Error: crypto/rsa: verification error

[13567436138]

What is not working as expected?

notation +otation-hashicorp-vault+openbao

sign ok

What did you expect to happen?

notation +otation-hashicorp-vault+openbao
got error
Error: failed to sign with the plugin hc-vault: generated signature failed verification: signature is invalid. Error: crypto/rsa: verification error

according to debug the error occors：
// 4. If the rightmost octet of EM does not have hexadecimal value
// 0xbc, output "inconsistent" and stop.
if em[emLen-1] != 0xbc {
return ErrVerification
}

How can we reproduce it?

BAO_ADDR=http://192.168.10.69:8200
BAO_TOKEN=s.SHGeqmP5MZOHxGusWZTU9bkL

bao secrets enable -path=signing5 transit

bao write signing5/keys/prod-signer type=rsa-4096

bao kv put jenkins4/keys/prod-signer
certificate=@prod-signer.crt

./bin/notation.exe key delete prod-signer

bin/notation.exe key add prod-signer --id "keys/prod-signer" --plugin hc-vault --plugin-config "transitName=signing4" --plugin-config "kvName=jenkins4" --plugin-config "transitKeyName=prod-signer" --default

notation sign --key "prod-signer" "docker.io/library/busybox:unstable-musl"

Describe your environment

ubuntu or win11

What is the version of your Notation CLI or Notation Library?

root@karmada-member-07-a:~/certs# notation version
Notation - a tool to sign and verify artifacts.

Version: 1.3.2
Go version: go1.23.8
Git commit: 001cc91

[FeynmanZhou]

Hi @13567436138 ,

Notation does not support OpenBao yet.

For the issue of signing with hashicorp-vault plugin, @Two-Hearts @cipherboy would you mind sharing any suggestions? Thanks

[13567436138]

now I using vault，the same error