Chinese  |  English
 
   
Root CA Certificates & CARL

Names

 
Abstract
 
File
Format
Certificate Distribution
  • Adopted methods for securely delivering eCA's 1st generation self-signed certificate.
  • RSA 4096 w/SHA-1
  • Serial #: 15 c8 bd 65 47 5c af b8 97 00 5e e4 06 d2 bc 9d
  • Thumbprint(SHA-1): 67 65 0d f1 7e 8e 7e 5b 82 40 a4 f4 56 4b cf e2 3d 69 c6 f0
  • Valid Period: December 20, 2004 to December 20, 2034.

CER(DER encoded X.509)

CRT(Base 64 encoded)

CA Revocation List(SHA-1)
1st generation of eCA issues RSA 4096 w/SHA-1 CARL once a day, CARL offers the relying party to check the status of certificates of CA.
CRL
CA Revocation List(SHA 256)
1st generation of eCA issues RSA 4096 w/SHA 256 CARL once a day, CARL offers the relying party to check the status of certificates of CA.
CRL
eCA ˇVG2 self-signed certificates, self-issued certificates, Subordinate CA certificates & CARL
  • eCA’s 2nd generation RSA 4096 w/SHA 256 self-signed certificates.
  • Self-issued certificates to construct the trusted path of first generation and 2nd generation of eCA.
  • Subordinate CA certificates chained up to eCA -G2.
  • RSA 4096 w/SHA 256 Certification Authority Revocation List signed by eCA’s 2nd generation key.

HTML
Subordinate CA Certificates

Names

 
Abstract
 
File
Format
1st Generation PublicCA CA Certificate
  • PublicCA (Public Certification Authority)'s CA certificate.
  • RSA 2048 w/SHA-1
  • Serial #: 00 97 3c c9 4d 44 cf e9 a2 e1 4f 52 e9 a5 94 a1 5a
  • Thumbprint(SHA-1): d6 d5 c7 92 ad 6b 2e 3a b9 b4 23 01 4e 1b 40 e5 76 d8 ec bf
  • Valid Period: May 16, 2007 to May 16, 2027.

CER(DER encoded X.509)

CRT(Base 64 encoded)

2nd Generation PublicCA CA Certificate
  • PublicCA (Public Certification Authority)'s CA certificate.
  • RSA 2048 w/SHA 256
  • Serial #: 14 35 96 f2 44 1a 71 67 98 3f fc 95 97 41 9b 53
  • Thumbprint(SHA-1): 78 62 ca ba b6 3a c7 a7 4e 07 56 a8 f8 6a 2c 02 1a 9f 69 b3
  • Valid Period: December 11, 2014 to December 11, 2034.

CER(DER encoded X.509)

CRT(Base 64 encoded)

CP & CPS

Names

 
Abstract
 
File
Format
ePKI CP V1.7 (English Version)

Certificate Policy for the Chunghwa Telecom ecommerce Public Key Infrastructure Version 1.7.

It is a policy document drafted in accordance with the Electronic Signatures Act and related international standards such as IETF RFC 3647, ITU-T X.509, IETF RFC 5280 and CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation Certificates to serve as a basis for the CPS established by CAs in the ePKI.

The issue date of this version is April 30, 2019.


PDF
eCA CPS V1.6 (English Version)

The eCA CPS is stipulated to follow ePKI CP and complies with the Electronic Signatures Act, and related international standards such as the IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation and CA/Browser Forum Network and Certificate System Security Requirements.

It is approved by Chunghwa Telecom Certificate Policy Management Authority. The issue date of this version is April 30, 2019.

PDF
PublicCA CPS V1.9 (English Version)

Public Certification Authority Certification Practice Statement (PublicCA CPS) is stipulated following the Certificate Policy (CP) for the Chunghwa Telecom ecommerce Public Key Infrastructure (ePKI). Complying with the bylaws of the Taiwan Digital Signature Act, IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Network and Certificate System Security Requirements.

It is approved by Chunghwa Telecom Certificate Policy Management Authority. The issue date of this version is April 30, 2019.


PDF
Archived Documentation
Archived Certificate Policy and Certification Practice Statement.
HTML
Audit Report

Names

 
Abstract
 
File
Format
WebTrust for CA Audit report & Management's Assertions

eCA and its subordinate CAs have accomplished the annual WebTrust Principles and Criteria for Certification Authorities 2.1 audit and published the renewed Audit Report and Management's Assertions in accordance with WebTrust program. Please click the left hand side hyperlink and click "Click here to view the Audit Report and Management's Assertions" to read.


PDF
SSL Baseline with Network Security Audit report & Management's Assertions

eCA & its subordinate CAs have accomplished the annual WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security Version 2.3 audit and published the renewed Audit Report and Management's Assertions in accordance with WebTrust program. Please click the left hand side hyperlink and click "Click here to view the Audit Report and Management's Assertions" to read.


PDF
WebTrust Principles and Criteria for Certification Authorities-Extended Validation SSL Audit report & Management's Assertions

eCA and ePKI EV SSL CA have accomplished the annual WebTrust Principles and Criteria for Certification Authorities - Extended Validation SSL Version 1.6.2 audit and published the renewed Audit Report and Management's Assertions in accordance with WebTrust program. Please click the left hand side hyperlink and click "Click here to view the Audit Report and Management's Assertions" to read.


PDF