From nobody Mon Aug 2 13:34:16 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 20B233A1B94 for ; Mon, 2 Aug 2021 13:34:11 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_BLOCKED=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=salowey-net.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vECHJCxGVxbO for ; Mon, 2 Aug 2021 13:34:06 -0700 (PDT) Received: from mail-lf1-x12a.google.com (mail-lf1-x12a.google.com [IPv6:2a00:1450:4864:20::12a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 580E53A1B85 for ; Mon, 2 Aug 2021 13:34:06 -0700 (PDT) Received: by mail-lf1-x12a.google.com with SMTP id c16so6472390lfc.2 for ; Mon, 02 Aug 2021 13:34:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=salowey-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=0WEj92hSRCOTEu4ApPO0j8hacTsj46xCBVVJu+NakPY=; b=Ub/hbtkNi6R7/7h2M/FzcgwOMxu3pu+Ena5jaOLuL52P2tRNe06ypfH5Rjd6TodPWS w8ThCpeypsCcYuUc+GdvRMQ/mFh3oEYqB4eBJWKGo3k9TJL65oSRYAV4wpZz3HSzQmfH 4NjgnK3b/9cz78u9sX8br1VVzvbvsj12hZKNVVIFfiItgJnriUw3hLvRIJ9z7Q82VF0i qw2yMY3Myx6ni5+R9wHzQF1I3mZuCt7sJCqEji/574BRL3BhFL8DhJxjGjNlxkUZ3Voe q/R2V8jISWq2Z+41DExp18JNPyQxArQ9bkokSzzDdzDSM8jFI3hYVHfDmSASJwUoKH21 TDMg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=0WEj92hSRCOTEu4ApPO0j8hacTsj46xCBVVJu+NakPY=; b=qfdBT+omUijP4gKZ0lxGC12o3AWS9w43HvNZ0jj9uPDoA3YqIJainxo+xEly/WvE9W BlZRykJeSdtePgpbxq+XDcz02BdfOROGen21c2bnxGW6VPIkiC9ckq8MnIN8ok3KBl7G yeUPaltw496eSk5fbUrkFdgReNUlZ77YnRlJADs/lpqsmgcfqPrq865+chZGjlGkRIZS 7Y+yqNA1JPrpmT/eXEhRgGFbwpfnkaHN8FTWVkt00vs//XsHQOphsZ9CdfGIxt8zUC8D acYZJrVkMK3pXkXzmNGbrIyIgL8DgBu8FxnOcz4XYcdORAhUcla/shOtyU3eIhpVZ3aF 3PWA== X-Gm-Message-State: AOAM530LiG7jTnNz7HXmjuvmMn8rMIMlpazajXach410vpv/F5YtZKTR 7BpevKfgTb5KcMDEijqyjwjy41eU1l8q/pvHmDNQeQ== X-Google-Smtp-Source: ABdhPJwWn4JWbcJMO3cusqyRcItuMlr1xNrYm8fhv3G3UVgJivElT2sWvC/r9Wj1MiFCC3LrC1c4qhUeHl8mk92hFN4= X-Received: by 2002:a19:4944:: with SMTP id l4mr13889303lfj.428.1627936439222; Mon, 02 Aug 2021 13:33:59 -0700 (PDT) MIME-Version: 1.0 References: <162723422613.4754.2816752947598222075@ietfa.amsl.com> <86B9EF7F-8AC1-49A5-B33D-F9A8D5A96A45@mnot.net> In-Reply-To: <86B9EF7F-8AC1-49A5-B33D-F9A8D5A96A45@mnot.net> From: Joseph Salowey Date: Mon, 2 Aug 2021 13:33:48 -0700 Message-ID: To: Mark Nottingham Cc: secdir , draft-ietf-httpbis-bcp56bis.all@ietf.org, HTTP Working Group , last-call@ietf.org Content-Type: multipart/alternative; boundary="0000000000002d5d1b05c8997dbe" Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-httpbis-bcp56bis-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Aug 2021 20:34:14 -0000 --0000000000002d5d1b05c8997dbe Content-Type: text/plain; charset="UTF-8" On Sun, Jul 25, 2021 at 7:43 PM Mark Nottingham wrote: > Thanks for the review. I've opened an issue to track it: > https://github.com/httpwg/http-extensions/issues/1582 > > Responses below. > > > > On 26 Jul 2021, at 3:30 am, Joseph Salowey via Datatracker < > noreply@ietf.org> wrote: > > > Major Issues: > > > > + I had trouble with section 4.12 Client Authentication which states: > > > > "Applications can use HTTP authentication Section 11 of > > [I-D.ietf-httpbis-semantics] to identify clients. The Basic > authentication > > scheme [RFC7617] MUST NOT be used unless the underlying transport is > > authenticated, integrity-protected and confidential (e.g., as provided > the > > "HTTPS" URI scheme, or another using TLS). The Digest scheme [RFC7616] > MUST NOT > > be used unless the underlying transport is similarly secure, or the > chosen hash > > algorithm is not "MD5"." > > > > I'm not sure what the "or chosen hash algorithm is not "MD5" is meant to > say. > > What I think the document should say is: > > > > The Digest scheme [RFC7616] MUST NOT be used unless the underlying > transport is > > similarly secure. The "MD5" digest algorithm MUST NOT be used. > > Hmm. I forgot that RFC7616 has a pre-existing requirement in Section 5.1: > > > If Digest Authentication is being used, it SHOULD be over a secure > channel like HTTPS [RFC2818]. > > Are we saying that that SHOULD is really a MUST for all uses of HTTP, or > just those in scope for this document? Likewise for the effective > deprecation of md5. > > If so, perhaps the easiest thing to do would be to state that clearly; > e.g., > > """ > [RFC7616] Section 5.1 recommends that the Digest scheme be used over a > secure channel like HTTPS. This document strengthens that recommendation to > MUST, and deprecates the md5 hash algorithm in the Digest scheme. > """ > > ... and listing 7616 as being updated by this document. > > Thoughts? > [Joe] I think we should deprecate MD5 in all cases and I also think you should treat digest as basic auth and run it over a secure channel in all cases. The text update looks good. > > > + There is a security consideration that I think the document should > cover. > > Many HTTP based protocols make heavy use of bearer tokens, such as > session > > cookies, for authentication and authorization purposes. This means that > an > > attacker that can eavesdrop on HTTP communications can often escalate > their > > privilege to perform operations on resources. I think you could add > this to > > the security considerations: > > > > " Section 4.4.2 requires support for 'https' URLs, and discourages the > use of > > 'http' URLs, to provide authentication, integrity and confidentiality, > as well > > as mitigate pervasive monitoring attacks. Many HTTP based protocols > make heavy > > use of bearer tokens, such as session cookies, for authentication and > > authorization purposes. This means that an attacker that can eavesdrop > on HTTP > > communications can often escalate their privilege to perform operations > on > > resources. " > > See > https://github.com/httpwg/http-extensions/commit/fe3f298e4d60514306e391398cc870abaedd8bf9 > > [Joe] Looks good. > > Minor Issues: > > > > + Section 4.5.1 - This could be a good place to mention RFC-8470 on TLS > 1.3 > > early data which can also be a source of GET request replay > > See > https://github.com/httpwg/http-extensions/commit/b03c376179e278deb3d994eac152c6a131702840 > > [Joe] I left a comment with a text suggestion. > Cheers, > > -- > Mark Nottingham https://www.mnot.net/ > > --0000000000002d5d1b05c8997dbe Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


=
On Sun, Jul 25, 2021 at 7:43 PM Mark = Nottingham <mnot@mnot.net> wrote= :
Thanks for the= review. I've opened an issue to track it:
=C2=A0 https://github.com/httpwg/http-extension= s/issues/1582

Responses below.


> On 26 Jul 2021, at 3:30 am, Joseph Salowey via Datatracker <noreply@ietf.org> wro= te:

> Major Issues:
>
> + I had trouble with section 4.12 Client Authentication which states:<= br> >
> "Applications can use HTTP authentication Section 11 of
> [I-D.ietf-httpbis-semantics] to identify clients. The Basic authentica= tion
> scheme [RFC7617] MUST NOT be used unless the underlying transport is > authenticated, integrity-protected and confidential (e.g., as provided= the
> "HTTPS" URI scheme, or another using TLS). The Digest scheme= [RFC7616] MUST NOT
> be used unless the underlying transport is similarly secure, or the ch= osen hash
> algorithm is not "MD5"."
>
> I'm not sure what the "or chosen hash algorithm is not "= MD5" is meant to say.
> What I think the document should say is:
>
> The Digest scheme [RFC7616] MUST NOT be used unless the underlying tra= nsport is
> similarly secure. The "MD5" digest algorithm MUST NOT be use= d.

Hmm. I forgot that RFC7616 has a pre-existing requirement in Section 5.1:
> If Digest Authentication is being used, it SHOULD be over a secure cha= nnel like HTTPS [RFC2818].

Are we saying that that SHOULD is really a MUST for all uses of HTTP, or ju= st those in scope for this document? Likewise for the effective deprecation= of md5.

If so, perhaps the easiest thing to do would be to state that clearly; e.g.= ,

"""
[RFC7616] Section 5.1 recommends that the Digest scheme be used over a secu= re channel like HTTPS. This document strengthens that recommendation to MUS= T, and deprecates the md5 hash algorithm in the Digest scheme.
"""

... and listing 7616 as being updated by this document.

Thoughts?

[Joe]=C2=A0 I think we should= deprecate MD5 in all cases and I also think you should treat digest as bas= ic auth and run it over a secure channel in all cases.=C2=A0 The text updat= e looks good.=C2=A0=C2=A0
=C2=A0

> + There is a security consideration that I think the document should c= over.
> Many HTTP based protocols make heavy use of bearer tokens, such as ses= sion
> cookies, for authentication and authorization purposes.=C2=A0 This mea= ns that an
> attacker that can eavesdrop on HTTP communications can often escalate = their
> privilege to perform operations on resources.=C2=A0 =C2=A0I think you = could add this to
> the security considerations:
>
> " Section 4.4.2 requires support for 'https' URLs, and di= scourages the use of
> 'http' URLs, to provide authentication, integrity and confiden= tiality, as well
> as mitigate pervasive monitoring attacks.=C2=A0 Many HTTP based protoc= ols make heavy
> use of bearer tokens, such as session cookies, for authentication and<= br> > authorization purposes.=C2=A0 This means that an attacker that can eav= esdrop on HTTP
> communications can often escalate their privilege to perform operation= s on
> resources. "

See https:/= /github.com/httpwg/http-extensions/commit/fe3f298e4d60514306e391398cc870aba= edd8bf9

[Joe] Looks good.=C2=A0
=C2=A0
> Minor Issues:
>
> + Section 4.5.1 - This could be a good place to mention RFC-8470 on TL= S 1.3
> early data which can also be a source of GET request replay

See https:/= /github.com/httpwg/http-extensions/commit/b03c376179e278deb3d994eac152c6a13= 1702840


[Joe] I left a comment with a text sug= gestion.=C2=A0
=C2=A0
Cheers,

--
Mark Nottingham=C2=A0 =C2=A0https://www.mnot.net/

--0000000000002d5d1b05c8997dbe-- From nobody Mon Aug 2 17:50:54 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4AD263A2374; Mon, 2 Aug 2021 17:50:52 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.798 X-Spam-Level: X-Spam-Status: No, score=-2.798 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=T5dBFGHn; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=i9jrzYkv Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id iiOAuVaIODQe; Mon, 2 Aug 2021 17:50:47 -0700 (PDT) Received: from out4-smtp.messagingengine.com (out4-smtp.messagingengine.com [66.111.4.28]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CFB623A2370; Mon, 2 Aug 2021 17:50:46 -0700 (PDT) Received: from compute3.internal (compute3.nyi.internal [10.202.2.43]) by mailout.nyi.internal (Postfix) with ESMTP id D60A65C0164; Mon, 2 Aug 2021 20:50:45 -0400 (EDT) Received: from mailfrontend1 ([10.202.2.162]) by compute3.internal (MEProxy); Mon, 02 Aug 2021 20:50:45 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; s=fm3; bh=k R4GW64LbIpXE1lPFaOmwCSLtI7JChcOCL4W6y+Daak=; b=T5dBFGHnkTAB6HuKo oIHdf6MslQknqKvXGXF1uu/bAeqDB30YpnC/OkAJwJDMY/HYYbqKj3y6yoiWYHKG qlyxTg8Yp5qLhpUrQpT8brJcsxsL2YrWDp5SA1u1HtdjqE1v2UZ09aDW04+0XE/N gnDeE3N7paY0pXCkVMAUqXaLDYWnwI3pGVEV6dnhOhTZ5q5ZSrTjL3HD2MB2Dgk5 AVIZVnLZX7PdCZvEzZTyoyTFfGDoYST6dWTZ/kjhTXI/a6C6av/WtP8GkqnbY/Hb e2T6/2FPbpfWDLpGT3Sdunc7G1saAuZLHeB0jL5EDGtYzaK8gwVkqtREkWcIg+TN R8y6w== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm3; bh=kR4GW64LbIpXE1lPFaOmwCSLtI7JChcOCL4W6y+Da ak=; b=i9jrzYkvkHJ2wY+yVcZ5iCQKTPxRaGlE5THjhlTaPmaIAuWzVb/xsKl8U 2388gwUAMVQIbclX6HjAEcQ5irqGEFi0uapRTFMUYYpT5sp8uVvq4GudOl1Yq60G O1BkDBQ4jtG9I1SNCbRpZgx5LSdPO97xXlQNTeRp9yoJorJYG22DM3IixJeC02k0 zZXB73JjNs9YfPjl/etRnq4rXRYwAoeC/wLqXXWdSVInDAyMTL+XyybaqwBTI5Jt Mo/ab3tjjxzlpY8rqNTsrBifyjedba+kuzm57mr/Uu8c9pNTQUlLFe4tmTAIHGWi Gqso40UAE6Udb4fEXJXvV7oJR7NDQ== X-ME-Sender: X-ME-Received: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvtddrieefgdeftdcutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecunecujfgurheptggguffhjgffgffkfhfvofesthhqmh dthhdtvdenucfhrhhomhepofgrrhhkucfpohhtthhinhhghhgrmhcuoehmnhhothesmhhn ohhtrdhnvghtqeenucggtffrrghtthgvrhhnpeefheekffelheefjedtvdduleduvddtke dtkeelueeukeehteeufefhvddvkeeiteenucffohhmrghinhepfiefrdhorhhgpdhmnhho thdrnhgvthenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrihhlfhhroh hmpehmnhhothesmhhnohhtrdhnvght X-ME-Proxy: Received: by mail.messagingengine.com (Postfix) with ESMTPA; Mon, 2 Aug 2021 20:50:42 -0400 (EDT) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\)) From: Mark Nottingham In-Reply-To: Date: Tue, 3 Aug 2021 10:50:39 +1000 Cc: secdir , draft-ietf-httpbis-bcp56bis.all@ietf.org, HTTP Working Group , last-call@ietf.org Content-Transfer-Encoding: quoted-printable Message-Id: References: <162723422613.4754.2816752947598222075@ietfa.amsl.com> <86B9EF7F-8AC1-49A5-B33D-F9A8D5A96A45@mnot.net> To: Joseph Salowey X-Mailer: Apple Mail (2.3654.120.0.1.13) Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-httpbis-bcp56bis-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Aug 2021 00:50:52 -0000 Hi Joe, > On 3 Aug 2021, at 6:33 am, Joseph Salowey wrote: > [Joe] I think we should deprecate MD5 in all cases and I also think = you should treat digest as basic auth and run it over a secure channel = in all cases. The text update looks good. =20 There's been some... pushback on list since: https://www.w3.org/mid/2E8A6D6C-50DC-4753-916E-3AE43BBFECAE@mnot.net Would you be comfortable if we just removed the discussion of digest and = MD5 completely, and deferred action to an (eventual) update of 7616? Cheers, -- Mark Nottingham https://www.mnot.net/ From nobody Mon Aug 2 21:21:23 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 220D13A1066; Mon, 2 Aug 2021 21:21:18 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.198 X-Spam-Level: X-Spam-Status: No, score=-4.198 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rRP2gkgQmvgJ; Mon, 2 Aug 2021 21:21:16 -0700 (PDT) Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8D4623A105B; Mon, 2 Aug 2021 21:21:16 -0700 (PDT) Received: from kduck.mit.edu ([24.16.140.251]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id 1734L2KK011703 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Tue, 3 Aug 2021 00:21:08 -0400 Date: Mon, 2 Aug 2021 21:21:02 -0700 From: Benjamin Kaduk To: tom petch Cc: Rifaat Shekh-Yusef , secdir@ietf.org, last-call@ietf.org, draft-ietf-opsawg-l3sm-l3nm.all@ietf.org Message-ID: <20210803042102.GB50759@kduck.mit.edu> References: <162724649271.1477.16367299362861096101@ietfa.amsl.com> <6102D2D8.6010106@btconnect.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <6102D2D8.6010106@btconnect.com> Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-opsawg-l3sm-l3nm-10 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Aug 2021 04:21:18 -0000 Hi Tom, On Thu, Jul 29, 2021 at 05:10:00PM +0100, tom petch wrote: > Reading this I-D, I wondered what the secdir view is of recommending the > use of MD5 to secure the session as this I-D does for BGP. (Such a use > in NTP did generate a comment). This part: 'authentication': The module adheres to the recommendations in Section 13.2 of [RFC4364] as it allows enabling TCP-AO [RFC5925] and accommodates the installed base that makes use of MD5. In addition, the module includes a provision for the use seems to be about as good as we can do given the current state of deployment and implementation. I will probably suggest adding some additional discussion of the weakness of MD5 to the security considerations in my ballot comments, if no such text appears before then. Thanks, Ben From nobody Tue Aug 3 08:24:02 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 644553A2734; Tue, 3 Aug 2021 08:23:56 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: Derrell Piper via Datatracker To: Cc: draft-ietf-mmusic-rfc8843bis.all@ietf.org, last-call@ietf.org, mmusic@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.35.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <162800423634.21024.2545408390256116127@ietfa.amsl.com> Reply-To: Derrell Piper Date: Tue, 03 Aug 2021 08:23:56 -0700 Archived-At: Subject: [secdir] Secdir last call review of draft-ietf-mmusic-rfc8843bis-04 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Aug 2021 15:23:57 -0000 Reviewer: Derrell Piper Review result: Ready I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. The summary of the review is Ready. Minor revision that updates RFC5888 to allow a port specification of 0. From nobody Tue Aug 3 09:47:24 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6579B3A29DE for ; Tue, 3 Aug 2021 09:47:11 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.898 X-Spam-Level: X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=salowey-net.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZswrU3toB_GY for ; Tue, 3 Aug 2021 09:47:06 -0700 (PDT) Received: from mail-lf1-x12c.google.com (mail-lf1-x12c.google.com [IPv6:2a00:1450:4864:20::12c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AEA443A29E0 for ; Tue, 3 Aug 2021 09:47:06 -0700 (PDT) Received: by mail-lf1-x12c.google.com with SMTP id p38so25865577lfa.0 for ; Tue, 03 Aug 2021 09:47:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=salowey-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=FT0cRsM0vLqDQOmmTi+z8qfpudEZKLsAW3UVfS7HxsA=; b=zUQjwh9pGKBKGPbkEqhJYm6UAS/JiHy+mTwi0mGAJK5P8yIsa9BtL6K9urpKBb7MxV l7u4Wpe2pwcc9yz4NAhg2hE+Pnb1D7Z13FPdclvDMh2+PHB5RLLfVHKcCOyfpi+mAJsz gU+UFCMxSro2NM5YLA5j3+Kmea9Jvx2HDb+vE/XdNupt7q6UZNxajGG2EQfeE07WAAga lo41rU+4dfieQEJc34hgdHYnEtra8zdgPRi3ryRqhP92i0j2hWCPBk1516PhUQW9twTJ d6vLJnF5XNjn+nkC5/2iLkfNUXgDlE2SLVWznCfioEc9q/Il3ZV66zPgbEERO7XgJZY1 Qa6g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=FT0cRsM0vLqDQOmmTi+z8qfpudEZKLsAW3UVfS7HxsA=; b=myWqZzBmHZKCqi0Wqfk2Ir8DVeOn4Hywg8IJiCRPZg5ZhOPup/jhdun+J0ZZlj8oXX YS6kuF2f4n9g6XIUL17Gtrtcj3XxPYynoY3QlCBYtM4Gfc+juHX+TXcfYWT1XK08WN2j C/Mq+Wi61KhO+4s2yS7A6DLtPkoAbwAhLyHAY3LPvKrGeFYpA/IUTYDI0rNu/wuPskg1 OH7iJSgYUgUkBvGN3INI+f8JRBaOm7Xh6MJk/DZ+i62G9nxJU1FekGIYFSEY8XH0YqY2 0u4E8dLULNlJQCZm/rHmChz0ArZn91m+I4vmgYGIROrsBMejrTcrK50jON4lOzo2OMhL 55vQ== X-Gm-Message-State: AOAM532kDMDMokvqGTwmx0vki3vX8M2PdF3Z6fxiI9uTgOBxOQ117Rdp kSUv5jnpJww9ec05JJY9UbHU/Hy1NPJCg/tuGB2dGQ== X-Google-Smtp-Source: ABdhPJwq6xUtP/iIXJrbuTob7JPcEP3DP2cxYAf2yGRJ/VGevk5WxsT6qJ73BNW4OzMg7m16s2xBa5lNN7UUJ0iSLec= X-Received: by 2002:ac2:4ecd:: with SMTP id p13mr8695821lfr.525.1628009221984; Tue, 03 Aug 2021 09:47:01 -0700 (PDT) MIME-Version: 1.0 References: <162723422613.4754.2816752947598222075@ietfa.amsl.com> <86B9EF7F-8AC1-49A5-B33D-F9A8D5A96A45@mnot.net> In-Reply-To: From: Joseph Salowey Date: Tue, 3 Aug 2021 09:46:51 -0700 Message-ID: To: Mark Nottingham Cc: secdir , draft-ietf-httpbis-bcp56bis.all@ietf.org, HTTP Working Group , last-call@ietf.org Content-Type: multipart/alternative; boundary="0000000000005e2d9905c8aa6faf" Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-httpbis-bcp56bis-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Aug 2021 16:47:16 -0000 --0000000000005e2d9905c8aa6faf Content-Type: text/plain; charset="UTF-8" On Mon, Aug 2, 2021 at 5:50 PM Mark Nottingham wrote: > Hi Joe, > > > > On 3 Aug 2021, at 6:33 am, Joseph Salowey wrote: > > [Joe] I think we should deprecate MD5 in all cases and I also think you > should treat digest as basic auth and run it over a secure channel in all > cases. The text update looks good. > > There's been some... pushback on list since: > https://www.w3.org/mid/2E8A6D6C-50DC-4753-916E-3AE43BBFECAE@mnot.net > > Would you be comfortable if we just removed the discussion of digest and > MD5 completely, and deferred action to an (eventual) update of 7616? > > [Joe] The document is already down the path of adding normative language around 7616 by requiring a secure channel just when using digest MD5. This guidance doesn't seem specific to the APIs case. Why can't the document improve the normative guidance to update to MUST NOT use MD5 and MUST use a secure channel with digest? > Cheers, > > > > -- > Mark Nottingham https://www.mnot.net/ > > --0000000000005e2d9905c8aa6faf Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable

On Mon, Aug 2, 2021 at 5:50 PM Mark Notti= ngham <mnot@mnot.net> wrote:
=
Hi Joe,


> On 3 Aug 2021, at 6:33 am, Joseph Salowey <joe@salowey.net> wrote:
> [Joe]=C2=A0 I think we should deprecate MD5 in all cases and I also th= ink you should treat digest as basic auth and run it over a secure channel = in all cases.=C2=A0 The text update looks good.=C2=A0

There's been some... pushback on list since:
=C2=A0 https://www.w3.org/mid/2E= 8A6D6C-50DC-4753-916E-3AE43BBFECAE@mnot.net

Would you be comfortable if we just removed the discussion of digest and MD= 5 completely, and deferred action to an (eventual) update of 7616?


[Joe]=C2=A0 The document is already=C2= =A0down the path of=C2=A0adding normative language around 7616 by requiring= a secure channel just when using digest MD5.=C2=A0 =C2=A0This guidance doe= sn't seem specific to the APIs case.=C2=A0 Why can't the=C2=A0docum= ent improve the normative guidance to update to MUST NOT use MD5 and MUST u= se a secure channel with digest?=C2=A0=C2=A0

=C2= =A0
Cheers,



--
Mark Nottingham=C2=A0 =C2=A0https://www.mnot.net/

--0000000000005e2d9905c8aa6faf-- From nobody Tue Aug 3 16:22:05 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B94473A36EA; Tue, 3 Aug 2021 16:22:03 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.1 X-Spam-Level: X-Spam-Status: No, score=-2.1 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_BLOCKED=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=EOBrKIUy; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=FEUWJydJ Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9nmMehxBPR0b; Tue, 3 Aug 2021 16:21:58 -0700 (PDT) Received: from out5-smtp.messagingengine.com (out5-smtp.messagingengine.com [66.111.4.29]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 02EA63A36E9; Tue, 3 Aug 2021 16:21:57 -0700 (PDT) Received: from compute4.internal (compute4.nyi.internal [10.202.2.44]) by mailout.nyi.internal (Postfix) with ESMTP id 6E7885C012B; Tue, 3 Aug 2021 19:21:54 -0400 (EDT) Received: from mailfrontend2 ([10.202.2.163]) by compute4.internal (MEProxy); Tue, 03 Aug 2021 19:21:54 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; s=fm3; bh=m UGDGB1OwGbm0PvENpMNfH/CedBA9pM9T+y0fhWmt8o=; b=EOBrKIUyYCgSm6pgV EcK2uNiU9ijdhdjBTxQBidjTxI0mAHG0KziTcZd9SP91Ak44U46yXskzpZJZ/+Me +/FH0QT+VABw1x/qP1rK0WqoAokKkWxicHmhx8Heb16zgpSfrjdqP0ZKjHNOlb7d 0yL1+m+H0oaVm6qaLug11TAHNhDER9Zu8xcWI3mj88lQhEgcW8CJ9JzPGZRB/Rga kIaJV8v+gmbeYzzNX+8KxGqDB7feZk7HXMJ4shqPxo31IBlRVK0IyPaSjf5CPEbS Y3gplnR/yikMl/MWk18jzrjdUA6G8AD40xnusGncvgTrybBc+h/+SF2B6V3sAEd8 BO/uA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm3; bh=mUGDGB1OwGbm0PvENpMNfH/CedBA9pM9T+y0fhWmt 8o=; b=FEUWJydJ8zXnTcLdyN3zMRrTm0O3QMOaW4uICZKlQX7Jkvahuf4GcBGHm 2a3J/1BNKzyye9m2m+ihe5IdD1EdVyb/8BcKc3fuEu/OWdpl9pzOM/zpIaLvSpKk zOndkaMWWPXWIf0gU+z0JGOuf2Do7nn2XsFXoHsaiPErwMgfH82KHEp2JRrT+lZs Lb0l6WtOYtgJhJjpHeBGL+XEpXZx0AXt6SK7cfImyD/VOEz4eYq6fRTk3kaNLiC3 LIX2uLbfuyM2DPpBFs87sAJ/rHxvSgs7Qb6bjlxMaehkn0UCcDkx5MuD47uVuEb3 +9A8Ua8FC3B8ic6yMHHaZqFemaovg== X-ME-Sender: X-ME-Received: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvtddrieehgddukecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecunecujfgurheptggguffhjgffgffkfhfvofesthhqmh dthhdtvdenucfhrhhomhepofgrrhhkucfpohhtthhinhhghhgrmhcuoehmnhhothesmhhn ohhtrdhnvghtqeenucggtffrrghtthgvrhhnpeevffffhfduteevvefhueffieegtdeutd ehffeltefffedttdeggeejheeiueetteenucffohhmrghinhepmhhnohhtrdhnvghtnecu vehluhhsthgvrhfuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhnohhtse hmnhhothdrnhgvth X-ME-Proxy: Received: by mail.messagingengine.com (Postfix) with ESMTPA; Tue, 3 Aug 2021 19:21:50 -0400 (EDT) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\)) From: Mark Nottingham In-Reply-To: Date: Wed, 4 Aug 2021 09:21:48 +1000 Cc: draft-ietf-httpbis-bcp56bis.all@ietf.org, HTTP Working Group , last-call@ietf.org, secdir Content-Transfer-Encoding: quoted-printable Message-Id: References: <162723422613.4754.2816752947598222075@ietfa.amsl.com> <86B9EF7F-8AC1-49A5-B33D-F9A8D5A96A45@mnot.net> To: Joseph Salowey X-Mailer: Apple Mail (2.3654.120.0.1.13) Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-httpbis-bcp56bis-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Aug 2021 23:22:04 -0000 > On 4 Aug 2021, at 2:46 am, Joseph Salowey wrote: >=20 > Would you be comfortable if we just removed the discussion of digest = and MD5 completely, and deferred action to an (eventual) update of 7616? >=20 >=20 > [Joe] The document is already down the path of adding normative = language around 7616 by requiring a secure channel just when using = digest MD5. This guidance doesn't seem specific to the APIs case. Why = can't the document improve the normative guidance to update to MUST NOT = use MD5 and MUST use a secure channel with digest? =20 The proposal was to remove discussion of MD5 *and* digest, deferring to = 7616 (and an eventual update). -- Mark Nottingham https://www.mnot.net/ From nobody Tue Aug 3 18:52:23 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 28EFF3A3BDC; Tue, 3 Aug 2021 18:52:17 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.798 X-Spam-Level: X-Spam-Status: No, score=-2.798 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b=lcWxxsp7; dkim=pass (2048-bit key) header.d=messagingengine.com header.b=PdZkUSxb Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qiJX3ajmxNDc; Tue, 3 Aug 2021 18:52:12 -0700 (PDT) Received: from wout4-smtp.messagingengine.com (wout4-smtp.messagingengine.com [64.147.123.20]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F10883A3BD9; Tue, 3 Aug 2021 18:52:11 -0700 (PDT) Received: from compute2.internal (compute2.nyi.internal [10.202.2.42]) by mailout.west.internal (Postfix) with ESMTP id A0F493200583; Tue, 3 Aug 2021 21:52:07 -0400 (EDT) Received: from mailfrontend1 ([10.202.2.162]) by compute2.internal (MEProxy); Tue, 03 Aug 2021 21:52:08 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h= content-type:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; s=fm3; bh=u atpYeZrZ4XAViaJyZGrZIV+p5zY/1RXxphtWHhZt1E=; b=lcWxxsp7FWrPM60/O 7ZOL9uOJtRmBmh4b1147QJEt0pGrM4mtmnf0CVBV5un5yrOElCLzGx1Y5rN207qN gV6xI0q4WAcl2C3y1vcpdENd8BVxIgH/5ja1C0/I1qe3LNr/YqBIi1w7nhLfEEIu eQO7u6wBWvWT1JdhXgPq/5apTaAYGmLfbyPXahdpXoPs+apKofqhhlu2Irr/wJEN ryHZWRcVa6fR9hIR3d/i58l+Q2+5KLAYeyQYsYWwNjkt/seMeW++GCRFlagf+MKY IYvg749rQtcwDPg85qQaH4nr7j9TMnErbqViH6Fsna2JVgdSN4RB9VmVTmepWb4v dWNfA== DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:content-transfer-encoding:content-type :date:from:in-reply-to:message-id:mime-version:references :subject:to:x-me-proxy:x-me-proxy:x-me-sender:x-me-sender :x-sasl-enc; s=fm3; bh=uatpYeZrZ4XAViaJyZGrZIV+p5zY/1RXxphtWHhZt 1E=; b=PdZkUSxbdE4kdPjtxbzc48aKugMKm962DUryZH+Qy3thdIL9Rntb7sFO+ YJfgciHeU85QlYIc5/pd2QKbiSGrG4ZGOcS1HHhJVyTv2A6gXePHpYMXX1grFX2l m/nJHoH4gTr29SayY/Fh9p7xAkbyBXSuPHjrTwgfZSG3TmRLuGtXOGBpAdKL4HFU f+bok8dN0AK8XgbQ75kopAvcjpRk8Ru6szwla/waRsPREE1Y3KE8YiaJyrNwN626 pgk+3J1gouDpiz6Y0Q9jWKCnSnmiz7eYQBIEXmkC8B/DyYxhhM5zThJy9Et6XwIA rlW/21RWSBf1BDEGnsFLW9aJ/xrzw== X-ME-Sender: X-ME-Received: X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgedvtddrieehgdegkecutefuodetggdotefrodftvf curfhrohhfihhlvgemucfhrghsthforghilhdpqfgfvfdpuffrtefokffrpgfnqfghnecu uegrihhlohhuthemuceftddtnecunecujfgurheptggguffhjgffgffkfhfvofesthhqmh dthhdtvdenucfhrhhomhepofgrrhhkucfpohhtthhinhhghhgrmhcuoehmnhhothesmhhn ohhtrdhnvghtqeenucggtffrrghtthgvrhhnpeelffdvueevffffkeeggfffueegheelke ekteejlefhleekveekudeiieevvdetgfenucffohhmrghinhepghhithhhuhgsrdgtohhm pdhmnhhothdrnhgvthenucevlhhushhtvghrufhiiigvpedtnecurfgrrhgrmhepmhgrih hlfhhrohhmpehmnhhothesmhhnohhtrdhnvght X-ME-Proxy: Received: by mail.messagingengine.com (Postfix) with ESMTPA; Tue, 3 Aug 2021 21:52:03 -0400 (EDT) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\)) From: Mark Nottingham In-Reply-To: Date: Wed, 4 Aug 2021 11:51:58 +1000 Cc: draft-ietf-httpbis-bcp56bis.all@ietf.org, HTTP Working Group , last-call@ietf.org, secdir Content-Transfer-Encoding: quoted-printable Message-Id: <3BBEE7C6-238C-425D-AC8F-F4E04C38A158@mnot.net> References: <162723422613.4754.2816752947598222075@ietfa.amsl.com> <86B9EF7F-8AC1-49A5-B33D-F9A8D5A96A45@mnot.net> To: Joseph Salowey X-Mailer: Apple Mail (2.3654.120.0.1.13) Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-httpbis-bcp56bis-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Aug 2021 01:52:17 -0000 See: https://github.com/httpwg/http-extensions/commit/9f3c2faa3 This fits in with the overall approach of the document -- as a BCP, = we're shying away from placing requirements on implementations.=20 Cheers, > On 4 Aug 2021, at 9:21 am, Mark Nottingham wrote: >=20 >=20 >=20 >> On 4 Aug 2021, at 2:46 am, Joseph Salowey wrote: >>=20 >> Would you be comfortable if we just removed the discussion of digest = and MD5 completely, and deferred action to an (eventual) update of 7616? >>=20 >>=20 >> [Joe] The document is already down the path of adding normative = language around 7616 by requiring a secure channel just when using = digest MD5. This guidance doesn't seem specific to the APIs case. Why = can't the document improve the normative guidance to update to MUST NOT = use MD5 and MUST use a secure channel with digest? =20 >=20 > The proposal was to remove discussion of MD5 *and* digest, deferring = to 7616 (and an eventual update). >=20 > -- > Mark Nottingham https://www.mnot.net/ >=20 >=20 -- Mark Nottingham https://www.mnot.net/ From nobody Tue Aug 3 22:28:12 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 35EB03A0C0A for ; Tue, 3 Aug 2021 22:27:36 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.898 X-Spam-Level: X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=unavailable autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=salowey-net.20150623.gappssmtp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BGmJwPX354i6 for ; Tue, 3 Aug 2021 22:27:30 -0700 (PDT) Received: from mail-lj1-x22d.google.com (mail-lj1-x22d.google.com [IPv6:2a00:1450:4864:20::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6567F3A0C02 for ; Tue, 3 Aug 2021 22:27:30 -0700 (PDT) Received: by mail-lj1-x22d.google.com with SMTP id e5so1202954ljp.6 for ; Tue, 03 Aug 2021 22:27:30 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=salowey-net.20150623.gappssmtp.com; s=20150623; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=zQ7xfvearU9zTgcQKL2Gw6NauJe0G9V4TLXY5AClj3Y=; b=Yd7/TQAIMBC9WOtQCin54q6ZxjhlDJrRnPrPh8ewHkdJjRcKzv0BNROGq7+PR93f3I gtFpjHCVlKu1YEOAF0uh3Tr0/NbK0cigfRG/2N621+0kS8LC5HUWJM8yRkdeTr9fm+G7 yEMmkHS+qXyKDVzubE22cApqFB2qQymnJJ8SaLs50+Dw8FznQjudNRREEeASpNVDuRcJ RFYZdKzh94QBi4qvEFQPodUEEbnnFSEHnDK0/VPRXfR2LBR65m5vxNkYbzI6qxPgrhiF 0x2IMMG0llRZKOKnJzMG1IjIv1fEYqt4HCR7wQEIy6TuhbaM+xhoaO+15/qv5iq7LjAx lHmA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=zQ7xfvearU9zTgcQKL2Gw6NauJe0G9V4TLXY5AClj3Y=; b=HbIwr7UcBdETw9PruRDjyV1aJLPetosiiKqUUL0Dd4QUflQygiwlCbCe8/PdJY7f6K hCZ8OnwVklWr6rj0TV6/4i+5k2fYZZ5ZpLRV4qzuB1bT9XM3gpoRysqDBDNFG0ufhDNr nFoDD/oU2x8LQrPQPPyeYMimyXQ1evJmn3eOby/R7LkAdmQpVSu6CTWkYZxI4xVWQDPB e1PtU8Mjo9Gh9W4XT976IwLNCvS251R+o3AJYxbRnblfyiaexdxey6JmO9EoxOnCdse0 f81JrjYE8ZQ2W3gHcXBkM3Puw3emEvw3puLn/6IeFgcX+CzCl8VL7SjKVXy9oq/itD4M jlAQ== X-Gm-Message-State: AOAM53296fPgeUEoLnhzT5yVCr154Yf3+cQHqX7KllJWsJNIjGfWg6SU h0AmR38yGfZ1JEXj9ZK+SI8m02P6B6lAynzohE71UgmpC6I= X-Google-Smtp-Source: ABdhPJzI334o6bB32LCouSp+xMofjlXusei/HHAhzR7p5BzMjqf+oKt62UMqv6ee/kOtH5GrYs4/R4kH0s3leuJ8U5k= X-Received: by 2002:a2e:9b90:: with SMTP id z16mr17212326lji.444.1628054848008; Tue, 03 Aug 2021 22:27:28 -0700 (PDT) MIME-Version: 1.0 References: <162723422613.4754.2816752947598222075@ietfa.amsl.com> <86B9EF7F-8AC1-49A5-B33D-F9A8D5A96A45@mnot.net> <3BBEE7C6-238C-425D-AC8F-F4E04C38A158@mnot.net> In-Reply-To: <3BBEE7C6-238C-425D-AC8F-F4E04C38A158@mnot.net> From: Joseph Salowey Date: Tue, 3 Aug 2021 22:27:17 -0700 Message-ID: To: Mark Nottingham Cc: draft-ietf-httpbis-bcp56bis.all@ietf.org, HTTP Working Group , last-call@ietf.org, secdir Content-Type: multipart/alternative; boundary="000000000000e4084705c8b50ed6" Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-httpbis-bcp56bis-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Aug 2021 05:27:37 -0000 --000000000000e4084705c8b50ed6 Content-Type: text/plain; charset="UTF-8" On Tue, Aug 3, 2021 at 6:52 PM Mark Nottingham wrote: > See: > https://github.com/httpwg/http-extensions/commit/9f3c2faa3 > > This fits in with the overall approach of the document -- as a BCP, we're > shying away from placing requirements on implementations. > > [Joe] Thanks, this looks good. > Cheers, > > > > On 4 Aug 2021, at 9:21 am, Mark Nottingham wrote: > > > > > > > >> On 4 Aug 2021, at 2:46 am, Joseph Salowey wrote: > >> > >> Would you be comfortable if we just removed the discussion of digest > and MD5 completely, and deferred action to an (eventual) update of 7616? > >> > >> > >> [Joe] The document is already down the path of adding normative > language around 7616 by requiring a secure channel just when using digest > MD5. This guidance doesn't seem specific to the APIs case. Why can't the > document improve the normative guidance to update to MUST NOT use MD5 and > MUST use a secure channel with digest? > > > > The proposal was to remove discussion of MD5 *and* digest, deferring to > 7616 (and an eventual update). > > > > -- > > Mark Nottingham https://www.mnot.net/ > > > > > > -- > Mark Nottingham https://www.mnot.net/ > > --000000000000e4084705c8b50ed6 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable


=
On Tue, Aug 3, 2021 at 6:52 PM Mark N= ottingham <mnot@mnot.net> wrote:=
See:
=C2=A0 https://github.com/httpwg/http-exte= nsions/commit/9f3c2faa3

This fits in with the overall approach of the document -- as a BCP, we'= re shying away from placing requirements on implementations.


[Joe] Thanks, this looks good.=C2=A0= =C2=A0
=C2=A0
Cheers,


> On 4 Aug 2021, at 9:21 am, Mark Nottingham <mnot@mnot.net> wrote:
>
>
>
>> On 4 Aug 2021, at 2:46 am, Joseph Salowey <joe@salowey.net> wrote:
>>
>> Would you be comfortable if we just removed the discussion of dige= st and MD5 completely, and deferred action to an (eventual) update of 7616?=
>>
>>
>> [Joe]=C2=A0 The document is already down the path of adding normat= ive language around 7616 by requiring a secure channel just when using dige= st MD5.=C2=A0 =C2=A0This guidance doesn't seem specific to the APIs cas= e.=C2=A0 Why can't the document improve the normative guidance to updat= e to MUST NOT use MD5 and MUST use a secure channel with digest?=C2=A0
>
> The proposal was to remove discussion of MD5 *and* digest, deferring t= o 7616 (and an eventual update).
>
> --
> Mark Nottingham=C2=A0 =C2=A0https://www.mnot.net/
>
>

