GTLSCA.crt: CN=政府伺服器數位憑證管理中心 - G1,O=行政院,C=TW (Intermediate Certificate, Expiring 2031-08-19) detail info and audit record
Page content
CA Certificate Information and Audit Record
This certificate is intermediate certificate used for the issuance of other certificates.
- Certificate Download URL: http://gtlsca.nat.gov.tw/Certs/GTLSCA.crt (in PEM format )
- Serial Number : 203939789055560066590733164950084792981
- SHA-1 Fingerprint : b2d151a768d30c3b99d86b8b25815608c28ab2cb
- SHA-1 Fingerprint : b2:d1:51:a7:68:d3:0c:3b:99:d8:6b:8b:25:81:56:08:c2:8a:b2:cb
- SHA-256 Fingerprint : 9d1cda1b9ef395afce7de0fe74de6d9ff5e0d2a43789116c00c6ba5bf44b9823
- SHA-256 Fingerprint : 9d:1c:da:1b:9e:f3:95:af:ce:7d:e0:fe:74:de:6d:9f:f5:e0:d2:a4:37:89:11:6c:00:c6:ba:5b:f4:4b:98:23
- Signature Hash Algorithm : sha256
- Subject
: CN=政府伺服器數位憑證管理中心 - G1,O=行政院,C=TW
- Country Name: TW (Taiwan (Province of China))
- Organization: 行政院
- Common Name: 政府伺服器數位憑證管理中心 - G1
- Not Valid Before: 2019-07-19 06:46:45
- Not Valid After: 2031-08-19 06:46:45
- Issuer (Parent Certificate):
- Issuer Name: CN=ePKI Root Certification Authority - G2,O=Chunghwa Telecom Co., Ltd.,C=TW
- Issuer Certificate URL: NA
- Audit Record:
- Revocation Status: Not Revoked
- Certificate Policy (CP) URL: https://eca.hinet.net/en/repository_a.htm
- Certificate Practice Statement (CPS) URL: https://gtlsca.nat.gov.tw/download/GTLSCA_CPS_v1.0.2_eng.pdf
- Auditor: KPMG
- Standard Audit URL: https://www.cpacanada.ca/generichandlers/CPACHandler.ashx?attachmentid=402ad325-a047-49c9-86d5-c7debd27d4c1
- Standard Audit Period Start Date: 2021.10.01
- Standard Audit Period End Date: 2022.09.30
- Standard Audit Statement Date: 2022.10.28
- Standard Audit Type: WebTrust
- Full CRL Issued By This CA: http://gtlsca.nat.gov.tw/crl/GTLSCA-complete.crl
- Check its issuer’s audit information: CN=ePKI Root Certification Authority - G2,O=Chunghwa Telecom Co., Ltd.,C=TW .
Download certificate through curl:
curl -sSL "http://gtlsca.nat.gov.tw/Certs/GTLSCA.crt" --output cert.crt
Download certificate through wget:
wget -q "http://gtlsca.nat.gov.tw/Certs/GTLSCA.crt" --output-document=cert.crt
CA Certificate Detail Information
Use openssl x509 to decode DER certificate to get detail information:
openssl x509 -in cert.crt -inform der -text -noout
Use openssl x509 to decode PEM certificate to get detail information:
openssl x509 -in cert.crt -inform pem -text -noout
Decoded detail certificate information:
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
