To generate an error codes report on IBM i, enter the following command. For example:
SBMJOB JOB(PWXERRORS) JOBQ(*JOBD) CMD(CALL PGM(PWXLIB/PWXUGSK)
PARM('CMD=REPORT_ERROR_CODES'))
To generate an error codes report on z/OS, specify the following JCL parameters. For example:
/STEP1 EXEC PGM=PWXUGSK,REGION=900M,
// PARM='CMD=REPORT_ERROR_CODES'
The following output is an example of an error codes report:
PWXUGSK REPORT_ERROR_CODES
==========================
Verbose N
---------
Processing console program. PWXUGSK CMD=REPORT_ERROR_CODES VERBOSE=N
VERBOSE=''
Reports for command REPORT_ERROR_CODES
======================================
Report 1. Definition names and comments
---------------------------------------
0 OK
1 INVALID_HANDLE
2 API_NOT_AVAILABLE
3 INTERNAL_ERROR
4 INSUFFICIENT_STORAGE
5 INVALID_STATE for the requested operation
6 KEY_LABEL_NOT_FOUND in key database, SAF key ring or PKCS11 token
7 CERTIFICATE_NOT_AVAILABLE. No certificates in database, key ring or PKCS11
8 ERR_CERT_VALIDATION. Validation error in the subject or CA certificate
9 ERR_CRYPTO.Cryptographic processing error
10 ERR_ASN. ASN processing error
11 ERR_LDAP. LDAP processing error
12 ERR_UNKNOWN_ERROR. An unexpected error has occurred
101 OPEN_CIPHER_ERROR
102 KEYFILE_IO_ERR while reading certificate database
103 KEYFILE_INVALID_FORMAT. Incorrect key database record format
104 KEYFILE_DUPLICATE_KEY_ERR
105 KEYFILE_DUPLICATE_LABEL_ERR
106 BAD_FORMAT_OR_INVALID_PASSWORD. Incorrect key database password
107 KEYFILE_CERTIFICATE_EXPIRED
108 ERR_LOAD_GSKLIB
109 KEYFILE_NO_CA_CERTIFICATES
201 NO_KEYFILE_PASSWORD. unable to read password from the stash file
202 KEYRING_OPEN_ERROR on database, key ring or PKCS11
203 RSA_TEMP_KEY_PAIR. Unable to generate temporary key pair
204 KEYFILE_PASSWORD_EXPIRED
301 CLOSE_FAILED
302 CONNECTION_ACTIVE so operation cannot be completed
401 ERR_BAD_DATE. Certificate is expired or is not valid yet
402 ERR_NO_CIPHERS after negotiation with remote peer machine
403 ERR_NO_CERTIFICATE received from partner
404 ERR_BAD_CERTIFICATE
405 ERR_UNSUPPORTED_CERTIFICATE_TYPE received from partner
406 ERR_IO while reading or writing data
407 ERR_BAD_KEYFILE_LABEL. Not in key database or not trusted
408 ERR_BAD_KEYFILE_PASSWORD. unable to decrypt a keyfile entry
409 ERR_BAD_KEY_LEN_FOR_EXPORT
410 ERR_BAD_MESSAGE received from partner
411 ERR_BAD_MAC. Message modified during transmission
412 ERR_UNSUPPORTED protocol or certificate type
413 ERR_BAD_CERT_SIG. Incorrect partner certificate signature
414 ERR_BAD_CERT. Certificate is not valid
415 ERR_BAD_PEER. Partner violated protocol sequence
416 ERR_PERMISSION_DENIED. Unable to access file or system facility
417 ERR_SELF_SIGNED. Not in database, key ring or PKCS11
418 ERR_NO_READ_FUNCTION
419 ERR_NO_WRITE_FUNCTION
420 ERR_SOCKET_CLOSED by remote partner
421 ERR_BAD_V2_CIPHER
422 ERR_BAD_V3_CIPHER
423 ERR_BAD_SEC_TYPE
424 ERR_BAD_SEC_TYPE_COMBINATION
425 ERR_HANDLE_CREATION_FAILED
426 ERR_INITIALIZATION_FAILED
427 ERR_LDAP_NOT_AVAILABLE. unable to access the LDAP server
428 NO_PRIVATE_KEY or the private key is not availableor usable
429 ERR_INVALID_V2_HEADER
430 ERR_CERTIFICATE_EXPIRED
431 ERR_CERTIFICATE_REVOKED by the certification authority
432 ERR_NO_NEGOTIATION. renegotiation is disabled
433 ERR_EXPORT_RESTRICTION. Key exceeds allowable export size
434 ERR_INCOMPATIBLE_KEY. Certificate key is not compatible with cipher suite
435 ERR_UNKNOWN_CA. Certification authority is unknown in key database
436 ERR_BAD_CRL. Certificate revocation list cannot be found
437 ERR_CONNECTION_CLOSED
438 ERR_INTERNAL_ERROR_ALERT reported by remote partner
439 ERR_UNKNOWN_ALERT received from remote partner
440 ERR_INCORRECT_KEY_USAGE in certificate
441 ERR_CLIENT_AUTH_ALERT
442 ERR_MULTIPLE_LABEL. Multiple certificates exist for label
443 ERR_MULTIPLE_DEFAULT. Multiple keys are marked as the default
444 ERR_RNG. Error encountered generating random bytes
445 ERR_DB_NOT_FIPS
446 ERR_TLS_EXTENSION_MISMATCH
447 ERR_REQUIRED_TLS_EXTENSION
448 ERR_UNRECOGNIZED_NAME. Requested server name is not recognized
449 ERR_INVALID_FRAGMENT_LENGTH. Not 1024, 2048 and 4096 bytes
450 ERR_BAD_MSG_LEN. TLS extension length field is not valid
460 ERR_RENEGOTIATION_INDICATION. Required TLS Reneg. Indication not received
501 INVALID_BUFFER_SIZE
