eIDAS Test Scenarios

The test scenarios found below demonstrate how the Konsentus PSP checking service, GET /v1/PSP/eIDAS, will behave. We have generated test data and test certificates for the below 8 scenarios.

You can use all 8 certificates for our sandbox environment. We can provide end to end test certificates for all scenarios. These can be requested via our support desk.

The numbers representing roles returned in these test scenarios relate to the PSD2 payment services. We've provided a document mapping between the numeric roles to their descriptions.

Running the scenarios

To keep the scenarios separate from any real country or NCA, a fake ISO 3166 country code, 'XX', has been set up, with the NCA identifier of 'XX-TEST'. For scenario 1 another fake country code, 'XY' (with the NCA identifier 'XY-TEST') has been created to demonstrate the passporting out of payment services. An example of how to query the endpoint using cURL is provided below.

You will need to generate your basic auth header from your provided API credentials and supply an fi_reference_id.

Scenario 1:

curl --location --request GET 'https://sandbox.konsentus.com/v1/psp/eidas?jurisdiction=xx' \
--header 'eidas: MIIEvzCCA6egAwIBAgIUbXNfMDC1ro/nCnzxRDJzDgM2TgcwDQYJKoZIhvcNAQELBQAwdDELMAkGA1UEBhMCR0IxDzANBgNVBAkMBkxvbmRvbjEbMBkGA1UEAwwSS29uc2VudHVzIFFUU1AgLSAxMRswGQYDVQQKDBJLb25zZW50dXMgUVRTUCAtIDExGjAYBgNVBAsMEUtvbnNlbnR1cyBUZXN0aW5nMCAXDTIwMDMwNDEzNTYzN1oYDzIxMjAwMjEwMTM1NjM3WjCBjjELMAkGA1UEBhMCR0IxDzANBgNVBAkMBkxvbmRvbjEaMBgGA1UEAwwRS29uc2VudHVzIFBTUCAtIDExGjAYBgNVBAoMEUtvbnNlbnR1cyBQU1AgLSAxMRowGAYDVQQLDBFLb25zZW50dXMgVGVzdGluZzEaMBgGA1UEYQwRUFNEWFgtVEVTVC0wMDAwMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt1HJp5QfE+VIAuaZPj5UulknqrXMWxb5oqag0SszlP8t70l8Szmt+7UiLNpCjYjcA6qpeP6Mo06CpWJFqcIZpigZJUDQcsCQHpe+6JwJf6wjmse23/fM4/HFUYglYmdiwrmQQ9TuVCvJABaDeUsWPJY8ONeaLOJ1kMtEL9dml2EI0rb7+YBQT9Yc7j7Jt3WCWSJdzn5d+NzflKbt6iYutVt76zUqko9bRmyxNKyvjU/y+lrOtcTSdbm7nWoYTrrVkcHGIp7jtnwe22Vwz512s2ISa/HPI4eJkJ8HlvrlL+K859drVooRqcSh9Z0CVvkUpIje8ndwwpNWIMJwv4L31AgMBAAGjggEqMIIBJjAYBgNVBGEEEVBTRFhYLVRFU1QtMDAwMDAxMGoGCCsGAQUFBwEBBF4wXDBaBggrBgEFBQcwAoZOaHR0cDovL2stdGVzdC1jZXJ0aWZpY2F0ZXMuczMuZXUtd2VzdC0yLmFtYXpvbmF3cy5jb20vc2NlbmFyaW9fMV9xdHNwX2NlcnQucGVtMF4GA1UdHwRXMFUwU6BRoE+GTWh0dHA6Ly9rLXRlc3QtY2VydGlmaWNhdGVzLnMzLmV1LXdlc3QtMi5hbWF6b25hd3MuY29tL3NjZW5hcmlvXzFfcXRzcF9jcmwuZGVyMB8GA1UdIwQYMBaAFNOKG2rwTAOeehzw1fp1GzxhFCr+MB0GA1UdDgQWBBQ/3LUfN+9vlxzIgEyY6N3n1AhGqDANBgkqhkiG9w0BAQsFAAOCAQEAd+YzVk4PKGNrjBbtYpprJLtkRhpSImua866YUgpdU7vJHhip4yqpLAcu0U2jHnSQyTAvsCK3hbdTHKVclnAn7R9lWIjyeLPWRUifKkjmyTdRnz/kz1RW94Y6DpNlsD9NDrsBc1yAUNcz77KKctObO9ZQ4qbklbQZNuGA4Du/t9/Vkzdi55SZCXDtwoOLkBj/Dqc42YQhdtSJFV8NSqZVyiFl14gWlafIm3KFzDRQhjY8OaA+gOwSbYM5e/a9xrq+qRngE4uQs87agTaz0XCwjTseE4RP3aBpY7UtlFMjy2hX2XFQ9ZSdmXyEXHxUqPI8hQmQLM05URHc09QQvHQaOQ==' \
--header 'version: latest' \
--header 'fi_reference_id: {See below for information on what a valid fi_reference_id is}' \
--header 'transaction_reference: {See below for information on what a valid transaction_reference is}' \
--header 'Authorization: Basic {basic auth header}'

