This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

Connecting to AWS Cognito

I am trying to modify the https_client example from ncs\nrf\samples\nrf9160\https_client on Thingy91 so that it will retrieve an authentifcation token from AWS Cognito.
So far I have changed the certificate to Amazon Root CA 1, changed the URL to "cognito-idp.eu-central-1.amazonaws.com" instead of "google.com" and sending the following data to the server (sensitive data blanked here) instead of HTTP_HEAD as in the example:
   "POST / HTTP/1.1\r\n" \
   "Host: cognito-idp.eu-central-1.amazonaws.com\r\n" \
   "Content-Type: application/x-amz-json-1.1\r\n" \
   "X-Amz-Target: AWSCognitoIdentityProviderService.InitiateAuth\r\n" \
   "Content-Length: 149\r\n" \
   "\r\n" \
   "{\"AuthParameters\": {\"USERNAME\": \"xxxxxxxxx\", \"PASSWORD\": \"xxxxxxxxxxxx\"}, \"AuthFlow\": \"USER_PASSWORD_AUTH\", \"ClientId\": \"xxxxxxxxxxxxxxxxxxxxxxxxxx\"}"

When I send this payload to AWS cognito using openssl s_client on a PC, I get the authentification token, but running on Thingy I just receive an empty reply from the server (zero bytes received, further reads produce an error: -1).
I substituted the certificate for the old one which is not in the verification chain of the cognito server and already the connect command fails, so I can rule out that the certificate is wrong.
I changed Content-Length to a value less than 149 and then I get a BAD REQUEST reply. If I change to something larger than 149, recv will block (which is to be expected as the server is still waiting for the missing payload).
I also tried to wait 2s between send and recv, but I still got an empty response from the server.
Any ideas what to do?

0 Øyvind over 4 years ago

Hello,

Have you verified the connection to the server? While doing HTTP requests from servers, we have seen that servers respond with too many certificates causing an issue. The reason for this is that the nRF9160 only has 2k of RAM for certificates, while a web server might return 16k. This explains why you are successful on your PC.

Can you please provide a modem trace? This way we can see what actually happens in the communication between server and device.

Thank you!

Kind regards,
Øyvind
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Christian A. over 4 years ago in reply to Øyvind

The COM port disappears from time to time (and thus Trace Collector loses the connection or cannot establish it). I have put the application in a reboot loop but I could not get a useful trace so far. Is it possible to buffer the trace on the device?

From

openssl s_client -connect cognito-idp.eu-central-1.amazonaws.com:443 -debug

I get the following:

