HRCA.cer: CN=HiPKI Root CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW (Intermediate Certificate, Expiring 2037-12-31) detail info and audit record
Page content
CA Certificate Information and Audit Record
This certificate is intermediate certificate used for the issuance of other certificates.
- Certificate Download URL: http://eca.hinet.net/download/HRCA.cer (in DER format )
- Serial Number : 60966262342023497858655262305426234976
- SHA-1 Fingerprint : 6a92e4a8ee1bec964537e3295749cd96e3e5d260
- SHA-1 Fingerprint : 6a:92:e4:a8:ee:1b:ec:96:45:37:e3:29:57:49:cd:96:e3:e5:d2:60
- SHA-256 Fingerprint : f015ce3cc239bfef064be9f1d2c417e1a0264a0a94be1f0c8d121864eb6949cc
- SHA-256 Fingerprint : f0:15:ce:3c:c2:39:bf:ef:06:4b:e9:f1:d2:c4:17:e1:a0:26:4a:0a:94:be:1f:0c:8d:12:18:64:eb:69:49:cc
- Signature Hash Algorithm : sha256
- Subject
: CN=HiPKI Root CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW
- Country Name: TW (Taiwan (Province of China))
- Organization: Chunghwa Telecom Co., Ltd.
- Common Name: HiPKI Root CA - G1
- Not Valid Before: 2019-02-22 09:46:04
- Not Valid After: 2037-12-31 15:59:59
- Issuer (Parent Certificate):
- Issuer Name: CN=HiPKI Root CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW
- Issuer Certificate URL: NA
- Audit Record:
- Revocation Status: Unknown
- Certificate Policy (CP) URL: https://eca.hinet.net/download/HiPKI-CP-v1.17-en.pdf https://eca.hinet.net/download/HiPKI-CP-v1.16-en.pdf http://eca.hinet.net/download/HiPKI-CP-v1.15-en.pdf https://eca.hinet.net/download/HiPKI-CP-v1.05-en.pdf http://eca.hinet.net/download/HiPKI-CP-v1.05-en.pdf http://eca.hinet.net/download/HiPKI-CP-v1.0-en.pdf http://eca.hinet.net/download/HiPKI-CP-v1.0-en.pdf
- Certificate Practice Statement (CPS) URL: https://eca.hinet.net/download/HiPKI-EV-TLSCA-CPS-v1.18-en.pdf http://eca.hinet.net/download/HiPKI-RCA-CPS-v1.17-en.pdf https://eca.hinet.net/download/HiPKI-EV-TLSCA-CPS-v1.17-en.pdf http://eca.hinet.net/download/HiPKI-EV-TLSCA-CPS-v1.16-en.pdf http://eca.hinet.net/download/HiPKI-RCA-CPS-v1.16-en.pdf http://eca.hinet.net/download/HiPKI-EV-TLSCA-CPS-v1.10-en.pdf http://eca.hinet.net/download/HiPKI-RCA-CPS-v1.10-en.pdf https://eca.hinet.net/download/HiPKI-EV-TLSCA-CPS-v1.05-en.pdf https://eca.hinet.net/download/HiPKI-RCA-CPS-v1.05-en.pdf http://eca.hinet.net/download/HiPKI-RCA-CPS-v1.0-en.pdf https://eca.hinet.net/download/HiPKI-EV-TLSCA-CPS-v1.0-en.pdf https://eca.hinet.net/download/HiPKI-RCA-CPS-v1.0-en.pdf
- Auditor: SunRise CPAs / DFK International
- Standard Audit URL: https://www.cpacanada.ca/generichandlers/CPACHandler.ashx?attachmentid=158fae2a-970c-48a7-ad3b-74b5b2cc033d
- Standard Audit Period Start Date: 2021.06.01
- Standard Audit Period End Date: 2022.05.31
- Standard Audit Statement Date: 2022.08.24
- Standard Audit Type: WebTrust
- Full CRL Issued By This CA: http://eca.hinet.net/repository/HRCA_G1/CA.crl
- Check its issuer’s audit information: CN=HiPKI Root CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW .
