CRL & OCSP report for www.portocheck.nl

www.portocheck.nl

Certificate details for www.portocheck.nl (At position 0 in certificate chain)
Serial number:
hex: 33d6
int: 13270
Issued by: Intermediate Certificate DV SSL CA - G2
Public Key Algorithm: RSA
Not valid before:
Not valid after:
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

Check certificate compliance for www.portocheck.nl.

Certificate Revocation List (CRL)

This CRL was cached at
http://ica-crl.digitalcertvalidation.com/crls/icag2.crl

CRL information

Source: CRL Distribution Points in Certificate
Location: http://ica-crl.digitalcertvalidation.com/crls/icag2.crl
Size: 1694 bytes (DER data)
Response time: 97.484356ms
This update:
Next update:
Revoked: No
Revoked certificates in CRL: 56

Relevant server response headers

Date:
Last Modified:

Server and network information

Server Software: Apache
Content Delivery Network (CDN): Akamai
Cache Information: TCP_REFRESH_HIT from a23-215-131-61.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (S)

Raw CRL response headers

Accept-Ranges: [bytes]
Content-Type: [application/pkix-crl]
Date: [Sun, 25 Jun 2017 22:48:10 GMT]
Etag: ["969bb70431b1ee04f782edfe76a9f55c:1498138231"]
Last-Modified: [Thu, 22 Jun 2017 13:30:31 GMT]
Server: [Apache]
Vary: [Accept-Encoding]
X-Cache: [TCP_REFRESH_HIT from a23-215-131-61.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (S)]
  • Content-Type in response is set to 'application/pkix-crl (RFC 5280, section 4.2.1.13)'
  • This CRL file is DER encoded
  • Issuer field is byte-for-byte equivalent with issuers subject
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than seven days old, CRLs must be updated and reissued at least every seven days (Mozilla Maintenance Policy section 3)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • Expires cache header not set (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

Online Certificate Status Protocol (OCSP)

This OCSP response was cached at
http://ica-ocsp.digitalcertvalidation.com (POST)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ica-ocsp.digitalcertvalidation.com (POST)
Size: 1491 bytes (DER data)
Response time: 42.926119ms
Signature algorithm: SHA1WithRSA
Signature type: CA Delegated
Signed by: Intermediate Certificate DV SSL CA - G2 TGV OCSP Responder
Issued by: Intermediate Certificate DV SSL CA - G2
Signing certificate validity: 2017-04-28 - 2018-05-22
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 122h59m45s

Server and network information

Server Software: nginx/1.10.2
Content Delivery Network (CDN): Akamai
Cache Information: TCP_MISS from a23-215-131-68.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (-)

