SSL Certificate & Key Decoder
Decode X.509 SSL/TLS certificates and RSA private keys in your browser. View subject, issuer, SANs, validity dates, key type, serial number, and SHA-256/SHA-1 fingerprints. Optionally check if a certificate and private key match.
How to Use SSL Certificate & Key Decoder
How to Use SSL Certificate & Key Decoder
Certificate Tab
Step 1: Paste Your PEM Certificate
Copy the contents of your .crt, .cer, or .pem file and paste it into the Certificate input, including the -----BEGIN CERTIFICATE----- and -----END CERTIFICATE----- headers.
You can get the PEM from:
- A
.crtor.pemfile on your server - OpenSSL:
openssl s_client -connect example.com:443 < /dev/null | openssl x509 -out cert.pem - Your browser: click the padlock → Certificate → copy the PEM
Step 2: Click Decode Certificate
The tool decodes and displays:
- Subject — CN, Organisation, Country, and other fields
- Issuer — the certificate authority that signed this cert
- Validity — Not Before / Not After dates with an expiry badge
- Key Info — key type (RSA/EC), key size in bits
- SANs — all DNS names, IPs, and email addresses this cert covers
- Fingerprints — SHA-256 and SHA-1 fingerprints for verification
- Flags — Self-Signed and CA Certificate badges where applicable
Private Key Tab
Step 1: Paste Your PEM Private Key
Paste an RSA private key in PKCS#1 (-----BEGIN RSA PRIVATE KEY-----) or PKCS#8 (-----BEGIN PRIVATE KEY-----) format.
Step 2: Click Decode Private Key
The tool shows key type, size, and a SHA-256 fingerprint of the derived public key.
Certificate & Key Match
If you have decoded both a certificate and a private key, a Check Match button appears. Click it to verify that the certificate was issued for that private key — the tool compares the public key fingerprint from the certificate against the one derived from the private key.
Tips
- Certificates with no SANs are rejected by modern browsers — the CN field alone is not sufficient
- Use Landscape orientation for wide tables
- A SHA-256 fingerprint mismatch after renewal means the key was rotated — update both cert and key on the server
Frequently Asked Questions
Most Viewed Tools
Screen Size Converter
Calculate screen width and height from diagonal size and aspect ratio. Convert between inches and centimeters for displays, TVs, and monitors with instant dimension calculations.
Use Tool →DPI Calculator
Calculate DPI (dots per inch), image dimensions, and print sizes. Convert between pixels and physical dimensions for printing and displays.
Use Tool →Paper Size Converter
Convert between international paper sizes (A4, Letter, Legal) with dimensions in mm, cm, and inches. Compare ISO A/B series and North American paper standards.
Use Tool →Fuel Consumption Converter
Convert between MPG (miles per gallon), L/100km (liters per 100 kilometers), and other fuel efficiency units. Compare car fuel economy across different measurement systems.
Use Tool →CSV Splitter
Split large CSV files into smaller files by number of rows. Process large datasets in manageable chunks instantly.
Use Tool →Product Schema Generator
Generate JSON-LD Product schema markup for SEO. Add product details like name, price, brand, rating, and availability to create structured data for rich search results.
Use Tool →Large Text File Viewer
View and search large text files up to 200MB in your browser. Features virtual scrolling, line numbers, search functionality, and file statistics. Perfect for log files, CSV, JSON, and code files.
Use Tool →API Key Generator
Generate secure, cryptographically random API keys for authentication and authorization. Create custom API keys with various formats including hex, base64, and prefixed keys.
Use Tool →Related Development Tools
QR Code Generator
FeaturedCreate custom QR codes for URLs, text, and contact info
Use Tool →HTML Validator
Validate HTML markup and check for common issues. Detect missing attributes, accessibility problems, deprecated tags, and structure errors. Free and runs entirely in your browser.
Use Tool →API Response Formatter
Format and beautify API responses for better readability. JSON formatter with minify and prettify options.
Use Tool →JavaScript Syntax Checker
Check JavaScript code for syntax errors instantly in your browser. Get exact line and column numbers for each error, plus code statistics like function count, variable declarations, and imports. Free and works offline.
Use Tool →API Key Validator
Validate API key format and detect the provider instantly in your browser. Supports OpenAI, Stripe, GitHub, AWS, Google, Anthropic, HuggingFace, Slack, SendGrid, Twilio, and more. Includes entropy analysis.
Use Tool →Slug Generator
Generate URL-friendly slugs from any text. Create SEO-optimized slugs for blog posts, products, and web pages instantly.
Use Tool →Cookie Parser
Parse HTTP cookie strings into readable key-value pairs. Decode URL-encoded values and inspect cookies from browser requests.
Use Tool →RSS Feed Validator
Validate RSS and Atom feeds. Check structure, required fields, and preview entries. Supports RSS 2.0, RSS 1.0, and Atom 1.0. Free and runs entirely in your browser.
Use Tool →Share Your Feedback
Help us improve this tool by sharing your experience