christian@debian:/windows/AWS/ExampleServer/certs$ openssl s_client -connect cognito-idp.eu-central-1.amazonaws.com:443 -debug
CONNECTED(00000003)
write to 0x560846516080 [0x560846528710] (330 bytes => 330 (0x14A))
0000 - 16 03 01 01 45 01 00 01-41 03 03 c7 d8 d1 ac 5b   ....E...A......[
0010 - f0 db a0 74 0a 91 a9 f9-40 45 88 fa 8b 9a 74 81   [email protected].
0020 - f4 18 a3 b9 db 13 1d 0b-27 72 40 20 30 4c fa 1e   ........'r@ 0L..
0030 - 3f ba 0a b1 2c f2 d5 43-7a 8a 0d 65 ef 7e 11 09   ?...,..Cz..e.~..
0040 - 1a 48 c4 53 c1 28 54 69-17 b8 fc 42 00 3e 13 02   .H.S.(Ti...B.>..
0050 - 13 03 13 01 c0 2c c0 30-00 9f cc a9 cc a8 cc aa   .....,.0........
0060 - c0 2b c0 2f 00 9e c0 24-c0 28 00 6b c0 23 c0 27   .+./...$.(.k.#.'
0070 - 00 67 c0 0a c0 14 00 39-c0 09 c0 13 00 33 00 9d   .g.....9.....3..
0080 - 00 9c 00 3d 00 3c 00 35-00 2f 00 ff 01 00 00 ba   ...=.<.5./......
0090 - 00 00 00 2b 00 29 00 00-26 63 6f 67 6e 69 74 6f   ...+.)..&cognito
00a0 - 2d 69 64 70 2e 65 75 2d-63 65 6e 74 72 61 6c 2d   -idp.eu-central-
00b0 - 31 2e 61 6d 61 7a 6f 6e-61 77 73 2e 63 6f 6d 00   1.amazonaws.com.
00c0 - 0b 00 04 03 00 01 02 00-0a 00 0c 00 0a 00 1d 00   ................
00d0 - 17 00 1e 00 19 00 18 00-23 00 00 00 16 00 00 00   ........#.......
00e0 - 17 00 00 00 0d 00 2a 00-28 04 03 05 03 06 03 08   ......*.(.......
00f0 - 07 08 08 08 09 08 0a 08-0b 08 04 08 05 08 06 04   ................
0100 - 01 05 01 06 01 03 03 03-01 03 02 04 02 05 02 06   ................
0110 - 02 00 2b 00 05 04 03 04-03 03 00 2d 00 02 01 01   ..+........-....
0120 - 00 33 00 26 00 24 00 1d-00 20 5f f2 f9 82 3a 7f   .3.&.$... _...:.
0130 - c6 7a ab d9 16 25 27 29-71 12 79 ce a0 74 ad 53   .z...%')q.y..t.S
0140 - 63 07 05 33 c4 92 4f 40-c1 0e                     c..3..O@..
read from 0x560846516080 [0x56084651f403] (5 bytes => 5 (0x5))
0000 - 16 03 03 00 3d                                    ....=
read from 0x560846516080 [0x56084651f408] (61 bytes => 61 (0x3D))
0000 - 02 00 00 39 03 03 de 51-52 a8 f8 5e b4 5c 28 d6   ...9...QR..^.\(.
0010 - 16 b9 37 91 cb f6 5f b4-0e de d8 cd 5b 87 62 f8   ..7..._.....[.b.
0020 - e7 af 11 cd 40 72 00 c0-2f 00 00 11 ff 01 00 01   ....@r../.......
0030 - 00 00 0b 00 04 03 00 01-02 00 23 00 00            ..........#..
read from 0x560846516080 [0x56084651f403] (5 bytes => 5 (0x5))
0000 - 16 03 03 13 08                                    .....
read from 0x560846516080 [0x56084651f408] (4872 bytes => 4249 (0x1099))
0000 - 0b 00 13 04 00 13 01 00-05 99 30 82 05 95 30 82   ..........0...0.
0010 - 04 7d a0 03 02 01 02 02-10 03 fd 6b 2a 59 31 db   .}.........k*Y1.
0020 - 7d a9 12 8f 9f af e0 0f-84 30 0d 06 09 2a 86 48   }........0...*.H
0030 - 86 f7 0d 01 01 0b 05 00-30 46 31 0b 30 09 06 03   ........0F1.0...
0040 - 55 04 06 13 02 55 53 31-0f 30 0d 06 03 55 04 0a   U....US1.0...U..
0050 - 13 06 41 6d 61 7a 6f 6e-31 15 30 13 06 03 55 04   ..Amazon1.0...U.
0060 - 0b 13 0c 53 65 72 76 65-72 20 43 41 20 31 42 31   ...Server CA 1B1
0070 - 0f 30 0d 06 03 55 04 03-13 06 41 6d 61 7a 6f 6e   .0...U....Amazon
0080 - 30 1e 17 0d 31 39 30 38-31 39 30 30 30 30 30 30   0...190819000000
0090 - 5a 17 0d 32 30 30 39 31-39 31 32 30 30 30 30 5a   Z..200919120000Z
00a0 - 30 31 31 2f 30 2d 06 03-55 04 03 13 26 63 6f 67   011/0-..U...&cog
00b0 - 6e 69 74 6f 2d 69 64 70-2e 65 75 2d 63 65 6e 74   nito-idp.eu-cent
00c0 - 72 61 6c 2d 31 2e 61 6d-61 7a 6f 6e 61 77 73 2e   ral-1.amazonaws.
00d0 - 63 6f 6d 30 82 01 22 30-0d 06 09 2a 86 48 86 f7   com0.."0...*.H..
00e0 - 0d 01 01 01 05 00 03 82-01 0f 00 30 82 01 0a 02   ...........0....
00f0 - 82 01 01 00 aa 8c c7 45-4d ef 17 1d 33 9b 6c e3   .......EM...3.l.
0100 - 56 6b 4d 3c b0 6d 3f bc-71 e5 93 61 c6 01 20 f0   VkM<.m?.q..a.. .
0110 - 1a 8d ff 65 d1 70 15 07-a6 bb e6 30 81 09 3b da   ...e.p.....0..;.
0120 - 97 25 a0 58 97 a6 09 56-03 ff f8 27 c8 d8 67 81   .%.X...V...'..g.
0130 - ab 26 dd 6b 8f 17 39 64-83 d6 bd 65 1a 27 ef db   .&.k..9d...e.'..
0140 - 29 30 d8 6f 89 da 4c 85-9e 96 18 66 c0 cc df 45   )0.o..L....f...E
0150 - 35 c2 fd c1 3d dd ee 0e-d4 36 85 5c 84 d1 ff 25   5...=....6.\...%
0160 - e7 f6 ee 91 87 d3 fc c9-fd 4d ce 00 73 93 82 59   .........M..s..Y
0170 - 22 b2 89 cf df 97 c4 c2-d1 fd 4c 8a 0c 8c 58 66   ".........L...Xf
0180 - f1 1d d4 4c 7b 68 b0 a8-33 05 35 d7 ee 00 19 32   ...L{h..3.5....2
0190 - a5 3e 6b 5d f5 96 61 3d-82 8d 88 4a b2 b2 ef c1   .>k]..a=...J....
01a0 - 0c 4d cf d0 47 eb ad 67-4a f0 06 b8 8b 84 5d ae   .M..G..gJ.....].
01b0 - 76 5f 10 15 41 06 f7 b6-30 81 a8 5a 44 58 67 aa   v_..A...0..ZDXg.
01c0 - ae e1 fe 4d c1 79 9f 8a-c3 99 fe c1 9c 55 70 96   ...M.y.......Up.
01d0 - d1 d1 09 18 a1 36 93 83-2a 50 b2 cd 40 26 3c 71   .....6..*P..@&<q
01e0 - 4d 04 93 7c b1 d6 07 b3-ea 31 da 97 4a 5d 9b b3   M..|.....1..J]..
01f0 - 30 b1 a7 a3 02 03 01 00-01 a3 82 02 92 30 82 02   0............0..
0200 - 8e 30 1f 06 03 55 1d 23-04 18 30 16 80 14 59 a4   .0...U.#..0...Y.
0210 - 66 06 52 a0 7b 95 92 3c-a3 94 07 27 96 74 5b f9   f.R.{..<...'.t[.
0220 - 3d d0 30 1d 06 03 55 1d-0e 04 16 04 14 7e ff 1e   =.0...U......~..
0230 - 4a b2 50 7b 9f 62 9e 1a-8b a2 45 2d 8c 8e c2 44   J.P{.b....E-...D
