eCAG2.crt: CN=ePKI Root Certification Authority - G2,O=Chunghwa Telecom Co., Ltd.,C=TW (Intermediate Certificate, Expiring 2034-12-20) detail info and audit record

CA Certificate Information and Audit Record

This certificate is intermediate certificate used for the issuance of other certificates.

• Certificate Download URL: http://eca.hinet.net/repository/Certs/eCAG2.crt (in DER format )
• Serial Number : 79664773195588029318961318085706685626
• SHA-1 Fingerprint : c3caf8570cb12dd0fc9737bfcd0f087c9be6d281
• SHA-1 Fingerprint : c3:ca:f8:57:0c:b1:2d:d0:fc:97:37:bf:cd:0f:08:7c:9b:e6:d2:81
• SHA-256 Fingerprint : 64717250af8b028dd8e5c0bae4c9142c8b103532612bc487085fd3c319f9c067
• SHA-256 Fingerprint : 64:71:72:50:af:8b:02:8d:d8:e5:c0:ba:e4:c9:14:2c:8b:10:35:32:61:2b:c4:87:08:5f:d3:c3:19:f9:c0:67
• Signature Hash Algorithm : sha256
• Subject : CN=ePKI Root Certification Authority - G2,O=Chunghwa Telecom Co., Ltd.,C=TW
  • Country Name: TW (Taiwan (Province of China))
  • Organization: Chunghwa Telecom Co., Ltd.
  • Common Name: ePKI Root Certification Authority - G2
• Not Valid Before: 2015-11-17 08:51:35
• Not Valid After: 2034-12-20 02:31:27
• Issuer (Parent Certificate):
  • Issuer Name: OU=ePKI Root Certification Authority,O=Chunghwa Telecom Co., Ltd.,C=TW
  • Issuer Certificate URL: NA
• Audit Record:
  • Revocation Status: Not Revoked
  • Certificate Policy (CP) URL: Unknown
  • Certificate Practice Statement (CPS) URL: Unknown
  • No public standard audit information was found by E2Encrypted.com. We update this information regularly, check back later.
  • Check its issuer’s audit information: OU=ePKI Root Certification Authority,O=Chunghwa Telecom Co., Ltd.,C=TW .

Download certificate through curl:

curl -sSL "http://eca.hinet.net/repository/Certs/eCAG2.crt" --output cert.crt

Download certificate through wget:

wget -q "http://eca.hinet.net/repository/Certs/eCAG2.crt" --output-document=cert.crt

CA Certificate Detail Information

Use openssl x509 to decode DER certificate to get detail information:

openssl x509 -in cert.crt -inform der -text -noout

Use openssl x509 to decode PEM certificate to get detail information:

