From nobody Fri Jan 13 09:43:15 2023 Return-Path: X-Original-To: sidrops@ietfa.amsl.com Delivered-To: sidrops@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 96EA3C14CE4C for ; Fri, 13 Jan 2023 09:43:14 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -7.096 X-Spam-Level: X-Spam-Status: No, score=-7.096 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, MIME_QP_LONG_LINE=0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3Rwna1Q48Fyx for ; Fri, 13 Jan 2023 09:43:10 -0800 (PST) Received: from mail5.verisign.com (mail5.verisign.com [69.58.187.31]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 23CAAC151546 for ; Fri, 13 Jan 2023 09:43:10 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=11436; q=dns/txt; s=VRSN; t=1673631790; h=from:to:date:message-id:references:in-reply-to: mime-version:subject; bh=sDf9LItKNdVE3kTOooOHFfqw4Hyw0gRbLrKQLq7/4eI=; b=f+zNVVHR3jJTPc/CNUUc8LTMIaXI43lS9St+NIvdJzJNzoRWIDhiH1wa W6pENFZCzFJL0ohpvYH63Yy1GLsTxtpN/hSKFXX45N+oEI7nr7cbERahw dyRVaybeH6qIFx27GCvThYbMSXhQB/SDXhlIdeC7zp+BGuynyiNkl/+6P iYUSBOLqyAgqmzRJ9PDiQGoBiYkfM/l6eEqxmV7VhFnKodq0G4+EPUpDy 5qwUZPLDnZO4mgRS3qNiByW6jfrXTDKRSRslhzBKik2zTMvujQj4xhYUE bZFKpoybGfP5L8VQ73MGNs4hQ6GWRP9Cbp1LGZgvOXtA/23j2Oq0gmweR Q==; IronPort-Data: A9a23:xuMqlaxSLhlOaZoZJoJ6t+dCwSrEfRIJ4+MujC+fZmQN5Upzl3Vbl zFOHTDZZODKOTG2fMQ1MdropA5D+8PleuQTC1818HwrVy1RwSauLYvFdk2tZnzMJ8OTHEk55 sgTMYnLc5puFHGM9kbxbrG9pHIh3vCDS+SgWLGdYXwpSFM4E3tw1ko4yrYy24Vl34bR729h1 z/Xi5S31AiNh24ubQr4kp6rqA9zpKa1/zQTpUR4afFEvVTTjWVTB5UafQtYhZLFKrW4ZdVWO 9v+5LGl4nuLuFA1CdLglb3gagsGQ7HTNgWUljxdXK36r1saLMT6g6YnKOJOLkxegDiT2ctgz dxQqZz2QgAseajUm+VaXxhXEipzJ7FNoqTHKGKyvdeWzkjLeHKqyO9yVHQLVbH0gd2bfVyij 9RAbmhlUziDm/6u2+D8DfZzmYIvLcbqN44FpjdryjSeJs4dGToq6FiJvXWxd9dYuiw1JhqpW iZjQWcpN3z9Sx1TJk8MWtV5g/i3wHX+fDxTpUiJ46Ew5i/49DcpelFGzZmN0DUhpW+8Nauxo HOuw4iCOf1tCTDl4WfDqRqRru/TgTvgCsVVC6KnsPJrj1yYy3YPThYRUByhufD8l0fmM+6zU Hf4jRfC14BvshfDc/H9QwGguyzD+QEDRJxcEuI74wyX1uzf5APeHHANCyNIMPZOiCNNftBd6 7Pzt46vXlRSjYCopVKhGpa89j3rMyZEID9dP35dEFVbv4C/+4w430rEFItuHPHu3oGpQGGhy D209yVv3L97YezndUmY1Que32/z/MihoiodvFi/sreNt1shDGKdT9X0rwKdtZ6sFa7BJnGZp n8IhsOC2+4HCJCJhUSlTf4EdF2Tz6/t3Ab03Bg+QPHNyxz3oyT4JdkJu2klTKtUGp1slQHBM Re7VTx5ucc70EuCNcdff4+3AsI2+qnsffyNuif8N4cmjjBZLWdrzQk2DaKi9zmFfHsEyMnTD