eIDAS Test Scenarios

These test scenrios demonstrate how the Konsentus PSP checking service will behave depending on what you call it's endpoint GET /v1/PSP/eIDAS with. We have generated test data and test certificates for the below scenarios. You can use the certificates below in our sandbox environment to see the outcome of these test scenerios yourself.

The numbers representing roles returned in these test scenarios relate to the PSD2 payment services. You can find a mapping of numbers to descriptions here: link

Authorised PSP with PSD2 roles and a valid certificate

In this scenario we are running a check on the test PSP "Konsentus Payment Services Limited" who is a British PSP and has the id "kt-484347" in the FCA register. They have a valid eIDAS certificate that passes all of our checks and it has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles link). They hold the "Authorised" status in the FCA register.

Certificate in PEM Format (this is the format the endpoint requires the certificate in)

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

Sample of information in certificate

---- Subject Name ----
Country: GB
Common Name: Konsentus Payment Services Limited
Organization Name: Konsentus Payment Services Limited
Other Name: PSDGB-FCA-kt-484347

---- Issuer Name ----
Country: FR
State/Province: FR
Organisation: CertEurope
Common Name: CertEurope

Serial Number: 00 85 F6 5B ED 84 0F 17 A1
Version: 3
Signature Algorithm: SHA-1 with RSA Encryption ( 1.2.840.113549.1.1.5 )

Valid From: Tuesday, 19 February 2019 at 15:22:07 Greenwich Mean Time
Valid To: Wednesday, 19 February 2020 at 15:22:07 Greenwich Mean Time

Endpoint Response

{
  "eIDAS": {
    "validity": {
        "validQTSP": true,
        "validSignature": true,
        "notRevoked": true,
        "notExpired": true
    },
    "data": {
        "QTSPCommonName": "CertEurope",
        "authNumber": "PSDGB-FCA-kt-484347",
        "pspSubjectName": "Konsentus Payment Services Limited"
    }
  }
  "homeRegister": {
    "ncaName": "FCA",
    "ncaCountryCode": "GB",
    "registerType": "Home",
    "categoryEntries": [
      {
        "categoryName": Payment Institution,
        "pspLegalName": "Konsentus Payment Services Limited",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            7
        ]
      },
      {
        "categoryName": E-Money Institution,
        "pspLegalName": "Konsentus Payment Services Limited",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            8
        ]
      }
    ],
  }
}

Unauthorised PSP with PSD2 roles and a valid certificate

In this scenario we are running a check on the test PSP "Konsentus E-Money Limited" who is a British PSP and has the id "kt-791622" in the FCA register. They have a valid eIDAS certificate that passes all of our checks and it has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles link). However they hold the "Unauthorised" status in the FCA register.

Certificate in PEM Format (this is the format the endpoint requires the certificate in)

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

Sample of information in certificate

---- Subject Name ----
Country: GB
Common Name: Konsentus E-Money Limited
Organization Name: Konsentus E-Money Limited
Other Name: PSDGB-FCA-kt-791622

---- Issuer Name ----
Country: FR
State/Province: FR
Organisation: CertEurope
Common Name: CertEurope

Serial Number: 00 85 F6 5B ED 84 0F 17 A3
Version: 3
Signature Algorithm: SHA-1 with RSA Encryption ( 1.2.840.113549.1.1.5 )

Valid From: Tuesday, 19 February 2019 at 15:27:45 Greenwich Mean Time
Valid To: Wednesday, 19 February 2020 at 15:27:45 Greenwich Mean Time

Endpoint Response

{
  "eIDAS": {
    "validity": {
        "validQTSP": true,
        "validSignature": true,
        "notRevoked": true,
        "notExpired": true
    },
    "data": {
        "QTSPCommonName": "CertEurope",
        "authNumber": "PSDGB-FCA-kt-791622",
        "pspSubjectName": "Konsentus E-Money Limited"
    }
  }
  "homeRegister": {
    "ncaName": "FCA",
    "ncaCountryCode": "GB",
    "registerType": "Home",
    "categoryEntries": [
      {
        "categoryName": Payment Institution,
        "pspLegalName": "Konsentus E-Money Limited",
        "pspAuthStatus": "Unauthorised",
        "pspPaymentServices": [
            7
        ]
      },
      {
        "categoryName": E-Money Institution,
        "pspLegalName": "Konsentus E-Money Limited",
        "pspAuthStatus": "Unauthorised",
        "pspPaymentServices": [
            8
        ]
      }
    ],
  }
}

Authorised PSP with no PSD2 roles and a valid certificate

In this scenario we are running a check on the test PSP "Konsentus.io Ltd" who is a British PSP and has the id "kt-795904" in the FCA register. They have a valid eIDAS certificate that passes all of our checks and it has the roles 1 and 2 (see Annex I in the PSD2 Directive for definitions of these roles link). Tthey hold the "Authorised" status in the FCA register.

