Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.riken-suuri.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.riken-suuri.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.riken-suuri.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.riken-suuri.jp
And you can
check your domain name
.
#
Certificate of
www.riken-suuri.jp
{ "serial": "0EF70647E66535ECBA44E5C1DF354CA1", "OCSP_serial": "0EF70647E66535ECBA44E5C1DF354CA1", "OCSP_cert_status": "good", "OCSP_this_update": "Nov 1 22:03:00 2025 GMT", "OCSP_next_update": "Nov 8 21:03:00 2025 GMT", "domainName": "www.riken-suuri.jp", "port": 443, "subjectAltName": "DNS:www.riken-suuri.jp", "is_valid": true, "CA": "DigiCert Inc", "updated_at": "2025/04/14 09:00:00", "expires_at": "2026/04/15 08:59:59", "today": "2025/11/03 06:45:17", "UTC": { "updated_at": "2025-04-14T00:00:00Z", "expires_at": "2026-04-14T23:59:59Z", "today": "2025-11-02T21:45:17Z" }, "remaining_days": 163 }
#
OCSP response of
www.riken-suuri.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: B76BA2EAA8AA848C79EAB4DA0F98B2C59576B9F4 Produced At: Nov 1 22:19:55 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: E4E395A229D3D4C1C31FF0980C0B4EC0098AABD8 Issuer Key Hash: B76BA2EAA8AA848C79EAB4DA0F98B2C59576B9F4 Serial Number: 0EF70647E66535ECBA44E5C1DF354CA1 Cert Status: good This Update: Nov 1 22:03:00 2025 GMT Next Update: Nov 8 21:03:00 2025 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 04:f8:3c:84:9f:13:ab:a9:26:22:3f:e9:e5:0a:8d:22:2a:8b: d2:07:b6:9c:c0:3a:af:5d:fa:2d:45:bd:9c:af:31:50:62:b9: 5f:78:4e:4e:41:53:da:4d:dd:06:27:97:ae:b3:e2:62:9b:03: 94:15:18:36:23:69:03:9a:55:21:3c:7a:a8:8e:26:ce:2c:36: 5f:7d:60:6e:a5:14:ea:6a:5e:96:d7:f1:47:34:79:52:14:cd: 84:93:da:d6:45:e7:6b:5e:34:2e:6b:6f:47:c8:b9:1a:6e:11: 12:5b:8c:1d:6b:8b:c2:69:9e:77:45:15:ba:20:fc:3d:84:82: ec:b9:82:31:88:2e:25:b5:a6:4a:d3:bf:9e:ec:e9:80:4e:b4: 86:c4:58:83:0b:30:15:32:3d:ad:81:39:8f:22:41:61:22:c4: 93:db:2e:e4:e8:58:4b:73:40:d7:57:fd:8d:4c:24:55:72:5c: 0b:4f:80:e7:f7:19:07:01:4f:29:4a:0b:ce:64:10:3a:ff:d9: 0f:da:54:24:9b:1f:b3:c9:87:09:f9:be:46:62:40:ce:94:ab: f6:06:ab:22:4b:68:fd:12:a5:b9:0e:ed:aa:06:53:5e:6c:34: 96:cc:3f:d1:d6:59:ee:e6:27:ae:b3:45:12:91:47:91:cf:50: 60:a3:0f:3f ====================================== --- Certificate chain 0 s:C = US, ST = Washington, L = Redmond, O = Microsoft Corporation, CN = www.riken-suuri.jp i:C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Apr 14 00:00:00 2025 GMT; NotAfter: Apr 14 23:59:59 2026 GMT 1 s:C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Apr 14 00:00:00 2021 GMT; NotAfter: Apr 13 23:59:59 2031 GMT 2 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA1 v:NotBefore: Nov 10 