1This is the same as rsa-pkcs1-sha1.pem, however the ALGORITHM has been change 2to have SHA256 instead of SHA1. Using this algorithm verification should fail. 3 4 5 6-----BEGIN PUBLIC KEY----- 7MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQClbkoOcBAXWJpRh9x+qEHRVvLsDjatUqRN/rH 8mH3rZkdjFEFb/7bFitMDyg6EqiKOU3/Umq3KRy7MHzqv84LHf1c2VCAltWyuLbfXWce9jd8CSHL 9I8Jwpw4lmOb/idGfEFrMLT8Ms18pKA4Thrb2TE7yLh4fINDOjP+yJJvZohNwIDAQAB 10-----END PUBLIC KEY----- 11 12$ openssl asn1parse -i < [PUBLIC KEY] 13 0:d=0 hl=3 l= 159 cons: SEQUENCE 14 3:d=1 hl=2 l= 13 cons: SEQUENCE 15 5:d=2 hl=2 l= 9 prim: OBJECT :rsaEncryption 16 16:d=2 hl=2 l= 0 prim: NULL 17 18:d=1 hl=3 l= 141 prim: BIT STRING 18 19 20 21-----BEGIN ALGORITHM----- 22MA0GCSqGSIb3DQEBCwUA 23-----END ALGORITHM----- 24 25$ openssl asn1parse -i < [ALGORITHM] 26 0:d=0 hl=2 l= 13 cons: SEQUENCE 27 2:d=1 hl=2 l= 9 prim: OBJECT :sha256WithRSAEncryption 28 13:d=1 hl=2 l= 0 prim: NULL 29 30 31 32-----BEGIN DATA----- 33zch9oiPXht87ReC7vHITJtHuKvgGzDFUdcxvDZxm4bYjcdRc4jkuGskoRMMQEC8Vag2NUsH0xAu 34jqmUJV4bLdpdXplY7qVj+0LzJhOi1F6PV9RWyO4pB50qoZ2k/kN+wYabobfqu5kRywA5fIJRXKc 35vr538Gznjgj0CY+6QfnWGTwDF+i2DUtghKy0LSnjgIo7w3LYXjMRcPy/fMctC3HClmSLOk0Q9BY 36pXQgHqmJcqydE/Z6o/SI8QlNwKYKL0WvgJUbxMP0uM7k20mduCK7RtzMYt1CgFn0A== 37-----END DATA----- 38 39 40 41-----BEGIN SIGNATURE----- 42A4GBAGvDoGZWhCkwokfjDVhktNgZI2unxollhirX28TiSvKOhrtTHwM1i+X7dHd8YIb4UMrviT8 43Nb8wtDJHsATaTtOoAuAzUmqxOy1+JEa/lOa2kqPOCPR0T5HLRSQVHxlnHYX89JAh9228rcglhZ/ 44wJfKsY6aRY/LY0zc6O41iUxITX 45-----END SIGNATURE----- 46 47$ openssl asn1parse -i < [SIGNATURE] 48 0:d=0 hl=3 l= 129 prim: BIT STRING 49