Certificate and Useful Links
Certification authorities
In order to use the qualified certificates of "Evrotrust Technologies" AD (electronic signature, electronic signature for natural or legal persons, time stamps, etc.), it is necessary to install the qualified certificates of the certification authorities in your computer system:
Evrotrust RSA Root CA
SHA256: 0xB49CF652B72E586498DB42CD007500912FD1672AFC3DFF0B11B927EA97D41A2D
Evrotrust RSA Operational CA
SHA256: 0x6B2A9FD517A78AF2A62185F33457764FC91EBEE84A55F63F186278DCFDE68A75
Evrotrust Services CA
SHA256: 0x5C7AC0F5ADA82E251B4CB8D701A43A4A5BAF369289D4F29E27AB2690A88162EC
Important: In order to download the certificates, you need to select "Save link as" from the context menu of the link.
I. Access to the electronic certificates registry
1. Certificates used by Evrotrust in its activities
- Evrotrust RSA Root CA
SHA256: 0xB49CF652B72E586498DB42CD007500912FD1672AFC3DFF0B11B927EA97D41A2D - Evrotrust RSA Root CA OCSP
SHA256: 0x77D7A7B05EC6BEA6AD3C80EFDAB2C0CA769F239821659EE7A86BEBE631217F12 - Evrotrust RSA Operational CA
SHA256: 0x6B2A9FD517A78AF2A62185F33457764FC91EBEE84A55F63F186278DCFDE68A75 - Evrotrust RSA Operational CA OCSP
SHA256: 0x10DDCB60DCB2E600FA2ACE15DC79BEF9A3F2E6E375E2722CDBCE6319DD14968E - Evrotrust Services CA
SHA256: 0x5C7AC0F5ADA82E251B4CB8D701A43A4A5BAF369289D4F29E27AB2690A88162EC - Evrotrust Services OCSP
SHA256: 0x49F0685953E721A913494BB825833F0EF9E250D6516F0F6F338A790FEC1B9E29 - Evrotrust Timestamp TSU
SHA256: 0xE6EA4EB4B13CBB2DC233DFB7C3C6164EFCE529B121F47541D5656449173218E1 - Evrotrust QERDS SU
SHA256: 0x0479822A7D7985A1AA159090D5948AEDE330866F16EB50DB3C2C94651C3FD7A4 - Evrotrust QREMS SU
SHA256: 0xC353EBF28B34B0910D7A74E1D0211CD4220A92002D166240A6BC4C923BCF78EE - Evrotrust QPSES SU
SHA256: 0xF3A87F31B7CB2F1963F768C7923DCFD9FA7C03B1DED36921379F259D9D8C3873 - Evrotrust Qualified Validation Service
SHA256: 0xECC709818E0A04E56C00B835C586FF7EC66CE712F1A009F6C8B041F627F70E7B - Evrotrust Qualified Validation Service SU
SHA256: 0xC43E0882978F98CECA29360083AB1EA5A277740714E9C6DBCC023B1618D3549A
Important: In order to download the certificates, you need to select "Save link as" from the context menu of the link.
2. Access to issued certificates
To receive access to an issued certificate, please fill in the form here.
Application form for updating the access to an issued qualified certificate.
3. Certificate Revocation List/CRL
The certificate revocation lists are downloadable, as follows:
Important: In order to download the CRL, you need to select "Save link as" from the context menu of the link.
II. Trust Services
1. Certificate Status Verification Service (OCSP)
Evrotrust provides a service to check the status of issued certificates in real time in an automated, reliable, free and efficient way. This service is available at any time and even after the period of validity of the certificates, based on Online Certificate Status Protocol (OCSP). Each relying party, when accepting a qualified certificate, can verify its real-time OCSP status at: http://ca.evrotrust.com/ocsp. The service is accessed through automated OCSP integration using a dedicated OCSP client, for example by using the OpenSSL library’s “ocsp” command. The result of the check is an issued certificate of status, which is electronically signed by Evrotrust and has legal value. The service is provided in accordance with the requirements of RFC2560.
2. Qualified electronic Timestamp service
The Qualified electronic Timestamp service provides the user of the service in real time with a time stamp token (TST) that confirms the content of an electronic document at that time. The service is available for private use for non-commercial purposes under HTTP protocol at: http://ts.evrotrust.com/tsa, by using a dedicated Timestamp client, e.g. by using the OpenSSL library’s “ts” and the CURL library for transfer of the query to the service. The result is an issued time certificate, which is electronically signed by Evrotrust and has legal value. The service is provided in accordance with the requirements of RFC3161 and ETSI EN 319 422.
In order to use the service with a respective service level or in automated manner, it is necessary to sign an agreement with Evrotrust.
3. Qualified validation service for qualified electronic signatures and seals
Evrotrust provides a qualified validation service for qualified electronic signatures and seals in an automated and reliable manner. As a result of the validation process, the service produces a detailed report in PDF or XML format, according to the ETSI TS 119 102-2 requirements, describing the status, reason, date and time of the provided status, as well as additional data. The report is signed with a qualified electronic seal of Evrotrust. The service ensures that signatures and stamps are created and verified in accordance with European legislation. Evrotrust provides access to the validation service for private, non-commercial purposes at: https://validation.evrotrust.com.
In order to use the service with a respective service level or in automated manner, it is necessary to sign an agreement with Evrotrust.
4. Management (suspension, renewal and termination) of qualified certificates
5. Evrotrust - Tool
Software Requirements:
- MS Windows 2003/Vista/7/2008/8.x/2012/10
- Microsoft DotNet Framework 4.0
6. Smart cards software
Software Requirements:
- MS Windows 2003/Vista/7/2008/8.x/2012/10
- THALES software for operation of smart cards Gemalto/Safenet - 64 bit
- THALES software for operation of smart cards Gemalto/Safenet - 32 bit
- IDEMIA software for operation of smart cards - 64 bit
- IDEMIA software for operation of smart cards - 32 bit
- Charismatics software for operation of smart cards - 64 bit
- Charismatics software for operation of smart cards - 32 bit
7. Expiration date for smart cards and Secure Signature Creation Devices (SSCD), sold by „Evrotrust Technologies“ AD:
| Name of device for secure creation of electronic signature/ seal (SSCD) | Expiration date |
| Oberthur Technologies: IAS ECC v1.0.1 on ID-One Cosmo v7.0.1-n | 31/12/2022 |
| Idemia: IAS ECC V2 on ID-One Cosmo V8.1 | 01/05/2028 |
| Thales/Gemalto: ID Prime 940 / IAS Classic card version 4.4.2 with MOC 1.1 on Multiapp v4.0.1 platform | 15/01/2029 |
Important:
- Smart cards/devices for securely creating a qualified electronic signature/seal (SSCD) must not be used after their expiration date, as in this case the electronic signatures/seals created with their use no longer meet the requirements of eIDAS;
- The full list of all Qualified Signature/Seal Creation Devices and Secure Signature Creation Devices used in EU countries and their expiry date can be found here:https://esignature.ec.europa.eu/efda/notification-tool/#/screen/browse/list/QSCD_SSCD .