0240 - c8 30 31 06 03 55 1d 11-04 2a 30 28 82 26 63 6f   .01..U...*0(.&co
0250 - 67 6e 69 74 6f 2d 69 64-70 2e 65 75 2d 63 65 6e   gnito-idp.eu-cen
0260 - 74 72 61 6c 2d 31 2e 61-6d 61 7a 6f 6e 61 77 73   tral-1.amazonaws
0270 - 2e 63 6f 6d 30 0e 06 03-55 1d 0f 01 01 ff 04 04   .com0...U.......
0280 - 03 02 05 a0 30 1d 06 03-55 1d 25 04 16 30 14 06   ....0...U.%..0..
0290 - 08 2b 06 01 05 05 07 03-01 06 08 2b 06 01 05 05   .+.........+....
02a0 - 07 03 02 30 3b 06 03 55-1d 1f 04 34 30 32 30 30   ...0;..U...40200
02b0 - a0 2e a0 2c 86 2a 68 74-74 70 3a 2f 2f 63 72 6c   ...,.*http://crl
02c0 - 2e 73 63 61 31 62 2e 61-6d 61 7a 6f 6e 74 72 75   .sca1b.amazontru
02d0 - 73 74 2e 63 6f 6d 2f 73-63 61 31 62 2e 63 72 6c   st.com/sca1b.crl
02e0 - 30 20 06 03 55 1d 20 04-19 30 17 30 0b 06 09 60   0 ..U. ..0.0...`
02f0 - 86 48 01 86 fd 6c 01 02-30 08 06 06 67 81 0c 01   .H...l..0...g...
0300 - 02 01 30 75 06 08 2b 06-01 05 05 07 01 01 04 69   ..0u..+........i
0310 - 30 67 30 2d 06 08 2b 06-01 05 05 07 30 01 86 21   0g0-..+.....0..!
0320 - 68 74 74 70 3a 2f 2f 6f-63 73 70 2e 73 63 61 31   http://ocsp.sca1
0330 - 62 2e 61 6d 61 7a 6f 6e-74 72 75 73 74 2e 63 6f   b.amazontrust.co
0340 - 6d 30 36 06 08 2b 06 01-05 05 07 30 02 86 2a 68   m06..+.....0..*h
0350 - 74 74 70 3a 2f 2f 63 72-74 2e 73 63 61 31 62 2e   ttp://crt.sca1b.
0360 - 61 6d 61 7a 6f 6e 74 72-75 73 74 2e 63 6f 6d 2f   amazontrust.com/
0370 - 73 63 61 31 62 2e 63 72-74 30 0c 06 03 55 1d 13   sca1b.crt0...U..
0380 - 01 01 ff 04 02 30 00 30-82 01 04 06 0a 2b 06 01   .....0.0.....+..
0390 - 04 01 d6 79 02 04 02 04-81 f5 04 81 f2 00 f0 00   ...y............
03a0 - 76 00 bb d9 df bc 1f 8a-71 b5 93 94 23 97 aa 92   v.......q...#...
03b0 - 7b 47 38 57 95 0a ab 52-e8 1a 90 96 64 36 8e 1e   {G8W...R....d6..
03c0 - d1 85 00 00 01 6c a7 3c-57 65 00 00 04 03 00 47   .....l.<We.....G
03d0 - 30 45 02 20 39 ac 99 e1-41 0b aa 05 e2 06 08 8d   0E. 9...A.......
03e0 - d9 2f 50 56 08 de 00 96-6f b1 74 ce 7d f5 f0 97   ./PV....o.t.}...
03f0 - b7 1e b1 ea 02 21 00 bf-b5 07 68 3e 02 b5 26 61   .....!....h>..&a
0400 - 09 ca de c1 b6 7a f5 6e-60 13 50 ff 2f c1 94 19   .....z.n`.P./...
0410 - 73 f3 68 61 d1 7d 3c 00-76 00 87 75 bf e7 59 7c   s.ha.}<.v..u..Y|
0420 - f8 8c 43 99 5f bd f3 6e-ff 56 8d 47 56 36 ff 4a   ..C._..n.V.GV6.J
0430 - b5 60 c1 b4 ea ff 5e a0-83 0f 00 00 01 6c a7 3c   .`....^......l.<
0440 - 57 98 00 00 04 03 00 47-30 45 02 20 42 21 54 58   W......G0E. B!TX
0450 - fd 6a ae 9f a6 28 5a 04-8f 38 81 ec a4 35 70 1f   .j...(Z..8...5p.
0460 - fd 66 8e 75 85 24 98 e9-e2 de 4f 08 02 21 00 a4   .f.u.$....O..!..
0470 - 25 30 ae 7f 40 1a d0 6a-af f3 70 e5 ae f2 c4 0a   %[email protected].....
0480 - ee 7a 3b b4 08 b9 45 28-7a bd 5c 79 eb a3 eb 30   .z;...E(z.\y...0
0490 - 0d 06 09 2a 86 48 86 f7-0d 01 01 0b 05 00 03 82   ...*.H..........
04a0 - 01 01 00 01 bb 9d 29 3e-2c b5 d9 56 70 f7 c8 d7   ......)>,..Vp...
04b0 - 50 23 3d ea 9e c7 c8 52-f0 4e 5b c7 11 25 85 94   P#=....R.N[..%..
04c0 - 5c d3 39 34 ef e9 3c 99-4d 5e d4 92 d1 ac dd 3d   \.94..<.M^.....=
04d0 - 3b 67 8a 66 77 01 42 17-1d 01 28 69 86 9a c2 b0   ;g.fw.B...(i....
04e0 - 72 ec 62 03 a5 10 d5 ed-68 3f 8e ea 29 18 de 80   r.b.....h?..)...
04f0 - 14 0a 73 1b ed 8a be 65-79 bc d4 36 c4 ce 78 7e   ..s....ey..6..x~
0500 - b7 01 b0 9d a1 9b 58 04-f1 51 1e 66 ea ec ea 23   ......X..Q.f...#
0510 - 1e d2 af c3 df 51 6b 24-0d 57 84 2b de 67 9d ed   .....Qk$.W.+.g..
0520 - 72 2c 57 b3 75 de c8 6e-1f 18 b5 fe 8d db ed 08   r,W.u..n........
0530 - 87 fc 96 af bf e0 50 42-d6 2d 9d 8a ab 54 8d a0   ......PB.-...T..
0540 - 9a 1c 48 ac 0f 9f 06 c6-e0 99 4f a2 5c 54 a3 44   ..H.......O.\T.D
0550 - dd 8c 2b b0 ee e3 7d d7-0e e9 76 cc b6 3a 86 14   ..+...}...v..:..
0560 - 35 63 58 d2 b7 bc 21 e3-a2 f8 fb 67 e4 9f 38 0a   5cX...!....g..8.
0570 - a5 5b 6a 02 0c 2a da e1-cd cc b9 2c d1 54 9d 5f   .[j..*.....,.T._
0580 - 62 97 0e 99 84 bc 01 a9-67 fc 6c 24 a8 a8 99 6e   b.......g.l$...n
0590 - a8 ab ce 1f b0 f1 53 66-f4 48 a1 85 df 26 dd 13   ......Sf.H...&..
05a0 - de 26 7d 00 04 4d 30 82-04 49 30 82 03 31 a0 03   .&}..M0..I0..1..
05b0 - 02 01 02 02 13 06 7f 94-57 85 87 e8 ac 77 de b2   ........W....w..
05c0 - 53 32 5b bc 99 8b 56 0d-30 0d 06 09 2a 86 48 86   S2[...V.0...*.H.
05d0 - f7 0d 01 01 0b 05 00 30-39 31 0b 30 09 06 03 55   .......091.0...U
05e0 - 04 06 13 02 55 53 31 0f-30 0d 06 03 55 04 0a 13   ....US1.0...U...
05f0 - 06 41 6d 61 7a 6f 6e 31-19 30 17 06 03 55 04 03   .Amazon1.0...U..
0600 - 13 10 41 6d 61 7a 6f 6e-20 52 6f 6f 74 20 43 41   ..Amazon Root CA
0610 - 20 31 30 1e 17 0d 31 35-31 30 32 32 30 30 30 30    10...1510220000
0620 - 30 30 5a 17 0d 32 35 31-30 31 39 30 30 30 30 30   00Z..25101900000
0630 - 30 5a 30 46 31 0b 30 09-06 03 55 04 06 13 02 55   0Z0F1.0...U....U
0640 - 53 31 0f 30 0d 06 03 55-04 0a 13 06 41 6d 61 7a   S1.0...U....Amaz
0650 - 6f 6e 31 15 30 13 06 03-55 04 0b 13 0c 53 65 72   on1.0...U....Ser
0660 - 76 65 72 20 43 41 20 31-42 31 0f 30 0d 06 03 55   ver CA 1B1.0...U
0670 - 04 03 13 06 41 6d 61 7a-6f 6e 30 82 01 22 30 0d   ....Amazon0.."0.
0680 - 06 09 2a 86 48 86 f7 0d-01 01 01 05 00 03 82 01   ..*.H...........