99:6d:5f:e9:ad:e1:6c:dc:8e:cd:bf:ed:b1:4a:32:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: C=TW, O=Chunghwa Telecom Co., Ltd., CN=ePKI Root Certification Authority - G2
Validity
Not Before: Jul 19 06:46:45 2019 GMT
Not After : Aug 19 06:46:45 2031 GMT
Subject: C=TW, O=\xE8\xA1\x8C\xE6\x94\xBF\xE9\x99\xA2, CN=\xE6\x94\xBF\xE5\xBA\x9C\xE4\xBC\xBA\xE6\x9C\x8D\xE5\x99\xA8\xE6\x95\xB8\xE4\xBD\x8D\xE6\x86\x91\xE8\xAD\x89\xE7\xAE\xA1\xE7\x90\x86\xE4\xB8\xAD\xE5\xBF\x83 - G1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (4096 bit)
Modulus:
00:c2:0e:51:e0:b1:a8:0e:3f:a6:64:85:e6:70:79:
91:62:fe:74:d6:3b:12:2c:89:bb:12:85:ff:28:0b:
7b:e2:e3:76:c8:34:78:df:a5:76:11:69:05:79:68:
43:f9:34:b8:b3:1d:bf:dc:90:91:5b:e2:84:f8:85:
fc:35:80:4a:8e:c5:ae:2b:d3:8c:63:81:ae:e0:51:
16:26:90:6e:d5:70:96:62:34:cf:2b:28:47:74:48:
43:a7:14:71:bf:dd:60:dd:99:3a:f1:78:0a:ee:3d:
94:e6:c1:33:08:fc:75:dd:08:e4:1f:ba:9c:fc:ca:
39:04:58:ab:a3:c6:2c:60:07:f1:80:2a:1a:fe:b6:
45:12:c5:f2:64:a5:d1:25:e2:03:c3:bb:7e:88:fc:
55:cb:67:1b:43:4b:8d:96:83:bd:eb:bd:0b:1a:83:
95:cd:85:64:60:00:6f:dc:8c:19:a3:e2:51:b6:3f:
a3:ee:b2:e3:07:bc:50:29:89:9f:24:e0:36:25:cf:
7a:c8:f9:ba:96:2e:f3:1e:b2:10:61:fa:21:18:f7:
40:36:6c:11:f6:8a:4d:36:a6:0e:a3:e2:ed:b0:86:
28:b7:7f:dc:2e:9f:58:80:06:a2:19:da:c0:88:aa:
db:6c:45:64:60:7f:b3:2b:30:07:a2:57:f9:98:f0:
67:fa:1d:ce:12:56:1f:ca:01:12:8a:d5:91:06:9d:
9b:c1:f3:86:27:00:18:b1:e4:ee:a2:b4:07:a7:24:
29:b3:51:86:72:7f:6f:71:f9:cb:86:f2:f1:6b:70:
cc:ac:20:2f:48:96:f7:4a:f1:c2:ca:a6:a1:43:3d:
0a:47:42:0f:72:ef:95:2d:6d:e2:71:aa:a5:6c:96:
ae:b0:62:06:62:aa:7c:55:23:7a:14:9d:29:82:66:
1d:6e:e9:c1:2d:87:35:bf:6d:d5:be:39:95:32:5f:
b1:34:9a:1a:48:51:14:b1:c9:92:a8:0e:02:b9:80:
0d:86:45:92:00:d9:3c:1c:8f:6b:35:bb:e6:ce:ec:
96:85:2b:fb:b5:45:d8:e9:40:7a:ee:61:e9:e3:2a:
46:70:a6:1b:5e:b8:e2:2a:a6:a1:bf:a4:0b:50:46:
fb:4b:c1:43:ef:50:ec:ef:91:76:bc:c7:8e:e0:ee:
fb:8b:a8:e8:06:cf:cb:d8:4e:96:64:9b:d2:ae:89:
f3:24:25:cb:d0:8c:26:a5:86:8e:02:ca:05:39:fd:
1e:19:5b:0f:05:52:a7:fb:3e:01:ab:45:80:d3:ea:
fb:a6:57:d6:a1:f0:db:50:69:b1:f5:9b:a7:fb:ea:
d6:86:80:d7:ae:66:be:a1:db:9b:37:55:e3:d5:18:
e5:2f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Authority Key Identifier:
keyid:72:5B:BA:AA:72:38:EE:25:90:24:B5:94:22:FA:09:88:CA:8B:0A:FB
X509v3 Subject Key Identifier:
D6:EB:2D:9D:61:FE:2B:BB:70:88:2E:B8:07:B1:59:B0:F4:83:22:6A
X509v3 Key Usage: critical
Digital Signature, Certificate Sign, CRL Sign
X509v3 CRL Distribution Points:
Full Name:
URI:http://eca.hinet.net/repository/CRL2/CA.crl
Authority Information Access:
CA Issuers - URI:http://eca.hinet.net/repository/Certs/eCAG2.crt
OCSP - URI:http://ocsp.eca.hinet.net/OCSP/ocspG2sha2