--
Mark Nottingham=C2=A0 =C2=A0https://www.mnot.net/

--000000000000e4084705c8b50ed6-- From nobody Thu Aug 5 05:59:31 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 33F143A1029 for ; Thu, 5 Aug 2021 05:59:29 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit From: Tero Kivinen via Datatracker To: X-Test-IDTracker: no X-IETF-IDTracker: 7.35.0 Auto-Submitted: auto-generated Precedence: bulk Reply-To: secdir-secretary@mit.edu, Tero Kivinen Message-ID: <162816836918.14854.8854533254888263032@ietfa.amsl.com> Date: Thu, 05 Aug 2021 05:59:29 -0700 Archived-At: Subject: [secdir] Assignments X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2021 12:59:29 -0000 Review instructions and related resources are at: http://tools.ietf.org/area/sec/trac/wiki/SecDirReview For telechat 2021-08-12 Reviewer LC end Draft Catherine Meadows 2021-07-07 draft-ietf-httpbis-cache-header Christopher Wood R2021-06-15 draft-ietf-6man-ipv6-alt-mark Last calls: Reviewer LC end Draft Nancy Cam-Winget R2021-06-28 draft-ietf-opsec-ipv6-eh-filtering Steve Hanna 2021-03-22 draft-ietf-regext-secure-authinfo-transfer Catherine Meadows 2021-04-14 draft-ietf-ntp-interleaved-modes Catherine Meadows 2021-07-07 draft-ietf-httpbis-cache-header Sandra Murphy 2020-10-15 draft-ietf-tls-external-psk-importer Tim Polk 2021-08-06 draft-ietf-opsawg-vpn-common Stefan Santesson 2021-08-11 draft-ietf-bier-te-arch Yaron Sheffer None draft-ietf-lsr-pce-discovery-security-support Melinda Shore 2021-08-11 draft-ietf-regext-epp-registry-maintenance Valery Smyslov None draft-ietf-netconf-crypto-types Robert Sparks 2021-08-09 draft-ietf-sacm-coswid Mališa Vučinić 2021-06-10 draft-ietf-httpbis-semantics Klaas Wierenga 2020-12-02 draft-ietf-core-echo-request-tag Klaas Wierenga 2020-05-26 draft-ietf-kitten-krb-spake-preauth Christopher Wood R2021-06-15 draft-ietf-6man-ipv6-alt-mark Paul Wouters 2021-06-10 draft-ietf-httpbis-messaging Liang Xia 2021-03-17 draft-ietf-core-sid Early review requests: Reviewer Due Draft Stephen Farrell 2021-06-21 draft-ietf-idr-bgpls-srv6-ext Tina Tsou 2021-08-25 draft-ietf-opsawg-sbom-access Sean Turner 2021-08-18 draft-ietf-taps-interface Loganaden Velvindron 2021-08-18 draft-ietf-taps-arch Next in the reviewer rotation: Samuel Weiler Brian Weis Klaas Wierenga Christopher Wood Paul Wouters Liang Xia Dacheng Zhang Derek Atkins John Bradley Nancy Cam-Winget From nobody Thu Aug 5 12:24:52 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 741873A1F5F; Thu, 5 Aug 2021 12:24:36 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: Yaron Sheffer via Datatracker To: Cc: draft-ietf-lsr-pce-discovery-security-support.all@ietf.org, last-call@ietf.org, lsr@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.35.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <162819147637.10274.7569490328477739918@ietfa.amsl.com> Reply-To: Yaron Sheffer Date: Thu, 05 Aug 2021 12:24:36 -0700 Archived-At: Subject: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 05 Aug 2021 19:24:37 -0000 Reviewer: Yaron Sheffer Review result: Not Ready This document defines a mechanism (a TLV) to advertise the PCE Protocol security required (use of TCP-AO and its key ID, or alternatively use of TLS) within the routing protocol being used. * Sec. 3.1: I don't understand why "SHOULD advertise" and not MUST. Especially given the strict client behavior defined later. * Sec. 3.1: should we also say something about the case where both methods are advertised, and whether we recommend for the client to use one of them over the other? * Sec. 4: typo (appears twice) - "to be carried in the PCED TLV of the for use". * Sec. 7: this phrase appears to be essential to security of this mechanism: "it MUST be insured that the IGP is protected for authentication and integrity of the PCED TLV". I would expect more guidance: how can this property be ensured in the relevant IGPs? * Also, a possibly unintended consequence of this requirement is that if the IGP cannot be protected in a particular deployment/product, this mechanism would not be used. Please consider if this is likely to happen and whether we want to forego PCEP transport security in such cases. My gut feel (not based on experience in such networks) is that the threat models are different enough that we should decouple the security of IGP from that of PCEP. From nobody Fri Aug 6 11:44:24 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F32B63A1019; Fri, 6 Aug 2021 11:44:00 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, NICE_REPLY_A=-0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4nsQTWkVZ0q8; Fri, 6 Aug 2021 11:43:56 -0700 (PDT) Received: from mout.perfora.net (mout.perfora.net [74.208.4.194]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 579D93A102E; Fri, 6 Aug 2021 11:43:56 -0700 (PDT) Received: from [172.16.0.44] ([73.189.160.186]) by mrelay.perfora.net (mreueus002 [74.208.5.2]) with ESMTPSA (Nemesis) id 0MbfKV-1mSNHp48cH-00J2ev; Fri, 06 Aug 2021 20:43:53 +0200 To: Alexey Melnikov , secdir@ietf.org Cc: last-call@ietf.org, netmod@ietf.org, draft-ietf-netmod-nmda-diff.all@ietf.org References: <162514430275.17979.13728329356212798526@ietfa.amsl.com> From: Alexander L Clemm Message-ID: <200d27c8-f73a-a1be-47c0-727c56b80a8b@clemm.org> Date: Fri, 6 Aug 2021 11:43:51 -0700 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.12.0 MIME-Version: 1.0 In-Reply-To: <162514430275.17979.13728329356212798526@ietfa.amsl.com> Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 8bit Content-Language: en-US X-Provags-ID: V03:K1:5F2Qjcvk/wPKQBZMeKg9T5EKI91kO9niY6xUbj2bx8YBCyRd51K icDSwNZdPSLZGeuoJ3AkTixc7iqZ9UYBtIFqMUyvHu5T3aZC2v+1b32r5/opHIc7zxoSNF8 1W8AalAI4FKOqBzp5CC31Wxwnj186wkNxfC05BMdEUhsHU6t/otZGqBUZ7HWH3AsXSdH7lU 7IZby05ul2eUx4UA9hRlw== X-UI-Out-Filterresults: notjunk:1;V03:K0:t/R3L968WMw=:ei4ecjrDfRcFYI+zwTwrK+ U4134ZlG7pJMHYiFt2q3SalHldWqTImdxSepIZjGm8Ul4XfDLRhbI6AVixbl+Zgb4RB8h5fp8 7CVHkoVAijpt9aNR6vRWxmCKcwx4SCwWVMx7Qo4xZGeadr5D3BZ165oDkZNjzQhWNrPNmla2v 4KVbrcLNXsX4684RaIXSXI/95MI1/fQ/kpQe87fSOIZMtxOKJkuUQTYLyVUteFgWDZ+CTi5Uw 41v4wEdGaOMXNK9T3mm/hx/0WQzCMxx5zk0FB4uhfpE51rMBtXKfouHPEODTJWCWJKoOCk3Qw iTXkhF19zjQL2yYm7F51rWpluL2u1gHbZbx94waKnSQG5eIDV8OPk2CN3d8hSkYs/JkaXXsQX HR4CsHxH9v8vTO59ngwZ06Jy3FLxYB8c03liRR4zsp7j5SKhtSDjEba5/KvetnsJNgh67nOz9 f2xTuqzdjxHstWQEFBjCg5dEdgE9pD5eE2Jb2b1pSZ8ftjydbMvWZi74AQVuQE6oaXa2lQ2w8 30Y4GAQ0XnRIJ0q8+MhJ8JrSAJmQwdzlBS+uUJQhyUBp0GUu6fUhc24MHxkSLqbuheU9FfdED pO4UgZGQ9ARTSa6mYUHUUjDhl6hqb6lPcDfWaMzc1uKZYN7El/4raKkA2jNF5ZpXPCqdKWpJp ThWHQhTAoBzRFwKt9njGAy+aNTjwK1l3CATVqwFo9i3m53kzjCrAKv6wljzF6Mfr7qiHyDJyV mpOKWGVgFdtOW066Pkd/xZQoNS2NhFLLWJb6R5hmCstnbbhG9IixfKrKGpX+SFXYDkllU9EM1 UxB9g3a5tvAAF2BknL+qMHvqaZE40UxrqDbCZk80aVsvG+rr5UfzLkMb4YplQEBBupkRoxx Archived-At: Subject: Re: [secdir] [netmod] Secdir last call review of draft-ietf-netmod-nmda-diff-09 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Aug 2021 18:44:11 -0000 Hi Alexey, thank you for your review and pointing out the nits (empty lines after HTTP headers), which are addressed in -12.  Kind regards --- Alex On 7/1/2021 5:58 AM, Alexey Melnikov via Datatracker wrote: > Reviewer: Alexey Melnikov > Review result: Has Nits > > I have reviewed this document as part of the security directorate's > ongoing effort to review all IETF documents being processed by the > IESG. These comments were written primarily for the benefit of the > security area directors. Document editors and WG chairs should treat these > comments just like any other last call comments. > > This document defines an RPC operation to compare management > datastores that comply with the NMDA architecture. > The Security Considerations talks about a couple of issues specific to > the new operation: > 1) sensitivity of the new "compare" operation and how access control rights > to access it should be restricted. > 2) performance considerations of running "compare" and > how it can lead to Denial-of-Service, if the number of requests allowed > in any given time interval is not restricted. > I can't think of other security issues raised by this document that are > missing from it. > > Nits: > > In Section 6: > >> The same request in RESTCONF (using JSON format): >> >> POST /restconf/operations/ietf-nmda-compare:compare HTTP/1.1 >> Host: example.com >> Content-Type: application/yang-data+json >> Accept: application/yang-d > Please insert an empty line after the HTTP request header and before the > following payload, or your example is not syntactically valid. > > Also, I don't "application/yang-d" in the list of registered media types on > . Did I miss it? > >> { "ietf-nmda-compare:input" { >> "source" : "ietf-datastores:operational", >> "target" : "ietf-datastores:intended", >> "report-origin" : null, >> "xpath-filter" : "/ietf-interfaces:interfaces" >> } >> } >> >> The same response in RESTCONF (using JSON format): >> >> HTTP/1.1 200 OK >> Date: Thu, 26 Jan 2019 20:56:30 GMT >> Server: example-server >> Content-Type: application/yang-d > Similar to the above, you need an empty line inserted here. > >> { "ietf-nmda-compare:output" : { >> "differences" : { >> "ietf-yang-patch:yang-patch" : { >> "patch-id" : "interface status", >> "comment" : "diff between intended (source) and operational", >> "edit" : [ >> { >> "edit-id" : "1", >> "operation" : "replace", >> "target" : "/ietf-interfaces:interface=eth0/enabled", >> "value" : { >> "ietf-interfaces:interface/enabled" : "false" >> }, >> "source-value" : { >> "ietf-interfaces:interface/enabled" : "true", >> "@ietf-interfaces:interface/enabled" : { >> "ietf-origin:origin" : "ietf-origin:learned" >> } >> } >> }, >> { >> "edit-id" : "2", >> "operation" : "create", >> "target" : "/ietf-interfaces:interface=eth0/description", >> "value" : { >> "ietf-interface:interface/description" : "ip interface" >> } >> } >> ] >> } >> } >> } >> } > Best Regards, > Alexey > > > _______________________________________________ > netmod mailing list > netmod@ietf.org > https://www.ietf.org/mailman/listinfo/netmod From nobody Sun Aug 8 20:29:25 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 019323A24E1; Sun, 8 Aug 2021 20:29:15 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit From: Melinda Shore via Datatracker To: Cc: draft-ietf-regext-epp-registry-maintenance.all@ietf.org, last-call@ietf.org, regext@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <162847975484.5697.10348648212211041099@ietfa.amsl.com> Reply-To: Melinda Shore Date: Sun, 08 Aug 2021 20:29:14 -0700 Archived-At: Subject: [secdir] Secdir last call review of draft-ietf-regext-epp-registry-maintenance-16 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Aug 2021 03:29:15 -0000 Reviewer: Melinda Shore Review result: Has Issues The security considerations section is scanty - transport security is not described at all, nor is the question of defense against a malicious actor spoofing a server. It may be the case that there are, in fact, mitigations in common use but they are not spelled out in this draft nor in RFC 5730 (and I’ll be the first to admit that I may have missed something). Because of this I do have reservations about progressing the document towards publication. Section 3.3: Is it the case that if an element is not explicitly identified as optional, it’s mandatory? If that’s the case you may want to mention that in the first paragraph of this section Nits: There’s occasionally some unidiomatic English (for example, “The command mappings described here are specifically for the use to notify [ … ]” rather than, for example, “The command mappings described here are specifically used to notify [ … ]”, “The information on a [ … ]” rather than “The information about a [ … ], etc.), Section 1, first paragraph: It’s actually not very clear about what registries are informing registrars. It may be clearer to start with something along the lines of “Registries usually inform registrars of maintenance activities in different ways.” From nobody Mon Aug 9 06:09:13 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 684DC3A1042; Mon, 9 Aug 2021 06:09:11 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UO38yYq6ObMs; Mon, 9 Aug 2021 06:09:07 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C76793A103C; Mon, 9 Aug 2021 06:09:06 -0700 (PDT) Received: from fraeml709-chm.china.huawei.com (unknown [172.18.147.201]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GjxGm5mpVz6C97d; Mon, 9 Aug 2021 21:08:32 +0800 (CST) Received: from dggeml752-chm.china.huawei.com (10.1.199.151) by fraeml709-chm.china.huawei.com (10.206.15.37) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Mon, 9 Aug 2021 15:09:02 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml752-chm.china.huawei.com (10.1.199.151) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Mon, 9 Aug 2021 21:09:00 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Mon, 9 Aug 2021 21:09:00 +0800 From: Qin Wu To: Yaron Sheffer , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeNHypPK1Aju325Q+6DWq9xSrH09w== Date: Mon, 9 Aug 2021 13:09:00 +0000 Message-ID: Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.136.123.117] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Aug 2021 13:09:12 -0000 VGhhbmtzIFlhcm9uIGZvciB2YWx1YWJsZSBjb21tZW50cywgcGxlYXNlIHNlZSBteSByZXBseSBp bmxpbmUgYmVsb3cuDQotLS0tLemCruS7tuWOn+S7ti0tLS0tDQo+5Y+R5Lu25Lq6OiBZYXJvbiBT aGVmZmVyIHZpYSBEYXRhdHJhY2tlciBbbWFpbHRvOm5vcmVwbHlAaWV0Zi5vcmddIA0KPuWPkemA geaXtumXtDogMjAyMeW5tDjmnIg25pelIDM6MjUNCj7mlLbku7bkuro6IHNlY2RpckBpZXRmLm9y Zw0KPuaKhOmAgTogZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0 LmFsbEBpZXRmLm9yZzsgbGFzdC1jYWxsQGlldGYub3JnOyBsc3JAaWV0Zi5vcmcNCj7kuLvpopg6 IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnkt c2VjdXJpdHktc3VwcG9ydC0wNQ0KDQo+UmV2aWV3ZXI6IFlhcm9uIFNoZWZmZXINCj5SZXZpZXcg cmVzdWx0OiBOb3QgUmVhZHkNCg0KPlRoaXMgZG9jdW1lbnQgZGVmaW5lcyBhIG1lY2hhbmlzbSAo YSBUTFYpIHRvIGFkdmVydGlzZSB0aGUgUENFIFByb3RvY29sIHNlY3VyaXR5IHJlcXVpcmVkICh1 c2Ugb2YgVENQLUFPIGFuZCBpdHMga2V5IElELCBvciBhbHRlcm5hdGl2ZWx5IHVzZSBvZiBUTFMp IHdpdGhpbiB0aGUgcm91dGluZyBwcm90b2NvbCBiZWluZyB1c2VkLg0KDQo+KiBTZWMuIDMuMTog SSBkb24ndCB1bmRlcnN0YW5kIHdoeSAiU0hPVUxEIGFkdmVydGlzZSIgYW5kIG5vdCBNVVNULiBF c3BlY2lhbGx5IGdpdmVuIHRoZSBzdHJpY3QgY2xpZW50IGJlaGF2aW9yIGRlZmluZWQgbGF0ZXIu DQpbUWluXTogSSBiZWxpZXZlICJTSE9VTEQgYWR2ZXJ0aXNlIiBpcyBjb25zaXN0ZW50IHdpdGgg Y2xpZW50IGJlaGF2aW9yIGRlZmluZWQgbGF0ZXIsIGkuZS4sIHdlIGFwcGx5IFNIT1VMRCBOT1Qg bGFuZ3VhZ2UgdG8gdGhlIGNsaWVudCBiZWhhdmlvci4NCkkgYW0gbm90IHN1cmUgd2Ugc2hvdWxk IGNoYW5nZSBpdCBpbnRvIHN0cm9uZyBsYW5ndWFnZSB3aXRoIE1VU1QuIFNpbmNlIGlmIElHUCBh ZHZlcnRpc2VtZW50IGRvZXNuJ3QgaW5jbHVkZSBUQ1AtQU8NCiBzdXBwb3J0IGZsYWcgYml0IG9y IFRMUyBzdXBwb3J0IGZsYWcgYml0LCBOTVMgbWF5IGZhbGwgYmFjayB0byBjb25maWd1cmUgYm90 aCBQQ0MgYW5kIFBDRSBzZXJ2ZXIgdG8gc3VwcG9ydCBUQ1AtQU8gb3IgVExTLiBUaGF0J3Mgb25l IG9mIHJlYXNvbiBJIHRoaW5rIHdoeSB3ZSBjaG9vc2UgdG8gdXNlIFNIT1VMRCBsYW5ndWFnZS4N Cg0KPiogU2VjLiAzLjE6IHNob3VsZCB3ZSBhbHNvIHNheSBzb21ldGhpbmcgYWJvdXQgdGhlIGNh c2Ugd2hlcmUgYm90aCBtZXRob2RzIGFyZSBhZHZlcnRpc2VkLCBhbmQgd2hldGhlciB3ZSByZWNv bW1lbmQgZm9yIHRoZSBjbGllbnQgdG8gdXNlIG9uZSBvZiB0aGVtIG92ZXIgdGhlIG90aGVyPw0K DQpbUWluXTogSXQgaXMgdXAgdG8gbG9jYWwgcG9saWN5LCB3aGljaCBoYXMgYmVlIGNsYXJpZmll ZCBpbiB0aGUgZW5kIG9mIHNlY3Rpb24gMy4xLiBIb3BlIHRoaXMgY2xhcmlmeS4NCg0KPiogU2Vj LiA0OiB0eXBvIChhcHBlYXJzIHR3aWNlKSAtICJ0byBiZSBjYXJyaWVkIGluIHRoZSBQQ0VEIFRM ViBvZiB0aGUgZm9yIHVzZSIuDQoNCltRaW5dOlRoYW5rcywgaGF2ZSBmaXhlZCB0aGVtIGluIHRo ZSBsb2NhbCBjb3B5Lg0KDQo+KiBTZWMuIDc6IHRoaXMgcGhyYXNlIGFwcGVhcnMgdG8gYmUgZXNz ZW50aWFsIHRvIHNlY3VyaXR5IG9mIHRoaXMgbWVjaGFuaXNtOiAiaXQgTVVTVCBiZSBpbnN1cmVk IHRoYXQgdGhlIElHUCBpcyBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3Jp dHkgb2YgdGhlIFBDRUQgVExWIi4gSSB3b3VsZCBleHBlY3QgbW9yZSBndWlkYW5jZTogaG93IGNh biB0aGlzIHByb3BlcnR5IGJlIGVuc3VyZWQgaW4gdGhlIHJlbGV2YW50IElHUHM/DQpbUWluXTpJ IHRoaW5rIG1lY2hhbmlzbSBkZWZpbmVkIGluIFtSRkMzNTY3XSBhbmQgW1JGQzIxNTRdIGNhbiBi ZSB1c2VkIHRvIGVuc3VyZSBhdXRoZW50aWNpdHkgYW5kIGludGVncml0eSBvZiBPU1BGIExTQXMg b3IgSVNJUyBMU1BzIGFuZCB0aGVpciBUTFZzLiBIZXJlIGlzIHRoZSBwcm9wb3NlZCBjaGFuZ2Vz Og0KT0xEIFRFWFQ6DQoiDQogICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mDQogICB0aGUg UENFIHNlY3VyaXR5IHBhcmFtZXRlcnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1Ag aXMNCiAgIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUg UENFRCBUTFYgaWYgdGhlDQogICBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQg aXMgdXNlZC4NCiINCk5FVyBURVhUOg0KIg0KICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBv Zg0KICAgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhh dCB0aGUgSUdQIGlzDQogICBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3Jp dHkgb2YgdGhlIFBDRUQgVExWIHdpdGggbWVjaGFuaXNtcyBkZWZpbmVkIGluIFtSRkMzNTY3XVtS RkMyMTU0XSBpZiB0aGUNCiAgIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBp cyB1c2VkLg0KIg0KPiogQWxzbywgYSBwb3NzaWJseSB1bmludGVuZGVkIGNvbnNlcXVlbmNlIG9m IHRoaXMgcmVxdWlyZW1lbnQgaXMgdGhhdCBpZiB0aGUgSUdQIGNhbm5vdCBiZSBwcm90ZWN0ZWQg aW4gYSBwYXJ0aWN1bGFyIGRlcGxveW1lbnQvcHJvZHVjdCwgdGhpcyBtZWNoYW5pc20gd291bGQg bm90IGJlIHVzZWQuIFBsZWFzZSBjb25zaWRlciBpZiB0aGlzIGlzIGxpa2VseSB0byBoYXBwZW4g YW5kIHdoZXRoZXIgd2Ugd2FudCB0byBmb3JlZ28gUENFUCB0cmFuc3BvcnQgPnNlY3VyaXR5IGlu IHN1Y2ggY2FzZXMuIE15IGd1dCBmZWVsIChub3QgYmFzZWQgb24gZXhwZXJpZW5jZSBpbiBzdWNo IG5ldHdvcmtzKSBpcyB0aGF0IHRoZSB0aHJlYXQgbW9kZWxzIGFyZSBkaWZmZXJlbnQgZW5vdWdo IHRoYXQgd2Ugc2hvdWxkIGRlY291cGxlIHRoZSBzZWN1cml0eSBvZiBJR1AgZnJvbSB0aGF0IG9m IFBDRVAuDQoNCltRaW5dIEkgYWdyZWUgSUdQIHNlY3VyaXR5IHNob3VsZCBiZSBzZXBhcmF0ZWQg ZnJvbSBQQ0VQIHNlY3VyaXR5LiBJR1AgZXh0ZW5zaW9uIGRlZmluZWQgaW4gdGhpcyBkb2N1bWVu dCBpcyB1c2VkIGJ5IHRoZSBQQ0MgdG8gc2VsZWN0IFBDRSBzZXJ2ZXIgd2l0aCBhcHByb3ByaWF0 ZSBzZWN1cml0eSBtZWNoYW5pc20uIE9uIHRoZSBvdGhlciBoYW5kLCBPcGVyYXRvciBjYW4gZWl0 aGVyIHVzZSBJR1AgYWR2ZXJ0aXNlbWVudCBmb3IgUENFUCBzZWN1cml0eSBjYXBhYmlsaXR5IG9y IHJlbHkgb24gbG9jYWwgcG9saWN5IHRvIHNlbGVjdCBQQ0UuIElmIG9wZXJhdG9yIGZlZWxzIElH UCBhZHZlcnRpc2VtZW50IGlzIG5vdCBzZWN1cmUsIGhlIGNhbiBmYWxsIGJhY2sgdG8gbG9jYWwg cG9saWN5IG9yIHJlbHkgb24gbWFudWFsIGNvbmZpZ3VyYXRpb24uIEhvcGUgdGhpcyBjbGFyaWZp ZXMuDQoNCg== From nobody Mon Aug 9 06:44:35 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A5D1B3A1295; Mon, 9 Aug 2021 06:44:28 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.097 X-Spam-Level: X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, MIME_QP_LONG_LINE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ic_B3oQTNdx1; Mon, 9 Aug 2021 06:44:24 -0700 (PDT) Received: from mail-io1-xd31.google.com (mail-io1-xd31.google.com [IPv6:2607:f8b0:4864:20::d31]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6FAF53A12B9; Mon, 9 Aug 2021 06:44:21 -0700 (PDT) Received: by mail-io1-xd31.google.com with SMTP id e186so25572786iof.12; Mon, 09 Aug 2021 06:44:21 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :references:in-reply-to:mime-version:content-transfer-encoding; bh=uA7F4t96xgdFA4SNwDobglo150WrjBOUQJslmYokUQE=; b=aQTuF2yTwpxOqoyCvWW2YHycMllA8GrFGQvqeopluCWIa/B4Gt6lXBdK/mzWL4OmDR nsT0NLoMxEIg2gk3Mus4ltiWPA8grFPy0SyjQuT01U878cfmtpte+nXVxLiRscbF1D3L exC2mE4gUNdxD4LVlHz4ajyBHTYRD2f1jDoCln3pmY7SH3oubgtHt+mYyPpmOMFfhysy 0pQTQAKIDgbsADxSXEeY1axu2OWcDSx8i0aA+GC6OzsOdp4rmSEiVDCVQc0nQ6QYVevv obFE+B9YHHGPmW38/sMIPDO11AlyqtTmEhyZja38zsZGFH0MGvPIO8fVV+ydJTsLgMxy Aw7w== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:user-agent:date:subject:from:to:cc:message-id :thread-topic:references:in-reply-to:mime-version :content-transfer-encoding; bh=uA7F4t96xgdFA4SNwDobglo150WrjBOUQJslmYokUQE=; b=LsRPtNeupf9IRrikNo6TlPz19r2crNOUluIMhqFHyNw0WaNODn/tOXQf4liNG8IT9Z 7964HIstl8UyRlBLtNs5meXzSQ3QuWh2h8JNQ4ZJbWlVgahxP2MSO0SZNfzy1Kk6DTvw Ski0aVWkDBM1Ep6+KNBPwnc9DIenhlbiGDAlcKDvsRAplfcPlcn9dZ9lYvp7VFp0UiUg X8VL+2zHgfSkLR64zUPHBb4XDk9hJLCgl957xk/S2VqHlolcZlEeH1CtYsNWgEkAqaLY rop1xjC88rvI79A40x1jcGfHBhu3wkmkEzppoRnOjSAtHCWXWHT9G4Mr7iCF/VzlYpuG N/lw== X-Gm-Message-State: AOAM533rDQurxtufo82mLUteeZj1OpqqpLf6kN4w2ZvozgJOLGxUR/Rt qerrnil3rK2glbRO2KvxnHg= X-Google-Smtp-Source: ABdhPJzVBSGFIBpOkZFdt5HzZ4i7Py9RiLytxGKwIMw5Ll/rBsP2JACKumfkrduTCNuZ25A162sISw== X-Received: by 2002:a05:6638:1004:: with SMTP id r4mr22826333jab.105.1628516660052; Mon, 09 Aug 2021 06:44:20 -0700 (PDT) Received: from [192.168.68.110] (bzq-79-181-28-50.red.bezeqint.net. [79.181.28.50]) by smtp.gmail.com with ESMTPSA id f9sm3841351ilk.56.2021.08.09.06.44.17 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 09 Aug 2021 06:44:19 -0700 (PDT) User-Agent: Microsoft-MacOutlook/16.51.21071101 Date: Mon, 09 Aug 2021 16:44:15 +0300 From: Yaron Sheffer To: Qin Wu , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Message-ID: <0D7D6324-9F23-4E67-B66B-D0A7DD640035@gmail.com> Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 References: In-Reply-To: Mime-version: 1.0 Content-type: text/plain; charset="UTF-8" Content-transfer-encoding: quoted-printable Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Aug 2021 13:44:29 -0000 Hi Qin, Thank you for your response. * RFC 3567 (for IS-IS) is obsoleted by RFC 5304. Unfortunately RFC 5304 sti= ll uses HMAC-MD5, which would be considered insecure nowadays. * RFC 2154 is very old and Experimental (and only supports RSA-MD5 signatur= es). I'm not an OSPF expert by any means, but I'm willing to bet that there = are no production implementations of this RFC. (I'm willing to be proven wro= ng). Is there another RFC that defines a protection mechanism for OSPF? All in all, there appear to be no good options for the IGP. To your last point, when I mentioned decoupling the mechanisms, I was sugge= sting to use the extension you define even if the IGP *cannot* be secured. I= f you think this is reasonable, please add such text to the Security Conside= rations. Thanks, Yaron =EF=BB=BFOn 8/9/21, 16:09, "Qin Wu" wrote: Thanks Yaron for valuable comments, please see my reply inline below. -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- >=E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer via Datatracker [mailto:noreply@ietf.org]=20 >=E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=886=E6=97=A5 3:25 >=E6=94=B6=E4=BB=B6=E4=BA=BA: secdir@ietf.org >=E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@ietf.org; la= st-call@ietf.org; lsr@ietf.org >=E4=B8=BB=E9=A2=98: Secdir last call review of draft-ietf-lsr-pce-discovery-securi= ty-support-05 >Reviewer: Yaron Sheffer >Review result: Not Ready >This document defines a mechanism (a TLV) to advertise the PCE Protoco= l security required (use of TCP-AO and its key ID, or alternatively use of T= LS) within the routing protocol being used. >* Sec. 3.1: I don't understand why "SHOULD advertise" and not MUST. Es= pecially given the strict client behavior defined later. [Qin]: I believe "SHOULD advertise" is consistent with client behavior = defined later, i.e., we apply SHOULD NOT language to the client behavior. I am not sure we should change it into strong language with MUST. Since= if IGP advertisement doesn't include TCP-AO support flag bit or TLS support flag bit, NMS may fall back to configu= re both PCC and PCE server to support TCP-AO or TLS. That's one of reason I = think why we choose to use SHOULD language. >* Sec. 3.1: should we also say something about the case where both met= hods are advertised, and whether we recommend for the client to use one of t= hem over the other? [Qin]: It is up to local policy, which has bee clarified in the end of = section 3.1. Hope this clarify. >* Sec. 4: typo (appears twice) - "to be carried in the PCED TLV of the= for use". [Qin]:Thanks, have fixed them in the local copy. >* Sec. 7: this phrase appears to be essential to security of this mech= anism: "it MUST be insured that the IGP is protected for authentication and = integrity of the PCED TLV". I would expect more guidance: how can this prope= rty be ensured in the relevant IGPs? [Qin]:I think mechanism defined in [RFC3567] and [RFC2154] can be used = to ensure authenticity and integrity of OSPF LSAs or ISIS LSPs and their TLV= s. Here is the proposed changes: OLD TEXT: " Thus before advertisement of the PCE security parameters, it MUST be insured that the IGP is protected for authentication and integrity of the PCED TLV if the mechanism described in this document is used. " NEW TEXT: " Thus before advertisement of the PCE security parameters, it MUST be insured that the IGP is protected for authentication and integrity of the PCED TLV with mech= anisms defined in [RFC3567][RFC2154] if the mechanism described in this document is used. " >* Also, a possibly unintended consequence of this requirement is that = if the IGP cannot be protected in a particular deployment/product, this mech= anism would not be used. Please consider if this is likely to happen and whe= ther we want to forego PCEP transport >security in such cases. My gut feel (= not based on experience in such networks) is that the threat models are diff= erent enough that we should decouple the security of IGP from that of PCEP. [Qin] I agree IGP security should be separated from PCEP security. IGP = extension defined in this document is used by the PCC to select PCE server w= ith appropriate security mechanism. On the other hand, Operator can either u= se IGP advertisement for PCEP security capability or rely on local policy to= select PCE. If operator feels IGP advertisement is not secure, he can fall = back to local policy or rely on manual configuration. Hope this clarifies. From nobody Mon Aug 9 08:36:39 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB1753A18A4; Mon, 9 Aug 2021 08:36:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -9.596 X-Spam-Level: X-Spam-Status: No, score=-9.596 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=gNig/tW0; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=vNFiZXAu Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7O9X3lrN_5LP; Mon, 9 Aug 2021 08:36:08 -0700 (PDT) Received: from rcdn-iport-9.cisco.com (rcdn-iport-9.cisco.com [173.37.86.80]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7C1C33A18A3; Mon, 9 Aug 2021 08:36:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=8286; q=dns/txt; s=iport; t=1628523368; x=1629732968; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=5Cf9N37DGmUZsiUKPnqS6r4LRbQSae8HUWxckL/YRxk=; b=gNig/tW0a4NONR5/az5gK69sbHbtBVlHZxhLdMjIAPlXDu6irvPUu5uX 3kPVlq6b68shIbWMEtdficuLOcyrMcyac4uhVFg83lMpmUCz2HuSEUjdJ P4jQwhpMdp/+mq36OpeN4k79FToAQNC2nToSTMsllrqGDGbISHGIwsrOd c=; IronPort-PHdr: =?us-ascii?q?A9a23=3AF6YMlx8toAor2f9uWD/oyV9kXcBvk7rxNw8Rr?= =?us-ascii?q?JEgjuEGfqei+sHkO0rSrbVogUTSVIrWo/RDl6LNsq/mVGBBhPTJsH0LfJFWE?= =?us-ascii?q?RNQj8IQkl8vBceEDQvwK/u5JyA/Fd5JAVli+XzzOENJGcH4MlvVpHD67TMbF?= =?us-ascii?q?hjlcwRvIeGgEY/JhMPx3Oe3qPXu?= IronPort-HdrOrdr: =?us-ascii?q?A9a23=3AULiRjqulMoiciAcDFwQbvUCS7skCLoAji2?= =?us-ascii?q?hC6mlwRA09TyXGraGTdaUguyMc1gx/ZJh5o6H+BEGBKUmskqKdkrNhQ4tKOz?= =?us-ascii?q?OW+FdATbsSrLcKpgeBJ8SQzJ8n6U4NSdkaNDS0NykHsS+Y2nj6Lz9D+qj8zE?= =?us-ascii?q?nAv463pB0BIXAIGsNdBkVCe3um+yZNNW977O8CZeKhD7181kOdkBosH6CGL0?= =?us-ascii?q?hAe9KGi8zAlZrgbxJDLQUg8hOygTSh76O/OwSE3z8FOgk/g4sKwCzgqUjU96?= =?us-ascii?q?+ju/a0xlv3zGnI9albn9Pn159qGNGMsM4IMT/h4zzYIbiJGofy+Azdktvfrm?= =?us-ascii?q?rCo+O8+ivI+P4Ds085S1vF5icFHTOQiwrGpUWSk2NwykGT0PARDAhKe/apw7?= =?us-ascii?q?gpLycwLyEbzY5BOGUh5RPEi3MfN2KyoA3to9fPTB1kjUyyvD4rlvMSlWVWVc?= =?us-ascii?q?8EZKZWtpF3xjIZLH4sJlOw1GkcKpglMCgc3ocgTXqKK3TC+mV/yt2lWXo+Wh?= =?us-ascii?q?+AX0gZo8SQlzxbhmpwwUcUzNEW2i5ozuNzd7BUo+Dfdqh4nrBHScEbKap7Ge?= =?us-ascii?q?caWMOyTmjAWwjFPm6eKUnuUKsHJ3XOoZjq56hd3pDnRLUYiJ8p3JjRWlJRsm?= =?us-ascii?q?A/P0roFM2VxZVOtgvARW2sNA6dgv22J6IJ84EUYYCbfxFrZGpe5vdIks9vdP?= =?us-ascii?q?EzAczDSq6+K8WTWVfTJQ=3D=3D?= X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0BPAABdShFh/49dJa1aHAEBAQEBAQc?= =?us-ascii?q?BARIBAQQEAQFAgUUHAQELAYFSUQd3WjcxAoRFg0gDhFlgiGYDmjSBLoElA1Q?= =?us-ascii?q?LAQEBDQEBKgsMBAEBhFgCF4JCAiU0CQ4BAgQBAQESAQEFAQEBAgEGBIERE4V?= =?us-ascii?q?oDYZCAQEBAQMBARAREQwBASUEAwsBCwQCAQYCEQQBAQECAiMDAgICJQsUAQg?= =?us-ascii?q?IAQEEAQ0FCBqCUIJVAy8BDo1RjzQBgToCih96gTGBAYIHAQEGBASFOhiCNAM?= =?us-ascii?q?GgRAqAYJ7hA+CaoN6JxyBSUSBFAFDgmI+gmIBAQKBRhokgnE2gi6CKlsGAjA?= =?us-ascii?q?PIwQNFSEOAlskGT0CDQYYAg8UAQQRlTWoIgqDKJhshXgSg2WLYAOXJ5YPn2s?= =?us-ascii?q?CgiWDCQIEAgQFAg4BAQaBYDuBWXAVO4JpUBkOi0eCWA0Vg0+FFIVKcwILKwI?= =?us-ascii?q?GAQoBAQMJilABAQ?= X-IronPort-AV: E=Sophos;i="5.84,307,1620691200"; d="scan'208";a="825434148" Received: from rcdn-core-7.cisco.com ([173.37.93.143]) by rcdn-iport-9.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 09 Aug 2021 15:36:07 +0000 Received: from mail.cisco.com (xbe-rcd-005.cisco.com [173.37.102.20]) by rcdn-core-7.cisco.com (8.15.2/8.15.2) with ESMTPS id 179Fa6Gx029522 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Mon, 9 Aug 2021 15:36:07 GMT Received: from xfe-rtp-002.cisco.com (64.101.210.232) by xbe-rcd-005.cisco.com (173.37.102.20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 9 Aug 2021 10:36:06 -0500 Received: from xfe-aln-002.cisco.com (173.37.135.122) by xfe-rtp-002.cisco.com (64.101.210.232) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 9 Aug 2021 11:36:05 -0400 Received: from NAM10-DM6-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-002.cisco.com (173.37.135.122) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Mon, 9 Aug 2021 10:36:05 -0500 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=R9rZbS9ybU9JC6uWfwg/g6kHnJJeWQjpeZNOYrEWK0OWlXf9G2lmGjRDhGapsKrzzx67Hmb+0NoU0NtdJwv1duoF7JBNd8mKJwnMHYU7OxMYvPn7R8N/DyzOcXyCpIA7LsePMusiii1m+2hxjLJ1tgE0QqTX5vHR5f5sTpJoMqwtnjhx/RBxe4FCz2lpxSe0+ubwyLwKwj1ftcrzctDkrcWDFaU3o+Mwon0jDrA/Tbzj37nlTnVchi+3wkU5e6HeoSZk0/Qf2mp9L1XT3VpzhMzsehIXvIS6cG/4w8kYzb+kZsb0Xbqft5XVmw5KJsMwbHSl6STdPBq5qDyMpJGSRA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=5Cf9N37DGmUZsiUKPnqS6r4LRbQSae8HUWxckL/YRxk=; b=Op+XPOAfSXzybCxiva5cHwTV75emqbYy34gn5ejcW587SGumOnVAJBBy86H7vuAUymTZ+2MeLJk+w5AG/gkWGjaSJh7KvsrBIjOkMkdVYHX9FERA1pHWGAnrKSED7Glo3oLt2ON4D2dVuJ1xEncRH2cnYFtFe0wMe8PxuED4KCyQSOU982YZQz0oYAcu4v22unCNICfr1iGjuTwAZhbWas1HptNJjfwRd65+a/iIIBlXz2Wj2ot0A5MjFMdJ+KyOmylLLextY1wTpITT0y4CuAmJR0U1/wHAG2238/ailTcuPM0apx4wUgMFttFTiVCDATxn4THGRSFw+ilFf0l+Iw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=5Cf9N37DGmUZsiUKPnqS6r4LRbQSae8HUWxckL/YRxk=; b=vNFiZXAuf8HG7Ae1PluI1fsrO6K4pvP71+TlUNcHkcxxCx08YznDt/GvH/0dlj5yUIyIh5Sv+KvHjcuAZc3cw9uLltvPWMEK05E1ODSx6Jb5roFXHSghCRZlxlRcb4d4xzWFi/aPmAyo28Ui0wa6xTjg1Q/3WRKhtRqmCMw5mqE= Received: from BY5PR11MB4337.namprd11.prod.outlook.com (2603:10b6:a03:1c1::14) by BYAPR11MB3431.namprd11.prod.outlook.com (2603:10b6:a03:8d::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4394.17; Mon, 9 Aug 2021 15:36:04 +0000 Received: from BY5PR11MB4337.namprd11.prod.outlook.com ([fe80::4a9:f193:27d3:39de]) by BY5PR11MB4337.namprd11.prod.outlook.com ([fe80::4a9:f193:27d3:39de%5]) with mapi id 15.20.4394.023; Mon, 9 Aug 2021 15:36:03 +0000 From: "Les Ginsberg (ginsberg)" To: Yaron Sheffer , Qin Wu , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeNHypPK1Aju325Q+6DWq9xSrH09wABXpCAAANbtfA= Date: Mon, 9 Aug 2021 15:36:03 +0000 Message-ID: References: <0D7D6324-9F23-4E67-B66B-D0A7DD640035@gmail.com> In-Reply-To: <0D7D6324-9F23-4E67-B66B-D0A7DD640035@gmail.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cisco.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 453aeee6-939d-4d30-ad9e-08d95b4b65e7 x-ms-traffictypediagnostic: BYAPR11MB3431: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4337.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(376002)(39860400002)(136003)(346002)(396003)(38100700002)(122000001)(5660300002)(8936002)(66556008)(66446008)(52536014)(71200400001)(4326008)(76116006)(966005)(478600001)(8676002)(66476007)(64756008)(2906002)(66946007)(38070700005)(55016002)(15650500001)(110136005)(54906003)(6506007)(53546011)(33656002)(86362001)(316002)(186003)(7696005)(9686003)(83380400001); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?TlVDcUo3SERlQ0F0cE5VbjJYUThrSVRrYm8rVUpkaHp5b2pheU5YL2VSMFEr?= =?utf-8?B?TkNqNmlCYStjUkNWNTNxa0V3ZmFtK0FTVnFIczBORlVPWFN0c3kvUEh1eG9p?= =?utf-8?B?TGRXRmY1Qm5CUUYwRCtOTHRhWjNFQjRvZFZkeTBtVks4Vkt6ODJ1NVJtYU0v?= =?utf-8?B?K2t0TnVORnlkMFJISU5kVzF3VFpFeFhDaUtrTVRQT3F3S1lPSjMxR2JPcUUv?= =?utf-8?B?UlExVGN0bGo1aFgzb3FZU284aXNVMndLUmRJYm4rNVBHd0dFU3pIUzh0ZEZD?= =?utf-8?B?c2xOMk5YTGJ0NUI0WlBBU25SRTFFelFMVFJkRzE4VEh2VmYrVjlveW13S1kv?= =?utf-8?B?SGRya2VwWXFlVGZZQWVXeWhmMzJMaUpXTTNtc0pTeDc2bnE3ZWt0MkpSUGk3?= =?utf-8?B?ZkF1blJvckYrcEJNSG1oNVNrcENjUzBOejN0RmVVR0UzUXozYlBvaFVsVmc5?= =?utf-8?B?VHVEQkdNTnpNczVxTUVIQmpCNVJWR0lpcjJMeUdEaW9qc3BlNkZGemsrL1VV?= =?utf-8?B?RFdWQjQ4bDRFdnBnNFNjYW9CR2UwaDU2ZjUyWFU0TVR0OXgrbGhDVzl2bWlX?= =?utf-8?B?TVFRSEZTUTVOSXE1M3F0TzBkVE1lc2pLN05lQUtvaDJIQ3NXdGtGZ2ViMFJG?= =?utf-8?B?dkNheTN1R2FERGxxNnF5RmUzTkxHcThzNE9kaEU0YkJmZys5a1E4QkFhQTVJ?= =?utf-8?B?MGZES1JNZ0NFYUpkQ2FVVzM4RnlMYUh6K1VQUWNqWFM4QVF0SlQzcXJMdGJ0?= =?utf-8?B?QS81S3RGempsckErd3N1NXR6WWtVeEJiS3FvMzVFT2d5Mk5HdEE0SkNZcExX?= =?utf-8?B?OVRjTThudmhUTzRCUXpZOGdKRFZBanBoelU5T2NkTndCNERTdFduNTN3WmQ0?= =?utf-8?B?aHBNVFBkVjZoZkxmRTNqSTBjblkyaXEvVUJEdVNhdVNtRnRXRldGNWx2ZWpp?= =?utf-8?B?TU15dWlZQmh4VjdDMTBiL1A3WTIvUktVTEZsS0ZzUjFUQWhJRnp3b1BCQzFK?= =?utf-8?B?RGh1bU03RzhWcHFqaWQ3eUdDWkdYUVZod2Uwci8rU1NBV1NUN0o4aXdwSHNn?= =?utf-8?B?eTh5YnVRQ0IrUkVmSFNlOXZpNXlSZjRPOFROTFJCNHoxOUI4c3hxa083UHRM?= =?utf-8?B?UzE0R3pIK2xBcEdrWndhSmlEVkNBSm96RStGY0RMdDZvRWsrbkJHS2Y1RHlB?= =?utf-8?B?UFRqaUg3UFRqMTdQVndwbVVZQnUyWkJRQTdDWXM3ZVgwVlVSRHV3M0ZiRFZq?= =?utf-8?B?YkF6WFdUUUlZRUV3NDM2eFFUdWk3YXFxWTV3R215ME1WWUpSZmg0djNVSHBO?= =?utf-8?B?dnovRzFRcCtYM0xFVW1uMGkrcEpmNWNhMmhOZ1dTREE2RE82WWhPaWpzSHZ0?= =?utf-8?B?d2M3d3hOV0tXeVdnR3JBZktsTVltUit0R3R5S0VXekNCY0V0WkwzelBaQUZC?= =?utf-8?B?Q0lONXJiTnhzSmlvdk10bHFiK0tEZzRZbjd3VkRoSGtXVDQrVGFqWFI0ZnFi?= =?utf-8?B?elhDVU44SitUZFNrdjFiQklNZkZZb2JsdVdHVmp0ckNQaHRjejd1Y3d5c2Fo?= =?utf-8?B?SWpiNDZCQTdtSi81eG9BQ1dvRGdTTjE4Sy81VlE5MEYrb285SjJObkdWdDhn?= =?utf-8?B?QWlnVDR0clczcDZQRngxeGcveVhIVzU1QUVGZ1pGbHZRSjdtR1drYkpPSG5Y?= =?utf-8?B?MEVwUDhIZU1hMFNFVWVCVzFDSGZFcG9adGdrdkROcVE2Wk0rcUZ2T3VxbDNk?= =?utf-8?B?WmdSZEJtMGhPanVIaVlxeGludlFCVWNGa2lUUFhHcU9ROWhqU0xsSzRoMjVp?= =?utf-8?B?SVRwaER1bFloSVVKR0x2bDMwcXlzOGtTR01vUDEwemJvR3dYOXJxSkZrL3Ba?= =?utf-8?Q?EHlOHqyQJJ0fW?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4337.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 453aeee6-939d-4d30-ad9e-08d95b4b65e7 X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Aug 2021 15:36:03.9043 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: 5TUk4IU8YxsJ5XvRkK/mgzqNYbvFIPZqLUNzydq5onrykRX2W6mKJdZGbeMszNlpEpWd9PkBp+n7cVIRXE/wBA== X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3431 X-OriginatorOrg: cisco.com X-Outbound-SMTP-Client: 173.37.102.20, xbe-rcd-005.cisco.com X-Outbound-Node: rcdn-core-7.cisco.com Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Aug 2021 15:36:14 -0000 WWFyb24vUWluIC0NCg0KRm9yIElTLUlTIHNlY3VyaXR5IHBsZWFzZSBhbHNvIHNlZSBSRkMgNTMx MC4NCkZvciBPU1BGIHNlY3VyaXR5IHBsZWFzZSBzZWUgUkZDIDU3MDkuDQoNClJlZ2FyZGluZyB0 aGUgZGViYXRlIGFib3V0IE1VU1QgdnMgU0hPVUxELCBhcyBJIHNlZSBpdCBhZHZlcnRpc2VtZW50 IG9mIHRoaXMgaW5mb3JtYXRpb24gaXMgYW4gb3B0aW9uLiBUaGUgSUdQIG1pZ2h0IG5vdCBoYXZl IGFjY2VzcyB0byB0aGlzIGluZm9ybWF0aW9uIGluIGEgZ2l2ZW4gaW1wbGVtZW50YXRpb24vZGVw bG95bWVudCAtIGFuZCBJIGNhbiBlYXNpbHkgaW1hZ2luZSB0aGF0IHNvbWUgY3VzdG9tZXJzIG1p Z2h0IHByZWZlciBOT1QgdG8gYWR2ZXJ0aXNlIHRoaXMgaW5mb3JtYXRpb24gaW4gYW4gSUdQIGV2 ZW4gaWYgaXQgd2VyZSBhdmFpbGFibGUuDQoNCkl0IGlzIHVzZWZ1bCB0byBjaGVjayB0aGUgd29y ZGluZyB1c2VkIGluIGh0dHBzOi8vd3d3LnJmYy1lZGl0b3Iub3JnL3JmYy9yZmM1MDg5Lmh0bWwj c2VjdGlvbi00IC4gVGhlcmUsIHRob3NlIHN1Yi1UTFZzIHdoaWNoIGFyZSBuZWNlc3NhcnkgZm9y IHRoZSBQQ0VEIHN1Yi1UTFYgdG8gYmUgdXNlZnVsIGF0IGFsbCBhcmUgcmVxdWlyZWQgLSBidXQg b3RoZXIgc3ViLVRMVnMgYXJlIG9wdGlvbmFsLiBJIHRoaW5rIHRoZXNlIG5ldyBzdWItVExWcyBm YWxsIGludG8gdGhlIGxhdHRlciBjYXRlZ29yeS4NCg0KICAgTGVzDQoNCj4gLS0tLS1PcmlnaW5h bCBNZXNzYWdlLS0tLS0NCj4gRnJvbTogTHNyIDxsc3ItYm91bmNlc0BpZXRmLm9yZz4gT24gQmVo YWxmIE9mIFlhcm9uIFNoZWZmZXINCj4gU2VudDogTW9uZGF5LCBBdWd1c3QgOSwgMjAyMSA2OjQ0 IEFNDQo+IFRvOiBRaW4gV3UgPGJpbGwud3VAaHVhd2VpLmNvbT47IHNlY2RpckBpZXRmLm9yZw0K PiBDYzogZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBp ZXRmLm9yZzsgbGFzdC0NCj4gY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQo+IFN1YmplY3Q6 IFJlOiBbTHNyXSBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2Ut ZGlzY292ZXJ5LQ0KPiBzZWN1cml0eS1zdXBwb3J0LTA1DQo+IA0KPiBIaSBRaW4sDQo+IA0KPiBU aGFuayB5b3UgZm9yIHlvdXIgcmVzcG9uc2UuDQo+IA0KPiAqIFJGQyAzNTY3IChmb3IgSVMtSVMp IGlzIG9ic29sZXRlZCBieSBSRkMgNTMwNC4gVW5mb3J0dW5hdGVseSBSRkMgNTMwNCBzdGlsbA0K PiB1c2VzIEhNQUMtTUQ1LCB3aGljaCB3b3VsZCBiZSBjb25zaWRlcmVkIGluc2VjdXJlIG5vd2Fk YXlzLg0KPiAqIFJGQyAyMTU0IGlzIHZlcnkgb2xkIGFuZCBFeHBlcmltZW50YWwgKGFuZCBvbmx5 IHN1cHBvcnRzIFJTQS1NRDUNCj4gc2lnbmF0dXJlcykuIEknbSBub3QgYW4gT1NQRiBleHBlcnQg YnkgYW55IG1lYW5zLCBidXQgSSdtIHdpbGxpbmcgdG8gYmV0IHRoYXQNCj4gdGhlcmUgYXJlIG5v IHByb2R1Y3Rpb24gaW1wbGVtZW50YXRpb25zIG9mIHRoaXMgUkZDLiAoSSdtIHdpbGxpbmcgdG8g YmUNCj4gcHJvdmVuIHdyb25nKS4gSXMgdGhlcmUgYW5vdGhlciBSRkMgdGhhdCBkZWZpbmVzIGEg cHJvdGVjdGlvbiBtZWNoYW5pc20NCj4gZm9yIE9TUEY/DQo+IA0KPiBBbGwgaW4gYWxsLCB0aGVy ZSBhcHBlYXIgdG8gYmUgbm8gZ29vZCBvcHRpb25zIGZvciB0aGUgSUdQLg0KPiANCj4gVG8geW91 ciBsYXN0IHBvaW50LCB3aGVuIEkgbWVudGlvbmVkIGRlY291cGxpbmcgdGhlIG1lY2hhbmlzbXMs IEkgd2FzDQo+IHN1Z2dlc3RpbmcgdG8gdXNlIHRoZSBleHRlbnNpb24geW91IGRlZmluZSBldmVu IGlmIHRoZSBJR1AgKmNhbm5vdCogYmUNCj4gc2VjdXJlZC4gSWYgeW91IHRoaW5rIHRoaXMgaXMg cmVhc29uYWJsZSwgcGxlYXNlIGFkZCBzdWNoIHRleHQgdG8gdGhlIFNlY3VyaXR5DQo+IENvbnNp ZGVyYXRpb25zLg0KPiANCj4gVGhhbmtzLA0KPiAJWWFyb24NCj4gDQo+IO+7v09uIDgvOS8yMSwg MTY6MDksICJRaW4gV3UiIDxiaWxsLnd1QGh1YXdlaS5jb20+IHdyb3RlOg0KPiANCj4gICAgIFRo YW5rcyBZYXJvbiBmb3IgdmFsdWFibGUgY29tbWVudHMsIHBsZWFzZSBzZWUgbXkgcmVwbHkgaW5s aW5lIGJlbG93Lg0KPiAgICAgLS0tLS3pgq7ku7bljp/ku7YtLS0tLQ0KPiAgICAgPuWPkeS7tuS6 ujogWWFyb24gU2hlZmZlciB2aWEgRGF0YXRyYWNrZXIgW21haWx0bzpub3JlcGx5QGlldGYub3Jn XQ0KPiAgICAgPuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg25pelIDM6MjUNCj4gICAgID7mlLbk u7bkuro6IHNlY2RpckBpZXRmLm9yZw0KPiAgICAgPuaKhOmAgTogZHJhZnQtaWV0Zi1sc3ItcGNl LWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZzsgbGFzdC0NCj4gY2FsbEBp ZXRmLm9yZzsgbHNyQGlldGYub3JnDQo+ICAgICA+5Li76aKYOiBTZWNkaXIgbGFzdCBjYWxsIHJl dmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LQ0KPiBzdXBwb3J0 LTA1DQo+IA0KPiAgICAgPlJldmlld2VyOiBZYXJvbiBTaGVmZmVyDQo+ICAgICA+UmV2aWV3IHJl c3VsdDogTm90IFJlYWR5DQo+IA0KPiAgICAgPlRoaXMgZG9jdW1lbnQgZGVmaW5lcyBhIG1lY2hh bmlzbSAoYSBUTFYpIHRvIGFkdmVydGlzZSB0aGUgUENFIFByb3RvY29sDQo+IHNlY3VyaXR5IHJl cXVpcmVkICh1c2Ugb2YgVENQLUFPIGFuZCBpdHMga2V5IElELCBvciBhbHRlcm5hdGl2ZWx5IHVz ZSBvZiBUTFMpDQo+IHdpdGhpbiB0aGUgcm91dGluZyBwcm90b2NvbCBiZWluZyB1c2VkLg0KPiAN Cj4gICAgID4qIFNlYy4gMy4xOiBJIGRvbid0IHVuZGVyc3RhbmQgd2h5ICJTSE9VTEQgYWR2ZXJ0 aXNlIiBhbmQgbm90IE1VU1QuDQo+IEVzcGVjaWFsbHkgZ2l2ZW4gdGhlIHN0cmljdCBjbGllbnQg YmVoYXZpb3IgZGVmaW5lZCBsYXRlci4NCj4gICAgIFtRaW5dOiBJIGJlbGlldmUgIlNIT1VMRCBh ZHZlcnRpc2UiIGlzIGNvbnNpc3RlbnQgd2l0aCBjbGllbnQgYmVoYXZpb3INCj4gZGVmaW5lZCBs YXRlciwgaS5lLiwgd2UgYXBwbHkgU0hPVUxEIE5PVCBsYW5ndWFnZSB0byB0aGUgY2xpZW50IGJl aGF2aW9yLg0KPiAgICAgSSBhbSBub3Qgc3VyZSB3ZSBzaG91bGQgY2hhbmdlIGl0IGludG8gc3Ry b25nIGxhbmd1YWdlIHdpdGggTVVTVC4gU2luY2UgaWYNCj4gSUdQIGFkdmVydGlzZW1lbnQgZG9l c24ndCBpbmNsdWRlIFRDUC1BTw0KPiAgICAgIHN1cHBvcnQgZmxhZyBiaXQgb3IgVExTIHN1cHBv cnQgZmxhZyBiaXQsIE5NUyBtYXkgZmFsbCBiYWNrIHRvIGNvbmZpZ3VyZSBib3RoDQo+IFBDQyBh bmQgUENFIHNlcnZlciB0byBzdXBwb3J0IFRDUC1BTyBvciBUTFMuIFRoYXQncyBvbmUgb2YgcmVh c29uIEkgdGhpbmsNCj4gd2h5IHdlIGNob29zZSB0byB1c2UgU0hPVUxEIGxhbmd1YWdlLg0KPiAN Cj4gICAgID4qIFNlYy4gMy4xOiBzaG91bGQgd2UgYWxzbyBzYXkgc29tZXRoaW5nIGFib3V0IHRo ZSBjYXNlIHdoZXJlIGJvdGgNCj4gbWV0aG9kcyBhcmUgYWR2ZXJ0aXNlZCwgYW5kIHdoZXRoZXIg d2UgcmVjb21tZW5kIGZvciB0aGUgY2xpZW50IHRvIHVzZQ0KPiBvbmUgb2YgdGhlbSBvdmVyIHRo ZSBvdGhlcj8NCj4gDQo+ICAgICBbUWluXTogSXQgaXMgdXAgdG8gbG9jYWwgcG9saWN5LCB3aGlj aCBoYXMgYmVlIGNsYXJpZmllZCBpbiB0aGUgZW5kIG9mIHNlY3Rpb24NCj4gMy4xLiBIb3BlIHRo aXMgY2xhcmlmeS4NCj4gDQo+ICAgICA+KiBTZWMuIDQ6IHR5cG8gKGFwcGVhcnMgdHdpY2UpIC0g InRvIGJlIGNhcnJpZWQgaW4gdGhlIFBDRUQgVExWIG9mIHRoZSBmb3INCj4gdXNlIi4NCj4gDQo+ ICAgICBbUWluXTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBpbiB0aGUgbG9jYWwgY29weS4NCj4g DQo+ICAgICA+KiBTZWMuIDc6IHRoaXMgcGhyYXNlIGFwcGVhcnMgdG8gYmUgZXNzZW50aWFsIHRv IHNlY3VyaXR5IG9mIHRoaXMgbWVjaGFuaXNtOg0KPiAiaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQg dGhlIElHUCBpcyBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkNCj4g b2YgdGhlIFBDRUQgVExWIi4gSSB3b3VsZCBleHBlY3QgbW9yZSBndWlkYW5jZTogaG93IGNhbiB0 aGlzIHByb3BlcnR5IGJlDQo+IGVuc3VyZWQgaW4gdGhlIHJlbGV2YW50IElHUHM/DQo+ICAgICBb UWluXTpJIHRoaW5rIG1lY2hhbmlzbSBkZWZpbmVkIGluIFtSRkMzNTY3XSBhbmQgW1JGQzIxNTRd IGNhbiBiZSB1c2VkIHRvDQo+IGVuc3VyZSBhdXRoZW50aWNpdHkgYW5kIGludGVncml0eSBvZiBP U1BGIExTQXMgb3IgSVNJUyBMU1BzIGFuZCB0aGVpciBUTFZzLg0KPiBIZXJlIGlzIHRoZSBwcm9w b3NlZCBjaGFuZ2VzOg0KPiAgICAgT0xEIFRFWFQ6DQo+ICAgICAiDQo+ICAgICAgICBUaHVzIGJl Zm9yZSBhZHZlcnRpc2VtZW50IG9mDQo+ICAgICAgICB0aGUgUENFIHNlY3VyaXR5IHBhcmFtZXRl cnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMNCj4gICAgICAgIHByb3RlY3Rl ZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgaWYgdGhl DQo+ICAgICAgICBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4N Cj4gICAgICINCj4gICAgIE5FVyBURVhUOg0KPiAgICAgIg0KPiAgICAgICAgVGh1cyBiZWZvcmUg YWR2ZXJ0aXNlbWVudCBvZg0KPiAgICAgICAgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBp dCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQo+ICAgICAgICBwcm90ZWN0ZWQgZm9y IGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWIHdpdGgNCj4gbWVj aGFuaXNtcyBkZWZpbmVkIGluIFtSRkMzNTY3XVtSRkMyMTU0XSBpZiB0aGUNCj4gICAgICAgIG1l Y2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBpcyB1c2VkLg0KPiAgICAgIg0KPiAg ICAgPiogQWxzbywgYSBwb3NzaWJseSB1bmludGVuZGVkIGNvbnNlcXVlbmNlIG9mIHRoaXMgcmVx dWlyZW1lbnQgaXMgdGhhdCBpZg0KPiB0aGUgSUdQIGNhbm5vdCBiZSBwcm90ZWN0ZWQgaW4gYSBw YXJ0aWN1bGFyIGRlcGxveW1lbnQvcHJvZHVjdCwgdGhpcw0KPiBtZWNoYW5pc20gd291bGQgbm90 IGJlIHVzZWQuIFBsZWFzZSBjb25zaWRlciBpZiB0aGlzIGlzIGxpa2VseSB0byBoYXBwZW4gYW5k DQo+IHdoZXRoZXIgd2Ugd2FudCB0byBmb3JlZ28gUENFUCB0cmFuc3BvcnQgPnNlY3VyaXR5IGlu IHN1Y2ggY2FzZXMuIE15IGd1dA0KPiBmZWVsIChub3QgYmFzZWQgb24gZXhwZXJpZW5jZSBpbiBz dWNoIG5ldHdvcmtzKSBpcyB0aGF0IHRoZSB0aHJlYXQgbW9kZWxzDQo+IGFyZSBkaWZmZXJlbnQg ZW5vdWdoIHRoYXQgd2Ugc2hvdWxkIGRlY291cGxlIHRoZSBzZWN1cml0eSBvZiBJR1AgZnJvbSB0 aGF0DQo+IG9mIFBDRVAuDQo+IA0KPiAgICAgW1Fpbl0gSSBhZ3JlZSBJR1Agc2VjdXJpdHkgc2hv dWxkIGJlIHNlcGFyYXRlZCBmcm9tIFBDRVAgc2VjdXJpdHkuIElHUA0KPiBleHRlbnNpb24gZGVm aW5lZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QgUENFIHNl cnZlcg0KPiB3aXRoIGFwcHJvcHJpYXRlIHNlY3VyaXR5IG1lY2hhbmlzbS4gT24gdGhlIG90aGVy IGhhbmQsIE9wZXJhdG9yIGNhbg0KPiBlaXRoZXIgdXNlIElHUCBhZHZlcnRpc2VtZW50IGZvciBQ Q0VQIHNlY3VyaXR5IGNhcGFiaWxpdHkgb3IgcmVseSBvbiBsb2NhbA0KPiBwb2xpY3kgdG8gc2Vs ZWN0IFBDRS4gSWYgb3BlcmF0b3IgZmVlbHMgSUdQIGFkdmVydGlzZW1lbnQgaXMgbm90IHNlY3Vy ZSwgaGUgY2FuDQo+IGZhbGwgYmFjayB0byBsb2NhbCBwb2xpY3kgb3IgcmVseSBvbiBtYW51YWwg Y29uZmlndXJhdGlvbi4gSG9wZSB0aGlzIGNsYXJpZmllcy4NCj4gDQo+IA0KPiANCj4gX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18NCj4gTHNyIG1haWxpbmcg bGlzdA0KPiBMc3JAaWV0Zi5vcmcNCj4gaHR0cHM6Ly93d3cuaWV0Zi5vcmcvbWFpbG1hbi9saXN0 aW5mby9sc3INCg== From nobody Mon Aug 9 10:01:43 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 21B8C3A0B22; Mon, 9 Aug 2021 10:01:40 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -9.599 X-Spam-Level: X-Spam-Status: No, score=-9.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=cC1oMvlC; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=OBbEo5HB Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VHk7Wg3S6AiE; Mon, 9 Aug 2021 10:01:34 -0700 (PDT) Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D85213A0AAD; Mon, 9 Aug 2021 10:01:33 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=9102; q=dns/txt; s=iport; t=1628528494; x=1629738094; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=24F1BP89KiU2w5MhOV6U7wg4c66rjBas25HkmPkYW7g=; b=cC1oMvlCNHHn71wvIZgfXsrfVpcKOA94SehQBzyTMkJkMAStsekxCWZA VQuoL4ArV6PK/9Ib+0RrmIM4V3QfwdZ3fMqQkf2Gr3gOlWYwd0BM1fDtI 3MTpwvyK6xyJlj1apRm4iGWSoMWzpTRZ/qqY2xjc1r837zZJhpL744AEu A=; X-IPAS-Result: =?us-ascii?q?A0AnAgArXhFhl5tdJa1aHgEBCxIMQIFOC4FTUX5aNzECh?= =?us-ascii?q?EWDSAOFOYhmA5o0gS6BJQNUCwEBAQ0BASoLDAQBAYRYAheCQgIlNAkOAQIEA?= =?us-ascii?q?QEBAQMCAwEBAQEFAQEFAQEBAgEGBBQBAQEBAQEBAYEIhWgNhkIBAQEBAwEBE?= =?us-ascii?q?BERDAEBJQQDCwELBAIBBgIRBAEBAQICIwMCAgIlCxQBCAgBAQQBDQUigk8Bg?= =?us-ascii?q?lUDLwEOjXSPNAGBOgKKH3qBMYEBggcBAQYEBIU4GII0AwaBECqCfIQPgmqDe?= =?us-ascii?q?iccgg2BFAEnDBCCYj6CYgEBAoFGGCaCcTaCLoJwWwYCMA8jBA0VIQ4CWyQZP?= =?us-ascii?q?QINBhgCDxQBBBGVNagiCoMomGyFXwUmg2WLYAOXJ5YPn2sCgiWDCQIEAgQFA?= =?us-ascii?q?g4BAQaBYDmBW3AVOyoBgj5QGQ6LR4JYDQwJg0+FFIVKcwILKwIGAQoBAQMJi?= =?us-ascii?q?lABAQ?= IronPort-PHdr: A9a23:Fffo5h2PSJXgQqq+smDPtVBlVkEcU/3cNQ8O4Z1hgLVLIeyv/JXna UrY4/glzFrERp7S5P8Mje3K+7vhVmoN7dfk0jgCfZVAWgVDhZAQmAotU8WEEkb8avXtan9yE MFLTlQw+Xa9PABcE9r/YFuHpHq04HYSFxzzOBAzKP7yH9vZjt+80Ka5/JiACzg= IronPort-HdrOrdr: A9a23:ZGoRSKNT/i5y/MBcT5f255DYdb4zR+YMi2TDiHoRdfUFSKKlfp 6V88jzjSWE9wr4WBkb6Le90DHpewKeyXcH2/huAV7EZnilhILIFvAj0WKG+V3d8kLFh5VgPM tbAs1D4ZjLfCRHZKXBkUyF+rQbsaO6GcmT7I+0pRoAPGIaCZ2IrT0JdzpzeXcGIjWucKBJbK Z0kfA33gZIF05nCviTNz0gZazuttfLnJXpbVotHBg88jSDijuu9frTDwWY9g12aUIK/Z4StU z+1yDp7KSqtP+2jjXG0XXI0phQkNz9jvNeGc23jNQPIDmEsHfuWG0hYczFgNkGmpD21L8Yqq iWn/7mBbUo15rlRBDtnfIq4Xi87N9h0Q6/9bbSuwqTnSWwfkNLNyMGv/MHTvMcgHBQ7e2VF8 lwrjykXtNsfGH9dG6W3am6azh60kWzunYsiugVkjhWVpYfcqZYqcgF8FpSC4poJlO01GkLKp giMCjn3ocbTbpaVQGRgkB/hNi3GngjFBaPRUYP/sSTzjhNhXh8i08V3tYWkHsM/I80D8As3Z WEDo140LVVCsMGZ6N0A+kMBcOxF2zWWBrJdGafO07uGq0LM2/E75T3/LI27ue3f4Fg9up9pL 3RFFdD8WIicUPnDsODmJVN7xDWWW24GS/gz8lPjqIJ8IEUhICbehFrbWpe5fdIj89vdvEzas zDcK6+WcWTWFcGMbw5qDHDZw== X-IronPort-Anti-Spam-Filtered: true X-IronPort-AV: E=Sophos;i="5.84,308,1620691200"; d="scan'208";a="753439879" Received: from rcdn-core-4.cisco.com ([173.37.93.155]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 09 Aug 2021 17:01:32 +0000 Received: from mail.cisco.com (xbe-rcd-003.cisco.com [173.37.102.18]) by rcdn-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 179H1WZq001384 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Mon, 9 Aug 2021 17:01:32 GMT Received: from xfe-rtp-003.cisco.com (64.101.210.233) by xbe-rcd-003.cisco.com (173.37.102.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 9 Aug 2021 12:01:31 -0500 Received: from xfe-rtp-002.cisco.com (64.101.210.232) by xfe-rtp-003.cisco.com (64.101.210.233) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 9 Aug 2021 13:01:30 -0400 Received: from NAM11-DM6-obe.outbound.protection.outlook.com (64.101.32.56) by xfe-rtp-002.cisco.com (64.101.210.232) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Mon, 9 Aug 2021 13:01:30 -0400 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=XaFf1k5MG3UJVE0o3R+SbZrvePluNhPzLl9k0Y3ssHe8uo9GEE+OLEY56479CLsItN0isvhOz3xhDrNgoXgAG63joEeafTCYLyktZ8O/eLTSTrkGhDlwmcrMxNksMcM/EhKm/IgbR2pssjz/XOY/YpxQzpDvZeaEvJ1VFZ4+d7TCQUQSH7SF6layqmizBJd4JidmhGS6VjjDF8PnyN5htp+3T6WiAjjw+Lojougt9chcVyL5H5iu+FLsE9pQT+0r5Q9DKnzMbEkaCkb5upVfBKko0lXEMWYVapUrbxrGKHDDO+8xSF3Db2uqKtDrocukiYsy7ozaJ8bAY3sO2lvgWA== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=24F1BP89KiU2w5MhOV6U7wg4c66rjBas25HkmPkYW7g=; b=bJVBA+EIUQ4MoElUZvKi3Q79riks5HHxkHsSY6zA+iNIBnR4Szfma0+KBzW16tsuLgC0aMWweHAry23mP2lfXg0Q7BOVWJ+g16egUzD2eyrVWJh1Osd8eAR+PJOkQrM7CUlxOcNXcjSPMgJvvFBtW5VlvdGGIc+eotoA1tbanx2hc3XfKOKXrG5kCvhs9sEPJS0U9bIfNFj2d2gd8KCUVLSqoLOJiv/7h36i3flWkf+TdNNRpMTERc/ikKaNnFfsLgj8B3Fd5+zaSC60YSC94NjJsoLIAAWGVGcFWV8uhndG0vtL9GqbuFrkOxrTgoxnMDNkUfaaxxXaVV50zrN98g== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=24F1BP89KiU2w5MhOV6U7wg4c66rjBas25HkmPkYW7g=; b=OBbEo5HBEA27SsQBHfpY6ya21bw0G8TCXDmliLPr3TXr/EEflE10LsCuM0jzSRmZlFWNUB1Em60m2e8afSm4wiR7MqzksMGfm49ejy96dbPURb8cnb8s8QP3TZZ3CHkJ4L2pnEmxMsdkDO0WOBieGkZMjlHktxhSYQjRB9mrG8U= Received: from BYAPR11MB2887.namprd11.prod.outlook.com (2603:10b6:a03:89::27) by SJ0PR11MB5056.namprd11.prod.outlook.com (2603:10b6:a03:2d5::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4394.17; Mon, 9 Aug 2021 17:01:27 +0000 Received: from BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::a19c:e0ca:19d9:19e2]) by BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::a19c:e0ca:19d9:19e2%3]) with mapi id 15.20.4394.022; Mon, 9 Aug 2021 17:01:27 +0000 From: "Acee Lindem (acee)" To: "Les Ginsberg (ginsberg)" , Yaron Sheffer , Qin Wu , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeNHypPK1Aju325Q+6DWq9xSrH09wABXpCAAANbtfD//9krAA== Date: Mon, 9 Aug 2021 17:01:27 +0000 Message-ID: <80F36E66-0599-429B-95BF-2F204397BF19@cisco.com> References: <0D7D6324-9F23-4E67-B66B-D0A7DD640035@gmail.com> In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/16.51.21071101 authentication-results: cisco.com; dkim=none (message not signed) header.d=none;cisco.com; dmarc=none action=none header.from=cisco.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 252b829d-308f-4360-3011-08d95b5753e9 x-ms-traffictypediagnostic: SJ0PR11MB5056: x-ms-exchange-transport-forked: True x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB2887.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(366004)(33656002)(71200400001)(6512007)(186003)(76116006)(6486002)(8936002)(8676002)(86362001)(53546011)(54906003)(110136005)(91956017)(966005)(83380400001)(6506007)(4326008)(2906002)(508600001)(15650500001)(26005)(316002)(2616005)(66556008)(5660300002)(38070700005)(64756008)(36756003)(122000001)(66946007)(66476007)(66446008)(38100700002)(45980500001); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?SGNHOGprNjc4NmUwTkJURVRtNFpyS2dlSDdndzZmaDJQa3k2SVgxWmJ4RjVE?= =?utf-8?B?MnVpREJWMUlPc3ZpV2lVVytnRGpTbUFpYmVlYjEwcW5TczZOWGZvcjFmdEtG?= =?utf-8?B?RXlhbVduMTExY29zWlA1eDIwMWxNZi90NWpSS0E2dy84MW1abk9icHpKOVJG?= =?utf-8?B?YUJYZHdmWWQ5OFVtNzMrRjQ2Y1phNU5SaEQ2RFhXNGk3enhlSWhxWnFpWDQw?= =?utf-8?B?cTl1ZlZVMzMza2FXckV5WFZ4Z09vLzNkWnJuNGZ4czNWWGxWaVZ3b0RyRFRJ?= =?utf-8?B?UWRIUGQvQUxqYUk1bXdEVjFWT3lkbUJlajZGNEJRRXVYZjZmSTZsaTRiMDlh?= =?utf-8?B?SU1USGlqb0Y1ZjhnS2NZVjI5cS9Vb3I5TGxLdHJOS0VOZTFUM1pVU3pJUFc4?= =?utf-8?B?Q3JpQ0tKZmR2S051ZWVzdWRlc1g4NmFsOUFraW80VGhsMmE1RElITktZa3VF?= =?utf-8?B?MjU0OWN3NTVFN3NHUVBjVkJvRXhITytrSk9NY1hveEF4Wkl5MEV2QXA2a3pB?= =?utf-8?B?YldKN0s4c3ZIWC9WS0M2OTc3ZG5HVHJhckxvaEwyNU9HRzQrZ2Y3ODcwUnFX?= =?utf-8?B?ZFRzc3dBWFk2UnhLNVpTMzZYclJoVlB5UEM0S0VsdUlrbkxGazA2QTNMb1Yz?= =?utf-8?B?NzN2TTk3VCtmaTgybFRaSHpuUit0azJaV2ZLZWhLL1VIc1BpeWpzOHhWVmw4?= =?utf-8?B?UUM0bndxQTJLWDV3Z1dvanBiZEZoSjJvdkVkeEJlZ1BnQVBrVWs4QlFxTjBp?= =?utf-8?B?L1pJeFkxZURyYmVFWm5oS2xtdy9WSWY4TmRMbUZlOGRxQ0VXWWtUMUpqTEF5?= =?utf-8?B?d2J4MGJndk1GQTJEa05yTDF6em9yQWJqei9HVGVRYkUwSnRpbGhnSHpDa2xK?= =?utf-8?B?U1RBSDFuaGdwM2ZPNk1POGZ3dDRoMTY4VUdZTU8zU3JiK0plWm9qUlJzNTdu?= =?utf-8?B?TU9EWjVVenpQMkpnOFR2UVl5dW01c1VCdHJVdGV3MjRDME9KdzVIdFMwRXZT?= =?utf-8?B?aE9OQnZzWksyZUl6NUFOazN2V3pCVTR1c3ZENmZZRjAxMm1IWXl4NGhTc2VJ?= =?utf-8?B?c2RualN6RzllOXlHZFdaS1JjN3lRYkE1cjl3SU9QQWdQbXBQcXI2ZUd4Z0tp?= =?utf-8?B?V3AxbDRiVnd0UlBpeVJmOGdsbk5yMlFTeXZsVlczMER6ekpza2lqOEcyc3VS?= =?utf-8?B?MVNiQzlVZEVLOGZIczl5ZWJUNmRCQTNwYi9DSGZRUlRMdkRSSER4di9RazZV?= =?utf-8?B?dzNTYUdPOWxXTk12dXJScFBUU0sxdW1IZWNFN29yNy9iczRzNXptM0FEVGl3?= =?utf-8?B?SUl5TXdjdlBQTmFQMjNiSUYzVmNPeXFPYW83NGdiSmdHRHFzdWE0NThoTzhS?= =?utf-8?B?M2lVZ0ZpanFZMFRZbWVvTlNsdFNaVENvUVJ5Yk5abnVJNndVbHZRdmVXQjNu?= =?utf-8?B?UjRtVTgzd28xdklnbzl4UnoxTkYrNDFlV0trQ0xDdXlzQ284eFlHUmdJd29S?= =?utf-8?B?WDVnUFpOR3lVcHdNY1hWWG9lV3dhS0hNREhNMnhpaTBpWm1CdzNycnAxTmNY?= =?utf-8?B?dmE2MTZYQXVNUTlGTWVDVEdCOVErazc5K21ZVThsREJ3bEVMVDZFMlQ2ZitN?= =?utf-8?B?S3pOM2t5aGpsZmJvRXRpa2JoUDNGN2E1OUJXTUZhYVNqNG1ielk4YXpBTFNw?= =?utf-8?B?NnpaclRWUXZqRDlieDdreFJVQ09PaFBONHlsN0VJd3NJcXFtOFBKdTFmZUFz?= =?utf-8?Q?Jchm5krS3fhYPJfVscoUYIyIeAV8NKh7GNnnJX2?= Content-Type: text/plain; charset="utf-8" Content-ID: <3AD2C8D8B1E3B44E9CD5F5310DE709E2@namprd11.prod.outlook.com> Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB2887.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 252b829d-308f-4360-3011-08d95b5753e9 X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Aug 2021 17:01:27.5520 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: QyQB2ETFDvA7oQBRqRPQF9i1UaxOmF34bwqEbdQAVDr7hBPB3a1ccMfYNXWoeDVu X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR11MB5056 X-OriginatorOrg: cisco.com X-Outbound-SMTP-Client: 173.37.102.18, xbe-rcd-003.cisco.com X-Outbound-Node: rcdn-core-4.cisco.com Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 09 Aug 2021 17:01:40 -0000 QWdyZWUgd2l0aCBMZXMuDQpUaGFua3MsDQpBY2VlDQoNCu+7v09uIDgvOS8yMSwgMTE6MzYgQU0s ICJMZXMgR2luc2JlcmcgKGdpbnNiZXJnKSIgPGdpbnNiZXJnQGNpc2NvLmNvbT4gd3JvdGU6DQoN CiAgICBZYXJvbi9RaW4gLQ0KDQogICAgRm9yIElTLUlTIHNlY3VyaXR5IHBsZWFzZSBhbHNvIHNl ZSBSRkMgNTMxMC4NCiAgICBGb3IgT1NQRiBzZWN1cml0eSBwbGVhc2Ugc2VlIFJGQyA1NzA5Lg0K DQogICAgUmVnYXJkaW5nIHRoZSBkZWJhdGUgYWJvdXQgTVVTVCB2cyBTSE9VTEQsIGFzIEkgc2Vl IGl0IGFkdmVydGlzZW1lbnQgb2YgdGhpcyBpbmZvcm1hdGlvbiBpcyBhbiBvcHRpb24uIFRoZSBJ R1AgbWlnaHQgbm90IGhhdmUgYWNjZXNzIHRvIHRoaXMgaW5mb3JtYXRpb24gaW4gYSBnaXZlbiBp bXBsZW1lbnRhdGlvbi9kZXBsb3ltZW50IC0gYW5kIEkgY2FuIGVhc2lseSBpbWFnaW5lIHRoYXQg c29tZSBjdXN0b21lcnMgbWlnaHQgcHJlZmVyIE5PVCB0byBhZHZlcnRpc2UgdGhpcyBpbmZvcm1h dGlvbiBpbiBhbiBJR1AgZXZlbiBpZiBpdCB3ZXJlIGF2YWlsYWJsZS4NCg0KICAgIEl0IGlzIHVz ZWZ1bCB0byBjaGVjayB0aGUgd29yZGluZyB1c2VkIGluIGh0dHBzOi8vd3d3LnJmYy1lZGl0b3Iu b3JnL3JmYy9yZmM1MDg5Lmh0bWwjc2VjdGlvbi00IC4gVGhlcmUsIHRob3NlIHN1Yi1UTFZzIHdo aWNoIGFyZSBuZWNlc3NhcnkgZm9yIHRoZSBQQ0VEIHN1Yi1UTFYgdG8gYmUgdXNlZnVsIGF0IGFs bCBhcmUgcmVxdWlyZWQgLSBidXQgb3RoZXIgc3ViLVRMVnMgYXJlIG9wdGlvbmFsLiBJIHRoaW5r IHRoZXNlIG5ldyBzdWItVExWcyBmYWxsIGludG8gdGhlIGxhdHRlciBjYXRlZ29yeS4NCg0KICAg ICAgIExlcw0KDQogICAgPiAtLS0tLU9yaWdpbmFsIE1lc3NhZ2UtLS0tLQ0KICAgID4gRnJvbTog THNyIDxsc3ItYm91bmNlc0BpZXRmLm9yZz4gT24gQmVoYWxmIE9mIFlhcm9uIFNoZWZmZXINCiAg ICA+IFNlbnQ6IE1vbmRheSwgQXVndXN0IDksIDIwMjEgNjo0NCBBTQ0KICAgID4gVG86IFFpbiBX dSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQogICAgPiBDYzogZHJhZnQt aWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZzsgbGFz dC0NCiAgICA+IGNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZw0KICAgID4gU3ViamVjdDogUmU6 IFtMc3JdIFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNj b3ZlcnktDQogICAgPiBzZWN1cml0eS1zdXBwb3J0LTA1DQogICAgPiANCiAgICA+IEhpIFFpbiwN CiAgICA+IA0KICAgID4gVGhhbmsgeW91IGZvciB5b3VyIHJlc3BvbnNlLg0KICAgID4gDQogICAg PiAqIFJGQyAzNTY3IChmb3IgSVMtSVMpIGlzIG9ic29sZXRlZCBieSBSRkMgNTMwNC4gVW5mb3J0 dW5hdGVseSBSRkMgNTMwNCBzdGlsbA0KICAgID4gdXNlcyBITUFDLU1ENSwgd2hpY2ggd291bGQg YmUgY29uc2lkZXJlZCBpbnNlY3VyZSBub3dhZGF5cy4NCiAgICA+ICogUkZDIDIxNTQgaXMgdmVy eSBvbGQgYW5kIEV4cGVyaW1lbnRhbCAoYW5kIG9ubHkgc3VwcG9ydHMgUlNBLU1ENQ0KICAgID4g c2lnbmF0dXJlcykuIEknbSBub3QgYW4gT1NQRiBleHBlcnQgYnkgYW55IG1lYW5zLCBidXQgSSdt IHdpbGxpbmcgdG8gYmV0IHRoYXQNCiAgICA+IHRoZXJlIGFyZSBubyBwcm9kdWN0aW9uIGltcGxl bWVudGF0aW9ucyBvZiB0aGlzIFJGQy4gKEknbSB3aWxsaW5nIHRvIGJlDQogICAgPiBwcm92ZW4g d3JvbmcpLiBJcyB0aGVyZSBhbm90aGVyIFJGQyB0aGF0IGRlZmluZXMgYSBwcm90ZWN0aW9uIG1l Y2hhbmlzbQ0KICAgID4gZm9yIE9TUEY/DQogICAgPiANCiAgICA+IEFsbCBpbiBhbGwsIHRoZXJl IGFwcGVhciB0byBiZSBubyBnb29kIG9wdGlvbnMgZm9yIHRoZSBJR1AuDQogICAgPiANCiAgICA+ IFRvIHlvdXIgbGFzdCBwb2ludCwgd2hlbiBJIG1lbnRpb25lZCBkZWNvdXBsaW5nIHRoZSBtZWNo YW5pc21zLCBJIHdhcw0KICAgID4gc3VnZ2VzdGluZyB0byB1c2UgdGhlIGV4dGVuc2lvbiB5b3Ug ZGVmaW5lIGV2ZW4gaWYgdGhlIElHUCAqY2Fubm90KiBiZQ0KICAgID4gc2VjdXJlZC4gSWYgeW91 IHRoaW5rIHRoaXMgaXMgcmVhc29uYWJsZSwgcGxlYXNlIGFkZCBzdWNoIHRleHQgdG8gdGhlIFNl Y3VyaXR5DQogICAgPiBDb25zaWRlcmF0aW9ucy4NCiAgICA+IA0KICAgID4gVGhhbmtzLA0KICAg ID4gCVlhcm9uDQogICAgPiANCiAgICA+IE9uIDgvOS8yMSwgMTY6MDksICJRaW4gV3UiIDxiaWxs Lnd1QGh1YXdlaS5jb20+IHdyb3RlOg0KICAgID4gDQogICAgPiAgICAgVGhhbmtzIFlhcm9uIGZv ciB2YWx1YWJsZSBjb21tZW50cywgcGxlYXNlIHNlZSBteSByZXBseSBpbmxpbmUgYmVsb3cuDQog ICAgPiAgICAgLS0tLS3pgq7ku7bljp/ku7YtLS0tLQ0KICAgID4gICAgID7lj5Hku7bkuro6IFlh cm9uIFNoZWZmZXIgdmlhIERhdGF0cmFja2VyIFttYWlsdG86bm9yZXBseUBpZXRmLm9yZ10NCiAg ICA+ICAgICA+5Y+R6YCB5pe26Ze0OiAyMDIx5bm0OOaciDbml6UgMzoyNQ0KICAgID4gICAgID7m lLbku7bkuro6IHNlY2RpckBpZXRmLm9yZw0KICAgID4gICAgID7mioTpgIE6IGRyYWZ0LWlldGYt bHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtDQog ICAgPiBjYWxsQGlldGYub3JnOyBsc3JAaWV0Zi5vcmcNCiAgICA+ICAgICA+5Li76aKYOiBTZWNk aXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3Vy aXR5LQ0KICAgID4gc3VwcG9ydC0wNQ0KICAgID4gDQogICAgPiAgICAgPlJldmlld2VyOiBZYXJv biBTaGVmZmVyDQogICAgPiAgICAgPlJldmlldyByZXN1bHQ6IE5vdCBSZWFkeQ0KICAgID4gDQog ICAgPiAgICAgPlRoaXMgZG9jdW1lbnQgZGVmaW5lcyBhIG1lY2hhbmlzbSAoYSBUTFYpIHRvIGFk dmVydGlzZSB0aGUgUENFIFByb3RvY29sDQogICAgPiBzZWN1cml0eSByZXF1aXJlZCAodXNlIG9m IFRDUC1BTyBhbmQgaXRzIGtleSBJRCwgb3IgYWx0ZXJuYXRpdmVseSB1c2Ugb2YgVExTKQ0KICAg ID4gd2l0aGluIHRoZSByb3V0aW5nIHByb3RvY29sIGJlaW5nIHVzZWQuDQogICAgPiANCiAgICA+ ICAgICA+KiBTZWMuIDMuMTogSSBkb24ndCB1bmRlcnN0YW5kIHdoeSAiU0hPVUxEIGFkdmVydGlz ZSIgYW5kIG5vdCBNVVNULg0KICAgID4gRXNwZWNpYWxseSBnaXZlbiB0aGUgc3RyaWN0IGNsaWVu dCBiZWhhdmlvciBkZWZpbmVkIGxhdGVyLg0KICAgID4gICAgIFtRaW5dOiBJIGJlbGlldmUgIlNI T1VMRCBhZHZlcnRpc2UiIGlzIGNvbnNpc3RlbnQgd2l0aCBjbGllbnQgYmVoYXZpb3INCiAgICA+ IGRlZmluZWQgbGF0ZXIsIGkuZS4sIHdlIGFwcGx5IFNIT1VMRCBOT1QgbGFuZ3VhZ2UgdG8gdGhl IGNsaWVudCBiZWhhdmlvci4NCiAgICA+ICAgICBJIGFtIG5vdCBzdXJlIHdlIHNob3VsZCBjaGFu Z2UgaXQgaW50byBzdHJvbmcgbGFuZ3VhZ2Ugd2l0aCBNVVNULiBTaW5jZSBpZg0KICAgID4gSUdQ IGFkdmVydGlzZW1lbnQgZG9lc24ndCBpbmNsdWRlIFRDUC1BTw0KICAgID4gICAgICBzdXBwb3J0 IGZsYWcgYml0IG9yIFRMUyBzdXBwb3J0IGZsYWcgYml0LCBOTVMgbWF5IGZhbGwgYmFjayB0byBj b25maWd1cmUgYm90aA0KICAgID4gUENDIGFuZCBQQ0Ugc2VydmVyIHRvIHN1cHBvcnQgVENQLUFP IG9yIFRMUy4gVGhhdCdzIG9uZSBvZiByZWFzb24gSSB0aGluaw0KICAgID4gd2h5IHdlIGNob29z ZSB0byB1c2UgU0hPVUxEIGxhbmd1YWdlLg0KICAgID4gDQogICAgPiAgICAgPiogU2VjLiAzLjE6 IHNob3VsZCB3ZSBhbHNvIHNheSBzb21ldGhpbmcgYWJvdXQgdGhlIGNhc2Ugd2hlcmUgYm90aA0K ICAgID4gbWV0aG9kcyBhcmUgYWR2ZXJ0aXNlZCwgYW5kIHdoZXRoZXIgd2UgcmVjb21tZW5kIGZv ciB0aGUgY2xpZW50IHRvIHVzZQ0KICAgID4gb25lIG9mIHRoZW0gb3ZlciB0aGUgb3RoZXI/DQog ICAgPiANCiAgICA+ICAgICBbUWluXTogSXQgaXMgdXAgdG8gbG9jYWwgcG9saWN5LCB3aGljaCBo YXMgYmVlIGNsYXJpZmllZCBpbiB0aGUgZW5kIG9mIHNlY3Rpb24NCiAgICA+IDMuMS4gSG9wZSB0 aGlzIGNsYXJpZnkuDQogICAgPiANCiAgICA+ICAgICA+KiBTZWMuIDQ6IHR5cG8gKGFwcGVhcnMg dHdpY2UpIC0gInRvIGJlIGNhcnJpZWQgaW4gdGhlIFBDRUQgVExWIG9mIHRoZSBmb3INCiAgICA+ IHVzZSIuDQogICAgPiANCiAgICA+ICAgICBbUWluXTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBp biB0aGUgbG9jYWwgY29weS4NCiAgICA+IA0KICAgID4gICAgID4qIFNlYy4gNzogdGhpcyBwaHJh c2UgYXBwZWFycyB0byBiZSBlc3NlbnRpYWwgdG8gc2VjdXJpdHkgb2YgdGhpcyBtZWNoYW5pc206 DQogICAgPiAiaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcyBwcm90ZWN0ZWQgZm9y IGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkNCiAgICA+IG9mIHRoZSBQQ0VEIFRMViIuIEkg d291bGQgZXhwZWN0IG1vcmUgZ3VpZGFuY2U6IGhvdyBjYW4gdGhpcyBwcm9wZXJ0eSBiZQ0KICAg ID4gZW5zdXJlZCBpbiB0aGUgcmVsZXZhbnQgSUdQcz8NCiAgICA+ICAgICBbUWluXTpJIHRoaW5r IG1lY2hhbmlzbSBkZWZpbmVkIGluIFtSRkMzNTY3XSBhbmQgW1JGQzIxNTRdIGNhbiBiZSB1c2Vk IHRvDQogICAgPiBlbnN1cmUgYXV0aGVudGljaXR5IGFuZCBpbnRlZ3JpdHkgb2YgT1NQRiBMU0Fz IG9yIElTSVMgTFNQcyBhbmQgdGhlaXIgVExWcy4NCiAgICA+IEhlcmUgaXMgdGhlIHByb3Bvc2Vk IGNoYW5nZXM6DQogICAgPiAgICAgT0xEIFRFWFQ6DQogICAgPiAgICAgIg0KICAgID4gICAgICAg IFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YNCiAgICA+ICAgICAgICB0aGUgUENFIHNlY3Vy aXR5IHBhcmFtZXRlcnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMNCiAgICA+ ICAgICAgICBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhl IFBDRUQgVExWIGlmIHRoZQ0KICAgID4gICAgICAgIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhp cyBkb2N1bWVudCBpcyB1c2VkLg0KICAgID4gICAgICINCiAgICA+ICAgICBORVcgVEVYVDoNCiAg ICA+ICAgICAiDQogICAgPiAgICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZg0KICAg ID4gICAgICAgIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVk IHRoYXQgdGhlIElHUCBpcw0KICAgID4gICAgICAgIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRp b24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgd2l0aA0KICAgID4gbWVjaGFuaXNtcyBk ZWZpbmVkIGluIFtSRkMzNTY3XVtSRkMyMTU0XSBpZiB0aGUNCiAgICA+ICAgICAgICBtZWNoYW5p c20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCiAgICA+ICAgICAiDQogICAg PiAgICAgPiogQWxzbywgYSBwb3NzaWJseSB1bmludGVuZGVkIGNvbnNlcXVlbmNlIG9mIHRoaXMg cmVxdWlyZW1lbnQgaXMgdGhhdCBpZg0KICAgID4gdGhlIElHUCBjYW5ub3QgYmUgcHJvdGVjdGVk IGluIGEgcGFydGljdWxhciBkZXBsb3ltZW50L3Byb2R1Y3QsIHRoaXMNCiAgICA+IG1lY2hhbmlz bSB3b3VsZCBub3QgYmUgdXNlZC4gUGxlYXNlIGNvbnNpZGVyIGlmIHRoaXMgaXMgbGlrZWx5IHRv IGhhcHBlbiBhbmQNCiAgICA+IHdoZXRoZXIgd2Ugd2FudCB0byBmb3JlZ28gUENFUCB0cmFuc3Bv cnQgPnNlY3VyaXR5IGluIHN1Y2ggY2FzZXMuIE15IGd1dA0KICAgID4gZmVlbCAobm90IGJhc2Vk IG9uIGV4cGVyaWVuY2UgaW4gc3VjaCBuZXR3b3JrcykgaXMgdGhhdCB0aGUgdGhyZWF0IG1vZGVs cw0KICAgID4gYXJlIGRpZmZlcmVudCBlbm91Z2ggdGhhdCB3ZSBzaG91bGQgZGVjb3VwbGUgdGhl IHNlY3VyaXR5IG9mIElHUCBmcm9tIHRoYXQNCiAgICA+IG9mIFBDRVAuDQogICAgPiANCiAgICA+ ICAgICBbUWluXSBJIGFncmVlIElHUCBzZWN1cml0eSBzaG91bGQgYmUgc2VwYXJhdGVkIGZyb20g UENFUCBzZWN1cml0eS4gSUdQDQogICAgPiBleHRlbnNpb24gZGVmaW5lZCBpbiB0aGlzIGRvY3Vt ZW50IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QgUENFIHNlcnZlcg0KICAgID4gd2l0aCBh cHByb3ByaWF0ZSBzZWN1cml0eSBtZWNoYW5pc20uIE9uIHRoZSBvdGhlciBoYW5kLCBPcGVyYXRv ciBjYW4NCiAgICA+IGVpdGhlciB1c2UgSUdQIGFkdmVydGlzZW1lbnQgZm9yIFBDRVAgc2VjdXJp dHkgY2FwYWJpbGl0eSBvciByZWx5IG9uIGxvY2FsDQogICAgPiBwb2xpY3kgdG8gc2VsZWN0IFBD RS4gSWYgb3BlcmF0b3IgZmVlbHMgSUdQIGFkdmVydGlzZW1lbnQgaXMgbm90IHNlY3VyZSwgaGUg Y2FuDQogICAgPiBmYWxsIGJhY2sgdG8gbG9jYWwgcG9saWN5IG9yIHJlbHkgb24gbWFudWFsIGNv bmZpZ3VyYXRpb24uIEhvcGUgdGhpcyBjbGFyaWZpZXMuDQogICAgPiANCiAgICA+IA0KICAgID4g DQogICAgPiBfX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXw0K ICAgID4gTHNyIG1haWxpbmcgbGlzdA0KICAgID4gTHNyQGlldGYub3JnDQogICAgPiBodHRwczov L3d3dy5pZXRmLm9yZy9tYWlsbWFuL2xpc3RpbmZvL2xzcg0KDQo= From nobody Mon Aug 9 18:13:57 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 10B173A2087; Mon, 9 Aug 2021 18:13:37 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qsFIUtsl5n8R; Mon, 9 Aug 2021 18:13:31 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id DABF23A207E; Mon, 9 Aug 2021 18:13:30 -0700 (PDT) Received: from fraeml734-chm.china.huawei.com (unknown [172.18.147.226]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GkFLd6sFYz6D8mk; Tue, 10 Aug 2021 09:12:57 +0800 (CST) Received: from dggeml754-chm.china.huawei.com (10.1.199.153) by fraeml734-chm.china.huawei.com (10.206.15.215) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Tue, 10 Aug 2021 03:13:25 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml754-chm.china.huawei.com (10.1.199.153) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Tue, 10 Aug 2021 09:13:23 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Tue, 10 Aug 2021 09:13:23 +0800 From: Qin Wu To: "Les Ginsberg (ginsberg)" , Yaron Sheffer , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeNgo28281XjeylTkaoP+2nMLBAyw== Date: Tue, 10 Aug 2021 01:13:23 +0000 Message-ID: Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.136.123.117] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 01:13:37 -0000 VGhhbmtzIExlcyBmb3IgdGhlIHBvaW50ZXIsIEkgd2FzIGxvb2tpbmcgaW50byBSRkM2ODYzIGlu IEtBUlAgV0cgYW5kIGZvdW5kIFJGQzU3MDkgZm9yIE9TUEYgc2VjdXJpdHkgYXMgd2VsbC4NClll cywgSSBhZ3JlZSB0byB1c2UgUkZDNTMxMCB0byByZXBsYWNlIFJGQzUzMDQgZm9yIElTLUlTIHNl Y3VyaXR5Lg0KDQpSZWdhcmRpbmcgdGhlIGRlYmF0ZSBhYm91dCBNVVNUIHZzIFNIT1VMRCwgdGhh bmtzIGZvciBjbGFyaWZpY2F0aW9uLiB5ZXMsIHdoZXRoZXIgdG8gY2hvb3NlIElHUCBhZHZlcnRp c2VtZW50IGlzIGltcGxlbWVudGF0aW9uIHNwZWNpZmljLiBPcGVyYXRvciB3aWxsIG1ha2UgdGhl aXIgY2hvaWNlLiANClNvIEkgdGhpbmsgSSB0ZW5kIHRvIGFncmVlIHRvIHVzZSBTSE9VTEQgZm9y IGNsaWVudCBiZWhhdmlvci4gVGhhbmtzLg0KDQotUWluDQotLS0tLemCruS7tuWOn+S7ti0tLS0t DQrlj5Hku7bkuro6IExlcyBHaW5zYmVyZyAoZ2luc2JlcmcpIFttYWlsdG86Z2luc2JlcmdAY2lz Y28uY29tXSANCuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg55pelIDIzOjM2DQrmlLbku7bkuro6 IFlhcm9uIFNoZWZmZXIgPHlhcm9uZi5pZXRmQGdtYWlsLmNvbT47IFFpbiBXdSA8YmlsbC53dUBo dWF3ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQrmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1k aXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9y ZzsgbHNyQGlldGYub3JnDQrkuLvpopg6IFJFOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBk cmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDUNCg0KWWFyb24v UWluIC0NCg0KRm9yIElTLUlTIHNlY3VyaXR5IHBsZWFzZSBhbHNvIHNlZSBSRkMgNTMxMC4NCkZv ciBPU1BGIHNlY3VyaXR5IHBsZWFzZSBzZWUgUkZDIDU3MDkuDQoNClJlZ2FyZGluZyB0aGUgZGVi YXRlIGFib3V0IE1VU1QgdnMgU0hPVUxELCBhcyBJIHNlZSBpdCBhZHZlcnRpc2VtZW50IG9mIHRo aXMgaW5mb3JtYXRpb24gaXMgYW4gb3B0aW9uLiBUaGUgSUdQIG1pZ2h0IG5vdCBoYXZlIGFjY2Vz cyB0byB0aGlzIGluZm9ybWF0aW9uIGluIGEgZ2l2ZW4gaW1wbGVtZW50YXRpb24vZGVwbG95bWVu dCAtIGFuZCBJIGNhbiBlYXNpbHkgaW1hZ2luZSB0aGF0IHNvbWUgY3VzdG9tZXJzIG1pZ2h0IHBy ZWZlciBOT1QgdG8gYWR2ZXJ0aXNlIHRoaXMgaW5mb3JtYXRpb24gaW4gYW4gSUdQIGV2ZW4gaWYg aXQgd2VyZSBhdmFpbGFibGUuDQoNCkl0IGlzIHVzZWZ1bCB0byBjaGVjayB0aGUgd29yZGluZyB1 c2VkIGluIGh0dHBzOi8vd3d3LnJmYy1lZGl0b3Iub3JnL3JmYy9yZmM1MDg5Lmh0bWwjc2VjdGlv bi00IC4gVGhlcmUsIHRob3NlIHN1Yi1UTFZzIHdoaWNoIGFyZSBuZWNlc3NhcnkgZm9yIHRoZSBQ Q0VEIHN1Yi1UTFYgdG8gYmUgdXNlZnVsIGF0IGFsbCBhcmUgcmVxdWlyZWQgLSBidXQgb3RoZXIg c3ViLVRMVnMgYXJlIG9wdGlvbmFsLiBJIHRoaW5rIHRoZXNlIG5ldyBzdWItVExWcyBmYWxsIGlu dG8gdGhlIGxhdHRlciBjYXRlZ29yeS4NCg0KICAgTGVzDQoNCj4gLS0tLS1PcmlnaW5hbCBNZXNz YWdlLS0tLS0NCj4gRnJvbTogTHNyIDxsc3ItYm91bmNlc0BpZXRmLm9yZz4gT24gQmVoYWxmIE9m IFlhcm9uIFNoZWZmZXINCj4gU2VudDogTW9uZGF5LCBBdWd1c3QgOSwgMjAyMSA2OjQ0IEFNDQo+ IFRvOiBRaW4gV3UgPGJpbGwud3VAaHVhd2VpLmNvbT47IHNlY2RpckBpZXRmLm9yZw0KPiBDYzog ZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9y ZzsgbGFzdC0gDQo+IGNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZw0KPiBTdWJqZWN0OiBSZTog W0xzcl0gU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgDQo+IGRyYWZ0LWlldGYtbHNyLXBjZS1k aXNjb3ZlcnktDQo+IHNlY3VyaXR5LXN1cHBvcnQtMDUNCj4gDQo+IEhpIFFpbiwNCj4gDQo+IFRo YW5rIHlvdSBmb3IgeW91ciByZXNwb25zZS4NCj4gDQo+ICogUkZDIDM1NjcgKGZvciBJUy1JUykg aXMgb2Jzb2xldGVkIGJ5IFJGQyA1MzA0LiBVbmZvcnR1bmF0ZWx5IFJGQyANCj4gNTMwNCBzdGls bCB1c2VzIEhNQUMtTUQ1LCB3aGljaCB3b3VsZCBiZSBjb25zaWRlcmVkIGluc2VjdXJlIG5vd2Fk YXlzLg0KPiAqIFJGQyAyMTU0IGlzIHZlcnkgb2xkIGFuZCBFeHBlcmltZW50YWwgKGFuZCBvbmx5 IHN1cHBvcnRzIFJTQS1NRDUgDQo+IHNpZ25hdHVyZXMpLiBJJ20gbm90IGFuIE9TUEYgZXhwZXJ0 IGJ5IGFueSBtZWFucywgYnV0IEknbSB3aWxsaW5nIHRvIA0KPiBiZXQgdGhhdCB0aGVyZSBhcmUg bm8gcHJvZHVjdGlvbiBpbXBsZW1lbnRhdGlvbnMgb2YgdGhpcyBSRkMuIChJJ20gDQo+IHdpbGxp bmcgdG8gYmUgcHJvdmVuIHdyb25nKS4gSXMgdGhlcmUgYW5vdGhlciBSRkMgdGhhdCBkZWZpbmVz IGEgDQo+IHByb3RlY3Rpb24gbWVjaGFuaXNtIGZvciBPU1BGPw0KPiANCj4gQWxsIGluIGFsbCwg dGhlcmUgYXBwZWFyIHRvIGJlIG5vIGdvb2Qgb3B0aW9ucyBmb3IgdGhlIElHUC4NCj4gDQo+IFRv IHlvdXIgbGFzdCBwb2ludCwgd2hlbiBJIG1lbnRpb25lZCBkZWNvdXBsaW5nIHRoZSBtZWNoYW5p c21zLCBJIHdhcyANCj4gc3VnZ2VzdGluZyB0byB1c2UgdGhlIGV4dGVuc2lvbiB5b3UgZGVmaW5l IGV2ZW4gaWYgdGhlIElHUCAqY2Fubm90KiBiZSANCj4gc2VjdXJlZC4gSWYgeW91IHRoaW5rIHRo aXMgaXMgcmVhc29uYWJsZSwgcGxlYXNlIGFkZCBzdWNoIHRleHQgdG8gdGhlIA0KPiBTZWN1cml0 eSBDb25zaWRlcmF0aW9ucy4NCj4gDQo+IFRoYW5rcywNCj4gCVlhcm9uDQo+IA0KPiDvu79PbiA4 LzkvMjEsIDE2OjA5LCAiUWluIFd1IiA8YmlsbC53dUBodWF3ZWkuY29tPiB3cm90ZToNCj4gDQo+ ICAgICBUaGFua3MgWWFyb24gZm9yIHZhbHVhYmxlIGNvbW1lbnRzLCBwbGVhc2Ugc2VlIG15IHJl cGx5IGlubGluZSBiZWxvdy4NCj4gICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCj4gICAgID7l j5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgdmlhIERhdGF0cmFja2VyIFttYWlsdG86bm9yZXBseUBp ZXRmLm9yZ10NCj4gICAgID7lj5HpgIHml7bpl7Q6IDIwMjHlubQ45pyINuaXpSAzOjI1DQo+ICAg ICA+5pS25Lu25Lq6OiBzZWNkaXJAaWV0Zi5vcmcNCj4gICAgID7mioTpgIE6IGRyYWZ0LWlldGYt bHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IA0KPiBsYXN0 LSBjYWxsQGlldGYub3JnOyBsc3JAaWV0Zi5vcmcNCj4gICAgID7kuLvpopg6IFNlY2RpciBsYXN0 IGNhbGwgcmV2aWV3IG9mIA0KPiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5 LQ0KPiBzdXBwb3J0LTA1DQo+IA0KPiAgICAgPlJldmlld2VyOiBZYXJvbiBTaGVmZmVyDQo+ICAg ICA+UmV2aWV3IHJlc3VsdDogTm90IFJlYWR5DQo+IA0KPiAgICAgPlRoaXMgZG9jdW1lbnQgZGVm aW5lcyBhIG1lY2hhbmlzbSAoYSBUTFYpIHRvIGFkdmVydGlzZSB0aGUgUENFIA0KPiBQcm90b2Nv bCBzZWN1cml0eSByZXF1aXJlZCAodXNlIG9mIFRDUC1BTyBhbmQgaXRzIGtleSBJRCwgb3IgDQo+ IGFsdGVybmF0aXZlbHkgdXNlIG9mIFRMUykgd2l0aGluIHRoZSByb3V0aW5nIHByb3RvY29sIGJl aW5nIHVzZWQuDQo+IA0KPiAgICAgPiogU2VjLiAzLjE6IEkgZG9uJ3QgdW5kZXJzdGFuZCB3aHkg IlNIT1VMRCBhZHZlcnRpc2UiIGFuZCBub3QgTVVTVC4NCj4gRXNwZWNpYWxseSBnaXZlbiB0aGUg c3RyaWN0IGNsaWVudCBiZWhhdmlvciBkZWZpbmVkIGxhdGVyLg0KPiAgICAgW1Fpbl06IEkgYmVs aWV2ZSAiU0hPVUxEIGFkdmVydGlzZSIgaXMgY29uc2lzdGVudCB3aXRoIGNsaWVudCANCj4gYmVo YXZpb3IgZGVmaW5lZCBsYXRlciwgaS5lLiwgd2UgYXBwbHkgU0hPVUxEIE5PVCBsYW5ndWFnZSB0 byB0aGUgY2xpZW50IGJlaGF2aW9yLg0KPiAgICAgSSBhbSBub3Qgc3VyZSB3ZSBzaG91bGQgY2hh bmdlIGl0IGludG8gc3Ryb25nIGxhbmd1YWdlIHdpdGggTVVTVC4gDQo+IFNpbmNlIGlmIElHUCBh ZHZlcnRpc2VtZW50IGRvZXNuJ3QgaW5jbHVkZSBUQ1AtQU8NCj4gICAgICBzdXBwb3J0IGZsYWcg Yml0IG9yIFRMUyBzdXBwb3J0IGZsYWcgYml0LCBOTVMgbWF5IGZhbGwgYmFjayB0byANCj4gY29u ZmlndXJlIGJvdGggUENDIGFuZCBQQ0Ugc2VydmVyIHRvIHN1cHBvcnQgVENQLUFPIG9yIFRMUy4g VGhhdCdzIG9uZSANCj4gb2YgcmVhc29uIEkgdGhpbmsgd2h5IHdlIGNob29zZSB0byB1c2UgU0hP VUxEIGxhbmd1YWdlLg0KPiANCj4gICAgID4qIFNlYy4gMy4xOiBzaG91bGQgd2UgYWxzbyBzYXkg c29tZXRoaW5nIGFib3V0IHRoZSBjYXNlIHdoZXJlIA0KPiBib3RoIG1ldGhvZHMgYXJlIGFkdmVy dGlzZWQsIGFuZCB3aGV0aGVyIHdlIHJlY29tbWVuZCBmb3IgdGhlIGNsaWVudCANCj4gdG8gdXNl IG9uZSBvZiB0aGVtIG92ZXIgdGhlIG90aGVyPw0KPiANCj4gICAgIFtRaW5dOiBJdCBpcyB1cCB0 byBsb2NhbCBwb2xpY3ksIHdoaWNoIGhhcyBiZWUgY2xhcmlmaWVkIGluIHRoZSANCj4gZW5kIG9m IHNlY3Rpb24gMy4xLiBIb3BlIHRoaXMgY2xhcmlmeS4NCj4gDQo+ICAgICA+KiBTZWMuIDQ6IHR5 cG8gKGFwcGVhcnMgdHdpY2UpIC0gInRvIGJlIGNhcnJpZWQgaW4gdGhlIFBDRUQgVExWIA0KPiBv ZiB0aGUgZm9yIHVzZSIuDQo+IA0KPiAgICAgW1Fpbl06VGhhbmtzLCBoYXZlIGZpeGVkIHRoZW0g aW4gdGhlIGxvY2FsIGNvcHkuDQo+IA0KPiAgICAgPiogU2VjLiA3OiB0aGlzIHBocmFzZSBhcHBl YXJzIHRvIGJlIGVzc2VudGlhbCB0byBzZWN1cml0eSBvZiB0aGlzIG1lY2hhbmlzbToNCj4gIml0 IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNh dGlvbiBhbmQgDQo+IGludGVncml0eSBvZiB0aGUgUENFRCBUTFYiLiBJIHdvdWxkIGV4cGVjdCBt b3JlIGd1aWRhbmNlOiBob3cgY2FuIHRoaXMgDQo+IHByb3BlcnR5IGJlIGVuc3VyZWQgaW4gdGhl IHJlbGV2YW50IElHUHM/DQo+ICAgICBbUWluXTpJIHRoaW5rIG1lY2hhbmlzbSBkZWZpbmVkIGlu IFtSRkMzNTY3XSBhbmQgW1JGQzIxNTRdIGNhbiBiZSANCj4gdXNlZCB0byBlbnN1cmUgYXV0aGVu dGljaXR5IGFuZCBpbnRlZ3JpdHkgb2YgT1NQRiBMU0FzIG9yIElTSVMgTFNQcyBhbmQgdGhlaXIg VExWcy4NCj4gSGVyZSBpcyB0aGUgcHJvcG9zZWQgY2hhbmdlczoNCj4gICAgIE9MRCBURVhUOg0K PiAgICAgIg0KPiAgICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZg0KPiAgICAgICAg dGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUg SUdQIGlzDQo+ICAgICAgICBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3Jp dHkgb2YgdGhlIFBDRUQgVExWIGlmIHRoZQ0KPiAgICAgICAgbWVjaGFuaXNtIGRlc2NyaWJlZCBp biB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQo+ICAgICAiDQo+ICAgICBORVcgVEVYVDoNCj4gICAg ICINCj4gICAgICAgIFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YNCj4gICAgICAgIHRoZSBQ Q0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBp cw0KPiAgICAgICAgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9m IHRoZSBQQ0VEIFRMViB3aXRoIA0KPiBtZWNoYW5pc21zIGRlZmluZWQgaW4gW1JGQzM1NjddW1JG QzIxNTRdIGlmIHRoZQ0KPiAgICAgICAgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3Vt ZW50IGlzIHVzZWQuDQo+ICAgICAiDQo+ICAgICA+KiBBbHNvLCBhIHBvc3NpYmx5IHVuaW50ZW5k ZWQgY29uc2VxdWVuY2Ugb2YgdGhpcyByZXF1aXJlbWVudCBpcyANCj4gdGhhdCBpZiB0aGUgSUdQ IGNhbm5vdCBiZSBwcm90ZWN0ZWQgaW4gYSBwYXJ0aWN1bGFyIA0KPiBkZXBsb3ltZW50L3Byb2R1 Y3QsIHRoaXMgbWVjaGFuaXNtIHdvdWxkIG5vdCBiZSB1c2VkLiBQbGVhc2UgY29uc2lkZXIgDQo+ IGlmIHRoaXMgaXMgbGlrZWx5IHRvIGhhcHBlbiBhbmQgd2hldGhlciB3ZSB3YW50IHRvIGZvcmVn byBQQ0VQIA0KPiB0cmFuc3BvcnQgPnNlY3VyaXR5IGluIHN1Y2ggY2FzZXMuIE15IGd1dCBmZWVs IChub3QgYmFzZWQgb24gDQo+IGV4cGVyaWVuY2UgaW4gc3VjaCBuZXR3b3JrcykgaXMgdGhhdCB0 aGUgdGhyZWF0IG1vZGVscyBhcmUgZGlmZmVyZW50IA0KPiBlbm91Z2ggdGhhdCB3ZSBzaG91bGQg ZGVjb3VwbGUgdGhlIHNlY3VyaXR5IG9mIElHUCBmcm9tIHRoYXQgb2YgUENFUC4NCj4gDQo+ICAg ICBbUWluXSBJIGFncmVlIElHUCBzZWN1cml0eSBzaG91bGQgYmUgc2VwYXJhdGVkIGZyb20gUENF UCBzZWN1cml0eS4gDQo+IElHUCBleHRlbnNpb24gZGVmaW5lZCBpbiB0aGlzIGRvY3VtZW50IGlz IHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QgDQo+IFBDRSBzZXJ2ZXIgd2l0aCBhcHByb3ByaWF0 ZSBzZWN1cml0eSBtZWNoYW5pc20uIE9uIHRoZSBvdGhlciBoYW5kLCANCj4gT3BlcmF0b3IgY2Fu IGVpdGhlciB1c2UgSUdQIGFkdmVydGlzZW1lbnQgZm9yIFBDRVAgc2VjdXJpdHkgY2FwYWJpbGl0 eSANCj4gb3IgcmVseSBvbiBsb2NhbCBwb2xpY3kgdG8gc2VsZWN0IFBDRS4gSWYgb3BlcmF0b3Ig ZmVlbHMgSUdQIA0KPiBhZHZlcnRpc2VtZW50IGlzIG5vdCBzZWN1cmUsIGhlIGNhbiBmYWxsIGJh Y2sgdG8gbG9jYWwgcG9saWN5IG9yIHJlbHkgb24gbWFudWFsIGNvbmZpZ3VyYXRpb24uIEhvcGUg dGhpcyBjbGFyaWZpZXMuDQo+IA0KPiANCj4gDQo+IF9fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fDQo+IExzciBtYWlsaW5nIGxpc3QNCj4gTHNyQGlldGYub3Jn DQo+IGh0dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4vbGlzdGluZm8vbHNyDQo= From nobody Mon Aug 9 19:00:29 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D92AA3A20EA; Mon, 9 Aug 2021 19:00:27 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yZCX0aLCoH8I; Mon, 9 Aug 2021 19:00:21 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3E7753A224D; Mon, 9 Aug 2021 19:00:00 -0700 (PDT) Received: from fraeml709-chm.china.huawei.com (unknown [172.18.147.201]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GkGNK3hSbz6D8nv; Tue, 10 Aug 2021 09:59:29 +0800 (CST) Received: from dggeml704-chm.china.huawei.com (10.3.17.142) by fraeml709-chm.china.huawei.com (10.206.15.37) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Tue, 10 Aug 2021 03:59:57 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml704-chm.china.huawei.com (10.3.17.142) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Tue, 10 Aug 2021 09:59:55 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Tue, 10 Aug 2021 09:59:55 +0800 From: Qin Wu To: Yaron Sheffer , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeNhPlZ869extIFTSisMvRC2YeksA== Date: Tue, 10 Aug 2021 01:59:55 +0000 Message-ID: <3a667c95733942579ca3b2c051c178c4@huawei.com> Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.136.123.117] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 02:00:28 -0000 SGksIFlhcm9uDQotLS0tLemCruS7tuWOn+S7ti0tLS0tDQo+5Y+R5Lu25Lq6OiBZYXJvbiBTaGVm ZmVyIFttYWlsdG86eWFyb25mLmlldGZAZ21haWwuY29tXSANCj7lj5HpgIHml7bpl7Q6IDIwMjHl ubQ45pyIOeaXpSAyMTo0NA0KPuaUtuS7tuS6ujogUWluIFd1IDxiaWxsLnd1QGh1YXdlaS5jb20+ OyBzZWNkaXJAaWV0Zi5vcmcNCj7mioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnkt c2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGll dGYub3JnDQo+5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0 Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1DQoNCj5IaSBRaW4sDQoNCj5U aGFuayB5b3UgZm9yIHlvdXIgcmVzcG9uc2UuDQoNCj4qIFJGQyAzNTY3IChmb3IgSVMtSVMpIGlz IG9ic29sZXRlZCBieSBSRkMgNTMwNC4gVW5mb3J0dW5hdGVseSBSRkMgNTMwNCBzdGlsbCB1c2Vz IEhNQUMtTUQ1LCB3aGljaCB3b3VsZCBiZSBjb25zaWRlcmVkIGluc2VjdXJlIG5vd2FkYXlzLg0K PiogUkZDIDIxNTQgaXMgdmVyeSBvbGQgYW5kIEV4cGVyaW1lbnRhbCAoYW5kIG9ubHkgc3VwcG9y dHMgUlNBLU1ENSBzaWduYXR1cmVzKS4gSSdtIG5vdCBhbiBPU1BGIGV4cGVydCBieSBhbnkgbWVh bnMsIGJ1dCBJJ20gd2lsbGluZyB0byBiZXQgdGhhdCB0aGVyZSBhcmUgbm8gcHJvZHVjdGlvbiBp bXBsZW1lbnRhdGlvbnMgb2YgdGhpcyBSRkMuIChJJ20gd2lsbGluZyB0byBiZSBwcm92ZW4gd3Jv bmcpLiANCj5JcyB0aGVyZSBhbm90aGVyIFJGQyB0aGF0IGRlZmluZSBhIHByb3RlY3Rpb24gbWVj aGFuaXNtIGZvciBPU1BGPw0KDQo+QWxsIGluIGFsbCwgdGhlcmUgYXBwZWFyIHRvIGJlIG5vIGdv b2Qgb3B0aW9ucyBmb3IgdGhlIElHUC4NCg0KW1FpbiBXdV1ZZXMsIHdlIGRvIGhhdmUgYWx0ZXJu YXRpdmVzLCBzZWUgTGVzJ3MgcmVzcG9uc2UgaW4gdGhlIHNlcGFyYXRlIGVtYWlsDQoiDQpPbiA4 LzkvMjEsIDIzOjM2LCJMZXMgR2luc2JlcmcgKGdpbnNiZXJnKSIgPGdpbnNiZXJnQGNpc2NvLmNv bT4gd3JvdGU6DQpGb3IgSVMtSVMgc2VjdXJpdHkgcGxlYXNlIGFsc28gc2VlIFJGQyA1MzEwLg0K Rm9yIE9TUEYgc2VjdXJpdHkgcGxlYXNlIHNlZSBSRkMgNTcwOS4NCiINCj5UbyB5b3VyIGxhc3Qg cG9pbnQsIHdoZW4gSSBtZW50aW9uZWQgZGVjb3VwbGluZyB0aGUgbWVjaGFuaXNtcywgSSB3YXMg c3VnZ2VzdGluZyB0byB1c2UgdGhlIGV4dGVuc2lvbiB5b3UgZGVmaW5lIGV2ZW4gaWYgdGhlIElH UCAqY2Fubm90KiBiZSBzZWN1cmVkLiBJZiB5b3UgdGhpbmsgdGhpcyBpcyByZWFzb25hYmxlLCBw bGVhc2UgYWRkIHN1Y2ggdGV4dCB0byB0aGUgU2VjdXJpdHkgQ29uc2lkZXJhdGlvbnMuDQoNCltR aW4gV3VdIE9rYXksIGhvdyBhYm91dCB0aGUgZm9sbG93aW5nIGNoYW5nZQ0KT0xEIFRFWFQ6DQoi DQpBcyBzdGF0ZWQgaW4gW1JGQzUwODhdDQphbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBw cm92aWRlIGVuY3J5cHRpb24gbWVjaGFuaXNtIHRvIHByb3RlY3QNCnRoZSBwcml2YWN5IG9mIHRo ZSBQQ0VEIFRMViwgaWYgdGhpcyBpbmZvcm1hdGlvbiBjYW4gbWFrZSB0aGUgUENFUA0Kc2Vzc2lv biBsZXNzIHNlY3VyZSB0aGVuIHRoZSBvcGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGludG8gY29u c2lkZXJhdGlvbiAuDQoiDQpORVcgVEVYVDoNCiINCkFzIHN0YXRlZCBpbiBbUkZDNTA4OF0NCmFu ZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUgZW5jcnlwdGlvbiBtZWNoYW5pc20g dG8gcHJvdGVjdA0KdGhlIHByaXZhY3kgb2YgdGhlIFBDRUQgVExWLCBpZiB0aGlzIGluZm9ybWF0 aW9uIGNhbiBtYWtlIHRoZSBQQ0VQDQpzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9wZXJh dG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uIA0Kd2hlbiBnZXR0aW5nIHRo ZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgZGVwbG95ZWQuDQoiDQogPlRo YW5rcywNCiA+CVlhcm9uDQoNCu+7vz5PbiA4LzkvMjEsIDE2OjA5LCAiUWluIFd1IiA8YmlsbC53 dUBodWF3ZWkuY29tPiB3cm90ZToNCg0KICA+ICAgVGhhbmtzIFlhcm9uIGZvciB2YWx1YWJsZSBj b21tZW50cywgcGxlYXNlIHNlZSBteSByZXBseSBpbmxpbmUgYmVsb3cuDQogICAgLS0tLS3pgq7k u7bljp/ku7YtLS0tLQ0KICAgID7lj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgdmlhIERhdGF0cmFj a2VyIFttYWlsdG86bm9yZXBseUBpZXRmLm9yZ10gDQogICAgPuWPkemAgeaXtumXtDogMjAyMeW5 tDjmnIg25pelIDM6MjUNCiAgICA+5pS25Lu25Lq6OiBzZWNkaXJAaWV0Zi5vcmcNCiAgICA+5oqE 6YCBOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGll dGYub3JnOyBsYXN0LWNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZw0KICAgID7kuLvpopg6IFNl Y2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2Vj dXJpdHktc3VwcG9ydC0wNQ0KDQogICAgPlJldmlld2VyOiBZYXJvbiBTaGVmZmVyDQogICAgPlJl dmlldyByZXN1bHQ6IE5vdCBSZWFkeQ0KDQogICAgPlRoaXMgZG9jdW1lbnQgZGVmaW5lcyBhIG1l Y2hhbmlzbSAoYSBUTFYpIHRvIGFkdmVydGlzZSB0aGUgUENFIFByb3RvY29sIHNlY3VyaXR5IHJl cXVpcmVkICh1c2Ugb2YgVENQLUFPIGFuZCBpdHMga2V5IElELCBvciBhbHRlcm5hdGl2ZWx5IHVz ZSBvZiBUTFMpIHdpdGhpbiB0aGUgcm91dGluZyBwcm90b2NvbCBiZWluZyB1c2VkLg0KDQogICAg PiogU2VjLiAzLjE6IEkgZG9uJ3QgdW5kZXJzdGFuZCB3aHkgIlNIT1VMRCBhZHZlcnRpc2UiIGFu ZCBub3QgTVVTVC4gRXNwZWNpYWxseSBnaXZlbiB0aGUgc3RyaWN0IGNsaWVudCBiZWhhdmlvciBk ZWZpbmVkIGxhdGVyLg0KICAgIFtRaW5dOiBJIGJlbGlldmUgIlNIT1VMRCBhZHZlcnRpc2UiIGlz IGNvbnNpc3RlbnQgd2l0aCBjbGllbnQgYmVoYXZpb3IgZGVmaW5lZCBsYXRlciwgaS5lLiwgd2Ug YXBwbHkgU0hPVUxEIE5PVCBsYW5ndWFnZSB0byB0aGUgY2xpZW50IGJlaGF2aW9yLg0KICAgIEkg YW0gbm90IHN1cmUgd2Ugc2hvdWxkIGNoYW5nZSBpdCBpbnRvIHN0cm9uZyBsYW5ndWFnZSB3aXRo IE1VU1QuIFNpbmNlIGlmIElHUCBhZHZlcnRpc2VtZW50IGRvZXNuJ3QgaW5jbHVkZSBUQ1AtQU8N CiAgICAgc3VwcG9ydCBmbGFnIGJpdCBvciBUTFMgc3VwcG9ydCBmbGFnIGJpdCwgTk1TIG1heSBm YWxsIGJhY2sgdG8gY29uZmlndXJlIGJvdGggUENDIGFuZCBQQ0Ugc2VydmVyIHRvIHN1cHBvcnQg VENQLUFPIG9yIFRMUy4gVGhhdCdzIG9uZSBvZiByZWFzb24gSSB0aGluayB3aHkgd2UgY2hvb3Nl IHRvIHVzZSBTSE9VTEQgbGFuZ3VhZ2UuDQoNCiAgICA+KiBTZWMuIDMuMTogc2hvdWxkIHdlIGFs c28gc2F5IHNvbWV0aGluZyBhYm91dCB0aGUgY2FzZSB3aGVyZSBib3RoIG1ldGhvZHMgYXJlIGFk dmVydGlzZWQsIGFuZCB3aGV0aGVyIHdlIHJlY29tbWVuZCBmb3IgdGhlIGNsaWVudCB0byB1c2Ug b25lIG9mIHRoZW0gb3ZlciB0aGUgb3RoZXI/DQoNCiAgICBbUWluXTogSXQgaXMgdXAgdG8gbG9j YWwgcG9saWN5LCB3aGljaCBoYXMgYmVlIGNsYXJpZmllZCBpbiB0aGUgZW5kIG9mIHNlY3Rpb24g My4xLiBIb3BlIHRoaXMgY2xhcmlmeS4NCg0KICAgID4qIFNlYy4gNDogdHlwbyAoYXBwZWFycyB0 d2ljZSkgLSAidG8gYmUgY2FycmllZCBpbiB0aGUgUENFRCBUTFYgb2YgdGhlIGZvciB1c2UiLg0K DQogICAgW1Fpbl06VGhhbmtzLCBoYXZlIGZpeGVkIHRoZW0gaW4gdGhlIGxvY2FsIGNvcHkuDQoN CiAgICA+KiBTZWMuIDc6IHRoaXMgcGhyYXNlIGFwcGVhcnMgdG8gYmUgZXNzZW50aWFsIHRvIHNl Y3VyaXR5IG9mIHRoaXMgbWVjaGFuaXNtOiAiaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElH UCBpcyBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBD RUQgVExWIi4gSSB3b3VsZCBleHBlY3QgbW9yZSBndWlkYW5jZTogaG93IGNhbiB0aGlzIHByb3Bl cnR5IGJlIGVuc3VyZWQgaW4gdGhlIHJlbGV2YW50IElHUHM/DQogICAgW1Fpbl06SSB0aGluayBt ZWNoYW5pc20gZGVmaW5lZCBpbiBbUkZDMzU2N10gYW5kIFtSRkMyMTU0XSBjYW4gYmUgdXNlZCB0 byBlbnN1cmUgYXV0aGVudGljaXR5IGFuZCBpbnRlZ3JpdHkgb2YgT1NQRiBMU0FzIG9yIElTSVMg TFNQcyBhbmQgdGhlaXIgVExWcy4gSGVyZSBpcyB0aGUgcHJvcG9zZWQgY2hhbmdlczoNCiAgICBP TEQgVEVYVDoNCiAgICAiDQogICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZg0KICAg ICAgIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQg dGhlIElHUCBpcw0KICAgICAgIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVn cml0eSBvZiB0aGUgUENFRCBUTFYgaWYgdGhlDQogICAgICAgbWVjaGFuaXNtIGRlc2NyaWJlZCBp biB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAgIg0KICAgIE5FVyBURVhUOg0KICAgICINCiAg ICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mDQogICAgICAgdGhlIFBDRSBzZWN1cml0 eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAg cHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRM ViB3aXRoIG1lY2hhbmlzbXMgZGVmaW5lZCBpbiBbUkZDMzU2N11bUkZDMjE1NF0gaWYgdGhlDQog ICAgICAgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAg Ig0KICAgID4qIEFsc28sIGEgcG9zc2libHkgdW5pbnRlbmRlZCBjb25zZXF1ZW5jZSBvZiB0aGlz IHJlcXVpcmVtZW50IGlzIHRoYXQgaWYgdGhlIElHUCBjYW5ub3QgYmUgcHJvdGVjdGVkIGluIGEg cGFydGljdWxhciBkZXBsb3ltZW50L3Byb2R1Y3QsIHRoaXMgbWVjaGFuaXNtIHdvdWxkIG5vdCBi ZSB1c2VkLiBQbGVhc2UgY29uc2lkZXIgaWYgdGhpcyBpcyBsaWtlbHkgdG8gaGFwcGVuIGFuZCB3 aGV0aGVyIHdlIHdhbnQgdG8gZm9yZWdvIFBDRVAgdHJhbnNwb3J0ID5zZWN1cml0eSBpbiBzdWNo IGNhc2VzLiBNeSBndXQgZmVlbCAobm90IGJhc2VkIG9uIGV4cGVyaWVuY2UgaW4gc3VjaCBuZXR3 b3JrcykgaXMgdGhhdCB0aGUgdGhyZWF0IG1vZGVscyBhcmUgZGlmZmVyZW50IGVub3VnaCB0aGF0 IHdlIHNob3VsZCBkZWNvdXBsZSB0aGUgc2VjdXJpdHkgb2YgSUdQIGZyb20gdGhhdCBvZiBQQ0VQ Lg0KDQogICAgW1Fpbl0gSSBhZ3JlZSBJR1Agc2VjdXJpdHkgc2hvdWxkIGJlIHNlcGFyYXRlZCBm cm9tIFBDRVAgc2VjdXJpdHkuIElHUCBleHRlbnNpb24gZGVmaW5lZCBpbiB0aGlzIGRvY3VtZW50 IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QgUENFIHNlcnZlciB3aXRoIGFwcHJvcHJpYXRl IHNlY3VyaXR5IG1lY2hhbmlzbS4gT24gdGhlIG90aGVyIGhhbmQsIE9wZXJhdG9yIGNhbiBlaXRo ZXIgdXNlIElHUCBhZHZlcnRpc2VtZW50IGZvciBQQ0VQIHNlY3VyaXR5IGNhcGFiaWxpdHkgb3Ig cmVseSBvbiBsb2NhbCBwb2xpY3kgdG8gc2VsZWN0IFBDRS4gSWYgb3BlcmF0b3IgZmVlbHMgSUdQ IGFkdmVydGlzZW1lbnQgaXMgbm90IHNlY3VyZSwgaGUgY2FuIGZhbGwgYmFjayB0byBsb2NhbCBw b2xpY3kgb3IgcmVseSBvbiBtYW51YWwgY29uZmlndXJhdGlvbi4gSG9wZSB0aGlzIGNsYXJpZmll cy4NCg0KDQoNCg== From nobody Tue Aug 10 04:26:07 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B1713A1066; Tue, 10 Aug 2021 04:25:51 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.097 X-Spam-Level: X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, MIME_QP_LONG_LINE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rXVdNEKZZzls; Tue, 10 Aug 2021 04:25:44 -0700 (PDT) Received: from mail-wm1-x329.google.com (mail-wm1-x329.google.com [IPv6:2a00:1450:4864:20::329]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9CA7B3A1064; Tue, 10 Aug 2021 04:25:44 -0700 (PDT) Received: by mail-wm1-x329.google.com with SMTP id u15so12785642wmj.1; Tue, 10 Aug 2021 04:25:44 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :references:in-reply-to:mime-version:content-transfer-encoding; bh=Ze7QcJN+EZdCIFlZrdLKX/72PySuLgGUt14iphjvAW0=; b=O38WB4v5oR/eXhafhFLwpaIkXHBbd12hIbubLgvt87hggNzjUMnDqKFLm/OkQzueii /Pj9KLGvk8gGNJMnP0N5kQLLwaxLnpIqkY1YX6GVWOcWFEUyXGztZMFFOyNHpiZCSnf5 buVZwOf3+oMUjBVtBRQGGwqau/uM7z3PXxm96syBupVJwfH3e0E0RPwmsec7tl2JJs80 BcjSejka/H51Sgz40afwKsYt1ZdJht1ykcqMA9SNSAFYvciu0ngJh1zu4O3mV0GIyO+3 h5aB0P755ZfFP664fbReLo4XeQLPdyNBh0Y/HKldHP9rDzdfVlQFImqdibLj0tLt2me6 6OAg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:user-agent:date:subject:from:to:cc:message-id :thread-topic:references:in-reply-to:mime-version :content-transfer-encoding; bh=Ze7QcJN+EZdCIFlZrdLKX/72PySuLgGUt14iphjvAW0=; b=cL0HVs93V+/3/pxzlHPIG4B6G+OqlF7MdUwNT3/QB4/cy9zgBVKAw9Q4CH1bMEYe3k drMWxB8wasbPNIALgcg90HVFO2ej0zjJJEr/CnXTzGukvOCU8s79/metc/nKdWPg3CSX II5qMZ9K8loysAfj1idWrcCJopYMyB160EJsDuYByp2qctBk6WznsJ/i/JUx/gA1V3tU 7zRO7F20wXfFlWiHsO8UGzMsB9UlJXD1499e1pdUmXPK005x055ivuRna9HPHFnodgeS CEPWnIKYT+PmSWGqsP+ojfU9biFHMgLrKlc1mwPZp4Flp73ZQ6eEHqT6oSy5GopmXnRl qLRQ== X-Gm-Message-State: AOAM531QjOSwdIexUsM/eZ4fUwGsJjRT/tluqgQzuHaprE3cUHk5wXo6 om/UlfMIYj318ULBLlRDhRk= X-Google-Smtp-Source: ABdhPJyidEwtqX9+dAisrKcgtlVkpK7g/Z23p5m0y64XWSls0CPCsu84gw9Og8ZGSabZ7xMTQ/101A== X-Received: by 2002:a05:600c:3b8f:: with SMTP id n15mr4121825wms.155.1628594741923; Tue, 10 Aug 2021 04:25:41 -0700 (PDT) Received: from [192.168.68.110] (bzq-79-181-28-50.red.bezeqint.net. [79.181.28.50]) by smtp.gmail.com with ESMTPSA id t15sm22038836wrw.48.2021.08.10.04.25.40 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Tue, 10 Aug 2021 04:25:41 -0700 (PDT) User-Agent: Microsoft-MacOutlook/16.51.21071101 Date: Tue, 10 Aug 2021 14:25:39 +0300 From: Yaron Sheffer To: Qin Wu , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Message-ID: <3402B241-F3FF-414D-9D4E-AFAC3790BC74@gmail.com> Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 References: <3a667c95733942579ca3b2c051c178c4@huawei.com> In-Reply-To: <3a667c95733942579ca3b2c051c178c4@huawei.com> Mime-version: 1.0 Content-type: text/plain; charset="UTF-8" Content-transfer-encoding: quoted-printable Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 11:25:52 -0000 Hi Qin, Sorry, but I find your latest proposed text very confusing, because we shou= ld be focusing on integrity protection and not privacy (=3Dsecrecy) of the TLV= . So I would prefer to keep the text as-is, with the addition of a reference= to the IS-IS and OSPF security mechanisms that were discussed on this threa= d. Thanks, Yaron =EF=BB=BFOn 8/10/21, 05:00, "Qin Wu" wrote: Hi, Yaron -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- >=E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer [mailto:yaronf.ietf@gmail.com]=20 >=E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=889=E6=97=A5 21:44 >=E6=94=B6=E4=BB=B6=E4=BA=BA: Qin Wu ; secdir@ietf.org >=E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@ietf.org; la= st-call@ietf.org; lsr@ietf.org >=E4=B8=BB=E9=A2=98: Re: Secdir last call review of draft-ietf-lsr-pce-discovery-se= curity-support-05 >Hi Qin, >Thank you for your response. >* RFC 3567 (for IS-IS) is obsoleted by RFC 5304. Unfortunately RFC 530= 4 still uses HMAC-MD5, which would be considered insecure nowadays. >* RFC 2154 is very old and Experimental (and only supports RSA-MD5 sig= natures). I'm not an OSPF expert by any means, but I'm willing to bet that t= here are no production implementations of this RFC. (I'm willing to be prove= n wrong).