0690 - 0f 00 30 82 01 0a 02 82-01 01 00 c2 4e 16 67 dd   ..0.........N.g.
06a0 - ce bc 6a c8 37 5a ec 3a-30 b0 1d e6 d1 12 e8 12   ..j.7Z.:0.......
06b0 - 28 48 cc e8 29 c1 b9 6e-53 d5 a3 eb 03 39 1a cc   (H..)..nS....9..
06c0 - 77 87 f6 01 b9 d9 70 cc-cf 6b 8d e3 e3 03 71 86   w.....p..k....q.
06d0 - 99 6d cb a6 94 2a 4e 13-d6 a7 bd 04 ec 0a 16 3c   .m...*N........<
06e0 - 0a eb 39 b1 c4 b5 58 a3-b6 c7 56 25 ec 3e 52 7a   ..9...X...V%.>Rz
06f0 - a8 e3 29 16 07 b9 6e 50-cf fb 5f 31 f8 1d ba 03   ..)...nP.._1....
0700 - 4a 62 89 03 ae 3e 47 f2-0f 27 91 e3 14 20 85 f8   Jb...>G..'... ..
0710 - fa e9 8a 35 f5 5f 9e 99-4d e7 6b 37 ef a4 50 3e   ...5._..M.k7..P>
0720 - 44 ec fa 5a 85 66 07 9c-7e 17 6a 55 f3 17 8a 35   D..Z.f..~.jU...5
0730 - 1e ee e9 ac c3 75 4e 58-55 7d 53 6b 0a 6b 9b 14   .....uNXU}Sk.k..
0740 - 42 d7 e5 ac 01 89 b3 ea-a3 fe cf c0 2b 0c 84 c2   B...........+...
0750 - d8 53 15 cb 67 f0 d0 88-ca 3a d1 17 73 f5 5f 9a   .S..g....:..s._.
0760 - d4 c5 72 1e 7e 01 f1 98-30 63 2a aa f2 7a 2d c5   ..r.~...0c*..z-.
0770 - e2 02 1a 86 e5 32 3e 0e-bd 11 b4 cf 3c 93 ef 17   .....2>.....<...
0780 - 50 10 9e 43 c2 06 2a e0-0d 68 be d3 88 8b 4a 65   P..C..*..h....Je
0790 - 8c 4a d4 c3 2e 4c 9b 55-f4 86 e5 02 03 01 00 01   .J...L.U........
07a0 - a3 82 01 3b 30 82 01 37-30 12 06 03 55 1d 13 01   ...;0..70...U...
07b0 - 01 ff 04 08 30 06 01 01-ff 02 01 00 30 0e 06 03   ....0.......0...
07c0 - 55 1d 0f 01 01 ff 04 04-03 02 01 86 30 1d 06 03   U...........0...
07d0 - 55 1d 0e 04 16 04 14 59-a4 66 06 52 a0 7b 95 92   U......Y.f.R.{..
07e0 - 3c a3 94 07 27 96 74 5b-f9 3d d0 30 1f 06 03 55   <...'.t[.=.0...U
07f0 - 1d 23 04 18 30 16 80 14-84 18 cc 85 34 ec bc 0c   .#..0.......4...
0800 - 94 94 2e 08 59 9c c7 b2-10 4e 0a 08 30 7b 06 08   ....Y....N..0{..
0810 - 2b 06 01 05 05 07 01 01-04 6f 30 6d 30 2f 06 08   +........o0m0/..
0820 - 2b 06 01 05 05 07 30 01-86 23 68 74 74 70 3a 2f   +.....0..#http:/
0830 - 2f 6f 63 73 70 2e 72 6f-6f 74 63 61 31 2e 61 6d   /ocsp.rootca1.am
0840 - 61 7a 6f 6e 74 72 75 73-74 2e 63 6f 6d 30 3a 06   azontrust.com0:.
0850 - 08 2b 06 01 05 05 07 30-02 86 2e 68 74 74 70 3a   .+.....0...http:
0860 - 2f 2f 63 72 74 2e 72 6f-6f 74 63 61 31 2e 61 6d   //crt.rootca1.am
0870 - 61 7a 6f 6e 74 72 75 73-74 2e 63 6f 6d 2f 72 6f   azontrust.com/ro
0880 - 6f 74 63 61 31 2e 63 65-72 30 3f 06 03 55 1d 1f   otca1.cer0?..U..
0890 - 04 38 30 36 30 34 a0 32-a0 30 86 2e 68 74 74 70   .80604.2.0..http
08a0 - 3a 2f 2f 63 72 6c 2e 72-6f 6f 74 63 61 31 2e 61   ://crl.rootca1.a
08b0 - 6d 61 7a 6f 6e 74 72 75-73 74 2e 63 6f 6d 2f 72   mazontrust.com/r
08c0 - 6f 6f 74 63 61 31 2e 63-72 6c 30 13 06 03 55 1d   ootca1.crl0...U.
08d0 - 20 04 0c 30 0a 30 08 06-06 67 81 0c 01 02 01 30    ..0.0...g.....0
08e0 - 0d 06 09 2a 86 48 86 f7-0d 01 01 0b 05 00 03 82   ...*.H..........
08f0 - 01 01 00 85 92 be 35 bb-79 cf a3 81 42 1c e4 e3   ......5.y...B...
0900 - 63 73 53 39 52 35 e7 d1-ad fd ae 99 8a ac 89 12   csS9R5..........
0910 - 2f bb e7 6f 9a d5 4e 72-ea 20 30 61 f9 97 b2 cd   /..o..Nr. 0a....
0920 - a5 27 02 45 a8 ca 76 3e-98 4a 83 9e b6 e6 45 e0   .'.E..v>.J....E.
0930 - f2 43 f6 08 de 6d e8 6e-db 31 07 13 f0 2f 31 0d   .C...m.n.1.../1.
0940 - 93 6d 61 37 7b 58 f0 fc-51 98 91 28 02 4f 05 76   .ma7{X..Q..(.O.v
0950 - b7 d3 f0 1b c2 e6 5e d0-66 85 11 0f 2e 81 c6 10   ......^.f.......
0960 - 81 29 fe 20 60 48 f3 f2-f0 84 13 53 65 35 15 11   .). `H.....Se5..
0970 - 6b 82 51 40 55 57 5f 18-b5 b0 22 3e ad f2 5e a3   k.Q@UW_...">..^.
0980 - 01 e3 c3 b3 f9 cb 41 5a-e6 52 91 bb e4 36 87 4f   ......AZ.R...6.O
0990 - 2d a9 a4 07 68 35 ba 94-72 cd 0e ea 0e 7d 57 f2   -...h5..r....}W.
09a0 - 79 fc 37 c5 7b 60 9e b2-eb c0 2d 90 77 0d 49 10   y.7.{`....-.w.I.
09b0 - 27 a5 38 ad c4 12 a3 b4-a3 c8 48 b3 15 0b 1e e2   '.8.......H.....
09c0 - e2 19 dc c4 76 52 c8 bc-8a 41 78 70 d9 6d 97 b3   ....vR...Axp.m..
09d0 - 4a 8b 78 2d 5e b4 0f a3-4c 60 ca e1 47 cb 78 2d   J.x-^...L`..G.x-
09e0 - 12 17 b1 52 8b ca 39 2c-bd b5 2f c2 33 02 96 ab   ...R..9,../.3...
09f0 - da 94 7f 00 04 96 30 82-04 92 30 82 03 7a a0 03   ......0...0..z..
0a00 - 02 01 02 02 13 06 7f 94-4a 2a 27 cd f3 fa c2 ae   ........J*'.....
0a10 - 2b 01 f9 08 ee b9 c4 c6-30 0d 06 09 2a 86 48 86   +.......0...*.H.
0a20 - f7 0d 01 01 0b 05 00 30-81 98 31 0b 30 09 06 03   .......0..1.0...
0a30 - 55 04 06 13 02 55 53 31-10 30 0e 06 03 55 04 08   U....US1.0...U..
0a40 - 13 07 41 72 69 7a 6f 6e-61 31 13 30 11 06 03 55   ..Arizona1.0...U
0a50 - 04 07 13 0a 53 63 6f 74-74 73 64 61 6c 65 31 25   ....Scottsdale1%
0a60 - 30 23 06 03 55 04 0a 13-1c 53 74 61 72 66 69 65   0#..U....Starfie
0a70 - 6c 64 20 54 65 63 68 6e-6f 6c 6f 67 69 65 73 2c   ld Technologies,
0a80 - 20 49 6e 63 2e 31 3b 30-39 06 03 55 04 03 13 32    Inc.1;09..U...2
0a90 - 53 74 61 72 66 69 65 6c-64 20 53 65 72 76 69 63   Starfield Servic
0aa0 - 65 73 20 52 6f 6f 74 20-43 65 72 74 69 66 69 63   es Root Certific
0ab0 - 61 74 65 20 41 75 74 68-6f 72 69 74 79 20 2d 20   ate Authority -
0ac0 - 47 32 30 1e 17 0d 31 35-30 35 32 35 31 32 30 30   G20...1505251200