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MEMwQTA/MD0wOzAJBgUrDgMCGgUABBTbjz1/NPEYXqNEz53KMGvmL2FXJQQUYxyo
p7GTNY8Wdp7l+l/I5q2/L7kCAjPW
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----
MIID/jCCAuagAwIBAgIQAQAEZd3cTOaA1pWZftK5TzANBgkqhkiG9w0BAQsFADCB
gTELMAkGA1UEBhMCTkwxITAfBgNVBAoTGEludGVybWVkaWF0ZSBDZXJ0aWZpY2F0
ZTEdMBsGA1UECxMURG9tYWluIFZhbGlkYXRlZCBTU0wxMDAuBgNVBAMTJ0ludGVy
bWVkaWF0ZSBDZXJ0aWZpY2F0ZSBEViBTU0wgQ0EgLSBHMjAeFw0xNzA0MjgxNjA1
MjFaFw0xODA1MjIxNjA1MjFaMEUxQzBBBgNVBAMTOkludGVybWVkaWF0ZSBDZXJ0
aWZpY2F0ZSBEViBTU0wgQ0EgLSBHMiBUR1YgT0NTUCBSZXNwb25kZXIwggEiMA0G
CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKw/W8g+7FId3mpWZQ3el0cobRr0ge
DxUPvrs/4+PumGgrYb1WGCX1AxoifMIldUVCsM+03si5shzk0Ye3dzRoXi5Ra9yV
WEf6FJFwaDAyXqjNtUJrxmB4//U3oQBD0d82IUIhIt93UaSvJHMqIGUur+PV9u6n
CobH6ZXYK/NnkozBi2M/DtsLklZxmgJjwpZGRCebe4JjQ3vNlAKYsHsfv3SbPUBP
3dMbeCGs5WSC0Td8hNw7e4QLIT4JKQ0tW5XcaUEd99rT9ggkTvf05PX9cbF7DFgJ
W8Bd2ShnjNy3THo16hkrVJMXPa88uapTZC++OpNkG7uVOY3dYdoT+lU/AgMBAAGj
gawwgakwHwYDVR0jBBgwFoAUYxyop7GTNY8Wdp7l+l/I5q2/L7kwDwYJKwYBBQUH
MAEFBAIFADAdBgNVHQ4EFgQU2Wa0RQN1O/Z6EbLJveV3gAF/fDMwEwYDVR0lBAww
CgYIKwYBBQUHAwkwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCB4AwIwYDVR0R
BBwwGqQYMBYxFDASBgNVBAMTC1RHVi1PRkYtMTAyMA0GCSqGSIb3DQEBCwUAA4IB
AQBdG7F9u+pyQTZetd7dhYWu2DCZ9PuScewvWqpMGIz5ylXw8iCjVS1Zc3TsV00H
ACmsWKQpH4eHzhn0xxJpM4bFJPq8ntvN/jD7uXUHYWL3Raj8wON2OLmoMYdicEKH
NlK98YZtYqzMxVEdjvkXPbUqHqUaYVD9r2PUyp8wDhySfqKX9m8L/pVS3AxyeQ5U
UGp+caSHO5oKGIwB/7MjMGhRUKRk7j2r/eF+5soGlb0ZALXy8/9kCvCTGzsH6nwS
j58EnF7v1RjD8rBVpnasLqLGmCqJqjHeiWcwwfYNrQnGZQx1LQTLeFIRmBD2yRF+
NU6Kcncya77TXHmBNJO10gtZ
-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=442785, public, no-transform, must-revalidate]
Content-Length: [1491]
Content-Transfer-Encoding: [binary]
Content-Type: [application/ocsp-response]
Date: [Sun, 25 Jun 2017 22:48:10 GMT]
Expires: [Sat, 1 Jul 2017 01:47:54 GMT]
Last-Modified: [Sat, 24 Jun 2017 01:47:54 GMT]
Server: [nginx/1.10.2]
X-Cache: [TCP_MISS from a23-215-131-68.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (-)]
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • OCSP response is valid for at least 8 hours (Microsoft)
  • OCSP response is available at least 8 hours before the current period expires or at ½ the validity if valid for more than 16 hours (Microsoft)
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than four days old, OCSP information must be updated at least every four days (Mozilla & Baseline Requirements)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header outlives NextUpdate with 1s
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)
This OCSP response was cached at
http://ica-ocsp.digitalcertvalidation.com (GET)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ica-ocsp.digitalcertvalidation.com (GET)
Size: 1491 bytes (DER data)
Response time: 117.70345ms
Signature algorithm: SHA1WithRSA
Signature type: CA Delegated
Signed by: Intermediate Certificate DV SSL CA - G2 TGV OCSP Responder
Issued by: Intermediate Certificate DV SSL CA - G2
Signing certificate validity: 2017-04-28 - 2018-05-22
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 122h59m44s

Server and network information

Server Software: nginx/1.10.2
Content Delivery Network (CDN): Akamai
Cache Information: TCP_MISS from a23-215-131-86.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (-)

URL used for GET request

http://ica-ocsp.digitalcertvalidation.com/MEMwQTA%2FMD0wOzAJBgUrDgMCGgUABBTbjz1%2FNPEYXqNEz53KMGvmL2FXJQQUYxyop7GTNY8Wdp7l%2Bl%2FI5q2%2FL7kCAjPW

