Verify offline an Azure AD generated JWT - security

I'm getting an error when verifying an Azure AD generated token. This is the current setup:
I have a token which can be pasted on, and I can see in the right panel the correct claims. I assume the token is correctly formatted. I can also see in the headers that kid = piVlloQDSMKxh1m2ygqGSVdgFpA and alg: RS256. I set correctly the algo type to RS256 for verification.
I went to to find the public key, and found the same kid = piVlloQDSMKxh1m2ygqGSVdgFpA. So I copied the corresponds public key (the string in the x5c field) and wrapped it into the correct strings to make it PKCS#8. compatible:
In case it's not visible above, there is a \n after -----BEGIN CERTIFICATE----- and before -----END CERTIFICATE-----
That public key got copied in the public key part of it, and in my code it's the public RSA key.
I also tried formatting using PKCS#1, I didn't get more success
It keeps being invalid. Not even expired, clearly invalid, both on and in my code.
Assuming the token is correct, is my methodology correct? I found different tutorials preparing the .pem differently. If my token is incorrect, how can I check that aside of getting claims from it?

You need to generate the public key from modulus and exponent.
You can get them from{tenantId_or_commom}/discovery/v2.0/keys
Here is a java sample for your reference:
public static PublicKey getPublicKey(String encodedModulus, String encodedExponent) throws NoSuchAlgorithmException, InvalidKeySpecException {
byte[] modulus = Base64.getUrlDecoder().decode(encodedModulus);
byte[] exponent = Base64.getUrlDecoder().decode(encodedExponent);
StringBuilder sb = new StringBuilder();
for (byte b : modulus) {
sb.append(String.format("%02x", b));
String sm = sb.toString();
sb = new StringBuilder();
for (byte b : exponent) {
sb.append(String.format("%02x", b));
String se = sb.toString();
BigInteger bm = new BigInteger(sm,16);
BigInteger be = new BigInteger(se,16);
KeyFactory rsa = KeyFactory.getInstance("RSA");
PublicKey publicKey = rsa.generatePublic(new RSAPublicKeySpec(bm, be));
return publicKey;
public static void main(String[] args) throws Exception {
String modulus = "0XhhwpmEpN-jDBapnzhFbtvEU2BpLLcaLzlXm4mlT2MwKZlXRUUam2vI0URDUYRKaa4O62BCWSSGOv2LGQ6tMD5oU-Dqkuf44bo1hLufIqAALUymssfRurTrLd0fqVA9ZCF3fA8_7xQi5r370m4h-G71ez8eE3lxiVPlwSeJXRpa5QzGA8ApwbXGiV-6liGU4eMXBU39A5rFy6TdioaC4P6xns-IdwlLMWdOR28P4O0yhbVTqcN_kW4N4AQonslB_tGOJGhWJjFkcqsQ8cbiJn6Q6FXoNADXohJO3sAtdUHyBNMXc68i25uTYTe_qyCKuC290TkyR3gxMlw7rtuB1Q";
String exponent = "AQAB";
byte[] bytes = getPublicKey(modulus, exponent).getEncoded();
String encodedString = new String(Base64.getEncoder().encode(bytes));
System.out.println("-----BEGIN PUBLIC KEY-----");
System.out.println("-----END PUBLIC KEY-----");
You will get some outputs as following:
-----END PUBLIC KEY-----
And then you can use it in


Checkmarx : Inadequate encryption strength

I have run Checkmarx scan on my application . The scan report reports the following on my piece of code.
"Inadequate encryption strength - The application uses a weak cryptographic algorithm, getPrivate() to protect sensitive personal information password"
public String sign(String text) {
try {
KeyPair keyPair = this.getKeyPair();
Signature privateSignature = Signature.getInstance("SHA1withRSA");
byte[] signature = privateSignature.sign();
return Base64.getEncoder().encodeToString(signature);
} catch (Exception exp) {
public KeyPair getKeyPair()
throws Exception {
Key key = this.keyStore.getKey(ALIAS, **this.password.toCharArray()**);
Certificate cert = this.keyStore.getCertificate(ALIAS);
PublicKey publicKey = cert.getPublicKey();
return new KeyPair(publicKey, (PrivateKey) key);
Please help me in resolving this issue.