Certificate in PEM Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus.io Ltd
Organization Name: Konsentus.io Ltd
Other Name: PSDGB-FCA-kt-795904

---- Issuer Name ----
Country: FR
State/Province: FR
Organisation: CertEurope
Common Name: CertEurope

Serial Number: 00 85 F6 5B ED 84 0F 17 A5
Version: 3
Signature Algorithm: SHA-1 with RSA Encryption ( 1.2.840.113549.1.1.5 )

Valid From: Tuesday, 19 February 2019 at 15:31:17 Greenwich Mean Time
Valid To: Wednesday, 19 February 2020 at 15:31:17 Greenwich Mean Time

Endpoint Response

{
  "eIDAS": {
    "validity": {
        "validQTSP": true,
        "validSignature": true,
        "notRevoked": true,
        "notExpired": true
    },
    "data": {
        "QTSPCommonName": "CertEurope",
        "authNumber": "PSDGB-FCA-kt-795904",
        "pspSubjectName": "Konsentus.io Ltd"
    }
  }
  "homeRegister": {
    "ncaName": "FCA",
    "ncaCountryCode": "GB",
    "registerType": "Home",
    "categoryEntries": [
      {
        "categoryName": Payment Institution,
        "pspLegalName": "Konsentus.io Ltd",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            1
        ]
      },
      {
        "categoryName": E-Money Institution,
        "pspLegalName": "Konsentus.io Ltd",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            2
        ]
      }
    ],
  }
}

Authorised PSP with PSD2 roles and an expired certificate

In this scenario we are running a check on the test PSP "Konsentus Services Europe Limited (AESEL)" who is a British PSP and has the id "kt-661836" in the FCA register. They have a eIDAS certificate that has expired. A certificate chain that contains an expired certificate is considered broken, therefore the certificate signature is also returned as not valid. The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles link). They hold the "Authorised" status in the FCA register.

Request Certificate

MIIEnDCCA4SgAwIBAgIJAPjwHCFh2QC4MA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNVBAYTAkZSMQswCQYDVQQIEwJGUjETMBEGA1UEChMKQ2VydEV1cm9wZTETMBEGA1UEAxMKQ2VydEV1cm9wZTAeFw0xOTAyMTkxNTM2NThaFw0xOTAyMjAxNTM2NThaMIGTMQswCQYDVQQGEwJHQjEyMDAGA1UECgwpS29uc2VudHVzIFNlcnZpY2VzIEV1cm9wZSBMaW1pdGVkIChBRVNFTCkxMjAwBgNVBAMMKUtvbnNlbnR1cyBTZXJ2aWNlcyBFdXJvcGUgTGltaXRlZCAoQUVTRUwpMRwwGgYDVQRhDBNQU0RHQi1GQ0Eta3QtNjYxODM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspGr2eCJqEQjfx9njfUWzLmPVC9OBaLuUBbNcTGfW820NMJ/j64u4tP6NTo7yY+lQkuEFeMmwHaD2THitQoAlMFMyZakB5wU3lM8HMsDsKzSPqhhXUqcD1CzgZzP6rssdAoeE/vj289kUBl7Aekcsf5LMLhwHBsQIulgK5IrgWiJbDtM/kC7msLftIwhpIKJLo6dd63OK6uP8FzDtgZW09skYOHGGETBZc7VMfbJ4G+sAhHVoJ3op9fKtbzSonHOZYMmz3mzI5GzNNuydU7akNrLW3Qss50NP9dIN9uLg79uN6lKAR00JNAT3zp2eVUmadGp1w6fJDrw6BOKpijt8wIDAQABo4IBPzCCATswCQYDVR0TBAIwADAdBgNVHQ4EFgQUEJrYypxNJN7yb9CglEzTU7CjLSkwHwYDVR0jBBgwFoAUyDSVDVy0sCJC4/ocv6OWNGho3t4wCQYDVR0RBAIwADBPBgNVHR8ESDBGMESgQqBAhj5odHRwczovL3MzLmV1LXdlc3QtMi5hbWF6b25hd3MuY29tL2stY2VydHMva3QtY2VydC1leHBpcmVkLmNybDCBhAYIKwYBBQUHAQEEeDB2MCUGCCsGAQUFBzABhhlodHRwOi8vb2NzcC5rb25zZW50dXMuY29tME0GCCsGAQUFBzAChkFodHRwczovL3MzLmV1LXdlc3QtMi5hbWF6b25hd3MuY29tL2stY2VydHMva3QtY2VydC1leHBpcmVkLWNhLmRlcjALBgNVHQ8EBAMCBPAwDQYJKoZIhvcNAQEFBQADggEBABdWH5fPARnno0GuysXYvJ+ft4IbtxurSgCXeqaDLwoBuNZfjJQRHOFK8rnffs0yMzos2wRYtfR4eZJmgTuJIDS2cTZC+KwMmDxJhukDlzjCOoKqahZL7dHgicINS1sfAc5pHIN9hs4IRJGEMSaNadUq9T5GOv1ZN2GwUoGreZ9ZRaotOWczOFFwnwgPPr6tUBFN7pTPG9tJyqjAGkHSj1CbMW+mEcfwwmsZB5+hNXJsUyOAcWpuxt7xyktm4KsWkEZh48kwBoflyUganCk4q5JhdEqtPlIGFLg9PKKGLfrWb72YmXtet1rthlawxUupo5YUJgyVqJKc0Xl7T6vNibU=

