Extract status element (/wst:RequestSecurityTokenResponse/wst:Status) from RSTR. It's possible to Validate Security Token only.
Extracted WstStatus or null
CustomXmlSecTokenServiceClient Class | com.pingidentity.Security.STS.Client Namespace