Chinese  |  English
 
   
Root CA Certificates & CARL

Names

 
Abstract
 
File
Format
Certificate Distribution
  • Adopted methods for securely delivering eCA's 1st generation self-signed certificate.
  • RSA 4096 w/SHA-1
  • Serial #: 15 c8 bd 65 47 5c af b8 97 00 5e e4 06 d2 bc 9d
  • Thumbprint(SHA-1): 67 65 0d f1 7e 8e 7e 5b 82 40 a4 f4 56 4b cf e2 3d 69 c6 f0
  • Valid Period: December 20, 2004 to December 20, 2034.

CER(DER encoded X.509)

CRT(Based 64 encoded)

CA Revocation List(SHA-1)
1st generation of eCA issues RSA 4096 w/SHA-1 CARL once a day, CARL offers the relying party to check the status of certificates of CA.
CRL
CA Revocation List(SHA 256)
1st generation of eCA issues RSA 4096 w/SHA 256 CARL once a day, CARL offers the relying party to check the status of certificates of CA.
CRL
eCA ˇVG2 self-signed certificates, self-issued certificates, Subordinate CA certificates & CARL
  • eCA’s 2nd generation RSA 4096 w/SHA 256 self-signed certificates.
  • Self-issued certificates to construct the trusted path of first generation and 2nd generation of eCA.
  • Subordinate CA certificates chained up to eCA -G2.
  • RSA 4096 w/SHA 256 Certification Authority Revocation List signed by eCA’s 2nd generation key.

HTML
Subordinate CA Certificates

Names

 
Abstract
 
File
Format
1st Generation PublicCA CA Certificate
  • PublicCA (Public Certification Authority)'s CA certificate.
  • RSA 2048 w/SHA-1
  • Serial #: 00 97 3c c9 4d 44 cf e9 a2 e1 4f 52 e9 a5 94 a1 5a
  • Thumbprint(SHA-1): d6 d5 c7 92 ad 6b 2e 3a b9 b4 23 01 4e 1b 40 e5 76 d8 ec bf
  • Valid Period: May 16, 2007 to May 16, 2027.

CER(DER encoded X.509)

CRT(Based 64 encoded)

2nd Generation PublicCA CA Certificate
  • PublicCA (Public Certification Authority)'s CA certificate.
  • RSA 2048 w/SHA 256
  • Serial #: 14 35 96 f2 44 1a 71 67 98 3f fc 95 97 41 9b 53
  • Thumbprint(SHA-1): 78 62 ca ba b6 3a c7 a7 4e 07 56 a8 f8 6a 2c 02 1a 9f 69 b3
  • Valid Period: December 11, 2014 to December 11, 2034.

CER(DER encoded X.509)

CRT(Based 64 encoded)

CP & CPS

Names

 
Abstract
 
File
Format
ePKI CP V1.6 (English Version)

Certificate Policy for the Chunghwa Telecom ecommerce Public Key Infrastructure Version 1.6.

It is a policy document drafted in accordance with the Electronic Signatures Act and related international standards such as IETF RFC 3647, ITU-T X.509, IETF RFC 5280 and CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation Certificates to serve as a basis for the CPS established by CAs in the ePKI.

The issue date of this version is May 28, 2018.


PDF
eCA CPS V1.5 (English Version)

The eCA CPS is stipulated to follow ePKI CP and complies with the Electronic Signatures Act, and related international standards such as the IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation and CA/Browser Forum Network and Certificate System Security Requirements.

It is approved by ePKI Policy Management Committee. The issue date of this version is May 28, 2018.


PDF
eCA CPS V1.4 (English Version)

The eCA CPS is stipulated to follow ePKI CP and complies with the Electronic Signatures Act, and related international standards such as the IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation.

Traditional Chinese version of the CPS is approved by MOEA on March 14, 2018.

Competent authority approval No.: Chin-Shang-Tzu No. 10702216460

English version is translated from Traditional Chinese version and published in March 23, 2018.


PDF
PublicCA CPS V1.8 (English Version)

Public Certification Authority Certification Practice Statement (PublicCA CPS) is stipulated following the Certificate Policy (CP) for the Chunghwa Telecom ecommerce Public Key Infrastructure (ePKI). Complying with the bylaws of the Taiwan Digital Signature Act, IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Network and Certificate System Security Requirements.

It is approved by ePKI Policy Management Committee. The issue date of this version is May 28, 2018.


PDF
PublicCA CPS V1.7 (English Version)

Public Certification Authority Certification Practice Statement (PublicCA CPS) is stipulated following the Certificate Policy (CP) for the Chunghwa Telecom ecommerce Public Key Infrastructure (ePKI). Complying with the bylaws of the Taiwan Digital Signature Act, IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance and Management of Publicly-Trusted Certificates and CA/Browser Forum Network and Certificate System Security Requirements.

Traditional Chinese version of the CPS is approved by MOEA on March 14, 2018.

Competent authority approval No.: Chin-Shang-Tzu No. 10702216460

English version is translated from Traditional Chinese version and published in March 23, 2018.


PDF
ePKI EV SSL CA CPS V1.2(English Version)

ePKI EV SSL Certification Authority Certification Practice Statement of Chunghwa Telecom (ePKI EV SSL CA CPS) is stipulated following the Certificate Policy (CP) for the Chunghwa Telecom ecommerce Public Key Infrastructure (ePKI). Complying with the bylaws of the Taiwan Digital Signature Act, IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance, Management of Publicly-Trusted Certificates and CA/Browser Forum Network and Certificate System Security Requirements and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation Certificates (EV SSL Certificate Guidelines).

