2 instantiations of RSASignaturePadding
System.Security.Cryptography (2)
System\Security\Cryptography\RSASignaturePadding.cs (2)
18private static readonly RSASignaturePadding s_pkcs1 = new RSASignaturePadding(RSASignaturePaddingMode.Pkcs1); 19private static readonly RSASignaturePadding s_pss = new RSASignaturePadding(RSASignaturePaddingMode.Pss);
205 references to RSASignaturePadding
Aspire.Dashboard.Components.Tests (1)
tests\Shared\Telemetry\TelemetryTestHelpers.cs (1)
335RSASignaturePadding.Pkcs1);
Aspire.Dashboard.Tests (1)
tests\Shared\Telemetry\TelemetryTestHelpers.cs (1)
335RSASignaturePadding.Pkcs1);
dotnet-dev-certs (1)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
825var request = new CertificateRequest(subject, key, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
HttpStress (1)
Program.cs (1)
398var certReq = new CertificateRequest($"CN={LocalhostName}", rsa, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
IIS.FunctionalTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
32RSASignaturePadding.Pkcs1);
IIS.LongTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
32RSASignaturePadding.Pkcs1);
IIS.NewHandler.FunctionalTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
32RSASignaturePadding.Pkcs1);
IIS.NewShim.FunctionalTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
32RSASignaturePadding.Pkcs1);
IIS.ShadowCopy.Tests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
32RSASignaturePadding.Pkcs1);
IISExpress.FunctionalTests (1)
src\Servers\IIS\IIS\test\Common.FunctionalTests\Infrastructure\ClientCertificateFixture.cs (1)
32RSASignaturePadding.Pkcs1);
InMemory.FunctionalTests (6)
src\Servers\Kestrel\shared\test\CertificateAuthority.cs (6)
228X509SignatureGenerator.CreateForRSA(rsa, RSASignaturePadding.Pkcs1), 263RSASignaturePadding.Pkcs1); 344X509SignatureGenerator.CreateForRSA(key, RSASignaturePadding.Pkcs1), 481key.SignData(tbsCertList, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1); 635RSASignaturePadding.Pkcs1); 824RSASignaturePadding.Pkcs1);
Microsoft.AspNetCore.Authentication.Test (1)
src\Shared\test\Certificates\Certificates.cs (1)
86RSASignaturePadding.Pkcs1);
Microsoft.AspNetCore.DeveloperCertificates.XPlat (1)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
825var request = new CertificateRequest(subject, key, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
Microsoft.AspNetCore.DeveloperCertificates.XPlat.Tests (1)
CertificateManagerTests.cs (1)
304var csr = new CertificateRequest(httpsCertificate.Subject + "Not", privateKey, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
Microsoft.AspNetCore.HttpOverrides.Tests (1)
src\Shared\test\Certificates\Certificates.cs (1)
86RSASignaturePadding.Pkcs1);
Microsoft.AspNetCore.Identity (3)
Passkeys\CredentialPublicKey.cs (3)
202private RSASignaturePadding GetRSASignaturePadding() 215=> RSASignaturePadding.Pss, 221=> RSASignaturePadding.Pkcs1,
Microsoft.AspNetCore.Identity.Test (4)
Passkeys\CredentialKeyPair.cs (4)
73var padding = GetRsaPaddingFromCoseAlg(_alg); 178private static RSASignaturePadding GetRsaPaddingFromCoseAlg(COSEAlgorithmIdentifier alg) 184COSEAlgorithmIdentifier.PS512 => RSASignaturePadding.Pss, 189COSEAlgorithmIdentifier.RS512 => RSASignaturePadding.Pkcs1,
Microsoft.AspNetCore.Server.Kestrel.Core (1)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
825var request = new CertificateRequest(subject, key, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
Microsoft.AspNetCore.Server.Kestrel.Core.Tests (6)
src\Servers\Kestrel\shared\test\CertificateAuthority.cs (6)
228X509SignatureGenerator.CreateForRSA(rsa, RSASignaturePadding.Pkcs1), 263RSASignaturePadding.Pkcs1); 344X509SignatureGenerator.CreateForRSA(key, RSASignaturePadding.Pkcs1), 481key.SignData(tbsCertList, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1); 635RSASignaturePadding.Pkcs1); 824RSASignaturePadding.Pkcs1);
Microsoft.AspNetCore.Server.Kestrel.Tests (1)
KestrelConfigurationLoaderTests.cs (1)
867var request = new CertificateRequest(distinguishedName, rsa, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
Microsoft.AspNetCore.Testing (1)
FakeSslCertificateFactory.cs (1)
29RSASignaturePadding.Pkcs1);
Microsoft.CodeAnalysis (1)
PEWriter\SigningUtilities.cs (1)
28var signature = rsa.SignHash(hash, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
Microsoft.CodeAnalysis.Test.Utilities (1)
Metadata\ILValidation.cs (1)
112if (!rsa.VerifyHash(hash, reversedSignature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1))
