> What are these systems?

We could have a system where I authenticate myself against a government service only, or also licensed third party providers, they then provide me with signed proof-of-age certificates that can also be single use, and then I use them to proof my age with a particular service.