Skip to content
BEAD

SSL Certificate Decoder

Paste a PEM certificate and inspect its subject, issuer, validity, SANs, and fingerprints.

🔒 Certificates are parsed entirely in your browser.

</>Use this tool programmaticallycurl · JavaScript · MCP

Same tool, callable from any HTTP client or from Claude (via MCP). Anonymous: 100 req/day per IP. Sign up for 1,000 req/day.

curl
curl https://api.b-e-a-d.com/tools/certificate-decoder/run \
  -H "Content-Type: application/json" \
  -d '{
  "pem": "-----BEGIN CERTIFICATE-----\n...\n-----END CERTIFICATE-----"
}'
JavaScript (fetch)
const res = await fetch("https://api.b-e-a-d.com/tools/certificate-decoder/run", {
  method: "POST",
  headers: { "Content-Type": "application/json" },
  body: JSON.stringify({
  "pem": "-----BEGIN CERTIFICATE-----\n...\n-----END CERTIFICATE-----"
}),
});
const data = await res.json();
console.log(data.result);
MCP (Claude Desktop / Claude Code)
# In Claude Desktop / Claude Code, add to your MCP config:
{
  "mcpServers": {
    "bead": {
      "command": "npx",
      "args": ["-y", "mcp-remote", "https://mcp.b-e-a-d.com"]
    }
  }
}

# Then ask Claude to call:
mcp__bead__bead_certificate_decoder

Full reference: developer docs · OpenAPI spec

What this tool does

Parses a PEM-encoded X.509 certificate and shows you the human-readable fields: subject, issuer, validity period, public-key algorithm and size, Subject Alternative Names, the SHA-1 and SHA-256 fingerprints, and a list of extensions.

It does notverify the certificate against a trust store or check revocation — it just shows you what's in the file. Powered by @peculiar/x509 in your browser.

You might also like