Scenario 1 - Authorised PSP with PSD2 roles and a valid certificate

In this scenario, we are running a check on the test PSP "Konsentus PSP - 1", which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000001" in the NCA register with name XX-TEST. They have a valid eIDAS certificate that passes all of our checks and it has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles. They hold the "Authorised" status in the register XX-Test.

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Sample of information in a certificate

---- Subject Name ----
Country: GB
Common Name: Konsentus PSP - 1
Organization Name: Konsentus PSP - 1
Other Name: PSDXX-TEST-000001

---- Issuer Name ----
Country: GB
Street: London
Organisation: London
Common Name: Konsentus QTSP - 1

Serial Number: 3d:7b:f5:37:75:66:c7:0f:26:5d:fd:42:4e:6f:87:b3:b8:1b:49:73
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 04-03-2020 13:56:37 GMT
Valid To:   10-02-2120 13:56:37 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 1",
            "authNumber": "PSDXX-TEST-000001",
            "QTSPCommonName": "Konsentus QTSP - 1",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 1",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [8]
            },
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 1",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [7]
            }
        ]
    }
}

Scenario 1 - Passporting Out

The test PSP "Konsentus PSP - 1" is authorised to provide the same payment services but in a different country, with country code 'XY'. To demonstrate this, change the jurisdiction in the URL query parameter from xx to xy e.g. https://sandbox.konsentus.com/v1/psp/eidas?jurisdiction=xy.

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 1",
            "authNumber": "PSDXX-TEST-000001",
            "QTSPCommonName": "Konsentus QTSP - 1",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 1",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [7],
                "passportOut": {
                    "countryCode": "XY",
                    "paymentServices": [7]
                }
            },
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 1",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [8],
                "passportOut": {
                    "countryCode": "XY",
                    "paymentServices": [8]
                }
            }
        ]
    },
    "hostRegister": {
        "ncaName": null,
        "ncaCountryCode": "XY",
        "registerType": "Host",
        "categoryEntries": [],
        "warning": ["The PSP Konsentus PSP - 1 could not be found in any XY register"]
    }
}

More examples of Passporting Out scenarios are detailed in Passporting Response Examples

Scenario 2 - Unauthorised PSP with PSD2 roles and a valid certificate

In this scenario, we are running a check on the test PSP "Konsentus PSP - 2". Which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000002" in the NCA register with name XX-Test. They have a valid eIDAS certificate that passes all of our checks and it has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles. They hold the "Unauthorised" status in the register XX-Test.

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Sample of information in a certificate

---- Subject Name ----
Country: GB
Common Name: Konsentus PSP - 2
Organization Name: Konsentus PSP - 2
Other Name: PSDXX-TEST-000002

---- Issuer Name ----
Country: GB
Street: London
Organisation: London
Common Name: Konsentus QTSP - 2

Serial Number: 49:68:32:5b:4a:3d:51:24:70:c6:db:50:2f:94:ea:88:0c:6c:dd:9c
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 04-03-2020 13:56:39 GMT
Valid To:   10-02-2120 13:56:39 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 2",
            "authNumber": "PSDXX-TEST-000002",
            "QTSPCommonName": "Konsentus QTSP - 2",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 2",
                "pspAuthStatus": "Unauthorised",
                "pspPaymentServices": [8]
            },
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 2",
                "pspAuthStatus": "Unauthorised",
                "pspPaymentServices": [7]
            }
        ]
    }
}

Scenario 3 - Authorised PSP with no PSD2 roles and a valid certificate

In this scenario, we are running a check on the test PSP "Konsentus PSP - 3". Which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000003" in the NCA register with name XX-Test. They have a valid eIDAS certificate that passes all of our checks and it has the roles 1 and 2 (see Annex I in the PSD2 Directive for definitions of these roles). They hold the "Authorised" status in the register XX-Test.