502 WOULD_BLOCK
503 WOULD_BLOCK_READ
504 WOULD_BLOCK_WRITE
505 ERR_RECORD_OVERFLOW. Plain record > 16384 or encrypted record > 18432 bytes.
506 ERR_TASK_MODE_REQUIRED
601 ERR_NOT_SSLV3. Protocol not SSL V3, TLS V1.0, TLS V1.1, or TLS V1.2
602 MISC_INVALID_ID. Function identifier is not valid
603 INVALID_FUNCTION. Function enumerator is not valid
604 ERR_CIPHER_RESET_REQUIRED. Send sequence number is near maximum value
701 ATTRIBUTE_INVALID_ID
702 ATTRIBUTE_INVALID_LENGTH
703 ATTRIBUTE_INVALID_ENUMERATION
704 ATTRIBUTE_INVALID_SID_CACHE. Invalid Session identifier cache callback
705 ATTRIBUTE_INVALID_NUMERIC_VALUE
706 ATTRIBUTE_INVALID_PARAMETER
707 ATTRIBUTE_INVALID_TLS_EXTENSION
708 ATTRIBUTE_INVALID_TLS_EXT_DATA
Report 2. Definition names and comments
---------------------------------------
code hex Gsk Error Description
---- --- ---------------------
1 1 Handle is not valid
3 3 An internal error has occurred
4 4 Insufficient storage is available
5 5 Handle is in the incorrect state
6 6 Key label is not found
7 7 No certificates available
8 8 Certificate validation error
9 9 Cryptographic processing error
10 A ASN processing error
11 B LDAP processing error
12 C An unexpected error has occurred
13 D Size specified for supplied structure is too small
14 E Required gsk_all_cipher_suites structure not supplied
102 66 Error detected while reading certificate database
103 67 Incorrect key database record format
106 6A Incorrect key database password
109 6D No certification authority certificates
201 C9 No key database password supplied
202 CA Error detected while opening the certificate database
203 CB Unable to generate temporary key pair
204 CC Key database password is expired
302 12E Connection is active
401 191 Certificate is expired or is not valid yet
402 192 No SSL cipher specifications
403 193 No certificate received from partner
405 195 Certificate format is not supported
406 196 Error while reading or writing data
407 197 Key label does not exist
408 198 Key database password is not correct
410 19A SSL message format is incorrect
411 19B Message authentication code is incorrect
412 19C SSL protocol or certificate type is not supported
413 19D Certificate signature is incorrect
414 19E Certificate is not valid
415 19F SSL protocol violation
416 1A0 Permission denied
417 1A1 Self-signed certificate cannot be validated
420 1A4 Socket closed by remote partner
421 1A5 SSL V2 cipher is not valid
422 1A6 SSL V3 cipher is not valid
427 1AB LDAP is not available
428 1AC Key entry does not contain a private key
429 1AD SSL V2 header is not valid
431 1AF Certificate is revoked
432 1B0 Session renegotiation is not allowed
433 1B1 Key size exceeds allowable export size
434 1B2 Certificate key is not compatible with cipher suite
435 1B3 Certification authority is unknown
436 1B4 Certificate revocation list cannot be found
437 1B5 Connection closed
438 1B6 Internal error reported by remote partner
439 1B7 Unknown alert received from remote partner
440 1B8 Incorrect key usage
441 1B9 Client certificate not received during TLS handshake
442 1BA Multiple certificates exist for label
443 1BB Multiple keys are marked as the default
444 1BC Error encountered generating random bytes
445 1BD Key database is not a FIPS mode database
446 1BE TLS extension mismatch encountered
447 1BF Required TLS extension rejected
448 1C0 Requested server name is not recognized
449 1C1 Unsupported fragment length received
450 1C2 TLS extension length field is not valid
451 1C3 Elliptic Curve is not supported
452 1C4 EC Parameters not supplied
453 1C5 Signature not supplied
454 1C6 Elliptic curve parameters are not valid
455 1C7 ICSF services are not available
456 1C8 ICSF callable service returned an error
457 1C9 ICSF PKCS #11 not operating in FIPS mode
458 1CA SSL V3 4-character cipher is not valid
459 1CB Elliptic curve not supported in FIPS mode
460 1CC Required TLS Renegotiation Indication not received
461 1CD Elliptic curve parameter format is not supported
462 1CE Elliptic curve point format is not supported
463 1CF Cryptographic hardware does not support service or algorithm
464 1D0 Elliptic curve list is not valid
465 1D1 ICSF PKCS #11 services are disabled
466 1D2 Signature algorithm pair is not valid
467 1D3 Signature algorithm not in signature algorithm pairs list
