EV Checker: BRs no longer require OCSP URI in the AIA of intermediate certificates

[WilsonKathleen]

Please update the EV Checker to allow for the intermediate certificates in the chain to not contain an OCSP responder URL in the authorityInformationAccess field. The CA/Browser Forum Baseline Requirements changed this from a MUST to a SHOULD.

Instead of checking for OCSP at the intermediate certificate level, please have the EV Checker verify that the cRLDistributionPoints field in the intermediate certificates do contain an HTTP URL, as required by the BRs.

[WilsonKathleen]

For testing purposes, see the Test URLs for the 2021 root certs in
https://bugzilla.mozilla.org/show_bug.cgi?id=1717711

Update: The certificate chains for the test websites in Bugzilla #1717711 were updated so that the intermediate certificates also have the OCSP URI in the AIA, so they can no longer be used for testing resolution for this issue.