SSL Certificate Checker
Enter a domain to look up its certificates in public Certificate Transparency logs via crt.sh — issuer, validity window, and days until expiry. If the API is unreachable, you get manual check instructions instead.
| Common name | Issuer | Not before | Not after | Status |
|---|
Showing the most recent certificates logged for this domain. CT logs record every certificate ever issued, so expired entries are normal — what matters is that at least one current certificate covers your domain.
Couldn't reach crt.sh — check manually instead
The crt.sh API sometimes blocks browser (CORS) requests or times out under load. Here are three reliable ways to check a certificate yourself:
1. Browser padlock — visit the site, click the padlock (or tune icon) in the address bar → "Connection is secure" → "Certificate is valid" to see issuer and expiry.
2. OpenSSL from a terminal:
3. SSL Labs — run a full grade report at ssllabs.com/ssltest (takes a minute or two, but tests protocols, ciphers, and chain issues too).
About this tool
Queries the public Certificate Transparency database at crt.sh, which indexes every certificate that CAs log — including the currently active one. The table shows issuer, validity window, and a live days-remaining countdown so you can spot certificates about to expire.
Honest caveat: crt.sh is a free community service and its JSON API is sometimes slow or blocks cross-origin browser requests entirely. When that happens this page can't work around it, so it falls back to showing you the exact openssl command and an SSL Labs link to check manually.