Microsoft.DotNet.SignTool.Tests (1)
StrongNameSupportHelper.cs (1)
17rsa.SignData(Array.Empty<byte>(), HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
Microsoft.DotNet.StrongName (2)
Signing.cs (1)
213signature = snkRSA.SignHash(hash, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1);
Verification.cs (1)
128if (!rsa.VerifyHash(hash, reversedSignature, HashAlgorithmName.SHA1, RSASignaturePadding.Pkcs1))
mscorlib (1)
src\libraries\shims\mscorlib\ref\mscorlib.cs (1)
919[assembly: System.Runtime.CompilerServices.TypeForwardedTo(typeof(System.Security.Cryptography.RSASignaturePadding))]
netstandard (1)
netstandard.cs (1)
1923[assembly: System.Runtime.CompilerServices.TypeForwardedTo(typeof(System.Security.Cryptography.RSASignaturePadding))]
System.Security.Cryptography (109)
src\libraries\Common\src\System\Security\Cryptography\Asn1\PssParamsAsn.manual.cs (2)
11internal RSASignaturePadding GetSignaturePadding( 61return RSASignaturePadding.Pss;
src\libraries\Common\src\System\Security\Cryptography\CompositeMLDsaManaged.cs (10)
569new RsaAlgorithm(2048, HashAlgorithmName.SHA256, RSASignaturePadding.Pss), 577new RsaAlgorithm(2048, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1), 601new RsaAlgorithm(3072, HashAlgorithmName.SHA256, RSASignaturePadding.Pss), 609new RsaAlgorithm(3072, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1), 617new RsaAlgorithm(4096, HashAlgorithmName.SHA384, RSASignaturePadding.Pss), 625new RsaAlgorithm(4096, HashAlgorithmName.SHA384, RSASignaturePadding.Pkcs1), 689new RsaAlgorithm(3072, HashAlgorithmName.SHA256, RSASignaturePadding.Pss), 697new RsaAlgorithm(4096, HashAlgorithmName.SHA384, RSASignaturePadding.Pss), 728private sealed class RsaAlgorithm(int keySizeInBits, HashAlgorithmName hashAlgorithmName, RSASignaturePadding padding) 732internal RSASignaturePadding Padding { get; } = padding;
src\libraries\Common\src\System\Security\Cryptography\CompositeMLDsaManaged.RSA.cs (2)
19private readonly RSASignaturePadding _padding; 23private RsaComponent(RSA rsa, HashAlgorithmName hashAlgorithmName, RSASignaturePadding padding)
src\libraries\Common\src\System\Security\Cryptography\RSAOpenSsl.cs (7)
727public override byte[] SignHash(byte[] hash, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 753RSASignaturePadding padding, 778RSASignaturePadding padding) 786public override bool VerifyHash(ReadOnlySpan<byte> hash, ReadOnlySpan<byte> signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 852private static void ValidatePadding(RSASignaturePadding padding) 865Debug.Assert(padding == RSASignaturePadding.Pkcs1); 869Debug.Assert(padding == RSASignaturePadding.Pss);
System\Security\Cryptography\RSA.cs (22)
93public virtual byte[] SignHash(byte[] hash, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) => throw DerivedClassMustOverride(); 94public virtual bool VerifyHash(byte[] hash, byte[] signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) => throw DerivedClassMustOverride(); 341public virtual bool TrySignHash(ReadOnlySpan<byte> hash, Span<byte> destination, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding, out int bytesWritten) 356public virtual bool VerifyHash(ReadOnlySpan<byte> hash, ReadOnlySpan<byte> signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) => 372public byte[] SignData(byte[] data, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 384RSASignaturePadding padding) 401public virtual byte[] SignData(Stream data, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 411public virtual bool TrySignData(ReadOnlySpan<byte> data, Span<byte> destination, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding, out int bytesWritten) 454/// or <see cref="SignHash(byte[], HashAlgorithmName, RSASignaturePadding)" />. 456public byte[] SignData(ReadOnlySpan<byte> data, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 465(HashAlgorithmName HashAlgorithm, RSASignaturePadding Padding) state, 513/// or <see cref="SignHash(byte[], HashAlgorithmName, RSASignaturePadding)" />. 519RSASignaturePadding padding) 560/// or <see cref="SignHash(byte[], HashAlgorithmName, RSASignaturePadding)" />. 562public byte[] SignHash(ReadOnlySpan<byte> hash, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 571(HashAlgorithmName HashAlgorithm, RSASignaturePadding Padding) state, 615/// or <see cref="SignHash(byte[], HashAlgorithmName, RSASignaturePadding)" />. 621RSASignaturePadding padding) 634public bool VerifyData(byte[] data, byte[] signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 647RSASignaturePadding padding) 665public bool VerifyData(Stream data, byte[] signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 676public virtual bool VerifyData(ReadOnlySpan<byte> data, ReadOnlySpan<byte> signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding)
