It's possible to bruteforce did:plc's with only 2 sha256 ops in the inner loop. The search space is only 120-bit, so you can find collisions in ~2^60 iterations (due to birthday paradox). This is definitely feasible. (for reference the Bitcoin network performs 2^60 sha256 ops every few milliseconds)