Skip to main content
SSL monitors track your certificate expiration dates and alert you before they expire, preventing embarrassing and costly outages.

Why Monitor SSL Certificates?

  • Expired certificates cause browser warnings and lost trust
  • Many services reject connections to expired certificates
  • Auto-renewal can fail silently
  • Monitoring gives you time to fix issues

Creating an SSL Monitor

  1. Go to Dashboard > SSL
  2. Click Add Domain
  3. Enter the domain to monitor
  4. Set alert threshold (days before expiry)

What We Check

CheckDescription
Expiration dateDays until certificate expires
Certificate chainAll certificates in the chain are valid
Domain matchCertificate matches the domain
IssuerCertificate authority information

Alert Thresholds

Configure when to receive alerts:
Days Before ExpiryRecommended For
30 daysStandard alert
14 daysUrgent reminder
7 daysCritical warning

Certificate Details

For each monitored domain, we track: 
{
  "domain": "example.com",
  "expires_at": "2024-06-15T00:00:00Z",
  "days_until_expiry": 45,
  "issuer": "Let's Encrypt",
  "subject": "CN=example.com",
  "valid_from": "2024-03-15T00:00:00Z"
}

Best Practices

Include subdomains, API endpoints, and any domain serving HTTPS traffic.
Alert at 30 days for awareness, 14 days for action, 7 days for escalation.
If you use *.example.com, monitor the base domain.
Even with Let’s Encrypt or similar, certificates can fail to renew.