~/tools / ssl-checker

SSL Checker

Check SSL certificate expiry, chain validity, TLS version and cipher. Catches expired certs, weak crypto and chain issues.

[ OK ] Valid for 324 more days.

── output ─────

Issued to: www.telekom.de
Issued by: Amazon ECDSA 384 M01
Valid from: 2026-02-10
Valid until: 2027-03-11 (324 days)
TLS version: TLSv1.3
Cipher: TLS_AES_128_GCM_SHA256
Key: EC (secp384r1) · 384 bit
Signature: ecdsa-with-SHA384
Forward secrecy: yes
Self-signed: no
Must-staple: no
SHA-256 fingerprint: 85:E4:09:D4:BE:66:98:34:F6:1A:AE:48:5A:49:76:9A:FF:F3:AC:86:37:E7:8F:A2:2F:BB:AE:22:D0:60:8F:B7
Serial: 0E817909C269D2E47A4CB159E061EB60

subject_alt_names · 2

www.telekom.de telekom.de

certificate_chain · 3 certs

[ leaf ]www.telekom.de

324 days left

issuer: Amazon ECDSA 384 M01

2026-02-10 → 2027-03-11

[ inter ]Amazon ECDSA 384 M01

1585 days left

issuer: Amazon Root CA 4

2022-08-23 → 2030-08-23

[ inter ]Amazon Root CA 4

4271 days left

issuer: Starfield Services Root Certificate Authority - G2

2015-05-25 → 2037-12-31

// Save telekom.de → we'll run this daily and alert on changes. /signup →