0ad0 - 30 30 5a 17 0d 33 37 31-32 33 31 30 31 30 30 30   00Z..37123101000
0ae0 - 30 5a 30 39 31 0b 30 09-06 03 55 04 06 13 02 55   0Z091.0...U....U
0af0 - 53 31 0f 30 0d 06 03 55-04 0a 13 06 41 6d 61 7a   S1.0...U....Amaz
0b00 - 6f 6e 31 19 30 17 06 03-55 04 03 13 10 41 6d 61   on1.0...U....Ama
0b10 - 7a 6f 6e 20 52 6f 6f 74-20 43 41 20 31 30 82 01   zon Root CA 10..
0b20 - 22 30 0d 06 09 2a 86 48-86 f7 0d 01 01 01 05 00   "0...*.H........
0b30 - 03 82 01 0f 00 30 82 01-0a 02 82 01 01 00 b2 78   .....0.........x
0b40 - 80 71 ca 78 d5 e3 71 af-47 80 50 74 7d 6e d8 d7   .q.x..q.G.Pt}n..
0b50 - 88 76 f4 99 68 f7 58 21-60 f9 74 84 01 2f ac 02   .v..h.X!`.t../..
0b60 - 2d 86 d3 a0 43 7a 4e b2-a4 d0 36 ba 01 be 8d db   -...CzN...6.....
0b70 - 48 c8 07 17 36 4c f4 ee-88 23 c7 3e eb 37 f5 b5   H...6L...#.>.7..
0b80 - 19 f8 49 68 b0 de d7 b9-76 38 1d 61 9e a4 fe 82   ..Ih....v8.a....
0b90 - 36 a5 e5 4a 56 e4 45 e1-f9 fd b4 16 fa 74 da 9c   6..JV.E......t..
0ba0 - 9b 35 39 2f fa b0 20 50-06 6c 7a d0 80 b2 a6 f9   .59/.. P.lz.....
0bb0 - af ec 47 19 8f 50 38 07-dc a2 87 39 58 f8 ba d5   ..G..P8....9X...
0bc0 - a9 f9 48 67 30 96 ee 94-78 5e 6f 89 a3 51 c0 30   ..Hg0...x^o..Q.0
0bd0 - 86 66 a1 45 66 ba 54 eb-a3 c3 91 f9 48 dc ff d1   .f.Ef.T.....H...
0be0 - e8 30 2d 7d 2d 74 70 35-d7 88 24 f7 9e c4 59 6e   .0-}-tp5..$...Yn
0bf0 - bb 73 87 17 f2 32 46 28-b8 43 fa b7 1d aa ca b4   .s...2F(.C......
0c00 - f2 9f 24 0e 2d 4b f7 71-5c 5e 69 ff ea 95 02 cb   ..$.-K.q\^i.....
0c10 - 38 8a ae 50 38 6f db fb-2d 62 1b c5 c7 1e 54 e1   8..P8o..-b....T.
0c20 - 77 e0 67 c8 0f 9c 87 23-d6 3f 40 20 7f 20 80 c4   w.g....#.?@ . ..
0c30 - 80 4c 3e 3b 24 26 8e 04-ae 6c 9a c8 aa 0d 02 03   .L>;$&...l......
0c40 - 01 00 01 a3 82 01 31 30-82 01 2d 30 0f 06 03 55   ......10..-0...U
0c50 - 1d 13 01 01 ff 04 05 30-03 01 01 ff 30 0e 06 03   .......0....0...
0c60 - 55 1d 0f 01 01 ff 04 04-03 02 01 86 30 1d 06 03   U...........0...
0c70 - 55 1d 0e 04 16 04 14 84-18 cc 85 34 ec bc 0c 94   U..........4....
0c80 - 94 2e 08 59 9c c7 b2 10-4e 0a 08 30 1f 06 03 55   ...Y....N..0...U
0c90 - 1d 23 04 18 30 16 80 14-9c 5f 00 df aa 01 d7 30   .#..0...._.....0
0ca0 - 2b 38 88 a2 b8 6d 4a 9c-f2 11 91 83 30 78 06 08   +8...mJ.....0x..
0cb0 - 2b 06 01 05 05 07 01 01-04 6c 30 6a 30 2e 06 08   +........l0j0...
0cc0 - 2b 06 01 05 05 07 30 01-86 22 68 74 74 70 3a 2f   +.....0.."http:/
0cd0 - 2f 6f 63 73 70 2e 72 6f-6f 74 67 32 2e 61 6d 61   /ocsp.rootg2.ama
0ce0 - 7a 6f 6e 74 72 75 73 74-2e 63 6f 6d 30 38 06 08   zontrust.com08..
0cf0 - 2b 06 01 05 05 07 30 02-86 2c 68 74 74 70 3a 2f   +.....0..,http:/
0d00 - 2f 63 72 74 2e 72 6f 6f-74 67 32 2e 61 6d 61 7a   /crt.rootg2.amaz
0d10 - 6f 6e 74 72 75 73 74 2e-63 6f 6d 2f 72 6f 6f 74   ontrust.com/root
0d20 - 67 32 2e 63 65 72 30 3d-06 03 55 1d 1f 04 36 30   g2.cer0=..U...60
0d30 - 34 30 32 a0 30 a0 2e 86-2c 68 74 74 70 3a 2f 2f   402.0...,http://
0d40 - 63 72 6c 2e 72 6f 6f 74-67 32 2e 61 6d 61 7a 6f   crl.rootg2.amazo
0d50 - 6e 74 72 75 73 74 2e 63-6f 6d 2f 72 6f 6f 74 67   ntrust.com/rootg
0d60 - 32 2e 63 72 6c 30 11 06-03 55 1d 20 04 0a 30 08   2.crl0...U. ..0.
0d70 - 30 06 06 04 55 1d 20 00-30 0d 06 09 2a 86 48 86   0...U. .0...*.H.
0d80 - f7 0d 01 01 0b 05 00 03-82 01 01 00 62 37 42 5c   ............b7B\
0d90 - bc 10 b5 3e 8b 2c e9 0c-9b 6c 45 e2 07 00 7a f9   ...>.,...lE...z.
0da0 - c5 58 0b b9 08 8c 3e ed-b3 25 3c b5 6f 50 e4 cd   .X....>..%<.oP..
0db0 - 35 6a a7 93 34 96 32 21-a9 48 44 ab 9c ed 3d b4   5j..4.2!.HD...=.
0dc0 - aa 73 6d e4 7f 16 80 89-6c cf 28 03 18 83 47 79   .sm.....l.(...Gy
0dd0 - a3 10 7e 30 5b ac 3b b0-60 e0 77 d4 08 a6 e1 1d   ..~0[.;.`.w.....
0de0 - 7c 5e c0 bb f9 9a 7b 22-9d a7 00 09 7e ac 46 17   |^....{"....~.F.
0df0 - 83 dc 9c 26 57 99 30 39-62 96 8f ed da de aa c5   ...&W.09b.......
0e00 - cc 1b 3e ca 43 68 6c 57-16 bc d5 0e 20 2e fe ff   ..>.ChlW.... ...
0e10 - c2 6a 5d 2e a0 4a 6d 14-58 87 94 e6 39 31 5f 7c   .j]..Jm.X...91_|
0e20 - 73 cb 90 88 6a 84 11 96-27 a6 ed d9 81 46 a6 7e   s...j...'....F.~
0e30 - a3 72 00 0a 52 3e 83 88-07 63 77 89 69 17 0f 39   .r..R>...cw.i..9
0e40 - 85 d2 ab 08 45 4d d0 51-3a fd 5d 5d 37 64 4c 7e   ....EM.Q:.]]7dL~
0e50 - 30 b2 55 24 42 9d 36 b0-5d 9c 17 81 61 f1 ca f9   0.U$B.6.]...a...
0e60 - 10 02 24 ab eb 0d 74 91-8d 7b 45 29 50 39 88 b2   ..$...t..{E)P9..
0e70 - a6 89 35 25 1e 14 6a 47-23 31 2f 5c 9a fa ad 9a   ..5%..jG#1/\....
0e80 - 0e 62 51 a4 2a a9 c4 f9-34 9d 21 18 00 04 79 30   .bQ.*...4.!...y0
0e90 - 82 04 75 30 82 03 5d a0-03 02 01 02 02 09 00 a7   ..u0..].........
0ea0 - 0e 4a 4c 34 82 b7 7f 30-0d 06 09 2a 86 48 86 f7   .JL4...0...*.H..
0eb0 - 0d 01 01 0b 05 00 30 68-31 0b 30 09 06 03 55 04   ......0h1.0...U.
0ec0 - 06 13 02 55 53 31 25 30-23 06 03 55 04 0a 13 1c   ...US1%0#..U....
0ed0 - 53 74 61 72 66 69 65 6c-64 20 54 65 63 68 6e 6f   Starfield Techno
0ee0 - 6c 6f 67 69 65 73 2c 20-49 6e 63 2e 31 32 30 30   logies, Inc.1200
0ef0 - 06 03 55 04 0b 13 29 53-74 61 72 66 69 65 6c 64   ..U...)Starfield
0f00 - 20 43 6c 61 73 73 20 32-20 43 65 72 74 69 66 69    Class 2 Certifi
0f10 - 63 61 74 69 6f 6e 20 41-75 74 68 6f 72 69 74 79   cation Authority