00:00:00 2006 GMT; NotAfter: Nov 10 00:00:00 2031 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGwzCCBaugAwIBAgIQDvcGR+ZlNey6ROXB3zVMoTANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yNTA0MTQwMDAwMDBa Fw0yNjA0MTQyMzU5NTlaMHExCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5n dG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9y YXRpb24xGzAZBgNVBAMTEnd3dy5yaWtlbi1zdXVyaS5qcDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANxBvHpaiWnMKgznDbYGJiAhrxHGeB0qFHuGy7nf b7u31m/qiNTOgJclwxMElV1xTgNTU2hrzUj0GQZOGXsfn3OUlvI7MG+flS4LDYVa 19BupVQLkgVloEZvCFA0HenQxWEk5u7LtwlH8JywzhnvDi147sKn6Rhm2kTUsEoQ lRuFA0Y+cqXIOhKcMud6Hl9s/NjKoKyolXK1CxRVVa5JY5P5HRk4HElhi7aMZES+ wBBpRrYqntwVXnubP7rd2cfUs+hTrTRv6pCHgC7mrBO3dPmyQaCEaO+tvflz2tqa wiTvu/2x4EKGu4nLKwagRKgCiOrvBSHagNFFsc8dDE2s14ECAwEAAaOCA3cwggNz MB8GA1UdIwQYMBaAFLdrouqoqoSMeeq02g+YssWVdrn0MB0GA1UdDgQWBBQqvRqe Bs0yihIlKAtK9osfYvCEBjAdBgNVHREEFjAUghJ3d3cucmlrZW4tc3V1cmkuanAw PgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5k aWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwgY8GA1UdHwSBhzCBhDBAoD6gPIY6aHR0cDovL2NybDMu ZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS00LmNybDBA oD6gPIY6aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hB MjU2MjAyMENBMS00LmNybDB/BggrBgEFBQcBAQRzMHEwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBJBggrBgEFBQcwAoY9aHR0cDovL2NhY2Vy dHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNy dDAMBgNVHRMBAf8EAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwAOV5S8 866pPjMbLJkHs/eQ35vCPXEyJd0hqSWsYcVOIQAAAZYyV+5eAAAEAwBIMEYCIQCB z9TGKpYUdejNFoZ9kj/lirtlH+4AdMpb4RMyI9/aqQIhANlReZmtNaMUyJiHnVRb 5iSyrOzw/JqSorzRKZvqt4eXAHYAZBHEbKQS7KeJHKICLgC8q08oB9QeNSer6v7V A8l9zfAAAAGWMlfumQAABAMARzBFAiEAmLUiST05Sc6S/smoTVtT4PRVbWPFTA3F WSvjt/5Bjk4CIEJ+Y4UpWq1tsK1aHZDan5RFZ5bBn9jicv2hSUSnv0PXAHcASZyb ad4dfOz8Nt7Nh2SmuFuvCoeAGdFVUvvp6ynd+MMAAAGWMlfuowAABAMASDBGAiEA k62PMKQslTsTh7qKXugsq4UeD/jw4XMiGmltkykhL38CIQDX8EOJ9eKvqHtCidXn Mxdt7keSI3c6TRWStoJ2MFTcOzANBgkqhkiG9w0BAQsFAAOCAQEAVatKgE7yfICX fUlsGXAVzcoBgoMFJZ//NoB+UYSGlg7TZUwQnkyxyHh/VG51GP7QE7fltQzBtQ36 ije4U20vxlVg0v5wDHESpndkCh33wig3hcB/OGWzSuVGIWyPV4EEOUNoyVpCk135 SI4TJL4OohaPafpO33vFNcDKdX85utD19YY3/xsxTv6QPX75RyK3uIA3RxLP/6JL P7lAJf4ftPZ80fQaxkyjAGtLOS/WUF/UdzFTX0jf5g60I3GjAc8J3wdg3b0ZTLlP KwOnIoVynwBRce5AT/2LdwseMdW3BBm55yl8eLDO+NHm7EIjASQY0sGxoPuZWYrb b19X4retVg== -----END CERTIFICATE----- subject=C = US, ST = Washington, L = Redmond, O = Microsoft Corporation, CN = www.riken-suuri.jp issuer=C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5075 bytes and written 771 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
www.riken-suuri.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.