This Site

Elsewhere

SSL Certificate Checker

You can check your SSL server certificates, including their expiration dates, trust chain and exposure to the infamous Debian OpenSSL bug. Enter one server name per line in the text field below and click the button to start.

The URL in your browser's address bar will contain all the necessary information to repeat the check any time later - so feel free to bookmark it.

www.mediaon.biz


(Note: enter server names only, one per line. The tool doesn't need URLs, it needs FQDNs. So "secure.logmein.com" is ok, "https://secure.logmein.com" is not. In addition, port numbers for non-HTTPS servers, such as secure POP3, can be specified after a colon. For example: "pop.gmail.com:995".)

Revision History

2.0.0 (Oct-30, 2008)

• Added checks for certificate trust chain and openssl-blacklist.

1.0.0 (Oct-14, 2007)

• Source code available

1.0.0 (Oct-15, 2006)

• Initial release

The server's RSA key modulus is present in the openssl-blacklist database. The keypair has been generated with no entropy at all, and offers no cryptographic protection whatsoever. (Why this happened.)

Server name:
Modulus hash:
Key length:
Architecture:
.rnd file:
PID:

This is the certificate chain. You can copy and paste the text below into a new file with the .p7b extension. (For example: certchain.p7b.) These files can be opened using a wide variety of tools - Windows Explorer will handle them just fine as well.