SysAdmin Tools

A WHOIS lookup queries the global WHOIS database to retrieve registration information about a domain name. Every registered domain has an entry in the WHOIS database that includes the registrar, registration date, expiry date, nameservers, and — where privacy protection is not enabled — the registrant's contact information. Whether you are researching domain ownership, checking when a domain expires, or verifying nameservers after a transfer, WHOIS is the authoritative source.

The WHOIS protocol was established in the early days of the internet and has been the primary mechanism for domain registration transparency ever since. When you register a domain, your registrar submits your information to the WHOIS database operated by the domain's registry (for .com and .net domains, that is Verisign; for country-code TLDs, it is the national registry). This data is queryable by anyone.

Modern WHOIS results are often partially redacted due to GDPR and privacy regulations. Many registrars offer WHOIS privacy protection that replaces personal contact details with proxy information. Even with privacy enabled, the technical details — registrar, status flags, dates, and nameservers — remain visible and are often the most useful information for sysadmins and domain managers.

Our WHOIS lookup tool queries the authoritative WHOIS server for the domain's TLD and presents the raw data in a clean, readable format so you can quickly find the details you need.

How to Use the WHOIS Lookup Tool

  1. 1

    Enter the domain name

    Type the domain you want to look up — for example, google.com or example.org. Include the TLD (.com, .net, .org, etc.). The tool queries the correct WHOIS server for that TLD automatically.

  2. 2

    Click Lookup

    The tool sends a WHOIS query to the authoritative registry server for the domain's TLD and displays the response. Some TLDs have additional rate limits that may slow results slightly.

  3. 3

    Read the registration details

    Review the registrar, status, creation date, expiry date, and nameservers. These are the most consistently available fields across all TLDs and registrars.

  4. 4

    Check domain status flags

    EPP status codes tell you the operational state of the domain. clientTransferProhibited means the domain is locked against transfer. pendingDelete means the domain is about to be released. Multiple status flags may be set simultaneously.

Understanding WHOIS Lookup Results

WHOIS results vary significantly between TLDs and registrars, but most records include a consistent set of fields. The Registrar is the company where the domain is registered — for example, GoDaddy, Namecheap, or Cloudflare Registrar. The Creation Date shows when the domain was first registered; the Expiry Date (also called Registry Expiry Date or Expiration Date) is when the domain registration ends. If not renewed, the domain becomes available for re-registration. Domain Status codes use the EPP (Extensible Provisioning Protocol) system. ok or active means the domain is functioning normally. clientTransferProhibited means the domain is locked at the registrar level and cannot be transferred without unlocking. serverTransferProhibited is a registry-level lock. pendingDelete means the domain is queued for deletion and will soon be released. Nameservers list the DNS servers authoritative for the domain — these should match what you have set in your DNS provider.
FieldDescription
RegistrarThe registrar where the domain is registered. Domain management, renewal, and transfers go through this company.
Creation DateThe date the domain was originally registered. Older domains tend to have more established trust signals.
Expiry DateThe date the domain registration expires. Renew before this date to keep the domain. After expiry, others can register it.
Updated DateThe date the WHOIS record was last modified — often reflects registrar changes, renewals, or nameserver updates.
Domain StatusEPP status codes indicating the domain's operational state. clientTransferProhibited, ok, pendingDelete, etc.
NameserversThe authoritative DNS servers for the domain. These must match the nameservers configured at your DNS hosting provider.
Registrant / Registrar ContactContact information for the domain owner and registrar. Often redacted under GDPR or WHOIS privacy protection.

Common WHOIS Lookup Use Cases

Check when a domain expires

Look up a domain's WHOIS record to find the expiry date. This is critical for domains you manage — expired domains become available for anyone to register, which can cause brand damage or phishing abuse. Set renewals well before the expiry date.

Research domain ownership and history

Before acquiring or partnering with a company, check the WHOIS record to verify domain registration dates, registrar, and whether the contact information matches. The creation date and registration history can reveal domain age and legitimacy.

Verify nameservers after a domain transfer

After transferring a domain to a new registrar or changing DNS hosting, run a WHOIS lookup to confirm the nameservers updated correctly. WHOIS shows the nameservers at the registry level, which is the authoritative source.

