[{"data":1,"prerenderedAt":169},["ShallowReactive",2],{"term-c\u002Fcertificate":3,"related-c\u002Fcertificate":153},{"id":4,"title":5,"acronym":6,"body":7,"category":133,"description":134,"difficulty":135,"extension":136,"letter":137,"meta":138,"navigation":139,"path":140,"related":141,"seo":147,"sitemap":148,"stem":151,"subcategory":6,"__hash__":152},"terms\u002Fterms\u002Fc\u002Fcertificate.md","Certificate",null,{"type":8,"value":9,"toc":127},"minimark",[10,15,19,23,26,30,116,120,123],[11,12,14],"h2",{"id":13},"eli5-the-vibe-check","ELI5 — The Vibe Check",[16,17,18],"p",{},"A certificate is a digital ID card for a website, signed by a trusted authority. When your browser connects to a site, it checks the certificate to confirm you're actually talking to the real site and not an imposter. No valid cert? Your browser throws a big scary warning.",[11,20,22],{"id":21},"real-talk","Real Talk",[16,24,25],{},"A TLS\u002FSSL certificate is a digital document that binds a public key to an entity (domain, organization). It's signed by a Certificate Authority (CA) and contains the domain name, public key, expiry date, and CA signature. Browsers validate certificates against trusted CA root stores.",[11,27,29],{"id":28},"show-me-the-code","Show Me The Code",[31,32,37],"pre",{"className":33,"code":34,"language":35,"meta":36,"style":36},"language-bash shiki shiki-themes material-theme-lighter material-theme material-theme-palenight","# Check certificate details for a domain\nopenssl s_client -connect example.com:443 -showcerts 2>\u002Fdev\u002Fnull \\\n  | openssl x509 -noout -text | grep -E 'Subject:|Issuer:|Not After'\n","bash","",[38,39,40,49,80],"code",{"__ignoreMap":36},[41,42,45],"span",{"class":43,"line":44},"line",1,[41,46,48],{"class":47},"sHwdD","# Check certificate details for a domain\n",[41,50,52,56,60,63,66,69,73,76],{"class":43,"line":51},2,[41,53,55],{"class":54},"sBMFI","openssl",[41,57,59],{"class":58},"sfazB"," s_client",[41,61,62],{"class":58}," -connect",[41,64,65],{"class":58}," example.com:443",[41,67,68],{"class":58}," -showcerts",[41,70,72],{"class":71},"sMK4o"," 2>",[41,74,75],{"class":58},"\u002Fdev\u002Fnull",[41,77,79],{"class":78},"sTEyZ"," \\\n",[41,81,83,86,89,92,95,98,101,104,107,110,113],{"class":43,"line":82},3,[41,84,85],{"class":71},"  |",[41,87,88],{"class":54}," openssl",[41,90,91],{"class":58}," x509",[41,93,94],{"class":58}," -noout",[41,96,97],{"class":58}," -text",[41,99,100],{"class":71}," |",[41,102,103],{"class":54}," grep",[41,105,106],{"class":58}," -E",[41,108,109],{"class":71}," '",[41,111,112],{"class":58},"Subject:|Issuer:|Not After",[41,114,115],{"class":71},"'\n",[11,117,119],{"id":118},"when-youll-hear-this","When You'll Hear This",[16,121,122],{},"\"The certificate expires next week — renew it.\" \u002F \"Let's Encrypt issues free certificates.\"",[124,125,126],"style",{},"html pre.shiki code .sHwdD, html code.shiki .sHwdD{--shiki-light:#90A4AE;--shiki-light-font-style:italic;--shiki-default:#546E7A;--shiki-default-font-style:italic;--shiki-dark:#676E95;--shiki-dark-font-style:italic}html pre.shiki code .sBMFI, html code.shiki .sBMFI{--shiki-light:#E2931D;--shiki-default:#FFCB6B;--shiki-dark:#FFCB6B}html pre.shiki code .sfazB, html code.shiki .sfazB{--shiki-light:#91B859;--shiki-default:#C3E88D;--shiki-dark:#C3E88D}html pre.shiki code .sMK4o, html code.shiki .sMK4o{--shiki-light:#39ADB5;--shiki-default:#89DDFF;--shiki-dark:#89DDFF}html pre.shiki code .sTEyZ, html code.shiki .sTEyZ{--shiki-light:#90A4AE;--shiki-default:#EEFFFF;--shiki-dark:#BABED8}html .light .shiki span {color: var(--shiki-light);background: var(--shiki-light-bg);font-style: var(--shiki-light-font-style);font-weight: var(--shiki-light-font-weight);text-decoration: var(--shiki-light-text-decoration);}html.light .shiki span {color: var(--shiki-light);background: var(--shiki-light-bg);font-style: var(--shiki-light-font-style);font-weight: var(--shiki-light-font-weight);text-decoration: var(--shiki-light-text-decoration);}html .default .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .shiki span {color: var(--shiki-default);background: var(--shiki-default-bg);font-style: var(--shiki-default-font-style);font-weight: var(--shiki-default-font-weight);text-decoration: var(--shiki-default-text-decoration);}html .dark .shiki span {color: var(--shiki-dark);background: var(--shiki-dark-bg);font-style: var(--shiki-dark-font-style);font-weight: var(--shiki-dark-font-weight);text-decoration: var(--shiki-dark-text-decoration);}html.dark .shiki span {color: var(--shiki-dark);background: var(--shiki-dark-bg);font-style: var(--shiki-dark-font-style);font-weight: var(--shiki-dark-font-weight);text-decoration: var(--shiki-dark-text-decoration);}",{"title":36,"searchDepth":51,"depth":51,"links":128},[129,130,131,132],{"id":13,"depth":51,"text":14},{"id":21,"depth":51,"text":22},{"id":28,"depth":51,"text":29},{"id":118,"depth":51,"text":119},"security","A certificate is a digital ID card for a website, signed by a trusted authority.","intermediate","md","c",{},true,"\u002Fterms\u002Fc\u002Fcertificate",[142,143,144,145,146],"CA","TLS","HTTPS","Public Key","Asymmetric Encryption",{"title":5,"description":134},{"changefreq":149,"priority":150},"weekly",0.7,"terms\u002Fc\u002Fcertificate","-CGewl_xV9Kc16I5k7ZxRpprlPQFqtfgOVm0iaFVIBk",[154,157,163,166],{"title":146,"path":155,"acronym":6,"category":133,"difficulty":135,"description":156},"\u002Fterms\u002Fa\u002Fasymmetric-encryption","Asymmetric encryption uses two different keys — one to lock (public key), one to unlock (private key).",{"title":144,"path":158,"acronym":159,"category":160,"difficulty":161,"description":162},"\u002Fterms\u002Fh\u002Fhttps","HyperText Transfer Protocol Secure","networking","beginner","HTTPS is HTTP but with a bodyguard. All the data flying between your browser and the website is scrambled so nobody can spy on it.",{"title":145,"path":164,"acronym":6,"category":133,"difficulty":135,"description":165},"\u002Fterms\u002Fp\u002Fpublic-key","A public key is like your open mailbox — anyone can drop a message in it (encrypt data with it), but only you have the key to open the box and read it (you...",{"title":143,"path":167,"acronym":143,"category":133,"difficulty":135,"description":168},"\u002Fterms\u002Ft\u002Ftls","TLS (Transport Layer Security) is the updated, actually-secure version of SSL. It's the technology that puts the padlock in your browser's address bar.",1776518264332]