openssl x509 -in cert.crt -inform pem -text -noout

Decoded detail certificate information:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            3b:ee:e0:91:8e:88:86:ad:46:0f:e8:ae:91:0c:9c:ba
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=TW, O=Chunghwa Telecom Co., Ltd., OU=ePKI Root Certification Authority
        Validity
            Not Before: Nov 17 08:51:35 2015 GMT
            Not After : Dec 20 02:31:27 2034 GMT
        Subject: C=TW, O=Chunghwa Telecom Co., Ltd., CN=ePKI Root Certification Authority - G2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (4096 bit)
                Modulus:
                    00:a4:59:1f:a0:2f:df:be:e0:fb:e9:dc:b5:89:fe:
                    5a:97:03:c9:3a:77:a7:8e:5c:af:f2:e3:18:39:f5:
                    aa:dd:0f:46:d2:68:0f:57:9c:a7:63:60:d3:58:ce:
                    35:c2:a7:f6:88:c2:4f:7f:1b:28:e9:d0:a7:00:c4:
                    17:4d:6d:e2:0f:c5:0e:26:23:20:ab:f7:3a:28:a2:
                    4c:0a:0b:cc:8e:ce:e6:00:9a:5a:40:0d:d4:50:1a:
                    9b:d1:0d:9c:94:f9:db:ee:5c:d0:f1:8a:07:cd:9a:
                    2b:40:2c:49:a4:5d:62:5f:a7:6b:df:ee:56:08:50:
                    f3:42:18:6c:31:b0:5e:e5:9c:73:92:bc:0e:d2:0c:
                    7d:c5:38:57:bc:bb:58:db:26:19:02:ed:e3:43:84:
                    8a:4e:56:6b:db:ad:a1:31:d9:cc:22:67:96:78:ff:
                    77:9d:cc:64:c5:32:20:6a:ef:4e:30:d5:24:25:fd:
                    88:79:af:71:1a:fe:d5:4b:1b:15:88:bc:18:70:aa:
                    bd:ad:38:0a:66:30:46:e5:89:85:d5:76:24:a9:a9:
                    b3:e6:59:60:0f:b4:a9:53:c2:3a:9d:45:1a:d6:ae:
                    e3:77:5e:c4:62:36:33:2f:30:c4:bf:95:f1:2d:38:
                    a5:75:e8:d1:6a:93:2e:45:87:4b:4a:a2:df:bf:58:
                    27:9a:ca:62:19:aa:5e:d4:b1:80:49:96:dd:2b:ec:
                    5f:8f:9b:e0:9d:97:88:f5:84:03:a3:af:b3:a5:73:
                    2d:41:ba:e5:07:b7:6f:6b:71:f7:f7:c9:5a:af:69:
                    99:b3:2f:c8:4f:42:eb:6c:6b:71:67:78:df:0a:ac:
                    4f:d7:4a:85:00:46:1a:d5:cd:b8:9f:ea:95:9d:0f:
                    7c:d1:c6:05:85:e6:08:de:88:17:81:f6:d5:b5:6e:
                    ea:a1:1c:d7:61:aa:e3:59:42:89:9c:59:7e:b1:7c:
                    64:34:dd:61:23:2a:39:b5:10:ab:fc:86:a9:53:1a:
                    c5:eb:6a:e2:80:4e:59:91:c0:38:89:fe:b3:5d:d6:
                    fb:91:e9:d7:b0:7d:d9:78:08:cc:f5:2b:cc:2b:e1:
                    a1:d6:94:73:c1:fe:51:f4:8c:7d:0a:b5:9a:8a:b9:
                    f5:da:e0:c9:b3:d8:8f:aa:82:83:8d:69:53:2d:fd:
                    00:04:18:4a:a0:da:54:e1:79:8c:89:eb:7f:f5:82:
                    e7:a0:b9:77:4d:ae:f9:ba:02:3b:88:76:eb:7c:5d:
                    b3:5a:13:db:7c:29:16:6b:99:d1:1d:e4:48:21:a2:
                    0d:5e:01:88:e8:be:f1:98:4d:3e:c7:16:57:1c:5f:
                    e1:08:6f:1c:4c:58:43:56:f7:80:65:8c:71:0e:a2:
                    04:67:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                keyid:1E:0C:F7:B6:67:F2:E1:92:26:09:45:C0:55:39:2E:77:3F:42:4A:A2

            X509v3 Subject Key Identifier: 
                72:5B:BA:AA:72:38:EE:25:90:24:B5:94:22:FA:09:88:CA:8B:0A:FB
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://eca.hinet.net/repository/CRL_SHA2/CA.crl

            Authority Information Access: 
                CA Issuers - URI:http://eca.hinet.net/repository/Certs/IssuedToThisCA.p7b
                OCSP - URI:http://ocsp.eca.hinet.net/OCSP/ocspG1sha2

            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.23459.100.0.1
                Policy: 1.3.6.1.4.1.23459.100.0.2
                Policy: 1.3.6.1.4.1.23459.100.0.3
                Policy: 1.3.6.1.4.1.23459.100.0.4
                Policy: 1.3.6.1.4.1.23459.100.0.9
                Policy: 1.3.6.1.4.1.23459.100.0.0
                Policy: 2.16.886.1.100.0.1
                Policy: 2.16.886.1.100.0.2
                Policy: 2.16.886.1.100.0.3
                Policy: 2.16.886.1.100.0.4
                Policy: 2.16.886.1.100.0.0
                Policy: 2.23.140.1.2.1
                Policy: 2.23.140.1.2.2
                Policy: 2.23.140.1.2.3
                Policy: 2.23.140.1.1
                  CPS: https://eca.hinet.net/repository