Check domain lock status before initiating a transfer

Before transferring a domain between registrars, check the domain status codes. clientTransferProhibited means the domain is locked and the lock must be removed before a transfer can proceed. WHOIS lookup reveals this immediately.

WHOIS Lookup — Frequently Asked Questions

What is WHOIS lookup?
A WHOIS lookup is a query to the WHOIS database that returns registration information about a domain name. It shows who registered the domain, when it was created, when it expires, which registrar manages it, what nameservers it uses, and any contact information the registrant has published. WHOIS is the authoritative public record for domain registration information.
How do I find out who owns a domain?
Run a WHOIS lookup on the domain. If the registrant has not enabled WHOIS privacy protection, the record shows the registrant's name and contact details. If privacy protection is enabled (which is now common due to GDPR), you will see a privacy proxy service instead of personal contact details. In that case, most privacy proxy services include a contact form for reaching the real registrant.
What is WHOIS privacy protection?
WHOIS privacy protection (also called domain privacy or WHOIS guard) replaces your personal registrant contact information with proxy contact details from a privacy service. This protects your name, address, phone, and email from appearing in the public WHOIS record. Many registrars offer it free with domain registration. It does not affect domain ownership, email delivery, or website functionality.
Why is WHOIS contact information hidden?
Since GDPR came into force in 2018, most registrars redact personal contact information from WHOIS records for EU registrants. Even outside the EU, most registrars now offer WHOIS privacy by default to protect registrant privacy. Technical information like registrar, nameservers, and dates remains publicly visible even when contact details are redacted.
What does clientTransferProhibited mean?
clientTransferProhibited is an EPP domain status code that means the domain is locked against transfers at the registrar level. You cannot move this domain to another registrar until the lock is removed by the current registrar. This is a security feature to prevent unauthorised domain hijacking. To transfer a domain, you must first log into your registrar and disable the transfer lock.
How can I find out when a domain expires?
Run a WHOIS lookup on the domain and look for the "Registry Expiry Date" or "Expiration Date" field. This shows the exact date (and sometimes time and timezone) when the current registration period ends. If the domain is approaching expiry and you own it, log into your registrar to renew it. If you want to acquire a dropping domain, note the expiry date and use a domain backorder service.
What are the EPP domain status codes?
EPP (Extensible Provisioning Protocol) status codes describe the current state of a domain. Common codes: ok/active — domain is functioning normally; clientTransferProhibited — transfer lock is on; clientDeleteProhibited — domain cannot be deleted; serverTransferProhibited — registry-level transfer lock; pendingDelete — domain is queued for deletion; redemptionPeriod — domain expired and is in a 30-day redemption grace period. Multiple statuses can be set simultaneously.
What are the nameservers in WHOIS?
Nameservers in the WHOIS record are the DNS servers designated as authoritative for the domain at the registry level. They tell the internet where to look up DNS records for the domain. If you recently changed nameservers at your registrar, the WHOIS record updates to reflect the change, though DNS propagation of the actual records may take additional time. WHOIS nameservers should match what is configured in your registrar.
How long does a WHOIS lookup take to update after a change?
WHOIS records typically update within minutes to a few hours after a change (registrar update, nameserver change, renewal). The registry database updates quickly, but some WHOIS servers cache responses for up to 24 hours. If you need to verify an urgent change, wait a few minutes and query again.
Can I look up any domain in WHOIS?
Most generic TLDs (.com, .net, .org, .info, .biz) have publicly queryable WHOIS databases. Country-code TLDs (ccTLDs) vary — some are fully queryable, some restrict access, and some require a web interface. New gTLDs (.app, .dev, .io, etc.) are generally queryable but formats vary. Redacted information due to GDPR is common across all TLDs for personal contact details.

Related Tools

DNS Lookup

Check the DNS records for the domain alongside its WHOIS registration details.

SSL Checker

Verify the SSL certificate for the domain you are researching.

DNS Propagation

Check how nameserver or DNS record changes are propagating globally after a domain transfer.