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus PSP - 3
Organization Name: Konsentus PSP - 3
Other Name: PSDXX-TEST-000003

---- Issuer Name ----
Country: GB
Street: London
Organisation: London
Common Name: Konsentus QTSP - 3

Serial Number: 05:e6:44:e7:e4:bd:10:18:dc:0c:6b:b9:df:a4:7e:01:f7:2d:d2:cb
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 04-03-2020 13:56:40 GMT
Valid To:   10-02-2120 13:56:40 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 3",
            "authNumber": "PSDXX-TEST-000003",
            "QTSPCommonName": "Konsentus QTSP - 3",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 3",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [2]
            },
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 3",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [1]
            }
        ]
    }
}

Scenario 4 - Authorised PSP with PSD2 roles and an expired certificate

In this scenario, we are running a check on the test PSP "Konsentus PSP - 4". Which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000004" in the NCA register with name XX-Test. They have an eIDAS certificate that has expired. A certificate chain that contains an expired certificate is considered broken and revoked, therefore the certificate signature and certificate revocation are returned as not valid. The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles). They hold the "Authorised" status in the register XX-Test.

Request Certificate

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus PSP - 4
Organization Name: Konsentus PSP - 4
Other Name: PSDXX-TEST-000004

---- Issuer Name ----
Country: GB
Street: London
Organisation: London
Common Name: Konsentus QTSP - 4

Serial Number: 66:2d:ff:00:19:78:c6:e9:38:8f:06:d4:56:1a:4e:55:6b:fa:99:b3
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 04-03-2020 13:56:41 GMT
Valid To:   10-02-2120 13:56:41 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 4",
            "authNumber": "PSDXX-TEST-000004",
            "QTSPCommonName": "Konsentus QTSP - 4",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": false
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 4",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [8]
            },
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 4",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [7]
            }
        ]
    }
}

Scenario 5 - Authorised PSP with PSD2 roles and a certificate issued by an untrusted QTSP

In this scenario, we are running a check on the test PSP "Konsentus PSP - 5". Which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000005" in the NCA register with name XX-TEST. They have an eIDAS certificate that has been issued by a QTSP that is not trusted. The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles). They hold the "Authorised" status in the register XX-Test.

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus PSP - 5
Organization Name: Konsentus PSP - 5
Other Name: PSDXX-TEST-000005

---- Issuer Name ----
Country: GB
Street: London
Organisation: Konsentus Untrusted QTSP - 5
Common Name: Konsentus Untrusted QTSP - 5

Serial Number: 5a:fa:1e:d4:43:dc:aa:01:5d:a4:49:8d:8a:0a:93:e1:99:84:bf:17
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 04-03-2020 at 13:56:43 GMT
Valid To: 10-02-2120 at 13:56:43 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 5",
            "authNumber": "PSDXX-TEST-000005",
            "QTSPCommonName": "Konsentus Untrusted QTSP - 5",
            "QTSPSource": "Unknown",
            "QTSPJurisdiction": "Unknown"
        },
        "validity": {
            "validQTSP": false,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 5",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [7]
            },
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 5",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [8]
            }
        ]
    }
}

Scenario 6 - Authorised PSP with PSD2 roles and a revoked certificate

In this scenario, we are running a check on the test PSP "Konsentus Expired PSP - 6". Which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000006" in the NCA register with name XX-TEST. They have an eIDAS certificate that has been revoked. The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles). They hold the "Authorised" status in the register XX-Test.