How does Hyperledger fabric EVM generate the address from the public key?

In Ethereum, the wallet address is the last 20 bytes of the keccak256 hash of the public key of the wallet.
I am working with Hyperledger Fabric EVM, and I would like to know which is the mechanism that is used to generate the address from the public key.
I applied keccak256, sha256, and sha-3 256 to my public key, but I didn't get the correct address...
It is my private key in pem format:
It is my public key in pem format:
-----END PUBLIC KEY-----
It is my public key in hex format:
Public_key = 0x04569ef31db7ed78f4a12df723caa0b1c6f7c94be703de70654c04cc6c261cf724b0524250427cb333f1f7b9bc89e0e0ded3198b7ae8fd8735e1bf7cb8f0b7b8c8
And it is my address:
I am using secp256r1
The address is the last 20 bytes of the sha3-256 of 3059301306072a8648ce3d020106082a8648ce3d030107034200 + public_key_hex
In my example, take the last 160 bits (20 bytes) of "result" :
var Public_key = 0x04569ef31db7ed78f4a12df723caa0b1c6f7c94be703de70654c04cc6c261cf724b0524250427cb333f1f7b9bc89e0e0ded3198b7ae8fd8735e1bf7cb8f0b7b8c8
var result = SHA3_256(0x3059301306072a8648ce3d020106082a8648ce3d030107034200 + Public_key)
var address = last_20bytes(result)
console.log("address = ",address);
//address = 13065B11B498911F2A19815035D0AC24457D1BB6

C# DocuSignJWT SDK - invalid_grant

I keep getting an "invalid_grant" error when I try to use the DocuSign sdk to generate a JWT user token, and I can't figure out where I'm going wrong here...
public OAuthToken GetJwtToken(string userId)
var client = new ApiClient();
var authToken = client.RequestJWTUserToken
new List<string> { "signature", "impersonation" }
return authToken;
catch (ApiException e)
var msg = e.Message;
return null;
And the values:
<add key="IntegrationKey" value="xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx" />
<add key="PrivateKey" value="-----BEGIN RSA PRIVATE KEY-----\r\n\xxxxxxxxxxxx\r\n-----END RSA PRIVATE KEY-----" />
<add key="BaseUrl" value="" />
I have a feeling it has something to do with the way the private key is coming in. I have it stored in the web config with \r\n for each new line, but if I try to just read it from the config file and pass it in, this line in the CreateRSAKeyFromPem() method throws a System.IO.IOException saying "-----END RSA PRIVATE KEY not found" unless I do a '.Replace("\r\n", "\r\n")' on the private key string:
object result = pemReader.ReadObject();
I've looked at every thread I can find, copied the example code for this, and quadruple checked all of my values. I have no idea why this won't work.
Edit: I pasted the assertion string that the code is sending in the request into and I was able to verify that the decoded data is correct and the signature is verified after pasting in my public and private keys. I'm not sure why this wouldn't be working after checking all of that.
Edit 2: This is how I'm storing my RSA private key:
<add key="DocuSign:PrivateKey" value="-----BEGIN RSA PRIVATE KEY-----\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\nxxxxxxx\r\n-----END RSA PRIVATE KEY-----" />
and I'm retrieving it like this (System.IO throws this error if I try to grab the value without that Replace in there: "-----END RSA PRIVATE KEY not found")
public static string PrivateKey { get { return ConfigurationManager.AppSettings["DocuSign:PrivateKey"].Replace("\\r\\n", "\r\n"); } }
I ended up having to delete my RSA keypair for my app and generating a new one. The new key worked. I'm not sure why the old one didn't, but this resolved it at least.

