gear.palantir.com

Issued by R3

About this certificate

This digital certificate with serial number 04:11:25:8a:a2:da:3c:1c:27:a3:a7:a6:13:12:63:06:f3:6f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=gear.palantir.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:11:25:8a:a2:da:3c:1c:27:a3:a7:a6:13:12:63:06:f3:6f
Serial Number (int): 354283845240548158516266801074733161313135
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: cc:01:72:8f:85:f7:26:40:34:a1:51:a8:85:43:a5:aa:4c:c9:b5:26
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ba:2e:67:16:01:be:0d:d6:de:b8:ea:24:86:b6:e0:80:31:62:d1:71
Fingerprint (sha256): 00:dd:98:6e:84:fd:d0:10:f6:cb:08:13:be:b3:e4:6a:f7:1e:cf:dc:ce:cc:97:9f:18:4e:4e:84:a2:c2:4a:00

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate gear.palantir.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for gear.palantir.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gear.palantir.com

Other certificates including the domain name palantir.com

(limited to 100 certificates)
amkstatus.nhn.no
e.ssl.fastly.net
impact.palantir.com
amkstatus.nhn.no
gear.palantir.com
gpvpn.palantir.com
sj-ravpn.palantir.com
canada.status.coconutsoftware.com
foundry-usc-1.status.palantir.com
training.palantir.com
PALANTIR TECHNOLOGIES
amkstatus.nhn.no
gpvpn.palantir.com
canada.status.coconutsoftware.com
gerrit-tr.palantir.com
canada.status.coconutsoftware.com
appstatus.motorolasolutions.com
athena.palantir.com
amkstatus.nhn.no
guestwifi.palantir.com
cds2.cvent.com
canada.status.coconutsoftware.com
palantir.com
edge-eu-a.palantir.com
www.palantir.com
foundry-usz-1.status.palantir.com
amkstatus.nhn.no
*.e.ssl.fastly.net
appstatus.motorolasolutions.com
devzone.palantir.com
appstatus.motorolasolutions.com
joyride-disp.palantir.com
files.palantir.com
gpvpn.palantir.com
blog.palantir.com
amkstatus.nhn.no
canada.status.coconutsoftware.com
*.e.ssl.fastly.net
amkstatus.nhn.no
foundry-usc-1.status.palantir.com
canada.status.coconutsoftware.com
cds2.cvent.com
foundry-usc-1.status.palantir.com
appstatus.motorolasolutions.com
canada.status.coconutsoftware.com
*.e.ssl.fastly.net
appstatus.motorolasolutions.com
regalia.palantir.com
Palantir Technologies Inc.
gpvpn.palantir.com
foundry-usc-1.status.palantir.com
dc-ravpn.palantir.com
info.palantir.com
foundry-usc-1.status.palantir.com
joyride.palantir.com
cds2.cvent.com
go.palantir.com
esentry.mi.palantir.com
appstatus.motorolasolutions.com
files.palantir.com
appstatus.motorolasolutions.com
edge-usw-a.palantir.com
canada.status.coconutsoftware.com
amkstatus.nhn.no
cds2.cvent.com
legal.palantir.com
palantir.com
amkstatus.nhn.no
foundry-usc-1.status.palantir.com
appstatus.motorolasolutions.com
*.e.ssl.fastly.net
gear.palantir.com
regalia.palantir.com
resources.palantir.com
foundry-usc-1.status.palantir.com
regalia.palantir.com
*.e.ssl.fastly.net
foundry-usz-1.status.palantir.com
cds2.cvent.com
foundry-usc-1.status.palantir.com
learning.palantir.com
PALANTIR TECHNOLOGIES
learn.palantir.com
plgpvpn.palantir.com
canada.status.coconutsoftware.com
mobile-gpvpn.palantir.com
amkstatus.nhn.no
foundry-usz-1.status.palantir.com
dns-vetting1.map.fastly.net
canada.status.coconutsoftware.com
cds2.cvent.com
*.e.ssl.fastly.net
*.e.ssl.fastly.net
canada.status.coconutsoftware.com
cds2.cvent.com
foundry-usz-1.status.palantir.com
*.e.ssl.fastly.net
gear.palantir.com
appstatus.motorolasolutions.com
foundry-usz-1.status.palantir.com

Certificate

The complete raw certificate details for gear.palantir.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4yom2sBL/u2oCClGlRud
tij0C1UVxdSzlrZD5tCGwbDZxfiU6mXqJPlhgadHcO0XVJEaSE9IPU8vW13TafBV
HHhjxa/gDdRH7/f5GmDaQGx++EwnVvVqFiylA4v/pr+V3Q2hqbZlzz9mn6TLKh7X
c0zuf8kEgjJlYN2jtnj+9/tYep7WHg5yLxuUVlGS14zkdN5wkeo8JAiE66W8w53O
skmJnpx5v/z/3J/h411Y9yjciPYIammFIlzZU1H1sLE4CywWwQJNdaH55NtqcCNU
79pyIa+rw2kVNnsFQhLz1UGECRz4BZeYuYV3YxZ0nvoJ/jYjMo+WGCdVjSWvV5E1
AQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 354283845240548158516266801074733161313135
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-11-09 17:19:45 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-02-07 17:19:44 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gear.palantir.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28676881042432040521597237239081325002437578213416393668118723645342771629546783345479672355206569789041580331460339985631290471552943985585616984549769105336909950683103539896370553844330577207009379358842940755030250599932281599035190282893141659674775028136990160867713150555958620838719277439381557699426352555513804211331400123977438119199618677912899353141490628738492051632192001435538681548447675746075163379671599667073281979567603499722183607555401319035476383995843799429876288037039306673115864683297859869306883074823603308686002772311143861817225961743253584525623397544624965606081168600564832056456449
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cc01728f85f7264034a151a88543a5aa4cc9b526
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gear.palantir.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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