Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.kepura.com
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.kepura.com
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.kepura.com
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.kepura.com
And you can
check your domain name
.
#
Certificate of
www.kepura.com
{ "serial": "025F3F5D1C3CAC7FDCF709845153FC15", "OCSP_serial": null, "OCSP_cert_status": null, "OCSP_this_update": null, "OCSP_next_update": null, "domainName": "www.kepura.com", "port": 443, "subjectAltName": "DNS:*.kepura.com, DNS:kepura.com", "is_valid": true, "CA": "Amazon", "updated_at": "2025/03/14 09:00:00", "expires_at": "2026/04/14 08:59:59", "today": "2025/07/13 11:25:09", "UTC": { "updated_at": "2025-03-14T00:00:00Z", "expires_at": "2026-04-13T23:59:59Z", "today": "2025-07-13T02:25:09Z" }, "remaining_days": 274 }
#
OCSP response of
www.kepura.com
from OCSP Stapling
CONNECTED(00000003) OCSP response: no response sent --- Certificate chain 0 s:CN = *.kepura.com i:C = US, O = Amazon, CN = Amazon RSA 2048 M03 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Mar 14 00:00:00 2025 GMT; NotAfter: Apr 13 23:59:59 2026 GMT 1 s:C = US, O = Amazon, CN = Amazon RSA 2048 M03 i:C = US, O = Amazon, CN = Amazon Root CA 1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 23 22:26:04 2022 GMT; NotAfter: Aug 23 22:26:04 2030 GMT 2 s:C = US, O = Amazon, CN = Amazon Root CA 1 i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: May 25 12:00:00 2015 GMT; NotAfter: Dec 31 01:00:00 2037 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFzzCCBLegAwIBAgIQAl8/XRw8rH/c9wmEUVP8FTANBgkqhkiG9w0BAQsFADA8 MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRwwGgYDVQQDExNBbWF6b24g UlNBIDIwNDggTTAzMB4XDTI1MDMxNDAwMDAwMFoXDTI2MDQxMzIzNTk1OVowFzEV MBMGA1UEAwwMKi5rZXB1cmEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAsBXDV+HgZLmpQxJY5a8FTvMXWdXRG7t1nwoK4c3kogT9FiZs+SAMfls4 gmVBW0EKKNBMK8AzFXAweufpGM0z8itdgzqqvwTQGMc8ayolSX9aLlt6Nrcror4U fpPHouR3+2PqXQn/I709CHcshqaiyaxoOT398VBoc7fvJEwq+mCyBP6zkqit1Dds nJv/lbxYIOcHxE8nVOsMlKZlPLWMr+abYXkUQzNoYbxfs6tcT2sxFSvbBfPJFk7E iIptFbdI9VopAE/nyShesBLvQR6qXwy8ulvG0HgFSB9LFdd6jR1AYZAzR8K0vzh9 AgAOHMqoVOa9zPjB7g/+QKsKa+HKhQIDAQABo4IC8DCCAuwwHwYDVR0jBBgwFoAU VdkYX9IczAHhWLS+q9lVQgHXLgIwHQYDVR0OBBYEFGZj9eUyoqD391V4zDrDv+wX TM6JMCMGA1UdEQQcMBqCDCoua2VwdXJhLmNvbYIKa2VwdXJhLmNvbTATBgNVHSAE DDAKMAgGBmeBDAECATAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMDsGA1UdHwQ0MDIwMKAuoCyGKmh0dHA6Ly9jcmwucjJtMDMu YW1hem9udHJ1c3QuY29tL3IybTAzLmNybDB1BggrBgEFBQcBAQRpMGcwLQYIKwYB BQUHMAGGIWh0dHA6Ly9vY3NwLnIybTAzLmFtYXpvbnRydXN0LmNvbTA2BggrBgEF