v2digga

Certificates

Free SSL and TLS Certificate Checker

Check the SSL and TLS certificate of any domain. See the issuer, validity window, expiry countdown, protocol version, cipher, subject alternative names, and the full chain.

Apex, subdomain, or URL. We figure it out.

Trygoogle.comwikipedia.orggithub.comvercel.comcloudflare.comopenai.com

What you get

Everything in one report.

  • 01

    Issuer and subject

    See who issued the certificate and which name it was issued for, straight from the live handshake.

  • 02

    Validity and expiry

    The valid from and valid to dates plus a countdown to expiry, so a certificate never lapses on you unnoticed.

  • 03

    Protocol and cipher

    The negotiated TLS version and cipher suite, so you can confirm the connection uses modern, strong cryptography.

  • 04

    SANs and chain

    Every subject alternative name the certificate covers and the chain up to the issuing authority.

What is an SSL and TLS certificate check?

An SSL and TLS certificate check connects to a domain and inspects the certificate it presents during the handshake. It tells you who issued the certificate, which names it covers, how long it is valid, and which protocol and cipher the server negotiated. digga performs the handshake live, so you see the certificate the server is actually serving right now, not a cached copy.

What the certificate tells you

The issuer reveals which certificate authority signed it, the subject and subject alternative names show every hostname it is valid for, and the validity window shows when it starts and stops being trusted. The chain links the certificate to a trusted root. Together these fields tell you whether visitors will see a secure connection or a warning.

When does my certificate expire?

Expired certificates are one of the most common and most avoidable causes of outages and browser warnings. digga shows the exact valid to date and a countdown, so you can renew well ahead of time. Pair it with the DNS and email tools to confirm the whole domain stays healthy.

TLS versions and ciphers

Modern sites should negotiate TLS 1.2 or TLS 1.3 with a strong cipher suite. Seeing the negotiated protocol and cipher lets you confirm a server is not falling back to outdated, weak cryptography, which matters for both security and compliance.

Keep digging

Related tools.

DNS LookupSubdomain FinderEmail Security Check

FAQ

Questions, answered.

Is this SSL and TLS checker free?
Yes, completely free with no signup. digga is open source under AGPL 3.0.
What is the difference between SSL and TLS?
TLS is the modern protocol that replaced SSL. The term SSL is still used loosely, but every current certificate secures connections over TLS.
How do I check when a certificate expires?
The report shows the valid from and valid to dates along with a countdown to expiry, so you can renew before it lapses.
What are subject alternative names?
Subject alternative names, or SANs, are the full list of hostnames a single certificate is valid for, including any additional domains and subdomains it covers.
Why might the certificate differ from what my browser shows?
A server can present different certificates depending on the hostname requested through SNI. digga checks the certificate served for the exact name you enter.

Ready to dig?

Enter a domain to run the ssl and tls certificate checker now.

Apex, subdomain, or URL. We figure it out.