Download certificate through curl:
curl -sSL "http://eca.hinet.net/download/HRCA.cer" --output cert.crt
Download certificate through wget:
wget -q "http://eca.hinet.net/download/HRCA.cer" --output-document=cert.crt
CA Certificate Detail Information
Use openssl x509 to decode DER certificate to get detail information:
openssl x509 -in cert.crt -inform der -text -noout
Use openssl x509 to decode PEM certificate to get detail information:
openssl x509 -in cert.crt -inform pem -text -noout
Decoded detail certificate information:
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2d:dd:ac:ce:62:97:94:a1:43:e8:b0:cd:76:6a:5e:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=TW, O=Chunghwa Telecom Co., Ltd., CN=HiPKI Root CA - G1
Validity
Not Before: Feb 22 09:46:04 2019 GMT
Not After : Dec 31 15:59:59 2037 GMT
Subject: C=TW, O=Chunghwa Telecom Co., Ltd., CN=HiPKI Root CA - G1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (4096 bit)
Modulus:
00:f4:1e:7f:52:73:32:0c:73:e4:bd:13:74:a3:d4:
30:a8:d0:ae:4b:d8:b6:df:75:47:66:f4:7c:e7:39:
04:1e:6a:70:20:d2:5a:47:72:67:55:f4:a5:e8:9d:
d5:1e:21:a1:f0:67:ba:cc:21:68:be:44:53:bf:8d:
f9:e2:dc:2f:55:c8:37:3f:1f:a4:c0:9c:b3:e4:77:
5c:a0:46:fe:77:fa:1a:a0:38:ea:ed:9a:72:de:2b:
bd:94:57:3a:ba:ec:79:e7:5f:7d:42:64:39:7a:26:
36:f7:24:f0:d5:2f:ba:95:98:11:66:ad:97:35:d6:
75:01:80:e0:af:f4:84:61:8c:0d:1e:5f:7c:87:96:
5e:41:af:eb:87:ea:f8:5d:f1:2e:88:05:3e:4c:22:
bb:da:1f:2a:dd:52:46:64:39:f3:42:ce:d9:9e:0c:
b3:b0:77:97:64:9c:c0:f4:a3:2e:1f:95:07:b0:17:
df:30:db:00:18:96:4c:a1:81:4b:dd:04:6d:53:a3:
3d:fc:07:ac:d4:c5:37:82:eb:e4:95:08:19:28:82:
d2:42:3a:a3:d8:53:ec:79:89:60:48:60:c8:72:92:
50:dc:03:8f:83:3f:b2:42:57:5a:db:6a:e9:11:97:
dd:85:28:bc:30:4c:ab:e3:c2:b1:45:44:47:1f:e0:
8a:16:07:96:d2:21:0f:53:c0:ed:a9:7e:d4:4e:ec:
9b:09:ec:af:42:ac:30:d6:bf:d1:10:45:e0:a6:16:
b2:a5:c5:d3:4f:73:94:33:71:02:a1:6a:a3:d6:33:
97:4f:21:63:1e:5b:8f:d9:c1:5e:45:71:77:0f:81:
5d:5f:21:9a:ad:83:cc:fa:5e:d6:8d:23:5f:1b:3d:
41:af:20:75:66:5a:4a:f6:9f:fb:ab:18:f7:71:c0:
b6:1d:31:ec:3b:20:eb:cb:e2:b8:f5:ae:92:b2:f7:
e1:84:4b:f2:a2:f2:93:9a:22:9e:d3:14:6f:36:54:
bd:1f:5e:59:15:b9:73:a8:c1:7c:6f:7b:62:e9:16:
6c:47:5a:65:f3:0e:11:9b:46:d9:fd:6d:dc:d6:9c:
c0:b4:7d:a5:b0:dd:3f:56:6f:a1:f9:f6:e4:12:48:
fd:06:7f:12:57:b6:a9:23:4f:5b:03:c3:e0:71:2a:
23:b7:f7:b0:b1:3b:bc:98:bd:d6:98:a8:0c:6b:f6:
8e:12:67:a6:f2:b2:58:e4:02:09:13:3c:a9:bb:10:
b4:d2:30:45:f1:ec:f7:00:11:df:65:f8:dc:2b:43:
55:bf:16:97:c4:0f:d5:2c:61:84:aa:72:86:fe:e6:
3a:7e:c2:3f:7d:ee:fc:2f:14:3e:e6:85:dd:50:6f:
b7:49:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Subject Key Identifier:
F2:77:17:FA:5E:A8:FE:F6:3D:71:D5:68:BA:C9:46:0C:38:D8:AF:B0
X509v3 Key Usage: critical
Digital Signature, Certificate Sign, CRL Sign
Signature Algorithm: sha256WithRSAEncryption
50:51:f0:75:dc:70:04:e3:ff:aa:75:d4:71:a2:cb:9e:8f:a8:
a9:d3:af:75:c7:54:cf:3a:1c:04:99:22:ac:c4:11:e2:ef:33:
4a:a6:23:1d:0e:0d:47:d8:37:c7:6f:af:34:7f:4f:81:6b:35:
4f:e9:72:a5:31:e2:78:e7:f7:4e:94:18:5b:40:7d:cf:6b:21:
54:86:e6:95:7a:fb:c6:ca:ea:9c:48:4e:57:09:5d:2f:ac:f4:
a5:b4:97:33:58:d5:ac:79:a9:cc:5f:f9:85:fa:52:c5:8d:f8:
91:14:eb:3a:0d:17:d0:52:c2:7b:e3:c2:73:8e:46:78:06:38:
2c:e8:5c:da:66:c4:f4:a4:f0:56:19:33:29:5a:65:92:05:47:
46:4a:ab:84:c3:1e:27:a1:1f:11:92:99:27:75:93:0f:bc:36:
3b:97:57:8f:26:5b:0c:bb:9c:0f:d4:6e:30:07:d4:dc:5f:36:
68:66:39:83:96:27:26:8a:c8:c4:39:fe:9a:21:6f:d5:72:86:
e9:7f:62:e5:97:4e:d0:24:d0:40:b0:d0:75:08:8e:bd:68:ee:
08:d7:6e:7c:10:70:46:1b:7c:e0:88:b2:9e:72:86:99:01:e3:
bf:9f:49:19:b4:25:be:56:65:ae:17:63:e5:1e:df:e8:ff:47:
a5:bf:e1:26:05:84:e4:b0:c0:af:e7:08:99:a8:0c:5e:26:80:
45:d4:f8:68:2f:96:8f:ae:e2:4a:1c:9c:16:0c:13:6f:38:87:
f6:bb:c8:34:5f:92:03:51:79:70:a6:df:cb:f5:99:4d:79:cd:
4e:bc:57:9f:43:4e:6b:2e:2b:18:f8:6a:73:8c:ba:c5:35:ef:
39:6a:41:1e:cf:71:a8:a2:b2:86:07:5b:3a:c9:e1:ef:3f:65:
04:80:47:32:44:70:95:4e:31:67:6a:74:5b:10:45:75:ea:b0:
9f:d0:e6:35:fe:4e:9f:8b:cc:2b:92:45:5b:6e:25:60:85:46:
cd:d1:aa:b0:76:66:93:77:96:be:83:be:38:b6:24:4e:26:0b:
cc:ed:7a:56:1a:e0:e9:5a:c6:64:ad:4c:7a:00:48:44:2f:b9:
40:bb:13:3e:be:15:78:9d:85:81:4a:2a:57:de:d5:19:43:da:
db:ca:5b:47:86:83:0b:3f:b6:0d:76:78:73:79:22:5e:b1:80:
1f:cf:be:d1:3f:56:10:98:2b:95:87:a1:1f:9d:64:14:60:39:
2c:b3:00:55:2e:e4:f5:b3:0e:57:c4:91:41:00:9c:3f:e8:a5:
df:ea:f6:ff:c8:f0:ad:6d:52:a8:17:ab:9b:61:fc:12:51:35:
e4:25:fd:af:aa:6a:86:39
CA Certificate in PEM Format
Use openssl x509 to convert certificate from DER format to PEM format:
openssl x509 -in cert.crt -inform der
Converted PEM format certificate:
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Also see Top 1 Millions Domains CA Certificate List
Related Certificates
- EVTLSCA.cer: CN=HiPKI EV TLS CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2037-12-31)
- eCAG2.crt: CN=ePKI Root Certification Authority - G2,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2034-12-20)
- PublicCA2.cer: OU=Public Certification Authority - G2,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2034-12-11)
- PublicCA.cer: OU=Public Certification Authority,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2027-05-16)
- ROOTeCA.cer: OU=ePKI Root Certification Authority,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2034-12-20)