Open wouterbeek opened 7 years ago
The Amazon documentation states:
The domain echo-api.amazon.com is present in the Subject Alternative Names (SANs) section of the signing certificate
I cannot find this section in the certificates I'm getting from the Service Simulator:
[ [ version(2), notbefore(1469750400), notafter(1511956800), serial('<HASH>'), subject(['C'='US', 'ST'='Washington', 'L'='Seattle', 'O'='Amazon.com Inc.', 'CN'='s3.amazonaws.com']), hash("<HASH>"), signature("<HASH>"), signature_algorithm('RSA-SHA256'), to_be_signed("<HASH>"), issuer_name(['C'='US', 'O'='DigiCert Inc', 'OU'='www.digicert.com', 'CN'='DigiCert Baltimore CA-2 G2']), key(public_key(rsa("<HASH>", "010001", -, -, -, -, -, -))), crl([ 'http://crl3.digicert.com/DigiCertBaltimoreCA-2G2.crl', 'http://crl4.digicert.com/DigiCertBaltimoreCA-2G2.crl' ]) ],[ version(2), notbefore(1449576307), notafter(1746878400), serial('<HASH>'), subject(['C'='US', 'O'='DigiCert Inc', 'OU'='www.digicert.com', 'CN'='DigiCert Baltimore CA-2 G2']), hash("<HASH>"), signature("<HASH>"), signature_algorithm('RSA-SHA256'), to_be_signed("<HASH>"), issuer_name(['C'='IE', 'O'='Baltimore', 'OU'='CyberTrust', 'CN'='Baltimore CyberTrust Root']), key(public_key(rsa("<HASH>", "010001", -, -, -, -, -, -))), crl(['http://crl3.digicert.com/Omniroot2025.crl']) ] ].
The Amazon documentation states:
I cannot find this section in the certificates I'm getting from the Service Simulator: