Monitoring
An expired SSL certificate means browser warnings, SEO penalties, and lost trust. BlockForge monitors every site's SSL certificate continuously — checking expiry dates, validating certificate chains, detecting mixed content, and alerting you days before a certificate expires.
The Problem
Let's Encrypt auto-renewals usually work — until they don't. A DNS change, a server migration, a misconfigured cron job, or a hosting provider update can silently break the renewal process. You find out from angry clients seeing browser security warnings, not from your tools.
Google downgrades sites with SSL issues — broken HTTPS means lost rankings. A single day with an expired certificate can undo months of SEO work. Search engines crawl continuously, and an SSL error during a crawl can trigger a ranking penalty that persists long after the certificate is renewed.
One HTTP image on an HTTPS page triggers browser warnings and breaks the padlock icon. Mixed content issues are notoriously hard to find — they can hide in widget areas, custom CSS backgrounds, hardcoded URLs in the database, or third-party plugin output that bypasses your HTTPS configuration.
How It Works
BlockForge checks your SSL certificates as part of every uptime check. The entire certificate chain is validated — from your domain certificate through intermediates to the root CA. Expiry dates are tracked and countdown alerts are sent at 30, 14, 7, and 1 day before expiration. Protocol versions are verified to ensure you're not running outdated TLS. And mixed content is detected by scanning page responses for HTTP resources loaded on HTTPS pages.
acme-corp.com
Let's Encrypt R3
shop.example.de
Let's Encrypt R3
*.agency.com
DigiCert Global G2
Capabilities
Multi-stage countdown alerts notify you at 30, 14, 7, and 1 day before certificate expiration. Alerts escalate in urgency as the deadline approaches, ensuring that even if an auto-renewal fails, you have ample time to intervene manually before the certificate lapses.
The full certificate chain is validated from your domain certificate through all intermediate certificates to the trusted root CA. Missing intermediates, self-signed certificates, and chain ordering issues are detected and flagged before they cause browser trust errors.
Every uptime check scans the page response for HTTP resources loaded on HTTPS pages. Images, scripts, stylesheets, and iframes loaded over HTTP are identified so you can fix them before they trigger browser warnings and break the padlock icon for your visitors.
TLS protocol versions are verified on every check. Sites still negotiating TLS 1.0 or 1.1 are flagged since modern browsers block these deprecated protocols. Ensure all your sites support TLS 1.2 or 1.3 for maximum compatibility and security.
Track renewal status across all certificates. When a certificate is renewed, BlockForge detects the new expiry date automatically. If a renewal was expected but didn't happen, you're alerted immediately — catching auto-renewal failures before they become emergencies.
Full support for wildcard certificates, multi-domain SAN certificates, and standard single-domain certificates. Whether you use one certificate per site or a wildcard covering dozens of subdomains, BlockForge monitors and validates each one correctly.
Related Features
Start monitoring SSL certificates across all your WordPress sites. Expiry alerts, chain validation, and mixed content detection included. Free plan includes 3 sites.