The issue date of this version is May 28, 2018.


PDF
ePKI EV SSL CA CPS V1.1 (English Version)

ePKI EV SSL Certification Authority Certification Practice Statement of Chunghwa Telecom (ePKI EV SSL CA CPS) is stipulated following the Certificate Policy (CP) for the Chunghwa Telecom ecommerce Public Key Infrastructure (ePKI). Complying with the bylaws of the Taiwan Digital Signature Act, IETF RFC 3647, ITU-T X.509, IETF RFC 5280, CA/Browser Forum Baseline Requirements for the Issuance, Management of Publicly-Trusted Certificates and CA/Browser Forum Network and Certificate System Security Requirements and CA/Browser Forum Guidelines for the Issuance and Management of Extended Validation Certificates (EV SSL Certificate Guidelines).

Traditional Chinese version of the CPS is approved by MOEA on March 14, 2018.

Competent authority approval No.: Chin-Shang-Tzu No. 10702216460

English version is translated from Traditional Chinese version and published in March 23, 2018.


PDF
CPS Draft of ePKI’s CAS (20170719)

CPSs approved by ePKI Policy Management Committee and sent to Ministry of Economic Affairs (MOEA) in accordance with Article 11 of the Electronic Signatures Act via 20170627meeting’s reviewing,then sent to MOEA again on July 19ˇAincluding below three CPSs:

1.ePKI Root Certification Authority Certification Practice Statement Version 1.4 (Draft, Issue Date:2017/07/16)ˇC

2.ePKI EV SSL Certification Authority Certification Practice Statement of Chunghwa Telecom Version 1.1 (Draft, Issue Date:2017/07/14)ˇC

3.Public Certification Authority Certification Practice Statement of Chunghwa Telecom Version 1.7 (Draft, Issue Date:2017/7/14)ˇC


ZIP
CPS Draft of ePKI’s CAS (20171024)

CPSs approved by ePKI Policy Management Committee and sent to Ministry of Economic Affairs (MOEA) on 20171024 for reviewing.

Amended by considering CA/Browser Forum GuidelinesˇBAdobe AATL Technical Requirement and operation. The zip files are included of:

1.ePKI Root Certification Authority Certification Practice Statement Version 1.4 (Draft, Issue Date:2017/10/23).

2.ePKI EV SSL Certification Authority Certification Practice Statement of Chunghwa Telecom Version 1.1 (Draft, Issue Date:2017/10/23).

3.Public Certification Authority Certification Practice Statement of Chunghwa Telecom Version 1.7 (Draft, Issue Date:2017/10/23).


ZIP
CPS Draft of ePKI’s CAS (20180126)

CPSs approved by ePKI Policy Management Committee and will be sent to Ministry of Economic Affairs (MOEA) for reviewing and approving.

Below documents are amended by considering CA/Browser Forum GuidelinesˇBAdobe AATL Technical Requirement and operation.

1.ePKI Root Certification Authority Certification Practice Statement Version 1.4 (Draft, Issue Date:2018/1/26).

2.ePKI EV SSL Certification Authority Certification Practice Statement of Chunghwa Telecom Version 1.1 (Draft, Issue Date: 2018/1/26).

3.Public Certification Authority Certification Practice Statement of Chunghwa Telecom Version 1.7 (Draft, Issue Date: 2018/1/26).


PDF
CPS Draft of ePKI’s CAS (20180214)

CPSs approved by ePKI Policy Management Committee and will be sent to Ministry of Economic Affairs (MOEA) for reviewing and approving.

Below documents are amended by adding version control.

1.ePKI Root Certification Authority Certification Practice Statement Version 1.4 (Draft, Issue Date:2018/2/14).

2.ePKI EV SSL Certification Authority Certification Practice Statement of Chunghwa Telecom Version 1.1 (Draft, Issue Date: 2018/2/14).

3.Public Certification Authority Certification Practice Statement of Chunghwa Telecom Version 1.7 (Draft, Issue Date: 2018/2/14).


PDF
Archived Documentation
Archived Certificate Policy and Certification Practice Statement.
HTML
Audit Report

Names

 
Abstract
 
File
Format
Trust Service for CA Audit report & Management's Assertions

eCA and its subordinate CAs have accomplished the annual Trust Service Principles and Criteria for Certification Authorities 2.0 audit and published the renewed Audit Report and Management's Assertions in accordance with WebTrust program. Please click the left hand side hyperlink and click "Click here to view the Audit Report and Management's Assertions" to read.


PDF
SSL Baseline with Network Security Audit report & Management's Assertions

eCA & its subordinate CAs have accomplished the annual WebTrust Principles and Criteria for Certification Authorities – SSL Baseline with Network Security Version 2.2 audit and published the renewed Audit Report and Management's Assertions in accordance with WebTrust program. Please click the left hand side hyperlink and click "Click here to view the Audit Report and Management's Assertions" to read.


PDF
WebTrust Principles and Criteria for Certification Authorities-Extended Validation SSL Audit report & Management's Assertions

eCA and ePKI EV SSL CA have accomplished the annual WebTrust Principles and Criteria for Certification Authorities - Extended Validation SSL Version 1.6.0 audit and published the renewed Audit Report and Management's Assertions in accordance with WebTrust program. Please click the left hand side hyperlink and click "Click here to view the Audit Report and Management's Assertions" to read.


PDF