Set-cookie: HttpOnly flag seems to misinterpreted by Observatory checks

[ArtM01]

The Raw Server Headers are correctly shown but Observatory checks indicate the flag is missing.

Set-Cookie ASPSESSIONIDAUTAQTCS=; secure; path=/; HttpOnly

Can you please let me know if there is anything wrong with it?