Contents x
      Locate expired certificates
      • 27 Mar 2024
      • 1 Minute to read
      • Print
      • Dark
        Light
      Contents

      Locate expired certificates

      • Updated on 27 Mar 2024
      • 1 Minute to read
      • Print
      • Dark
        Light
      Article summary

      When certificates are allowed to expire, organizations are no longer be able to run secure transactions on their domain, and may suffer both reputational and financial damage as a result of website downtime.

      Certification Authorities (CA) will prompt you to renew your SSL certificate prior to the expiration date, so always keep an eye out for notifications.

      Threat actors create their own digital certificates that mimic the legitimate certificate of an established brand, which are then used to create fake websites that host malicious content.

      Ensuring that your organization has a firm grasp on its digital certificate infrastructure is of paramount importance in maintaining a secure public DNS presence.

      Locating expired certificates

      1. Navigate to Advanced Query Builder > IPv4 Queries > Scan Data - Certificates

      2. Enter an IPv4 address

      3. Specify a netmask to search across a range of IP addresses

      4. Specify a certificate fingerprint

      5. Specify a domain name (wildcards are supported)

      6. Tick the Expired Certs Only box

      7. Specify a window (days) that results are displayed from

      8. Limit the number of results to be returned

      Was this article helpful?
      What's Next