aymnfOEVh72P4w8lWbrGL1NuVMc7ntWKWv7HfgXxjz5iebOPCb9pb0taDNiZchhhE+ITZm8H 3+y+KJmxj0GONASbBU7/qYUNwkjP3knNKzriJ1VVOjaDAdDPlouXqq5LbMJI+SJnox/rMGRw VeQahcCjkT0gmffbwyGLG55c7WpVpF6xZ45FXV0ew/3gD56PN3psPZ3m5gfJNHL8MRmzflwS +gAcsOoHPlVSy/G9DJbZp74xGBnXE371V3RZXX5CNQ5V8JNVhaS1fX6RDLyzDQLJQmp7vEE+ YT1g2s3RrJGHWyOFv3+avWlmg/ps3EGhOZjGUDPJ/FffUz2+85rJjD/yPgtLKkkMhTP3DyCz C6XDAsW4+7XrOcIHMLhj7qC9pivHvsmRA9BAXOd6LetcCPduGC5x9YGTvyTe3bWU2acFLieW Ni5BsrUaJUv9GumeaIle1q35crSP+fSmoI= IronPort-HdrOrdr: A9a23:v7UxXqBMHMe9aSjlHelx55DYdb4zR+YMi2TDsHoBLCC9E/bo9f xG88566faZslgssRIb9uxoUZPoKU80nqQFgrX5U43CYCDW/EWlK4145ZbvznnKC0TFmtJ15O NFf7JlANP9SXp3na/BijWQIpIFzMOc+K6lwd3CyWxgJDsGV4h74xxnBh2gHkp6eQlDCfMCf6 ah2g== X-IronPort-AV: E=Sophos;i="5.97,214,1669093200"; d="p7s'?scan'208";a="18877274" Received: from BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) by BRN1WNEX02.vcorp.ad.vrsn.com (10.173.153.49) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.1.2507.16; Fri, 13 Jan 2023 12:43:08 -0500 Received: from BRN1WNEX02.vcorp.ad.vrsn.com ([10.173.153.49]) by BRN1WNEX02.vcorp.ad.vrsn.com ([10.173.153.49]) with mapi id 15.01.2507.016; Fri, 13 Jan 2023 12:43:08 -0500 From: "Hollyman, Michael" To: "job=40fastly.com@dmarc.ietf.org" , "sidrops@ietf.org" Thread-Topic: [EXTERNAL] [Sidrops] Fermat Attack on RSA (TL; DR: no bad keys in the RPKI) Thread-Index: AQHZJd9iF/8evf4FTEavbg2igF3iWK6cf7eA Date: Fri, 13 Jan 2023 17:43:08 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-originating-ip: [10.170.148.18] Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha256; boundary="B_3756451387_3569684059" MIME-Version: 1.0 Archived-At: Subject: Re: [Sidrops] Fermat Attack on RSA (TL; DR: no bad keys in the RPKI) X-BeenThere: sidrops@ietf.org X-Mailman-Version: 2.1.39 Precedence: list List-Id: A list for the SIDR Operations WG List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Jan 2023 17:43:14 -0000 --B_3756451387_3569684059 Content-type: text/plain; charset="UTF-8" Content-transfer-encoding: quoted-printable Job, thanks for sharing this and doing the leg-work to test the certificate= s and objects. A bonus is, I can work on my French reading the paper from 1643. __=20 Mike =EF=BB=BFOn 1/11/23, 10:08 AM, "Sidrops on behalf of Job Snijders" on behalf of job=3D40fastly.com@= dmarc.ietf.org > wrote: Caution: This email originated from outside the organization. Do not click = links or open attachments unless you recognize the sender and know the conte= nt is safe.