Trust Information
Root certificates, standards, and trust infrastructure for this playground
About This Playground
This playground is built on the Paradym API — a platform for issuing and verifying digital credentials. You can create a free account and get started at paradym.id. Read more in the Paradym documentation.
The credentials issued through this playground are for testing and demonstration purposes only. They are cryptographically signed using the certificates listed below.
Standards & Protocols
OpenID for Verifiable Credential Issuance 1.0
Protocol used for issuing credentials from the issuer to the holder's wallet.
OpenID for Verifiable Presentations 1.0
Protocol used for presenting credentials from the holder to a verifier. This playground uses the x509_hash client ID scheme, where the verifier is identified by the hash of its X.509 certificate.
SD-JWT VC
A JSON-based credential format allowing holders to selectively disclose specific claims. Credentials are signed using P-256 X.509 certificates.
ISO/IEC 18013-5 mDL / mDoc
A CBOR-based credential format standardized for mobile documents such as driving licenses (mDL). Supports selective disclosure and device binding. Credentials are signed using P-256 X.509 certificates.
OAuth Token Status List
Mechanism used for credential revocation. The status list endpoint is embedded within each credential; verifiers automatically check it during the verification process.
See also: Standards and protocols used by Paradym
Root Certificates
The following root certificates are used for credential issuance/signing and verification. Add these certificates to your wallet's trust store to verify credentials issued by this playground.
Issuer Certificate
Used for signing issued credentials and status lists.
-----BEGIN CERTIFICATE----- MIICNTCCAdqgAwIBAgIRAL8XEqyjeaBChCBiEq9aoJ4wCgYIKoZIzj0EAwIwKjEb MBkGA1UEAxMSUGFyYWR5bSBQbGF5Z3JvdW5kMQswCQYDVQQGEwJOTDAeFw0yNjA2 MDMxMDIzMjRaFw0zMTA2MDMxMDIzMjRaMCoxGzAZBgNVBAMTElBhcmFkeW0gUGxh eWdyb3VuZDELMAkGA1UEBhMCTkwwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAATA IWaxbvaKVB9XwLrOimTzlDtRmJjdlWwD4oUQ2fyaMzZPbVB0VjbR6IKoDT1sDnUZ Et83uvRNB0EjjgsbfMIVo4HgMIHdMB0GA1UdDgQWBBQjI1BsKQEbfw11tcFlPQLe sSVueDAOBgNVHQ8BAf8EBAMCAQYwKAYDVR0SBCEwH4YdaHR0cHM6Ly9wbGF5Z3Jv dW5kLnBhcmFkeW0uaWQwEgYDVR0TAQH/BAgwBgEB/wIBADBuBgNVHR8EZzBlMGOg YaBfhl1odHRwczovL21ldGFkYXRhLnBhcmFkeW0uaWQvY2VydGlmaWNhdGUtcmV2 b2NhdGlvbi1saXN0cy8xNjc4ZmVlNC1iZmQ1LTQ3ZWEtYjRlNC1mNGM5YmIxYTdk ZmIwCgYIKoZIzj0EAwIDSQAwRgIhAIWz+j9gFJxVTcchuu5L8d9j5bGOpDlmI+yE U2Qq6EWoAiEA0IC/umNhOjjEchGtKCgu+0LjW4bywi6AxvcwASBGTBw= -----END CERTIFICATE-----
Verifier Certificate
Used for identifying the verifier in OpenID4VP presentations via the x509_hash client ID scheme.
-----BEGIN CERTIFICATE----- MIICMzCCAdmgAwIBAgIQUIrWwRRwpN1wZkJ3kddlkTAKBggqhkjOPQQDAjAqMRsw GQYDVQQDExJQYXJhZHltIFBsYXlncm91bmQxCzAJBgNVBAYTAk5MMB4XDTI2MDYw MzEwMjMwNVoXDTMxMDYwMzEwMjMwNVowKjEbMBkGA1UEAxMSUGFyYWR5bSBQbGF5 Z3JvdW5kMQswCQYDVQQGEwJOTDBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABFLp pN8WJtE5sYI8xjfV5y0wmPP+ZZANpbxsQIDjBm72/N2Z4XrzEesuR4mPqdJ/yzrP x3plR7jg1oUO8YGx3wOjgeAwgd0wHQYDVR0OBBYEFJGF8RBTTXxJM8R1X0MyDdmf 0srGMA4GA1UdDwEB/wQEAwIBBjAoBgNVHRIEITAfhh1odHRwczovL3BsYXlncm91 bmQucGFyYWR5bS5pZDASBgNVHRMBAf8ECDAGAQH/AgEAMG4GA1UdHwRnMGUwY6Bh oF+GXWh0dHBzOi8vbWV0YWRhdGEucGFyYWR5bS5pZC9jZXJ0aWZpY2F0ZS1yZXZv Y2F0aW9uLWxpc3RzL2ZlM2VlNzA0LTFmOTQtNDA4Yi1iMTMzLWYxZGRhNzI3N2E3 ZTAKBggqhkjOPQQDAgNIADBFAiEA6D8eadYijkuOVFyxCfcoWFpLDtL6SrizvRC1 qt+SjnYCICqjTVpmspHVTIhG6yDbEezgX5MGe+B+azfy5JFl5f+B -----END CERTIFICATE-----