HashServer

This is a public service to detect compromised, weak SSL/X.509 keys.
You can upload your keys (the hashes of your keys) here to see, whether they are compromised.
The hashserver can contact you in case the key is later found to be compromised.
The hashserver only needs the hash of the public key. To make it easier, you can also paste the whole certificate or CSR here.

Online check

Certificate/CSR
You can paste the Certificate, the CSR, or the hex-encoded SHA-1 hash of the DER formatted public key here.
EMail address
This address will be contacted in case a potential compromise is found later. Please write a complete URL, either http://server/script or https://server/script or mailto:email@address This address will not be shown to others.

I want to know whether someone else's certificate/key is compromised:
I am the owner of key, I want to know whether my certificate/key is compromised:
	Name		Your name. This will be displayed to other users in case a compromise is detected.

I have several keys to check, I want to automate it:

You can download and use our script to do it automatically.

---

This Hashserver is operated by CAcert.org