openssl or windows certutil -dump both identify it was signed sha1.
Algorithm ObjectId: 1.2.840.1135188.8.131.52 sha1RSA
CA refuses to sign it
Release : 16.0
Component : CA ACF2 for z/OS
Apply ACF2 R16 enhancement SO16122, that changes the hashing algorithm from SHA1 to SHA256 when generating a CSR.
To complete the sysmod implementation follow up by 'F ACF2,NEWMOD(SAFAAMSG)'