468 1D4 Certificate key algorithm not in signature algorithm pairs list
469 1D5 Incorrect certificate key attribute
470 1D6 Certificate does not meet Suite B requirements
471 1D7 Secure private key cannot be used with a fixed ECDH key exchange
472 1D8 Clear key support not available due to ICSF key policy
473 1D9 OCSP responder requires a signed request
474 1DA HTTP response is not valid
475 1DB OCSP response is not valid
476 1DC Session ID entry does not exist
477 1DD Client SID does not match the server SID
478 1DE Client session cache attributes do not agree
479 1DF SID VALUE is not valid
480 1E0 PEER ID is not valid
481 1E1 OCSP request failed with internal responder error
482 1E2 OCSP response is expired
483 1E3 Error creating OCSP request
484 1E4 Maximum response size exceeded
485 1E5 HTTP server communication error
486 1E6 Nonce in OCSP response does not match value in OCSP request
487 1E7 OCSP response not received within configured time limit
488 1E8 Revocation information is not yet valid
489 1E9 HTTP server host name is not valid
490 1EA PKCS #12 file content not valid
491 1EB Required basic constraints certificate extension is missing
492 1EC Maximum number of locations allowed to be contacted during certificate validation has been reached
493 1ED HTTP response not received within configured time limit
494 1EE LDAP response not received within configured time limit
495 1EF OCSP request failed with try later error
496 1F0 OCSP response signature algorithm not in signature algorithm pairs list
497 1F1 OCSP request signature algorithm pair is not valid
498 1F2 OCSP response does not contain requested certificate status
499 1F3 OCSP response contains duplicate certificate statuses
500 1F4 Triple DES key parts are not unique
501 1F5 Buffer size is not valid
502 1F6 Socket request would block
503 1F7 Socket read request would block
504 1F8 Socket write request would block
505 1F9 Record overflow
506 1FA TASK mode required for SSL operation
507 1FB Certificate version does not meet the minimum required version level
508 1FC Key size is smaller than the minimum size allowed
509 1FD Key label list is not valid
510 1FE No acceptable key label found
511 1FF OCSP stapling requires OCSP support to be enabled
512 200 Certificate status response is not valid
513 201 An inappropriate protocol fallback is detected
514 202 Required TLS extension is missing from remote partner
515 203 Key share list is not valid
516 204 No key share groups in common with partner
517 205 Mismatch between elliptic curve and key share lists
518 206 Alert received from remote partner is allowed by protocol but not expected by System SSL
519 207 Required cipher specifications have not been specified
520 208 4-character cipher specifications are required
521 209 Client has detected that the server has attempted an unexpected protocol fallback
522 20A Signature algorithm used by the remote partner for a secure connection is not correct
523 20B Key share list cannot contain more groups than the elliptic curve list
524 20C Remote partner indicates a required TLS extension is missing
525 20D Key share list received from remote partner is not correct
526 20E Missing required certificate request signature algorithms
527 20F Local certificate version does not meet the minimum required version level
528 210 Local certificate key size is smaller than the minimum size allowed
529 211 Certificate key algorithm is not valid
530 212 TLS handshake message from the remote partner included an extension that is not allowed or supported
531 213 Legacy compression field must be a single byte set to 0
532 214 Session ID received from remote partner is not correct
533 215 Remote partner indicates unsupported certificate
534 216 Remote partner indicates an incorrect PSK identity value
535 217 PSK exchange modes extension from the remote partner does not contain a supported value
536 218 TLS session has expired
537 219 Attempt to send session ticket failed due to incorrect resumption attributes
538 21A Remote partner used an incorrect cipher on a resumption attempt
539 21B Input buffer contents not valid
540 21C Protocol is not supported in FIPS mode
541 21D Remote partner indicates sent certificate is not valid
542 21E Remote partner indicates a handshake failure due to incompatible security parameters