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus Payment Services Limited (AESEL)
Organization Name: Konsentus Payment Services Limited (AESEL)
Other Name: PSDGB-FCA-kt-661836

---- Issuer Name ----
Country: FR
State/Province: FR
Organisation: CertEurope
Common Name: CertEurope

Serial Number: 00 F8 F0 1C 21 61 D9 00 B8
Version: 3
Signature Algorithm: SHA-1 with RSA Encryption ( 1.2.840.113549.1.1.5 )

Valid From: Tuesday, 19 February 2019 at 15:36:58 Greenwich Mean Time
Valid To: Wednesday, 20 February 2019 at 15:36:58 Greenwich Mean Time

Endpoint Response

{
  "eIDAS": {
    "validity": {
        "validQTSP": true,
        "validSignature": false,
        "notRevoked": true,
        "notExpired": false
    },
    "data": {
        "QTSPCommonName": "CertEurope",
        "authNumber": "PSDGB-FCA-kt-661836",
        "pspSubjectName": "Konsentus Services Europe Limited (AESEL)"
    }
  }
  "homeRegister": {
    "ncaName": "FCA",
    "ncaCountryCode": "GB",
    "registerType": "Home",
    "categoryEntries": [
      {
        "categoryName": Payment Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            7
        ]
      },
      {
        "categoryName": E-Money Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            8
        ]
      }
    ],
  }
}

Authorised PSP with PSD2 roles and a certificate issued by an untrusted QTSP

In this scenario we are running a check on the test PSP "Konsentus Services Europe Limited (AESEL)" who is a British PSP and has the id "kt-661836" in the FCA register. They have a eIDAS certificate that has been issued by a QTSP that is not trusted. The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles link). They hold the "Authorised" status in the FCA register.

Certificate in PEM Format (this is the format the endpoint requires the certificate in)

