Chinese  |  English
 
   
Root CA Certificates & CARL

Names

 
Abstract
 
File
Format
Certificate Distribution
  • Adopted methods for securely delivering eCA's 1st generation self-signed certificate.
  • RSA 4096 w/SHA-1, DER encoded X.509.
  • Serial #: 15 c8 bd 65 47 5c af b8 97 00 5e e4 06 d2 bc 9d
  • Thumbprint(SHA-1): 67 65 0d f1 7e 8e 7e 5b 82 40 a4 f4 56 4b cf e2 3d 69 c6 f0
  • Valid Period: December 20, 2004 to December 20, 2034.

CER
Certificate Distribution
  • Adopted methods for securely delivering eCA's 1st generation self-signed certificate.
  • RSA 4096 w/SHA-1, Based 64 encoded.
  • Serial #: 15 c8 bd 65 47 5c af b8 97 00 5e e4 06 d2 bc 9d
  • Thumbprint(SHA-1): 67 65 0d f1 7e 8e 7e 5b 82 40 a4 f4 56 4b cf e2 3d 69 c6 f0
  • Valid Period: December 20, 2004 to December 20, 2034.

CRT
CA Revocation List(SHA-1)
1st generation of eCA issues RSA 4096 w/SHA-1 CARL once a day, CARL offers the relying party to check the status of certificates of CA.
CRL
CA Revocation List(SHA 256)
1st generation of eCA issues RSA 4096 w/SHA 256 CARL once a day, CARL offers the relying party to check the status of certificates of CA.
CRL
eCA ˇVG2 self-signed certificates, self-issued certificates, Subordinate CA certificates & CARL
  • eCA’s 2nd generation RSA 4096 w/SHA 256 self-signed certificates.
  • Self-issued certificates to construct the trusted path of first generation and 2nd generation of eCA.
  • Subordinate CA certificates chained up to eCA -G2.
  • RSA 4096 w/SHA 256 Certification Authority Revocation List signed by eCA’s 2nd generation key.

HTML
Subordinate CA Certificates

Names

 
Abstract
 
File
Format
1st Generation PublicCA CA Certificate
  • PublicCA (Public Certification Authority)'s CA certificate.
  • RSA 2048 w/SHA-1, DER encoded X.509.
  • Serial #: 00 97 3c c9 4d 44 cf e9 a2 e1 4f 52 e9 a5 94 a1 5a
  • Thumbprint(SHA-1): d6 d5 c7 92 ad 6b 2e 3a b9 b4 23 01 4e 1b 40 e5 76 d8 ec bf
  • Valid Period: May 16, 2007 to May 16, 2027.

CER
1st Generation PublicCA CA Certificate
  • PublicCA (Public Certification Authority)'s CA certificate.
  • RSA 2048 w/SHA-1, Based 64 encoded.
  • Serial #: 00 97 3c c9 4d 44 cf e9 a2 e1 4f 52 e9 a5 94 a1 5a
  • Thumbprint(SHA-1): d6 d5 c7 92 ad 6b 2e 3a b9 b4 23 01 4e 1b 40 e5 76 d8 ec bf
  • Valid Period: May 16, 2007 to May 16, 2027.

CRT
2nd Generation PublicCA CA Certificate
  • PublicCA (Public Certification Authority)'s CA certificate.
  • RSA 2048 w/SHA 256, DER encoded X.509.
  • Serial #: 14 35 96 f2 44 1a 71 67 98 3f fc 95 97 41 9b 53
  • Thumbprint(SHA-1): 78 62 ca ba b6 3a c7 a7 4e 07 56 a8 f8 6a 2c 02 1a 9f 69 b3
  • Valid Period: December 11, 2014 to December 11, 2034.

CER
2nd Generation PublicCA CA Certificate
  • PublicCA (Public Certification Authority)'s CA certificate.
  • RSA 2048 w/SHA 256, Based 64 encoded.
  • Serial #: 14 35 96 f2 44 1a 71 67 98 3f fc 95 97 41 9b 53
  • Thumbprint(SHA-1): 78 62 ca ba b6 3a c7 a7 4e 07 56 a8 f8 6a 2c 02 1a 9f 69 b3
  • Valid Period: December 11, 2014 to December 11, 2034.

CRT
CP & CPS

Names

 
Abstract
 
File
Format
ePKI CP V1.3 (English Version)

Certificate Policy for the Chunghwa Telecom ecommerce Public Key Infrastructure Version 1.3.

It is a policy document drafted in accordance with the Electronic Signatures Act and related international standards such as IETF RFC 3647, ITU-T X.509, IETF RFC 5280 and CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation Certificates to serve as a basis for the CPS established by CAs in the ePKI.

Traditional Chinese version was published in January 27, 2016 and translated to English Version in September, 2016.


PDF
eCA CPS V1.3 (English Version)

The eCA CPS is stipulated to follow ePKI CP and complies with the Electronic Signatures Act, and related international standards such as the IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation.

February 4, 2016 published.

Competent authority approval No.: Chin-Shang-Tzu No. 10502201620


PDF
PublicCA CPS V1.6 (English Version)

Public Certification Authority Certification Practice Statement(PublicCA CPS) is stipulated following the Certificate Policy (CP) for the Chunghwa Telecom ecommerce Public Key Infrastructure (ePKI). Complying with the bylaws of the Taiwan Digital Signature Act, IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Network and Certificate System Security Requirements.

February 4, 2016 published.

Competent authority approval No.: Chin-Shang-Tzu No. 10502201620


PDF
ePKI EV SSL CA CPS V1.0 (English Version)

ePKI EV SSL Certification Authority Certification Practice Statement of Chunghwa Telecom (ePKI EV SSL CA CPS) is stipulated following the Certificate Policy (CP) for the Chunghwa Telecom ecommerce Public Key Infrastructure (ePKI). Complying with the bylaws of the Taiwan Digital Signature Act, IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance, Management of Publicly-Trusted Certificates and CA/Browser Forum Network and Certificate System Security Requirements and and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation Certificates (EV SSL Certificate Guidelines).

July 26, 2016 published.

Competent authority approval No.: Chin-Shang-Tzu No. 10502276430

English version is translated from Traditional Chinese version and published in November 2016.


PDF
Archived Documentation
Archived Certificate Policy and Certification Practice Statement.
HTML
Audit Report

Names

 
Abstract
 
File
Format
Trust Service for CA 2.0 Audit report & Management's Assertions
eCA and its subordinate CA (Public Certification Authority) have accomplished the annual Trust Service for CA 2.0 audit and published the renewed audit report and Management's Assertions in accordance with WebTrust program.
PDF
SSL Baseline with Network Security Version 2.0 Audit report & Management's Assertions
eCA & its subordinate CA (PublicCA) have accomplished the annual WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security Version 2.0 audit and published the audit report and assertions of management in accordance with WebTrust program. eCA and PublicCA will continue to maintain the validity of WebTrust Principles and Criteria for Certification Authorities – SSL Baseline Requirements seal by complying with WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security.
PDF
ePKI EV SSL CA readiness check Audit report & Management's Assertions
ePKI EV SSL CA has accomplished the Trust Service Principles and Criteria for Certification Authoirties Version 2.0 and WebTrust Principles and Criteria for Certification Authorities-Extended Validation SSL Version 1.4.5 readiness check and published the audit report and Management's Assertions.
PDF