EVTLSCA.cer: CN=HiPKI EV TLS CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW (Intermediate Certificate, Expiring 2037-12-31) detail info and audit record

Last Updated: 2023-05-06

Page content

CA Certificate Information and Audit Record

This certificate is intermediate certificate used for the issuance of other certificates.

Certificate Download URL: http://eca.hinet.net/download/EVTLSCA.cer (in DER format )
Serial Number : 80105737840738390676327894421384110985
SHA-1 Fingerprint : 987e110fa23e888289476519472f402f1e422837
SHA-1 Fingerprint : 98:7e:11:0f:a2:3e:88:82:89:47:65:19:47:2f:40:2f:1e:42:28:37
SHA-256 Fingerprint : 2a8e6a86e74d10edb2026c81693d64957a0f081c1631912ac95efdfcb5625657
SHA-256 Fingerprint : 2a:8e:6a:86:e7:4d:10:ed:b2:02:6c:81:69:3d:64:95:7a:0f:08:1c:16:31:91:2a:c9:5e:fd:fc:b5:62:56:57
Signature Hash Algorithm : sha256
Subject : CN=HiPKI EV TLS CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW
- Country Name: TW (Taiwan (Province of China))
- Organization: Chunghwa Telecom Co., Ltd.
- Common Name: HiPKI EV TLS CA - G1
Not Valid Before: 2019-02-22 09:56:03
Not Valid After: 2037-12-31 15:59:59
Issuer (Parent Certificate):
- Issuer Name: CN=HiPKI Root CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW
- Issuer Certificate URL: NA
Audit Record:
- Revocation Status: Not Revoked
- Certificate Policy (CP) URL: https://eca.hinet.net/download/HiPKI-CP-v1.17-en.pdf
- Certificate Practice Statement (CPS) URL: https://eca.hinet.net/download/HiPKI-EV-TLSCA-CPS-v1.18-en.pdf
- Auditor: SunRise CPAs / DFK International
- Standard Audit URL: Unknown
- Standard Audit Period Start Date: Unknown
- Standard Audit Period End Date: Unknown
- Standard Audit Statement Date: Unknown
- Standard Audit Type: Unknown
- Full CRL Issued By This CA: http://repository.tls.hinet.net/crl/EVTLS-complete.crl
- Check its issuer’s audit information: CN=HiPKI Root CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW .

Download certificate through curl:

curl -sSL "http://eca.hinet.net/download/EVTLSCA.cer" --output cert.crt

Download certificate through wget:

wget -q "http://eca.hinet.net/download/EVTLSCA.cer" --output-document=cert.crt

CA Certificate Detail Information

Use openssl x509 to decode DER certificate to get detail information:

openssl x509 -in cert.crt -inform der -text -noout

Use openssl x509 to decode PEM certificate to get detail information:

