<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" />
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
<Reference URI="#SignedXmlId">
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>WRIKhzH4NC67yDGnQxEKqXHvBhI=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>...</SignatureValue>
<KeyInfo>
<X509Data>
<X509Certificate>...</X509Certificate>
</X509Data>
</KeyInfo>
<Object Id="SignedXmlId">
<profile timestamp="Thu, 29 Sep 2016 10:35:39 GMT" xmlns="">
<base>
<fiscalNumber>TINIT-AAABBB72B19D451M</fiscalNumber>
<codice_fiscale>AAABBB72B19D451M</codice_fiscale>
<name>ANDREA</name>
<nome>ANDREA</nome>
<familyName>BABINI</familyName>
<cognome>BABINI</cognome>
<spidCode>MARE-AAABBB72B19D451M</spidCode>
<gender>M</gender>
<sesso>M</sesso>
<placeOfBirth>D451</placeOfBirth>
<localita_nascita>FABRIANO</localita_nascita>
<countyOfBirth>AN</countyOfBirth>
<provincia_nascita>AN</provincia_nascita>
<dateOfBirth>1972-02-19</dateOfBirth>
<data_nascita>19/02/1972</data_nascita>
<email>mail@email.it</email>
<address>VIA DEI FIORI 34</address>
<indirizzo_residenza>VIA DEI FIORI 34</indirizzo_residenza>
<digitalAddress>pec@pec.it</digitalAddress>
<email_certificata>pec@pec.it</email_certificata>
<tipo_autenticazione>DRM</tipo_autenticazione>
<login>AAABBB72B19D451M</login>
<samlResponseBase64>....</samlResponseBase64>
</base>
</profile>
</Object>
</Signature>
Per visualizzare il token Saml decodificare il Base64 del tag <samResponseBase64>
Il risultato è il seguente:
<samlp:Response xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion" ID="_abc" InResponseTo="_eee" Version="2.0" IssueInstant="2016-09-29T08:35:38.8625366Z" Destination="https://cohesion2.regione.marche.it/SPManager/SAMLConsumer.aspx" xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol">
<saml:Issuer>cohesion2.regione.marche.it:idp</saml:Issuer>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
<Reference URI="#_abc">
<Transforms>
<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>...</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>...</SignatureValue>
<KeyInfo>
<X509Data>
<X509Certificate>...</X509Certificate>
</X509Data>
</KeyInfo>
</Signature>
<samlp:Status>
<samlp:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:Success" />
</samlp:Status>
<saml:Assertion Version="2.0" ID="_xxxy" IssueInstant="2016-09-29T08:35:38.8625366Z">
<saml:Issuer>cohesion2.regione.marche.it:idp</saml:Issuer>
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
<Reference URI="#_xxxy">
<Transforms>
<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />
<Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" />
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
<DigestValue>...</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>...</SignatureValue>
<KeyInfo>
<X509Data>
<X509Certificate>....</X509Certificate>
</X509Data>
</KeyInfo>
</Signature>
<saml:Subject>
<saml:NameID NameQualifier="cohesion.regione.marche.it">AAABBB72B19D451M</saml:NameID>
<saml:SubjectConfirmation Method="urn:oasis:names:tc:SAML:2.0:cm:bearer">
<saml:SubjectConfirmationData NotOnOrAfter="2016-09-29T09:35:38.8625366Z" Recipient="https://cohesion2.regione.marche.it/SPManager/SAMLConsumer.aspx" InResponseTo="_eee" />
</saml:SubjectConfirmation>
</saml:Subject>
<saml:Conditions NotBefore="2016-09-29T08:35:38.8625366Z" NotOnOrAfter="2016-09-29T09:35:38.8625366Z">
<saml:AudienceRestriction>
<saml:Audience>cohesion2.regione.marche.it:sp</saml:Audience>
</saml:AudienceRestriction>
</saml:Conditions>
<saml:AuthnStatement AuthnInstant="2016-09-29T08:35:38.8625366Z" SessionIndex="0000">
<saml:AuthnContext>
<saml:AuthnContextClassRef>urn:oasis:names:tc:SAML:2.0:ac:classes:Kerberos</saml:AuthnContextClassRef>
</saml:AuthnContext>
</saml:AuthnStatement>
<saml:AttributeStatement>
<saml:Attribute Name="fiscalNumber" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="codice_fiscale">
<saml:AttributeValue xmlns:q1="http://www.w3.org/2001/XMLSchema" d5p1:type="q1:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">TINIT-AAABBB72B19D451M</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="name" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="nome">
<saml:AttributeValue xmlns:q2="http://www.w3.org/2001/XMLSchema" d5p1:type="q2:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">ANDREA</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="familyName" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="cognome">
<saml:AttributeValue xmlns:q3="http://www.w3.org/2001/XMLSchema" d5p1:type="q3:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">BABINI</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="spidCode" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="spidCode">
<saml:AttributeValue xmlns:q4="http://www.w3.org/2001/XMLSchema" d5p1:type="q4:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">MARE-AAABBB72B19D451M</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="gender" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="sesso">
<saml:AttributeValue xmlns:q5="http://www.w3.org/2001/XMLSchema" d5p1:type="q5:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">M</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="placeOfBirth" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="localita_nascita">
<saml:AttributeValue xmlns:q6="http://www.w3.org/2001/XMLSchema" d5p1:type="q6:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">D451</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="countyOfBirth" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="provincia_nascita">
<saml:AttributeValue xmlns:q7="http://www.w3.org/2001/XMLSchema" d5p1:type="q7:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">AN</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="dateOfBirth" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="data_nascita">
<saml:AttributeValue xmlns:q8="http://www.w3.org/2001/XMLSchema" d5p1:type="q8:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">1972-02-19</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="email" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="email">
<saml:AttributeValue xmlns:q9="http://www.w3.org/2001/XMLSchema" d5p1:type="q9:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">mail@email.it</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="address" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="indirizzo_residenza">
<saml:AttributeValue xmlns:q10="http://www.w3.org/2001/XMLSchema" d5p1:type="q10:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">VIA DEI FIORI 34</saml:AttributeValue>
</saml:Attribute>
<saml:Attribute Name="digitalAddress" NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:basic" FriendlyName="email_certificata">
<saml:AttributeValue xmlns:q11="http://www.w3.org/2001/XMLSchema" d5p1:type="q11:string" xmlns:d5p1="http://www.w3.org/2001/XMLSchema-instance">pec@pec.it</saml:AttributeValue>
</saml:Attribute>
</saml:AttributeStatement>
</saml:Assertion>
</samlp:Response>