MIIEojCCA4qgAwIBAgIJAK4ijZ5OM893MA0GCSqGSIb3DQEBBQUAMEIxCzAJBgNVBAYTAkZSMQswCQYDVQQIEwJGUjESMBAGA1UEChMJS29uc2VudHVzMRIwEAYDVQQDEwlLb25zZW50dXMwHhcNMTkwMjE5MTUyNTIwWhcNMjAwMjE5MTUyNTIwWjCBkzELMAkGA1UEBhMCR0IxMjAwBgNVBAoMKUtvbnNlbnR1cyBTZXJ2aWNlcyBFdXJvcGUgTGltaXRlZCAoQUVTRUwpMTIwMAYDVQQDDClLb25zZW50dXMgU2VydmljZXMgRXVyb3BlIExpbWl0ZWQgKEFFU0VMKTEcMBoGA1UEYQwTUFNER0ItRkNBLWt0LTY2MTgzNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAO5gFkgJ/PMAEp3JasoYg0rPl/v1s4pyw9wFyBn4AwgxO3UC6Tupulcwir03Q2ydFPKj7EAzrAWQmlZnTsPZZMBGi1CG16GttggYPFoAi6tNBfk3cALXkw82A1eeZ4HGpEGmPmfSTIrHvRD/uAyfmzPVtNbPHhUJA5j/YD9SL89z2uIBA2Bz89tphKhHzcGVkb1E1HaJmVVBtuNrepSlKMsn2rYUTyMCnI/SWttrT29L1siibZY57We+J6zs2Iqvw0BtvgHtcZOGxMhmYC/IqvKSl9VGtuAffkyPTcB0TJ4esCzv0KyW/6DWBnEqZBe3Tah2j6T7deWrl83Cm9pFbMkCAwEAAaOCAUcwggFDMAkGA1UdEwQCMAAwHQYDVR0OBBYEFCrJq0CZ/wWZ9RU5yuV9suSxEmdFMB8GA1UdIwQYMBaAFOaiB7T3A0ZsDbFA2mwICx1CQLf+MAkGA1UdEQQCMAAwUwYDVR0fBEwwSjBIoEagRIZCaHR0cHM6Ly9zMy5ldS13ZXN0LTIuYW1hem9uYXdzLmNvbS9rLWNlcnRzL2t0LXF0c3Atbm90LXRydXN0ZWQuY3JsMIGIBggrBgEFBQcBAQR8MHowJQYIKwYBBQUHMAGGGWh0dHA6Ly9vY3NwLmtvbnNlbnR1cy5jb20wUQYIKwYBBQUHMAKGRWh0dHBzOi8vczMuZXUtd2VzdC0yLmFtYXpvbmF3cy5jb20vay1jZXJ0cy9rdC1xdHNwLW5vdC10cnVzdGVkLWNhLmRlcjALBgNVHQ8EBAMCBPAwDQYJKoZIhvcNAQEFBQADggEBADw6sxnUgTbrvoVZ6HAc5eTxKG0QYnjGoA7kU2V3Q5O9i7Ganik7KGl4pn60Jih+hehyNFXUnLOe5xkEaFxyGyM88SH6qUidqqGjS45H4ioeUzEFpx/VaOAitv/F4mo5k7aOtzLwWgRfcJWtx6877ysSGfqlrkloF05Nh1VU9J2ALGp90+nXDX4B86dCXrlYYdmKXhHZWqvcyeNNTAgj3/sjCGnQjZ9oixHp/yUxz44eZV7bAFMRaXvBwwwYZhHw/nlmnXchwvJkwRhd783J6CJ73MM+l73KscT0GXm4apzWuQoV6mCbLcZwfyIcgHQaTDcq55JPY6i+DMSWoEOMMKs=

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus Payment Services Limited (AESEL)
Organization Name: Konsentus Payment Services Limited (AESEL)
Other Name: PSDGB-FCA-kt-661836

---- Issuer Name ----
Country: FR
State/Province: FR
Organisation: Konsentus
Common Name: Konsentus

Serial Number: 00 AE 22 8D 9E 4E 33 CF 77
Version: 3
Signature Algorithm: SHA-1 with RSA Encryption ( 1.2.840.113549.1.1.5 )

Valid From: Tuesday, 19 February 2019 at 15:36:58 Greenwich Mean Time
Valid To: Wednesday, 19 February 2020 at 15:25:20 Greenwich Mean Time

Endpoint Response

{
  "eIDAS": {
    "validity": {
        "validQTSP": false,
        "validSignature": true,
        "notRevoked": true,
        "notExpired": true
    },
    "data": {
        "QTSPCommonName": "CertEurope",
        "authNumber": "PSDGB-FCA-kt-661836",
        "pspSubjectName": "Konsentus Services Europe Limited (AESEL)"
    }
  }
  "homeRegister": {
    "ncaName": "FCA",
    "ncaCountryCode": "GB",
    "registerType": "Home",
    "categoryEntries": [
      {
        "categoryName": Payment Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            7
        ]
      },
      {
        "categoryName": E-Money Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            8
        ]
      }
    ],
  }
}

Authorised PSP with PSD2 roles and a revoked certificate

In this scenario we are running a check on the test PSP "Konsentus Services Europe Limited (AESEL)" who is a British PSP and has the id "kt-661836" in the FCA register. They have an eIDAS certificate that has been revoked. The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles link). They hold the "Authorised" status in the FCA register.

