Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.riken-suuri.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.riken-suuri.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.riken-suuri.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.riken-suuri.jp
And you can
check your domain name
.
#
Certificate of
www.riken-suuri.jp
{ "serial": "0EF70647E66535ECBA44E5C1DF354CA1", "OCSP_serial": "0EF70647E66535ECBA44E5C1DF354CA1", "OCSP_cert_status": "good", "OCSP_this_update": "May 9 04:03:01 2025 GMT", "OCSP_next_update": "May 16 03:03:01 2025 GMT", "domainName": "www.riken-suuri.jp", "port": 443, "subjectAltName": "DNS:www.riken-suuri.jp", "is_valid": true, "CA": "DigiCert Inc", "updated_at": "2025/04/14 09:00:00", "expires_at": "2026/04/15 08:59:59", "today": "2025/05/09 22:53:50", "UTC": { "updated_at": "2025-04-14T00:00:00Z", "expires_at": "2026-04-14T23:59:59Z", "today": "2025-05-09T13:53:50Z" }, "remaining_days": 340 }
#
OCSP response of
www.riken-suuri.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: B76BA2EAA8AA848C79EAB4DA0F98B2C59576B9F4 Produced At: May 9 04:19:13 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: E4E395A229D3D4C1C31FF0980C0B4EC0098AABD8 Issuer Key Hash: B76BA2EAA8AA848C79EAB4DA0F98B2C59576B9F4 Serial Number: 0EF70647E66535ECBA44E5C1DF354CA1 Cert Status: good This Update: May 9 04:03:01 2025 GMT Next Update: May 16 03:03:01 2025 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: ba:a0:03:66:67:ab:6f:ad:66:cd:4c:6d:0c:03:2a:b4:fe:38: 5c:0d:f3:a1:d9:7b:76:1d:c0:04:52:37:8d:bd:95:84:9e:9b: 89:10:da:18:7d:8e:0a:d6:4c:10:08:44:0d:ad:d5:2f:07:0d: a8:53:3a:d3:bf:4a:41:cc:63:7f:35:2a:89:82:91:f7:ab:62: 54:9f:3e:3e:27:e4:8a:89:1e:f1:80:21:d5:a0:16:28:aa:71: 9e:d8:54:75:6c:3e:b7:28:7d:dd:28:68:71:99:24:5b:e4:74: 27:a5:27:41:3e:ce:84:a2:6a:95:98:4b:0d:d9:5d:7f:98:db: 76:f8:53:a0:f4:bb:ca:b6:8a:5a:2a:ef:da:05:60:c9:d6:ab: 73:b2:59:b9:89:45:3a:ea:86:e0:23:ac:25:de:59:70:a6:93: 3f:96:04:ca:e4:3f:e1:39:cf:4c:ec:d6:27:03:96:10:7d:83: 6e:3a:f0:38:58:6d:e4:db:db:e7:75:35:80:c4:3f:98:f8:9e: f9:78:23:19:89:12:03:5c:af:de:01:12:1d:b8:06:17:78:5f: a7:c2:77:3f:f2:20:af:63:cc:b8:94:fb:de:6b:3b:c5:aa:05: 47:4a:c4:e9:fe:cd:35:19:ed:1e:24:05:63:77:93:ee:66:19: 4f:8d:c0:02 ====================================== --- Certificate chain 0 s:C = US, ST = Washington, L = Redmond, O = Microsoft Corporation, CN = www.riken-suuri.jp i:C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Apr 14 00:00:00 2025 GMT; NotAfter: Apr 14 23:59:59 2026 GMT 1 s:C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Apr 14 00:00:00 2021 GMT; NotAfter: Apr 13 23:59:59 2031 GMT 2 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA1 v:NotBefore: Nov 10 00:00:00 2006 GMT; NotAfter: Nov 10 00:00:00 2031 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGwzCCBaugAwIBAgIQDvcGR+ZlNey6ROXB3zVMoTANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yNTA0MTQwMDAwMDBa Fw0yNjA0MTQyMzU5NTlaMHExCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5n dG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9y YXRpb24xGzAZBgNVBAMTEnd3dy5yaWtlbi1zdXVyaS5qcDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANxBvHpaiWnMKgznDbYGJiAhrxHGeB0qFHuGy7nf b7u31m/qiNTOgJclwxMElV1xTgNTU2hrzUj0GQZOGXsfn3OUlvI7MG+flS4LDYVa 19BupVQLkgVloEZvCFA0HenQxWEk5u7LtwlH8JywzhnvDi147sKn6Rhm2kTUsEoQ lRuFA0Y+cqXIOhKcMud6Hl9s/NjKoKyolXK1CxRVVa5JY5P5HRk4HElhi7aMZES+ wBBpRrYqntwVXnubP7rd2cfUs+hTrTRv6pCHgC7mrBO3dPmyQaCEaO+tvflz2tqa wiTvu/2x4EKGu4nLKwagRKgCiOrvBSHagNFFsc8dDE2s14ECAwEAAaOCA3cwggNz MB8GA1UdIwQYMBaAFLdrouqoqoSMeeq02g+YssWVdrn0MB0GA1UdDgQWBBQqvRqe Bs0yihIlKAtK9osfYvCEBjAdBgNVHREEFjAUghJ3d3cucmlrZW4tc3V1cmkuanAw PgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5k aWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwgY8GA1UdHwSBhzCBhDBAoD6gPIY6aHR0cDovL2NybDMu ZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS00LmNybDBA oD6gPIY6aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hB MjU2MjAyMENBMS00LmNybDB/BggrBgEFBQcBAQRzMHEwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBJBggrBgEFBQcwAoY9aHR0cDovL2NhY2Vy dHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNy dDAMBgNVHRMBAf8EAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwAOV5S8 866pPjMbLJkHs/eQ35vCPXEyJd0hqSWsYcVOIQAAAZYyV+5eAAAEAwBIMEYCIQCB z9TGKpYUdejNFoZ9kj/lirtlH+4AdMpb4RMyI9/aqQIhANlReZmtNaMUyJiHnVRb 5iSyrOzw/JqSorzRKZvqt4eXAHYAZBHEbKQS7KeJHKICLgC8q08oB9QeNSer6v7V A8l9zfAAAAGWMlfumQAABAMARzBFAiEAmLUiST05Sc6S/smoTVtT4PRVbWPFTA3F WSvjt/5Bjk4CIEJ+Y4UpWq1tsK1aHZDan5RFZ5bBn9jicv2hSUSnv0PXAHcASZyb ad4dfOz8Nt7Nh2SmuFuvCoeAGdFVUvvp6ynd+MMAAAGWMlfuowAABAMASDBGAiEA k62PMKQslTsTh7qKXugsq4UeD/jw4XMiGmltkykhL38CIQDX8EOJ9eKvqHtCidXn Mxdt7keSI3c6TRWStoJ2MFTcOzANBgkqhkiG9w0BAQsFAAOCAQEAVatKgE7yfICX fUlsGXAVzcoBgoMFJZ//NoB+UYSGlg7TZUwQnkyxyHh/VG51GP7QE7fltQzBtQ36 ije4U20vxlVg0v5wDHESpndkCh33wig3hcB/OGWzSuVGIWyPV4EEOUNoyVpCk135 SI4TJL4OohaPafpO33vFNcDKdX85utD19YY3/xsxTv6QPX75RyK3uIA3RxLP/6JL P7lAJf4ftPZ80fQaxkyjAGtLOS/WUF/UdzFTX0jf5g60I3GjAc8J3wdg3b0ZTLlP KwOnIoVynwBRce5AT/2LdwseMdW3BBm55yl8eLDO+NHm7EIjASQY0sGxoPuZWYrb b19X4retVg== -----END CERTIFICATE----- subject=C = US, ST = Washington, L = Redmond, O = Microsoft Corporation, CN = www.riken-suuri.jp issuer=C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5075 bytes and written 771 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
www.riken-suuri.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.