Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.notonlymama.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.notonlymama.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.notonlymama.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.notonlymama.jp
And you can
check your domain name
.
#
Certificate of
www.notonlymama.jp
{ "serial": "46F4F4D439EBC24B0EFD7898BA4823B6", "OCSP_serial": "46F4F4D439EBC24B0EFD7898BA4823B6", "OCSP_cert_status": "good", "OCSP_this_update": "Apr 25 10:46:15 2024 GMT", "OCSP_next_update": "May 2 09:46:14 2024 GMT", "domainName": "www.notonlymama.jp", "port": 443, "subjectAltName": "DNS:notonlymama.jp, DNS:*.notonlymama.jp", "is_valid": true, "CA": "Google Trust Services LLC", "updated_at": "2024/03/11 13:29:37", "expires_at": "2024/06/09 13:29:36", "today": "2024/04/28 06:39:04", "UTC": { "updated_at": "2024-03-11T04:29:37Z", "expires_at": "2024-06-09T04:29:36Z", "today": "2024-04-27T21:39:04Z" }, "remaining_days": 42 }
#
OCSP response of
www.notonlymama.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: D5FC9E0DDF1ECADD0897976E2BC55FC52BF5ECB8 Produced At: Apr 25 10:46:15 2024 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: EC4A2797F8915935139678B3E8C8A21D097B312E Issuer Key Hash: D5FC9E0DDF1ECADD0897976E2BC55FC52BF5ECB8 Serial Number: 46F4F4D439EBC24B0EFD7898BA4823B6 Cert Status: good This Update: Apr 25 10:46:15 2024 GMT Next Update: May 2 09:46:14 2024 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 60:96:62:6a:35:fb:5e:9d:61:26:e0:60:e1:f9:30:89:b6:c5: 8f:17:8c:fe:b0:a6:26:3c:0e:ac:b4:88:c4:3a:58:62:1f:91: 47:3f:3f:a5:20:53:ee:08:5c:7d:9a:25:31:d4:59:09:c4:1d: 14:bd:66:cb:8b:7f:7e:76:c5:f5:75:d8:0b:a6:54:5a:ac:4b: d1:80:30:46:5a:b0:46:2c:de:a7:80:2e:a7:bf:2a:0a:3d:b5: 09:e4:30:dc:36:fe:f5:cf:1c:96:44:4b:04:77:4d:33:96:b0: 6f:13:8c:b5:49:ff:b1:17:90:25:c3:cc:d0:83:da:2b:ac:fc: 6b:67:dd:aa:b7:32:c3:8d:be:e7:85:6c:68:f9:4e:03:0e:f2: 0a:91:03:e3:08:99:29:f9:dd:a9:9a:89:be:0c:55:9a:e9:d5: 9e:4d:27:ba:07:83:97:60:a5:b6:fa:70:17:1e:8c:e2:70:82: a9:6c:a2:97:b7:90:e7:f7:13:a4:75:97:b5:72:90:a6:b6:ba: d2:f3:7b:51:62:de:39:fa:2d:e9:ff:aa:79:1b:e7:45:f4:ed: c2:66:5f:b3:25:36:57:6e:2e:05:d6:98:2d:32:67:8b:62:5f: 69:2c:2e:db:a0:9c:f7:2a:31:db:dd:7b:2b:32:fa:d7:f9:0f: ed:9a:05:2c ====================================== --- Certificate chain 0 s:CN = notonlymama.jp i:C = US, O = Google Trust Services LLC, CN = GTS CA 1P5 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Mar 11 04:29:37 2024 GMT; NotAfter: Jun 9 04:29:36 2024 GMT 1 s:C = US, O = Google Trust Services LLC, CN = GTS CA 1P5 i:C = US, O = Google Trust