openssl x509 -in cert.crt -inform pem -text -noout

Decoded detail certificate information:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3c:43:cd:cd:dc:f2:3b:00:4f:0e:a0:73:fc:3e:a3:89
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=TW, O=Chunghwa Telecom Co., Ltd., CN=HiPKI Root CA - G1
        Validity
            Not Before: Feb 22 09:56:03 2019 GMT
            Not After : Dec 31 15:59:59 2037 GMT
        Subject: C=TW, O=Chunghwa Telecom Co., Ltd., CN=HiPKI EV TLS CA - G1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (4096 bit)
                Modulus:
                    00:d4:9e:6c:63:2e:e8:3b:60:45:59:cf:e1:7c:04:
                    43:18:7f:72:74:d3:f7:56:95:be:a5:d0:99:b9:83:
                    cd:55:ab:30:d0:f7:c6:2f:90:a3:e4:94:eb:6f:b0:
                    9c:34:1a:c9:8e:d9:dd:36:5c:3e:55:8b:9b:b6:a5:
                    a5:42:09:89:78:8f:3e:80:4d:ff:53:66:81:f7:1a:
                    24:6f:4f:eb:e7:db:3f:cb:2c:65:01:34:72:4e:cc:
                    54:49:f7:00:cf:b1:23:c2:ef:99:58:b8:29:f6:4d:
                    28:e3:31:86:85:95:4f:32:6c:ef:ba:b9:f5:44:1d:
                    74:92:93:f2:e3:6a:0d:22:59:f7:cd:ba:36:b7:13:
                    08:f8:0c:cf:16:27:49:71:6e:83:ab:17:8c:cd:7b:
                    f2:3f:69:0d:2c:be:c6:61:9b:80:93:51:28:96:4e:
                    86:f2:ff:93:b2:ca:0f:1d:4e:5a:26:d4:ae:e0:ac:
                    cb:fd:94:03:a2:9a:d7:67:9e:b9:ec:dc:67:9b:55:
                    fa:86:cd:3d:90:b9:b0:0e:0a:4b:ea:73:99:9e:8c:
                    cd:02:8a:94:2b:12:c1:e9:07:4e:d8:52:e3:2f:09:
                    cc:d8:7e:a6:23:78:1f:40:e8:26:3c:d4:c4:57:4e:
                    4d:4a:53:11:b3:f8:56:3d:d9:14:f4:65:88:c4:e4:
                    d1:a0:de:14:83:2e:e0:74:87:20:c9:35:fb:b1:33:
                    fc:5c:a5:7f:3e:7a:86:7a:5e:dc:ab:db:f7:c9:5f:
                    e7:1a:ab:85:40:d8:40:7f:0f:51:16:41:70:fb:64:
                    9d:7e:57:b3:2f:f4:e4:ea:30:cb:43:61:7f:7b:f6:
                    be:2c:ab:2a:dd:98:3f:3d:66:3d:2f:2c:72:8d:e1:
                    48:56:8a:75:c0:96:ca:e4:9c:75:8f:cd:12:b0:58:
                    1b:a0:7b:ca:44:5b:2f:1f:b5:17:64:16:89:93:58:
                    8b:8e:c1:d7:3e:ca:e2:33:22:44:77:39:29:d4:9a:
                    bf:a4:d3:4f:df:9e:78:6e:07:d4:77:04:a6:42:dd:
                    39:28:a1:2f:cc:b8:4c:3e:b1:3f:5c:83:2c:1e:c8:
                    74:f0:0c:3a:4a:0e:9c:ce:72:0a:10:43:fb:2b:9b:
                    3b:60:4d:47:8b:97:e6:ad:a3:4e:6a:38:fe:ea:eb:
                    7b:dd:d3:3c:5f:bf:fe:95:e3:33:9d:54:b6:09:70:
                    da:48:ff:b6:18:e0:43:2e:55:a7:66:d6:fb:4e:16:
                    02:09:74:03:f6:8d:bc:73:e2:54:97:b2:5e:6a:01:
                    01:2d:cc:f0:bd:23:5c:a7:ef:48:67:4b:a6:0c:93:
                    a4:93:01:2a:e2:4a:6e:01:e1:6e:08:ab:c1:f2:78:
                    fa:fe:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                keyid:F2:77:17:FA:5E:A8:FE:F6:3D:71:D5:68:BA:C9:46:0C:38:D8:AF:B0

            X509v3 Subject Key Identifier: 
                A9:0D:EA:63:AE:E3:8C:03:40:E7:FF:DC:33:28:E5:23:8E:CB:10:9B
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://eca.hinet.net/repository/HRCA_G1/CA.crl

            Authority Information Access: 
                CA Issuers - URI:http://eca.hinet.net/repository/HRCACerts/HiPKIRootCAG1.crt
                OCSP - URI:http://ocsp.eca.hinet.net/HRCA/ocsp

            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 Certificate Policies: 
                Policy: 2.23.140.1.1
                  CPS: http://eca.hinet.net/repository-h

