NetDebug Toolkit
Tools Docs Support Terms Privacy
Lookup & Info

TLS Certificate Inspector

Examine server certificate details and surface common weakness signals.

🔐

TLS Certificate Inspector

tls

Input

  • Target: hostname or HTTPS URL.

Output

  • Leaf certificate subject and issuer.
  • Certificate expiry date and days remaining.
  • Signature algorithm and public key details (when available).
  • Subject Alternative Name (SAN) entries.
  • Issuer chain summary.
  • Weakness warnings (expired, weak signature algorithm, weak key size, missing SAN, hostname mismatch).

Tips

  • Use against production domains and internal endpoints to catch renewal or configuration issues early.
  • If the handshake fails, you may still get partial certificate details plus a handshake note.

Deeplink

netdebug://tls?target=https://example.com

Tip: in the app, open the Export menu (the share icon) on this screen and choose Copy Deeplink to copy this link as a Universal Link with your current target and options already filled in.