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus Revoked PSP - 6
Organization Name: Konsentus Revoked PSP - 6
Other Name: PSDXX-TEST-000006

---- Issuer Name ----
Country: GB
Street: London
Organisation: Konsentus QTSP - 6
Common Name: Konsentus QTSP - 6

Serial Number: 27:7e:48:96:f5:73:c3:57:dc:7f:f0:b6:57:81:41:c6:8b:53:8e:88
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 08-03-2020 at 11:07:58 GMT
Valid To: 14-02-2120 at 11:07:58 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus Revoked PSP - 6",
            "authNumber": "PSDXX-TEST-000006",
            "QTSPCommonName": "Konsentus QTSP - 6",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": false,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 6",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [
                    7
                ]
            },
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 6",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [
                    8
                ]
            }
        ]
    }

Scenario 7 - Authorised PSP with PSD2 roles and certificate has no revocation list

In this scenario, we are running a check on the test PSP "Konsentus No Revocation PSP - 7". Which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000007" in the NCA register with name XX-TEST. They have an eIDAS certificate that has no revocation list (or at least a URI on the certificate that does not lead to a revocation list). The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles). They hold the "Authorised" status in the register XX-Test.

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus No Revocation PSP - 7
Organization Name: Konsentus No Revocation PSP - 7
Other Name: PSDXX-TEST-000007

---- Issuer Name ----
Country: GB
Street: London
Organisation: Konsentus No Revocation QTSP - 7
Common Name: Konsentus No Revocation QTSP - 7

Serial Number: 53:21:33:ba:3c:eb:1a:a5:26:9c:f4:a0:a9:fb:2e:b5:f8:b2:04:77
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 04-03-2020 at 13:56:46 GMT
Valid To: 10-02-2120 at 13:56:46 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus No Revocation PSP - 7",
            "authNumber": "PSDXX-TEST-000007",
            "QTSPCommonName": "Konsentus No Revocation QTSP - 7",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": false,
            "notExpired": true
        },
        "errors": [
            {
                "code": "ocsp_response_network_error",
                "title": "A network error occurred while requesting the OCSP response.",
                "link": "https://developers.konsentus.com/api-reference/error-codes.html"
            },
            {
                "code": "crl_network_error",
                "title": "A network error occurred while retrieving the Certificate Revocation List.",
                "link": "https://developers.konsentus.com/api-reference/error-codes.html"
            }
        ]
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 7",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [7]
            },
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 7",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [8]
            }
        ]
    }
}

Scenario 8 - Authorised PSP with PSD2 roles and certificate with an invalid signature

In this scenario, we are running a check on the test PSP "Konsentus PSP - 8". Which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000008" in the NCA register with name XX-TEST. They have an eIDAS certificate that has a signature that tells us that the contents of the certificate have been tampered with. The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles). They hold the "Authorised" status in the register XX-Test.

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus PSP - 8
Organization Name: Konsentus PSP - 8
Other Name: PSDXX-TEST-000008

---- Issuer Name ----
Country: GB
Street: London
Organisation: Konsentus - 8
Common Name: Konsentus - 8

Serial Number: 01:90:56:33:91:5e:63:26:6e:26:28:6b:15:51:6e:c3:99:94:1a:07
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 04-03-2020 at 13:56:47 GMT
Valid To: 10-02-2120 at 13:56:47 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 8",
            "authNumber": "PSDXX-TEST-000008",
            "QTSPCommonName": "Konsentus - 8",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": false,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 8",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [7]
            },
            {
                "categoryName": "E-Money Institution",
                "pspLegalName": "Konsentus PSP - 8",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [8]
            }
        ]
    }
}

Scenario 9 - Authorised PSP with PSD2 roles and certificate with TPR Passporting into the UK

In this scenario, we are running a check on the test PSP "Konsentus PSP - 9". Which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000009" in the NCA register with name XX-TEST.

The PSP has the roles 7 and 8 (see Annex I in the PSD2 Directive for definitions of these roles). They hold the "Authorised" status in the register XX-Test.