    Signature Algorithm: sha256WithRSAEncryption
         2a:8c:63:84:b8:36:02:64:8f:79:b2:53:85:0f:1d:db:9c:34:
         c5:30:18:37:78:88:e1:90:3b:62:36:9a:ce:89:d5:b8:5f:bf:
         b4:fc:f7:a1:92:0c:08:87:18:69:c5:57:22:80:18:39:90:62:
         82:4c:25:58:78:18:7a:dc:b5:ec:34:a9:95:8e:03:48:10:1c:
         b7:65:7a:62:19:c1:98:b6:14:7e:c7:5f:61:72:50:46:36:d8:
         35:a3:4c:af:3d:9b:39:18:a4:ab:45:47:e4:fc:8f:65:dd:e7:
         42:95:cb:ec:ef:a6:a9:8b:26:6a:4a:e3:6c:27:a3:da:82:fb:
         31:ae:a5:2f:17:70:4f:2d:e4:74:23:ae:69:a5:01:09:3d:9f:
         ee:e1:46:af:ac:0c:49:95:03:f3:66:54:27:47:a7:63:ca:00:
         7d:1c:3d:e2:40:3f:4d:4b:64:b8:d3:5b:c4:2c:2c:af:b0:f2:
         fa:79:56:23:7d:bc:9f:55:60:9e:37:30:14:65:00:6c:24:5c:
         99:db:9f:84:7a:9e:d3:92:ef:bf:51:c0:07:0e:65:b2:ee:a5:
         1c:07:e6:88:1d:71:73:66:a4:74:0f:de:84:37:79:05:d7:29:
         52:26:69:14:5f:42:c7:52:61:47:bc:af:4c:6a:18:28:5b:26:
         2f:61:92:c4:6f:43:06:bd:23:16:39:fe:9d:7c:bc:a6:0e:da:
         6c:f2:43:93:c9:fb:fd:18:cf:be:63:eb:fc:6f:4f:2e:b4:1c:
         b4:86:fb:26:0b:39:3c:e0:e9:47:9a:24:7d:77:59:f7:7b:9d:
         3f:6e:17:d8:80:cc:0c:25:26:7b:d4:bd:61:ea:0b:2f:5f:b9:
         dc:b0:0d:7f:1c:02:f3:74:15:66:e6:cb:6d:c6:dd:86:7a:a4:
         21:bb:bf:c3:09:ae:65:07:37:fe:3b:10:e2:e1:1b:57:2f:57:
         5f:db:9f:8b:71:20:f6:11:d2:18:e7:8a:bf:d8:40:a2:a6:b0:
         fb:18:1d:ac:6d:be:87:45:14:6b:87:13:a3:51:2e:43:7f:e6:
         fc:c5:1f:cf:f8:34:24:22:e0:02:d9:ff:9f:47:f7:58:6b:8e:
         f9:e4:16:07:f4:df:a3:8f:be:d0:16:34:3e:1a:45:05:c5:23:
         f4:ba:8c:b1:57:df:61:8e:2c:3d:05:49:15:11:c1:86:e0:14:
         82:2f:41:f2:3b:13:d9:c3:58:35:f4:d3:cc:64:91:a4:db:3d:
         52:28:26:16:5e:72:c4:8e:cd:48:86:57:7e:d3:36:99:d6:d3:
         de:9a:f9:9c:1e:ac:2e:46:31:7a:a9:90:14:0a:c0:2a:19:b4:
         4b:33:66:f0:29:66:80:58

CA Certificate in PEM Format

Use openssl x509 to convert certificate from DER format to PEM format:

openssl x509 -in cert.crt -inform der

Converted PEM format certificate:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Decode PEM Certificate online

Download PEM Certificate

Also see Top 1 Millions Domains CA Certificate List

Related Certificates

• EVTLSCA.cer: CN=HiPKI EV TLS CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2037-12-31)
• HRCA.cer: CN=HiPKI Root CA - G1,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2037-12-31)
• PublicCA2.cer: OU=Public Certification Authority - G2,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2034-12-11)
• PublicCA.cer: OU=Public Certification Authority,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2027-05-16)
• ROOTeCA.cer: OU=ePKI Root Certification Authority,O=Chunghwa Telecom Co., Ltd.,C=TW (Expiring: 2034-12-20)