SSL Certificate Chain Lookup | WhoisXML API
Products APIs Data Feeds Web Tools Domain Research & Monitoring Enterprise Packages
WHOIS / WHOIS History
WHOIS / WHOIS History

Provide current and historical ownership information on domains / IPs. Identify all connections between domains, registrants, registrars, and DNS servers.

DNS / DNS History
DNS / DNS History

Look into all current and historical DNS / IP connections between domains and A, MX, NS, and other records. Monitor suspicious changes to DNS records.

IP Geolocation / IP Netblocks
IP Geolocation / IP Netblocks

Get detailed context on an IP address, including its user’s geolocation, time zone, connected domains, connection type, IP range, ASN, and other network ownership details.

Domain Research Suite (DRS)
Domain Research Suite (DRS)

Access our web-based solution to dig into and monitor all domain events of interest.

Domain Research Suite (DRS)
Domain Research Suite (DRS)

Get access to a web-based enterprise-grade solution to search and monitor domain registrations and ownership details for branded terms, fuzzy matches, registrants of interest, and more.

Research
Monitoring
White-Label
WhoisXML API Predictive Threat Intelligence
Predictive Threat Intelligence

Detect and block access to and from dangerous domain names before malicious actors can weaponize them. Contact us today for more information.

WhoisXML API Internet Infrastructure
Internet Infrastructure

Unlock integrated intelligence on Internet properties and their ownership, infrastructure, and other attributes.

Enterprise API Packages
Enterprise API Packages

Our complete set of domain, IP, and DNS intelligence available via API calls as an annual subscription with predictable pricing.

Security Intelligence (SI) Suite
Security Intelligence (SI) Suite

Offers complete access to WHOIS, IP, DNS, and subdomain data for product enrichment, threat hunting and more.

Multi-Level API User Administration Now Available - Manage individual API keys for team members in your organization.

Learn More
×
Contact Us
API docs Pricing

SSL Certificate Chain Lookup

Get the Secure Sockets Layer (SSL) of a domain name, along with its entire SSL certificate chain, to uncover possible inconsistencies and misconfigurations that could point to exploitable vulnerabilities. Each SSL Certificate Chain Lookup query gives information that enables more comprehensive security enrichment, letting you know which domains you can trust and which you cannot.

Every SSL certificate chain lookup gives users:

  • Audit Date

    When was the SSL certificate and SSL certificate chain result queried?

  • Number of Certificates Found

    How many SSL certificates are there in the domain’s SSL certificate chain?

  • IP Address

    What is the domain’s IP resolution?

  • Port Number

    What port number does the domain host use to establish SSL connections?

  • SSL Certificate Chain Details

    What are the available SSL certificates in the SSL certificate chain of the domain? What are their types—end-user, intermediate, or root?

  • SSL Certificate Data

    What other information is available for each SSL certificate? Results include SSL certificate hierarchy, validation type and period, signature algorithm, serial number, common name, issuer name, country, and common name, public key, type, size and PEM file information. (See more details about its output format.)

SSL Certificate Chain Lookup provides exhaustive critical information.

  • Up-to-date

    You can get access to the most current SSL certificate issued for each domain.

  • Consistent

    You obtain well-parsed and well-formatted SSL certificate chain results, allowing for better understanding and faster integration.

  • Handy

    We provide SSL certificate chain lookup results in the form of a downloadable detailed report (JSON format).

Practical Usage

Check your SSL certificates and SSL certificate chain for any sign of unauthorized modifications that can translate to a potential domain or subdomain takeover.

Determine which domains you can and cannot trust by digging deeper into their SSL certificates and SSL certificate chains.

Identify the SSL certificate’s validation type to ensure it is not self-signed, as such certificates often figure in man-in-the-middle (MitM) and typosquatting attacks.

Enhance your attack surface management efforts by identifying which domains have SSL certificates that are about to expire or already expired.

Stay updated on SSL certificate and SSL certificate chain modifications even if the domains they belong to often change ownership.