Self-Signed certificates created by Fortify are invalid

[JanSlabon]

I just did this:

Resulting in the following certificate: -----BEGIN CERTIFICATE----- MIICuDCCAaCgAwIBAgIBATANBgkqhkiG9w0BAQsFADAXMRUwEwYDVQQDEwxGb3J0 aWZ5LVRlc3QwHhcNMjIxMjAxMjA0MjQ0WhcNMjMxMjAxMjA0MjQ0WjAXMRUwEwYD VQQDEwxGb3J0aWZ5LVRlc3QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8xS3r9pN4gTk5z31nTWzdAOIgl/1ehVBefZ0/TLB6uCuc2XzgBauXGJkYbJgr r65OiNtEaGZzHg2ORcZnJ/x3I4vFCJL62i+BydqlY61jA46YaZCbVtInpKI9DVAc CCohtBmEz0Q/rtwnUbtUHKf+T+F4K6R9HZBxZhZBlw5lYrDpDMqh0KfvI2S5JbCd u/KlwQ5GeX3lb8EWJ1pLAls8fUr74uIdCMMbLPiyI2EH94D4/9fQ3B0RzqOvNH+a PjExDnep5McPqXQMJS5mrUz0zy0g8ui1j5SoJzXg9sRy4ScJ3UqSqJlSp8V8fq42 f0GgCKEn6iiNBNgWE3u7+OSNAgMBAAGjDzANMAsGA1UdDwQEAwIAgDANBgkqhkiG 9w0BAQsFAAOCAQEAsfpcLg0d0pU5kYvoEEMbLZqL0rKRTHY1Z1qzbaAnE+R9zBya ZH1jfgwqhNLfOT13oiEpuv2HI3dQoNS8qIGFHb6sIOGteNT5ihklc5315J1cH3LB Lt8d8BLezjdbFadldC7bARnJEiYYlB4XrQWCDduGFYlSsuRqCmSoGqcI8KCjuQ6N WQMUPc912F+hRYaGLD1xFR/aNfYS1Nzt06hQfaUAV9PFmy0yIzzo1ebv3t7nwhH4 AxNQKDtvIFnT5PmrasYISc6FkTzy7twFVWCHRMqZSiNSUr2VIQpuBvrHBblJiyn1 zkK93SHIMRM3zdI6mZd38j1jbvOP+2T2goVFJQ== -----END CERTIFICATE-----

The certificate signature cannot be validated by the public key stored in the certificate.

[microshine]

Hi @JanSlabon @peculiar/x509 and PKIjs can not verify the signature too.

Looks like Windows CryptoAPI provider works incorrectly. I'll check it out