0f20 - 30 1e 17 0d 30 39 30 39-30 32 30 30 30 30 30 30   0...090902000000
0f30 - 5a 17 0d 33 34 30 36 32-38 31 37 33 39 31 36 5a   Z..340628173916Z
0f40 - 30 81 98 31 0b 30 09 06-03 55 04 06 13 02 55 53   0..1.0...U....US
0f50 - 31 10 30 0e 06 03 55 04-08 13 07 41 72 69 7a 6f   1.0...U....Arizo
0f60 - 6e 61 31 13 30 11 06 03-55 04 07 13 0a 53 63 6f   na1.0...U....Sco
0f70 - 74 74 73 64 61 6c 65 31-25 30 23 06 03 55 04 0a   ttsdale1%0#..U..
0f80 - 13 1c 53 74 61 72 66 69-65 6c 64 20 54 65 63 68   ..Starfield Tech
0f90 - 6e 6f 6c 6f 67 69 65 73-2c 20 49 6e 63 2e 31 3b   nologies, Inc.1;
0fa0 - 30 39 06 03 55 04 03 13-32 53 74 61 72 66 69 65   09..U...2Starfie
0fb0 - 6c 64 20 53 65 72 76 69-63 65 73 20 52 6f 6f 74   ld Services Root
0fc0 - 20 43 65 72 74 69 66 69-63 61 74 65 20 41 75 74    Certificate Aut
0fd0 - 68 6f 72 69 74 79 20 2d-20 47 32 30 82 01 22 30   hority - G20.."0
0fe0 - 0d 06 09 2a 86 48 86 f7-0d 01 01 01 05 00 03 82   ...*.H..........
0ff0 - 01 0f 00 30 82 01 0a 02-82 01 01 00 d5 0c 3a c4   ...0..........:.
1000 - 2a f9 4e e2 f5 be 19 97-5f 8e 88 53 b1 1f 3f cb   *.N....._..S..?.
1010 - cf 9f 20 13 6d 29 3a c8-0f 7d 3c f7 6b 76 38 63   .. .m):..}<.kv8c
1020 - d9 36 60 a8 9b 5e 5c 00-80 b2 2f 59 7f f6 87 f9   .6`..^\.../Y....
1030 - 25 43 86 e7 69 1b 52 9a-90 e1 71 e3 d8 2d 0d 4e   %C..i.R...q..-.N
1040 - 6f f6 c8 49 d9 b6 f3 1a-56 ae 2b b6 74 14 eb cf   o..I....V.+.t...
1050 - fb 26 e3 1a ba 1d 96 2e-6a 3b 58 94 89 47 56 ff   .&......j;X..GV.
1060 - 25 a0 93 70 53 83 da 84-74 14 c3 67 9e 04 68 3a   %..pS...t..g..h:
1070 - df 8e 40 5a 1d 4a 4e cf-43 91 3b e7 56 d6 00 70   [email protected].;.V..p
1080 - cb 52 ee 7b 7d ae 3a e7-bc 31 f9 45 f6 c2 60 cf   .R.{}.:..1.E..`.
1090 - 13 59 02 2b 80 cc 34 47-df                        .Y.+..4G.
read from 0x560846516080 [0x5608465204a1] (623 bytes => 623 (0x26F))
0000 - b9 de 90 65 6d 02 cf 2c-91 a6 a6 e7 de 85 18 49   ...em..,.......I
0010 - 7c 66 4e a3 3a 6d a9 b5-ee 34 2e ba 0d 03 b8 33   |fN.:m...4.....3
0020 - df 47 eb b1 6b 8d 25 d9-9b ce 81 d1 45 46 32 96   .G..k.%.....EF2.
0030 - 70 87 de 02 0e 49 43 85-b6 6c 73 bb 64 ea 61 41   p....IC..ls.d.aA
0040 - ac c9 d4 54 df 87 2f c7-22 b2 26 cc 9f 59 54 68   ...T../.".&..YTh
0050 - 9f fc be 2a 2f c4 55 1c-75 40 60 17 85 02 55 39   ...*/.U.u@`...U9
0060 - 8b 7f 05 02 03 01 00 01-a3 81 f0 30 81 ed 30 0f   ...........0..0.
0070 - 06 03 55 1d 13 01 01 ff-04 05 30 03 01 01 ff 30   ..U.......0....0
0080 - 0e 06 03 55 1d 0f 01 01-ff 04 04 03 02 01 86 30   ...U...........0
0090 - 1d 06 03 55 1d 0e 04 16-04 14 9c 5f 00 df aa 01   ...U......._....
00a0 - d7 30 2b 38 88 a2 b8 6d-4a 9c f2 11 91 83 30 1f   .0+8...mJ.....0.
00b0 - 06 03 55 1d 23 04 18 30-16 80 14 bf 5f b7 d1 ce   ..U.#..0...._...
00c0 - dd 1f 86 f4 5b 55 ac dc-d7 10 c2 0e a9 88 e7 30   ....[U.........0
00d0 - 4f 06 08 2b 06 01 05 05-07 01 01 04 43 30 41 30   O..+........C0A0
00e0 - 1c 06 08 2b 06 01 05 05-07 30 01 86 10 68 74 74   ...+.....0...htt
00f0 - 70 3a 2f 2f 6f 2e 73 73-32 2e 75 73 2f 30 21 06   p://o.ss2.us/0!.
0100 - 08 2b 06 01 05 05 07 30-02 86 15 68 74 74 70 3a   .+.....0...http:
0110 - 2f 2f 78 2e 73 73 32 2e-75 73 2f 78 2e 63 65 72   //x.ss2.us/x.cer
0120 - 30 26 06 03 55 1d 1f 04-1f 30 1d 30 1b a0 19 a0   0&..U....0.0....
0130 - 17 86 15 68 74 74 70 3a-2f 2f 73 2e 73 73 32 2e   ...http://s.ss2.
0140 - 75 73 2f 72 2e 63 72 6c-30 11 06 03 55 1d 20 04   us/r.crl0...U. .
0150 - 0a 30 08 30 06 06 04 55-1d 20 00 30 0d 06 09 2a   .0.0...U. .0...*
0160 - 86 48 86 f7 0d 01 01 0b-05 00 03 82 01 01 00 23   .H.............#
0170 - 1d e3 8a 57 ca 7d e9 17-79 4c f1 1e 55 fd cc 53   ...W.}..yL..U..S
0180 - 6e 3e 47 0f df c6 55 f2-b2 04 36 ed 80 1f 53 c4   n>G...U...6...S.
0190 - 5d 34 28 6b be c7 55 fc-67 ea cb 3f 7f 90 b2 33   ]4(k..U.g..?...3
01a0 - cd 1b 58 10 82 02 f8 f8-2f f5 13 60 d4 05 ce f1   ..X...../..`....
01b0 - 81 08 c1 dd a7 75 97 4f-18 b9 6d de f7 93 91 08   .....u.O..m.....
01c0 - ba 7e 40 2c ed c1 ea bb-76 9e 33 06 77 1d 0d 08   .~@,....v.3.w...
01d0 - 7f 53 dd 1b 64 ab 82 27-f1 69 d5 4d 5e ae f4 a1   .S..d..'.i.M^...
01e0 - c3 75 a7 58 44 2d f2 3c-70 98 ac ba 69 b6 95 77   .u.XD-.<p...i..w
01f0 - 7f 0f 31 5e 2c fc a0 87-3a 47 69 f0 79 5f f4 14   ..1^,...:Gi.y_..
0200 - 54 a4 95 5e 11 78 12 60-27 ce 9f c2 77 ff 23 53   T..^.x.`'...w.#S
0210 - 77 5d ba ff ea 59 e7 db-cf af 92 96 ef 24 9a 35   w]...Y.......$.5
0220 - 10 7a 9c 91 c6 0e 7d 99-f6 3f 19 df f5 72 54 e1   .z....}..?...rT.
0230 - 15 a9 07 59 7b 83 bf 52-2e 46 8c b2 00 64 76 1c   ...Y{..R.F...dv.
0240 - 48 d3 d8 79 e8 6e 56 cc-ae 2c 03 90 d7 19 38 99   H..y.nV..,....8.
0250 - e4 ca 09 19 5b ff 07 96-b0 a8 7f 34 49 df 56 a9   ....[......4I.V.
0260 - f7 b0 5f ed 33 ed 8c 47-b7 30 03 5d f4 03 8c      .._.3..G.0.]...
depth=2 C = US, O = Amazon, CN = Amazon Root CA 1
verify return:1
depth=1 C = US, O = Amazon, OU = Server CA 1B, CN = Amazon
verify return:1
depth=0 CN = cognito-idp.eu-central-1.amazonaws.com
verify return:1
read from 0x560846516080 [0x56084651f403] (5 bytes => 5 (0x5))
0000 - 16 03 03 01 4d                                    ....M
read from 0x560846516080 [0x56084651f408] (333 bytes => 333 (0x14D))
