SAML Signature validation failed in ASP.NET when Assertion Signature signed

my client is using OKTA for SSO for my ASP.NET application, my app is using below code to validate the
signature to authenticate the SAML request. this is working fine if “Assertion signature” is unsigned. when it changes to signed it is failing. Do i need to handel it differently in .NET side?

Names space using : “System.Security.Cryptography.X509Certificates”

XmlDocument xDoc = new XmlDocument();
xDoc.PreserveWhitespace = true;
samldata = samldata.Replace(@"", “”);
xDoc.LoadXml(samldata);

           var xDoc2 = GetDecryptedAssertion(certificate, xDoc);


           using (var store = new X509Store(StoreName.My, StoreLocation.LocalMachine))
   {
          store.Open(OpenFlags.ReadOnly);
          var cert = store.Certificates.Find(X509FindType.FindBySubjectName, samlcert, true);
          if (cert.Count == 0)
                throw new Exception("Saml certificate not found");
          verificationCertification = cert[0];

          store.Close();
   }

   XmlNodeList nodeList = xDoc.SelectNodes("//ds:Signature", xMan);
   SignedXml signedXml = new SignedXml(xDoc);
   signedXml.LoadXml((XmlElement)nodeList[0]);
   status = signedXml.CheckSignature(verificationCertification, true);

Was your problem resolved? I have a similar issue in ASP.net C#