Services LLC, CN = GTS Root R1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Aug 13 00:00:42 2020 GMT; NotAfter: Sep 30 00:00:42 2027 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R1 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: rsaEncryption, 4096 (bit); sigalg: RSA-SHA256 v:NotBefore: Jun 19 00:00:42 2020 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIQRvT01DnrwksO/XiYukgjtjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDAzMTEwNDI5MzdaFw0yNDA2MDkw NDI5MzZaMBkxFzAVBgNVBAMTDm5vdG9ubHltYW1hLmpwMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAovy7Xq1kFDxodODs1MRS5XKyRbKoWU1u0rcW3kks AyIRanG0YUCbE5sOQzrEnOvDtpCk+JcipdoDX6aGSCYoqKSmmttt4kMKsTQR4PYY fgIn/rWKE4HZen22U0cc+WGMg+bFVL7mQaKE5vmhwqiakPOFU179agwAICm8+QMg EwRCQMybXsoKMdFLDfgD3lGKoBDTphYUTUEhFKML/bUTa+k19Fs4cB0ZUBoez9Fo D6FP8AqjZX5F6+NSfysKrYOxQLDy8cCvRK+lCz3dzruF2aDeCN76OciIfCzt5+0C fcmmxrbhKeyZ8FWREOQph3gpxDeNNtAlqqH3IoLgcwjdyQIDAQABo4IChzCCAoMw DgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQC MAAwHQYDVR0OBBYEFLvVCn7I0Hxu5hb3rv9znWFRjvOdMB8GA1UdIwQYMBaAFNX8 ng3fHsrdCJeXbivFX8Ur9ey4MHgGCCsGAQUFBwEBBGwwajA1BggrBgEFBQcwAYYp aHR0cDovL29jc3AucGtpLmdvb2cvcy9ndHMxcDUvNktMUjdHVjFBa0EwMQYIKwYB BQUHMAKGJWh0dHA6Ly9wa2kuZ29vZy9yZXBvL2NlcnRzL2d0czFwNS5kZXIwKwYD VR0RBCQwIoIObm90b25seW1hbWEuanCCECoubm90b25seW1hbWEuanAwIQYDVR0g BBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6Athito dHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUvNVlVNklFR01HYjQuY3JsMIIBBAYK KwYBBAHWeQIEAgSB9QSB8gDwAHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZ RnEftZsAAAGOK/zkHwAABAMARjBEAiBAROS940wPlLnRDnLHAmnwdVtX+xcazSLi Nt/SeWAcuAIgIOLluJbxyNbZWG/2uHzE3acYeyeh7wBk4dK8WZE9fg8AdwA7U3d1 Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY4r/OQwAAAEAwBIMEYCIQD0 6HePJaHko53EAvtUDptRlQLmzC1uCPa1tQve83r4UAIhAKhJeNjyxoiq8Cj6wren S6qoC0hiZh/7niYfEOPtk5HWMA0GCSqGSIb3DQEBCwUAA4IBAQAj+NYXZAmnXWFc owT8pZnQFS/EtWaAj7piNfVFcr1ss5fcT+hYkpBu1JqJCDIm6oU6unOtPDKUj48x RoVDyx+dJpPc66kyQ4p06bVfRk5WQNd77q8A91HaqI9F/c2eXvianWuYjw3Fk+kH Lqv/seNSQUHSJV7Nv7Qzs0t1Ut4G4x4XQZeR70uy0+ynexndmbLsnFTsIHNyehmR KoxOshl7qzGiwnfWgEY/FrDSsbo9eibVUlZuKfgBQAeThpOGI41fUPUUHDHvHvji 7Pw2fSZA0Fir1OTy/eXXCwxCGzJngEjm0YQ6NU7EoglOvSnREQeDN3ccGQXCSfrF ArkeNFdH -----END CERTIFICATE----- subject=CN = notonlymama.jp issuer=C = US, O = Google Trust Services LLC, CN = GTS CA 1P5 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: X25519, 253 bits --- SSL handshake has read 5187 bytes and written 409 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
www.notonlymama.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.