Hi,
I am trying to HTTPS connection in the loop until it is connected with the "s3.amazonaws.com" to download one file. I was using the below older CA certificate
Issuer: C = IE, O = Baltimore, OU = CyberTrust, CN = Baltimore CyberTrust Root
and observed that TLS handshake failed with error (-0x2700 Failed to verify peer certificate!) and after several retries, the S3 server TLS handshake pass automatically.
I have observed same thing with the below OpenSSL command
openssl s_client -connect s3.amazonaws.com:443 -CAfile <older s3 server CA cert>
**Verify return code: 20 (unable to get local issuer certificate)
** After several retries Verify return code: 0 (ok)
I would like to know why after several retries S3 server exchanges the older CA certificate during the handshake? and why the retries count is not fixed?
Regards,
Arjun