📖 Description
1. Why Must You Check Your CSR Before Submission?
A CSR is an encrypted text file generated on your server, containing your public key and identity information about your organization and domain. Once submitted to a Certificate Authority (CA), the information cannot be changed:
- Prevent Domain Errors: Check if the
Common Name is incorrect (e.g., 本站.com mistakenly written as ebtoool.com) to prevent the certificate from being issued for the wrong domain.
- Verify Geographic Information: Confirm that the State, Locality, and Country Code meet the CA's format requirements.
- Validate Public Key Length: Ensure your CSR uses a sufficiently strong encryption algorithm (e.g., RSA 2048-bit or higher) to comply with industry security standards.
- Avoid Duplicate Applications: Many paid certificates require re-payment to modify information after issuance. Checking before "placing an order" is a best practice in operations.
2. Core Feature Analysis
This site's tool provides in-depth parsing, transforming obscure Base64 text into an intuitive identity report:
A. Complete Identity Information Extraction (Subject Details)
- CN (Common Name): Displays the primary domain name the certificate will protect.
- O (Organization): Displays your company or organization name.
- OU (Organizational Unit): Displays the applying department (e.g., IT Department).
- L / S / C: Parses City, State/Province, and two-letter Country Code (e.g., CN) respectively.
B. In-depth Analysis of Cryptographic Properties
- Algorithm Identification: Identifies whether the encryption is RSA, ECC, or DSA.
- Bit Length Detection: Displays the key length (e.g., 2048, 4096-bit), ensuring it meets the security threshold.
- Signature Algorithm: View the CSR's own signature algorithm (e.g., SHA-256).
C. Format Compliance Validation
- Label Detection: Automatically checks for the standard
-----BEGIN CERTIFICATE REQUEST----- start and end tags.
- Encoding Verification: Validates the completeness of the Base64 encoding to prevent parsing failures due to incomplete copy-paste.
D. Privacy & Security (Local Parsing)
- Pure Frontend Processing: All parsing logic runs locally in your browser. Your CSR content is not uploaded to any server. Since a CSR contains only the public key and identity information (no private key), using this site is extremely secure.
3. CSR Key Field Reference Table
| Abbreviation |
Full Field Name |
Example Value |
Filling Suggestion |
| CN |
Common Name |
本站.com |
Must be a fully qualified domain name (FQDN). |
| O |
Organization |
EB Tool Tech Co. |
Businesses should use the English name on the business license. |
| OU |
Organizational Unit |
IT Dept |
Can be the department name or left blank. |
| L |
Locality |
Beijing |
Use the full spelling of the city. |
| ST |
State |
Beijing |
Use the full spelling of the province/state. |
| C |
Country |
CN |
Must be a two-letter ISO country code. |
4. Brief Operation Process
- Paste Content: Paste the CSR text generated on your server (or using OpenSSL) into the input box.
- Click Check: Click the "Start Parsing" button.
- Review Report:
- Green Indicators: Indicate correct information format and compliance with security standards.
- Red/Yellow Warnings: Indicate potential issues (e.g., country code not two letters, invalid domain format, insufficient key length).
- Copy/Correct: If the information is correct, you can confidently submit it to the CA. If there are errors, please regenerate a new CSR.
5. Why Choose This Site's CSR Assistant?
- No OpenSSL Command Line Needed: Eliminate complex commands (like
openssl req -noout -text -in...), allowing non-technical users to easily understand certificate requests.
- Second-Level Parsing: Utilizes an efficient parsing engine to instantly display structured results.
- Maximum Compatibility: Perfectly supports request files generated from various server environments like Nginx, Apache, IIS, Tomcat, etc.
- Completely Free: No registration required, reducing costs and increasing efficiency for your network security deployment.