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MEMwQTA/MD0wOzAJBgUrDgMCGgUABBTbjz1/NPEYXqNEz53KMGvmL2FXJQQUYxyo
p7GTNY8Wdp7l+l/I5q2/L7kCAjPW
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----
MIIFzwoBAKCCBcgwggXEBgkrBgEFBQcwAQEEggW1MIIFsTCBkKIWBBTZZrRFA3U7
9noRssm95XeAAX98MxgPMjAxNzA2MjQwMTQ3NTRaMGUwYzA7MAkGBSsOAwIaBQAE
FNuPPX808Rheo0TPncowa+YvYVclBBRjHKinsZM1jxZ2nuX6X8jmrb8vuQICM9aA
ABgPMjAxNzA2MjQwMTQ3NTRaoBEYDzIwMTcwNzAxMDE0NzU0WjANBgkqhkiG9w0B
AQUFAAOCAQEAskvGrhsITS7Sx1j6cOJK0DXr6sPPjWuunJYZQ3sLEa8zjLTN/z7t
EqaMM1KRfIyXc3pZB8/aTljtLSMx4RKvDc38n76hqoK1qHIU7f3CiucOcNjaPoke
0IGi4ifi3JC6vQb5syI7TUJMdf+Tdt1KcC3mgcO9oUwymSW/FIO8tmVXfFx4EP6B
J7ZdcX6Wzpk8qhHPDiyNupAHEBFHWl7ZU0SKIDcMUlJvBaSf5NlWwseM+5y+FbTO
r4C2h+Nms1slwmmSxipQYn2Srx/cKsZwicbBlhguE7DevNfQR9uKXH9dQ7zREI/K
jwd/M8D161t/FulaZQ1Lc0wZnRhnZYzHiqCCBAYwggQCMIID/jCCAuagAwIBAgIQ
AQAEZd3cTOaA1pWZftK5TzANBgkqhkiG9w0BAQsFADCBgTELMAkGA1UEBhMCTkwx
ITAfBgNVBAoTGEludGVybWVkaWF0ZSBDZXJ0aWZpY2F0ZTEdMBsGA1UECxMURG9t
YWluIFZhbGlkYXRlZCBTU0wxMDAuBgNVBAMTJ0ludGVybWVkaWF0ZSBDZXJ0aWZp
Y2F0ZSBEViBTU0wgQ0EgLSBHMjAeFw0xNzA0MjgxNjA1MjFaFw0xODA1MjIxNjA1
MjFaMEUxQzBBBgNVBAMTOkludGVybWVkaWF0ZSBDZXJ0aWZpY2F0ZSBEViBTU0wg
Q0EgLSBHMiBUR1YgT0NTUCBSZXNwb25kZXIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDKw/W8g+7FId3mpWZQ3el0cobRr0geDxUPvrs/4+PumGgrYb1W
GCX1AxoifMIldUVCsM+03si5shzk0Ye3dzRoXi5Ra9yVWEf6FJFwaDAyXqjNtUJr
xmB4//U3oQBD0d82IUIhIt93UaSvJHMqIGUur+PV9u6nCobH6ZXYK/NnkozBi2M/
DtsLklZxmgJjwpZGRCebe4JjQ3vNlAKYsHsfv3SbPUBP3dMbeCGs5WSC0Td8hNw7
e4QLIT4JKQ0tW5XcaUEd99rT9ggkTvf05PX9cbF7DFgJW8Bd2ShnjNy3THo16hkr
VJMXPa88uapTZC++OpNkG7uVOY3dYdoT+lU/AgMBAAGjgawwgakwHwYDVR0jBBgw
FoAUYxyop7GTNY8Wdp7l+l/I5q2/L7kwDwYJKwYBBQUHMAEFBAIFADAdBgNVHQ4E
FgQU2Wa0RQN1O/Z6EbLJveV3gAF/fDMwEwYDVR0lBAwwCgYIKwYBBQUHAwkwDAYD
VR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCB4AwIwYDVR0RBBwwGqQYMBYxFDASBgNV
BAMTC1RHVi1PRkYtMTAyMA0GCSqGSIb3DQEBCwUAA4IBAQBdG7F9u+pyQTZetd7d
hYWu2DCZ9PuScewvWqpMGIz5ylXw8iCjVS1Zc3TsV00HACmsWKQpH4eHzhn0xxJp
M4bFJPq8ntvN/jD7uXUHYWL3Raj8wON2OLmoMYdicEKHNlK98YZtYqzMxVEdjvkX
PbUqHqUaYVD9r2PUyp8wDhySfqKX9m8L/pVS3AxyeQ5UUGp+caSHO5oKGIwB/7Mj
MGhRUKRk7j2r/eF+5soGlb0ZALXy8/9kCvCTGzsH6nwSj58EnF7v1RjD8rBVpnas
LqLGmCqJqjHeiWcwwfYNrQnGZQx1LQTLeFIRmBD2yRF+NU6Kcncya77TXHmBNJO1
0gtZ
-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=442784, public, no-transform, must-revalidate]
Content-Length: [1491]
Content-Transfer-Encoding: [binary]
Content-Type: [application/ocsp-response]
Date: [Sun, 25 Jun 2017 22:48:10 GMT]
Expires: [Sat, 1 Jul 2017 01:47:54 GMT]
Last-Modified: [Sat, 24 Jun 2017 01:47:54 GMT]
Server: [nginx/1.10.2]
X-Cache: [TCP_MISS from a23-215-131-86.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (-)]
  • OCSP requests is smaller than 255 bytes
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • OCSP response is valid for at least 8 hours (Microsoft)
  • OCSP response is available at least 8 hours before the current period expires or at ½ the validity if valid for more than 16 hours (Microsoft)
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than four days old, OCSP information must be updated at least every four days (Mozilla & Baseline Requirements)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