543 21F Remote partner indicates sent TLS message is not valid
601 259 Protocol is not SSL V3, TLS V1, TLS V1.1, TLS V1.2, or TLS V1.3
602 25A Function identifier is not valid
603 25B Specified function enumerator is not valid
604 25C Send sequence number is near maximum value
605 25D Specified function not supported by protocol version
701 2BD Attribute identifier is not valid
702 2BE Attribute length is not valid
703 2BF Enumeration is not valid
704 2C0 Session identifier cache callback is not valid
705 2C1 Numeric value is not valid
706 2C2 Attribute parameter is not valid
707 2C3 TLS extension type is not valid
708 2C4 Supplied TLS extension data is not valid
code hex CMS ASN Certificate Parsing Error Description
---- --- ---------------------------------------------
21815297 14CE001 No more data
21815298 14CE002 Data value overflow
21815299 14CE003 Length value is not valid
21815300 14CE004 Data encoding is not valid
21815301 14CE005 Parameter is not valid
21815302 14CE006 Insufficient memory is available
21815303 14CE007 Indefinite-length encoding is not allowed
21815304 14CE008 Data element must be an ASN.1 primitive
21815305 14CE009 Data element must be constructed
21815306 14CE00A Data value is not present
21815307 14CE00B Indefinite-length encoding is not supported
21815308 14CE00C Unused bit count is not valid
21815309 14CE00D Unused bit count is not valid for a segmented bit string
21815310 14CE00E Data type is not correct
21815311 14CE00F Excess data found at end of data element
21815312 14CE010 Required data element is missing
21815313 14CE011 Selection is not within the valid range
21815314 14CE012 No selection found
21815315 14CE013 Syntax already set
21815316 14CE014 Character string cannot be converted
21815317 14CE015 Codeset is not allowed
21815318 14CE016 Attribute value is not valid
21815319 14CE017 Attribute value separator is missing
21815320 14CE018 Attribute value is missing
21815321 14CE019 Object identifier syntax error
21815322 14CE01A PKCS12 version is not correct
21815323 14CE01B Interval is not valid
21815324 14CE01C Object identifier element count is not valid
21815325 14CE01D Incorrect value for the first object identifier element
21815326 14CE01E Incorrect value for the second object identifier element
21815327 14CE01F Unknown attribute identifier
21815328 14CE020 Unknown critical certificate extension
21815329 14CE021 X.500 name syntax error
21815330 14CE022 Version is not supported
code hex CMS Certificate Management Error Description
---- --- --------------------------------------------
53817345 3353001 Insufficient memory is available
53817346 3353002 Certificate extension is not supported
53817347 3353003 Cryptographic algorithm is not supported
53817348 3353004 Signature is not correct
53817349 3353005 Cryptographic request failed
53817350 3353006 Input/Output request interrupted
53817351 3353007 Input/Output request failed
53817352 3353008 Verification password does not match
53817353 3353009 File or keyring not found
53817354 335300A Database is not valid
53817355 335300B Message not found
53817356 335300C Handle is not valid
53817357 335300D Record deleted
53817358 335300E Record not found
53817359 335300F Incorrect database type
53817360 3353010 Database is not open for update
53817361 3353011 Mutex request failed
53817362 3353012 Backup file already exists
53817363 3353013 Database already exists
53817364 3353014 Record is too big
53817365 3353015 Database password is expired
53817366 3353016 The password is not correct
53817367 3353017 Access denied
53817368 3353018 Database is locked for update
53817369 3353019 Record length is too small
53817370 335301A No private key
53817371 335301B Record label is not valid
53817372 335301C Record label is not unique
53817373 335301D Record type is not valid
53817374 335301E Duplicate certificate
53817375 335301F Incorrect Base64 encoding
53817376 3353020 Unrecognized file or message encoding
53817377 3353021 Certificate is not yet valid
53817378 3353022 Certificate is expired
53817379 3353023 Name format is not supported
53817380 3353024 Issuer certificate not found
53817381 3353025 Certification path is too long
53817382 3353026 Incorrect key usage
53817383 3353027 Issuer is not a certification authority
