Processing cases on certificate validation errors

In a situation where the system processes an invalid signature, the system sends email informing of specific identifiers of those cases when the invalid signed content has been marked as valid.

In this case, it is required to manually check that the signature is valid:

Login to the digital signature database on the production environment.
Run the following script in the signature table to understand the extent of the problem for a certain period of time:

SELECT signatures, count(1) from invalid_content
WHERE inserted_at >= 'YYYY-MM-DD'
GROUP BY signatures;

In the column signature that appears, select the values and substitute in the following script:

SELECT content FROM invalid_content WHERE signatures = '***';

where *** is any value of the content column.

In the content, need to find the identifier of the signed content (eg declaration.id, medication_request.id etc.).
Find the signed content in the object storage using this identifier.
Download the signed content and verify the validity of the digital signature using the service: https://czo.gov.ua/verify.