Welcome to OCSP Checker.
Author: coeurl (
@debiru_R
)
This is test page for
OCSP Stapling Test
.
Test URL:
https://www.riken-suuri.jp
Each APIs:
https://ssl.lavoscore.org/api/sslcert-expires/?q=www.riken-suuri.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp-stapling/?q=www.riken-suuri.jp
https://ssl.lavoscore.org/api/sslcert-expires/ocsp/?q=www.riken-suuri.jp
And you can
check your domain name
.
#
Certificate of
www.riken-suuri.jp
{ "serial": "0EF70647E66535ECBA44E5C1DF354CA1", "OCSP_serial": "0EF70647E66535ECBA44E5C1DF354CA1", "OCSP_cert_status": "good", "OCSP_this_update": "Dec 30 22:03:00 2025 GMT", "OCSP_next_update": "Jan 6 21:03:00 2026 GMT", "domainName": "www.riken-suuri.jp", "port": 443, "subjectAltName": "DNS:www.riken-suuri.jp", "is_valid": true, "CA": "DigiCert Inc", "updated_at": "2025/04/14 09:00:00", "expires_at": "2026/04/15 08:59:59", "today": "2026/01/01 08:15:27", "UTC": { "updated_at": "2025-04-14T00:00:00Z", "expires_at": "2026-04-14T23:59:59Z", "today": "2025-12-31T23:15:27Z" }, "remaining_days": 104 }
#
OCSP response of
www.riken-suuri.jp
from OCSP Stapling
CONNECTED(00000003) OCSP response: ====================================== OCSP Response Data: OCSP Response Status: successful (0x0) Response Type: Basic OCSP Response Version: 1 (0x0) Responder Id: B76BA2EAA8AA848C79EAB4DA0F98B2C59576B9F4 Produced At: Dec 30 22:19:33 2025 GMT Responses: Certificate ID: Hash Algorithm: sha1 Issuer Name Hash: E4E395A229D3D4C1C31FF0980C0B4EC0098AABD8 Issuer Key Hash: B76BA2EAA8AA848C79EAB4DA0F98B2C59576B9F4 Serial Number: 0EF70647E66535ECBA44E5C1DF354CA1 Cert Status: good This Update: Dec 30 22:03:00 2025 GMT Next Update: Jan 6 21:03:00 2026 GMT Signature Algorithm: sha256WithRSAEncryption Signature Value: 77:05:f8:ae:44:03:7e:2d:66:7a:5e:e1:7b:78:10:20:46:a6: 11:2e:38:2b:53:cc:64:7b:de:87:97:1e:0e:5c:68:e3:1c:ed: c6:9b:c7:aa:1e:0b:46:2d:74:5b:9b:3a:e1:48:25:99:47:c3: 89:43:20:e2:94:6d:b6:89:09:47:15:fb:5e:56:96:22:2f:a5: ac:30:4d:ee:2b:89:91:dd:22:58:33:f8:ae:94:95:a8:11:45: e9:8d:6f:e8:4b:53:c7:28:98:f6:29:85:09:ad:94:dc:2a:ee: f7:cd:93:2e:f5:46:0f:3d:f7:bd:51:af:76:19:c3:ac:2d:e9: 83:a8:3e:69:43:5f:a0:46:8d:f9:06:8b:cb:17:bd:de:47:97: 29:e1:4f:54:6e:02:76:5a:9c:a1:ae:54:78:cd:72:73:35:be: 31:b5:48:20:b4:ea:6d:31:ba:56:76:61:ce:6f:37:a0:82:ff: a0:7e:26:f0:48:c7:3c:5e:2b:13:15:ab:b9:f4:6c:12:17:c9: e7:d3:b0:a8:49:f4:39:9f:76:a0:16:a4:06:6c:8a:68:69:16: b8:bd:9d:9d:3e:9b:e7:d7:d0:07:5b:fa:98:c8:58:ee:8d:15: 97:a6:db:90:e8:8d:17:73:f7:ee:63:f5:73:62:ed:5d:d6:69: e2:5a:ce:23 ====================================== --- Certificate chain 0 s:C = US, ST = Washington, L = Redmond, O = Microsoft Corporation, CN = www.riken-suuri.jp i:C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Apr 14 00:00:00 2025 GMT; NotAfter: Apr 14 23:59:59 2026 GMT 1 s:C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256 v:NotBefore: Apr 14 00:00:00 2021 GMT; NotAfter: Apr 13 23:59:59 2031 GMT 2 s:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA1 v:NotBefore: Nov 10 00:00:00 2006 GMT; NotAfter: Nov 10 00:00:00 2031 GMT --- Server certificate -----BEGIN