53817384 3353028 Export file format is not supported
53817385 3353029 Cryptographic algorithm is not available
53817386 335302A Record type cannot be changed
53817387 335302B Subject name cannot be changed
53817388 335302C Subject public key cannot be changed
53817389 335302D Default key cannot be changed
53817390 335302E Database contains certificates signed by the certificate
53817391 335302F Certificate chain is not trusted
53817392 3353030 Key not supported by encryption or signature algorithm
53817393 3353031 Signer certificate not found
53817394 3353032 Content type is not supported
53817395 3353033 Recipient certificate not found
53817396 3353034 Encryption key size is not supported
53817397 3353035 Encryption key parity is not correct
53817398 3353036 Encryption key is weak
53817399 3353037 Initial vector size is not correct
53817400 3353038 Encryption data size is not correct
53817401 3353039 Encryption block format is not correct
53817402 335303A Number does not have a modular inverse
53817403 335303B LDAP processing error
53817404 335303C LDAP is not available
53817405 335303D Digest data size is not correct
53817406 335303E Database name is not valid
53817407 335303F Database open failed
53817408 3353040 Self-signed certificate not in database
53817409 3353041 Certificate is revoked
53817410 3353042 Issuer name is not valid
53817411 3353043 Subject name is not valid
53817412 3353044 Name constraints violated
53817413 3353045 No content data
53817414 3353046 Version is not supported
53817415 3353047 Subject name is same as signer name
53817416 3353048 Diffie-Hellman group parameters are not valid
53817417 3353049 Diffie-Hellman values are not valid
53817418 335304A Digital Signature Standard parameters are not valid
53817419 335304B Certificate not valid for host
53817420 335304C No certificate in import file
53817421 335304D Content-type authenticated attribute not allowed
53817422 335304E Message-digest authenticated attribute not allowed
53817423 335304F Attribute identifier is not valid
53817424 3353050 Enumeration value is not valid
53817425 3353051 Certificate Authority certificate not supplied
53817426 3353052 Validation option is not valid
53817427 3353053 Certificate request not supplied
53817428 3353054 Public key info not supplied
53817429 3353055 Modulus bits not supplied
53817430 3353056 Exponent not supplied
53817431 3353057 Private key info not supplied
53817432 3353058 Modulus not supplied
53817433 3353059 Public exponent not supplied
53817434 335305A Private exponent not supplied
53817435 335305B First prime not supplied
53817436 335305C Second prime not supplied
53817437 335305D First prime exponent not supplied
53817438 335305E Second prime exponent not supplied
53817439 335305F CRT coefficient not supplied
53817440 3353060 Certificate revocation list cannot be found
53817441 3353061 Multiple certificates exist for label
53817442 3353062 Multiple keys are marked as the default
53817443 3353063 Duplicate label encountered for CA in import chain
53817444 3353064 Digest type and key type are incompatible
53817445 3353065 Generate random bytes input buffer not valid
53817446 3353066 Generate random bytes produced duplicate output
53817447 3353067 Known Answer Test has failed
53817448 3353068 API is not supported
53817449 3353069 Key database is not a FIPS mode database
53817450 335306A Key database can only be opened for update if running in FIPS mode
53817451 335306B Cannot switch from non-FIPS mode to FIPS mode
53817452 335306C Attempt to execute in FIPS mode failed
53817453 335306D Acceptable policy intersection cannot be found
53817454 335306E Variable argument count is not valid
53817455 335306F Required certificate extension is missing
53817456 3353070 Certificate extension data is incorrect
53817457 3353071 Certificate extension has an incorrect critical indicator
53817458 3353072 Certificate contains a duplicate extension
53817459 3353073 Cannot match CRL distribution points
53817460 3353074 FIPS mode key generation failed pair-wise consistency check
53817461 3353075 TASK mode required for operation
53817462 3353076 Prime not supplied
53817463 3353077 Subprime not supplied
53817464 3353078 Base not supplied
53817465 3353079 Private value not supplied
53817466 335307A Public value not supplied
