Run a free WHOIS domain lookup to find registration, ownership, expiry, and nameserver details for any domain, instantly.
Type example.com, no https:// or www needed.
We query the authoritative registry over RDAP, the modern successor to legacy WHOIS, so results are structured and current.
Registrar, creation and expiry dates, domain statuses, nameservers, DNSSEC, and registrant details (when not redacted for privacy).
Expand the raw RDAP data at the bottom to see the full machine-readable registry record, useful for developers and security analysts.
The domain exists in the registry. Check the expiry date and statuses, clientTransferProhibited is normal and protects against hijacking.
Less than 30 days of registration remain. Renew now, expired domains are snapped up quickly by squatters.
The registrant details are redacted by a privacy service. This is common and not suspicious on its own.
The registry has no record of this domain, it may be available to register, or was recently deleted.
A domain registered days ago that imitates a trusted brand is a classic phishing signal. Registration age is a strong trust indicator.
Before purchasing, partnering, or investigating email abuse, confirm who actually controls a domain and when it was registered.
An expired domain takes down your website, email, and every service tied to it. Check expiry across your portfolio regularly.
The registry lists the authoritative nameservers. If they differ from what you expect, your DNS changes are going to the wrong place.
WHOIS is the public directory of domain registrations, who registered a domain, through which registrar, when it expires, and which nameservers it uses. Our tool uses RDAP, the modern structured protocol that has replaced legacy WHOIS at most registries.
RDAP (Registration Data Access Protocol) returns the same registration data as WHOIS but over HTTPS in structured JSON, with better redaction handling and internationalization. It is the official successor mandated by ICANN.
GDPR and registrar privacy services hide personal registrant data by default. The domain is still fully valid, you can usually contact the owner via the registrar's anonymized relay.
Run the lookup and check the registrant organization and country. If redacted, the registrar and abuse contacts still give you a path to reach or report the owner.
Yes, registration age, registrar, nameserver history, and status codes are core signals for phishing triage, brand-abuse monitoring, and email-security investigations.
Strengthen your domain security with our free lookup tools.
SenderSignal monitors these signals continuously: 48 blacklists, SPF, DKIM, DMARC, TLS and more, with alerts in Slack, email and signed webhooks.