How to Use WHOIS to Look Up Domain Information

WHOIS is one of the oldest tools on the internet. It is a public lookup service that tells you when a domain was registered, who registered it, when it expires, and where its DNS is hosted. Every time you buy, transfer, or troubleshoot a domain, a WHOIS lookup is one of the most useful things you can do in under a minute.

You do not need any special access to run a WHOIS lookup. The data is public by design, although privacy laws have changed how much personal detail is shown.

You can start by using Ping7's WHOIS Lookup tool.

This guide explains what WHOIS is, what each field in a WHOIS result means, why some details look hidden today, and how to use a WHOIS lookup for real tasks.

What Is WHOIS?

WHOIS is a public database that stores registration information for domain names and some IP address blocks. When someone registers a domain, the registrar publishes a record with details such as the domain creation date, the registrar's name, the nameservers, and contact information for the domain.

WHOIS started as a simple text-based service. Today, it has been partly replaced by a newer protocol called RDAP, which returns the same kind of information in a more structured format. Many WHOIS tools, including Ping7, use RDAP behind the scenes to provide more reliable and consistent results.

For everyday use, the term WHOIS still covers both. When people say "run a WHOIS lookup," they usually mean look up domain registration information, regardless of whether the data comes from classic WHOIS or modern RDAP.

What Information Is in a WHOIS Result?

A typical WHOIS result includes a set of standard fields. Some come directly from the registry. Others come from the registrar managing the domain.

Domain Name

The domain name itself, sometimes shown as a normalized lower-case string. For internationalized domains, the result may also show the original Unicode form and the punycode form used in DNS.

Registrar

The registrar is the company through which the domain was registered. Common registrars include GoDaddy, Namecheap, Cloudflare, Google Domains successors, and many others. The registrar is your point of contact for managing the domain.

Creation Date

The creation date is when the domain was first registered. A very recent creation date can be a useful signal in some contexts, for example when investigating a brand-new domain used for spam or phishing.

Updated Date

The updated date is when the WHOIS record was last updated. This can change when contact information is modified, when nameservers are changed, when the domain is transferred, or when the domain is renewed.

Expiry Date

The expiry date is when the current registration ends. Domains usually need to be renewed before this date or they enter grace and redemption phases, and eventually become available for someone else to register.

Nameservers

The nameservers are the DNS servers that hold authoritative DNS records for the domain. Changing nameservers usually means moving DNS to a new provider. The values shown in WHOIS should match the NS records published in DNS.

Status

The status field shows registrar and registry status codes such as clientTransferProhibited, serverHold, or pendingDelete. These codes describe what the domain is allowed to do right now.

Contact Information

Older WHOIS data included full contact details such as the registrant's name, organization, address, email, and phone number. Privacy regulations like GDPR have led most registrars to redact or hide this information for individual registrants. For corporate domains, contact information is often still visible.

Why Has WHOIS Privacy Changed?

For most of the internet's history, WHOIS records were fully public. Anyone could look up any domain and see the registrant's full address and phone number. This was useful for accountability, but it also created spam, fraud, and privacy problems for individual registrants.

When privacy laws like GDPR came into effect, registrars and registries had to limit the public exposure of personal data. Today many WHOIS results for individual-owned domains show "Redacted for Privacy" in contact fields, or show a generic privacy proxy contact. The non-personal fields, such as creation date, expiry date, nameservers, and registrar, generally remain visible.

For domain investigations that need full contact information, official requests can sometimes be sent through the registrar, but those processes are outside the scope of a quick WHOIS lookup.

Common Reasons to Run a WHOIS Lookup

WHOIS is used by many different kinds of users, from beginners to professionals.

Common reasons include:

• Checking the expiry date of your own domain before renewal.
• Confirming a domain is registered with the registrar you expect.
• Verifying that a recent transfer or nameserver change has been recorded.
• Investigating a suspicious domain used in phishing or spam.
• Checking who currently controls a domain you would like to buy.
• Confirming the age of a domain when evaluating SEO signals.
• Cross-checking nameserver values between WHOIS and DNS.
• Checking domain status codes that may explain why a transfer is blocked.

A WHOIS lookup is fast, free, and one of the easiest ways to learn the basic facts about any domain.

How to Run a WHOIS Lookup with Ping7

Ping7 provides a simple online WHOIS lookup that works from your browser.

Open Ping7's WHOIS Lookup tool.

Enter the domain you want to check. The tool queries the registry or RDAP server for the domain and shows the available fields. Results usually include:

• The domain name as recorded.
• Creation, updated, and expiry dates.
• The registrar name.
• Domain status codes.
• Nameserver hostnames.
• An entity summary describing the registrant or privacy proxy.

This is enough to answer most of the common questions people have when they look up a domain.

How to Read a WHOIS Result

A WHOIS result is most useful when read in a structured order rather than glanced at randomly.

Step 1: Confirm the Domain Exists

If a WHOIS lookup returns "no match" or a not-found response, the domain is not currently registered, or the lookup endpoint does not support that TLD. Some country code TLDs use their own WHOIS systems that are not always reachable from generic tools.

Step 2: Check the Registrar

The registrar should match what you expect. If you registered the domain at one provider but the WHOIS shows a different registrar, the domain may have been transferred. Confirm this with your account before assuming a problem.