RSA Decrypt Successfully with Wrong Private Key

I met a problem of RSA decryption.
First of all, I created a pair of public and private key in openssl(LibreSSL 2.6.4 in OS X 10.14):
genrsa -out rsa_private_key.pem   1024
rsa -in rsa_private_key.pem -pubout -out rsa_public_key.pem
Then I wrote functions to do encrypt and decrypt. The code looks like:
const crypto = require('crypto');
exports.encrypt = (data, key) => {
try {
let enc = crypto.publicEncrypt(key, Buffer.from(data));
return enc;
} catch (error) {
console.log('encrypt error:', error);
return null;
exports.decrypt = (encrypted, key) => {
try {
let dec = crypto.privateDecrypt({'key':key, 'padding': crypto.constants.RSA_PKCS1_OAEP_PADDING }, encrypted);
return dec;
} catch (error) {
console.log('decrypt error:', error);
return null;
And I run a nodejs app which encrypts a string with public key and decrypts with
private key:
const rsa = require('./rsa');
const rsaKeys = require('./rsaKeys');
const plainText = '111111';
const crypted = rsa.encrypt(plainText, rsaKeys.pubKey);
const decrypted = rsa.decrypt(crypted, rsaKeys.privKey);
console.log('crypted:', crypted.toString('base64'));
It runs well as decrypted is exactly the plain text '111111'. Then I change the last 3 bits of private key mistakenly, for example:
exports.privKey = `-----BEGIN RSA PRIVATE KEY-----
I continue to run the test.js, and what makes me surprised is that it shows decrypted: 111111.
Later I changed the last 3 bits several times and all can show decrypted correctly. When I changed the first 3 bits of private key, the decrypt runs with the exceptions.
I can't understand why comes such result ad I know little about cypher.
Please point the guide on how to understand it.
Update: add the pair of keys.
exports.privKey = `-----BEGIN RSA PRIVATE KEY-----
exports.pubKey = `-----BEGIN PUBLIC KEY-----
-----END PUBLIC KEY-----

Obtaining public key from SubjectPublicKeyInfo

I'm trying to get the public key from a SubjectPublicKeyInfo.However when I try:
PublicKey publicKey = k.generatePublic(keypsec);
byte[] encoded=publicKey.getEncoded();
SubjectPublicKeyInfo subPkInfo2 = new SubjectPublicKeyInfo(rsaEncryption, encoded);
RSAPublicKeyStructure pubKey = new RSAPublicKeyStructure((ASN1Sequence)subPkInfo2.getPublicKey());
It throws this
java.lang.IllegalArgumentException: illegal object in getInstance: org.bouncycastle.asn1.DERSequence
at org.bouncycastle.asn1.DERInteger.getInstance(
at org.bouncycastle.asn1.x509.RSAPublicKeyStructure.<init>(
Any ideas? I've tried PubliKeyFactory but it simply calls the last line.
Well I shall answer my own question:
byte[] encoded=publicKey.getEncoded();
SubjectPublicKeyInfo subPkInfo2 = new SubjectPublicKeyInfo(rsaEncryption, encoded);
This is wrong. PublicKey is already an ASN1typeSubjectpublicKeyInfo. In order to create a SubjectPublicKeyInfo with this function
SubjectPublicKeyInfo(AlgorithmIdentifier algId, byte[] publicKey)
you need an Algortihm identifier and THE KEY ITSELF in encoded form. publicKey.getEncoded() is an encoded KEY + THE ALGORITHM IDENTIFIER.
Anyway. If you want to tranfosrm a SATSA public key to a Subject Public Key Info you do this:
byte[] publickeyb=SATSApublickey.getEncoded();
SubjectPublicKeyInfo subPkInfo = new SubjectPublicKeyInfo((ASN1Sequence)ASN1Object.fromByteArray(publickeyb));
And if you want to get your public key as RSAkeyparameters from the SubjectPublicKeyInfo
RSAKeyParameters param=(RSAKeyParameters) PublicKeyFactory.createKey(subPkInfo);
