Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.kanenaka-n.co.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.kanenaka-n.co.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.kanenaka-n.co.jp
And you can
check your domain name
.
#
Certificate of
www.kanenaka-n.co.jp
{ "serial": "0348074E2CF37D50FFEEFF2CD1A9BF5B", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.kanenaka-n.co.jp", "port": 443, "subjectAltName": "DNS:kanenaka-n.co.jp, DNS:www.kanenaka-n.co.jp", "is_valid": true, "CA": "Amazon", "updated_at": "2024/11/04 09:00:00", "expires_at": "2025/12/05 08:59:59", "today": "2025/05/09 23:10:22", "UTC": { "updated_at": "2024-11-04T00:00:00Z", "expires_at": "2025-12-04T23:59:59Z", "today": "2025-05-09T14:10:22Z" }, "remaining_days": 209 }
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = kanenaka-n.co.jp i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 4 00:00:00 2024 GMT; NotAfter: Dec 4 23:59:59 2025 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgIQA0gHTizzfVD/7v8s0am/WzANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI0MTEwNDAwMDAwMFoXDTI1MTIwNDIzNTk1OVowGzEZ MBcGA1UEAxMQa2FuZW5ha2Etbi5jby5qcDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJIDYycoiU/QM9d9K2R+MnFVh+fukBZSF3yj8LEJ7qXyGtd3Zc/T tqbe91uISquzsDcu9H7w8Br6zgkq3lOCWua0J8lIAMJaD9gwEl7UJ8rUMpVMS33I oJpl48Sy05hxosABRdPPjGXe2f88tfOh4IDX9PxjZ03KE4i823uJRQLzWD01eHkM 8uaC78d1U68BQPU3agd9hKIuhD2nSSIe/GdoaOpqRw+gTrjT9oFgiA2EM7xHDVE3 XD2aatBh5mNC2T18hHDn4f0R6s9dckX8/AJKygP8IThIG0v07PZBPoFMzAR/VUB1 t66zElaZytXgH05M4JI1STLHauJKtN1W8QECAwEAAaOCAwEwggL9MB8GA1UdIwQY MBaAFFXZGF/SHMwB4Vi0vqvZVUIB1y4CMB0GA1UdDgQWBBS6+fHCkVgJez4C2cw/ vLRI455o8jAxBgNVHREEKjAoghBrYW5lbmFrYS1uLmNvLmpwghR3d3cua2FuZW5h a2Etbi5jby5qcDATBgNVHSAEDDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyG Kmh0dHA6Ly9jcmwucjJtMDMuYW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1Bggr BgEFBQcBAQRpMGcwLQYIKwYBBQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpv bnRydXN0LmNvbTA2BggrBgEFBQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250 cnVzdC5jb20vcjJtMDMuY2VyMAwGA1UdEwEB/wQCMAAwggGABgorBgEEAdZ5AgQC BIIBcASCAWwBagB3ABLxTjS9U3JMhAYZw48/ehP457Vih4icbTAFhOvlhiY6AAAB kvSdB/UAAAQDAEgwRgIhAKnmfSmZ7px/4mg3EPpl84j1t3TJ0yNuvNa2nTpls9Qv AiEA5kTExdvyqRQ294pUiMJUe9a4t2gPlwioQ0VuVKIo5jAAdwDm0jFjQHeMwRBB Btdxuc7B0kD2loSG+7qHMh39HjeOUAAAAZL0nQe/AAAEAwBIMEYCIQC1fYEK/Ys+ jo6fPDpcpktSTk+/r53GARVskCrTN0cWYAIhAM0naPGmkNqPspaM8A7k6Rhh0yzw Af1f6eBKq9KYlHjaAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422qX5UwP5MDbAA AAGS9J0HswAABAMARzBFAiBZcCltcMi+iA4KudLbf6cqn/lLhA3mi79awjYhehTP 8QIhALo+BAGqiQrn+kUCJhlLOZYyZZG+J7J8qsd55dOdQvDxMA0GCSqGSIb3DQEB CwUAA4IBAQB0FE73ymZHNN/6ZcuuLk55gk/QPtQs7wN6jNQq7+LUbSHCuFzHaFcG l4RRYOCIs4RNIFF/em51sw6Eap74D6ELCD1JiOT1vplojFpOH04tW3rREZ/Is6sB UsakKjmok6oXHmoy5fUFrzlnEoZ4NkDNOSvrCzWTJonmpXU5M2MbyNc6r4242/XC oP+TTycudBvIfPpqCmiW3c74MQfNBxzMyWj0dzTuleqVIF0PjLjTWipcTQlZETkg QULvRAhXX7Tp2hBpeD1wpTG+NLvGtvCMdXnfsQgWc34c6kshuejOb63vCFdk+b8R 1MZaR3yXWKli00DL73Nd4wPfd8rvgITp -----END CERTIFICATE----- subject=CN = kanenaka-n.co.jp issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4484 bytes and written 457 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 3E9BC1296F873D0E15DE09A3E871238E439A2D6CBC06E8C1A17B3E7FBBE329CB Session-ID-ctx: Master-Key: DEB09AF2526FFB35014866EE77E83AF99F33D3C351046141DDE0114A90592D50E2B786BE3BD21791D884A4B8B2E1BABA PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 01 12 30 83 7e 91 6f 26-1f 33 25 df 14 ad 52 75 ..0.~.o&.3%...Ru 0010 - e4 22 75 3a f3 6c 11 31-33 43 05 52 89 b9 48 0b ."u:.l.13C.R..H. 0020 - 78 47 71 70 e7 5b a2 15-af d7 5c 90 cb 32 df 53 xGqp.[....\..2.S 0030 - 42 bf c1 fc 6b 34 b2 e0-b4 44 8e 1b 41 69 47 96 B...k4...D..AiG. 0040 - 07 2f 56 1f 26 24 34 38-be f8 2d 11 48 a0 3d 80 ./V.&$48..-.H.=. 0050 - 64 13 7a 84 55 49 2f 08-75 ac 6e 4a 0a 60 f5 6c d.z.UI/.u.nJ.`.l 0060 - eb ee 3b d9 c7 16 47 bb-e0 d7 f1 2a 02 ea 12 07 ..;...G....*.... 0070 - c4 16 ab 2b 0a 87 ff b1-05 57 53 d9 36 f4 e0 a2 ...+.....WS.6... 0080 - 37 af 84 0f 08 99 c9 48-7f 0e 7......H.. Start Time: 1746799822 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.kanenaka-n.co.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.