System\Security\Cryptography\RSACryptoServiceProvider.Unix.cs (23)
177public override byte[] SignData(Stream data, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 181if (padding != RSASignaturePadding.Pkcs1) 191public override byte[] SignData(byte[] data, int offset, int count, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 195if (padding != RSASignaturePadding.Pkcs1) 205public override bool TrySignData(ReadOnlySpan<byte> data, Span<byte> destination, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding, out int bytesWritten) 209if (padding != RSASignaturePadding.Pkcs1) 220_impl.SignData(buffer, offset, count, CapiHelper.ObjToHashAlgorithmName(halg), RSASignaturePadding.Pkcs1); 223_impl.SignData(buffer, CapiHelper.ObjToHashAlgorithmName(halg), RSASignaturePadding.Pkcs1); 226_impl.SignData(inputStream, CapiHelper.ObjToHashAlgorithmName(halg), RSASignaturePadding.Pkcs1); 228public override byte[] SignHash(byte[] hash, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 232if (padding != RSASignaturePadding.Pkcs1) 242public override bool TrySignHash(ReadOnlySpan<byte> hash, Span<byte> destination, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding, out int bytesWritten) 246if (padding != RSASignaturePadding.Pkcs1) 264return _impl.SignHash(rgbHash, algName, RSASignaturePadding.Pkcs1); 270_impl.VerifyData(buffer, signature, CapiHelper.ObjToHashAlgorithmName(halg), RSASignaturePadding.Pkcs1); 272public override bool VerifyData(byte[] data, int offset, int count, byte[] signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 276if (padding != RSASignaturePadding.Pkcs1) 286public override bool VerifyData(ReadOnlySpan<byte> data, ReadOnlySpan<byte> signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 290if (padding != RSASignaturePadding.Pkcs1) 300public override bool VerifyHash(byte[] hash, byte[] signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 308public override bool VerifyHash(ReadOnlySpan<byte> hash, ReadOnlySpan<byte> signature, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 312if (padding != RSASignaturePadding.Pkcs1) 329CapiHelper.NameOrOidToHashAlgorithmName(str), RSASignaturePadding.Pkcs1);
System\Security\Cryptography\RSAPKCS1SignatureDeformatter.cs (1)
55return _rsaKey.VerifyHash(rgbHash, rgbSignature, new HashAlgorithmName(_algName), RSASignaturePadding.Pkcs1);
System\Security\Cryptography\RSAPKCS1SignatureFormatter.cs (1)
55return _rsaKey.SignHash(rgbHash, new HashAlgorithmName(_algName), RSASignaturePadding.Pkcs1);
System\Security\Cryptography\RSASignaturePadding.cs (11)
16public sealed class RSASignaturePadding : IEquatable<RSASignaturePadding> 18private static readonly RSASignaturePadding s_pkcs1 = new RSASignaturePadding(RSASignaturePaddingMode.Pkcs1); 19private static readonly RSASignaturePadding s_pss = new RSASignaturePadding(RSASignaturePaddingMode.Pss); 31public static RSASignaturePadding Pkcs1 39public static RSASignaturePadding Pss 59return Equals(obj as RSASignaturePadding); 62public bool Equals([NotNullWhen(true)] RSASignaturePadding? other) 67public static bool operator ==(RSASignaturePadding? left, RSASignaturePadding? right) 77public static bool operator !=(RSASignaturePadding? left, RSASignaturePadding? right)
System\Security\Cryptography\RSAWrapper.cs (9)
59RSASignaturePadding padding) => 66RSASignaturePadding padding) => 87RSASignaturePadding padding, 95RSASignaturePadding padding) => 111RSASignaturePadding padding) => 114public override byte[] SignData(Stream data, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) => 121RSASignaturePadding padding, 131RSASignaturePadding padding) => 138RSASignaturePadding padding) =>
System\Security\Cryptography\X509Certificates\CertificateRequest.cs (6)
26private readonly RSASignaturePadding? _rsaPadding; 130public CertificateRequest(string subjectName, RSA key, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding) 166RSASignaturePadding padding) 388RSASignaturePadding? rsaSignaturePadding = null) 754/// which does not accept a <see cref="RSASignaturePadding"/> value. 812/// which does not accept a <see cref="RSASignaturePadding"/> value.
