This content has been marked as final. Show 1 reply
One of the KeyUsage extension bits is DIGITAL_SIGNATURE which in your case has most likely not been enabled so try getting a certificate signed with the DIGITAL_SIGNATURE bit enabled. It would be a good idea to actual have a look at your certificate to see which KeyUsage bits are enabled and whether the KeyUsage extension is set as critical or not. If the extension is defined as critical, then all the bits have to be followed, whereas if it is not critical, then the bits can be ignored and it depends on the API used on whether they enforce what the bits say.