UtilityKit

500+ fast, free tools. Most run in your browser only; Image & PDF tools upload files to the backend when you run them.

WHOIS Domain Lookup

Look up WHOIS registration data for any domain — registrar, creation date, expiry, name servers, and contact details.

About WHOIS Domain Lookup

The WHOIS Domain Lookup tool queries the WHOIS registration database for any domain name, returning registrar information, registration and expiry dates, last updated timestamp, name servers, and registrant contact details (where not redacted by GDPR privacy services). WHOIS data is essential for domain research, verifying domain ownership, checking expiration before purchase, investigating malicious domains, and confirming registrar details for DNS management. The results are formatted in a clean, readable layout with key fields highlighted, and the raw WHOIS text is also available for those who need the complete record.

Why use WHOIS Domain Lookup

  • Parses key fields (registrar, dates, name servers) into a readable format.
  • Shows raw WHOIS output alongside parsed fields.
  • Useful for domain research, expiry checking, and security investigation.
  • Works for most generic TLDs and many country-code TLDs.
  • Parses key fields (registrar, dates, name servers, status codes) into a clean readable format.
  • Falls back to RDAP for modern TLDs that have deprecated port-43 WHOIS service.

How to use WHOIS Domain Lookup

  1. Enter a domain name (e.g. example.com) in the input field.
  2. Click Lookup to retrieve the WHOIS record.
  3. Review the parsed fields: registrar, dates, name servers, and status.
  4. Expand 'Raw WHOIS' to see the complete unformatted record.
  5. Enter a domain name (e.g. example.com) in the input field — no http:// prefix needed.
  6. Click Lookup to retrieve the WHOIS or RDAP record from the authoritative registry.
  7. Review the parsed fields: registrar, creation date, expiry date, name servers, and EPP status codes.

When to use WHOIS Domain Lookup

  • Checking when a domain expires before attempting to buy it.
  • Identifying the registrar responsible for a domain for DNS changes.
  • Investigating a suspicious domain during a security incident.
  • Verifying domain registration details match expected owner information.
  • Checking when a domain expires before attempting to register or buy it on the aftermarket.
  • Identifying the registrar responsible for a domain so you can request DNS or transfer changes.

Examples

Standard .com domain lookup

Input: example.com

Output: Domain: EXAMPLE.COM Registrar: RESERVED-Internet Assigned Numbers Authority Created: 1995-08-14 Expiry: 2025-08-13 Updated: 2024-08-14 Name servers: a.iana-servers.net, b.iana-servers.net Status: clientTransferProhibited

GDPR-redacted EU domain

Input: example.de

Output: Domain: example.de Nserver: ns1.example.de Nserver: ns2.example.de Status: connect Changed: 2024-03-12T09:14:23+01:00 [Registrant data redacted under GDPR — contact registrar abuse desk for disclosure]

Recently registered domain

Input: newdomain.io

Output: Domain: newdomain.io Registrar: Namecheap, Inc. Created: 2025-04-22 Expiry: 2026-04-22 Name servers: dns1.registrar-servers.com, dns2.registrar-servers.com Status: clientTransferProhibited DNSSEC: unsigned

Tips

  • Add 'clientTransferProhibited' and 'clientUpdateProhibited' status codes through your registrar to harden against domain hijacking.
  • Set calendar reminders 60 and 30 days before WHOIS expiry — many registrars only auto-renew if the credit card on file is valid.
  • If WHOIS shows an unexpected registrar, your domain may have been transferred without authorization — file an abuse report immediately.
  • GDPR redacted fields can still be reached via the registrar's abuse contact email, which is always public.
  • Use the parsed name servers as a starting point for diagnosing DNS issues — paste them into the DNS Propagation Checker.
  • For brand protection, set up monthly WHOIS monitoring on your top-level domains to detect unauthorized changes.
  • RDAP responses are JSON and easier to script against than legacy WHOIS text — reach for RDAP when automating audits.

Frequently Asked Questions

Why is registrant information hidden?
GDPR and many registrars' privacy protection services redact personal registrant data. The WHOIS record will show the privacy proxy service name instead of personal details.
Does it work for all TLDs?
Most generic TLDs (.com, .net, .org, .io, .dev etc.) and many ccTLDs are supported. Some country-code TLDs have restricted WHOIS services.
What does the domain status field mean?
EPP status codes describe the domain's current state: clientTransferProhibited prevents unauthorized transfers, redemptionPeriod means the domain has expired and is in a recovery window.
Is the data real-time?
WHOIS data is fetched live from the registry's WHOIS server on each query, so it reflects the current registration state.
Can I look up IP address WHOIS?
This tool is for domain WHOIS. For IP address information use the IP Geolocation tool on this site.

Explore the category

MX Record Lookup Look up the Mail Exchange (MX) records for any domain to see which mail servers handle its incoming email. IP Geolocation Lookup Look up the geolocation of any IPv4 or IPv6 address — country, region, city, ISP, ASN, and approximate coordinates. Paste and Share Share text with a short link, expiry, optional max opens, password, and QR code Unix Time Converter Convert Unix timestamps to readable date and back JSON to Zod Schema Generate Zod schema code from JSON input data. MIME Type Lookup Find MIME types from extensions and reverse-map MIME to extensions.
CIDR Notation Explained: How to Read /24, /16, and Why It Matters If a Slack message that contains '10.0.0.0/16' makes you nod and quietly Google 'what does /16 mean again', this is the post for you. Read / May 2026 · 10 min

Glossary

WHOIS
A query and response protocol (RFC 3912) used to look up registered users or assignees of an internet resource such as a domain name or IP address block. WHOIS servers respond on TCP port 43 with text records.
RDAP
Registration Data Access Protocol (RFC 7480-7484) — the modern successor to WHOIS that returns structured JSON data over HTTPS, supports authentication, internationalization, and is the required protocol for new gTLDs.
Registrar
An ICANN-accredited organization that sells domain registrations to end users (e.g. GoDaddy, Namecheap, Cloudflare Registrar) and submits registration data to the registry.
Registry
The organization that operates the master database for a specific TLD (e.g. Verisign for .com, PIR for .org). Registrars push records into the registry via EPP.
EPP status codes
Extensible Provisioning Protocol status flags such as clientTransferProhibited, serverHold, and redemptionPeriod that describe the current state of a domain registration.
Redemption period
A 30-day grace window after a domain expires during which the original owner can recover it by paying a redemption fee, typically $80-$200 above normal renewal cost.
Name server (NS)
DNS servers authoritative for a domain. WHOIS lists which name servers the domain is delegated to at the registry level.
GDPR redaction
Privacy masking applied to WHOIS records for EU-based registrants under the General Data Protection Regulation, replacing personal contact details with proxy values.