System\Security\Cryptography\X509Certificates\CertificateRequest.Load.cs (7)
23RSASignaturePadding? signerSignaturePadding = null) 38RSASignaturePadding? signerSignaturePadding = null) 87RSASignaturePadding? signerSignaturePadding = null) 105RSASignaturePadding? signerSignaturePadding = null) 122RSASignaturePadding? signerSignaturePadding) 320RSASignaturePadding padding = pssParams.GetSignaturePadding(); 378return rsa.VerifyData(toBeSigned, signature, hashAlg, RSASignaturePadding.Pkcs1);
System\Security\Cryptography\X509Certificates\CertificateRevocationListBuilder.Build.cs (2)
114RSASignaturePadding? rsaSignaturePadding = null, 132RSASignaturePadding? rsaSignaturePadding)
System\Security\Cryptography\X509Certificates\RSAPkcs1X509SignatureGenerator.cs (1)
22return _key.SignData(data, hashAlgorithm, RSASignaturePadding.Pkcs1);
System\Security\Cryptography\X509Certificates\RSAPssX509SignatureGenerator.cs (3)
13private readonly RSASignaturePadding _padding; 15internal RSAPssX509SignatureGenerator(RSA key, RSASignaturePadding padding) 30if (_padding != RSASignaturePadding.Pss)
System\Security\Cryptography\X509Certificates\X509SignatureGenerator.cs (2)
25public static X509SignatureGenerator CreateForRSA(RSA key, RSASignaturePadding signaturePadding) 30if (signaturePadding == RSASignaturePadding.Pkcs1)
System.Security.Cryptography.Algorithms (1)
System.Security.Cryptography.Algorithms.cs (1)
48[assembly: System.Runtime.CompilerServices.TypeForwardedTo(typeof(System.Security.Cryptography.RSASignaturePadding))]
System.Security.Cryptography.Cose (15)
System\Security\Cryptography\Cose\CoseKey.cs (12)
19internal RSASignaturePadding? RSASignaturePadding { get; } 30public CoseKey(RSA key, RSASignaturePadding signaturePadding, HashAlgorithmName hashAlgorithm) 85CoseAlgorithm.RS256 => new CoseKey(rsaKey, RSASignaturePadding.Pkcs1, HashAlgorithmName.SHA256), 86CoseAlgorithm.RS384 => new CoseKey(rsaKey, RSASignaturePadding.Pkcs1, HashAlgorithmName.SHA384), 87CoseAlgorithm.RS512 => new CoseKey(rsaKey, RSASignaturePadding.Pkcs1, HashAlgorithmName.SHA512), 88CoseAlgorithm.PS256 => new CoseKey(rsaKey, RSASignaturePadding.Pss, HashAlgorithmName.SHA256), 89CoseAlgorithm.PS384 => new CoseKey(rsaKey, RSASignaturePadding.Pss, HashAlgorithmName.SHA384), 90CoseAlgorithm.PS512 => new CoseKey(rsaKey, RSASignaturePadding.Pss, HashAlgorithmName.SHA512), 226private static int SignHashWithRSA(RSA key, ReadOnlySpan<byte> hash, HashAlgorithmName hashAlgorithm, RSASignaturePadding padding, Span<byte> destination) 268private static CoseAlgorithm GetRSAAlgorithm(RSASignaturePadding signaturePadding, HashAlgorithmName hashAlgorithm) 272if (signaturePadding == RSASignaturePadding.Pss) 283Debug.Assert(signaturePadding == RSASignaturePadding.Pkcs1);
System\Security\Cryptography\Cose\CoseSigner.cs (3)
40public RSASignaturePadding? RSASignaturePadding => CoseKey.RSASignaturePadding; 52/// <paramref name="key"/> is <see cref="RSA"/>, use <see cref="CoseSigner(RSA, RSASignaturePadding, HashAlgorithmName, CoseHeaderMap?, CoseHeaderMap?)"/> to specify a signature padding. 110public CoseSigner(RSA key, RSASignaturePadding signaturePadding, HashAlgorithmName hashAlgorithm, CoseHeaderMap? protectedHeaders = null, CoseHeaderMap? unprotectedHeaders = null)
