{"id":44712471,"url":"https://github.com/szazeski/checkssl","last_synced_at":"2026-02-15T12:47:58.906Z","repository":{"id":57650704,"uuid":"294268324","full_name":"szazeski/checkssl","owner":"szazeski","description":"simple cross platform command line tool to check ssl https certificate and chain is valid and not expired","archived":false,"fork":false,"pushed_at":"2024-08-14T01:10:07.000Z","size":11307,"stargazers_count":15,"open_issues_count":2,"forks_count":1,"subscribers_count":2,"default_branch":"main","last_synced_at":"2024-08-14T03:09:23.315Z","etag":null,"topics":["certificate","checkssl","cli","devops-tools","golang","https","ssl","tls"],"latest_commit_sha":null,"homepage":"https://www.checkssl.org","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/szazeski.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2020-09-10T01:16:14.000Z","updated_at":"2024-08-14T03:09:32.121Z","dependencies_parsed_at":"2024-04-22T03:39:54.134Z","dependency_job_id":"7fbd1ccf-af69-48de-8e8f-0fbfedf328ad","html_url":"https://github.com/szazeski/checkssl","commit_stats":null,"previous_names":[],"tags_count":12,"template":false,"template_full_name":null,"purl":"pkg:github/szazeski/checkssl","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/szazeski%2Fcheckssl","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/szazeski%2Fcheckssl/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/szazeski%2Fcheckssl/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/szazeski%2Fcheckssl/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/szazeski","download_url":"https://codeload.github.com/szazeski/checkssl/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/szazeski%2Fcheckssl/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29478360,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-15T11:35:25.641Z","status":"ssl_error","status_checked_at":"2026-02-15T11:34:57.128Z","response_time":118,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["certificate","checkssl","cli","devops-tools","golang","https","ssl","tls"],"created_at":"2026-02-15T12:47:56.420Z","updated_at":"2026-02-15T12:47:58.889Z","avatar_url":"https://github.com/szazeski.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"![checkssl preview](https://repository-images.githubusercontent.com/294268324/fb6ec2a7-d004-4915-b754-d1982030878e)\n\n# checkssl\ncommand line tool to check if a webserver has a valid https certificate.\n\n[![Go](https://github.com/szazeski/checkssl/actions/workflows/go.yml/badge.svg?branch=main)](https://github.com/szazeski/checkssl/actions/workflows/go.yml)\n\nhttps://www.checkssl.org/\n\n\u003ca rel=\"me\" href=\"https://fosstodon.org/@checkssl\"\u003eFollow us on Mastodon\u003c/a\u003e\n\n## Example\n\n`checkssl checkssl.org`\n```\nwww.checkssl.org =\u003e 2600:9000:24d0:b800:1e:e294:3240:93a1\n -\u003e AmazonS3 -\n -\u003e HTTP/2 with TLS v1.3 (released 2018) - latest version\n -\u003e TLS_AES_128_GCM_SHA256 = TLS, message encrypted with AES128 GCM, hashes are SHA256\n 1) *.checkssl.org expires on 2025-06-28 11:59PM Sat (350.2 days)\n CA-2) Amazon RSA 2048 M03 expires on 2030-08-23 10:26PM Fri (2232.1 days)\n CA-3) Amazon Root CA 1 expires on 2037-12-31 1:00AM Thu (4918.2 days)\n CA-4) Starfield Services Root Certificate Authority - G2 expires on 2034-06-28 5:39PM Wed (3636.9 days)\n[PASS] https://checkssl.org\n```\n\nIf the certificate is not valid, a non-zero exit code will be returned to stop a ci build. \n\n`checkssl expired.badssl.com`\n```\nexpired.badssl.com =\u003e 104.154.89.105\n -\u003e nginx/1.10.3 (Ubuntu) -\n -\u003e HTTP/1.1 (OLD) with TLS v1.2 (released 2008) - Consider upgrading to TLS v1.3\n -\u003e TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256\n 1) *.badssl.com expired on 2015-04-12 11:59PM Sun (-3379.8 days)\n CA-2) COMODO RSA Domain Validation Secure Server CA expires on 2029-02-11 11:59PM Sun (1674.2 days)\n CA-3) COMODO RSA Certification Authority expired on 2020-05-30 10:48AM Sat (-1505.4 days)\nhttps://expired.badssl.com x509: “*.badssl.com” certificate is expired\n[FAIL] https://expired.badssl.com\n```\n\n`checkssl ebay.com`\n```\n =\u003e 23.11.225.115\nhttps://ebay.com stopped after 10 redirects\n[FAIL] https://ebay.com\n```\n\n### Parameters\n(You can use - or -- for all parameters)\n\n`-days=60` allows you to specify a threshold of when checkssl should error to allow CI jobs to fail if the certs are about to expire in a few days.\n\n`-json` will switch the output to JSON format for easier parsing with other applications.\n\n`-csv` will switch the output to comma seperated values that are easier to use with a spreadsheet.\n\n`-no-color` will not add terminal color syntax to output, helpful for CI systems that do not have color enabled.\n\n`-no-output` will not show any text but still return a status code. Helpful for CI that just want to know if the certs are valid.\n\n`-short` will reduce each target's output to just the pass/fail line with the url/dns.\n\n`-no-header` will remove the csv header line from the output\n\n`-timeout=5` will set the timeout to 5 seconds [default is 15]\n\n\n### Return Codes\n\n`0` All certificates passed\n\n`2` Certificate(s) are expired\n\n`3` Certificate(s) are valid now but user specified threshold failed (from -days flag)\n\n`4` Certificate(s) are not yet valid\n\n`5` General error, normally due to network failure\n\n## Installation\n\n### Linux/Mac\n```\nwget https://github.com/szazeski/checkssl/releases/download/v0.6.0/checkssl_$(uname -s)_$(uname -m).tar.gz -O checkssl.tar.gz \u0026\u0026 tar -xf checkssl.tar.gz \u0026\u0026 chmod +x checkssl \u0026\u0026 sudo mv checkssl /usr/local/bin/\n```\n\n### Docker\n[Dockerhub](https://hub.docker.com/r/szazeski/checkssl) `docker run --rm szazeski/checkssl hub.docker.com`\n\n### Mac\n\n[macports](https://ports.macports.org/port/checkssl/) `sudo port install checkssl`\n\n[homebrew](https://brew.sh/) `brew install szazeski/tap/checkssl`\n\n\n### Windows (Powershell)\n\n```\nInvoke-WebRequest https://github.com/szazeski/checkssl/releases/download/v0.6.0/checkssl_Windows_x86_64.tar.gz -outfile checkssl.tar.gz; tar -xzf checkssl.tar.gz; echo \"if you want, move the file to a PATH directory like WINDOWS folder\"\n```\n\nthen move to `C:\\Windows\\` or other PATH directory \n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fszazeski%2Fcheckssl","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fszazeski%2Fcheckssl","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fszazeski%2Fcheckssl/lists"}