TLS / Cert Checker

'Why is this site flagged?' and 'is my cert expired?' tickets are quick if you have a one-shot tool. OpenSSL is the right answer but most techs won't reach for the CLI.

1. Enter host:port (defaults to 443 if you omit the port).
2. Tool connects and reports issuer, subject, SAN list, valid-from/to, days remaining, signature algorithm, and chain depth.
3. Red badge if the cert is expired or expires within 14 days.