Paste a PEM format X.509 certificate and click Parse to view all details. Export certs from your browser or use the openssl command.
Get a certificate: Browser: click lock icon → Connection secure → Certificate → Details → Export. Or command line: openssl s_client -connect example.com:443 </dev/null | openssl x509 -outform PEM
All parsing happens locally in your browser — certificate data is never uploaded.
Three ways: 1) Browser: click lock icon → Connection secure → Certificate → Details → Export → Base64-encoded X.509 (.CER), open with text editor. 2) openssl command (see above). 3) SSL testing tools like SSL Labs.
Yes. This tool parses certificates locally in your browser using JavaScript's ASN.1 parser via Web Crypto API. Certificate content is never sent to any server. SSL certificates are public information, but your usage remains private.
Subject (CN/Organization), Issuer, Validity period (Not Before/Not After), Days remaining, SAN (Subject Alternative Name) domains, Public key algorithm and size, Signature algorithm, Serial number. Automatically flags expired or soon-to-expire certificates.
Ensure you paste PEM format (starts with -----BEGIN CERTIFICATE-----). Common issues: PKCS#12 (.pfx/.p12) not supported — convert first. Certificate chain with multiple certs — paste only the first (server) certificate. Extra spaces or line breaks — clean up the paste.