=20 >Is there another RFC that define a protection mechanism for OSPF? >All in all, there appear to be no good options for the IGP. [Qin Wu]Yes, we do have alternatives, see Les's response in the separat= e email " On 8/9/21, 23:36,"Les Ginsberg (ginsberg)" wrote: For IS-IS security please also see RFC 5310. For OSPF security please see RFC 5709. " >To your last point, when I mentioned decoupling the mechanisms, I was = suggesting to use the extension you define even if the IGP *cannot* be secur= ed. If you think this is reasonable, please add such text to the Security Co= nsiderations. [Qin Wu] Okay, how about the following change OLD TEXT: " As stated in [RFC5088] and [RFC5089], the IGP do not provide encryption mechanism to protect the privacy of the PCED TLV, if this information can make the PCEP session less secure then the operator should take that into considerati= on . " NEW TEXT: " As stated in [RFC5088] and [RFC5089], the IGP do not provide encryption mechanism to protect the privacy of the PCED TLV, if this information can make the PCEP session less secure then the operator should take that into considerati= on=20 when getting the mechanism described in this document deployed. " >Thanks, > Yaron =EF=BB=BF>On 8/9/21, 16:09, "Qin Wu" wrote: > Thanks Yaron for valuable comments, please see my reply inline be= low. -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- >=E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer via Datatracker [mailto:noreply@ietf.org]= =20 >=E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=886=E6=97=A5 3:25 >=E6=94=B6=E4=BB=B6=E4=BA=BA: secdir@ietf.org >=E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@ietf.org= ; last-call@ietf.org; lsr@ietf.org >=E4=B8=BB=E9=A2=98: Secdir last call review of draft-ietf-lsr-pce-discovery-se= curity-support-05 >Reviewer: Yaron Sheffer >Review result: Not Ready >This document defines a mechanism (a TLV) to advertise the PCE Pro= tocol security required (use of TCP-AO and its key ID, or alternatively use = of TLS) within the routing protocol being used. >* Sec. 3.1: I don't understand why "SHOULD advertise" and not MUST= . Especially given the strict client behavior defined later. [Qin]: I believe "SHOULD advertise" is consistent with client behav= ior defined later, i.e., we apply SHOULD NOT language to the client behavior= . I am not sure we should change it into strong language with MUST. S= ince if IGP advertisement doesn't include TCP-AO support flag bit or TLS support flag bit, NMS may fall back to con= figure both PCC and PCE server to support TCP-AO or TLS. That's one of reaso= n I think why we choose to use SHOULD language. >* Sec. 3.1: should we also say something about the case where both= methods are advertised, and whether we recommend for the client to use one = of them over the other? [Qin]: It is up to local policy, which has bee clarified in the end= of section 3.1. Hope this clarify. >* Sec. 4: typo (appears twice) - "to be carried in the PCED TLV of= the for use". [Qin]:Thanks, have fixed them in the local copy. >* Sec. 7: this phrase appears to be essential to security of this = mechanism: "it MUST be insured that the IGP is protected for authentication = and integrity of the PCED TLV". I would expect more guidance: how can this p= roperty be ensured in the relevant IGPs? [Qin]:I think mechanism defined in [RFC3567] and [RFC2154] can be u= sed to ensure authenticity and integrity of OSPF LSAs or ISIS LSPs and their= TLVs. Here is the proposed changes: OLD TEXT: " Thus before advertisement of the PCE security parameters, it MUST be insured that the IGP is protected for authentication and integrity of the PCED TLV if th= e mechanism described in this document is used. " NEW TEXT: " Thus before advertisement of the PCE security parameters, it MUST be insured that the IGP is protected for authentication and integrity of the PCED TLV with = mechanisms defined in [RFC3567][RFC2154] if the mechanism described in this document is used. " >* Also, a possibly unintended consequence of this requirement is t= hat if the IGP cannot be protected in a particular deployment/product, this = mechanism would not be used. Please consider if this is likely to happen and= whether we want to forego PCEP transport >security in such cases. My gut fe= el (not based on experience in such networks) is that the threat models are = different enough that we should decouple the security of IGP from that of PC= EP. [Qin] I agree IGP security should be separated from PCEP security. = IGP extension defined in this document is used by the PCC to select PCE serv= er with appropriate security mechanism. On the other hand, Operator can eith= er use IGP advertisement for PCEP security capability or rely on local polic= y to select PCE. If operator feels IGP advertisement is not secure, he can f= all back to local policy or rely on manual configuration. Hope this clarifie= s. From nobody Tue Aug 10 05:01:48 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AA2E43A11D2; Tue, 10 Aug 2021 05:01:32 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4dSBuQH8Cs5J; Tue, 10 Aug 2021 05:01:26 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 80B063A11D1; Tue, 10 Aug 2021 05:01:26 -0700 (PDT) Received: from fraeml707-chm.china.huawei.com (unknown [172.18.147.201]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GkWk94XhXz6DKRW; Tue, 10 Aug 2021 20:00:49 +0800 (CST) Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by fraeml707-chm.china.huawei.com (10.206.15.35) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Tue, 10 Aug 2021 14:01:21 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml753-chm.china.huawei.com (10.1.199.152) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Tue, 10 Aug 2021 20:01:19 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Tue, 10 Aug 2021 20:01:19 +0800 From: Qin Wu To: Yaron Sheffer , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeN3D1bao4BcToNQmG4p4waGPgvAw== Date: Tue, 10 Aug 2021 12:01:19 +0000 Message-ID: <728cb9ce17b44bed8a4ab059a9656620@huawei.com> Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.136.123.117] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 12:01:33 -0000 WWFyb246DQpUaGFuayBmb3IgY2xhcmlmaWNhdGlvbi4gSSBhZ3JlZSB0byBrZWVwIHRoZSBsYXN0 IHNlbnRlbmNlIGluIHRoZSBzZWNvbmQgcGFyYWdyYXBoIG9mIHNlY3Rpb24gNyBhcyBpcy4NCkJ1 dCBJIHByZWZlciB0byBhZGQgdGhlIGFkZGl0aW9uIHJlZmVyZW5jZXMgaW4gdGhlIHByZXZpb3Vz IHNlbnRlbmNlIGFzIGZvbGxvd3M6DQoiDQpUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mIHRo ZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElH UCBpcw0KcHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQ Q0VEIFRMViwsIHdpdGggdGhlIG1lY2hhbmlzbXMgZGVmaW5lZCBpbiANCltSRkM1MzEwXSBhbmQg W1JGQzU3MDldIGlmIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMg dXNlZC4gDQoNCkFzIHN0YXRlZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwgdGhlIElHUCBk byBub3QgcHJvdmlkZSBlbmNyeXB0aW9uIG1lY2hhbmlzbSB0byBwcm90ZWN0DQp0aGUgcHJpdmFj eSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRpb24gY2FuIG1ha2UgdGhlIFBDRVAg c2Vzc2lvbiBsZXNzIHNlY3VyZSB0aGVuIHRoZSBvcGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGlu dG8gY29uc2lkZXJhdGlvbi4NCiINCklmIHlvdSBiZXR0ZXIgd29yZGluZywgcGxlYXNlIGxldCBt ZSBrbm93Lg0KDQotUWluDQotLS0tLemCruS7tuWOn+S7ti0tLS0tDQrlj5Hku7bkuro6IFlhcm9u IFNoZWZmZXIgW21haWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21dIA0K5Y+R6YCB5pe26Ze0OiAy MDIx5bm0OOaciDEw5pelIDE5OjI2DQrmlLbku7bkuro6IFFpbiBXdSA8YmlsbC53dUBodWF3ZWku Y29tPjsgc2VjZGlyQGlldGYub3JnDQrmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zl cnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNy QGlldGYub3JnDQrkuLvpopg6IFJlOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1p ZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDUNCg0KSGkgUWluLA0KDQpT b3JyeSwgYnV0IEkgZmluZCB5b3VyIGxhdGVzdCBwcm9wb3NlZCB0ZXh0IHZlcnkgY29uZnVzaW5n LCBiZWNhdXNlIHdlIHNob3VsZCBiZSBmb2N1c2luZyBvbiBpbnRlZ3JpdHkgcHJvdGVjdGlvbiBh bmQgbm90IHByaXZhY3kgKD1zZWNyZWN5KSBvZiB0aGUgVExWLiBTbyBJIHdvdWxkIHByZWZlciB0 byBrZWVwIHRoZSB0ZXh0IGFzLWlzLCB3aXRoIHRoZSBhZGRpdGlvbiBvZiBhIHJlZmVyZW5jZSB0 byB0aGUgSVMtSVMgYW5kIE9TUEYgc2VjdXJpdHkgbWVjaGFuaXNtcyB0aGF0IHdlcmUgZGlzY3Vz c2VkIG9uIHRoaXMgdGhyZWFkLg0KDQpUaGFua3MsDQoJWWFyb24NCg0K77u/T24gOC8xMC8yMSwg MDU6MDAsICJRaW4gV3UiIDxiaWxsLnd1QGh1YXdlaS5jb20+IHdyb3RlOg0KDQogICAgSGksIFlh cm9uDQogICAgLS0tLS3pgq7ku7bljp/ku7YtLS0tLQ0KICAgID7lj5Hku7bkuro6IFlhcm9uIFNo ZWZmZXIgW21haWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21dIA0KICAgID7lj5HpgIHml7bpl7Q6 IDIwMjHlubQ45pyIOeaXpSAyMTo0NA0KICAgID7mlLbku7bkuro6IFFpbiBXdSA8YmlsbC53dUBo dWF3ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQogICAgPuaKhOmAgTogZHJhZnQtaWV0Zi1sc3It cGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZzsgbGFzdC1jYWxsQGll dGYub3JnOyBsc3JAaWV0Zi5vcmcNCiAgICA+5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2FsbCBy ZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1 DQoNCiAgICA+SGkgUWluLA0KDQogICAgPlRoYW5rIHlvdSBmb3IgeW91ciByZXNwb25zZS4NCg0K ICAgID4qIFJGQyAzNTY3IChmb3IgSVMtSVMpIGlzIG9ic29sZXRlZCBieSBSRkMgNTMwNC4gVW5m b3J0dW5hdGVseSBSRkMgNTMwNCBzdGlsbCB1c2VzIEhNQUMtTUQ1LCB3aGljaCB3b3VsZCBiZSBj b25zaWRlcmVkIGluc2VjdXJlIG5vd2FkYXlzLg0KICAgID4qIFJGQyAyMTU0IGlzIHZlcnkgb2xk IGFuZCBFeHBlcmltZW50YWwgKGFuZCBvbmx5IHN1cHBvcnRzIFJTQS1NRDUgc2lnbmF0dXJlcyku IEknbSBub3QgYW4gT1NQRiBleHBlcnQgYnkgYW55IG1lYW5zLCBidXQgSSdtIHdpbGxpbmcgdG8g YmV0IHRoYXQgdGhlcmUgYXJlIG5vIHByb2R1Y3Rpb24gaW1wbGVtZW50YXRpb25zIG9mIHRoaXMg UkZDLiAoSSdtIHdpbGxpbmcgdG8gYmUgcHJvdmVuIHdyb25nKS4gDQogICAgPklzIHRoZXJlIGFu b3RoZXIgUkZDIHRoYXQgZGVmaW5lIGEgcHJvdGVjdGlvbiBtZWNoYW5pc20gZm9yIE9TUEY/DQoN CiAgICA+QWxsIGluIGFsbCwgdGhlcmUgYXBwZWFyIHRvIGJlIG5vIGdvb2Qgb3B0aW9ucyBmb3Ig dGhlIElHUC4NCg0KICAgIFtRaW4gV3VdWWVzLCB3ZSBkbyBoYXZlIGFsdGVybmF0aXZlcywgc2Vl IExlcydzIHJlc3BvbnNlIGluIHRoZSBzZXBhcmF0ZSBlbWFpbA0KICAgICINCiAgICBPbiA4Lzkv MjEsIDIzOjM2LCJMZXMgR2luc2JlcmcgKGdpbnNiZXJnKSIgPGdpbnNiZXJnQGNpc2NvLmNvbT4g d3JvdGU6DQogICAgRm9yIElTLUlTIHNlY3VyaXR5IHBsZWFzZSBhbHNvIHNlZSBSRkMgNTMxMC4N CiAgICBGb3IgT1NQRiBzZWN1cml0eSBwbGVhc2Ugc2VlIFJGQyA1NzA5Lg0KICAgICINCiAgICA+ VG8geW91ciBsYXN0IHBvaW50LCB3aGVuIEkgbWVudGlvbmVkIGRlY291cGxpbmcgdGhlIG1lY2hh bmlzbXMsIEkgd2FzIHN1Z2dlc3RpbmcgdG8gdXNlIHRoZSBleHRlbnNpb24geW91IGRlZmluZSBl dmVuIGlmIHRoZSBJR1AgKmNhbm5vdCogYmUgc2VjdXJlZC4gSWYgeW91IHRoaW5rIHRoaXMgaXMg cmVhc29uYWJsZSwgcGxlYXNlIGFkZCBzdWNoIHRleHQgdG8gdGhlIFNlY3VyaXR5IENvbnNpZGVy YXRpb25zLg0KDQogICAgW1FpbiBXdV0gT2theSwgaG93IGFib3V0IHRoZSBmb2xsb3dpbmcgY2hh bmdlDQogICAgT0xEIFRFWFQ6DQogICAgIg0KICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0NCiAg ICBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGVuY3J5cHRpb24gbWVjaGFu aXNtIHRvIHByb3RlY3QNCiAgICB0aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMg aW5mb3JtYXRpb24gY2FuIG1ha2UgdGhlIFBDRVANCiAgICBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRo ZW4gdGhlIG9wZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uIC4NCiAg ICAiDQogICAgTkVXIFRFWFQ6DQogICAgIg0KICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0NCiAg ICBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGVuY3J5cHRpb24gbWVjaGFu aXNtIHRvIHByb3RlY3QNCiAgICB0aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMg aW5mb3JtYXRpb24gY2FuIG1ha2UgdGhlIFBDRVANCiAgICBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRo ZW4gdGhlIG9wZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uIA0KICAg IHdoZW4gZ2V0dGluZyB0aGUgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGRl cGxveWVkLg0KICAgICINCiAgICAgPlRoYW5rcywNCiAgICAgPglZYXJvbg0KDQogICAg77u/Pk9u IDgvOS8yMSwgMTY6MDksICJRaW4gV3UiIDxiaWxsLnd1QGh1YXdlaS5jb20+IHdyb3RlOg0KDQog ICAgICA+ICAgVGhhbmtzIFlhcm9uIGZvciB2YWx1YWJsZSBjb21tZW50cywgcGxlYXNlIHNlZSBt eSByZXBseSBpbmxpbmUgYmVsb3cuDQogICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAg ICAgICAgPuWPkeS7tuS6ujogWWFyb24gU2hlZmZlciB2aWEgRGF0YXRyYWNrZXIgW21haWx0bzpu b3JlcGx5QGlldGYub3JnXSANCiAgICAgICAgPuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg25pel IDM6MjUNCiAgICAgICAgPuaUtuS7tuS6ujogc2VjZGlyQGlldGYub3JnDQogICAgICAgID7mioTp gIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0 Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQogICAgICAgID7kuLvpopg6 IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnkt c2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAgICAgID5SZXZpZXdlcjogWWFyb24gU2hlZmZlcg0K ICAgICAgICA+UmV2aWV3IHJlc3VsdDogTm90IFJlYWR5DQoNCiAgICAgICAgPlRoaXMgZG9jdW1l bnQgZGVmaW5lcyBhIG1lY2hhbmlzbSAoYSBUTFYpIHRvIGFkdmVydGlzZSB0aGUgUENFIFByb3Rv Y29sIHNlY3VyaXR5IHJlcXVpcmVkICh1c2Ugb2YgVENQLUFPIGFuZCBpdHMga2V5IElELCBvciBh bHRlcm5hdGl2ZWx5IHVzZSBvZiBUTFMpIHdpdGhpbiB0aGUgcm91dGluZyBwcm90b2NvbCBiZWlu ZyB1c2VkLg0KDQogICAgICAgID4qIFNlYy4gMy4xOiBJIGRvbid0IHVuZGVyc3RhbmQgd2h5ICJT SE9VTEQgYWR2ZXJ0aXNlIiBhbmQgbm90IE1VU1QuIEVzcGVjaWFsbHkgZ2l2ZW4gdGhlIHN0cmlj dCBjbGllbnQgYmVoYXZpb3IgZGVmaW5lZCBsYXRlci4NCiAgICAgICAgW1Fpbl06IEkgYmVsaWV2 ZSAiU0hPVUxEIGFkdmVydGlzZSIgaXMgY29uc2lzdGVudCB3aXRoIGNsaWVudCBiZWhhdmlvciBk ZWZpbmVkIGxhdGVyLCBpLmUuLCB3ZSBhcHBseSBTSE9VTEQgTk9UIGxhbmd1YWdlIHRvIHRoZSBj bGllbnQgYmVoYXZpb3IuDQogICAgICAgIEkgYW0gbm90IHN1cmUgd2Ugc2hvdWxkIGNoYW5nZSBp dCBpbnRvIHN0cm9uZyBsYW5ndWFnZSB3aXRoIE1VU1QuIFNpbmNlIGlmIElHUCBhZHZlcnRpc2Vt ZW50IGRvZXNuJ3QgaW5jbHVkZSBUQ1AtQU8NCiAgICAgICAgIHN1cHBvcnQgZmxhZyBiaXQgb3Ig VExTIHN1cHBvcnQgZmxhZyBiaXQsIE5NUyBtYXkgZmFsbCBiYWNrIHRvIGNvbmZpZ3VyZSBib3Ro IFBDQyBhbmQgUENFIHNlcnZlciB0byBzdXBwb3J0IFRDUC1BTyBvciBUTFMuIFRoYXQncyBvbmUg b2YgcmVhc29uIEkgdGhpbmsgd2h5IHdlIGNob29zZSB0byB1c2UgU0hPVUxEIGxhbmd1YWdlLg0K DQogICAgICAgID4qIFNlYy4gMy4xOiBzaG91bGQgd2UgYWxzbyBzYXkgc29tZXRoaW5nIGFib3V0 IHRoZSBjYXNlIHdoZXJlIGJvdGggbWV0aG9kcyBhcmUgYWR2ZXJ0aXNlZCwgYW5kIHdoZXRoZXIg d2UgcmVjb21tZW5kIGZvciB0aGUgY2xpZW50IHRvIHVzZSBvbmUgb2YgdGhlbSBvdmVyIHRoZSBv dGhlcj8NCg0KICAgICAgICBbUWluXTogSXQgaXMgdXAgdG8gbG9jYWwgcG9saWN5LCB3aGljaCBo YXMgYmVlIGNsYXJpZmllZCBpbiB0aGUgZW5kIG9mIHNlY3Rpb24gMy4xLiBIb3BlIHRoaXMgY2xh cmlmeS4NCg0KICAgICAgICA+KiBTZWMuIDQ6IHR5cG8gKGFwcGVhcnMgdHdpY2UpIC0gInRvIGJl IGNhcnJpZWQgaW4gdGhlIFBDRUQgVExWIG9mIHRoZSBmb3IgdXNlIi4NCg0KICAgICAgICBbUWlu XTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBpbiB0aGUgbG9jYWwgY29weS4NCg0KICAgICAgICA+ KiBTZWMuIDc6IHRoaXMgcGhyYXNlIGFwcGVhcnMgdG8gYmUgZXNzZW50aWFsIHRvIHNlY3VyaXR5 IG9mIHRoaXMgbWVjaGFuaXNtOiAiaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcyBw cm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExW Ii4gSSB3b3VsZCBleHBlY3QgbW9yZSBndWlkYW5jZTogaG93IGNhbiB0aGlzIHByb3BlcnR5IGJl IGVuc3VyZWQgaW4gdGhlIHJlbGV2YW50IElHUHM/DQogICAgICAgIFtRaW5dOkkgdGhpbmsgbWVj aGFuaXNtIGRlZmluZWQgaW4gW1JGQzM1NjddIGFuZCBbUkZDMjE1NF0gY2FuIGJlIHVzZWQgdG8g ZW5zdXJlIGF1dGhlbnRpY2l0eSBhbmQgaW50ZWdyaXR5IG9mIE9TUEYgTFNBcyBvciBJU0lTIExT UHMgYW5kIHRoZWlyIFRMVnMuIEhlcmUgaXMgdGhlIHByb3Bvc2VkIGNoYW5nZXM6DQogICAgICAg IE9MRCBURVhUOg0KICAgICAgICAiDQogICAgICAgICAgIFRodXMgYmVmb3JlIGFkdmVydGlzZW1l bnQgb2YNCiAgICAgICAgICAgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJl IGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAgICAgIHByb3RlY3RlZCBmb3IgYXV0aGVu dGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgaWYgdGhlDQogICAgICAgICAg IG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBpcyB1c2VkLg0KICAgICAgICAi DQogICAgICAgIE5FVyBURVhUOg0KICAgICAgICAiDQogICAgICAgICAgIFRodXMgYmVmb3JlIGFk dmVydGlzZW1lbnQgb2YNCiAgICAgICAgICAgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBp dCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAgICAgIHByb3RlY3RlZCBm b3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgd2l0aCBtZWNo YW5pc21zIGRlZmluZWQgaW4gW1JGQzM1NjddW1JGQzIxNTRdIGlmIHRoZQ0KICAgICAgICAgICBt ZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCiAgICAgICAgIg0K ICAgICAgICA+KiBBbHNvLCBhIHBvc3NpYmx5IHVuaW50ZW5kZWQgY29uc2VxdWVuY2Ugb2YgdGhp cyByZXF1aXJlbWVudCBpcyB0aGF0IGlmIHRoZSBJR1AgY2Fubm90IGJlIHByb3RlY3RlZCBpbiBh IHBhcnRpY3VsYXIgZGVwbG95bWVudC9wcm9kdWN0LCB0aGlzIG1lY2hhbmlzbSB3b3VsZCBub3Qg YmUgdXNlZC4gUGxlYXNlIGNvbnNpZGVyIGlmIHRoaXMgaXMgbGlrZWx5IHRvIGhhcHBlbiBhbmQg d2hldGhlciB3ZSB3YW50IHRvIGZvcmVnbyBQQ0VQIHRyYW5zcG9ydCA+c2VjdXJpdHkgaW4gc3Vj aCBjYXNlcy4gTXkgZ3V0IGZlZWwgKG5vdCBiYXNlZCBvbiBleHBlcmllbmNlIGluIHN1Y2ggbmV0 d29ya3MpIGlzIHRoYXQgdGhlIHRocmVhdCBtb2RlbHMgYXJlIGRpZmZlcmVudCBlbm91Z2ggdGhh dCB3ZSBzaG91bGQgZGVjb3VwbGUgdGhlIHNlY3VyaXR5IG9mIElHUCBmcm9tIHRoYXQgb2YgUENF UC4NCg0KICAgICAgICBbUWluXSBJIGFncmVlIElHUCBzZWN1cml0eSBzaG91bGQgYmUgc2VwYXJh dGVkIGZyb20gUENFUCBzZWN1cml0eS4gSUdQIGV4dGVuc2lvbiBkZWZpbmVkIGluIHRoaXMgZG9j dW1lbnQgaXMgdXNlZCBieSB0aGUgUENDIHRvIHNlbGVjdCBQQ0Ugc2VydmVyIHdpdGggYXBwcm9w cmlhdGUgc2VjdXJpdHkgbWVjaGFuaXNtLiBPbiB0aGUgb3RoZXIgaGFuZCwgT3BlcmF0b3IgY2Fu IGVpdGhlciB1c2UgSUdQIGFkdmVydGlzZW1lbnQgZm9yIFBDRVAgc2VjdXJpdHkgY2FwYWJpbGl0 eSBvciByZWx5IG9uIGxvY2FsIHBvbGljeSB0byBzZWxlY3QgUENFLiBJZiBvcGVyYXRvciBmZWVs cyBJR1AgYWR2ZXJ0aXNlbWVudCBpcyBub3Qgc2VjdXJlLCBoZSBjYW4gZmFsbCBiYWNrIHRvIGxv Y2FsIHBvbGljeSBvciByZWx5IG9uIG1hbnVhbCBjb25maWd1cmF0aW9uLiBIb3BlIHRoaXMgY2xh cmlmaWVzLg0KDQoNCg0KDQoNCg== From nobody Tue Aug 10 06:58:09 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 548BA3A0BA5; Tue, 10 Aug 2021 06:57:52 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.097 X-Spam-Level: X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, MIME_QP_LONG_LINE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LRJN9wujc3UL; Tue, 10 Aug 2021 06:57:46 -0700 (PDT) Received: from mail-io1-xd2b.google.com (mail-io1-xd2b.google.com [IPv6:2607:f8b0:4864:20::d2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B3B423A0BD2; Tue, 10 Aug 2021 06:57:46 -0700 (PDT) Received: by mail-io1-xd2b.google.com with SMTP id x10so21487671iop.13; Tue, 10 Aug 2021 06:57:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :references:in-reply-to:mime-version:content-transfer-encoding; bh=TgTJOdAMfLUAoyHmDsz6Pn5Og8BMITOylDhcErVks+0=; b=oO+6NeZduSF1IpWCvrFVCJ/+dZp/l9bL17B+Uty+LMOqHf0VShzvJGN/lhSQj77eKj 45+qYuNaXDg8eMf+LC1XvkEXKZ3fbSRexETBtHHTcbO5jcuySjZxrLrBWXlUG1Q+MkxB XGKG5syGWoUS+lS5tGwp22CYZagHysNMRRtSNgYvh36DAlEXn9kFfl/3V3nB0MWoR1+e VwXGKq8JAEeyFp1f6IPnNuU/0m4oFgrAe4eZp3bQme5m6Unzfe/aMNK9q14bhhXJ7s0Q UoW+i4FHaQAFwzOrGdNxkHqkG5ARoha09GUZbdeF/AGHAL05ankjtMcZEXQ93NzHgxKZ e37Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:user-agent:date:subject:from:to:cc:message-id :thread-topic:references:in-reply-to:mime-version :content-transfer-encoding; bh=TgTJOdAMfLUAoyHmDsz6Pn5Og8BMITOylDhcErVks+0=; b=Bo3rj023oLgXrQtXdAm6812VGQtCCYq08+SKBmv9xwsADU86HkzCD6XwuwGqJUsQsx TkYDW8okzFUFwv7lnFziqSpwk5NML1SqgqZyNsgUlTHth9YwjwkgOt5BB17WdfX6+iTe t40rAbgsCBcnzLHSvxjFtLkqDi/1cWCBPKJVdvvleyExD4gVTmb2UA1IEIu72CkqD3za Fd+IIqevWT+puE10yCFH3Xugo0fS1VGqnPThnNiIoSAoe2Hzed+GdJbe8bSzA65fyT4b MKtHvq30aBs0Cpkum2iKnjphcpRT19kLkErgU8rd+mE8PxSYUEcHFtdORLjZ7Gws0x8m Vyyw== X-Gm-Message-State: AOAM532cgjlBAhuoiNiOqfwBWT5mk5KDKvd5IApT0D/cjQ4Fpg7H+nbQ mDMNXMj3Q8wDb+kUlJqzh4w= X-Google-Smtp-Source: ABdhPJx9wT5PS8z7c/2C4Ac3k7K9nEBlfVNLwGKq5LonFoANTYTMXx1p2LYvYC3LUHmg1M9MQRXE7g== X-Received: by 2002:a02:664e:: with SMTP id l14mr27449412jaf.56.1628603863899; Tue, 10 Aug 2021 06:57:43 -0700 (PDT) Received: from [192.168.68.110] (bzq-79-181-28-50.red.bezeqint.net. [79.181.28.50]) by smtp.gmail.com with ESMTPSA id f9sm5781802ilk.56.2021.08.10.06.57.41 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Tue, 10 Aug 2021 06:57:43 -0700 (PDT) User-Agent: Microsoft-MacOutlook/16.51.21071101 Date: Tue, 10 Aug 2021 16:57:39 +0300 From: Yaron Sheffer To: Qin Wu , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Message-ID: Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 References: <728cb9ce17b44bed8a4ab059a9656620@huawei.com> In-Reply-To: <728cb9ce17b44bed8a4ab059a9656620@huawei.com> Mime-version: 1.0 Content-type: text/plain; charset="UTF-8" Content-transfer-encoding: quoted-printable Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 13:58:02 -0000 So let me suggest: Thus before advertisement of the PCE security parameters, it MUST be in= sured that the IGP protects the authentication and integrity of the PCED TLV= using the mechanisms defined in=20 [RFC5310] and [RFC5709], if the mechanism described in this document is= used.=20 Moreover, as stated in [RFC5088] and [RFC5089], the IGP do not provide = any encryption mechanisms to protect the secrecy of the PCED TLV, and the op= erator must ensure that no private data is carried in the TLV, for example t= hat key names do not reveal sensitive information about the network. Thanks, Yaron =EF=BB=BFOn 8/10/21, 15:01, "Qin Wu" wrote: Yaron: Thank for clarification. I agree to keep the last sentence in the secon= d paragraph of section 7 as is. But I prefer to add the addition references in the previous sentence as= follows: " Thus before advertisement of the PCE security parameters, it MUST be in= sured that the IGP is protected for authentication and integrity of the PCED TLV,, with the m= echanisms defined in=20 [RFC5310] and [RFC5709] if the mechanism described in this document is = used.=20 As stated in [RFC5088] and [RFC5089], the IGP do not provide encryption= mechanism to protect the privacy of the PCED TLV, if this information can make the PCEP sess= ion less secure then the operator should take that into consideration. " If you better wording, please let me know. -Qin -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- =E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer [mailto:yaronf.ietf@gmail.com]=20 =E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=8810=E6=97=A5 19:26 =E6=94=B6=E4=BB=B6=E4=BA=BA: Qin Wu ; secdir@ietf.org =E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@ietf.org; las= t-call@ietf.org; lsr@ietf.org =E4=B8=BB=E9=A2=98: Re: Secdir last call review of draft-ietf-lsr-pce-discovery-sec= urity-support-05 Hi Qin, Sorry, but I find your latest proposed text very confusing, because we = should be focusing on integrity protection and not privacy (=3Dsecrecy) of the= TLV. So I would prefer to keep the text as-is, with the addition of a refer= ence to the IS-IS and OSPF security mechanisms that were discussed on this t= hread. Thanks, Yaron =EF=BB=BFOn 8/10/21, 05:00, "Qin Wu" wrote: Hi, Yaron -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- >=E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer [mailto:yaronf.ietf@gmail.com]=20 >=E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=889=E6=97=A5 21:44 >=E6=94=B6=E4=BB=B6=E4=BA=BA: Qin Wu ; secdir@ietf.org >=E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@ietf.org= ; last-call@ietf.org; lsr@ietf.org >=E4=B8=BB=E9=A2=98: Re: Secdir last call review of draft-ietf-lsr-pce-discover= y-security-support-05 >Hi Qin, >Thank you for your response. >* RFC 3567 (for IS-IS) is obsoleted by RFC 5304. Unfortunately RFC= 5304 still uses HMAC-MD5, which would be considered insecure nowadays. >* RFC 2154 is very old and Experimental (and only supports RSA-MD5= signatures). I'm not an OSPF expert by any means, but I'm willing to bet th= at there are no production implementations of this RFC. (I'm willing to be p= roven wrong).=20 >Is there another RFC that define a protection mechanism for OSPF? >All in all, there appear to be no good options for the IGP. [Qin Wu]Yes, we do have alternatives, see Les's response in the sep= arate email " On 8/9/21, 23:36,"Les Ginsberg (ginsberg)" wro= te: For IS-IS security please also see RFC 5310. For OSPF security please see RFC 5709. " >To your last point, when I mentioned decoupling the mechanisms, I = was suggesting to use the extension you define even if the IGP *cannot* be s= ecured. If you think this is reasonable, please add such text to the Securit= y Considerations. [Qin Wu] Okay, how about the following change OLD TEXT: " As stated in [RFC5088] and [RFC5089], the IGP do not provide encryption mechanism to prote= ct the privacy of the PCED TLV, if this information can make the PCEP session less secure then the operator should take that into conside= ration . " NEW TEXT: " As stated in [RFC5088] and [RFC5089], the IGP do not provide encryption mechanism to prote= ct the privacy of the PCED TLV, if this information can make the PCEP session less secure then the operator should take that into conside= ration=20 when getting the mechanism described in this document deployed. " >Thanks, > Yaron =EF=BB=BF>On 8/9/21, 16:09, "Qin Wu" wrote: > Thanks Yaron for valuable comments, please see my reply inlin= e below. -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- >=E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer via Datatracker [mailto:noreply@ietf.= org]=20 >=E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=886=E6=97=A5 3:25 >=E6=94=B6=E4=BB=B6=E4=BA=BA: secdir@ietf.org >=E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@ietf= .org; last-call@ietf.org; lsr@ietf.org >=E4=B8=BB=E9=A2=98: Secdir last call review of draft-ietf-lsr-pce-discover= y-security-support-05 >Reviewer: Yaron Sheffer >Review result: Not Ready >This document defines a mechanism (a TLV) to advertise the PCE= Protocol security required (use of TCP-AO and its key ID, or alternatively = use of TLS) within the routing protocol being used. >* Sec. 3.1: I don't understand why "SHOULD advertise" and not = MUST. Especially given the strict client behavior defined later. [Qin]: I believe "SHOULD advertise" is consistent with client b= ehavior defined later, i.e., we apply SHOULD NOT language to the client beha= vior. I am not sure we should change it into strong language with MUS= T. Since if IGP advertisement doesn't include TCP-AO support flag bit or TLS support flag bit, NMS may fall back to= configure both PCC and PCE server to support TCP-AO or TLS. That's one of r= eason I think why we choose to use SHOULD language. >* Sec. 3.1: should we also say something about the case where = both methods are advertised, and whether we recommend for the client to use = one of them over the other? [Qin]: It is up to local policy, which has bee clarified in the= end of section 3.1. Hope this clarify. >* Sec. 4: typo (appears twice) - "to be carried in the PCED TL= V of the for use". [Qin]:Thanks, have fixed them in the local copy. >* Sec. 7: this phrase appears to be essential to security of t= his mechanism: "it MUST be insured that the IGP is protected for authenticat= ion and integrity of the PCED TLV". I would expect more guidance: how can th= is property be ensured in the relevant IGPs? [Qin]:I think mechanism defined in [RFC3567] and [RFC2154] can = be used to ensure authenticity and integrity of OSPF LSAs or ISIS LSPs and t= heir TLVs. Here is the proposed changes: OLD TEXT: " Thus before advertisement of the PCE security parameters, it MUST be insured that the IGP= is protected for authentication and integrity of the PCED TLV i= f the mechanism described in this document is used. " NEW TEXT: " Thus before advertisement of the PCE security parameters, it MUST be insured that the IGP= is protected for authentication and integrity of the PCED TLV w= ith mechanisms defined in [RFC3567][RFC2154] if the mechanism described in this document is used. " >* Also, a possibly unintended consequence of this requirement = is that if the IGP cannot be protected in a particular deployment/product, t= his mechanism would not be used. Please consider if this is likely to happen= and whether we want to forego PCEP transport >security in such cases. My gu= t feel (not based on experience in such networks) is that the threat models = are different enough that we should decouple the security of IGP from that o= f PCEP. [Qin] I agree IGP security should be separated from PCEP securi= ty. IGP extension defined in this document is used by the PCC to select PCE = server with appropriate security mechanism. On the other hand, Operator can = either use IGP advertisement for PCEP security capability or rely on local p= olicy to select PCE. If operator feels IGP advertisement is not secure, he c= an fall back to local policy or rely on manual configuration. Hope this clar= ifies. From nobody Tue Aug 10 07:10:32 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 721CA3A0C3E; Tue, 10 Aug 2021 07:10:09 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JxHzvFbOmk81; Tue, 10 Aug 2021 07:10:03 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C2C993A0C3D; Tue, 10 Aug 2021 07:10:02 -0700 (PDT) Received: from fraeml709-chm.china.huawei.com (unknown [172.18.147.201]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GkZZf0wWWz6BD7S; Tue, 10 Aug 2021 22:09:30 +0800 (CST) Received: from dggeml702-chm.china.huawei.com (10.3.17.135) by fraeml709-chm.china.huawei.com (10.206.15.37) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Tue, 10 Aug 2021 16:09:59 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml702-chm.china.huawei.com (10.3.17.135) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Tue, 10 Aug 2021 22:09:57 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Tue, 10 Aug 2021 22:09:57 +0800 From: Qin Wu To: Yaron Sheffer , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeN8VBaao4BcToNQmG4p4waGPgvAw== Date: Tue, 10 Aug 2021 14:09:56 +0000 Message-ID: Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.136.123.117] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 14:10:10 -0000 VGhlIHByb3Bvc2VkIGNoYW5nZSBzb3VuZHMgZ29vZCB0byBtZSwgVGhhbmtzIFlhcm9uLg0KDQot UWluDQotLS0tLemCruS7tuWOn+S7ti0tLS0tDQrlj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgW21h aWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21dIA0K5Y+R6YCB5pe26Ze0OiAyMDIx5bm0OOaciDEw 5pelIDIxOjU4DQrmlLbku7bkuro6IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGly QGlldGYub3JnDQrmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHkt c3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQrk uLvpopg6IFJlOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2Ut ZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDUNCg0KU28gbGV0IG1lIHN1Z2dlc3Q6DQoNCiAg ICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVy cywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBwcm90ZWN0cyB0aGUgYXV0aGVudGlj YXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgdXNpbmcgdGhlIG1lY2hhbmlzbXMg ZGVmaW5lZCBpbiANCiAgICBbUkZDNTMxMF0gYW5kIFtSRkM1NzA5XSwgaWYgdGhlIG1lY2hhbmlz bSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBpcyB1c2VkLiANCg0KICAgIE1vcmVvdmVyLCBh cyBzdGF0ZWQgaW4gW1JGQzUwODhdIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3Zp ZGUgYW55IGVuY3J5cHRpb24gbWVjaGFuaXNtcyB0byBwcm90ZWN0IHRoZSBzZWNyZWN5IG9mIHRo ZSBQQ0VEIFRMViwgYW5kIHRoZSBvcGVyYXRvciBtdXN0IGVuc3VyZSB0aGF0IG5vIHByaXZhdGUg ZGF0YSBpcyBjYXJyaWVkIGluIHRoZSBUTFYsIGZvciBleGFtcGxlIHRoYXQga2V5IG5hbWVzIGRv IG5vdCByZXZlYWwgc2Vuc2l0aXZlIGluZm9ybWF0aW9uIGFib3V0IHRoZSBuZXR3b3JrLg0KDQpU aGFua3MsDQoJWWFyb24NCg0K77u/T24gOC8xMC8yMSwgMTU6MDEsICJRaW4gV3UiIDxiaWxsLnd1 QGh1YXdlaS5jb20+IHdyb3RlOg0KDQogICAgWWFyb246DQogICAgVGhhbmsgZm9yIGNsYXJpZmlj YXRpb24uIEkgYWdyZWUgdG8ga2VlcCB0aGUgbGFzdCBzZW50ZW5jZSBpbiB0aGUgc2Vjb25kIHBh cmFncmFwaCBvZiBzZWN0aW9uIDcgYXMgaXMuDQogICAgQnV0IEkgcHJlZmVyIHRvIGFkZCB0aGUg YWRkaXRpb24gcmVmZXJlbmNlcyBpbiB0aGUgcHJldmlvdXMgc2VudGVuY2UgYXMgZm9sbG93czoN CiAgICAiDQogICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZiB0aGUgUENFIHNlY3VyaXR5 IHBhcmFtZXRlcnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMNCiAgICBwcm90 ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWLCwg d2l0aCB0aGUgbWVjaGFuaXNtcyBkZWZpbmVkIGluIA0KICAgIFtSRkM1MzEwXSBhbmQgW1JGQzU3 MDldIGlmIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4g DQoNCiAgICBBcyBzdGF0ZWQgaW4gW1JGQzUwODhdIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8g bm90IHByb3ZpZGUgZW5jcnlwdGlvbiBtZWNoYW5pc20gdG8gcHJvdGVjdA0KICAgIHRoZSBwcml2 YWN5IG9mIHRoZSBQQ0VEIFRMViwgaWYgdGhpcyBpbmZvcm1hdGlvbiBjYW4gbWFrZSB0aGUgUENF UCBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9wZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQg aW50byBjb25zaWRlcmF0aW9uLg0KICAgICINCiAgICBJZiB5b3UgYmV0dGVyIHdvcmRpbmcsIHBs ZWFzZSBsZXQgbWUga25vdy4NCg0KICAgIC1RaW4NCiAgICAtLS0tLemCruS7tuWOn+S7ti0tLS0t DQogICAg5Y+R5Lu25Lq6OiBZYXJvbiBTaGVmZmVyIFttYWlsdG86eWFyb25mLmlldGZAZ21haWwu Y29tXSANCiAgICDlj5HpgIHml7bpl7Q6IDIwMjHlubQ45pyIMTDml6UgMTk6MjYNCiAgICDmlLbk u7bkuro6IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQogICAg 5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxs QGlldGYub3JnOyBsYXN0LWNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZw0KICAgIOS4u+mimDog UmU6IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zl cnktc2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAgSGkgUWluLA0KDQogICAgU29ycnksIGJ1dCBJ IGZpbmQgeW91ciBsYXRlc3QgcHJvcG9zZWQgdGV4dCB2ZXJ5IGNvbmZ1c2luZywgYmVjYXVzZSB3 ZSBzaG91bGQgYmUgZm9jdXNpbmcgb24gaW50ZWdyaXR5IHByb3RlY3Rpb24gYW5kIG5vdCBwcml2 YWN5ICg9c2VjcmVjeSkgb2YgdGhlIFRMVi4gU28gSSB3b3VsZCBwcmVmZXIgdG8ga2VlcCB0aGUg dGV4dCBhcy1pcywgd2l0aCB0aGUgYWRkaXRpb24gb2YgYSByZWZlcmVuY2UgdG8gdGhlIElTLUlT IGFuZCBPU1BGIHNlY3VyaXR5IG1lY2hhbmlzbXMgdGhhdCB3ZXJlIGRpc2N1c3NlZCBvbiB0aGlz IHRocmVhZC4NCg0KICAgIFRoYW5rcywNCiAgICAJWWFyb24NCg0KICAgIO+7v09uIDgvMTAvMjEs IDA1OjAwLCAiUWluIFd1IiA8YmlsbC53dUBodWF3ZWkuY29tPiB3cm90ZToNCg0KICAgICAgICBI aSwgWWFyb24NCiAgICAgICAgLS0tLS3pgq7ku7bljp/ku7YtLS0tLQ0KICAgICAgICA+5Y+R5Lu2 5Lq6OiBZYXJvbiBTaGVmZmVyIFttYWlsdG86eWFyb25mLmlldGZAZ21haWwuY29tXSANCiAgICAg ICAgPuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg55pelIDIxOjQ0DQogICAgICAgID7mlLbku7bk uro6IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQogICAgICAg ID7mioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5h bGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQogICAgICAgID7k uLvpopg6IFJlOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2Ut ZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDUNCg0KICAgICAgICA+SGkgUWluLA0KDQogICAg ICAgID5UaGFuayB5b3UgZm9yIHlvdXIgcmVzcG9uc2UuDQoNCiAgICAgICAgPiogUkZDIDM1Njcg KGZvciBJUy1JUykgaXMgb2Jzb2xldGVkIGJ5IFJGQyA1MzA0LiBVbmZvcnR1bmF0ZWx5IFJGQyA1 MzA0IHN0aWxsIHVzZXMgSE1BQy1NRDUsIHdoaWNoIHdvdWxkIGJlIGNvbnNpZGVyZWQgaW5zZWN1 cmUgbm93YWRheXMuDQogICAgICAgID4qIFJGQyAyMTU0IGlzIHZlcnkgb2xkIGFuZCBFeHBlcmlt ZW50YWwgKGFuZCBvbmx5IHN1cHBvcnRzIFJTQS1NRDUgc2lnbmF0dXJlcykuIEknbSBub3QgYW4g T1NQRiBleHBlcnQgYnkgYW55IG1lYW5zLCBidXQgSSdtIHdpbGxpbmcgdG8gYmV0IHRoYXQgdGhl cmUgYXJlIG5vIHByb2R1Y3Rpb24gaW1wbGVtZW50YXRpb25zIG9mIHRoaXMgUkZDLiAoSSdtIHdp bGxpbmcgdG8gYmUgcHJvdmVuIHdyb25nKS4gDQogICAgICAgID5JcyB0aGVyZSBhbm90aGVyIFJG QyB0aGF0IGRlZmluZSBhIHByb3RlY3Rpb24gbWVjaGFuaXNtIGZvciBPU1BGPw0KDQogICAgICAg ID5BbGwgaW4gYWxsLCB0aGVyZSBhcHBlYXIgdG8gYmUgbm8gZ29vZCBvcHRpb25zIGZvciB0aGUg SUdQLg0KDQogICAgICAgIFtRaW4gV3VdWWVzLCB3ZSBkbyBoYXZlIGFsdGVybmF0aXZlcywgc2Vl IExlcydzIHJlc3BvbnNlIGluIHRoZSBzZXBhcmF0ZSBlbWFpbA0KICAgICAgICAiDQogICAgICAg IE9uIDgvOS8yMSwgMjM6MzYsIkxlcyBHaW5zYmVyZyAoZ2luc2JlcmcpIiA8Z2luc2JlcmdAY2lz Y28uY29tPiB3cm90ZToNCiAgICAgICAgRm9yIElTLUlTIHNlY3VyaXR5IHBsZWFzZSBhbHNvIHNl ZSBSRkMgNTMxMC4NCiAgICAgICAgRm9yIE9TUEYgc2VjdXJpdHkgcGxlYXNlIHNlZSBSRkMgNTcw OS4NCiAgICAgICAgIg0KICAgICAgICA+VG8geW91ciBsYXN0IHBvaW50LCB3aGVuIEkgbWVudGlv bmVkIGRlY291cGxpbmcgdGhlIG1lY2hhbmlzbXMsIEkgd2FzIHN1Z2dlc3RpbmcgdG8gdXNlIHRo ZSBleHRlbnNpb24geW91IGRlZmluZSBldmVuIGlmIHRoZSBJR1AgKmNhbm5vdCogYmUgc2VjdXJl ZC4gSWYgeW91IHRoaW5rIHRoaXMgaXMgcmVhc29uYWJsZSwgcGxlYXNlIGFkZCBzdWNoIHRleHQg dG8gdGhlIFNlY3VyaXR5IENvbnNpZGVyYXRpb25zLg0KDQogICAgICAgIFtRaW4gV3VdIE9rYXks IGhvdyBhYm91dCB0aGUgZm9sbG93aW5nIGNoYW5nZQ0KICAgICAgICBPTEQgVEVYVDoNCiAgICAg ICAgIg0KICAgICAgICBBcyBzdGF0ZWQgaW4gW1JGQzUwODhdDQogICAgICAgIGFuZCBbUkZDNTA4 OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUgZW5jcnlwdGlvbiBtZWNoYW5pc20gdG8gcHJvdGVj dA0KICAgICAgICB0aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRp b24gY2FuIG1ha2UgdGhlIFBDRVANCiAgICAgICAgc2Vzc2lvbiBsZXNzIHNlY3VyZSB0aGVuIHRo ZSBvcGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGludG8gY29uc2lkZXJhdGlvbiAuDQogICAgICAg ICINCiAgICAgICAgTkVXIFRFWFQ6DQogICAgICAgICINCiAgICAgICAgQXMgc3RhdGVkIGluIFtS RkM1MDg4XQ0KICAgICAgICBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGVu Y3J5cHRpb24gbWVjaGFuaXNtIHRvIHByb3RlY3QNCiAgICAgICAgdGhlIHByaXZhY3kgb2YgdGhl IFBDRUQgVExWLCBpZiB0aGlzIGluZm9ybWF0aW9uIGNhbiBtYWtlIHRoZSBQQ0VQDQogICAgICAg IHNlc3Npb24gbGVzcyBzZWN1cmUgdGhlbiB0aGUgb3BlcmF0b3Igc2hvdWxkIHRha2UgdGhhdCBp bnRvIGNvbnNpZGVyYXRpb24gDQogICAgICAgIHdoZW4gZ2V0dGluZyB0aGUgbWVjaGFuaXNtIGRl c2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGRlcGxveWVkLg0KICAgICAgICAiDQogICAgICAgICA+ VGhhbmtzLA0KICAgICAgICAgPglZYXJvbg0KDQogICAgICAgIO+7vz5PbiA4LzkvMjEsIDE2OjA5 LCAiUWluIFd1IiA8YmlsbC53dUBodWF3ZWkuY29tPiB3cm90ZToNCg0KICAgICAgICAgID4gICBU aGFua3MgWWFyb24gZm9yIHZhbHVhYmxlIGNvbW1lbnRzLCBwbGVhc2Ugc2VlIG15IHJlcGx5IGlu bGluZSBiZWxvdy4NCiAgICAgICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAg ICAgID7lj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgdmlhIERhdGF0cmFja2VyIFttYWlsdG86bm9y ZXBseUBpZXRmLm9yZ10gDQogICAgICAgICAgICA+5Y+R6YCB5pe26Ze0OiAyMDIx5bm0OOaciDbm l6UgMzoyNQ0KICAgICAgICAgICAgPuaUtuS7tuS6ujogc2VjZGlyQGlldGYub3JnDQogICAgICAg ICAgICA+5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBv cnQuYWxsQGlldGYub3JnOyBsYXN0LWNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZw0KICAgICAg ICAgICAgPuS4u+mimDogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3It cGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1DQoNCiAgICAgICAgICAgID5SZXZpZXdl cjogWWFyb24gU2hlZmZlcg0KICAgICAgICAgICAgPlJldmlldyByZXN1bHQ6IE5vdCBSZWFkeQ0K DQogICAgICAgICAgICA+VGhpcyBkb2N1bWVudCBkZWZpbmVzIGEgbWVjaGFuaXNtIChhIFRMVikg dG8gYWR2ZXJ0aXNlIHRoZSBQQ0UgUHJvdG9jb2wgc2VjdXJpdHkgcmVxdWlyZWQgKHVzZSBvZiBU Q1AtQU8gYW5kIGl0cyBrZXkgSUQsIG9yIGFsdGVybmF0aXZlbHkgdXNlIG9mIFRMUykgd2l0aGlu IHRoZSByb3V0aW5nIHByb3RvY29sIGJlaW5nIHVzZWQuDQoNCiAgICAgICAgICAgID4qIFNlYy4g My4xOiBJIGRvbid0IHVuZGVyc3RhbmQgd2h5ICJTSE9VTEQgYWR2ZXJ0aXNlIiBhbmQgbm90IE1V U1QuIEVzcGVjaWFsbHkgZ2l2ZW4gdGhlIHN0cmljdCBjbGllbnQgYmVoYXZpb3IgZGVmaW5lZCBs YXRlci4NCiAgICAgICAgICAgIFtRaW5dOiBJIGJlbGlldmUgIlNIT1VMRCBhZHZlcnRpc2UiIGlz IGNvbnNpc3RlbnQgd2l0aCBjbGllbnQgYmVoYXZpb3IgZGVmaW5lZCBsYXRlciwgaS5lLiwgd2Ug YXBwbHkgU0hPVUxEIE5PVCBsYW5ndWFnZSB0byB0aGUgY2xpZW50IGJlaGF2aW9yLg0KICAgICAg ICAgICAgSSBhbSBub3Qgc3VyZSB3ZSBzaG91bGQgY2hhbmdlIGl0IGludG8gc3Ryb25nIGxhbmd1 YWdlIHdpdGggTVVTVC4gU2luY2UgaWYgSUdQIGFkdmVydGlzZW1lbnQgZG9lc24ndCBpbmNsdWRl IFRDUC1BTw0KICAgICAgICAgICAgIHN1cHBvcnQgZmxhZyBiaXQgb3IgVExTIHN1cHBvcnQgZmxh ZyBiaXQsIE5NUyBtYXkgZmFsbCBiYWNrIHRvIGNvbmZpZ3VyZSBib3RoIFBDQyBhbmQgUENFIHNl cnZlciB0byBzdXBwb3J0IFRDUC1BTyBvciBUTFMuIFRoYXQncyBvbmUgb2YgcmVhc29uIEkgdGhp bmsgd2h5IHdlIGNob29zZSB0byB1c2UgU0hPVUxEIGxhbmd1YWdlLg0KDQogICAgICAgICAgICA+ KiBTZWMuIDMuMTogc2hvdWxkIHdlIGFsc28gc2F5IHNvbWV0aGluZyBhYm91dCB0aGUgY2FzZSB3 aGVyZSBib3RoIG1ldGhvZHMgYXJlIGFkdmVydGlzZWQsIGFuZCB3aGV0aGVyIHdlIHJlY29tbWVu ZCBmb3IgdGhlIGNsaWVudCB0byB1c2Ugb25lIG9mIHRoZW0gb3ZlciB0aGUgb3RoZXI/DQoNCiAg ICAgICAgICAgIFtRaW5dOiBJdCBpcyB1cCB0byBsb2NhbCBwb2xpY3ksIHdoaWNoIGhhcyBiZWUg Y2xhcmlmaWVkIGluIHRoZSBlbmQgb2Ygc2VjdGlvbiAzLjEuIEhvcGUgdGhpcyBjbGFyaWZ5Lg0K DQogICAgICAgICAgICA+KiBTZWMuIDQ6IHR5cG8gKGFwcGVhcnMgdHdpY2UpIC0gInRvIGJlIGNh cnJpZWQgaW4gdGhlIFBDRUQgVExWIG9mIHRoZSBmb3IgdXNlIi4NCg0KICAgICAgICAgICAgW1Fp bl06VGhhbmtzLCBoYXZlIGZpeGVkIHRoZW0gaW4gdGhlIGxvY2FsIGNvcHkuDQoNCiAgICAgICAg ICAgID4qIFNlYy4gNzogdGhpcyBwaHJhc2UgYXBwZWFycyB0byBiZSBlc3NlbnRpYWwgdG8gc2Vj dXJpdHkgb2YgdGhpcyBtZWNoYW5pc206ICJpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQ IGlzIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENF RCBUTFYiLiBJIHdvdWxkIGV4cGVjdCBtb3JlIGd1aWRhbmNlOiBob3cgY2FuIHRoaXMgcHJvcGVy dHkgYmUgZW5zdXJlZCBpbiB0aGUgcmVsZXZhbnQgSUdQcz8NCiAgICAgICAgICAgIFtRaW5dOkkg dGhpbmsgbWVjaGFuaXNtIGRlZmluZWQgaW4gW1JGQzM1NjddIGFuZCBbUkZDMjE1NF0gY2FuIGJl IHVzZWQgdG8gZW5zdXJlIGF1dGhlbnRpY2l0eSBhbmQgaW50ZWdyaXR5IG9mIE9TUEYgTFNBcyBv ciBJU0lTIExTUHMgYW5kIHRoZWlyIFRMVnMuIEhlcmUgaXMgdGhlIHByb3Bvc2VkIGNoYW5nZXM6 DQogICAgICAgICAgICBPTEQgVEVYVDoNCiAgICAgICAgICAgICINCiAgICAgICAgICAgICAgIFRo dXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YNCiAgICAgICAgICAgICAgIHRoZSBQQ0Ugc2VjdXJp dHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcw0KICAgICAg ICAgICAgICAgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRo ZSBQQ0VEIFRMViBpZiB0aGUNCiAgICAgICAgICAgICAgIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4g dGhpcyBkb2N1bWVudCBpcyB1c2VkLg0KICAgICAgICAgICAgIg0KICAgICAgICAgICAgTkVXIFRF WFQ6DQogICAgICAgICAgICAiDQogICAgICAgICAgICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2Vt ZW50IG9mDQogICAgICAgICAgICAgICB0aGUgUENFIHNlY3VyaXR5IHBhcmFtZXRlcnMsIGl0IE1V U1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMNCiAgICAgICAgICAgICAgIHByb3RlY3RlZCBm b3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgd2l0aCBtZWNo YW5pc21zIGRlZmluZWQgaW4gW1JGQzM1NjddW1JGQzIxNTRdIGlmIHRoZQ0KICAgICAgICAgICAg ICAgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAgICAg ICAgICAiDQogICAgICAgICAgICA+KiBBbHNvLCBhIHBvc3NpYmx5IHVuaW50ZW5kZWQgY29uc2Vx dWVuY2Ugb2YgdGhpcyByZXF1aXJlbWVudCBpcyB0aGF0IGlmIHRoZSBJR1AgY2Fubm90IGJlIHBy b3RlY3RlZCBpbiBhIHBhcnRpY3VsYXIgZGVwbG95bWVudC9wcm9kdWN0LCB0aGlzIG1lY2hhbmlz bSB3b3VsZCBub3QgYmUgdXNlZC4gUGxlYXNlIGNvbnNpZGVyIGlmIHRoaXMgaXMgbGlrZWx5IHRv IGhhcHBlbiBhbmQgd2hldGhlciB3ZSB3YW50IHRvIGZvcmVnbyBQQ0VQIHRyYW5zcG9ydCA+c2Vj dXJpdHkgaW4gc3VjaCBjYXNlcy4gTXkgZ3V0IGZlZWwgKG5vdCBiYXNlZCBvbiBleHBlcmllbmNl IGluIHN1Y2ggbmV0d29ya3MpIGlzIHRoYXQgdGhlIHRocmVhdCBtb2RlbHMgYXJlIGRpZmZlcmVu dCBlbm91Z2ggdGhhdCB3ZSBzaG91bGQgZGVjb3VwbGUgdGhlIHNlY3VyaXR5IG9mIElHUCBmcm9t IHRoYXQgb2YgUENFUC4NCg0KICAgICAgICAgICAgW1Fpbl0gSSBhZ3JlZSBJR1Agc2VjdXJpdHkg c2hvdWxkIGJlIHNlcGFyYXRlZCBmcm9tIFBDRVAgc2VjdXJpdHkuIElHUCBleHRlbnNpb24gZGVm aW5lZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QgUENFIHNl cnZlciB3aXRoIGFwcHJvcHJpYXRlIHNlY3VyaXR5IG1lY2hhbmlzbS4gT24gdGhlIG90aGVyIGhh bmQsIE9wZXJhdG9yIGNhbiBlaXRoZXIgdXNlIElHUCBhZHZlcnRpc2VtZW50IGZvciBQQ0VQIHNl Y3VyaXR5IGNhcGFiaWxpdHkgb3IgcmVseSBvbiBsb2NhbCBwb2xpY3kgdG8gc2VsZWN0IFBDRS4g SWYgb3BlcmF0b3IgZmVlbHMgSUdQIGFkdmVydGlzZW1lbnQgaXMgbm90IHNlY3VyZSwgaGUgY2Fu IGZhbGwgYmFjayB0byBsb2NhbCBwb2xpY3kgb3IgcmVseSBvbiBtYW51YWwgY29uZmlndXJhdGlv bi4gSG9wZSB0aGlzIGNsYXJpZmllcy4NCg0KDQoNCg0KDQoNCg0K From nobody Tue Aug 10 07:15:35 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 322C33A0C74; Tue, 10 Aug 2021 07:15:26 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: Christopher Wood via Datatracker To: Cc: draft-ietf-6man-ipv6-alt-mark.all@ietf.org, ipv6@ietf.org, last-call@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <162860492610.10478.9724496467854805110@ietfa.amsl.com> Reply-To: Christopher Wood Date: Tue, 10 Aug 2021 07:15:26 -0700 Archived-At: Subject: [secdir] Secdir telechat review of draft-ietf-6man-ipv6-alt-mark-08 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 14:15:27 -0000 Reviewer: Christopher Wood Review result: Ready This draft seems ready. The latest revisions of this draft address all comments from my previous review. Thanks for the updated text! From nobody Tue Aug 10 07:30:30 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2D96A3A0D25; Tue, 10 Aug 2021 07:30:24 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MUhHdo3BP3vL; Tue, 10 Aug 2021 07:30:19 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 21FAA3A0D22; Tue, 10 Aug 2021 07:30:19 -0700 (PDT) Received: from fraeml710-chm.china.huawei.com (unknown [172.18.147.200]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4Gkb1x48MSz6BD4n; Tue, 10 Aug 2021 22:29:41 +0800 (CST) Received: from fraeml714-chm.china.huawei.com (10.206.15.33) by fraeml710-chm.china.huawei.com (10.206.15.59) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.8; Tue, 10 Aug 2021 16:30:11 +0200 Received: from fraeml714-chm.china.huawei.com ([10.206.15.33]) by fraeml714-chm.china.huawei.com ([10.206.15.33]) with mapi id 15.01.2308.008; Tue, 10 Aug 2021 16:30:11 +0200 From: Giuseppe Fioccola To: Christopher Wood , "secdir@ietf.org" CC: "draft-ietf-6man-ipv6-alt-mark.all@ietf.org" , "ipv6@ietf.org" , "last-call@ietf.org" Thread-Topic: Secdir telechat review of draft-ietf-6man-ipv6-alt-mark-08 Thread-Index: AQHXjfIvigCvoguDSECjsJgbNbgDo6tszKPQ Date: Tue, 10 Aug 2021 14:30:11 +0000 Message-ID: References: <162860492610.10478.9724496467854805110@ietfa.amsl.com> In-Reply-To: <162860492610.10478.9724496467854805110@ietfa.amsl.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.47.87.118] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir telechat review of draft-ietf-6man-ipv6-alt-mark-08 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 14:30:24 -0000 VGhhbmsgeW91IENocmlzdG9waGVyLg0KUmVnYXJkcywNCg0KR2l1c2VwcGUNCg0KLS0tLS1Pcmln aW5hbCBNZXNzYWdlLS0tLS0NCkZyb206IENocmlzdG9waGVyIFdvb2QgdmlhIERhdGF0cmFja2Vy IDxub3JlcGx5QGlldGYub3JnPiANClNlbnQ6IFR1ZXNkYXksIEF1Z3VzdCAxMCwgMjAyMSA0OjE1 IFBNDQpUbzogc2VjZGlyQGlldGYub3JnDQpDYzogZHJhZnQtaWV0Zi02bWFuLWlwdjYtYWx0LW1h cmsuYWxsQGlldGYub3JnOyBpcHY2QGlldGYub3JnOyBsYXN0LWNhbGxAaWV0Zi5vcmcNClN1Ympl Y3Q6IFNlY2RpciB0ZWxlY2hhdCByZXZpZXcgb2YgZHJhZnQtaWV0Zi02bWFuLWlwdjYtYWx0LW1h cmstMDgNCg0KUmV2aWV3ZXI6IENocmlzdG9waGVyIFdvb2QNClJldmlldyByZXN1bHQ6IFJlYWR5 DQoNClRoaXMgZHJhZnQgc2VlbXMgcmVhZHkuIFRoZSBsYXRlc3QgcmV2aXNpb25zIG9mIHRoaXMg ZHJhZnQgYWRkcmVzcyBhbGwgY29tbWVudHMgZnJvbSBteSBwcmV2aW91cyByZXZpZXcuIFRoYW5r cyBmb3IgdGhlIHVwZGF0ZWQgdGV4dCENCg0KDQo= From nobody Tue Aug 10 07:46:35 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B29053A0DC6; Tue, 10 Aug 2021 07:46:29 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -9.596 X-Spam-Level: X-Spam-Status: No, score=-9.596 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=OpHIptYo; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=dQmgPQa0 Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id EDDXiohZzqis; Tue, 10 Aug 2021 07:46:23 -0700 (PDT) Received: from rcdn-iport-7.cisco.com (rcdn-iport-7.cisco.com [173.37.86.78]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7750C3A0DC0; Tue, 10 Aug 2021 07:46:23 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=10724; q=dns/txt; s=iport; t=1628606783; x=1629816383; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=1NTbyhta7MZ9RC2EtokXjjseFnrp7UmTFSee3h8b/oo=; b=OpHIptYoem4y/RRGXE4UQIdl87RRZrz3cvyWv+6Q4oXhyvmZLVhKOHlG JNiJK7nNIo++wgalycbk4gJmClC08yu9R+lYJL9SWXUW3N982ZCmAcZe/ ASvb0j6GZeAMWoSp09xTsgRBd0sch2PwpwW9qYdxFk0K+Kv0sFjYvqO0H E=; IronPort-PHdr: =?us-ascii?q?A9a23=3AIeNaJhE0izyHxwYx98MSqp1Gfj4Y04WdBeZdw?= =?us-ascii?q?po6gq1Dc+Ko+JGxdEDc5PA4iljPUM2b7v9fkOPZvujmXnBI+peOtn0OMfkuH?= =?us-ascii?q?x8IgMkbhUosVciCD0CoLOPjcCE7Ws9FUQwt83SyK0MAHsH4ahXbqWGz6jhHH?= =?us-ascii?q?BL5OEJ1K+35F5SUgd6w0rW5+obYZENDgz/uCY4=3D?= IronPort-HdrOrdr: =?us-ascii?q?A9a23=3AX7yuaqzgHr7RSiwhDLQ0KrPxdOgkLtp133?= =?us-ascii?q?Aq2lEZdPULSK2lfpGV8sjziyWatN9IYgBepTiBUJPwJk80hqQFn7X5Wo3SHD?= =?us-ascii?q?UO2VHYbb2KiLGD/9SOIVyEygcw79YET0E6MqyNMbEYt7e43ODbKadb/DDvys?= =?us-ascii?q?nB7o2yowYPPGNXguNbnnpE422gYytLrXx9dOIE/e2nl7N6TlSbCBAqR/X+Ik?= =?us-ascii?q?NAc/nIptXNmp6jSwUBHQQb5A6Hii7twKLmEjCDty1uEQ9n8PMHyyzoggb57q?= =?us-ascii?q?Ksv7WQ0RnHzVLe6JxQhZ/I1sZDPsqRkcIYQw+czzpAJb4RH4FqjgpF5t1H22?= =?us-ascii?q?xayeUkZC1QZ/ib3kmhOV1dZyGdgDUIngxesUMKgmXo8EcL6faJNA7STfAx2L?= =?us-ascii?q?6wtnDimhUdVBYW6tMW44vRjeslMTrQ2Cv6/NTGTBdsiw69pmcji/caizhFXZ?= =?us-ascii?q?IZc6I5l/1TwKp5KuZKIMvB0vFsLACuNrCq2N9GNVeBK3zJtGhmx9KhGnw1Ax?= =?us-ascii?q?edW0AH/siYySJfknx1x1YRgJV3pAZOyLstD51fo+jUOKVhk79DCscQcKJmHe?= =?us-ascii?q?8EBc+6EHbETx7AOH+bZV7nCKYEMXTQrIOf2sR42Mi6PJgTiJcikpXIV11V8W?= =?us-ascii?q?Y0ZkL1EMWLmIZG9xjcKV/NFQgFCvsurqSRn4eMCoYDHRfzPWzGovHQ1cn3WP?= =?us-ascii?q?erKcpbEKgmd8PeEQ=3D=3D?= X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0BzAAAakBJh/5JdJa1aHAEBAQEBAQc?= =?us-ascii?q?BARIBAQQEAQFAgUUHAQELAYFSUQd3WjcxAoRFg0gDhFlgiGUDilqPW4EugSU?= =?us-ascii?q?DVAsBAQENAQEqCwwEAQGEWAIXgkcCJTQJDgIEAQEBEgEBBQEBAQIBBgSBERO?= =?us-ascii?q?FaA2GQgEBAQEDAQEQEREMAQElBAMLAQsEAgEGAg4DBAEBAQICIwMCAgIfBgs?= =?us-ascii?q?UAQgIAQEEAQ0FCBqCUIJVAy8BDo0hjzQBgToCih96gTGBAYIHAQEGBASFFw0?= =?us-ascii?q?LgjQJgRAqAYJ7hA+CaoN6JxyBSUSBFAFDgmI+giBCAQGBSBokgnE2gi6CcVs?= =?us-ascii?q?GAjAPIwQNFSEOAlskGT0CDQYYAg8UAQQRlTWWBpE/XAqDKIo5ji8EhXgSg2W?= =?us-ascii?q?BR4oZA5cnlg+Pco95AoIlgwkCBAIEBQIOAQEGgWA7gVlwFTuCaQlHGQ6LR4J?= =?us-ascii?q?YDRWDT4UUhUpzDSsCBgEKAQEDCYh4AQE?= X-IronPort-AV: E=Sophos;i="5.84,310,1620691200"; d="scan'208";a="902751690" Received: from rcdn-core-10.cisco.com ([173.37.93.146]) by rcdn-iport-7.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 10 Aug 2021 14:46:21 +0000 Received: from mail.cisco.com (xbe-rcd-002.cisco.com [173.37.102.17]) by rcdn-core-10.cisco.com (8.15.2/8.15.2) with ESMTPS id 17AEkLqm017984 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Tue, 10 Aug 2021 14:46:21 GMT Received: from xfe-rcd-004.cisco.com (173.37.227.252) by xbe-rcd-002.cisco.com (173.37.102.17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Tue, 10 Aug 2021 09:46:21 -0500 Received: from xfe-aln-001.cisco.com (173.37.135.121) by xfe-rcd-004.cisco.com (173.37.227.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Tue, 10 Aug 2021 09:46:20 -0500 Received: from NAM12-BN8-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-001.cisco.com (173.37.135.121) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Tue, 10 Aug 2021 09:46:20 -0500 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=FCDF+QFM5zj0DCCHDCJJnPyy49F9K1s3b74JFF36pqbY3gatOwCl4cRdZ1Z24VRstoG2EabRdTSVPejLJERehSXPHL53BLLNQs0g+4CYDkrDE8r5a0ruEzSh8SBOeepHjjZQBK6rtPGeppwpp9H9xVxHzvCNi8B7Kx89nfJw6OIFsZ6XRSZ6/oqegDfd+zbX7Y+0rm/K04yjz1xYFvEJA1SBLFVqH/jm7bzz8IvqkyPK7SDDHADkEfwY0d/KjqWFdD0V014SZrSvFqJCb2ilv1Bu3lVyftDEVv6uSHUou0eyZMhivDJf1rWeZ0fAIebet9Kc/WXJVICuFUqhwPh/xg== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1NTbyhta7MZ9RC2EtokXjjseFnrp7UmTFSee3h8b/oo=; b=HJmR5sPjuNctwEzD9cIyiTAKb15j+VUuDoAO0Oti6wtVQ38wEU9FtxqX/g8iEXWM/QIMie/d5mAAJe0Yhxb05vZZxbh9oT3I8khxTS7BJ6g6C8FMo7YVxIPJsZFVJlepr4JrkXFlwk33mVLGyEgWZetJn/dt8o6iOgmL886FhlYAvhYWYQ06TEQBS2ztwnFBcPdEu9Klg4wEpzBjVMV/oqbGMiDK29TVm7OspfIaBkQFzbOPtqZrJRlAxFbmICGvKXL4LkHShElOZCIeBxrftM7Oh4E40k+G+2FXodihS6gFcd0XuZkjqbpUdrDt5478SfKMT5GUDjch/M862DMgKQ== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=1NTbyhta7MZ9RC2EtokXjjseFnrp7UmTFSee3h8b/oo=; b=dQmgPQa0S4H0B9PcSw8+F+o+x6iq1ys0XmZlJOCluzzW0X7eA3h2q/19ltiLBk00xMUVBdBtb4dlMxbzYp3kzwH41TipyCQ/bAf6Wdts+qJWrdb5+lUoIncOBEs6hbn78BBhhK1hvY3rz/2ILxR/iG/bkvTa0DLd3mq5ttdqHTU= Received: from BY5PR11MB4337.namprd11.prod.outlook.com (2603:10b6:a03:1c1::14) by BYAPR11MB3334.namprd11.prod.outlook.com (2603:10b6:a03:1c::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4373.25; Tue, 10 Aug 2021 14:46:19 +0000 Received: from BY5PR11MB4337.namprd11.prod.outlook.com ([fe80::4a9:f193:27d3:39de]) by BY5PR11MB4337.namprd11.prod.outlook.com ([fe80::4a9:f193:27d3:39de%5]) with mapi id 15.20.4415.014; Tue, 10 Aug 2021 14:46:19 +0000 From: "Les Ginsberg (ginsberg)" To: Qin Wu , Yaron Sheffer , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" , "last-call@ietf.org" , "lsr@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeNgo28281XjeylTkaoP+2nMLBAywAc6ymg Date: Tue, 10 Aug 2021 14:46:19 +0000 Message-ID: References: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: huawei.com; dkim=none (message not signed) header.d=none;huawei.com; dmarc=none action=none header.from=cisco.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: b326b510-e5e7-448e-d24a-08d95c0d9d83 x-ms-traffictypediagnostic: BYAPR11MB3334: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BY5PR11MB4337.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(396003)(136003)(39860400002)(346002)(376002)(366004)(38070700005)(33656002)(71200400001)(38100700002)(15650500001)(86362001)(8936002)(5660300002)(53546011)(186003)(4326008)(966005)(122000001)(66476007)(110136005)(478600001)(66556008)(66446008)(7696005)(64756008)(6506007)(55016002)(76116006)(2906002)(9686003)(316002)(52536014)(54906003)(83380400001)(8676002)(66946007); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?RlQyVkZHY3JSUjBFRk15RGtUd3ZsbTYySWlWQ0JMclJKcS8xTFFMSERZWFVX?= =?utf-8?B?Y0IrTzJiS2gyWGFQWVZZT2UxeDNBNVA5RW13MlpsZml0LzlpZlVUVzBEdXhp?= =?utf-8?B?c1JTRVJySnFpR0Q5UGtUSHpOVVdmak9rK1drTnZHZWNSQXBxZXgxU1kyclRv?= =?utf-8?B?aFZFeHBMcVF4L1lKa1hkR0NhTVQ1UTBvRG1kMWtCMytza1Y3V0EzdGxHZ0JD?= =?utf-8?B?VFhPWE5uUTFad25vV21yc2w3RE5ET3RsdXRKYlBOL1NlYXQ2UlQ4TE1XUHVP?= =?utf-8?B?VzdQK0FVOExiUFVsaDg4cDlEMTNMNnNOSE4wRkZPeXZUNld0UXFKS0l3ZzJE?= =?utf-8?B?RjJTd1FJOUkxK2RHekZSdEYyeklKZHlQWHhjTmlkWWZCTGNKM0FjSXU4VW8r?= =?utf-8?B?N25RMXp6eFYvTmQrK05QMldiRzBsY09aZ1FwZzRNcmZLRDNVdkJEQVc3aVNV?= =?utf-8?B?THoweFAvazhRdUxVNWhsZGZzWnFUMlBGVmorR2xsN3FiM2MzbWdkUHYwbDBJ?= =?utf-8?B?QWVmemVDb2l4NUFrVVdreGRLWE05b2RpdHlnV2xPWk84QnRNOFV2UmdoWHBz?= =?utf-8?B?UVBSWURDbXNWN2FXY2V1aDdvbll2Y0pxckRkZnRhM2pJNkFHcEtPbnpWaTQy?= =?utf-8?B?SGcrSllHd1FrNFVnL3Y4eENhL0h6b3dkNE4rcU16RVcvV1JZaXNVUnV0MXJu?= =?utf-8?B?eDdSVWV6QVd5RktvZUNTWi84b2p2OCt3SldFSUJMSXNiNnhMak53QkkvQlFL?= =?utf-8?B?OUEyMmo2STdaRlh6VFZzbzNmSzNpbzAxa05Ia3RUaXZZQWdHUWNZMmx0dzRG?= =?utf-8?B?WTFGbko2K3Zuc3hhcERQUStMaFN6UlRnQTN5ZUw0cnExdGk4cVJnTFN1UGts?= =?utf-8?B?dHhuODNjKzNxNGx2bnJVTXEwMEROSm1id2tNM2h5Vk52Y1pPa2Nvdkg5Z0FW?= =?utf-8?B?ay9jOHlsaWN1aGp1YlpVWmE1L0hYb1c5Y0JTSEFNS24wT0xhN01rdlZrem50?= =?utf-8?B?U0VqNVhLWWZkajJ2MXU1a2dpWWxsT24zRjJ2QTk4SFB0ZDZidVpUMVdqM21J?= =?utf-8?B?UTJYOHltWllUSzlWSkx6Mm9oMkdrVmR0NTBSNUZEdXVXSFRkOHdDZzcrQ0J1?= =?utf-8?B?QzRrOXgvWlVFQXF3cW5VWkdqMVo1RzBKRXpMTmpDeCtGcVpKNTdFM1dLd0Ex?= =?utf-8?B?dUI1ZldLZUIwR21ZVlo5Q2J6Q2RZQkdVV1UvMG5vWERUTU5rY1Y3QlZJNTFq?= =?utf-8?B?V3FTZEUxZFJ1dkRRaXBKT21tOTJMM3dDL3dHc0d4L1V5YVZ1ZVlWRUpDZmJG?= =?utf-8?B?Y1p5RzJpNmFJNWdwejFsWVNNZTNvbER0VDlnOUZEV0dRNHRudGhUcXVRUDV0?= =?utf-8?B?a0VFY1RKcVhHN1RSSlBYTktkWEw0MzQ2QmFSWER3V0ZobU5qUzhuUWswVTQ0?= =?utf-8?B?UnVvM0Fkc0MrR0s4UWxTYS9TRVlpNjhQSWMyUnE5czFoTkFZd1NaSUtzUkxz?= =?utf-8?B?aDloZlFyYm5XLzc3aU45Smk1MmxXeWgzQTZqSWRzSDcxVmdBRG5hU09wVzdu?= =?utf-8?B?YjB4S1FKK0h3R0xheE0wb0lUK3JIQVpQNGhGUmk2V1RFUGlic2JTR0lRcXpJ?= =?utf-8?B?cXdrOVozU0hUc2s3Z1YxWVFKRWMzd0FpVjlCV2tnaHFEaXI5bzdyQ2xpUmtw?= =?utf-8?B?TXM0eUM4VHBPcHFHRFZ4YjQ0Nk5ZVVkwL2k3YUhFaGJyUEZEUmprSU5pZ1Jy?= =?utf-8?B?VVhXYUtvRUdMUVYyT1h5WktHVGJUN1lBWTFoOUlTaitBVVpxcHY5MTN5dzI3?= =?utf-8?B?WkltbXZIMHBwQWdjanl6NUFhUmRiYjltSTFtNXMxSEQ3UUhFaEQ2cEVwN21J?= =?utf-8?Q?izU+D/VW+XuSi?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BY5PR11MB4337.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: b326b510-e5e7-448e-d24a-08d95c0d9d83 X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Aug 2021 14:46:19.5548 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: Ap53EsIZE39UFfOYXtwIOggLbVxhFZUqf3slhPHs4ikoCDwitCYWQjWN9sFnAHNSNnzc8b9kkZg6o6fFi49J3w== X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3334 X-OriginatorOrg: cisco.com X-Outbound-SMTP-Client: 173.37.102.17, xbe-rcd-002.cisco.com X-Outbound-Node: rcdn-core-10.cisco.com Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 14:46:30 -0000 UWluIC0NCg0KSnVzdCB0byBub3RlIHRoYXQgUkZDIDUzMTAgZG9lcyBOT1QgcmVwbGFjZSBvciBv YnNvbGV0ZSBSRkMgNTMwNC4gQm90aCBSRkMgJ3MgaGF2ZSB0aGVpciB1c2VzLg0KUGxlYXNlIGJl IHN1cmUgdG8gcmVmZXJlbmNlIGJvdGggUkZDcyBpbiB5b3VyIHVwZGF0ZWQgdGV4dC4NCg0KVGhh bnguDQoNCiAgIExlcw0KDQoNCj4gLS0tLS1PcmlnaW5hbCBNZXNzYWdlLS0tLS0NCj4gRnJvbTog UWluIFd1IDxiaWxsLnd1QGh1YXdlaS5jb20+DQo+IFNlbnQ6IE1vbmRheSwgQXVndXN0IDksIDIw MjEgNjoxMyBQTQ0KPiBUbzogTGVzIEdpbnNiZXJnIChnaW5zYmVyZykgPGdpbnNiZXJnQGNpc2Nv LmNvbT47IFlhcm9uIFNoZWZmZXINCj4gPHlhcm9uZi5pZXRmQGdtYWlsLmNvbT47IHNlY2RpckBp ZXRmLm9yZw0KPiBDYzogZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBw b3J0LmFsbEBpZXRmLm9yZzsgbGFzdC0NCj4gY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQo+ IFN1YmplY3Q6IFJFOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1w Y2UtZGlzY292ZXJ5LXNlY3VyaXR5LQ0KPiBzdXBwb3J0LTA1DQo+IA0KPiBUaGFua3MgTGVzIGZv ciB0aGUgcG9pbnRlciwgSSB3YXMgbG9va2luZyBpbnRvIFJGQzY4NjMgaW4gS0FSUCBXRyBhbmQg Zm91bmQNCj4gUkZDNTcwOSBmb3IgT1NQRiBzZWN1cml0eSBhcyB3ZWxsLg0KPiBZZXMsIEkgYWdy ZWUgdG8gdXNlIFJGQzUzMTAgdG8gcmVwbGFjZSBSRkM1MzA0IGZvciBJUy1JUyBzZWN1cml0eS4N Cj4gDQo+IFJlZ2FyZGluZyB0aGUgZGViYXRlIGFib3V0IE1VU1QgdnMgU0hPVUxELCB0aGFua3Mg Zm9yIGNsYXJpZmljYXRpb24uIHllcywNCj4gd2hldGhlciB0byBjaG9vc2UgSUdQIGFkdmVydGlz ZW1lbnQgaXMgaW1wbGVtZW50YXRpb24gc3BlY2lmaWMuIE9wZXJhdG9yDQo+IHdpbGwgbWFrZSB0 aGVpciBjaG9pY2UuDQo+IFNvIEkgdGhpbmsgSSB0ZW5kIHRvIGFncmVlIHRvIHVzZSBTSE9VTEQg Zm9yIGNsaWVudCBiZWhhdmlvci4gVGhhbmtzLg0KPiANCj4gLVFpbg0KPiAtLS0tLemCruS7tuWO n+S7ti0tLS0tDQo+IOWPkeS7tuS6ujogTGVzIEdpbnNiZXJnIChnaW5zYmVyZykgW21haWx0bzpn aW5zYmVyZ0BjaXNjby5jb21dDQo+IOWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg55pelIDIzOjM2 DQo+IOaUtuS7tuS6ujogWWFyb24gU2hlZmZlciA8eWFyb25mLmlldGZAZ21haWwuY29tPjsgUWlu IFd1DQo+IDxiaWxsLnd1QGh1YXdlaS5jb20+OyBzZWNkaXJAaWV0Zi5vcmcNCj4g5oqE6YCBOiBk cmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3Jn OyBsYXN0LQ0KPiBjYWxsQGlldGYub3JnOyBsc3JAaWV0Zi5vcmcNCj4g5Li76aKYOiBSRTogU2Vj ZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1 cml0eS0NCj4gc3VwcG9ydC0wNQ0KPiANCj4gWWFyb24vUWluIC0NCj4gDQo+IEZvciBJUy1JUyBz ZWN1cml0eSBwbGVhc2UgYWxzbyBzZWUgUkZDIDUzMTAuDQo+IEZvciBPU1BGIHNlY3VyaXR5IHBs ZWFzZSBzZWUgUkZDIDU3MDkuDQo+IA0KPiBSZWdhcmRpbmcgdGhlIGRlYmF0ZSBhYm91dCBNVVNU IHZzIFNIT1VMRCwgYXMgSSBzZWUgaXQgYWR2ZXJ0aXNlbWVudCBvZg0KPiB0aGlzIGluZm9ybWF0 aW9uIGlzIGFuIG9wdGlvbi4gVGhlIElHUCBtaWdodCBub3QgaGF2ZSBhY2Nlc3MgdG8gdGhpcw0K PiBpbmZvcm1hdGlvbiBpbiBhIGdpdmVuIGltcGxlbWVudGF0aW9uL2RlcGxveW1lbnQgLSBhbmQg SSBjYW4gZWFzaWx5IGltYWdpbmUNCj4gdGhhdCBzb21lIGN1c3RvbWVycyBtaWdodCBwcmVmZXIg Tk9UIHRvIGFkdmVydGlzZSB0aGlzIGluZm9ybWF0aW9uIGluIGFuDQo+IElHUCBldmVuIGlmIGl0 IHdlcmUgYXZhaWxhYmxlLg0KPiANCj4gSXQgaXMgdXNlZnVsIHRvIGNoZWNrIHRoZSB3b3JkaW5n IHVzZWQgaW4gaHR0cHM6Ly93d3cucmZjLQ0KPiBlZGl0b3Iub3JnL3JmYy9yZmM1MDg5Lmh0bWwj c2VjdGlvbi00IC4gVGhlcmUsIHRob3NlIHN1Yi1UTFZzIHdoaWNoIGFyZQ0KPiBuZWNlc3Nhcnkg Zm9yIHRoZSBQQ0VEIHN1Yi1UTFYgdG8gYmUgdXNlZnVsIGF0IGFsbCBhcmUgcmVxdWlyZWQgLSBi dXQgb3RoZXINCj4gc3ViLVRMVnMgYXJlIG9wdGlvbmFsLiBJIHRoaW5rIHRoZXNlIG5ldyBzdWIt VExWcyBmYWxsIGludG8gdGhlIGxhdHRlciBjYXRlZ29yeS4NCj4gDQo+ICAgIExlcw0KPiANCj4g PiAtLS0tLU9yaWdpbmFsIE1lc3NhZ2UtLS0tLQ0KPiA+IEZyb206IExzciA8bHNyLWJvdW5jZXNA aWV0Zi5vcmc+IE9uIEJlaGFsZiBPZiBZYXJvbiBTaGVmZmVyDQo+ID4gU2VudDogTW9uZGF5LCBB dWd1c3QgOSwgMjAyMSA2OjQ0IEFNDQo+ID4gVG86IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29t Pjsgc2VjZGlyQGlldGYub3JnDQo+ID4gQ2M6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnkt c2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtDQo+ID4gY2FsbEBpZXRmLm9yZzsg bHNyQGlldGYub3JnDQo+ID4gU3ViamVjdDogUmU6IFtMc3JdIFNlY2RpciBsYXN0IGNhbGwgcmV2 aWV3IG9mDQo+ID4gZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS0NCj4gPiBzZWN1cml0eS1z dXBwb3J0LTA1DQo+ID4NCj4gPiBIaSBRaW4sDQo+ID4NCj4gPiBUaGFuayB5b3UgZm9yIHlvdXIg cmVzcG9uc2UuDQo+ID4NCj4gPiAqIFJGQyAzNTY3IChmb3IgSVMtSVMpIGlzIG9ic29sZXRlZCBi eSBSRkMgNTMwNC4gVW5mb3J0dW5hdGVseSBSRkMNCj4gPiA1MzA0IHN0aWxsIHVzZXMgSE1BQy1N RDUsIHdoaWNoIHdvdWxkIGJlIGNvbnNpZGVyZWQgaW5zZWN1cmUgbm93YWRheXMuDQo+ID4gKiBS RkMgMjE1NCBpcyB2ZXJ5IG9sZCBhbmQgRXhwZXJpbWVudGFsIChhbmQgb25seSBzdXBwb3J0cyBS U0EtTUQ1DQo+ID4gc2lnbmF0dXJlcykuIEknbSBub3QgYW4gT1NQRiBleHBlcnQgYnkgYW55IG1l YW5zLCBidXQgSSdtIHdpbGxpbmcgdG8NCj4gPiBiZXQgdGhhdCB0aGVyZSBhcmUgbm8gcHJvZHVj dGlvbiBpbXBsZW1lbnRhdGlvbnMgb2YgdGhpcyBSRkMuIChJJ20NCj4gPiB3aWxsaW5nIHRvIGJl IHByb3ZlbiB3cm9uZykuIElzIHRoZXJlIGFub3RoZXIgUkZDIHRoYXQgZGVmaW5lcyBhDQo+ID4g cHJvdGVjdGlvbiBtZWNoYW5pc20gZm9yIE9TUEY/DQo+ID4NCj4gPiBBbGwgaW4gYWxsLCB0aGVy ZSBhcHBlYXIgdG8gYmUgbm8gZ29vZCBvcHRpb25zIGZvciB0aGUgSUdQLg0KPiA+DQo+ID4gVG8g eW91ciBsYXN0IHBvaW50LCB3aGVuIEkgbWVudGlvbmVkIGRlY291cGxpbmcgdGhlIG1lY2hhbmlz bXMsIEkgd2FzDQo+ID4gc3VnZ2VzdGluZyB0byB1c2UgdGhlIGV4dGVuc2lvbiB5b3UgZGVmaW5l IGV2ZW4gaWYgdGhlIElHUCAqY2Fubm90KiBiZQ0KPiA+IHNlY3VyZWQuIElmIHlvdSB0aGluayB0 aGlzIGlzIHJlYXNvbmFibGUsIHBsZWFzZSBhZGQgc3VjaCB0ZXh0IHRvIHRoZQ0KPiA+IFNlY3Vy aXR5IENvbnNpZGVyYXRpb25zLg0KPiA+DQo+ID4gVGhhbmtzLA0KPiA+IAlZYXJvbg0KPiA+DQo+ ID4g77u/T24gOC85LzIxLCAxNjowOSwgIlFpbiBXdSIgPGJpbGwud3VAaHVhd2VpLmNvbT4gd3Jv dGU6DQo+ID4NCj4gPiAgICAgVGhhbmtzIFlhcm9uIGZvciB2YWx1YWJsZSBjb21tZW50cywgcGxl YXNlIHNlZSBteSByZXBseSBpbmxpbmUgYmVsb3cuDQo+ID4gICAgIC0tLS0t6YKu5Lu25Y6f5Lu2 LS0tLS0NCj4gPiAgICAgPuWPkeS7tuS6ujogWWFyb24gU2hlZmZlciB2aWEgRGF0YXRyYWNrZXIg W21haWx0bzpub3JlcGx5QGlldGYub3JnXQ0KPiA+ICAgICA+5Y+R6YCB5pe26Ze0OiAyMDIx5bm0 OOaciDbml6UgMzoyNQ0KPiA+ICAgICA+5pS25Lu25Lq6OiBzZWNkaXJAaWV0Zi5vcmcNCj4gPiAg ICAgPuaKhOmAgTogZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0 LmFsbEBpZXRmLm9yZzsNCj4gPiBsYXN0LSBjYWxsQGlldGYub3JnOyBsc3JAaWV0Zi5vcmcNCj4g PiAgICAgPuS4u+mimDogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YNCj4gPiBkcmFmdC1pZXRm LWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LQ0KPiA+IHN1cHBvcnQtMDUNCj4gPg0KPiA+ICAg ICA+UmV2aWV3ZXI6IFlhcm9uIFNoZWZmZXINCj4gPiAgICAgPlJldmlldyByZXN1bHQ6IE5vdCBS ZWFkeQ0KPiA+DQo+ID4gICAgID5UaGlzIGRvY3VtZW50IGRlZmluZXMgYSBtZWNoYW5pc20gKGEg VExWKSB0byBhZHZlcnRpc2UgdGhlIFBDRQ0KPiA+IFByb3RvY29sIHNlY3VyaXR5IHJlcXVpcmVk ICh1c2Ugb2YgVENQLUFPIGFuZCBpdHMga2V5IElELCBvcg0KPiA+IGFsdGVybmF0aXZlbHkgdXNl IG9mIFRMUykgd2l0aGluIHRoZSByb3V0aW5nIHByb3RvY29sIGJlaW5nIHVzZWQuDQo+ID4NCj4g PiAgICAgPiogU2VjLiAzLjE6IEkgZG9uJ3QgdW5kZXJzdGFuZCB3aHkgIlNIT1VMRCBhZHZlcnRp c2UiIGFuZCBub3QgTVVTVC4NCj4gPiBFc3BlY2lhbGx5IGdpdmVuIHRoZSBzdHJpY3QgY2xpZW50 IGJlaGF2aW9yIGRlZmluZWQgbGF0ZXIuDQo+ID4gICAgIFtRaW5dOiBJIGJlbGlldmUgIlNIT1VM RCBhZHZlcnRpc2UiIGlzIGNvbnNpc3RlbnQgd2l0aCBjbGllbnQNCj4gPiBiZWhhdmlvciBkZWZp bmVkIGxhdGVyLCBpLmUuLCB3ZSBhcHBseSBTSE9VTEQgTk9UIGxhbmd1YWdlIHRvIHRoZSBjbGll bnQNCj4gYmVoYXZpb3IuDQo+ID4gICAgIEkgYW0gbm90IHN1cmUgd2Ugc2hvdWxkIGNoYW5nZSBp dCBpbnRvIHN0cm9uZyBsYW5ndWFnZSB3aXRoIE1VU1QuDQo+ID4gU2luY2UgaWYgSUdQIGFkdmVy dGlzZW1lbnQgZG9lc24ndCBpbmNsdWRlIFRDUC1BTw0KPiA+ICAgICAgc3VwcG9ydCBmbGFnIGJp dCBvciBUTFMgc3VwcG9ydCBmbGFnIGJpdCwgTk1TIG1heSBmYWxsIGJhY2sgdG8NCj4gPiBjb25m aWd1cmUgYm90aCBQQ0MgYW5kIFBDRSBzZXJ2ZXIgdG8gc3VwcG9ydCBUQ1AtQU8gb3IgVExTLiBU aGF0J3Mgb25lDQo+ID4gb2YgcmVhc29uIEkgdGhpbmsgd2h5IHdlIGNob29zZSB0byB1c2UgU0hP VUxEIGxhbmd1YWdlLg0KPiA+DQo+ID4gICAgID4qIFNlYy4gMy4xOiBzaG91bGQgd2UgYWxzbyBz YXkgc29tZXRoaW5nIGFib3V0IHRoZSBjYXNlIHdoZXJlDQo+ID4gYm90aCBtZXRob2RzIGFyZSBh ZHZlcnRpc2VkLCBhbmQgd2hldGhlciB3ZSByZWNvbW1lbmQgZm9yIHRoZSBjbGllbnQNCj4gPiB0 byB1c2Ugb25lIG9mIHRoZW0gb3ZlciB0aGUgb3RoZXI/DQo+ID4NCj4gPiAgICAgW1Fpbl06IEl0 IGlzIHVwIHRvIGxvY2FsIHBvbGljeSwgd2hpY2ggaGFzIGJlZSBjbGFyaWZpZWQgaW4gdGhlDQo+ ID4gZW5kIG9mIHNlY3Rpb24gMy4xLiBIb3BlIHRoaXMgY2xhcmlmeS4NCj4gPg0KPiA+ICAgICA+ KiBTZWMuIDQ6IHR5cG8gKGFwcGVhcnMgdHdpY2UpIC0gInRvIGJlIGNhcnJpZWQgaW4gdGhlIFBD RUQgVExWDQo+ID4gb2YgdGhlIGZvciB1c2UiLg0KPiA+DQo+ID4gICAgIFtRaW5dOlRoYW5rcywg aGF2ZSBmaXhlZCB0aGVtIGluIHRoZSBsb2NhbCBjb3B5Lg0KPiA+DQo+ID4gICAgID4qIFNlYy4g NzogdGhpcyBwaHJhc2UgYXBwZWFycyB0byBiZSBlc3NlbnRpYWwgdG8gc2VjdXJpdHkgb2YgdGhp cw0KPiBtZWNoYW5pc206DQo+ID4gIml0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMg cHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQNCj4gPiBpbnRlZ3JpdHkgb2YgdGhlIFBD RUQgVExWIi4gSSB3b3VsZCBleHBlY3QgbW9yZSBndWlkYW5jZTogaG93IGNhbiB0aGlzDQo+ID4g cHJvcGVydHkgYmUgZW5zdXJlZCBpbiB0aGUgcmVsZXZhbnQgSUdQcz8NCj4gPiAgICAgW1Fpbl06 SSB0aGluayBtZWNoYW5pc20gZGVmaW5lZCBpbiBbUkZDMzU2N10gYW5kIFtSRkMyMTU0XSBjYW4g YmUNCj4gPiB1c2VkIHRvIGVuc3VyZSBhdXRoZW50aWNpdHkgYW5kIGludGVncml0eSBvZiBPU1BG IExTQXMgb3IgSVNJUyBMU1BzIGFuZCB0aGVpcg0KPiBUTFZzLg0KPiA+IEhlcmUgaXMgdGhlIHBy b3Bvc2VkIGNoYW5nZXM6DQo+ID4gICAgIE9MRCBURVhUOg0KPiA+ICAgICAiDQo+ID4gICAgICAg IFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YNCj4gPiAgICAgICAgdGhlIFBDRSBzZWN1cml0 eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQo+ID4gICAg ICAgIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENF RCBUTFYgaWYgdGhlDQo+ID4gICAgICAgIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1 bWVudCBpcyB1c2VkLg0KPiA+ICAgICAiDQo+ID4gICAgIE5FVyBURVhUOg0KPiA+ICAgICAiDQo+ ID4gICAgICAgIFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YNCj4gPiAgICAgICAgdGhlIFBD RSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlz DQo+ID4gICAgICAgIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBv ZiB0aGUgUENFRCBUTFYgd2l0aA0KPiA+IG1lY2hhbmlzbXMgZGVmaW5lZCBpbiBbUkZDMzU2N11b UkZDMjE1NF0gaWYgdGhlDQo+ID4gICAgICAgIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBk b2N1bWVudCBpcyB1c2VkLg0KPiA+ICAgICAiDQo+ID4gICAgID4qIEFsc28sIGEgcG9zc2libHkg dW5pbnRlbmRlZCBjb25zZXF1ZW5jZSBvZiB0aGlzIHJlcXVpcmVtZW50IGlzDQo+ID4gdGhhdCBp ZiB0aGUgSUdQIGNhbm5vdCBiZSBwcm90ZWN0ZWQgaW4gYSBwYXJ0aWN1bGFyDQo+ID4gZGVwbG95 bWVudC9wcm9kdWN0LCB0aGlzIG1lY2hhbmlzbSB3b3VsZCBub3QgYmUgdXNlZC4gUGxlYXNlIGNv bnNpZGVyDQo+ID4gaWYgdGhpcyBpcyBsaWtlbHkgdG8gaGFwcGVuIGFuZCB3aGV0aGVyIHdlIHdh bnQgdG8gZm9yZWdvIFBDRVANCj4gPiB0cmFuc3BvcnQgPnNlY3VyaXR5IGluIHN1Y2ggY2FzZXMu IE15IGd1dCBmZWVsIChub3QgYmFzZWQgb24NCj4gPiBleHBlcmllbmNlIGluIHN1Y2ggbmV0d29y a3MpIGlzIHRoYXQgdGhlIHRocmVhdCBtb2RlbHMgYXJlIGRpZmZlcmVudA0KPiA+IGVub3VnaCB0 aGF0IHdlIHNob3VsZCBkZWNvdXBsZSB0aGUgc2VjdXJpdHkgb2YgSUdQIGZyb20gdGhhdCBvZiBQ Q0VQLg0KPiA+DQo+ID4gICAgIFtRaW5dIEkgYWdyZWUgSUdQIHNlY3VyaXR5IHNob3VsZCBiZSBz ZXBhcmF0ZWQgZnJvbSBQQ0VQIHNlY3VyaXR5Lg0KPiA+IElHUCBleHRlbnNpb24gZGVmaW5lZCBp biB0aGlzIGRvY3VtZW50IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QNCj4gPiBQQ0Ugc2Vy dmVyIHdpdGggYXBwcm9wcmlhdGUgc2VjdXJpdHkgbWVjaGFuaXNtLiBPbiB0aGUgb3RoZXIgaGFu ZCwNCj4gPiBPcGVyYXRvciBjYW4gZWl0aGVyIHVzZSBJR1AgYWR2ZXJ0aXNlbWVudCBmb3IgUENF UCBzZWN1cml0eSBjYXBhYmlsaXR5DQo+ID4gb3IgcmVseSBvbiBsb2NhbCBwb2xpY3kgdG8gc2Vs ZWN0IFBDRS4gSWYgb3BlcmF0b3IgZmVlbHMgSUdQDQo+ID4gYWR2ZXJ0aXNlbWVudCBpcyBub3Qg c2VjdXJlLCBoZSBjYW4gZmFsbCBiYWNrIHRvIGxvY2FsIHBvbGljeSBvciByZWx5IG9uDQo+IG1h bnVhbCBjb25maWd1cmF0aW9uLiBIb3BlIHRoaXMgY2xhcmlmaWVzLg0KPiA+DQo+ID4NCj4gPg0K PiA+IF9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fDQo+ID4g THNyIG1haWxpbmcgbGlzdA0KPiA+IExzckBpZXRmLm9yZw0KPiA+IGh0dHBzOi8vd3d3LmlldGYu b3JnL21haWxtYW4vbGlzdGluZm8vbHNyDQo= From nobody Tue Aug 10 08:23:27 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A688D3A0FDC; Tue, 10 Aug 2021 08:23:17 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.896 X-Spam-Level: X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5cwcl0_mAgP1; Tue, 10 Aug 2021 08:23:12 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 987CE3A0FDA; Tue, 10 Aug 2021 08:23:11 -0700 (PDT) Received: from fraeml708-chm.china.huawei.com (unknown [172.18.147.226]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GkcBt65Jkz6DJdd; Tue, 10 Aug 2021 23:22:30 +0800 (CST) Received: from dggeml702-chm.china.huawei.com (10.3.17.135) by fraeml708-chm.china.huawei.com (10.206.15.36) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Tue, 10 Aug 2021 17:23:02 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml702-chm.china.huawei.com (10.3.17.135) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Tue, 10 Aug 2021 23:23:01 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Tue, 10 Aug 2021 23:23:00 +0800 From: Qin Wu To: "Les Ginsberg (ginsberg)" , Yaron Sheffer , secdir CC: draft-ietf-lsr-pce-discovery-security-support.all , last-call , lsr Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeNgo28281XjeylTkaoP+2nMLBAywAc6ymgAAFYJx8= Date: Tue, 10 Aug 2021 15:23:00 +0000 Message-ID: <57788eb262f54b379725c683d177b8e7@huawei.com> References: , In-Reply-To: Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: Content-Type: multipart/alternative; boundary="_000_57788eb262f54b379725c683d177b8e7huaweicom_" MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 15:23:18 -0000 --_000_57788eb262f54b379725c683d177b8e7huaweicom_ Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 QWdyZWUsIHRoYW5rcyBMZXMgZm9yIGFkZGl0aW9uYWwgc3VnZ2VzdGlvbnMuDQrlj5Hku7bkurrv vJogTGVzIEdpbnNiZXJnIChnaW5zYmVyZyk8Z2luc2JlcmdAY2lzY28uY29tPG1haWx0bzpnaW5z YmVyZ0BjaXNjby5jb20+Pg0K5pS25Lu25Lq677yaIFFpbiBXdTxiaWxsLnd1QGh1YXdlaS5jb208 bWFpbHRvOmJpbGwud3VAaHVhd2VpLmNvbT4+O1lhcm9uIFNoZWZmZXI8eWFyb25mLmlldGZAZ21h aWwuY29tPG1haWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb20+PjtzZWNkaXI8c2VjZGlyQGlldGYu b3JnPG1haWx0bzpzZWNkaXJAaWV0Zi5vcmc+Pg0K5oqE6YCB77yaIGRyYWZ0LWlldGYtbHNyLXBj ZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGw8ZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2Nv dmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZzxtYWlsdG86ZHJhZnQtaWV0Zi1sc3It cGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZz4+O2xhc3QtY2FsbDxs YXN0LWNhbGxAaWV0Zi5vcmc8bWFpbHRvOmxhc3QtY2FsbEBpZXRmLm9yZz4+O2xzcjxsc3JAaWV0 Zi5vcmc8bWFpbHRvOmxzckBpZXRmLm9yZz4+DQrkuLvpopjvvJogUkU6IFNlY2RpciBsYXN0IGNh bGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9y dC0wNQ0K5pe26Ze077yaIDIwMjEtMDgtMTAgMjI6NDc6MDUNCg0KUWluIC0NCg0KSnVzdCB0byBu b3RlIHRoYXQgUkZDIDUzMTAgZG9lcyBOT1QgcmVwbGFjZSBvciBvYnNvbGV0ZSBSRkMgNTMwNC4g Qm90aCBSRkMgJ3MgaGF2ZSB0aGVpciB1c2VzLg0KUGxlYXNlIGJlIHN1cmUgdG8gcmVmZXJlbmNl IGJvdGggUkZDcyBpbiB5b3VyIHVwZGF0ZWQgdGV4dC4NCg0KVGhhbnguDQoNCiAgIExlcw0KDQoN Cj4gLS0tLS1PcmlnaW5hbCBNZXNzYWdlLS0tLS0NCj4gRnJvbTogUWluIFd1IDxiaWxsLnd1QGh1 YXdlaS5jb20+DQo+IFNlbnQ6IE1vbmRheSwgQXVndXN0IDksIDIwMjEgNjoxMyBQTQ0KPiBUbzog TGVzIEdpbnNiZXJnIChnaW5zYmVyZykgPGdpbnNiZXJnQGNpc2NvLmNvbT47IFlhcm9uIFNoZWZm ZXINCj4gPHlhcm9uZi5pZXRmQGdtYWlsLmNvbT47IHNlY2RpckBpZXRmLm9yZw0KPiBDYzogZHJh ZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZzsg bGFzdC0NCj4gY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQo+IFN1YmplY3Q6IFJFOiBTZWNk aXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3Vy aXR5LQ0KPiBzdXBwb3J0LTA1DQo+DQo+IFRoYW5rcyBMZXMgZm9yIHRoZSBwb2ludGVyLCBJIHdh cyBsb29raW5nIGludG8gUkZDNjg2MyBpbiBLQVJQIFdHIGFuZCBmb3VuZA0KPiBSRkM1NzA5IGZv ciBPU1BGIHNlY3VyaXR5IGFzIHdlbGwuDQo+IFllcywgSSBhZ3JlZSB0byB1c2UgUkZDNTMxMCB0 byByZXBsYWNlIFJGQzUzMDQgZm9yIElTLUlTIHNlY3VyaXR5Lg0KPg0KPiBSZWdhcmRpbmcgdGhl IGRlYmF0ZSBhYm91dCBNVVNUIHZzIFNIT1VMRCwgdGhhbmtzIGZvciBjbGFyaWZpY2F0aW9uLiB5 ZXMsDQo+IHdoZXRoZXIgdG8gY2hvb3NlIElHUCBhZHZlcnRpc2VtZW50IGlzIGltcGxlbWVudGF0 aW9uIHNwZWNpZmljLiBPcGVyYXRvcg0KPiB3aWxsIG1ha2UgdGhlaXIgY2hvaWNlLg0KPiBTbyBJ IHRoaW5rIEkgdGVuZCB0byBhZ3JlZSB0byB1c2UgU0hPVUxEIGZvciBjbGllbnQgYmVoYXZpb3Iu IFRoYW5rcy4NCj4NCj4gLVFpbg0KPiAtLS0tLemCruS7tuWOn+S7ti0tLS0tDQo+IOWPkeS7tuS6 ujogTGVzIEdpbnNiZXJnIChnaW5zYmVyZykgW21haWx0bzpnaW5zYmVyZ0BjaXNjby5jb21dDQo+ IOWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg55pelIDIzOjM2DQo+IOaUtuS7tuS6ujogWWFyb24g U2hlZmZlciA8eWFyb25mLmlldGZAZ21haWwuY29tPjsgUWluIFd1DQo+IDxiaWxsLnd1QGh1YXdl aS5jb20+OyBzZWNkaXJAaWV0Zi5vcmcNCj4g5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlz Y292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3JnOyBsYXN0LQ0KPiBjYWxsQGlldGYu b3JnOyBsc3JAaWV0Zi5vcmcNCj4g5Li76aKYOiBSRTogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcg b2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS0NCj4gc3VwcG9ydC0wNQ0K Pg0KPiBZYXJvbi9RaW4gLQ0KPg0KPiBGb3IgSVMtSVMgc2VjdXJpdHkgcGxlYXNlIGFsc28gc2Vl IFJGQyA1MzEwLg0KPiBGb3IgT1NQRiBzZWN1cml0eSBwbGVhc2Ugc2VlIFJGQyA1NzA5Lg0KPg0K PiBSZWdhcmRpbmcgdGhlIGRlYmF0ZSBhYm91dCBNVVNUIHZzIFNIT1VMRCwgYXMgSSBzZWUgaXQg YWR2ZXJ0aXNlbWVudCBvZg0KPiB0aGlzIGluZm9ybWF0aW9uIGlzIGFuIG9wdGlvbi4gVGhlIElH UCBtaWdodCBub3QgaGF2ZSBhY2Nlc3MgdG8gdGhpcw0KPiBpbmZvcm1hdGlvbiBpbiBhIGdpdmVu IGltcGxlbWVudGF0aW9uL2RlcGxveW1lbnQgLSBhbmQgSSBjYW4gZWFzaWx5IGltYWdpbmUNCj4g dGhhdCBzb21lIGN1c3RvbWVycyBtaWdodCBwcmVmZXIgTk9UIHRvIGFkdmVydGlzZSB0aGlzIGlu Zm9ybWF0aW9uIGluIGFuDQo+IElHUCBldmVuIGlmIGl0IHdlcmUgYXZhaWxhYmxlLg0KPg0KPiBJ dCBpcyB1c2VmdWwgdG8gY2hlY2sgdGhlIHdvcmRpbmcgdXNlZCBpbiBodHRwczovL3d3dy5yZmMt DQo+IGVkaXRvci5vcmcvcmZjL3JmYzUwODkuaHRtbCNzZWN0aW9uLTQgLiBUaGVyZSwgdGhvc2Ug c3ViLVRMVnMgd2hpY2ggYXJlDQo+IG5lY2Vzc2FyeSBmb3IgdGhlIFBDRUQgc3ViLVRMViB0byBi ZSB1c2VmdWwgYXQgYWxsIGFyZSByZXF1aXJlZCAtIGJ1dCBvdGhlcg0KPiBzdWItVExWcyBhcmUg b3B0aW9uYWwuIEkgdGhpbmsgdGhlc2UgbmV3IHN1Yi1UTFZzIGZhbGwgaW50byB0aGUgbGF0dGVy IGNhdGVnb3J5Lg0KPg0KPiAgICBMZXMNCj4NCj4gPiAtLS0tLU9yaWdpbmFsIE1lc3NhZ2UtLS0t LQ0KPiA+IEZyb206IExzciA8bHNyLWJvdW5jZXNAaWV0Zi5vcmc+IE9uIEJlaGFsZiBPZiBZYXJv biBTaGVmZmVyDQo+ID4gU2VudDogTW9uZGF5LCBBdWd1c3QgOSwgMjAyMSA2OjQ0IEFNDQo+ID4g VG86IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQo+ID4gQ2M6 IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5v cmc7IGxhc3QtDQo+ID4gY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQo+ID4gU3ViamVjdDog UmU6IFtMc3JdIFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mDQo+ID4gZHJhZnQtaWV0Zi1sc3It cGNlLWRpc2NvdmVyeS0NCj4gPiBzZWN1cml0eS1zdXBwb3J0LTA1DQo+ID4NCj4gPiBIaSBRaW4s DQo+ID4NCj4gPiBUaGFuayB5b3UgZm9yIHlvdXIgcmVzcG9uc2UuDQo+ID4NCj4gPiAqIFJGQyAz NTY3IChmb3IgSVMtSVMpIGlzIG9ic29sZXRlZCBieSBSRkMgNTMwNC4gVW5mb3J0dW5hdGVseSBS RkMNCj4gPiA1MzA0IHN0aWxsIHVzZXMgSE1BQy1NRDUsIHdoaWNoIHdvdWxkIGJlIGNvbnNpZGVy ZWQgaW5zZWN1cmUgbm93YWRheXMuDQo+ID4gKiBSRkMgMjE1NCBpcyB2ZXJ5IG9sZCBhbmQgRXhw ZXJpbWVudGFsIChhbmQgb25seSBzdXBwb3J0cyBSU0EtTUQ1DQo+ID4gc2lnbmF0dXJlcykuIEkn bSBub3QgYW4gT1NQRiBleHBlcnQgYnkgYW55IG1lYW5zLCBidXQgSSdtIHdpbGxpbmcgdG8NCj4g PiBiZXQgdGhhdCB0aGVyZSBhcmUgbm8gcHJvZHVjdGlvbiBpbXBsZW1lbnRhdGlvbnMgb2YgdGhp cyBSRkMuIChJJ20NCj4gPiB3aWxsaW5nIHRvIGJlIHByb3ZlbiB3cm9uZykuIElzIHRoZXJlIGFu b3RoZXIgUkZDIHRoYXQgZGVmaW5lcyBhDQo+ID4gcHJvdGVjdGlvbiBtZWNoYW5pc20gZm9yIE9T UEY/DQo+ID4NCj4gPiBBbGwgaW4gYWxsLCB0aGVyZSBhcHBlYXIgdG8gYmUgbm8gZ29vZCBvcHRp b25zIGZvciB0aGUgSUdQLg0KPiA+DQo+ID4gVG8geW91ciBsYXN0IHBvaW50LCB3aGVuIEkgbWVu dGlvbmVkIGRlY291cGxpbmcgdGhlIG1lY2hhbmlzbXMsIEkgd2FzDQo+ID4gc3VnZ2VzdGluZyB0 byB1c2UgdGhlIGV4dGVuc2lvbiB5b3UgZGVmaW5lIGV2ZW4gaWYgdGhlIElHUCAqY2Fubm90KiBi ZQ0KPiA+IHNlY3VyZWQuIElmIHlvdSB0aGluayB0aGlzIGlzIHJlYXNvbmFibGUsIHBsZWFzZSBh ZGQgc3VjaCB0ZXh0IHRvIHRoZQ0KPiA+IFNlY3VyaXR5IENvbnNpZGVyYXRpb25zLg0KPiA+DQo+ ID4gVGhhbmtzLA0KPiA+ICAgICAgWWFyb24NCj4gPg0KPiA+IO+7v09uIDgvOS8yMSwgMTY6MDks ICJRaW4gV3UiIDxiaWxsLnd1QGh1YXdlaS5jb20+IHdyb3RlOg0KPiA+DQo+ID4gICAgIFRoYW5r cyBZYXJvbiBmb3IgdmFsdWFibGUgY29tbWVudHMsIHBsZWFzZSBzZWUgbXkgcmVwbHkgaW5saW5l IGJlbG93Lg0KPiA+ICAgICAtLS0tLemCruS7tuWOn+S7ti0tLS0tDQo+ID4gICAgID7lj5Hku7bk uro6IFlhcm9uIFNoZWZmZXIgdmlhIERhdGF0cmFja2VyIFttYWlsdG86bm9yZXBseUBpZXRmLm9y Z10NCj4gPiAgICAgPuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg25pelIDM6MjUNCj4gPiAgICAg PuaUtuS7tuS6ujogc2VjZGlyQGlldGYub3JnDQo+ID4gICAgID7mioTpgIE6IGRyYWZ0LWlldGYt bHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7DQo+ID4gbGFz dC0gY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQo+ID4gICAgID7kuLvpopg6IFNlY2RpciBs YXN0IGNhbGwgcmV2aWV3IG9mDQo+ID4gZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1 cml0eS0NCj4gPiBzdXBwb3J0LTA1DQo+ID4NCj4gPiAgICAgPlJldmlld2VyOiBZYXJvbiBTaGVm ZmVyDQo+ID4gICAgID5SZXZpZXcgcmVzdWx0OiBOb3QgUmVhZHkNCj4gPg0KPiA+ICAgICA+VGhp cyBkb2N1bWVudCBkZWZpbmVzIGEgbWVjaGFuaXNtIChhIFRMVikgdG8gYWR2ZXJ0aXNlIHRoZSBQ Q0UNCj4gPiBQcm90b2NvbCBzZWN1cml0eSByZXF1aXJlZCAodXNlIG9mIFRDUC1BTyBhbmQgaXRz IGtleSBJRCwgb3INCj4gPiBhbHRlcm5hdGl2ZWx5IHVzZSBvZiBUTFMpIHdpdGhpbiB0aGUgcm91 dGluZyBwcm90b2NvbCBiZWluZyB1c2VkLg0KPiA+DQo+ID4gICAgID4qIFNlYy4gMy4xOiBJIGRv bid0IHVuZGVyc3RhbmQgd2h5ICJTSE9VTEQgYWR2ZXJ0aXNlIiBhbmQgbm90IE1VU1QuDQo+ID4g RXNwZWNpYWxseSBnaXZlbiB0aGUgc3RyaWN0IGNsaWVudCBiZWhhdmlvciBkZWZpbmVkIGxhdGVy Lg0KPiA+ICAgICBbUWluXTogSSBiZWxpZXZlICJTSE9VTEQgYWR2ZXJ0aXNlIiBpcyBjb25zaXN0 ZW50IHdpdGggY2xpZW50DQo+ID4gYmVoYXZpb3IgZGVmaW5lZCBsYXRlciwgaS5lLiwgd2UgYXBw bHkgU0hPVUxEIE5PVCBsYW5ndWFnZSB0byB0aGUgY2xpZW50DQo+IGJlaGF2aW9yLg0KPiA+ICAg ICBJIGFtIG5vdCBzdXJlIHdlIHNob3VsZCBjaGFuZ2UgaXQgaW50byBzdHJvbmcgbGFuZ3VhZ2Ug d2l0aCBNVVNULg0KPiA+IFNpbmNlIGlmIElHUCBhZHZlcnRpc2VtZW50IGRvZXNuJ3QgaW5jbHVk ZSBUQ1AtQU8NCj4gPiAgICAgIHN1cHBvcnQgZmxhZyBiaXQgb3IgVExTIHN1cHBvcnQgZmxhZyBi aXQsIE5NUyBtYXkgZmFsbCBiYWNrIHRvDQo+ID4gY29uZmlndXJlIGJvdGggUENDIGFuZCBQQ0Ug c2VydmVyIHRvIHN1cHBvcnQgVENQLUFPIG9yIFRMUy4gVGhhdCdzIG9uZQ0KPiA+IG9mIHJlYXNv biBJIHRoaW5rIHdoeSB3ZSBjaG9vc2UgdG8gdXNlIFNIT1VMRCBsYW5ndWFnZS4NCj4gPg0KPiA+ ICAgICA+KiBTZWMuIDMuMTogc2hvdWxkIHdlIGFsc28gc2F5IHNvbWV0aGluZyBhYm91dCB0aGUg Y2FzZSB3aGVyZQ0KPiA+IGJvdGggbWV0aG9kcyBhcmUgYWR2ZXJ0aXNlZCwgYW5kIHdoZXRoZXIg d2UgcmVjb21tZW5kIGZvciB0aGUgY2xpZW50DQo+ID4gdG8gdXNlIG9uZSBvZiB0aGVtIG92ZXIg dGhlIG90aGVyPw0KPiA+DQo+ID4gICAgIFtRaW5dOiBJdCBpcyB1cCB0byBsb2NhbCBwb2xpY3ks IHdoaWNoIGhhcyBiZWUgY2xhcmlmaWVkIGluIHRoZQ0KPiA+IGVuZCBvZiBzZWN0aW9uIDMuMS4g SG9wZSB0aGlzIGNsYXJpZnkuDQo+ID4NCj4gPiAgICAgPiogU2VjLiA0OiB0eXBvIChhcHBlYXJz IHR3aWNlKSAtICJ0byBiZSBjYXJyaWVkIGluIHRoZSBQQ0VEIFRMVg0KPiA+IG9mIHRoZSBmb3Ig dXNlIi4NCj4gPg0KPiA+ICAgICBbUWluXTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBpbiB0aGUg bG9jYWwgY29weS4NCj4gPg0KPiA+ICAgICA+KiBTZWMuIDc6IHRoaXMgcGhyYXNlIGFwcGVhcnMg dG8gYmUgZXNzZW50aWFsIHRvIHNlY3VyaXR5IG9mIHRoaXMNCj4gbWVjaGFuaXNtOg0KPiA+ICJp dCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzIHByb3RlY3RlZCBmb3IgYXV0aGVudGlj YXRpb24gYW5kDQo+ID4gaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViIuIEkgd291bGQgZXhwZWN0 IG1vcmUgZ3VpZGFuY2U6IGhvdyBjYW4gdGhpcw0KPiA+IHByb3BlcnR5IGJlIGVuc3VyZWQgaW4g dGhlIHJlbGV2YW50IElHUHM/DQo+ID4gICAgIFtRaW5dOkkgdGhpbmsgbWVjaGFuaXNtIGRlZmlu ZWQgaW4gW1JGQzM1NjddIGFuZCBbUkZDMjE1NF0gY2FuIGJlDQo+ID4gdXNlZCB0byBlbnN1cmUg YXV0aGVudGljaXR5IGFuZCBpbnRlZ3JpdHkgb2YgT1NQRiBMU0FzIG9yIElTSVMgTFNQcyBhbmQg dGhlaXINCj4gVExWcy4NCj4gPiBIZXJlIGlzIHRoZSBwcm9wb3NlZCBjaGFuZ2VzOg0KPiA+ICAg ICBPTEQgVEVYVDoNCj4gPiAgICAgIg0KPiA+ICAgICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2Vt ZW50IG9mDQo+ID4gICAgICAgIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBi ZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcw0KPiA+ICAgICAgICBwcm90ZWN0ZWQgZm9yIGF1dGhl bnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWIGlmIHRoZQ0KPiA+ICAgICAg ICBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCj4gPiAgICAg Ig0KPiA+ICAgICBORVcgVEVYVDoNCj4gPiAgICAgIg0KPiA+ICAgICAgICBUaHVzIGJlZm9yZSBh ZHZlcnRpc2VtZW50IG9mDQo+ID4gICAgICAgIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywg aXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcw0KPiA+ICAgICAgICBwcm90ZWN0ZWQg Zm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWIHdpdGgNCj4g PiBtZWNoYW5pc21zIGRlZmluZWQgaW4gW1JGQzM1NjddW1JGQzIxNTRdIGlmIHRoZQ0KPiA+ICAg ICAgICBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCj4gPiAg ICAgIg0KPiA+ICAgICA+KiBBbHNvLCBhIHBvc3NpYmx5IHVuaW50ZW5kZWQgY29uc2VxdWVuY2Ug b2YgdGhpcyByZXF1aXJlbWVudCBpcw0KPiA+IHRoYXQgaWYgdGhlIElHUCBjYW5ub3QgYmUgcHJv dGVjdGVkIGluIGEgcGFydGljdWxhcg0KPiA+IGRlcGxveW1lbnQvcHJvZHVjdCwgdGhpcyBtZWNo YW5pc20gd291bGQgbm90IGJlIHVzZWQuIFBsZWFzZSBjb25zaWRlcg0KPiA+IGlmIHRoaXMgaXMg bGlrZWx5IHRvIGhhcHBlbiBhbmQgd2hldGhlciB3ZSB3YW50IHRvIGZvcmVnbyBQQ0VQDQo+ID4g dHJhbnNwb3J0ID5zZWN1cml0eSBpbiBzdWNoIGNhc2VzLiBNeSBndXQgZmVlbCAobm90IGJhc2Vk IG9uDQo+ID4gZXhwZXJpZW5jZSBpbiBzdWNoIG5ldHdvcmtzKSBpcyB0aGF0IHRoZSB0aHJlYXQg bW9kZWxzIGFyZSBkaWZmZXJlbnQNCj4gPiBlbm91Z2ggdGhhdCB3ZSBzaG91bGQgZGVjb3VwbGUg dGhlIHNlY3VyaXR5IG9mIElHUCBmcm9tIHRoYXQgb2YgUENFUC4NCj4gPg0KPiA+ICAgICBbUWlu XSBJIGFncmVlIElHUCBzZWN1cml0eSBzaG91bGQgYmUgc2VwYXJhdGVkIGZyb20gUENFUCBzZWN1 cml0eS4NCj4gPiBJR1AgZXh0ZW5zaW9uIGRlZmluZWQgaW4gdGhpcyBkb2N1bWVudCBpcyB1c2Vk IGJ5IHRoZSBQQ0MgdG8gc2VsZWN0DQo+ID4gUENFIHNlcnZlciB3aXRoIGFwcHJvcHJpYXRlIHNl Y3VyaXR5IG1lY2hhbmlzbS4gT24gdGhlIG90aGVyIGhhbmQsDQo+ID4gT3BlcmF0b3IgY2FuIGVp dGhlciB1c2UgSUdQIGFkdmVydGlzZW1lbnQgZm9yIFBDRVAgc2VjdXJpdHkgY2FwYWJpbGl0eQ0K PiA+IG9yIHJlbHkgb24gbG9jYWwgcG9saWN5IHRvIHNlbGVjdCBQQ0UuIElmIG9wZXJhdG9yIGZl ZWxzIElHUA0KPiA+IGFkdmVydGlzZW1lbnQgaXMgbm90IHNlY3VyZSwgaGUgY2FuIGZhbGwgYmFj ayB0byBsb2NhbCBwb2xpY3kgb3IgcmVseSBvbg0KPiBtYW51YWwgY29uZmlndXJhdGlvbi4gSG9w ZSB0aGlzIGNsYXJpZmllcy4NCj4gPg0KPiA+DQo+ID4NCj4gPiBfX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fXw0KPiA+IExzciBtYWlsaW5nIGxpc3QNCj4gPiBM c3JAaWV0Zi5vcmcNCj4gPiBodHRwczovL3d3dy5pZXRmLm9yZy9tYWlsbWFuL2xpc3RpbmZvL2xz cg0K --_000_57788eb262f54b379725c683d177b8e7huaweicom_ Content-Type: text/html; charset="utf-8" Content-Transfer-Encoding: base64 PGh0bWw+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIgY29udGVudD0i dGV4dC9odG1sOyBjaGFyc2V0PXV0Zi04Ij4NCjxtZXRhIG5hbWU9IkdlbmVyYXRvciIgY29udGVu dD0iTWljcm9zb2Z0IEV4Y2hhbmdlIFNlcnZlciI+DQo8IS0tIGNvbnZlcnRlZCBmcm9tIHRleHQg LS0+PHN0eWxlPjwhLS0gLkVtYWlsUXVvdGUgeyBtYXJnaW4tbGVmdDogMXB0OyBwYWRkaW5nLWxl ZnQ6IDRwdDsgYm9yZGVyLWxlZnQ6ICM4MDAwMDAgMnB4IHNvbGlkOyB9IC0tPjwvc3R5bGU+DQo8 L2hlYWQ+DQo8Ym9keT4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJmb250LWZhbWlseTpDYWxpYnJpLEhl bHZldGljYSFpbXBvcnRhbnQ7IGZvbnQtc2l6ZToxNy4wcHg7IGNvbG9yOiMzMzMzMzMiPg0KPHNw YW4gc3R5bGU9ImNvbG9yOiMzMzMzMzM7IGZvbnQtc2l6ZToxNy4wcHgiPkFncmVlLCZuYnNwO3Ro YW5rcyZuYnNwO0xlcyZuYnNwO2ZvciZuYnNwO2FkZGl0aW9uYWwmbmJzcDtzdWdnZXN0aW9ucy48 L3NwYW4+PGJyPg0KPC9kaXY+DQo8ZGl2IG5hbWU9InhfQW55T2ZmaWNlLUJhY2tncm91bmQtSW1h Z2UiIHN0eWxlPSJib3JkZXItdG9wOjFweCBzb2xpZCAjQjVDNERGOyBwYWRkaW5nOjhweCI+DQo8 ZGl2PjxiPuWPkeS7tuS6uu+8miA8L2I+TGVzIEdpbnNiZXJnIChnaW5zYmVyZykmbHQ7PGEgaHJl Zj0ibWFpbHRvOmdpbnNiZXJnQGNpc2NvLmNvbSI+Z2luc2JlcmdAY2lzY28uY29tPC9hPiZndDs8 L2Rpdj4NCjxkaXY+PGI+5pS25Lu25Lq677yaIDwvYj5RaW4gV3UmbHQ7PGEgaHJlZj0ibWFpbHRv OmJpbGwud3VAaHVhd2VpLmNvbSI+YmlsbC53dUBodWF3ZWkuY29tPC9hPiZndDs7WWFyb24gU2hl ZmZlciZsdDs8YSBocmVmPSJtYWlsdG86eWFyb25mLmlldGZAZ21haWwuY29tIj55YXJvbmYuaWV0 ZkBnbWFpbC5jb208L2E+Jmd0OztzZWNkaXImbHQ7PGEgaHJlZj0ibWFpbHRvOnNlY2RpckBpZXRm Lm9yZyI+c2VjZGlyQGlldGYub3JnPC9hPiZndDs8L2Rpdj4NCjxkaXY+PGI+5oqE6YCB77yaIDwv Yj5kcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsJmx0Ozxh IGhyZWY9Im1haWx0bzpkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBv cnQuYWxsQGlldGYub3JnIj5kcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1 cHBvcnQuYWxsQGlldGYub3JnPC9hPiZndDs7bGFzdC1jYWxsJmx0OzxhIGhyZWY9Im1haWx0bzps YXN0LWNhbGxAaWV0Zi5vcmciPmxhc3QtY2FsbEBpZXRmLm9yZzwvYT4mZ3Q7O2xzciZsdDs8YSBo cmVmPSJtYWlsdG86bHNyQGlldGYub3JnIj5sc3JAaWV0Zi5vcmc8L2E+Jmd0OzwvZGl2Pg0KPGRp dj48Yj7kuLvpopjvvJogPC9iPlJFOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1p ZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDU8L2Rpdj4NCjxkaXY+PGI+ 5pe26Ze077yaIDwvYj4yMDIxLTA4LTEwIDIyOjQ3OjA1PC9kaXY+DQo8YnI+DQo8L2Rpdj4NCjwv ZGl2Pg0KPGZvbnQgc2l6ZT0iMiI+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZToxMHB0OyI+DQo8ZGl2 IGNsYXNzPSJQbGFpblRleHQiPlFpbiAtPGJyPg0KPGJyPg0KSnVzdCB0byBub3RlIHRoYXQgUkZD IDUzMTAgZG9lcyBOT1QgcmVwbGFjZSBvciBvYnNvbGV0ZSBSRkMgNTMwNC4gQm90aCBSRkMgJ3Mg aGF2ZSB0aGVpciB1c2VzLjxicj4NClBsZWFzZSBiZSBzdXJlIHRvIHJlZmVyZW5jZSBib3RoIFJG Q3MgaW4geW91ciB1cGRhdGVkIHRleHQuPGJyPg0KPGJyPg0KVGhhbnguPGJyPg0KPGJyPg0KJm5i c3A7Jm5ic3A7IExlczxicj4NCjxicj4NCjxicj4NCiZndDsgLS0tLS1PcmlnaW5hbCBNZXNzYWdl LS0tLS08YnI+DQomZ3Q7IEZyb206IFFpbiBXdSAmbHQ7YmlsbC53dUBodWF3ZWkuY29tJmd0Ozxi cj4NCiZndDsgU2VudDogTW9uZGF5LCBBdWd1c3QgOSwgMjAyMSA2OjEzIFBNPGJyPg0KJmd0OyBU bzogTGVzIEdpbnNiZXJnIChnaW5zYmVyZykgJmx0O2dpbnNiZXJnQGNpc2NvLmNvbSZndDs7IFlh cm9uIFNoZWZmZXI8YnI+DQomZ3Q7ICZsdDt5YXJvbmYuaWV0ZkBnbWFpbC5jb20mZ3Q7OyBzZWNk aXJAaWV0Zi5vcmc8YnI+DQomZ3Q7IENjOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNl Y3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3JnOyBsYXN0LTxicj4NCiZndDsgY2FsbEBpZXRmLm9y ZzsgbHNyQGlldGYub3JnPGJyPg0KJmd0OyBTdWJqZWN0OiBSRTogU2VjZGlyIGxhc3QgY2FsbCBy ZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS08YnI+DQomZ3Q7 IHN1cHBvcnQtMDU8YnI+DQomZ3Q7IDxicj4NCiZndDsgVGhhbmtzIExlcyBmb3IgdGhlIHBvaW50 ZXIsIEkgd2FzIGxvb2tpbmcgaW50byBSRkM2ODYzIGluIEtBUlAgV0cgYW5kIGZvdW5kPGJyPg0K Jmd0OyBSRkM1NzA5IGZvciBPU1BGIHNlY3VyaXR5IGFzIHdlbGwuPGJyPg0KJmd0OyBZZXMsIEkg YWdyZWUgdG8gdXNlIFJGQzUzMTAgdG8gcmVwbGFjZSBSRkM1MzA0IGZvciBJUy1JUyBzZWN1cml0 eS48YnI+DQomZ3Q7IDxicj4NCiZndDsgUmVnYXJkaW5nIHRoZSBkZWJhdGUgYWJvdXQgTVVTVCB2 cyBTSE9VTEQsIHRoYW5rcyBmb3IgY2xhcmlmaWNhdGlvbi4geWVzLDxicj4NCiZndDsgd2hldGhl ciB0byBjaG9vc2UgSUdQIGFkdmVydGlzZW1lbnQgaXMgaW1wbGVtZW50YXRpb24gc3BlY2lmaWMu IE9wZXJhdG9yPGJyPg0KJmd0OyB3aWxsIG1ha2UgdGhlaXIgY2hvaWNlLjxicj4NCiZndDsgU28g SSB0aGluayBJIHRlbmQgdG8gYWdyZWUgdG8gdXNlIFNIT1VMRCBmb3IgY2xpZW50IGJlaGF2aW9y LiBUaGFua3MuPGJyPg0KJmd0OyA8YnI+DQomZ3Q7IC1RaW48YnI+DQomZ3Q7IC0tLS0t6YKu5Lu2 5Y6f5Lu2LS0tLS08YnI+DQomZ3Q7IOWPkeS7tuS6ujogTGVzIEdpbnNiZXJnIChnaW5zYmVyZykg WzxhIGhyZWY9Im1haWx0bzpnaW5zYmVyZ0BjaXNjby5jb20iPm1haWx0bzpnaW5zYmVyZ0BjaXNj by5jb208L2E+XTxicj4NCiZndDsg5Y+R6YCB5pe26Ze0OiAyMDIx5bm0OOaciDnml6UgMjM6MzY8 YnI+DQomZ3Q7IOaUtuS7tuS6ujogWWFyb24gU2hlZmZlciAmbHQ7eWFyb25mLmlldGZAZ21haWwu Y29tJmd0OzsgUWluIFd1PGJyPg0KJmd0OyAmbHQ7YmlsbC53dUBodWF3ZWkuY29tJmd0Ozsgc2Vj ZGlyQGlldGYub3JnPGJyPg0KJmd0OyDmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zl cnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtPGJyPg0KJmd0OyBjYWxsQGll dGYub3JnOyBsc3JAaWV0Zi5vcmc8YnI+DQomZ3Q7IOS4u+mimDogUkU6IFNlY2RpciBsYXN0IGNh bGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktPGJyPg0K Jmd0OyBzdXBwb3J0LTA1PGJyPg0KJmd0OyA8YnI+DQomZ3Q7IFlhcm9uL1FpbiAtPGJyPg0KJmd0 OyA8YnI+DQomZ3Q7IEZvciBJUy1JUyBzZWN1cml0eSBwbGVhc2UgYWxzbyBzZWUgUkZDIDUzMTAu PGJyPg0KJmd0OyBGb3IgT1NQRiBzZWN1cml0eSBwbGVhc2Ugc2VlIFJGQyA1NzA5Ljxicj4NCiZn dDsgPGJyPg0KJmd0OyBSZWdhcmRpbmcgdGhlIGRlYmF0ZSBhYm91dCBNVVNUIHZzIFNIT1VMRCwg YXMgSSBzZWUgaXQgYWR2ZXJ0aXNlbWVudCBvZjxicj4NCiZndDsgdGhpcyBpbmZvcm1hdGlvbiBp cyBhbiBvcHRpb24uIFRoZSBJR1AgbWlnaHQgbm90IGhhdmUgYWNjZXNzIHRvIHRoaXM8YnI+DQom Z3Q7IGluZm9ybWF0aW9uIGluIGEgZ2l2ZW4gaW1wbGVtZW50YXRpb24vZGVwbG95bWVudCAtIGFu ZCBJIGNhbiBlYXNpbHkgaW1hZ2luZTxicj4NCiZndDsgdGhhdCBzb21lIGN1c3RvbWVycyBtaWdo dCBwcmVmZXIgTk9UIHRvIGFkdmVydGlzZSB0aGlzIGluZm9ybWF0aW9uIGluIGFuPGJyPg0KJmd0 OyBJR1AgZXZlbiBpZiBpdCB3ZXJlIGF2YWlsYWJsZS48YnI+DQomZ3Q7IDxicj4NCiZndDsgSXQg aXMgdXNlZnVsIHRvIGNoZWNrIHRoZSB3b3JkaW5nIHVzZWQgaW4gPGEgaHJlZj0iaHR0cHM6Ly93 d3cucmZjLSI+aHR0cHM6Ly93d3cucmZjLTwvYT48YnI+DQomZ3Q7IGVkaXRvci5vcmcvcmZjL3Jm YzUwODkuaHRtbCNzZWN0aW9uLTQgLiBUaGVyZSwgdGhvc2Ugc3ViLVRMVnMgd2hpY2ggYXJlPGJy Pg0KJmd0OyBuZWNlc3NhcnkgZm9yIHRoZSBQQ0VEIHN1Yi1UTFYgdG8gYmUgdXNlZnVsIGF0IGFs bCBhcmUgcmVxdWlyZWQgLSBidXQgb3RoZXI8YnI+DQomZ3Q7IHN1Yi1UTFZzIGFyZSBvcHRpb25h bC4gSSB0aGluayB0aGVzZSBuZXcgc3ViLVRMVnMgZmFsbCBpbnRvIHRoZSBsYXR0ZXIgY2F0ZWdv cnkuPGJyPg0KJmd0OyA8YnI+DQomZ3Q7Jm5ic3A7Jm5ic3A7Jm5ic3A7IExlczxicj4NCiZndDsg PGJyPg0KJmd0OyAmZ3Q7IC0tLS0tT3JpZ2luYWwgTWVzc2FnZS0tLS0tPGJyPg0KJmd0OyAmZ3Q7 IEZyb206IExzciAmbHQ7bHNyLWJvdW5jZXNAaWV0Zi5vcmcmZ3Q7IE9uIEJlaGFsZiBPZiBZYXJv biBTaGVmZmVyPGJyPg0KJmd0OyAmZ3Q7IFNlbnQ6IE1vbmRheSwgQXVndXN0IDksIDIwMjEgNjo0 NCBBTTxicj4NCiZndDsgJmd0OyBUbzogUWluIFd1ICZsdDtiaWxsLnd1QGh1YXdlaS5jb20mZ3Q7 OyBzZWNkaXJAaWV0Zi5vcmc8YnI+DQomZ3Q7ICZndDsgQ2M6IGRyYWZ0LWlldGYtbHNyLXBjZS1k aXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtPGJyPg0KJmd0OyAm Z3Q7IGNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZzxicj4NCiZndDsgJmd0OyBTdWJqZWN0OiBS ZTogW0xzcl0gU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2Y8YnI+DQomZ3Q7ICZndDsgZHJhZnQt aWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS08YnI+DQomZ3Q7ICZndDsgc2VjdXJpdHktc3VwcG9ydC0w NTxicj4NCiZndDsgJmd0Ozxicj4NCiZndDsgJmd0OyBIaSBRaW4sPGJyPg0KJmd0OyAmZ3Q7PGJy Pg0KJmd0OyAmZ3Q7IFRoYW5rIHlvdSBmb3IgeW91ciByZXNwb25zZS48YnI+DQomZ3Q7ICZndDs8 YnI+DQomZ3Q7ICZndDsgKiBSRkMgMzU2NyAoZm9yIElTLUlTKSBpcyBvYnNvbGV0ZWQgYnkgUkZD IDUzMDQuIFVuZm9ydHVuYXRlbHkgUkZDPGJyPg0KJmd0OyAmZ3Q7IDUzMDQgc3RpbGwgdXNlcyBI TUFDLU1ENSwgd2hpY2ggd291bGQgYmUgY29uc2lkZXJlZCBpbnNlY3VyZSBub3dhZGF5cy48YnI+ DQomZ3Q7ICZndDsgKiBSRkMgMjE1NCBpcyB2ZXJ5IG9sZCBhbmQgRXhwZXJpbWVudGFsIChhbmQg b25seSBzdXBwb3J0cyBSU0EtTUQ1PGJyPg0KJmd0OyAmZ3Q7IHNpZ25hdHVyZXMpLiBJJ20gbm90 IGFuIE9TUEYgZXhwZXJ0IGJ5IGFueSBtZWFucywgYnV0IEknbSB3aWxsaW5nIHRvPGJyPg0KJmd0 OyAmZ3Q7IGJldCB0aGF0IHRoZXJlIGFyZSBubyBwcm9kdWN0aW9uIGltcGxlbWVudGF0aW9ucyBv ZiB0aGlzIFJGQy4gKEknbTxicj4NCiZndDsgJmd0OyB3aWxsaW5nIHRvIGJlIHByb3ZlbiB3cm9u ZykuIElzIHRoZXJlIGFub3RoZXIgUkZDIHRoYXQgZGVmaW5lcyBhPGJyPg0KJmd0OyAmZ3Q7IHBy b3RlY3Rpb24gbWVjaGFuaXNtIGZvciBPU1BGPzxicj4NCiZndDsgJmd0Ozxicj4NCiZndDsgJmd0 OyBBbGwgaW4gYWxsLCB0aGVyZSBhcHBlYXIgdG8gYmUgbm8gZ29vZCBvcHRpb25zIGZvciB0aGUg SUdQLjxicj4NCiZndDsgJmd0Ozxicj4NCiZndDsgJmd0OyBUbyB5b3VyIGxhc3QgcG9pbnQsIHdo ZW4gSSBtZW50aW9uZWQgZGVjb3VwbGluZyB0aGUgbWVjaGFuaXNtcywgSSB3YXM8YnI+DQomZ3Q7 ICZndDsgc3VnZ2VzdGluZyB0byB1c2UgdGhlIGV4dGVuc2lvbiB5b3UgZGVmaW5lIGV2ZW4gaWYg dGhlIElHUCAqY2Fubm90KiBiZTxicj4NCiZndDsgJmd0OyBzZWN1cmVkLiBJZiB5b3UgdGhpbmsg dGhpcyBpcyByZWFzb25hYmxlLCBwbGVhc2UgYWRkIHN1Y2ggdGV4dCB0byB0aGU8YnI+DQomZ3Q7 ICZndDsgU2VjdXJpdHkgQ29uc2lkZXJhdGlvbnMuPGJyPg0KJmd0OyAmZ3Q7PGJyPg0KJmd0OyAm Z3Q7IFRoYW5rcyw8YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsg WWFyb248YnI+DQomZ3Q7ICZndDs8YnI+DQomZ3Q7ICZndDsg77u/T24gOC85LzIxLCAxNjowOSwg JnF1b3Q7UWluIFd1JnF1b3Q7ICZsdDtiaWxsLnd1QGh1YXdlaS5jb20mZ3Q7IHdyb3RlOjxicj4N CiZndDsgJmd0Ozxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyBUaGFua3Mg WWFyb24gZm9yIHZhbHVhYmxlIGNvbW1lbnRzLCBwbGVhc2Ugc2VlIG15IHJlcGx5IGlubGluZSBi ZWxvdy48YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgLS0tLS3pgq7ku7bl jp/ku7YtLS0tLTxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyAmZ3Q75Y+R 5Lu25Lq6OiBZYXJvbiBTaGVmZmVyIHZpYSBEYXRhdHJhY2tlciBbPGEgaHJlZj0ibWFpbHRvOm5v cmVwbHlAaWV0Zi5vcmciPm1haWx0bzpub3JlcGx5QGlldGYub3JnPC9hPl08YnI+DQomZ3Q7ICZn dDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgJmd0O+WPkemAgeaXtumXtDogMjAyMeW5tDjmnIg2 5pelIDM6MjU8YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgJmd0O+aUtuS7 tuS6ujogc2VjZGlyQGlldGYub3JnPGJyPg0KJmd0OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7ICZndDvmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3Vw cG9ydC5hbGxAaWV0Zi5vcmc7PGJyPg0KJmd0OyAmZ3Q7IGxhc3QtIGNhbGxAaWV0Zi5vcmc7IGxz ckBpZXRmLm9yZzxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyAmZ3Q75Li7 6aKYOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZjxicj4NCiZndDsgJmd0OyBkcmFmdC1pZXRm LWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LTxicj4NCiZndDsgJmd0OyBzdXBwb3J0LTA1PGJy Pg0KJmd0OyAmZ3Q7PGJyPg0KJmd0OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7ICZndDtS ZXZpZXdlcjogWWFyb24gU2hlZmZlcjxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyAmZ3Q7UmV2aWV3IHJlc3VsdDogTm90IFJlYWR5PGJyPg0KJmd0OyAmZ3Q7PGJyPg0KJmd0 OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7ICZndDtUaGlzIGRvY3VtZW50IGRlZmluZXMg YSBtZWNoYW5pc20gKGEgVExWKSB0byBhZHZlcnRpc2UgdGhlIFBDRTxicj4NCiZndDsgJmd0OyBQ cm90b2NvbCBzZWN1cml0eSByZXF1aXJlZCAodXNlIG9mIFRDUC1BTyBhbmQgaXRzIGtleSBJRCwg b3I8YnI+DQomZ3Q7ICZndDsgYWx0ZXJuYXRpdmVseSB1c2Ugb2YgVExTKSB3aXRoaW4gdGhlIHJv dXRpbmcgcHJvdG9jb2wgYmVpbmcgdXNlZC48YnI+DQomZ3Q7ICZndDs8YnI+DQomZ3Q7ICZndDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgJmd0OyogU2VjLiAzLjE6IEkgZG9uJ3QgdW5kZXJzdGFu ZCB3aHkgJnF1b3Q7U0hPVUxEIGFkdmVydGlzZSZxdW90OyBhbmQgbm90IE1VU1QuPGJyPg0KJmd0 OyAmZ3Q7IEVzcGVjaWFsbHkgZ2l2ZW4gdGhlIHN0cmljdCBjbGllbnQgYmVoYXZpb3IgZGVmaW5l ZCBsYXRlci48YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgW1Fpbl06IEkg YmVsaWV2ZSAmcXVvdDtTSE9VTEQgYWR2ZXJ0aXNlJnF1b3Q7IGlzIGNvbnNpc3RlbnQgd2l0aCBj bGllbnQ8YnI+DQomZ3Q7ICZndDsgYmVoYXZpb3IgZGVmaW5lZCBsYXRlciwgaS5lLiwgd2UgYXBw bHkgU0hPVUxEIE5PVCBsYW5ndWFnZSB0byB0aGUgY2xpZW50PGJyPg0KJmd0OyBiZWhhdmlvci48 YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgSSBhbSBub3Qgc3VyZSB3ZSBz aG91bGQgY2hhbmdlIGl0IGludG8gc3Ryb25nIGxhbmd1YWdlIHdpdGggTVVTVC48YnI+DQomZ3Q7 ICZndDsgU2luY2UgaWYgSUdQIGFkdmVydGlzZW1lbnQgZG9lc24ndCBpbmNsdWRlIFRDUC1BTzxi cj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyBzdXBwb3J0IGZsYWcg Yml0IG9yIFRMUyBzdXBwb3J0IGZsYWcgYml0LCBOTVMgbWF5IGZhbGwgYmFjayB0bzxicj4NCiZn dDsgJmd0OyBjb25maWd1cmUgYm90aCBQQ0MgYW5kIFBDRSBzZXJ2ZXIgdG8gc3VwcG9ydCBUQ1At QU8gb3IgVExTLiBUaGF0J3Mgb25lPGJyPg0KJmd0OyAmZ3Q7IG9mIHJlYXNvbiBJIHRoaW5rIHdo eSB3ZSBjaG9vc2UgdG8gdXNlIFNIT1VMRCBsYW5ndWFnZS48YnI+DQomZ3Q7ICZndDs8YnI+DQom Z3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgJmd0OyogU2VjLiAzLjE6IHNob3VsZCB3 ZSBhbHNvIHNheSBzb21ldGhpbmcgYWJvdXQgdGhlIGNhc2Ugd2hlcmU8YnI+DQomZ3Q7ICZndDsg Ym90aCBtZXRob2RzIGFyZSBhZHZlcnRpc2VkLCBhbmQgd2hldGhlciB3ZSByZWNvbW1lbmQgZm9y IHRoZSBjbGllbnQ8YnI+DQomZ3Q7ICZndDsgdG8gdXNlIG9uZSBvZiB0aGVtIG92ZXIgdGhlIG90 aGVyPzxicj4NCiZndDsgJmd0Ozxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNw OyBbUWluXTogSXQgaXMgdXAgdG8gbG9jYWwgcG9saWN5LCB3aGljaCBoYXMgYmVlIGNsYXJpZmll ZCBpbiB0aGU8YnI+DQomZ3Q7ICZndDsgZW5kIG9mIHNlY3Rpb24gMy4xLiBIb3BlIHRoaXMgY2xh cmlmeS48YnI+DQomZ3Q7ICZndDs8YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJz cDsgJmd0OyogU2VjLiA0OiB0eXBvIChhcHBlYXJzIHR3aWNlKSAtICZxdW90O3RvIGJlIGNhcnJp ZWQgaW4gdGhlIFBDRUQgVExWPGJyPg0KJmd0OyAmZ3Q7IG9mIHRoZSBmb3IgdXNlJnF1b3Q7Ljxi cj4NCiZndDsgJmd0Ozxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyBbUWlu XTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBpbiB0aGUgbG9jYWwgY29weS48YnI+DQomZ3Q7ICZn dDs8YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgJmd0OyogU2VjLiA3OiB0 aGlzIHBocmFzZSBhcHBlYXJzIHRvIGJlIGVzc2VudGlhbCB0byBzZWN1cml0eSBvZiB0aGlzPGJy Pg0KJmd0OyBtZWNoYW5pc206PGJyPg0KJmd0OyAmZ3Q7ICZxdW90O2l0IE1VU1QgYmUgaW5zdXJl ZCB0aGF0IHRoZSBJR1AgaXMgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQ8YnI+DQom Z3Q7ICZndDsgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViZxdW90Oy4gSSB3b3VsZCBleHBlY3Qg bW9yZSBndWlkYW5jZTogaG93IGNhbiB0aGlzPGJyPg0KJmd0OyAmZ3Q7IHByb3BlcnR5IGJlIGVu c3VyZWQgaW4gdGhlIHJlbGV2YW50IElHUHM/PGJyPg0KJmd0OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7IFtRaW5dOkkgdGhpbmsgbWVjaGFuaXNtIGRlZmluZWQgaW4gW1JGQzM1NjddIGFu ZCBbUkZDMjE1NF0gY2FuIGJlPGJyPg0KJmd0OyAmZ3Q7IHVzZWQgdG8gZW5zdXJlIGF1dGhlbnRp Y2l0eSBhbmQgaW50ZWdyaXR5IG9mIE9TUEYgTFNBcyBvciBJU0lTIExTUHMgYW5kIHRoZWlyPGJy Pg0KJmd0OyBUTFZzLjxicj4NCiZndDsgJmd0OyBIZXJlIGlzIHRoZSBwcm9wb3NlZCBjaGFuZ2Vz Ojxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyBPTEQgVEVYVDo8YnI+DQom Z3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgJnF1b3Q7PGJyPg0KJmd0OyAmZ3Q7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7IFRodXMgYmVmb3JlIGFkdmVy dGlzZW1lbnQgb2Y8YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsm bmJzcDsmbmJzcDsgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3Vy ZWQgdGhhdCB0aGUgSUdQIGlzPGJyPg0KJmd0OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7Jm5ic3A7Jm5ic3A7IHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVn cml0eSBvZiB0aGUgUENFRCBUTFYgaWYgdGhlPGJyPg0KJmd0OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7IG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBk b2N1bWVudCBpcyB1c2VkLjxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyAm cXVvdDs8YnI+DQomZ3Q7ICZndDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgTkVXIFRFWFQ6PGJy Pg0KJmd0OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7ICZxdW90Ozxicj4NCiZndDsgJmd0 OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyBUaHVzIGJlZm9yZSBh ZHZlcnRpc2VtZW50IG9mPGJyPg0KJmd0OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5ic3A7Jm5i c3A7Jm5ic3A7Jm5ic3A7IHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBp bnN1cmVkIHRoYXQgdGhlIElHUCBpczxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZu YnNwOyZuYnNwOyZuYnNwOyZuYnNwOyBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBp bnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWIHdpdGg8YnI+DQomZ3Q7ICZndDsgbWVjaGFuaXNtcyBk ZWZpbmVkIGluIFtSRkMzNTY3XVtSRkMyMTU0XSBpZiB0aGU8YnI+DQomZ3Q7ICZndDsmbmJzcDsm bmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgbWVjaGFuaXNtIGRlc2NyaWJlZCBp biB0aGlzIGRvY3VtZW50IGlzIHVzZWQuPGJyPg0KJmd0OyAmZ3Q7Jm5ic3A7Jm5ic3A7Jm5ic3A7 Jm5ic3A7ICZxdW90Ozxicj4NCiZndDsgJmd0OyZuYnNwOyZuYnNwOyZuYnNwOyZuYnNwOyAmZ3Q7 KiBBbHNvLCBhIHBvc3NpYmx5IHVuaW50ZW5kZWQgY29uc2VxdWVuY2Ugb2YgdGhpcyByZXF1aXJl bWVudCBpczxicj4NCiZndDsgJmd0OyB0aGF0IGlmIHRoZSBJR1AgY2Fubm90IGJlIHByb3RlY3Rl ZCBpbiBhIHBhcnRpY3VsYXI8YnI+DQomZ3Q7ICZndDsgZGVwbG95bWVudC9wcm9kdWN0LCB0aGlz IG1lY2hhbmlzbSB3b3VsZCBub3QgYmUgdXNlZC4gUGxlYXNlIGNvbnNpZGVyPGJyPg0KJmd0OyAm Z3Q7IGlmIHRoaXMgaXMgbGlrZWx5IHRvIGhhcHBlbiBhbmQgd2hldGhlciB3ZSB3YW50IHRvIGZv cmVnbyBQQ0VQPGJyPg0KJmd0OyAmZ3Q7IHRyYW5zcG9ydCAmZ3Q7c2VjdXJpdHkgaW4gc3VjaCBj YXNlcy4gTXkgZ3V0IGZlZWwgKG5vdCBiYXNlZCBvbjxicj4NCiZndDsgJmd0OyBleHBlcmllbmNl IGluIHN1Y2ggbmV0d29ya3MpIGlzIHRoYXQgdGhlIHRocmVhdCBtb2RlbHMgYXJlIGRpZmZlcmVu dDxicj4NCiZndDsgJmd0OyBlbm91Z2ggdGhhdCB3ZSBzaG91bGQgZGVjb3VwbGUgdGhlIHNlY3Vy aXR5IG9mIElHUCBmcm9tIHRoYXQgb2YgUENFUC48YnI+DQomZ3Q7ICZndDs8YnI+DQomZ3Q7ICZn dDsmbmJzcDsmbmJzcDsmbmJzcDsmbmJzcDsgW1Fpbl0gSSBhZ3JlZSBJR1Agc2VjdXJpdHkgc2hv dWxkIGJlIHNlcGFyYXRlZCBmcm9tIFBDRVAgc2VjdXJpdHkuPGJyPg0KJmd0OyAmZ3Q7IElHUCBl eHRlbnNpb24gZGVmaW5lZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBz ZWxlY3Q8YnI+DQomZ3Q7ICZndDsgUENFIHNlcnZlciB3aXRoIGFwcHJvcHJpYXRlIHNlY3VyaXR5 IG1lY2hhbmlzbS4gT24gdGhlIG90aGVyIGhhbmQsPGJyPg0KJmd0OyAmZ3Q7IE9wZXJhdG9yIGNh biBlaXRoZXIgdXNlIElHUCBhZHZlcnRpc2VtZW50IGZvciBQQ0VQIHNlY3VyaXR5IGNhcGFiaWxp dHk8YnI+DQomZ3Q7ICZndDsgb3IgcmVseSBvbiBsb2NhbCBwb2xpY3kgdG8gc2VsZWN0IFBDRS4g SWYgb3BlcmF0b3IgZmVlbHMgSUdQPGJyPg0KJmd0OyAmZ3Q7IGFkdmVydGlzZW1lbnQgaXMgbm90 IHNlY3VyZSwgaGUgY2FuIGZhbGwgYmFjayB0byBsb2NhbCBwb2xpY3kgb3IgcmVseSBvbjxicj4N CiZndDsgbWFudWFsIGNvbmZpZ3VyYXRpb24uIEhvcGUgdGhpcyBjbGFyaWZpZXMuPGJyPg0KJmd0 OyAmZ3Q7PGJyPg0KJmd0OyAmZ3Q7PGJyPg0KJmd0OyAmZ3Q7PGJyPg0KJmd0OyAmZ3Q7IF9fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fPGJyPg0KJmd0OyAmZ3Q7 IExzciBtYWlsaW5nIGxpc3Q8YnI+DQomZ3Q7ICZndDsgTHNyQGlldGYub3JnPGJyPg0KJmd0OyAm Z3Q7IDxhIGhyZWY9Imh0dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4vbGlzdGluZm8vbHNyIj5o dHRwczovL3d3dy5pZXRmLm9yZy9tYWlsbWFuL2xpc3RpbmZvL2xzcjwvYT48YnI+DQo8L2Rpdj4N Cjwvc3Bhbj48L2ZvbnQ+DQo8L2JvZHk+DQo8L2h0bWw+DQo= --_000_57788eb262f54b379725c683d177b8e7huaweicom_-- From nobody Tue Aug 10 08:53:12 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 65D043A1129; Tue, 10 Aug 2021 08:53:10 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.901 X-Spam-Level: X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=btconnect.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id b_upBq6PJaHZ; Tue, 10 Aug 2021 08:53:04 -0700 (PDT) Received: from EUR03-VE1-obe.outbound.protection.outlook.com (mail-eopbgr50090.outbound.protection.outlook.com [40.107.5.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B9D6C3A1126; Tue, 10 Aug 2021 08:53:03 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dfUN6ddj9BFrid7CXqJeMnU5xCnGdJZdPtp1wWZWpAg2DwrLtSeoV4ogZFoqnObeCTCGrrVKPN0iZkThKx/ZF0wtc6qrJ0tE1313hv/VSWtmfVLczVGsBqsSze5wHYAzcDHrYqEf16ZRdHYuQDmd2FW+89eo+LXENJ+idI44aCft8F21POUfyi1ZKfyN4qFSQxhEdQ6AJbN4WNO2W221gKlLHHsbWaAKFhxbBEPJ/yOnFlIXq7UoHQbCQugC06HXbu4sZadKBY2bTO5r2kW+ZIXajecO+notvpZF/VU3s+qmVPzzBvQYsUa8T6F5iwmDIMN4teYabs9dF4hrypGmVQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=J5g4gevaN955SaOwD8aq8+WhqRGNcQGZNY+X/8Venzs=; b=DRaj/B20s5PSCIjDx176SdiOtj9KI9dGXcrB04fVs+Tckpr2phMLwl0TDAL/f02a30n/5Rx5DXF1Q3pChxarX+9UZyP2JHYwQVjSSYshkQfRLJvRKaQm1zqhFQNWo/cYiPZqt7HGxYZ7dZueUjY+a8D8uv7Ma1p5cmWkBmUCmGQHnW27Sk9rjEAqzyoFNkOmlOmMXUkcny2L5ZwK5SLaO/llGB9WtHE4IGYxQI+luj7qygHczoH/gg4xXeV1c2GzVO8ND+tuIKrK1S2IMBAMvv+Sq87uEmwn7AzXZZzW93CJirk1waDY9BJBePs+YFRUAzl3JEcObREiY9f1YtoJMg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=btconnect.com; dmarc=pass action=none header.from=btconnect.com; dkim=pass header.d=btconnect.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=btconnect.onmicrosoft.com; s=selector2-btconnect-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=J5g4gevaN955SaOwD8aq8+WhqRGNcQGZNY+X/8Venzs=; b=tVbm++qYS1CEs6tP6OYzP2ZUkkRKXzx4C096CuX/TwWXisa9D+KpaQJLuKlinclWSVrh7oiZnwWuyBjR66Y7gHt+SQgysCx8hhOtgO5WPGcsSIwLiamf6kztslmLOTg5wDT6inMDZQ5Zbn9HcoywJwVB3sj6S/mRrgBbZe1SXAU= Received: from AM7PR07MB6248.eurprd07.prod.outlook.com (2603:10a6:20b:134::11) by AM6PR07MB4968.eurprd07.prod.outlook.com (2603:10a6:20b:6a::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4415.5; Tue, 10 Aug 2021 15:53:00 +0000 Received: from AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::f0df:b211:32dd:d5d8]) by AM7PR07MB6248.eurprd07.prod.outlook.com ([fe80::f0df:b211:32dd:d5d8%5]) with mapi id 15.20.4415.014; Tue, 10 Aug 2021 15:53:00 +0000 From: tom petch To: Yaron Sheffer , Qin Wu , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeN3D1bao4BcToNQmG4p4waGPgvAwAE3DaAAANt8yE= Date: Tue, 10 Aug 2021 15:53:00 +0000 Message-ID: References: <728cb9ce17b44bed8a4ab059a9656620@huawei.com> In-Reply-To: Accept-Language: en-GB, en-US Content-Language: en-GB X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=btconnect.