Intermediate Certificate DV SSL CA - G2 (CA Certificate)

Certificate details for Intermediate Certificate DV SSL CA - G2 (At position 1 in certificate chain)
Serial number:
hex: 23a7b
int: 146043
Issued by: GeoTrust Global CA
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: Intermediate Certificate
Organization unit: Domain Validated SSL
Country: NL
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

Certificate Revocation List (CRL)

This CRL was cached at
http://g.symcb.com/crls/gtglobal.crl

CRL information

Source: CRL Distribution Points in Certificate
Location: http://g.symcb.com/crls/gtglobal.crl
Size: 665 bytes (DER data)
Response time: 7.263037ms
This update:
Next update:
Revoked: No
Revoked certificates in CRL: 12

Relevant server response headers

Date:
Last Modified:

Server and network information

Server Software: Apache
Content Delivery Network (CDN): Akamai
Cache Information: TCP_MEM_HIT from a23-215-131-111.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (-)

Raw CRL response headers

Accept-Ranges: [bytes]
Content-Type: [application/pkix-crl]
Date: [Sun, 25 Jun 2017 22:48:09 GMT]
Etag: ["ca736a3a4c64c88b82602fe64aa4182d:1490382195"]
Last-Modified: [Fri, 24 Mar 2017 18:49:54 GMT]
Server: [Apache]
Vary: [Accept-Encoding]
X-Cache: [TCP_MEM_HIT from a23-215-131-111.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (-)]
  • Content-Type in response is set to 'application/pkix-crl (RFC 5280, section 4.2.1.13)'
  • This CRL file is DER encoded
  • Issuer field is byte-for-byte equivalent with issuers subject
  • Response is already valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • Expires cache header not set (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

Online Certificate Status Protocol (OCSP)

This OCSP response was cached at
http://g.symcd.com (POST)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://g.symcd.com (POST)
Size: 1377 bytes (DER data)
Response time: 14.734233ms
Signature algorithm: SHA1WithRSA
Signature type: CA Delegated
Signed by: GeoTrust Global CA TGV OCSP Responder 5
Issued by: GeoTrust Global CA
Signing certificate validity: 2016-12-08 - 2017-12-14
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 164h29m37s