            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
    Signature Algorithm: sha256WithRSAEncryption
         da:37:53:33:09:f7:a7:9f:f7:72:2f:fa:b5:9b:f6:6d:94:0b:
         3b:57:46:e0:8e:64:61:9b:98:b1:11:2e:3e:24:c6:ec:98:1e:
         0a:45:91:e9:a0:92:fe:7a:fe:d0:ae:c0:ad:d5:ad:fc:71:d3:
         ae:74:8d:aa:ac:a3:f4:19:bb:4f:a2:1d:98:79:dc:dc:58:91:
         c2:9c:a2:73:7a:15:5c:3a:9a:94:17:ce:3c:75:b9:70:8b:e2:
         13:7e:05:d7:54:74:c9:e8:45:64:ff:e6:6e:d3:c3:70:dc:53:
         39:b0:e2:0a:bc:16:05:ae:dc:bf:d5:8a:78:52:ee:10:44:da:
         54:02:ee:98:11:1b:18:0b:73:3e:c1:9a:3e:9a:2f:44:23:96:
         a1:af:66:57:59:46:e7:39:62:f0:0b:11:91:79:a5:45:b0:19:
         9a:93:8c:ef:9c:89:b1:7b:db:d6:f8:7d:cf:49:89:65:1d:84:
         b7:ae:e9:15:1f:da:74:af:82:e0:26:73:68:57:1f:43:1d:77:
         7c:1c:76:2a:73:8e:75:aa:6c:37:77:b7:59:f0:31:fa:6c:b7:
         70:2c:7c:87:47:a3:da:69:77:d3:ee:01:da:8a:0f:b4:43:c8:
         46:c9:8d:5f:66:a5:d7:83:39:e2:76:4e:39:bc:fe:46:b2:3f:
         a5:e4:38:96:78:5e:65:ee:45:15:48:c2:86:4c:b5:2b:f4:4e:
         65:6a:2a:e2:69:f0:de:1b:11:41:56:36:d1:d8:07:8b:62:01:
         df:87:64:b7:a4:2f:6b:11:f7:59:dd:fb:29:f4:12:b7:c1:b3:
         eb:46:7b:45:0b:f1:7f:4a:53:c2:2a:37:d5:be:98:0e:89:f8:
         cf:25:f2:f2:57:e5:64:ac:67:26:20:6d:8e:fb:03:db:67:ed:
         0b:a6:6f:61:09:ec:77:ef:51:f8:e5:05:07:fc:20:cb:bb:06:
         dc:6f:9f:a5:86:2b:0b:85:f3:0d:cc:b1:6d:0f:df:f9:e1:67:
         de:cc:a6:d9:f7:76:38:2e:08:a6:55:a6:6f:16:42:83:24:b4:
         a9:f2:a6:dd:77:3d:0a:7d:aa:15:f0:f2:c6:60:fd:03:77:12:
         6b:83:7a:3c:bd:15:40:fc:87:0d:9a:ae:0a:f8:40:81:dd:c1:
         17:78:57:d0:21:81:16:00:e6:cb:b4:bc:b4:90:e6:e8:ea:6f:
         d0:36:44:52:74:c0:48:b7:b0:40:41:ca:1f:82:6d:d5:a3:fa:
         03:79:b0:8d:14:30:c2:32:32:2d:17:a7:5e:53:80:f6:f3:f6:
         34:e5:ff:77:54:a4:bf:f4:b8:5d:c6:8e:69:ce:21:df:4a:06:
         a7:b2:78:26:3b:c7:56:c0

CA Certificate in PEM Format

Use openssl x509 to convert certificate from DER format to PEM format:

openssl x509 -in cert.crt -inform der

Converted PEM format certificate:

Decode PEM Certificate online

Download PEM Certificate

Also see Top 1 Millions Domains CA Certificate List

CA Certificate Information and Audit Record

CA Certificate Detail Information

CA Certificate in PEM Format

Related Certificates