Strict CSP policy, which should allow to load scripts from origin and execute all hashed inline scripts with hashes, but it fails!

default-src 'self'; script-src 'self' 'sha256-aPK+M1Ic/YyssLh6WKqbat5IIKD6wwh/hyWW5D53D9k=' 'strict-dynamic' 'unsafe-inline';

Tip: Open DevTools on the Console tab

CSP with all script hashes & SRI page
Simple CSP policy page

Demo

inline script disabled
/root-script.js disabled
/folder/non-root-script.js disabled