SSL CERTIFICATE CHECKER
Verify certificate trust, expiry, and observed TLS protocol support. Named vulnerability and cipher-suite tests are shown separately when covered.
SSL IS JUST ONE PIECE OF THE PUZZLE
YOUR APP HAS 700+ OTHER THINGS THAT COULD GO WRONG
SSL certificates, security headers, DNS configuration, exposed secrets, API vulnerabilities, and more. UNPWNED checks everything in one scan.
RUN FULL SECURITY SCAN (FREE)FREQUENTLY ASKED QUESTIONS
What does an SSL certificate do?
An SSL certificate encrypts data transmitted between a visitor's browser and your server. This prevents attackers from intercepting sensitive information like passwords, credit card numbers, and personal data.
What TLS version should I use?
TLS 1.3 is the recommended version for the best security and performance. TLS 1.2 is still acceptable. Older versions like TLS 1.0 and 1.1 are deprecated and should be disabled.
What happens when an SSL certificate expires?
When an SSL certificate expires, browsers display security warnings to visitors. This destroys user trust, tanks conversion rates, and can cause search engines to drop your rankings.
How often should I check my SSL certificate?
Check monthly at minimum. Better yet, set up automated monitoring to get alerted before expiry. Most certificates are valid for 90 days (Let's Encrypt) or 1 year (commercial CAs).
What is a good SSL grade?
An A or A+ here means the certificate is trusted and current TLS negotiation was secure. This tool does not infer cipher-suite safety or named vulnerabilities unless those checks are explicitly marked as tested.
Is this tool free?
Yes, completely free with unlimited checks and no signup required. For a comprehensive security audit covering 700+ checks beyond SSL, try the full UNPWNED scan.
MORE FREE TOOLS