I can not validate the digital signature produced using Demoiselle-Certificate 2.0.0, the ITI checker is invalidating the reason below:
Attribute Name: IdAaEtsSigPolicyId
Correcting: Invalid
Err Msg: Inconsistency in IdAaEtsSigPolicyIdentifier. The attribute and AP cryptographic summaries are not the same.
All other attributes of the signature are in accordance with the ICP-Brazil specification. Below the code snippet:
PKCS7Signer signer = PKCS7Factory.getInstance().factoryDefault();
signer.setCertificates(certificados);
signer.setPrivateKey(privateKey);
signer.setAttached(true);
signer.setSignaturePolicy(PolicyFactory.Policies.AD_RB_CADES_2_1);
byte[] signedData = signer.doSign(conteudo);
List of libraries I use in the project:
demoiselle-certificate-signer-2.0.0.jar
demoiselle-certificate-core-2.0.0.jar
demoiselle-certificate-criptography-2.0.0.jar
demoiselle-certificate-ca-icpbrasil-2.0.0.jar
demoiselle-certificate-timestamp-2.0.0.jar
demoiselle-certificate-signer-2.0.0.jar
I need help solving this problem, has anyone gone through this? Any suggestions?