Additionally when checking the GB jurisdiction this PSP has passporting in permissions for roles 7 and 8 granted by the FCA according to the Temporary Permissions Regime

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Certificate Information

---- Subject Name ----
Country: GB
Common Name: Konsentus PSP - 9
Organization Name: Konsentus PSP - 9
Other Name: PSDXX-TEST-000009

---- Issuer Name ----
Country: GB
Street: London
Organisation: Konsentus QTSP - 9
Common Name: Konsentus QTSP - 9

Serial Number: 5E:B6:7C:34:24:2E:70:5A:69:54:C0:75:B4:94:B6:9B:6D:35:12:3C
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 20-01-2021 at 10:13:26 GMT
Valid To: 28-12-2120 at 10:13:26 GMT

So if you make the call:

curl --location --request GET 'https://sandbox.konsentus.com/v1/psp/eidas?jurisdiction=gb' \
--header 'eidas: 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' \
--header 'version: latest' \
--header 'fi_reference_id: {See below for information on what a valid fi_reference_id is}' \
--header 'transaction_reference: {See below for information on what a valid transaction_reference is}' \
--header 'Authorization: Basic {basic auth header}'

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 9",
            "authNumber": "PSDXX-TEST-000009",
            "QTSPCommonName": "Konsentus QTSP - 9",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 9",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [7, 8]
            }
        ]
    },
    "hostRegister": {
        "ncaCountryCode": "GB",
        "registerType": "Host",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 9",
                "pspAuthStatus": "Authorised",
                "passportIn": {
                    "paymentServices": [7, 8]
                }
            }
        ]
    }
}

Scenario 10 - Authorised PSP with PSD2 Role and a valid certificate

In this scenario, we are running a check on the test PSP "Konsentus PSP - 10", which is a PSP from the fictional European country Testonia with ISO 3166 country code of 'XX' and has the eIDAS authorisation number of "PSDXX-TEST-000010" in the NCA register with name XX-TEST. They have a valid eIDAS certificate that passes all of our checks and it has the role 5 (see Annex I in the PSD2 Directive for definitions of these roles). They hold the "Authorised" status in the register XX-Test.

Certificate in Base 64 Format (this is the format the endpoint requires the certificate in)

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

Sample of information in a certificate

---- Subject Name ----
Country: GB
Common Name: Konsentus PSP - 10
Organization Name: Konsentus PSP - 10
Other Name: PSDXX-TEST-000010

---- Issuer Name ----
Country: GB
Street: London
Organisation: Konsentus QTSP - 10
Common Name: Konsentus QTSP - 10

Serial Number: 63:1f:7d:05:f5:1a:12:b6:6f:ae:55:b5:17:01:f8:c8:7c:d8:3e:0a
Version: 3
Signature Algorithm: SHA-256 with RSA Encryption ( 1.2.840.113549.1.1.11 )

Valid From: 03-03-2021 10:14:40 GMT
Valid To:   08-02-2121 10:14:40 GMT

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 10",
            "authNumber": "PSDXX-TEST-000010",
            "QTSPCommonName": "Konsentus QTSP - 10",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 10",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [5]
            }
        ]
    }
}

Scenario 10 - Passporting Out

The test PSP "Konsentus PSP - 10" is authorised to provide the same payment services but in a different country, with country code 'XY'. To demonstrate this, change the jurisdiction in the URL query parameter from xx to xy e.g. https://sandbox.konsentus.com/v1/psp/eidas?jurisdiction=xy.

Endpoint Response

{
    "eIDAS": {
        "data": {
            "pspSubjectName": "Konsentus PSP - 10",
            "authNumber": "PSDXX-TEST-000010",
            "QTSPCommonName": "Konsentus QTSP - 10",
            "QTSPSource": "QTSP",
            "QTSPJurisdiction": "EEA"
        },
        "validity": {
            "validQTSP": true,
            "validSignature": true,
            "notRevoked": true,
            "notExpired": true
        }
    },
    "homeRegister": {
        "ncaName": "XX-TEST",
        "ncaCountryCode": "XX",
        "registerType": "Home",
        "categoryEntries": [
            {
                "categoryName": "Payment Institution",
                "pspLegalName": "Konsentus PSP - 10",
                "pspAuthStatus": "Authorised",
                "pspPaymentServices": [5],
                "passportOut": {
                    "countryCode": "XY",
                    "paymentServices": [5]
                }
            }
        ]
    },
    "hostRegister": {
        "ncaName": null,
        "ncaCountryCode": "XY",
        "registerType": "Host",
        "categoryEntries": [],
        "warning": ["The PSP Konsentus PSP - 10 could not be found in any XY register"]
    }
}

More examples of Passporting Out scenarios are detailed in Passporting Response Examples

Last Updated: 5/4/2021, 11:24:13 AM