SSL Check

Inspect the TLS certificate for any hostname. Returns subject, issuer, expiry dates, days remaining, and subject alternative names.

GET /api/ssl-check

Try it

{
  "ok": true,
  "hostname": "example.com",
  "normalizedHostname": "example.com",
  "certificate": {
    "valid": true,
    "subject": "CN=example.com",
    "issuer": "DigiCert Inc",
    "valid_from": "2026-01-01T00:00:00.000Z",
    "valid_to": "2026-12-31T23:59:59.000Z",
    "days_remaining": 271,
    "sans": ["example.com", "www.example.com"]
  },
  "meta": {
    "lookupTimeMs": 84,
    "cached": false,
    "rateLimitedScope": "global"
  },
  "error": null
}

What it returns

• •ok - whether the lookup succeeded
• •hostname - the hostname provided in the request
• •normalizedHostname - the normalized hostname (lowercased, trimmed, trailing dot removed)
• •certificate.valid - whether the current time is within the certificate's validity date range (not a trust-chain or hostname verification)
• •certificate.subject - certificate subject
• •certificate.issuer - certificate issuer
• •certificate.valid_from - certificate validity start
• •certificate.valid_to - certificate expiry date
• •certificate.days_remaining - days until expiry
• •certificate.sans - subject alternative names
• •meta.lookupTimeMs - total lookup time
• •meta.cached - whether the result came from cache
• •error - error code if the request failed

Use cases

• •Check when a certificate expires
• •Verify a certificate was issued for the expected hostname
• •Inspect SAN coverage for subdomains
• •Debug TLS issues in production
• •Monitor certificate health in scripts or CI

Quick API examples

curl "https://tinyutils.dev/api/ssl-check?hostname=example.com"

const res = await fetch(
  "https://tinyutils.dev/api/ssl-check?hostname=example.com"
);
const data = await res.json();
console.log(data.certificate.valid);
console.log(data.certificate.days_remaining);