CERTIFICATE----- MIIGwzCCBaugAwIBAgIQDvcGR+ZlNey6ROXB3zVMoTANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSkwJwYDVQQDEyBE aWdpQ2VydCBUTFMgUlNBIFNIQTI1NiAyMDIwIENBMTAeFw0yNTA0MTQwMDAwMDBa Fw0yNjA0MTQyMzU5NTlaMHExCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5n dG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9y YXRpb24xGzAZBgNVBAMTEnd3dy5yaWtlbi1zdXVyaS5qcDCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANxBvHpaiWnMKgznDbYGJiAhrxHGeB0qFHuGy7nf b7u31m/qiNTOgJclwxMElV1xTgNTU2hrzUj0GQZOGXsfn3OUlvI7MG+flS4LDYVa 19BupVQLkgVloEZvCFA0HenQxWEk5u7LtwlH8JywzhnvDi147sKn6Rhm2kTUsEoQ lRuFA0Y+cqXIOhKcMud6Hl9s/NjKoKyolXK1CxRVVa5JY5P5HRk4HElhi7aMZES+ wBBpRrYqntwVXnubP7rd2cfUs+hTrTRv6pCHgC7mrBO3dPmyQaCEaO+tvflz2tqa wiTvu/2x4EKGu4nLKwagRKgCiOrvBSHagNFFsc8dDE2s14ECAwEAAaOCA3cwggNz MB8GA1UdIwQYMBaAFLdrouqoqoSMeeq02g+YssWVdrn0MB0GA1UdDgQWBBQqvRqe Bs0yihIlKAtK9osfYvCEBjAdBgNVHREEFjAUghJ3d3cucmlrZW4tc3V1cmkuanAw PgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL3d3dy5k aWdpY2VydC5jb20vQ1BTMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwgY8GA1UdHwSBhzCBhDBAoD6gPIY6aHR0cDovL2NybDMu ZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS00LmNybDBA oD6gPIY6aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hB MjU2MjAyMENBMS00LmNybDB/BggrBgEFBQcBAQRzMHEwJAYIKwYBBQUHMAGGGGh0 dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBJBggrBgEFBQcwAoY9aHR0cDovL2NhY2Vy dHMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0VExTUlNBU0hBMjU2MjAyMENBMS0xLmNy dDAMBgNVHRMBAf8EAjAAMIIBgAYKKwYBBAHWeQIEAgSCAXAEggFsAWoAdwAOV5S8 866pPjMbLJkHs/eQ35vCPXEyJd0hqSWsYcVOIQAAAZYyV+5eAAAEAwBIMEYCIQCB z9TGKpYUdejNFoZ9kj/lirtlH+4AdMpb4RMyI9/aqQIhANlReZmtNaMUyJiHnVRb 5iSyrOzw/JqSorzRKZvqt4eXAHYAZBHEbKQS7KeJHKICLgC8q08oB9QeNSer6v7V A8l9zfAAAAGWMlfumQAABAMARzBFAiEAmLUiST05Sc6S/smoTVtT4PRVbWPFTA3F WSvjt/5Bjk4CIEJ+Y4UpWq1tsK1aHZDan5RFZ5bBn9jicv2hSUSnv0PXAHcASZyb ad4dfOz8Nt7Nh2SmuFuvCoeAGdFVUvvp6ynd+MMAAAGWMlfuowAABAMASDBGAiEA k62PMKQslTsTh7qKXugsq4UeD/jw4XMiGmltkykhL38CIQDX8EOJ9eKvqHtCidXn Mxdt7keSI3c6TRWStoJ2MFTcOzANBgkqhkiG9w0BAQsFAAOCAQEAVatKgE7yfICX fUlsGXAVzcoBgoMFJZ//NoB+UYSGlg7TZUwQnkyxyHh/VG51GP7QE7fltQzBtQ36 ije4U20vxlVg0v5wDHESpndkCh33wig3hcB/OGWzSuVGIWyPV4EEOUNoyVpCk135 SI4TJL4OohaPafpO33vFNcDKdX85utD19YY3/xsxTv6QPX75RyK3uIA3RxLP/6JL P7lAJf4ftPZ80fQaxkyjAGtLOS/WUF/UdzFTX0jf5g60I3GjAc8J3wdg3b0ZTLlP KwOnIoVynwBRce5AT/2LdwseMdW3BBm55yl8eLDO+NHm7EIjASQY0sGxoPuZWYrb b19X4retVg== -----END CERTIFICATE----- subject=C = US, ST = Washington, L = Redmond, O = Microsoft Corporation, CN = www.riken-suuri.jp issuer=C = US, O = DigiCert Inc, CN = DigiCert TLS RSA SHA256 2020 CA1 --- No client certificate CA names sent Peer signing digest: SHA256 Peer signature type: RSA-PSS Server Temp Key: ECDH, prime256v1, 256 bits --- SSL handshake has read 5075 bytes and written 771 bytes Verification: OK --- New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384 Server public key is 2048 bit Secure Renegotiation IS NOT supported Compression: NONE Expansion: NONE No ALPN negotiated Early data was not sent Verify return code: 0 (ok) ---
#
OCSP response of
www.riken-suuri.jp
from OCSP responder (Let's Encrypt)
OCSP response from OCSP responder allows only Let's Encrypt's Certificate.