=20 Dear all, Hanno B=C3=B6ck published a paper "Fermat Factorization in the Wild" [1] documenting an issue resulting from flawed RSA key generation functions. More information: https://secure-web.cisco.com/1_K4CcvwrSEXEv8Sy8_-ybuTnW4H= lBZxzzcvrrDKw60jmN-M6IOI5rhpdorEHIWiZXweNHXdmkdsoOp7dptcn6_vkh6_IRW2ps92cwXs= hKASULQIiIp5rIYyBnVLCESSJ4CmhxhKjyPuRAis8b5O7oh4Gj6kNfmrE8aoOKrBMqzygdnFwQfr= 54HUEYz98-OHCI_ARstlbuehXO-H4_I8bIu1yNU6hUKJ-dDj7jWrYQiXd8UOhEypJeEINVa13Dlq= OohvufSWRqsYElJTxJo5BnNuL-H6N98VjuiUr7HPWhNfzZRo7lnGp9V52Vav-hgod/https%3A%2= F%2Ffermatattack.secvuln.info%2F The author also published a convenient utility to scan CA & EE X.509 certificates for known issues: https://secure-web.cisco.com/1DQRuWwoh-EZ-Wp= LXo5LCvrIhJspoPXcHXV9iHyClgzmEHafpq2qi90up2n4bpWbuGH1uh3fY8fhdDw_bgN4FqoN5iY= 0cGJOAdaTbHxKyRVrDIUp_iwBEhPpdi2kdU39ZCD5Pz5AQxubfNVzfQ3HFYkZITL86uc4UHf9odT= 3p3vYwSyjsRNrzlu5X1Lm0Y5CtQ4omq1AFgC7yvqnwGrvesbM1CjfAIedkTpY5mQ9qkLSnCovW6h= 1N0928bNRh8Yc9zGmq_2fcLQKyTUkrczWKmms9qZvx8gU55nKCNCnrxnBxzQit0pFinm8ha5HNR-= Sk/https%3A%2F%2Fgithub.com%2Fbadkeys%2Fbadkeys I scanned all currently valid RPKI certificates & signed objects and found no bad keys. I suppose this is good news :-) Kind regards, Job [1]: https://secure-web.cisco.com/1fLPbH53FioahJJukH4V9U2Ad41OWLvOiVmoJkNJo= OQR-Rf5qxrbj6I8gZ6gM9MdTTTokKifhzVkzo21zz-qoBkNK2ikdIkYG5zT9E-YnDnLIVGhlbQ6i= tsS3jk90RcaZu9a5Ts1YAWNq0-kmT7v1oh1OM9D492dJyGhlf6pYsTjTaXiKU7mhsLqVqmhJSJJY= gUU8xxpEoizG7AWhkYnDrFLpYgY7rs4OekAiRV0Fz3AS3qhdsv0bS6acKZ2DErJ7QPL-HegDKcZD= 6hsgxQyFoE_e0BN0PRvBpk9qLBXdVq-Fq4eOyJpDFj8pjUlIcN9Q/https%3A%2F%2Feprint.ia= cr.org%2F2023%2F026.pdf =20 _______________________________________________ Sidrops mailing list Sidrops@ietf.org https://secure-web.cisco.com/1JWWs_zZwuhwcntsZ0ttbYWX6khv_Oeac2UHP8ziqSRmot= F7t2L9C7V0Rv20RVpy00mRQlVM6bYfJ4QMdNzQUFQ-IlawJDmeTQBlTADoLVNdKdsA9bBQ4h_djO= wCBHkmz7yvs3k-YU5_dZEBEhDAdRaQrjregFfPTanbL1QrrnzEQ4ETYYCFRAD-TJYnyrQ1P2k5tu= cIvPoJ0ZBN2IzOUttAmTb6O3hah5pQrwpyqkcN5L7IUnLlvCGRy4uSq964BaduNVTr7eLthbwSCV= HZvZPFNUUK7_gJtg1dhuYhw2AsSpjPbzaP_TODUMVHGD5WV/https%3A%2F%2Fwww.ietf.org%2= Fmailman%2Flistinfo%2Fsidrops --B_3756451387_3569684059 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" MIIS1wYJKoZIhvcNAQcCoIISyDCCEsQCAQExDzANBglghkgBZQMEAgEFADALBgkqhkiG9w0B BwGgghCBMIIGwDCCBaigAwIBAgIQERLmypDsRpCZH+L3QDOblzANBgkqhkiG9w0BAQsFADBv MQswCQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xRzBFBgNVBAMTPkRpZ2lD ZXJ0IFBLSSBQbGF0Zm9ybSBDMiBTaGFyZWQgU01JTUUgSW5kaXZpZHVhbCBTdWJzY3JpYmVy IENBMB4XDTIyMDUwMjAwMDAwMFoXDTIzMDUyOTIzNTk1OVowdDElMCMGCSqGSIb3DQEJARYW bWhvbGx5bWFuQHZlcmlzaWduLmNvbTEaMBgGA1UEAwwRSG9sbHltYW4sIE1pY2hhZWwxFjAU BgNVBAsMDUVOVEVSUFJJU0UgSVQxFzAVBgNVBAoMDlZlcmlTaWduLCBJbmMuMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiozyIfvZ5/fUiiJJ7dCA5J6HT0G/EILkqGX7C2di Jhdk4xoWX6hvcx7hNnmczgVM5nCZqoCjafsWPAnoAnU86M5jq5vp5uL01pH7QnZ4HSnvTOdK sbZu/StJqQeu8pMW89YLRPlCDJigUtoRt8fj8g/ZOGoqNithVuX2zJ2wOm0B00mIIHXDf5k0 hmrNJP5hE0R2KpEtOFTpi304JDDB0yCnODdpkGD5zuiLVIFlv73CWyO11dE1gE+XLCNFWDJd IctQO06K86ukpmkadd2p2bonkNLuhqg4oZnPb8Ep9UJjMUZzyQzcROnvpIgvtFyJhHJW91ah XGRfVPBMqypJxwIDAQABo4IDUTCCA00wDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAw FgYDVR0lAQH/BAwwCgYIKwYBBQUHAwQwHQYDVR0OBBYEFFaFSmgtcRDwfRFiqt3Vq8LJCLn5 MCEGA1UdEQQaMBiBFm1ob2xseW1hbkB2ZXJpc2lnbi5jb20wHwYDVR0jBBgwFoAU3LcfIDF0 S5Qadq2Dgq34xqPwRF8wfwYIKwYBBQUHAQEEczBxMCgGCCsGAQUFBzABhhxodHRwOi8vcGtp LW9jc3AuZGlnaWNlcnQuY29tMEUGCCsGAQUFBzAChjlodHRwOi8vY2FjZXIuc3ltYXV0aC5j b20vbXBraS9kaWdpY2VydGMyc2hhcmVkc21pbWVjYS5jcnQwXQYDVR0fBFYwVDBSoFCgToZM aHR0cDovL3BraS1jcmwuc3ltYXV0aC5jb20vY2FfNGI1ZDVmZDNiMjY1MWIzNTIyOTBlMzY0 NmFiY2MwMDEvTGF0ZXN0Q1JMLmNybDCCASIGA1UdIASCARkwggEVMIIBEQYJYIZIAYb9bAUC MIIBAjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCB1QYIKwYB BQUHAgIwgcgagcVBbnkgdXNlIG9mIHRoaXMgQ2VydGlmaWNhdGUgY29uc3RpdHV0ZXMgYWNj ZXB0YW5jZSBvZiB0aGUgRGlnaUNlcnQgQ1AvQ1BTIGFuZCBSZWx5aW5nIFBhcnR5IEFncmVl bWVudCB3aGljaCBsaW1pdCBsaWFiaWxpdHkgYW5kIGFyZSBpbmNvcnBvcmF0ZWQgaGVyZWlu IGJ5IHJlZmVyZW5jZS4gaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL3JwYS11YTBCBgkqhkiG 9w0BCQ8ENTAzMAoGCCqGSIb3DQMHMAsGCWCGSAFlAwQBAjALBglghkgBZQMEARYwCwYJYIZI AWUDBAEqMC0GCmCGSAGG+EUBEAMEHzAdBhNghkgBhvhFARABAgIBAYO+/44sFgYyNDc2NjQw OQYKYIZIAYb4RQEQBQQrMCkCAQAWJGFIUjBjSE02THk5d2Eya3RjbUV1YzNsdFlYVjBhQzVq