Certificate in PEM Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus Payment Services Limited (AESEL)
Organization Name: Konsentus Payment Services Limited (AESEL)
Other Name: PSDGB-FCA-kt-661836

---- Issuer Name ----
Country: FR
State/Province: FR
Organisation: CertEurope
Common Name: CertEurope

Serial Number: 00 A0 B8 20 80 A4 21 17 34
Version: 3
Signature Algorithm: SHA-1 with RSA Encryption ( 1.2.840.113549.1.1.5 )

Valid From: Tuesday, 19 February 2019 at 16:10:42 Greenwich Mean Time
Valid To: Wednesday, 19 February 2020 at 16:10:42 Greenwich Mean Time

Endpoint Response

{
  "eIDAS": {
    "validity": {
        "validQTSP": true,
        "validSignature": true,
        "notRevoked": false,
        "notExpired": true
    },
    "data": {
        "QTSPCommonName": "CertEurope",
        "authNumber": "PSDGB-FCA-kt-661836",
        "pspSubjectName": "Konsentus Services Europe Limited (AESEL)"
    }
  }
  "homeRegister": {
    "ncaName": "FCA",
    "ncaCountryCode": "GB",
    "registerType": "Home",
    "categoryEntries": [
      {
        "categoryName": Payment Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            7
        ]
      },
      {
        "categoryName": E-Money Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            8
        ]
      }
    ],
  }
}

Authorised PSP with PSD2 roles and certificate has no revocation list

In this scenario we are running a check on the test PSP "Konsentus Services Europe Limited (AESEL)" who is a British PSP and has the id "kt-661836" in the FCA register. They have an eIDAS certificate that has no revocation list (or at least a URI on the certificate that does not lead to a revocation list). The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles link). They hold the "Authorised" status in the FCA register.

Certificate in PEM Format (this is the format the endpoint requires the certificate in)

MIIEnjCCA4agAwIBAgIJAMnOnd/bruigMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNVBAYTAkZSMQswCQYDVQQIEwJGUjETMBEGA1UEChMKQ2VydEV1cm9wZTETMBEGA1UEAxMKQ2VydEV1cm9wZTAeFw0xOTAyMTkxNjIyMjdaFw0yMDAyMTkxNjIyMjdaMIGTMQswCQYDVQQGEwJHQjEyMDAGA1UECgwpS29uc2VudHVzIFNlcnZpY2VzIEV1cm9wZSBMaW1pdGVkIChBRVNFTCkxMjAwBgNVBAMMKUtvbnNlbnR1cyBTZXJ2aWNlcyBFdXJvcGUgTGltaXRlZCAoQUVTRUwpMRwwGgYDVQRhDBNQU0RHQi1GQ0Eta3QtNjYxODM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVPCv0psAdj+MUeUjUw2MqSfruyKqyhtVOisvPZD/Z8P0eR65EnR3pPVP1/tZZcTXG9OMh85ZwkbSr1p0omcYHzalBcMqz3Gq6LcXEGG9C6sJzxo3MjMTr5X7LLDGoirfM6avYNNeQVP7NElNrTLPFrOtuuIe8Wc9b/zY8Cwz+YNWAGbZRHkra/rf4Gh/iqoe4nC8AD3gV3u1Id8kLgU/SkZhW+D6D+Ri3gHyjOolJmFMi1YnAEqcHrcZPFrope97H7YvM4A1a4hhwLMSfToGIO8ZY5Co/1wkeV4YqAeF0txRfLprtokPrGqw2wKsPw6JYW8s88lJ5TzW+fIEqHpOwIDAQABo4IBQTCCAT0wCQYDVR0TBAIwADAdBgNVHQ4EFgQUAfX/vFaESU0GObB5BGhZaLNwH5gwHwYDVR0jBBgwFoAUb/l8qxTgoB4+zG7bvOGWjwQ4qLEwCQYDVR0RBAIwADBQBgNVHR8ESTBHMEWgQ6BBhj9odHRwczovL3MzLmV1LXdlc3QtMi5hbWF6b25hd3MuY29tL2stY2VydHMva3QtY3JsLXVybC1lcnJvci5jcmwwgYUGCCsGAQUFBwEBBHkwdzAlBggrBgEFBQcwAYYZaHR0cDovL29jc3Aua29uc2VudHVzLmNvbTBOBggrBgEFBQcwAoZCaHR0cHM6Ly9zMy5ldS13ZXN0LTIuYW1hem9uYXdzLmNvbS9rLWNlcnRzL2t0LWNybC11cmwtZXJyb3ItY2EuZGVyMAsGA1UdDwQEAwIE8DANBgkqhkiG9w0BAQUFAAOCAQEAe60LSm3DbNepBedWS16MxlAobtz4ktPN/i03aBfUkcbcm8L//fONQlgJBbVuZZI8G5kkT1L0WkrjxYOrHCmwbIj8VZfLxl9nHIhj6F/H/9/TG0/J+aEPox7A3Yt++hMnJtrbL5LJurDnNnfpQe01MHP+W+2SMBHMgKNER1V0tno/zd8+tnZsvGj4vHIAXCX0sRqhXMVPPKO7J4gY9kuiNtIKKmFQPqeHibovsEFHeZaPUd1vbhhL7pTOezkwL/g61OdDWxajpo2DAoeOZsjYQsclPh5CTEQH61CAdm6OgUKgEUkhE3pknNhEEMhhx5F6dQg76H/YJJe2kxSV+QN8GQ==