System.Security.Cryptography.Pkcs (32)
src\libraries\Common\src\System\Security\Cryptography\Asn1\PssParamsAsn.manual.cs (2)
11internal RSASignaturePadding GetSignaturePadding( 61return RSASignaturePadding.Pss;
System\Security\Cryptography\Pkcs\CmsSignature.cs (4)
34internal abstract RSASignaturePadding? SignaturePadding { get; } 67RSASignaturePadding? rsaSignaturePadding) 90if (rsaSignaturePadding == RSASignaturePadding.Pkcs1) 95else if (rsaSignaturePadding == RSASignaturePadding.Pss)
System\Security\Cryptography\Pkcs\CmsSignature.DSA.cs (1)
31internal override RSASignaturePadding? SignaturePadding => null;
System\Security\Cryptography\Pkcs\CmsSignature.ECDsa.cs (1)
33internal override RSASignaturePadding? SignaturePadding => null;
System\Security\Cryptography\Pkcs\CmsSignature.MLDsa.cs (1)
31internal override RSASignaturePadding? SignaturePadding => null;
System\Security\Cryptography\Pkcs\CmsSignature.RSA.cs (14)
68RSASignaturePadding padding = GetSignaturePadding( 95protected abstract RSASignaturePadding GetSignaturePadding( 111RSASignaturePadding signaturePadding, 181internal override RSASignaturePadding? SignaturePadding => RSASignaturePadding.Pkcs1; 188protected override RSASignaturePadding GetSignaturePadding( 196return RSASignaturePadding.Pkcs1; 203return RSASignaturePadding.Pkcs1; 229RSASignaturePadding.Pkcs1, 297internal override RSASignaturePadding? SignaturePadding => RSASignaturePadding.Pss; 303protected override RSASignaturePadding GetSignaturePadding( 325RSASignaturePadding padding = pssParams.GetSignaturePadding(digestValueLength); 351RSASignaturePadding.Pss,
System\Security\Cryptography\Pkcs\CmsSignature.SlhDsa.cs (1)
42internal override RSASignaturePadding? SignaturePadding => null;
System\Security\Cryptography\Pkcs\CmsSigner.cs (8)
22private RSASignaturePadding? _signaturePadding; 52RSASignaturePadding? SignaturePadding 58value != RSASignaturePadding.Pkcs1 && value != RSASignaturePadding.Pss) 174RSASignaturePadding? signaturePadding) 183RSASignaturePadding? signaturePadding) 186signaturePadding != RSASignaturePadding.Pkcs1 && signaturePadding != RSASignaturePadding.Pss)
Templates.Blazor.Tests (1)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
825var request = new CertificateRequest(subject, key, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
Templates.Blazor.WebAssembly.Auth.Tests (1)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
825var request = new CertificateRequest(subject, key, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
Templates.Blazor.WebAssembly.Tests (1)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
825var request = new CertificateRequest(subject, key, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
Templates.Mvc.Tests (1)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
825var request = new CertificateRequest(subject, key, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);
Templates.Tests (1)
src\Shared\CertificateGeneration\CertificateManager.cs (1)
825var request = new CertificateRequest(subject, key, HashAlgorithmName.SHA256, RSASignaturePadding.Pkcs1);