YjIwPTANBgkqhkiG9w0BAQsFAAOCAQEAExJ1LRt3Il1fZOpW9U5lxKtR8UucTuWWlX1IKx9g LwAj14L4Oh36pArfKQyTPzoYYDy3Fn4TM5uCGeD7m88pzOIoAVD7jNrPCSorAo2ZrKqF3qxL AWGHiRaO1SQmti3Nfhh1Ye9tDEFBAlJk+zH+/EjMBUcriH0prGz8FifY7l0FWjbEn5WEgIM/ mAK1AWAqC1iLLRlHh3HNVtO/n0pVN7SZRf9y/wtKPFSvUs4EzXSQYkvXHIZIQtKWHG/qfueR g+QN/SNgxhF9fc68mG9zMouQeRbmXNIOO73cI75Tfj4qT4v5dBLTKpXj8nHpWjXmV/0qbqb7 vQrUQl2T0liRyDCCBh8wggUHoAMCAQICEAO4DQNzprrihB2y0bAndKswDQYJKoZIhvcNAQEL BQAwZTELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZMBcGA1UECxMQd3d3 LmRpZ2ljZXJ0LmNvbTEkMCIGA1UEAxMbRGlnaUNlcnQgQXNzdXJlZCBJRCBSb290IEcyMB4X DTE5MDYwNDEyMzYyMFoXDTI5MDYwNDEyMzYyMFowbzELMAkGA1UEBhMCVVMxFzAVBgNVBAoT DkRpZ2lDZXJ0LCBJbmMuMUcwRQYDVQQDEz5EaWdpQ2VydCBQS0kgUGxhdGZvcm0gQzIgU2hh cmVkIFNNSU1FIEluZGl2aWR1YWwgU3Vic2NyaWJlciBDQTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKZrLwjIKIwyXeWAujoFKt0sEq/HRTUplH/w/O9L+uxkMFAku5WCY5No HFSs2qj1a16Mj2Z7keKFscoT0G3J1zILx/7xw5A5feE6OzRJmvY/15cBHxJZ/Sn9D/U2RhGi uOM+jjPRGi8Sdf9yXSh/sKfLR9brm0wG397FrFBOyjoRrWJEX1Txt/pmwWR6+w23VYpJj1f9 C9ZSF+hlvh+yhrwlRmQkzNvXbBL9wudaFo7kbtypn4TYqqG6qU8KuVQYU1W5o9way5lHLZfU HIyADhUgjA00bRGU9r4pKqmLE7pEruRZOW3kEaGC0rDsye4Nwu0zYFxLJo8gSpmdqmfmp/sC AwEAAaOCAr8wggK7MB0GA1UdDgQWBBTctx8gMXRLlBp2rYOCrfjGo/BEXzAfBgNVHSMEGDAW gBTOw0q5mVXyuNtgv6l+vVa1lzan1jAOBgNVHQ8BAf8EBAMCAYYwTAYDVR0lBEUwQwYIKwYB BQUHAwIGCCsGAQUFBwMEBgorBgEEAYI3CgMEBgorBgEEAYI3FAICBgorBgEEAYI3CgMMBgkq hkiG9y8BAQUwEgYDVR0TAQH/BAgwBgEB/wIBADA0BggrBgEFBQcBAQQoMCYwJAYIKwYBBQUH MAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTCBgQYDVR0fBHoweDA6oDigNoY0aHR0cDov L2NybDMuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0QXNzdXJlZElEUm9vdEcyLmNybDA6oDigNoY0 aHR0cDovL2NybDQuZGlnaWNlcnQuY29tL0RpZ2lDZXJ0QXNzdXJlZElEUm9vdEcyLmNybDCC ASIGA1UdIASCARkwggEVMIIBEQYJYIZIAYb9bAUCMIIBAjAoBggrBgEFBQcCARYcaHR0cHM6 Ly93d3cuZGlnaWNlcnQuY29tL0NQUzCB1QYIKwYBBQUHAgIwgcgMgcVBbnkgdXNlIG9mIHRo aXMgQ2VydGlmaWNhdGUgY29uc3RpdHV0ZXMgYWNjZXB0YW5jZSBvZiB0aGUgRGlnaUNlcnQg Q1AvQ1BTIGFuZCBSZWx5aW5nIFBhcnR5IEFncmVlbWVudCB3aGljaCBsaW1pdCBsaWFiaWxp dHkgYW5kIGFyZSBpbmNvcnBvcmF0ZWQgaGVyZWluIGJ5IHJlZmVyZW5jZS4gaHR0cHM6Ly93 d3cuZGlnaWNlcnQuY29tL3JwYS11YTAnBgNVHREEIDAepBwwGjEYMBYGA1UEAxMPRGlnaUNl cnRQS0ktMy0yMA0GCSqGSIb3DQEBCwUAA4IBAQAVNzNmO20ydOE8zFDJ565n9V5AcI02rELN 7rjg7X3FcTRa3eoHHVVFT9B0viQ+0Ba+D2wweFC0u+n3JKdri4Xn598VB4dRtfXbIGt+aABN 