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 19e112f3-1fac-4a7a-0fef-08d95c16ee62 x-ms-traffictypediagnostic: AM6PR07MB4968: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM7PR07MB6248.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(376002)(366004)(346002)(39860400002)(136003)(396003)(66556008)(66446008)(66476007)(64756008)(9686003)(83380400001)(110136005)(52536014)(15650500001)(5660300002)(122000001)(8676002)(66946007)(55016002)(76116006)(91956017)(316002)(86362001)(38100700002)(2906002)(71200400001)(4326008)(966005)(38070700005)(6506007)(7696005)(186003)(478600001)(33656002)(26005)(8936002); DIR:OUT; SFP:1102; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?UHRsN0Mzem9RNnVoRjQwanlxNytCK0d0ekIyRGFYNlJQdFlGc0ZQUUNUdUxF?= =?utf-8?B?OWM1Y0Z3WkNOejIxcEhIaEJBV3BsWVRuQ0RxZ3ZIaG5YM3lMaGVZMURGUURC?= =?utf-8?B?VEJJbE1ENjJkMkk5WjBYb3dhOHExb2hqUkxBa2RENUNVajgwYU1wTkdxeU56?= =?utf-8?B?UmxtWG94c0M4SHpCUW1USmNYUWNLWTk2WllJMW5pa3I2R1hCWkJkMkJIRUVM?= =?utf-8?B?RzdqMldLRnVLZHJROFpCZlZiK1dDblVTOEE2ditJZG52ems3S1J2M2pibFNu?= =?utf-8?B?Zm42b2FKMjV6Qy9OZnpkZXFsZCtCWGpjbUU3SEphS2l4ZHR1bUwwdVBaeXZm?= =?utf-8?B?eTZJZllDNkhZZ3U4V3FTQ1o1enRXWWFSSVFaaFUrYWM1SWVrRnJ4WmFPcXR0?= =?utf-8?B?T2RBSDZSMm9uRkd5MFp2RVJRSFgzb1p1bzA5ay9aUzlxa1d3c3lpRGY2dXFU?= =?utf-8?B?dkdzd0dDNytzb3hRdFIzUEUyV1JHZDlFTEZGamkyRzBzLzBucTV6VmpPMWUr?= =?utf-8?B?UGtxYmkrTTRMa2poTHUzM091V2hxY00zdnczdVpwS1g4cUVONnNiSmJIUlRL?= =?utf-8?B?N1N6MjNXd0VBWmtRTWhnUFBIdWpvZURMZTRFZ09IamJyN1EycGpKVXZ4L2hm?= =?utf-8?B?NjFZSHRmckgxT09ZNGJYSHdpWktiREFPZkF0alFXMmY2OENFNWpnclpjcnQ5?= =?utf-8?B?TDl6NExUZ3FDQnhRNlVyZjYzcFBOVzlSb3Y5VTVjKzFnYklzcWtQRDhOM3Uy?= =?utf-8?B?Y042eGVYbERScE9yRVAzQThlU3ZaZE16TjhZY0NQWjNKSysxVG95a1kwY2pO?= =?utf-8?B?NGphTzF4Z0Q5TGp6ekhsbkE4ZksyYXcveXBsU0FmMmpkaVBSdkRVbjZEc0J6?= =?utf-8?B?SExvMEh0SUFIVUNwSmYzRWk0THhhQVdJZDVYU2RubGt0WGFBVzFBbG9LZ01u?= =?utf-8?B?T1RkVmwzdWVqOTZlZVJrWkNITUg4dzF1dWhZWkRZVEY1aEpTc3ZTc0M1RGpj?= =?utf-8?B?bWpxYlZxZWpjOVM2UDltbVk1SlgwL0NuUlZCcDRCTG84T1Ewc2syZjgwRER4?= =?utf-8?B?MDgxK3BqeGhCeUlDc1ExY2cvN1ZHdkQyTnlrMUhZQ3F4amx6NzN1N2FLN2sv?= =?utf-8?B?cXZ5RDRIemR0dGJ5QStjSXdGaFgweTYzQ08xSTBJNXNZcHZoVjlJQW5HUnRz?= =?utf-8?B?cHRuelFaeTZ5R2l6cDdSYVdXWmJLdWJlandYZFRLNENzcDZlUm5FeVE2RFdF?= =?utf-8?B?RWw2dFdRZWU1anNHenp3TDhWN2Y3Q2dVbnMrOEhpdVlFc1YzUVBnSzBXQlgy?= =?utf-8?B?VnRzazczZTJTdU1UNGJoUmJkN29rMjIrcW9tUnlVRkx6WEZTZnJEQS9POGIr?= =?utf-8?B?NTdObUhnUHNDM0VsemtVYUxGTHVTVTZCczNNOU5INVBjSWJDNlZYWEx1WkhX?= =?utf-8?B?VyttU2dHZDdadXpsTTVJT1BqcDF3dDBhMWI2ODBabVlvUm9ZVGkyUU90L1Fp?= =?utf-8?B?bE1UdkNRRGJwWGZtWHM5TkZ4Y0VBRVI2QlZxMTVYLzFGVWVNMTc4ZmxIYTRF?= =?utf-8?B?c2tQcUtFR2hieG9ld2IwWjMrKzVsKytyZ3l5QlIwSWlqUUd1YUNWbWpmSjhy?= =?utf-8?B?QjR4UnZuTGQxaElyQ010YlJwRWFvK1lPRy9qdjZMMzVFdGs0Uk93WFo1MHhI?= =?utf-8?B?dkF6SGZ6bHMvNFNUeTlNUVNVS01FUDE1VE9oc1RTcUoxdFNNM2gzK2dkQll1?= =?utf-8?Q?00apaB/WB416tNjYZo=3D?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-OriginatorOrg: btconnect.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: AM7PR07MB6248.eurprd07.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 19e112f3-1fac-4a7a-0fef-08d95c16ee62 X-MS-Exchange-CrossTenant-originalarrivaltime: 10 Aug 2021 15:53:00.7110 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: cf8853ed-96e5-465b-9185-806bfe185e30 X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: tBvl6tn9T1YlG0VBqUDWlPxDV/tlTB2LtbaJgqutvhDI+3epuR9BWaJQw1CTi1jN12IEFqEDnfkI7kej6qWypA== X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM6PR07MB4968 Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 Aug 2021 15:53:11 -0000 RnJvbTogTHNyIDxsc3ItYm91bmNlc0BpZXRmLm9yZz4gb24gYmVoYWxmIG9mIFlhcm9uIFNoZWZm ZXIgPHlhcm9uZi5pZXRmQGdtYWlsLmNvbT4KU2VudDogMTAgQXVndXN0IDIwMjEgMTQ6NTcKClNv IGxldCBtZSBzdWdnZXN0OgoKPHRwPgpBbiBvZmZsaXN0IHN1Z2dlc3Rpb24gZm9yIHlvdSB0byBj b25zaWRlcgoKT0xECiAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mIHRoZSBQQ0Ugc2Vj dXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBwcm90ZWN0 cyB0aGUgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgdXNpbmcg dGhlIG1lY2hhbmlzbXMgZGVmaW5lZCBpbgogICAgW1JGQzUzMTBdIGFuZCBbUkZDNTcwOV0sIGlm IHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4KCiAgICBN b3Jlb3ZlciwgYXMgc3RhdGVkIGluIFtSRkM1MDg4XSBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRv IG5vdCBwcm92aWRlIGFueSBlbmNyeXB0aW9uIG1lY2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUgc2Vj cmVjeSBvZiB0aGUgUENFRCBUTFYsIGFuZCB0aGUgb3BlcmF0b3IgbXVzdCBlbnN1cmUgdGhhdCBu byBwcml2YXRlIGRhdGEgaXMgY2FycmllZCBpbiB0aGUgVExWLCBmb3IgZXhhbXBsZSB0aGF0IGtl eSBuYW1lcyBkbyBub3QgcmV2ZWFsIHNlbnNpdGl2ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUgbmV0 d29yay4KCk5FVwoKIFRodXMgYmVmb3JlIGFkdmVydGlzaW5nIHRoZSBQQ0Ugc2VjdXJpdHkgcGFy YW1ldGVycywgdXNpbmcgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCwg dGhlIElHUCBNVVNUIGJlIGtub3duIHRvIHByb3ZpZGUgYXV0aGVudGljYXRpb24gYW5kIGludGVn cml0eSBmb3IgdGhlIFBDRUQgVExWIHVzaW5nIHRoZSBtZWNoYW5pc21zIGRlZmluZWQgaW4gIFtS RkM1MzA0XSwgIFtSRkM1MzEwXSBvciBbUkZDNTcwOV0sCgogICAgTW9yZW92ZXIsIGFzIHN0YXRl ZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwgaWYgdGhlIElHUCBkb2VzIG5vdCBwcm92aWRl IGFueSBlbmNyeXB0aW9uIG1lY2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUgc2VjcmVjeSBvZiB0aGUg UENFRCBUTFYsIHRoZW4gdGhlIG9wZXJhdG9yIG11c3QgZW5zdXJlIHRoYXQgbm8gcHJpdmF0ZSBk YXRhIGlzIGNhcnJpZWQgaW4gdGhlIFRMViwgZS5nLiB0aGF0IGtleSBuYW1lcyBkbyBub3QgcmV2 ZWFsIHNlbnNpdGl2ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUgbmV0d29yay4KClRvbSBQZXRjaAo8 L3RwPgoKVGhhbmtzLAogICAgICAgIFlhcm9uCgrvu79PbiA4LzEwLzIxLCAxNTowMSwgIlFpbiBX dSIgPGJpbGwud3VAaHVhd2VpLmNvbT4gd3JvdGU6CgogICAgWWFyb246CiAgICBUaGFuayBmb3Ig Y2xhcmlmaWNhdGlvbi4gSSBhZ3JlZSB0byBrZWVwIHRoZSBsYXN0IHNlbnRlbmNlIGluIHRoZSBz ZWNvbmQgcGFyYWdyYXBoIG9mIHNlY3Rpb24gNyBhcyBpcy4KICAgIEJ1dCBJIHByZWZlciB0byBh ZGQgdGhlIGFkZGl0aW9uIHJlZmVyZW5jZXMgaW4gdGhlIHByZXZpb3VzIHNlbnRlbmNlIGFzIGZv bGxvd3M6CiAgICAiCiAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mIHRoZSBQQ0Ugc2Vj dXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcwogICAg cHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRM ViwsIHdpdGggdGhlIG1lY2hhbmlzbXMgZGVmaW5lZCBpbgogICAgW1JGQzUzMTBdIGFuZCBbUkZD NTcwOV0gaWYgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBpcyB1c2Vk LgoKICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwgdGhlIElHUCBkbyBu b3QgcHJvdmlkZSBlbmNyeXB0aW9uIG1lY2hhbmlzbSB0byBwcm90ZWN0CiAgICB0aGUgcHJpdmFj eSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRpb24gY2FuIG1ha2UgdGhlIFBDRVAg c2Vzc2lvbiBsZXNzIHNlY3VyZSB0aGVuIHRoZSBvcGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGlu dG8gY29uc2lkZXJhdGlvbi4KICAgICIKICAgIElmIHlvdSBiZXR0ZXIgd29yZGluZywgcGxlYXNl IGxldCBtZSBrbm93LgoKICAgIC1RaW4KICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0KICAgIOWP keS7tuS6ujogWWFyb24gU2hlZmZlciBbbWFpbHRvOnlhcm9uZi5pZXRmQGdtYWlsLmNvbV0KICAg IOWPkemAgeaXtumXtDogMjAyMeW5tDjmnIgxMOaXpSAxOToyNgogICAg5pS25Lu25Lq6OiBRaW4g V3UgPGJpbGwud3VAaHVhd2VpLmNvbT47IHNlY2RpckBpZXRmLm9yZwogICAg5oqE6YCBOiBkcmFm dC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3JnOyBs YXN0LWNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZwogICAg5Li76aKYOiBSZTogU2VjZGlyIGxh c3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1z dXBwb3J0LTA1CgogICAgSGkgUWluLAoKICAgIFNvcnJ5LCBidXQgSSBmaW5kIHlvdXIgbGF0ZXN0 IHByb3Bvc2VkIHRleHQgdmVyeSBjb25mdXNpbmcsIGJlY2F1c2Ugd2Ugc2hvdWxkIGJlIGZvY3Vz aW5nIG9uIGludGVncml0eSBwcm90ZWN0aW9uIGFuZCBub3QgcHJpdmFjeSAoPXNlY3JlY3kpIG9m IHRoZSBUTFYuIFNvIEkgd291bGQgcHJlZmVyIHRvIGtlZXAgdGhlIHRleHQgYXMtaXMsIHdpdGgg dGhlIGFkZGl0aW9uIG9mIGEgcmVmZXJlbmNlIHRvIHRoZSBJUy1JUyBhbmQgT1NQRiBzZWN1cml0 eSBtZWNoYW5pc21zIHRoYXQgd2VyZSBkaXNjdXNzZWQgb24gdGhpcyB0aHJlYWQuCgogICAgVGhh bmtzLAogICAgICAgIFlhcm9uCgogICAg77u/T24gOC8xMC8yMSwgMDU6MDAsICJRaW4gV3UiIDxi aWxsLnd1QGh1YXdlaS5jb20+IHdyb3RlOgoKICAgICAgICBIaSwgWWFyb24KICAgICAgICAtLS0t LemCruS7tuWOn+S7ti0tLS0tCiAgICAgICAgPuWPkeS7tuS6ujogWWFyb24gU2hlZmZlciBbbWFp bHRvOnlhcm9uZi5pZXRmQGdtYWlsLmNvbV0KICAgICAgICA+5Y+R6YCB5pe26Ze0OiAyMDIx5bm0 OOaciDnml6UgMjE6NDQKICAgICAgICA+5pS25Lu25Lq6OiBRaW4gV3UgPGJpbGwud3VAaHVhd2Vp LmNvbT47IHNlY2RpckBpZXRmLm9yZwogICAgICAgID7mioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBj ZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRm Lm9yZzsgbHNyQGlldGYub3JnCiAgICAgICAgPuS4u+mimDogUmU6IFNlY2RpciBsYXN0IGNhbGwg cmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC0w NQoKICAgICAgICA+SGkgUWluLAoKICAgICAgICA+VGhhbmsgeW91IGZvciB5b3VyIHJlc3BvbnNl LgoKICAgICAgICA+KiBSRkMgMzU2NyAoZm9yIElTLUlTKSBpcyBvYnNvbGV0ZWQgYnkgUkZDIDUz MDQuIFVuZm9ydHVuYXRlbHkgUkZDIDUzMDQgc3RpbGwgdXNlcyBITUFDLU1ENSwgd2hpY2ggd291 bGQgYmUgY29uc2lkZXJlZCBpbnNlY3VyZSBub3dhZGF5cy4KICAgICAgICA+KiBSRkMgMjE1NCBp cyB2ZXJ5IG9sZCBhbmQgRXhwZXJpbWVudGFsIChhbmQgb25seSBzdXBwb3J0cyBSU0EtTUQ1IHNp Z25hdHVyZXMpLiBJJ20gbm90IGFuIE9TUEYgZXhwZXJ0IGJ5IGFueSBtZWFucywgYnV0IEknbSB3 aWxsaW5nIHRvIGJldCB0aGF0IHRoZXJlIGFyZSBubyBwcm9kdWN0aW9uIGltcGxlbWVudGF0aW9u cyBvZiB0aGlzIFJGQy4gKEknbSB3aWxsaW5nIHRvIGJlIHByb3ZlbiB3cm9uZykuCiAgICAgICAg PklzIHRoZXJlIGFub3RoZXIgUkZDIHRoYXQgZGVmaW5lIGEgcHJvdGVjdGlvbiBtZWNoYW5pc20g Zm9yIE9TUEY/CgogICAgICAgID5BbGwgaW4gYWxsLCB0aGVyZSBhcHBlYXIgdG8gYmUgbm8gZ29v ZCBvcHRpb25zIGZvciB0aGUgSUdQLgoKICAgICAgICBbUWluIFd1XVllcywgd2UgZG8gaGF2ZSBh bHRlcm5hdGl2ZXMsIHNlZSBMZXMncyByZXNwb25zZSBpbiB0aGUgc2VwYXJhdGUgZW1haWwKICAg ICAgICAiCiAgICAgICAgT24gOC85LzIxLCAyMzozNiwiTGVzIEdpbnNiZXJnIChnaW5zYmVyZyki IDxnaW5zYmVyZ0BjaXNjby5jb20+IHdyb3RlOgogICAgICAgIEZvciBJUy1JUyBzZWN1cml0eSBw bGVhc2UgYWxzbyBzZWUgUkZDIDUzMTAuCiAgICAgICAgRm9yIE9TUEYgc2VjdXJpdHkgcGxlYXNl IHNlZSBSRkMgNTcwOS4KICAgICAgICAiCiAgICAgICAgPlRvIHlvdXIgbGFzdCBwb2ludCwgd2hl biBJIG1lbnRpb25lZCBkZWNvdXBsaW5nIHRoZSBtZWNoYW5pc21zLCBJIHdhcyBzdWdnZXN0aW5n IHRvIHVzZSB0aGUgZXh0ZW5zaW9uIHlvdSBkZWZpbmUgZXZlbiBpZiB0aGUgSUdQICpjYW5ub3Qq IGJlIHNlY3VyZWQuIElmIHlvdSB0aGluayB0aGlzIGlzIHJlYXNvbmFibGUsIHBsZWFzZSBhZGQg c3VjaCB0ZXh0IHRvIHRoZSBTZWN1cml0eSBDb25zaWRlcmF0aW9ucy4KCiAgICAgICAgW1FpbiBX dV0gT2theSwgaG93IGFib3V0IHRoZSBmb2xsb3dpbmcgY2hhbmdlCiAgICAgICAgT0xEIFRFWFQ6 CiAgICAgICAgIgogICAgICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0KICAgICAgICBhbmQgW1JG QzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGVuY3J5cHRpb24gbWVjaGFuaXNtIHRvIHBy b3RlY3QKICAgICAgICB0aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3Jt YXRpb24gY2FuIG1ha2UgdGhlIFBDRVAKICAgICAgICBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4g dGhlIG9wZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uIC4KICAgICAg ICAiCiAgICAgICAgTkVXIFRFWFQ6CiAgICAgICAgIgogICAgICAgIEFzIHN0YXRlZCBpbiBbUkZD NTA4OF0KICAgICAgICBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGVuY3J5 cHRpb24gbWVjaGFuaXNtIHRvIHByb3RlY3QKICAgICAgICB0aGUgcHJpdmFjeSBvZiB0aGUgUENF RCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRpb24gY2FuIG1ha2UgdGhlIFBDRVAKICAgICAgICBzZXNz aW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9wZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBj b25zaWRlcmF0aW9uCiAgICAgICAgd2hlbiBnZXR0aW5nIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVk IGluIHRoaXMgZG9jdW1lbnQgZGVwbG95ZWQuCiAgICAgICAgIgogICAgICAgICA+VGhhbmtzLAog ICAgICAgICA+ICAgICAgWWFyb24KCiAgICAgICAg77u/Pk9uIDgvOS8yMSwgMTY6MDksICJRaW4g V3UiIDxiaWxsLnd1QGh1YXdlaS5jb20+IHdyb3RlOgoKICAgICAgICAgID4gICBUaGFua3MgWWFy b24gZm9yIHZhbHVhYmxlIGNvbW1lbnRzLCBwbGVhc2Ugc2VlIG15IHJlcGx5IGlubGluZSBiZWxv dy4KICAgICAgICAgICAgLS0tLS3pgq7ku7bljp/ku7YtLS0tLQogICAgICAgICAgICA+5Y+R5Lu2 5Lq6OiBZYXJvbiBTaGVmZmVyIHZpYSBEYXRhdHJhY2tlciBbbWFpbHRvOm5vcmVwbHlAaWV0Zi5v cmddCiAgICAgICAgICAgID7lj5HpgIHml7bpl7Q6IDIwMjHlubQ45pyINuaXpSAzOjI1CiAgICAg ICAgICAgID7mlLbku7bkuro6IHNlY2RpckBpZXRmLm9yZwogICAgICAgICAgICA+5oqE6YCBOiBk cmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3Jn OyBsYXN0LWNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZwogICAgICAgICAgICA+5Li76aKYOiBT ZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNl Y3VyaXR5LXN1cHBvcnQtMDUKCiAgICAgICAgICAgID5SZXZpZXdlcjogWWFyb24gU2hlZmZlcgog ICAgICAgICAgICA+UmV2aWV3IHJlc3VsdDogTm90IFJlYWR5CgogICAgICAgICAgICA+VGhpcyBk b2N1bWVudCBkZWZpbmVzIGEgbWVjaGFuaXNtIChhIFRMVikgdG8gYWR2ZXJ0aXNlIHRoZSBQQ0Ug UHJvdG9jb2wgc2VjdXJpdHkgcmVxdWlyZWQgKHVzZSBvZiBUQ1AtQU8gYW5kIGl0cyBrZXkgSUQs IG9yIGFsdGVybmF0aXZlbHkgdXNlIG9mIFRMUykgd2l0aGluIHRoZSByb3V0aW5nIHByb3RvY29s IGJlaW5nIHVzZWQuCgogICAgICAgICAgICA+KiBTZWMuIDMuMTogSSBkb24ndCB1bmRlcnN0YW5k IHdoeSAiU0hPVUxEIGFkdmVydGlzZSIgYW5kIG5vdCBNVVNULiBFc3BlY2lhbGx5IGdpdmVuIHRo ZSBzdHJpY3QgY2xpZW50IGJlaGF2aW9yIGRlZmluZWQgbGF0ZXIuCiAgICAgICAgICAgIFtRaW5d OiBJIGJlbGlldmUgIlNIT1VMRCBhZHZlcnRpc2UiIGlzIGNvbnNpc3RlbnQgd2l0aCBjbGllbnQg YmVoYXZpb3IgZGVmaW5lZCBsYXRlciwgaS5lLiwgd2UgYXBwbHkgU0hPVUxEIE5PVCBsYW5ndWFn ZSB0byB0aGUgY2xpZW50IGJlaGF2aW9yLgogICAgICAgICAgICBJIGFtIG5vdCBzdXJlIHdlIHNo b3VsZCBjaGFuZ2UgaXQgaW50byBzdHJvbmcgbGFuZ3VhZ2Ugd2l0aCBNVVNULiBTaW5jZSBpZiBJ R1AgYWR2ZXJ0aXNlbWVudCBkb2Vzbid0IGluY2x1ZGUgVENQLUFPCiAgICAgICAgICAgICBzdXBw b3J0IGZsYWcgYml0IG9yIFRMUyBzdXBwb3J0IGZsYWcgYml0LCBOTVMgbWF5IGZhbGwgYmFjayB0 byBjb25maWd1cmUgYm90aCBQQ0MgYW5kIFBDRSBzZXJ2ZXIgdG8gc3VwcG9ydCBUQ1AtQU8gb3Ig VExTLiBUaGF0J3Mgb25lIG9mIHJlYXNvbiBJIHRoaW5rIHdoeSB3ZSBjaG9vc2UgdG8gdXNlIFNI T1VMRCBsYW5ndWFnZS4KCiAgICAgICAgICAgID4qIFNlYy4gMy4xOiBzaG91bGQgd2UgYWxzbyBz YXkgc29tZXRoaW5nIGFib3V0IHRoZSBjYXNlIHdoZXJlIGJvdGggbWV0aG9kcyBhcmUgYWR2ZXJ0 aXNlZCwgYW5kIHdoZXRoZXIgd2UgcmVjb21tZW5kIGZvciB0aGUgY2xpZW50IHRvIHVzZSBvbmUg b2YgdGhlbSBvdmVyIHRoZSBvdGhlcj8KCiAgICAgICAgICAgIFtRaW5dOiBJdCBpcyB1cCB0byBs b2NhbCBwb2xpY3ksIHdoaWNoIGhhcyBiZWUgY2xhcmlmaWVkIGluIHRoZSBlbmQgb2Ygc2VjdGlv biAzLjEuIEhvcGUgdGhpcyBjbGFyaWZ5LgoKICAgICAgICAgICAgPiogU2VjLiA0OiB0eXBvIChh cHBlYXJzIHR3aWNlKSAtICJ0byBiZSBjYXJyaWVkIGluIHRoZSBQQ0VEIFRMViBvZiB0aGUgZm9y IHVzZSIuCgogICAgICAgICAgICBbUWluXTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBpbiB0aGUg bG9jYWwgY29weS4KCiAgICAgICAgICAgID4qIFNlYy4gNzogdGhpcyBwaHJhc2UgYXBwZWFycyB0 byBiZSBlc3NlbnRpYWwgdG8gc2VjdXJpdHkgb2YgdGhpcyBtZWNoYW5pc206ICJpdCBNVVNUIGJl IGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5k IGludGVncml0eSBvZiB0aGUgUENFRCBUTFYiLiBJIHdvdWxkIGV4cGVjdCBtb3JlIGd1aWRhbmNl OiBob3cgY2FuIHRoaXMgcHJvcGVydHkgYmUgZW5zdXJlZCBpbiB0aGUgcmVsZXZhbnQgSUdQcz8K ICAgICAgICAgICAgW1Fpbl06SSB0aGluayBtZWNoYW5pc20gZGVmaW5lZCBpbiBbUkZDMzU2N10g YW5kIFtSRkMyMTU0XSBjYW4gYmUgdXNlZCB0byBlbnN1cmUgYXV0aGVudGljaXR5IGFuZCBpbnRl Z3JpdHkgb2YgT1NQRiBMU0FzIG9yIElTSVMgTFNQcyBhbmQgdGhlaXIgVExWcy4gSGVyZSBpcyB0 aGUgcHJvcG9zZWQgY2hhbmdlczoKICAgICAgICAgICAgT0xEIFRFWFQ6CiAgICAgICAgICAgICIK ICAgICAgICAgICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZgogICAgICAgICAgICAg ICB0aGUgUENFIHNlY3VyaXR5IHBhcmFtZXRlcnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRo ZSBJR1AgaXMKICAgICAgICAgICAgICAgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQg aW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViBpZiB0aGUKICAgICAgICAgICAgICAgbWVjaGFuaXNt IGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuCiAgICAgICAgICAgICIKICAgICAg ICAgICAgTkVXIFRFWFQ6CiAgICAgICAgICAgICIKICAgICAgICAgICAgICAgVGh1cyBiZWZvcmUg YWR2ZXJ0aXNlbWVudCBvZgogICAgICAgICAgICAgICB0aGUgUENFIHNlY3VyaXR5IHBhcmFtZXRl cnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMKICAgICAgICAgICAgICAgcHJv dGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViB3 aXRoIG1lY2hhbmlzbXMgZGVmaW5lZCBpbiBbUkZDMzU2N11bUkZDMjE1NF0gaWYgdGhlCiAgICAg ICAgICAgICAgIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBpcyB1c2VkLgog ICAgICAgICAgICAiCiAgICAgICAgICAgID4qIEFsc28sIGEgcG9zc2libHkgdW5pbnRlbmRlZCBj b25zZXF1ZW5jZSBvZiB0aGlzIHJlcXVpcmVtZW50IGlzIHRoYXQgaWYgdGhlIElHUCBjYW5ub3Qg YmUgcHJvdGVjdGVkIGluIGEgcGFydGljdWxhciBkZXBsb3ltZW50L3Byb2R1Y3QsIHRoaXMgbWVj aGFuaXNtIHdvdWxkIG5vdCBiZSB1c2VkLiBQbGVhc2UgY29uc2lkZXIgaWYgdGhpcyBpcyBsaWtl bHkgdG8gaGFwcGVuIGFuZCB3aGV0aGVyIHdlIHdhbnQgdG8gZm9yZWdvIFBDRVAgdHJhbnNwb3J0 ID5zZWN1cml0eSBpbiBzdWNoIGNhc2VzLiBNeSBndXQgZmVlbCAobm90IGJhc2VkIG9uIGV4cGVy aWVuY2UgaW4gc3VjaCBuZXR3b3JrcykgaXMgdGhhdCB0aGUgdGhyZWF0IG1vZGVscyBhcmUgZGlm ZmVyZW50IGVub3VnaCB0aGF0IHdlIHNob3VsZCBkZWNvdXBsZSB0aGUgc2VjdXJpdHkgb2YgSUdQ IGZyb20gdGhhdCBvZiBQQ0VQLgoKICAgICAgICAgICAgW1Fpbl0gSSBhZ3JlZSBJR1Agc2VjdXJp dHkgc2hvdWxkIGJlIHNlcGFyYXRlZCBmcm9tIFBDRVAgc2VjdXJpdHkuIElHUCBleHRlbnNpb24g ZGVmaW5lZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QgUENF IHNlcnZlciB3aXRoIGFwcHJvcHJpYXRlIHNlY3VyaXR5IG1lY2hhbmlzbS4gT24gdGhlIG90aGVy IGhhbmQsIE9wZXJhdG9yIGNhbiBlaXRoZXIgdXNlIElHUCBhZHZlcnRpc2VtZW50IGZvciBQQ0VQ IHNlY3VyaXR5IGNhcGFiaWxpdHkgb3IgcmVseSBvbiBsb2NhbCBwb2xpY3kgdG8gc2VsZWN0IFBD RS4gSWYgb3BlcmF0b3IgZmVlbHMgSUdQIGFkdmVydGlzZW1lbnQgaXMgbm90IHNlY3VyZSwgaGUg Y2FuIGZhbGwgYmFjayB0byBsb2NhbCBwb2xpY3kgb3IgcmVseSBvbiBtYW51YWwgY29uZmlndXJh dGlvbi4gSG9wZSB0aGlzIGNsYXJpZmllcy4KCgoKCgoKCl9fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fCkxzciBtYWlsaW5nIGxpc3QKTHNyQGlldGYub3JnCmh0 dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4vbGlzdGluZm8vbHNyCg== From nobody Wed Aug 11 07:22:12 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E78D3A17F6; Wed, 11 Aug 2021 07:22:06 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.901 X-Spam-Level: X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=secureservernet.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id mhGdtHanDNvx; Wed, 11 Aug 2021 07:22:01 -0700 (PDT) Received: from NAM11-CO1-obe.outbound.protection.outlook.com (mail-co1nam11on2135.outbound.protection.outlook.com [40.107.220.135]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 48C543A17F4; Wed, 11 Aug 2021 07:21:56 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=R6uezQsF652c8H+WpsK+COTwuyE6j19nBx1crRQX6r7VkymkQ9jw5zOrnzziig7TM6JeVXI2qfY9Ls/LjLd3aD+zTjk33+wwjO9z0O9gudPgW/tw26JDUsiB0Cs2aEscH3o9VlQ94ZNjZuShJobnpm7OAOkTjZ1u7xtyKf7aYQ66oNjxr/VhpDCW4yATm4uSTthoZemMdh7dihwh2mjM/RoT1L18OSl32TqAjcTlWHgUxlg0YGWfaBAJ/RrbeLjV2U1T+BBucGpQ0DxEwS0ghx+UNu/0Y07AW3/Sqt1bqSy47xWny9h4YP1tM85+sGdi4KUJjlG8lrVZC3qEFNY9JQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=epTLWvbPuZH26hD+UeSumdWZBURW+5Q75cz9WrN20FY=; b=LwSMWtrv71cIfcT/vapgMG9V6kxnR+Aw561nixyCEzyy1LaqzICvTjAyS75Gk3+BoJUOJd5kDWjuj2BkAmkbva0LBvqYcA3fbLwnN+G1xGuCJ0KW4z6efjZNBlNqp5ZOCcrGEcwI+AegX4ADDqFtTTHsj2xBa81DpsPLbPZWmnNdmL6s0wj1kQLidgWHmfAny+sQlRQEegxWP98VIs5/qZ+3Spr2ReB0laLRyLiVRyoJXsSen9+hkz4GYYkZM32TmP+Arja0S4HvNC+jYwQpgmiu0Ees1UgXl78NzpPvYcBsTUYjbzcgR0HOeo8QXwsmOOM10Mx861WvvbFsZBaRsw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=godaddy.com; dmarc=pass action=none header.from=godaddy.com; dkim=pass header.d=godaddy.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=secureservernet.onmicrosoft.com; s=selector1-secureservernet-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=epTLWvbPuZH26hD+UeSumdWZBURW+5Q75cz9WrN20FY=; b=EOKwuuZl09ZuwSvaqrrkbz/J1LrUG54GH5XSJ5OeQor11fNs0HGTAoGctH7gPCh+BiYdDZg4soViXB9ryLAs9xlMq0SBQoQBinz5E+OLrodedEG5TNZkkfKqyqYjTkoftciU0M870r0jJ/iM8iaJPeXInIhEfNdM84ENATkRygw= Received: from CH2PR02MB6357.namprd02.prod.outlook.com (2603:10b6:610:7::16) by CH2PR02MB6630.namprd02.prod.outlook.com (2603:10b6:610:7d::10) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4415.14; Wed, 11 Aug 2021 14:21:53 +0000 Received: from CH2PR02MB6357.namprd02.prod.outlook.com ([fe80::6545:582b:9d89:f233]) by CH2PR02MB6357.namprd02.prod.outlook.com ([fe80::6545:582b:9d89:f233%4]) with mapi id 15.20.4394.023; Wed, 11 Aug 2021 14:21:52 +0000 From: Jody Kolker To: Melinda Shore , "secdir@ietf.org" CC: "draft-ietf-regext-epp-registry-maintenance.all@ietf.org" , "last-call@ietf.org" , "regext@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-regext-epp-registry-maintenance-16 Thread-Index: AQHXjM69vAl1IvMh5U2JBzaqgCj9NatuXo5Q Date: Wed, 11 Aug 2021 14:21:52 +0000 Message-ID: References: <162847975484.5697.10348648212211041099@ietfa.amsl.com> In-Reply-To: <162847975484.5697.10348648212211041099@ietfa.amsl.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: nomountain.net; dkim=none (message not signed) header.d=none; nomountain.net; dmarc=none action=none header.from=godaddy.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 8f7a5bab-e18c-4d6f-dec9-08d95cd35dad x-ms-traffictypediagnostic: CH2PR02MB6630: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 61xoGfDyxlzdteZ/crv506k46FUyUaMKqCm/2/8pxtgbag+sn0TvsiGFfVut6WdD272T9w3+/J9ZK3yV0Gk/9uMWRxikJ3FefR+Nt6gnbwGRXcc8tzCGd6bziKzD70M32mEbcPion9pitScVSRy4pbL7+Aijims2l7gHYctpO9FtcCmEjrHOQrH6tFaqNXBIw+t9/e85mON9Q4T/Wwi3XkLuBDUq0D6IHAZsW+RcdpYJSDJ6oqvAoX1EOaAXw2EzanBqKAVylEGpJ1ZisadwvPwYaXc1GPu7fIo7yGx4/IUb9MSiOV/2uhPTAVIHAZzYG75KVezJnXNG6NsV8xIxzAkzsV1UKJ0ZaNY4Cwdvhk7eLb0AIwf5WbR1p46DgPo5un/tPxtiHPlanqbYcG5jRWQlt9rS9hqKoffZTjqo/zJoM0pd6Ku1F5n1Z95neHgi/OK5KNofE2tT3xGFu5ObXLsTq8cOj9/hgyDRs2rY0XeWWQ7xTLhhybu/4mVi5W3ysLi4NjZ6Jlbrs4se/QizPgQpcz3yKl6O4VQ8au/lhzrFvmllZJjlVgf96NCxoqe4kvhanQ1SwbOhUPDCqKIG0Z3jkPqRTZjjrXtalxNl2Mu+nNdqsDJLbeLEluQOxxNdvoCJKzF7JqNNx533jbgus7jDNmwTZLG6Qpfqp/PXegsCOYngua7CoQeci9k1FoHOGEF0OtIXLFXHPbG3uS3DV3fouvanxyntWuINLiBr02IlwpY6liZNhs5K9ZNBk/1H80AMQFrFIhPTcvm3aXsKC58uIloWHfsEx+HAvzMmwCc= x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:CH2PR02MB6357.namprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(366004)(396003)(346002)(39860400002)(376002)(5660300002)(83380400001)(64756008)(66946007)(66446008)(86362001)(66476007)(66556008)(76116006)(2906002)(4326008)(52536014)(54906003)(8676002)(9686003)(71200400001)(110136005)(316002)(122000001)(38100700002)(478600001)(53546011)(7696005)(966005)(55016002)(33656002)(38070700005)(6506007)(186003)(26005)(8936002); DIR:OUT; SFP:1102; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?dW1XRWZxOXAycStrbTZiQjg5MjhtWFpYYmlLNnRReGt6Smt1LzIzU2xYODZo?= =?utf-8?B?RC96eW5CZFh0YisydDBHajFXdVRXS3BjekpjbS9WZWFuK3BWL3JPVHp3Y2dM?= =?utf-8?B?L2JGVjVjM2xDTE5rMkRORmd3VmI4cDBiWFJvUktxc01SakxISStydzhrdXhJ?= =?utf-8?B?YUtiQ2VjbWNDNG9iYWVXVFIrdkloODcvMVp3SDhpaFhORGV5dDEzdFZ1REUy?= =?utf-8?B?YXVQdEdDa0E1OXBYUW9SdmZ5L2tQK2pEVGNkL3RvNytpb1NPNUM1UUEyYXNo?= =?utf-8?B?Y2Y4M0tOeExxY3l5S1hMQ3lBTk5nY3cxbVQ1dDJ2d2luUy80V1lpTGNPajFY?= =?utf-8?B?ajZ3a3VQai9hTXlNYXdiQ3RacFVZM0JqeWpMZHFFeFZXdjEwQVZLbzBGM1lU?= =?utf-8?B?WmRBT2pkbnVxbmJiOTBVSmNua0xNOU9zUFVQeWczRkFVa3FQTkUxckNRa1hY?= =?utf-8?B?bzFla24rQThWekZmVHE5YzB3OWpsdDBtSTMwS1A0VFJ1OXd6ZkV4MWxBT2Ew?= =?utf-8?B?TUdpSFliRDhXTlozTGU5RkZFNmNEZUU0Wk9KdDh0eE8yYk80YzhZaVlVdmFo?= =?utf-8?B?dmJrQkRhTzEwbVpLc3Z5OUVlMHowZHFvN1YyN3pud3hTajVNMkw3YzRGWWg2?= =?utf-8?B?cUlxNWpMUjhuK1BNWXNudUJEUjBjemxkQW5ibUJnSDljMUhMdEttN0RaQ3R6?= =?utf-8?B?TnB5cjBLQ1Y3Q3JoNDY5bmZyTkZ0SERCSXd6U2FrZ3pTNWlIckRhWGJieGlR?= =?utf-8?B?bUtUUlJab1RIajI3ajltRkVoekZiZS9UV2V5aXFsSDMxeWs2Sk50UEEyeE8x?= =?utf-8?B?eXZGVUQrWFpKZTJiTlJkL3RLcHVueFIyR3FneHplbHppdlJEMndDallzbDQw?= =?utf-8?B?WjRnc24za3lkWXhWQTZoNC9rWWU1WnVmRTdFWXFGYXAvYStOa0p5U0dKbldT?= =?utf-8?B?dmFsY0VtaS9CUW5uVStoNHFncjlsNUFqeEhTbjl5UE5sUHY2aitKMThUbVcw?= =?utf-8?B?aVNndklhYm05QmRqTE5ET1BKdGM1d3llS2tzV1hUcGtIVmwxN00vdGVHZ0R0?= =?utf-8?B?cVpwK2tmc0I4MmI4T2RmSjI1TUxxYmtodnVXdXdIdjZSeFB4TnAyWW1Qcyth?= =?utf-8?B?ODIzTU9CcXNDaFgxVjU0YVlWaUpzVzYyTWlYdkJDckNwR2g4VkdJbHl1ZG9L?= =?utf-8?B?emRSclpVazFRcDN0RmRpaWRaZVJZb0dqdWhTaCtGK2NGN3VEMkNWeDJ2aEpC?= =?utf-8?B?Q2d4SEloV25lbXpHMzFyTkJiZDB4NDlWaGNmNjRzZzd0NDVRUzF6RWVSOEp5?= =?utf-8?B?VEc0WGgvOVltTm5GUkVqSU4wbUx2b0hLZ3BzQkxCUG5NVlVEV01ncnRUbEx2?= =?utf-8?B?MGhzVzduTUl3KzVlZUlwaTBtdmpZNGNQZm8rclR1a001VHhtcFU3MlBOZDh4?= =?utf-8?B?VDVlNVVmUTdFS1MxNSs5T0RaN2o5S0o1NDFMZ2NrNGdvcmRrY29wM1UzV1lK?= =?utf-8?B?MTgzTlgwVXkwRmpVcHZIN3ZxZFNPTzRxVE4xYnNJaXltZ2ZyVTZyNDRSazdz?= =?utf-8?B?ZlFMTW5aVHdNbi84SnJzUkxMblF4KzZ0RUVWUG9ydnROV1R2RWNUdVJMT2tI?= =?utf-8?B?aDZScy9uT0F3Z0FPelFvN1VYck9rM0tEc3RVM0ZMNlpPV1hhelg2SUlubkEx?= =?utf-8?B?enYrTGVQTXZma1VMRkdMcnNOcFJ2UVRGZEptZ3BFTHJwcjhoODBweVJNWmt4?= =?utf-8?Q?RkbfmEreupi6waf6l4=3D?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-OriginatorOrg: godaddy.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: CH2PR02MB6357.namprd02.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 8f7a5bab-e18c-4d6f-dec9-08d95cd35dad X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Aug 2021 14:21:52.7967 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: d5f1622b-14a3-45a6-b069-003f8dc4851f X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: D7dDy/X4keWxcnSqHiQVYIqVrYaHP7Qt0wfHbkOSNMUR3x5Zalj/bRdZvrctBsy3jiTBLFqOFe2Zdyte0O2B2w== X-MS-Exchange-Transport-CrossTenantHeadersStamped: CH2PR02MB6630 Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-regext-epp-registry-maintenance-16 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Aug 2021 14:22:07 -0000 SGkgTWVsaW5kYSwNCg0KVGhhbmtzIGZvciB0aGUgZGV0YWlsZWQgcmV2aWV3IG9mIHRoZSBkb2N1 bWVudC4gIFdlIGhhdmUgbWFkZSB0aGUgc3VnZ2VzdGVkIHVwZGF0ZXMgYmVsb3cgYW5kIGluY29y cG9yYXRlZCB0aGUgY2hhbmdlcyBpbnRvIHRoZSBkb2N1bWVudCBhdCBodHRwczovL2dpdGh1Yi5j b20vc2VpdHN1L3JlZ2lzdHJ5LWVwcC1tYWludGVuYW5jZS9ibG9iL21hc3Rlci9kcmFmdC1pZXRm LXJlZ2V4dC1lcHAtcmVnaXN0cnktbWFpbnRlbmFuY2UudHh0IHdpdGggYW4gYWRkZWQgcmVmZXJl bmNlIHRvIFJGQyA1NzMwIHJlZ2FyZGluZyBzZWN1cml0eSBjb25zaWRlcmF0aW9ucy4gIA0KDQpX ZSB3aWxsIHB1Ymxpc2ggdGhlIGRvY3VtZW50IHdpdGggYWRkaXRpb25hbCBjaGFuZ2VzIGFmdGVy IG91ciBBRCByZXF1ZXN0cyBwdWJsaWNhdGlvbi4NCg0KUGxlYXNlIGxldCB1cyBrbm93IGlmIGFu eXRoaW5nIGVsc2UgaXMgbmVlZGVkLg0KDQpUaGFua3MsDQpKb2R5IEtvbGtlci4NCg0KLS0tLS1P cmlnaW5hbCBNZXNzYWdlLS0tLS0NCkZyb206IE1lbGluZGEgU2hvcmUgdmlhIERhdGF0cmFja2Vy IDxub3JlcGx5QGlldGYub3JnPiANClNlbnQ6IFN1bmRheSwgQXVndXN0IDgsIDIwMjEgMTA6Mjkg UE0NClRvOiBzZWNkaXJAaWV0Zi5vcmcNCkNjOiBkcmFmdC1pZXRmLXJlZ2V4dC1lcHAtcmVnaXN0 cnktbWFpbnRlbmFuY2UuYWxsQGlldGYub3JnOyBsYXN0LWNhbGxAaWV0Zi5vcmc7IHJlZ2V4dEBp ZXRmLm9yZw0KU3ViamVjdDogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1y ZWdleHQtZXBwLXJlZ2lzdHJ5LW1haW50ZW5hbmNlLTE2DQoNCkNhdXRpb246IFRoaXMgZW1haWwg aXMgZnJvbSBhbiBleHRlcm5hbCBzZW5kZXIuIFBsZWFzZSBkbyBub3QgY2xpY2sgbGlua3Mgb3Ig b3BlbiBhdHRhY2htZW50cyB1bmxlc3MgeW91IHJlY29nbml6ZSB0aGUgc2VuZGVyIGFuZCBrbm93 IHRoZSBjb250ZW50IGlzIHNhZmUuIEZvcndhcmQgc3VzcGljaW91cyBlbWFpbHMgdG8gaXNpdGJh ZEAuDQoNCg0KDQpSZXZpZXdlcjogTWVsaW5kYSBTaG9yZQ0KUmV2aWV3IHJlc3VsdDogSGFzIElz c3Vlcw0KDQpUaGUgc2VjdXJpdHkgY29uc2lkZXJhdGlvbnMgc2VjdGlvbiBpcyBzY2FudHkgLSB0 cmFuc3BvcnQgc2VjdXJpdHkgaXMgbm90IGRlc2NyaWJlZCBhdCBhbGwsIG5vciBpcyB0aGUgcXVl c3Rpb24gb2YgZGVmZW5zZSBhZ2FpbnN0IGEgbWFsaWNpb3VzIGFjdG9yIHNwb29maW5nIGEgc2Vy dmVyLiAgSXQgbWF5IGJlIHRoZSBjYXNlIHRoYXQgdGhlcmUgYXJlLCBpbiBmYWN0LCBtaXRpZ2F0 aW9ucyBpbiBjb21tb24gdXNlIGJ1dCB0aGV5IGFyZSBub3Qgc3BlbGxlZCBvdXQgaW4gdGhpcyBk cmFmdCBub3IgaW4gUkZDIDU3MzAgKGFuZCBJ4oCZbGwgYmUgdGhlIGZpcnN0IHRvIGFkbWl0IHRo YXQgSSBtYXkgaGF2ZSBtaXNzZWQgc29tZXRoaW5nKS4gIEJlY2F1c2Ugb2YgdGhpcyBJIGRvIGhh dmUgcmVzZXJ2YXRpb25zIGFib3V0IHByb2dyZXNzaW5nIHRoZSBkb2N1bWVudCB0b3dhcmRzIHB1 YmxpY2F0aW9uLg0KDQpTZWN0aW9uIDMuMzogSXMgaXQgdGhlIGNhc2UgdGhhdCBpZiBhbiBlbGVt ZW50IGlzIG5vdCBleHBsaWNpdGx5IGlkZW50aWZpZWQgYXMgb3B0aW9uYWwsIGl04oCZcyBtYW5k YXRvcnk/ICBJZiB0aGF04oCZcyB0aGUgY2FzZSB5b3UgbWF5IHdhbnQgdG8gbWVudGlvbiB0aGF0 IGluIHRoZSBmaXJzdCBwYXJhZ3JhcGggb2YgdGhpcyBzZWN0aW9uDQoNCk5pdHM6DQoNClRoZXJl 4oCZcyBvY2Nhc2lvbmFsbHkgc29tZSB1bmlkaW9tYXRpYyBFbmdsaXNoIChmb3IgZXhhbXBsZSwg 4oCcVGhlIGNvbW1hbmQgbWFwcGluZ3MgZGVzY3JpYmVkIGhlcmUgYXJlIHNwZWNpZmljYWxseSBm b3IgdGhlIHVzZSB0byBub3RpZnkgWyDigKYgXeKAnSByYXRoZXIgdGhhbiwgZm9yIGV4YW1wbGUs IOKAnFRoZSBjb21tYW5kIG1hcHBpbmdzIGRlc2NyaWJlZCBoZXJlIGFyZSBzcGVjaWZpY2FsbHkg dXNlZCB0byBub3RpZnkgWyDigKYgXeKAnSwg4oCcVGhlIGluZm9ybWF0aW9uIG9uIGEgWyDigKYg XeKAnSByYXRoZXIgdGhhbiDigJxUaGUgaW5mb3JtYXRpb24gYWJvdXQgYSBbIOKApiBdLCBldGMu KSwNCg0KU2VjdGlvbiAxLCBmaXJzdCBwYXJhZ3JhcGg6ICBJdOKAmXMgYWN0dWFsbHkgbm90IHZl cnkgY2xlYXIgYWJvdXQgd2hhdCByZWdpc3RyaWVzIGFyZSBpbmZvcm1pbmcgcmVnaXN0cmFycy4g IEl0IG1heSBiZSBjbGVhcmVyIHRvIHN0YXJ0IHdpdGggc29tZXRoaW5nIGFsb25nIHRoZSBsaW5l cyBvZiDigJxSZWdpc3RyaWVzIHVzdWFsbHkgaW5mb3JtIHJlZ2lzdHJhcnMgb2YgbWFpbnRlbmFu Y2UgYWN0aXZpdGllcyBpbiBkaWZmZXJlbnQgd2F5cy7igJ0NCg0KDQo= From nobody Wed Aug 11 10:18:16 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3BFE53A1D77; Wed, 11 Aug 2021 10:18:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -9.599 X-Spam-Level: X-Spam-Status: No, score=-9.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=T1ks6ZKE; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=eVmkiy89 Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0qyBHhlO_rMG; Wed, 11 Aug 2021 10:18:07 -0700 (PDT) Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9B2263A1D6E; Wed, 11 Aug 2021 10:18:07 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=14078; q=dns/txt; s=iport; t=1628702287; x=1629911887; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=v3sJh/YtTxFu3cWev0NGSs/orgit/9sYN50lOtdLHV4=; b=T1ks6ZKE/iUuY0j9D5bdCZSygWvsf2UOTiYupTf9wvQ4fb8QLjtrShwq P+9vgZAtCzdNT8wd3gw+U0gCOCX8drRrFr0Lm5xtmRTTcYX5C9nKGnLay iXNEJiUnhAwphgqmwR+03V9vRQpixklfCxl5NoB0YOCEKqMl6vKVINy8m w=; X-IPAS-Result: =?us-ascii?q?A0ALAwB8BRRhl4kNJK1aHgEBCxIMQIFOC4FTUX5aNzECh?= =?us-ascii?q?EWDSAOFOYhpA4paj1uBQoERA1QLAQEBDQEBKgsMBAEBhFkCF4JPAiU3Bg4BA?= =?us-ascii?q?gQBAQEBAwIDAQEBAQUBAQUBAQECAQYEFAEBAQEBAQEBgQiFaA2GQgEBAQECA?= =?us-ascii?q?QEBEBERDAEBJQQDCwEPAgEGAhUBBAIjAwICAh8GCxQBEAEBBAENBSKCTwGCV?= =?us-ascii?q?QMOIQEOjk2PNAGBOgKKH3qBMYEBggcBAQYEBIUqDQuCNAMGgRAqgn2ED4EYg?= =?us-ascii?q?VKDeiccgg2BFAEnHIJiPoIgQgEBgSsBEgEJPoJxNoIugn5bBjIyBA0VIRBbJ?= =?us-ascii?q?FUBAgMKBhgCDxQBBA4DlTWnDztdCoMomGkEhWAFJoNli2ADlyiWEI90j3svg?= =?us-ascii?q?XaDCQIEAgQFAg4BAQaBdiNrcHAVOyoBgj5QGQ6LR4JYDQwJg1CFFIVKcw0rA?= =?us-ascii?q?gYBCgEBAwmIeAEB?= IronPort-PHdr: A9a23:sqB0iB9XC3TNp/9uWMfoyV9kXcBvk7/oNQkT7Jcsl/RFdaHwt5jhP UmK4/JrgReJWIjA8PtLhqLQtLyoQm0P55uN8RVgOJxBXhMIk4MaygonBsPWA1HwK/jsYicmW s9FUQwt83SyK0MAHsH4ahXbqWGz6jhHHBL5OEJ1K+35F5SUgd6w0rW5+obYZENDgz/uCY4= IronPort-HdrOrdr: A9a23:BC7Vra/n12J1wOnbcqJuk+GOdr1zdoMgy1knxilNoENuE/Bwxv rBoB1E73DJYW4qKQ4dcdDpAtjmfZtFnaQForX5To3SIjUO31HYbr2KjLGSgwEIfhefygcz79 YaT0ETMqyUMbE+t7eH3ODaKadk/DDkytHTuQ629R4EJmsGB9ACnmVE40SgYzBLrWJ9dPwE/e +nl7J6Tk2bCA0qh6qAdx04dtmGg+eOuIPtYBYACRJiwhKJlymU5LnzFAXd9gsCUhtUqI1StV Ttokjc3OGOovu7whjT2yv49JJNgubszdNFGYilltUVEDPxkQylDb4RHIFq/QpF5t1H2mxayO UkkC1QZPibLEmhJF1dlCGdgjUIFgxetkMKh2Xo3UcL6vaJNQ7SQ/Ax9b6xNCGptHbJeLpHof N2N6XzjesIMfqIplWO2zCDPSsa5XacsD4sl/UegGdYVpZbYLhNrZYH9EcQC5sYGjnmgbpXXN WGIfusrsq+S2nqIkwxf1MftuCETzA2BFOLU0ICssua33xfm2141VIRwIgakm0b/JwwRpFY76 CcW54Y2o1mX4sTd+ZwFe0BScy4BijERg/NKnubJRDiGLscM3zAppbr6PE+5f2sepYP0Jwu8a 6xH29wpCo3YQbjGMeO1JpE/lTER3i8Ry3kzoVE651wqtTHNfHW2O24ORgTeu6b0rQi6+HgKo KO0aNtcrbexDHVaPN0NiXFKu5vFUU= X-IronPort-Anti-Spam-Filtered: true X-IronPort-AV: E=Sophos;i="5.84,313,1620691200"; d="scan'208";a="754850406" Received: from alln-core-4.cisco.com ([173.36.13.137]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 11 Aug 2021 17:18:06 +0000 Received: from mail.cisco.com (xbe-aln-006.cisco.com [173.36.7.21]) by alln-core-4.cisco.com (8.15.2/8.15.2) with ESMTPS id 17BHI2YE014147 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Wed, 11 Aug 2021 17:18:05 GMT Received: from xfe-rcd-002.cisco.com (173.37.227.250) by xbe-aln-006.cisco.com (173.36.7.21) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Wed, 11 Aug 2021 12:18:04 -0500 Received: from xfe-aln-003.cisco.com (173.37.135.123) by xfe-rcd-002.cisco.com (173.37.227.250) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Wed, 11 Aug 2021 12:18:03 -0500 Received: from NAM11-CO1-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-003.cisco.com (173.37.135.123) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Wed, 11 Aug 2021 12:18:03 -0500 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=kO70SHsNnoJIbqzZPjvuimiUSRuLNk+yZ+nPZ6zSbt8J1BB/DPJZxj1egswb7zOR/e9uciIC4Up/glZLEu9zvZbXj0PUV4f6gEXW/GDElqf9JPZ1Yc5JkEF5eAPg6kfIDpi20rJE5Qw1uqy1CBmuynZBzdEL9sGlyUQsR7Q/QWM2uZxDl3Yr/RDd6pmWAzq5vcfcUZ84pi568nsmExTQKV2PFCTCoZxBSKoQW+2hSyc8rZhDHthd7Cliu+Xqphyo1E6cWUMOkYSJhOp19BXhrAhbeGp0BR+iV+UMU4tuiE5IVday0NOi2XglNEYnBAgz3xcoRumaSVK4RuxqR9QkUw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=v3sJh/YtTxFu3cWev0NGSs/orgit/9sYN50lOtdLHV4=; b=C2jj19AM0w8OBtrQwXSIW7kJoUQtlmNiSCtMpoDSJESaCwSj1Kw7XQxB0O7xhHH2KhKc59n9h+vFuKMixsQFGgOuANNJQWScaFcNFk/FN4kfc3Dq2i5juA8+qpVu3kO3Aq2VHs1nJo/qHhMKUT3j1HpmS27NIQs3KxQt4OIwvJCCGrXO9ZZIhpnZaxEdkmP/y3H5YxbZhmaj6s2DmWl7AP9j8QSkx86bCUPPhceoh0D+GlV3JR/X7hTOJ/R9Mpw4BT/FPnUxc5PQgT9MZTlWdHoQ3jPM4Ut1HJwEYD00xaUhVi1hrkB0Mfqm5Skjqn2hfIJ43DERUPMmmn3DPcjg1w== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=v3sJh/YtTxFu3cWev0NGSs/orgit/9sYN50lOtdLHV4=; b=eVmkiy89iUY55Jks9jgm2AkAsGlh4lplPQYic9r3NzABrPPr/3PE39VrNQxO+v5gG8V+N/hO6R4iqMXcmxIlD9G/fqq0nvCza5hNw3qNNDFN8uD+6X8AthAjqSgTDj/ti61pkOkRY1TDWi0U7BrTIdDv0M9rkuIJZ4HDwbjCAWc= Received: from BYAPR11MB2887.namprd11.prod.outlook.com (2603:10b6:a03:89::27) by BYAPR11MB3015.namprd11.prod.outlook.com (2603:10b6:a03:86::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4394.18; Wed, 11 Aug 2021 17:18:01 +0000 Received: from BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::a19c:e0ca:19d9:19e2]) by BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::a19c:e0ca:19d9:19e2%3]) with mapi id 15.20.4394.023; Wed, 11 Aug 2021 17:18:01 +0000 From: "Acee Lindem (acee)" To: tom petch , Yaron Sheffer , Qin Wu , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeN3D1bao4BcToNQmG4p4waGPgvAwAE3DaAAANt8yEALXoBgA== Date: Wed, 11 Aug 2021 17:18:01 +0000 Message-ID: <22005B23-E43D-442A-B11C-7AAC6DB85D73@cisco.com> References: <728cb9ce17b44bed8a4ab059a9656620@huawei.com> In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/16.51.21071101 authentication-results: btconnect.com; dkim=none (message not signed) header.d=none;btconnect.com; dmarc=none action=none header.from=cisco.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: ac9b9fb4-e3e5-41f6-fac3-08d95cebf91c x-ms-traffictypediagnostic: BYAPR11MB3015: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB2887.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(39860400002)(136003)(366004)(376002)(346002)(396003)(86362001)(83380400001)(2616005)(110136005)(2906002)(15650500001)(71200400001)(296002)(33656002)(316002)(6512007)(8936002)(26005)(64756008)(66556008)(38100700002)(478600001)(122000001)(66446008)(36756003)(5660300002)(8676002)(966005)(53546011)(6506007)(4326008)(66476007)(6486002)(76116006)(66946007)(38070700005)(186003)(45980500001); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?Sk54RnVBYUJrN0VkWE1oRTYxOTI0QyszUUx0S1V0SkRRL2xiTlVWRTBKZmxY?= =?utf-8?B?cW54c0QyNWlzeE1Pc1ZLRW5ZSUZyeFZiU2c3UUsrVWJkM0cyQ1RINGlVTmYw?= =?utf-8?B?RWFtNGNSdTZvWjR1WnYvSXRLZ3JFNTkvb3h2aHhtbWV2b1hCa0hKZ2pjalFR?= =?utf-8?B?WEVUc0pGVFN4aTU4a2Q0MTFUZWQ5cjBQc1dKTmhZa2ZacktNUDRkaUZIdWUy?= =?utf-8?B?NU1iRG9XSjBZSXVzSXBpOXBKVXNYNkpnTGhrWE01Mi9oQ1hSVkUzYUJ2QmVp?= =?utf-8?B?SktmNEFSRjZjZURPdVdBMGhJRFhnWDZoVEt4a1FRcEhkc25MRG54V0NIRXZ0?= =?utf-8?B?L2d6Yk95ZC80T05mYWJ3ZkVCWVV1eUZjT2NEVk03L3VWdnR4TTJwaFFRWWdV?= =?utf-8?B?bGNERXBrSEYrWStBdkJBbHFHdEl0M2Zvb3ByWFRrMUNOY0xVRDdzMFoxNzhR?= =?utf-8?B?c3MrMWZIN2V2VWpZeE5qVE9VUVpYdkdPR2dtNDdUTGlsanBOUHRLTitqUGQz?= =?utf-8?B?UjJLa2xmaXBsYlZDWU0yNG1VZi9sT3Jzc2s0WXNoZUUwNk9EMExyREx3WWQx?= =?utf-8?B?M1hBQm54c3doVzVxaGFsa1lqL1hyY2p2M2Rpa1ZFeTlhZzIvZTF0NUFJOXky?= =?utf-8?B?N2h6T3ViKzRBaHFsVXV4MGpRK3R1cFBpTThPdzk2czExQzZxWTVEY2xtdEh4?= =?utf-8?B?ZFJzaGdxVUpnMyt4VFQrWFFWQmxyaFRoYTg3MURKZDZ6TTVMakp6Q1BiTkZi?= =?utf-8?B?U21VZkN3NnFvYWVVNWRtbU9PTkVrRnV6a2tpa29jS09RVDNaNUQwQ0pySzlu?= =?utf-8?B?TWsrRjlJMWpCV2p2SjZYZUxnUnZDK1gwOHhuemNUYzkzUlJWNHhyamlHNThL?= =?utf-8?B?UitHTFNXMnFQRVFXWUZ3eWF3OVp6UGhSanZHVE5HZnppd1VnSDFEanlEODFz?= =?utf-8?B?WE5HUGJrTlRTYWZ2RmhKaFRSMmN2eDJzUm10S0RLTGtBL1BFM2IyVHhxOHFZ?= =?utf-8?B?MzN6Ym02M1JOYjdhYUU4UHdLTWo1WlFWOHBvL0FrMW5aajhIblIzZ3NrajFo?= =?utf-8?B?U0E1M3VWcEFtMUxzcENvNW8xRGpoSnQ1K2JMcG9pb3NNUG9IcjVxNDc1bTJO?= =?utf-8?B?YlJjWmFGTDBNZWNIa2FlZ3U0ZGUxbEU5Vm1lWkpDd3RvV0hwcGtQc0p0NkJY?= =?utf-8?B?VXBKTWI2cVVNR2FjV1AyZHVNTlJBR1RBMUxMMUROaDNQTWhhdEpHM0tkYmE2?= =?utf-8?B?eENMWUhsTVhLS2UraFl4a203dlBMM1F0TG9kVW52Y055bUlnRmw3ak1QWS90?= =?utf-8?B?ZXVTNHd4TUE5NG5McjlqMjN4V0pQeHUzZG92UjJkdGl3cWJvZGJ2RFBhUFhp?= =?utf-8?B?YUdTb29HQ3gxZzRWV1FQQzd1TmtlOUNJaHJuUkFPamt4aGtWSDE5MXNhOWNm?= =?utf-8?B?TWljYVZEazBUNXBsL0lzMjhIMlF6WEdKUTNJb3I4UFk5cG9QWG9TV09NK3BQ?= =?utf-8?B?emFwbE9OcUhnd0ZSc1VUeGo2VVFKSTBhc2o3TDYwN1lGK0hvRXpGV05wRTY4?= =?utf-8?B?NUEyYU51TXp0RnAxczc4dlZ3d1JxWVI3ZDNNbkZqYzRtMTlTN09QVmhENUQx?= =?utf-8?B?V2sxL2lvdm12VFF3SUVTVWw0WnpNRVovQlh0OFJIZ0hRWW1CM3huL0hvWEJl?= =?utf-8?B?OS9abnVzN1d2TlVBWjdkZHBlMUtLUDh6cWRDMC9tZWNSMWU3Z0NzMG5tVERu?= =?utf-8?Q?9W3/J+VvM+IM2sk8g4IB4a9KkVuu1vF60ljP3zC?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="utf-8" Content-ID: Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB2887.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: ac9b9fb4-e3e5-41f6-fac3-08d95cebf91c X-MS-Exchange-CrossTenant-originalarrivaltime: 11 Aug 2021 17:18:01.4662 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: t+lV0TO+OyX3yUzPJHut8gPQRW6yM2hLOJLbAHiATqDpf7pmUAuc76NqUcffExVU X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3015 X-OriginatorOrg: cisco.com X-Outbound-SMTP-Client: 173.36.7.21, xbe-aln-006.cisco.com X-Outbound-Node: alln-core-4.cisco.com Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Aug 2021 17:18:14 -0000 SSdkIGFsc28gcmVjb21tZW5kIGNoYW5naW5nLCAia2V5IG5hbWVzIiB0byAia2V5LWlkcyBvciBr ZXktY2hhaW4gbmFtZXMiIHNpbmNlIHRoaXMgaXMgd2hhdCBpcyBhY3R1YWxseSBiZWluZyBhZHZl cnRpc2VkLg0KVGhhbmtzLA0KQWNlZQ0KDQrvu79PbiA4LzEwLzIxLCAxMTo1MyBBTSwgInRvbSBw ZXRjaCIgPGlldGZjQGJ0Y29ubmVjdC5jb20+IHdyb3RlOg0KDQogICAgRnJvbTogTHNyIDxsc3It Ym91bmNlc0BpZXRmLm9yZz4gb24gYmVoYWxmIG9mIFlhcm9uIFNoZWZmZXIgPHlhcm9uZi5pZXRm QGdtYWlsLmNvbT4NCiAgICBTZW50OiAxMCBBdWd1c3QgMjAyMSAxNDo1Nw0KDQogICAgU28gbGV0 IG1lIHN1Z2dlc3Q6DQoNCiAgICA8dHA+DQogICAgQW4gb2ZmbGlzdCBzdWdnZXN0aW9uIGZvciB5 b3UgdG8gY29uc2lkZXINCg0KICAgIE9MRA0KICAgICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2Vt ZW50IG9mIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRo YXQgdGhlIElHUCBwcm90ZWN0cyB0aGUgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0 aGUgUENFRCBUTFYgdXNpbmcgdGhlIG1lY2hhbmlzbXMgZGVmaW5lZCBpbg0KICAgICAgICBbUkZD NTMxMF0gYW5kIFtSRkM1NzA5XSwgaWYgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBk b2N1bWVudCBpcyB1c2VkLg0KDQogICAgICAgIE1vcmVvdmVyLCBhcyBzdGF0ZWQgaW4gW1JGQzUw ODhdIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUgYW55IGVuY3J5cHRpb24g bWVjaGFuaXNtcyB0byBwcm90ZWN0IHRoZSBzZWNyZWN5IG9mIHRoZSBQQ0VEIFRMViwgYW5kIHRo ZSBvcGVyYXRvciBtdXN0IGVuc3VyZSB0aGF0IG5vIHByaXZhdGUgZGF0YSBpcyBjYXJyaWVkIGlu IHRoZSBUTFYsIGZvciBleGFtcGxlIHRoYXQga2V5IG5hbWVzIGRvIG5vdCByZXZlYWwgc2Vuc2l0 aXZlIGluZm9ybWF0aW9uIGFib3V0IHRoZSBuZXR3b3JrLg0KDQogICAgTkVXDQoNCiAgICAgVGh1 cyBiZWZvcmUgYWR2ZXJ0aXNpbmcgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCB1c2luZyB0 aGUgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50LCB0aGUgSUdQIE1VU1QgYmUg a25vd24gdG8gcHJvdmlkZSBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IGZvciB0aGUgUENF RCBUTFYgdXNpbmcgdGhlIG1lY2hhbmlzbXMgZGVmaW5lZCBpbiAgW1JGQzUzMDRdLCAgW1JGQzUz MTBdIG9yIFtSRkM1NzA5XSwNCg0KICAgICAgICBNb3Jlb3ZlciwgYXMgc3RhdGVkIGluIFtSRkM1 MDg4XSBhbmQgW1JGQzUwODldLCBpZiB0aGUgSUdQIGRvZXMgbm90IHByb3ZpZGUgYW55IGVuY3J5 cHRpb24gbWVjaGFuaXNtcyB0byBwcm90ZWN0IHRoZSBzZWNyZWN5IG9mIHRoZSBQQ0VEIFRMViwg dGhlbiB0aGUgb3BlcmF0b3IgbXVzdCBlbnN1cmUgdGhhdCBubyBwcml2YXRlIGRhdGEgaXMgY2Fy cmllZCBpbiB0aGUgVExWLCBlLmcuIHRoYXQga2V5IG5hbWVzIGRvIG5vdCByZXZlYWwgc2Vuc2l0 aXZlIGluZm9ybWF0aW9uIGFib3V0IHRoZSBuZXR3b3JrLg0KDQogICAgVG9tIFBldGNoDQogICAg PC90cD4NCg0KICAgIFRoYW5rcywNCiAgICAgICAgICAgIFlhcm9uDQoNCiAgICBPbiA4LzEwLzIx LCAxNTowMSwgIlFpbiBXdSIgPGJpbGwud3VAaHVhd2VpLmNvbT4gd3JvdGU6DQoNCiAgICAgICAg WWFyb246DQogICAgICAgIFRoYW5rIGZvciBjbGFyaWZpY2F0aW9uLiBJIGFncmVlIHRvIGtlZXAg dGhlIGxhc3Qgc2VudGVuY2UgaW4gdGhlIHNlY29uZCBwYXJhZ3JhcGggb2Ygc2VjdGlvbiA3IGFz IGlzLg0KICAgICAgICBCdXQgSSBwcmVmZXIgdG8gYWRkIHRoZSBhZGRpdGlvbiByZWZlcmVuY2Vz IGluIHRoZSBwcmV2aW91cyBzZW50ZW5jZSBhcyBmb2xsb3dzOg0KICAgICAgICAiDQogICAgICAg IFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJz LCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAgIHByb3RlY3RlZCBm b3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYsLCB3aXRoIHRo ZSBtZWNoYW5pc21zIGRlZmluZWQgaW4NCiAgICAgICAgW1JGQzUzMTBdIGFuZCBbUkZDNTcwOV0g aWYgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBpcyB1c2VkLg0KDQog ICAgICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwgdGhlIElHUCBkbyBu b3QgcHJvdmlkZSBlbmNyeXB0aW9uIG1lY2hhbmlzbSB0byBwcm90ZWN0DQogICAgICAgIHRoZSBw cml2YWN5IG9mIHRoZSBQQ0VEIFRMViwgaWYgdGhpcyBpbmZvcm1hdGlvbiBjYW4gbWFrZSB0aGUg UENFUCBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9wZXJhdG9yIHNob3VsZCB0YWtlIHRo YXQgaW50byBjb25zaWRlcmF0aW9uLg0KICAgICAgICAiDQogICAgICAgIElmIHlvdSBiZXR0ZXIg d29yZGluZywgcGxlYXNlIGxldCBtZSBrbm93Lg0KDQogICAgICAgIC1RaW4NCiAgICAgICAgLS0t LS3pgq7ku7bljp/ku7YtLS0tLQ0KICAgICAgICDlj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgW21h aWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21dDQogICAgICAgIOWPkemAgeaXtumXtDogMjAyMeW5 tDjmnIgxMOaXpSAxOToyNg0KICAgICAgICDmlLbku7bkuro6IFFpbiBXdSA8YmlsbC53dUBodWF3 ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQogICAgICAgIOaKhOmAgTogZHJhZnQtaWV0Zi1sc3It cGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZzsgbGFzdC1jYWxsQGll dGYub3JnOyBsc3JAaWV0Zi5vcmcNCiAgICAgICAg5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2Fs bCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0 LTA1DQoNCiAgICAgICAgSGkgUWluLA0KDQogICAgICAgIFNvcnJ5LCBidXQgSSBmaW5kIHlvdXIg bGF0ZXN0IHByb3Bvc2VkIHRleHQgdmVyeSBjb25mdXNpbmcsIGJlY2F1c2Ugd2Ugc2hvdWxkIGJl IGZvY3VzaW5nIG9uIGludGVncml0eSBwcm90ZWN0aW9uIGFuZCBub3QgcHJpdmFjeSAoPXNlY3Jl Y3kpIG9mIHRoZSBUTFYuIFNvIEkgd291bGQgcHJlZmVyIHRvIGtlZXAgdGhlIHRleHQgYXMtaXMs IHdpdGggdGhlIGFkZGl0aW9uIG9mIGEgcmVmZXJlbmNlIHRvIHRoZSBJUy1JUyBhbmQgT1NQRiBz ZWN1cml0eSBtZWNoYW5pc21zIHRoYXQgd2VyZSBkaXNjdXNzZWQgb24gdGhpcyB0aHJlYWQuDQoN CiAgICAgICAgVGhhbmtzLA0KICAgICAgICAgICAgWWFyb24NCg0KICAgICAgICDvu79PbiA4LzEw LzIxLCAwNTowMCwgIlFpbiBXdSIgPGJpbGwud3VAaHVhd2VpLmNvbT4gd3JvdGU6DQoNCiAgICAg ICAgICAgIEhpLCBZYXJvbg0KICAgICAgICAgICAgLS0tLS3pgq7ku7bljp/ku7YtLS0tLQ0KICAg ICAgICAgICAgPuWPkeS7tuS6ujogWWFyb24gU2hlZmZlciBbbWFpbHRvOnlhcm9uZi5pZXRmQGdt YWlsLmNvbV0NCiAgICAgICAgICAgID7lj5HpgIHml7bpl7Q6IDIwMjHlubQ45pyIOeaXpSAyMTo0 NA0KICAgICAgICAgICAgPuaUtuS7tuS6ujogUWluIFd1IDxiaWxsLnd1QGh1YXdlaS5jb20+OyBz ZWNkaXJAaWV0Zi5vcmcNCiAgICAgICAgICAgID7mioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1k aXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9y ZzsgbHNyQGlldGYub3JnDQogICAgICAgICAgICA+5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2Fs bCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0 LTA1DQoNCiAgICAgICAgICAgID5IaSBRaW4sDQoNCiAgICAgICAgICAgID5UaGFuayB5b3UgZm9y IHlvdXIgcmVzcG9uc2UuDQoNCiAgICAgICAgICAgID4qIFJGQyAzNTY3IChmb3IgSVMtSVMpIGlz IG9ic29sZXRlZCBieSBSRkMgNTMwNC4gVW5mb3J0dW5hdGVseSBSRkMgNTMwNCBzdGlsbCB1c2Vz IEhNQUMtTUQ1LCB3aGljaCB3b3VsZCBiZSBjb25zaWRlcmVkIGluc2VjdXJlIG5vd2FkYXlzLg0K ICAgICAgICAgICAgPiogUkZDIDIxNTQgaXMgdmVyeSBvbGQgYW5kIEV4cGVyaW1lbnRhbCAoYW5k IG9ubHkgc3VwcG9ydHMgUlNBLU1ENSBzaWduYXR1cmVzKS4gSSdtIG5vdCBhbiBPU1BGIGV4cGVy dCBieSBhbnkgbWVhbnMsIGJ1dCBJJ20gd2lsbGluZyB0byBiZXQgdGhhdCB0aGVyZSBhcmUgbm8g cHJvZHVjdGlvbiBpbXBsZW1lbnRhdGlvbnMgb2YgdGhpcyBSRkMuIChJJ20gd2lsbGluZyB0byBi ZSBwcm92ZW4gd3JvbmcpLg0KICAgICAgICAgICAgPklzIHRoZXJlIGFub3RoZXIgUkZDIHRoYXQg ZGVmaW5lIGEgcHJvdGVjdGlvbiBtZWNoYW5pc20gZm9yIE9TUEY/DQoNCiAgICAgICAgICAgID5B bGwgaW4gYWxsLCB0aGVyZSBhcHBlYXIgdG8gYmUgbm8gZ29vZCBvcHRpb25zIGZvciB0aGUgSUdQ Lg0KDQogICAgICAgICAgICBbUWluIFd1XVllcywgd2UgZG8gaGF2ZSBhbHRlcm5hdGl2ZXMsIHNl ZSBMZXMncyByZXNwb25zZSBpbiB0aGUgc2VwYXJhdGUgZW1haWwNCiAgICAgICAgICAgICINCiAg ICAgICAgICAgIE9uIDgvOS8yMSwgMjM6MzYsIkxlcyBHaW5zYmVyZyAoZ2luc2JlcmcpIiA8Z2lu c2JlcmdAY2lzY28uY29tPiB3cm90ZToNCiAgICAgICAgICAgIEZvciBJUy1JUyBzZWN1cml0eSBw bGVhc2UgYWxzbyBzZWUgUkZDIDUzMTAuDQogICAgICAgICAgICBGb3IgT1NQRiBzZWN1cml0eSBw bGVhc2Ugc2VlIFJGQyA1NzA5Lg0KICAgICAgICAgICAgIg0KICAgICAgICAgICAgPlRvIHlvdXIg bGFzdCBwb2ludCwgd2hlbiBJIG1lbnRpb25lZCBkZWNvdXBsaW5nIHRoZSBtZWNoYW5pc21zLCBJ IHdhcyBzdWdnZXN0aW5nIHRvIHVzZSB0aGUgZXh0ZW5zaW9uIHlvdSBkZWZpbmUgZXZlbiBpZiB0 aGUgSUdQICpjYW5ub3QqIGJlIHNlY3VyZWQuIElmIHlvdSB0aGluayB0aGlzIGlzIHJlYXNvbmFi bGUsIHBsZWFzZSBhZGQgc3VjaCB0ZXh0IHRvIHRoZSBTZWN1cml0eSBDb25zaWRlcmF0aW9ucy4N Cg0KICAgICAgICAgICAgW1FpbiBXdV0gT2theSwgaG93IGFib3V0IHRoZSBmb2xsb3dpbmcgY2hh bmdlDQogICAgICAgICAgICBPTEQgVEVYVDoNCiAgICAgICAgICAgICINCiAgICAgICAgICAgIEFz IHN0YXRlZCBpbiBbUkZDNTA4OF0NCiAgICAgICAgICAgIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1Ag ZG8gbm90IHByb3ZpZGUgZW5jcnlwdGlvbiBtZWNoYW5pc20gdG8gcHJvdGVjdA0KICAgICAgICAg ICAgdGhlIHByaXZhY3kgb2YgdGhlIFBDRUQgVExWLCBpZiB0aGlzIGluZm9ybWF0aW9uIGNhbiBt YWtlIHRoZSBQQ0VQDQogICAgICAgICAgICBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9w ZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uIC4NCiAgICAgICAgICAg ICINCiAgICAgICAgICAgIE5FVyBURVhUOg0KICAgICAgICAgICAgIg0KICAgICAgICAgICAgQXMg c3RhdGVkIGluIFtSRkM1MDg4XQ0KICAgICAgICAgICAgYW5kIFtSRkM1MDg5XSwgdGhlIElHUCBk byBub3QgcHJvdmlkZSBlbmNyeXB0aW9uIG1lY2hhbmlzbSB0byBwcm90ZWN0DQogICAgICAgICAg ICB0aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRpb24gY2FuIG1h a2UgdGhlIFBDRVANCiAgICAgICAgICAgIHNlc3Npb24gbGVzcyBzZWN1cmUgdGhlbiB0aGUgb3Bl cmF0b3Igc2hvdWxkIHRha2UgdGhhdCBpbnRvIGNvbnNpZGVyYXRpb24NCiAgICAgICAgICAgIHdo ZW4gZ2V0dGluZyB0aGUgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGRlcGxv eWVkLg0KICAgICAgICAgICAgIg0KICAgICAgICAgICAgID5UaGFua3MsDQogICAgICAgICAgICAg PiAgICAgIFlhcm9uDQoNCiAgICAgICAgICAgID5PbiA4LzkvMjEsIDE2OjA5LCAiUWluIFd1IiA8 YmlsbC53dUBodWF3ZWkuY29tPiB3cm90ZToNCg0KICAgICAgICAgICAgICA+ICAgVGhhbmtzIFlh cm9uIGZvciB2YWx1YWJsZSBjb21tZW50cywgcGxlYXNlIHNlZSBteSByZXBseSBpbmxpbmUgYmVs b3cuDQogICAgICAgICAgICAgICAgLS0tLS3pgq7ku7bljp/ku7YtLS0tLQ0KICAgICAgICAgICAg ICAgID7lj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgdmlhIERhdGF0cmFja2VyIFttYWlsdG86bm9y ZXBseUBpZXRmLm9yZ10NCiAgICAgICAgICAgICAgICA+5Y+R6YCB5pe26Ze0OiAyMDIx5bm0OOac iDbml6UgMzoyNQ0KICAgICAgICAgICAgICAgID7mlLbku7bkuro6IHNlY2RpckBpZXRmLm9yZw0K ICAgICAgICAgICAgICAgID7mioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2Vj dXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYu b3JnDQogICAgICAgICAgICAgICAgPuS4u+mimDogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2Yg ZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1DQoNCiAgICAg ICAgICAgICAgICA+UmV2aWV3ZXI6IFlhcm9uIFNoZWZmZXINCiAgICAgICAgICAgICAgICA+UmV2 aWV3IHJlc3VsdDogTm90IFJlYWR5DQoNCiAgICAgICAgICAgICAgICA+VGhpcyBkb2N1bWVudCBk ZWZpbmVzIGEgbWVjaGFuaXNtIChhIFRMVikgdG8gYWR2ZXJ0aXNlIHRoZSBQQ0UgUHJvdG9jb2wg c2VjdXJpdHkgcmVxdWlyZWQgKHVzZSBvZiBUQ1AtQU8gYW5kIGl0cyBrZXkgSUQsIG9yIGFsdGVy bmF0aXZlbHkgdXNlIG9mIFRMUykgd2l0aGluIHRoZSByb3V0aW5nIHByb3RvY29sIGJlaW5nIHVz ZWQuDQoNCiAgICAgICAgICAgICAgICA+KiBTZWMuIDMuMTogSSBkb24ndCB1bmRlcnN0YW5kIHdo eSAiU0hPVUxEIGFkdmVydGlzZSIgYW5kIG5vdCBNVVNULiBFc3BlY2lhbGx5IGdpdmVuIHRoZSBz dHJpY3QgY2xpZW50IGJlaGF2aW9yIGRlZmluZWQgbGF0ZXIuDQogICAgICAgICAgICAgICAgW1Fp bl06IEkgYmVsaWV2ZSAiU0hPVUxEIGFkdmVydGlzZSIgaXMgY29uc2lzdGVudCB3aXRoIGNsaWVu dCBiZWhhdmlvciBkZWZpbmVkIGxhdGVyLCBpLmUuLCB3ZSBhcHBseSBTSE9VTEQgTk9UIGxhbmd1 YWdlIHRvIHRoZSBjbGllbnQgYmVoYXZpb3IuDQogICAgICAgICAgICAgICAgSSBhbSBub3Qgc3Vy ZSB3ZSBzaG91bGQgY2hhbmdlIGl0IGludG8gc3Ryb25nIGxhbmd1YWdlIHdpdGggTVVTVC4gU2lu Y2UgaWYgSUdQIGFkdmVydGlzZW1lbnQgZG9lc24ndCBpbmNsdWRlIFRDUC1BTw0KICAgICAgICAg ICAgICAgICBzdXBwb3J0IGZsYWcgYml0IG9yIFRMUyBzdXBwb3J0IGZsYWcgYml0LCBOTVMgbWF5 IGZhbGwgYmFjayB0byBjb25maWd1cmUgYm90aCBQQ0MgYW5kIFBDRSBzZXJ2ZXIgdG8gc3VwcG9y dCBUQ1AtQU8gb3IgVExTLiBUaGF0J3Mgb25lIG9mIHJlYXNvbiBJIHRoaW5rIHdoeSB3ZSBjaG9v c2UgdG8gdXNlIFNIT1VMRCBsYW5ndWFnZS4NCg0KICAgICAgICAgICAgICAgID4qIFNlYy4gMy4x OiBzaG91bGQgd2UgYWxzbyBzYXkgc29tZXRoaW5nIGFib3V0IHRoZSBjYXNlIHdoZXJlIGJvdGgg bWV0aG9kcyBhcmUgYWR2ZXJ0aXNlZCwgYW5kIHdoZXRoZXIgd2UgcmVjb21tZW5kIGZvciB0aGUg Y2xpZW50IHRvIHVzZSBvbmUgb2YgdGhlbSBvdmVyIHRoZSBvdGhlcj8NCg0KICAgICAgICAgICAg ICAgIFtRaW5dOiBJdCBpcyB1cCB0byBsb2NhbCBwb2xpY3ksIHdoaWNoIGhhcyBiZWUgY2xhcmlm aWVkIGluIHRoZSBlbmQgb2Ygc2VjdGlvbiAzLjEuIEhvcGUgdGhpcyBjbGFyaWZ5Lg0KDQogICAg ICAgICAgICAgICAgPiogU2VjLiA0OiB0eXBvIChhcHBlYXJzIHR3aWNlKSAtICJ0byBiZSBjYXJy aWVkIGluIHRoZSBQQ0VEIFRMViBvZiB0aGUgZm9yIHVzZSIuDQoNCiAgICAgICAgICAgICAgICBb UWluXTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBpbiB0aGUgbG9jYWwgY29weS4NCg0KICAgICAg ICAgICAgICAgID4qIFNlYy4gNzogdGhpcyBwaHJhc2UgYXBwZWFycyB0byBiZSBlc3NlbnRpYWwg dG8gc2VjdXJpdHkgb2YgdGhpcyBtZWNoYW5pc206ICJpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0 aGUgSUdQIGlzIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0 aGUgUENFRCBUTFYiLiBJIHdvdWxkIGV4cGVjdCBtb3JlIGd1aWRhbmNlOiBob3cgY2FuIHRoaXMg cHJvcGVydHkgYmUgZW5zdXJlZCBpbiB0aGUgcmVsZXZhbnQgSUdQcz8NCiAgICAgICAgICAgICAg ICBbUWluXTpJIHRoaW5rIG1lY2hhbmlzbSBkZWZpbmVkIGluIFtSRkMzNTY3XSBhbmQgW1JGQzIx NTRdIGNhbiBiZSB1c2VkIHRvIGVuc3VyZSBhdXRoZW50aWNpdHkgYW5kIGludGVncml0eSBvZiBP U1BGIExTQXMgb3IgSVNJUyBMU1BzIGFuZCB0aGVpciBUTFZzLiBIZXJlIGlzIHRoZSBwcm9wb3Nl ZCBjaGFuZ2VzOg0KICAgICAgICAgICAgICAgIE9MRCBURVhUOg0KICAgICAgICAgICAgICAgICIN CiAgICAgICAgICAgICAgICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mDQogICAgICAg ICAgICAgICAgICAgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3Vy ZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAgICAgICAgICAgICAgcHJvdGVjdGVkIGZvciBhdXRo ZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViBpZiB0aGUNCiAgICAgICAg ICAgICAgICAgICBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4N CiAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgTkVXIFRFWFQ6DQogICAgICAgICAg ICAgICAgIg0KICAgICAgICAgICAgICAgICAgIFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YN CiAgICAgICAgICAgICAgICAgICB0aGUgUENFIHNlY3VyaXR5IHBhcmFtZXRlcnMsIGl0IE1VU1Qg YmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMNCiAgICAgICAgICAgICAgICAgICBwcm90ZWN0ZWQg Zm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWIHdpdGggbWVj aGFuaXNtcyBkZWZpbmVkIGluIFtSRkMzNTY3XVtSRkMyMTU0XSBpZiB0aGUNCiAgICAgICAgICAg ICAgICAgICBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCiAg ICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgPiogQWxzbywgYSBwb3NzaWJseSB1bmlu dGVuZGVkIGNvbnNlcXVlbmNlIG9mIHRoaXMgcmVxdWlyZW1lbnQgaXMgdGhhdCBpZiB0aGUgSUdQ IGNhbm5vdCBiZSBwcm90ZWN0ZWQgaW4gYSBwYXJ0aWN1bGFyIGRlcGxveW1lbnQvcHJvZHVjdCwg dGhpcyBtZWNoYW5pc20gd291bGQgbm90IGJlIHVzZWQuIFBsZWFzZSBjb25zaWRlciBpZiB0aGlz IGlzIGxpa2VseSB0byBoYXBwZW4gYW5kIHdoZXRoZXIgd2Ugd2FudCB0byBmb3JlZ28gUENFUCB0 cmFuc3BvcnQgPnNlY3VyaXR5IGluIHN1Y2ggY2FzZXMuIE15IGd1dCBmZWVsIChub3QgYmFzZWQg b24gZXhwZXJpZW5jZSBpbiBzdWNoIG5ldHdvcmtzKSBpcyB0aGF0IHRoZSB0aHJlYXQgbW9kZWxz IGFyZSBkaWZmZXJlbnQgZW5vdWdoIHRoYXQgd2Ugc2hvdWxkIGRlY291cGxlIHRoZSBzZWN1cml0 eSBvZiBJR1AgZnJvbSB0aGF0IG9mIFBDRVAuDQoNCiAgICAgICAgICAgICAgICBbUWluXSBJIGFn cmVlIElHUCBzZWN1cml0eSBzaG91bGQgYmUgc2VwYXJhdGVkIGZyb20gUENFUCBzZWN1cml0eS4g SUdQIGV4dGVuc2lvbiBkZWZpbmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZCBieSB0aGUgUEND IHRvIHNlbGVjdCBQQ0Ugc2VydmVyIHdpdGggYXBwcm9wcmlhdGUgc2VjdXJpdHkgbWVjaGFuaXNt LiBPbiB0aGUgb3RoZXIgaGFuZCwgT3BlcmF0b3IgY2FuIGVpdGhlciB1c2UgSUdQIGFkdmVydGlz ZW1lbnQgZm9yIFBDRVAgc2VjdXJpdHkgY2FwYWJpbGl0eSBvciByZWx5IG9uIGxvY2FsIHBvbGlj eSB0byBzZWxlY3QgUENFLiBJZiBvcGVyYXRvciBmZWVscyBJR1AgYWR2ZXJ0aXNlbWVudCBpcyBu b3Qgc2VjdXJlLCBoZSBjYW4gZmFsbCBiYWNrIHRvIGxvY2FsIHBvbGljeSBvciByZWx5IG9uIG1h bnVhbCBjb25maWd1cmF0aW9uLiBIb3BlIHRoaXMgY2xhcmlmaWVzLg0KDQoNCg0KDQoNCg0KDQog ICAgX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18NCiAgICBM c3IgbWFpbGluZyBsaXN0DQogICAgTHNyQGlldGYub3JnDQogICAgaHR0cHM6Ly93d3cuaWV0Zi5v cmcvbWFpbG1hbi9saXN0aW5mby9sc3INCg0K From nobody Wed Aug 11 13:13:45 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F1033A22DA; Wed, 11 Aug 2021 13:13:30 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: Robert Sparks via Datatracker To: Cc: draft-ietf-sacm-coswid.all@ietf.org, last-call@ietf.org, sacm@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <162871281039.25396.11097809400052844723@ietfa.amsl.com> Reply-To: Robert Sparks Date: Wed, 11 Aug 2021 13:13:30 -0700 Archived-At: Subject: [secdir] Secdir last call review of draft-ietf-sacm-coswid-18 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Aug 2021 20:13:31 -0000 Reviewer: Robert Sparks Review result: Has Issues I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document has issues to address before publication as a Proposed Standard RFC. Summary: This document defines a representation of software identification using CBOR leveraging COSE. It attempts to reflect what can be represented with SWIDs XML to the degree possible, and is capable of representing things that SWID cannot. The SWID specification is behind a paywall. I have not read it, and cannot comment on whether there are security considerations discussed there that are well known by people with a lot of experience with this technology which may not be explicitly reflected in this document by way of omission-because-obvious. Ambiguity in the SWID spec is explicitly imported as ambiguity in this one (see, in particular, the definition of "media (index 10)". The considerations section spends some time discussing challenges around signature validation, particularly with a declared out-of-scope identification of a need for "an association between the signature and the tag's entity item associated corresponding to the software provider." I am not yet comfortable that I understand the ramifications of this discussion, and encourage the ADs to look closely. Major Issue: This document needs to discuss privacy issues around the creation, transport, and storage of CoSWID objects. I suggest leaning on the style of the discussion in the security considerations section of RFC8412, noting the potential issues with identifying the primary user of a system, that user's rights on the system, and (when evidence is present) exposure of runtime information. Should there be discussion of recovery from loss of control of the signing credentials specific to CoSWID? For example, would a tag-id have to be abandoned after such a loss? Minor Issues: In section 2.1, do you want to constrain names that can be registered to a subset of what validates as NMToken? What XML allows there may be surprising. There may also be a need to inspect what you're pointing to for a definition. If you follow the current reference (https://www.w3.org/TR/2004/REC-xmlschema-2-20041028), you have to follow through to the obsoleted https://www.w3.org/TR/2000/WD-xml-2e-20000814, which in the expansion of NMToken allows a wide range of things by way of CombiningChar and Extender. Note that the rules in the current spec at https://www.w3.org/TR/xml/#NT-Nmtoken and https://www.w3.org/TR/xml/#NT-NameChar have a different production. Your point is to make sure that anything you register will survive parsing when used in SWID, so restricting to an even smaller subset should be ok. And fwiw, your capitalization "NMToken" doesn't match any of the inconsistent variants of the production in the referenced doc. At 2.6 reg-id (index 32) you say "The scope SHOULD be the scope of an organization." Could you add some text motivating why, and what trouble arises from using other scopes? Or would the sentence be better stated as "The scope will usually be the scope of an organization."? At 2.9.1 I worry that "The hash-value byte string value MUST represent the raw hash value of the hashed resource generated using the hash algorithm indicated by the hash-alg-id." is underspecified. The diagram in RC6920 section 6 and some of its examples convey what's meant a little better perhaps. Is there a way to help avoid getting a string that looks like "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855"? Consider RFC6648 (BCP 178) where you are reserving "x_" name prefixes for private use. Consider setting the contact for the IANA registrations to a group, area, or the IESG instead of a person. Nits: This sentence really needs this comma: OLD: In the context of software tagging software patching and updating differ in an important way. NEW: In the context of software tagging, software patching and updating differ in an important way. In section 2, I suggest: OLD: As such, it is not always possible to mechanically translate between corresponding attribute names in the two formats. In such cases, a manual mapping will need to be used. NEW: As such, it is not always possible to simply transform corresponding attribute names between the two formats. In such cases, an explicitly provided mapping will need to be used. Consider repeating the observation of SWIDs lack of advice about media (provided in section 2.3) when it comes up in 2.4. From nobody Thu Aug 12 03:27:10 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id BBCA93A00DC for ; Thu, 12 Aug 2021 03:27:08 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit From: Tero Kivinen via Datatracker To: X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Reply-To: secdir-secretary@mit.edu, Tero Kivinen Message-ID: <162876402807.24002.10625672022042502099@ietfa.amsl.com> Date: Thu, 12 Aug 2021 03:27:08 -0700 Archived-At: Subject: [secdir] Assignments X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 12 Aug 2021 10:27:09 -0000 Review instructions and related resources are at: http://tools.ietf.org/area/sec/trac/wiki/SecDirReview For telechat 2021-08-12 Reviewer LC end Draft Catherine Meadows 2021-07-07 draft-ietf-httpbis-cache-header For telechat 2021-08-26 Reviewer LC end Draft Stefan Santesson 2021-08-11 draft-ietf-bier-te-arch Last calls: Reviewer LC end Draft Nancy Cam-Winget R2021-06-28 draft-ietf-opsec-ipv6-eh-filtering Steve Hanna 2021-03-22 draft-ietf-regext-secure-authinfo-transfer David Mandelberg RNone draft-ietf-lwig-minimal-esp Catherine Meadows 2021-04-14 draft-ietf-ntp-interleaved-modes Catherine Meadows 2021-07-07 draft-ietf-httpbis-cache-header Sandra Murphy 2020-10-15 draft-ietf-tls-external-psk-importer Tim Polk 2021-08-06 draft-ietf-opsawg-vpn-common Stefan Santesson 2021-08-11 draft-ietf-bier-te-arch Valery Smyslov None draft-ietf-netconf-crypto-types Mališa Vučinić 2021-06-10 draft-ietf-httpbis-semantics Samuel Weiler 2021-08-25 draft-ietf-alto-path-vector Brian Weis 2021-08-19 draft-ietf-dnsop-svcb-https Klaas Wierenga 2020-12-02 draft-ietf-core-echo-request-tag Klaas Wierenga 2020-05-26 draft-ietf-kitten-krb-spake-preauth Paul Wouters 2021-06-10 draft-ietf-httpbis-messaging Liang Xia 2021-03-17 draft-ietf-core-sid Early review requests: Reviewer Due Draft Stephen Farrell 2021-06-21 draft-ietf-idr-bgpls-srv6-ext Tina Tsou 2021-08-25 draft-ietf-opsawg-sbom-access Sean Turner 2021-08-18 draft-ietf-taps-interface Loganaden Velvindron 2021-08-18 draft-ietf-taps-arch Next in the reviewer rotation: Klaas Wierenga Christopher Wood Paul Wouters Liang Xia Dacheng Zhang Derek Atkins John Bradley Nancy Cam-Winget Shaun Cooley Alan DeKok From nobody Thu Aug 12 12:25:56 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8EDCC3A4732 for ; Thu, 12 Aug 2021 12:25:51 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.499 X-Spam-Level: X-Spam-Status: No, score=-1.499 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, KHOP_HELO_FCRDNS=0.399, SPF_HELO_NONE=0.001, SPF_NONE=0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7EV5OBZQge2B for ; Thu, 12 Aug 2021 12:25:47 -0700 (PDT) Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 510033A4746 for ; Thu, 12 Aug 2021 12:25:46 -0700 (PDT) Received: from kduck.mit.edu ([24.16.140.251]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.14.7/8.12.4) with ESMTP id 17CJPaUN019730 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT); Thu, 12 Aug 2021 15:25:44 -0400 Date: Thu, 12 Aug 2021 12:25:36 -0700 From: Benjamin Kaduk To: Robert Sparks Cc: secdir@ietf.org Message-ID: <20210812192536.GQ50759@kduck.mit.edu> References: <161334300902.2919.6271890974537335347@ietfa.amsl.com> MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <161334300902.2919.6271890974537335347@ietfa.amsl.com> Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-6lo-plc-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 12 Aug 2021 19:25:54 -0000 Hi Robert, Many thanks for this review; I entered a discuss ballot for some of the topics you identified. -Ben On Sun, Feb 14, 2021 at 02:50:09PM -0800, Robert Sparks via Datatracker wrote: > Reviewer: Robert Sparks > Review result: Has Issues > > I have reviewed this document as part of the security directorate's ongoing > effort to review all IETF documents being processed by the IESG. These comments > were written primarily for the benefit of the security area directors. Document > editors and WG chairs should treat these comments just like any other last call > comments. > > This document has issues that should be addressed before publication as > Proposed Standard RFC. > > Document reviewed: draft-ietf-6lo-plc-05 > > This document's primary point is to standardize mappings of ipv6 identifiers > for using ipv6 over IEEE 1901.1, 1901.2, and IT-T G.9903 networks. > > Those standards are not publicy available, and I have not reviewed how these > mappings and the security mechanisms in those protocols interact. > > The document has content that is not needed for its purpose. Section 5 in > particular might be useful in an informational RFC, but is has no impact on > someone implementing what this document is trying to standardize. > > The security considerations section speaks primarily to generic considerations > for 6lo-like networks. There is no specific discussion of the impact of the > identifier mappings with the underlying protocols, in particular the > constraints that don't allow using the full number of bits of entropy in the > identifiers in those underlying protocols. There is only a passing mention of > RFC8065. > > Implementors are advised to "look at" RFC8604 when considering building stable > addresses, but this document specifies doing things that RFC8604 recommends > against (see the use of RFC2464, for example). More discussion seems warranted. > > There is a short mention of the possibility of acquiring a network encryption > key during onboarding but there's no discussion about what that means for these > specific layer-2 protocols. > > Editorial comments: > > At section 4.6, the first paragraph can make its point more clearly. All that's > needed to say is that the lower layers handle segmentation and reassembly, but > the adaptation layer still needs to be ready to do so in the lower layer cant > handle the 1280 octet MTU. At the last paragraph, when you say "referring to" > do you mean "as specified in"? > > At section 7, "For security consideration, link layer security is guaranteed in > every PLC technology." needs clarification. Do you mean the three protocols > discussed here provide link layer security? Or do you mean to say that if > anyone plans to provide an adaptation layer to some other PLC protocol, that it > must provide link layer security? Or do you mean something else? > > Nit: Expand LLN on first use. > > > -- > last-call mailing list > last-call@ietf.org > https://www.ietf.org/mailman/listinfo/last-call From nobody Thu Aug 12 15:36:55 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id E8CAA3A2C95; Fri, 6 Aug 2021 06:19:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1628255950; bh=aS/pzpABnjo0k8u5UryccGkL2oRLa/3Uw5uvbZ8KTck=; h=To:From:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=R6im6WfVlVGt4szd11J9tA/9cqRI1cnzxQAwe3GjF97+PM1JcqVwUrVkmOhqhqR+R LbHHdAjjyhHfPN08bZzdyGn8Z18BXTPvi41Ayv3fISCtnUW0988xTRA6mZFzZ4msla xoKK4Wt72NInPSphtWXKQy2hUkSTaLELzRzMtlUA= X-Mailbox-Line: From new-work-bounces@ietf.org Fri Aug 6 06:19:09 2021 Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 447443A2C8F; Fri, 6 Aug 2021 06:19:09 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1628255949; bh=aS/pzpABnjo0k8u5UryccGkL2oRLa/3Uw5uvbZ8KTck=; h=To:From:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=MRUhzbi7UZsBPwb6esdWVJswM3hjgdhTY0iU928T6TvbiMM0dXTXZIWtHwIu/R5P5 TA4qHCDahmXh+RHVukZmvj2sbltXAmEZGzZIHoOggk3yH7em0Ymomr8g4uaCmUTKln J6RpkwzD+MfFVXAJIhucgDHZHp4nWs8+Id7wQzas= X-Original-To: new-work@ietfa.amsl.com Delivered-To: new-work@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D6A8F3A2C8E for ; Fri, 6 Aug 2021 06:19:07 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.902 X-Spam-Level: X-Spam-Status: No, score=-0.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id I2ZDqsw9xJqP for ; Fri, 6 Aug 2021 06:19:06 -0700 (PDT) Received: from raoul.w3.org (raoul.w3.org [128.30.52.128]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3AE063A2C8A for ; Fri, 6 Aug 2021 06:19:05 -0700 (PDT) Received: from [45.145.248.155] (helo=jiaxueyuandeMacBook-Pro.local) by raoul.w3.org with esmtpsa (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.92) (envelope-from ) id 1mBzkd-0002CD-Oi for new-work@ietf.org; Fri, 06 Aug 2021 13:19:04 +0000 To: new-work@ietf.org From: xueyuan Message-ID: Date: Fri, 6 Aug 2021 21:18:58 +0800 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:78.0) Gecko/20100101 Thunderbird/78.12.0 MIME-Version: 1.0 Content-Language: en-US Archived-At: X-BeenThere: new-work@ietf.org X-Mailman-Version: 2.1.29 Precedence: list Content-Transfer-Encoding: base64 Content-Type: text/plain; charset="utf-8"; Format="flowed" Errors-To: new-work-bounces@ietf.org Sender: "new-work" Archived-At: X-Mailman-Approved-At: Thu, 12 Aug 2021 15:36:54 -0700 Subject: [secdir] [new-work] Proposed W3C Charters: Internationalization Working Group and Interest Group (until 2021-09-03/04) X-BeenThere: secdir@ietf.org List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 Aug 2021 13:19:13 -0000 CkhlbGxvLAoKVG9kYXkgVzNDIEFkdmlzb3J5IENvbW1pdHRlZSBSZXByZXNlbnRhdGl2ZXMgcmVj ZWl2ZWQgYSBQcm9wb3NhbAp0byByZXZpZXcgZHJhZnQgY2hhcnRlcnMgZm9yIHRoZSBmb2xsb3dp bmcgZ3JvdXBzOgoKSW50ZXJuYXRpb25hbGl6YXRpb24gV29ya2luZyBHcm91cCAoaTE4biBXRyk6 Cmh0dHBzOi8vd3d3LnczLm9yZy9JbnRlcm5hdGlvbmFsL2kxOG4tYWN0aXZpdHkvaTE4bi13Zy9v dGhlci1jaGFydGVycy9wcm9wb3NlZC1jaGFydGVyLTIwMjEtMjAyMy5odG1sCgpJbnRlcm5hdGlv bmFsaXphdGlvbiBJbnRlcmVzdCBHcm91cCAoaTE4biBJRyk6Cmh0dHBzOi8vd3d3LnczLm9yZy9J bnRlcm5hdGlvbmFsL2kxOG4tYWN0aXZpdHkvaTE4bi1pZy9vdGhlci1jaGFydGVycy9wcm9wb3Nl ZC1jaGFydGVyLTIwMjEtMjAyMy5odG1sCgpBcyBwYXJ0IG9mIGVuc3VyaW5nIHRoYXQgdGhlIGNv bW11bml0eSBpcyBhd2FyZSBvZiBwcm9wb3NlZCB3b3JrCmF0IFczQywgdGhlIGRyYWZ0IGNoYXJ0 ZXJzIGFyZSBwdWJsaWMgZHVyaW5nIHRoZSBBZHZpc29yeQpDb21taXR0ZWUgcmV2aWV3IHBlcmlv ZC4KClczQyBpbnZpdGVzIHB1YmxpYyBjb21tZW50cyB0aHJvdWdoIDAzOjU5IFVUQyBvbiAyMDIx LTA5LTA0CigyMzo1OSwgQm9zdG9uIHRpbWUgb24gMjAyMS0wOS0wMykgb24gdGhlIHByb3Bvc2Vk IGNoYXJ0ZXJzLgpQbGVhc2Ugc2VuZCBjb21tZW50cyB0byBwdWJsaWMtbmV3LXdvcmtAdzMub3Jn LAp3aGljaCBoYXMgYSBwdWJsaWMgYXJjaGl2ZToKIMKgIGh0dHA6Ly9saXN0cy53My5vcmcvQXJj aGl2ZXMvUHVibGljL3B1YmxpYy1uZXctd29yay8KCk90aGVyIHRoYW4gY29tbWVudHMgc2VudCBp biBmb3JtYWwgcmVzcG9uc2VzIGJ5IFczQyBBZHZpc29yeQpDb21taXR0ZWUgUmVwcmVzZW50YXRp dmVzLCBXM0MgY2Fubm90IGd1YXJhbnRlZSBhIHJlc3BvbnNlIHRvCmNvbW1lbnRzLiBJZiB5b3Ug d29yayBmb3IgYSBXM0MgTWVtYmVyIFsxXSwgcGxlYXNlIGNvb3JkaW5hdGUKeW91ciBjb21tZW50 cyB3aXRoIHlvdXIgQWR2aXNvcnkgQ29tbWl0dGVlIFJlcHJlc2VudGF0aXZlLiBGb3IKZXhhbXBs ZSwgeW91IG1heSB3aXNoIHRvIG1ha2UgcHVibGljIGNvbW1lbnRzIHZpYSB0aGlzIGxpc3QgYW5k CmhhdmUgeW91ciBBZHZpc29yeSBDb21taXR0ZWUgUmVwcmVzZW50YXRpdmUgcmVmZXIgdG8gaXQg ZnJvbSBoaXMKb3IgaGVyIGZvcm1hbCByZXZpZXcgY29tbWVudHMuCgpJZiB5b3Ugc2hvdWxkIGhh dmUgYW55IHF1ZXN0aW9ucyBvciBuZWVkIGZ1cnRoZXIgaW5mb3JtYXRpb24sIHBsZWFzZQpjb250 YWN0IFJpY2hhcmQgSXNoaWRhLCBJbnRlcm5hdGlvbmFsaXphdGlvbiBTdGFmZiBDb250YWN0LCBh dCAKPGlzaGlkYUB3My5vcmc+LgoKVGhhbmsgeW91LAoKWHVleXVhbiBKaWEswqAgVzNDIE1hcmtl dGluZyAmIENvbW11bmljYXRpb25zCgpbMV0gaHR0cDovL3d3dy53My5vcmcvQ29uc29ydGl1bS9N ZW1iZXIvTGlzdAoKX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X18KbmV3LXdvcmsgbWFpbGluZyBsaXN0Cm5ldy13b3JrQGlldGYub3JnCmh0dHBzOi8vd3d3Lmll dGYub3JnL21haWxtYW4vbGlzdGluZm8vbmV3LXdvcmsK From nobody Thu Aug 12 17:39:23 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B3D163A1122 for ; Thu, 12 Aug 2021 17:39:15 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.099 X-Spam-Level: X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=mandelberg.org Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 9eQzjOjrk1sa for ; Thu, 12 Aug 2021 17:39:10 -0700 (PDT) Received: from mail-vs1-xe64.google.com (mail-vs1-xe64.google.com [IPv6:2607:f8b0:4864:20::e64]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 910603A1118 for ; Thu, 12 Aug 2021 17:39:10 -0700 (PDT) Received: by mail-vs1-xe64.google.com with SMTP id e9so5140671vst.6 for ; Thu, 12 Aug 2021 17:39:10 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:dkim-signature:to:from:subject:message-id:date :user-agent:mime-version:content-language:content-transfer-encoding; bh=H7cQTIvsbueZIYjnYTdVy65RTMxWSQwUGe05FpSmqQY=; b=CfVWl3ncs9Jps4fssuxclm/KUbpm1Fda5CVXQnGC+/yfJJuSvQhEM9l9BlJPGlmMav kcZjGkRK9VwZqTQFkRVe8+P9Xyd/C5a/czsyqw0ZPTCpF5KTllYAZ91ghjWSmGLqZZfZ 59NUw3ZxYG/58l3+w29h90EbM2LU5fGLtpz84GsEwn02z+d5T2gjyfhER2wYOSmejhp2 M2TlajihSiCBMz37zJgNm57F08Y982G64cBJrsTWdPO4ycAjsqy4C5Wjkhl9rYNgMR9F Qsc2B8KGqav0EMiuQMIXNevGde0836SEYsKT98flkIC601SjBr3z4dEN2xQwFVdviFJi Agqg== X-Gm-Message-State: AOAM531/zyuaX5gtu3WNOAqNqlFIuTq2AsVh2DRt5SRUZyDVoaRVQzAH FtnQ281ZYv83bIya17qw6I2piZwW3hTFWwawWw1f2m51Fwkphg== X-Google-Smtp-Source: ABdhPJw3cvlPBL4KaCmH2hAFIurPYBzD90y+JgA1+igjjYYsS6iHmnlGHYudtudqFHF4DK9mYPIteLMnsT8k X-Received: by 2002:a67:2687:: with SMTP id m129mr6106507vsm.52.1628815148495; Thu, 12 Aug 2021 17:39:08 -0700 (PDT) Received: from uriel.mandelberg.org (pool-74-104-157-60.bstnma.fios.verizon.net. [74.104.157.60]) by smtp-relay.gmail.com with ESMTPS id h26sm947653uax.3.2021.08.12.17.39.08 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 12 Aug 2021 17:39:08 -0700 (PDT) X-Relaying-Domain: mandelberg.org Received: from [10.0.2.206] (sakaar.virgo.mandelberg.org [10.0.2.1]) by uriel.mandelberg.org (Postfix) with ESMTPSA id 4E8D01C604F; Thu, 12 Aug 2021 20:39:07 -0400 (EDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=mandelberg.org; s=202103; t=1628815147; bh=IQarmCQRGo8Zt5ZtSQRMuLUMaEWMru3aVX3niAyFbB8=; h=To:From:Subject:Date:From; b=EgWQOzX2HpAsNlrdDeB486C7vE0WL5q2Mzu9c+9KkWuvgG9gJVmwNhvK8uXDEtCnE B4uZhklgg6JOmSE7sGxo3MBVjNHcjyy2LZ5WLXvpu0uPOVS9qeCXX0+KZk15P/O9DP RCE9ecHLirn99i2bdgfNp/PG7z63eqNvEWuBSQ9u9vdvOL7pDWF4q9b4BgRiOa5hnp 2EK0OCgNoqyedB2u7Mqti0zaa/RHmCkZ7CkZs9vfyAPzuYnONvrV2D7uha38iCn192 QeLAcpSosl6wp3qgV8qkumc0ZpboQaWeiyhiO4/3hLGA1os3Tl0j+R3yl07XrLIoW9 en13aOkg0+MHA== To: iesg@ietf.org, secdir@ietf.org, draft-ietf-lwig-minimal-esp.all@ietf.org From: David Mandelberg Message-ID: <691511b1-d62c-b086-82d9-f08a1d247f1d@mandelberg.org> Date: Thu, 12 Aug 2021 20:39:05 -0400 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:78.0) Gecko/20100101 Thunderbird/78.12.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Language: en-US Content-Transfer-Encoding: 7bit Archived-At: Subject: [secdir] secdir review of draft-ietf-lwig-minimal-esp-06 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Aug 2021 00:39:16 -0000 I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. The summary of the review is Ready. From nobody Thu Aug 12 18:21:49 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6488B3A13B2; Thu, 12 Aug 2021 18:21:47 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vflsuqp1d-OZ; Thu, 12 Aug 2021 18:21:41 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C4F913A13B6; Thu, 12 Aug 2021 18:21:40 -0700 (PDT) Received: from fraeml703-chm.china.huawei.com (unknown [172.18.147.226]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4Gm5NX1lNsz6F8LF; Fri, 13 Aug 2021 09:21:00 +0800 (CST) Received: from dggeml703-chm.china.huawei.com (10.3.17.136) by fraeml703-chm.china.huawei.com (10.206.15.52) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2308.8; Fri, 13 Aug 2021 03:21:36 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml703-chm.china.huawei.com (10.3.17.136) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Fri, 13 Aug 2021 09:21:34 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Fri, 13 Aug 2021 09:21:34 +0800 From: Qin Wu To: "Acee Lindem (acee)" , tom petch , Yaron Sheffer , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeP4X50ao4BcToNQmG4p4waGPgvAw== Date: Fri, 13 Aug 2021 01:21:34 +0000 Message-ID: <3d7ca7c307fa4561b5c3da82fa0e2bd2@huawei.com> Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.136.123.117] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Aug 2021 01:21:48 -0000 VGhhbmtzIEFjZWUgYW5kIFRvbSBmb3IgZ29vZCBzdWdnZXN0aW9uLCB3ZSB3aWxsIHRha2UgdGhl bSBpbnRvIGFjY291bnQuDQoNCi1RaW4NCi0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCuWPkeS7tuS6 ujogQWNlZSBMaW5kZW0gKGFjZWUpIFttYWlsdG86YWNlZUBjaXNjby5jb21dIA0K5Y+R6YCB5pe2 6Ze0OiAyMDIx5bm0OOaciDEy5pelIDE6MTgNCuaUtuS7tuS6ujogdG9tIHBldGNoIDxpZXRmY0Bi dGNvbm5lY3QuY29tPjsgWWFyb24gU2hlZmZlciA8eWFyb25mLmlldGZAZ21haWwuY29tPjsgUWlu IFd1IDxiaWxsLnd1QGh1YXdlaS5jb20+OyBzZWNkaXJAaWV0Zi5vcmcNCuaKhOmAgTogZHJhZnQt aWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZw0K5Li7 6aKYOiBSZTogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRp c2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1DQoNCkknZCBhbHNvIHJlY29tbWVuZCBjaGFuZ2lu ZywgImtleSBuYW1lcyIgdG8gImtleS1pZHMgb3Iga2V5LWNoYWluIG5hbWVzIiBzaW5jZSB0aGlz IGlzIHdoYXQgaXMgYWN0dWFsbHkgYmVpbmcgYWR2ZXJ0aXNlZC4NClRoYW5rcywNCkFjZWUNCg0K 77u/T24gOC8xMC8yMSwgMTE6NTMgQU0sICJ0b20gcGV0Y2giIDxpZXRmY0BidGNvbm5lY3QuY29t PiB3cm90ZToNCg0KICAgIEZyb206IExzciA8bHNyLWJvdW5jZXNAaWV0Zi5vcmc+IG9uIGJlaGFs ZiBvZiBZYXJvbiBTaGVmZmVyIDx5YXJvbmYuaWV0ZkBnbWFpbC5jb20+DQogICAgU2VudDogMTAg QXVndXN0IDIwMjEgMTQ6NTcNCg0KICAgIFNvIGxldCBtZSBzdWdnZXN0Og0KDQogICAgPHRwPg0K ICAgIEFuIG9mZmxpc3Qgc3VnZ2VzdGlvbiBmb3IgeW91IHRvIGNvbnNpZGVyDQoNCiAgICBPTEQN CiAgICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZiB0aGUgUENFIHNlY3VyaXR5IHBh cmFtZXRlcnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgcHJvdGVjdHMgdGhlIGF1 dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWIHVzaW5nIHRoZSBtZWNo YW5pc21zIGRlZmluZWQgaW4NCiAgICAgICAgW1JGQzUzMTBdIGFuZCBbUkZDNTcwOV0sIGlmIHRo ZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCg0KICAgICAg ICBNb3Jlb3ZlciwgYXMgc3RhdGVkIGluIFtSRkM1MDg4XSBhbmQgW1JGQzUwODldLCB0aGUgSUdQ IGRvIG5vdCBwcm92aWRlIGFueSBlbmNyeXB0aW9uIG1lY2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUg c2VjcmVjeSBvZiB0aGUgUENFRCBUTFYsIGFuZCB0aGUgb3BlcmF0b3IgbXVzdCBlbnN1cmUgdGhh dCBubyBwcml2YXRlIGRhdGEgaXMgY2FycmllZCBpbiB0aGUgVExWLCBmb3IgZXhhbXBsZSB0aGF0 IGtleSBuYW1lcyBkbyBub3QgcmV2ZWFsIHNlbnNpdGl2ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUg bmV0d29yay4NCg0KICAgIE5FVw0KDQogICAgIFRodXMgYmVmb3JlIGFkdmVydGlzaW5nIHRoZSBQ Q0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgdXNpbmcgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4g dGhpcyBkb2N1bWVudCwgdGhlIElHUCBNVVNUIGJlIGtub3duIHRvIHByb3ZpZGUgYXV0aGVudGlj YXRpb24gYW5kIGludGVncml0eSBmb3IgdGhlIFBDRUQgVExWIHVzaW5nIHRoZSBtZWNoYW5pc21z IGRlZmluZWQgaW4gIFtSRkM1MzA0XSwgIFtSRkM1MzEwXSBvciBbUkZDNTcwOV0sDQoNCiAgICAg ICAgTW9yZW92ZXIsIGFzIHN0YXRlZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwgaWYgdGhl IElHUCBkb2VzIG5vdCBwcm92aWRlIGFueSBlbmNyeXB0aW9uIG1lY2hhbmlzbXMgdG8gcHJvdGVj dCB0aGUgc2VjcmVjeSBvZiB0aGUgUENFRCBUTFYsIHRoZW4gdGhlIG9wZXJhdG9yIG11c3QgZW5z dXJlIHRoYXQgbm8gcHJpdmF0ZSBkYXRhIGlzIGNhcnJpZWQgaW4gdGhlIFRMViwgZS5nLiB0aGF0 IGtleSBuYW1lcyBkbyBub3QgcmV2ZWFsIHNlbnNpdGl2ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUg bmV0d29yay4NCg0KICAgIFRvbSBQZXRjaA0KICAgIDwvdHA+DQoNCiAgICBUaGFua3MsDQogICAg ICAgICAgICBZYXJvbg0KDQogICAgT24gOC8xMC8yMSwgMTU6MDEsICJRaW4gV3UiIDxiaWxsLnd1 QGh1YXdlaS5jb20+IHdyb3RlOg0KDQogICAgICAgIFlhcm9uOg0KICAgICAgICBUaGFuayBmb3Ig Y2xhcmlmaWNhdGlvbi4gSSBhZ3JlZSB0byBrZWVwIHRoZSBsYXN0IHNlbnRlbmNlIGluIHRoZSBz ZWNvbmQgcGFyYWdyYXBoIG9mIHNlY3Rpb24gNyBhcyBpcy4NCiAgICAgICAgQnV0IEkgcHJlZmVy IHRvIGFkZCB0aGUgYWRkaXRpb24gcmVmZXJlbmNlcyBpbiB0aGUgcHJldmlvdXMgc2VudGVuY2Ug YXMgZm9sbG93czoNCiAgICAgICAgIg0KICAgICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50 IG9mIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQg dGhlIElHUCBpcw0KICAgICAgICBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRl Z3JpdHkgb2YgdGhlIFBDRUQgVExWLCwgd2l0aCB0aGUgbWVjaGFuaXNtcyBkZWZpbmVkIGluDQog ICAgICAgIFtSRkM1MzEwXSBhbmQgW1JGQzU3MDldIGlmIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVk IGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCg0KICAgICAgICBBcyBzdGF0ZWQgaW4gW1JGQzUw ODhdIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUgZW5jcnlwdGlvbiBtZWNo YW5pc20gdG8gcHJvdGVjdA0KICAgICAgICB0aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlm IHRoaXMgaW5mb3JtYXRpb24gY2FuIG1ha2UgdGhlIFBDRVAgc2Vzc2lvbiBsZXNzIHNlY3VyZSB0 aGVuIHRoZSBvcGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGludG8gY29uc2lkZXJhdGlvbi4NCiAg ICAgICAgIg0KICAgICAgICBJZiB5b3UgYmV0dGVyIHdvcmRpbmcsIHBsZWFzZSBsZXQgbWUga25v dy4NCg0KICAgICAgICAtUWluDQogICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAg ICAg5Y+R5Lu25Lq6OiBZYXJvbiBTaGVmZmVyIFttYWlsdG86eWFyb25mLmlldGZAZ21haWwuY29t XQ0KICAgICAgICDlj5HpgIHml7bpl7Q6IDIwMjHlubQ45pyIMTDml6UgMTk6MjYNCiAgICAgICAg 5pS25Lu25Lq6OiBRaW4gV3UgPGJpbGwud3VAaHVhd2VpLmNvbT47IHNlY2RpckBpZXRmLm9yZw0K ICAgICAgICDmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3Vw cG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQogICAg ICAgIOS4u+mimDogUmU6IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNy LXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAgICAgIEhpIFFpbiwNCg0K ICAgICAgICBTb3JyeSwgYnV0IEkgZmluZCB5b3VyIGxhdGVzdCBwcm9wb3NlZCB0ZXh0IHZlcnkg Y29uZnVzaW5nLCBiZWNhdXNlIHdlIHNob3VsZCBiZSBmb2N1c2luZyBvbiBpbnRlZ3JpdHkgcHJv dGVjdGlvbiBhbmQgbm90IHByaXZhY3kgKD1zZWNyZWN5KSBvZiB0aGUgVExWLiBTbyBJIHdvdWxk IHByZWZlciB0byBrZWVwIHRoZSB0ZXh0IGFzLWlzLCB3aXRoIHRoZSBhZGRpdGlvbiBvZiBhIHJl ZmVyZW5jZSB0byB0aGUgSVMtSVMgYW5kIE9TUEYgc2VjdXJpdHkgbWVjaGFuaXNtcyB0aGF0IHdl cmUgZGlzY3Vzc2VkIG9uIHRoaXMgdGhyZWFkLg0KDQogICAgICAgIFRoYW5rcywNCiAgICAgICAg ICAgIFlhcm9uDQoNCiAgICAgICAg77u/T24gOC8xMC8yMSwgMDU6MDAsICJRaW4gV3UiIDxiaWxs Lnd1QGh1YXdlaS5jb20+IHdyb3RlOg0KDQogICAgICAgICAgICBIaSwgWWFyb24NCiAgICAgICAg ICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAgICAgID7lj5Hku7bkuro6IFlhcm9u IFNoZWZmZXIgW21haWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21dDQogICAgICAgICAgICA+5Y+R 6YCB5pe26Ze0OiAyMDIx5bm0OOaciDnml6UgMjE6NDQNCiAgICAgICAgICAgID7mlLbku7bkuro6 IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQogICAgICAgICAg ICA+5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQu YWxsQGlldGYub3JnOyBsYXN0LWNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZw0KICAgICAgICAg ICAgPuS4u+mimDogUmU6IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNy LXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAgICAgICAgICA+SGkgUWlu LA0KDQogICAgICAgICAgICA+VGhhbmsgeW91IGZvciB5b3VyIHJlc3BvbnNlLg0KDQogICAgICAg ICAgICA+KiBSRkMgMzU2NyAoZm9yIElTLUlTKSBpcyBvYnNvbGV0ZWQgYnkgUkZDIDUzMDQuIFVu Zm9ydHVuYXRlbHkgUkZDIDUzMDQgc3RpbGwgdXNlcyBITUFDLU1ENSwgd2hpY2ggd291bGQgYmUg Y29uc2lkZXJlZCBpbnNlY3VyZSBub3dhZGF5cy4NCiAgICAgICAgICAgID4qIFJGQyAyMTU0IGlz IHZlcnkgb2xkIGFuZCBFeHBlcmltZW50YWwgKGFuZCBvbmx5IHN1cHBvcnRzIFJTQS1NRDUgc2ln bmF0dXJlcykuIEknbSBub3QgYW4gT1NQRiBleHBlcnQgYnkgYW55IG1lYW5zLCBidXQgSSdtIHdp bGxpbmcgdG8gYmV0IHRoYXQgdGhlcmUgYXJlIG5vIHByb2R1Y3Rpb24gaW1wbGVtZW50YXRpb25z IG9mIHRoaXMgUkZDLiAoSSdtIHdpbGxpbmcgdG8gYmUgcHJvdmVuIHdyb25nKS4NCiAgICAgICAg ICAgID5JcyB0aGVyZSBhbm90aGVyIFJGQyB0aGF0IGRlZmluZSBhIHByb3RlY3Rpb24gbWVjaGFu aXNtIGZvciBPU1BGPw0KDQogICAgICAgICAgICA+QWxsIGluIGFsbCwgdGhlcmUgYXBwZWFyIHRv IGJlIG5vIGdvb2Qgb3B0aW9ucyBmb3IgdGhlIElHUC4NCg0KICAgICAgICAgICAgW1FpbiBXdV1Z ZXMsIHdlIGRvIGhhdmUgYWx0ZXJuYXRpdmVzLCBzZWUgTGVzJ3MgcmVzcG9uc2UgaW4gdGhlIHNl cGFyYXRlIGVtYWlsDQogICAgICAgICAgICAiDQogICAgICAgICAgICBPbiA4LzkvMjEsIDIzOjM2 LCJMZXMgR2luc2JlcmcgKGdpbnNiZXJnKSIgPGdpbnNiZXJnQGNpc2NvLmNvbT4gd3JvdGU6DQog ICAgICAgICAgICBGb3IgSVMtSVMgc2VjdXJpdHkgcGxlYXNlIGFsc28gc2VlIFJGQyA1MzEwLg0K ICAgICAgICAgICAgRm9yIE9TUEYgc2VjdXJpdHkgcGxlYXNlIHNlZSBSRkMgNTcwOS4NCiAgICAg ICAgICAgICINCiAgICAgICAgICAgID5UbyB5b3VyIGxhc3QgcG9pbnQsIHdoZW4gSSBtZW50aW9u ZWQgZGVjb3VwbGluZyB0aGUgbWVjaGFuaXNtcywgSSB3YXMgc3VnZ2VzdGluZyB0byB1c2UgdGhl IGV4dGVuc2lvbiB5b3UgZGVmaW5lIGV2ZW4gaWYgdGhlIElHUCAqY2Fubm90KiBiZSBzZWN1cmVk LiBJZiB5b3UgdGhpbmsgdGhpcyBpcyByZWFzb25hYmxlLCBwbGVhc2UgYWRkIHN1Y2ggdGV4dCB0 byB0aGUgU2VjdXJpdHkgQ29uc2lkZXJhdGlvbnMuDQoNCiAgICAgICAgICAgIFtRaW4gV3VdIE9r YXksIGhvdyBhYm91dCB0aGUgZm9sbG93aW5nIGNoYW5nZQ0KICAgICAgICAgICAgT0xEIFRFWFQ6 DQogICAgICAgICAgICAiDQogICAgICAgICAgICBBcyBzdGF0ZWQgaW4gW1JGQzUwODhdDQogICAg ICAgICAgICBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGVuY3J5cHRpb24g bWVjaGFuaXNtIHRvIHByb3RlY3QNCiAgICAgICAgICAgIHRoZSBwcml2YWN5IG9mIHRoZSBQQ0VE IFRMViwgaWYgdGhpcyBpbmZvcm1hdGlvbiBjYW4gbWFrZSB0aGUgUENFUA0KICAgICAgICAgICAg c2Vzc2lvbiBsZXNzIHNlY3VyZSB0aGVuIHRoZSBvcGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGlu dG8gY29uc2lkZXJhdGlvbiAuDQogICAgICAgICAgICAiDQogICAgICAgICAgICBORVcgVEVYVDoN CiAgICAgICAgICAgICINCiAgICAgICAgICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0NCiAgICAg ICAgICAgIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUgZW5jcnlwdGlvbiBt ZWNoYW5pc20gdG8gcHJvdGVjdA0KICAgICAgICAgICAgdGhlIHByaXZhY3kgb2YgdGhlIFBDRUQg VExWLCBpZiB0aGlzIGluZm9ybWF0aW9uIGNhbiBtYWtlIHRoZSBQQ0VQDQogICAgICAgICAgICBz ZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9wZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50 byBjb25zaWRlcmF0aW9uDQogICAgICAgICAgICB3aGVuIGdldHRpbmcgdGhlIG1lY2hhbmlzbSBk ZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBkZXBsb3llZC4NCiAgICAgICAgICAgICINCiAgICAg ICAgICAgICA+VGhhbmtzLA0KICAgICAgICAgICAgID4gICAgICBZYXJvbg0KDQogICAgICAgICAg ICA+T24gOC85LzIxLCAxNjowOSwgIlFpbiBXdSIgPGJpbGwud3VAaHVhd2VpLmNvbT4gd3JvdGU6 DQoNCiAgICAgICAgICAgICAgPiAgIFRoYW5rcyBZYXJvbiBmb3IgdmFsdWFibGUgY29tbWVudHMs IHBsZWFzZSBzZWUgbXkgcmVwbHkgaW5saW5lIGJlbG93Lg0KICAgICAgICAgICAgICAgIC0tLS0t 6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAgICAgICAgICA+5Y+R5Lu25Lq6OiBZYXJvbiBTaGVm ZmVyIHZpYSBEYXRhdHJhY2tlciBbbWFpbHRvOm5vcmVwbHlAaWV0Zi5vcmddDQogICAgICAgICAg ICAgICAgPuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg25pelIDM6MjUNCiAgICAgICAgICAgICAg ICA+5pS25Lu25Lq6OiBzZWNkaXJAaWV0Zi5vcmcNCiAgICAgICAgICAgICAgICA+5oqE6YCBOiBk cmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3Jn OyBsYXN0LWNhbGxAaWV0Zi5vcmc7IGxzckBpZXRmLm9yZw0KICAgICAgICAgICAgICAgID7kuLvp opg6IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zl cnktc2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAgICAgICAgICAgICAgPlJldmlld2VyOiBZYXJv biBTaGVmZmVyDQogICAgICAgICAgICAgICAgPlJldmlldyByZXN1bHQ6IE5vdCBSZWFkeQ0KDQog ICAgICAgICAgICAgICAgPlRoaXMgZG9jdW1lbnQgZGVmaW5lcyBhIG1lY2hhbmlzbSAoYSBUTFYp IHRvIGFkdmVydGlzZSB0aGUgUENFIFByb3RvY29sIHNlY3VyaXR5IHJlcXVpcmVkICh1c2Ugb2Yg VENQLUFPIGFuZCBpdHMga2V5IElELCBvciBhbHRlcm5hdGl2ZWx5IHVzZSBvZiBUTFMpIHdpdGhp biB0aGUgcm91dGluZyBwcm90b2NvbCBiZWluZyB1c2VkLg0KDQogICAgICAgICAgICAgICAgPiog U2VjLiAzLjE6IEkgZG9uJ3QgdW5kZXJzdGFuZCB3aHkgIlNIT1VMRCBhZHZlcnRpc2UiIGFuZCBu b3QgTVVTVC4gRXNwZWNpYWxseSBnaXZlbiB0aGUgc3RyaWN0IGNsaWVudCBiZWhhdmlvciBkZWZp bmVkIGxhdGVyLg0KICAgICAgICAgICAgICAgIFtRaW5dOiBJIGJlbGlldmUgIlNIT1VMRCBhZHZl cnRpc2UiIGlzIGNvbnNpc3RlbnQgd2l0aCBjbGllbnQgYmVoYXZpb3IgZGVmaW5lZCBsYXRlciwg aS5lLiwgd2UgYXBwbHkgU0hPVUxEIE5PVCBsYW5ndWFnZSB0byB0aGUgY2xpZW50IGJlaGF2aW9y Lg0KICAgICAgICAgICAgICAgIEkgYW0gbm90IHN1cmUgd2Ugc2hvdWxkIGNoYW5nZSBpdCBpbnRv IHN0cm9uZyBsYW5ndWFnZSB3aXRoIE1VU1QuIFNpbmNlIGlmIElHUCBhZHZlcnRpc2VtZW50IGRv ZXNuJ3QgaW5jbHVkZSBUQ1AtQU8NCiAgICAgICAgICAgICAgICAgc3VwcG9ydCBmbGFnIGJpdCBv ciBUTFMgc3VwcG9ydCBmbGFnIGJpdCwgTk1TIG1heSBmYWxsIGJhY2sgdG8gY29uZmlndXJlIGJv dGggUENDIGFuZCBQQ0Ugc2VydmVyIHRvIHN1cHBvcnQgVENQLUFPIG9yIFRMUy4gVGhhdCdzIG9u ZSBvZiByZWFzb24gSSB0aGluayB3aHkgd2UgY2hvb3NlIHRvIHVzZSBTSE9VTEQgbGFuZ3VhZ2Uu DQoNCiAgICAgICAgICAgICAgICA+KiBTZWMuIDMuMTogc2hvdWxkIHdlIGFsc28gc2F5IHNvbWV0 aGluZyBhYm91dCB0aGUgY2FzZSB3aGVyZSBib3RoIG1ldGhvZHMgYXJlIGFkdmVydGlzZWQsIGFu ZCB3aGV0aGVyIHdlIHJlY29tbWVuZCBmb3IgdGhlIGNsaWVudCB0byB1c2Ugb25lIG9mIHRoZW0g b3ZlciB0aGUgb3RoZXI/DQoNCiAgICAgICAgICAgICAgICBbUWluXTogSXQgaXMgdXAgdG8gbG9j YWwgcG9saWN5LCB3aGljaCBoYXMgYmVlIGNsYXJpZmllZCBpbiB0aGUgZW5kIG9mIHNlY3Rpb24g My4xLiBIb3BlIHRoaXMgY2xhcmlmeS4NCg0KICAgICAgICAgICAgICAgID4qIFNlYy4gNDogdHlw byAoYXBwZWFycyB0d2ljZSkgLSAidG8gYmUgY2FycmllZCBpbiB0aGUgUENFRCBUTFYgb2YgdGhl IGZvciB1c2UiLg0KDQogICAgICAgICAgICAgICAgW1Fpbl06VGhhbmtzLCBoYXZlIGZpeGVkIHRo ZW0gaW4gdGhlIGxvY2FsIGNvcHkuDQoNCiAgICAgICAgICAgICAgICA+KiBTZWMuIDc6IHRoaXMg cGhyYXNlIGFwcGVhcnMgdG8gYmUgZXNzZW50aWFsIHRvIHNlY3VyaXR5IG9mIHRoaXMgbWVjaGFu aXNtOiAiaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcyBwcm90ZWN0ZWQgZm9yIGF1 dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWIi4gSSB3b3VsZCBleHBl Y3QgbW9yZSBndWlkYW5jZTogaG93IGNhbiB0aGlzIHByb3BlcnR5IGJlIGVuc3VyZWQgaW4gdGhl IHJlbGV2YW50IElHUHM/DQogICAgICAgICAgICAgICAgW1Fpbl06SSB0aGluayBtZWNoYW5pc20g ZGVmaW5lZCBpbiBbUkZDMzU2N10gYW5kIFtSRkMyMTU0XSBjYW4gYmUgdXNlZCB0byBlbnN1cmUg YXV0aGVudGljaXR5IGFuZCBpbnRlZ3JpdHkgb2YgT1NQRiBMU0FzIG9yIElTSVMgTFNQcyBhbmQg dGhlaXIgVExWcy4gSGVyZSBpcyB0aGUgcHJvcG9zZWQgY2hhbmdlczoNCiAgICAgICAgICAgICAg ICBPTEQgVEVYVDoNCiAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgICAgVGh1cyBi ZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZg0KICAgICAgICAgICAgICAgICAgIHRoZSBQQ0Ugc2VjdXJp dHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcw0KICAgICAg ICAgICAgICAgICAgIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBv ZiB0aGUgUENFRCBUTFYgaWYgdGhlDQogICAgICAgICAgICAgICAgICAgbWVjaGFuaXNtIGRlc2Ny aWJlZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAgICAgICAgICAgICAgIg0KICAgICAg ICAgICAgICAgIE5FVyBURVhUOg0KICAgICAgICAgICAgICAgICINCiAgICAgICAgICAgICAgICAg ICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mDQogICAgICAgICAgICAgICAgICAgdGhlIFBD RSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlz DQogICAgICAgICAgICAgICAgICAgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50 ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViB3aXRoIG1lY2hhbmlzbXMgZGVmaW5lZCBpbiBbUkZDMzU2 N11bUkZDMjE1NF0gaWYgdGhlDQogICAgICAgICAgICAgICAgICAgbWVjaGFuaXNtIGRlc2NyaWJl ZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAgICAgICAgICAgICAgIg0KICAgICAgICAg ICAgICAgID4qIEFsc28sIGEgcG9zc2libHkgdW5pbnRlbmRlZCBjb25zZXF1ZW5jZSBvZiB0aGlz IHJlcXVpcmVtZW50IGlzIHRoYXQgaWYgdGhlIElHUCBjYW5ub3QgYmUgcHJvdGVjdGVkIGluIGEg cGFydGljdWxhciBkZXBsb3ltZW50L3Byb2R1Y3QsIHRoaXMgbWVjaGFuaXNtIHdvdWxkIG5vdCBi ZSB1c2VkLiBQbGVhc2UgY29uc2lkZXIgaWYgdGhpcyBpcyBsaWtlbHkgdG8gaGFwcGVuIGFuZCB3 aGV0aGVyIHdlIHdhbnQgdG8gZm9yZWdvIFBDRVAgdHJhbnNwb3J0ID5zZWN1cml0eSBpbiBzdWNo IGNhc2VzLiBNeSBndXQgZmVlbCAobm90IGJhc2VkIG9uIGV4cGVyaWVuY2UgaW4gc3VjaCBuZXR3 b3JrcykgaXMgdGhhdCB0aGUgdGhyZWF0IG1vZGVscyBhcmUgZGlmZmVyZW50IGVub3VnaCB0aGF0 IHdlIHNob3VsZCBkZWNvdXBsZSB0aGUgc2VjdXJpdHkgb2YgSUdQIGZyb20gdGhhdCBvZiBQQ0VQ Lg0KDQogICAgICAgICAgICAgICAgW1Fpbl0gSSBhZ3JlZSBJR1Agc2VjdXJpdHkgc2hvdWxkIGJl IHNlcGFyYXRlZCBmcm9tIFBDRVAgc2VjdXJpdHkuIElHUCBleHRlbnNpb24gZGVmaW5lZCBpbiB0 aGlzIGRvY3VtZW50IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QgUENFIHNlcnZlciB3aXRo IGFwcHJvcHJpYXRlIHNlY3VyaXR5IG1lY2hhbmlzbS4gT24gdGhlIG90aGVyIGhhbmQsIE9wZXJh dG9yIGNhbiBlaXRoZXIgdXNlIElHUCBhZHZlcnRpc2VtZW50IGZvciBQQ0VQIHNlY3VyaXR5IGNh cGFiaWxpdHkgb3IgcmVseSBvbiBsb2NhbCBwb2xpY3kgdG8gc2VsZWN0IFBDRS4gSWYgb3BlcmF0 b3IgZmVlbHMgSUdQIGFkdmVydGlzZW1lbnQgaXMgbm90IHNlY3VyZSwgaGUgY2FuIGZhbGwgYmFj ayB0byBsb2NhbCBwb2xpY3kgb3IgcmVseSBvbiBtYW51YWwgY29uZmlndXJhdGlvbi4gSG9wZSB0 aGlzIGNsYXJpZmllcy4NCg0KDQoNCg0KDQoNCg0KICAgIF9fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fDQogICAgTHNyIG1haWxpbmcgbGlzdA0KICAgIExzckBp ZXRmLm9yZw0KICAgIGh0dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4vbGlzdGluZm8vbHNyDQoN Cg== From nobody Sat Aug 14 00:43:41 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6ED6E3A0EEE; Sat, 14 Aug 2021 00:43:31 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.545 X-Spam-Level: X-Spam-Status: No, score=-1.545 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HK_NAME_FM_MR_MRS=0.542, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_FREEMAIL_DOC_PDF=0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fE4bl3ihZ1YP; Sat, 14 Aug 2021 00:43:26 -0700 (PDT) Received: from mail-lf1-x12a.google.com (mail-lf1-x12a.google.com [IPv6:2a00:1450:4864:20::12a]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 07E883A0EED; Sat, 14 Aug 2021 00:43:20 -0700 (PDT) Received: by mail-lf1-x12a.google.com with SMTP id y34so24375967lfa.8; Sat, 14 Aug 2021 00:43:19 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=OJUcNE8vBZqFE+06NROiYZuaESHcugQvx2nDO4TBh14=; b=SEIIc+JD/UF7oGZJAS262IpbYYXNwOMDhn8Z1toqgkuirruJK6MKQnJfwGsXF7rvuk 00jafEvNmArT6eORmgzeRY5AI67ZCTL8evXOnZlSDIhresvFOCppCO/6ZXa3+eci7JnF z2LNMVdHEmmZ3IZutyVsf/hXZ+pnkf/oTC4rTF7nQdkQYKbw6B3FoLNpsO1KYbwQjmty U6LfQX34GIa6ZgNNjpARyRE74FEzQ0uhoUKiClyvn4SnajnNUsGUOwfTzbhlOLcRyH6g 5fuE3cHZP4zmfrRPGnY+Q7E5y0NxiIWyN83queIZpcaqsZccmm715jQPiee2YfFFVN3u +Waw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=OJUcNE8vBZqFE+06NROiYZuaESHcugQvx2nDO4TBh14=; b=jRcdNZiKG8ub48WZK02nCHCHyoch6aPvUWiJ7uROcB1dkmlkO+xoKWgrsM63h7Mg9W TtmOXXXK3tRNflpdh/0Np9Y5WXDCXFEuoCuEGxcEfLqyTtmN16cYHLMTAtERYaC3494N cszOZXOWtDPjWHBi/b5n7UIHJN6C8+RQTZw+26N53VTAUXEQoDWvo839yIOXNWjOJTgM uXpdqEmzhT1YTMSejiwXX8hEsBHWImlvPiMZ/Eea4/yNqyfPMClKI9LdUmcDeNlpByuC xIt0hVwO7mQxI93llpwhNU+pRGlxBm2OLIYWPRMjMSR369PqlY6hA2x7afNjG0dwAy3K gQXw== X-Gm-Message-State: AOAM531MaKnXM10+JOsjxZlPO03Z58DOjcS22IOuRVGpBjtf4d0PNAgg 0l/r4qk/cccbs1vNJNDT7+TLcMvL1KAs6lCdj/F3aZSJFlsgHA== X-Google-Smtp-Source: ABdhPJyd9r6Q3KjLPOGfSsbx6fLOEL8XD1PEb6LpuCjLTrqpqp4H3FSb9IrAUqbaSJkJPsCid1L1eKLFxShxcPJrb4k= X-Received: by 2002:ac2:4947:: with SMTP id o7mr4285611lfi.601.1628926996764; Sat, 14 Aug 2021 00:43:16 -0700 (PDT) MIME-Version: 1.0 References: <162136896309.19274.13384213577960243417@ietfa.amsl.com> In-Reply-To: <162136896309.19274.13384213577960243417@ietfa.amsl.com> From: "Mr. Jaehoon Paul Jeong" Date: Sat, 14 Aug 2021 16:42:39 +0900 Message-ID: To: Paul Wouters Cc: secdir@ietf.org, "i2nsf@ietf.org" , Last Call , Roman Danyliw , skku-iotlab-members , "Mr. Jaehoon Paul Jeong" Content-Type: multipart/mixed; boundary="00000000000001fa3605c9801f23" Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-i2nsf-capability-data-model-16 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Aug 2021 07:43:32 -0000 --00000000000001fa3605c9801f23 Content-Type: multipart/alternative; boundary="00000000000001fa3305c9801f21" --00000000000001fa3305c9801f21 Content-Type: text/plain; charset="UTF-8" Hi Paul, Here are the revision letter and revised draft reflecting your comments. https://datatracker.ietf.org/doc/html/draft-ietf-i2nsf-capability-data-model-17 You can find my responses to your comments from page 36 in the revision letter. Patrick and I worked together for this revision. Please let me know whether this version satisfies your comments or not. Thanks. Best Regards, Paul Jeong On Wed, May 19, 2021 at 5:16 AM Paul Wouters via Datatracker < noreply@ietf.org> wrote: > Reviewer: Paul Wouters > Review result: Has Nits > > I have reviewed this document as part of the security directorate's > ongoing > effort to review all IETF documents being processed by the IESG. These > comments were written primarily for the benefit of the security area > directors. > Document editors and WG chairs should treat these comments just like any > other > last call comments. > > The summary of the review Has Nits > > The issues that Michael Scharf raised regarding TOS have been addressed. > Thank > you. I have no items that are serious issues, just some comments that you > may > take into consideration for a minor update. > > Nits: > > The privacy section talks about a trade-off between privacy and security. > But I > do not understand what trade-off is meant. The document does not seem to > make > any trade-off. It just defines capabilities that can be used, some of which > might process private material. But the trade-offs of that are really at > the > protocol level (like they did use TLS or IPsec or why not). I dont think > describing technical capabilities is a trade-off of security vs privacy. > Perhaps the section could talk about the discovery and/or usage of > capabilities > and that those capabilities handling private information should attempt to > report their usage/findings/events underst conditions that preserve the > privacy > (eg require TLS or IPsec between SG and NSF ?) > > The Security section talks about layers that "can use" SSH or TLS for > security. > I'm not sure why it does not say SHOULD or MUST ? I would rewrite "need to > be > tightly secured and monitored" to "MUST be tightly secured, monitored and > audited". > > Section 3.1 states: > > These capabilities MAY have their access control restricted by a > policy; > > In light of the other recommendations in the Security Section, I think > this MAY > should really be a SHOULD or even MUST. Alternatively, perhaps say "Some of > these capabilities SHOULD" ? > > > > > > > --00000000000001fa3305c9801f21 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable
Hi Paul,
Here are the revision letter and revise= d draft reflecting your comments.