Step 3: Check the Expiry Date

The expiry date is often the most important field. A domain that expires soon should be renewed early. A domain that has already expired but still shows in WHOIS may be in a grace period and can usually still be renewed by the previous owner for a short time.

Step 4: Check the Nameservers

The nameservers should match the DNS hosting you expect. If they do not match, your DNS records are likely being served from somewhere unexpected. Cross-check with a DNS lookup to see what is actually being published.

Step 5: Check the Status Codes

Status codes can affect what you can do with the domain. clientTransferProhibited prevents transfers without unlocking. serverHold means the registry has suspended the domain. pendingDelete means the domain is heading toward deletion. Most are normal and protective, but a few signal problems that need attention.

What WHOIS Cannot Tell You Today

Modern WHOIS has limitations. It is helpful to know what is no longer included.

A typical WHOIS lookup today often cannot show:

• The full real name and address of an individual registrant in many regions.
• The personal email of an individual registrant.
• Direct phone numbers for personal domains.
• Information about the website's content or business.
• Hosting provider details, beyond what nameservers and IP addresses imply.
• Reasons for any administrative status code, only the code itself.

If you need the website's hosting and IP information, combine WHOIS with a DNS check and an IP lookup. WHOIS describes the domain registration. DNS and IP lookups describe where the domain points and who runs that infrastructure.

WHOIS for IP Addresses

There is also a separate WHOIS system for IP addresses, run by regional internet registries like ARIN, RIPE, APNIC, AFRINIC, and LACNIC. An IP WHOIS lookup tells you who has been assigned a particular IP block, when, and through which upstream provider.

IP WHOIS is useful when investigating where a server actually lives or when you want to understand the ownership of an IP range that is sending suspicious traffic. Combined with a basic IP address lookup, you can usually get a good picture of which network and country an IP belongs to.

WHOIS vs Other Diagnostics

WHOIS answers a very specific question: what does the registry say about this domain's registration? Other tools answer different but related questions.

Pair WHOIS with:

• A DNS check to see what records the nameservers actually publish.
• A IP lookup to see who hosts the IP a domain resolves to.
• A SSL check to see what HTTPS configuration the domain serves.
• A website status check to see if the website actually responds.

Real investigations almost always combine these. For example, a recent creation date in WHOIS plus suspicious nameservers plus a brand-new SSL certificate is a much stronger signal than any one of those alone.

Common Use Cases for a WHOIS Lookup

WHOIS shows up in many practical tasks.

Common use cases include:

• A domain owner schedules renewal reminders based on expiry dates.
• A buyer evaluates a domain for purchase and checks its registration history hints.
• A site owner confirms a domain transfer has been completed at the new registrar.
• A security researcher investigates a suspicious domain in a phishing campaign.
• A marketer evaluates the age of competing domains.
• An abuse desk identifies the registrar to contact about a problematic domain.
• A developer confirms nameserver values match what their DNS provider lists.
• A learner explores how the public domain system works.

For each of these, WHOIS is usually the first step. Other tools fill in the picture from there.

Tips for Effective WHOIS Lookups

A few small habits make WHOIS more reliable in real use.

Try these tips:

• Use the apex domain like example.com, not www.example.com, when doing WHOIS lookups.
• Treat redacted contact fields as normal for individual-owned domains.
• Cross-check nameserver values with a DNS lookup.
• Convert internationalized domain names to punycode if a tool only accepts ASCII.
• Remember that some country code TLDs return less data through generic WHOIS endpoints.
• Pair WHOIS with DNS, IP, and SSL checks for a fuller picture.
• Save expiry dates to a calendar to avoid missing renewals.
• Be careful when interpreting the creation date. A long-standing domain that recently changed owners can still show its original creation date.

FAQ

What is the difference between WHOIS and RDAP?

WHOIS is the older, text-based protocol for looking up domain registration. RDAP is the newer, structured replacement that returns the same kind of information in a more reliable and machine-readable format. Many WHOIS tools today use RDAP under the hood while still calling the feature WHOIS.

Why is the WHOIS contact information hidden?

Privacy laws like GDPR have led registrars to redact personal data in public WHOIS records. The registrant's name, address, email, and phone are often hidden for individual-owned domains. Corporate domains may still display contact information.

Can WHOIS show domain ownership history?

Standard WHOIS only shows current registration data. It does not include a full history of previous owners. Some third-party historical WHOIS services collect snapshots over time and can show ownership changes, but this is a separate kind of service.

Why does my WHOIS lookup show "no match" for a real domain?

Some TLDs use their own WHOIS or RDAP endpoints that are not reachable from every tool. Some queries are also rate limited. Trying a different WHOIS tool, or using the registry's own lookup page, can help in these cases.

Is WHOIS data accurate?

The non-personal fields like creation date, expiry date, registrar, and nameservers are generally accurate because they come from the registry. Personal contact data is only as accurate as what the registrant provided, and may be hidden by privacy policies in most cases today.

Can I use WHOIS to check if a domain is available?

Yes. If a WHOIS lookup returns "no match" or an equivalent not-found response for a domain, the domain is usually available for registration. Always confirm availability at a registrar before relying on this, because some domains are reserved or premium and not directly registrable.

Related tools

• Whois Lookup
• DNS Checker
• IP Address Lookup
• SSL Checker
• Reverse DNS Lookup

Related guides

• How to Check DNS Records Online
• How to Check If an SSL Certificate Is Valid
• How to Check If a Website Is Down