Key Inspector

Identify a PEM or DER blob before you share, convert, or parse it further

Safety note: This page is designed to tell you what the pasted blob is before you share it or feed it into another tool. It keeps the inspection local and surfaces private-key risk early.

Identify the PEM or DER blob you pastedConfirm the container, algorithm family, and public-versus-private risk before you share, convert, or parse it further

Paste PEM blocks or raw DER Base64. This page does not accept hex and inspects only the first PEM block when several are present.

PEM or DER Base64 input

Inspection summary

Input format

Choose DER Base64 only for raw ASN.1 blobs without PEM header lines.

What It Identifies

The inspector tells you whether the pasted blob looks like SPKI, PKCS#8, PKCS#1, SEC1 EC private-key material, or a non-key PEM such as a certificate. It also separates container type from algorithm family so “public key” and “RSA key” do not get blurred together.

Inspect the Blob

Paste the PEM block or DER Base64 blob you want to identify.
Leave format on Auto-detect unless you already know the input is DER Base64.
Click Inspect key and read the container, visibility, and family fields together.
Use the suggested next tool if you need a deeper certificate or conversion workflow.

Why Public vs. Private Matters

A public key can often be copied into a verifier or config file safely. A private key is secret material. This page calls that out immediately so you do not mistake “valid PEM” for “safe to share.”

FAQ

Does this convert the key for me?

No. It classifies the blob first, then points you to the safer next tool when conversion or deeper parsing is needed.

Can it inspect encrypted private keys?

It can identify that the blob is still encrypted, but it does not decrypt it for you.

Does it upload my key anywhere?

No. PEM and DER inspection stay in your browser.