You can find my responses to your co= mments from page=C2=A036 in the revision letter.

P= atrick and I worked together for=C2=A0this revision.

Please let me know whether this version satisfies your comments or not.<= /div>

Thanks.

Best Regards,
Paul Jeong


On Wed, May 19, 2021 at 5:16 AM= Paul Wouters via Datatracker <norep= ly@ietf.org> wrote:
Reviewer: Paul Wouters
Review result: Has Nits

I have reviewed this document as part of the security directorate's=C2= =A0 ongoing
effort to review all IETF documents being processed by the=C2=A0 IESG.=C2= =A0 These
comments were written primarily for the benefit of the security area direct= ors.
=C2=A0Document editors and WG chairs should treat these comments just like = any other
last call comments.

The summary of the review Has Nits

The issues that=C2=A0 Michael Scharf raised regarding TOS have been address= ed. Thank
you. I have no items that are serious issues, just some comments that you m= ay
take into consideration for a minor update.

Nits:

The privacy section talks about a trade-off between privacy and security. B= ut I
do not understand what trade-off is meant. The document does not seem to ma= ke
any trade-off. It just defines capabilities that can be used, some of which=
might process private material. But the trade-offs of that are really at th= e
protocol level (like they did use TLS or IPsec or why not). I dont think describing technical capabilities is a trade-off of security vs privacy. Perhaps the section could talk about the discovery and/or usage of capabili= ties
and that those capabilities handling private information should attempt to<= br> report their usage/findings/events underst conditions that preserve the pri= vacy
(eg require TLS or IPsec between SG and NSF ?)

The Security section talks about layers that "can use" SSH or TLS= for security.
I'm not sure why it does not say SHOULD or MUST ? I would rewrite "= ;need to be
tightly secured and monitored" to "MUST be tightly secured, monit= ored and
audited".

Section 3.1 states:

=C2=A0 =C2=A0 These capabilities MAY have their access control restricted b= y a policy;

In light of the other recommendations in the Security Section, I think this= MAY
should really be a SHOULD or even MUST. Alternatively, perhaps say "So= me of
these capabilities SHOULD" ?