X509v3 Basic Constraints: critical
CA:TRUE, pathlen:0
X509v3 Certificate Policies:
Policy: 1.3.6.1.4.1.23459.100.0.3
Policy: 2.23.140.1.2.2
X509v3 Extended Key Usage:
TLS Web Server Authentication, TLS Web Client Authentication
Signature Algorithm: sha256WithRSAEncryption
4c:ab:b0:9f:6f:52:2e:a7:11:fc:0e:d2:f8:00:a0:57:9f:5e:
90:91:17:eb:83:b2:61:bf:f0:5e:8e:57:d5:51:9d:bb:73:07:
06:b3:1d:bc:55:99:a0:6f:0d:15:68:7c:b7:e8:5d:6a:fe:35:
df:1d:77:70:57:55:43:71:7a:63:6b:91:96:bc:1d:d8:1d:bf:
8b:3c:c8:56:d1:b3:45:ba:7d:14:d6:92:10:9c:73:7f:51:a5:
0b:52:79:5e:e4:cb:10:8f:d6:b3:13:61:14:aa:08:0f:45:f8:
57:03:30:b5:c9:23:36:6b:ce:5e:d3:9f:a8:2e:23:2a:9c:7d:
9b:fa:b1:13:7b:09:b6:d3:ad:82:92:73:42:57:e2:dd:ba:58:
61:6e:9f:6c:cb:8f:31:fc:93:1d:53:67:8e:7b:4c:4e:32:ca:
39:75:a1:26:5d:82:25:8b:e8:7c:fb:97:e9:db:4d:ee:96:a8:
f5:55:9b:86:a6:d8:00:26:69:06:8b:1a:77:2c:18:b6:ac:97:
b3:c8:1f:1f:4d:73:8b:32:ec:a7:4e:31:37:39:af:40:4f:08:
68:40:88:9e:ae:79:0e:9a:55:de:3d:a6:b6:bb:04:32:2a:14:
c0:3b:33:2c:b8:a5:74:58:7e:a1:67:8e:af:51:b9:13:96:62:
22:25:bb:32:cd:51:2c:65:68:5b:53:31:45:50:9d:68:c9:c6:
79:57:94:10:cb:5f:d2:f8:38:0c:53:3a:f7:5b:b5:c3:4d:4b:
51:8a:f9:6d:5c:5a:26:1d:4c:e5:85:e0:74:ee:e6:9b:dd:52:
7f:fe:f3:25:44:e0:4e:cc:3d:bd:2f:1a:ec:6f:dd:2d:75:40:
6e:89:b5:53:ee:1e:45:fa:04:6a:91:5c:7a:36:e7:78:18:ef:
b1:d9:53:48:37:83:da:95:b3:d5:1a:66:35:92:e5:44:dc:a9:
d8:0b:9a:63:90:9c:7e:d4:49:a2:7d:ff:8a:d7:46:ef:cf:f0:
85:8c:3c:6d:ac:ea:db:f5:75:15:50:57:9c:5f:ab:6d:4f:43:
8c:b9:df:2b:55:77:4f:bf:96:9d:0b:ef:8d:fe:d4:08:e7:3b:
0d:08:f2:df:50:c4:fe:9c:da:d8:be:a2:8e:37:af:13:3c:60:
4d:de:b5:52:d0:05:e5:ac:98:97:34:d0:63:96:6b:f5:e6:14:
00:ac:cb:c2:e4:72:dc:74:41:27:00:01:8c:02:7c:1d:9a:71:
c7:f1:8f:d8:44:5f:57:3a:30:07:95:51:5a:74:e1:82:71:e1:
db:63:a0:81:53:3c:8d:7f:30:55:fe:16:4c:4c:ab:81:6c:ea:
4f:a6:c5:29:bb:b4:db:ef
CA Certificate in PEM Format
Use openssl x509 to convert certificate from DER format to PEM format:
openssl x509 -in cert.crt -inform der
Converted PEM format certificate:
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Also see Top 1 Millions Domains CA Certificate List
Related Certificates
- GRCA1_to_GRCA1_5.cer: CN=Government Root Certification Authority - G1.5,O=行政院,C=TW (Expiring: 2020-07-19)
- GRCA3.cer: CN=Government Root Certification Authority - G3,O=行政院,C=TW (Expiring: 2049-12-31)
- GRCA.cer: O=Government Root Certification Authority,C=TW (Expiring: 2032-12-05)
- GRCA1_5_to_GRCA2.cer: O=Government Root Certification Authority,C=TW (Expiring: 2020-07-19)
- GRCA2.cer: O=Government Root Certification Authority,C=TW (Expiring: 2037-12-31)