Server and network information

Server Software: nginx/1.10.2
Content Delivery Network (CDN): Akamai
Cache Information: TCP_REFRESH_MISS from a23-215-131-86.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (S)

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MEQwQjBAMD4wPDAJBgUrDgMCGgUABBSxtDkXkBa3l3lQEfFgudSiPNvt7gQUAPkq
w0GRtsnCuD5V8sCXEROgByACAwI6ew==
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----
MIIFXQoBAKCCBVYwggVSBgkrBgEFBQcwAQEEggVDMIIFPzCBkaIWBBRW5FQnU+as
qXGB3YYiHprkenLEKhgPMjAxNzA2MjUxOTE3NDZaMGYwZDA8MAkGBSsOAwIaBQAE
FLG0OReQFreXeVAR8WC51KI82+3uBBQA+SrDQZG2ycK4PlXywJcRE6AHIAIDAjp7
gAAYDzIwMTcwNjI1MTkxNzQ2WqARGA8yMDE3MDcwMjE5MTc0NlowDQYJKoZIhvcN
AQEFBQADggEBACxYGJ+dAKBHnwyjRvuNWO7vPojvbxEYnrKDnDw75YqBdj5vF7rk
2Q6BS5qWdraQqZtSkbPETCGHX7QkNlMQRWq8qhVn+EJiXZ/Oqz/wNch4kjAmrfq8
GMQ6qenI8HaZypQxSVO7I5PbeZAS2RP8XKA+5dHXkrKbtZFlVTse4iB8/NpqICHk
/GgnadiRfs5lqjwFrsAZcWmacyNw21lqAC1Y5m4hLfTICUlu9LEPBoVfK0nJUk3a
G+IdjMA+vebCB95+uo7I4pNAHgdXBsMiw7wvfXK7V0qmy4HXULDga/vDGJ+l3Ivt
4JKoaI+YlxiXEvYz1tJKV5/47gVGF8cI7H+gggOTMIIDjzCCA4swggJzoAMCAQIC
EAEAAI8cK5YV9Xm5GF4OwmcwDQYJKoZIhvcNAQELBQAwQjELMAkGA1UEBhMCVVMx
FjAUBgNVBAoTDUdlb1RydXN0IEluYy4xGzAZBgNVBAMTEkdlb1RydXN0IEdsb2Jh
bCBDQTAeFw0xNjEyMDgxMTI1MzVaFw0xNzEyMTQxMTI1MzVaMDIxMDAuBgNVBAMT
J0dlb1RydXN0IEdsb2JhbCBDQSBUR1YgT0NTUCBSZXNwb25kZXIgNTCCASIwDQYJ
KoZIhvcNAQEBBQADggEPADCCAQoCggEBAKbsx72ex4lTCJDy3iHAy47zLOB03z8E
ucSDZIQMjk1A5aZfqz0MU5HHLOsi76EQo6uYR2R2rl9jgQ1EMbe0TidFyTrhse63
rmEyzQusz7sEjnsvckT7K/9j6DLmlFB/6oEhAgwfCONYbrDOfQHBCtd7e+x6STm0
WeKCF4/QqS+C5ZTUEzsNjhcAqeAMZnWEoyyJ6OpCiF9vDblCGa9nlh3SwW+nxKTq
qqiMlz9ZXN8//IHrectIKszEXXlpvtr4wJAz0KrUDfENqEbKNouP0fv1Ueno5Z7t
ue3CnHtCF+QxOQXDS3rKrQJcesKMrFC9+M5frbQuLSGz9ee/xCfnWW0CAwEAAaOB
jDCBiTAfBgNVHSMEGDAWgBTAephojYn7qwVkDBF9qn1luMrMTjAPBgkrBgEFBQcw
AQUEAgUAMBMGA1UdJQQMMAoGCCsGAQUFBwMJMA4GA1UdDwEB/wQEAwIHgDAMBgNV
HRMBAf8EAjAAMCIGA1UdEQQbMBmkFzAVMRMwEQYDVQQDEwpUR1YtT0ZGLTU3MA0G
CSqGSIb3DQEBCwUAA4IBAQAEbWTM2eKR1XlWe9ui17q87Hk6NYXKQGwj/ss1ue8Q
1cnoA2/Mo1gG1Q/8LHJ97vK5yw65afq8M5mPbxdl/57jZTUF1kDmgEgvUde3O+h2
ZLIHPx1q2W2WDLT2ltYvaHaNr0Hnkb8MCQ27Z728Fsn5+Ilh/bDoA+NHEqlcfycq
oGKksT60iqnogUz/WZNUbzzBQD6NlpomMZUTOcF3/5L3Fe1OKkF1nGXW2QTW/mLZ
5Eviy4ZQTzQ34koPA5qC1nsWQ1zOE57jR8IJMC+mYQdFb71gehA8O0lB7fL6Kysj
zycnBkNHgJ9LQDd67gQ30FxfmbAnHV1xxWakX8lXTvIf
-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=592177, public, no-transform, must-revalidate]
Content-Length: [1377]
Content-Transfer-Encoding: [binary]
Content-Type: [application/ocsp-response]
Date: [Sun, 25 Jun 2017 22:48:09 GMT]
Expires: [Sun, 2 Jul 2017 19:17:46 GMT]
Last-Modified: [Sun, 25 Jun 2017 19:17:46 GMT]
Server: [nginx/1.10.2]
X-Cache: [TCP_REFRESH_MISS from a23-215-131-86.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (S)]
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)
This OCSP response was cached at
http://g.symcd.com (GET)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://g.symcd.com (GET)
Size: 1377 bytes (DER data)
Response time: 66.675219ms
Signature algorithm: SHA1WithRSA
Signature type: CA Delegated
Signed by: GeoTrust Global CA TGV OCSP Responder 5
Issued by: GeoTrust Global CA
Signing certificate validity: 2016-12-08 - 2017-12-14
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 164h29m36s