0000 - 0c 00 01 49 03 00 17 41-04 f9 c3 1c a8 37 cd 85   ...I...A.....7..
0010 - 05 c4 93 c0 a1 18 4a 3d-a6 98 74 5e c2 c3 37 d2   ......J=..t^..7.
0020 - 09 25 8b dc 31 30 ca ae-e3 98 63 9c 22 75 f6 66   .%..10....c."u.f
0030 - 70 d4 e3 c8 cf 4e e7 56-58 f8 b6 a0 ac 20 b0 a6   p....N.VX.... ..
0040 - bd 52 cd 52 24 7c dd bd-f9 06 01 01 00 50 1c b7   .R.R$|.......P..
0050 - c1 e3 4f a0 cb dd 8e 5d-23 10 5c 8f 5c d3 54 37   ..O....]#.\.\.T7
0060 - 60 98 f2 77 06 e8 4b c6-31 6b 4b 30 a1 72 6d 80   `..w..K.1kK0.rm.
0070 - eb 89 01 67 05 91 64 9f-40 77 e3 6c a7 d3 e5 e3   [email protected]....
0080 - 91 73 8f c1 fc f9 58 1f-53 c0 f5 d2 40 26 8a 9b   .s....X.S...@&..
0090 - f9 cb 8e 06 48 63 1d be-df 29 90 23 58 17 37 67   ....Hc...).#X.7g
00a0 - 13 b7 0c 76 5f c2 a4 c5-ff 51 63 ef fc fb 64 13   ...v_....Qc...d.
00b0 - d3 41 4e 26 69 d7 7b a1-b3 2d c8 80 ed fa 35 7b   .AN&i.{..-....5{
00c0 - b9 64 78 5d 8c 5e 0e e1-c1 97 18 f5 c7 b4 87 3b   .dx].^.........;
00d0 - 02 dc 65 4d e2 88 86 a5-c3 f4 6a e0 e6 79 f6 74   ..eM......j..y.t
00e0 - 40 4e ae 3d 45 d4 d0 2b-9b a0 3d b9 3a b4 29 1c   @N.=E..+..=.:.).
00f0 - bb a7 b0 8e ed 89 6a 85-4b 7d 33 3a c7 04 5f 6a   ......j.K}3:.._j
0100 - d9 fb 98 b2 21 5b 3d e3-b9 3f 77 8f 85 a9 55 2a   ....![=..?w...U*
0110 - 98 90 53 2d bc 38 88 1c-25 9e c6 f5 91 27 0c 3e   ..S-.8..%....'.>
0120 - a9 7f 11 81 7f 9b 81 ba-a7 00 e5 ce 97 23 20 93   .............# .
0130 - 9e 9d 7a af 24 c2 95 1a-75 3e 59 8e 7f ad b0 a5   ..z.$...u>Y.....
0140 - 4d 52 a9 37 7b 72 b1 4b-5b fb da 5f ca            MR.7{r.K[.._.
read from 0x560846516080 [0x56084651f403] (5 bytes => 5 (0x5))
0000 - 16 03 03 00 04                                    .....
read from 0x560846516080 [0x56084651f408] (4 bytes => 4 (0x4))
0000 - 0e 00 00 00                                       ....
write to 0x560846516080 [0x560846528710] (126 bytes => 126 (0x7E))
0000 - 16 03 03 00 46 10 00 00-42 41 04 a9 09 a7 ac fa   ....F...BA......
0010 - b6 a1 16 d4 b1 e7 e5 83-96 8e bc de 05 54 5e 4c   .............T^L
0020 - 60 f6 9b f9 d7 5f 9f c9-f9 91 49 12 99 0b a4 78   `...._....I....x
0030 - e9 7d 9b 9f 8e 60 f5 af-5a d7 ac 95 5b 63 34 bc   .}...`..Z...[c4.
0040 - a8 c1 ef e2 25 a4 b5 1d-52 99 b7 14 03 03 00 01   ....%...R.......
0050 - 01 16 03 03 00 28 a6 6e-7c f8 72 cd 28 41 82 3e   .....(.n|.r.(A.>
0060 - 35 1d ea 4a 97 64 69 a0-e3 81 72 48 bd fd 72 d3   5..J.di...rH..r.
0070 - bd ae 12 ae b1 f2 a0 9a-74 08 da da 7a 6f         ........t...zo
read from 0x560846516080 [0x56084651f403] (5 bytes => 5 (0x5))
0000 - 16 03 03 00 ea                                    .....
read from 0x560846516080 [0x56084651f408] (234 bytes => 234 (0xEA))
0000 - 04 00 00 e6 00 00 a8 c0-00 e0 7b e6 79 8f 74 42   ..........{.y.tB
0010 - 08 47 34 d8 41 b0 5f 6b-ca ce bb 64 28 09 10 e8   .G4.A._k...d(...
0020 - 5f 06 8e 87 59 80 9e a6-45 e5 bb a5 f4 de 15 e1   _...Y...E.......
0030 - fa 33 18 f0 dc a6 12 2e-e1 6d 6d 50 ea ad e0 e3   .3.......mmP....
0040 - ac 2d 54 6a d8 bc 96 ef-c3 48 53 8c ef 05 d2 d9   .-Tj.....HS.....
0050 - 96 ce 70 af d6 b0 2d 9d-a0 7f 85 58 33 42 e6 f8   ..p...-....X3B..
0060 - 73 73 d8 46 27 80 c8 99-ef 68 b7 d0 15 a6 ab 55   ss.F'....h.....U
0070 - 92 2b 0f d1 4d c9 96 74-2c 87 ed 6e 1c 1b de 96   .+..M..t,..n....
0080 - 90 3b d1 66 b0 9b f4 31-4e ce 9e 02 8c da 51 f4   .;.f...1N.....Q.
0090 - 5c 89 73 c2 9a 1f 6a 78-66 54 fe 5d 34 95 60 67   \.s...jxfT.]4.`g
00a0 - ec 9e 8d 32 82 ba 9b bd-81 9e 14 ba 12 27 99 b7   ...2.........'..
00b0 - a4 2b ce e0 c6 bc 2d 5f-63 0b 0c 13 ac ac ec fb   .+....-_c.......
00c0 - 47 f5 db 80 75 04 10 a8-71 7a 80 0d 89 c9 2c b0   G...u...qz....,.
00d0 - c8 40 31 e9 1a db 4b be-66 69 43 8d 57 c2 bb 8f   [email protected]...
00e0 - b8 0e 8c 4d 77 e1 c5 7d-a3 cf                     ...Mw..}..
read from 0x560846516080 [0x56084651f403] (5 bytes => 5 (0x5))
0000 - 14 03 03 00 01                                    .....
read from 0x560846516080 [0x56084651f408] (1 bytes => 1 (0x1))
0000 - 01                                                .
read from 0x560846516080 [0x56084651f403] (5 bytes => 5 (0x5))
0000 - 16 03 03 00 28                                    ....(
read from 0x560846516080 [0x56084651f408] (40 bytes => 40 (0x28))
0000 - af 44 11 44 95 dc ff b3-f6 5d 51 f9 ae c3 71 0f   .D.D.....]Q...q.
0010 - d9 d1 a1 a4 0d 3d 4c 1d-a2 8e f5 6c ad 95 1f 79   .....=L....l...y
0020 - 8f 94 e2 ed c1 51 6c a1-                          .....Ql.
---
Certificate chain
0 s:CN = cognito-idp.eu-central-1.amazonaws.com
   i:C = US, O = Amazon, OU = Server CA 1B, CN = Amazon
1 s:C = US, O = Amazon, OU = Server CA 1B, CN = Amazon
   i:C = US, O = Amazon, CN = Amazon Root CA 1
2 s:C = US, O = Amazon, CN = Amazon Root CA 1
   i:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2
3 s:C = US, ST = Arizona, L = Scottsdale, O = "Starfield Technologies, Inc.", CN = Starfield Services Root Certificate Authority - G2
   i:C = US, O = "Starfield Technologies, Inc.", OU = Starfield Class 2 Certification Authority
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=CN = cognito-idp.eu-central-1.amazonaws.com