--00000000000001fa3305c9801f21-- --00000000000001fa3605c9801f23 Content-Type: application/pdf; name="Revision-Letter-for-draft-ietf-i2nsf-capability-data-model-17-20210814.pdf" Content-Disposition: attachment; filename="Revision-Letter-for-draft-ietf-i2nsf-capability-data-model-17-20210814.pdf" Content-Transfer-Encoding: base64 Content-ID: X-Attachment-Id: f_ksbh10bn0 JVBERi0xLjQKJdPr6eEKMSAwIG9iago8PC9UaXRsZSAoUmV2aXNpb24tTGV0dGVyLWZvci1kcmFm dC1pZXRmLWkybnNmLWNhcGFiaWxpdHktZGF0YS1tb2RlbC0xNy12Mi5kb2N4KQovUHJvZHVjZXIg KFNraWEvUERGIG05NCBHb29nbGUgRG9jcyBSZW5kZXJlcik+PgplbmRvYmoKMyAwIG9iago8PC9j YSAxCi9CTSAvTm9ybWFsPj4KZW5kb2JqCjggMCBvYmoKPDwvQ0EgMQovY2EgMQovTEMgMAovTEog MAovTFcgMS4zMzMzMzMzNwovTUwgMTAKL1NBIHRydWUKL0JNIC9Ob3JtYWw+PgplbmRvYmoKOSAw IG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggNDA3MT4+IHN0cmVhbQp4nO1d247j uBF976/w8wLDIVm8AkEAuy/znKSB/YBkd4Egs0A2/w+kaEm2ZPtIKjVH6u71zmJ6WjQvVazLqWKJ NjvNf74Y/is5u/vn94f/PpQnPnvlyyNl/e6PXx5+/mn3Ozep6I8dup/8ebMrf/7+bdf844/fHr5+ o91v/zsOE7PbGWOpDPHrw9/4z+zhvduRNsonq2lynuCyilonsyOnsqcYYzfl9ag2Ku0iBcGoJjWj ejyq08obG+sO6knlmEQMmDFqiMo5qs2ApFXWKeS6o2anKDptq47qdFSJcmUOOGsUaVeZA44lOvKH JRyYVgIXtLIsXr7uWiOVz4ZUd9QUlQmhsgx4rVUgI+LANF+9DUrn8DYOyKykISYkJ5empNmEQkAy OpReXhGxaTUEaTFsJ7K1M7SEEq8wR3tjVBkt/D/P1Y58eH34+uIKe8Lxv93rrw+m81fWsxELNuWd CkwR74ndvX5/KG1BJWYHpd3rv3Z/0Zr8X3ev/34wpFy0mfvwAE2LS02LZhPjo4nnFp9Ri3s8tnhl EpHmSU5dgryLbbqw2cg+J91rMahFExjMvqAuI2TGY0tQ1lhm4eTzkZEaJj+/3hIk1l/maMj2cnP9 zrhmc+Ngc9mGqsBywjuWk4mUu60lZWOk897aZkGsSdEH7Xo8byhIynhjdEyXm8ED+WBcpkuandLR ZKbucpeuh2ppZpVKOjh/bjBPYKh2864bbNMjKrLJWH9erUNkJNRwQKuFZMAGAxogGURoOxAdHtLx AvZJzkM0hZxwtx+RcsNoNbCc+zhXzL0mlVxRsGlBj53mebah0dEM1iKBhgyZklteVLDR9iTdOrDh eF/3UkloDevVvkL6oIQYxCqDrIV+Ec/h0RyEGmAPNyZtA6+vDBHt+n+zp75+ePbanVwS++vy30Au C1RQjgJTRp1AWqaU/Trzv1V1e3IFIWqvz1vfOiJ2z8Y6FotzQ2yFhU27YaB0KXdM6OiyeuBlcnmt /b9exMlos24RM/BSj657uNwKf9Q2p2sved1gNJqjcT5WZcYsWZtLlbyxXDQHXJV88lYAb0xuUENo 8UEIToe+rZWvCg6F9sMT2ii4g4hAvB8vqAH1gBvlHwGBmCVIdjFLoJSgHnByrzsYadi6k+0BJIuW BdeLpBqyFy7LQELymJHsRzC1bWRjgpLFJtIAe2c7V5cS+w5/Np3UOEceiSgxA3r6M9NEdoHY5OLu BvJuIO8G8s9gIMdiFqsDh/La3IrMl5o9CPMwtXDbkC06BSQuWJ17eQiKJ2Eil+xVFH9jDrifp0ku hYY6KH9pvxdYKajdBzCUfgFDLVgu5LtYLvHk0KXhHZFzEfZAAgQNtJy9mIvIO0B7gLnogU4tEOt5 683XOceyLGL9zmcgA1VdzBPoBRZ4mv1Z3l3wdLm3wBSS5fAyplvZm8Wm8FEqTBg4QGqhlMGhxNoi 91NwOxeoEYIzuEFOh5jtC6AGmhwLA2LiAtM56UmvlisGLXKQtQBewh0U21S45wts6oi1hdxC1rbH xqG1xT4L2Wc8FCIRDoXtz4B0F3t8nKWf3s3hfB63ZdOpQ61i8D5P2+w1dMsGsd/8JDEdBu6P7XIz hyzB9HjVJe2vkiUwvdJCzuvUNN4QOZARGzsM7raNKM0YKHJBaWei3xQUwVgI786EvZC4CahgcA/k qTVoWqCPEoO7BQ4SUg4NhTg83BbivCMEMMu2zEEAFz0gJTBskGsITI/2NzdeFxAIcIl8ua1du54D R7OP0h5YFifUcxKvWJ4saD8jjy92NxgYQLWGhgCS+SwVVLku4tgTCpE8LpQbTagMYjoWTA5PYsR6 BW1QzcnFFvvuLmq7i4so74fkMlcymoGiMk7nGUGeGyutsT4rG3ygiqBXbnRxDl7uoD+JbV0wx15q FuROcIEh+fRmGts9cV64ZtAEE1JyvsuT63Ls3gjvjaTErHxMtO7cA54mTniCKZtrs1EpuTwDqdZM 1yMZxpw5SLl/ILAqq9tVxUTO9A40rQENOPPzjBo6Xs3PhiUgLLAc02lEuQOUj6eKSpU/+Xh1fuZA 9bOerno+VTtcVdjfG+4N94Z7w73h3nBvuDfcG+4NbYPpoeJ7w73hYzTcDqoGN6AoY7PbKeO84b+D Ts0LLJcPL15gCeiIqTzMyR1fsLcxBRfaMCxz1Gn7UViXqKPysX4ESajBoYZn0KDXGGqPGjJq0PXm MOKhEIGQJR4NBefQj6Dh8AQaDKLDBDQH4q58VQlxVyMRhXOcUn7zBe5FqgZwctMn0OtehXJ/8qTz bbb3G/QeNRBoOGXVrhrQUPQCGrxGQ0XUAHs8S+mgRzRUHqejy2lCyxjLfRXemEnLKBcJaFEcUrgF NqieySSkiXhy6CygZURMXMXIoqE8GmrBDiKWQO6e0vXzN0osPpDt2DLCoWDD2Mu5g3vY6mIbvbON 4nq/guamapvlxZuFBbsegXgOpCOYDoQFCIIdSAe0cmKYh/UQGjMxSPCoR0UrhxvqeR1CBKY+/htg GghEEKxwsAdCDwtAwkHc8IQaIG5CkxMCO5ByORMx5UHKXQio2j2fAlTuWIrP2rSmWV4QV8HJxfZa bs6wyYQqCm0QDGeRZ08wdtvUvcA55LxCPnoBE6FZliNftB9+rDytf9Ps2rAJSykU+Lc5knmxPPJ7 2LHLlUpM+cfE6tvYADmGxpSLw2JsrMWJnTeG3n3YhFMoKEe0wLGjOTyaYwGYEyeoMDqCCAwRiEEQ XO4pHT+eI0qGg9dSYTZlMrF0ydPR8nhLnEOWrwoqQ0b2AZtlGKHJ4185RoANkCWwB2L7vmIyb0t7 jc1yPYAAuZtGs0r9K/PXhkebnpStcWpS8zQOQnKobvLADREoz8bUzISLmbhtilzuwODWiu3J4Byy D48OKE0DGyDeMAgkrHIah+aAh27yNA0GOxBKwhO/4WsBb4dH7xTHVwxtxH5afiyEG2D0LY6M10Ao ciNrYA+0KljAoKGbfJ8WHoro2IWPg+/+Wf3QTayg+HgWmY2KCQOsI/LNqoibUA8MveVmQx7xiHO1 8pBujbARH83Kz+/gnkN4BPdjlqHpwyOYQ1mQEYEgAYEdCEQgChoo56wDMTkdcgjWqtok2AlBUSab pg2g/FABZsnlVXXiPA2MKLHMi3VXXmcjT/nAukj5iR+kY0EBQz3LuMppHITd8mM6qAbyYo9+j74B HD9C639X4dooaJXs5/tEpmvUVlUEbWtolbxSatNckJwlFZEv4tUgwTk4Q0Olzhg9QCyAjsowrIDH WHAOWLgMhxIXREGWwFruqWKl6XJqUtEaQ9PwqJ6gbhrtLcBNSBkwbqoYj8grGKCzgH6nXiJKfmBU s4jgHZRPAEzT/6bk1TM7m+KNeoKNoxE5HRAvi98TqPkKiFxM5e9D1fPsNSOFilVXaA54vC+P1gdH yQNMIy6OlpfNLCinrjfHAtwE32gTo7kpAivWBa3wEggOzaGWbPlugVzbNw2Aa76BLAa42x58faJc kNNRJcobnYhVPDutl8vEug6z0VCw5fXUkA60Kvnk8O12LI3QOohXBYOnBbVzE2fANxrEpTm4DE9s zBYkz9/2jkvfCCRUHY3BDjwRQ2AHowdUMARPqxI8XIOYBuI/SAdalXzyA8R/sCgJwjz5qtaYA/VY 8JKfOP/n0PHo3BfwEqlAeUYK7u5FPogXWTwHQEHWKNJuoxMxcfYTVkpgFyN/42uFl79HS9kdORWj /jEZvamrTRbksOW5s4pnXCuc1cnrSzEMk9ewbnoV1fuM9+QCJ89VyGP8WQI3yOhVzJ3BywsgroEN aFVJXN2FK+/hG4twVTDVN/O9vVOt1uTdTpuWMm15DwKOQ+XJwXpX1cnj6c+PHuTXNojrDGveZNbf qFk3xOAIfKzG3QWtLHnym2T03mWJJ0zxYgWV5/vf5QupNV+/FoMdeeHpGie6H/mVqwFuqlf8tOnV l7gqXnxZZsXrNSveznXx/W0Qm2WvIvPPTRtZ8Tk7vGpnwQmivJRJnt3ZtJ4GAir5OQRCWnc0h9Ac wDSliFLrkD76ZZn1LoP+LImomhXrHyukW3AxLtRc+UVY9e6GeOMtmoNSBfHL/RChyO/HxoeR9VI+ Wn6tFQQi09Fhrff27umY+Q684htyK1xS9cHuV3rXl8oA6JIi45GwTWG6/GU7uTRiVYAXoMnrdtAu jp4geq1VINNmwmz5Bk7lXGQux5DCkfVXDy9YHwHrzyuZSqQ/IXF68lIB3MMvH5En68W4YC8OIQ3c Tbney4tpxfdr3c8vfqTDzLAq7m0R7+DWB1iLBI8YxRXyi++Mum7IqKxpwVUNYoS6OL/VwUpkGc+v AEweMb7PY/V6X2GAJVh+rL6GRRGbTLhRcveyYLkrsH3BV2PIg2EYMUxIIgA9NiidQ5sqqwp63nLF lfyKNnlRdL2CmAWJL7E9WcNs/InTyb3AoGiJy6qoh1ZkLPsm5yz/btlVUdJFA355+Pmn3e831Ml5 5UPp8hZ1sgM9stG31aZWsamMyVCrT0llY43mcLCF0JY396WkjZiidIuiYJXRZ4KYIhtMtCMEBWaW r0oPWwuTPTPWTxLkXFGuonnFaZeNbZ6Vn748pCLmzb/LT9d9NpVAs/m3N8P+5Tk9Fwkt4tv8pKd2 3Hg9/p7GzGeMKqVk3mY+L/a7JNp0mMGesuwjGc8NiUd23CI5jpGQknI2tF+RsToJ3Y49N7viup04 9HZ7f4JsgITMwwbXvpVWhwRifUk+U5okYV807nGGoJqWlKdxwUW7uJ/ayaB5zdo6t8lOHndOt2Tq 3u+53dmx+xjYZHIYwIHiZjt43L1On8zZVBx3Ubc7ZM7PDk/tzjz3nl/+njrhPUtDJwHH38tz25qk l3bu9me//0myYvP8wMpxeOnbeMABHxiBkXOTHCjyWygyxTsE/j03cnj+fWzzSCvP/rSmk3BBmUQ+ Ty/d6HlMPpLzqI+cLGTpffOsOMs+44+f09eML89T26ewpK7qOqOMCTVtsMDN7scihFAwQ7ap5tr0 5JJGM7UhWhWJw5Z3tKREPGfWNW3vG5cUtVPkvN0Ku8VGBzqDejRoHb5q9WZz/BZN+Y55qul2BB6z XeUR63TwbQLx9r3sNHXWM7QzlDfxqjfR6Q/c7FEDG8mrzO5kG5Q7amAj+zqXo69pzVYG4NFHDo19 qGn9ZPBN6pHL8zmCdYJ/zzO8eORg2UeKNc3JQjdeVqd3kWM77uizP6YzcJgfs1FRUzxuYH89fscW MpT/4mBZBbB4l0NiYmJOJrKRaVbFC7Yx9r/n52pZul1RcrYsDycfigx02ZSv31JZ1ZfY5hr97ouK LpNLzIDv/efEZi/zimj3n4d/PPjUEJCHnz8/Hn78S+LP6WRDsjbl5oODJ+2HbOal6+DbT5x+bZvL oOVBO1Xv9/KBwoj/A2lnbGMKZW5kc3RyZWFtCmVuZG9iagoxMSAwIG9iago8PC9GaWx0ZXIgL0Zs YXRlRGVjb2RlCi9MZW5ndGggMzQwND4+IHN0cmVhbQp4nO1dWY/cuBF+71+h5wVM8z6AIEDP5eck A+wPSHYXCOIF4vx/IEUdPZS7P0mlobtbY3nWO26xVSySVV8dvFQj6eeTov9Fq5t/fj3895CfuOSE y4+Eds233w6//tL8SUUiuPaF4Td9XzX55+9fmu4f3/44fP5imj/+15IJyTZKaZNJ/H74G/0sJu9s /m+uAm+TCFJGKnFCOhmiOlV2Rs/IJGQMMc2QVb6kG0VyJoQJssYK54zWDG6NE0ZH1bX+MlUvhU7J cKiqNEs1WCGts6ou1RhESMpVJWqlEtTxvi5REhMdjZ8TASZVTYKlU6hMldQjBBdjXarOC6dVCnWp BpJWH2VlqpGkVVlVWQYSSauXuq64OkXiKr2pTFWTvDptWUg4T9UQqKXIw9d5qo7k1Vpv6lL1Xtgk Q10cdJHk1fhYmWoyIkWd6qKrlySvui62eK2EDa4yo2TVtFaKwyrZzta8BkyVDKGP3rGGqjfaE7yS IVRORRa0zFMlQ+hVYPXAPNVAllBGXbkHgiK3xYbIAqx5qjoSZBvFMlrzVG0W11i7BxwJnzW1e8BH YWV6Xw9kulTqGp/9lShJTrM74BrSW2naz9BtJlPsuq/0DMiBAVkwoJUXJuj8pvLZKQwpkLNuv/ei T5yQaMtAwq0HTogV3X6GnCRNkNF+ZYqTQNSCJZekDRgEqU+k1885OSOvnRSGuJ5u6FLy1bqcesWH RlgbFJUTdGWuzh++cfjwevj8Ehqlm9ffD2qIyFRMZEyI2UafWH39SoLziYRFaSUptnr9V/MXKZWS JEX0+/jX5vXfh+fXg1CaSoWyhPBCeRlbFs4eEgtD3YSx+U8YsXCSEUPyoaRyvucgiKTbbuwYSC9t xU5E8lad1/R2z9kjKJARFSBSsEBpVHBEpAwqeEAFsB2wDkgKNrBeHSpwW/4EuwQVKDSCCpKCXFl2 O6D4oDeO8qQbi9Xzsl6SngurCS9n9TLGoc6KMFoLXYxQZHKyOzfXDGtJCl7odx6pRH9fumf5t7ND Ey9X8wa+s7U8Z2rdbzvURqAWj92/nSo5mK5VuSiMNWG+bUfzNkRn/a6kFtFb7WLFjtcEqUn6Bf1u nujvY98jMqvipZ6gHgpTbaCBtlKbLoK8fhuGkaQ2mNyOp152Hgo5yiOcptqgKayy0pqKTTCki5Hi tTgvIi8Zm6dUoB8a1Tflqf8MBBoN43F2KClWyk6wqullLB/Kduhk305ZfE790Mop3q2jsIBCuZoY xhvDdvwGlVK96hz7cZT9GKm3Zw9P/dg8F8+//xwH8X2Th0EG2s/5ue6+m+tv6+5/l++fZCt0zx9I PR5taUFADzgvdMjKPdcDWYJzi7KvSL4f+WydJL59nho954Rz1seaQGi9UNG4NM97dm+X9HLbnkfZ dmXrEx+7ZzKMe779njzv+fw89u/kPqmrvd4LmXSeSLiJFT/aKebIK1E+JleRNznvH03KXM7S0sjV 7K53sqRlFJqip5oY9l6WdM7KqS47eAPXMHRaMGBqi2mh18pec6Zs4WXnrsfL557uQ/fbDNo+0C9s 76Qbp8lOdGbiJmazZ7P1eAYvbtKjHpva+eaVWZCrW9axk3qfwYAS1DtygaGZBHDtpUjGuZoYuVyM JuFbh5weNb4mVl7Zx9eRqlF1Y1yef8i1+Pn5Eow6+ZfPC7wETbG+s6kmVK30EXhLNUZLK1YzboRp /4z498Kl4B0JtyLzGyggH7KQSaQc2dL4jlJrgSwifc35U/LHWlTwjAoQqT4fduGNIypQXFIGcgXf eERvJFSgUYFEdfC7BHU7JAUrx+3gjzn/DcgVGig8tE+gwKHKce8iUpjdyJVdV8quI1/8Yl9FmS4P 1KhAg4JRA8uCpEBBPIKCkeKMCh4RVw/cN0YjOCIFuySw33gBBQ69kfT3TtBFLDXJCnIVyYeZw1Io 2g5KF8I5XIBk3iGZLzPq0+vw1tkgB/otz5EKazwFpYPtVGRMKTrNZrXlTaWzVPhFUjpH28JTr3h+ 39ezY3yQiNDAIVIODnw9mIdcQSOKbeUD9w2I5tiUBPYbqOXnUy+X5S3GWYGDnQgLnhzbXO1CDdoB 0Kxc/1sbzTosi7oCmOlOtMLHwDIMDkhx8RsQHPhc7Vh2wrIZeduh7JYyDaCs3HSwXSjDUSscdnaI hkN/fuXQtCF7xBeUHbG2gVg/vegCYCr2LW0Xl3A3IpWCPuzDHmZtW9Hry8JlzSk35+2aQwWPqGDX nJ9Oc3pZAJpT7kDdsOqgUcduAOrHXUM2oiFrhxwoQrlperuKAOdDsM+9K8K2FWH1kANFKPf5b1cR YI5rRWC4a8i2NaS+LADVKQ+z2K7qQNzAYr17WR9UderLAlCd8sSW7aoOXmMGewWugtpVZ9uqcw1Z WJkuKw8y2pXtPVmVXT139ayekytPBNuueuKlmVBI94ndbevUNYacv34XDwd/uQtfFma2PFyGgNHx fduFANzzcHTRRhD+eqKbrgDYEWsbiPWzSCiAmfI8zw3DzFrw5QA8e9cVLLhrQdmhbLNQtmvBj4bL 8qDiDcMlHMRdHnZU/GiouAt7JfArz1PfLvit2OyPEg5wrHAahJ2JuGtB2VFxq6i4a8EPh8vyoojt wmVNYwj7EckDlqBbQtmK3ZOoEzH48fUTuTNwF+iO1dvA6l0FP4gKAkNR3v2zXUOx4swvtgRBecCn YLA3lGKB58dyO47eE47+LBIKYKa8DGyHmVWDiBfDwjrYFmxHkx1NbiCIl0GjuOtvu5DB30q7K+fG lXP1kAM1KK6n3K4eYBcEYgO7G1f4P+yQlB+Y7Wq7DbXdJfT8jTtY7QpAsbxed/kNjyUqeny+7cx5 wAqyXC9ltLWDxPmSwl7lvMIbZicvcbej7RcVJ5r4rjjuRFg5/0D0igcU+yXdPjpbvax8dO45+2x1 +MaIq0WnscPDykc6OHoDtQOfEQ9JocrnTkof7DACPuPzNSdGx/kD0aEjy58tqHggej07XXPjHXTN +GH0LdcG4YFiL2J3/EXsH/3MRgiA+LYGBBxmavOt91JQhNhdHl/bb9IdajjHPScL3uWywk5vyyKu uEIHziXW20/G94KwVvEzleyLZPhyxZ93rVg5Pk4f4QmOWUskXXYnDbyABRVALwjeMDOS3fdVjuGP 7WnBdjjkMfI9LXu6nHDa04pK5LvT1Cxk8o+hhgXXkGBcx316jIvikWXoe4Vbx1awC6GGjYxz7hHw N4IVyqno78vfYG+vxNJYT3n45hg60rhyfuKOr+u3DLewurFVgb8gmD/m/OjwKuKzSEpG/gbfe4B3 x7ENuOU7IpFbOXYSIFcw5TPT8uV5mlnvoWIel3/VE9+y8xOKi+LpZQV855ufdakYifGn6ZD3wA+Z V1zQyYZl/t2rK24gXetdA2cnBuFV+DGTUneRXLnC7RorwpRteXN8L/7DBIFXcAxXJAYXHTJaOjsV HRFMaibFUMVvus9pLHTVMX5jxtOadaiSE4F0xs6DLPs2cjwJwra6/EvH8eqferp7n/eXT256CVIJ GfWNJkH2ycjFBTjQvs904j53WkGl682d3tQc82cucKoEkqo3mbPa35g1rsGIoJUy94GM/BT6Na7y YHNV8aadH+UxvzO0qei6fJTAcerEh6CscJbw7xY+jeKvvGL3FxxehUQIZvQUDB7hMvOKMTtbR1ak 6ev1LlzxwZ/wXJE15F/KzZ5txUgK6+CjA3Rw+Qtir5AXwOE/jMChp8UnBde1VawDzgudILaST8OP wHFIyxc7dgR+DwsJqoAsvBubn3a+5YqPFalU/uo5uKYPWnVYAOfppqZNgo5CKqPiTdIxdynYFYeX P0u5wiKy5yFW+AJsMV2RmWS3gz9LeZ9uHhzad+LiyHVhb9m5h7WcjMqP0ENhuy445QMXjyBSx9Pm 8kprUrH6sA9j5CNKxSgfkjry12+w/Q1YBz8RxW8gRF/+bBVGFDa7V5kR45swvnu0aqVssPmYh3ib SSl+toLvPfD3jtznhg8c0rHdYr6dhhnvFYlUOKNb8XCh+0wI82UXzjfCglIYRl4Q24BDLwjmaVbM JM3sJmTUwfe0VpBa6NMsXylbb8kmnh2Bos2/O6ViXHWNhV/88IlvkCoG2eyrNvm7NVdISb3NpSt6 F7Z80ZKACxls4AU5KxKp5U2msfAo8lcb3nI55c97EkzFGGlrS/34p25X9McXzdMtW5pT0UlAPs2+ 6Pa84OqLbq2SwngSnXesC+LDMjuVepUZGLb/h7WdfZQ+31jUzLpcI4HDTiUmyNXjlOvio7Ay3WYa C08e3NIoYbeCnSo5wk3xxaqoPCqyITgSmoYkOdEOzLffDr/+0vx5YcSSEkGa0N6o+N2BqVb4/CeM xsFbJZxNPjbChhRVMGk4ONXQAIVySZT7ni3ZcxStzuxBrrwVzkTZbZn//CVmrj6FXixc80kEFSxV b5uv5XOjHXnOSevmP4d/HFzsGpDG3397PP76p0jfI5EIMR/92n6vfNB/RSeho3bO9N94+9x/IRPN T3z/hbfP+Qu5I/4PtRTPWAplbmRzdHJlYW0KZW5kb2JqCjEzIDAgb2JqCjw8L0ZpbHRlciAvRmxh dGVEZWNvZGUKL0xlbmd0aCAyMzgyPj4gc3RyZWFtCnic7VzbjuO4EX33V+g5QHNYrOINCALYY/c8 J2kgH5DNLhBkAmTz/0CKEmVRbpdk2hxfsjs9PR6Jt7rzVFEydJp/3oD/CWS6v3/f/GeT7tholU23 lLHdr//Y/O0P3b+5SXnbDxg/uT906ecv37rhP7/+svnyDbtf/ttP4yN1AAbTFD9v/sw/F09vKf1d W8BRVF7rwC1BRYve23GtT9M5r8hZRNN01qBVRO1cW1ojKYw2Rtd0VtBeBQdoQsW0SMO0/hYlKuOc 7xSRB25wwaV1P9+caNh9bL68+w5QYf+n+/h5A5Ox8po+OLK2+/jOxLxFFbVBwtB9/NT9Ues9/qn7 +OfGK0z9rOMhucEKDVoasQWhAaQR+FVosFpoIC8tbmrJ1SStcaidyopTbWsZFNegIDWIsopSw7vU UM2HuIbMh7i4OKJeVtIIW22JKBmDyMeMKqtxWrz0j6Dj+cXLhpm1lw0z85mNkBpmVM1GkNRwqJ4q SA3b2jVm0r1MJBIfIrkoriGSG5uJ3ZpqfYjkSmvInEsGJ46Iku3Wa1C29n3tVFESoiz25/RBcSqJ KnHxej5kqqr9o97gskcdPlZx6L2BUZTQTP1+i9JWEatBi5WoEjcwETHJGEtqCNWbPYi4oX5P31fr Q0RMIiqr1vljYc6unaxEziVIKEIpeY1yqyiBkRyBpM1FDn/idtRuk7wCGEnk2urFZQalaB22Y4hd jIjoUXkDgKuRUQ411QGw3tvrFycpyMpxTooPMrli4vSc+ZFErqiouySZ0ggxvZYZFPcdKc6118d5 TDOrgt0b09TviKJB1FdoZHdztTqRg0B16aahu4mL1zuoWHWQOZewgFzZEEGC6KCiaqtdWh5RLd2W QqyO1jMhlpjmiiRwJzTIiaa05TdM6UisU1RTJUIwear9ZdDFOYUxFeuvhy71gaO6JPrb3acfmjjW Z8ZyIK8GhnL5WGRQ2qOviNcrlngeocxO1O6OUF7L4u+xjdUjFNni6/Ow+qO7F6uh1IOE6oO456nm lQhlBrtvK2ME8VxEQg/iiCuoknCTjGmqDxpC9YmQDNqkQzIUqVqBR6J0z8f3+bMNrQM8hCHCOyHA y6fu9ZWSdqe8sk+LJdbqNPcKjFDPR7siWA6MBfY2M1UDBkUxGuSWyAYTQoCs86AiGNCRxqkgOWOy 1ySF5GaJt7R2vtZJZ4mtJIyhXedrimnvz/320z0yxXhx/mUWkKJyhgytc0ADFWnFfvX34V76tJRX TdeHgvKDwO1Irc+/23QanMdnzkKYHDi5MBNqWeKktHfOdUSGrw0ojUEn75SeKQKMrNg05BZXn0vN eKtQk4sM5jjM+QAoSA2YE5105yWOrOVQRJ5Glhzz5Dl8hQWWHCiAfkw7njiaQbQIxq4ydZEpnDHo sB0+++tdvt5NhnvsE9PmkULSMNcWl2K5B+WsCdhSvymZ1u4CUeB+svSjdZ+wmP7f99llceyzuPxc bMEvsRkM60fH2w6Cr2Zz1PYhszaysCu0v9XLZ9kQjfImNmSAXdsGGzGsMrBNPvj1ArM9jaOSGYes 01HXOPQH1ql26Xm/PP6Qo5vOsbu0k2KdUsBHuuK0xmcBCxJhM3GOtFt34pnjLajNaGTNeN1SceQU BLRMzCqZRSzoHUcXQjuMQskCpFNhTf0uccBkJItOaDhIBk5ZboON1zohjezDJIbRlge7WiLdkGIM alpuGXXuB0mNcXCPpJWvvDV+Zfp3h7Q1Tu4zgziHQfMjsOh/T7Sb5huve+3vJ3DRz4nFvffh82g5 uU9y6WPfT06xAJ289evcA5yz4SVlMcxhJIb2IS6H74USoIh5lEl/H+6fbueJvTAKD4b7pZKPbvfD FL6iMGdU8MzousIWTWZJcWQVQaSWYORyxcX3+Qa0zRsNuKwgndmgrFgqYuNJ3FyPhQxco/W2JSCp wKBbWqLNe84L0LXcslrj4zOJ3A/BxyZ4ZT34x+xZd8PHJgbF64amad598THqoDgTjC2j/h0QsmTI vx2EjBA5RDt92wMtr4CQQyy27bKgcxKl+nsCXWtVtctxVU9xP/OSckzkrJOg5T5VoZwRG53Zevt7 Y51vP3lYYmsUas8iFd62HcbP+mWPOIrjvVYpKwphCYZgAlymkKJaOV6PmfTQtqQs0qwNY+Axyqqw 4nAJRkIHCjHgC+aL6IHBsmtaYvw9X/xB+WLa0wjSIwW/54s1Cn94vojRcBJlbnwU9iXyRdKouKN/ xnyRDCnrXHjmfFEoRNsMIprli4SWEymKz5MvnrLYJF8kspxsofavmy+STZ4O8GL5Yu2JSjJaf498 8ZyInVMeonlQZleBRx9yHkLeK2P9jW+nPgTfUvDKR0stM40G+JZZ+YoF3AlTKBy1nJzh6Cjp0xSQ aBx3NYbN984i0EssIob0UFTLkNRqk7cQFenoWkb8OxWFm2/yllP6SOnrf/6vN3nuoCjY0DJ833mT txaUNhhbnig9YVH4kZu8dcDo3+jnLzo9rqTbqkK4XhQ+pyBvOCV5kH6mInNhmq9e0eXMwXikC7lf q9radKSCoeljMZUK+lRkrhXYhRVdjpoKvDOPSRtvQrxOI+cyhE9W0X11xOuAOAcy1BJjtIK8jtLD xU0Rr16lKPnR8LtEGSfWkUx4ZjC+O3E4GgoXx9L2Lr29pPUuA3DMOGkshx9xySGPAT172L0fM667 LzaUM5v5Iph3nIWz2d74tmLTJzzOiacFoHchKA2x6Un7nQG94wzZWg8vBuhPjPcIvi8w3hLhLDrV p+RgBcWgS3ZPfpXrxHEK+qM9yinGguK8jkpH+6iz6auynglWSpEpFnON5z9tU4xWh2z9C0IjxisB +cw0lxQIkWEqPubZzIudJR9kHtHsKPuC87Fe0jsvXTZ3ryd/JoPe18+xiok8akbJgC3P0+6Ekj1p xZ5OLYHJbSg5Bax0HN5/7iakfAkqnh19mzNRo+FzEetWYUEZ8vZBb62VSHn4WnLPaIIHDt9NzgSK L9z5mN7JQ9eH/pIe2zH6d+mPn5HlCJSl6AIz42MAz64wUMUEG++Lt4HBnZJ16belA+L0ZuOXbyFR 9ebzO8m2e1OE1hJDpu57eZ8tUVlHZLt/bf66sWFgIM77T7fn3d+YI4MAEHOv6TI3m9wdc/t0nTsE G1SI6Tvihw7TdeqQhPA/ZT3PkQplbmRzdHJlYW0KZW5kb2JqCjE1IDAgb2JqCjw8L0ZpbHRlciAv RmxhdGVEZWNvZGUKL0xlbmd0aCAyMjY5Pj4gc3RyZWFtCnic7Vxbb+O4FX73r/BzgXB5eD0EigJ2 nOzzbgP0B3QvQNEp0O3/B/Y7IiVRsSXRiTJ2pjOBJxFFHp47Dz+Jpr3GzwPhP3Zm/88vu//upMUn r7w0KeP3f/y6+8df9v/BLRV9N6D/jf60l5+ff9znP/74fffDj3b/+/86MjG5PZGxQuK33U/4aSbv MTIZ5XzUdnWe4JKKWjPueKW9jkzDnGdkI6YNRHaNLIWaLqvkbYwTUXDX7422KjpPZu9AGNektGXN YV4wo0EtyZDCge450BUHhoKy0chICk5pF1OEUtxrAUdODLRqbc+Il/GmdJxhxGoV2S7zEUEMOqMk jEAP0XeznzNyTt4ROCCTluUEm0mHTlCfIDLjqom8J8U+Wf4g8sFgZHShmXzwKsXgQ5tyoNdkvfcf RD6hD1Fcti1ZEr+mjr4JVuW5Gug7ncC+DsvamfgOzAVt6nTJic/pG61c4NiunquM6yC41oHdB5GH 53vn0kqEv9W4zhul2Wr6IPLRKvKJlgNr6jspKE7ON9H3FpxxjIvkXVDE1sNbQF075U20TZ7jMTIZ JKlm8hYpHLaCl7aQ9xGOCfbbySMRd57cQD2QhuqdbY4qrJE2RGJuoo6gCslckTGv8psAj8CS4pZV 83by8HrJOMsxa6FBzYlF86SxIjYmtIB0zw6u32xXighy25gRAvKx8+BrmXms43lJE/KsCLY1LeQj IiSlqK+IqWsiNpKUFqgomsknlDjBQaFLFYt3Qj+XKxAV6QTVHs3XK1GDi662AhvKhBD3CiYj3A9o BEvnjSN7x5fdD89xj7Lr5bcd7UvlS8h1JY2ZgdGXLygAHyACGZIF6+WX/V+1dk5r+4zfGp+Ez3Nu k99eGi3+PuJzKn0o3/do50Ppi/se7Y+U2+xjptnR7cc95U83RmigBnX425sypp+39LdPFS+HzJvw crB/27/8a/f0csmkjAUwhlIgbKTLMbTXVGlPWfROVF1Ud0k9T6XfsajqVPrFqeo5LoiaCAW/M55v I+rzaNXOUqdR1KnVFkQgbbAuGOvchjKM2WZNhgP41I8N3k9FllN1XXmvtLV6ryvevxpVXFzkudAa vH5GaiQajMEqtSa1SEx2dMiOk6cijc4cdTPqJcsRtptJ5yV9I8ONiXY1ZVXGqB1xUHgalffaAEup KVW0DiV+7dM43lbOcUa3KaZXjCirdYSgqxoQt3O2cHuqss3ENZcMaKwyhsvi99Ut2BwuLltD97L2 2q9kl3u+D1/XRruzVKxCsvem0/U0JI0sZmqyFvoLQd9mVZqkmMpfOhlWA905lKfYs265zFyXokmM K/4Qso0e8TlChuMxf5hzuyS2IYX3cqby93PuI4mvaz+UfocqwgUUK3NQqmg8nftlnzjT83lCPSzq E9UhOxPjbTInhbLs9D7txqVnyGAX4lCWpE7Hbj57rscBNkZS6Pp0m0r34EbmNkM6txKDk0pMvL5+ k7geXJ4OvTSKDO4qghT4P2juWDhrBAv93Ngwy784zSg9NGuV+AT5UDiIKhmSrX5mID13E3vFnhkb UYwunD3O3NA8d2OO1OwNMnM3DnOk7NyN49yNWTlm55glNSvgdnNQvFby06xK5m7QnAVpltQsV+5q OWbdZ27EmILbw3NmqWKtnGmpq5kvZZd3Pb24NzBguXodAbzVWS5uN8rG5zhWZDIrl1Wo68ulQuvG LXNDSdJWCuvcLAIKk6c99wEo9DvC48pyO3mSdBesiw0771plvX5KdResDzhHE/v1U7C7YN8Wp2lz HLbKRRu2LFG/MrI0eVD4CYCllVw2PpRaTa1nuJEeIBFXsCqKeTMlm5ZhwyObqPiqLZR+r9pt2WjZ sqnShV6muQJx+KDkmVcDyLOISc1shHT/csUq9ckys+BJVp7SubRlEr0C6Lq48H0EMNWwfbPyGgpH vs1S+C4Uw6IMwySbWvGdIAZi8RH8H59GAEPizJ3G+OoigPUAgl0CIoRef+36TXkBM1oAj3pzTxUY NsbEjPQob4O8NNO0X50v3i4ZyyI+gtM3RCZ7I1BVgzo9IEmuPMepSzERj3vlUW6vjTyE3YcZfCts edlllgwHLUdtaMuyp91wAsXVK1sP4F8PeS2J6KMyWGVuhN5dSiKUEdHBp1gPlV+/VMgCPRQFj7kQ GPyOWxLFkkpCVHHjHevbVXJ8ziEnaqnB4c4LKtCyFn01h74hTN+uzsjKIv3R3ahTslf3u8baGzxq olajz5/SbbiMrRcvzNgMO3cH0PPyW4ffKuZzzXPaLXEgwdMSxbQO4C3iQJM3N+9iS9+MA03eCr0L 1ptxoMkbp3fB+lU40OSN1rtg/yocyKFkDELx8+JAk5d+v+NA+hPiQO0Lxwo2ZD2sDO1thw05tiqk aOJ3cMglp4z19jbr47vAIa8dNjC3fAnxOzjUDA558tgekb/NbvM7OPTmfa03XrFL4Tb72q8CDtUn gG6+c78LbGhyaunmKvn02NDklNZdqPObwIZ8YCWvfG5Zu2yFDXlOKg/ejje9/i5T6j8LrNWn+r5V 1OptB5VWdnHDCbt3IVKTY493AS7UR52Oa0E3OVZ5d+x3J7UW2XckPN3qFZ8tsJHJydNPgI1U11sc vloESFbK5eE07jWHrSQkUtKvzguszBSDEhM1gBbXHuGaHA3+Ro9wrTwaME5ZoxsQoc91CExmvhQq qdPLkktEiw2M4dvs0f6vzoQFttgZ3QhafxdcNjnzf19w2eOWh8EWVDD5XoKb78M+9Xm4yXcwfIrj cKuhHRGIOlqzZV31jlNueh+Z5SvJ8veTgcH5b6JIKGq1zRhdzU/3XSMXjoyF7vlsCgxhYmKKNhWu wLAccnQI6cnpnoqt1m9M8y6zw8LOQ1S2+yddvtSXhHLs37u/7zxnVlPXYbzq7z+A2ZD/pdyhui4d 4D6ZbukwXkuHS++bazMeCTxnVZ6/IxwcBT9lOhIrrLpw/ynr0wFj+7Q/OH3ADTmqZ0q/uqF0MXlI 5NJjvC4dhKjM10s7Xmdpf9r9CYLqCLUKZW5kc3RyZWFtCmVuZG9iagoxNyAwIG9iago8PC9UeXBl IC9Bbm5vdAovU3VidHlwZSAvTGluawovRiA0Ci9Cb3JkZXIgWzAgMCAwXQovUmVjdCBbNzguNzQx MjExIDQ4NC43NjMxOCAxMTguMzI3MTQ4IDQ5NS4zMDEyN10KL0EgPDwvVHlwZSAvQWN0aW9uCi9T IC9VUkkKL1VSSSAoaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvaHRtbC9yZmM3OTEp Pj4+PgplbmRvYmoKMTggMCBvYmoKPDwvVHlwZSAvQW5ub3QKL1N1YnR5cGUgL0xpbmsKL0YgNAov Qm9yZGVyIFswIDAgMF0KL1JlY3QgWzg4LjYzNzY5NSA0MTAuOTk2NTggMTI4LjIyMzYzMyA0MjEu NTM0NjddCi9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJCi9VUkkgKGh0dHBzOi8vZGF0YXRyYWNr ZXIuaWV0Zi5vcmcvZG9jL2h0bWwvcmZjODIwMCk+Pj4+CmVuZG9iagoxOSAwIG9iago8PC9GaWx0 ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggMzIwNj4+IHN0cmVhbQp4nO1d227kuBF976/QcwBzeb8A wQJ9sfc5iYF8QJJdINgJkM3/AylK6m7J7iOqaLbcO+uZ8dgWRbKKLFadKhbZqpP090nRf9Hq7h/f dv/d5ScuOeHyI6Fd99u/dn//U/cfKhLB9RXO3+l91eW/f/2pG3747ZfdDz+Z7pf/9c2EZDultMlN /Lz7C/1d3byz+V+pA2+TCFJGKokiOROCO/f1rjkfhPXOGN201ShFMtL7trQmK0xyKfmmrSoZRPTK 6Mho1tih2YCbNUYY7X1jYq0XIamU2s6X8pKELhjddsJUMCJo3XoMYhD0lVLTVrWUgrsQylJAzAul ondtaTVJuGjShyS2Ru0IpUl5CWWdov+9jLnf9w+vNBxedz+8eFoMwvR/utefd+qqXqnPEL11rnv9 RsQ8JZGkNtbE7vWf3Z+llOnH7vXfu0Arid5znqoMBU6CAotqmGdU4wUVWFSwZ3d+RDUCt8AhqqRh MwhrwNE9cWtAqvCQtOvDKm5TTjcbEkzVgc05FDg4tajGbBk4aW7XiDLdlsRZwTMomHE+q/GCClCN mZTMaiR255BBNlUzYZgVnLhUScTgATWlFCrwqA/2WEGqIhpEiaQkogI8UXzxgQWHdlKCBhGuj5mm XtU5lnbEBy5AIor7QALHX+e4j9qmnl+LzsvW2ASrcb62ZqMZPmjhQ5AKswrRDBwSaKcQg5AqbLoh HxDgQT74MAdOFDL2eKLgsKM+Ihx2yDmURMgHoorf+czkzbAJ1L1In1hkJKEBM7ApvkVATTmIG2Iz pAEZhEMCtTUeEmTZ8JDosxpf1LpWGiGNdqmsffl+BXIAsZ6DLiMsQE1Fz+6cvdqhQaronO9LbkEV 3+KiGgc0gxVU8Z1+tm3jq+Vx7d7GTbPw7Na4CQ8LHEj2eH1Z3Uqruw58QvXHp2qLPlANOOc4Vghn EPKBUClf966zbFPcVOHlQpMPHU2ItGA4AlKFPGkYC+E7/hVUQQgGUZBGBZCPArkNcRMUbWT4sMwj 49rejN1Y7WjBwc5xAWSwYSS6YQweziCfKqi12CGMChAN+4jtGCzYhNvwaLbPvHlY6SElBa5DbJSQ dsBWFy43fpwG1uBv9rFHN54WZGuebSC096ET1gaSo+Cj74Xr3cM3whWgcKk4SJcHwnVC83tyXInY I1Sl2PgFb+ai+d2zUZWCosJeVrCPBF0FGJT9zIgwrFGxxfwwW5rr+kDCkPhofTpWq2KWeKsDglkE G/E+CwLlEDDjsCFEuRAXQz7YQVnYOfYINggVb9LHA0Vrkb2xwQujFJmykt3BOogflGWDcownkX5w 7LwRqMj5fkqFpSqMLkAi0wTF1kCkiHK/d4sIdyO32J/AgAraaX5one1c8MO4fCyAHZh2vjwe3S2G BKqm6ZDMgEi7nCSFajhkrQ4IC8DOYR84eMZP7Gq4CRxWmUrTZ0IrZcopr3AlQiGCDjVfl7KTGWGG boVDjQxfxSqBWoufrQnJZbuzLVNw2mlGiaiCjjyER0dUgMEOP0O3MCQA7MzOTWyNdr7W9D0BMxTg imB1Oz+FDzgqcisaJqW3UygN8dG6PmZoh+/sIpRwhPiInaAMU4H5+bu4cz7nEO1A4MTOKjYXrbyM j2IUhpTuig1M9jb/FptyfI3yO3N0K/Ki2iVR4Agvfz74Fped7Mffb8UqE8WuKszL4rbU7ADow0SD NgkP8vcu2hm4ijXdLpbQMBQFm/rut4z4Q4L30vlUwXTG6ZB8EB+hbKaKY37w9Fi7E4N84ATDXRKN FTyCB2skuFl2CdG3wkff+7p6BCN6VyVbAZzg0SdoXtg5ViVLBXDF9AaIrWFF4uP7dscbcHoQGvqE RhgWwE0mfgEMu1QcKGQfiMCdsw0fXApwEP8oC5TBBxyrmbSv2mR6hM2Z9wX81A7+0T0Dh4R9pg8G ahIEbTCu9DVRnzFREZLb8BYEeIgUje4eMTiSW0KlznmRVLR32ADZIhZUuuwFQJrp9VObR0oeMvvp K8K6vsYfN7m2wkVqdyIUTy3aScKamZ9Dyw5WlPZTWhiriqNwfEvJP08Ih4S/W4WiMTBdCfPBvuTn akJLlw1ufQgEn3eDmadsJVCxXbSFqeD7gHw3jL9l8fva0aywCGyziueDfwB7g4v7ZuRObQjWWUj3 8k9VYKsDO2erWOxUQYsA9xnYORIVR1OQceHnqW5xXxC26exBxDUKVBXPevgoUjS2aF2qwRywlNML dDf3tvhnWPnH69npYPiiC37+Of8EAf+QLj/XhH+BCpoofqoq7Lyh3cOeacNzy2yqNr+qd52lbHc1 LL6XAxpE9vGFlnvfzc1bu1MKm7jsW6x2vp/SMCuInxbe7hJzfpSPfyX5sg88vcR+ax9YQe3Y0B9q F+/C+4cPGZKFa51/JV5FYhk74F0RKOZnrRQc19INT1o6oaLUKwD41913qzv/uvuOoc7a3X2HMTac c7SoYVMHxOBhXcaddTZXJQNU7/HyQ4GrTveu0kT8u7jxdmghlam379nCW7LonfZOhJSM7qwP+TNl NIFJGYPFHy6jgxIkRvcIh2vphQwm6iKkVfDuF4hc2VYgXXD4QGD/qT35B+JmmQ2rRVBmBTJX8CYn tIT4bEiEmvljCGtgPjY4vMcfRIXMGGYQ+uGFiSLpWb9GClnFiaRJWleUqj1i77YKiJFWdjRnDWCT o28qLXy+lE5WUGtm+ESrt2vjzUrXMy5UIn2jk8+50dLJEGmVDFxEkZRWMtmLhGQTkzFHtloZYgzP 8neXH5rslGWklNXkWL7PNnH8PQzv7M2CX2OkFc56kypY0V6YJH1WmgVWLmw8j+SdRlYOE7b2U3h5 i1TlhIwkMBWk9t6bSyQhJVL3RA69QXZyIDeT3Y/0mtlQIxun9bPT/6yGn+Uxn2PP3m4Oggy0xLA0 JNoJr7Xzd529ngU5sicnv6eRnaUEJGN8vnPy/OGK95y1o+zpUmr4HuM4qnacyedxxvQ4g3KY0fPI X2b1zOL4jh3fyTNTms3ct8t1Ys7Um7S1dLeRsV74FEONOlk/RCrTlbI5HEg90jAc7QV6ThDmvIdI AMknZ1Sxh8uANxrMuF/3bnmZOFLsxkddo6+NUJn7Fetkb5doCFFQK6lG0TJoWKWmxrlwZniex9ma cUEcJ/VPawwIWc9ICqtGK29tQFISBCJUjbb8HAMyNQhHdXv2+mdg9oorw0rCTjpo97gGhNT18LlZ d561ZS1IKlpF45Ll61mTIzf0dchfy70kasxbwjib6to4UqrSpI2zsdwP7fWcjBKYXt5L5n5xCg15 zNLYGv3LMHB+1AdyZM+OEmeH3/sF+fKerYuZUe8Xljy3x15YVhGuVjXrqpXFsV4Lr8i1egCLM05B hkV5iopWxQYiwLlwX2CbEdo7NV3A7MuzHg0hORPvq05vks2w6csskGurjUpVvu16qVncbHPklAYa 6zvjtWUayNs0Mir1mTSQ72Si/eDt6/pdHlFBvM7SPi7mXtTsxKxMvNtetPL7/mpyetF7vuphdzYp E6XQvzPit7O3G/fzvs1EkbzV2YvKw5GxTpoA/6bDFtP5a4k0lz8ENMew2pHG0dXhqhGyaYyjUrNn F/llogT97elEU/fhUJTzQaQU3ccudanGqKNknhHEGsg+xbVl9sgBpAXtP7ZtUAuOmps6F5OQIZP6 GbO1CHwc+Xle6fCxM2+f6qp6JQn/EMr/FGHJ6FaFK4DohaWg0S8CNVEp/bvnstNYL1zbPFuPi9Cd Jlo/rzc91u2Fc2m4yEf0MaaWGn+9x/c2bLtqbaUVToQnv0nrIFtai428dk/+T/BOtVTmTAGG8c4H jlR6pwl1Gt3SSLTyJ8l0iWiVaanxy7BqmSTyt5IK9vsHyEfVECB78vGsIyz6eAA5kOuXkvngCYqH AsjnqWsadg/knhJL4TsFy4FokT7FBwLLrQIsgZx6L0N6QOBMcF4o2xJEbQybA7nXPlr5BZtXwWbi n/ClVi3tQB1srtncugWhM5OyCzHmRB6XSEdmPmEeD61CEaTx/VqcsuU6ZYXPf8KMO9+H9ZOPNCYh RRVMGrkjI6NDmKa2Nco1KmYHxEy1lZ0iXoyT2tvu2y66IYXKTx//uvtb1Q7b0IMfBiTSjAsyfn2A 7dsuxeGxnT4eOhomQ47zEK3OHOOcKu+uaZVjn09hTARz3RPZAxec00pRr5MCT3OYjNWh79Wrgcz0 psL1+fz9J5pJnz8MUVnbvzY0rCZPx9eyL+ZJwcTZa9en42s+6Vw1ptlr16fnofk/FHI9TAplbmRz dHJlYW0KZW5kb2JqCjIxIDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAyMzMw Pj4gc3RyZWFtCnic7Rzbbuu48d1f4ecC4eFwZsghUBSI4/g8bxugH9B2Fyh6CnT7/0CHEhVJsUeW sjy2u7sJHNu8zI1zJanA3uvvE+gfobD/27fdf3alhTM7Lk0u8P7nf+z++of9v7XLJe4mDO86Hvbl 989f9/2Hn3/affmK+5/+24FJmfYAAQuIH3c/6O9q8FxmiovZE17BA3EfKbvkvWiXuMyY0jvOM7CU yXmJrcEyZMcMKV6VyjlUtqEiOg/J57ZQKTqS0K/4Z6EWuNrLeyBy2XOKYU8xlSUN4DyKCnlhcdk7 4G5SpcEPNPgJDQGDkxTKVIi6bpRy0sn6iX0SwHNiYlSlQSEZiMGgLRRYbGJCAZgj5EVaUnaQQLqp HJyiD3yBlHPogVxECrIInbPDJNlHbUXlRFi5WAWeowsk+mmR+OA4UVAWVZLEDkhoJXxJTmJIy8JR jQJBVoP3+xBRFSKukw4qZRATLUtnKvuRlTXgRVfKq6J9H+GTCp9SgGXwa4XzrsVMBX5VYJ0AnRs0 9Td2rtiFGNPeESXQjqjWp6ScN45kHd52X05pD2H/9uMOhlCg5oI9geGdvrdv6g2e1ANAAK9svP19 /0fv6agvry+o78P37D2+ls9/2r/9c/f6dklyyTvufUQ70selu0b688l7dUHeK6k+6gu9f9HXQVk4 HPqXSN/uX3qW6DRhM9fPp34MYG1/ruOeqwjK9+JAKw7IExiln+qYXGmA/j2ferwFLkPf/rwkTlGX myKk0FCco9peEycoe3ToWcOBLejfy3d8qWL5wK48V7FUDWIcRUpY4elcnIi+LJ2kBVFkcBE6h99O FFBskBFWWMUzLdAGXr0dByRqSJzfRFPLuN3K5fiSj6h7v65oxT7ULuF5YMhB0F6NZ6zYVA+lI+Gs UUkYcHsXy0+akzAkGppvqeYCx0pBcjl0gacnIJ86xOyERVil4AfKXowOL1aHBcrsgGB1PFug0Oo4 WB0mHyYOE5TJYDsckLZyfjRFYnWAtYJggjKpos18mOpjzRjjxHrztOJpVO3XAHbVLkUuOZjP5OKa 5rmsqSnf1EG+x+oa57uARZM4f6xBifpAV2LyoQaqZ1xy+Jp/qmvLeJ9gJHmJtqzOLnjf0pW3oi14 1HJaAB6Rtmm5eHvaSj45JEYlyZKaY3a6WfT4NNB+GdVYS13FdFjKapexAIouYIF+PTtZMqBZ9Xz7 Eke5ZhqS22WOxyLyGtRSeLx7l1NfeSymtAG1Yk8BWxZL64Xwnn2/1uU/jo5wntUvsUDsEnhq6dc3 1ntpLCo6X/46FizsJ2zVNe/GHMYabihm3vuOdV4aYXbFyuvESo5VfMNqhzq3s6YlcU13dW5ez01L z8ON3Mly1df11YqSqtDxCmUBkktBxbTC3a+oKxWQSxLbVj632WwJKTkMhayH2WxRQ3hR+g8vbTda ZrsKi2OXxDXd8ryL8RWeu1qXJuIZ4vuwwRJG8eCprQgL7s63KW48TmC9LpscanWt1iTXubxubllc x/0DbuOg1+EouWU83raLc04SquSB4bYbS5+pm4Y9zsW0D8lr+ojhEWsTZND8H/ARaxOM4GLIeKfa ZJm26VHPr7puqto/bGd3mC4mNldqKBaHhCswLtvS9Azst1pCYUZNqDG2rD9uXEKRx3LqnFq6+F9x CUVADiHLfY7EPp7edSR/8AtLBc+qkoQCOeGUW0aiG5UkhKx4fj/9bXL6S8Saj5JvGVkf8fR3SQTT mxi/12z3qdnKMY8HH1oG2VY1G6XkmATve/K+/vrj7J7ip+lFh93PB7JBXEgKfDjlzi77gOVG2OxA uewa6TAu96Kqz/dGRz09Pe/AFwtUsjperQ6LKhu5CWo7udnqCM1kVUuQDeR+AgdZnJvILRy2SExQ FnJzBlszbAYPVsdxq17ZfFgzbIWbzmCPl81AfL7M4LRjJsRZR94M6mR1mDP8DXActyI/LywvOj6M JbnFIFcdoGkMtn/YPMPWYNmsdttt1/K+ti81cVh2ZcsKNhucZVcSmzlAMd2ZJURzRqXqciYye1Sg dWQPvV4zG4pte2BTU8w1sVZRTH9qIT+YrtlcE9PRbqfqFjg2m7RN1eYYauMwxW7i2JwFNTTQ/wMV nUX2qfrMohUYHTOqph1ogZq52BmOw9YZaEZdM9+wUhd7hpULsDVj9KQrI/s1B7g9wR/vGVx7Qut3 Z353Z74uAf9lVLEpXdPLmzMsWdlit0RiKrYtkoZefrOWfKJ43CzEXyirmTO3Sg/ZXHSB6TbbFV1o Fl2Wl7cjiRWt7MLOilZ2jWjyYVHFJlUrS8HMLmkES9ed7C02ZSwTtaPVZlfzG94RMsvNzYnxfbfu Hn9n68IWg5E3TZ9Bv3XeZFuVxeR91327/pp762aHBYrN7e2G2cOlx4c4ehdzGh+EXvF4Ikd2mcqc hgfiGZx4innD04kWS93TQCz0zpL3DoR54RyIJbmEZc5NL/Yd67ltveHxfpNj6Zh70d5z2XHFez0I 1Z1FDwesw2Hrx5sq9ULO1cuJ0YsTCP5OFwBX8XLq1wqHw+VXP97EOfrxWtqKO/nLsoDskB9ZFJ0I DvU1uYR06VpCG5GQdxRiaHkV4ZMWWzV60TIje5cjNX246DtZ5urHLmMExz40fcz+O/K06kp0TIqW PD+4B+1MRdZ60qwEQHwMS5lSvmgxyaOLTE2fD/nOK7HachKQEhKk5ZLcgLdVFqRplBKf/QOkUo3C 87KaEmvimuCRHcap8rPGWSSODonDA+caXO/1reMnRieCj7w8wz1sg6X+RlsSKbVMf61N+TJLmaSV lPrO2C3glI/un2Fd+K8skTSMU46iQkhZQOuHyo0yGlKa3ljLH8lae9Guf8b2y1cp5DyluqNQhnyb fhXuP8b9v3Z/2UWIHcG5GzZ+m496UsJj/5O7YT04mLTWYVL5p9mwsbUMu/QvHIgm/47nnIcnF7wq TsA5L6SaRyxZPvAyHT62zkcXnrpvRfYznt5b67AgtWk2bGytw0hr9pQD4mzY2GqwzpzHUv+cc+dj 1iyQVNlmrIecHPlwxvps/Ng8H67UPjnOqcSc+YJOmkfuE8ZyIvmB+9o6DMuxa5lzP7b23P+w+x9A LCPKCmVuZHN0cmVhbQplbmRvYmoKMjMgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVu Z3RoIDI4MDM+PiBzdHJlYW0KeJztXduO87YRvvdT+LrAMjwfgKCA7V3nOs0CeYDmABT9CzR9f6BD Sbal9X6iRstI8mb/heNYPM2Qw5lvhqSo9pL+nhT9J1q9/+e33X93+YlLTrj8SGi3/+PX3c9/2/+H kkRwTYHLN+VX+/z3jx/27f/88fvuux/M/vf/NdWEZPdKaZOr+G33I/1Nrt5RyahEUjG5QjvK771N IkgZKSmK5EwI1zbvqtUyCENtxyL5t1qNbWsNuFajRbTJK0atF1odrtV6YZSlbqxaq6O8UepQt9Zg hLaO1QMT+jVFEZRk9UC5VqOtUMFX7gFjgvCWxLFqpU4JJX0ydWv1Vriga3dAiEKaULkDkhJO6sod YCUJiY+aQ2tZrqyRwhrjUl1arRExRVYP3NGa66XUXGGu1vqQla/SXljSsXZED/tG0QvtfdgLa4Oi BB99puH+4Y2e4+vuu3OgFvavv+3UxdAoIxQRpqhtLaSTISqzf/1G1D9RPyjdTPXXX/bfS2mtlOZM 35I+iT7n9ln+dvmhadPNS/uxx/bZwfx9//qv3cvre31JNkUGr4KuyJMssmKe6XMiEl9adhrSTy3J zSd07L50zy+sHlrW46HL99w9O7ffDduHtnwMI2zTHPLKahe3O5TWdM/PE4dSSS2U08bax2EqC0CZ MaWFT1R2w3wpzkBpQgY6utYybpShl+5jpjBkDBHpvaypRWozdEkPXR7ZPiszZ60w0vq4ZV2RRypy RJCsHmH+7BdsmynWvPKOPBkZW7ixUaaOnYWi7+M7yo/nEg58tz4bPtNtmn9vTDPBKx2it75jIokk yWaY2DGhTg0xVG/O5jwVaROkBQlKoRIHlGBAgkGN28BOQI07jUq8cMm1EbUh2eSeUQLqdntkt4Go wgyixg0kF3Ke6nGOSjhUAjMIG+fL7vOULnHSvF9VlOn93u0nDKoaJDyjBAsSnOK2AamCfFjYBiT3 gBIit/FOl5BWHdWIJhB20YqUekkzGqQfoKxA/YATYFVo+vDlEStZyCBbcWAly1c1kCpUFV9f4y7x bD3HtyJsPYergjYByhXsXZgABwoqwIJBeh/NDSLI07CNbiewc2AGw0GbMSXgoCFmVzVOkPMIzTKa wbAEbnySZRwkIEiJS/DbQHxghcPHT44NEGHjfGXARo4OdfsRNR77+nEStsEWHmECXBXCNgMGJ4Ge IxvbDFTGoPGESvDxUz0GTyihG8EiTCJ/NJBys2UlC00NmqJLuIN4lqAJB6doTUAC7TVUZ7B32cZi Bp6F3Y6q4hsLmADDDPwuwePBtp98u9N1CQA9/QXuSqBnCTPAljE8tRFVsATGnWyMtkjIAbbB9hxm RGHYfQWFAYNp/rSDbfDVIHLxYOMHvqPTZ7APenB4BmECCyM90PSjEg6VwBDmBbUBMRob2/D5wCXY VHVDW8Q2MQoTfExFXToDkLADOtDxmhFsYaszPoSpGWxBXTJDyfJhUj3Tj6lCnGN3kD+CozGV/k63 OvAC2yBIOtT2a3r9fLD46bENLlEx+Lmm+1UK+4FJ1N/YOWUS6USYXlmvi0sMn369bYbPyecDdYlj B1q//BoGjh7bmjHYtlxno8JGl5gqxqErend8vczGSVjy2ZZ13T0of9mpnZBfG1G4+YAc3hnhfxSg xlUFlMD3OWECbIPNuYPBAeiGoxK3EOJEv7a4tQHOdv4mAgji2UYWm36or1HjuI16OzFmAGz2Uglu o144ASqnjcK9ivtcziMQZnBG6s/2ndeM31YEC3j8kcmMaMMNjn6x49AVG58BKaHCQVRtM2wOZ1dN ZfCx/XOD0DyKEePoONqPgFf+2YZ8EZhUfZdEEXd4L0wyOi65V6DiMucJogi2fsBAv16AekYQHHpL j7WfE1t4thc+Q674++CgR8Y392ObCPrnrj8zUPlrLTRP6/ZNRn35uhn21YNpqGmbPb4OhYyTW+9Q yAFCNASGZlAFBwqVmLERA8WlIpsquG8EdwkShon7LWw0wpukTNHuKBi8YOsHyfdX+CqTHzqGWou/ jsCGNjPC0/BQJaRqNKTSf5dLpd2O9fZ3VFyznrHlAcIktg3CsU+2hcf7lfnCB6OMBVGqAbiXEAZ+ wHLGloeKHsUkzgchFWjnoOnnIxV+5ASaM2Rk8YqN5jKIQ0N8mMSHF3O7vWivpRHSaFfeH4mNLPKW FDywwXavV1015q8jQXgx4+UB9UL5/L2kM5zUekckZ5yjqweTSjs3AOjpv2quDujhY9sZlpG/8shf TeEve/K9frgMXe+oEhyPijHDGQNVz2eCkFLyz98tsCH7g1HfAehhowh89gNZ+EUObLDXqnA4oCK2 UZMAye2dHUV38JMcsOQ7d+s6RY8V0V5kozv/+OoVnRdeLVspcvLZp8oSq4VLnFj/Woyb7n1tZzFu WuTk69Tnx6maeupzMohIaOS/joNOn4mLvE6DHzlhhwkqblDEY85f/EEM8k9llDQ8wCP9t9JX2nRS b/Mw/5VOGA3BfqvnXiuIOxBVcKH0MHYcePDS/9nvy313eG+UlM4ePKPueUYvz8JGHSEKxcZr/CDs ga2oFZRjvsPFZ5CN8D4/IF3CM17ay+rjzor7TPjrbzP2Ly3w1hRconBc6wIvkQKc/l7ZVfHaA2zj n2Tht/ka3BlnSfkvOq+nABNUsg8cG+orwKTH0FD/sqK6aOgj+5b4B5j55hiKKex6tgGf9nr0pe30 jHNPfN8MklsPN42+VHBwX1ZtwS7eJwH1Vj1QxQ8h8Nf08UpzvTWCdSPUSyxprHmNR4y3OXK9/c0G KZSy5AJ3N8BpJWS+RMbjW1dscMJ4+0G3Wb95R5ASUVqfirfMKE1Dki8uCoglqqqZg1eWkhNSR6NH WEqhvTtsuzfnXO92S11e28vXPS9eEURUVL9KTOfTjtJPYPPK4uWGvueO/ONbVsZYyBpXR1fzri1D chNdMrHIwiFLnpN3t/dNviTt0LKdf0uq4/ict+HRx+ctf9NHOredaRm95c/p2NxLto5QH+wYaTRV mwu4tjvhLpLpVD752166eL2Q8dh+m4sEh/vy4xPRS9Gq2VUm4nv3T06QunFpI1NyvZ/5QXVLVMIS HzXV43q6RZmb8HIsyFQhL+ufbImTUzVV9XSJaCRAdl0je79T1xVjSwNeauGMWc/IKNcZBN8Oyolg z4nIP54y7LkN8lUgLhy+udsxC8HYNbHFQfSkVmVQeqVLBUetiDdWKBvsli8S7VmRk6psRby1wkfn VlK5f4YV8c4RvDP+gRGq907UvlN6fSuShbe2FWm+u+4uK6LghU6p5jW0SxmT6EU0IdZUoR+0JqZ1 PY7H9lPTosSuDZV6dbzcC8hFoNL5XtBGl+09OesmuKqSML07s6fWqAPZsW07qRi5r70o24H88qSs 3KKrFsiLTDmgsmEje+7G4ljZwIYsF03o6NMY2OCkkN5b9bgGNpDz7Cnrevq0loFVodXJyqxsXENQ hKS12751bW8IDzHm0G57TTjRDyO7gXxQcujv31bv9orAc/4XBlTTzBDOJh+J15CiIhXQUU1KK98Y 31vbObwla+rF5a57EXjM5DyFbmkpZ/nW/0niIVoK/737aeeVb36lJtvt1zDXExHu23+pydZWp3pP u2xUbpAh/85J7y2h+XQL+d+T/SRsdD4EmYb0W22EU5bqHtI/yH97PMyeGVFRpphIKgeMXJ922XRq imk9yHZ72mWzOt+oGrwfZLs9bXn/cfd//U92IQplbmRzdHJlYW0KZW5kb2JqCjI1IDAgb2JqCjw8 L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAxODE4Pj4gc3RyZWFtCnic7Vttb+M2DP6eX+HP A6ojxRdJwDCgaZP7fFuB/YDd7oBhN2C3/w+MsuXYblPbbdW8DEvQOpZlmiKph6QoYwP2vUH7F9k3 v33b/L3JLZLESW5yXprvv29+/aH5yy65IO0N/dH6Y5O/P39suh/fv24+fKTm6z8tmZC4QfSUSXzZ fLLvavLCDQk48ZH8wnNQG+XkAkC0S8GhREpx/Ey7Kg0luxQFtGEN+cEUk4sBIT3PAoN3TPmewgL0 LMCIBSSHSQh9vtf+OxJhTQ2yA4EQ8SCApw9A71Ig5NkHeHWUQFv6wTsJ7HEdeU9OWg3MkScTT5RE 0Vq9BEdgZ6vIk/XhNGhoWTzqJAUVpVX0RZzdxmk9/SguaD5bRV/FqZKE1dJP3pEGjHEV+aDOA+q8 9bxeuVFdMKuW1colUscROKwib/PFhxDnbYfVJhWJTXQz/YSOyMMq3dplF1HSe9mO2MCZAOMsfUmO QjTxZ/aHZ62grza1ApkO3om+GZnZQtB5ZBjTF++M4lHqBxAUzuQLAHqDYWgB9lkA1BbknVcNjWMO aBfUxmysPG0c2No+bD7szcp88/Blg72TGUzRHxh8+GYIfhNdQm9IzM3D5+ZHgNs9AAoAJPtT+yOA O29/DLDdGdDHrg0N9Pneft7Z0fqyXTMDB+bye1d+33bX8z2ZXn/O++7+9jwUmjRq23dH2vV9fmoe /tjsHo5qzNwVRegsopLIhum1JDLaj0SBHevxtgwfylCwtO3LkLaduNq2++56bh+Lmu4Hcb6P2HuR PmM06ouXXpLAqxUX0UFQDP4sikv7TqBZQHkIxm0nZC0KgjIMLorl7rwV/n4q6Dxv4txQDaEV2Uus ONQRri3Oa57hzeIUpwmYzsNbK9d9mSxpJFs7Cnc6yZDU9tl2k+agh213PEyW8PTeW5obu3kT76Ng TfAYIotF8Ogn864bf+b3MHVSGTM/tbdZW0MyD6mqUHNevWBMvS53ZSy9braPxzE3BmYLh1ljzQnz Mj+Yje6xbtbYaosVBdhbPMngHTqMWavfvt+SjR+czG4FBqEFIZb7hVBzoq+3i9YOoMgHRuepyATm eLeMIft4SZcVF9lY7mjkoONgL73+s+57n9Ee/ciJ9/fNutA1ug1iLMckl+hfkrqUBGvCUWX/csCq 9/Ax3jIuIao6/ORC8kmXg7MqaOwtJ4KA/nyTD+5eAbxagrtLAF8LMpxCHu7VYa83VSEHrhkivQ16 t/suT8rwu92O4FdhyHFgCrGL6ecrcqs3w7bn5DSKXCJse8ura2dnlWGbSj7d59R1YdvSU59S1Yzt xLBtWWfMy1RXBdtQcvI+Lz8rbBN4R0GqWsGJYJtyiQMZLgu289JWexzB9poIeQLfftDgMSt420rj Gqvw5Fg8XgBsD2U2ywDIoCUcVpnRQbcs+nylL4JTzvdUtO4MOsArMA7NqsHUi7fZFI4N6a2Vw8v0 Wi2Gz5jfomeaFC+vc31nUiC96uUduBv17TE6wWHtfw3grHJFk6LvhcWKk4Lxhc66YqLLs2tcnL6I FeElwJg3m3Ex/ErBYlxwv2qwaK/PgEVK03Pxw/1coigu0ZLwQGOVleiciMebDk5eisvDiCWwy8eo A7Zm7BTsgsZj7XkNoG/vc3faD/3aNAK6/nFNqW6yQeLCcFZ8dDF5uAKc7XW2iLeTDSNnxtv5kviw 6WONoHg7T23Yc7REbd5cLVROGv0V47soOIvY6frx/TFg1V67yM9dBrBgmR9z1Xr+idYsJKKpzUtN 7K20++lutF5RIeRf1mLyFlKD4gW6IW0JaTjTbpaXuqEcIiy6ocm+wv/d0EvdkFp26oOvWoA+sRtS Zgv8EGouq5zfDfXGf7YldBVxxKlq+f9E7khVXIzB18TgN7qjvIx+3y2fT5bQK7ikPovCNKJxpOrZ W1TaP7W021lxBnVszv089ah32ddpLFr0TVXL+rW8dIDogNK5istrvTT1hfY1i3OT3fn/FS89u3Az /5S8d9cMG2X5MbN2bJ7bIUrVYv+J3XcwKFCheD6wrum+x8tWk2xyYYnrZS5/4RWAvDslSFgefbXc NQgYwGDVLQsnChaCgguVN4xUyl3vXxYoLNbPYZiu3GveDzb/+jd5ApqMItQsvaxfhT66XWE/bFu4 PBE+YzSHtw3XvALzHICMI7nu/eEQYy7Cdy8Rm7aercGHhC7YJMpaHOumfUNO8ydMGFZGJ5w0mmJD imhIXhi2cCPvV2ebAEVH28dcrX2rWbhjJ2Z2boKj9pO7fBufUiosNn9uftkoanuW2m7D2bTXjTGu 3Se13TpyOGot3ey+SYd8ni8d22MSeNib8ZTtGxfVRy+CU/7zcnAEivSI/0n/oXna3Ti8yQs7KNFm 1pjRUXPpmAMGCmjMjvsNraWbGKCb0YufdBtau9F/2vwLaUu7ygplbmRzdHJlYW0KZW5kb2JqCjI3 IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAyMjE5Pj4gc3RyZWFtCnic7Vzb btw2EH3fr9BzAbMkhxySQFFg17Hz3NZAP6BtAhRNgab/D3RGolbkxiNRG3kvRWxsFInicMi5nMOR vKbT9Ptg6J/obPfbp90/O77ik1eeLynru89/7H79rvubmlTwfYfxSPebjn9/ft8N//n8cff9e+g+ /tuLCcl1xlhgER92P9Fvs3jvumCSAjQAC+MY7NAlFbSO1BRV8hDCccwvxTqnog3GL6o/SQU3SA2y 1KCVTSalFVJHXX25PtTKAlmsw8ALhAgq9usgLpXRVhlvwblxeD0Or4vhDShDIxrLnckwyqA2Hjvj lPY6RCOvGt+NSTuYHcCigqSxl49epYAeoUm8BWVt9GTLVvnBKh+cNalJPoAKiKjtrHygxY8+QaSr YFBhpO4t4smnQDuMsVl9T84dIp01ySeHoHBht25V3yZUMTnftvxkLIia+rb7Dyq/wr4RlfNBz+v/ Nf5J003Jm3n7nu2fVgflAdqlr/JOS5lAB2PnV/9c56S4Uqi535v4piW9jAtuPnIr5SnHYfAhNonn m6P3fla8Q2UieMIbEo9JuebFQcrbFnDeMUvx6/yGYCGgCfOOc35cEeSoyLZaEVfUhTxZN8kHAhYI PrX7TqIOGExsMi6ppJJx+o2yPhCqOG/NvO+UrukoVqIjpGgST6CSkrbtvmONUWyFFuEEKd7GhZRz vudAIL2c9fOWnTIBJ+SoOGpNk3wXjVpmJOfL9xSH0fIdbyMfvVYGaIBt5J9N7bCn2coihk45Fww1 YERW5suLk2KHl933z4F4VffyYWe6TPMnX7RHBV8+ES19ICpqrNHU8vJ794PWztBnT593Wmug4zN9 +KiHc/1I/0/5uh7u68/1cI3vMZCv7/N9dISnfB7yPanoz20ut6eh/dEMx/Q8jMkyvRmu7/WP3cuf u6cXYbZgk4rsI4uzJZ6h3WHQBEYtzHDkc3jMMzhqN4782lZAE1UgMoVXMVzcTwbSNC1ev2rRaBox zKhPcauPkLWR+kWaWtJ/72Z0q/c5l1eu94fR41PhE3T0LkdK9hkXB5/ihT/kiNjD3OTKLdZGc5ug c2lq8C67+dMU5KdTmfWbegt3ef1Hszxlnd9l0xxWhG69TdxoDhO/WPR9dhMv2GHJ7U4S9mvxP7rh MQmnLNedrtF0X6/LYTjCuKahHn8xp9T744v7Ru8LOq+RLs5TXgs9p3u1976KTxjyCZ0Ge/agaOlD EzjQPGJsB2TuP9q3v28E5xGM9RRDbrS9nfxwCdCX/aCqM9wauJQ1ivvBlpEhzWNLWR65P2wpyy/3 iSxVied/ByyjD14cWKra1n3hSlU3uwlYYXpw/DzdErQs7POAEnek2xZnPe4iX90YzRqrrEJ+24zf z2a8qu/e32a8qh/fGF+qas83ypdyJoIxQJ6ya+Vg4na2UX9tIThm+VVVJ78NfrUwpVm3q+ry90m4 qtr/fROu50EOt4/ZeYTrFku3EbOF7O1ADfNdNF4DtXPjTJhkZPLB5zENpICPEeeMWz55uXhWNyFn c5jUN8yVwsk1zPedXNe5/6mMMUvByKlOUGMRLapnRjeGFkBbfyTL3zhaQEaI5YxfPj+7csafj93p GdXiIm0Cl/PamBCVASRGs0ieZl098gsQGq+3e9oqvZfZZOs9dJlol7NHCsoafm/ibkHf6UD/w7jl 46ELlQOcicoml6735EGsMhelAHbWLzJEzNbJW/tTR10sDTRt/V9bMn5ZA0Cbq7AAKJOlKZLjGHPP w/W4r5GFlyuOCdUM18ulPsbxmy37AtVDq2KgiS7zoLMNBwxJPMQ1DMfVizLp7scS1Oq6Q0NSJcKj kk5mS5qwFSWjAFQpetgy4W9MyTgl9fe0ULLqlaNvlOzSlIywS2k0/o6f0nhtlU8Jt0SUK7HKYj96 VVbpOSNACPfHyCiV5NeUb4qRcekYCmoQJ2c5VozChFbHBy1jEhn7fe2zfA+OtgsQt7TsVsjmvScy TRO5XWQ75qlWdKteeP2GbpdGNx9orRDtltBwaXSLqDZ+v3AluD2eAWQnRdTrglkKtDr2Hl83QB2I 7PND8ltBM35+wZteRrTDoUA0nBJD7xQFai3WEs7YKH81EqKJypu46csBWyEhso2S2/TlxY2REHJx pLn0Xv1pxjckvDQSImrixZsWby4MhBiMsjpu+rT+7ZHw9LHhVZEQo1GBet/hvg6TVVv/ncIGL949 5WOBhC37uAoR7WTB17zg6yrxDV4RtKU9Ctgr7btKJFz5XRPll0IoY0mkMs6TjsRGYq/4FxdPFEfW FPqfSn/N3/NgQ0SHWW2uCFtw5CwjSPZqBwV8m+e/JRyTndCQ/fuVhiQ1iKKkwcUeXuqhYe0Y8CT1 iFLDQWiI+7VjwOPaMcQe8G716oYr2kOeueQ+oieeYfNLO7XX8HqPSBzm1UUsG6oJlg1O6lE5XNUj Sg0HSSsjNDxKDVUYNGlVOUOTVmKPKgya1qoKg7YeCxYc2a+UjokyKEDeBy+lZTlKxGiXPFiOkvVp ANcO7u3qMcS0vHqCcmaU8rUc1NIY8uDrU83qRF6FaNMYZ+RScYz1qxvn6Fv5JVZbsyA7RJv3Qrjt Rae7GSR5KzgWZy5acTVOr5+H3GO1VqJpxSWRc5YYI6ttLg6upcR/hrrSWnlRXQkRzkgb5RglC/Ii p5EgvxLVRnYknJYJldTDiT0krUSmdcbgEqGSRUkNIm8Sad5JfVFKrkB73ECe4xaTrMhptkxO4t5N bFidUa661VxPdmQquR3Tcqtp3nrqcoY9xAYxM0rzkMeQLCgmWdkZiucOQwWJApIrR0MZiTiSXEJK hoOwfyhRMqL+276Qf0IVtOiM8i5h7JQLKZoAKQctBTl/3cQUtebxVKvWupZ3gzqR1XkIOXnwLZ/K 08hv09NP6v7a/bJDM57xbdNZfdcDKY7DT+pvG8SZ4mq+jfpVN/A5N/Fk/gM2hqOzCmVuZHN0cmVh bQplbmRvYmoKMjkgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDIzOTU+PiBz dHJlYW0KeJztXdtu4zYQffdX6LlAuCSHV6Ao4MTJPrcN0A9ouwsU3QLd/j/QoSTbkpNjaxRGcjbb dNcrUbzNDOccDkeOaTT/3Bj+Kznb/P5l8++m3PHZK19uKeubr39ufvuh+YeLVPRthf0nP2+a8vPL x6b7x9fPmw8fqfn8X9tMzK4xxlJp4tPmZ/6Z3Lx35f9LHQSXVdQ6cUlS2VOMft/Xk+ZCVC74ZKs2 mrTKpEOQDJVc12qErRodFGWfc6g6WGOySsGQTXWbJVJkg4l1RWtcUDGbnCs3GzRbXUyG6qoseRWt DS/S2Jz1oYzlVaaM84b/DjqVfp/ePI7h9nHz4SGw1hS1/zWPnzbm6Ae4z5iC8755/MKDuckqa0uO UvP4R/Oj1m77U/P41yayyvk5H7hKV+ANKHAaFexQQQQFdIdq3IICTajGAyqANeTzQDXwqBwquJc2 ReJRQZF4K24KFuRqIiEkEpfqWQk0arQMoDHAPkYLx2s6FNwO9ZF0fr6pYcFofQwLRmIf1RD3MdLH qKl7VCOhgltx5wYVbFHBTtqHR33coYJV9QH7wEKMUtW6gAq0tA+P+sDDRbLCnaOCGdaOakCDw00h S8TzgNYOa4itHU8Q1kCdy/sYAcsz0r1/vMTkl6Y/GHQgICA0wgANSQACTwi3hCA95TMCHu1qpsmN uWwruADkphFzS0huGpFADNZQPFBpCN7hqDC3gDXgqKCaITUVk44ZpoS43hKc1SEr8ZBPyoUoJuVw EeHOIW2suEka1hjSRoyXcvQTY4Ac5BLiFpjxQMiSjwqxEUgCMUeCYrd7V3vWh1JKimJI+aIvvdId ETRUsS/FKxH5B/kuGIcSoBDlu3k4cyRE3FRFB1gvwDEDE5DBwfDRLZrHDLHvzpCecdC1UrCsnhju IFUJUvngcI5cnYik1URZOTSi4eIY5Zo8qaLbrrmK1nT00xbOkPVAwH6/UbSKgSwciYDMCgbk0jQ6 lL2K7F/cdThZcdgaF4g5zAwkl7szMYrIR4Upl9g5yQ+CcIHYncHOsSMXWwl0mXAnfKlzwHpGZ8KV WA8aCd7FQ+XUw/6KJzY4cgf7EC+WGdAoP1qrt0XAshKvCSxEOYFadcsGhytnukPVjmI9MBQCwxTy wIY8qoI4jDzWsypP6qnjRaoSSUVrDF0+PYCwhdYutJXr3GZAAjUDyeXRY7h25aQANiV2NTM0KI7/ X2fyxGxrB1RllGf2ygGaVReLPKSzqmOREw88XBhPggUwHw1GuRaI9cgD1dixwOGKLbFitG7GsVS9 ZAZcAwZoIFuol8wwIyOkOrmpR1Wuc7XPcE4QTOX8ol4yIF678jxPuXTlqQpiBzjD+y6xRb7e06dR tvvbOX2agWfiWA/mYvL8CzHfq3mKVjEpWpwJJt+fVE4qG794oWwIsVHORcMPhBTavL0nN0/y9iJY C8ehXMqd2CGJ7rxUB1tkZEbsqnFgFPnwrdgjG+iXFojpyfcnEHJmcNUFwpyvFeybNg8xpnpUQx7z HjU1JPzy81V4jIozvuZmY1Uh/BUzpGEitHirI99O4fPuONpUIO/rjFYU+OmL3jfLcfkbWT5LBJpy vTDFjM3RqmdJ8nTtuXncgNwMX/+sy20mvJOwao7jAm/IvbHMqfd7yiNPkzEwSLHmEfRIg9Ny6+UA jmJ8M/LSxIHSGX2IhzvjXU34YiIsQE3hN8vg2fQhL617Ed9l5RuT2dlSzLlxzvK1NUpT0sV7o9fy rfbKpFLlJVBgRxhgo1ekXciMBbxZbDfRHRYklY01Orv9erKskYfy9hSYkeUpRBt07GfkfVKO5XBu RjaoHEuVejNirDPZk7H+4pScKw6yGHNZf4VpdPfKpy83qX/mvji54s/K+1vdNd111+WTdn29+LT+ 9lyOlKWovHHmZeB+otGSbK7DhOmXYbfTuO9EUIbbTnXbiYMG4mg/+/spnpuSS9yt5e5XmdJem/f9 VPaauT2dxrkpsOH6rOll4SR7knSqfPKZmdWlKWzLGvNPNTPJWE0/vV13rbkNHXjt6hI7mq7h/XNT jLyM97xFhKyM7b8FaHGLaC1A96LRg+vci0KfG3rMKoRQ05ZlhmDYEHTulFiUcsdO+I6Hf7srTvio 5INB7GeY+38/9M+Eo3Lb53b9dezKi4Hs143bK94eja8Yz6HOQ/d5MKQ4xQiyVlY7XxO7BJ5+686M jYxRNulY0wsvgEL78ta36QloQwzQyaS0kmt+Bm1eAq5nzY3IKvIh13ThC6MQMYlK2euablOIQnd1 EOc5Q10chciTcsRL/e2hEAVilmxMTd/5TmGIolNe5+6dhGuDofLdbMm7mu55oc1Qq4eHiTDkdGA+ SP2XzH3TMMQ7O+aPJqxDfavAkLORTYjdz5uHoecMdXEYcrzjjxRj1RjOMjDkXDmD86mm73ynMOR8 YiZOeaUdx1kYcrznTVmbmu75lWHIm3JyUDk2x50rZ5NdyXe/RmyOl4/KIdA6HLgKHHneq3vtaD0u /Fqxub0RrwJL3vLUnXU1fftCsOR5q++T9jXPEF4GS7cPgz/31wRNp0k3J7OmUA5sXLw46/yA7Xd7 VlmOkcDkquDieDuRyGd32c5OlmArIDoKb4qCLmF/+0we1L9/umz3y3wvxufFB5RkGZ6TTebygV3Q h5AL7UdhjujZms5kv+tJBR+qHutMV1wB9nM+87J/C65jIFdIuNjTMK82VX3vgoRLHIYu30GfdKp6 FFB3/z+HT541v1C+AczFFyZxrUq8ggnsd1xcD2ZrxAGGJOsqwtLBRt5lUFrnoOJFxCtQ5N1Eaew7 8bp64hVcUutg93fSNZt0BZ+Vplj1zGpB0hUCr+YYzErZXWdJV8ia+aylNxzlEh26RG1Y77nq4dKV ky5eNyra5N/w4Uu0lsfow4qZaJVJ11UcwkSyvAMpSa9vjnRFR7yTMNdzBvOdc2FdeWLWUFK6v/Ou N8W7YnDKmZhrEpfX413d7/aLKZXf6df9gj+eA8y5j9mUr781p98G4RvjSrJrmdhw4KF8OVZOPvB0 Y04mUu4HznzHxjh4Xcx0jCsp443hKTaHd3HodLhTfxVheU3i8M7Dh4+pDPcm9m+z+eaGK+vAkqHm y/B+jF5Fl4mavze/bnzqZpbHzx9vjx+/STxVNihTgLd9bHDdP2BTdyv0Dxyv+wdKkzrZ2JcfLktx EcL/02BDvQplbmRzdHJlYW0KZW5kb2JqCjMxIDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUK L0xlbmd0aCAyMjczPj4gc3RyZWFtCnic7VxZj+M2En73r9DzAs2wyCqyCAQB3Feek21gf8DmABY7 ATb7/4EUJcqSxi6J6tbI7U5Pw2NLJIt1fKyDOqCx8ncH8h+ja/795fC/Qz5DiQzlU8ZR8+evh3/9 o/lDmkykdkD/Lf2hyX8//9h0P/78/fDdj775/f8tmZiwAXA+k/jt8JP8VZMnbGIw5NlyWJwnYDLR WpYWMpZsZDjNeU4WrEkp2rhAFsKYbjRA7BPrZD0ZABJh67n1aBL5GKNONVhDDJbW6IA7qjRWu7SK xqNhFyC6BkX31DgwttOwaoTkjY3tkMKA7RmwIwYcBOOjyyMhoLEYUxTT49fGOHECNpkA6IgLK8Fa E7wT9lVWQOhxaMfM8QLegMgPLTdJdBGQ8RIz5xM4Mmidl96zwoqsyYaOvjM+RGCuoi8QSWjRV5OP opqIDlIVeQwGIxOEWfpe9M+UPMtZz8l0gKihT9FYCMEuYGHEPyWBBctRFf0QDREGnrfvmH/H3oSU XB3/kY1NLsZZ8qJEYE/iuUQ9mNGfadaQZxYEj9zVMvmQjIgrw2vIp2QgcKJq8kHQFgOFKu6dze4j 2nlsTtaWuOd6+ujF19jA80trwIto52TnGvIIhhDTPDRfTz44E5w4rXntEBuBTDuUycSQVVVDXkBv kqM4D/wJdNYsXJKFi8HzPPBfvW4pyLqysAKZLgXDCakKOaIWMa21C8hxRqi0zK9atZRyIBLbzlIf rCkBblgDFfSDZBtACy7/DeRlWTkv8XYTYJ7CM2GmX50khDYVFECG2BjECNIQZICwcn5yYOv+5fDd c5Sw27z8doA+FR0pwJ0YfPkiSc6dBHPIqxCbl1+a76094g/Ny38OTy9bJjlbiSErNDHIoluSAsBK 3ibfx14aA05aDSDJbBAstyycnRQW+rklecr/4oSFU1Ym4iFYoFA4iOJtIMedjoH03E5MhomZgpPR hbMHpcGy1qCRUhvAaQ1HjZTXGu61BlUOdQ6VlCrgdnNAXCv5o6oSrQE0C4JKSuUKV8uhwkcbcbSn tVG9PC+vS3EFBl32mEvrkvmCd3l74bK/m0SJnv5ZvrOtknyeu3P5O0dW60ufJ/kWR4T33bmjHxSw UCxtJNSQgyzJ5B/l8yC8PnVytTII3yjn8VhkPBaZ8nGujeOcPOPibH9xevM8FZYfi4nuR+bKYqQ5 ESYF4EYyDHnyYjQWPqXHuVlq4AdFvsfu2AoNK0srh0aQY5If989dW0s/dTS1vg9Q+vbmL/37ec/1 qUgviz7EnJkvWvCpcHbfffvegnEqbdbSPBAnZfbuSGyRZ4tF7Og4FW3aOd4nJfxVEAiCQJs6RGQE PDj5iAD3j9mjD4g5IbGXMZXfParCgJy2X+9YYteeAdavWOxt7wbUZyTqzmhOh+Ntio1UOBRfi8no V+rLi+70eXqPKlRA48UXck2YT8+6CznOgn284bO7ob72mK2C/KC8GgPNK7j0SaPxT2PPWdZX8bS9 Gi+rTzGSS4Y5506LsAwlFtrCIRYN4MjzVsfJ8Vba7obj43zYWgwQk6266xbd57x5ayL7TQvpb5vo jjOL2YTXIRjvpAh/P/nuV6LMo4bAdFH0ZvNbF5zMF/GDp7eLKevQb5OE00Vnkifa0h3ulG/m6z8Y fdjSFX7EdLMGBQml7Nh4D3SjqOLzZX2OvKXr3SGs9KnRbFjxjoysk3Qlv/zWsJLzbAhot/TJO4cV L7lbtA629H/vJ6zU74RsHFY8RePyDuHthRUfookbp7FvCyufZbhurMjGiwuCzzL8tspwzywVCeKW UX3HMtynJM7oahd1ZhMmWb7lzqL3mzCV3z2cFhOlyR1EV06U5tfTcPdMlaLONiPmqQ+3NC5CfA6+ kzumPrA6H2AfdZIMZ2+3jEI758GTm9yukwc/vDXnnbf1cB/UEjfrrzfOz+zImtjSX8TwBb94g1cx MUq4oATXKWvflP1je1NxdFtegPuIm0pzKkxonCd/nSssn8VTdfFEFqXS3fYmns/iaYfiiYCk6gXa Mn3bsXgiR4YxhS3Tpa2Kp8nd+Lur9kPeRUXBuNbL7JZ/TJ55uK38Y/I8xVXwdxv5Rw0Kxs+ObKTK 05Mmf5s05PQ8zbdLQziVKd7tflWvrb7f4n7V5Mmid3hhb97ow2NCdaXyLpss44epPrhGd9q2Cs5K retu+a6gySNwn9tWV9q2uuQeb3DbKiBkhNzivVBBEhNvQ9gy1/mbbVuF4KQqxbhlgPnctvoG+WKI 3vh20+Vz2+qmtq0Ce5PcppeYdty1CgkNSq3yDi75r3yV0vjlRGN2Qp7ft/8mXNn8FiEXOWD/zHgy KT/tKaFg8nBvND53o/xKjbI6vNaAWsOT0mA1UuVh6/MGPmojNHbVOZC1Bm0O/6yNsFqDqsTVKlG1 +wquktagklJNq40gbcR6AUvhdWEOUBruNa5U+OiSqyM0C6pzTAxF1l8mxeI8TyO0holKxg0T7U5I PWikkjbiee0cEwtWkZpAtIorVElpk6sj6ORuZ12lZzA5JMOiy9wQwQ9awysQ/KjhUXOyqE2uN6jO af0q0UaovlSXQyX1trVbRUqXQwNDUt3yTbr+yynW5IWHdZmK61ad1OzKstOEJS3UqIjRjbY+olzV GagLVU1INFLkVk++eqF6zUWtT6x4fR6oLgkVDNvZ4xVIVHGlyqFZUFfJuGGcqehZhJap6AmJmtuo 6cVRa1DzDnUONe9YLYc6grQ5liRfTEiiN9FBe71u3jOuj4yvqJbW41EdsXoOorWO4xV5x+oKQA8W YYiMXYEvAMiFfVflS3jUK/wEJtruIZhx2GzfInjh3XDBo0GO4BqDMTFEnwpIBFQu3xI2VPq9dvMe doATt/Dq7QjCjk3ObN7FAuLc5cv40KXuJzb/PfzzQNwJktpuw9G01x03nbi5qe02Oi4dHJdTpcNw nDtcSEo4jt4PeM72nWlfricST9hnD4ZTvkQ3ZX/cfTg77Z3FoEAgFj2JcToexOhODWKU49KB2ytj EMtEo+NOzp8OfwFnk75jCmVuZHN0cmVhbQplbmRvYmoKMzMgMCBvYmoKPDwvRmlsdGVyIC9GbGF0 ZURlY29kZQovTGVuZ3RoIDI4MDY+PiBzdHJlYW0KeJztXd2O67gNvs9T5LrAaEX9CygKJJPJud52 gD5At7tA0VOg2/cHStlybM/ks81EO5Md7JmdczaWRJEURX6kbIf2mn+eiP9Kzuz/8X3331254rNX vlxSxu9//efu73/a/4ebVPTdgOFf7k/78vPXb/v+f379ZffDN7v/5X8dmZjdnsjYQuLn3Y/8s5m8 d+W/tQmCyypqnbglqextjH6Y6x25EJULPpmmRJNW2eoQJKxa11ONkCrpoGwOLrXVAFFWKZA1qS1Z a5U1gaJEtRuU4JOKmXIWkbWKx9mcIFlPpGLwwUp04JX2OiaaWTI3M0Vjuc1Eu3dszn5vSGmbdbAL dm2SsroMqRzogQM94cAQ20A0ZSQFp7SLObJSHObEOZUcpYERy3LmlJYYiaQoMN1FRmJWFCl1Q02x Sx2Yq/eMvCefmAPulBbJ+8xiJiZaNO5V7tdmA3k2ZDY7bWmRPMWkyAa2zeJ2hqm2kGd1Zmt9XiTv gqLEnVxRToyKNPlt5L1XLpoQBOS18mxbtIl8CErrHJeXdko+8z4vHueajb0jH01WxiazvLQ3W060 vPNitK6J5dwSdeoUx9fdD2deT7a07s/+9ecdjTGTKcUUnPf71+88xVNWWRvrbNq//rT/s9Yu/WX/ +q9dZDvlfr4w2jfYZ9DgLWhwDjWgOeAI79EIDRrSAY04SUm5KGUX6srCyaGuxJO7M1IiGqHRClpE CutKLKAn6RyQKyiHg3NAdqH5INvFSpwaA3vD6yOSzuOIF9Dg0IgZu7MGJ55DgwbILp6cxKTQ5FCO mbVv0xWc4yRmF2oXcgUnz2IBxSrxaAQWUEzKHaWSJ2g+YrvCpMTWDo3Bo8k/d6v17L68rqWRjVAC jHzyiJFRAyT1AZEPT44iBoz5OPjABqjdF9AA0Q4cAXEFlgOSQg1Qu94gUmIsiQVEpPCaQ1LQdmED RLibdDVFCdj/I1+AcQXyaTc4oiTlCjrUGyaHwQcFUUwqNpujysEueNG5Wk7pIs/rVp0s3iViByjf DHBfeTn0l2dc4phwgyOXp62Qq9COFFrzlBcC/Kykq0wIca+ci8TtIYVSiHh/cSxKdOYagbmOnFDq 7TUAcz0hhZ5Q8g4X7YAiI21KsraZKwqAB7QEkF2COTq0McQVtuMvj7jERSEsx0MWnjBSgbWG6YhN mCAF0CAP5LMdNUuA5GEZggU0Yqb2O7NIMe6QYwKoK4y4oK7kgESco1crGZAKcv3OBZVz5rxxzfV/ /aKxHEWIK4s4UsmzpaN4DiTgaCurh75tgccdRxVfJmLIQ7s4q4eBOiFQu63QvUntN1Tyv7ynERch WmZqUwE3AQ55SRnGypYFAnnMF9czcB0YzQEPBcbcbtEj2mhVNER21TM2TEjk9vhVUhg8QqyrG1ym uGaC1Q51JUY7uKDbznxuiAnicH9ntWjmGS9Vv9W71x4HH4kBh7yKIrdT+cFDy6KffFuJJZefEGGU IL8rBG7EhvtN7v/EpzdykInTp/tc0MwLyE8L2h3rZPGJ9NoZhoDdBOtHUEB0HI7PydE9BdlsA06J FMus6fZzbXkoIVjDhokVmgO6ATgC34AGN1y7owqoEi3fuw1vQEPrcYOuYFa3dEgzv+e8NRhYK9Fp cYqKYwysYIkt4jH9/4PieHHpQ55XPQ7GvhNLfsTtO9M5pmAAH0XAeCwOuzfcAocmP8JiCUQJMFDL ufqIOdAIfGwDJ5cjKtNsoW7AkuK7G1vqSnxUhyEjApmQ1BGxe0TsViDbxe7LA0qUrAqBIdv2R6Uo JZWpDLknyptZeDfRK6tdyAxghydF+jBf5jKksxvApWGveObfCCQy2vPM2ZgqkeXPPgRHWCKmr0Iu Q9pJpFclsS8FaRSrLwZeDLBsjfpZFxMu/r8kB31b1z/UtnMxjeJE+s+lzdcxHY1zqVzXPq6n4YmN o46bzm3P45ju33q9zH2wC3jPsLEYG6xtqDZGf5S9JeNX9Zfy8LvEY3niLnqbP4dHF+v6lLWluh6x 6vml1/mwxt3aXllXtIbdetW+62vFe6HjuOGevTw9tqqFao2dlLpK7Krl6XEHTC23s2Tda21dOm9U 8uUpv3biWXYmyWfOL1Y38qku8MtEvDcidwt2mBjBy7jJy6J26qjXUlwSNXB+lFKIn7KSB7fEWrQq mxhb+oPtrF2M6aVq8jRum7lrWxIhOeXuPu6/1ZAO53KyVfKEiSGtePiL95h4lq7v0Haq4+JIc4gm lyhwmkSBshfNaMQ1Fwbqyl7p7vHXduoan39dU5d+LvdLjk7x2r7rrh1GN7K473K/BIv7r4MTTK0l VhB40olXHMQYPGgvxhLrFJROWt93VnOXcRdLLNAi9KvxzIb27AqYLWCuv1ZW9RIQBhEHSFRXmaph u0kYvBhz7PsUL9v1jbdbxLo18NIFivRJ8GLRHVsbFYfEpjF/HdUus+QTI0bjvj7QfqaGQNuGxLpg m3hgoG1j5gwu+S8EtIc17NbrNNJ2Ey9xWeM4wYBbALlNWSXnPwfG/eaAnDsySnWxpXj3A3LpIi66 fibAaJdSy2jaCIg7TszZyHNLFPvBQNxx3p5z0i2D1xcG4l2py0b6fCD+TOv7rRP92n7bAsCdt0pH 17RY90EA3HHufv/NUk0BuC3HI/x77H9bgvBU56AJzOpW+g30GSwmn99b0mFRndExwNVNa3vbjZ7C GD/tINbEyDvDvoL0pnmJdIOsb47kVEjZtXSbrfIRl70yJjQt0snykWYviGulWcaAOVGK68ZW9gjv TboEAUWGWxU5z7OxLaaOhXcXmYVhbq1C+RPnnm94ox0rxPUvSus5iB24YdnrjUj9yZVXyafESeXl VImeQYNOqAGRgg1kUMMBkbKo4YgaoBxwDkgKCthujnoDvEDyE1QJaiC0ggRJQa6cWA5oPmjEGCu2 b08QU5NWDL3c+r68egJ5w0sfvVY6U0tc0LAs8ubsaTX584FdjUlNq8KtyxWz12w+Yrli4P36VONb HDdlY0OKcVymSmRK1ChBYDWsLhrA9CWjn1zcWJZ4fF3lKtXpzjj3SHmu2xVo5rNRxjn6HSflQRvF czStKH/hpHz2Mtzf+enYiuPgtCN29+KubiMaldolmrHPpEpCSnZ5FmOjKof8dlMIWM2VAicBycem hxEfVEgI1vWPpT9OIeGhT/KWVDl9pfTHFxHeqLGrxZx7dR7PE1XGibUMfggcJc1Ucp77Sz1gjKHg 8MbyBnqX4kUZdl5S3/SV2Z9TgwFnt8MpjB5UVd28PU/KTYP3Af0Ok7ORi3rfqvSKn7XV8pdVN30d +EPUbPVQznqeAIZatdvmUmNQ3pVU5/HKTyFFVc4nW+KvO4/Do06Mt03Tqv1vk/cNFrII+zkhYdhP 9Ek51aa8b/aS/D/yvrZ53+wrAv7I+6pSvFaWXNOS/AfnfTFoRsrWt0TKXyfv67/KIqZUvsKi/z4L 1hms9cVciiOO3r6ruvsSjisV+lCeqsyJ9yYDrZyIN1lVFPudcrft5K0ofbDhoOKJWKVjldW/ZXfr N29QMuPDHj98S4Xdp1if0PR7RVROmyz5/ffpdcepmvPGxP2/d3/b+dRLluf9x8vz7k9p/8QwIkZD 1vb9phdqF8PBhrXCZtX3GD/XDqyXbrpQO4yfS4drFRpjxiOe97I+Kaf7B0tmotpiydl780bUaffx 6rw3c8k7x1DkjpXL8fMgZz9ADx3Gz7WDZbmyKaCr7zB+7uX8cfd/saBeHAplbmRzdHJlYW0KZW5k b2JqCjM1IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAyOTU5Pj4gc3RyZWFt Cnic7V3bjuO4EX33V/g5QHN5ZxEIAth92edNGsgHJNkFFjsBsvl/IEWJsqi2jyS62bI92Wn0tCRS xboeFimRUnvJP0+K/yOr9//4tvvPLl1x0QmXLgnt9r//a/f3P+3/zUUiuO6G4S/XV/v089cf9/3B 77/sfvjR7H/5b0cmRLtXSptE4ufdT/yzmrzjO70UXCcEs9CQ8ntvowhSEheRiM6km3Kj53TJCyPJ xUX+z6k6TDVy3WCsbUpVKyO0IU1tqWrPda1qS9RKoTxFV0HV2J5qwFS9E95YrtGU1xCFkrKxCziK gqTzvoaqE9LJQGoSJFycKCa6lqPE7ZV0wvSxAOPFnwJSDu3Kol3lWdlWWem7CBQmUORjZT8ycO7a UgvldOHbFxuwXigyjmNesoIDK1i5dfSVFj5KayrIS+GkiWoVec0xpMkpv5p+ZFt7SyzwOf2TfbxU QkZzspHmU0OS/JyJGHpsumWOE624VtDpzmQ0aUMM85xoLYgU2cFbHDErRss5b9EklEn3zDqNEYq9 XvXMsBM6z4crlO4NCe9j1POSsqDshB31wJwHq1VcRZ7l1pKkmiVvWDmM84aSy2grkkZWuYzn+AjW y7heOV64GLzzZhV94q5Nax1m6Y8aSV2pUEFRWKf8qITx0iy42bXKD8YIp76K+WBznVnyI4DNk/8k mgrtfdgLa4PiAs+xzbycXxz5Or7vfngLjDn79593akivRmzRJwbfv3FX8MRAo7SSXPL+z/2fpZTP UirDXRN3T8/8K/nYvvHvCx9ymVX51/L5a1+e/tqQy9Px61/277/uXt8BN6ws4ZLpF7npWjr0raeW JLfCaZmUPnE538oYcEutsBnlgWWkMFC85BaM+D26tjPLGAGLimAFsMZ7hcjiPGb1yxnWiTuG4FXQ DVkfoW2J9aRZ5ZjX2Nst2fGZf48swvHY/xJl+z73InUeN4gZ8/FbXyd5Z3f9kOsdsgoOvRdSbkPF gsZr77FdnZh5yN4d3869/jCnTgY3r6x2dJMATe5vj71oZhCrCMguCN/OxaVDVku4NpgXM7PtdfHB rTqXYtmfdf/35FahiB6bXcpe1lN3XAKf6e890bGF3j5E4kDvZIN029uc/srM8zaulEVwhRt017I7 yEFVMrvFWxE1AxqDeoestkHlF1VaRN4x0zYZBeZVN8mq76KflENYPvfyl+izqo9RnNgE771sidRF lrgI1XaOOc6LjLSeWuKerOLpM/M3JRs+KcV0/z5ww4NsHchbn7mJIkqGN+7mcsgcOm4CZxZczaXs L3fQFhW8oQIDCiQqMM+IVKi+4wUVECp4BQXka+WoVwnWLuIKNi6RSgiZViLtYgHbsYvtAT0Rmla2 kyNWk0JKnLThpLncBsl4WY6yYNJ4WeA0ImVRwRsqQG3AxieG+lwbUPKJzScF06EYAj7j00jEaFoE QIO8yyHvgtEOfWVirs1BFpKCjavqAqir6tiFkVivdqzEenYhalUjCsY5iCjwDuRXDnF1Rd8GC1Yp cQKAc4PQyUOkdbmN7iPbORDa9dF12w4QKrRdl4kdA5G6aY5W764G2cMea3H+u1FJfQcAlVg2XoY2 oZxgIvmkIw/Vd8CcgEDBRFfrchtUUM+VQdkQTN6ukBzlT3dtj6XkzRotjLXddPq1CF+dRVyRE6Bs CEY7BqcHw6Dq0dLVg1SQLJTvhjRKFqDHQKMh+0OZWnpMveejZHGTpKd+hqR+cI+4wp5fnYrhTnaD YeQmMz1fFAaTcQDqH/DMApw6qZ/vgG3A7gy2AblCPXzLvKN2ImQRANuNS6A/4mCoj104p/Jgfeld DnH+MBQy1OWEZPJaaZuE5KuGbX/Yf6tAhbkNnA9umDliL0G6wjavnsR9AAuWCQnulmHXr1BB9UMe mKnAMfwkBleRwlkETJMebGYhrsqGrDRCGu3iIvoq+KgDhmjDx0LQtWHj7UZ9W4xkcApTLyAyVH0X 1nBMjUF27o2UchnJzZKIx3r4Nwb+0gqaq1/wuaj6kZOlB8wvKAheXG3YHJAJVPUbNjg6kOceqpFE wQeaDSd9kMc0nPS5YrqrOo/bfEJmnUrq4bj+jYb6937q37CpnpCBT2/qUyl4B047qyfIILs47TzN r8/i3PoXaaDlcR/Urhu4wu3gHe1g4IqxS/3EM4SBeq7q0xzELrT5FU8I4OR29YMA+PYD7kWqtdsy d0c458rM4UK0g2yoXPnbNhtaTkRv+grcJk+fvvtEZAMlwnDDSkRz3viR6qq0YlVKXO+7EIHq396Z CDjJgh4yEanhCs3KXdE4zBghqfonjvAOyBWa4Jsf7ZZ7MGyN71uM9XDkVg9mIS7CfurBErD7TFZb rr/YojuCbSCVYCXC2TM4swVfn6jHEwhN6DEGfvaAGj/COXsIsfAxRj1XW7Txf/vWCn7ks8EkSUN7 NMxNIFfHIyh4RvYo+/TT5ho6cj+snDXrt8LRkYTzrunSax1ct0Q2Li+91oyjeQk10QWJWBrOTozT g0TBiOi0mlnvarQUxqVbbrJ4uFs9Pqx6LhbDp7/O5tXflMup35DA5ZXm3Ypv3Zel6935sAnBS18/ 3X8wo6rO5TdSUGy6Hnz9Bh1m2FIhr58/rWP/IAUdRo0M2zjMrgk3Vgmro/9cmnq1WINBk5FesxgD 65PdE+ZEcEpEHz45k/KZ/UfkBf8b9pUZfBP5XCfi67TOaWX/aZOHlSv8jedglq7pLjKtFvgbhhhO Bz/5+O9L8aNzwWOPG+3xgwz7VNq07PsCkGgFdzeqZbewMYBYaYVn09wcP/p9p/iXNsQMm1KB6HXL HqAVZljtROjmNe4XM95Ge1j/BbhhjRc6aPudJR7WekFKupbdwda44Xj8YMm3RPTrgOOjE24HHj4I It9077dm4BGIU1t7x9iRdqpyOgePyuawvUncYJJPYQelnV413Si7/zLsiBwlUsaWpt0YO5ySQnab VN4aO6wZrZFESw55ss6M1ZpjCTcsXAjqRgOEWSxhEkKlrQjvGEyGnQOLDS27yHrtj8tdA68GFGcV p8rG3Cjb/ypAcU6zLVT/ru+DAgoP/YOOtiXU1wPKaR/GYRvMcp/C3MOZBeu1B5ZgWPbQdEfVK4Gl 2e7qrcSgKCIpCstTymkXSjptUcjS8LCfS4WyjltTXlLHwtlFZmFoWwqf/oVpnAzbwafpoX5T/Z6D IKLutr3uGYj98wInyBGxt5+m7NUzKJCEChApWKA0KjggUgYVHFEBlAO2AUlBAdu1kd8xqJD8BaoE FShkQQVJQa5stRzQfdAd477O68MTIC9JHrsw7C3vLn7p8c6nv5hwpymOzDsJF3UWU5bJpxoes2+f fA7iNn27O8+8Vlns4w77z/022qk36fZ2jtiyq/c1nnzO4s4GDpNPYdxbVA18X25m/MTFYiuvOdd+ LTI+QsOM+VYTVPVZzqLeZ6O+/EbIXQxULrn4wichlKBITTe/3xi4gtLCGt/0nYHbANep/jD4KEbV ydrDAKW7F4TD7IDnw3A13bv80RDu5iMjX8t+oRXwlV/R+W5xDzzvvyHuTT4vdGPcmxd4/MTRpt0L Z4Oua205s54NPWcZhoha+vfW4Owdj9Z90xcyHuO9mf5DD4EofeCh/9oD6wOOjALnEpc2Aug+yHVh RsMz9JnII0NWXYikgolZCWlfohDKF/V7LOKRl+OUONA4KvUf2V37XQqXt2GkxOdTyAsIUpVv5amy qjvWtP9t97edo16U2NUbzz5Ue6J9L3Eq6+oV57mCsjoXpaN08dLyiKjH9yPPmX3iajkWJlwbVoHu Uv0p05P64+VpdebtSbAjaL7MvtzzWF7JlXTsb7K5ynieKySy7M0hN1acA2l5pDNO3V2S1jpKh3Yq bdoxgTLVUtai9ni5rJzMxAPGfulINtPpfJTSWcW3jlLm86ECE+xuGiqcznspf9r9D2/rrrYKZW5k c3RyZWFtCmVuZG9iagozNyAwIG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggMzQ3 OT4+IHN0cmVhbQp4nO1dXY/rthF996/wc4FlOPwmUATwXu/mOe0C/QFNE6DoDdD0/wMlJVmi1j6S RsuV7Y1zsdm1KZEccnjmcEgOaS/TvydK/wtG7f/5ffffXf7GRits/koou//jX7t//GX/e0oS3jYv nH6n52mf//3tp337xx+/7X74Se9/+1+TjY9mT6R0zuLX3c/p3+Lsrdmr4IWKMcwUQ27vTBReypCS gohWe98XeZarJiW8s07P1v48V4tzVU4oLY2vm6uOwqVniJGrNm2uHufqrCBHVLkFfBBO2dnuYuYa lZCR6mZqZFI/652qmytFIZUyrm6uWgkTgqrcAsbmR1gqMK9YzmsRyJq5XJkj1sUoVKAEFTWbwGcc MF7WHbE+4wBRrDtivSXhfG6jD9Q155tSc4Y5W5PQ1+6VJuEzxkIU9lJYHWTo1VqeypZF2T5l5o2i 2KC7SGAQpduTEdJKHwh3biAhvSOvJrMfssxGRZCnkF5fkH0yPkKpYGl59RM6xtZALMlf62RNnJOf VX+fakMh2sXVT4CpXco/LMo+OGGsl/pzaq+kT8qjp9uGbBDa6ObN4e8luatkcWTUYXnbpDHhTDBm UfbJ+JLxZlpzlrbNytHnGpIllHN+L4zxlBJcGoupJudfDrV6ftv98OqT9u/fft3RieSRFpRRPyGp 6uv39j0Bx1NqGFIkE197+2X/VykP5sf92793L28X4aiEhO3rZoyU+jX9luknpp/X9rv82/b1vlzM oA1zpeiXlONzyjGVEg7p87f02Xe/j+knTJdEOiSSkUuYb2w90dgjgKzU2MlI6aSyC9paHzuJc2vI aYmHoTDbgy+5p7pcTz0ZPr2dg59o55hMLBllw3Xa+dQKL53mHTudfi70+5D1fUIEkkqQVTrhWz0Z EgraYDPKzqrxq2yF0OnHSUnpN4X283mvtt+bTgvKZ5p2OA6akdsmqVWT/2QXpqlmmi7Jln/eGGaO iciXBc3XoUuNWzmg09yEkpFeonFTwDmmZg/k/DTkJGOETt0d7hk6Ey0LRnVTrKtC5/sxtB18pplP pnU23iJ+lhOhrwqfRg9dnEuzqujytTzUU2LrS7BlGk3LmeIDTD8PTKMTMVq6ktGqgaXlrP+qSDo3 nC4j60w/9x6KuZrErr0y9jaDN/0ObnnNDHXfmbaGVg7ph5kxoDPbbMjmEmAzLzO5GS3aPGb156M2 SFFIRZG6RRM08jd9WRNkitxPvdhpYoMIq81QEKSdVx8zQyOn3MMMfZoZUiYKF6ytSbe2NkNOphm3 dtdl9Hks9Ux9ZlxtxvSVl6K2T3Elyq7fElDWxuXidfPfqFIyL4MpH1wCjLYuUUSpdHYutHWhtp28 0Pkxm934Jy6OEgxKeAEJEmUlv4GEcEBvoOrCMqAcGhXOl0OjNwySoxu5FxJeUYIECRZKjrKCrQvl wG31zH1DH9l6BVUUvoEkt+gNrD6o2QPsQVUk2DRhvPhGkPFy4WWClSBhpKKjBPjGESQEx63VSMBl hR/YWaHqjvRq9MYzSoCta6ab5EQyELjqBNk+aaeZBVkJ1c6hBKTBUFGtQvrIBnIMZxDI2QiPBxws HCIjQhSLxq6BbQUTIAahMrCAUA5o9GBWEEuh5EgOjPBsg7Ra8stkbbRhcRnpUe1wTOz98njEFWGb ASwsNP31Cof9vwXjggYQF44SIkQ7qJXswvlMBSMRTICEZBFZGLUutAz1oBabDKQMGFFLLSlJjy67 dhm9QAnQ9FviEhJcOKourBXkNpi8QdIzU6tZQuKyh0GrMAuAWxASOK5WmH7+uOLjNaou1PkVAsLq sueJuAxil8G2IhgyUXX5Ey8IZ8+ouoQkJ6jUU/6z0ZGGOryDD7iY4SGZDjMTViBsedJitUfsYrMM NZmbJh2RLhwtV3sOUBfYOr3M5o0KR90Mq7vCC8cGuIdzhzHskPpguNrAovLN4CirES2DbhS2k4oQ +yLoWWKXYZCrBjrCcFZ8nxrf2YYExPQSCYg7ql/gmERfQ1Jol63YHPryjbrmc0I492UvKkA4w3jN n89B6rf12P0kBwI2SAi1cJPw+4NvLGagH3Cb8rxnXW4zT/kg/K9YGmJPj/BwY/fJCv8g7MWKk516 BnwTnyBsEtgfsFZIQOjIg4XDCdUKTWTX6oOsdBGn0WgxCdMKz34DWXa8yoQcR9BlhrkA+w1YeLfB 5kICu7qYHi2jLsP62hzIYpxjqx22VgElwDfYa/x8lzrB0c4HJ/5iEmwS6D+GzqmKTOuaQL7C4vJ3 glSmR2Xgis3p0RbTZqh0UOPhqEIaf12yvtbxyZm5PbxHi8c6nyuvWEpYhL2LVuLm7PR5AnSuYKaF ytDIuYJX++ptiqq5DHi2Hfoyp/FaeEXNUYJpZISDmg+ZxEcUqI+ocFxd/q4WNq2AI5Hvu9/Er86f 58IJFwJZvp8GQybq2hWQOdMkgKEUQbC2JijYWLEdk5gCsh2T192JzKdN/F3bfMPO3jd4Z0vot7BS XmOKNBKwJCjY6LI3NRu0JoV9RBXJA8oKMhdcOCoDMzDoIzo75PhBgrKFZ7umNwYNBrzzEa57sW1C xY2BfBioeNYEQz9ClBVtxWdga1cuL9ONUXjMrflGRWh+KPadKPYKt+8G+4VucwP7Bz2vI75Rb5cG f/WHzx5W7ECGG435u2au7xC5s0OWD0/qbU247swRv6FNACyoDOd9xyxoxekXtsbzz0U+wOzLgtkW /mD+CV3IgrDvgX8wfC1J4JQBKRhkc/B0GNwDA91KaHMMf2cOlgPWqneRV9o1U3Hz3Ir1Sz4MQJ1n 71Vd4RKuSEQg2YGoBbfTsOfSfE9bxWAANSOufJuiLuWdIVtTl9tU7Mhee1qxFsk/NQx3G9dzDuKQ DrBWcKzDrPi7puG6bb1oHbjwistxFff1LtrvNnLgzJhKBq3gn4fiH2yHZWCyg2LarFjGQmwOL64h ASN8Y+ESUwhCJ9CN6+N0YCWCcwU+DFQ83QRnYpAL8GPz1AvHAuc8/N0mk4eOR7dw1bbTs4Hv6u2c 5lMk/lSQr7+PDdI13qjIm/hLZRUjRW3R5yWYLbPT8JgNTOCvdfAdBiir0AefLe6zMl4Jcj76vdI6 B+9UJGR7OxQM42m8F4byO/Xij8rZsKOk8u759OPPRVFBr5FFhXAtYSgJEjKMo36JOhkXJ+1JlmBy PfJ1KLhf8k2LMr+zpSjjqMp5gMk2JG4T4Vf24W2tbv+eDG1rZRTeGKp5BVK1IN2dbF3I31PY30bu ly7e83u5j91n36Y3YX+LWNHTbaGkUEGpK92HtLQtmqjOz4NsTdt8K57v2uMkf05r4mXLtn2a70n2 gfLLEMvT7aOlCEp+MOjLp7ZP/rsPBa26Z2f73ZDQNtzwELAntV/UTZZEyPc23q48Tdd0Q7WR7XlO JqeE0cbWNBqfIZPshl8nXz9cdftcKWNhRt+bHso3YzY3J0yY0ZuxPXDMHYZGszRgVXMlAuzsLNs9 GKWT4Qmyv/ayBNL8DL6ZoRHy9q1NI9yh7fXeWsjOgnRq3VtfuUjo2zchjaoeZH+BQha2/64wl5cb YVL4m7czp6HcdPjpxoTXRR17B0YnDgLlC4SaTsuCdhcv9ldOUAHepztGju0Q193n8nKhKZxb0HB3 YNlOpHKZJqRJYfSpzrcrUNNLshu6p97yi3ssGpGgMdQE7nWW94wWvpsR6UL20cxg0vo6aYQNLt4y Rr8TfL7THFmRS79ZkS5R4gViaZdYING2zpQadHg0cy1n64eJGe203honvI7qhoHHvBQdfCzo8ALh FyiD9SJfyXrDBKO8qapPj9P+C06j8K5Hcl6LQNYwrgr409+PVDFGHJScH/an4vLKba44rdgkz7/m hB3kAAePY28AWXazQblMxN/zuSKkyZ2d+akYrHbthtML62D89byZC6DmbjYw5IVLDN3O4vV1gz1V HCVwYxV/G+EGETofV8rxtr647O0N3QSm0qVGG0TrrHkadoOTwxWp2CYbKPhjhR0GAfNAPr2od1ro DkJGjG5yhOasYtyRevtWKl61tOLk8F2St3lCcgqrPwvLn8ScH5OiaRjgx4l6dBS3oy5zG58vbDRe Vrw4iX9DQ83L++qx4Yo6dmcOnRVxnK86k+NfCVKP26wILAvJG5ydwDCxfKZS/YzrecLkZiKfb2oj +uAC1+Pysrbw+7q87A5mDl9xZr157OvReYLt7qioMdHhz5n48SD55xfxLbQwSuX4Ftr5432zvtqK 51vQEF2hj/UOvF81xMy9BTz6KshYNxiltySc9/4ql5f9eZ33t2P4lhERdmR8TF34wQG2uNqQP3eF bcX3/Ve8Za5s3WVnJPle3fvyuOI32Ivf5ZJbu3MopecdQ+32oQSncOuQj5TDJtF7n5XdkxEu/+dH 4Ol0wtQYUtcK42Mgr2MHoglsm01bwxaiVsAgyBJJHwYj6d9Xd+lGJ2vaeoZczyffoXt+5Hv5UZNs 677/z+7vOxtaSWLz2PBp/NRT2LefclLzWPG5eyC90SXlv/KXl073exrOhZ5X9SnHWI5GNaUU3ysX hPdWt4Vp2bX++Pnh6/Hjjlwn1Ojx4evx41lWksErHR01z7X1oPLr7kEVk4lV0vrRc8O3p8dc9834 sf7btrF+3v0fEBvH9QplbmRzdHJlYW0KZW5kb2JqCjM5IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVE ZWNvZGUKL0xlbmd0aCAzMjU1Pj4gc3RyZWFtCnic7V3bjuO4EX33V/g5QHN4vwBBANvtnudNGsgH JNkFgkyAbP4fSFGSJartI6lkxpee3tmZbokSWVUsVp0qXqS2kv68KPonWr3924/Nfzb5jktOuHxL aLf9/R+bv/5h+28qEsE1L5x+0vNqm//8+fu2/eX33zbfvpvtb/9tqgnJbpXSJlfx6+YX+rO4emfz /3MNeJtEkDJSSRTJmRDcqa2z6oyzQvmQAqdWJ6STISoDq3UpiqB8nKlV+QvE4lq9JmKjcamqCLwJ wtto6wrWOyWUMnpOBMxavRUuJMWo1Ni20oArTVJIa5KrSmqQRjgZQ93OIqUSKVjPkcCCWo0UJABb WQLWiESCvabSXC2Vuq3xTljnpdtashBuq5WQJsrosakwQVK1+ZWOAHkiQBYEaJKoCTq/qUi7pCVj QAbKfhzjAyUxCG2tsj0l1IzWfoqSpIVNhob7FCWBagtWq5RF4qibvfPmAiVn1VtFquaTsZPVW98a D0t3jfHCRuJ1UfXZ7MjQugJYvSHZRJdMzILUThjnrE+L6neOBFhYy1npOC2oRuqzJbV7Tw4lhTBZ u0ukBDFJz5Y9aYNppDpVvZLk23yjZFqSCdPBXNKx89pTEDFYOS36smd1NMKnpPWS6p0nIy21W048 qYLR0qhFtQdFjkV6s1wtaSjJmCIaf1yYIGhUhq2wNigq8GQsiIDzmwMx+/fNtzcaFIb6NP+3ff91 owY4RG2G6Elft+8/iJiXRPZNG0s6//737R+lVOFP2/d/bkgj8nMuK1NbYA0qkKBAojfMK7cqC6na gQKn2VQduZybA3ojoQJEFeYcUYX5gFSxxY7beOP2BxYJu3FruW3gqiAfFbW9bMNJc7k/okyXe7As sAoVvIGCuENvWFQguW1AqviN75FIRl07KjhWo8rAqiAfbKoclG5k9weSFRY7EglUOCwSqD5QJLqe isI2oIqyhVhTVqhxyPketbGH47wVyfG9hPk+Cq1c1MvjjWCE9fmNa5CHHkEOHQhIy4yjdY+HWuhB gZKiyINgUwc9NFnRN/qbA6l4gZ8c5EqTEW7HkCdyFcEzzBAhLe2aV+px5IXrwPUcR9Zm8581ICtt 1s/2Xv7p8k2TTUVbbvLPXftcfsccsna2z8Vde908c6qjezbXsTODtM5EkLFvSIoAdc1epYiTpEr4 dU4GPf/Hjv7Xjv79R16meMgRLjEaYkUehnBvjofdWwbGGRV09B67vlPddeYvtLxKM9Hv5fNdHU2/ vnXP2/P+bfQgFM9e0IGeHtsbLpIj4LqPm2d77tDVmrWw4zBT3rd0nOox0pDoo/LXRTFj2odAa3bk xU5yb53ETDfK3rKtbHm41KOnUeg+9Kh5LXg/Sb28Vt1IPLY2rLFlu/Y6+qFM0e/q0P48f25KniYI 2wy4e4jzRLqMHQv590NLvlKtgUJsN8redUMWfR5MMUyxaoNI1pKiVuSV4mGVnFELLNbOThHnk5Ba OnUf2hZ5lNDppF7iHQJZwWwG7+McXrtheiyG05UOcVq3MoZI3tf0Izf2hdSrwhvbZgPv6woLZzCr lKpj7fVcSZu/tntXL7QSWimhgo41DWItI6GNFpq4qYm4ahuJY/t7M9o4BkPbnLkOqqYBfGCDQdED BVvuibFzjpKi76Yxn9delPp6ejfWsiXBErgiiPWItoRCWDL2V84G/N9tyUlNm7/l4Nox7YuRXkjl 2imXz29fDEW2zplwJ3Naw8AYHQhTqee3L0iHq9gYk9eo6BRrimmljam2IqEWGzGJFFWcT0nkWLOJ QXcnboTSVCqUpYhMUFgaGxLObhIJp7YJPef/wnjInJZQGJFVg+xPRwGFopoocx0BqU3AOhFdjM7r PgGrDqBARlSAqoIFSqOCHarKoII9KoB8wDZgVZDBem1009UMzl+hSFCBQj2oYFWQKsvmA6oPemMn +7GxeHgCKxylIPu2IFV4MV1/7SqjRwM703nVYXHPbCuFK8G4Ybo1Mm1k3qJd4iGn0JaVZPAa2Twt /BgtHbsD/pjuqOU51pxzPoOeV2ZW5iYN+hztsU15n1Llp/f6iYUPUwBjVD8z4eC1iIEYXTTh0ILr qe4ul/LdvLu5oQ6MCebGt7citXObSxDwJPK0xoq84utOKevJ6Ha0cPLTGvwrRo8ySiwV9KShL9eQ 3jmsnuZ4WMd6E0c6rPOdBTmTgyx4EVKomo6+tSMt1wHfJZCXh/XDsV/iO6s1H/3lpentRZo1TBk3 ur3vnjvJPox9dZyUfblK+ubTu3nqtvRaDZtlQqWb/TYn70f/OCX7GfXmmX0hJi/7ad/T7HkJbfp3 ygTLhTbLbpl1c05GYYmtR3RzTidhY6yag3/kJC5VKqT2VRPqVyZxF47oaRVzkmyMtU9s5Ef7JX4i I89I797E4I92lnwZ/DkDtCTD7qIWKk9N398BMHf6FFttS2o83MWjYruN55Sl/riLp8uXcvaZ1Nsc wt+fgbfF8HcKwV08qCCiLStwIw3eKQS3k0CRsPfLJPZGmi/pVpAu3sUDtxawdxDgzSEBFbD3/azY vgA3VcD9Gez9MiNbsmwrFNy4MU4vIBtqYhQm+BRnbSlU1BU7CaE+RnYBW7X52zHxTkLIIN9ZKDaD iFy+Q8LbGKEBhNaXb5zQGw69gRlE7n5FD0JDPrU6fXSsxzIIM7cR+dN3GuYDumU4JFD/d532NVaW DAm4x5yPmRG5j9MfIwjD9/DoDYfegB4eb3yFjUPXDwsgIEFvQHId2sZqIYOQD4jqWBAmpllbKpHO Q3Qu0WCoCXqgfUBVOajaECaxxy4UCUQqKyKZehEyNhx8Azi1n290xFYlDw+TFNCuQrmh/ucfhgE9 ypNFsiscYL2jRr5ijfvjpys9PMxFoDwB9vB7UICDe5iLQAUjYLUsswBFwkcRiMEhZppx5ErkNLea NZnPBl75o509SrC/hiJhexF+XLJCVvzGYQ/yA0i2neOffQUNIGxjNWwFEKY8z7MShGFDWOiDfnrc yWnjdvkuzpB4zIQOf5LHcd/gA91lfJQQBoOFmTCa4+HhdAobXjxmWmNySUJ5MnHdYyeHbp6bbHlF avyKlBIq/g7ZTcW2UDjvgDDGjm03FbQF/BMHH/Iky/sewvhcMfrnz/rCxpFN44eXFQO5Fa4EeaXz JW4zyd05k7kiqwEjoxscs3uL0a6gs4AjEeGRA2pjjwzHHgGuQ8W5Kj5kZoewuCq2e8Hqw3as/Chy 7rRpAIbKLyrc+hDuW4yRFXEBNDT1FhXi7MGTpYFv0IMwPQItkIKQGIZjbOgCZw75OT/+9IKCelV2 7Sis5B8ZjDx7ZK9ukzCmZVc1cnmjN2BVKKY9oDb2KPsOj+0+IGD4ITOOUdDSzPjPG0Q85hcCvlJ0 FVzx6mmSy5hm9D2nm2Oae07HVEx8f5aZnfuKhN2444M2RNUKY8afUIHpMQhw+VO7cLaf/w0Gfn4b 5oIgboJUwQI2BMPksqmC+yHwRATMHvG/BoIYxI3fYJfGQtBmrRcppajXrwBbgbTYo31F4qNe4Ajz ZnxshjHNPS18xfUBeMfbjNgBCiq/P/k4mR0+Bqy39mAFeuAvuLxBKBT52Qq2dO87jYW69ibLJ9kr VGBVib2mZdkCt0WfV4OuMlWER+w5tBVV8Vdi8j/nxV/GwIcuvbWezgUlJwJVb68wsnDdWL0Vzo8Z 7T1ZTuu+uft6e25XZCpuF8gDeFR+SPtx4FHFia+KEAxqIyyACztgkpM9RiquJFoxgccePDiz87WS 6HqDOUJaD7OeEiItDF3gp2/5q3wQpllxCgWUVb8QfRrTBJOPP1Vm3jLWA98/79w0TDHcYm6abxlX LPaDUdJDupcV0R57l/GyxhctCZg8lzpYQ0PWXnee2wPDpmf2e1eiPPYwxDbgk0yCJvayzydTn1Hj o6wSf30ynJlhT1bxN7Py54vgGyu2usBDyOotusI7gi99ET24KJpDGxmfRPdklJvPFzzaN9HlljjO B0u2p0wSrZiJpHLuTH3c+ei2yl76HJI3xHSKNCCEDSmqYFJHILkoHULhe1Q7GkmuTqn8ge4eJ5yR u/Q8TB+Gr9B/+x4ztS+h84xu+yK8JhugSXo/yvsmkjCt12b7r81fNi62jKXx88Pt8eMvcdtcaZNc aJ8rb3SP6Hw0fXL9E8N190Ber9bc6R4YrvMDl74K5u3wOa1LvCYrg3PqI6+KFNelC7wWzxe8jh4n Ol+oEy0plDMdocWNgdf8irUDr931iVclSUe0iyde+2vAa3BhGEmXeLXtFy/MB15l/s6r0+6M1+L5 gtfR47lfm8ss4q5b++uBUyebTyD3nHbXLSO/bP4HAgNxlQplbmRzdHJlYW0KZW5kb2JqCjQxIDAg b2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAxNzEyPj4gc3RyZWFtCnic7Vzdrts2 DL7PU/h6wFFJSRQpYBiQn5NedzvAHmBbCwzrgHXvD4yy5DhJjxKnU+JkOz3LHEuy9JEUqY+2HOxA /55Q/yfedr98Xvy1SCUUyVAqMpa6L78tfv6u+1OrDFN/wXDU9tilvx/fd/nLl0+Ld+9d9+nvvhuO vkO0LnXxcfFB/yZ3T17/A2PRCZ8dJ/hoGEC0hgwQsODBmFqtPRIaAozUeR2YOosGnICEEwgo6Ld0 SUEAAwLYQ2AxGMc2XYnBG/AcWeX2dSQ+9Z9ReNGTXsgqitAr2tgQuDPeM2pFUNgK5evCEdbqZfFu yx3a7uXjAgdDozMqj0OFa3cAXz6rGp/ERLQIarOXX7vvAbwHcFs9gn6ifra5LB0pFTr9vtLDWo/P +ZPKlu6H7uX3xfNLL/GRMAyGstbbyWRV/xHCBJHcZg8uFBF8Ec/qZ1PELeLIMrd3z3viL3P7vu65 9FfUkPrv2/ChqoRPqER0InJAtvejEphRHRFNQG9J7kYdOyfAXEdQRNreSCUI1iBZ5/08OtmO06CX c5BhdSzzKRnQmhDBu4YiOI2mQtHJWRGWChPWE+IZFlE29fhWM3dfN9HcCc9pk1tnrBXCeQLlzvOx HDej3nrZ4RR25xRPCNAyol1ma0w+mmwSsl3W+lkp7pXKsU7uJrk8tfGDy0uWkew4B3x4fV6kubSb Q4N+cG9uDJF0m69L33HQ5fZ4jEGXFcm9M1nec5JjyCMkBDSg2s26Uxbz3jgFIi2Drg8GxZGiO4c7 WYH2Z9eRZw2eJ8sj7b+2Rg0Wq61hYfTifrzt5Z7e9xOneLFSPaW5zC2j3gUUbnnS6EzaXDK7vU96 2ddviuJXE+glSjCeGFrq+8HpJcZgYiR8o5e9OiywZiDufrQxO7u0KLq+oI2PSy6VKZkAiRw8Erl8 LbrdhFxalQ09+wfkltZHE4So5aL1Ri2vSC1tAE1kXGi5Ij8Ws7zEzSczS8tgWt80akUsbUQjjqXl gtKaWK5L2Bym8nYCuXRgjWOK93NnanZyqQZRmB7u6HbunOTSWafph8WWq9ODs0vnnKYfYGfKyFqw S+e9IStNc4YbsMtKiLsJw3REBkLw+HgM0wXSXML7lqvXG8O8IsN0rHSw8QOjB2OYF7p6ZpmnVCpB syx14FlUOhDmXiwc16pehDIHU/lQlvxiEGtXfnwue+L7cW7vZlkxSb/ubcvY5bh//S4Kcy5faaRc JXxyxg8oGMvpCd7ZCbXOEiWPSz4BJw0V2VgUbkk4phtqhFiCBExTct92Db0mUx8w+AYfKn6/z33F H/hTWZ766zbZUKk8ljmfsql0XTrK2WAVTWDi82H6NY9bwsTczQPrtyAtn+a2yt28Fc3dHLRcuFvv OZFStoExr95MyN+8LsOOdbS7Yeez529Kc0yEiHeU0s6ZvyljSpJavht1zJ6/aWMThdxMKW2L/M0L mta7Z26w9eREmLtJDuejihaQ5nlU9q9yOAJrKMbQchV7y+GumMNR4giOW8bdx0rhvsXbJz8s0OBX eO3shLPZduxWYogSINEMalKyA2olXA7SGLRaa9CTjqZTX3oIXxUqhGFsMCH948OYOOwfVy9TF0YK BQGbmHO7DCBu+4HJCIlQsHp1QbauVIDUKmpdVSvQ1iqWta5crWJVq6jKUR2j2lVVwHZjIF8q+aaq kloF1iyI1a6qqPzFclSnT+2K5W5Rnu6elTVHlIlbJS1n/XK887IfXdgZm0LkLrqA4f4pdD26sJjE i2bKyq/ytgVpdMuD3ks+880Z78n1LUYTMNh5njY0y2JPiRh0AiM13T0/U2J6UkqrK2S0Tfdx3TjZ DA6NdSlwPVSyOdd7DsFj0kHT/Vw3SjIDWePSQ863JPMxkswQrBE1xv93K9pVXnIIyrWcWJnpkcHJ xxkheuOVBc2U+V7lHQcGb2JkuJ+b1FchdYxkyM31AtxNSB0rHmBnZ3qt81asjl1Qeo7ugbeAsWeD Pjbdz/QffsGAiU1ouyvhRqROsRhrid52f90nqcs/IcIi6adD8u+IqNWqN3U4anoB2W33bUTp9zle uRcbnHKZKBTUwBwF2cUCWFf99B6nVysWxBmVaFqu6mEZ76fFY7jTf/Ek45SE84mN6/+lJp/3T4OX 7o/FTwuSLEPsG4xnQ/2TdFnGVNg32DsvDYLP/WJpMJ6nBq/dayEYb8J/DfUJDYANqnJ3CNohJNbi 8Qj64QVj+WF7RfqkXakTKYqMdDwvDaykC1wMpcF4Xho4RO08bVbPDcbzLOuHxT8/cGPjCmVuZHN0 cmVhbQplbmRvYmoKNDMgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDIzMzI+ PiBzdHJlYW0KeJztXF9v4zYMf8+n8POAapIoUhIwDEja5p5vK7APsO0OGHYDdvv+wChbju02tK1U TXLXNEiT6A9FUtRPpCzJNJpfd4b/BWeb379s/t2kFIyoMCUpi83XPze//dD8w1nKY1uh/+Typkmv Xz403Zevnzc/foDm838tGR9dY4yFROLT5iO/VpNH14AJKhqnaaEdQw25qLzWgbO4DoL3hzZfknVO gQ/RLLL/kirKVNGr4NAXEAXXEfUy0QAKjEasy2okxfkQq1J1RivrjC1R6wsNJLqcmwgmso4tBBtL oFxrB6KpRKPIOIuhb1z3jetR4waU4faMTXUNBIWofRLOKd1+k43GaKsMWrad2RYsKYiacgNG5dbW NGCsoqgdrKdvUQGio7iKvgVlbUBDbyUAgPJEpO3qBjz3rnfWrBMgDVvtKMz3MbD1BIwQOBUMKQp+ HftscQxICTjWso+xxRG2yzX0iXsraGZtPftIyvpkcmvoe2SwDBFnyTtSJgAyLDN5T0oTuXX2H0gx uul57UwGGCmMnpDgCP1Txzm1c46yRL5RznnDGRQo8fIyceBr97T5ce95DDRPnzamn/MGZdgDf09f GKLu0rxjjeacpz+an7TWUXMBrR1/wiN/7vnt+L3t0hynaWBI23af+j6nW34/8Ft3ZdI7UFemTZvJ h0wD9vn3PpdNbe6GMhI/bJh6y+nB/9w8/bV5fDrWrV4rTFZJFdU6MoIlvW7dDG8TTD8/b0mfrc5z vx90zJ/och8+5H7K5VL/O5/LhaF8KruFGVmn00slYQesWpIVejkeOzla2dyMDW9l25u1t8ksdx1i SsPwZBEnE+1VyHgwY9PltVDmO7lOl3My359fzv3QXy3vD5n33XM55mSY+BSVZBim8EX423dTxSLM mCzLw3HYadOOwM54CM9NF23eY6a5y+V6ffopP6umlakzdXbbOIxlkz/73/30red4nzhqF7EJg53L obMrcM/vHfO9YznuUx+E7GbEkS2ETka0g604Om4/B/dkP9KPGdlHb1P7rl76bnpd7p+30etSkNyB 6uRdktxQ10LiAHuuDpY312Nj1/dd+oblgLDQaYfIYxGGX+uBTgKLK/NArfbsHkPNCa62A9p37oMe goOHFQ6nNYGHpbE1Qe4K/U12xBTphLtXI2Ztf9Py3GKcd9+5u2ldVBQQa4L8mb1NS5ojA6CaUHcG Z3MGYs7mUFqvWR/GXybWeJU/aYNRNsbLRRg3b7LIm7TRqJDWdd+vN3nCiF/t74G2CjxWHQ8n+nuv eBo5ZodS+9D+TbjS6aGZ9YF4au6YiSpqyyYcDrjSMuMVpGJIXCVnaCnjUcrYShleyECxjb2U4Yob j0JGEGuIAopcSUqE+2JSokqspERJJaKAIAkos7srrQGiXYk9KFmJXENSoqgSDcVtSLqSSY25Qg4q DxnjGkHH430+ztBSjYl2Jxn3UhuP1Rp3RsrYShkSu3IbThJwXyrHBAAmGSIpqXGxxjCbz8Jx2p8A xJa+DMtGsq5QikGBqg0GKEctCX1PQPiKo12Empt2K2hXmixO1q7gxo03Ua3zhmw36jiCF4bdrW9W 940o+W1IvKnaJQHFxmWvTiIlqn2d0zPJGNeYeEPiJCt5KuXOwgmkRJ+gnvMmciU7b2G+8SW/Ayit M4ENiwAo20qxH6wlUmJcoqVpWTY7cbSLMZzkWMnhoFRDjn3ExkWoEeWQor4oDbggQc12boVwvHX4 5BWRE5cgHqTefcBSe9hKfWWKwVFem5CsdCv1lciuEW1OalwGedHm6k0LojGWs7tuvnhlG9+9V7HK NZtMuuIqgBi6eyEDxXi7PKwWG5dC9yDWEAUUuSpfSilfgrCSEiWViAJCufOwK60hri7JPShZyauX UqRpxVFQMYBbXkkpn3PFMS06Lq8boescl9vq+voZrPrquuA1jc9G1Xabllx1FGfj4qlHnnSlXiy3 rcu6ApLRyXKIC7BihqR2FCMkKSMWBynv95FOLPa65YFTvFYhzsbicsFtEUNqfGnGBw/KW9Puu5hH RtlQi1FLthWRVHEMcZ1BUrmuTlhakRrfFa9+Vlzweb9Yum4JeYKMUoSWY2zBbxqf/j6333QbVRcZ Ve93qba8o04ITUW7Evu8oq6k5aYw2op8OG7tIJ22IM3fyKftbtYo3R0AFje+OWeU16lOxb23aZOl TlcXLO7jTGfX0sbEdGNEOCYSBmWZR9eLBJYUteeGZZHSSfOY6lzvyY7xZs18rBj1qGy/aX6by+Tj 4eNjQGnTZ7vFert+O/biyRHnHZuMtRc6wltjI74LTqUjR+ZyG/FRHz0Ac8pJ0DVW0pZdsJKSTfuL 23xdRGV0uNAAmz3VhSbtxn7t87a3Hfypm8PQzbMDEnn0eMssX80BoEth16xFIvDsQNpf6IaFGriF zisfQ/i2DhC150r64wS5t9szIHro8VYlzw4BtmVwdHwsW1fcdzRT/ZS/LbK6OfWyJwFAsea0sP7k x1nhGSmodDHSFaJz4JgRjblmdPYF6ExaKxeivaHzrEGS4UAkHTn/dtGZOJZCwqp325wBnfcjC6mB zPs3QGYCy94kYM3jn1eKzBy5cvRa9fKgWtBMHDV7k25rvF5o3pVAM0eylif9GzTPWyRHyz5C1etV zg3NHI0C2KqXjLw9NBsYibsdfc91ETt6UAG2DYxh+/kzwVMPYb8a+L1G9lO1eQfA7w0pp8OFLpuZ BX7PobMLruotKm8I/L1dz4K/d4EdTntF16ZcJfh7jonT84JvGPw9RaVj+MauXTkX+Le3b/R0YQH4 09OjkI7QLl5j0Q/F0fUR/dUVz6ebVHZ8PqK7lsGHkB7mdHczcC+Kz3J8TI+n3IuDiO2tz5T+/EQI AmDzC0jc4T4G4yFmIRiS0pWFw9Nq04FiUAaNYXEPz9by2YETbpFA1/EZEp93Pj9FT0W+jH8Cdg/Y XfP35tcNhk6S2BYbfk1L3YWmkzdltcVGv3MBDqG6tFxg+J0KHFvHBxwe/r1k+07F9sZmFnnCvyOu ZpGTE11K93C3bEzKD8nT4sznHfeE457B2JbrCJtxci5oeWynkegm5YbUXCw10KZMig2pnfQfN/8D icP5OQplbmRzdHJlYW0KZW5kb2JqCjQ1IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xl bmd0aCAyNTMyPj4gc3RyZWFtCnic7V1db+s2En33r/BzgbAcfhNYFHBu4j53G6A/oLstUPQW2O7/ B3YoyZGU5EgaXdqys07gxBa/ZsjhnMMhJdNe8+8D8Z/kzP7Xr7v/7MoVn73y5ZIyfv/3v3e/fLf/ i5NU9E2B03/OT/vy+88f9+2bv3/fff+j3f/+36aamN2eyNhSxW+7n/h3cfWeSwatOE+MdqYhCvvg sopaJ06KinyyOZ0afVdvMJzXOptE1SaVvS2ywGq9V5SzMbPd8r5Wj2sNSYUQdOVak1FkdQp1ay3D mn2sWmnUWenAdlK1UmOUN2wEdWu1XrEBUK5bK+d1Pmn6llpLvZzq90ZH/utCLFPPGVIulZkAJ6Eh U951TetT03rQdGCtY/DB8lWyVFomrpyc0l7HRHjKmFiKJm8m6/dZ2ZiyDqV+45X13oW8pH5bOsQ5 cmeq3xmrPFE8l/wu8zDFgZlWrt9HUtq5XEn+VyPzrjTQGRlpLtK6cWhlocESZUKIe+VcJE4I7J1Y mvcXe8keX3bfHyMLtX/5bUcnLHNBUbKesce8SvjylWfIA88KMqQ55eVf+39o7Z74pfn1zK8Dv3j2 +PL5yC/XXct8wXZ5jm0Z+6V7X/IaLuPaPPa5S3ts/9unrp7Y/T+2eQ/8P8Uf9i9/7J5fPnZ6ytvU +edK3UKW4amdmnP9cnATsmVSgZzxaRvZSj/aU9/nwVgd+3Eo/e9SN77d+B3shE6kGQ+9sc5VVMoE ZXMDXXM62ZNNPbd6NTostM10mLfNkmepbU7aJZM5FbJ2dptuOvZdUtRxJxUe33bLlArss41JnmrO LcteL/nMQDo7tVhO/WWBCVOny1P7mexA38PgfVfW+7a+Um+TX/em0PSV7fLn1iyaPL4zqdibnTeD el+nDNDaBqYPXHxWa+q0KS3o08R8Gmjy3KblY6tpkb5IV8od9NRoWssjdOLHdwB57RfnlNUupI28 9BBBXmkBJa9ik6mjBkw/dZn7E8yAslY5lDIVPQ5DGJstc5gldlvslXgcU/pApfV0+tqQc3qqR14v RVeWNrWmxDxuTUtktOuWcLO2OIX8psBBikS3i2iGfWAygeJ2gOY/4C9LeNobkLtad2qKOw3WXIE3 fS8br7+dze4qvcpgnFM/ztMzchgU2JiKT7ugfmF8LU6RkutCm3MSTZt7CspTiejcrlPMkZspGH9L LF/nLs9TbwffwuYLny51nvj0QbS4nOheW3hPppr+UMC6L+n6LaU+VH5lrt+yRTID1TXnaW3XHwWu fxSvvbv+LVy/DZr5sN0IfGt4fhs102FtazL6C3j+48D4anj94zm8fiJlm274/G6/xAhycNfI+B0Z Zsjc/BW7/UEEftbtj7bR7m5/C7fvrFM8YOmGGb/jNbpPPDo35fcvFdd/G1k/zFg6m5Rq9a1j6VMD Vw7OmJrhiyvFFBe8CsHpa1xKOF7yR6fNNS8lhru6egmuDI9P3HFlC1zhkipRcDccXveUmPTaqvHI z4Mr59kvluwRl7yTe8TeJKbydQ+sfIItYs9G6EyuGiGthUY+aOW13yrodpYzRqPDdnc02gSNErHf NVXjpZdGo2xUU+sdjW7/9FLQRgU2yDswjXql8dTR1DzP8A1Hl5bfsDK6sWQoTijt2+ZnJJUuB/VN TMGFTpisMq/BShWd6bUdFZUt2Xw5gt2NnkUJDiU8gwSNqtJfQEI6oBJIXNiG11JxnbgEbNwiBe0R iUvSqjpv/kEJsYJQKjgesHHcu0hB2AbUA3fJo3g8nsTWDifOsITXtk8Y9m5igH0dcwcSRnY1TBjp MUwYdfuiqqBUDpbQYnGfqunxhloix2dDYU3lPNWcA4T26KDNI1uRuwE8fdBMhPYIpw/0KNi0kYJy X/opJ/WigfJwoMIUNRne47kM4U1r394DA9/U+CCiwAQ87e42JrUxgYvCjaMuuY/HO4SHQD4aj0WQ OfLaIwA8oATU+KgTR1KhqlY0HlECpBeIRUCpLOIEmEUgzWEJyFRw70LNYQkxD0yvAZtJLHC8Ns85 83J/DhMusfDCy496iwlMSJJ07QNJD177iJdquEugq4FdYsQeXs5On6eYyvC5EXWYinxFDjsUG4Yc H+ToCy0GSYU5OtRDTN6wVGIFMSdA4q5YGtULtuASyBjkUsk1v8jCEzEVC2EZIjxCXzm3wYt7hNcQ Gb0BCZgTQISHhESuIOxd2Djsdi9WME/rMcsiKKqQkvXz/lo+feThQjgZEMJ7hIxYKogJ4kkNG18R TofrErFUl6B7l4gEXwPjAmxo+LyrOmxo242LiuQdRnouwW0+O6W8yEBBBWEb8tXipXngiA1V35+Q kAV5sAWJu6INGKQQ06QVVAyGTlDCQgpjs1eRa3FXERzfdgNm00hwvcbxfsFM4wCvB0+SPDdcQ++J nKSc/6wgkXJUlsOcOHglNxg8uWAniu17xdaqGBjl47FicqElE/aCYrs6l+0uOkgBsQmjGcQ/tIp2 COZWhAnkqAwRU76bArsEtiHemHGoS+p3+2xUw3ilKcxvjWCUQ/NNviqpuBGKlxJyPz7jadCTRPvH J5/7wALsBJgg3ttdMTRiQihfmv0fL//g6UYkLoY/qCAsIY5Q3EAIboSkCIEgbIw4xLLVKnTp4g1y +Yq4ItBgGF97SnN2GZvKDT1Z0zxoXeIYrtwBwsNf8nAtAt/7rub7Eje5qwnYxfB7FCrRCzmcQQOH 0w4Ch5wr3qfdVbGI6zxOfYluXxZwGMXVxXvU8FzCioOS4tC2h+EDePYBEhLxGT949kF8x8MsWah3 A9emlLpi458MS6t0ohwmvbiv4HpXHgeGBy/EfQXDpNNxkOF3M1U6DymO12IgF49mki9xxYiyOhR1 Vk5wYzt8KzbytvTz1+NqFwVCam7CI+jHhzEhIYHRC1hVvbsR8G2ecj3EJfBew3ERTXLaKm2Nz2c4 GrAiJCnf7q53aKri8aQV3hdG5mEC3IWFu8nyXVixy4R9dYkjohjuIUZfKm4z/E7JM7OhFcS6HjKu CM/VO+q8Yt9LHJjCJVAbK7yE3EVBc5XfSSMmoXJXiy1RfpZX3saiIxlDNoQRHqKvePcHVwXJAoyQ QBYB4zaDJ2C1j+Dh9PLonfY5POzA4DN4YqZytvCdY2u+jzaUnzhybMGyv8uJu125mBNFmzsHx46w eXho/yye1tqTIk+kY3oVlx7firv0iUG+C5ynIudD7DxvyfJ1+JEcNe9N2v+5+3kXKDSq5CZf/+lN toe0bzUuaSVfWyENrnbZyJlRhvK5JH30xXLJ9d/H9l5wxYstY0NOYwXKU8tKCr2Rf5i9vzrOzfI9 qEDemRxHUvZXu2wmqUgx80wZZuuvdtk8m4hNDH+jbP3VVvOfdv8DJn/4FwplbmRzdHJlYW0KZW5k b2JqCjQ3IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCA0NjAxPj4gc3RyZWFt Cnic7V1Zj+S4DX7vX1HPAUYr6hYQBKjqY543GSA/IMcCQSZANv8fiGRLtuwyLdOldlXP9M7O0bas g6LIjxRFwYmHX18g/OGUOP3t+9N/n+IT7TXT8RET+vT7P57++ofTf8IrZnX3Qf47lIdT/PXnr6f+ H7//9vTLV3n67X9dNdarE4CQsYp/Pv0afm2uXqv4f60BozyznLvwxjGvpbU6t3VVnbFMGeVU21od Z16CUdC0Vq+Y9LGzTWsFbpkzIIVrW60AJoUF1bhaqZj14L1oW61ygeuMk6ZttQaYFcLoxtVazcCF f2+vNJCtq9SilUrhmXCyRlcwZVctA+2kd2it2rvAtFAb/7TWRACJr1ohmdNWtWUCI21gWSHsLbXG esNbfZJhkrziSp5UEDJBpImwIiwHsLhwkw4Y+PhNrQdaKya4BBlYl3HNrQOcXGECAhs6XScXhJJS hoqvqo1lef6Mx8/GsvwktWHCSqUWv5s2p5Vlhoc/4zAEC0UDcTaMQvGgGYypLyVhAstxs1Dr9SDG sqEzhjPHQ/FNvQERCivjc3em9ZZT5cIq8RCUwZZqA2dLJaytVmu4Yd4pua23MiwYx52pVgsSIkcv zck10YvC/OQFk8aCu+7QAtlF0GWRfyPvhOVirN5IdqWYAud1nexeBt4Kc7upWh3lo+WyXq2VzHvD /aZqjWbKaxDVapXWTEgnthHBGsalrNcKFpiWW2ngDNMWxDpHC9WtFM3iQulYWiq5IlSVj0LVw2ql ASSESge5sKGzukMtFrZ0VjpmIBatdlYHcR5lQbWvAb8yMBz0JsrqoFrBSF6XFYZzJsO4xKZqpU8K pcq0FG2hNQ+s6EVdVqiA1bkS/nrGrkXFWDZq+7DaFKhtfBnFcgAucgPsJVEvrA0JeouupUgSHVS4 03KDrhU+0NmbBXm5zyaKytGemFIWwgsTZH1o+Prh2InLt6df3sLcBY3T/Xf6FidusP1Cm9aZIJhO 376HznzxzHMho8L59vfTHzl/kX86ffvXU1zeoVxYCTy/0MgLjn1xBuQFYF/IZ+SF5sgLZbHGRffi 9ds6QYLcTx/WCANnrAtY31DCyFesKjJhlMdeiGbdVW/U7u5oQ5EHiHGXQifqBXvhyGRHSYKOA+0V NkCcVlh30TYk2l3yusJ7ddt86M7iWGjDBQW7SPbJC/QLjrxA25gszsmLZ6yNC/UL+YJVpbAXlvwF RiuNfYGTHSOJxqiLEhGdqIZzjk8UVtV9GQ7lEnQGgTxyT54odGqxXrkztXGUr5IsCcq75tw9Gh7t kKSoXKSrPLQNDFDQdbpGcQMmxvE2yONAG6dDqR2qG6UumSQ40kDnvOHUtgNGOxAsGeZM5qNEAagE wuUJXTTRxR9ZFyq6sierbnSAuHynS2tUF6IDRNvA0AxdSeKajazs6bgBfYHrdHQ+DJl3XTO+wr8Q 7WiFtkHmxB+F251fgTmT3eajYQ5g5h9u8qOajazAcIyF2rdYG7jfCLWh0S82KbBtGpquJLH50BjZ d1D3YyHY94Ig78QME5k1gTmfEOSOQrnmH45796E/HOqWIWpwkFmbY1WhjnMwGNthL9DGAZOMgG4A bOL5GyUKqpDoa5dunJGd7HSy7/Dwk33Qmk52jFa4YsW4PZFkGexMguAO9+mQSY/qUHxVobOIulXI QsBjbexoHBsgCgw5JjZ2+CnuKQToKxf3mNGxMjrAhhtqZN69ETFOwA6KN1CVj2IaDFZ82veELxra 9+g4MGz2YyLGGMYlAYQ7EjEegR5QNIfKB7ohj6MH8i75fV0Y9G2JNV/QNJr/cHyEAma6VkJ3fujB J2TbnK7H6DgPBwNkfYzy6Q6/UrsIHvpeEaA4D22j3eYkbuzRDWPsC5x9NrklJ/joAEcNio84pkRx vxI9rOCA7YEkrquuHRNPCcgNipruGLhvLB224HCjHV1wdCcK9gVdg3O6mUSPWntIkYkjKnJUA/rF I4QXImhncsjwcSJ8PtbuU0sjoiEARGlFlrH0KGp8HPQtI9THinnJG4JMfM7pMVr0YCGy8FXY1pfG vA8t4zFRXEH2H+1wXtFhEAYAd4TaHhGJMVit6z4RLhmXQvuq9OVkVzVdux6BwX6W7RwK2e+Kog8I T9kNzhAYNEmKcDQMuushk5bMRdeudFyBkQT3V7QL2P4UWi3WNN1fe6F+IbHjTg966Ac7ZELf6KEf LHro2KeqY8lrZsPkqRt2gNB1RVY+uJlEj1FpGDpIN3TRcaAepx9+K/849yMCUSYJlh4fotDNebqp fUR42U/vOGwCGe95rH3HyNthMNzdX36x7UQ2CgYw+HDXs7Z0fIQe7t7ReIVWVVxhJbMCQFYl42OC 7Mc0rHbIuU3LZ5OxsEOikGOqd8zHbRvaN2pDMnV32LO3wetSMtYC/hDgNEkheThwwiZlB8EO2A2l N053ZPwwNs9qGFmRYbQ1z4Hrmc60O1H4mUTodsPmMcF6y/hAVLVijePzQWcfOgZqGJaPqaQdO5t0 Xx/qmkRfYFWhu8DoOJwbhdyQmVdwYCqKnCEzLzAes2RKPMWe4IYZLeRtx47ERBQKDymFrBjy//Ui 0TEPArhXWSSKeNAm/LbYkIRMOWbTkIBrJhVYv5JtWAgXugs3nhsXV5BifSz8OS6TyGKRlaNUj7we 57B/JuOzc4RLESxG8RMXe/9NLO/M+K0WfdnuZ5Pq8amOVF98ryDV/Zp+zmVU6oMan+dyMvbz0v8t X1IZO/uG84UYwilFxtTINcp0Lb70tcZedKN/7X+OvR0odi5GY9N3r+m36kerVUHN9Kz7zcc2eoqu oAAhQxdtyht9GIPQiH89yQAxAjcGCBTvEzN1JJOJNM/Fe1GQJJNI9eVdYoyOvND/fB8G6Sbw3Peu 1muMEvI5s//axEehEjDgbWF15Il/7vlVQ9HNgv9vn4hEthkZa+0ukXIVPQvDw1BTbvDjBKtPQ31J JJoJy07Q8iP4vRA9PJFbjW0t9WcQzC797vrQTLDeQaJENQeyZ6rL6lqznGkvb7S13kPIRh2SGagc znOhTSl1QHjOTV/Pru9dj4Do368zUrxYQHXJ36s4zKQR7OpFomSiQk+JNcaIl0HIlLP/oRmjGwrf T5JRJy3XuYvpVgV0QN7G3BovRSVt5B6VRUaBQjEhfZQ+XBPU6334mAJ6hTFkvGOEp3sgDgU+2byJ w4wTqfNkvIyGwC1rq6y7E0G2JyGYffXyst6ij6MpVWEOI5izgQj1ZSP5YLLobMIUIyoNtzganYxJ ldna9e/826jGYrkzp458jXFAMKvitSCHQr5L0kU36KO58AXfkzSTyvvi2VvS4m6/MB4vSNKKgZ67 YbpLavALkrRPrpu7uGGgHzqcETfMzXc+fXphPr0wq7d3PRQObK+Sl3s73jRW9ZB8CD/OXOS+P9Bb 7/l481Kt5y4tzWVfwwoTl5e3HcbDI6BeH/94Cdx9+asOxxdXVRpl185bsRIvYx/zuxolCL7IQlAP o3tNCoAXPUkGTebx3KMlR1wWo1pNy11eRgTXYdhEkfj3OteVl/Qdp1sdn9hyHZP4KVm2IqeoZAZd i5HndY08I1wf3VF7ge+tTNPCi7TkHNg/otoVjIfbgG19IFMGmreBMtRbnaH2O/MqzOQ1c9pLV0fj u92Bo62435m3xkDlZZv3Y6CJn5EqdSqAbLz3cyti2O78qujq4ebQ+28nteLk99X4xfs1n+jkZtXj IBqM8KDjvtIyKgHRqvVUwIkXPmwk3WPjq52uzAI39rgUvFcjuhRCPDn1Muu7wrk3UOa1YCQYv4lW fDbSYhslA62Lu/Lu3GPF3SX9tuMkDt2eOROWdN2EpHnNZCZL9S2SRI3Pcrl+8lP5Auxl50hH/jwd mXnTGh58vefcrwoTxft/TbzwYQsTdT1/LSSx5WR3z5pdMpdKq+fAJjciP2xkAZfFEAtfz9zbNWE4 nqRLnuy5c6SyYVwqxqG+7G3L65YXU5TbyJDkvFBHXvNXCUlnO6AyzIrSG5VqNXykvJ/6WIHwNi7U bIy6HFZQSmuxLCjWaVjZVJzcn71v2PoK7agTk17oYtzAmTNSdA/iwMFfnTWeTW4EIP2914hVZnDO G8TfCuctcm9BNT4XNoXvuYQ3KLThxcq1aRWVq64GxKwNeDxQrEIHima98mk/T7+Zu0IG1bBnV7K8 Q73RelJ1VFrf4UtTKPm77c+VoR8QO5CE4eB/tEU9mS0zaKpq0ZEtKpRQ0xEt7c222E7DRrUqdnSX 8Tdeb//RxE4WyDOB3S2TjQL73UXPWj+2iB4XjCrHO8/6Gi3KfmGKbBOIqO72r3ESOBad4IdKmW7V z+IRqio7QaxOQqyuDeEZGHnwrvwAsPk4KVT0OSDLzBTFjmQnaDPD8lHc5Pq6XUtRkE8W+mrmlx5Q reKj+6DG1IGq2wTn2obgrebIsOTtiEK6EaTln4X0YLaUNm8W4mumipY+7d0/uqlCd1KMknFts2Bv bBBdW1dUCeh0+KZ59GJVs68xiOZMBDX52AGaLQDIHia48kfPSI2rJixgzDNl4pnUZhSqhKgpFfSh isfCtgQGDdI1S+kFODGfi1XAOMzNGgsazqy1TeOhNprapUJyI6tkB+tgJC24UQZj6bV4L9IEcRq7 lW1MvFCb1UmF7ZRnxgYkXKdKokjueRk4tH/ykzqf1TU3VfPuyiQAqebx1xaYBH2nyLNSMWHQfjAt 89oq/TMJ3kcA2SmqRNYc1nmGpIRiXabfJY+BBHET9RLKnrO/e+E00IQB7dhWnoJhp+JSlyLbPf7D JM4mVb4uU+eSUNTleXkkw0Gacqnm5VaUjeWuZ2CNcRwwp+XREWlZCpwT8d+W18LW8MJFqZHq6Nad SXORgeWZT3YaBumTyDwAzZmjMBIwDlJ7zfTJKREDQ9FwUO1dML3hXbJ9VDMvoEkD6AlCyRl8dqQU RVP70PNBHJHhC01Pj46cnvyfnmagYZagzzRpq19MMi+0u6yQnmz+vonV0O6iJEF7hSWjwG9KxBq/ oLlf6Rn7yb1CM0Phdytiuebw6ybpyW2b5xSuJv/3nHljvKtqqp83e+URV320vMavbRpZI2RAnlbd J9E9PfU3WYE/6HWB9Fkk39t53wSHn9Bl+xcNwScKjz6hy8eALoe0gX2x425t+sVMWM4x+kTtuHqa flVBQ1pdRWIv6k0tFfMyaOTd1+X9vJitdq83AoJk/ECI2zYm94Kgo6+B2waC0Munlo5pGw1MSwtA SAAYKmXWxW8anjwHwbqYGlICwOz0HnZ0479TuHp8dsnHzYhh7MNxs0WS2cAvwoClJBg01jFtTdMd dIiJDrcdPZns/pcBaWXc4jsdEsn1n9cy/BjnGdx8V/ves6xlYMRwQCCHgWzdCjDeN8+LKQPDbTs4 c45LQvMhBKrc5ajN/N4scMP+z0Jgf7ljcx0pO1ens1FLM4SK1RO9aV70cGFzo9sVKyJuzmtWtQXO wHnVNPTLhCql9g1jNvLZcyxoaCVkajGJA4kBKpO3OSSqWaoiK3jztBDbJ20pmgOKpADzsNh69EdR bimKfyE06baQ28qEbj5is23NL02gBBbz+rfcft8+gcNm80sRKpe4vTs3HJXf2t3bVkHzs/WERAz5 CNXCecB+GGtd1zEaF1qqXZrOKuMSIsc+yyI+Ia6OMh4rH0xLQStLemcuyiah+5k6UKyorCeLoBxc t1VWipKsH+/7rZSYK6zxgWqCqKuo2yzF3XkUYZR0spRop/mq7GMLgt0eIXkfYBDohQJyG1MJ8T7h 9+wAgGIm/mcnRDIyoH7vgj3FlPUOrPT5OIAMdqItYwf6CXQMdBicdYMFBs/z7m4NhQhMOGLLX766 2N0vNpmt+vSlzx8Xg+q/l8/BAgPhPJz+/fSXJwOmG5mflh8fT4t/caGcCDQXlruuXF8xlI9TwRhc Hj7kZlJufJqKBXXDlBFCToqNT2OxpbRPWo6pzpZGHyxYGeHiZPDBRgvNe2muBj8WH59OS4e+9j+B t2LS2eLxOPbQe+Ovxp6epmJS6PgkrMqy2PgUGbvRfDS2F8YOccl6G+z4+dRz5sN6E/PRTz4o574s 3829dAGBeedncz88zuN3/YdqOv7haTH3wglprua+f9qP/9en/wPXNiZJCmVuZHN0cmVhbQplbmRv YmoKNDkgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDIwNjU+PiBzdHJlYW0K eJztXNtu4zYQffdX6LlAuBwOL0OgKOBk7X3eNkA/oO0uUHQLdPv/QIcUaVG2LNEJE9lpkvU6pkZj zpVneBF0kn/vgP8jrbrfvm3+2YQW440woUko033/Y/PrD93ffEk4E2/I70wPXfj9+VPX//H96+bD J+y+/hvZOK87AIWBxZfNZ/6tZm90Z8ALQOvUwveA7az2wklJfMkJMISeyu/kq8zRGsEd8qrT1oUv VgqEssD8z3bBohbKoda5CzJ3QRZdABTgDYIK9yqUwoPzrgMtpJGO4CD/KX+tBYE0Zpa/sgK9tJE9 APG9kWkNf2MEam+hmr9TwjitwFexZ5USFRaaZI+sfTIeiVu1VEIbJ+t676zQioWdZa+tAELDriY7 JJ9MWsOerPBWka9nz37bS1LD3jthJDtGNXt2XLYW8u0V7J0kIYPZ6l3TCuOdNbZK+U5x9IHh4L3A 9VliqOXPbmGNnmf/dM93RnLPQL+Q5zsrhUOpXb3ng2F5Feoq9i6kJmcu8PwZ1xxSoA78U/rTFoWN 6fV8+ospnntiXSe0dsAXOGpCX04bh37dP24+7Dn/qe7xywbyEFO4ijr08PEbJ/A74oypQLIgj793 P0q51T91j39udo9TuiEQ0sUYX6VvWkuJe36X/PL82vdt4d2ERuR/D+NrtOVrkOg+8t/h3l3fjrtE f9+/48dE5075bnFGLx6EBU6X1FAvQ3wsqSV0O4qx61WT1RBUFUTPKsF0PbQH8aOaQhtcpg5yM6oA HmVC6urH7dfXRXaPXZI3y3BfuEuUfU4GUMJ62SfIRiIM+WgxArmb8mHZ04PZoigf60weaICvgeW/ ff85XDyOFvCn0RL517rHrGoVCqXIgG2o2yEZL+kWQl8x9fdYrqSTKFcKoyx/qcMpved7A53BpM9s u13pdonuPn0u9D/mnXV4xpuQ4RmFMXBJ4joLz1kMka1grWyZ9OstlhPbsaYv9XbyfWTNJy+uCRhZ WGqZyOtl1cnzohfI4vNBtrm+M8Lgss659bIWmJRZbK//B37dc7/vWY6H4HuUso7vZYt2oxQ1aogq bacjTZZje9ZPsj8Wg1+8vh18INLuj79jIcI0il7exZxik9ftUjTlvBjz4ZzFuIRDkqzfVbwtWMGU 3jUaHoeoo+0wVlzD+LIcxc6wqNRXf1eGoMFz4esN3BiCDvdgiqrm6FlJrl0RW6rkRsGz4jpbOlAt E8IrY2cGd8LKMGL8H7GzdP0r8AZb0O3712GkWhp9lBdEimDZaC1QuWINg6amNds7KL8MlI9dZ85Y 2gtLxrQc3i5ADZPeXCj9tbC6spIrSZZ0lVz5LKiunBStp9HekfoLInVOxFwXSrdOWbgWUK8fzBoD eOVBEDpqCYNaAXjmwORatkw7jQH8AbO1BuqoUGjuZ8sZhhtF6ojIdZxUK6miBVJHrYUJK+xvH6kz HeCQxGo8IL4nFQ/Y+dkjUDXUnTOcMUJa26+vvvpotB76PmPMJ4HOBYOSEqxgTvKLBr0UtqI1XB+b fvX6tmArOnaSxquc77D1BWErkhXWefuG55efkNmrICh6JxSQu8Y5ZA0kVNxNd7UQ1OTASqDksAtj m2yR7m8KT7UiLhuUfIennea8io57d7vwVGvPbGXTjQLXCU/jgth2SGZcVwxt+x40yjSy1Y0F50Yc z8NB2NNZO+LEJbq0eWoRHvCgGmyhWiKbC/YJVM+Dp5EDr2HiecFgxqYt0Is5+QQ8zxnKSeFJN12i uWCTw5HC2nn/mObUd1+wXqg21MX1giYQ622ne1a9wAhFxG+5lnLhUCqwNPcPQ7kQDZLcj45cLcbr RLl6KBWK+YLoNvtT2sA3am4rD6VD1F5CQ4tOYKQSxqezBOui0WJDsxYcLfxN+UwH9JviceZYCd+p TLinoTNLhjoYTp3UxF7IJJAKDl9O8+wHBBbagps8FZltU6YhmlLbE47CGMeq1VcN+C9Fuotg3oS8 R6uB+RYI1nD+i1zXQ7DmtCapWkF4IqqdngdpgFzrV9YXJh1y3Jfj8HZuELOcei074tWD2sVBxMaQ b4vPW01pjA77XWmG2w1epI9oaTvE2DlsStsJHhkUuIqMODqweJvTG7PuWZ6XvM2EPzqTedsJf8bZ I/2Cs0/yKJx9cUWtPuHb5/R0zpjlCdhVMv9cphhNWRRV7PHcUrw302SVyCJkXa+WQ+kix3zzyly5 1yOP8j7StjJk/haTx7ftkGCyIU0ypMaylp8zYnnO+PVXQB7GBjzMH52rD5NhTiK1pLVJRbvCYDQA m3JFJBQilOEXpXo45WWZa9diNv4QG+GaCvcuGJdDpF+IvnTD4+SJzLlNj6MT3escQvIF1r1gzuqc oqsw2+ik+ZVhttEp9SvFbDmr7ccZLAITGujju5qewHk2bitP27892DY67H+bsG30QIHbhm1n/D3S Vvr7s6Fb9b6Gub2kdb2dM2r5GIe3Bd/mVCOn+U47RqszKOeh2bgnNccd+ucUOaIwN9o/rIiteXZq 1HkQTqYtqaXx4oNcbPhxI6ksIicXMpYt7zwBZ+ckFY894fRsWBdL88UmdosEGLaLC08SSRfwuL/V z1XSfT8p9PPOhYlr/gkk38qPVsnur80vGws2yuAjwfApX7+jrpcxNAaCngUUrYnMgk+XSrKhNZBN TWFyMB8m7E+7fccVO3iv1Lj7qLTwHhCPhCjJh9YxdRCJW6zT+kikQ2siU2FY5VgYkw2tiQyViS1q RDa09pJ/3vwH7Ek9DgplbmRzdHJlYW0KZW5kb2JqCjUxIDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVE ZWNvZGUKL0xlbmd0aCAyMzMwPj4gc3RyZWFtCnic7VzbbiO5EX3XV/RzAHNZLF6BIIBsSfu8GwP5 gOwFCDIBsvl/YKu6ySbZktmU3SPJk7Gh8aibXSzW9bBYEgySfp+A/vFaDf/8svvvjq+YYIThS0KZ 4Y9fd//4y/AfuiWcGR9If2k8DPz784/D9J8/ft/98CMOv/9vJOOCHgAUMonfdj/Rbzd5owcdvJCW RrSnATtYHYST0tMtL4JB56op6S4TZLLaOp5T09TGtia38+pkmlYW02orwKOh9REDCDwpEDnQQhrp PMzznxF2UhgM0mKTPqCASFMOVpjgrKFHOugHEBZQkSxa9B2t32kFgfkn4QUVbOghD1IJMAq1btI3 QaDztEymb7xAja5LPGQtQilvSKst+kgq9Sagp6sajLDMUhd9RMGyzGa1ql9EK7SX2nXRt0agl8Rb t/y9IY5Y2V30nREBXHBfSfzBihCsbHNfSV954bWztoe8ko6sH1W37K/SrSLvl05i2/RL8hRhgtVe 95GnOGK9MW3LKTVLttDvuMpKsnxl24b/bs1SRBAoaUy/ZmUgqrovLiiKO54563crsCTOPuaRooIm D2kHzSqoXRWUkaJCCFK16b9b9mgMZTKr24ZZyh59EMqCU13kyc4saaodEyrZWyW8A9mlWk1upYIO ba8thZ8F1UOeAwgq+ZVkr8lrA8hr8gkaoXVnPNbktVo71S/7Vrj/GFohi7FuYHaAblhvmZXzi5mt 59fdDydKa2p4/W0HQ8SCmVk18/f6hZDWE0VLUGQ1enj9ZfirlHpPr4OUkgILBd7xxdfAEhjje55e ml6n+FfR0Jf4Pj5LOpV7eu/d34bXf+2Or6ugaaNlFhBrbZ173eCtAly3543liixPEr8Ohazpr5n5 vjxN9tmeWfQzvY5tijmhrsoUGzKtUeZGQlVWsA11yBQP0U6PLNf2inNgWqV6jFaftFRobPSW43SN xxk5eUfW5DTmjMYhvndtLhU44UZwscZl0w9pMydsAC3tffSSpHaMkjgUlpnsfpROaw3VDmOjNeT8 sWr3xCerN9vXFD/bfhzHwCLmEg3AKd7y+3CarpXWYaK8smymsfzcKD9mBy7MW8nxjVXPO6O1VTOH vIqRk7RKyg77uHrW5iiR5+kvJs26S9FsdV93+0zIa8Kc3UZtPTckfIxjfHwmrhMLTSXNyUgXj1k7 I72FdRhVZNtoUUnb/Pw4X4h8nOL4aE0EY9azMGhNWwhtvX/ANFxvvL/VPDznBRdzRrIDV/jVIete q/bMYLUIegzoH0vYZVnie75+mHztKUAbJ7fEzbdO12VF6lNn69J35/tN331PbnxjxSoI73mT8q5M lmYq93OLzITHrOz53mEla5f1wJvn7Nk3fZbtJfnP+VQWeVZOq5vvpwgEWa9Mf19IA2geYCM4Xc7X l+Yqn1nbeyHXJ51x61Z9ZpnLFXVnlbUq7O2B2AXQw46azDk5UOnQq8CHtguCIhA+Iu6pqtLfKuzB l5o6p9YZAs+bnBWoo40A7XVP1G9BnapO/x3qPArUUU6SrLli/mmhTnVE86mhztJfz331GmhTpMb9 Ymu9z/Y6bY9XUqSz8SCmFwbNUnhz49xSaHkodnt8c8jCmxVYCesc6yTFYUJ+sX4xYqQy6BbPXFKu LpRcGkZZ7zDpNOCQx3edBqBUgk9/Hi8ZV+eU32oyNsnZY3ybk/G+Roxb1CcUgOjSSitjV6e73zP2 o2Rs1FoY5fBOZzxbZOzqYP/TZ2x+hh15TgLJhmIyAIhHDekIIcSMHI8hyMfyNXoGuNDh41jbsseV rO2VICF3eEWaZUxFxTY8+91a+8RdqhDvgkBvRNaLVYQrFDXzwWJL4uypPnSfBVV4AOIK9hFWdWMA QnKgldkSK/cHjxmyQBZ88rZ1e/NWWMf9lvcKGmNFiZ04nhs+E8vPtIQXWs4z6d4XTptsxi8cOdX5 lueK8/ljqmzpXHx58wwywfgyKbkeKwhOKPAPiQWrtqlvFQteKsyM5bbU4bNWlEEvzDjDxyBe1UT2 HeI9CsTTyKuFTQ9vbgzxqv7B/zuIJ7U88+9lp9887iRziX1EDyuIYW5C/Uif4ci1rPPNeZ9hS8Fl B+fDwr8uUEQPiTBWuO+eDnMnq9JCOd7lxW5WBUJOMeHNdlajwuY7Q3BBWG7rXd9EqHhGF89pQ7Kq hIQhxl89oabRP47F9eV7KHyiqJ0lGlV8PyzGy6lHyvtLotVczaQ1zaJFEC54jw3RGhAI/MwDopJc FP56eW+aowkmjAXhDZhP3ORoCMJt3TB9p6zVsIZx/Io1XKRRWMNqUDVeienjcZ9up0nKEtra+50n LTeaL+VmU+dNJY+ZWyj8tMJle+JbDbBr4TMXThqSslILGhnu07QASblnh0s9xbMsQlMaxmK/nU5j /L4QeVF5Ga8vfBZPLZGBFkarTVv+rhNZBVRtfxmNx84tTofCWhYHFCaJozfqkkML6bfdhV4BJZd9 SKcCY3Ril244mvb5RVvN/ImffRHlY58qV5VeFjjmXHxohIUAW8K+fvExfyySj1gWvExbIaYhk6O5 WkzzhmUhptVEZHktG3e4b1XssgxA8W47j25goXMGnY+fneyDhdY54Rzo+5Scl01rt0DKbXP0XuDG /fY3Rsk2pM+u3w0lv1yPiHsM+WIXry80naolCWkcG2JyMgj0dtPWqus7Oqt23WIbfbFtJX185jSN mdsVyrbexkdh2m29LVFBoM0C+jshgKUYnmUGNBd6t6t9VuxMn89gbB63zPTtc8JMrxtLOpS0UeGF 3O1jzMsPSh3zkmZRQf+Wc26GcjlO9X3UedNmgq3yu7P0OLdXPm5+7+05LHP89IVEjjIZMTF9KxEt 9s3imQsguLN99O5ybeM3EVj+cdUSLSIlNG8sCcYFDw5DXCEtfqyKUp6IGxozsuUJ4hF6dPxFBPGG XvLb+wVKRk98eubzyQkcf3jIl/KtCWr49+7vO8tfyEE/YRyQ36X7T36Y1sgXecBEAoqrcZghOU23 ymH5Kg+7VK5QmMu+52w/keyVJhHqmn+klEvbULNcRTU+X66HE7dPQqLx0qmAFb/l9ThUxUdNNTBf jcMQvbCEjWw1LF+d1v/T7k9rLjpeCmVuZHN0cmVhbQplbmRvYmoKNTMgMCBvYmoKPDwvVHlwZSAv QW5ub3QKL1N1YnR5cGUgL0xpbmsKL0YgNAovQm9yZGVyIFswIDAgMF0KL1JlY3QgWzg4LjYzNzY5 NSA1NjAuNzAwMiAxMjguMjIzNjMzIDU3MS4yMzgyOF0KL0EgPDwvVHlwZSAvQWN0aW9uCi9TIC9V UkkKL1VSSSAoaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvaHRtbC9yZmM4MzI5KT4+ Pj4KZW5kb2JqCjU0IDAgb2JqCjw8L1R5cGUgL0Fubm90Ci9TdWJ0eXBlIC9MaW5rCi9GIDQKL0Jv cmRlciBbMCAwIDBdCi9SZWN0IFs4My42ODk0NTMgNTI5LjA4NjkxIDI5MS41MTU2MyA1MzkuNjI1 XQovQSA8PC9UeXBlIC9BY3Rpb24KL1MgL1VSSQovVVJJIChodHRwczovL2RhdGF0cmFja2VyLmll dGYub3JnL2RvYy9odG1sL2RyYWZ0LWlldGYtaTJuc2YtY2FwYWJpbGl0eS1kYXRhLW1vZGVsLTE1 KT4+Pj4KZW5kb2JqCjU1IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAxOTA1 Pj4gc3RyZWFtCnic7Vttj9s2DP6eX+HPA04VJeoNGAYkl0s/dztgP2BbCwzrgHX/HxgpS7ac+GSn UeO7obmmSSRaJinq4Ytk6CT9PQD951F1v33e/bPjFhOMMNwklOm+/LH79Yfub+oSzsQL8ifRQ8d/ P7/v+i9fPu3evdfdp3/jMC5gB6A0D/Fx94H+Vg9vsDPSCxOChYX7gO0sBuGk9NTlBBivgy/vSb00 ojF0O+Nth9bxjZUG4aV0/mUWHBALzoPOLMjMgixYUFboIK0yUTShnadfHaCQRsaLEyuXw6sgAIyq D6+Je2+C9tSqvBY2BKVWDU9XWoP10dEK8NrQTNHoCoVWUsPM6KMekYdPOkSjhYxz9KIObbQToax1 nUB0QB2WZoF4uWwc+To8796dXAeqe/64g2yno6rVwODzZzKCBy8CKJAkx/Pv3Y9S6iO9H6XEJ3pL emn6x9/39A70PvXt+bvfj7RMZ7iPxkDs+w32NBdjHNNvtj/3U/f85+7peXY2pDDMu95GHVncpyRC Fu2QxMAsVkUED0I6C041FGG07iUR9sSmfCxECQXraYZ4lhGSKMc0649TWgPpmmOa5ad0Hfdn+lNq OyRVyXRdeV+6ztuKugIIC1p5aKiucbkuqSvP9CB+ZDepJKvwNBp8FqlUmT6d0bvpdZl+TqV9f0U9 IJVg8EPcRj9QLF4/yj0BCt+bgCllPvamWF3s5PUIpwHJD7STDbSAYDSsWO57rDGnNd3QMGxswhxb yuIiztiULGyvawIh+S2J1vvvribqg3y0R+1azu+dXQ1YI7SX5BnelK/ha4A+IQFtSOOUUzgAJI7T y7R83Yu+5pzW9jxgBm7Zg9Ve1nTqDInpgttEpV/jXiONT9e4hByF6kr3zTSDHyvdfDFdRo1tmFEm TLE/3j/hfaRP04t2De57K9A42TLIawX7SjqKQHXL4O0K1ignSu8ai8oLK9maXq1jyubL78HkbAJ1 X5gXf6qCvljBS+C+6PAULTtA3zRyujPAK0omraekfDt8N5due1VoMpdfzFhEBq81FjEbMhQWsQg8 ykqhFGlsE4vIGI4Zw4+jCqNYNbekKDPeMqvMrN2aUAB7I57LNPeP9D6Q8AdSxiPW7xJoMBsX9CKO plSF74Q58PTJhZ65q5cilElQeuxpBsvNK4H797Vp80BBN5fPtsjeIFvajJfOAVItvs4qNKWVni3K HFkwXA8qdynyUKn9DET0qaayAMJzeXAzlcW4NOEN22lk/ZBmP6vIzajKyjF4O54FW4V6jZnDt4pK tFSibaKyXiH6VCwhkGNuhqNtcXtu44Wc7SK3DxWWBSVG2tOoHP4cQob9tMLC7YdHXql10NBgyYW6 FbGXr80AKNG6UrF+DhiOWK+3GCdw5I79GDKvVTfVdaSTl7pedKxaaYroNbzGiF4jCqOcbhkGtq7j PKVENYW9cZ0lDM1zsRjuamOEtBZbFlJvLO/cIQuom6U1lCkZbJnL3zkD0I5QApVpGUB8+wpPadBD /8SgayJ7QmwX7DYBwFwFJsZOMrXZQhVnmyLZ8BmjGW8j1s6KX18gy3gbnFDgm4YErfAWwQsVMGxU QlmDt0YmmsMNeIvKU5yqmlax3jjeouaNfeLy7eItYqBhaQW/KbwtDfpqvCUTYWlUSy95Z7z1fSzL mwPfBG9pMBE8blVyreNtoMs326acq1iPp2A0pQUx+cqniUDIHiBePtCkvXCtXZsLwiIlKKvSf0nW BPtxa+qaTPfid1k0SgERqiKDXigyMRtlYnrTQS1DC91IvubVemadwM8kPYy10b79XMeLXto4Mjls G43c2SUZD+Q/2gYa220C1GY3YvlNNcuFWpC2ggIhygcXKy4LVc+MDWVFprqtbAil4x22KeKtLcDl whIr2slx+zdvHxdHpeLv42gQ5ZGmPJnXGcDC5KkgvOeDYtfUcIeQIZlLvJsuwoHa4SsrlbC09LYp +pXuIRVHOciRKbDJpydkjurPo/7cX5y2yG0cMMWdmASpUVPZHs6q1YPLKu9XPSlY02j0F1vFmucn 9iD0qswqCqFoO/VLQJZbSTMq4iWzGD9apYXTbePHO208Wo2Cq6cty6fXeZ9XvwOhFjYPKPQUHmTT Xfz/0eaBpVBWY3qE4ZUlV9ZRxKBM0/3b1iHzNz5EuRhik8wiWNV0w/b2Qtg1WUTdPIOjrIlm7O1m EE56yrtD093LjTKIirHnMK9m7DcfIZo87PS2PPnkQarvnvxrPHn5sNh3R36hHSPJs0HTHehWjtw5 oJu7pvuod3yao38o1HnPpb7+yVAS6uVHMgMIJ9N5jFIGww8tWn65iShWa8IgbywpwAUPZOhJEhJS uT53ySf4IltegCErcvzA5aSj4Hf1Q6zY8+mZzwcndHwxyefyp5Umfofur90vO8sHe+gVItn4a0r1 4LteXu5iMpc6x9ZEZiWKS7KxlcnmCjtajfXqSxEeRCB34djwJrJoQhJKq+Fclgn92DwlJ24fhOot zEzYLZoToeovVGpCN7YmMr4BhQl+QjU09rJ/2P0H2LRTYwplbmRzdHJlYW0KZW5kb2JqCjU3IDAg b2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAzNDgzPj4gc3RyZWFtCnic7V3bjiO3 EX2fr9BzgKVZvBMIAmh2ZvzsZIF8QBwbCOIAcf4fSLGbrWZLfZqkpkcjJbvr8Y7Ea7Fup4psNh0k //1C/L9g1OFvvz39+yl9Y6MVNn0llD38/venv/7h8C8uEt4ODaZ/uT4d0t8//3gYf/n916cfftSH X/8zdOOjORApnbr45ekn/tvcvTX8nxSKTDCVccgdnInCSxm4KIhotfenMS+7dVY4H12sTv+yV4t7 9VGQMVbv22tUwsmow669OumE9EapfXulKKwhuXOvWgspbXD79mqcMF76fTu1UUTNv+/aqdfCSKVr StDZa3AiOE89OqDN2KsvtZlLU4epW+N8UmfWV+EHrYWKbaTn3zz3mUeX0+iyGF05oaN0yg4GQ2gf +NOBjJBWclus4IbpV9FEtdm95pkHm1RLHlTQwsXICtHSvQoiaCX1ZvcsYBS0ZQPI3SsjUgNq6t5J YYxXfrN70oKYGzSsDmkS+UPLAF6KGMxsU6qrr6QRVnmWwZbuA3FlbUxz914Jy9aIhbGle7aIQ7tW 3rLyCGM9s6uhd8uVbYxuWzJL3gYrvEuL39R9Ypt2flsyUwO2pT6q5KQuu71a79zgsYVyzh+SjBEX sCVIc7j8cp7P87enH978gdTh2y9PNCGGmYPqNMFvv/Hkv7D1IUWSl+fbz4c/Sqlf+OerlOaVfyT/ 0fxf+v3IP5F/3sbvp9/Dca6b6tlUxn0YM5YzLhjqXPTxkj8ne+X/dPj2j6fXb2tsYAWwae76c5Zj Ivc1kzCR9pzJMBNZGySwkknvaJSknUiYtaZGwpGnKb8WpMRi6plDicuMBkZSXsbPqQ3xv+TGzzH3 U3LQ5qWZl2Gsm9oNS8UfLa2MW9Z14xyGfqY5Bp633FjSSMKRVqNX2mlJZ0tRW9JhmjoryltevucN kl9znZDb+HEZdLF001LK3K9+nZdr6O+MXVbN36W5DL/Huf0wXszzeMv1M3vZbQ1isal4DA4FnZzD TmtcuMKq3JqtySktlAqW3OdMbuBeRaFOptBnMzlx0ReC/jJzzqix3VFvEc4Q2zubnep398BhnNAs 0CE8rn8gxgaM8fyeLP14/1CK96m8QbxXjWc2iMlAnozamTHUr/NSm9dpOQH1DLlcilqaBHqi8CSE YWTgMMMNCsyWhyJnhQ6SefApLmow93Kk7zTnSXlp5lai+fg6rzYx7ZRY+7buZpb0X7Y5ubpzaTmf T1VaKhz2jkMLZ6jJVM+OcYtj3nJTH/2nMCyp36QSg8ifWdq6vw4ux073566V9Izi9Z4AeGdnrb8u y5JTOsGulyU823TQigKj/ZQ/+O6f03KoMCdFH9M9K52yxWFXHPzx7vlcoJEwD+XHsxjmOEvKFIes GX4cX3yIe36bRytndu6eJ8r12xZT0xSCtXtiro4AMgeKA9IoLU1BxhrDTMm4gtllYJkYcUIuuX6I DQ5EOckxFVN9jw4kEMN8bn6/HsROCpjty8mDHJcoZysUrHuXSCKk7Pp375KWQ0sl9o2bbuxbWPq4 WyP31LmP9y0Us8/IKcIYi++4HaWQMOS2Ff6XdQZTVwQmJz+zCBn38i0wBCkMrJVr3m+LoUozCte0 Jwrv8CvPRfLQFe5yzWdQJv2YnXdZh/oSlgv/VCzhWvQ4x2CAgSqKEFJqt1kDYyFKUyahhC0DRVtM 01qwDKtPYto7F3kt8/vuaFKbaRvx/sCATodCmON7BuofEU6+FeufFTJM6SVTtFNF/WJzpOYZq2Ah 5UjIKPtJsdcaWMjOJhn5E0yfHMQEGGJuQzURDW4+G/Sg7j96oSh8ZubXXnKpRcBXw80VgZ+8SIvA r8LJQuCrRmtxVuXmEnEKuKbdv5d5CUch35p6eQ7mUyRBn2eIJ300BY6g+bvnlzNdzeZqaD/hkEkp Jq9cgv4zF3UyjcdC+vLW2TOXf2WpCWFrCcuzPjf34gkLpyUhylvmWaCla1uSAVcn723GPmTOyUi/ XKahnrxcprpy6HQui2d8hx59cY7qjj36WYJYT2pzlG3J4cVxrrvxyB8NVLbFsjyC9phevDzm9jAx fA2KDXbm3JYZeaEDyT7JHEZOR4XkJDQLodor7FscUloZfbCOSGyHthu8XBwqvP0mYKv/bMnnLg4w fq7Bf8ezBOV0XBpfD38Ws5LpFLXywRmXJxNFCueToR0nQ3aYjBc6VbOOm2RhkqjgDRRY2OIFFURU YLpbKFAgdS8d5tjblUZdwQI4Rj7AcVkQXDeBsKCfUajFFavbPSs4hvyK1gpy0O/GWiiilooCy6B7 lcDAcHN12RcFChWgrhZ0lAUWdmVAwYLypsGNR4OjMULspQMWEBrcoBaQ8rNDVMi4arbZnok2VSN7 C0GFeqXR4NDUwDGeUVfPz/vpVb9xatLEpjHgrPCyo8GvIBD6tm4bhH00atHvXizyuP2zMluh4eJJ xzbQo0Z1tBbo4y2cE/bwkM1I5yHTsHZBnUeKigugrsAxkKLiFmhJNDJRe/IDWYkrgBWUK1jQbTj7 ofHNMVoJehaub+H6j6BAIkcOXb9G+MlCpIKwzRX4qRteLIS6qSs4KwxhlocBIIRJT2CZKKluMrs1 EYr2noaj38l2gx5oHzAggaYm3KOpwSFnPwhFLbDVQrgDcvAK3LGjF6lgGwBhymsVdoIwkCbI5n7e QFHqVyIIkyEdSFcggTCYwhoMlwR2hQquiBw+1a7cgB8w/Praj7huzcEFhEHeNyIU0Z9sgYAEwwuE n3YEPRqBN9wCYhs03YVctRXArk57UY15m6qRvYGW4BiuHw11+7ljtwO8Iobrtow4dQJDZwhhoBno TnUbRDne9+gGodDj3tCLAAhT3uG0D4S5UzZ346cdc2pYuxDoxS3uP0/QJpXf02XtprbUj6atJ5xZ gE6Wurvqxzbd08WbVWiHySCkgul4RgVw/w4uIpwuanEFsDodgdi004a8cCFoW7fX+7n+B7OM97A5 0mNLocnsP9kAkUp3LIoLKqZ/HZAsrn/cCZDcAHGHTZrKyyevPph0JfUvSAZe7MKQoBGUEjEd5vLV kY4Is1K39mPsjdDB8eL+jFVqvBW5YY0aguIrm0aKgZmqlNV1+YTStl+0Bs1pIzVkpbDWa1Iftwtb nYOPIrjg65L4mLv3VU00VgSKDbKLo8dKQFWdAusPaZL1HMsVItq9oDA8vMnBPTg4atEfjsAW0KVh 4dtvmwAHxrFJiIx2Qpv0DHhNiCQMx/bbJrvP7YVwcXp8dSmtMmkJTUPO81N3HB95jUf0Jn3DZnr3 2WpoK7bxZHnt+K3x5BUmtJIvrTFAR+F01CrUGdAdIV3errAOG9Md1tLH+gx2TEz2d9V/mKPijKuQ zDDKVdGYui2/vAZhvUfHICdY8nVu/7842joujMJEaoDFFTNcR39GGG8bFLGG/qojcfRkbAh1hSMY dMLkTiUdVDVH2gsZg2rwB/2Pu3TvIPUnpnWbaqdH9b0iqsevDYdntvGgovdu3DZ6EsMRVFtS9H/M jvdYo0oKoQpJjUq+siVK/ahEgWU7pZyS77FT3agY6xvkJrJQjXGU0ya5yoZTng25rMp7aG6OMh8g J2ZZypKkN6DCd1pIH1uzlleodQXPVwEb+eEW4dBgvvvhV7fu9Mdg/YcMdjy33Ig5FFlBQaqGNd4v ooabXQ+xYgm+BNcAKq7e/6wiKBUbgSKMMmCq7Yp1ewCmGWpFgngjdsejsbpt0taL9LayG8DXQMJZ a+t7MI3BtuEwSxO1BHTfY+3R5weZvF1LJuidftVJwz2Srof1V2xq9UeTlcAUIMjipYO3RpAfFl1o SjpjXMNO6O6WtSo0sTVP+c5UUNTMWO6uIel0l6Cv0eKmN9U0bnvveaTmo2Lz9FqKYFWDTbl9HKFS tNmUxfwoxVaeV0dqaoiy4CL0364DgUz/2efW/GUQRjlZNxK3ODjViqWDEY17QPVjZ9uYSDImYlf0 Hg//TkFMNxc2pimRIOIDVMjoYPRVubmjDjIpnSBrgMfv9EmWGDE5Fxtk5J590tXRk+XwoBGb3iBJ 8F5qUnZTcWjSsP9QP9RUe3f1zdObNwj4MQM2zxaUL9/ee1mqt9ZB8dvxiZT+s3FwVjtqyw1uxut/ VKV/de8hbw9BRo+UPNhjVnC6ZVeLR4fgoyroQSB4swt8+vkZPkDT/fRO/6zgkzXw6Wf4IBBsAW+o wQ+Ew+vsuh8hb8xYGamF1MrGqvXFp2a70xWwBZbg7sdIrkh7IXtdXrN+eoG95/WUIV2vnl9ir4gX cngzO7zJ1fMa652vZB9egcU4M1ZvoKX0JrW38YLgdZLSjvFwJXomyShB42vFMUlGimGUx76qvOe2 /uq15t5K4Zzc9WXcN37RSM/LC7YuXfaOmJf73mT/sdeZj3czsy1NCjBe0Mx0YPmPaU8qv+CqnLY9 cLzp0h9/FriwHY6BzYswPgbyOubZs9gr7y9vaQ6CLFF62d9kkMidz7f9LulxniHN84vPHiFV+a38 6Ew4/PPpL0+O3EBDHCrMn6byL+Ew0pi+TBXGLqj4NldzZioqq83fpmpr8kNqtpiX0/7CcsP/pgsK FvPnKEUpraU9o2JRf/56WT0RNXz0eknT9GWupNhm2uGdy2Wt+dtcLdi1avO3I+U/Pf0XIC0bwgpl bmRzdHJlYW0KZW5kb2JqCjU5IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAx NTgxPj4gc3RyZWFtCnic7VzbbuM2EH33V+i5QGY5HA45BIoCtuPsc9oA/YC2u0DRFNjt/wOdkahY uVl2QkVW6xiKJIqiZjgXnqMLsXH6u0L9J8E3v92vvq2shDMDWxF4br7/sfr1h+ZvPQSJ2xP6tdbH xn4/f266je9fV58+U/P1n7aZlEOD6Mma+LK61d+3VcjaMgdrIsRk7SefwEmW8MqVODSxvRb4GFMD ISTUA1GiXfd54V6Gzd3q001q0Dd3X1bY60oqgXAmaTw4dkmQmrt7FfhKIKNHp1Lf/d786Nz6xjm3 dY50HXQzZF1sO3RrtkLSbdRlrct1t0/lHMZu286jXdeGlVsd1GMYdTt3+3Zw2L5oey51i7Xd1u3r 3XRLex1rN/7U3P252t29prHPIOIFRzW21lqJN6X166Jteqy15P6Kt8+tlRwwZRepotFCBBRiFXRM BTRRqYi7KwbZ7Q3R7l93xrBtdl29oXFeMmh/rtVjKkbonWJXrrce1NuU/YFhH7c9YjSKEER7flTj cdc5YCxBcCli8rMY62VvHnT67rkBTo0uyV0kSzrQDRkhIlmI1OsGH8HCQFPcWDeE4o+tb7jB/oNq B0RH5wHZUwizJUnkksiK6ba6bFTujeqxNY+Ukrxyp1trNimx5Pex1pv+afy57cDD+/7BgcuUWG6P r/cu0Na9eXqNkbgLBJ2+o5kmFqfblSzSJ8s2SR6yGHqIGYOL8wRdLvL23tUPaet9NrMelPV+yPnY 4exJ1h4ZjEaDWyEIeC+MNfsbCTAz4RHhvT7oDCEAqc4i8wgXwhEAZ9dt23GzZBufxZK22PlW/mDB Jx5lbazpUCcoIpRAujNH+qU+JQ1SCW2fO7CpSSXFWN227FjEdNBBIwOJ04Q7j/69+XfFfL0Om6em PKRDYm025XSB6iV/2Rq33fkPo9+jqBkbiTLExGlc+zZDP4u7Q8YSBZec3DwQ/XiWUTqOzgHWjxiL I/hkIGw04R5NDF4yXI6Qc3Q1E8WJcL2K5w+QxSvjxYfCf++SclaqSYI+CP17FIWrjmoSlwv4nxD8 KxAFjV+qCfeWif3fPz4ea6yTx0evIYBBqlLq+uPjeFozBCHMNWF1Ld7jk4PaN54q0x4uTm52mIT2 eEHlfirm/5P2+IwglGTBrIech7q0deGcR7oypLPjPJoWYL6bbhfO82bOQ56UrBLOQ1bref6ZcR4i UirpfM1u/SDSoy4HbJ53IT3LID3EDC7GUJOlLpT0vHuAnIz0UGRlphxq3sGdgfRQ0msGzzM9TzlI eign8ChVAWPtZz19VpmS+ASXwFDePI/bZyc+AQV8Dnme+41ViE/wotzNV32CsGzq4zYdYsf3ZPej EfXJ2T1o71LCmZ4cXOjPm+lPUEqc0VV9eaE+/TnO+6eiQLXefzyZRCl+t373NTHTB5EotQxkCVUf RFxI1IQkKghC7ff8lkmiqgy1091pVGAHbfye80g7mtrYeeCcY02MXotHaRgU4y2GR/UEojqXYgrK KYPUTAsL4lIc7GMStdxyuRQzg1e4URPh/be41EP5qUk+epCW9FRP8hwZDFNeXqFbGJ/ipNEdE573 K3THR8BMnOroz5NO5lQsEbJ66vIoFeekUmHVxxwXSjUhpYouKQd2Mz3yOGdK9eYRd7o7mBEFDOid 94g7mt6iz3qpGGvi9Vq8KrKD2p9BVuZV7fESHNJnEqu/LcHUo5abifhWjE65J1b9XmtBfEtVB2/f 6y+Xb0VBSKHuRxQL51tpcC51MOLloKrGt14dV14yWPZQ+/vN0yD7q9D6rHhYLch+PJN7cfoH9QEf /DwzCoxTw6ki4y38rBYAfs7wDhlIR2SKSDPhqCneZUyewKaQmece6Ls4o2JlqPzl84UyTkgZUwiQ U+TL3A3VQMPxlPEU0JCYlS5SnInbVwAN42kvxk6M+ankbTt1WBKxKb26+cP4wIxeKSsEd+Wd/qE8 3GCAaH/pkViRdNDKomEHIWXBRLlIpQL7pO6j6a6ENrdiCSCre2rnuIepoZ7Ke9RUZ+1Dpk5OMTmv ElD7Z1Xuh7s5uVb23Py1+mUVMZY9q7bfe1zrSppOXyuwal1zOCgt1fS8RxVs3w6ZMv8CrQSvGApl bmRzdHJlYW0KZW5kb2JqCjYxIDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAx NjExPj4gc3RyZWFtCnic7ZzbbuM2EEDf/RV6LpBZDodDDoGigOM4+7xtgH5A212gaArs9v+BzkhU fIkjyRs6sjdOoCgSKYrDuXCObtg4/b1B/SPBN388Lr4ubA9nBrZd4Ln59tfi95+af7UIErcH9Gut j439/vqx6f759mXx4SM1X/5rm0k5NIierInPi0/6+3URsrbMwZoIMVn7ySdwkiW8cCYOTXLAlF0k OyX4GFMDISTU8ijRTv9856Yrtw+LD/epQd88fF5gLzISYGZC7YEHxy4JUvPwqB2/Ecjo0WnvH/5s fnYuBOfoXtdOl6zLfbfP1mw7qZRb2do5Wer6rtS/1SV19dr92G2HZbfYcbafVrqst9pedu1Z20v6 pXn4e7F+aEdwb2wEwaWIyVccGx/BhnvC0NBd13UT28Rth2K1O0xSxGyHaLkZIhO3rXtbxL8roqfd 4ZU0IH5GiEhecB7xe6tYF+31Itzua3JABHQekD2FUFEGUj8TziSjMiy1n241buGt5RbL7tVsxzBu VE7FDGy/1UEtw6j/F0u2wn3TcKlbrO22LnXbT8daO7zvTf14viC9hpmYOI1Lbz3b9cchTaGHmDG4 WFFTIQIKsfZotK/h5Rgx2Zl6TdioWhmV8vVeO327dxvHZrdx9F7Dh6xiY+0vaIciBNGujUdebZSp SNzb5nqqX3kC74VxHm21trosfS02f2jE6vlEqffMojfneW49I5ryGUQsuo5GwtWWDa3GNEOko80W YefQzLGRy3zGouTgRIQhALkQRWaZiZ7yDSzrfvtJtqG+a0ImgVJNdRw3AZkxt5NEMe6VLrfa7VsV Y2VOIVvG3eccUgKE3zhUiC842XZO0g8PbqVdJcSFkqP0JtDWvd8/x9jkQ9DJOya5GVhrdOsSXPug fb89xR1SWGQgcTq+80xEufQ3Hwopm0Agy63Qc7apwlRtHZcqJNbDU04XmymMRzzRaZyTm4nKlkMO 4l1SZKSaUFQZGEOvIulUcRI49Chq3I5moqO54VCzP4jO5qCLhUOv8ygGubLhJuCvujRBD3dIL+W8 I0GfI/hkxP19kXRIYYaewjxTantWGFjKJkPca5X1HLmGFBWd4qHqYh46/F4KnGT9Q8S3paD1c2UN e24tRR1NVz45mO8q56vgSulZwVCbv8LVZcCVzwhCSa5sVWWqnX4p9tiplpyHuhct6k+0o5FNgQJq X1KuRVFEBDk7f8b33fYxytxghSfCKZ3agG2Ge584RczgYgwXfK+NIisRcqh5WebHwqnOgWrdFvi+ mxGHFJc0NAfPNbOoK1adAKtIos73Oc6TPdXCqn4aOSu8ihlClDQeKo/GK8oJPErVXOqN8Cq4BJZe 1pyUrnh1QrwKKOBzyDVR/sfAq+GgMxYcPEhSQetjVvCiPOyr3ueZAbSCejW1I3R+oKWub6f1NdPS 2qDVpxanuleljUGWMNfNmrnhKghC7YcA3xiuNKaDq/tQz2WzVbteneW1M3YeOOdYM2268tQJeIot jlOseufj9Dw1bvkzMdRkjzqaoTR4l6YvjqGYguJfkPkeMrgy1FEMxcHeoNH07t0z1Oun2MmP/x09 xTKD19AxzwMG1biJI4Nd6z3Hx/xYImTNCs4Xm57K7zeuHgoqtQFsuakzikick4qCc92AmRuRoktK iK7qzZs3RqSIAha3a1rsZTNSu33AQSan3dMzOrftbkNK8lmbirFmOnRloxOwUTTTz3M9AvKaF7mG Lb4odcdeT8hEk1/HO5qJIjuY7+3cVzFRjE7jClZ9nevKRCdkIlUWePuQwLtnotdPqZOVNXlKFYSk hjjPUwHVWChmD7XfKK7FQkkbooh0zjC0RxBP45+77RaKivG29e5KWV/HT4Ck5AnscyLv9CE9zbKg 8qu8b8xIKQTI9nr4lZH6gM5DflPtAlc/XRz0vCGFMSvUUpznXdcrL03mpRRj19xl8dKg9Zc6g7Z7 Qnaq9srTp/bbW0nEvonVfYCLhz6JlTWhctRdld1WEDcYINpP2ulpJE0PsmhUhZCyYKJceqqTvE8q gwbH0lVuuyWArL1Wa3F9gez3d9K3wtobFl0/xfp5k4DaH6vyuL2Zk2v7npt/Fr8tIsayZdU2W7u1 bqTp5LUdVq1rDrf2lmp63E4F27YiE+Z/r+OILAplbmRzdHJlYW0KZW5kb2JqCjYzIDAgb2JqCjw8 L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAzMjg3Pj4gc3RyZWFtCnic7V3bbuS4EX33V/Rz AHN5vwBBgG5f9nmTAfIB2ewCQSZANv8PpChRLbHdR1TJdNsz4zF67BZFsop1O0VSlDpI+rlX9F+0 +vCPr3f/vctXXHLC5UtCu8Mf/7z7+58O/6EiEdxQYfpN96tD/vnrz4fxjz9+v/vpZ3P4/X9DMyHZ g1La5CZ+u/uFfjY373LNKHxSVvpGR8ofvE0iSBmpKAjloklx6vRFuy5FobSSidVsFMmZEAxs1msj XHTEcmtYXrbqcKsmCOlkiH1bdVI45bzp26o3IkVpQ99WQxDWBt251SRFIi1QXVsN0goTfHKMVo0d Ww1LK6FSRwrohLHBO3+wPmRbsUYLqY212Gp09LVo5USCXJAQtHDBapWylZ7/VnbUNYW13NAgKCOj X23epMEUTKSrJmrhfbbiLc1rsnkfUlht3nqhosmmJg9WD15kS9tElZZBro/Msm1DfmpkY0vzWaLW KvtGzXspdDR6c+ua7EZJ0oRNrSclYvI2btYal0jTY9omVpt9o1JhnfpKa3wS1sewSbKWbEjaGLdL 1spErVq/SeettUQYMbtdspFUzWd+tzTvHMUjx2icYVCWfMh485vojU3klygqriv9br1x5A5i0m5d LXfrjaOaVie/XbAsvXHkEdJAy5uI1pFHcNI1XPH+5oMio7Kpj8c5BzVnc/slnhFgUCPCg/HMDzCT rMmHQ8YBigo88Uy0vLw403X6cvfTczgoffjy252aYK72wpDqUc/6TOCXrxSQ7+OABiTx8eXXw5+l tI/0kfRR5ff0PUlpnvLffzl8+dfd05frMEC43I/pSPqs5C3Sj8+ShEC0EqnS08dI+UCfE5F9IjYe iI8Yx+v5nsyaeaDfcWTRafp9LCyX+sMwlGtDvYdxKOzzYnjU2M44PKXe81gv/62moXy+7GMaSsC5 NWLkt8W58mMPmQI3UWVLj3ZFYJFUPfgSnzoJbLaMFtlZCG6pW8+F7GMZ5KdxAGMZyMyjySyVAZ91 crw+DXYejkEJSp2zwGxpK4yf3I8qgs6EDG2W9mwotKSlzgNBGS/sgP+bHBe1GXp6LK1PvegVQRFM 8YpAonoXQeVBHkg+FU2f9Css9Wy0wBhW2FBSU5Y6APl+fKjsTJ1RG7zbcWEMc7pBdubGDLa4Z01m MfoxnKRbitBySnt7uemMRmWOsk2LJzWX5LfUMfu0a0ztyaFUduApeP8+0rHFvqd4c/YHRb2ynZqH l/ac65jicCefcTRrakh+T9HohHcJseaxdjUTW2uuLS5cYo4361aWvUUwsWcYZrA3SfCpsDA5i9Ol h19hQZOjGBt9LyQhH9rKeIkOWlJ8VYAqfefPGW20EIROIsYcNXp5+LgqNKXFCPpvHqFUptMUWosL OPNURto8zvbm5Gx/k2SuSXOqO+DDCddNGvFUw5XhvlP5vpBq3XY3KNHUmzVJaSN0DOp94MR1VV4M +tNLAXBNizLtNhzRxoiY5yu+vVRLWyuMJ0T4mWp9G6mWdlakjL8+U6018++VaWjCv9Yk2zMc7Uw0 1pcqPhrMXjeUeUaz2cuplu5klvG4cAfPsplcK6dEoAY2KPkq5tcplBnMj4T5W6nMqo4bGShdUz1D wI1hfrWq9gnzzYKWaaZo6ayrWSIUyRLlfi60uVfmuoEO1LtrBtpat7x9VPPbosWA+DMcMDXSmoQ5 IXc0HLW/KteWmcYkNLUQ1EIZRsvvBUEGKsyFH3mcLfCslmGF+qzOak2wy0XjmwsWCWMa8AnzZaFO 7C8HexB4EUZlQfFCYBfWdR6my7Qujd+nenMa/NrE+5y4yut+Y1DbCTCZBfdnFVwT4nJp/sPOGl/N 1YEbrNhfWuLkgo+jkGd3ybXuhmCdFzrkSdQm91NgeJ45nPzOpTWO964JcrEJ4vZyLL7k7DmfF+Ou gEyu+ZwyhzKFyslDVka9bGP6PuXFT+X7caRnmBfdkuabICnNl6bnbEevXKDagPLd5gKqaFBx2ewc wEThhh5elwNYqSkpdK5nUvjOOYBVWqSguy7Z3DgJqDZJfSYBN00Chsm5hWWywH+1/ezbBv/q5TDc BPRvxok3Af3Vhr/bg/4LIbTA/nKZ4O0Bf7Fgs4Ts3VLxnqB/sa3yx4b8TZvulZB3hfrVxtVPrM/F +jZQgkYG1XNCqhfWrzYNf69YP5u8s7M2vBfWp5oiKm97Jn3vjPWdisI443oC5Rtj/Wpj+yfWvy3W d7VlsrB+9cjAN431Lx3UD4r1q4c0bi/QC138OBP7e3D+5s0jPXF+9RjMD4302xb9IZF+9aDRJ9Ln In0XFcV93XWF8hWPEuQWtj3fXz2HvyTH5/7N8K+iSuYnsHWI3vpCTBq3khHkKe70YSAmCJNvc56q jAXxCApkQAUGFBRdvlLwhAoUlyobUQGsAamyqOCZ3ccjuw9IleYOu5PsYWfXgJ0bpFe4Bhor2BSf D6yiUIJIE3FTyxqOnMy5YGk4UabrnW8qMM+goKKqagrVcBbVOKECye5coYJH9pCcH1ladXzG5+w0 b3JuOUCH7MpCASPbNVAfUVNYidg+CNsV9FrQ2tleyyEr6ehRTsgNnNhDgiXIHyvor2FTbNE6VIPv fSGDmPO9keo69qrO/NkGYfRowM4BC4aqBMcNkg7hBR5QaPMe9YEKtkWU18kG4ydo85BBpDE7GIRa CTs/sSUIm2IDxIgKIIO4AGIbvlNDw459FyxYjm4FYZaD+DrcYWENNryAaKiSYFWA+IgQd0Ckgsi1 D6DAwRqwAJELRzfWjy1BmERpZyBgaptOFscHdnK3wwdtUtSqACWpO2IpogrnV3zbhSD0PRHXjhyO jYCx9+Wj7O5ZH4AwywMGO0EYPrNwvgNGRn5YvgFVUI8hqv/G+HhgTyDcwuFgdw5Nop9fwSEDdv46 BisIA4MsjPBohsTBaQ3+DMkNYBKcfzIIqbRwx/ZZmKYDhLkvjIxwfpqfRkHcwZ5t5qc4ODLywxk/ T+yY9fVLihLqQ0F5sCHMDowGB5HvAGF4QTLHfGyaf1o6QJxGIQe4ejpBdTByHzR0hMp3g0AOO4/I VviBHIoZejssf3YfHfHTjrAM+UAJGyzoOeEN00j2tC/unO8l2BNT26JPhYY6zsLw5zv4oIc9PVNp +zY+IOhBnWMGIeLaiJ/yKZs2SdWenmG7AbxszM7IdkwHINXGKQ5yA9DgOrrlm4wVO8LzOecnqfxg gRdd2DLn69UOmLQpF61c5tl2Wy906DQ3xA9n7Fh6hGBhbRta9Z6J3fuodg7LI1KOR1f5VtSD1iQo 41Jow1FkHIpty3z3dnyxifsqN8GJUrHFjYLK0UhEWyQo6YSjWKXa2X5iJ6ofemG+OTIhiehjaKva TeaB2VudsD+BTcFVWDSUaZuea58PTzaqreetdL3ZU1KCKm5YGtuxbMXerMhf7rmAmIhN45SwMvkN utmYMm72FOzWyUCYjvETav4yWcNvtNgcHm1XXrche78NCdByd2wBZcM3++JEo6vj4mQUOtnYttwd O/IawmzSZp1IxrZl1nM829un1mnOr+MiCPIaw31lxPdaCq10NPt3D/DnZ0sNgEiX7yi7NSLle/Ud qIY/GwZXE9k7Id5qh1EXe2Hw8Z3BT44EP+aK/iZEeuut9EmDAv4MKNyHxt/Hn+CaM1qlxrvj4LQl 3DYHm4IPETQeO2iiKWmENNqlD5E67Zg/+8jJFnO6p3pVZ+/g2npMY/e0RY9QuWOmDSZy7GjF31O3 YxYUQm7+JoR+y+Q7NilBBjvy8brVt7fSXdjHpsfqquAKQwzcbQyjLowL/DVBRBW/8xPc6cXeL76D qlv0EVEBnyp2ZOev0eI+IFUIm8EhgSgIgzZ2jY7y2AHaECSGVJ3QA54PSB5X3xcXTH71m5lfUbrh HXjBOBGt6XqEiGwfouHkeHBAPgniWI4DKYcOXGfNaWGGg1cKa0ZNh1lh1lwQvvP7Fju/Ce98BEoe h1M5aGtx5t10rEm+d/WkLCJeKJ+6nkPxupOyrrExsFfYH46ckvX5EOMZDKTpWcLjQQxu5VWHIS8M SKNebHgbXqDs879QT5MZwrwpUugVNqSogkmFI5LrcKrbjHLHtUsaVadUfsJgsjyVLundfGZEedIy ZjrvQ0Hf+Zavy6/RjX/6w7/v/nbnlR84ScNt87f6rvt4GPnNRfm2sTm1uFpui2VgbHXbfDXfdu11 hMTb/KrMlzzc55fQxhSUSTU3XnqRSFf0BTd1hfl6fT8RfC+s0iav4y8Jnq+W23Qcq8XqtvlquS03 r52lpGd523wVsB/yuU+Tl7zKvdLWWat9zX0gjSANj5eyrCvM1+v7R+5diCF4dcn+dHnmPwZnnb/k v1wttwVym+Q1ta5um6+O/P9y938mWXeyCmVuZHN0cmVhbQplbmRvYmoKNjUgMCBvYmoKPDwvRmls dGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDM2NjI+PiBzdHJlYW0KeJztXduOI7cRfZ+v0HOAoXm/ AEEAaUbjZycL5APi2ECQDRDn/4EU+yKxNTpNVosjzdrrhSxNk02yisWqU8Wb2kn696zof9Hq3T++ Pv33KT9xyQmXHwntdr/98+nvf9r9h5JEcMML8zflV7v8768/7sYfv/369MOPZvfr/4ZiQrI7pbTJ Rfzy9BP9ay7e2V0Kwiujo6rUo/zO2ySClJRVRZGcCeFU57tiqT1Chqio6lr73xfrcLHGC2dt0rpv sU4KKVPwvm+x3ggbrJepb7HBi2SVrXUZs9QkhZW+c4dpaUQMqjMHtArCmBA7l2qkiFKTVHct1Vqh fXCxb6kuiGCs4ZRq7FhqwKVGI1S6cXTlcik1F5iLtT5kBURqSI16BqoiP+g6YpYPO2FtUJTgo89N eP/w3JzDl6cf3gJpnN2XX57UrGu1FyYN4qyFdFkVmd2Xr9T2Z2qv0iSRdvfl592fpTRvUlpJnyP9 po99pQ89sAf6vE2/9/RJf9l9+dfT8cs1zgUpXK7PdCTBEBOjS9THNRL21EwZp6bmJpuJJCJF0m/z kps//pb0W3opFX0p+tvRj8PbmDaQ+YrzvagpH33bMOXfjywcntuRjUOdM1un74G182/6jmlsdwwr bI2KrIhXQXdkq8oy7oxqEI29PbftBrNaNsfn+s3w36JVMg8kHaK3fmpMEknqYYiPjZEvQ2NI8+Vs ztMrY0LcgwQZUIIBCZOMX0k4ogTFbRV8wyACDazcsunQbJbAOlCrcFGIQCfZlb+hBFQUbBXmLhIf C7sWFsVuFSYQSjsqqm3gOGmuD5xI4OVqHWXCQuAWCUeUoEDColWLNyJKgG/AVlmU8Mau45VdB2yV ntXtqqo02SqQOVNVlQlVDZbgV/bwQYIKE/jDB1eOmos1CmoVrAMXxR7tGwhEY5fPElhUT61VMXrX Uc7SWW5DC3qUfOeA6GNqoVhCQebbZc8GBREl8C0gfAPZ/g28gnVAAhEigSzB3GXXgelAgwXXgUBB 5INNx66cj/f4IK0JkZRoAdvMAxdGLCSxyWYaVDmGKjAB0sEmEKIe3KoKWqiCgmBE0IpcuZpmhEKE DTa0Z/wBx1ZnDr1xowS3JRxAAtZaUJciXkG2Y2NxBwKh4uD7tRv8KMhdyCtkcbGUQPMCWQLpKEW0 TTMe1+DQIsjfCQ5BAehoOfjWqZ+Tew8CO47te9CxQUdBFIrGBBYGvhsCKYd1QLvE9mL5lS/oWAx6 BFWw7UeoZ+F6Lt6ACSga4RC+eCwWg8ETSCCEXChmBSmfbEYVWSUnAhVvt/ucG2IkfO2LRruDdpk9 fLDNRKrfQR8HVb4BDkFAC5vbT88lNtLt2CrIkgi97UoCQCSL9QF9EMkGmAVFpl9ka88OeT0ULfS0 mahV/Mo7Bsw66sENBEJAyx6QkA6HgnK4o2BC2aoSkSycoza7DK0sfxoEgQI8z4OCJwYmsKHKhpmh yqzNdnxxms7ZrjL7zQNjCWb7/dj/YAeaOjoNGyIFHZsLvaKOEWqonDpSzvbusOrno9C3NaiyWHPY B6pgHc22HJgNbHwB4SLsA34oFU4mblhm8Skn5D7nlDNff2yYqoWmASqWfsGsRcIieMIGBQ+NXzhk +yEdOKSD4hcboipwzQ0/nhQbMUwUJviY6himX8iXrwCxGrjD8Nkw2iHegwkdEQnffe24joQNaHu6 yJUVjwB4lLsSOk3aIIbyJQabTGhRIBeapsHaugC+0W8FVcdlw+sxsnL/yOal2lclJZ1aUpOYV8SF V7fQ46gmo4VRynpdrWmPvD7FVnMYOKGO2OsmaqIVXnqn69QoiHlkU01KBuHIhVfxhplYyAYYwOe7 /Y3kuCRidCrUydkcgay2gcaTSt7fMO3yfalfDy/sj77Ur6ozo7p15dXFGi9Uk5W2cSbyw0alNU5I 1WAffvfYxdkmhjnlhde6pc/42rzf8v4NvlR3hVFjpZdOOBdaBhpUsf1C0ngh8BpKXOwH7osS6/6E gtJ/o1YwqhU2QjR+QJKpINCE4ew2cQpBNKJqHMZiD47pjSr4UU4kFVJsUBv3k/Vqq71qhY38zUHQ oGD3AXKm43rmYxNntAlCeRMbVBcf8aBR3WihdHAiSqNuGAf8PaIbehNixLYuMIRcrM7zQlUdBXdy sBcyK9/WtmAEOar2Fsv2OZ0HNhCJbRyzjnz7oNJHQOEamdW2pSGKohucZ/a4aWSP07oRdfLDvHyB 2rBBf+tIW4NjFXBphdZpOBShoh74zkWb+fTGCmdlaFgIsmmb5eLUmHtjzw/zSNtDlg/doNJopaJv DVlucLDbRoIiMWnEnrXlAdWqrKISlYsNIs8/A4O9nHZDdIAfmq2se66iNU1KQjYwrLYotlqRjcKS HHy3II0215AXLFPU9a7puJ6otli6jjxDK/L8sJCibF47wF6ZsnnrUAv+NNbKBqfp++zERzoY/WYn GvXicP5VMLYurptXcVWBovY5ztKyYnjrIi+AIMsTAu+NID919IFv6Dd7Ku0QUbKXCXVc29NoNZU1 rRCwtlWiWlUYw5MNfjl7mSU/CsvflteKEPP28RaE+GEWXWdGq+QaGP15LLrRStCLN4VMvlv0b9Gi W+/b5rRrYc6WwGBK5CJs93bhEv4Nmpu9dX9DD2zdF1xFYdGJZOwtfXajkvNaCm2db3CQP2L6sHbS 8t3je4+ccsfh8tW5+PIM6d78qh3NWFtxeCWiwT/AtN/WZKjge55syjbt/PXjv5szrti7Mb+xjVk3 wpm2U5jgXl+0rQfvKeLXwT60Fm6YhvuiNxyMC+mA+7thHe3LJxtPs+24KYS/8QAOBv4B4KhyuAbq LseS/2GPPud31AabwN/l3JFXJ0Rbu/Pi7isS4fHGiPVwOaDst3+QD1n5W1geeiL8hoXDlbUNjKJg GO+hiPF3uV69REE9D4Djn24LYQV8A+1IxnWgCwVqCIWTALd1w43gHc+TOe3FLi4Z0ikIq/JE5HTR kCY4ZYYV5vByFiO18D6/0/G+oaREJDifqpfKKE2dmC/MCYAko5LQpOjD6e4kb4Q30YcVkrQV1uV3 HnJRTr7453ThT5Lne5Pe8sArLiF6Gz/593AhkM/wI5uic/7hWxf5T/cvjXmH9/ZFPa/T32GsZ29W rL3Jl2DFqG+LeTz0qiljnXA6GPu4q6bc1DvHkZz56qeaBAzXRhVXTCGJGPI2SsRQzopEVK+YMs4L SdpAPUQihqbKiTWy+DtNZK1BV+PzVKhxPW/H4kmCcnm7yXhRWO6JF/ocjtmTo98267fpMrE0kjb0 YBxJdPosDadev5AQ+VL06sweVUjLLH1vspiEuMaqEES2Ej3vZ7NeqGjcsAa7ovLn3n27Trby8nRH mpvJvBg8mYWulIyLgTDfu5ZV5Inl0x1tuc7h+cXANWuLHUwMwofkb1suewvLMlvkfG2dn5p+mHp/ ZlG4wqrMzlm/vBbSUkqRzZMw13TKGktSFFrFcNsZB1tZYt6KQaTGZg/G056lKz+fn+VBOEvG/Dyz oYWNcbrVb2ZP/j4Z6n2h6sP4/PAyXhhYApp37Msr3YJzsSfuamdfbl9myS2SpTKNdixDzgMtLNk0 5JPv2VS1RDbjvkSA9vGXHb5vm5XC3Lxv80PxZRbz/HvGieiSylV8aJ0UScaeFpUBD+fBXVi2e6Dm dan0iqilbvp2ETM1jED/rROdNyHmFz46LuX5+qWrayRHTU6CsT2dhHZVO99BOwtjbv6Ae+T0zBes OBYQzpwFP6vorG5V5c5ZNEDq6jblTYcEAj6hunXKCmX8o+69bVG3Tk55DjeoW6fzNkYXHuSOf0Z9 64wjjKlv3KX2UH3rrBNdMfLHK9tSmtnK1jkvqMO6xhPvrGzjiGPzRd8fomyd9yLqTMQnVLbk6A7T ch3bJqtNWl2a5cjRtPNhip+jSZ6ctxRJKj5Rk4yk123XCAXHSoZikM1+9+w0Hs+D8VMEvj05cKRB H6SWZ9U7mJHGiHEZGq2T5xQBJlIwHclzWoyX8n6TOMKT3+Z9Sg8KDq8pXMK1QpO56WkM2pvWBeJ4 8q9Op+zfW94GkGM/Xr7mUQpRQxFJu8wz1ne5Au6iz+x477WpUnwdz6z1Dzl3OjrVE5K5JPLpEcOe 1zZIVlMGJ6bNqq4IJVp5hl3j9Ma5rOG7VJ12em/utP1Zbc5KKdfh1JS3NrMU8jFtWuuexr6dfWaa 9TmRP7FnIatpyjcb22Px3kTyKngI5GKbQWE8gkQVLobSTObsSc8BaPl+GJppGJ9681JabDGcZ6m5 HOaF0S2l5PoM1BobyYOPKXYNNDEkpaK9LiXpLlZ5VeryKVx9UVg7t5DN6DnfPs/41qOXeYvspfNd sRfGCzu4IFUFfLW2tX6xTiQy6F3xY7u9mHVy7gQYgTgzbIYrp3wzANXt72bt8aKWCvaa/Xm/j/mi U3Q+K1sP+20rVM6WbDXOUuso50Ve59QT1jI66oKEkwFfYfgg2Wlb3tN6iRahmKzg+30HW1HXMAE8 GZFc8nrH+DAW97ARdGLS8QwYh8+hYNJBnldfFLbPFPBhRlTDt754t3h+ibROdngeQaZ4t0x7lae5 /OH9w5K1mblyF2LMa/+G4zYyf+HSv5CUILw2htZKdrodQRyf/wsX56wZYVJ0nvoipKiCSRNXFYHm EMr16eM21SgUjbnct6dl6PvL9sqpqdHq3G7YXGfHdsbczucwrZvPWb6Wf7rpp979++lvTz6fIk3/ pSHb+a9lrue4G+nNSTnbmKqKp1M2Nxbg4yLb+WnOdm2vQPLnhaPvSXgmRWiDd94safH5KCkbnbug ZZH//HiZnVr7nBedyBSTWzS3eDxlJFWsVJ72W+Q7P52yeRuyp5n0Itv56Uj9T0//B9AJs6MKZW5k c3RyZWFtCmVuZG9iago2NyAwIG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggMjM2 OD4+IHN0cmVhbQp4nOUc227ruPHdX6HnAuFyeBmSQFHAju193jZAP6DtLlD0FOj2/4EOKY5EyTZF nzBRtpvAcUxRw7nfSAsGSb8vQH+8UcPfvh3+c4gjNlhh45BQdvj1H4e//mH4N10SzqYb+J3mwxB/ //zjMP7z6y+HH37Uwy//TWBcMAOA0hHEz4ef6LcZvDWDd0I6BKc21gEc0AThpPR0yQmwXgdfrklX 7QBaC6eVUWow6OLKaLUYBx7iAPFWBcYbRkIyErJAwgahnQ8SE9ECHHi6H4yQVjoPEwNu4CtCyisi sgreKWGdURAS73ipBvBOB4HW6Cp0gwK8tiQrOWiLQjltTBN0KwUEMNAOHoMw2Mgbh5IEJk2dNwvw DoVEJIRawDsQCp31zeAV0etAhnvMmdTMmgg/a5gGElxS4YcahsmMCBN0gzDGAV1AjxGX28EZr9Pb 4YerG0ANbz8fgM14Vg41Ifj2jWzkxYsAKuH+9vfhj1Kao5QW6F3S60yvC73og7XjmL7GP+OYjtc8 vU5kYpjHr+N9+jVfZzg0TgjIY3x3fxre/nm4vN1lvxRWE6a6I/mgSR+tBuL8Fv1HM+M2uwgAEQwB 0CxABULqKPOKi4guJ6Sb+lGiAggvDYZNQoCEKEk4QAL1/h5R3+X3NK3j05xdxJPU7prVKmR1M+O7 NaMKRtVL49dCDUk9/TGrqynuU8V8M6p/hBvnpvuOxTrn/NmN6xx1RY2XAaKX9FFE02jgk84mmMxX Mp7vdQ6Jm9fRQSToYTbyOO6ZW3EM6qtGTbJptc1lq/4CKBpI66Mn3oXRrIyXzIpzVqTTWqlqNESn FxxiRxIowkeuaL/t8qJLt6W+FC5+w9YMZPLOddtLcxttL8Gp2N5mCAEPArRxbheNSKjKzBpZfJ6M pYY6+Xd02veMGc9pgi4CeCKB7dpkMq7jOI+dzqXNz54z3X/KWsBG4ZYalOZeZy2I75OXPhba58bx E11/Vct4dps6SyofElH9WDhne1sslK8jS2L4haj4WaEltrEkzoVXmehOIfyY73dLNqV58pZNm8ah QMX/dk+u6iXPV8ss6rFsrsNaImgJfbKAa/Zvl25Rs5qeKGOERq38F8hOPi9rqxsGVWhBKv0bziMU WmE0VSr75RGv35cz1LLK5OrW7tTc2lF0kfEVYQPnHMU6y+t1O9MaBWmdcdt1lqzoZlq9JjBnRXDe 9qym2mNVc5huqduVR2HBfoW6/Ra34Oj2WDX3w01uly01U9XSUcoPPf3vezECT1mz9D2LkPeipLyg JUPPlGAbpXUESSbC/ka2+60UjTiS3alxqgFak99V5K12Mqcu4UjH7rsxsE9E5XAUw83UmdRzwjF5 vZxocHGTrrGosygjGyYYOSPX52XyMqVx5lbcST3c+JrCIKvUJbNVFqrCKoQ19qIUyuuesUMrEbxX DdnlU9w0BQdPReq3CvIL7jYkBZOU4jw1B3tT5ZqTVGZIDfuw7TIL2nJz4E5+ZMuGwUqZmJXM7slf nQsFDGMmsmbrPbFNGTIU4V9uuWYPQqe0cA82gmsnY2o9yaL8ujxgRxYD2+M07zj7kTIV5etJ+/Qc Hkp443ivdPO+ndUEFXcMApp9BJUYw8Jwt46zrAUsZ86sx6vtJo6bC10v4vE999HmkCvsM1JRSWVt 15Kq3V1UYsQzMa1qygYIH6f6dp+/25RbHH8tq1pfm+AUGU0yY2bPOW94mnmdVC2GmheusVNpKoTy 8YRPZ2fsMxpup7D2rAJCuBbFNI4txnuF+RSIzktNm67XMpiVWEoPyv3Lx9raUG8aY4T1zves6TDt wsQadtMwXRFQuBvOZXNhoDfdqKIvku7ZyAfevQ9prBUx4d9lJ2QVTVs2lcrdk23i0FJ9aOQ++2Z3 u5gfLO+6STikmhG6dtCfqLeqYdQjlYJSdT0L8bnNVROcUM517Q8/2VzFj3cmi1ptlV3cy3x5zhhi K+wj6oQHND3rrvZW5/cmUpZzV+7l8PwinHVJwix4qqf0Tp3gp+upQks4xZ6SqAep+yI9r7jJdE9V k2tsVJ6qHWV7VjvPNdRrxjXls0Ue++F7XlWtIwdkVOjaGH9ir7ziz7a14IEmlaT7QgNPIzw+pzjB Y79XanlRWJa5s9/aNDJBoLOuIXW4sw3M9pMKEsnY1oRHy4V0aHYXXV/psuXiITN7Ium4ZKpfu5SC 2T4XC5M7Kt3MZV7zpotAb1bLhRLNbqhX62W731YTFkphpe26u/JE+GtsAT7y4evI31ShWQeCoIWe Ie2TjmFZD5SYqa67L7+zY1g2KJGo+l0ew4rj/vgYTvJwrJFbzWGjxUjrJtWZioShKhTIN5grSiWQ lP4L7t+jikfVTdfNhmeOhrU2e77CwXPUJn9T5/+y5YPGUBkp+/bj39fy2fvgGlorKPXEnpV1p7YP ohXeY9de+Ce3fdBRfqhiUr9b28d8vIL1a/082sAI4okdQ3a23D2pCsgjlUGq60bAk5n1avvqnrAm prGzKxKJRbdktYk5dVjYeXJ4Z6GVjaji+3bLLa0a+4KjwoRC4ZeoIpk9C13l/VoOt0UlyDt21S6H k17I6DN+G7219S5cpzMKN3CbXMeGWU/f221qwF5qQgIvbAKwix5+ehNzu3217BjWWEfOFcB23Vx5 0oT3bGKWX2b//ELzQXBut7D2PuaHH3pvLjSrlC0OvT/gbzxVY+Pp1nedD148aGA/x96lSznbe88z fbf+bEMFpuc8tHy//CbEZE+XsK9VcYtHOOzjsS4NNsrnSR9F0ByFJ9Jz6ppe5TMRTgWsIjiUyrI+ p7O519CcUKfV1+pTnsZh1WCq9ca+w+IBGfsk3IwuWwc7y5LprP0ceS8jG1ofZHGTmRYN2dsHW9SF pQIKHx8g0VTvlcX++GQc5318PsP4eBySwMPHM7gAgrzqmESVDE8PVsH445YnnrSmatpbJGm54IFi acYM9HjagYrUbPA2oeUFWLJ9qoclXzit8W19ko81I54+4vnihE4/ccq38iN5o38d/nJAwERCSNfn T/nyix9GCuNYvD4CgGI0T6MwlyCrxbR5NE67991sgOKBHrdYvxCtIaCkUmqBfpBAYVVrXFGxmD8P L6dHqoxEJ60zS6qm0TxN+XEIF9Pm0TwtgnfRDhbT5tGR+J8O/wMnQPACCmVuZHN0cmVhbQplbmRv YmoKNjkgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDMyODc+PiBzdHJlYW0K eJztHdmO47jx3V/h5wDNZfEmEATw0d7n3TSQD8geQJAJkM3/A1uUKFtyu0SWRNvd6ZlBj6dFkawq 1k2yDFuJf18A/wlGbf/5bfPfTXpioxU2PRLKbv/4dfOPv2z/g03C267D8Invwzb9/fnHbf+fP37f /PCj3v7+v24YH80WQOk0xG+bn/Bv9fAWe8ogwCptTGEicFtnovBSBmwKIlrt/XnS9+NqLRx4CKGI wPthLT2s8UIGHUMJXOawTgprQlCNofVGSNDOtx01eGGCNG1HVVKKaKyGtqOCEQYkMk/TUZUXAf/b dEwDQjdnLBQRoY1lLZVHgUwsPhZobE3jpVGN80mirRKul1tStl2nPIRyyIDCGA/Y4IJLILx/eAFn /7b54eS3oLZvv21gUF7KCR2lw5mVkFb6AHr79g1hf0EigAKJaujtl+1fpTRH/JH4A/lz+D1KqV/T //+2ffvX5vXtJsFQENM8uiHoGokXbNShCPruhCCeepD1IaOAv4cdfpqMxql/PjzbH3vUzOvleUKz 67/vP/Ux9/f5E8ewJr97yu/mz27cgD+5rZvT98/32H5ASQ1hhoQBhPSoe1VDEhonIGiLhCqRUB56 kgCSAtWqlEgaqfHH1ZEkvQsH2eGdxpC73N9PydS9J9+TKT0PO3oc8COOPHMiwThGix7XItYZiw5C NWKg0DNV8DMLFgFNpVYBGi4YaAGom6BCXnfmAtsa52EMj0sA6O7PBCyZdKbywRmXoYkiShwBhbOH BnpKeaHTa9Zhl6xWNNVgqIZXokFSQ8kD0RB2VA8KXHIOK7ngGnYPenKghqIQpKm759JqweQkM5y4 tCKh0hQRNcUMJOZkD31kU5fEnOxBkcSOe1ipb3NJkPE2HuOGCcONG/hD0T2OzaCaMEPV5Aaohh3V cJzYEErxaZf8J1TyRQX4XURbiCgJFdVATk5SV1MIktqXBjc2m4MPLm1eKKjopV2qnG47RtMkQp1/ oXrpspYSr4bml9LqNCOTDKDuvziB6kG7Q8/0k2gEyYWilBct21QP2pKTk5OsT+JBrTmtP/gizHY8 aAtQJThV/sVk8omJP1E9KEs+oe6kgRyKmpzsYakeJIKW70aQUO2JhkANtWByzybiNHKm1LEBKbRL qcqSWiYlkeZgUqgDW65IoSbn4JvGhoqchIptwkjMaTPJD2WqApN1jmDLheIz3FxyZ7pj0caHiSTs JLYk7O2c2EeIFz0Uya9UDMTHnPR6aB+GDy7VwHf4SSLSQ5F8RfZgg/sJ0i1jH4bvLdA9SB+GnVWR VCqEdAokZeJ37ByJVRQebH+Pdjzm9oimu7VtVCrtWlO8RPMr6crwDTrJr6T+IPHgB0fU5HtSvB4R spGTkyQhY2v2xgHfaaC5hJ9DYVvLBXzV0K8dk2SiUqn4hEzwanaCl9SDdIQZiIYFepCMzEgLQOlB EtwFuXsqkKQbKHDpOeqS4TkstBVhIcl2ZKKJ7apYsgfpOrLDKb6z2dAX46vMBVCx14N20vg+ZSGv TrgR49NZbbyIz5l8Z1B6R+YL2u1a8WO8hns3JIJhlpXGR/IWn+BYyHRHarGOdqKNqRmUEjGd7Slr 4x21yMCWTDq/RG0U7FQVNt6K3LGEDZBc8+5Y0M2ZYsBFVcrqcnBBcnS7nUL+DlKWgRKaYL0IwYIP K6x1wWYVYUD5guicKYNAZo5IilLp4krYlNKiTnxoVQh1MxkrAsQK1r7bQigUL9AgKxbiU5rCEv7a gJABgrr7YmunhXTWlLXLVzkwUqKYMVo4D3EFby7gtF0dbAEjHgBV1qFfZTU5XhwJFf/03AN20Esm usQrTptk7Aysjo5vO6uTmx6PdlYXaH9yw4D0qthLVopFi0uWLoJIH1donjpnLGoR03BlZ4P2d17r XK50uQV82rdcPlWsmwoVd5RgQ5njgYxAHBXKVsLgnVCg1zg2C7LfbGGgt7zq+Edp/yhn1anOWS1b PGBvWpMbsTkOLfpWUgljQ6iQ18I2RHEm5VGNdpcwmhOBYh7yBoUMdTB7I4yMroJHCqJQnCnGfCi6 OBN7D3jBico6xWiMqzzTtKdgO9QFG2h+hTZGluO9xQeLSyBYiT61tbYc75CbgpkKxZlQUpyOUBHc ruQ6a0E4pXyFqueH0YUtxSJsUaakkqyQCHb6nHbu+fugS/coCY90fEv40R4pHSvw99jbRRehjpfR yCIrxxoDw79XV5kGtdUu6fczFtWTfz9j0YJLvp+xSA0f/4xFLByNK3pKKgoXgqkwm+xTAAs2Dshz A3xTU4k/OtLoPFWYAct3i1fmRqyRCSZb4dgtPb1cBMErYVP1iRW3w8gAhBLaBVpp5U5dShwqULHM BQsTh5eyKw930hompskGMitel7e1SP1opa3IKtxrey444aSzqhyutbz4wfcWChawnDD0Ar1ejMSL eEoqL/hxjpvX9Vi5cYnkqkz8kTc1+QpN14X+ygVhvK1IAwHJUeSNIb5PRd4Qr0xqKRDeS33/Ayja WNTMuiaZyz+fU7gGWoQtmMrU3qc2uQaXQIKrOA7AFuxa18+71LUmW/t/6fpaYxLeZsU2FX0liX9x jYxR+aEo/6QXReNKG5H9x1BxoK28uVgqsfcVPUhGFmRc4e1cAFBZK6w1Lg5FANHUyL5aHlmjSzkp gkx9GtYCjJDHLNUWA5U2qvr6aLdR8oi70Ze6hiZa/IA4U3ZMhRTO6ZWRiHrHQPOoHFORuqs6f+dC cqnkm8lt4/qBp/x8N/SdE4+oBWgZ1mXBF5eBs1r2dQf9Bc+j7svX2aGMY0zLKN/XQkzPcmG/cem7 NEZqG4/dvRtHbUPZvNjT8eb4M7UWx2twrtMYc98Bbujn6MtPJpxm1kGnPS8XY8v6iSvXIdFkXFPy M6xLbQ3MhMflpPqt9QA0S6hAWpYEZazHTbkfnkGW7WNPx1syP4+bMsIbJ5tq5+pKrQk1TqnSroLr wEIyoZYChYyq6cfYHUfP/EUMd1kMz2OPxDPBEeNaWObIrNGoBN1SonlUXlMg9prZ5jFNZ8SVUutu oiytn3scbKDsUTzrp+uat5Xoz6NqcQk6sNqhapVA9BiiM0i5Pl0gH0t/LbZnzfpawto5EWIw65zo KdbOiujR+yzXuT1mo5DQtXAxEINh1aeLdHL5vZ4E6DMabW1L/89HkQrN+bqVv1Z6CcVbSo/H69N3 Oxs8mmcg8aASEqkHxXkfeOaWIHhkGeNalizmcWGMH4ETYxAW2pbaZqmgwWo+XA0ZGXvwnqZ8B3f+ 7phCMn8+tHTReKx+dgByYfEB7M5T360nBaV9zpFDnmtguMfAM7ckWgpQLrY0AJ9jSYYvJ+jG23+k JTESg+Z0VvXLLckhvzf4uqePtCwWMHbW0DJ2Zi6LvDf6DMV1d1jmlsIBhvpSfa2lIBXWU5fCp92C +MVWYk5PPXU1QroplO47PtOJfpg7GbXA2HVlqZAV2A4x4jhPc/7OoSG3q+X5i3VuKtg0hpPnL90Z 88zE9rHmmaFauocSorItww1eWivGKSp3TW3ZdCFCo0w8L4u3H2mKW1nuUajdDm1lRHRrjxiukY39 xVoN2A18Pfbl5rHQVnQzPc+8VKIxqHc7+qa28zdY5fx++sqx/f7yc5aFZnPMkdI4gaM13Yq7HykH menQcz350jeQrSXf+3HnSGad6L8+8InWtI0cOS+60Z+WYjqOdF3SX3mXv/Nps/Wax8B7DIrX3mtb xb67bKlOWSUPv8caoxuCgOib7iXx8uwl8FcpsNVjz5EuBuG10y1DjPakYymsRePNkMjJiEGYfuJG Vg1a8yhAFJ02eXbOiw+5lkKb2HT/hsmfM6CvEutV486RzEgRQnBP1IYF1FjizB5rjjQWhFG26WbQ AlFeLAwOMOwwK8+lrk1ArHU2XLrkJqHppsiCEPkZcaMLWqTZnne+p0P9UWd8XNTCdgB9mONMOXt2 7euzUfPSCECV2NLn5zHxlzgP58GIrrbk09JLmTqDJT+Y/hBpiL2Z6j6H3w/9z3VicR5DZTF20bpl 6LUggzZov5xH3b/OZAMm786hpi3GFmuLTTfXds1UgHEi7e0/8bjvLfyaHfn11okgXdPcbt3thZto sW8wTNHrvzDeh5DubvTfGo84klc3fAThh/3oMUp2m1RS+uOv7iRp5MxUPUAYHwN4HTOGuKbK+/F1 yh6s9JX0AOlk0nCXBg7X8NZ+wb3NX9oWEpwvPt88Sq98G//q1fbfm79vHLgOhdi1X37LzS9h22OY nqX2fgAYPc2vpbpf6Y+bvHZ5ml67dYHEmstVn/dAv4CQ3qgu3JiA76IUsXPfp1hMO1yeT99HeF+E kd6ixzrFa/Q4v6hC3xEm712e5tfSBMrGq+EuT3v8f9r8CcySY5IKZW5kc3RyZWFtCmVuZG9iago3 MSAwIG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggMzI3Mz4+IHN0cmVhbQp4nOVd 2W4juRV911fUcwBzuC9AEECyrHmexEA+IJMZIEgHyOT/gVwWa5V1quqWaMmNbkNtmevdeDeyWKqR 9POi6L9odfOPb4f/HnKJS064XCS0a/745+Hvf2r+Q1UiuLZD/5vaqyb//PXnpnz54/fDTz+b5vf/ tcOEZBultMlD/Hb4hX42D+9s47wWUqrkVuZRvvE2iSBlpKookjMhDHN+HDYGYb2Pq9B/HNTBQb2U Ihnlbd1RlRUmeVsZVh1E9EZXHtUqQWMqU3dUZ0VIOoW6o/pIkheo7R2j5nEzdK7xUQsbtPeNjb7R WnitJIk+kOyUpd6TFAad+6yCYFyjglAumhQ/Th6kE9Ea+pYnt15EF6zWi5MHpYRMuc+uyW8OqY0o WNcb0jhhjJYbJAqRaLuyCc4I65RiCdqtKamWQPfCmSS9IYaEPK+NxCylY8IQKOrkjYyDRMgeAjmB gMRWUCOXqJSYraJxWclaIZ0MefUhmdcmkWgkE5eHD1I4aVIupQ6u9NgyfFDdGlgc3htBZNFuZfiB kEXGOyJqktpCVUhE3xolQXCERlgbFFV4IinB8rFwhOv0fvjpEhqlm/ffDqo3ijopEaX1qdEDgO/f SAheSBeoIu3vvzZ/JiOlJEkE/T7Sr/iX5v1fh7f3ewUiKhFi26ceSnIVlbOV0ib6vNGH0IqEkj3T hzC0mj62q7uUcvPafc/lx77vSIIPaCVNdsKroCuipYwgP8GoLCQr+DlD8BGrbBjxPFPZkXBwssM1 ZTZ2OMkOP9WVnTqce9xjGSPXTcdu26ZJne3ap0LHm+MfS9npvMyDvl3b5tKVn0vbPId5K2XHywIf lNTFDVBfhxGZKBn4llCn74MxU3hb4p+7/qH7fSlzZDzObokhRDwrtbH2OQy5ufL7MtWt7nMh5K1V v4wc+QfJKit9TQXthSnmZAtuWxkVO3wGIZIZN6rraWDLGMfzpCyMK/HYrcRh7MkKzXCkdC8sS3Q2 luxwdOp5dN67QG7J2zKu1gmpXIarHq6jW7IJ107TZhwHJXWF01b8l3F15MU662OsiKvT5GFsVQ2t UenF8TKCPlUBW9Ed9OvbGtrej5FKJay9Eyl4R37VJrRfC7pOjWait6+5PA4+D0/it5NgGhdUIkFI QgUVwzbOXyu+jOItxccT9nnb0WsGKmiIe9YgHkYNnb3vIDeX5RmMJPObtFqfoVfin0OXJVGIFHH6 ULIhT1kNKX2FFZECReBB1gyMWKqwt+APV4daRqGtl+lpRqCPLj4dUxUJLFMzSORJ+uCJaDnGXm/l 02J7JyVuK8GxTz9XL2+PgWeJIzqJnI2rGS5+HywxXaqjHe/0lVgyzen9QCxZcRWGHOYaBrYP9c8T Bp9X3AQlhYwp2s2W4vli4iTFb7FqXoEpJvKz0Wco0k+HZYkVPu8TOve8eOYZrIAK9KmsmO5Y/CCs WFGcw+7MpyhOdnz1XPGIBKaqu03BDzIe5m4nLVwG6WmZtNRHjI/IpmVZlDHEmnEUM3F4krNtmw/J 9UlQXQ9tZUTdbClLolucO23R49av6amTtIyDtkL5uvsITLW9EY1eTbUpoY7VLQu1HPYUTvT36TR+ hpVQbY4lUhorAgV0NfMon0fKfsW06PlCPvp6N/k+jrtEMuuEzpt0z7QKddaRcyKEYGoGBbxU0nmi 6bL26g4XtM5i/pg1DLwX+cjdExMSx85OXTqF3P/dobQMfshntZytmczl5fXXwL9Lgd099hLpYqCA Vrua3kp90rEU1q7xlkiUgkg6+ZoeDn+r4K4FYmUU1scn7v31ypQPukpCylD1aA1TQBdAv2td3zXu Esk0+c+WAsQvSzLWemaPtUQam1OOuup+1461vHsxOFlORD81kr7X27BeUdwhq56r2REhPyNsJISE T0HX9FR4R4pa1B91rMhGLbSxVXdV7jxB1aWBrp19PmqJ1k2oe8KQJ8Q/xCE8J41oj1w+LbvUUae3 5K+2nF2NqZip9nf/92v5zPT8aQ1DZUS0ydd0cHYk0Hrtd+lQfVtIB8zaLqGmrTDRV038VtB2tVSA M5YCA1c108s8ZHwLv2oHjZ11FDXYWFPFbXtq4iZa7Ccn5ujd8cTkFCOfWWTaf1eIqSh0iN76DrEk kizGr3+ypQWG4u3czHnq0m0BHUGFNNweNqEKyZ1DvoKKCMENn48HHsqiiguqeKsGrtMPwIMNLobq XE+u0BwQKoPkCs5hEAdnc5CncFvao0wjSRSogD1mtJoNZUHFDKpZxSuomK2oWY/AncOiCoMmn8nV tjlO7DkQEWeL8wZU/RY40ro27z4a7dKq9sVqgC+om+Rxky7FaoANLlYccO16NlQOqRpkXqDW4hMR ay2IOVSAbLJDqLA1rGepdhsL4NdNrm3Y5trosracQ4vrmXKBzRwkG4SKb6756xRN7hAzd5hSuFTY buBM2W9jLV+MIRGhPwJ5zoZqh5Qg6n7Wkp+6NtjGIl8BVmADr1EF9JJW7DhjcoN6WOQlzVbtrAJ5 ew7iASdH3h6eHBExpm2ujZLCeOLeqvZVcJV8TdcGhYkQKgONBd+DqRde8QMZbMLYBgnGRHytBfkB DdIOV1Mv+COzG58qOSR8CNnZGUzQWG3ZYTwqZk4QuHCOHcLHTg3t8OoQrbD6gEoNzgGHgpgj/4nv vO0QH7b7vS33NXVIsC1FPgH2O6AXAXugybF7AeeAFh7mjOolk3AP6F7Mn8FGqtJEJXI6XK2qTLxK 2KoGD8VeJRWzt5+VeNwWlyDl5KDdqbh2K8Y+yFjwPa4dVgQab779hGSHPfiO1VISZnYhZSWnp54L 8xBRYmsJCJWCQQjiJtyMk+x83kM2ytgZkh2xRj1+GP4GE1uudoR4fNd42mO2wQRzERFVsC08ToSg hA7ODSGnBztvbE8Fe1wQKoj5Rt8mGBG0UuaOcLB6yr2KswBXyd7A+1OXT0XlxI9FK6a6dzgkqAf2 NSF1kU2IbK2FK+ySQzK9y7qSQ8LnJpQx/vEOvsQ8YHU9xFlg55/4W0/YWYCRHFpEOFpkO+878PiO Fc62bSGY1oD7RcjCw9QJTujADAmcHDpWqGIHVOj8Ct/p2XGeaCWhw+HgyobY6g6Tzpd+er2ux5E4 Qtu041gYWlYV95l37FWxU8f4jCA7N85PP+G4i6+b4GYcex9px6GDFaMOPJjpezMqeTBsguIkzJc5 TrCJmw/ZjK0XOEBwcQ+EB/bd2Vs5eK2wwwA+z3c4QxUzJ5vyObOUCjRz7CMkFQ/aRmSu8eSoQjnU A87hQcUrmuOEaHVCrs3rEBNW2keqmSCB7gU7jVgxoV3x8MxTt97Hc0hrb4va/ezPTVEaIVkTpTOi 2xmdN4WUPiKzrNhs5jtyR7Y3rKAZYG+zfG8bc/weFTdKKxpAmO7gO1bsRB/m4NQMbMsfwAiXH3ez dwj44fWPdu4DKdnxwZhVe80/4A29Wpj7g/aaf1IE9eDnyfG52YrRMtwhYCvZHadR+Ed6oEMil5yF 6Usg6zoLG0J0+DwF+5EG/slkfHTomUc9dxi+BxwdwfaNT3Z+XM3eMnjIXmu90zQ1H+BBTgJOnMNM NDzDwDbgeA5kjvFQcIcDOSL4LAY7DQD9DeyhPGIvAZ4QmecHoL+hgvAxGreuryueXP/6PvY2dQa1 Lz+fC+d4hE2AUSus4N+oAP2/q5fFVnqhdK17XWweOgXvWW/AlUbKNL19vOJbNNu2FzlcnpJ/t+Pm e5m6unbOUOCIHTzKy+Fq8etLV3J9vsgvN73NkLtfsv2wi2hUppcpuGa8rmklDaZVfwdP+727E6+/ tKYfq79zuL39r7sLq38Nbdtvcjex6+7fGuZ5G+cZytKEH7Mb6681+NVlUZZCxZYOq+8qmNwoNMOs pxDzHv12jGMZt5UsVaRL9u+U7SiYV8P0Jkxn17F3+KzTx7esP0ymbsrFHvnqL0M6Tb6/XVHibT+X BgpPuFMuRVyRJZ1EjPlFyFu0XM/rKZ+H9zSYLTyerLYeW9m9o/hUMGqh7m/EkmUsuEJxkFtkxjjy fereHrouM9M131Km59fptv6d8uya92vUnO4JlAuzyBvMqJdbsxw0nLYJSY1X4E9Rdvmt9D7/C/N7 U43J71IiE04WOkUVTOooQC6mzncrjk84l42wKJQjuQlxTOGYa3g3X/DVPW0aM5wvofNpc5Nv0z99 KN9V8+/D3w5e+RaT1DYb/5q3eolNwTdX5WZ95VjaNdOxK5o1G0u7Zj70E02bjaW52a20TH7tfe/H dJiOILyI5L2yjtbqt0kxEU8aE50uCNsobjQfi+fNiXdCp0TsVC1K5PQUWCfFpZ3JwkJenpo1G0tL q2SF8UHFOGs1lhbEfzn8H/jiE0QKZW5kc3RyZWFtCmVuZG9iago3MyAwIG9iago8PC9GaWx0ZXIg L0ZsYXRlRGVjb2RlCi9MZW5ndGggNDYyMj4+IHN0cmVhbQp4nO0dy44jt/E+X6FzgKX5fgALA6OR xqccnCyQs+HYBgLbiB0HyOenyGar2ZJKZLWoHs1YXqxnp5ssFquK9WKxKTYc/nwS8D+v5eb7X55+ e4pPTDDMxEdMms3vPzz94y+bX+EVcyZ1GH9Ce7GJf/72zWb4x+8/PX31jdr89J8ExgW9EUKqCOLH p2/hz29PRsfew/+1txspmZWCQ8vz45gQcbD1wawyG+GYMF4Ffzqi80wM48RRtWXeGG3DxVG9Ysql PosGPwcSCKu9l170Aym4Y5Y7LeVyGjUy3QA/pWFOastDfTQdmOMc5nqBL0J5ZoIiSYPQinkd+1wp FMIKFmAqyg9S4ZnkSuDTH0a3jkUcoVM/HrrAlILBO4IMgmkdWqXCs2CUc2aZVAA9WIBJOIpQnBty 4IsEIRMqrpJRKGA2Wlxki1ScqeUrqxgcxMAQtIQ0ii0VxbPwrGHewnw7gnSOBW/VQvEiykKwTHCj a7Ig7BlhUMg09EZJwYyD5XmNiJ1CVYZxZQCXrlCTCHWFmDSVb5EzClQH5ghIQNLldajeMx+8bhBg AlTNJVMWlMJFqFInuYpGaoALehV0grwAV4JnUNXmAJfTwGqRlMflVXAMtk4FY1i0E5dXAR2s9cz5 2jKgE8FLZpJB7QsWNAyoNHVZwMhEMBykserZ0MFKxWSDFznXhxW1DmC1S3Rq0OkHqEpVobroNThJ MeQNUKPhsFpTtNcJ1AgX3kIwIHnWWtKAbROgwAO3CrdIkVvWt6g5BRMXYBEMd5GyxciKmxSIFGOL ZForw6soVIaEgkRQGCYfra+U1qbJC2VB/JJVxGcPggIctXUTd372pwCNZ1wIV/csWwGC9jEQFtVF uRUguNPcm4bArRWgDxCY1MW3ERxIOBNW824sgSgVlg3wpBtAkGsZ3eluAJVgrqqzKQBhISggYt0f bAVoJFhsZbqJtbOKDarherVTrPqkdqoLf9Q7hMV/Tu+cB0pQAO1ACUqgHShBEbQDbVYGzSApCqEd KEEptAMlKIZ2oATl0A6UoCDagRKURDtQgqLAnIPe/gkfUeAFCh5imsE1B3fVawYcg7hJ6JtormMl cx4j8MMtOODxKax14USMkU8xalM5NxjiWAGdHULaxP9E1wABhdUxem4c4kR3nB1CWyYif/WSWZws pauGuHYbgIE0uU0MUwS8s9AbkDl9OCG2/fL01StYWLn58uOT2OQ9DyED09ApuI08oPjlF1hnn4AF ebPgyz83nzmIIYeYBH4+w0/FeXjlXGv4C7/q+G9475+HZ9sd/Azwdz89V/Hfz9NzE/v53H+X+0Jb 9ZLb6txWTnDT769Tn1l7PuDlM37CDs/SuxHXNP7Xmy//etp/QUgCngIsCB1klSIvETPAaAsYxEG9 HyF33XTpxGpe5zCsIq0ypfYDFdXrQDV1zLHMidhGbzM3oJ0RQ381cinDmT0LBUdKKSraxjbp368Z Jz7hEzmu88/UxmccR/juModBYbOBDjWK6Dz7NPJuwsJkbJN8jVQQWb52uX0p75kqUZZNlt1xFpNc Zjh5HSQYL9PzuP6iTPMwSF18FtfjQf7VJH3VXbfVZOoS340u+L0nUPalkE2d34tCKxzLZx4rySk/ Q+UFnPIVLaJsVKxR9zevukLCR52aRo6jumJFvkyz5LmfGVehK/qEIyqWMnZYVZdlZr6tuprQlMoj MWeXp7StL5k05cOSqCufKBgTM7vuyvay0dqMG7S3ttEnv69ij4f329cWa9pht/phT9/Onh5p8hNs VrCZk76t6L6yHOG+7OU4y/15Kia1+TLJ1jFlx9U5qtNkd2UhP6rCnR2f7Ow+wxlhj/gmTVGTm8Cs M66u15q9iFDhaVkP0o2nCjp570JAsH+OkvmSNaEbJPHeIic/rneA+3zCNwhH0n+ziccaBx+0icte Om+1MZkAgQUuU1pkIMB5+3p1gUsv+wquGsi/q6uv7ubVF4wdF9+4wAomkswoMHW7vWRCl9f2rG85 SVaqbj0PvvA5i0i00mWkQrPKFa3oLOM25pm6RqdF2yhSo8iW1Cits/YUa3tZ686KudaTocL2h5JH hEV3LHdl3G2KiLO0QTU7dZY7Zz20ipzIwIZ4vimcqvmc2f4fZrW/QjZG724/US5RoICbbM+4SktZ bIxMZ9V86wWm+8kXPZtpGK1vnu11/upceS8sPmRCAvoMgkggA8D2iTYnD49oYxGbH7c8BmNvEVvP XxLasS4HmhkLXfILhbxQWA+9Jb/g2IuADf5KRndHHtxhL56RF0ZSsdLYPDTaA0MXHwOdh8Ze7Kno 4oNjtNKCDApDFxUGulzh/EBphfUwZQ8D8ejZCXoephcv2Aush8ZeKAyUERgoTh4c62HQHq/Yix11 HmpPHgNDN4vPaLExHRpLg8HJ86GqS1HR1qgOQleJv0eNojD9QLcJaA9cX6Mrka7n6Ksd1SgYSVAi ohbXY8LAsQl6TJ3hg5Ox6ilwKHVRtWxRt/LodEVvv6mWI6HPHl8jdOOK2mlUTNEXdJ7QnR2DmUry qlpAq4en9Q49rdJv0qjrorEXmMlH/Q2NuRV0FwzHSpJBuRXGQP2meeILd48EiwGxuIHK7OihLFDL 6KJGX9AXA6ZLO/ob6ATRHgvUMtoD8+bwwVGS0P0/7AWuAMlENKjPj5FkgdP2cskLKk+Dru4FrUCv BV4QKilYVEWXLVxtkCV+De+BrjbwYBb1N8gzR7V1R8eQHmLTlRkauaFExMPfcoIzLwg1+QF7gfkC 3pKdHXQMNB2DOW0zWjX1WJAL6k6rjl4Q6gugoo0JES52qGijPVCs6DkUsn7oGIOukRFBsUJBCdQF w2Yu0NgNTRK9ZQD8jCYGMZ7j9pPsYz4fApVLn7VY3TUiG+8Fjg55Yw2Pj1B0UT+AnCtdsHmHSgmK FT1TQXfY3nJF3U+OpqmHwXqgE2xbBjPXCEthoJ4DfbNoZlLbeqC+Bja4x3rgO4foC3Rw1P3atTk6 Np77i5+0uYd0D6oA8QACdUJQXYr6M/RsCF3mOyZ3O+7X0OdBrsLAEwVku0Mvz1iwG0ZH97oal7bY 8LDFXfs+19ruEe6IkLOr9FTMKr4A3VFHNRA5CYVTl65i/yThw23XOiqJ/fYBZySZaQfMF1CYI4Ln gVC/iVwshGKFD07fDSMXC/WfecfM0Qfx/HEJ7he7oejS9x/oUes7qwPrWJiyhr72+PGFo6+Dru3T CNR16RjxkLOrHVfVnYYpdCJ+dE1KdyvoSgAnCX1jrYmIM5+GXq9DdhLW8ILwMTCs8JwWOUOFDo6P 0b0miBwdv6ni6F+7i5ix8nPUi49LLTRjO2z2O6yOEw/sMPUv6IUjleM6QEimePAbZjiYf+a0kIlQ Jw+BUBcpZDyzUoZ4aq1CqWd6Ygkj4ZueRsJrruimlexG0+3hw3fo0WOFCkP8vAjqn5RCPTP46Ekh 1Bj3KwJZ4Ak8zwwlpmraDSXqA+JqoJ9738auNh/wRs7hGQmOFqHZdF5kk3aWKSEaNr0WF3dSKEXf qULzDvRwgMyNVWq1VyiwLr/Ocfmmj2UOm8G+2xKvB2FaWRHceNBdSMbd8CGthJwIuknfaB8PMVoI yy12iFHQPRRytVnPIuC33GVesMFE3jowqOLAXgRyveCHP9eJWs9QKSREVnt5/0731T6sdS87LHY5 rHWHffzBdhPsjvmjjidZcLvQr1ZgjZz3R4lG0HXoMUmkB5qoC0YvGp6Kv4dFlT4gHv9RcxhlcExo p1VtBeIkxBTsmx7YQJ1VNJ+Dmvptx2LQSiVNVVEKfahpu6wv+03/BTXS5JWwmC5d9Ayqy8jhy31K NmojBaaA7n0t1G/+O9Z1LXllXQ+O35TGtQXXL1sguG1NIK+ydFHzTXdc6GeXVshV4Meg6HEbCopc 5rcgZ0Y/rryCYkSLGvBFi4GimzaBlr9gWM0GLxPI9EOPAu2BvRBYhZrAxjg6XogqVymYk0LUv927 hkZBiY+KxAJZoSdS1/g+QL86F3zPraMPRs4dLa6lRvyK8urfvvvYDf7GGpH5AntMPoP74aP/npnX u7Tgl7OJ5UXWHzKbSN4lXJAsJmf66Pnzng4zeV+KftifnpKlGxI0f/6m2Qqcg2jat19tw4I4pYmD bSde0RMPmAca6EUP9MKKSpkEYfCAfSWE/ilZeh0IWkmJf9QEK8qkH03uyNrL5shLZpJ9eJijezBH qxTfdPRJ6ZWBqIpd4+RCv2PG+DHNjl/logtcxwOqaHEeqknpde8dP/aJZWN6nnskGzD8E6SV75Sf vjBoD9RUnFxScl65asUc0E9Xty/XqL7BJBsvcKTr8fs8CvW+wvvFpcaIHxIsk86pG5yBaMgdBTKJ +9cddIl4yN4DvW6Y/rWBBVs2a+wX3aWmoYfYHb/bQi+5WlDajx5cQ1+g4Rb9owLkI3v45yjpH5XC fIF7cI+qToKy+V6U6iG/xzblLQenb7qtgFXnAhXDA3Pa8vAmzsAaG57Pi753YKRiw41313zv4Phe PeHzxXqX7vvMF6Kme/Dy3Z/p9sD9QakiKOs4x3hpXz+UBUhHkMGGKuohAKnNJfRcvHPYyetu41uK 3rMZKBrvH269L3ygOD/cTHi4L3S8EzLeBbmbcyzBHm/oFgPcw93DmZMt9xyn/ls+3Q8Z+7sJ13iL 5nhX8exmzuI63fJG2Pg8Xombq7WKg+ZzisY9s+E7HzWKljepJsiytqTipY1W6+s+i3aNAISjqyR1 YGZjJc8zlqCnpGBcBW4Vfq2klYZZf+2nUObziMcVJUzE1a9zjVeyvh5UJ15CfUor7pgWId76XRsk Xugs4oqJUp3vE+Z2Gjz+FHlF7fIt6WP7eJ1neh+m/s98TnjFTby5syS9SLeZVqivorUyN+GAid+3 ibdCN999fXkhAUfjpbSyDjER+yUT67UgcF5cfDuorXSV9Ta3KX4X7ogRfjAciXE6v0cYMayAeI+q BDOfVoAA9zMM13/hSwBMDahyu/xujL//+7tfP3/+6vn7P/773c9ffvjfH5vPr/vX1wHDr7/ebHcv 501ojZrZcdr/9aVtkHmXz4O2TRo1303Msw0+3AicrYZ3F3SdNaCOhHDyoxFonS6fedMV0pFFJl9X rse2PhvBE5aR9aXVLGihua3StN1qj0i0y8R55KTWTIjhaMVl3J4v+YwWzL3R3i/3GR9yep2cJpFx +efukJt5yOlcTl1g3JsrwrE15PQ87kBXQCiy555x72gsb6uVwfdTxmgb7lDaRXBsCEequF3yHpzg zEX34aNJzF1p5SQO+xzm57A+/o1ik2RU59B+1M6vxbMwwLiotByEM1L5/O2KBxtvxMb9xBI9sk3G vaUiE3PEulEznMvu1NmqBHOH/dN7ZSuCO4R6CozR8qud71QkF9iiDp7Xn8EWGcm8UeYRyd40QvCT bCYltStSvCdy2qKkrGJDJu3Bthvbnu1ga1pZVeY/i8Rbyn9Wc29jAvRd5N8+ZyJdnVAbZ/1Iqt1U pisJbcOcDUaJKjGWBYCIFXOCmajIrsgfjOLzyHW9e/HBfbbbi8+7SEHdrfigLJI2OSoNG2VNjtT4 zLdEcyNrfWBWLt+XfqN4LmP/58kv1koXmIibwnpdA0WIAWsOziPv9/7zfiMrH7m/D5f7G1n7XvN/ I/5/mhzgGvaC7JH2tBeP3Ny7y82NrHvk5+44P8c3zvuYkEs1qzGfipbCuQDWgKuh6vrorL5mNv7n ZgywKnLeG7th2gUvnArjkX01nMubPhk/FLt7JowQwLLNodhdH+PLM6o+phQNjq7RA54+4jmgZ208 ovJL8VvIiOvNz09/f7Las6nV9Nu8FYxw6B9bhXQkQBRPh1ZgPNNRAT1rNT0dWoX56zA8P5PnFsox nwo3z03rk4BVZJQ0QO3ZBB0zWih9PMF5+2Kqs/bAKqaNt8b7OZrF48NkUz95PNn8NE/WMu+0dfNW 01Nk6lJqFj1McX7qzHDPnQxiPnPDdBAB/NKjmZfNi4nPmsPQwngTlNPziReP88Q589JIO5/3+HDk 8fDrMavHp8i0rQhT8W+e9ieXD6AYmAhoM6t4JGbxWMLicqAWBrBR0MqG8fd5C+v4rEX8fd7ik4cG UptgldFDiwMtD49zQxlTR065WbPDw7ERgD/T6vB0oMe3T/8Hr2exggplbmRzdHJlYW0KZW5kb2Jq Cjc1IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAzNzMxPj4gc3RyZWFtCnic 7V1LjyO3Eb7Pr9A5wHL5fgCLBWZGI59ySDxAzoZjGwhsI3YcID8/xRbZ6m6J6qJULbc03MGsRv0o kv0V68Xqothw+Pkk4D+v5eb7X55+e4pHTDDMxENMms3vPzz94y+bX+EUc6a7IX/C9WITf/7+zWb/ x+8/PX3+Rm1++k9HxgW9EUKqSOLHp7/Bz29POgBloyMJaczGSce4D14XmjF6Y+cbUtJthGHccOdF 39wRJceZUYFbRUXQC8adFU5SEQyCWaGkF1QEBZdMGKm0JqMoJLNBaG7JKErFpPRG0FFUijlrLHAv FUWtmeLaek9GESaB18rRddEapjz3JpBRdIYF4YIjI+gt08ZxsgkogmUhWE42ZMkdyAhFNqGl8CAi uCKb0DBRGIxXkfGhVIEJ7ekEhAQRb70xZIwtLQf5IC2ZeJCgCEjFNghskA5wDRlBUAReOU/G1wr0 AKGsUaAESHWAAh2gjRJkkkGBCgiBSzqCoAGMdIpsnigD11iryUSDAgVgudFk4lo5C6JBGjK2ViD/ rQuWjq2DYyBi6Rhbg/x3xtEZYBoUgAw6kMkaDQrAK0mnQzUoAOUEnQ7VoACC4HTmnAYFoDW4CmQE QQGAz0GnRDUoAFIrGxgGhAOd/WpA/huwlMj42gjFhLJ0OhQeH8gGQ6dDjdIgG8CyISOoo9sqAh0o oAGkD3Ra1IAG8NLTaVEDGgBAFmSywYAGCFzTdRAUgNaCTolaUADBczolakEBRKYhG7KVAa4Bw4GM ICgAEwitQ2s4I41iWFAAwIV0zjcQYzLGncgIggJwmtARtaAASGMiDjSAl1qSCWwHGkBZocgY24EG iKFAMsYGY51RRlgcKIAQ40pkBEEBmKhFyQhau7/mQoKRpOImhn1zjFbEL052307HaBUP8QMVp5Wz o0jUamK1aKI18Vo00ZqYLZpoVdwWT7UmdounWhO/xVOtieHiqdbEcfFUK2K5eKI18Vw81YqYLp5o RVwXT7QitosmWhHfxdOsiPHiiVbEefFEK2K9eKIV8V480YqYL55oRdwXT7Qi9osnWhH/RRPFx4Dx JCviwHiiFbFgPNGKeDCeaEVMGE+0Ii6MJ1oRG8YTrYgP44lWxIjxRCvixGiiNbFiPNGKeDGeaEXM GE+0Im6MJ1oRO8YTrYgf44lWxJDxRCviyHii+FgymmZNPBlPtCKmjCdaEVfGE62ILeOJVsSX8UQr Ysx4ohVxZiAK6twH42dogmMSw6RIjsLR9KCfqTk/QD+5QAWB0ERBNTOriaMdVoB6ds7REpWWOWrO twrUs1GBVJpYDeo5SFpP1xrPFJj7pNLEWlDPyFUWPFEXmKYW+9aDetboSYoN9YF6jqFpUqJCMI5c dsETlaCeDXFExilQz8HRurpOS2aVdqTM7wzoZ+QyDJ6oVSxakZcKlGtC1sdRVp4b54PGo1kSNZOM BED1dWsAaiP0hUHXk42AXI3x7q4NEaVMF0/EtnEUgqVv48gvPdmEBp3jlQE4OUDADDAiyDVsE1M3 bR4OsG3VfmkQ2caR1zb/pKRhMHht0eM48reWGMfU/ZofRxCgu2KvsE1MnbHZJiRMutiCQDcxdc3m R6E8yOBIGd3G1KmaZVwjGVCV6Kkx9bBONuANc7YzcOMgeuiRTRz5RvMsVTuKI09pFovgWbBdPBnb xNRvWqCJic2/gEQ/cgEWaOPII5ifGHBHN3BsC1P3YL4F0GTCdgPHtjH1FubxrpWDR77D/DC06VZB FL6NqSsx34bVYCh3Sh/bxtSzQMhzx6BTeLV05GcsMIwjY35+blSbCUe2Pb2xc2TpL/Gopob/Em1M /YD5NpzYZ16gm5h6BddNwNjKpS8JMiFBfwNtIzZRUvnYk+ODh169vD99/vbf3/365cvn5+//+O93 P7//8L8/Nl92b7sd58/86+br183L9vXp8w4eh9y8//gkula7VyZl3/X3X8BB+QSaSsjOk3n/5+YL 51x93bz/6+ntr6+4Rv6MW+Cb1nAAroEPrgP87vbH4qeJB1U6H4+9wa8FIfUMx17hb5c+t/Dr99c+ J+rvp7PQBmk9Da6F4NLqAEu81sgBTPwK+EYJVA2+peDTg3M8wSP2UKm3KyEcpatVA+OuAuZ0j8ZR mBt36QIUC6MYhXnudhSjQNJqZ3ih85PkPp5NET4yRVYshuCb2qYJnSZ6p37j3897oaAGAqP7TMe9 OzPpJwmK9/dgViWfh3BkGW3U/u9OLr8lCF+SzN4mGu6Y1llZPU4BvbfZOMw0XW3fL5Ocx1Mo9ve4 KwM/d65Pc/P+GkY7LxuGybuPhNNtbqnghoMPPDdwlBRK1mC2CDvGeTswxohxtum725/vGeRtf35e Eg2TsRuTLKVY0lzufhNE/Ryf6vvng/Ef78+OQndcDOTAwImYhXmYHt9QXsq92w1cNpmuxUzC0YsG DZ6F4DFZlqInzfBVjQbLUrNGHtRYB9ELBprhCy8NmiWh4Uk1JZh6VaaQvs7oNaJVxKVG7yCto0fD F5hW0aNRUtAjTbCSR5bZP0XS1duxZbYPy2ZWR7uKoNy7vCQ1OzK865c7gUem0Lk+dWi2b+dczdFb SI/ELasSxyaf0zX8ihDRo/e9GnxLOYHbJaAbvlW3WuhO932U+rbavq8o2j9K5HukB7aqedp9B+1r BOcvu3p13+fS3bO6Pyt0RtmeqzBXR6/YraNHw/fz1tGj4ct96+jRsArdauVZoe+jgnf3t/Ba0FFj 4Ue4GjUp6Hd/D2xdOiotGPaZQwmqU/DpdH137WDRoF8vyu3I1JZC2J2TcooNzuvgzDMxw8BvDee4 mGWDk9CCTNDskpGfV3J3+7+72YsJeU/KgzaIbidAM3R5fc9dO9vGhVkblLcTnuRQjkviNijpBWe6 bx6KcTHhBgU9FGIw2+Is8WMa/TVucM0bBrpx2eYG3e10GwbSfJ3ghwQK1IwcF89usN5Ozy0K67iE eYP1tpbojuOWhiaF4RtMt7Uy0TCNy+03mOjNlhd+SJRODkC/FoeCaLyBQYPoOogyHJz3Cc1RAJZm Uw50dXTzfYOc+GxxdgmEchBdmVljn4d9tM1EQ301qM8jN97Qo0F3U+g6mLb7SXc9lOOtVBqUt52F O96/S3Q9lONNbBqUNzNIb6VCr6nZ2Cq9LJt9mI9dVenl1CZODbKlZvgi1V5ObZnVIFzSHV2k4sup Tcr+/KSuk/V3H4m7YMyLVATomScFasu5VCerDz/SI77NLUUgF3iZf5uwTvEmww8CoQ8XDrBHTfw7 Kejz0fHvHK4s+JPlnE2x7B9fhv9oG8XV4n9mAI9aRuaMhD9VHaD3tfjeZ8ucgdMCrcbLLXynLLx9 cq0HAny+ksCpbS8bVEsZ3D7J2GGOOh+sA6lD9AIta1v1lBsg18m+QfwqItYfG9S7uQ7JVmnlFpNw NzB8c2blDgtRq7pyC4jCAZYYV+pmUoTLDqLIgY8TiXIEeLtXgTkibLJ9y89bMzj4W2WXW8Wlnmtm 5bCKS4NlSR3Ik27LM8cdzZ7L3N0SssNqOKtF9kz/h7VzVtt/Oj9yWsZsWhayvrLAqQ3PH+lBrmuK T+DDSd/htvENmqWUYnUlury9HZcs5YmtZglGCckecnmgFF5D1Krr3/QavtReKyaVVCzulNpCbovO xbfBPNzy0WLpHIS4OasUC4HLBuPiWSdZ4+XzoTDzyKDVmhnpVHMhzyqID1PhMbPL6fW+w/6gs+v2 mRnRNSKvrwg5q41a5cVbGe3klRczhK364i00EXn1xVN7W18EH30y0cwLT7NSZbSXNtGYiPMqUuw6 V8PphjuIaaOgG23nvRLoZsY1D91w+/B1QnfOtPe8z4287n2DU1udr/JxVJvI5I9ouFX7Kh/RqUmR E6dMWi5GLzCNdo1/JHW7mN17Xp2cb+WwzfvVpq4OQGLt+W73ayadx9Eb5mzUa6gJrV9mPKC8pf3l ZWgTUxgumQnBrtuLPdP/R62BvViifE4PmhE8h83n51oJYf/LXwfTomBS8h0/2pgrHhcKIyJLPNDK et9DJndivPxeJcrYGFXKbtDeAbSvAgvtsJz2xWYzZzb+cxPwBJCWQbg0KMfCPsSQJVbXN2jfeA96 FG6YOcFt4YR+Lp3w1SeKpIq9UqUTr4UTonSHEYUTqYJ/ReOq1HhxHKq6DcIBvpZOlBt/KQ2Q1z6S 4siLpPS2urulx651deOODEFR/ax0qQ31Vrqj1Hh55MVnJfGZY8WngJbiH4DCGcXgzN7CvWvFUGbj kvQoC4nSlC+zcWmelu8oCqJ6IfE2p/m9Zqt/8W6FLltfkWTWIQowg7otdNoTrn7C0YCdfcKWG2Z1 K+Cxbr/kzB4BpKkgVlgmnHONG9bMDZfVqM8QQ19cC0SsHeIdRxaOzbAqx6RRYd3h7w8Pa4oimwTx uW18cLBrx1yQj1c74bFgP5PocPWqvTWeqVi5sbHAilmgNrnjerawnvnVb6n40dlimZLVmQVcYHr1 iRJn+u8DC/qa+NlKWXiy1izUeDGRv5QtAp6Sj7tjjvcbIgl+kCUdwwxrDsp0r+Wz23f2tOdiX3AP 03FXiUcD58bBL1L/3QnBeN698ZFAeSyhX7D4L99/LsMvBTPGm6bzVw1/6ZpBlZSLX3lzCroY3MqL OHx4Flhk/7zMAloyq7RrMYG7Z4GLNmbLbGDAXsm7YDY2WCsbTK3CDPvLsQLoNmmYe6XU+ZRGjM12 PdWDczuE9L2e9RCsYq5rkPClqurhDcusZGdJ52qC20tN8Bu+sx2fLt8477vNNIJh3RYqp3fQiHur BMFiXUM1KUKyMxuhT6WSWKWAob2xG6Zd8MKpkB4pODzSOaWVz6lO+xwRgMAIEesD9TlQ5sAL+/7y 1FUPykiWNvyA7hq976eP/fzkmOr+xUt+GX4Nbp8GEzY/P337pJTuLoif4zPW8e5M/Byf+eQ3+9HH A90F6eThaLoM7htdEL/HU3Fo/wcnXb1PCmVuZHN0cmVhbQplbmRvYmoKNzcgMCBvYmoKPDwvRmls dGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDM3NTE+PiBzdHJlYW0KeJztXd+P47YRft+/Qs8FTsff EoHDAbe36zz1oc0CfQ7SJECRC5o0BfrndyhTNilZ5tAa+Wgdc9h415I+UvqGM5wROcMbBv/ecfhf r0Tz45en35/cN9rqVruvWqGbP356+sdfmt/gUNvp4YLxE87njfv39++a4y9//PL0/jvZ/PKfAaaz quFcSAfx89Pf4N/vT8oCslYOQmjddKJrWW97tdCMVo1JNyRF13DdMs26np+amyF1rNXSMiOpAHve ss7wTlABWt4aLkXPqQA5Ey3XQipFhshFayxXzJAhCtkK0WtOhyhl2xltQHqpEJVqJVOm78kQYRD0 SnZ0XTS6lT3rtSVD7HRreWc7MsDetEp3jGwAcmtaaw0ju2XBOtARkmxAC96DimCSbEDDQGnhfiWZ HAppW656OgUhQMWbXmsywRaGgX4Qhkw9CDAEpGobFDZoBziHDBAMQS+7nkyuJdgBQl0jwQiQ2gAJ NkBpyck0gwQTYC0TdIBgAbToJNk4kRrOMUaRqQYJBsAwrcjUtewMqAahycRagv43nTV0Ym27FlQs nWAr0P+d7ugmYAoMgLDKkukaBQagl4LOhiowALLjdDZUgQGwnNFN5xQYAKXAVSADBAMAPgedEVVg AEhn2SAwoBzo5q8a9L+GmRKZXGsuWy4NnQ2Fxwe6QdPZUC0V6AaY2ZABKue2cktHClgA0Vs6K6rB AvSip7OiGiwAkMzJdIMGC2CZousgGAClOJ0RNWAAbM/ojKgBA+CEhuyWjbBwDkwcyADBAGhLODs0 mrWkUQwDBgCkkM75BrBWuLgTGSAYgE4ROqIGDABpTKQDC9ALJcgUdgcWQBouyQS7AwvgQoFkgg2T 9ZYywtKBAbAurkQGCAZAOytKBmjM8ZwbAR2kZNqFfccYLXd/pMK0kln3gQrViuSNeLSccC0aNCdk iwbNCduiQbNCt3jUnPAtHjUnhItHzQnj4lFzQrl41IxwLh40J6SLR80I6+JBM0K7eNCM8C4aNCPE i8fMCPPiQTNCvXjQjHAvHjQj5IsHzQj74kEzQr940IzwLx40IwSMBsWHgfGQGaFgPGhGOBgPmhES xoNmhIXxoBmhYTxoRngYD5oRIsaDZoSJ8aAZoWI0aE64GA+aETLGg2aEjfGgGaFjPGhG+BgPmhFC xoNmhJHxoBmhZDwoPpyMxswJKeNBM8LKeNCM0DIeNCO8jAfNCDHjQTPCzHjQjFAzHjQj3IwHxYec 8ZgZYWc0aE7oGQ+aEX7Gg2aEoPGgGWFoPGhGKBoPmhGOxoNmhKTxoBlhaTxoRmg6I9iHD0/jQTNC 1HjQjDA1HhQfqsZjZoSr8aAZIWs8aEbY+hLoyrD1PMzGxvZZ0L6bmoAi5cIBwCXDs5UNV7dF3S62 IcAA2mGmxhouQXUPyOg2pkG4dBvaKwiFbmMak9vgPqYhunQTBkRdDVEIbBPTiF26DVDQw/sIdBPT +F26CZhWWOEcX2QTM1cxLbigvOXReGHbmHqOyduwfWvNEGPENjF1+TYYfzMPMM0GFy03jGs04zOH cIs2Jq7cxSaUaXkvNYxqUJkwrQLVJtGEzxy7DZqYunkXm+h12xnHOHx7fmjYJqZO3wZNTH2g5IPS ogXUjBamDlFaoHowgFJlUDF1ZdJjj+u+lcNsBdnGzLNJq5BcLTXzczZoYur10CvCmQ+0QRNT5yUp tByuy7JKM1dmgyamjk2yiezRPXNz6JuYOT1JHcVBzIeAM9ruzXygdBvZc8KZp0FP+MzvSN6GFKBz nHpGNzH1QpJNdGAoOyX4pbtwjdy+2ZGNjbOo8ee3p/ff//uH3z58eP/pxz//+8Ovbz/978/mw+H1 cGDsE/vYfPzYPL98fnp/gPmEaN5+9lDDFk9x6uLbF3Cm3oHm4II7mt/+2XxgjMmPzdu/nl7/+hnX yNe4BP5SCr6Ac+CDKQs/h+N37lO7LyX8/gIfn/1xcTy3/+TPe4bzOGPPh+N37jyHN2C+eNzX44/D +uRbf7u8qi5ao1RpuxttA0Xu/FcCGierwiqN9xt9B08TxWicrMOrNK6j8dKo898Nv386/q4OSHqm KxorP/T8+OHmuAn5SnMTrQttuYAn1nKleePiE73jaf7l/Tlb6Hy0/LTkzs+FfkXjBnzFYwwsoxPw lxz18+tRWJxwODM6DGjrBU8FQue/77trAjRZrFsHN9ng/sy9bXz1vD17O/niz+vm118f7JMl0F+Z q4VOxiuqH0+eFkbaGmavj8DJa6zHe2LFj0B1CGa33P+owAl5PXJ24vw1nuUOx1HmOH5bWKlcRyV8 aOmHVuBsXKSY+2EHv2vhv+uCYcmOf6cpjF/GVgo39ynpKYzfdVcK7zcKvSHU6kzlGBoY6Ty1JXx7 EkFpvLSgMnq/QbkZo/FKjkop/azHngfvadD6AT1SOGC+YOiKV8VUuu6nUyU7xexOI86d159x0/TF +wcrffdToCT0xTs1K33r6Htm55cU3hV0o3GJwmsvN5YmrqdgnD9/HOVhYC5Ne7yXttJeDO1p6uId y5W6u1JH+pZ5sk+8UnnfUehjcCRvmie78yuVd5sGfTUbGuVOqIQXQXiatDg7RaXtfu4KpeWc5AOp NN5v9FFazUkGlkojfahuISx3Wq/1khmum+S3qZTRUxYuowsmJLgRFWcKqvRsM6KCsJt7gTgsxZgc S1MV51+qVNFT9eKn/Sy4xtu4Ve8sJlmuKnX01PFgWuKmJH2MsY6+OJ9YpY9+ZeJ4TehYW0/nxK6t t3lxJrdKJ/1ovHUVeZQPr+R12Jf6HuZSKLbvH44sxAtLR0Yury6ft3jeiZlqefWy8Ch7RLFPdQ+D eKDKmc3nXHEIklCknhl+sfLYCTznC52zvJWDAKX6dl0zhakqi5XDhb6H6VGK7TvtCvnbpfm8KbtA YVZ6WD0j+3TnrmrVMJnNniSiYK163gGg/XRolNfriifMCVSpuiNV49xlvDZNVZh6t1iqFvoepIUq tusUJuJrznXJzADT7bBTcpURiPJ07YnzojXL0U/OnmIL3UqtlSlxViLY+I5n1RQ7SupWrDwu9D3M Flds38vWn9dHylohPeddWqc0w7TteyK6EKWZK154Wi+Ll9OXZGZZ8tYnOUx2JtcNiDL7V7mrcneb 3GX7NFHxh2xp6rYwtWHW1D2NhKJclZQZDBPL7omEQtSR9x0Onqr8kDzaQ7x/DPOUYXidtxCUZSlW AKHrbGSMhYzdqD5vyti08PzCvM3FPkDClwKnsUSYMidKTL2nh1iIGtxwVsYWNj5PxGSYoI9rw8Zz rF8j1lPO4gTnLcp12GqDSpQCvQrz7oSZzICf83snO5YYPWmZDHPmV5msMkkgk5ONRetlNCy6UGW0 yuh6GZ3umlovo3Edw7rmdZsNcNmTxy2nc3Ghlkp5EZSnaYuL31Ta7kMb+aQgLjBUabwLjfR2Myzi VOd2jzS322YOh1/qPhr205Y0XD2goKJXlbcqbxnytmZPXFTlrVi5W+h7WFD70foe1O0utus7f5cd VR/cEwmF6Nyj+nFTruGc+i57LoFhccpiJXCh72HVy2L7Tvce+SzHt79Hdo9RglSLc3VP7v5IFfg8 lUPe27Oul9RL6iX1km/wEvjL2uPPafY6yYLiogdDxGo8JuNjpzQch6U5xqleeFBt+Cb7cWEK1PV+ 107KRIy36d5ynCbpi9Mi3+Wosm41efWSekm9pF7y0JcEtmD2Hm4xiJmwE1Hp7j3ZieVbjgqc7umW A/lg4FFzed405aY6zO+Zu5THj1kvN8y/fDkcv+f+/JO8XZhCMZP25E/YKXmMi6nuiR2456VtaC3H bkPD1LVdjNmOjziscbqnJ3yfSxZ5FKZ1TgJmKTrm1T1JMc2R8rAmaqW8VMpJk4iP1Ie1VCv1JVO/ Otu1pzystVoZL5XxTZJmjxIQ1matIlCqCGyWfHsUg7DmaxWDQsXgfkm8R7EIa8l+/dwUY6/CEqnF CuuV/oe1Pst5qmEZy3J6FVZkLKdXYXHBYnoV1L8rp09hebdyehVWKyunV2HxrXJ6FdaXKqdXYVml cnoVVhAqp1dhcZxyehXWfCmnV2HpkmJ6FVW+WD+PuTXJzTZR6bFKsN9tpILE0C5smYxS1wIWj+C7 TJP0ofyPqK7C/Udj3uLlXQzGCUvpwVfrHDzg4HNvAJ8P2EFY6yM8KMXj+/w0xWFdhXJmPd9axYQt 8ns/H66jU2Tt9nztttzBXQk7J2TfnrCHqAdQrGZPamYqIuNc5tdRObiKQ4HHNeXYRvnYa82FnclH nHP8jvLxzSUKX63wrwY7rrdiAcwML+PWK/6aXPwRpvQHFufl8cu4Z/l21kbQHiXT91L395poe7Mo z70Eq2bvfhQ9M24RQYULah7rR6A1zKOAo7Wmgn4AWp2yPqUrRVNbMyg/ALXSK+I8ZRwmHi6W2iv9 D7PoFtv/opzIk72+jgjeOfLNYnoiF+bMrSQhSJpn49qepDAjbiUJM5IiW3odtROt7pTgiPrASaL2 mvN2M6Jiy3g3omqy2McIgCsflNB+z4v0wQ5MhurTFtmX673BVo9KTtgeIxNsFars3TZUgqZUy92M nkDUHjVx79j/IHlvMctSdpvNdk8Oy2MkfK1Kdp7DP/H6WuhWaq1MenaX1o57Tay7NxkJ3k/gUlgt yI4Bxa2GzWh42RmhWGvcf91CakbZOlF2VQSOgF1rj9tIxsyMA55ue9332gi4PHHAp5qcH5CvS1c8 LxzwxRLmBzyZGVB+7nLhAFs6wJcOqIUDeqlXy91dglJLz2oRSi/ex+JjX7pCBslCnQZiTdf3Q0Zq C7bJZfa+nIPapfy2vHVJGaY7AQ+64eqSIBoJPoWF5ptWdbbnnbReEMHZEN0xg/qxW9wM3QLB1Zw7 5cfiA0F/me9qr4Tr92J3tV833Lt+gujL4T93ypfwT9sdB5Ftfn36/klKNZzgPuMjpmPDEfcZH3nX N8e7d18MJ/iD52/9aXBddIL72x1yt/Z/gFhfaAplbmRzdHJlYW0KZW5kb2JqCjc5IDAgb2JqCjw8 L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAzODc1Pj4gc3RyZWFtCnic7V1Lb+TGEb7rV/Ac YHv7Vf0AFgtIK41POSQWkLPh2AYCrxE7DpCfn2qSPUNyhsPiTHHUmu0VJK6GVHWR9XW9ulmlGolf HxT+CFY3P359+P0hfQIRBKSPhIbmj58e/vGX5jc8JTy0f5CPeL1q0tffv2u6//zxy8PH70zzy39a Mj7aRiltEomfH/6GX78/2IiUwSYSGqDx2gsZYrAzw4Bt3PJARvtGgZAgfVD74Y4oeSnAROkMF8Gg hPROec1FMCrhlNFBcRFUUgsF2ljLRlFp4aKy0rFR1EZoHUDxUTRGeAcO0ctF0VphpHUhsFHESRCs 8XwsOhAmyACRjaIHEZWPno1gcMKCl2wTUEUnYnSS7Za19KgjDNuE1iqgipCGbULjRBF4v4YNh9pE oWzgUxAaVbwLAGzA1k6iftCOTT1oNASsahsVNmoHvIaNIBqCYHxgw7VBO8CoawwaAVYbYNAGWDCK TTMYNAExSs1HEC0AaG/Y5okBvMY5y6YaDBoAJ8GyqWvjHaoGDWywNqj/nY+OD9bRC1SxfMC2qP89 eD4HzKIB0NFGNl1j0QAEo/lsqEUDYLzis6EWDUBUks+ds2gArMVQgY0gGgCMOfiMqEUDwOplI2BQ OfD5r4D6H9BTYsM1KCOUcXw2FB8f6gbgs6FgLOoG9GzYCNoUtqrIJxS0ADpEPisKaAGCDnxWFNAC oJAVm24AtABRWj4G0QBYq/iMqEMDEIPkM6IODUACDdstOx3xGnQc2AiiAYDI6B06kII1i+HQACAK +YJvJCZ0yjuxEUQD4C1jIOrQALDmRDxagKCtZlPYHi2AccqwAdujBUipQDZgo7MuODMsHg1ATHkl NoJoACBZUTaCznXXXEgwkTQSUto352hV+iWJBvKFJ9K0RsZ0IKVqdYPAsSFCmLmPTCy2poc06ak0 fRAIChokqDRDEOjsAimrrBeF2BONQThLdADJRNHHF8p7WgxLp6rwQM0g0akaicAzNOeITtVK4aOm RaB0qjhJDDX/Q6fqlAgrJgCRqteCH1hBi5jSN6xEY5p+2lIMFpmollZIojdGJ6qsAKAl3ulENV6H 1oYV/9qAcMZ6isGhE7UO1QozTjU4kZISrEpFOy94ka+9Fz54xYp8jSbFEF01OlE0KcGhV85JNB2s 1LwGxaBBiQb1CStRtCeW6LvRiVol2E2/QWsCYHlNlHEatYniFT6aEqdDZMW+CUYoR1tzpBNFU+Il bd2RTNSiKdEp98BKFE0JXsSrpCyakpQxZhWURVOCJo+UQ6UTRVNiorO8RNGURGN4zbNFU2I9bVGS ThTjE6loC5N0omhNAH/wgj9GkbYasIIf8MDsmYKWqE5oC5V0omhLfJITK1G0JdoEXvsMaEvYAz5A W2IUbeGSThSNSQADrNDH0F1QN3zRiaIxYQ8hHRoT62gLmXSi6ToJgRX8OEFRnWheA+2MQ3VCW9Sk E0Vj4jRtYZNOFLxQEFhh6tCWuMgcPju0JeiY89pnh7YkqRNWfeLQlhglSRuGyEQ9HoJlDp89WhMT aIuedKJoTaKmLXzSiaI1sck5ZyXKq5092pFrMnxXJquP8rYyDy8Hw0PaHNGu0comJTo7zY9e+kVZ 3JNDBBC+m/5py3SbSvFAHeIon3dyiJShCSa5a7LRrrWJmj7ENLu3eBc4mQWsGWGa6lscwUG3EmOo QxylP/if01EyhF/aR+HhySHkBSI4ihFnKeukr9pdwVTS06Bunulg2/WZQCY9De3mSaf769IqVNrT CG+etlEiSXTF054GevO0FVrcTptRaU/jPU7a07DvzDNBLlqKVNqT6I9RkkdBICftaSzISPvIf1/U WavV4tSdXRwh6rwqSx1h6twuDnHQkNQhpq4u/10cuZPLuh2dG2+1Ikv7yGXjf1BHHtfJIQ6GT7br Zd2u5+Mh0iCXvs4llMZbEMqCwp9OhsTI8YcHpp5eHz5+/+8ffvv06ePjj3/+94dfX3/635/Np93L biflo/zcfP7cPD1/efi4czjTmtefH1Q7avtym96z/voV5+KHgAZMt4tLr/9sPkkpzefm9V8PL3/9 QhvkLf4Ef7MWP8Br8CBtxO9d91k6gu2ufO3vu5Wr7OSant3xYzmgZ+nxpPFQz0nzBb9fuvHCI34m e36eut/T0abj8+GaxGe6zob0e+aRLv7TvGulRDK3i5wr/PYdV2gFWo5MfmrP3Z3lO2o/6zmWeLeP JnN7cjfV4FXCCua1f7ICpgdttCjss9OjEyoXlBcBMno1tALk7rQdlyZLe4fajaN2mbGXDo+JKRaM jt42rhitGL0eo+3gA4auxuj0Bfbpk6xgJIKxt3/PHWja87q79jJXbkPnalpioMq8CJkvy21SyKHK 7TZy4/YLpuUzqhxvIkd+2zkqWlIdvOrgMQQhux6Uux7UvgemHzwk3V9nKCAd18GpuuY2NoNdjKPq Q8Xqmhnmh4WOiuX9MtSYjIiXTrItSl4Gnnm2Pi/9dU+91nnu0eXHKAu+pX4ZMy2MMGx4hO47EWzh 9nKAb4vkHpLpO13zqM9Bb1hV6p6kV4hmub2VO4XPWy4ueOHbelNvtrwwqmtWIf3ulxcuAfQiSIa1 6ipG7lLt8Tn4QXTvvd98kWFUAbHCtMKUBabsuZJJXc0ahm4Shl7m2G3oaE2qn1axFyP2ZdGN68xW 0d1OdOw+wrjCbxXlzUTJb0eHtZWru/ee3L3t3LrDewZLTIDqbzxnH1X/QHJ2cmLgcy67Pacp+ByW 6q74rPhch8+WAdPrw3Tz7oDBNpn9JPdZ9vM4HFZ4LxaHp3kfFJMvlnO+xZKEdZOx97QW34fXQJaY py/CsOHeQhv8YNC7yJw/g+VRN4B7QsT969SZFM8Y89/gAsyoH0WF9F1C+g2S69dGV6OuJhWWFZZl rvmMeuVUmFaYlrnmM+nAVNOOm6QdL/Mlt/Ttxn2yqtiLEfuy6MYdyarobic6dh9h3AuuivJmouS3 o8MufNXde0fu3oZuHT2nnpOtCX8wWO/ZY/ilw2d+QIt4HDVxXI0yv0HGfNQFsgyOhm0ky+Bo2Iey DI6GjSyL4GjU07AMjoZNEYvgaNRw7/YcrVOcFxo+J6Cv87aCuZn1rRxj2RxjDUL/Q1y11gald/jx RhUsJ/HfYOFrX2fyqnWvUSfG6vds6Nq2rqg/uARDzC66A6P+llVMW4kpe3Ev/fd0l84qkQ07iBYr shneh81Ki+Wd8WVSOwg7n8cgYLQnh3qy5dkTajnC89Zk2JP2W8CN3B4z+7rMBWJmX1n1OtQMGw9/ A6jZmyHVndt7BruqbVbhZthf+p5wU5ZT9DRA8AvB8Rl16a5i2Ugs7fnnXjk8UcQy7HVexfKeMty5 kkifYLY7tiTCoZ7/EhPnsTVse1+xtZUmDvKwcyBP/WfK1DdW2NKTBzOsW9u1gyia9xpRlBVReAAB yri7K4ZVlj7qsybtgmfCopOjFzXb87q7Zm/DBpmWZb3lXPc032ph5sr2bFf0CUnQksKlf348fT20 hU1jo9DL1lH5/l68iN0Ghu5WYqcYUoPjEMBp/OuFE1bNnXicO/E8J7x9W8Tco2bzeXjyYcmFh7R2 mhw/gkqhUqgUKoVKoVJYSWH25PoTWzCz3oEwuzk/wc6deJk7sZ7UrFujZ06A5GN3Tj6M7M5iYH6M fZ5orpdeaLeQ3CIxUN2zSqFSqBQqhUrhW6HA6OBxuGcw51ksORAr/J0LnJSnOXbn0lFPc1yF2TzV 7Im5wS/wP2fHmPX0XhbcsxCESruP32IX+AVZ41ttHFdGKOICBvMSTZbX6bULSO9+hNSZerFCnOyT 60/nKfoolG/94ctXQ3osxSBS93hd9hrg+10ROS/IFcULdnJFU5vzoyJ2+lbply/u9/DBaxGKvvRy GHgDsumXQbv/rFI1RyrzondUzjxFr8VdTsKVmtI6oYKBSOsXfCiYuKAt6WXqlrSlClrEVDvr3gR1 Z9ryulKrC9ozpmxUvGprVIZTNMKmLZEVTkXDiVYZdQE25FpAi7BJm2Fkfgu0WNgUbnM1er7BGX3/ r6Rw2dzTxWI3t7npYKUu3MOsSnJdqYubRShGRRENOm1Fw+cM/0YKmze6vn0RgsyVVeKtUlBnuAKE TbtrvSiuHJKJ6s02K55mCjW00yEWUkcmcxUMzsC+WW05XKGb7qUvpZ5Mz5VFL1Bbqwqpl5K5UlYg jW8gldHvdX6Sh3cu+hxdtnRtjm7JvbHpVRtdewhu/FZc/6ZC++0JyYAFsZ7fop5Fa9LiTt93r5wZ alNbWGfvP/DZRvTLMxocepym8G7x731Gp3xM+/lOEt5zzaJxHp3pvhlbFc2NRLP8dngWjw8YVdQG axuLR62dNSEIwB9l5xvfvVhycSlDFUuMQoaUuati2VAs+bzvr5HdZyQRAR7ucFm3LAGlORNWqjTQ Ep93bet1A9GstTZgpPDJC6ii2VI0uTA6Hp+o/hlYJbQJ+i0C2ss2Hs7dCChR/q4l3hj4VD+RxVgW nBZG9W1k7ulBlTUZSWWKqZPUaxHAQA2iNhXZRZVBqSIMRqTVzxpwbSpCuZX4oul3iFXxbZjSz+dX VcskitBJK6yrbV/YPS+nQKCswt0FXtttdV7Vw+D6jgVLLqHTIMDqWOOzTY3TVZ0BsqiMEzL0jXCq qLbMcgz8h8u7A2SxoXJwuphuQZkr8EJBuLuwYjvFfVGIsKDIVxTvXlTkzotua2eVKFGiqyOGJWnS S24uStMHodu+P1Wa9P3s6wOIG87PEETKUd5dkrIs672qjP2+fmUURkmo4eHmET65lH2uXYWHYH3d 4lP66yJZp+8mAU4aKRc03y1oW7536ryWwgRXtx5tq2wvqlSfRWSkiBp82R7OGf6tEja9c1E0/yV5 aCX7274usN1kgW2bIvJZiE737xlWUV6W5p9p1+Da9UvCPKNuwdu/ep+34OX6N/3nw3YUCR45mDu1 y38KjQQO2XgMt1I9/wiibTJwuoJ/6j4QlfDSqOnrYDtolD1VztSZtJwbwDXC+hiUN7F/GsoI7btu vd3jUK5lKwgFSqUGB7komPJTfmXParA68T3LLvQviIXE5wcvTPsvXfJ1+Gv0XSnW2Pz68P2DMba9 IB3HZ5yX7Zl0HJ/5EJru7tMH7QX9ycOn/WX4d6ML0u/pVLq1/wPQwVRgCmVuZHN0cmVhbQplbmRv YmoKODEgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDM1ODY+PiBzdHJlYW0K eJztXd1v47gRf/dfoecCy+X3B7BYIHGSe+pDewH6fLjeHVDcHnrXK9A/v0NKtCnbtIYWpSgON0i8 FqXhx/w4MxwOR6yj8POJwR8reffjt93vO39FOUWUv0S46v74afePv3S/QRExKjwQP+F+1vmfv3/X 9f/545fd5+9E98t/AhnjZMcYF57Ez7u/wc/vO+mAspKeBFeq05wRQ62zmWqU7PR0RYKbjilCFTWW Hao7o2QoUcJRLWoRtIxQo5nhtQg6RjQT3LJaBBnlhCkupKxGkXGiHZNUV6PIBeHcKlaPohDEaKUB vbUoSkkEldraahRhElgpTL0makWEpVa5ahSNIo4ZZ6oRtJpIZWi1CcicJs5pWq3LnBqQEaLahObM goigotqEholCoL+iGg65cIRJW09AcBDx2ipVDdhcU5APXFcTDxwUQVWxDQIbpAPcU40gKAIrjK2G awF6oKKsEaAEquoAATpAKsGqSQYBKsA5yusRBA2guBHV5olQcI/WsppoEKAANFWymrgWRoNo4Koa rAXIf22crgdrZwiI2HrAliD/jTL1DDAJCoA76arJGgkKwApeT4dKUADCsHo6VIICcIzWM+ckKAAp Da8GbAkKwIHxVQ3YEhRAVSsbAAPCoZ79qkD+K7CUquFaMUGY0PV0KAwfyAZVT4cqIUE2gGVTjaD0 y1bm6jEFNAC3rp4WVaABLLf1tKgCDQBMZtVkgwIN4Kis10BQAFKyekpUgwJwltZTohoUgAdNtS5r 7uAeMByqEQQFoFxF61ArSqp6MTQoAEDhzYtvT1JQ5b1Z0fXE/BdNvS6lNOd9EtT5D5QHik92ZKBW 4oVCEy3xRKGJlnij0ESLPFJ4qiVeKTzVEs8UnmqJdwpPtcRDhada4KXCEy3xVOGpFnir8EQLPFZ4 ogVeKzTRAs8VnmaB9wpPtMCDhSda4MXCEy3wZOGJFniz8EQLPFp4ogVeLTzRAs8Wmijeu4UnWeDh whMt8HLhiRZ4uvBEC7xdeKIFHi880QKvF55ogecLT7TA+4UnWuABQxMt8YLhiRZ4wvBEC7xheKIF HjE80QKvGJ5ogWcMT7TAO4YnWuAhwxPFe8nQNEs8ZXiiBd4yPNECjxmeaIHXDE+0wHOGJ1rgPcMT LfCg4YkWeNHwRPGeNDzNAm8ammiJRw1PtMCrhida4FnDEy3wrgFRMBCtU3aCprTErx+RDT2lOdMd dubAorF2mtRuFaxIgEH+Kohp0fvvmLzN83SxCglGmhUKhoF2jCsC9qUE6wpZx7kXYrISA4tME4wt bB2nPonJoWLKEhEcLtgqTj0U01VoSZwMaxtkHWfrlmmOe4CG9Ti2itMFxyQzlDfSgvxHVnFmgkyD Cp5z3OExdaaTJqs4Dhq2ilMZPVkF4Nx5f6O4UIWvhHaoiE/vhzew2AjRmtflDhi5XuwJLYyBL8Rq P+75uEyoFudoKKKqQZpJg3C0MK2JoRQW0udk58SsEgbrnQ4WkorBX5CuvgHnF4+NeXzdff7+3z/8 9uXL54cf//zvD7++/vS/P7svL88vL5Q+0K/d16/d49N+9/kFQM+71593LNQaInj5gbev36Bbn2AG Ms68knj9Z/eFQv++dq//2j3/dY+r5C0egW9SwgW4Bz6odPD70l/zn8pfBKRIBr8P8PsE1zhc2vf/ F/Fe/xzv730YqL9exEiqyhq7qrMrDn3f7zD9aC+n/NidD8tRGk4Nj2d3QEOsL35/TtrgIeJiG/Ds vdy2RG1ONe4q5kZbdZvF3OW2j+yyzbb9NiSLp0GQPPdICoJmQFW45tEEakLRU4SBxfww3PMyCKL9 8H/aC6LymQB2Zi+aJjvu6/aoD3U+9p++L6F95tJsnDsTONhqzMNgum3mykQY7wTfE5o2In0TZWl7 XE4qxPE+euPJUjwxJTwZRSE0nizFk8cSnoxiOBpPVuBJ1MnX+TKKgml8WYMvDsOXNI5os2zJtH3k KNxs4+tZvcGC9NxmQ5kb1lXDessOVm94hhVbtkdP7fZMW+YM6T1+80zb1O97T4jZlBSK2IxlHi4e s9EfEFZqz8X4VIwYGXZXtodPLugArFk+iNGmQcPnivj0z4TnHm7CplQhzFEglt7rY5OD7cUpwnl3 HZtpdGzD5lIWnBysuHIMUkXCwmd7CGRWEiMws+MqAtNQ6gbAhQCo4h7OAMSD8h7crL37tCnvC/BM o/I3i89M29Pw73fW9iTKfPtz/crSbgGTmXHPKqaW2K2gsRF0ohFo4X916TYK/N8+nzcl0w/lw2fc jJ10D50EGJ2irrHhIJews4Fr4ncPEWbaW+3gBwlght+HPpDDPiRSIICnWAoc4udm6dhRONpm9dSy emHmUnXDywRjh2j8eZoiPc50TxjZlE7xKFVDTFcQD+woMmRA6dJOlD1dMqoI7XC+Lq/SU3ANi0ut WWPA2WPD4hUspocnGxaXkotiuF4Xj4X+k0XxyGk0wubhMT132/C4Eh693q6FSaxJvwIkGYO75y4u 0jPbDZBLOiNcAsQYy7sf3FwxrvelGlDxwQPLA1VRYhhGjl+F6igTQIPq2lB97CGpZDWI4p2ky0NU GKKYP5c2D6JpXokG0QX3iwMUbDM3J/CYpiRpeFwJj34Ta8+q4RJ/1msNmxN0cMgYNg+XaVabhssF 3ZVpSENzEU2mCG9YXHk7NuDSRjxS3MmKUaqpxrKlWHayN3fYAHP998MGKaWHU++hLN6DOfU+SvC1 WVZm2p4m8dhs2yueQL45TvOY9mODO7DCEhXaNG8LNk0Ad09g2JRMOpg0vL8nHm4PTrSnRC5FmYWJ +Bml2WusWzzKe2ARXFaCHk5zhbKRoZiwcoLl0yxOkx4WM84soDxGGRPvCXS5qJ7nI1tFAo8Ru6/J 11E2yHsasE3N0sOsMqU6fstBVnXOYoxSh24WgZm2p9ngNtv2euLmdhx/BFt1lFr2ntCwKVkaLJrE KD3cHw85DAtpgTJS08S9jWVLqr9okD7VYFuSGvmeuJbpbZoQ9J66m9MyyxwcXPII03q21FUNNMrE fU9I2ZY4Q+HzBEbDORj7cKxjUsyNcqA3dq6pnfaDayR5bppdaXb5zbIr0/ZxEvtTkbp9SE161+lh hwwv3qfE7fg1mO9v0DY1D8N3jXQ9nrwwtA19taGPm49hxjyfs6LKq1Y3Kx3fPSerJE6/9B6QxrLq LIvDPztV+gs9JqU+pO07AsGHghwSVp9FDC3n3b306uLNwijf/o+TE/06JI6vHMHm7q+XVX12DvWs HXfxrdX3xOWNCLtEP6FyMF9873fjy1J8Qecrv/jm9MaXJXc7ivjS8pavzZfpBWvkTctdvjpvJnOX R9681/zlF192uNkObMlKvS0L+vyc55OmaMst/i6W3WnwnTypLQ2X9fcdImdS3/LDBRpPccV0vZU1 Tn9fer9og9t24RYXxy/0eAZMJ4d90thPTi94fOZCzoD14hXMfMilGcDfPnB4aNW9ZoVGxA7XF18I Pfc+0hy/X8FzvgOKsoRhVU9gam788Nh7Z8sxlDY5Rhw3oOOzccaVbNpw4cJp4tv9mHNyzdL9dNdx Kaqx3ZWOaKvUttdt7x6tBSFP9ZCsKeEhLcKmrAQDlvfmd7MqmgmLm50YU8Gy4wvk72nQNzXLp3NE Y2fue30JxND+yy+CuHRyhPjwTEy+wNvf1YCYHrlXGiyXNX7oQCx/OS4VpkMlY6PTVwKs0uhq8RYU ecg21YSBlxNORJg2IiSWmr3C/jjp7Wt6g3EJ8uee1JyczS3t/Eq7RKk9E+VYTM+YxqLg5FnL0L6G jfI0vC0gXXHcxK6WxHyteJ/T97/cxK6W43vOI/mB/Tj5lqpFNx48qtcpFpx5nzIJWhqkNWRV9TRI A/daKqS1NzrWTYUU2bytdEixVR8mR0kt+V6+NTOxMhSMIL1Ek4qg5RhZLYKwSo6RyLaWZ2StPdVq eUYi6z5OrpHY4w+Tb6SaxijKWDI/P8mUlmh5QFZxRd2c2yOyqeX3eCutUJzfI7IszZNxc3QNJdr/ MydMYWDaccfMwBOfiD+8RKxnietP7IL9p6xVmsMDEwV0nylgIlegMwWD9DovEM+5ynN1SJkrKCf1 VNpcaXMFD5kCxYqH5KW0H6K4H9lhFzmeq+yQ5EhlK7+BtcVD0lBSMCRZAZAllatcZp84mC85yShB h4QXPb0Dychy7MoKQJojZXOQyD6RnaLZSV3O+cEnUQCJrLLI15EFUXZeZWdijh83jFWx1KKmtPJs z7NPZCtn2bHK4SorOPLDnqwX/Oz100o5RVRnJfe5ey5n7PFplowhnFo3bJIKIbr0b5jUpxdPJrXs mMxMak2kcRbWWMO0ZoJw0ycdGQ2OJNZSLZU9HbVW0ApaQStoBa2gFbSCVtAKNFNn1nUraAWrFlxO WmtgtZWcYqq7murXUka4tphqBa2gFbSCVtAKWkEraAU3F2zNsG4FH68gs5jSllhptH6TxZRQoWmM EmUlN1IcGj3EDljCFGN+rRcLlMsUyP3Qf2qYM8ogSPV7g4wR6UeJYh7pG6yIoUJzq46D/JSRA8OW 5XmzRF/giDFKU3m2TX2h8tgqp7jm7Fj5sJF6Xke+8qHrgihtuRXsWAnPVJKtXZlM18tHUekjVPst VmNteEdK2GcFvGb3WI1jntx5HgSVgacWgghnlUas+XWmI8yethe7Jaxk307r2/nJEBH++Vu+pV+t 6EM5XPfr7vudEDLc4D/HJdrQUOI/xyWfbNf33l8INwyFx6vDbfDc6Ab/3Rf5rv0fBLDSWQplbmRz dHJlYW0KZW5kb2JqCjgzIDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCA0MTk2 Pj4gc3RyZWFtCnic7V3ZjttGFn3XV+g5gCu1L8BgALu9PGfGQD5gsgCDcYDx/D8wRbVaIls84j1U iZTkjgMnIKlabt3l3KWqzFbXP+9M/St7u/3Xt81/N92TUIIK3SNlw/b775tff9r+VV+pFHY/ePlv /d5suz//+LJ9/p/vf25+/uK2f/5v10wqfmuMdV0Tf2x+qX/EzQff/TvVgYlW6WKyTfV/VY7BOv/S 2Ul7Rqfu41TSZLvRBeVTFrVqjYouJlMErVqVnc5G0qyLymQXyjQRovPKVyoHSbNBq+Sst3ayWZdd nVhORdCs1U5lUas2VHLVTyWDtSGqYqKebjWapIoz2klaTUb5qAWEDckpr72o0RyV1qku7SQBOiYo sUh4y7mijDYhTi+WVSHm6CWL5WJQ0WcvIEDRqhQnajRrZUpw0wSINlcO0EYiBa54lbyuGmSyVe+V tS5J+MrromwOZpqs0WoViqukErRqqwy4KgkCsiYVjHMSFvAuK5dyEdDVWOXrIKyk1WBVsVXCp8da lYvJyWVJqzFVrWmjgK5GV3GxWsIDPlcd37HWtGhVBR9TKhIKBJ2rxPiqh6Za9Z0mtjaOcFbXri/V lIVqL3JllFxHG6uI75ZMx3O2zVTJ7n4gkOy6plUHJWWSMymfdB6rTi8uhCDtPIbOtnQ/uKhz1pKr yvJu2/+79nr68DiCD183P3+uoudV7P5J269/bMwRsVReK7kOq2y/ftt0z5yyKbkqMduvv23/prUL f99+/fem8lqoI0xVkev9G593b7IywVRYkA8vQgEv/NPuhVe6WvoUkqCp98+9V2ujtanG4fBGO9BW eB5wUEm7qiaDoJOIXrz8ogQbrek19Rl1nvYvctbRh2NT5iN4AedhP0DCe3YisBNnYCdoreAU971/ +jqNGxfnYotmAynjP6C1h9SHbI8YryUPLyFz8Cc+AWLhGSIuwnSHDElzPRxusKhzWkUE/UxFp6qQ pWrbBIQ3qC1ELDzDdioiOFoQEPfK5lHM+HpU//DYd2FbEvGbjnZ8mawb7yFqP05aC+xk/zn4fsBS /UkP6FoV5LhoDIYEdfXTi64+q1ld6tjX6TCtYaFMYbmllRyWQjhPJNC4c8jVkIOgen9WpNX/rX5S cHacU0RCiKUTThApE/+eVn5wBek+sMKCa44kHb7g15zXrzzD3bStB5htEJVbHLNBSYToG77AIBtR zD5TrKiUQtWoR9l1SM/ZQvP8o8CQGQgsoBlCPbCAEoJQB2sOeqVmeKF0UzI43gcKg/UYYI4nFgVd H2jBFxbhICzNEbywfSdI53BsyxgZdApJBRusEYRYIHSCvhDNRLwPinUNtK9Q19yoFprh6fLWekbv uBM+KEOjVkj4hmoTzwMzisjbFHlFA5gw0F0Hr2gymbg8GmoHd1sGZXi1Qlt+bOB5n4GWH97xkoUm lib7DBDBY82GauuJ5is6GoVnjprikbws+DHQWmy0SOSJ9vEW7BoFsPaIhwBiGKE9j3afb8gljg93 EOqjw2QDG9LlZ6doO9Awg6aSDOt1KX4TswDr8Zh9hvDwARDegYPiBrU1nSNw718WMjtnYwLoXJYW xA4ZnejhI5ozoCk9XLzqdBazYTqnofY9CuNkTdbi6KyhCX9z4agpfkQcCVEKnUTAnUMBgoHYT+0W l9bAPKjCfNKQ32k3BZO9RxJdLFhzCXhCaUQERgaL0X+OXE34Aofo0BwQcMI4qD1COi/Kg7U4xs+m amCXr3VqF4jjDfuMEP6l0ZIBRGmnHG7UA76BPBsDWB+r/mtQhv6Qgs3XJ82oO6RBY0uRoysj+HIG t9doVlmdU9ISmWvo2EGfhE4sw8RSw+FijcYrYLochmd3WeijH6nCSUY6etbPBQ+iSwC44R4SagkW YSHsBAcF533QYzGnaO0Rlzrbsy+DdKU7aOWJSq/QiZxLghDWmpWxMwoH2iW6sDBA+wJLPBpWqber DxhEemV6jresfOQQOc1YnSEwywfJeJLYc1nEwca55ZOIqxa1w7gEXTPHg1MsVti7ui9M1TAB1jCL OCMnSIvojKjhbWJ1Pib0EbzAybFWkTDYEB+OogvA7jMUNgXBvKm4LnahsmukG9opmobGFfcxI7LF B7AgFSHOaxi+p+tZp/K9AHD0N9UvDzj4DBScPrQ9MDIAsSlvrfhdIbx94/2RBWrC+GKYM7LL83zD 4jYIH+AGN8g/7fYInc2GDI6uWD5o2j42PDL/j+fm3z9k4yGDxi1LZ6GnBq0ZVM68KW1YXrimRp0B CWAyGmGFhsVWMBo2w4lq53C2rBLiI24AthstsZWDfSn0zkN+ew10MiClBolEEydbmnBjJuPCUatU QpQ4JQ+iy5YobbzPcuykqnyEeAwCzAiOwuNkGmqmGad90FsxG4Y5zxY2Ds4EW76uES4KLQu808VX 6i0iunjT2BLBl6VN6ACsi2yoqBSIT1E3PP9lRi3rjGpLeBTUlZJsF+2phWntW96XQdRt8tNDYxLm 04tXpY4sCnTsXIPBqA0eb/AJs0VOy+ADw/dWc/3oGn52Rh3SCiCn/rmny0e+V92YQC/8jC2z9Lbc GYEPqLagINKnleGKIphXoLd98DGtR6n0nLGCfBqErgmbkSRgD3dDgINP8q+ZaZ86gG/6FBSnfKx2 WgCDZvhV7WqCW2az4MFDeO8mD+ju66ii20yAzDjSr2XBAl+rRtNElrYoIKIn29I/iOgNtvRDT/Ac bBscLH/PG3l/XIQ/Qw2supfszoow222p509SbJlOaRf8vFA4+2WNfXskOnwXwzD6ZBa6rnG/TJMo zGqVQyiCYBTmCH6XZLvdVPoDWvg1d+C33ATPixV9XsyMVAcdquCJiM9T/QxewK11M44xoKvIYCjK OTCqhqle2QRFWgt7fPDgywFXj5wRCuBc/0af5eFcw9j6E3jRMJ7ZMD8NZ/4hsuqspQLko4n05q8Z GWgootDR5T0xOszY8mBj2tXkIyh4uHyUhvVa6Z0icNsvgn/wgBdY2UWfPsrf4jD4RT/beWHuMlgV dU4SuNjwUpbbLye8mVqIlu7yXVaiMVyC/JM7C1ZOVTii4jwAy/pXIi5fWo/A8ozQJx/Vgau4RGpt 1ZN7V92sxG8FW/PgyoYF/3dW1y9jakmtFF9thjEQAnJ0crSAhhBmgnE/4RVaoSra0CWE5l94w1ev GksLdMMNdTyuhxlTXl22g0Zv1SctSniWKMlunvIBoKl/4/MdpCaxsC9wxvCbkBBEbHhYEvRkeZKs ebPWbZZ5yGgl2kU4434GXNeFwlls5AjDJlSKT5et4TQC7BvVkeBQmvDehtxdIB+8vwSbNbx5CR9F BcWn4QaiJW6uhPNY885O3lmfugECwIeYKp/ZuFJl05pwHfojLevO+RtU+Dty4TkWcILt6iYWuRLv vjZ8tow2NeQrkdkV1VnjLXDAvGJ7LFJ/A+jCoop2RVUTGawG0ZvzYSDJjU9G1z83UlF6y4kJYh64 zmvi/CSiCB+Xa9BlaTMAkEcLBWPd9GVT91mDBSBTtkp3xx+sAplus9hrxg2astNkRBfgNjxOW3b5 svB6tyXuo4MHouGZ0JfCW+iGnauyCzqrEL0POzlxuuStClWX1/fe2J2cnDx8JSfhAjnR+zGHUHTv VHprxp9jCn86L3C7g+8rO/c0lAeUdxkt1kGpnbC2Br3j8R5uKAwx2+xACQ4XA5THtZ6ZKylns7EX 4YdJhx0WzPBROLGHBPuYdvHlxOWNJdT94Tzqr1ITovHlBISeLuAE1Dr5waEE5NVzBMht7AvH6DWs r4G0Ac/BiAZzjj6OL6ocwZ9P0A8ve+szwUiB3emYZk76xUlAmrN6OhWc1a8vCS8C+k6fCQsBGCho OGVP+AI29YInRk73AvPon//Z2TVfVDVoLqgcSqWOz3Fr3a5SScft9983v/60/WvE/PkukNv9YLb5 S9D82fqrWHksvSyeVrnyW3ek8n4OL+SoelT3bJP+DJ6n8ec5j9EiFFVyNS47WiSvqiV13p+hRQzK uu4Hq9ACzM078NyD558A7UA75gl8D9o3Bnz/nuv3oLZePwftOMATQYN2ED3B93CcgJ4Hwyhs36F2 0DoCOsPvUb9Illi+KmQ7oN9r8zOaL+Qr0D7kK8S36HtAN0QfVl4ckN+De3wh/7thtRbScL4qtBJN ttOaDnLGR26GcKXBDDPgAMQZUAKRBkQUBPOCHIM0HbCWsB2SIyHnIU2H5gUkOQC6wfVFkumP1v7U iKcKrmyFNKsYcSiMgOS0ckZGhDQ6ULmRSwpZFXyfSdYzSIkhkSWVM8vycH0R3dj1JVVRM+NL0mct 0IjkBa4L+f21wSpUyQCsPjgonQQV1YVzRtskABVvsHVJ2AqM735X1NJmF04OLQ5CUiRToMWEi0Ca b8ikLDOy8wXqCJn1VnAFMh2rppAwkci0FWy4NlKG82V9vbXM653AHmguUayJNItsrCAPz5KEZtQ7 ZUqncttHIe+Ew1pp5AeJpo2b76idyoetzYsHwN98ilV9CqTc2JhGqzDYzYkyAgnIeIH5ruazg/Gj