Server and network information

Server Software: nginx/1.10.2
Content Delivery Network (CDN): Akamai
Cache Information: TCP_REFRESH_MISS from a23-215-131-86.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (S)

URL used for GET request

http://g.symcd.com/MEQwQjBAMD4wPDAJBgUrDgMCGgUABBSxtDkXkBa3l3lQEfFgudSiPNvt7gQUAPkqw0GRtsnCuD5V8sCXEROgByACAwI6ew%3D%3D

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MEQwQjBAMD4wPDAJBgUrDgMCGgUABBSxtDkXkBa3l3lQEfFgudSiPNvt7gQUAPkq
w0GRtsnCuD5V8sCXEROgByACAwI6ew==
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=592176, public, no-transform, must-revalidate]
Content-Length: [1377]
Content-Transfer-Encoding: [binary]
Content-Type: [application/ocsp-response]
Date: [Sun, 25 Jun 2017 22:48:10 GMT]
Expires: [Sun, 2 Jul 2017 19:17:46 GMT]
Last-Modified: [Sun, 25 Jun 2017 19:17:46 GMT]
Server: [nginx/1.10.2]
X-Cache: [TCP_REFRESH_MISS from a23-215-131-86.deploy.akamaitechnologies.com (AkamaiGHost/9.0.0-20100727) (S)]
  • OCSP requests is smaller than 255 bytes
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

GeoTrust Global CA (CA Certificate)

Certificate details for GeoTrust Global CA (At position 2 in certificate chain)
Serial number:
hex: 23456
int: 144470
Issued by: GeoTrust Global CA
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: GeoTrust Inc.
Country: US
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

This is a self signed certificate

Check the revocation status for another website

Created by Paul van Brouwershaven
© 2015 - 2017 Digitorus B.V.
Revoked certificates can't and should not be trusted, these certificate will cause errors like "NET::ERR_CERT_REVOKED" in browsers.