BQcwAoYqaHR0cDovL2NydC5yMm0wMy5hbWF6b250cnVzdC5jb20vcjJtMDMuY2Vy MAwGA1UdEwEB/wQCMAAwggF9BgorBgEEAdZ5AgQCBIIBbQSCAWkBZwB2AA5XlLzz rqk+MxssmQez95Dfm8I9cTIl3SGpJaxhxU4hAAABlZIomBwAAAQDAEcwRQIhAPEn 1u5TT73GqvkC7fkEIA4igONhSfj7+XZYK9KrgUqsAiB/QeRpohN+w7CLqZY7+hlu wx3qHSDYCX1h8bu07VLcbwB2AGQRxGykEuyniRyiAi4AvKtPKAfUHjUnq+r+1QPJ fc3wAAABlZIol8kAAAQDAEcwRQIhAK+LeerDcyU2Nl/3BzvDwK3XTJ6j81p2qutX YaBmL/+nAiA23+mTl6Jz4Noh7uMx0Junjfzn2wy0fEgB4iOxIcLCiwB1AEmcm2ne HXzs/DbezYdkprhbrwqHgBnRVVL76esp3fjDAAABlZIol9IAAAQDAEYwRAIgJZfO tBKPPrap8Pw/TcnUJu6e1pRleZrr8L0ICWY4fqwCIBMJEiz/6usPHmrO9wjr9bc4 +4c50U2Joho4eP/8zXbIMA0GCSqGSIb3DQEBCwUAA4IBAQCjqZvsqaE+aFqco+Ws UWy/M3pgUsujIp0/T+gmvQ9P/talrhQZRuYGwVjw/PUODhsmJ9o3lvizouVHxfu0 u9ZqVUlERY9Pj/6tPi4sQ1JSS6zYZxhynjDtDcY1V4oV2NLVPUaGEwY2Zlttue5C b/Qop/vq6tjKYMfEs+tnnhPd9bM6s0U7igWw3PN9U2xQzATVxRbLYKblQJMi/01b Zpe7+LLD82ivUpDsgYmfRqIlxqzQSSO08mWNiV1VVKF02/wNNWB1iX4YlAIupDIf w0W81bB5F3ea4eRnszCocWyKLhPJD9JFZIxkUM/l7Km7pufAvifWqUHp7RQTXVeD RRM4 -----END CERTIFICATE----- subject=CN = *.kepura.com issuer=C = US, O = Amazon, CN = Amazon RSA 2048 M03 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 4463 bytes and written 451 bytes Verification: OK --- New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256 Server public key is 2048 bit Secure Renegotiation IS supported Compression: NONE Expansion: NONE No ALPN negotiated SSL-Session: Protocol : TLSv1.2 Cipher : ECDHE-RSA-AES128-GCM-SHA256 Session-ID: 5B8762B45C55B9B059E2425EDC1EF6E76B7CD6A410CC65DD543465DF99F5760F Session-ID-ctx: Master-Key: 8F59CF14B1BB98E6CD30D9B3B7CD27C4C882E8987FBFCB7EF07F4CEB22E36F57B3952D6E91CFDEDAAB4C4D0876AFF9B0 PSK identity: None PSK identity hint: None SRP username: None TLS session ticket lifetime hint: 86400 (seconds) TLS session ticket: 0000 - 01 19 00 8b 9c 02 c9 9c-17 c3 c9 20 0e d9 0c ac ........... .... 0010 - 0d 64 80 a4 7d 25 2f a9-45 cf db 56 f5 dd 21 d6 .d..}%/.E..V..!. 0020 - 7c 8b 38 b5 2a c3 84 5e-fc 5e 0c 5a 5a 02 5c ca |.8.*..^.^.ZZ.\. 0030 - 67 03 14 14 27 92 63 9d-d0 e1 2a 58 cc e6 2f 31 g...'.c...*X../1 0040 - 6c 13 b8 56 24 65 e1 c5-6d 9a 0c 49 65 f2 d6 c8 l..V$e..m..Ie... 0050 - 05 f7 a0 68 d7 f5 52 4c-07 62 a0 d7 8d 29 c4 5a ...h..RL.b...).Z 0060 - 17 6b 89 bc b4 ac f1 fe-61 0f 5b 94 d1 a5 b6 4d .k......a.[....M 0070 - 45 6f e9 97 61 db bd 59-69 f2 9b 49 3d 89 c3 7b Eo..a..Yi..I=..{ 0080 - be 98 98 e6 f7 f9 f7 31-b2 f7 .......1.. Start Time: 1752373512 Timeout : 7200 (sec) Verify return code: 0 (ok) Extended master secret: yes ---
#
OCSP response of
www.kepura.com
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.