0oc/aeg97JUJedy6VKqwX8X/znh0Fb1nWN8y2/Gn+ptM85/13l3WbG36YniwN+93TCXdTbBU IkxRtJeOzxqUd5Tp6Zq0jBeKizmyfZxBwiky2b/JKNi+GHgbUMxStB2kllMGi+5eHzIDdSur xmCYF3qbN6bjnQsHjx9rpNDJFRkl+vbop7wQ6sEQoui+L6JMIxBtCxH7hMSwmUkE96aTCqlx 8jhXcZVhCOrrcQILZ+0BMIIDljCCAn6gAwIBAgIQC5McOtY5Z+pnI7/Dr5r0SzANBgkqhkiG 9w0BAQsFADBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQL ExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2VydCBBc3N1cmVkIElEIFJvb3Qg RzIwHhcNMTMwODAxMTIwMDAwWhcNMzgwMTE1MTIwMDAwWjBlMQswCQYDVQQGEwJVUzEVMBMG A1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQD ExtEaWdpQ2VydCBBc3N1cmVkIElEIFJvb3QgRzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQDZ5ygvUj82ckmIkzTz+GoeMVSAn61UQbVH35ao1K+ALbkKz3X9iaV9JPrjIgwr vJUXCzO/GU1BBpAAvQxNEP4HteccbiJVMWWXvdMX0h5i89vqbFCMP4QMls+3ywPgym2hFEwb id3tALBSfK+RbLE4E9HpEgjAALAcKxHad3A2m67OeYfcgnDmCXRwVWmvo2ifv922ebPynXAp VfSr/5Vh88lAbx3RvpO704gqu52/clpWcTs/1PPRCv4o76Pu2ZmvA9OPYLfykqGxvYmJHzDN w6YuYjOuFgJ3RFrngQo8p0Quebg/BLxcoIfhG69Rjs3sLPr4/m3wOnyqi+RnlTGNAgMBAAGj QjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGGMB0GA1UdDgQWBBTOw0q5mVXy uNtgv6l+vVa1lzan1jANBgkqhkiG9w0BAQsFAAOCAQEAyqVVjOPIQW5pJ6d1Ee88hjZv0p3G eDgdaZaikmkuOGybfQTUiaWxMTeKySHMq2zNixya1r9I0jJmwYrA8y8678Dj1JGG0VDjA9tz d29KOVPt3ibHtX2vK0LRdWLjSisCx1BL4GnilmwORGYQRI+tBev4eaymG+g3NJ1TyWGqolKv SnAWhsI6yLETcDbYz+70CjTVW0z9B5yiutkBclzzTcHdDrEcDcRjvq30FPuJ7KJBDkzMyFdA 0G4Dqs0MjomZmWzwPDCvON9vvKO+KSAnq3T/EyJ43pdSVR6DtVQgA+6uwE9W3jfMw3+qBCe7 03e4YtsXfJwoIhNzbM8m9Yop5zGCAhowggIWAgEBMIGDMG8xCzAJBgNVBAYTAlVTMRcwFQYD VQQKEw5EaWdpQ2VydCwgSW5jLjFHMEUGA1UEAxM+RGlnaUNlcnQgUEtJIFBsYXRmb3JtIEMy IFNoYXJlZCBTTUlNRSBJbmRpdmlkdWFsIFN1YnNjcmliZXIgQ0ECEBES5sqQ7EaQmR/i90Az m5cwDQYJYIZIAWUDBAIBBQCgaTAvBgkqhkiG9w0BCQQxIgQgrKHuw6oGWULKMkLJ+Xs14SeY IsnTuEOMRqNPFFXNVawwGAYJKoZIhvcNAQkDMQsGCSqGSIb3DQEHATAcBgkqhkiG9w0BCQUx DxcNMjMwMTEzMTc0MzA3WjANBgkqhkiG9w0BAQEFAASCAQBaiSbo4k/y3elP7+8o4qD31p5L 7mkf6gaSvrGhzXNY4by4Z1z2Sf/zHNQvc7igYniaVr6IsysBAhuW19JwkxCQ24kr0+uXk47m CPtj1+N1lPLpdNN0yR8ESTmYshATG27e0PxllYxEPJVnInc1RRnQw92OvT2RWYciS2yFU1MP mW+bwY9OReM6qy4HrRZQCJ2uPL7VeXFccj5/FbNIR27vDTxHEYrUy1WcftMsT2NO0XbIs7mf bRbec4yko5teiCxj5kL8quI4hUB2hk5HqT45sNmLd0DguROUVNc2K5pFv+9rO5MMTNrFIF7l dYd8bl7/vBeu44cqYUQ5KCJzoEma --B_3756451387_3569684059--