Enter any domain to instantly check its SSL certificate — expiry date, days remaining, issuer, TLS version, and cipher suite. No account required.
Supports any public domain — e.g. github.com, api.stripe.com, your-app.com
Connecting to ...
Check failed
Why this matters
An expired SSL cert throws browser warnings and breaks HTTPS for every visitor. Checking regularly — especially on certs that auto-renew — catches misconfigurations before they become outages.
TLS 1.2 vs 1.3
TLS 1.3 is faster and more secure than 1.2 — it eliminates legacy cipher suites and reduces handshake round-trips. If you're still on TLS 1.2, check your server config or CDN settings. Most modern stacks support 1.3.
Renew before 30 days
Most CA browser programs require certificates to be valid for no more than 398 days. Let's Encrypt renews at 60 days remaining. If your cert drops below 30 days, something in your auto-renewal chain is broken.
About this tool
Results come from a real TLS handshake — not a cached database. Checks run on demand via a serverless backend. Rate limited to prevent abuse. Built by a 30-year IT veteran.