issuer=C = US, O = Amazon, OU = Server CA 1B, CN = Amazon

---
No client certificate CA names sent
Peer signing digest: SHA512
Peer signature type: RSA
Server Temp Key: ECDH, P-256, 256 bits
---
SSL handshake has read 5580 bytes and written 456 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES128-GCM-SHA256
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol : TLSv1.2
    Cipher    : ECDHE-RSA-AES128-GCM-SHA256
    Session-ID: F6EB1C2C34480B1547D1B912B8CE064C705A135C7067BE4B611B5200FB9B4F97
    Session-ID-ctx:
    Master-Key: 8AE9C4807B6DF5FBBC4C118A429C1F44D16560347270F34AC4DADB18E7C32E9E46A14FC1579BEC9EF57CBD7C6412717D
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 43200 (seconds)
    TLS session ticket:
    0000 - 7b e6 79 8f 74 42 08 47-34 d8 41 b0 5f 6b ca ce   {.y.tB.G4.A._k..
    0010 - bb 64 28 09 10 e8 5f 06-8e 87 59 80 9e a6 45 e5   .d(..._...Y...E.
    0020 - bb a5 f4 de 15 e1 fa 33-18 f0 dc a6 12 2e e1 6d   .......3.......m
    0030 - 6d 50 ea ad e0 e3 ac 2d-54 6a d8 bc 96 ef c3 48   mP.....-Tj.....H
    0040 - 53 8c ef 05 d2 d9 96 ce-70 af d6 b0 2d 9d a0 7f   S.......p...-...
    0050 - 85 58 33 42 e6 f8 73 73-d8 46 27 80 c8 99 ef 68   .X3B..ss.F'....h
    0060 - b7 d0 15 a6 ab 55 92 2b-0f d1 4d c9 96 74 2c 87   .....U.+..M..t,.
    0070 - ed 6e 1c 1b de 96 90 3b-d1 66 b0 9b f4 31 4e ce   .n.....;.f...1N.
    0080 - 9e 02 8c da 51 f4 5c 89-73 c2 9a 1f 6a 78 66 54   ....Q.\.s...jxfT
    0090 - fe 5d 34 95 60 67 ec 9e-8d 32 82 ba 9b bd 81 9e   .]4.`g...2......
    00a0 - 14 ba 12 27 99 b7 a4 2b-ce e0 c6 bc 2d 5f 63 0b   ...'...+....-_c.
    00b0 - 0c 13 ac ac ec fb 47 f5-db 80 75 04 10 a8 71 7a   ......G...u...qz
    00c0 - 80 0d 89 c9 2c b0 c8 40-31 e9 1a db 4b be 66 69   ....,[email protected]
    00d0 - 43 8d 57 c2 bb 8f b8 0e-8c 4d 77 e1 c5 7d a3 cf   C.W......Mw..}..

    Start Time: 1591345424
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: no
---

So the certificate loks like it should fit into the space constraints.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Christian A. over 4 years ago in reply to Øyvind

The COM port disappears from time to time so Trace Collector loses its connection or cannot establish it in time. I have put the application in a reboot loop, but so far I could not capture a useful trace. Is there a possibility to buffer the trace locally on the device?

I also extracted the server certificate from openssl s_client:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

So it should fit into the space constrains.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Øyvind over 4 years ago in reply to Christian A.

Christian A. said:
The COM port disappears from time to time so Trace Collector loses its connection or cannot establish it in time.

Does this happen only with your application?

It's difficult for me to tell from the information you have provided, and not having a modem trace. I will need to confer with our R&D team. As it is the AWS Root CA you are provisioning, it should not have any issues, as this is also used in the AWS_FOTA sample.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel
0 Christian A. over 4 years ago in reply to Øyvind

I tried some other examples (including applications/asset_tracker) but when CONFIG_BSD_LIBRARY_TRACE_ENABLED=y is set the COM port gets unstable; when deactivating this option COM communication works smoothly.
Cancel
Vote Up 0 Vote Down

Sign in to reply

Verify Answer

Cancel