53817467 335307B Private key structure not supplied
53817468 335307C Public key structure not supplied
53817469 335307D Size specified for supplied structure is too small
53817470 335307E Elliptic Curve is not supported
53817471 335307F EC Parameters not supplied
53817472 3353080 Signature not supplied
53817473 3353081 Elliptic curve parameters are not valid
53817474 3353082 Elliptic curve not supported in FIPS mode
53817475 3353083 ICSF services are not available
53817476 3353084 ICSF callable service returned an error
53817477 3353085 ICSF PKCS #11 not operating in FIPS mode
53817478 3353086 Incorrect key algorithm
53817479 3353087 Certificate revocation list is expired
53817480 3353088 Cryptographic hardware does not support service or algorithm
53817481 3353089 ICSF PKCS #11 services are disabled
53817482 335308A Known Answer Test has failed when attempting to use ICSF
53817483 335308B Variable argument validate root is not valid
53817484 335308C PKCS #11 label name not valid
53817485 335308D Incorrect key attribute
53817486 335308E PKCS #11 object was not found
53817487 335308F An algorithm or key size is not FIPS approved for an ICSF operation
53817488 3353090 PKCS #11 key cannot be extracted
53817489 3353091 A failure occured when calling Unicode Services
53817490 3353092 A non UTF-8 character was encountered
53817491 3353093 Clear key support not available due to ICSF key policy
53817492 3353094 OCSP responder requires a signed request
53817493 3353095 HTTP response is not valid
53817494 3353096 OCSP response is not valid
53817495 3353097 OCSP request failed with internal responder error
53817496 3353098 OCSP response is expired
53817497 3353099 Numeric value is not valid
53817498 335309A PKCS #7 CMS version is not supported
53817499 335309B Input certificate not supplied
53817500 335309C Error creating OCSP request
53817501 335309D Maximum response size exceeded
53817502 335309E HTTP server communication error
53817503 335309F Variable argument security level is not valid
53817504 33530A0 Extended key usage input count is not valid
53817505 33530A1 Extended key usage input is not supplied
53817506 33530A2 Extended key usage comparison failed
53817507 33530A3 Extended key usage type is not supported for this operation
53817508 33530A4 Certificate does not have an extended key usage extension
53817509 33530A5 Nonce in OCSP response does not match value in OCSP request
53817510 33530A6 OCSP response not received within configured time limit
53817511 33530A7 Revocation information is not yet valid
53817512 33530A8 HTTP server host name is not valid
53817513 33530A9 An internal error has occurred
53817514 33530AA Required basic constraints certificate extension is missing
53817515 33530AB PKCS #12 input certificate has no subject DN or friendly name
53817516 33530AC PKCS #12 file name may not end with .kdb, .rdb or .sth
53817517 33530AD Required parameter is not set
53817518 33530AE Maximum number of locations allowed to be contacted during certificate validation has been reached
53817519 33530AF HTTP response not received within configured time limit
53817520 33530B0 LDAP response not received within configured time limit
53817521 33530B1 An unknown error has occurred
53817522 33530B2 OCSP request failed with try later error
53817523 33530B3 Signature algorithm pairs list is not valid
53817524 33530B4 OCSP response signature algorithm not in signature algorithm pairs list
53817525 33530B5 Cannot switch from one FIPS mode level to another FIPS mode level
53817526 33530B6 OCSP request signature algorithm pair is not valid
53817527 33530B7 OCSP response does not contain requested certificate status
53817528 33530B8 OCSP response contains duplicate certificate statuses
53817529 33530B9 Triple DES key parts are not unique
53817530 33530BA Certificate does not meet Suite B requirements
53817531 33530BB Certificate database is not supported
53817532 33530BC Time value is not valid
53817533 33530BD Output parameter is not valid
53817534 33530BE Format is not valid
53817535 33530BF Expiration date exceeds February 6, 2106 at 23:59:59 UTC
53817536 33530C0 RSASSA-PSS digest algorithm is not supported
53817537 33530C1 RSASSA-PSS mask generation algorithm is not supported
53817538 33530C2 PKDS RSA private key type not valid for RSASSA-PSS signature generation
