SSL Checker

Check and analyse SSL certificates on remote servers and view handshake details.

SSL Checker

This free tool connects to a remote server to retrieve its certificate and displays detailed information about the certificate and SSL/TLS handshake.

Pro Tip: Managing multiple SSL certificates? CertAlert helps prevent certificate expirations by automatically monitoring your infrastructure and sending timely renewal notifications.

Related Tools

Certificate Management

Discover how our enterprise-grade solutions can help you manage certificates across your organization:

Certificate Summary for ectc-online.org:443

Connection successful! Certificate information retrieved.
Shareable link: https://certlogik.com/ssl-checker/ectc-online.org
Certificate Checks
Check Result
Certificate Expiry PASS - Certificate valid for 69 more days
Certificate Path PASS - Chain validates to a trusted root in Mozilla's CA bundle
Key Size PASS - 2048 bits
Signature Algorithm PASS - sha256WithRSAEncryption
Self-Signed PASS - Certificate is not self-signed
Hostname Match PASS - Certificate CN 'ectc-online.org' matches requested hostname
Certificate Subject
Common Name ectc-online.org
Certificate Issuer
Country US
Organization Let's Encrypt
Common Name R10
Certificate Properties
Serial Number 60442b4b16936eb49cfcca3139a518d3c66
Valid From Mon, 12 May 2025 06:02:36 UTC
Valid To Sun, 10 Aug 2025 06:02:35 UTC
Days Remaining 69
Key Type RSA
Key Size 2048 bits
Signature Algorithm sha256WithRSAEncryption
Certificate Extensions
Subject Alternative Names DNS:ectc-online.org, DNS:www.ectc-online.org
Key Usage Digital Signature, Key Encipherment
Extended Key Usage TLS Web Server Authentication, TLS Web Client Authentication
Basic Constraints CA:FALSE
subjectKeyIdentifier A5:92:51:79:11:FB:86:F3:36:69:EB:DD:7D:95:7A:1D:C2:7C:55:6E
authorityKeyIdentifier BB:BC:C3:47:A5:E4:BC:A9:C6:C3:A4:72:0C:10:8D:A2:35:E1:C8:E8
authorityInfoAccess CA Issuers - URI:http://r10.i.lencr.org/
certificatePolicies Policy: 2.23.140.1.2.1
crlDistributionPoints Full Name: URI:http://r10.c.lencr.org/103.crl
ct_precert_scts Signed Certificate Timestamp: Version : v1 (0x0) Log ID : A4:42:C5:06:49:60:61:54:8F:0F:D4:EA:9C:FB:7A:2D: 26:45:4D:87:A9:7F:2F:DF:45:59:F6:27:4F:3A:84:54 Timestamp : May 12 07:01:06.800 2025 GMT Extensions: none Signature : ecdsa-with-SHA256 30:46:02:21:00:C8:ED:79:0B:BB:D3:8A:85:A6:B9:3B: 02:CC:E5:7B:97:2A:99:9E:34:13:B9:71:A4:D4:C9:03: D3:37:DE:9A:BF:02:21:00:A9:A1:AE:1F:A9:01:76:97: 6C:FA:39:CC:64:ED:76:6D:DC:5D:41:47:56:43:05:DC: 43:C8:A9:1C:78:7F:BA:7C Signed Certificate Timestamp: Version : v1 (0x0) Log ID : 12:F1:4E:34:BD:53:72:4C:84:06:19:C3:8F:3F:7A:13: F8:E7:B5:62:87:88:9C:6D:30:05:84:EB:E5:86:26:3A Timestamp : May 12 07:01:06.831 2025 GMT Extensions: none Signature : ecdsa-with-SHA256 30:44:02:20:5F:E9:B1:1D:4F:C3:DE:6E:C2:9A:1A:2D: B2:0F:55:F1:C2:15:03:87:FC:90:02:78:36:78:A3:0A: 87:32:EA:93:02:20:7B:96:58:9A:AF:C9:02:75:FC:DD: 24:8A:5C:53:5A:C1:8C:B5:40:D7:7F:46:CA:28:F6:56: 9F:A2:47:82:6E:86
Certificate Fingerprints
SHA256 Fingerprint 8D:2B:32:EC:31:98:E5:8E:E8:41:52:7A:AC:F7:73:04:89:8E:5F:D8:B5:F0:CA:24:15:19:FD:A6:04:CB:B1:CB
SHA1 Fingerprint D2:77:98:84:DE:46:50:E1:1B:3C:10:07:E0:66:58:2A:4E:47:1D:58
MD5 Fingerprint 82:F5:75:12:E3:2B:73:FC:CD:07:F9:A6:EB:24:CA:9F
SPKI SHA256 Hex 72:65:C5:5F:F3:48:E4:16:10:37:3E:60:30:75:E3:3D:18:83:D2:B1:18:E3:C8:DC:F7:F7:52:18:7E:A8:D1:92
SPKI SHA256 Base64 cmXFX/NI5BYQNz5gMHXjPRiD0rEY48jc9/dSGH6o0ZI=
SSL/TLS Handshake
CONNECTED(00000003)
---
Certificate chain
 0 s:CN = ectc-online.org
   i:C = US, O = Let's Encrypt, CN = R10
   a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256
   v:NotBefore: May 12 06:02:36 2025 GMT; NotAfter: Aug 10 06:02:35 2025 GMT
[CERTIFICATE CONTENT REMOVED]
 1 s:C = US, O = Let's Encrypt, CN = R10
   i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
   a:PKEY: rsaEncryption, 2048 (bit); sigalg: RSA-SHA256
   v:NotBefore: Mar 13 00:00:00 2024 GMT; NotAfter: Mar 12 23:59:59 2027 GMT
[CERTIFICATE CONTENT REMOVED]
---
Server certificate
subject=CN = ectc-online.org
issuer=C = US, O = Let's Encrypt, CN = R10
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3134 bytes and written 381 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_128_GCM_SHA256
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
    Protocol  : TLSv1.3
    Cipher    : TLS_AES_128_GCM_SHA256
    Session-ID: 6F740BDDFD5261292710DC912F3DAE316BA40901BF8F580CF7F68654CCEFAC4D
    Session-ID-ctx: 
    Resumption PSK: 26646AC18F1013E369B9772DEA00CF98E0DF17108AA9F2AC343231FE57BC1F43
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 604800 (seconds)
    TLS session ticket:
    0000 - 95 5e cb e0 8c f5 8d 85-3e 45 8c f3 25 f9 e4 be   .^......>E..%...
    0010 - f9 05 c0 40 4f 42 3b 84-cb 87 9f 54 0e 8c dc 09   ...@OB;....T....
    0020 - 95 d7 b1 0d 3b 59 50 f4-b1 7f 20 8b 23 88 4b 02   ....;YP... .#.K.
    0030 - 9a ec d7 e2 60 dc 35 c9-e1 27 7c de 48 4a 73 4f   ....`.5..'|.HJsO
    0040 - a2 06 4a 69 48 5f fa f1-d4 26 46 fe f6 47 73 6b   ..JiH_...&F..Gsk
    0050 - 89 51 48 65 34 8d 98 b5-ff c4 d7 13 83 43 2d 5d   .QHe4........C-]
    0060 - c4 5d e8 42 f4 57 18 b1-da                        .].B.W...

    Start Time: 1748792498
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: no
    Max Early Data: 0
---
read R BLOCK
Certificate Chain (2 certificates)
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----