SSL Certificate Inspector

Check any site's TLS certificate — issuer, validity, days until expiry, SANs, key size, and the chain. Live from the server's handshake.

Advertisement
What's in a TLS certificate?

The identity a server proves on the handshake — who it is, who vouches for it, and for how long.

When you connect to an https:// site, the server presents a TLS certificate proving its identity: the subject (who it's for), the issuer (the certificate authority that signed it), a validity window, the public key, and a list of SANs (every hostname the cert covers). This tool opens a real TLS handshake from our server, captures the certificate chain, and breaks it down — including the OCSP/CRL revocation endpoints and a clear days-until-expiry counter.

The most common operational use is catching expiry before it bites: a red or amber banner appears when the certificate has expired or has under 30 days left. You can append a port (mail.example.com:993) to inspect non-HTTPS TLS services. Inspection runs server-side because browsers don't expose raw certificate chains to JavaScript.

Read more on Wikipedia
Copied to clipboard