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus Payment Services Limited (AESEL)
Organization Name: Konsentus Payment Services Limited (AESEL)
Other Name: PSDGB-FCA-kt-661836

---- Issuer Name ----
Country: FR
State/Province: FR
Organisation: CertEurope
Common Name: CertEurope

Serial Number: 00 C9 CE 9D DF DB AE E8 A0
Version: 3
Signature Algorithm: SHA-1 with RSA Encryption ( 1.2.840.113549.1.1.5 )

Valid From: Tuesday, 19 February 2019 at 16:22:27 Greenwich Mean Time
Valid To: Wednesday, 19 February 2020 at 16:22:27 Greenwich Mean Time

Endpoint Response

{
  "eIDAS": {
    "validity": {
        "validQTSP": true,
        "validSignature": true,
        "notRevoked": false,
        "notExpired": true
    },
    "data": {
        "QTSPCommonName": "CertEurope",
        "authNumber": "PSDGB-FCA-kt-661836",
        "pspSubjectName": "Konsentus Services Europe Limited (AESEL)"
    }
  }
  "homeRegister": {
    "ncaName": "FCA",
    "ncaCountryCode": "GB",
    "registerType": "Home",
    "categoryEntries": [
      {
        "categoryName": Payment Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            7
        ]
      },
      {
        "categoryName": E-Money Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            8
        ]
      }
    ],
  }
}

Authorised PSP with PSD2 roles and certificate with an invalid signature

In this scenario we are running a check on the test PSP "Konsentus Services Europe Limited (AESEL)" who is a British PSP and has the id "kt-661836" in the FCA register. They have an eIDAS certificate that has a signature that tells us that the contents of the certificate have been tampered with. The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles link). They hold the "Authorised" status in the FCA register.

Certificate in PEM Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus Payment Services Limited (AESEL)
Organization Name: Konsentus Payment Services Limited (AESEL)
Other Name: PSDGB-FCA-kt-661836

---- Issuer Name ----
Country: FR
State/Province: FR
Organisation: CertEurope
Common Name: CertEurope

Serial Number: 00 9B 11 50 5A 06 9D 0A A3
Version: 3
Signature Algorithm: SHA-1 with RSA Encryption ( 1.2.840.113549.1.1.5 )

Valid From: Tuesday, 19 February 2019 at 16:26:49 Greenwich Mean Time
Valid To: Wednesday, 19 February 2020 at 16:26:49 Greenwich Mean Time

Endpoint Response

{
  "eIDAS": {
    "validity": {
        "validQTSP": true,
        "validSignature": false,
        "notRevoked": true,
        "notExpired": true
    },
    "data": {
        "QTSPCommonName": "CertEurope",
        "authNumber": "PSDGB-FCA-kt-661836",
        "pspSubjectName": "Konsentus Services Europe Limited (AESEL)"
    }
  }
  "homeRegister": {
    "ncaName": "FCA",
    "ncaCountryCode": "GB",
    "registerType": "Home",
    "categoryEntries": [
      {
        "categoryName": Payment Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            7
        ]
      },
      {
        "categoryName": E-Money Institution,
        "pspLegalName": "Konsentus Services Europe Limited (AESEL)",
        "pspAuthStatus": "Authorised",
        "pspPaymentServices": [
            8
        ]
      }
    ],
  }
}
Last Updated: 8/12/2019, 11:28:39 AM