BIN / IIN inspector
The first 6–8 digits of a card number are its BIN (Bank Identification Number, also called the IIN). They identify the scheme and the rules a valid number follows: its allowed lengths and CVV length. Paste a test number or just the leading digits to inspect it. This is a structural check for QA work; it does not tell you whether a card is real, active, or has funds.
Runs entirely in your browser. Nothing is sent to a server. Scheme, valid lengths, and CVV length are computed from the IIN; issuer, type, and country are enriched from a small CC-BY sample of well-known prefixes, not a comprehensive BIN database.
Browse the bundled BIN sample (14)showhide
| BIN | Scheme | Type | Issuer | Country |
|---|---|---|---|---|
| 424242 | Visa | Credit | Stripe test | US |
| 400005 | Visa | Debit | Stripe test | US |
| 555555 | Mastercard | Credit | Stripe test | US |
| 222300 | Mastercard | Credit | Stripe test | US |
| 520082 | Mastercard | Debit | Stripe test | US |
| 510510 | Mastercard | Prepaid | Stripe test | US |
| 378282 | American Express | Credit | Amex test | US |
| 601111 | Discover | Credit | Discover test | US |
| 356600 | JCB | Credit | JCB test | JP |
| 305693 | Diners Club | Credit | Diners test | US |
| 620000 | UnionPay | Credit | UnionPay test | CN |
| 414720 | Visa | Credit | Chase | US |
| 542418 | Mastercard | Credit | Barclays | GB |
| 455673 | Visa | Debit | Bank of America | US |
What the inspector reports
- Scheme & network id: derived purely from the IIN range (Visa, Mastercard, Amex, Discover, Diners, JCB, UnionPay, Maestro).
- Valid lengths & CVV length: the structural rules a well-formed number on that network follows, handy for building form masks and validators.
- Issuer, type & country: enriched from a small bundled CC-BY sampleof well-known prefixes. Most prefixes won’t be in the sample; the scheme and length rules are still computed for any input.
/api/v1/bin endpoint covers more prefixes.Use the BIN API in your tests
Need this in CI or a script? The same lookup is one GET request away. Authenticate with a free key via ?key= or an Authorization: Bearer header. Get a free key →
curl "https://www.testcards.io/api/v1/bin?bin=424242&key=YOUR_KEY"
# Or send the key as a Bearer token instead of ?key=
curl -H "Authorization: Bearer YOUR_KEY" \
"https://www.testcards.io/api/v1/bin?bin=424242"