TLS1.2 and api.amazon.com

Posted on April 11, 2017 at 15:57

Hi.

I'm trying to communicate with api.amazon over SPWFSA01. Amazon requires secure communication, so I'm trying to put amazon approved certificate (got it from here:

https://www.amazontrust.com/repository/

). However I now got 'ERROR: Unable to load CA certificate' as I try to open the socket. Am I totally wrong here and should I generate the certificate by myself? I mean I understood from what I've read here and amazon that I should use amazon approved keys in the client side?

Whole trace of the situation:

+WIND:1:Poweron (170111-665d284-SPWF01S)

+WIND:13:ST SPWF01SA1 IWM: Copyright (c) 2012-2016 STMicroelectronics, Inc. All rights Reserved.

+WIND:46:WPA: Crunching PSK...

+WIND:32:WiFi Hardware Started

CMD: AT+S.TLSCERT2=clean,all

OK

CMD: AT+S.SETTIME=1491917021

OK

CMD: AT+S.TLSCERT=f_ca,13

api.amazon.com

CMD: AT+S.TLSCERT=f_cert,1207

-----BEGIN CERTIFICATE-----

MIIDQTCCAimgAwIBAgITBmyfz5m/jAo54vB4ikPmljZbyjANBgkqhkiG9w0BAQsF

ADA5MQswCQYDVQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6

b24gUm9vdCBDQSAxMB4XDTE1MDUyNjAwMDAwMFoXDTM4MDExNzAwMDAwMFowOTEL

MAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpvbjEZMBcGA1UEAxMQQW1hem9uIFJv

b3QgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALJ4gHHKeNXj

ca9HgFB0fW7Y14h29Jlo91ghYPl0hAEvrAIthtOgQ3pOsqTQNroBvo3bSMgHFzZM

9O6II8c+6zf1tRn4SWiw3te5djgdYZ6k/oI2peVKVuRF4fn9tBb6dNqcmzU5L/qw

IFAGbHrQgLKm+a/sRxmPUDgH3KKHOVj4utWp+UhnMJbulHheb4mjUcAwhmahRWa6

VOujw5H5SNz/0egwLX0tdHA114gk957EWW67c4cX8jJGKLhD+rcdqsq08p8kDi1L

93FcXmn/6pUCyziKrlA4b9v7LWIbxcceVOF34GfID5yHI9Y/QCB/IIDEgEw+OyQm

jgSubJrIqg0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC

AYYwHQYDVR0OBBYEFIQYzIU07LwMlJQuCFmcx7IQTgoIMA0GCSqGSIb3DQEBCwUA

A4IBAQCY8jdaQZChGsV2USggNiMOruYou6r4lK5IpDB/G/wkjUu0yKGX9rbxenDI

U5PMCCjjmCXPI6T53iHTfIUJrU6adTrCC2qJeHZERxhlbI1Bjjt/msv0tadQ1wUs

N+gDS63pYaACbvXy8MWy7Vu33PqUXHeeE6V/Uq2V8viTO96LXFvKWlJbYK8U90vv

o/ufQJVtMVT8QtPHRh8jrdkPSHCa2XV4cdFyQzR1bldZwgJcJmApzyMZFo6IQ6XU

5MsI+yMRQ+hDKXJioaldXgjUkK642M4UwtBV8ob2xJNDd2ZhwLnoQdeXeGADbkpy

rqXRfboQnoZsG4q5WTP468SQvvG5

-----END CERTIFICATE-----

OK

CMD: AT+S.TLSCERT=f_key,63

fbe3018031f9586bcbf41727e417b7d1c45c2f47f93be372a17b96b50757d5a2

OK

+WIND:19:WiFi Join:xx:xx:xx:xx:xx:xx

OK

+WIND:25:WiFi Association with 'TPNY' successful

+WIND:51:WPA Handshake Complete

OK

+WIND:24:WiFi Up:192.168.0.102

CMD: AT+S.SOCKON=api.amazon.com,443,s,ind

ERROR: Unable to load CA certificate