Apart from obvious performance considerations, is there any mathematical or crypto reasons that imply that we sign a hash rather than a raw content ?
I read that it was because the hash must fit in the modulo size, but on the reverse when one encrypt with a public key RSA, the "size" doesn't seem to be a problem (ex: I never heard something like "we can't encrypt a file bigger than 256 bytes using a RSA public key").
Apart from performance/optimization, why don't we sign raw byte x509 certificate rather than hash ?
