esc

WHOIS Lookup Tool

Check domain registration details, find the registrar and expiry date, review nameservers, EPP status codes, DNSSEC status, and raw WHOIS/RDAP data.

Examples google.com github.com openai.com
Domain Registered Active
2a04:1123::
Registered with
Registered
2021-03-23
Expires
Domain age
5 years, 3 months
0 days to renew
Created2021
Updated
Expires
Registrar
Registrar
IANA ID
WHOIS server
Registrar URL
Abuse contact
Abuse phone
Key dates
Registered 2021-03-23
Last updated
Expires
Domain age 5 years, 3 months
Until expiry 0 days left
Nameservers
0 NS
Run a DNS lookup
Security
Registrar lock Off
DNSSEC unknown
Privacy protection On
Contacts
GDPR redacted
Registrant
Organization
State
Country
Email
Admin
Organization
State
Country
Email
Technical
Organization
State
Country
Email
Raw WHOIS/RDAP record
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html

% Note: this output has been filtered.
%       To receive output for a database update, use the "-B" flag.

% Information related to '2a04:1120::/30'

% Abuse contact for '2a04:1120::/30' is '[email protected]'

inet6num:       2a04:1120::/30
netname:        US-GTTCOMMUNICATIONS-20130220
country:        NL
geofeed:        https://geolocation.gtt.net/gtt_geolocation.csv
remarks:        Geofeed https://geolocation.gtt.net/gtt_geolocation.csv
org:            ORG-GCI2-RIPE
admin-c:        NET3257-RIPE
tech-c:         NET3257-RIPE
status:         ALLOCATED-BY-RIR
mnt-by:         AS3257-NET-MNT
mnt-by:         RIPE-NCC-HM-MNT
mnt-lower:      AS3257-IPAM-MNT
created:        2021-03-23T07:02:31Z
last-modified:  2023-06-13T10:28:49Z
source:         RIPE

organisation:   ORG-GCI2-RIPE
org-name:       GTT Communications Inc.
country:        US
reg-nr:         3903078 (Delaware)
org-type:       LIR
address:        Frankfurter Strasse 227
address:        63263
address:        Neu-Isenburg
address:        GERMANY
phone:          +1 703 442 5500
admin-c:        TK333-RIPE
tech-c:         TK333-RIPE
tech-c:         DS15504-RIPE
tech-c:         NN3489-RIPE
tech-c:         AV13497-RIPE
tech-c:         AV13497-RIPE
tech-c:         FP1849-RIPE
abuse-c:        AR37017-RIPE
mnt-ref:        AS3257-ROOT-MNT
mnt-by:         RIPE-NCC-HM-MNT
mnt-by:         AS3257-ROOT-MNT
created:        2016-07-19T07:50:40Z
last-modified:  2026-05-13T07:37:12Z
source:         RIPE # Filtered

role:           AS3257 Net Admin
address:        GTT
address:        Frankfurter Strasse 227
address:        63263 Neu-Isenburg
address:        Germany
phone:          +49 69 48007422
remarks:        Information: http://www.gtt.net
remarks:        Concerning abuse and spam ... mailto: [email protected]
abuse-mailbox:  [email protected]
admin-c:        SE33-RIPE
tech-c:         TK333-RIPE
nic-hdl:        NET3257-RIPE
remarks:        hostmaster role account
mnt-by:         AS3257-PERS-MNT
created:        2009-07-06T08:22:53Z
last-modified:  2024-12-05T11:55:55Z
source:         RIPE # Filtered

% Information related to '2a04:1123::/32AS260'

route6:         2a04:1123::/32
descr:          GTT
origin:         AS260
mnt-by:         AS3257-ROUTE-MNT
created:        2023-01-23T12:24:51Z
last-modified:  2023-01-23T12:24:51Z
source:         RIPE

% This query was served by the RIPE Database Query Service version 1.123 (DEXTER)
Guide

How to read WHOIS and RDAP results

A WHOIS lookup shows public domain registration data. Use it to check domain registration details, confirm which registrar manages the name, find the domain's creation date and expiry date, review nameservers , and inspect the raw WHOIS/RDAP record when you need the original registry response.

RDAP lookup is the modern structured version of domain ownership lookup, while traditional WHOIS records are plain text and vary by TLD. This tool checks RDAP first and falls back to WHOIS when needed, so results can include registrar details, renewal dates, DNSSEC status, abuse contacts, and EPP status codes.

The status codes (EPP codes like clientTransferProhibited ) describe domain lifecycle and security states. Transfer locks help protect a domain against unauthorized transfer, edit, or deletion. Since GDPR and registry privacy policies, many personal contact fields are redacted, but organization, country, registrar abuse contact, and technical fields may still be visible.

Use cases

Common WHOIS checks

Use this domain WHOIS lookup before buying a domain, planning a migration, auditing domain security, or investigating a suspicious hostname. The registrar, expiration checker, transfer lock, nameservers, and raw record are often enough to spot renewal risk or ownership changes.

If the domain is registered, compare the WHOIS or RDAP result with DNS and SSL checks. Nameservers should match the expected DNS provider, DNSSEC should match your security plan, and the expiry date should leave enough time for renewal before service is at risk.

FAQ

Frequently asked questions

What is a WHOIS lookup?

A WHOIS lookup checks public domain registration data, including the registrar, creation date, expiry date, nameservers, status codes, DNSSEC status, and any contact fields the registry or registrar publishes.

What is the difference between WHOIS and RDAP?

WHOIS is the older text-based registration lookup protocol. RDAP is the newer structured format used by many registries. This tool tries RDAP first, then falls back to port 43 WHOIS when needed.

Can I find the domain registrar and expiry date?

Yes. When the registry publishes the data, the result shows the registrar, IANA registrar ID, creation date, last updated date, expiry date, domain age, and days left before renewal.

Why are domain owner details hidden?

Many registrars redact personal contact data because of privacy laws and registry policies. You may still see organization, country, registrar abuse contact, or other non-personal fields when they are public.

What does clientTransferProhibited mean?

clientTransferProhibited is an EPP status code that means the registrar is blocking transfer to another registrar. It is commonly used as a domain security lock against unauthorized transfer.

Why can WHOIS and RDAP results differ?

WHOIS and RDAP can come from different registry or registrar systems, and some fields may update at different times. RDAP is structured, while raw WHOIS records are text and can vary by TLD.