You might find yourself needing to inspect the OCSP response for a given URL. This tool is excellent and can do exactly that.
Alternative
openssl ocsp -sha1 -issuer ca.crt -cert cert.crt -header host=o.pki.goog -url http://o.pki.goog/s/we1/AcM -text -no_cert_verify -CAfile ca.crt -no_nonce