8R 1MZaR3yXWKli00DL73Nd4wPfd8rvgITp -----END CERTIFICATE----- subject=CN = kanenaka-n.co.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4484 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: AC00F60832E042AC9AC7E67D7C57CF67973B5D0E2C5814FA855D189CA02669F1 Session-ID-ctx: Master-Key: D0FEB56208235C10E17311DF97B6A82E6E48F021E74DA98F35DC5F8C65CC38593758A4A64E877FE90B3A10822F8ECE40 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 01 fc 5f 72 b6 54 c5 fe-e6 4a 2c 66 a4 ed 25 d7 .._r.T...J,f..%. 0010 - 6c c5 bc ad 1e 74 43 42-57 a2 b3 7b 24 e4 ee 59 l....tCBW..{$..Y 0020 - 35 81 b0 bd 44 38 02 f0-ec 1c 6f cd cf 57 e4 6a 5...D8....o..W.j 0030 - 36 a3 5d 8a 30 49 e6 ef-97 83 a2 0f 5d 8a 12 47 6.].0I......]..G 0040 - e2 46 a8 da 22 1b 94 9d-8f 25 e5 6b 93 12 2e fb .F.."....%.k.... 0050 - e8 26 f2 78 0d 4a 36 97-2f d1 56 3d ef 3a df c7 .&.x.J6./.V=.:.. 0060 - 05 94 a3 5c 0f ae 88 17-ed 24 4e 15 d1 02 0d e8 ...\.....$N..... 0070 - 4f 5b 74 10 13 1b bf 34-cb 81 ff 9d b9 39 36 ba O[t....4.....96. 0080 - 3d 77 55 96 0d 93 be a2-d7 70 =wU......p Start Time: 1752375294 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.