Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.notonlymama.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.notonlymama.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.notonlymama.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.notonlymama.jp
And you can
check your domain name
.
#
Certificate of
www.notonlymama.jp
{ "serial": "A50EB0E394FCC33E119B58066B44F2E0", "OCSP_serial": "A50EB0E394FCC33E119B58066B44F2E0", "OCSP_cert_status": "good", "OCSP_this_update": "Nov 17 10:12:18 2024 GMT", "OCSP_next_update": "Nov 24 09:12:17 2024 GMT", "domainName": "www.notonlymama.jp", "port": 443, "subjectAltName": "DNS:notonlymama.jp, DNS:*.notonlymama.jp", "is_valid": true, "CA": "Google Trust Services", "updated_at": "2024/11/02 15:43:39", "expires_at": "2025/01/31 15:43:38", "today": "2024/11/21 15:21:57", "UTC": { "updated_at": "2024-11-02T06:43:39Z", "expires_at": "2025-01-31T06:43:38Z", "today": "2024-11-21T06:21:57Z" }, "remaining_days": 71 }
#
OCSP response of
www.notonlymama.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Produced At: Nov 17 10:12:18 2024 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: B9BED5F1A61E40B24196B0C29E7E1A9D8BFCB520 Issuer Key Hash: 9077923567C4FFA8CCA9E67BD980797BCC93F938 Serial Number: A50EB0E394FCC33E119B58066B44F2E0 Cert Status: good This Update: Nov 17 10:12:18 2024 GMT Next Update: Nov 24 09:12:17 2024 GMT Signature Algorithm: ecdsa-with-SHA256 Signature Value: 30:45:02:20:7c:60:7b:3f:ee:5e:89:1c:76:0c:ec:db:58:9e: 3b:e6:63:28:51:e8:fb:9f:5c:cf:2e:a1:14:bc:aa:66:ec:23: 02:21:00:a9:23:2c:64:68:fb:c7:17:69:da:6e:8e:3d:ec:4f: ac:2f:de:71:44:f3:79:88:b6:03:42:bd:3e:9b:7f:a3:f8 ====================================== --- Certificate chain 0 s:CN = notonlymama.jp i:C = US, O = Google Trust Services, CN = WE1 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA256 v:NotBefore: Nov 2 06:43:39 2024 GMT; NotAfter: Jan 31 06:43:38 2025 GMT 1 s:C = US, O = Google Trust Services, CN = WE1 i:C = US, O = Google Trust Services LLC, CN = GTS Root R4 a:PKEY: id-ecPublicKey, 256 (bit); sigalg: ecdsa-with-SHA384 v:NotBefore: Dec 13 09:00:00 2023 GMT; NotAfter: Feb 20 14:00:00 2029 GMT 2 s:C = US, O = Google Trust Services LLC, CN = GTS Root R4 i:C = BE, O = GlobalSign nv-sa, OU = Root CA, CN = GlobalSign Root CA a:PKEY: id-ecPublicKey, 384 (bit); sigalg: RSA-SHA256 v:NotBefore: Nov 15 03:43:21 2023 GMT; NotAfter: Jan 28 00:00:42 2028 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIDrzCCA1WgAwIBAgIRAKUOsOOU/MM+EZtYBmtE8uAwCgYIKoZIzj0EAwIwOzEL MAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEMMAoG A1UEAxMDV0UxMB4XDTI0MTEwMjA2NDMzOVoXDTI1MDEzMTA2NDMzOFowGTEXMBUG A1UEAxMObm90b25seW1hbWEuanAwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAASf DJ95JjyoSYNicxZkhxzAEyILWZ7JZRtWKjD8LhFyiQshwHrOhJD0C9bD48CED39u N1ndfsCsGX+H4pU4gQsZo4ICWjCCAlYwDgYDVR0PAQH/BAQDAgeAMBMGA1UdJQQM MAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFB0l1a/gF6foMsm9 OkckEWJUtgZZMB8GA1UdIwQYMBaAFJB3kjVnxP+ozKnme9mAeXvMk/k4MF4GCCsG AQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdvb2cvcy93ZTEv cFE0MCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93ZTEuY3J0MCsGA1Ud EQQkMCKCDm5vdG9ubHltYW1hLmpwghAqLm5vdG9ubHltYW1hLmpwMBMGA1UdIAQM MAowCAYGZ4EMAQIBMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jLnBraS5nb29n L3dlMS90eWdxbTJJcDBfdy5jcmwwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDP EVbu1S58r/OHW9lpLpvpGnFnSrAX7KwB0lt3zsw7CAAAAZLr1G1LAAAEAwBIMEYC IQCKNNVZenP3v7ye4gUzvdko1++IVa3M+0tF3WqJ/vab2gIhAIpnrBaaqCiDO3+O ksI92MmjVaO6f0xKe7y3+9uxBo7rAHYAzPsPaoVxCWX+lZtTzumyfCLphVwNl422 qX5UwP5MDbAAAAGS69RtUQAABAMARzBFAiBaha1nCCWBa+1xBrBYYzxZ+JcTMxKK y7E9UT1ayTEa/AIhAOozQywN2XUd5nTkQmKZU4QLUm6j5yyKp0z3ix7MUA4aMAoG CCqGSM49BAMCA0gAMEUCIFaIY965v36xY88Z84NDDiwplufCn7xog4XxXl/wWGWs AiEA5m2XgjrZxXaSf8n2Y6HORc4lLR84/RO2gCNJebx+j1o= -----END CERTIFICATE----- subject=CN = notonlymama.jp issuer=C = US, O = Google Trust Services, CN = WE1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: ECDSA Server Temp Key: X25519, 253 bits --- SSL handshake has read 3123 bytes and written 409 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 256 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
www.notonlymama.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.