GIsmwRg9LzZhhFQakiMWjIHxTIDD6cB46QrxygVx8UYMcO/BwxtFj8CWmqhSNMmu4xAj2W2VciB1 HkpGHQFsL3Efg1bFhRCkRQwxRGVy94NVcAtiM6CXDKDdaBFDTEHpXXliRwujtYohd2cCYmJkrZy5 qKDxrYphcRD3VsUwoaBagY4rRwIgWCYTShAsI7qxEQgyQtZsXa4Moq8NcqURFxeUcVEHgcZcK8V5 5zG3H1TSANosrnfX6eJo8zaDXHIWu6/cm1wZIlFDoIiNYLGFTaB9SDe0vo0iSW9ptLaq68HTaA2N /mox51axOAQeSHeCLfmcXqER45h0VDp5u1IoplEYshVpWaVEl+xdOYPIhv8hK5HVtFfH0SSogJ44 aP9Hw9eskUVgyaAwHvDbEP9fOy1GgzGkT9jQLpmWFJf+GWWDvWQ7AWvTruzItspbwoVgvZ55terA xppu370z7rZsLEtCto4Qscw8mbiazmgVdbs6y5OBBGTD1xLxG3Vc5ONn6d+Kr9i9bWxMDY2HDVCx cgewQKt1lNpSef3fvRjTHw219hPlp8bXGZVdKH6dlC8ymispeRbX3Fm5yQ8vIreWOmaV+cNG028T /DTcuL5W1Hat0AS9olf2cJvlF1oW+iXvVTI+r2N8b3RvvtxIoaVmjXIjVmVZjE3V3j34IevR2NNJ VovWk3VG0Mii4BlrrFkVxXrcSA8Ecn2FHqi2qmiXLkiNssUe9F49RMFWVfAPWp91u7BvzFiHpELp +HCV02GujB9fV9PrbcpZ2TrzEtRu/rBqPBXTHYf9HL+XHG4bnVOuZMkRjQZe/XAyXr0fava2Gzc+ qq8rtXg5tvDnL7kb7ruk3O6fsH2njE/GhS7n/63/wtRRmxy7Avr/bP65id6++rZ78uqjdx077Irr 6oh2X+zoUXpP9585u380+Oz4dP+ZGf/ODD8cq/IL+rjPYWzW1tcF98a8mnR3mmawxprepHuf7uY8 /Kabszc5ZVsXeDDnw9PjnHePTua8f/oy59q+zsH7Mpzz8fHznH/Z/B9YGesTCmVuZHN0cmVhbQpl bmRvYmoKODUgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDQ0MDk+PiBzdHJl YW0KeJztXdtuI7kRfddX6DnAcHkrXoAggO0Z7/MmBvIB2ewCQSZANv8PhC3JUrfdp5tHZqslj8YL z06zm5di8dSFxaLZ6vLzxZRfydvtP75v/rvpnkgWJd0jZWX7xz83f//T9j+lSEXZffD6d3nfbLuf v/683f/PH79vfvrZbX//366amP3WGOu6Kn7b/FJ+qqsX3/0310BwViXvXdiaoFIQ6/xrW++qC0mJ D6n8Y7ZWHVW2IfiKWpNTOpuY42ytXkSFEENNX43OKrgQTa4gQVCSYspbE5WJzsTUJ7fPhdLGlaKc banOp7C1TrnygQ6Y9qbMjfe7L+Y6UKbAujLHE80Ho5xNpkz2rvnsCyH8ZPOhDCruvjg0r1+b173m nXglIm6qF+/rzlY5l5OfrjpYFYxzkarbG6uMFh+r6za5TEZ2qap261Xpt0uTtXcfmBiVjTHI+KzU r0EvQUXvzdxSNIWrbVJRa5OlgsF9ad3uWHB+MRYWKtXailqlvJuc5BrgKLVGY2JNrYXsLhX+na1V gpT2k66qVXQBmRjdR1b4+1pLD6LXdr5Wu6NrzoBFdgtXOubUtvSxEjYkF5AVWzGoedQIpcg7U1C4 a7wsGW2i7N8bbzz4pDpWNZPLw5tC92CSnetE/SKJ0ZRp7yHKJNu54OIIg5wjG1UBEbft/y7tvn94 6sPjy+an5w7dCwCXP3H78tvGnHQA5WNOhRJ5+/J90z1zHYq4DnFeft3+WWsX/7J9+dcmqSw2WNN1 aV/gH1FBOhQYMUYXCr8WaLcr8EoXKVcm9ljgwq4gqxglaG/nq/IBFEgCvRLZFZS1UpqzqdfdJ9Ar iYeClHTw0mvjiR2goO6eMUDUKzwOi0hiQAEeB2zco3E8g6r8NzRANHLYK9y4oJFDkkD2QSPHvYIj R92FfAW5ZMDU3ZodJaJ1470tS61iZvvLXAc7PoxeE3WUyub0fD+IoLJPSayMr4FeC7DlPj8XVbpi 1Al8geg3mIk+XdEYYNMQ82CB3c9EEWZSZEXKoWJ8Fo2vzzhFYlT0N4Kq7DMogANBjOAzAlwLeJAf BjuxiAcx56AuDfAZLj0jvdHtv4iqDFnCiU7GgJrgqC1qWz/sCpzySUzoSUXRe2Yrtm7RkjpjZZ60 aPlhLkQjp6fvjOnYf/HtZdZxcHGVS/aTYozyZbK17okOpHPxKgmv9uCqkIoIxSwWaLTwh0oMlvH0 ALH6RotyXgcewn70JxZ2FvGJS+ibAVr3qWIj+gSTBVIY6dp49Ae4KSaQTjHqVDEULEGRqML4iBDq DESF0NVf1TpJjZRGqDbQLfuNeHrocwD5HmrxOD4m+gZa5xGdJ8HUpayst0XfmgXVgYbmItAaq0AK FyAg5A0quLYwCiNjh7fHeRvTP6DGocSCbSC7aV2zm/crtOMSLGYg78YJ7WawgXF57WagWYqrkdhw mLzvhpZZZ8wjgppLwABsfDkRe4enW4envsELNQikc2DVAtqQWONBNiSvQvBOgxmSzCojwRaVSJKd x8CzAb2J0EC8AtvgYbYhaB68HeOibLhrrpzOaatESy4veGN3suzdwzeyLEJZZstXQUr/X+dRq5Rt t0t96NtXdxhNIaqOp8F8lfHnGrz/YMafG/C+9uD9BN5/Bu1arp/mYfy511w9Hjx3T+PPBdCHbvcr V48A+sB6wLx4QH/4HPTn4CGtHy+qH73P0vMbV48D7wsabyM6C3gfjQv10yP+B/MC6QP641h+APRB 6wjyA6LneeN9lZQIWb0YZcXaeYD1aOGjjkXyOagHLnxEKEQQEmARo8J+kozRjOGBoIHPSUBDjJry SRloFut2cbXBAK7WgHpI7KY0Ro0Pht5dnhpobbYSUq3WPuJhtHYAD7P9hEoRwopGmADXPuJepDSy 3A7ooAN4H8wXbJdVoh45ekK6IeEL3qcxGdHtyvitUkk4RvrOAwjoALKGDGKkWNexgqjJS3k62zMo nqf15ln9ycZiincO3HnagLEurqGTIA37SQoBVgFE/clgsULeAc81AI+H40yPeTViVj7ofVDzxeUx dEYgpwbCU0CSR0DaR8BKT2CqUT3IqbH0uJ5A/WhcLB1YZw00AsESZ+u5OqcAqxciecwa1azxj/QJ JNfReG9Ev+zbbNNHc+6mx930aGt6IGg/TzO8myQ/uElyPMV3bTaJ11Zl7cqHS9kk1XOINF60huBz VD+JGezeEYtVUIbclhoxLp6tFmXNayD0pcUz2rZcSyytZkwvvN0FjV0E36Rx/ADGm5DR3Gg7k90G g+0i+oP5Zce1NGRC5wQbjtDKUgbqEbSUAZ0fkXNlLQ8AoCe09MFz5Ek4jKvd9urdRXAm4HwK2W6S MoX3wyqy/Sq9EdY7lSTv021c3huB1At2E57l8kbW9uLRRqQmz4r/VmjCoudqag07X6QaBKVFI68D nK+Fg1DocaF2ET+zQUaN+BDRGfIbkFLofceaN8iyPs8cmlWboihvg68JSyNnCHIGigNkZ4JcUTN+ sI8jMtkuvYU1jchAuO8SWx0SJV1e32FBFW0FkK5T1hfAquatQl/Z0NRWIeGsyo6WckZ0aLQUaJc/ SzcWhBE/kFtYiJ60soroc1uh02spjbPC8ZhDrblwpEN8WHWcVO+aISnbT2T5ovcRnRs5P6Aah5QT VnKg94+bcWNCPGQVTDbrxAuwehbtUG6kP7Igj+pHrAfBBAkLMNUPLOgtLARp8GeXFLmhhdpF7ycy jqBV/EurveMz9f0PK7eQz8nQq1aeolb+9xk8aRhnvDRnwxkl1W7aR3Mjvry2lnKyyuek19n1v/XD l80snZWEHXS33j0JeyE7lTnQZtmdPjTnLx0BS8f62cQSJle6OlNZhqnL2OBgmBjr2kOzAbg4seFa 7IlfcjWj/tBO+kb9oWOByBPIaLyffBMAreaLq8zsaUkYw7NwSoi1YqhorwTiq2n/5TxSOmVc0DIL mM18A+sCzrhYczqp7pKHBdwuO1k0FxlBavkaMAkKkEPOe7pdNpCSBB8anNl0GKy1g3baW21qsSDD 7pC3UtUX9gvSpgnr8kbzBbCoWT4dVvlhvQyksvSD+msB5tsuxW9YIitIDebfylpYPIaj0QbjZOCj c17Z7gqAmzdbG3moYfhoq5NxjZBjca75wcxE+D7JV9dmVn7W+WI1kWb4cJ7ZOn90Ix3DLGbMTbbD reJsyKBw1hSj7X6kEq60RTdTDxC/vrv40MkC6eiqVC0AViw4sDFYa5lZSysJUChMqmBBq+7uy5vf OWAjACHSkMl3aW4lc3DeVaHPoQr9aBJpaRSkUbyVU6bt8aVZ5AtRFZjMs/j3WfGgldNvJlgJSMfo lA9+iTxRn8kZRc8RGW61tOaEAkLpjYkb10GaORUbJWBij2Zep5MzZ2WtDesceEdqx1ob6WzkJLuf 3My4Wzgw4drC71rFmtOBQo3OctLOhIUhYfF1RI6XVRmu9HhOvchaKDBHsnJG24rY9Cs1OBbjMLjC 2eiI6RQq1f1nDXpWyTyk2xoX+kWIK1P04nhdB8ZapURZ6fgDPO28tN2zsK+KticaxZSzUHRt4L94 YNSVpao581jTD5FgFgr8VsnXFg4uXCuTxtJJ7hAvT4tP61VOfqWMaDC+lD0KxooT1uY5j+Qfhns2 ioitH8YTthLb0/XPgZJJopyTWJOUopUgYr0CYIStFIRWmf7pHHqAg+H7pEOWDktpdcNAI4X9dJqi VVoVKAYQBrDpRNiRsxiJVGWQfLeVX5HGKlaFJl3mbA6CZrkPpgO6gPh3UaXg7Eri/8ZdsBdK93G8 /7OjrGRRsk3eKiv4yk+/y4XnD2l0isXhtv3f3by+e/hmXj2cVxP20UanLfI3wUba7aVHVjFKKLLh RAF4b3wABfgKenhp/asoensF/ZFN3t1N70BVBvXqcIpz5AsPvoBtCD9y1Ab+ApEdNm6mTgv6woN2 dwNvc+4qvGVTzLog0lxIW7FWwXweceVdAU0H+AWcT8jJeNoc6i76wgv6Ai2KA/SMFMBlRC88nrqQ iG6PxKagnE4x6tMn1h+gxbqYzTsMzaoInGC1qZgoyCVwonIzLsHUpXkXz+CeS0TFAsg2VeAdZjjI 1FULx7pxXqh4PuhrkSXjLfcr6sO/Cz1yGFSA5mJAwA53Ztt4k20RoZwLRmWX4zzGwTnkF1vdMAdt wJXOyyzIvQjEMZMi8JMn0AbP73jdIqyGWgePvJi6aIDmGyA7HIeFoEErSWcM8AHRCoEf5Cs8UXA+ Ml3VuVg9rj2Jzio5yYvo5vOAArXjdhKJFzw8zOFFAgd40Cmc0s5EcTUleIhomUA8O0Nrb2fh8BoY bpwGiIachRXGhhZnQkSskpN9HQWL3B6S62wBEftVVQ1wUBVUkKr4LZtxdqvSqPQzGAUcnkUkhF/U cVWxBSqmCY3jzdEBqM4lr1yxWSvQl18KcB1epVGFDWko2iGYoXWIFQ5alzxD7kATCfYKFZyhr0K7 n3dT0KovRCC7n1qjlSRvoz9BjdvPrekSjWijda+yhL6xz2CMdiqZidiyBJNN5sqUKt4EhxoH7Xzg JTVGCDxfkC0O7rmonA05yOkL6Dw99Mt1qchC9j1rxaPW8eLifaForrCu11Clo2d3Dlai6nL7hB5m ow94Y5en4RnONmhpVwm+gXwHmtCg7b6G9DT+HDag98MOKvuUpKeDwcUxQIy+kjK0RVxy40Sv6RX2 Uh33labVGokqWhfcInrN3RV/I6746xD7I58MVp2LYEUMvF7HC3bHVAjRKndsvcpe+Fewx/wV3V0M 3od3IKPjUWBPHcWZohSY6E5meGgAhSuwe/Ds6Xr2tHSjAC9Ih7ZxvvXhIgvn66VzyKB5ZO8DI2NH Fj+mt/AVipfOkkDEibe654GcCSEpRR93aoRc7MHXVohDh7KSZ+TpIOFGORZopJu6PF2CrHmZaKtL EsjYRTjVjS4lgGknyLPAbCxlq/uiYJQzm44CQeMF0yd0TO+zKtyeXeFlW/Ren8LWut39Jjrg4ELJ SUmXLX6VtYEuUEC51hFc9695OdIimC5Rnwl+R4tgVdGrStuYFsFaFVL3wSo5J4BxAJWapVM/tTq7 v/CxWjr1EnuZDSuSGymz8KwAe8US6g97WfD0ie61lNx6PiFPFdFH/ND5t4VPCdHHxNk7S9jj45XG B3FfIZn46p7UbYYjWyUcYN0Uza/BHlH2gxMli1yEUKPrNzr3dWYelo9jJHl29eouxmJPiLIOR9am Ym2DRrZQZg8zNTqbTJ+8ZHWcVrohQlj2pC975zDLJ6Ddh1b5xVA/m8vwW0mB/1l1h8WT7lxEtvuk uoOQH0i7/hHhfplj6NUkR0kqH0E9SwtlDeqBdEPqKTJY2b2GVvmtWCXqvFzK1fW3yuu7dGo42mF6 vybnI1DdMH3FpfNViVFWbE1mmLW22VpBPJpaEvpXTikHpHMwylnt1pHOi+9QszENrHOk1c0SbP/J 7OVLp5ZGqLt0tnxa6yDRHrqT0Q02CzvXmiW8bVUPuz28koFIpxxiY54qUyoTpvdtRS3Vr/Ab39A5 PyNQjEYll9M6p44P2uH7COZ7wb3gXnAvuBfcC+4F94J7wb3gtcCIvRfcC1Yt6FlaMaXOwtqbW8Wi wqZWNt35Z7OLj665vzk4p4ppJqHCkIIJOx/e9rfWMjQuKO+zNXnf39T190tUbvdHtl9U6FxLKeXt 9/5zb4PSoSzef2/+tgneDl/sHgze+JK23T9iijHY/Qs7WuT+48OLzu6fpcF7p6eH17yVQrdszOC1 09PutbGzHdme4tfHxhtdEJH8ZrzGBCU5xJh7I+692j14807p45fS51xI4uxw0P3nr6PukgJq82Y4 p6eH14yR3RMdB+/1Hu/H/cvm/3EXp4kKZW5kc3RyZWFtCmVuZG9iago4NyAwIG9iago8PC9GaWx0 ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggNDUxOD4+IHN0cmVhbQp4nO1d224ktxF911fMc4Cleb8A QQBJu+tnJwvkA+LYQBAHiPP/QIozI6l7NafJ0+L0aOTJBmu7p5ssFuvOYpXZafnzychf2dvdP367 ++9dfRJKUKE+Ujbsfv/n3d//tPuP/KRS2H/w9E953+zqn7/+uDv8y++/3v3wo9v9+r/9MKn4nTHW 1SF+uftJ/nQPH3z9f2sCk63y3oewM1HlGKzzT3O9Gk7m1MWkktqjFhVczCV2jGqsVya7UNrARheU KSXknmFdVslZb23HsFZe1bEHByY4ZVNyvg1tKFYVG3MXtDGp3AWsNVnZ7GIXamVzXTK6NEfNXiVd SuoatURVTNRtWIMxymctq2qPauu7UXdQgbdOSLYk0zOqjUrrlE171JxVFFT1YMB6rUKIsQPWGIQG SnE9owahbm1CbI+qi4qxi15tlFd97iHXFIQEnekhVyv0YkpwbbRWJjDG6K5Ri7Cs1yLtmhyrk9Ip 6NQxqjPCsTmYNlpl91Vx0XRxrLPCsc7qDmCNiFjjBNakTHImZTyoCPQo0rg9aMhapKbxPYOGpHxI HZBa51TM3pwAtY7rRarvXK6SKhsnHBPlCxEwueiIlZArTlUOXJ7eaaNcdrl+KuLYOqECDIQXYVH2 wqICYbRWMeS6FxAK0XBKiOCFufQTFHoChahaJZBqXyo5OJFzOdnUg2Qfq7rRPi2Ob2Urcsi+LjIJ 0Mn40DN4NkpW6/Li4Htas1kF4aOuUYtXvkzYDY4qUCotVCloObknhEUi8AnZdkhOIxsWhMp75HGQ WZONHZLT6crhpUvKB9ks26XpfTIqRFN65EaQdyupdmgkAVbsoi7RGXJUrr7SxmvyIg6jLR2jRhM6 dbKr+sAZ34PXKOvSWiAeilcRm0IvImjasIYqOvds3R41FLF5U+xRHoJXkQKpx9iJyXXK+ShCKGQR sR0MLaZmp6BnxISMp8SK6IC1JSb2ojvFOlyI3fojiWStgnuQ/mC9J2Wcc7vp3zL764cvkDx8u/vh q9CWryZajGn37Zc7s3v2EpVPJQtYZfftt7v67OhPiHD/9vPuz1q78Jfdt3/dGTExBcLknXx0+MXn /S8iQcWwrpT+9EMo4Af/uP/BiwI2JYXUMdT9YXYxxrUWxdrzyQHgIB6EE8IKzz+Yz8fZs4hxH16+ 0A6Ahdce7HH2Emy05mWSoA+fiJEhWx3cyy/eI4ANGAvCZRPcE3qS8Ig26yvaLLSLx8368q3prW9O xfYBYgytRvuF1cyjBNsvBwKNSMZHRBiQkhHF+IS+yOgLOHkCLAm5G06OV45YAn4RELgYqg2wewTX iaZMsfiJNPCItrGcwGtH0vOy0h7DSyMYDmU0IEaDKMhMlq6LBXNE7U+D6+IEJ6VHORVzmk6mI812 UOTOaUawrj015E6IqdmWT4HNp6fG/I9goqc2AUxtEP4iiSYMEhoJbERwiDjQzgX0wSOgv5lSn/2A voBbNDUcZsSP8TElWR1tGyGQPDw799wuq1HwNksiDkPUDJFrzJMpsaj4Q9Si54uYF22rHGkJ/4B+ oC1D/wV9gbQd1sFQxEDxHZasr9lhyubWFyZLiHyk8bBeg6qwhbITqhttJJ4dMj2aHA+FHSLag/P3 4/C7xR7S1m14QD+goVawHMLuCp/2suh1PYwws4CQGVJOP8dKEemMmQvUY1VgSxF8wOtEaOlABYc1 OJoDqj6MKQhV7lKWvp6ypHpA2pTXOGABVd9afXWCq1YEhOAWw4WM84IwvHAS6LJifxnFlrA4g0EH CBX0yVGYYo2qgmE1XmDzBlpaspFmmSEf00bqUgBdQYwVwU5MLLy4gVsPpQqK2uKYMYLKHnBSVEri gPgXr8xF8IPlwzRQoOIdoSOAM2+4C71QRAy0mFc4ZLzogOtAjvWMeF1um0jQTsExCOQld+nWaXiA tuewUdW1S7PQRJ814vbHiD6UDmvkw2uyhUM7SPN0SGFFoJq3bHBse+D5xHU6asDqmCaOviOjg9f7 9FHPQEF/jBcS5rE77rxVVueU9Okw7RuDdR9FV2MDjQ9swnXQFIe5GorTY0YDYMVptvUgBtOfgUjC P0CKRdblikPWS/rL+HDQLG3ONGm9Z3MqZ5tQbDId2QHwQHiFmt3Aj1vhMNEpCHDlONQ9zvdaISX4 hIIVJh9PDStMKNpO4/My8OQoQoCpt0c3zMOrXdJnehjOHgv3WDXzaCwK7GIvDs3diB03/aJQVE2v bptukNUh9ULGvejRGR8MXZFAQyco8ayuH1grEFqt8NgO27lfF3Tn7GrWcN1J66IVp3xQs4xjApwI AaMMdH7LiiQEXtMj2hlI0XjPEa7gyvUjmOPDyAv+5Aa6v9BWo7MPcDIXPH6EEdAtznbReTMKmT6A mXGeF7IxYP4XOhpHa3uW0Mv6vyTlinMdFsDg86/ZVdvRWgJboitOe6E2gGxAW7Ur0pAHOg20TzZQ TeD4wxMPxpwE1T1h+HHidUU6Mx2JhnTFHxG6wxdFiZ8RrTbtoaCu5dFugRv1DNT3AaQ+HTzC+yEc rNm6kwU67W2yvfeoSob08l1byl2UGA8KJqkcvU6T6w7Q9oIH2ZtQ6UBwIf0+Lum7aRGI4fqOP2zz iHbgJSEo9MdFkPDpAgwoQlLnzRX+WhF9mDjy6hJU23A/4A723CE4V84PlmL8aeHWJxDTTASsvWCW KlJfvGOCFCTMzBieOdtUaz6qErsuT2Am4f3kcSldPKnwvjgvHjBbDY9CAL02LUM0XK8NlCY8PvjI D4SKP7jmsxVoo2/gldwVp+Z82hIdGd1CS+GzQzp1ZeH0jqcfnni7pO6blAufi8gflI1Ttu4L8j5m ZSdCeXEZCpjDxukXtdDh0y/m4fTKDdDo5hE8B9doPbw0vZT+MCsDN6pQCX8awV9AG3dmzSdTjWTf gRf8+OSGTUo10An9+HIhjKoOTNQeeG133CVJPg4LqxV0JblWZm66HDh1nRbNM1T1iX9Ww3RmKZjY HAnO0He53GUjX4Zg31LyaaaAZsGsiD4x6EorTpxDQYGZDnqbQFldfmVIhty4/NMVDt3APIZxka5l a2Fa3vXsZc2ujsah3UOT2YpYIPxigxSl93nH8LKe3ApRyOMd1amBHhuO+vG5jfS9eHB+ONIq4C2P cfYQiw84A4zA0iifjfSmm3ydwV/vnHLii3YYN5uYBFeWzDow2+uy1tDwgivAIJlWhh9kkPDXADEl b3EVgD/s20I16QOyoio+Z5dApO8K0izROvirgTgDamD67kDygRYljDkcRKRTvlbUd/YNlMgL7q49 n98XQdqUvRbCh8dhkR4Q9G0lTDVjDrZUtRV7co2uzc6mNeOKmr2fEZmOu+U29BL/uNDCwDDMiog2 rY8G3kFecdh40dIjfBlaKJ4adWhP22Kzfjqj6ghsUcCCD64PjNBtcWUaJ9sh2bkYBZx1OFK2bqvy vmZ5pJjjvrTEq4fflZZIkCSsCjqKok5PJKFVFqVdrw8cQPv8pJ9E+OpJQujncPq5Bu/fm9PPDXhf e/B+Bu9/BfNaDk5zf/r58by3exz3BYyTwPuP4P3P4DnAjwd4DuB9BL8H+PTofRI/zzK6d71gXxx6 H+AZwekRXSH4EZ0A/I+iEzRvAOtyYB8ziU9Inwh+Eh6IZ3Z88D7CD81fAP4w9wyQxPWhKGe0TW3J y64crSQAikQrhBSJ5gXvwx1FmC3kOOB9CCfaOaAhIIcjinkO2bY6Cm6uxFmUIyGGlk4LB6RcEAmT zA63mhUCrFJDeCNJ6dxKkxYJaL9YuiKNsXfK4v3KHeENwP/eRDXEG6kcj0ZjUzlqq4p28mFboqEV IgyOwixaOYIHUTBpBkEJC8anzSxSAkLzFOETwL/SfAdKdtphd3sle12W6tks8GuxQ1mjZZjSR6TN enxIOAP4c3lhnUFtpJXTJe+EMWr93+SN3fPYq4edPPbSO7TJawZ52cCLR1GdnE/gZEVXa5OUNcfK TGOR0iF4UKiMJuRzh3xIaxHpMCggR3kbpICEOoz1WpDAAEQ9zCFH47PWMUsPLB6Q98PSG0snpIKC ioX0Blgb7uw24vv0xppehXfKlCpym5L02v21QsKfST8dvZ+XQl++9pnPJV9IOZJMwTIpJM5BzILi 9Oz5AxrHIKtzkBJHpDSKtOH+kuu9Z8/3rkRUZDZkBfAJjS6EB0SfiE5Y44c8B6NDX2i/0Pgkv9Dn fuv2faRyPLd5gTACKIA+MUeUypqVLGWPokjW7VknqYES91Z84iz/cQklblihMUiosof/tNAgz3+Q soNJNKQyZfHMwkMr2TOLnBtdHZ8jegDKCIXZzk5vg+BEdMjSJ31qwhpXSIQvzzswCQWe2yDfHlAq zcm3tKLD+M9pRaeUcgiqXv2IF1HKo5IR6LDYoPAda8etDGu3mNEYq7Jx8nob5TR3sVR4ZqcKvU87 u0hqnBkPR/hbW2p9UVmg6XCqWPf8yuTW2da10SHzyIyV95a7xVIAy+tsgIm0cVmfAcJJHruzmTuN QC3Q7DGrJDohXbVmP3duPp3xwbICq65I4UkfHLOkNyjTGt7dQXeA0PhA2T2CeR8AKz+CdT0AfN4/ R7aW1XZIYk5n38EgZND7avJ5B53g0/naZPzqWk+ig1E22D/AQfTgxOF+wvgYacHAKMhGRV1cvohR cMtAHisjbx7b+xRdH/x62tnwcLsztry/vQfyMSkXs+uJKJBKk81LpCljVArKH/NKNFD6xStfjiXX to8E3JTXu1Re39/lqDsaSlBhl70VHwNfVQg2K5PNoV2aMs653fTvSk+vHn5HT28oMKMPeDzRDg/+ AKu4HaTK6zZy76eLVVfRJVwqeVzFO9hyb0UNZb5HMd34aXABnSAskWw8HpNuTfLugJcTNZXsV4Ax u1T3KYQkMzh/BgZmOkiNZL932XAPVz3HtbBQLT9M0LBkH+QNur8HL91GVks9U7ukt3WWG9i6ZYta 7LhAHOQc1ExxXBVxWNkctqSnu8V3oXa2OlQy9FmgLpftDKZehk0drRSdgdLhfZa63sSO2k6QA92Y 6gbqQ8OMy+lG2Emjj1+7OopsYbOuKEMNG0tDfoH0h7EIwepqgN5X8XSD3st8i+UVVgFvedDFgrco TXuuhqW2pz4rKvWKmjfg8tFQkU+B7WocgbUmKqeN2mshiwD2JeZ7H7eFeaOFV1Y+u9jT4hjSCaya zTfMgzJ5UTflqFwMx0DexXTTiqZWXUTbp+75RgErWjrQtX9XSB3a0uEJc2AnqcXwSDRB+fhUvGTz 8Ag0DGDQyt0vrabeNpf9OUOw5xYeuYVH1vHfLTxyC4+cmvoWHrmFR84iyIFu9F6FUEG6hUdu4ZEe yQqVDd0KZ3PPvi9uQuvfFVqIllIDux5Pd3DejWs79/715FinOQQV0qewtxcO5yAdvyg6Q1G6pHhh t+Lmvb9eyLJzm9wF6+7/4ZrnsMXEzpxLPazI26AqBaPuStIX39jcehIPdMkicO8JZWa+t4qasPIn W9EUZZaO7bcw8hbzoJtvKGGTrkBAVroZVnuXrck7qA8AvA3A5moPut2CCnFf/ibeKWOgniNdrD+A AWnw155LjW77QjhZZXrmui6jKpEiVkD7jvCG4BlWPG1U+W7WqECXncmOiOcuDXWpu6vnpp+XOwOj jAEo/AdVehrVqGDYxaczN0igKZ6ttIUkNaLsC/XEXMkJp5W+qHvR6uW9dd47d+kS8mISe1uV9qRY ZTGok16j8v288UuKlVRC7G6GI8Siav29j9kMR++SGMw2HG+WyXoxIoqp4cJDV6Dp8gJYXnSC3ZJD bMc8Dcxqefge3t5LcLXr0XMTox9+zBXcT0m5/f/C7pMyOpYYjQ+736Y/mJgE90773b/v/nYXvf3u 1fpk/s6nuvmhpBpWPbywx0aZPD2+5uz+0eylp2fHV+rQtoa//eytyeP64ikZGO0LnZ5arwi9GGpY fbZcV3uWys6VyXInb9YH81cExk9Km1JyFKqfwjh5/LReo0quIcz5ip+fHpby093/AYvXY4YKZW5k c3RyZWFtCmVuZG9iago4OSAwIG9iago8PC9UeXBlIC9Bbm5vdAovU3VidHlwZSAvTGluawovRiA0 Ci9Cb3JkZXIgWzAgMCAwXQovUmVjdCBbNjUuMjkzNTU2IDE5MC40NTk5NiAzMDcuMDM1OCAyMDMu MzM5ODRdCi9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJCi9VUkkgKGh0dHBzOi8vZGF0YXRyYWNr ZXIuaWV0Zi5vcmcvZG9jL2h0bWwvZHJhZnQtaWV0Zi1pMm5zZi1jYXBhYmlsaXR5LWRhdGEtbW9k ZWwtMTYjcmVmLUktRC5pZXRmLWkybnNmLW5zZi1tb25pdG9yaW5nLWRhdGEtbW9kZWwpPj4+Pgpl bmRvYmoKOTAgMCBvYmoKPDwvVHlwZSAvQW5ub3QKL1N1YnR5cGUgL0xpbmsKL0YgNAovQm9yZGVy IFswIDAgMF0KL1JlY3QgWzY1LjI5MzU1NiAxNjQuNzAyMTQ4IDMwNy4wMzU4IDE3Ny41ODIwM10K L0EgPDwvVHlwZSAvQWN0aW9uCi9TIC9VUkkKL1VSSSAoaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRm Lm9yZy9kb2MvaHRtbC9kcmFmdC1pZXRmLWkybnNmLWNhcGFiaWxpdHktZGF0YS1tb2RlbC0xNiNy ZWYtSS1ELmlldGYtaTJuc2Ytc2RuLWlwc2VjLWZsb3ctcHJvdGVjdGlvbik+Pj4+CmVuZG9iago5 MSAwIG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggNDIzMD4+IHN0cmVhbQp4nO1d 244juQ1976/wc4DRihJ1A4IA3bM7+7zJAPmAXBYIMgGy+X8glMtjV9l1XKJbttvemgFmulW6kRIv okiKNlb+fiL5J7Pb/O3by39fakkowYRaZFzY/PaPl7/+YfMf+WRS2Db4/r/Up039++efN8MPv/36 8sPPfvPr/7bdpMIbIudrF/98+UX+NncfpKUj47PL5BcHymySLSXFDUWTY3Cev4952q0PprgScz7b LTlpEikZHyg09Rus4cTRluV+SbrjECL7lo5jMFYq+PMTri2isyaEFF1Lt6mYkKyn5V49G2eZU0uv hQ2RVGmYazbBlRxkJoaSp5Rhr85mWbOUlnvlQLKpnDvttHYbuHbofDHeWvnEOcpvxqdcbEQ7sdRd 6pgFs7XNuRl4W7esz7W1l93tBQ/nJhK9YU+RtxPx3hSKlhYmErOJubZZRDAJlbFN8iWYSFRSCQDD Q8/ZyuRzTIs9E8e6zbzs5dOuD+B58iZuAWrHsydZaaptOuLZ+2SGobd4jsYJYVM5PxH2xvraZgkb 3le8kU3HU6hV7fdWtrY6VLWyp0l4AOWTZvOr44OwLaHZ/epMex7PJ2WTXAmABtoZMFs27GiBUW63 mvUmEFELh+C6wjHLL8u0nEwUVt3CJNnXGYS4zCGEiE0MOc2g57TX6ExO3i7PNQg3rdubWuaaUiNe yQmPZo5NrJcLNSJWw3qDjSYJ523gN5peRbaHXHILF3OGyS9TiXQqlM1VUi53Ktw8cmzps8oT4paJ uir/Kbd0GqNI9Bacsigr5KOdwemBvYUSjRdcsoLPClsWDNQ2HfnsVv3YwlUnIrRjqQRRMM5OxIXG /RVylhmU5e019OvzTvgs9svJFK6U29SvbIjQJBcqPQZ2oZHBxyjcdszgscAR8cslnVdyYsnCMLzT KDnJVuWttum4KWSephQn4rZOhIshthGLnWEiwkoc1zZLuHDSYbbWn+DiVEQeqsqBQTZqtulkL52O NRHZSVS0xHOSdRYKJiOHmIUDwXarpCASIXIDFIeqVQ+TkwEHv8xzhvkEXlQeZGsb2SelzC+poLBy sNpnkyrFwmjqmKJvl7wxwYYiH1gURxn/tPAwl7evLz98EcoRPl3/pM3Xioz9adVJK6FEWZWv315q mZVZC6ll2nz9++aPVuj+T5uv/3rJxg7rbHflbOfL/U/z5QHU5x9BOYPyL6B/UN96UA7g8p/BuG+6 +l4LV+qDB1gf4R+sF8KbR+Mq+0f7RLsfIJ7BfBBcEJ+ovrZ/UtJFUeJNux9edeNq94kWn5DuQD9o XAJ4RnzMdoIXrQuEC4wL8Qn4D6QXsL4B4AfS1wj/ZMM8AUw+jCGYtiD04RV9GID76euc8p/qkTLv FMiby0W0Px5dLsJ9hviFUm5BPGjnqeSbiP9CuAD+If9F88md5g/WN5cDibznWkBOx95vxv9WAjop PCIghgQkR/iSRe8t3wnIm2p3rsb33cIOCJZDq/XR5dGKww/DVmBjRVFOIR3WZODtRc6/IdqtRn+E fApE1ea8/xDBh5B2Y+RsI4dRi89g8OB2XZXgoqMZTnv8AcJBDGa1E2rzfHB6D9N3HYVlLi5kT+xn hMsA9gReFrSQ4TMYHC6LG6ZL9ajLLrE/ZXIngHgACGzBAbVAEO44wswHNU7wGGgJA1pCiEWMK7i2 aHA8BoQc0eJefJ18gJDDpYUtOg4+7srHhqWd4KrQPNsa97QTQIqe4K56Gw1hI2AMzs+PIKxkfu+M GkwYyagcE39GU0IjfPnOec/ySUGgKbJQvMwuIeU8C7vE01VLSjwrBCAcA3JLCMdOM6d6fUkp+Aby hKBPSKFJHmCmAZcQ4h0CoufibcTeBmETy5oMPujqRIZFJ7K2gfFjIbkn7EUXlNurVHiN8VJCsQQx AIWMfuPrKbjnDtMDcl6hnvgJ3fxgdIm6qT5qQLaOmTQSNnpBgLekXkeEhI/UGL1A67gjO2queFa3 IFIoZpu0x3diVy0B8eB6O4BanDWyJ5/9fJOxXqtW/914ocYKL9S14QefwOCThZp8QGCMqVm453GD RW07JBNkPu+SpP0OsLgFPN/pdTi9XQoqkB/S9oXtH1DZ1kP+qp3VGVUIGnLUh/qOOMEHJqw6Q/yq 5cgS6QB1a+w/fXsz9IDjaArn7NOISa3n9PWc/g7Vu+c5HW7SC6ytamNkR4GIiW18eh2rKdhMOd4n E1vhZ/QBGQs/z5dPJhscQEiLmRKqbYxUKjjExcbWRZ0qiWgozOEdLNMPcM6cXOEdkSvqXQcPdpDL fkhNCCsQ/e51sFBQM5S7Gv4cglyvel+gsg6qkzecAwXv3gEH3rtqcQg/YABfv1NnDiE3G8PGcWjG VbZhmBPJ95jjVjs7KeznZfMj8P74McyXI2+RV+QVhrxDgTcKAW8OC7wzXp1unoS8UZTehtCrCHmx gvlrvfKg95PSi+/q3phaLx6lV462H61XkRpvYF9pvRmRtxfcJ1ovNuQlq/UOu/b+UXodq/F2J29e iB807ttEuUScnksx0QqrX+b4Wn9u6PcIOC/sR0mxvTjLnf1C54X+JEz85kJf7Uq9hmacxw8SOh9N KD94iATEf6f9oxaCaP4Az7321bVDM9Tz1IauaF3F0fqichSagUQWmH/eW3a6JuXoy+8PQa7LoYbo sIT4FMAvwMt7c4RcjBdZgu2fEznoUo4cwg4fxZSd18mELJLxtV6Ix3z19MOO8Z1+CKjFTpuY+cDo wxc0BmqxI7OZDwjAHSHPDP6mbeH1AKZuKMEt4HqgFYRIxLiCkKPB4RgYjoJmBVECIUdLi1u8b/Bg /XxX2Zb5pR1/mOBq0uIVfSB1V2hwhi2sdozJ9pl8+Ek7q4AGh2PsSG10epxllT6TkSWytMgyIfk8 C8uE051suyYqwVwLAgjHQCwTc5TcbaFYzxkhSuAKwsEhHGpGjtdDDyD2bT5NUHZrtWan5XaRyPp9 B8eACwnlEpwV5BzqTa8n3o7bSw/HcSxqp+x19zuQoIMyuAVCtzfzB5J3J9O7uWFuzQUz4QmrwVF7 66M1CKL5Kw2aEF6U60BrcOx0C6jNdbJg4Fu6lTlk5FrOdnFt0y9aaZQ9Aa0copw7ZWe40f3e4v1b rt4r3CDyetmML9wwUGWdZG29ueBbbyb6Ctzf281Er+Qz3agNjdvJDWW9wT2Pz8uT9kxSSa85ewbu 85Fz9ih8VrH7a0a40geYQVdhiBJ96K3as7kjrjxESb9gXX1o0C2ieHFQSxOAk0CGceBZS0TnJLJu 0gBFY+BQVhgsoe5qN6vF0AcvnNdFLg3JW/QZKPSO8/rwmQs2fT/n/AtCbNUxXnrs9pwu5AOQqiEz 1UfaQ3JXx23qI1P1MWGQk+s/XBCjog/ZXIjNn3ePnLy8cXMlTJ8v7YKUZXqVSt+iaBdFH5wECfGu yT4uEPpv2oXqGWivjlrqmdLvnoGsGHL9CiKUoLR6WN1BY0846agnfaoPh8bGcakLKT3aU/ehgF+c LaVjHpUjjxQcLCvFrj5SdA1ujXN8QXqDrPQGOTL0IuFswOHkAao14PDaAYfIMrYG2p2HC1kCtb7m 2nAndGGlTfffKVATWmi1z35o07BrLbRoXynppVeAJboxget43mVi8QKQSn1DrFz+rgGcAApa0Mbf 3elqbGyKP/9s4WptX1B9n8Ta7r0WV226fZslD6ZQ0duUeh5Mb5Hd93aJIL2RIeSIdOJLmw274vgw hGO0HnilHDQSw7MeTK2IMgq1pKe0pSVp0ZlzFcy9BKeLDnuNWdQDmeRsSxJ1dZZajDF9uh21SVZv Wr6JHVVvhocG1jUz8V0yE+PrqEsZNlCExi8tf6Acjc/CBvRXHRckPVTTKJzvLqsw2Cvj57NXA86D G3BgUHqnAzsatyhd5uD5FJ0ftS5hyICgPM8W5fo++nurj/JuqNqF8rwBcNEgY50p1qeWKCQAIeQ4 yIlWmwOsk087qg9XQmniVFMIoHw1J9JarADlIM6ldRZXR1Vdxrnmhb7sYZOq0nafjFHKR3C1xH6v jEjX9ksntAW06eS0ftRK5eHaVv2Vxd6XxT565rJedJrR/lHG9UDRcRkdLSozKRh2kd0yp7bKlVbf +yIOAlZIjUHtzngOzgKEviMTcsn3Efr3YmJZK2Q75XRWB/Epr9rVuYA7MXPtTfHdmDzKfqAMZtRm rO0VZQ+FizZmGsHVyXKiFe6IZXbLGKxVVtE+uZLw9cGQj7bBklAA5FBNATsDYfxVufPQsU2byLPX TkLKCbL59sr1rA4bviyxKBDiPhquGZruI8RRIodeJ/pOxpVe7kbX9it78pPIu0l5PWf0PWcgEXFt C4bWcnWh8r/sV2lNiZQbTr7dslMrbW1X92BWHsN6JYfq5XmsNZv3ehLn2pIAXgSC+Z99ECIEMo74 Xif9R7kTXM37l5H+at7vKhx/b+b9J1d6F5UQ9oYKU4MSslLCfSnhzk+LAOEeo7HuXnf3d3vq78Hd NK6dW+/a64JO6G8AD9dWlp41CbA2N+MqIm4jIuaTpYcSjS+ZWZEsPVoykWub5329KTprwlZGVbxE V6NZg6fzeHHhjj5p8FqqkwX7yR1oV371wfiVVt94FIf8h88trLW/PpaRZ/HwG5PxsT5nvx5+78Mp YM726PPu4Zd7yN/XtkcQ9lBd7Lqo9atB/mPq5NJoucC2RfNE46KDmPpNce18rt3/czPMZjxcmy31 wv+Vrm4Vr59oYzKvbe9WX5b3FXwdPdKeXDS2z+eyByKw6A1kwsd7J2z1lO16pFk9Zc9LPhjRufrB nsXP8/vB9nLqenL3VSxfIhu+23Nc69HuUY92yCcNwat01IB4RmTaiXHB+fRlXO3jPj1buvbRbv52 LpZscvQuK27nkmVDVNs871PGyTlTiqOyxQsXQ2wjfsZswIvLxnFts97O2fV2bmmfrjb3seRY4oBO aDBL7y0q7JP6RzUmYvI+G/aFWoxVj5VlpuMxZ3VUX+h/jVo72nnzx8bEZMiRvZPMX2XRNWRR83xQ Ss319L1A5evF6ofk4r/Ti9VTuu6eJWrNB7bAAe8ekATke7iPr+2T6E3t+2vVZFZNZtVkrtd/L7q+ sqah7v9B+J5WsxrzB7LhRDU5/XBs37eblHMVYaEEs42KBLZr3qRC9bEP2j5QORZgAQiw6H2N6Qlx +aULQi8u0Ofj+drdVDM7g03tvBlE8g8/5zrPT8n47Z9a5dv4Vy7Dj27z75e/vMTts1fftv9Pv3zK mwHGGMtQwQw/H0p31YKdfJdf64eZ+FPnswmhQnuY6KG3TyZ5n3NMTro7FKdSFQqSVRjmm81M9UPx tLqg3lip4ur7Ldt6A4w0KR9qejLFyyqVSb1D6VArCQilME9rHUoB6J6cKbRzkT4B3RCVXO9I4gT0 TIaDJ9lPU9An1Q/F0+oV9MBRdg3HI8j3xTvAnUlZvtMU8H3pUCu7Ydg0qXUoBYDXvbuPWZtZ8xyj Z6I0AZwoGpYfSjhZ9FH9Q/FR/Qo6lRKT6KBHoO+L92u+tZ6H4zXflQ61iMJQ4CfVRsUA+HqNuL8S nAGeOFtZi0wT6EsxOVAJ7gT4cf1D+bS+DB4oRypCZuPZHkr3q15L3PGiD4VDHemZcnB5isVD6QD2 Ly//B1Y/14MKZW5kc3RyZWFtCmVuZG9iago5MyAwIG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVjb2Rl Ci9MZW5ndGggNDI1Nz4+IHN0cmVhbQp4nO1d247cuBF9n6/o5wDLZfFOIAgwM7b3OckA+YBsskAQ B8jm/4EUW90tyd1HYqnZ15ENeDwSRRbrelgSi7TR/Pcn4n+SM5u/f3/570u54rNXvlxSxm9+/8fL 3/6w+Q/fUtFvH9j/5Pa0KX//8sum+8/vv738/Ivd/Pa/bTcxuw2RsaWLf778mf9Wd+/dJiSViBvM jRJcUsG4MlZQKXhj3X7Aoz6TVdZnGyt6NVlpz91V9JqjyjpUkGpTUhSdpopOmXHKuWwoz3brLalk TWZaI/dvKaYhy70rXZJJShNF7s+lsDHMiZiYbCSAXIRD1ioTtg9NEWE1KZtsKo9blqplmU+R4o0i t+VYIcXl/W+TpPiobB2bg3YsZu/zMREne45amWidm++4yIRsrOyXtY22Mp7r1wSvMgV31HFpqvdP 6fJU31RvRZpNpnw00ePRbHYqOR/Kc6loto6T6mL4Xmcp9dpijOEx5qxLqCzGkYrGhCDQFeOCyrE8 01hVDP9I3jP326qKiUaxBtp0KVUBjD4eymR2US7FeT2p9+TWEI+ezPzsgmVXmnIwFQ7SWq9iXYTg libYnGp69VpZk8jOe112+2xQucaZ28DWVxN1nFXB61RFaczKGUoVOkN5Z5cVvWarcqiilb2PZ3U5 oR5HvTqdamVltHKRUk2n7JXqgjlxpylyRHVTnsb5/dQPLm/azbjyg+Z4xRJSPupUBMExLPk0TUVk szs4Xqu9Il0cziQhBdfMOt4tJDMsMxNO2fSpjr3Ou+Gbya3rlz1CTjX+jlgopK07JbqTPVu2tGBn fA331sGmwBBv6/v5l86FwY5dh5/MfMclqFAiV9dvIEVB03Ss6gh2UcXoKumNHNl08tPIzRW1TFoB P3+y48StMjmqINj7HpjOUhw0u1720tN4aQHFgWyFnXYUs9kzHaGSYhOUDXPoeAnFln+4oKc7XsJj ht4MBf10eNtSLLW8wHDDxDgDdzua2SUyj00lzewRHbvOaZNewOWoLZu0D/OxPljNOs+2T14F4v/l SYoZejLFOcwv3ZgRgVeFtTyOZeU0a3vdmpBjftbHSwPQMQtPMz8qOmaSjUVrzUXLe8XLTLsZ/stj H1/s6Xj7ePn5G7PMqVD+xM1HgbKHXAYHopyYtrz5+P5SrtlOMTncfPy6+aPW+sufNh//emH8qC3D mELX3A27veGYSSx9Hw83bNjeyOyYPft9c7jh0vYGo2lPpGPqbwRww8fdGCnp4PzgiXcwuDe7rrI3 wVBPridwA86DHKCKCDwBu4I3DJyHmFzMqzfQFZQHHsOirhCvvAfqA59wr0iC4q4wuYglcObOS5kI 54F1F8l8dIOX+qe7Yls7/YQN8TRVwxujmY+66p4gUo5bJe8qRq9SxeFE4Oi643tQ2aVUwuPBy0Q0 wzd0A5LbuZ+vH9Ne1AZdUqW8Dp71pi4iSSL3hF1gQl3pTi4csDnkeFuhkljBkMDkngBaKfbMGVkQ MhTIXjxzxF5s8NCpiD2z3OBdBvLATIRsx2oCZ3jLqDumNyQw95FhQ1cwVAdj++vf9gY/90Lk6jgM Ygv5jZHrtLGfvv4mhSlY8GK7aghTMCAQA5sF+EUOnsRdYapgtGhoiHJBiR0KBsxId203DyqrWmei G9xByw6T0dShgZwXFKp80wLEU7Ou0tkAUDHwfyNMMSRqpKLs2c6Aev69DlRZpsKabM4AVdhByJEF MqwFyEKuXe287ILlihykoAUOdikQy4rZDpWhIQrDHlAekeAE5c5ULA95fBmpz2jBOYQOIz/QcTeq 8iY60Gl0MnJz0P+hG+bgUWY+OLk6aJOHShynkYlg6cIxxFF3AQqS6zU0Q7G1ydOG2AHJ01QIRMMb yETkcPwqqT7IKuh/xJLFg8M0CVoYY52GGjqU7BAcDTMbIygHHhg5y6qEE/Sii2HWMfZbks9DHKnM jzmnKBudKqAcsir8UmEx7o/KmpCD75/YxaTTgWT8kaEyZZZ8IRI3CClsQ8nRxR9CSYShxCivA0sq 7jmjVcrlRR7taPuy177dd0Z7mr/409c1aP9Kp68TaK8daJ9A+29gXCOjk15PX3da1o/9CvpB7d9B +wyug3lJ6XSAb4hOaf8ZyN0h/oD+ET89aO++gOtArxAfPGgP5Y74Cej0iD9gXKhXiA+gfRbaBeQb 0k/EB2BfUv0hdD2A/hGd0/zZxxjkQZ2zHGMcmXlPCi0cUAAlgTQGea4ovA768cjjAPpT6qNa02/c 28bA/lvnWQkSshmg6xpwGHDm/E/ur44OCOmQ1IsIbQB6WaC74ugBUAb0skIvCG37DVxH0QzZqjSq CKOWWF5CdNMsCkl9JeIz0Ac4L8RPRD+iR8ofpLfILqRyB/beSu6InsbodTaqU+YglXNFUEdwTKpg 6LrQAKEDESoYVAypAUqXX0Bh4HIQGLgWwkw0X6mBW5wTPt7IdvVwfW/uASYFUHIBuUMA+t9B/2/A St6AFaL20uTCxecL6HkH1vMO5NhqvlL3LLW2VotwCBOk3q4RXLp0UgZFLch/oA+ovZUmX9AyQpis ge2n5TILBzyx7zYVa3wYZlGYQmHwwtkNseJJw6k0SyXNIgEFgwoszIHssn44jA/3jd9NGBejbdT+ QXLLqxtbaOWNvJRYvmjcaW8x5577TfTzlrO+dej6v85bhznJ9RUvZiWXcu+RG5bAuF0uGdka8O3o veTpXPLZFTnWTPKaSV7mKdZM8jSf10zyJFZaM8nnKtiaSe4CypNnkkd1ru5mCbpmknfX10xy0/mu meRlcGlNwcy0XzPJdY5izSTPKNjCTPKorOTdhPE1k/yp3Vi9XD5tJrmxX52l7FDzVZwpXVgEdq34 1fnvZ6/4Za2UV3Bv4k33B8Id5ngHq3jHJGaJfK+ofL84pEq8Tf+mGyDlVA135432FMLyEHVWm/s9 r/ddn2x+pyM7bvKpomjFVbbqyusUvN2jpuKiL7DyRzsm7vKOVrnkyVtQY+9M74RYQloa9Q6Jp/oa b3AjtJyqqj3VdZUYq0pQVG0zX+Cwa3ZVj9UHaclOr6zintjRheMlijPZuH4appv4bkOzz/0Do53O KfddmdceaU7X/r9+BQxYZQ77B1gjUQ4g5OhFXEsIWsmCwjm3LGrTEjQ2rFf09AUz76ew3xCGiQu1 opKKuHIYeADiubkyrYKeYF1I6RAN8W2zEVA1TH+objGNYbNXNiQ6x7fj4C12rw0rmeGoPlwpkNYV AUTuGeToVs5FXNdOXjTsCpXX5IFwgQjllXH7VODcoUfXh1NyqcjDIeRLQ7gMrRoWOJaXnbplKrFl 9Ue57YotEfsgce3ABUYtVjgo2uu7msGKDkdeiIG+DgavQS4Ih8CC1g9Q6NWT0sm5WFEd7NM6h5bv GV73qC1Za0IcQPibFtq+y0riC/IE0GfBPAG80Y7ti2EeAEH9GY1Xh0BPg/tbFocVw0I5VQsQNrYe +fsHmCeGuT+4erpCXs6IWaLfAN8bvuOo8xtXzsWg2qIoUYJR1uVzVngWCGdBYke5E5tsxR1ILmRV rEJg5cRZzXypOL/otsdI3LQMPqzeDFkCHeZNl3qmm+HxdybXWIbZvBvcWLJm8JoMZgrwzL8iSbU7 5AULfeacFQCbhsdQ39GruIavORqukq7yNkxeCr/di7WrODo52JHX4Yf+QWxXCxx2wzr8UEWhlkyd PDE6Hn6tF/4g9cLF2zaFG/DgPm5U+eI6+2fP34glrAMg/lIe7Xho1b9wO614v7xUr1BFEuFODun+ nGvvy9ZGZV2KgMzvkZHOXLqlT7g3BGnerXbOwz0vSJOAJxLTKa3lI5zXzXbOTXui00G/rKX7r+2u XrwFsERaVulWxS7egOolYT/NwECrwxaExV6gyUrlKJ3v6mJXF3u+i20Z9IUWCGf44J4R1XVAnrGZ J5WWA3vw45kmv/1yxqr+BPBrB3c4deHKQuw8P9W5OM7vszaHSobT5fpc+UEXSfNQSspHnW5xIk5H BFPf/Ycpnt4XbZJKgaiC1gxoQiVzWgU5cWEvof4hO2xmJ60qEjaq2PgombJXfdLOIzc8VCy12ivS pYjXpKkndgeXqVj6eRZ3sAKL13kng4eoeyqMrq+tKoOgfoC1JCQ9MC4qmCbNg0rpedbKL6iCNNKH eyuj2KrAIKzLi/jc6r3EjQrEid/bzGYbZ+qbaoatlGoqmkkz+WuF52nJPWmF5+VvfEB8N6RyulmF tXtblV647C6cL/JXwkKd4pMXhFqZ8PfnnTZZxwtO29XIOl6sDrXGozWrm/1oivKhbOC0+y3r3lS+ DbFIAdGS++IBqlWpulYFzRsVcBe7LTQvYdhYSxc2DjOtShdK30VJP7CQ1n9H704Q/Y91JM6sR4xe 6RhznHWMSNBwIg/yJVDC3wl0Ecyl7QnsZjkeWiPbp4ps0kOkLrzwWSPeRSKe/OWLdeFQlHbG197n Bx485XoHOJsHKVu2Klhxn3ihYVx9LEBxtpt9erwQSFHQdMa5cCte+Ex4QfzCu9XJUTfi54pH7gWP xKRsKsnYFY84czhZ9SnxiNdRWdLm6fAIjsPRKauTz+3fY7iKz6c+LfxJUVEmR2vCf4U5K8xZYc6t XjQ82CaQ+aPw9GEzxkMilHoFeBIAErRW1ubk5iPhCjTkQCMUTHDeB/0rALmngHlxAIICwp19gL0C h4sAhwX5Ee+U0SFVhNynz49QUiGSe1j0Me+nrSIbdMUEnwWemKAsy3TNj1wXtlj+4YI+g+0rbLmn cH3xz0kafakr/YIaGuKt+Cw1dOlJ5dLv9EGAkr4nX+HencA9dnaHvTmfHO55Y5UzHKoeGO6B8OuN stl5eyPU81jg8ewg+PRoLvgOYK1obkVzVdG+0f5XFO3F+3dbldZak2grqjozc/TsqEqQY7pPVHX+ Wu0+YQ4O77Gc+82CWXNk10RVUVulyYfzQLpVdvvnaAu6icX6/I7rWWVtBucv7CqfRGVLO9+fG7je WG+sN8694bU9fSPpvN5Yb6w31htPdwMjHRMYYOZwgZewn6BU4cJqy1ga3vTfrl9dGhpJY/1Auut/ TdFM86dRgWm4urxwdXvIT6Bv4uQDKgAn9XZIvmi1vr4QPscu5j+MJ/bdpqai4oV3FrTKhokrG87m bEG4C6VGgba3CXfi7zCkh7agtC5oL/7eRVopT5pDffTKgML5tjoUJqNkZKM3eOJ9QtLvq25UF1Sq P7eCJ61gwsxJfw0r+Yp3PqJSh8JAL+W4FLCJa6YKNfKZ4m+JwHoTU9rukc5ebU+qAacYuE3MVM73 pu0bkJqvRYK1yubkw/wB04cS+j8exbs7K/aWJzCkMtGfdi9u7PYU7RSN0bT5/hLt4Nd/v/y1dUrl xNjRp0w58uApD3/vRu9kqnfiTM6U4aFIyUQemHYf3O+G60QZmFge2LOGGW75fXA5ZxVczrGbcXBJ nWjeXx4357EthWAdmW2rvJ0cDa52razprvhRq/5q1yonlZM1OY9a9VdPisRtDAWV9rpwPG1SVNB7 8ZajeSeWtIvH8x61H0x81J7VXjnP1kCGRtQOLu+mTso7cnY8qf7qYepGbyul/DD13VUw9XJI0WGL 4gmJmxSz96zXw5k7R0rzk+lI4oPm/eVx8yLxmCKxwf4g8f3VXuLlijmSeHe1a+Wc3l4Yt+qv7s3g /2I+63wKZW5kc3RyZWFtCmVuZG9iago5NSAwIG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVjb2RlCi9M ZW5ndGggNDY0Nj4+IHN0cmVhbQp4nO1d2Y4cu5F976+oZwOX5r4AAwOS7OvnmRHgDxgvwMAy4Dv/ D0xklboWqU8mT1VkZVU3JWjpXJgkYzkRQTLC7az8/sXJXzX63f98e/n3y3QltWTSdMn4tPvtby9/ +d3uX3LLlLR/4fVfed7tpt//9efd4T+//ePl938Ou3/8376Z0uLOOR+mJv7+8p/y+98vKU5vH/6O Ne+8DSa35j34TmpTH/Lyx7K3JhZXd64YV4Ir9fWzbzVYvKmlNps72q0m+VZTX8M1mZJdcW25YRtN SCm1voZbNTnaLP9bajjGYFyLzvc17JwzybUUnHaXnZfHW42hLracUjbWlt4uh2J8dR1zQVLPJWtc 6plkjt1cDsYGYbewPBPBmRp86+1xSaa50spywy0b30rqbbhWU1quy7TjpsJbZ7I03CEgzpsopO5s 10WTUk0d7XI84X0xMZQOluCkw0drgqi/ZbHzJZhW4luUO6lUX+Je8/iDWg0mHPTbnFr11Rrrpnfm uhCEYqGGOr0dBBKCaPS5joimqntWnzoif0xq0/TNdSTI1LnYIx6iuJP3uXQSTwRJOlNjVObiINhY ujSQS6KNrTwfO1tOyeRFFSStSdMxCooJwu6bFsVxQOu/71+zr6/Z6TWX6+HRiYZCklJLKm+8dfmx tO9LFVkVA8HYVJ09MOHZW2AU0/dsXJDyW0YRXRPebbVjFLVMDNmuGEV1ZgLGeba8iRZNXospd4xC IKTIq/wgxJhzVlDt7qR4uz/RVnPi7stWv3cm1jlJ/3kMTmT3+7PfZ8f2KojonXFBjIn1SFwESAXP fd/shHhp2mw+QdkeTJdlDRrEeGqTDSdaw8n/2vxIazDSeFtWzWKJ5FBrrwZNVv5xtQOxU2jfNUNf w953SNK+YemyD702XBKat5I72uVAKkVRfAK+PSYcZRIl4YkSqu+w6zmjM4ml0+c9kU6OgJiJTbht Vqz2DQdRlyHbDqk6PWp3Ms4s1nI3K7W2N9DcYn9I0kxGs0+l9jTM8JIYJNNYT6aiWodDncAjhWXK iCFuy+TqLFPm+KiobTuZpVEM6M4OiQ94YTJqzeAE4KWEnna5GSz50mLEDXMeirCzANaZ6ocNc+57 sZNjFzva9aLKRZ33KtIiyOPPfdY3G96D+WTaHt3sRVQuQpEYz0IkGJWTn8gcO6e4RPGtfPTzYrVv 2OfJ08+x0x8WljeTdzkvV4e5KGLmRtFFXVORi/DQGQjO9HhqL1f7BlvcGgo0PovNLDQpTu5leVs6 8fPFU4c+f335/a8yddHk6VfZfZ30xjH8KaaUzclZuf7tZbo26YCDHv36191/WHFl/rD7+r8vR9vJ vl5v4Pqnt68nz7Vjw9vXwxfQzq/k9T+C6xF8FzyfLPld9Pyf3r5ewfyj+YmO+y47n3C8aD5XHi/s P+CrAMbVSH5G40X9TIAusP+FnH9yniH/AP5n5ZSdN0QXOC5y/qE8gn5CfmP7qTSuWHXohb4L+fZM b+9DL8eGArph0Y1f9Zr6I7hhUVPnctb3xrnkUAP809eexbf7IzmSSKCZWI0bgKaBEoA4F/UTcTSr 4UjJgMiJxsX2R0szkQgM+wOeT+TziB+0LCY0/1qIRPMPap/tJ5Ijkh/gfCpZ1ldaZKIdZzVZFCe5 2WnhbFmjIQ2CsPKzDhbTPgjoJ7IJWYm1oD+fQf8d+K5Dtjdr+6F5RhICbF3oiyHNAp6H/WR9OtRP O4/7F3tj7o77aLZYz2ngzjzuVHLeWGmmPTBS/0NtStoz0C4C0k/TC2l39DzCa0RHNuKCIiUo4sXi OIrAkZ6fmr2q5UeQdg49LjQ/uv7Ioj1Tkok+R7+CpgY4Cz00MubJ4jI9s0oxKzg/88gE8fpiy+nd 8RrqPSQvWv6Rlh+K+gm4CVIPtYOuIy4Deom1Fmk9g6x70uqnI+sk3rF0HNroPvio5aXR/SftMSjv oQ8fj1sWlvFxXlNAfX650//+gVdkCLICzCoI0n2uSoFXxOio/aForhRUBCRagc4n4dtHU6BaS9L0 AgxyRNmlZ9RPJQP0I+uZy/XCgm7AN+ASKnwDLlYeQXMW32QoxlUXO2DuOnWEUfviFN39w6ZPLmVb aUW1MCj6LkJVJH3ksrRW+A+GWdmw+JOg8EfW6g9kPS66W4czS61DAbI7l5D+X3mH0toCSMep0foE ur4YX+44DP74q4rvW+z6uXVEh2alk3aqyP6j1VVH7tv9PKKph/kBz7NmlBZdvrhOGLSmZVc/8Kqc FuUc6I8F7SCKDsm5mH+M++e5Wu6O+w5YMRbMyqC2srSh55G0DbrcB79ILTi0463aUWsXMbI8IIWA pTsopytRay+jrE33ZQu1J2facOzXZkuleDUCZnabstb2x0eLYz/7esqIb+vK42rx7X7H/kkC3E8m ORjYzlN2DlwbAetZ3BwB6+ukluUThDvwcCK5/s5uZx/u0oX9prieuxEj0RETNLGgfahABiP9wEgd Ca/vDsvsaUc2nxN9mkYpKwWEQfIsMjwVy54iUZJytXkAUou4mN3GBecBrV+AfjYUVSLXK9F4Pynt Rnnn2qsfVcB44TrI/PrIWEe+G+XWjvc6Mm8LK+Eogxz9XTAuuM5e5/H9ovDEcLufJZzM7qYncfDR sgatLZ1Po3Wuk/7bx6uVxYXNzoG+S257p0+7s0Hb+dPxi3bCMWX61X46nS+MHSGa8fmsR8NyZbNO zdMF4/h5oaf7H2Ie2YSu0g9aWbNY6dHKIjLwelu8XpuOay/7s9si1LK+3Ji1qT8rBR3BVFrg08pC uVlkk/VkSI3PZptkI4Bw3YHUdJ8WslGd12G8O+x/Qqu2CQweMQ2YrM+AeCh16Rd0HAdM+idg1G6V U4M17mmjGRm1JNOz8EKXiwDG/Va78daGta2So6P+I7lD84/ka7PcNOxh2sVUgFruO+12K80UmpFH MxNo9x3tTyE1kbIBjOH6vLzxw4Tbnyypaj/1tMrVrOwGQbcPGZFsUOlZUq6TepveowvGVc+Ca4q1 w3Xl+1RwfPkYJtp9CebXgfmt9c15ubWU+f2PpT67PfZlHlUu6rnff3aRtlDSjp+09jajdsgzF+i7 yCsdZ0Cusw4QeiB+gN4Y8k5A+1B7sqn5ldDsyoIj/Tb3g510UV6sVdykNZa5FijKUg7Zpay3R3Ik zfFaRduu9BpD9KZslsyLjkGQUUa6KLDS1gU6OvUsRXIXtvyFlE6V0a/jpgS4yUd5q7TqSmiv7BSM n+q7h3ronmuxTy1X4cyaY6oBrq2RAKgGXI8W5rg6t+4sBVwWP6845xcJsdUxhI+2mehZTnPSWWaV imRBDcpmO2DPNrP2Fss/8x7SsioNx/WJBUFG1XBIgd242u9i2vI9AtbcFiekLmy7C5OOFP66Ydvd wNKBpR94jWZg9cDqgdUnaHLJCKiEgdXHEiNlWm1qClhdnZnKfN2wBjWw+pGgY3usRpjzYOuHA2MH xg6MPanY5oyo457A1gfB2BxMEbV3O8S2ZJx1KQ+IHRCrE1pWWhRhF6vYDaSrE4LVIGDe6A2/aB4A FNF1s4dpsoZpsqgCUz1uelgQwGG73Nl2eRtao61mjQ0AezC8cgfAOzODnLcmeZ9LxxbbJUsoerEx g683bPQfltBDAfDWlpDWNj06JwBiAK3C1CNY8hEskv52HtPgUFxkfy8WSYhrlRgdRsk6Rkm2h+Ix N1EsmLD/9dM+Ul8mxk/fe9dMs/5kkrweXygmTM+lfJyIcWPcGDduvZFsePtGtW3cGDfGjXHj3d3A lo5Y42LttI1OxD75eeMvoJ8L+V8gNZKVf1wt25xfQlkUxo7K7+2PAMb8/CglP9ZK1kifjyVPj9Ir KegUJ6vtEH2Roz+WGm+Ri+UlQie62/cci1aK/KnlttZK/rS4xgrgzvtbd8HckuSJXeEndxDAQ9Vs jSWlQ9h0KdtnP967UeUUVMFEK2kfXZiU3bmz0eF+rRoYq9dmUDITFnKX36FmEuRIlOaCBHp2xlmD jU58QHLku8ffEE0reSP8RRuU4DoQm/5CKaXmsAeGPTDsAQV7QCvJKDlv9H6gvg1JGumwWIuBHcl1 I++3B5QSmdH4TiZM1EpLu3aa+ivtBIzvsZiaWtimJvHa0Y6N96P0U5Xdp0Vax2p+ma7/0t8flBSJ fJ7e/kVqRzqcrITvrD1Mew+kd/g0/n5nWkvrTbNTXubrixKQ/jKLL1rFB9g0YzANO+gPSuyLEsXC 2j+sRfgsadtZT2/+SAHG/WxNCdVvg/v08hHrpw/c2V+ni/wozf9I7ruAy4hebLxFab8+bB/F30iv Ts0u1fIX3kdisEW7JZdjAqQPWj3+QTe6YFwuwWRX3Da1h599Ww2Ua8BNkHpatVG1ttuw3I2seDaJ MBtXH0mHN9VGWvio5Y3R/SftMSjvoQ8f+2sPL2gKrM9rNrFlu1EteWQHsvKrdDwS0QuWBxrlfh5S z6xdGx7OJ/J32PVN9vwq63cPfn4EflYsNls7Pa7ujb4QMtFQ0dSTS1xaIYZr6++k1vbFH7ep2joA cSiQVQDxweq+PZxhv9HCH3SItlp269y4Syw4auVkYiUZaRzyvCZNUXbphTQltTb2aFWbh+2TIS0U ctIa7+fjlri3cT87bw58uwXuNxIX0MIZmi30PGttoarSa29P00oU9dECerCuLuIT1vp+NCkncf9p 5A7MpyM3VH8ecjHLh7UzAVxzJkVR4B1+tBLlvigtIb9/ygF89/tYSvHb5KVA26iBHnBAnwx5X4Vr +udn5cDyVnwytMsCnwD6atlRa/PVnew0xYA2q7mexZJzgBJQwtmDvR9NMpdwP8grrqUbKsHdkh0M +Mso0/qgti5ew7gxkrZBl/dhR5Fadmjf6+j+qXO9oH8jU+9CdgzHum73ytCotPl66xXunKYZqnGb fJlj68z362Ple/75sfI9b8GMle/D9TuvfBMpM7RWvp88ac04NLDQT9Sf+dRmGN+nCq9ThbBtdrAp rQTDWRw75IadcIM2oq1vMh6I+FMrfri6fJH8ACPFiO6Ib0m/gI44IPlite/80TtFvxXiBTmz6LC1 VvlhrTLDajEkZEGi60qpNLRSnCwfqga4X7LJKa9Ro60H9zfaCaSmP1k/grVGSW7aTDrJVBdsO1AP a+H1Y5aU7NdqrHdCakeYQInVRlrySNIF2tvqqbLQWtBIEjNPoWeJxK0dKVuMw9dm0s0VOkccvpML SP9aKwWwWkWelVMpqVm1SNq08HTtFBW6KR5u92ZY9FBavaTpy6YSY/3rx6yY3T2u1enCxjFKl72U gjM1+NaTouu6PR0QH4uYatHFB8NHtpSC1vlEKC9sYnPW7wN6+07RjmeXrxk/BXC9S8a3XG9IfJoA 1/sob5VWXQntle2D8dNS0WvldtdinxtVRYKmCvA1rF2Kc20g0spk/2hAtJmBoCQotAG+co6gtTdu PNwGDZRbeOVaLWoOR2/pS3sMCM0rtLHyttB/3WIZGCF9FfATw1TfLtzD2tJCx4MloqADrk/u4LI5 wFmconPMrlziG21BZ7cxsZUT6Plcex4An0M1yC5YkeFy9iAaexAcjXfhyOEy3tXeDYzo8JJLYIRk qIdOMYeATatGGBvaRVt9Fo6klehM8NGvcBS9B8CsVgSbLdFCZg5kFfGjnUFyZNEjVkGgooz0d8G4 4ElVUiE+mpgvRmBSNN4Gd8OJ0QeJwLAhwJVDmNAi/WAhzBGZ0VXMHy4y8yzycmtk5mSpzis6tbJc D7bm82QuPEbUqc5PcmsUae8xeFn2YOUF+jdIf5IBOqivWA905f48/RIluRUFeuJnBuYkEHZXaj3k Fk9mKmm8++1vL3/53e5fPwpL3JXmTHm1PXssyhyCCa2KaC0Zlid73iUn0lJP9IyX/RX7V3rjWxU5 sjmIjOXpj0ltCpODvu8FPdhophV72nSu00B/MeHwK+5cknbkydZ2315KOP/5ny//DdRMrMHEbBt9 8O2nr8sEeCGj3P/2Utv5z4evH6hqvxO0xil1LCZqigdq7j9zIGLOTe5/O/vJl2AOX58+kWM1p6dO P10+JV84vj891fb33NnVw1O++MOli6dOV9+c0igPRCNG1CFl3k/d/0XuhVimEwflYiS5Srsp+B8G 8sPzpxsXz09DSsE1kaIfhvR69fBU8Icr7uKp09XDU7k6I1RLl0+drr5S8/8BClxkJQplbmRzdHJl YW0KZW5kb2JqCjk3IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCA0Njc2Pj4g c3RyZWFtCnic7V3ZbuS4FX33V9RzgOFwX4AggN3LPHfSQD4gkwwQpAPM5P+BXLrKVZJdp8RTpkqy LTTQMy2xKPLyLoe8C81Oy5+fjPyVvd3948fd73f1SShBhfpI2bD74593f//T7r/ySqXw+IOn/0p7 s6t//vrLbv8/f/x29/Mvbvfb/x67ScXvjLGudvGvu2/y5/e74Ouv93/7HHdGaxVDhN8JpY4hHj+m nz6mn30sWq18MnlnkjLJmZSfPnuuw2RVTrnoON2vscobl9r6zUGlaJIpncdbsopeVzJN9ZulpcvZ +ucdv1yqU1NZciMjN7FxOMYYFUwJzkwyQbRZBVtyaOzZeuVK9i5P9hxKVLak0NqzS8pmcyIh7Ngm p0ry5zr+1i4hQVagskPTJ2VxZXBJPmSiyjFY58Fc/M6KyDiZiZvu1RSVfC6xpVfjRSSmR2qKU9lp 6amhT1uUtyZPr2WzNEin3iv5aAODRC28FEIoLb0Kk2gfG4bqpaUz2p7RCCcFZ7PM3KSSHpWcdcrt tc0lJWeLVzHW31wagtNGuexy/bUT9nOiXy8MxBmnQtDyqg4kJ5VSct5fHIgzWWVdf9NZuJ0zSiYY S/eOhSdCyKGhY0qdu5CUdw1SQeoil6oI6wb1GUJUshS2sd/sVJtaxv2eeEcY+NHqOIKJvRXLWupv OjKx90bMqszrBBmiNmFiJD4pXYnR2RRX+c9ioXxnXvOCSRqNRbNe23csVqjSK/bmYi+oJLgBiMId C9SwrjT2GwRdtJmNkLUy2bzAOqDfii2a9JqNQRUTPdDx7QggVKApdqVBMTmvtFihFrsaRI+7UAWg hQVz9KEFAQiLCGP7MI0rqgl2AkGaepUmIr++ASm6qEJF5Q3mOoolscJ7Db22CqF06kUnxtgyVK+8 tG7pM4nwteCquv4iULa00LToRggkwiEq3OkWrkqiVhoVELFSqc5ruHPBwMomsfk5m5ax+qyqnWvg VVFSxgu0vmRgrtuPKitwbSfcnYy8i/JrGcPLh6fxPHy/+/mrDKTivFibfa/bsuMe3KqgYzBanv+4 q8+0yKMNsia777/u/qy1SX/Zff/3XVZaFN/joPbPvQPP9fnnGrR3n8Dzr+efB8P14wto/4UbPxpP vue+69F3wbwg3UA/LB1g/5/7rC9qH1B7QGfUD1xfsh/UHs0rWNC/J+cF+of0RPxG9g/pCdYdjgfJ KaLDAzkewOc0fUj5MqC9iaAfUt4zKY+0Hkb0J+k5lAujw3lCj14MNdPoRdCoq4xewF8U9AINdzi/ tnngbyQ0wT3Nv3xvOQG+uSWHkoc0PZAkZIERx7GamJZ4cjxw/BtyWSdyAXwL6Y/4GWlEpFlZS47a k3yekYUhNT2yMGg8qD07Hg3WxSDLFp+05kUN50WhlWiyndZ075XDEKZiV8hk8DyAfkgNArEQSx/W crDrgsZpL9vxkcf15nZ84+4J/cOuNqnPWfyDuDJ0wj8bP0xoO7TuSHuR9quA/unvAjqgnZ8GWhzK xbJaedq+l+o7K5sCfC3D0xsK8uhrbgULYQUSBER/0M8JcDYEPm3mfW7uLk3qoUQVS8wt+gEd3dFH p+xRN3kEC1eUlMe5DdxSemZtBhTOt5erBIyH3u4g10Qn1we9nUJycd8GDGxSOtUYtWndCVYIzgQd aV23YWzXnexR4wezCVdyHrTo49jh25+8s765GXw3LQoUsRncqbIKi1QQvXzTrPiwO3NWnDeDfRuD Pfc69vK5Q3qCjR/rUaDN3GXPUEeDjTgbaopOPhkWel9JqfaVRhxD+mYnoFazZoT9I8lEZ2NIwtGR Bqnp7vWE4R+l9tzc8N+jIBLkaEFsA8j1AJbvAbDNJzCeB0D2e4BraVc8Yicy2IjF9zRuRriWZHvW wEB8jNoDfE8HFbEGZmYDBtXRQmoZyReiM5KjpeQFAnSyf39Us70MP73D7kQpRJG1AQJ6p46CtUiN 0xnqYsM8zIxdzRk7u3pwg90rdKgTN7HSttSGB27wEFxkz49QCCQJd+G2Ah2gsOMk9TYdYgnmlQfn aK9IO1fGObcb/l3l+cXDZ/LsoTwrn0o2yZUneXbK1pRiQfUHOu61ogxBu2jzgMDwxZ7yXuyVKSmk Eyn3rFZUSiFqb1+uiQnG1IS+44sIXoR0+EbOOvow+MUn8PFjUkEJNlozYCADXsB5GDSqg3fs5S9g V/CFRfPQez51yudggjsR8WCOZAG1Mym4hokcZfb51I9C+ILuBa0UpDsi71HgmukOFz0EwIp40TMa VUAvviIiIubFZC8080IiJvTidevhIuBRkdsGIRzylY5A0K2b/sRoGqNvGzBaSNwRLwwHNeIe0Z5A olx25+VjMI82tVTM+UENp3GY39O2AClwl6MyxcVpPY7VAxQSzFxQXyMhwQrwAVDM7pWs4MsgBjJ5 QPyRcnJgvFCZugNRxADrnJIeCO8nMK6OOv7d2MMERtXT8KCZ42+grvAvIL/DUUGy43SlZxV/bg7o llUEm/h0gJMG8SNPXX5poSRi6iJ4BqmLURg9Kh5NYuVEIz1okdoQ6wilDLsaAR6AqTCsYUEK/EI8 /xwDRoR2IGgbdTXETddCz0lAFYoyyRg/rUivgNhN2LSNT6AWv8JY3UDJvRurA7HkOjWQzcBIYnxt /dMb7UopDgh220ygvn5guRSbsAk5BCDsVCDx5hBsQy7tDGw0yw9XjGqdorvsDtjiTM1npUBv7mP6 DM72P6PYDxTigmJIyOwclPSLgvDY2I+5C0VtHuMJ+izkM6LXq1cQMxkECX2+ZOw7HXw8c3bFG4u9 mYwhCbXKom2o8oCCc+auDDW3E/ytR+3TQWhoXXAIybOK3LdP6GCL2qG4A6BToW3ppBtgxiwbWI7G g/Kh5g6LJukDdR5bvK4TPRfL6J457gau48ribgxar7VhqEZbqq0qutaSn86ZXidaaKZUr0jdzsbr 1RKOOGzu8qYd4z2fXXTxcYw1Us4r2zj2KkMwOy4mN14QhLAHCWwuGpkk/tb3K2yyOQJvsD1aR7Yf JNe9smh71S1lQRFZ/gZWrkYm9OiU7HrbUF87cLrdZRrqIDlE+g4FS5+ly6svP7q5fWTBPNoUfLRi FHTu8gc7kF7bZgrlIvfiZ5i7DMZ/38sB0ukwYe4kRZpvSbkOwLF2I7mY3IzHpFzMrsFCvRnkB8YD T57ZY7iZNVcvzpuwKDAJcnQ34eqrEvXaJ/a6oabXDR1z1/eny7exXM8WG+h0I0m3QIBOdo2+IYjF nzMf8i+1T2fLF9JOk8v82fEQG36JvHOIniF7IwpblmSpkJJOOASeOLxvS4Pt/vDq4NUUP+h2cxwZ v7BY0QLWLqO4iaXiUNh7gNg4EfYcpleRz7dSpIGNl+m0j2bvf5o93oe9r+hy8ZWO9wAttsNhy8ug FQKSwBb1YTUdKsCPkDHrEZnbSU2PBwU/fJmw4yEpX5HpezTj9CEO+i469mPNCwCRcJxsRSzEHMC8 0OaCdV93Ok6gYRGgG6vmexXfpW8/6VTbi93U0fxJ8sPaboGhj/NZvXH5FoNJmOCdMsWbBpiwtqt+ P5rj9cqLM7FZTrV0hV6o2D9y98FLF8GqwiLoncKjuuXbsHqSvJZ0qfwZ1k1KH/+zNSXJbSK8RWsp e8FGrCI7jvonLx9gw6agfSdvMaNzFFh5JA+7u3338rFBv7yvXsCDVUQswEbxJuz9y4jxJu5rxuYx V2S02F04naJ46ehStBq9UqE+WjYi6wvr5R3vFVsyd2oWW3q9U9T42mDI2lLdupnfTrdDw2gSBIsu xyxNmtkUlLfRt9hZNl6AjOuEM2SjwUB7FF/5vMj1Pm7bm/R466sj4tm9tao2csvGsyOLgTac6IDv bDy790YGLnDhkS5GaxmtNmGCMD7Vu5zDDIRp2YEvFYDUySG7WLhHJ4HvpQLfSmAVCvxGtzDNHbj4 Xs8JtwSNJnnveTK+pXBcpMMExGjn1IVSsCbmC48QvPwnl+z9MkcIWyLM5S3Isokw7fR8I0cgW5pL X7v8QRNPpgPbSt00leuvud8yUw4LsWWgDMePzXiyg0u71p5/9k7yXdrHv2WzrBJufNBslvZxvo/8 klvEoW8ZKJeB9MfMQMH2OofH0/e4qjpqW77LlVLC6qstm+Uqrblls1xnJbYEk4lx3ibBZBKH5HrN rm9Jj98yUK4S5KmAOl+yCq4GC6wpD2zLd5lQJ28r3+Xm27tu2Szv1Bt9ZdZK+zpueSSX6XxdHsl0 HHpRzmibXuGH3DJN5tDU0P4GYxa852vLa7lOGt5JXsvN8cM7T1tpp+eWSHJZro8Xiy5VTmVLNemL CG+UaoLtrPXKLVamfG2oZ0tsudy+c2JLOx0+SNpKlZxQggq77G0VT5CQ4XchWZW1P5QZvvU90npP 95e3w+MX+5U9cw/wh72SGnaFaeVYWh3CRon1uMUF0/C2aHy/NJoH/MVRBbxYWrorPFxEEjxznndp krSJQTHnmd3FdJ6Gwxej+Qknnrra/6Ju3muyWvDnPz76SRPD6Winv673JImq+JyDPZHE7ol4uNE8 l9gw9yHd7eAK9K9oHpalIvxFyOjF0WtxUYML7ZUtRozDpCbHypRWjZC3ofo9woBmlXKF8N7AKMCZ Qz0AyY7nQVskH1jq4q5o1Yh15lf0DcglEAgg9sHzKIAZ8JoHuH8SEJaTcqEmzi4BwjAPQUtNMxd8 gRcFrS+PBrCFg6sFhf1tgclbkAT+gjcJcM15xQjRMv9ihAZcOplwzbMoD4ohlwxIoosFzNAGkDLo KjwMyD7ALrCn0beHyDCe72gkTg3PD/trUWHaiUrL7vkXphCNqD1BNNn5abXYEyLQWx5+vwWtNC/q eC/EG0rIvrwug2aKh54QVKD16Ln5hmC138YYA2Ked9Ev8EKNhDS4Fo5rAvAvd0/n4VTURuXiDxVG bg6nOmJciDb4zTxtQXmDj9kRYnWo/5oszGi4n1BXUAtkeh79NrlwB4G3L/AgCs0DWzBaoVg0KniU 2PE81hy9leeE3UTlvfHLVCz8DBwNn0GaPXJM3KPAPLIoBAoAQ/cX35MV5OjsWdbN+8YDVleX19gp z4Yto4P4tldWGJwv62BlHbVsOADpgO4W0EK6/VkHemvAZHs5IcippGsWzXyxGqlspswbCXFm8yaR y5zVmIf2AAy4WijalYXKF5NCN3dFrF5Kb6kaeciIoGj2XkZkAyGdQUinWPhe2SswJp0txcIWz+hU xpmuXdirxACgP02fxlt62rMtOhuXds5emcZ/Y/AXGHEflY5xoR39SpH2SyV2kYQpqJhT2IL6TnR/ 70F9NiNawcN1OHP66BcfNcLjTOhkQofFPK3gobexiOG+gJm7/QQPkV/Jn1wRtgCa2Ih+Yh7QuOCA A3qBjr0P+oQ4Qefd2SMyDty9jVQM5TwRh5FqYyIOI+4McE4b4GsekXD4/NP555iA47MP7Gque9Gc 4rTGhOyI1+qB1WZQeq7wefJxD7Qn4gonYihIFPjA4hsEL+OpI+2A1TIdqnBFYDEda43jynha0SGI mFbDyGKjdUt8IPwICvq9IgYHBSn7wc0bL3Fe0co+KpIlgB4v1djryQfqNi1KUzxazzhW+HE6dOYm Ooh3aGO9DN9Aal107CbtFyxAuzl2D2vX6YwXtQ+oPTopIc88exXQvfKMa76TFeSWISsFdXNQzl2w eaH6ZHPnefevg9KpjvxSflG6ciRZOuOdHJ3OJzhrPM8U1ClwPdrtQPPNHmiaCRC4nXS+5qSz4xGo QedeOH6ZDgi+Iga+JQ/mlcHxbZlMw3QUmF8L81RgZgs6SoAcCg9fE+hpRNvRC5hS3ZhUE5zyMs+G k85X0n6k/2DYM96I0mcGU9QH5srXnpxZ5orTbevaF6kWQAdY7I68IaCQ892Q6nqQ6r7YTsr5sQbW Y8UdkX9YbScVU3HDXjEMxT0AcY/OKVdyaHEiPYkB8B1eUxzI78eZ6zj3w4uxOu1+DP5lXNz95+5v d1GU3un96V9P76XX42/q+6IEpTszeLpvZVx4fGPzqNngcW13RuvaXD+ZSjo76J+qlrRWlm88+mCU UEso+WwSo/aD2Yzby0Ioa0MIzo2HO3i8b+dk5ZP3Po6anZ4eJh90zWYxZtxs8BhM3pt4um78xeSV 8dHlmITxRpOP+fFNeTb3UfPB3EfN69SD1TaV4p9N/fj4MHWrsnGCH8dTPz49TD2myuPJmvHUT4/3 U/9293+R6jY8CmVuZHN0cmVhbQplbmRvYmoKOTkgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29k ZQovTGVuZ3RoIDQ1OTA+PiBzdHJlYW0KeJztXduO3LgRfZ+v6OcAoXm/AEEAj8f28yYG8gHZZIEg DpDN/wMpttTdVLeOyNKwLzMjezHjJSWyqlhXslRUO0l//6joR7R69/efT/99yi0uOeFyk9Bu9/s/ nv72h91/qEsEt3/h8JueV7v89y/fd8M/fv/t6dN3s/vtf/thQrI7pbTJQ/zz6Rf62zy8s/m/2gQ2 JuF8sNTjRfROG3uY62I4H4WzPtL/1Ec1wkbrdioIFYwKEQ6aIj2hWgb10tM7OqUGUIlmom1U45SQ 0gXbMqoOQnsCN9WBNUkYHWPLqFaJKKNL9dVSUYqQomsa1nlhHC1YHVhHw6qobMNyEfJC+ZBCHVaf hFbJhctR87jO5hG1VMRTmoaz0e+0ESbEJD1i6ZTZXWc+SLoCgqGRTTQxv21ITAwJ0RIg2glPHBP3 gHgtJNEPy9YAiJEi6fxOlRs0iY6mhatSeBjYGuIIGRoGljYvskuNAxNP0OI1sITXUliiR+O4PmsR 3SDDVlhv/dJKGGmPzBB1VGZxDYzc/+rICSS1QtEPtYciWBFTtCYuQ2FGYOtSQYqJcJL2YsXys/Lw msyvFc9m0XfCGBd024oY6/eqSh8gmg5dKkAThTVJXfDmJR6nRyXxqBLBktg0wkO/lJXe1JVRIshT cK0DhyyrydUH5rG0iVYkmRXsq3i63VhbRToimRZDqK3wWtsWk2WJM9voTtZdkinyLYPaIJr8AGfI tBmdZtbyJHA20MxZeRxNwLLazc6FUX2F3kkt9u7CXuaNCCR1pCWXwHAykDA0LReJsY9ZR5ONUSqF 5JY4z6ksKtHWOc/tKRdVo05wRAipQwtLs0TF2SwqLeqfrLsIxA4zABdrkfJ6ScvxCVyixYj5nY5M 4VX2oJIZfIIYRIiq4hJ4rYSX+ZUaKWIU3sSoL5yuS2V9epSWnOgRwqX1mF8Zb0g30ZuxagUc+atE 5TRrlqZInB5d0H2z0JDaMEHJBoeUZwO8l4UTAHGkQX3ysQXH06MUzBhHDoGXrcCQ+lA6provYEnp JJlVSJUFTo+y0LApETtKn18j14/sgGumafQiu6B1NAy5wSYqCRz9dgtImklo6xv4wxsSdyWbjFWw sSFcGAx5zCLudcuonvSSIc+wTh5FEZOk8Opy1DXRPLGiMbvyJ8172XiC4fnH06dvOcoUPv8Jux+Z U467FqTnU6RVS7sfP59ymxE60EqQCvvx6+5PUsqXP+9+/OvJiSANxTEZpFqH2XdYISlSDhQAHjqM 33ck0mCOIhd97LBx30GOt1Mqxz3HDg86XBjniFF664o3voDJnR6HIvNDavoErlOgA+KhEFRKoTcs 9w04uY6IiAHggUmCiIhp5cCawzkswtx+Q7Rik8TB9dDoDYgH4kQ4B37DoPW4BbenBnBl0m5+PYix TkN9KYYij2mWuOULk3WajFRSndTUPEWKKSZEL9tL0hofqgNZNFATYZOap6uuY3ADqspnJMVy30Ea XZJR9rHoiYh+EFw2oeASoSkQCTE78aewPPbg8qUciPH1R3X7XOhsigVF0or6ydnam/GLxjMzHqAZ 18KRc5edsNGMS/LRtcv+2wDay4FYtPgynMT+xc23S/D8ZzXfrsDz0oLnI3j+G5hX8+BUYb7dguet 5I1vAZwO4GufQftn0P6VCQ9YFzj+Sx98u9ET8IMD41i0vghO7rqg8bl4Mcc3X0A74AcED5t/QDuC xyF+Y9LHAD6EeKH2dFC9i5ryFMxXNSaUKMBJjikJBnBqPGJSOy7dYsG13vE7iQXHDiOcDj7ZIkgc 5iCelialZIA3NQnUEqIiDHAG06KUsAS8lC2RGiI8nB0PBVf9Gc3RL7bDUPEDS4t4MSI8IFvzJ4ch AnR9SwkpnW68mVBQdxJxQsceuens+BHP8BlgwUYbvgBh/YJgQkEIClpglFOJOQ82EhkCqzTN5ZOu GwSsAvg7RZiBoKRDtoZqHG06YbWItDWcA+7D4S09RBKsZjDd2aYN7xtC8vLXFk7+mUssvNPINiE1 Vpx3wSa5ZTd3wTAlod8EO9DCQ3vIN8aQHfGiOC6C/H3hFVCxOfsWjgtfoygHhjLq4DG6aHWwJzsD PXWd2FRkLwgk7wqj8Iw60FCrHfJL0zuh1cRt0qgDORDYqUGuyPN8O3SzJk6hiS377txNXfWypGEn ebY3V7FKIn5AHVgOkYjwT9huqE+W4slz7YCNSMsJVJtbsSLA55/WTZjemRY3iK2b3mfYeC1iIZ2C FSAKreB5DTxaapIp6fUV5pbDcniRbIxOA0e96dQTvtArBm2ywtNjZgTTuNy14NTk1DBjpXpNcIpd YhQf4mwFZBOOG/DtkgBtAo72oPdZMpEJLft/bA93hQsGNQ3cfITpI/327Pgh/uTwvm0rGtriW4TM KKSCtmI5AJ58sHT7CPgG8RPfJMJV4fsoOJiGUEEOvufRyLvXKFovScnk+7st3+ON53ug01ru+Ts8 x0fn4Ny8BW7+A8oPSTz6XDv/BOZFoDwcZn4CpD+Xntw8DSAXlTyHZjjhejHhR+PA/BzAn2i90PpC +i9nVVTzQKwRKlml65rUAU0EKcjMlIIaDWhqyBlcOBGnIviBhLBXbp0mAla2/B795kZWItSZQspW SkC59Uoe4yrhqycrIuOO2sE4UJQB/DGeWK9j0YK+fHr6qrHKrwo5Vch4APoCury2hsLt5Reoos2p WIYzImeeGRT0crbh82h9kXPe1wm5pJvn0QHqK25SNJJjpG8BnJBPuPqWG1wguXindlaB51EQrcB6 qeM2Xq+kaG66NjtsYFIQSRr7MwbAwR8tHGV7fkACT2FYQ4mjm9t9SN17hVZMLrjXRzpsu4k2AZD0 cDfBkL3jhubo+V4f1yA7C7QCHAdpQa494m5FoE1g5M8ArRCZdr/bZm+nzS64qYv4f9kPr9rlY9WP ukbbPKTXeEjtGvCN+z8I/jGdCNvrsnLg7e010p+d7B3XzqJ9v2cwTi/9CeFB8RqiG9JL3I+UkXbp tM/A1s+9vHuuduylTdG6cLU7Vxsh/5YbDTC1EeLbD+pP9ozTEQU72S9kx6FdQ/NyIzGuBgEriso0 cONfFNdD+jM5j83Zy2ULsH0vKvje3rx3Utvd3AGghssv819fsPh+p0Ao6kS+M1iG+VOgV9dP3k6B 3tYpUM1qKU0ED0pp28CaW87D4lK88wMSaJ4m5cxvriBQDiQKA9GxGjxOR6vEdSPRqgL44fEfmBeF t5DL0Gpz4Xm07foH0wrcdXxjWqEZXxi2A0P4+Zi/vexakfKxKeiGXMEH3ZasBpaESPIqtmRDbge3 D+ns3ergdnKRx3Zwux3cLuufx9xoa1+X7eB20UN95we0HzD+WvYTghNWe/t2PaHmcd7aAe3kHqzt gHY7oF3WP9sB7Tp9ux3QfmS/cTug7a9BtgPaMw+s4T7K7YS28YR25fWbW8m55TluUsIS3XMF6ziu qBxfqX9zn7opWzG4SjG4tsLN7Lo7Pdkd3YrUrRjcQpFOWFEU1jCHteuayvqWZfD4Zc8xVKhG+0iT aqW4vFlB1tDX1S8u/QMLKxm08rC8EKxrDAtaw2J0/BLqqGAZ5nko1SsuB+TX3+JLHLuI212t2xry woJw97zfsVambr5sx+Ra8ttXkOMTH5e5hRYWSi9kFlSzcbHOWHkZ+1ZlbKsyNoyzVRlbxPejZQds VcaW1/f+Vca20krZntlAD+bPEI6VlZbLB9lIz6h759NftaqSk1rsb5vZp9MbEYzMNUWXqOJkEPaw lbWWKvl++/znwiXQIZIz6UZqpGFX8nRF4IBEECY/5/x5xHTZMcrYZcdoxGaGQm+MYjzTYVHHZ9SR QEdECEqE4LjeHMzZeEBajXqFQys2VGNZIwZJRm3BmNxCIqKOCJcWgQvXHHIJxgMNBUmCWbQcysmL C+CGjijTPBEnHS+oQ4GOCftMOr6yJ0dvTEhSdig0lIqow6OOwJ3cQFpd5MrMqkoTlaC1k6qqMrE6 Q0LNF1HMdlANIJ6HQ0EdxFeyE35skxIkiZi6L1zqYsyhkkUIrlgoZHdWUBcSkc0MkIgrGK7iIMCj UadySnK0rzsaBf6OETb5YJ26vvBikkHqIzHhcypfqjHTP3PfMFAUIadCd4DN2w69wXdr+CqFzyWQ unw/mu8uO6iX2X4bJnvbTe7a5wpyRvmGAK3Trl2vbzLgrhraHUIxN/OG+sruYvU7qOCFV16r9bsZ 3LxttC+z8quW9nHQF37MfTrH/J6ZnS38YHl13KytSl4RNvlGC6nDnbKhHm2XvlfOOzuLstPeJNzd RdLM/Uqr06kE1BZXlh5u2ehe2hGuIzcnlJu1zjwluRs/d7Lj3O+fobVE7dzs9LbvohnZzmyO4WYv IwlkrjRX0nrhxZYc5D900ozsc01mFneZpztr323Odr5XPaqHixd6feV3Ze+v1+kqpAM4xe6mFRC3 cuMvrj/DzK5nf11+r69TEfxMrcatt/Jo0c983TiXtNCGJmdcI+RSEDbmd95vATmv8sWZyQzXCMUg aOLKLUJeK+FlfuUu9eOQWuIWA+A6PdcuK9RW3y1G4U2MTeXdepUjQJ8dMQM3tqFcdpibFfJHuzdu K6A2tN+tgNq1x7+2g8qUu60gWsWxfF1BNEcqX5v0mq+cV1af8saS/xP1fQz9tatEoJop7OoO3H0v 7j7cZh4387iZx/bxUfb9O5Vrrjni7huh53vRv+V8T0lXdATQ0WpQbRDJpoaD9Qctq4UNNmFmgpL3 uTfozRcrRXByFQczUQQJNrt4DHeD98plMHvxw7XLRXLTZ95reU92Okmv+K5TUWHblsrGuOfv2iHI 1VMH3ogrdC8N1W2H1FfsspdXuYbmGjWckXJ+H2fjNeWQvPDJx5TqlL16ld6PmRd7NbO9Zb2uMyIP 6qZ0vGXhbnVS33emKjaHwQilY7rPBWRbXuy6MGDLi12m25YXW2m/8jnGG8t67Xkd/ebjszyDlISX RNI36+Njyxq9kDLc6WrPLXN2fH7LnF3US1vm7ENEUJf8s7qedzBWaOvHg6dbV5iUAx1nSmrDDlQp 1AzG+bIO9opy1/esaq0QVOOW58wbqKQrfANOjqlruNR9zGrpW81wRon8UXv3KGsNC3dP6hEXlb4n 1J1U5+bX2oYlwOHkTQqgrFdeqSVercHtSAv7RHSp1+BmF3CGNXmxlMA63+wC4Li87yMXAA/76or+ tMD8uvpYDpGtwFc8IDSO18Cf09AMk5Of78gBCPbE2tBMwvswsHqAtZ5hdWj+BRN3VYCQ8FidgYsL oKY56oeZktXBRhGSTuEuvhnU/itqnPM1ELo3ANpQ7IIlwChYnyBwMc+x78qY3NrwOrcCg8s3FVC/ 8z2tfi4x9P/wHAN1lRI25wLKFn3NvgSgo5PZZj4LhwNfE3IqrbX/HHB26pYbVdq88dLPwjBxb3OZ cPTkrhOABZoBggQvTYHXrKhGTy6Q72CMdXUFqy0y0je5eocduPF1AGTrjl4TNgjYdYB6kR/4Q+PC JpYZ4dVCyxiCLLy5yPbmzKGcXPRWBtvg2o/VuRkbK/oZgqWR+sWo6G9ggXUoX4nJn+MCnCefK1Wm aO/jPN1C7PgxyQ12WGD4hiUYOv9sf3KF4oSxCnJ/b6KDO/phkIjQGYEdfDf+5rdjlT4S24uAC1gY DJlKrwr6F99AB/JUVBEIDjv4IX896sZtfFJoeAs/qUwstb8kqtRfDugvb0g1pugabnw7HotemAt/ Dm/riYOW8hTVfvoeM7gDlN4nAkFIZ2kdtd79LNqV8gRaUibs/v301ydPofHcC6f2sxcIOWEisaAm tPNzaV/HWJXNw3NGCa+0JZqVj51ah6eUckODmzxWNOfnZuySkWbMKL7EnQZxiTSPn6JutEgpWK3O US+fLzCfPk8zGyODp2WegHpqHfHWY8sU72PriDfxjiefIk0HK5oB3pYc48MVJDOY2z1xrTvDXJHR D/T2OeLF4yXi5eM0sx4YY4rRqfWIN7Xoc6z3bQecpUjklPl4hvOxGeDsSDKPZWhmkPYmWRLDs+V2 SuRqcSpdYF08X2A9fZ4mJ5dJRZnSFO1j6xHtfcs53kPjiLiTwicT7Rnip+YB8V+e/g9XLxWsCmVu ZHN0cmVhbQplbmRvYmoKMTAxIDAgb2JqCjw8L1R5cGUgL0Fubm90Ci9TdWJ0eXBlIC9MaW5rCi9G IDQKL0JvcmRlciBbMCAwIDBdCi9SZWN0IFsxNjguMDM0MDEgNjA4LjcyOTQ5IDE5OC4yNTE4IDYy MS42MDkzOF0KL0EgPDwvVHlwZSAvQWN0aW9uCi9TIC9VUkkKL1VSSSAoaHR0cHM6Ly9kYXRhdHJh Y2tlci5pZXRmLm9yZy9kb2MvaHRtbC9kcmFmdC1pZXRmLWkybnNmLWNhcGFiaWxpdHktZGF0YS1t b2RlbC0xNiNyZWYtT09ET1ApPj4+PgplbmRvYmoKMTAyIDAgb2JqCjw8L1R5cGUgL0Fubm90Ci9T dWJ0eXBlIC9MaW5rCi9GIDQKL0JvcmRlciBbMCAwIDBdCi9SZWN0IFszNDkuMzQwNyA2MDguNzI5 NDkgMzc5LjU1ODQ3IDYyMS42MDkzOF0KL0EgPDwvVHlwZSAvQWN0aW9uCi9TIC9VUkkKL1VSSSAo aHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvaHRtbC9kcmFmdC1pZXRmLWkybnNmLWNh cGFiaWxpdHktZGF0YS1tb2RlbC0xNiNyZWYtT09ETVApPj4+PgplbmRvYmoKMTAzIDAgb2JqCjw8 L1R5cGUgL0Fubm90Ci9TdWJ0eXBlIC9MaW5rCi9GIDQKL0JvcmRlciBbMCAwIDBdCi9SZWN0IFsx NzQuMDc3NTggNTk1Ljg1MDU5IDIwNC4yOTUzNSA2MDguNzMwNDddCi9BIDw8L1R5cGUgL0FjdGlv bgovUyAvVVJJCi9VUkkgKGh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvZHJh ZnQtaWV0Zi1pMm5zZi1jYXBhYmlsaXR5LWRhdGEtbW9kZWwtMTYjcmVmLUhvaHBlKT4+Pj4KZW5k b2JqCjEwNCAwIG9iago8PC9UeXBlIC9Bbm5vdAovU3VidHlwZSAvTGluawovRiA0Ci9Cb3JkZXIg WzAgMCAwXQovUmVjdCBbMTY4LjAzNDAxIDQ1NC43NDUxMiAxOTguMjUxOCA0NjcuNjI1XQovQSA8 PC9UeXBlIC9BY3Rpb24KL1MgL1VSSQovVVJJIChodHRwczovL2RhdGF0cmFja2VyLmlldGYub3Jn L2RvYy9odG1sL2RyYWZ0LWlldGYtaTJuc2YtY2FwYWJpbGl0eS1kYXRhLW1vZGVsLTE2I3JlZi1P T0RPUCk+Pj4+CmVuZG9iagoxMDUgMCBvYmoKPDwvVHlwZSAvQW5ub3QKL1N1YnR5cGUgL0xpbmsK L0YgNAovQm9yZGVyIFswIDAgMF0KL1JlY3QgWzM0OS4zNDA3IDQ1NC43NDUxMiAzNzkuNTU4NDcg NDY3LjYyNV0KL0EgPDwvVHlwZSAvQWN0aW9uCi9TIC9VUkkKL1VSSSAoaHR0cHM6Ly9kYXRhdHJh Y2tlci5pZXRmLm9yZy9kb2MvaHRtbC9kcmFmdC1pZXRmLWkybnNmLWNhcGFiaWxpdHktZGF0YS1t b2RlbC0xNiNyZWYtT09ETVApPj4+PgplbmRvYmoKMTA2IDAgb2JqCjw8L1R5cGUgL0Fubm90Ci9T dWJ0eXBlIC9MaW5rCi9GIDQKL0JvcmRlciBbMCAwIDBdCi9SZWN0IFsxNzQuMDc3NTggNDQxLjg3 MDEyIDIwNC4yOTUzNSA0NTQuNzVdCi9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJCi9VUkkgKGh0 dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvZHJhZnQtaWV0Zi1pMm5zZi1jYXBh YmlsaXR5LWRhdGEtbW9kZWwtMTYjcmVmLUhvaHBlKT4+Pj4KZW5kb2JqCjEwNyAwIG9iago8PC9G aWx0ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggNDkxOD4+IHN0cmVhbQp4nO1dWY/juBF+71/h5wBh eB9AEGCOnX1OMkB+QC4gyAbI5v8DKUq2Jdn6JJaastwe7iymp3mzWDerKHWS9Oe3iv6KVp/++svb f99yiUtOuFwktDv9+ve3v/zm9B+qEsF1HS4/qb065T9/+vnU/+PXf7797mdz+uf/umFCsieltMlD /OPtj/SneHhn8/9rE1ilRQza+ZPyInqnjb3MdTecj8JZH+mXtVG9tMI459JJBaGCUSHCUaOhpskU jKqDESlY5+5HzeM6m0dUyohgpPXpZKM/aRo9xCQ9glLKEFQqihS7TkuLMFIJE03M3Q2B3tDBLC3F BAKp0VF1S8krc4aWYpbXYo2gprnXKpg1nYhOcQYgsyM7J1LSKsaCkaWwQcXCgQkzYlByGXrduIRu luBSOG5UogAvnLdCEuqWgiFZ4Yvg66IUtAZbNq6WQTgZis6NA11NrXu0qQtdbYzQPrn1cbVMtLOU FglP+yAyDlgG3emgRfK5T0Wy00mJaDND6aguSRG1NGp5ISkIWcSEmDRnCHQpaO8rI4XRxLedcgXj spDCGEfs05p1FsGkOmOj8JmtVaY645WwxNQKeA8PwIFEWAk+8MAbQ/6xSnDaCa+9uh00t5SXTjJ3 uraU1JbGDsEXHoiVBOYxG5wOvEma9wOTnJNKBb0+MAt2lrYax3wQj8s6aUJ2EcZ8sNZ6nRK9QrU2 rnNeSEkAKxuXCM8ZNaARHNdYT7QR9MzATEUyH6lxap3bkKASyTprCvRJp0lgZt68zhKSF8Si5zS/ GaVXk7i0JWLNkX7m4gyjGYSJIwlFJEVIVy7VXIhEAG5FYDOlWgZBTNH24pVYZOh0ycWFeKmFsrnP OoBJN3VB0RKInyiVQnJLOEicnEDnbFgfOSjhSKKk0pGJyp0v4JFeRqGVjsVLNpk9mgJgsEe2vfWw Dgz2yF4Kn5RdVyl1EkYp6/XMyAMSeTrmXt8qx2af6IeqrKMRcz7rW3khPglpdSLra2khIa/Xlshk LjYHUnpkVt2rY3MgDhxckU3ARI3goig1xpkjB1IM8qLfNfIWTwXpI8acxn/TxPeFwyI+f3/73Tfi 32TQ5f/C6XvWka4eGVICUiQUTKfvv7zlMpMVpE67/f630++lVPIPp+//erMiRumti9RnpUKaroLw S5POQCR/qdC2q1CSRJrVgQTgpca5rob0amnIenDXChu7iiiUUypj380kpF8HgqkbJnEBLMt+Pg+V nPZaFczhPKjgr8p+QcvtodgpD4RRZliWM2i939AkcCNwEtxFgdkxfC0aCvaAQNFocrQqDPjAPnX2 BuE+4ElBzMJoDUESuQc1mSOp+SmMH20jcUcab08PZG5BOZx5QgOTJcX5kSYrIqNsfQ+TuSUpB7M8 iZjq+hz6C6hQbn61Ro0ZYkx+qOkhlUQIjkYaVqUTWK7u9/HT91W3tNBZDAhL5h/Ve1Iusgi5K7wR IQGKEC2c9I7Q+CJCJGnhupPo/dK+Xk6RkFWGAUO/uvlyCdp/UvPlCrSXFrSPoP03MK/mrVOF+XIL 2lvJG998mS93YBwL9mU/gXIAHzQvHB/AH86beHCA4wA8geP8xDsXA9pD+H9lwgfA04H2EE/AOuE5 fua1N9x9IbpgwgG2R/D/6cIaFzmZlVokmY2nVY5WC/MU4mgejAMoBGEwxHgEQe44AOIOtQcYhjAD YipaP4IPomSAYWi/DkgCNgabBWE9ue19uLBWQChD4uKCBDFbBCrAZJ5NGEm0HoSSaJ1cIQJYCGTa TGHHVULYLASsH54LEiKoHIwDSRmsP8aBZKuGUtSl8MHJuE7pSK1FTBFAGECmQmTHw5kfshheVbOO yBI6yLJBxIc0X7YwQefIhQMYB1mWSJ9D8ITw4VqEiLlyz2VZj9lNmBxlYXAtLS4fOMqyj6Ac6cFc JQ4qF0gIM/ETKUHRF1l4TgbhXQx6XRIcdRJcCwaq32h85kmzJRNY53BCJYGXDxf8cJvgOLiG41Ho BMdHrh4wby00YDsk0PhcK6O5+JbP/ckE8EYXXzHcEnPeyGTLqH1Ejr3HOJzKBfMyX1p1pbocayN1 KHClop0zVXUuB2dzop39OGxViLueSibjp2WMxwJ+nADxeK9mJcOVK0fYXi8kj5jyly2nKvFVuE7m vNwLB3gu6MKBKffZ6jHTS8mV+/B8mfiJ8BCOz3VYcL27AE+OckzUkjawPZLvTOm3UUqsy3FFvFsX 2Mu1bkQRoOABcW8OESNiHgRcDwA4W53hMmou4SyfFxbj13zDx8vwnS/Lkc4Ob/x2dpKzbcFnk71c WVRJo+XK5KNkF7S5kQ+Gq9kjeDLD2eA5cmUjwkOmL42NV1yLC+EVd97CsCOVhFQprTNA6LRgOiEQ AtRyWrCNDOZBsH3kdZUmBB8sM8fZ9M/v2mayT/bdLLM9F/te1SXKvpNkUiE3oIfrOKolptj4sPPV DoQDcj1wxTjiXihWBQTwHRVjcnYY1oy+rXTbvrvz4EUvndi3/1yDYlleQzk7eV3m4XKWvRtmLDS8 qmFelSH+xjV/m0t9o7b7bC51LtdBeIvKmeYy90KNHYqBzEEuF6zkGma7ebgXjlw9HHlCrxd8y3Lc OKGMlyVynKl5Q8yoFUrPdRhy7WKmBgzlKbLEmBSyu+Nom36F5fv4lbfHu5/B7qE9uLebqtJNAMqe fTYqXMkKJqwRsjt90z2DETt8mJYQMixigbJOSOvy2yWb0QFmVQCiheNcU8TKMX15c9ERIFxJ8CtK eGYzvJ0NLBSGz1UVqgW/VroZaCQ55DNFL0IM/oEEiXI7ahOk1UHIEFJBkNwKQda7xj8qDrraXU8t 5x03kZvJibh3phvjR7AqNX7Y9vFpdsB0QmnjXMcSF4trBX98FL7NdUHUVLGcEUoaq20BmnA9CtxX B65EUkvFSoYMFBPfwdBHUbQV340+LscY8VGUKInyW2ZzjN/9jHVLMG4Jxj38W4LxJonaEoxX2rcE 402Wd0sw3uskftQE48lXJp4/CKvlF2/CgpZfXFfuvGowXcsvPuNDyy9+rwXV8ouX9/Wg/OLJ155a fnELhtoGt5ZfvHy+Lb94E123/OKWX1wHYV48v3jyccWWYtxSjJfFTksx3nReLcV443painEZQ2sp xnUZ0ap3e/zp4Of3brcU42X2/FFuJVuK8Tb8bynGy+tpKcY7KSof5d7pWVOMjVfCJq2OecWypRhv PO3mVd8mv1qK8SZ53VKMV6RESzHeyTJpKcZFEgLL92DFYV/eawnGh9JgSzBuCca3MGoJxq9Oki3B uIAgW4LxGsa3BOMbRSqG/KNlF6+C8OWYdssuvqGQJ8wuXpxIaye89qp9LLwYN37Mj4VD7m+lFMd9 xfkTkq1glyi5CX7wmnv9yE3CAuuHKX1g3s+VGDd7PVx39Q/GFbjn+MG4QvF+obUMFDgk1qqFaXBT eZ4Nz5fPvWIw9t7Z+i8aX7N31uHWoGurjJBKBf2SQddH5T62mJDl/dbKRWZHiTHVBDg+MwerWmoF uq/hrp/5Js3ueMsVp9w3D7iussIcJmJoyav4wCQmZJjANA/uDR8zPoibBYlOOlWSg8hZ+jpZdUCO ayficQ9kA3n9bG9rQWxl8k92csdBMRJH6Ve7R0UfZIWwo80qRe+xo9+YcD4syes59dJVuV9+u9rs 2WUMYKfFcvfFpOTdw1CWJSKW7yaS0D7q1eZXdU8e5j6slLy8e4hELTurVlR0pdycZkX96FZULfn+ YSwfJgdn+5nRRVslSbA3R6iVJW7W7HSnhHfa7PA2+w7Z2nvblbufKleOV3qrGL59VUvevbbftXgc tt/gY9mh++mrH8TKLLXHix85edkLlI+F2Fg8eiucUQeFD7drxm3YyhWn1R4V4ZrR6FELrnlXyR3+ ItRcvi+uG5spRiAclp/evn5aKHMKl5xwp2h1Zkfga0L25HLYjHGqe3J4zH0s5D7ChhRVMOnCfYzQ oX/v8Kw896dlRYzSWxcHrRpVnOFsyVhVKbhwrdA9oInBOdpJsGYAxcXyTk57rUYw6s9AKWHzjDKs z3JGrw4UKjgzGiyCWezFQFBOESOO96hx2wPOLvsAdC+SjdGE0RbhHLDCoopvYPKr/L/tgYGFQHLN TbmtOCeXzUwe0FD8w72yvmK440n6A3EiSON1LBnqwSclSdrPr8pLO/T4AiomsDI+zJ/UpIcGPSbY MKkIiNbH6K71e7YxBq426yPBfU+oYDQSLA/cgVAHraEeScxZB+J7Wh5zV/IVCL+vIGFmJTfq3sfC vBlD3w2TQKhzQ63Rd/vYdy6VXh6BSiFT6eE+k3yY6bdzDAbblq8VM1ApYo6LJ9wXKj+qz6T8Rbxn y5KtHBtfzul+sGj1jfsFQpksKpPsQQEMMIe+1jOjlV7t2Jupvkj26bs9L2wWwn2tneu5Q4GmiPRR ONXsx5Jd0ERQzhvGR6SJeIRUbo+AYs5HpBF+I88iytudh0vyNF+0/ce1o6QyswYXT3JT2dznPXAx 3bsGxtzxMR0imX3uDI9EIlqPXUQ95w3C5HbO39LLTMUXUHHGREaPs0IzM5TlzoF7fAMVDvU4n+x9 xZmU7ysUXBXqceY6jDksWhU+j8TuobnLhavCPdCq4EFhkCAUhUcLe8DJ+TufLNfJwfUwIbUo09Dj M6hQGlVENNQ3VBFQhQEVFlVM0GdccfbqzAwl2ZOjfcBVDa9ILHJEE4wIWimzyhk3MMDP3B7PyQAx wUEq+VSNdivKHT6TdZDa0dEmyGTZsHKQ+6I5MHTRHEP2/vxtuSeqic7ZcIQu8pw4gQkLHQvECXz0 EO8QFkU2TlTUXvBy0UFFpGZuADtbT9iAPnyK4ytC7DPHbEuVbHCsi9ix4JmIUYsqPoEKh4T7BBnK pD5ShKACgfcBdRG0DzwUUragIjRBn0kPBJJS7SVGsrR9TOu8FGoWEO0QMWBqhyTKn/wBdgRkTphx 8K0CtkIHaRfOAVeFmROcAy4XKhAjt8esAqGdcP6d0XYb9QfI56Eg4wsAvom8QfmvqLzAfbClD1ZP V5TNmQq+NgApEc2BjxYSA6xAtAsRbrNiXsOC4jMnzIPGOx/rD2uCjCP0odyFQh86IGAPto6CHRCo R0RCH+4cV6woFutqghLUVqp1lgmZEyI4LBPZCjvuAakEsbMN9gWbfCC1YwWJ796p56x5ef8V7rFi nmLlxQSiF3PMTQzeJ1974ZvIcCi2Kr9hDr5EZtMo38HPV7MhNWzwtD7AFfacVF2R0U0IZ6K9sA13 i25i+JoFlPof7X4IbRBrYdC9Ayv4zpq7fPxZdpzf2TOe8HYPRwoSoxsMJb7sYxuuGzQkqBuyBRLe B5+Rs600vkOo5gUYW9yvvZPvbRQpyie7u3l5dZpvrPCdGXgOKHjZPqQNHoh61IA5B5t4K7KUipdT 73Q+T+5ukHzFThl4qcPvASUy2/1RcSgH1bOVcBGoQFQZ6u6p/HlvTcoJbjbYdSZb7050g2OYbSgd K1/ZGhL2gkLui7xOGxz1j4h9eITSuDnyxEvhk7Lv+8rPVu2FHbGxFphxExfskxHJy2QZ8dI+0Q+V +xwaL41SWkASIErem4+XDooappwzlOHikyCUSz4twiVk8Nn3fli5xUvXUplbvDRDiLZ46cXltnjp RY2yxUs/IwNs8dLlR/ti8dLBOFJ08rMhz+Rza/HSSC1n7KPFS1dQnVq89L3Ub/HSdz1avPQT2hEt Xpqx3K3x0sF6+iW88+PWLWC6mvbSAqbLqaEFTC/uvAVML/ZoAdNs2m0B0+XctwVMl/fYGjAdXBTW x2OuYlrANKOiBUyXQ/dF7uVawPR9jxYwDfS2FjB9V9ECpovn+JgB0yFIobLz5akub15enW4B0xWo oQVML+ufLWB6cagWMM3G4BYwfScTWsB0BaWxJPSk/5QUEUv3jnL3PSln8bekQlL5kznK3H5LyoF4 YG+I0FKk2de/KXV5D/n2eznnipsAX2WCiN7oqLoIX0XjdS8im8UQX63J2uhaZc1MdkpYxwZE7NSy aUmnk8W8SWW7HUalkvXp9MubipOCf7/9+c1E3/W005b5C80dZG7bz+uOmiCmfXLsFVIPmiAFreiA 8grTpKCfcYCfpqOM9hIgrZIU+TM0ahF6JlhxCY/mw456UtUAuv73e8hd2k0BN7Seh5uJQWj20s5A S/kqX4+Adi4YgFb+vTWldJctSafcEUk3Ub8RT2VCaquiVynSdEMxAUUYF1x/UDnjcqb5UDxtTuQk vNWWZk1ds9TtVY2L+3ZGC59kdGbSbCjtW6louwI/aTWUzp4CCU3vz7kI8xu3KRAyGj/ZuCbe09Xc bXzUfCieNu82ruioLE1/s/FL8XXjQfnMbW42fi7tW2lCIhON0pNWQynYeH60/voA/d3Gf0tnqLNm JG+O3CphiG8RMk23Pu0wOvRpB5reW+u9ujn0oXQ4867k7sz70vOZW9kXTAcbFYPN5wyUazbJzOZ1 JPgFl6Z71z6DNMR0t/dR+9HWp+1p8v43OUXRofS69XOvm61PxlKa1D4V8qdcJ1sfii984P8GBu8P CmVuZHN0cmVhbQplbmRvYmoKMTA5IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0 aCA1Mzg2Pj4gc3RyZWFtCnic7V3ZruO4EX2/X+HnAM3hvgBBgLtMz3MnDeQDMskAQTrATP4fSNHy tSRLx2TJlGXf6zTQmbYkLsWqc6qKm9pJ+vNF0V/R6t0/fjz9/pR/cckJl38S2u3++OfT3/+0+y89 EsHtP3j/f3pf7fKfv/6y6/7jj9+efvrF7H77376YkOxOKW1yEf96+kZ/fn9yNn/d/W2j39kklJUe 1uNSboMvV2a88CYZHXcqCBWMCrGrN78q37+S+av+VeqqMyL6qE6/+jbbjqBFDDFJ/96cccGD5jjn hZRB15UbnQheBZWK5WoXRHTRTsv9Vj94Lo9LEtYZRe+UJJu8SMZQn5UnUTltLOgKlUrPSsXZoIST Npia8mwUzurkU0WxRqiUvKsp1hshY4q2orWGhsYEFWuKDYEUywddLjV6oUxyVTJImka6SgQ0UiFG rSpK1ZLeNTQM5VK1EjH5UDP+mt7VIdRogdfCkH3UDJemMYhaGlUulYDFKVdVqLciZegpFuposIwL pkoAgczKy1QWAEGesCbqVFNqshlMYlkApH7CRulqSjWSjMtRsWVsjYnwyVbZltFkh1K5sly9pvp1 iq6IkVSqCTRaUpVLtT4I46OZKbXnH3pB6OiouMxB1GLTofo5DjIEMM64QhOMVMJEE/PXhiCYxHG2 IWTcdq+FuSFK5SqoIeZ8SxLhjK9TXSlUVDNsMVeuVZLQ1seyQjgiQiL2rLxVBZOELTFXRcGRBoaA sbJc0nbCsApo9CrL2YTKcrNXEkOZGpnFEubtXZ2iFFjOgw2EZJnLW6tDJFdDW12mM4JSS/BwTtGd JmPwjjS73uKcDhnN6ZsiQJUtjRRbmCym3tI6x+JsC5wS3uaPSi1QMtdiU5gId+rODd7NrgDZRsxV VA2KI1ln/LVFT9GmJLyUfmJL0370r1IgQBgQZai0QEcuj63TaZbuuSQPAF1mESns3j+rKddLYqcq 6GSWS8Qoq6BTWUdvOmMn2DmjKP27Z4lttkXErmmIuThUscStNqnKci25g0PMxeWSO6pTcICJ62MV T8ogyVjLvip5aSIqrWtctUBW6HIQUIHyMdNylVtJMRx59nUxgBaJhrOqVGOEr4oBNEmAgAUJ/ZLw m/Dbh52wZBX0zNPX1Ibpj317Xr4//fSVuJHAfv+/3fes5MeUA+EehRXWqd33H9T2L0kkSUIwcff9 192fpbTpL7vv/34irdeB5OPpk8ODZ/TgK3gQu6J+/n6+TX1ioNQ2pUBNyoMHEvVGGlSUZPcfSsxy JYbreGPXAVuluSKRr+w6YAehdGEH0Zgb1Crz8/nKB/poyaP32ZSG+qgJTAghCPi0cETPSoaDPpKn Hvforg4lPneNi0J27H0iscnv8Rm8H8D7af73w6hPf5fg96/gd9B+1E5U78sbeB+1/+dG7Vm7/Ah+ 57YHjRcaF1Q+kjMqH7VH8+RgQDsN0HPUL/R+K/mjdkK7AHb3DORzgMhpvUDfoHyOzFiR8V7sAcyi myyjGpQu0j5kbUjqoBwHrBOVg0YDWhV6n1v+S5v+IjRiWz+wkoL2VWsxWz6o/YgtQTkKvH/w9qbl MNmArT+IvVE5AF24LL2ZnjP1AemP49oFky2drfLrLPl1UqVUBkBoCFzaRwOEOo7KR4rEVTBQL6Q1 Jp1CuYEBLZQP6XE0cXt9ekRkz3UCwOih9yH9InNB2rHMvC52hhAscWkKOa9Q67nw34i+1obntekx DpzUS5Y5CJUzPsO/s4FOfjwxUAsNVNiQogomvRuo6Wa/j2ki2RkKgYQ0XseBBOCDTsRWSAKV4EKv m50skwjBedK8qc+lnFJ5Nvf4wIMHLhzqiFF66wZfvILK3buiJ6e9VjOO8ukD2A+FWnVQopkv7Pkv 5sD5uBSl7ZAr0jblks5YXhp7nZDMInrggFLgAXsBRUGlwHV0Nk/dkEYFZ1zF4KOyYO3yKxhjqC6u g0ClhM0ZURku6TtbWS1SPX5ReNRRUUc0rK4cjxSU4oKOsJWRrydY7qjyUXOT6n9/Qa0d1C3Jq5rH IULaKRvn/hkfyl+M1H30wIAHrk8+R6WBpLSZFy0h2bwqjBorkUDC4Avp9fxgDOt+HQU7CDMN+cgp 5dn5ImRiy31BDwwyHoQ00EYw+SGdc4jKGuLJYVQAx42WR25HdR8H2yAJwpHDioaZC2oBn1BfgW5i FYRqztZmfnOhufJ9DExDkFQCVx2sQ6165crqQk9iwGim+yCv1aPoJ6bBdCMKEXQ/O+qTdz2Ejwhq yJqQn4atHdIKJKihFcjoKjhwFLcMioI8ZFCbwAejYR198IqahIgcflEXYw1EDgXoq1jWai18TMlW oDUf5BboOzKdQz8BoY0W5m9HaDh0voIruwDA2GHVYkdk+kBprqcFhYiby3YM+TS3ICsCZfWMBgp2 ELUKDxT0fKGnAk0SdRD6NnxfGdcBh5bvj9QB2zSEmfyOuQlSB4BvzKQRlITpLKAHqHc1CDOKffto oxDSSUHhpooVGdCa+LsuDwitCn6xABcLHh+greHGr1sMwyBWIFBfwFrXQMkrhOjwC4xgqB+452zp 8nPGOGS8gk/ArwNTDZQuPy3NZy2Y0oRUAyPyEUrVxFrwgYFE8IIewDAFxFqYtlDCsRC/TH9H/Adj rZKRF1nLJ+EJQStYiw9mC1xXaFVwYoNvoGwwa4jWi2etAMkO90FvGBp+9FBknF8KtjfZUn5pBibZ 9Iv9xTuLWDfNIFzDumFR0EBgQnw1XRxOY0Gqq0qhDwgb85AGVeNwEmUoIcOjB+14uZJMoyPMNLoi Kmm3eGFbZbzNiW8IsWdXx4yO/9iOTLF9txy4R3Ltesm1dWcNmsTxbIe8btFJXT4CeRibRuV8RxQu L2HzEGQ0TJowmEWTkyX+LZKddcKYvCJ1+cxRQ7XDtMLPrkCsqVmINDM5BehmeC7UhgnSayxY4Ifc bLDAiyLedyLnLf1+kGPir7tsFwpdiC4XOlTtwJCvJAsW+jScLYYLk/i03DAdhjqIxyP1X4wnq1Bk A9eowOCJzWay80Lz0T1O+Tgx/yKj6LwDjKCpglH4KxnZ/i6sY9u1X7cIpXiyEaa00ANdMCvApcPT EG8wD9pwloW/i6FlDMjmgYbLcBqSacMAYgGf8WcI2VzDp0bc3MQVIt/fxz1vWPllSYeaZOewUSNa 5q864U9CViHJaA9DYQK0HAFqoVRwNfnOTVdh8PMkkJYhM/L9DnYaamFWc3im79U3e0I6b7knDKoK f8PflkzSftKYA7RosmvBXD2fYhr64HeGNDiDzN7CjIEerYWEQSF3acy4GybW8BWKLyHlw7lHtDcC ZVe5q29w/pa906F6f2ASOqWK3OqC6A5SFQyq+RMjeJ9Xu0ho45nPj74mcsGoQ83CB6qdXA9wdQfl 4y++XLAjl+9QQWPgL/mB5sOeB10QaLfLurTMiMAF+NDa2bOzC3JBMPfA365c1dwLNx9CZ2e47bpq vwub9a+wampB+H9cWHreFXFe+ChDTVaevRBkwTQYP4Zg17HAsbjJzQslPm6xeKNlCPrRlyTxJxkX HECEl0micOjrOedseMvS9Z2zz+uItJtdXmC67Y7DgD3nJ0wxYvJzKPx5k4ZTnAZq9RXSeQtWWSDH ib9bCSaimidYphMq10hE3YIP9iDR1iRaB/HsqG7B6lY4LQWHkL+mnj01cpUFv+3WQMuuKC+SjdGE AdbwtxhWiWR4ng2EM3S+QT8VW7qs8vrO2edFGqRC/MDxwpTIpopdJ12IWfw6Pq/CrQSxQ98FzuA1 PM4LHRba7rAWnLRDC2NfwO/wxBm4FR/6kWwBwvNITdfa6Q7PkfHr/vezS0NG1xJf/aD+t3cJnxxs /ubmf0cHraNbvhR4X4ID8xW4p0WCg+K5txApdOA/eL/VvTfwAH9wYQF8Hx3szy0H3c+Dxgv1F12U wLxQAN5/guTZ6LYteE1Hq3tmmPfhwIstmBdqwAsa0G1hjW4RWyj/4r00UoskDX24+GIariXc+xUj t2ZR7CtGGt38BctHV32A9juEvGB8+xuX5kjfBJGI9Te6vI4pWqhK6JI0Lnje1yVaF4M5NB2mCULw B7fbNLvlh2tq3Ft+0HghfeDKmSkHBPlcfVj7tqMPTn3tLq/b6s7U0+uiuuvOjY9C592a+4vPKRw0 3b2m5y4+N8EIZ9waBGKkEiaaWOFrKRR9IQJAcomzckla2P2miSwXpXKPSS7mvGBSoE7Zja6FRfeH sZmpEVJwr0NlX6sK6o3HjHknPRJ79x8k6rMyVjIPvU3BloUNPTKukMCgsWmdWQ7XrYK0jt5H7hyS G7P9t0brqJ2Jid7wRnl0Izh4P6JLBpE+gJwb27jBuLe6ubw9HaOQi5lkg/4GQjXulfNcv5F7uTRT sW8UQOCdtDYfp2Z93E+VTomhVXTLveobBfCgl9xULtLuZ25quVGqldtOaG1cX2HlFGyrKK0VvS+8 e5asp95tPWsr2ioRrNYVjjyXqlolzz5bJAvfb5U0ZWJfLZXrIGQIKVSk35nowtWA1XNDTDTiWk4r nyAxOfsgN8zN2gibB3KbjDTXA2RyIdsemSHAA8duAscu9hW4KHVrk2xcn+leQuNWvt1m47UMZ4q8 7BRht9YVALtyqAuBF9XLzEFxBc5OuHLdk2U0junXeGEoQE+b0C83NIajxw0JuVrJpAsUYvfzMMz0 dPLCp3ybacXcCHel2VbhPXcyHfWrFZIwoRKWw02OtbJ0LhI2cjXXnly+Mxe9nJ2WInkVK7hzYSLn YktAztnGIeTFwc/qIfzalrYs+YW53yahIv1zzaz42krMzmavvWAWGQ+qtxFtsulubdheOVN7a5PA SP6xeXY9GJGCdTXLZNB6y0e2fBmQn7fJhtR/L3ko7gpaiAo3tu1h9RXGzPaz0asU9nu9P8Z/m6R7 o0gLDR7bL2ykrOy9UEy44q7TYSvr2hP03Ai1kZEgcGRPPrdalr4tKKwH7mvvQWy0Grp28rl+79dW iOaYDh6X1ria99wqOGEuqGM7ovhqto4egxXJusONMlfnx8+Gw0wrkY0WSkF5tpodYM4FNQuzmLjd ailJK75r5ZSzeYfLj9x8H5e/EA4A1Gdv1+MGe63qXTl8b7xzuOgnJCVcXsJUgexcBPkYpxxgno1B RG213oZnEW8y9zew40qmlzS/e89pTcJx3jB27zkdhFP5my3kjdKREiS7FNpPMrtrz1kvTHba+l17 ViefzgvEKeFt/uixa+9M+Vfbtddsj95Wc6etNmlwfSmkMjDRy80lMX24tRO3a09f3doCy2ZHKCAM /hhHZJQXLiZhlNQ1Gwoek1ttEXDhCkXnrXDaWLuNj8g95wpl5JDerrzZb/UJNK58kM/NxWe0ErRR 7mbj05sujskfRypV8cXlqLbtkUotlxx8skOXKoMOJ4PwLoYaCTZaEdwsX9d4vaALQdjNVg08/LGF kcCdLCV6bLw9X+/aq6bvbJ39xXr1SXGj6DH4IIyPpmbVw50gy63lcooRb5KHc/m24NnH1twracfa u0UeO28X+Q9bLRX+pHthq+WzcDNDyyNmHp7Eh45AGm9mgPzupRFqs6NiH1snqryzy3n2sZvhrHwe uxmW6e1jN8NpFNWK3z/4foebR7Q7282A+V15Id+Pm70+v19n78QDh8/vZiguZrOOlMQZW3Gkz2PD Q0ElV97woLgHpHMXJ3AptBWRoPYgU1h5o86NbpDYclEZ18I/2RaNZosQzlsmpnodRdrs9Npbm9iA o3EnGy22uhIQXU8EU5tcR5l7PwVzkR7qb2qUQFTcqX7ulALia9R+tB9i5VNP0OYF5Iqy/Qpmfxcu Lm14gQvTcJrtVmh1SNZ9rZbENGiViNudIstdg9woEwrLR1rJ1VYmjdyNO7D2zPQnyzhs5bbc3B67 VjNPrdIeSB+OV2K0osH7opH6gX5MuJ8d39ON4VlxXHLC7aLVmZfB1me780kKcntT2BO2Msbshn9n wp78eELYFhK2sCFFFUx611cjdAjGmvg+3p3cnQjSUAQ9UAT4oNMQK2RQKbjQD2GHNUmE4Dz1aOqz KqfIdGL/wIMHLhzqiFF66wZfvILKj5t7ktNeq5kA7fQB7IdCrTqA7MwXlvsFrBxL13Cle5jVZYyg 7L7wItkYTTBTazsVIh7axB5BNFD4iytoiUPKAIUI64AigUVZpFcHNJv5Aj0Y1ZHU8Xc9FBXpVa+6 blC37lXBdJLK1zgSssXky/av00Ai0uv5Rg0rPy50z18YD4Q7fDDq+LAoizo4Ap9BB93r/O+HzMd0 +EZ2lpF11jgGJeG2WtAkqOiDGiT5IacG++7XIIKwUhGheKXKRFHVhjr8Ofg2VAVpU3DmEmuDJgJr h+1taIawHxAccOWbQi+sA7UK96NQ+VxCw+6CtIQzKdpNnKOD0zuVpHFDEAy2N9UR1g0Foz36RL0A IWNHxKEHr2i8EHhBypdVTFJHxy9c9eKTK1ZhaKNIVndmigswk1059kqvbggjmkNOigIcjh0O5FeM RDJ8AIvSEblBo4671D+w7w+kSQmNYJVT48Y7qRH2GS+FlZo+LGJgS2X5KAHiM9JTGCAa7hcLAkSI Tu3g9xEHboKyC5gVVn4EiDlvS6UcDgS9ibcFRXxn8IBDEoPqQA9wz9lhz4JEBhLigiDGcTvIly7u B9SS2Gw8oNhx1oCt7XA8rpGKqoOgqlSNA4kXlC4ZceTQ2YHuEfbNCn4Tw2Gskscw2XWxz+a08E6F CiBlpz4wS7MVHn8BeZ1tCVhL+YkMdoaD/4XGh/kQ5xojfEgbrdd4A9N9b2CZNZoefEbzz2iZHZh2 U2h5E5i+e2buxGffyHtjl3Btdn7VVjcTM4875i7HhCcLTaZzQ4zdgSB5TpfsFs7nhqQyKKr9OdZD M3XATD0hgEnR+TKyH9V3EkfG0/bWTj8727Uz5nZ2zfM+5yZ+DP7lffffdvefp789eRtF/1b/r/Fb VMPx+/xWEhQuGDX4tXvL+9Fj+mf+fQYpyYcQzhzOYpk0+IsIyshInR61XEWSuZYkgXHLR6/3P49f pyHIu8esSjqMGjn4uXvPKEJ94whXh6/1v3ZvqWi6H0Zv9b+Cjjut+qPiZzru88Wxk04TjZtJpw+v nnT4+Oq+w1rG3DB72uPj732XSddPhq//ddBl+iFMu7z/tevyt6f/A/uZNHEKZW5kc3RyZWFtCmVu ZG9iagoxMTEgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDQ2NzM+PiBzdHJl YW0KeJztXduO3LgRfZ+v6OcAy/BSvAGLAJ6xvc+bGMgH5LJAkA2Qzf8DKalvUreOyNKwpR6v7LXX I1FksVisOkWyiuag+fcPhv9KZA9/+/Xlvy/dE5+98t0jZf3ht3+8/PUPh//wKxV9/8H5/1zeHLrf f/7pcPzHb7+8/PEnd/jlf301MdPBGOu6Kv758jP/rq7eU/dfqYHgtPLeG34TVAreOjq3dVddSMpT SPxDsVbDRU3SsaLW5JTOrqZSp7wjG2tIzVEFF6LJxVo9ZRWtS6miVh4JZZLzuYKvllSI1vuaam1Q 0VEVD5gCMo75GpWJzsQ0lAxPXY3G8zvNI5UPlMLBOuViyjogOcmdDJlglfP9R3M0mMQDG3Xiby03 k3yiWVKSUdxzl3pKXFA2mG5QZilJQVHqvikyQ1NHs8/3JExWnLOqkwkyWmWWYTvXN+ucSnrI5WST cbN9sy4rXWSy04Yrc6n72vEMdzz/5wjhgegn0JnHPhbp4LlkaiYyy62Kke443JXU549099GlJCst q7y1Ufu6cbExKB0CmTM144oH1BibVLaZB3KKnnEnBmW7AWW+T3wmVaiOZ7XTpfE7KitmArdUo1ac SzyTjA8VtSZFOYVQU6tnkcyJanRVUCZzpyoqDSxrZK5jNUtqZItYUWdinZZ48hTr7ExFIF1lrByb AO06tbdcp95VSsaoRDGUK81BhRzSlMjd10pGUbQVtQYX2QZWCRV5nlUsU65YqWU1olPINeNPkeFC sGXFYYNX2QSq4ior5mzZtFQMledvfKQKUr0hVYdWJLR6Yq3f6/kaWrNxpgYBeJ/YSBtdAVey6STA 1SArz4o4m5hjmVZiDeDI10xXnyLzlS10sVaukSeWzjXiGrRlcTXRljnAEITtaNm4cKVdu1a7Cm3V yQqFOTPL8sFaknkvsPfcZ0XkCwQI7T1DGOX6pusNfmAbeyxVZK9m6MxjPIF9JitOWREjwnLF5DzL WJhCBde+MRJXqTda9dA12qwMlQydkMmRktKWUbkAuUa2uDZ23xR50c1i4nEr46pr0YuUThA+SU7g ST1U1pO4ygSj+A/1OKlzcFhI9D3gW+Z68oA7dxj+zRTcP7xS8/rt5Y9fWbuz89T9iodvHU8uLjab yZyYrHz49utL9+zEcHYWvv398KPW+vOfDt/+9cJWQrtg+8EuvXD9CzaBPLyxZ/PxhQv9C/YOo2dP w15eUOpfJGauMTqm64sAXvh4aiMlxi9+8MUbaNzbU1XZ22DNlVxvwAvYD4OoMgZ9QdIvYOOYuxH0 g17RC8R22AbBNuAIZvFAofHAX6wgDB6NOeQVbAOyBFcFO9huaG0Ck9Mee84OvGcVlXK4vqHzG3YL MmqEK5smi83F5flX4QdeH5tm94U1Kluh8hfDkWWnq8zc4ZDrbIFiGFH7Bl7AxmFVdUOug61oPExz BLcNPoCjB8rXzctspqfMaIzE/BtpqlFV8jY+9S8cu9TehIGhg/0bUTXo3/tk0/iawfYDq8xQYPnU 829CsSECLXxCvRPTCp5jST42bYwiLpV8zVSFLD9OvC/figv5q2O0NezDbvoFvBJ38PvHzJ+kTGyI n5wfQphIV81hM2hkjHqGn5hX0BPsFnj0YqBiRwhj5BYMtRPUdPDFqId1hhCpZTGs86/Tz5GlwKjO O0CsGDlq9AHuHZK3EQeHUGwBB5Ht3BBayRnVDIHWWecqyAWN0FcpoyCWwPCj3RTDE0AoOfRFhq0g HtLnirzP2gKOx1CDNAssn4Zcw1MO6yMuaGSH41QHk1BV0CzLgRVsw9oZDo+OfKzOYqNBL+ELvLbx iow5HJXRDB2ubsIvzGcpWfrYRlCZUnJxgEoI0SsHXoSWHp8TJ+I25AtwCVEFZxyco8j5kS/ZQV5h lsCBkrsykCok7hiFf0VSLcU4EIHANRxsJTGAFOMfOQYp4UHWsrNK0RHzxqaUysoRzuo1DFPViunq Tl4d0qtTW0OoZ7QeuLHI9pBHHRGPVEMt5AwyJHBdAXrEeHAv0l084PmRQcRHWER4FCDZdvEPYjS5 ullhoRRrRzRQctW8yqYj1I5icjGYRpDg8csb8l0x+Y6ctHdoEWNmtxM18VaHOEJWjqJ3FYgDGji5 kDYUoKq1uZH0QqQ7YrJ3NUpO7ha085QW6LKGvhUcQrG7OVqQqsJBdfOnju1IGraFmfOQahTcomw3 qRVRNFwgpNBDqruHN5AqQkhlldfBM7/PikCrlPvzkCfaPp+Hnh1sHa+9+eynn2tQ/pOZfm5AeU2g fALlv4J2rYzOy87VzXPSsnros6weAv0iQI8H/ET1O8AfSD8oT6i8kD8Z0Y+eRyF/wLgnUN6B8XJv oN0vbfifhfIJxwX0C9YD2oXymYXlpfxE4wv0gAf650TPGQohzXcJaCoqwEdPBKkgwYFAdArrcUJ6 UL+kEwfyBykEpKiRIDVSIIj+lK5GvGksaVuTfwlALQq+QZoJWRLA4CtjjkT0Z+i7fzDFs6Ram1QK xlTQmgFNZl5LvNtKwskiFU5UHmjRZpNFqExgu0BLiyf7B0FNn/TkZH9vtPbq6B6hbCjXyMig8RfK XULoXugloPqlxmorPjx6nnk0nxqh2kejV7HelYImpIeEel0MjhAok/JZqBchf5C8CcdRasfEXter UG6l8/pLnVfBOt0ZbWOFW4E4ZRaiJUpdyAL5iqa/bxebWVdvR2dZ2sV/G+tshZdo0PJWAIKPJtxF 0CpysKwOF6BPJPSFxWbv0T44KC+Fi63g9KPNQyvzidoVm40HwybYX6DxEP9bwSYpXIPyIHSXpGtQ sF3pOCL+oPmF6hHC0JSn3LR3J55qq3eviRUWWxkN4B7azJheq3pnHqzded2d1915XdH67s7r7rw+ pfNazan2XtO8P3dOsbh800+6y/rgKQRd9sH6dDFl5OqGGwm82JABMYGwe36C1I/qo3dr2m5VlqaF YayXU7SR9hWAO9buKwDLFNO+AjAvJ5U2+ZLzrzgz9zWCZWj/do1gYTLjPVPfcX58sEx9MMymXaY+ i3ouT76zgFfDbFbe2fJAyY9Cy4NGmx6e3jL6Rx7ehKmC59+HVY3iTMWBJShspi5caFhT83x1xdgV wyA1MkHvyNbwnOpsDVWzYLbvMYD1WqBdyD6Om4EsQbE5DeNmFoRno8AgeTTqTKSWOJ4Q5fgcCcNI M6LchPGKGufvo1g/WQ0UCLmdFmeYgVGvWOhghB5K6IHJhTMXyZZcfvHMbZc0RB4YiefIgnSGcmkQ x/S1TJIDZfE5R31ElR/oIJiSGWotWNWSDKlQAyLgBlOOoZrkqWKkGWMXJ/Utos+YVEjBV+Rq2TQP kVyAcZoC6HHJkZM8vRbuIWQW9CnFfF8j0+umSXwxEoB2HUq1PI5e7huby6HY0j1dq6OtNe5hWOCF wi/k2AlSJZaVUWrwuhdiR1AOqhaY8FfQRsM0cAvmlX4DrbdUQtDAyL3Ndhqwyr7UXeqAERJOOpPA C5ytWJzqbpSPpcZBxR1EOYZh90qXb5TBU3ffVk41aWeQIsA6BTolUDHLQX47BNEydyaaJqssojfV aGKlgkcEMWXT9QfshFel1Ry1gRIzYYQ2u1Q1vI/0I99k0dLFaJg4CUJdeV7Y7141PqcwiBOhYY9a vhsgX1Nc4LWL89YNF1NczEVoIV74wbnjxXcIoRbghVHSe5AgnoLiPCBphEmrXJfxtkXl6lUmRdZR qABg+102DU6VrHD/o/xUCVYNmFlyCCTXWGJdvWC7FW+PNFy+mt8THF7Svj7QEjN5hmWQyxkNmPwA AAI7C0DbskXFHLtrLnXYky7+uELSReFB/meLbHtFOcFAPa/SQIHfWXqlh+eUe3A0wcMj/B4cfVCQ t3JyRa1yMMm+49Q6CoERSjAMKQIc8aDnrUZaHE8i7a90pKWShPqF6hHGC0E+Az6cxmvaiBNj3UQx bGPEf3dGDUy1YYDF/RARuyPRhm2Oyu0xFB8khgLfxvJRvcSHeshP5LwNYwDwGpo8nKDVtuf7Lmmv WqXDd44JaYKdgwcBT6dTokqBdKQ7jVFcOUxJBU+hJuoCHjtut8Aj35lZcFxMfIJZHiqByYVKCzIR bvK0u8EFq37xi5Znchte1C4Pj5FblxXWUktjDjCYD4qtOE/yj7E0iS+daXdetuVy9aaRVPITgiuA zJb3lq1wjhaezMc3/l3DFbTLOaM7v58nHGR2NZwi9zDY/Qaivvy+GD5L/74YfqMWGyaouJ+ZOats TdpmW3FfP3mu9RMcQgYxiBgfyC/Xwy4KBHIIEjdcUsKW0G4INeRe9KMubh2erhJf0ApXVZpdwwpv X8eHzaTxivKwRHTYTHxEDC4lwaZheo2jJo7K2WQsEIIBTSPpb7JGV1pj6q5iYxeUtdUD1pjWuNZY bm+2zW/RLoRHfgwfN151afQ77b/8vDA0jzXTasKqTKM4zzODwlZ5tHcHa3ewdgcLTU1y6ng9wO5g fVQHS/xFyw1qeBh80ywkM/Qid3QBve3CcBruLsr3CusSFjhdRtfywN+GDhDcAkcOEA4JhkHSuHHo W8qjp+edy3I4clbeW8oPiU9sCK6fMwtow1x3cJurYT6ywun/JqE4+HCSeO+6YZaKlvt17Va+METw cyjMJ+Wi0dukWn7OAx7yxI8N4dmmiThLMiRAxS1XF1YAv3jBBapMqILa5SlbwF2o+uGLKi+lanEV rFnjY3qfwIunPM+IFq3fncXFBxUZO9WkwIPHO+D5pM9Igto5p2tkdZPvszWcCQtcIXEmtiWJB6AG gokSGp7sg2KyJVaWZ5Ap+dgANkWrsok5bgObxCdQMcO2tGLfzQUOKE2vPEvNkkxS78xM8j4dD88d t/Rn4ajDo78NjRiy+/I4BoCPjAYfjKFFSGDaVuV3wfmJW+UIxucD4BY6ZGEG3ROefpAfr0CIVJ4R H4FhuPQHUyxfDNH8br/vLlUiXbH61hC2YEcE4jJxOuGWuwnHFxN7NQ2BwxpunpiJC/KiQSl5RS/g 0Y+lGy8AfaWoKFDaJjExzqSfQWfcp7MeT87ZEAdbCuKonYZ5IxsGMi0IrJD7VHJHSH5P1uxp/aCt 4hI8fvtpkhVOk6BTHa1yhkhzoaDMDSgTg/QeyEfnTpHmPEH3UiJ+olMp6NQLup17o9M/8D7MVpcS P/qmXZR5Bcmn9MptNF6IPyjTDBhHJFfXTCTzuXHIKZPJVOTGQSMHc63MXwb+7vNcBmhwlPhDnMWp 0d3GkE7hTChkmwLG1wSVLDvC29ysLlUOSGTa3kB+f+RuEI/cMdFTx75AkeeGZ94Rc8U65Y4n78AN vP1N9oH9SSL/CH47bZgClyouXzYINCDRBfwFfOkT6Hec6PjiguqbLvAlBnUstUnuI6GqSAikIbAH +AdVo9ToC0EUovNNqloAHxKYd29oviMjiOoHR6LFR4QBPWKwAcYL8g3xQXh5ODLuDz8qDeTWS/km lX9kcoVp+cTy0whkisGzFFJdjobPgzob2UXv9tnKFlraczRyGyXi04DjJzd4ChQd7VHqoryifjJ7 BLj73dojUL6ZPZI6ZY3sUauEqzAtaKPQoFYukXTxAY0X4r9U/yP8D+sRhgaJ7S/gmzj9aqvQLyl/ 2i4u3fgTkV2r1N+YePazYupSnc/5E9FmZeh8y+JmfhbCl0CO0eLstJ8ViQva6OjiZwUTTZ7niz9t vDyXXdv9rN3P2v2s3c/a/azn8rOKPcxGeeKOvGOtF80VIeYSY7r5tWToGcYQlNksu9zuGX5Iz7A0 j0wwiv9Qzg/YZxMqw62cO+jsCBUE5MNgH6yb2voQU+pmtM9e9ZthADjTIbKai9oddyeGM9mD8Qyu v+TdV1xhZ84z7u6AXr6lV59ITdQdSsTksnpSznsK+Uhv6ug9khn42Q9MkyMeTzr8OnicrDLZ2XD4 98tfXgL7FhOlr49Hpbnl/gd2P/pCWTn+ZQZPj6Xc+aNhITeuKbFFscHncaHr067UxEamZY7rmS6z JJB1Jt712Wdj6a7Pw+KjTl+Lc9P9D87fdPry9NLp/gnd9vr09NLtbMnHu26fnoJuBwrX/cSJbrPA 5OD8Xa915N/2rtuD4qNeD4pz0/1PztyM4+DxpeOn7246PqotdSfPSLt42/HTU9DxblHg4uBPdNzk ft7F244T2+Nk7jo+KD7q+KB4d4ix+4lSGvf78vTS7f6Jv+326eml20lbnv233T49PXb755f/A7Gv KloKZW5kc3RyZWFtCmVuZG9iagoxMTMgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVu Z3RoIDQ2OTg+PiBzdHJlYW0KeJztXduOI7cRfZ+v0HMAM7xfACPAzK7Xz04WyAfkYiCIA8T5fyBF STPqlvqIPD1Ua3ahHXi8S7LJYrFYN5JVZqfl5wcjv7K3u7/99vTfp1oSSlChFikbdr//4+mvf9j9 R6pUCvsPXv8v7c2u/vz5593hL7//+vTHn93u1//tu0nF74yxrnbxz6df5Ke7++B32SkXipN/tMaJ tqgQtYs7E1WOwTr/OuRFryWpoqPt6NR45bR1qaNTmaTyvlhT2t3KrLMOOfR0a6MqJWpBYxsFXuZl ejr1RgVvS+yA1QXlkpHOOroNUelcsm/D6nNUPlvds1wmaRVdTLYDsV5FL30mZZIzKeM+c5DVCs40 +7QxqGKiT5e91n6Drz1aE5TMRrqTie2sUG3KQmKIsEslemuN0kk3QHDaKJddrl872SxOttI1QFxR RajQ7gFxTkBPdZmvAuKDMqV+08KF01qwJp/IdKMxJZUAMHzoWOihGG1imxxsUNLOLnQ8mVvR6jAb AsnCZtqETiLZVbZgpPcKhy/K+D03uQaHM5U9dbAcE42S/3wp5xDUtvr1M10/m7QVFHonq+j1xXfL a+NcZVfCCG4IkbAO46IOnRAJGTo72Q/zrmfbXPnFbc4JF1ecCsKF20ywCB0718WsvLXq0KJJ8wJk Sdb1SAHvZKqlh10FbYXQSunqNRiVfI/E8smrbLKxPb3GqOx+Y7YxYFSRXd3Va9Yqiy7QgdcUKgZC FwZkDVy2uY1XH6zSrvSIwaBLnVaHcLUuynZJ3vX0KpxdVJEO2RqyLFZ2XYsVguyBGDvYQEwqCpvz PbpQiFkZ42weI11DyaIsyDIRjF9UQZXq0l4FweSsQtK5QhKSyoK6a4DEurlNMgcJVErVjKpmdhUQ K/3G1LHJggAj8ruTXVYlMqYuFa5qpsYtoHixX8FDnxpLwpus6NI6tWkiWtEyksmd/ebUSWscHpKu zCl0wOtla7iY3QIiTqQjtHicfj8NC2MQAdVCGam8pGiPGhEBSN38XbQWRDZrYQ4AFystP1EjnNtN f8vwl4UnUF6+Pv3xS7VzVKx/0u5r1VbeDF0hr5IFurL7+ttTLXPKpuS8y7uvf9/9qLX+/Kfd1389 BSX6ebR71LYq3L5CZi9bPYX0VuHivqKolMQ+FQv7tcLnfYVwymBMXeS3iggqQjqOkbOOPky++AQG D/bYVQk2ipFyqjCgAs7DIKiMGfYFHBxWWDRz+IX3CLsO4QpWBEAM/NLCFcTgQmJAg0OU4K5ewMx5 qPD+OCDRaCXC11Zd6I1M0CCYRvX7Rs8lnvpKk9GtW+5KNvQyTiYfzKhE+NTyQnWNMF0OF9My9cy+ eEZfHLr66et1Vun2dkdVe5ss039BFIzoMRS0GeD2QWNg0kZbNGRE2vw80Kb+mBvuvoMfCNIY5et2 1YCGZ3iHC0JTw2w7zGYI13YcerG0gOhFQhpSHMbVODHiE4AK8y3EnmYTnLInjET7yrcafv3NVcZw kD1SrkXrDS6cwzxCf8BUB3VGpLyM1FEKq5fCMfitixk5HBwRML8RMa7oFVwxeNdG7BtjHCViWwRy M5oF9aFEWEFT15p9MOVAkJm1WNPl2JgvosERtHMeI0b/8uAzTgpZbARjdMmvyveaim9jXZvKZ8nK BmtMB/PldRqexUJOSu8qjGNelUTCBTJlbEsfUHLpqbBxaiRNTTTrUc1IG/8FDYIlK1Yzx1kjx+UV DBfvUp7MhFZMsRvjMBGnfA4muNOaHFnBsiI0v4uwuSq0wpCAyKelCVQUsMSC+gCv8IzThHgDFXOV TzRXgcrsCkMC6kiQTDZYdF5iYGYzTgnc2l2hi+2w32bcVOfQY9l1obdLS+K74h1rQBeCms1UFZgp buADH9AH0HP3BVXwKJ9+UUxby4xd6pkXerChHvW01bNxSsp4Tc8p6UnwcnL9uld+6W2x/tQT1nac gRoS1ERWMF+MRyTCBvKNFfKT9phiaQgNVChYAwvVCnu6IaiAdja70rm9o4rfQXCavBsHEiokbVpB uqK80A4FiKwtzjD5Q9otbNQtVNkWuCNsrisHjzxZb+C8G3lUiRxPvBtpZqDGHvqZQTVVR1hlC2th yNl3/YS26Y9KWqXoin0Hj4VsDpMWLcf4Q4IVV1Eg86UF9Uizlb+Q8WEOzGbzgNiF7GTcqfUmx9kN n9ptDyLe7Jvm05jtlTO4KtD7sELbGagBDnTDwR1HU+pI1XCFVYA49gqGxvtF+TMHqJ3xAmacnb/C fHsfjXYd/ukDVGK/+ZzDxHdmoYsMqlTYw4O0s66rpDOXHrx7NiOsqYoE/VHIRYZ8bb06VVBBW91z xkdfo8Cm2HQZXZp4a6BNgPcVfcU2HO4QJ+VsNraDsvkrxBjatadcC9hFSBxoGrvnV36dnbP1CWhb VI27rIZPLug7xPALzOf4+3C0ho3HaGiNQHeavf/d/tgRAv3CLhevhvJKyoZ+yJueiz386zf2r+PL DFj28GDxF6FoXxF9LjebRs/lJX6Egbe50HEaRAe6gQU1xsZ9seaJndb1rbrvuM0/0qT/do/HZxX2 2tXjWYwKZSvmlfdJ1NoUc9xLvovCM8mXoOSzoiJH0ezT62pplfdPE80RtM+vckwQodNp9p/DcrkG 7Z/NcrkB7bUH7TNo/wWMazk43xzeZ+UetPea698BOFE//ifQDyj3n0E5wOfbpjsvR3Cifp5BeeHw 4wGdwP7BfOH6Arp9AfiE6/iJmy9adxpOsh+4XuR8A6JPQD9ovhBv5L449v8qlxCH88LQSjTZtjkd xBRLwewORzsWcDp25eDOATsN9oM4Dloh0B5SEsu5AJ4DaD9qXgjOgDgXgAdy8OuSACgJ06BTmysJ hST5DLaUB8Iatc+RW+oA+ockDJY6k1sKkjBSNkaxEJKlIfw/s0oOYvIs62KVAYRPVA76gXQC4M9v RtLQyG1j9/EpmEdzPxukNCPlA+AX4OW9geRW40WWYP/ngr/ZlMUUDUd8CHg1HNKbxXrUxapXXdqF k7fpqDReVhwnfllxpPSFigQqjuLyssJ/RhUeVRRUYVlwP6GK49ZfGAOh5MhMF8YwqKsXeoxIrwfE LgLXo64g2uHgcD08JIYvqAKRKJ45nCCsQLTrEFRmuh5Bu+UJZl2WqX1aEQz6woMK9xP6Aj98ugw6 +XGYEELyd8+EXhCveUEMYiB3gmjfhDshJBq0ggZ2BZkQZL88a6QpES8UmiCsgGPMiHrGhBoMguBO sKsZVLMvLD34l2GD60BP8BlVFFAR4BhogjNp8b71uJG0GBhJ+H5KP/IHAT+UAcbTstL/zsDGm7s0 WD9xRucS6HwDmEzDvGOkiY/g/IS8V8jEB3hALpNPyMRH5xKo//nLQrTykyjSTRKAU7yxlwGSDCIB 5A1BXpVRDm0wLusVQo7QlQ7S93udUD9gvhBOdusA+oFwoi2O8IMc5sjbRR65eeCNXcmimkc7qUrN 6HuOdr4RF/+t/dYQD+QRy4ojisvMAB9HpINZPkT69yfS2VsNSDR9MNVgFDz06f8gxkqL6IdKsqVK 0hTFocbrsD2S+PvWWd6/oPfVSLDknmbQ2Vxyf4v6zzsSBj0yDXw7mQaWr+PMUjX1LKcR8jCh2NTx Wg3HTOQxhaPK0U+B+BW/73PwcaGTB8YzwY+56FDl/JNgvIL8C3H+/dOaZ+h09KBNMliMihGHn8HA t7dsQgg49Fzxg29s/T5rY3EdT+gQp1kRkeKesmWTCJIDH7vzEdTowAB8qPKrbz1nGQlHC0/9gkiE jhGBcc4/IIbcEr765QOYD3wUCvfyuIf0K+QEZCR8FHg4OK+y8Jtj3EN6Xp3A80DqBKYrOjAcG78L RtmAklN/AqQwMwAmQ+N4HahiHlN8GkwNy3McBRe9/ERBNlD7RnC7pqDPRTlf2vwVP6eGNqQtE7R0 RT8eyXnpzTYyrkyDiQP5OM2tO1o+joy4CvUFmHBlA9k1Mn4eby/R4nzF0/0VwTrQttnEEB+Y6Ia2 B/k4X/w8RgatgX44EIibjhCwgfEKQeryRU3VAjaiVMsT1Q4plUSAFmGWbT66QT6kFS4smiWvMHeH h7cEYnCaDH64GBwYaI+Wj1e8auMyd6yIK8y7UqFFRmcZfCQa+WAxS/io2DzFYaGDDEIYxgZWDMt5 sULgoVl02mRiB1Q4e2LujPPGr3b2DfGs0dbJipST4yyg8eozEIVZq+xCuclxI/Yhfcgj3o8ZH32k 55c/meWtZ565ozGg9QPlHbaXBoqcFSl175khrI/ibhNDD0XEw0NjdyafZh7ZqZ1Z5oNT3iT/nsQK IxN9PnRSWicFIq8E5bLNNzkk3D4sZp88uqt3mz9wHHdKyCudELsjvXFQU9wg3dV3o9JDA4wVO3zO ayRbkPsQ3q6B0gsmZ0T3cTrv3QSvbEn7C7cberJWpLigbf675qk+grsscoIuqrw+0x4ucgaGBYf4 gM41/ubEFpYcf6GUvgexwicNDy/5+5YbXKNZcUb5bd0VvnoPO7iiahSdbsdIx7V6owGIsAIrEIeK Edk3+IQkj5twj5tw7yC4D3MTri8rUcPXTtzvmvH5jpPzRmrIhUvctOJ7++txMy5iJykLOo8qYhZV KPacm/OJcbZIRDIwTfHAa590auEtXN0rMmVCxWJcLkf+McHIO2cNYQCUl+BUiNF3u7i2TWTE5zdd 4X9cdTMkCLcxxtn8yJjx4wYZM9CTazLICXyijR7bovj4KKYCeirNwokeBaP2gzIwIDgDaM+G84Dh OVAMievB3c/iv4WSVVUdMhEXL2qnUnXyj9/HJmcVks73iIV9AEKgP/xFIL4KqrVZ5WhMB6woDj+K fNNIrtEfRoMMT8GGQ2GTvNBx41FUhzslW/lorBDRw/NiCMxYH78bEfH7rV6KbHUx0vz1rW6TEHky NwiB2SGyNYoCwtILwiuidzZKBxI9o8LnkKKHjrZCRnlh8TMqDBKbQobmf6wIZiM/ov5J/nRz1YjN K8LiGeGNpE92P7JyCYbXQsnEWP4wKGnbB4jkOCiZFZuGb7vkTqR2GKKY07Hmi1+tHTay9cCYULJg Kqbjeegl2INkM+IdEGrEQ1E5ufdG6cy3TnTIygzIg0blohoV8o7doSSco6LzIh0C0g8al1x32A8Z Me+k2/er441Q9FFZHXtC0aN8bzDyKipHe57N+3VjmuuMdOq1VUW79I5g/gZYOhpxO3bXklQ5yikH I/6hlSC5/ig9go5AiCjy1tLpeoBVrBOEpHyxd7LjafuA1Ano+NxsXEmSvw2z40fZf6x9yaaIJeEf JUcQ12TtoVHx4Gk6/8b9VaxuRNMt6z9guTVLJxsnye4O34zE7LCcywhRwKEFGQWZWJfN5s46ROn4 6dcdk1j8Jqucrgfl9xC/aJVYcobshBU7o4J1I6pnqY8VX2R6a5aK6aj4aL1Yt+ON3ZTDEuwMcsff K2sAa5zQWQMGGT+D1duBZjSbH+LWlH3zfBiDFKphzllSEWXNX5bDNu68dEsa1P7kCALyPac73myj bxSx5ggrl2983EjDP4jvQXcCqf+wetTd8PzQG1fpjTT9sNYJgId2Jo51Cg+U7/Th36BDO1YjhPJr lIMLUd6tL7p94xp2Aw9Qjidt1J4Q7yPHB+ntEOuk24zVOunrqaO8VkjPYY90Rx22jboMA+Acdj11 0PVg+orCra0u1gpkrxyw+xTIfZrOb3w15Xs9vlh++ZBcPvpk+18+JF/Twd3Ej+tE9Ljseq5hoEsE GvBB9BLo9PRhhpdold+H0yDwEtPpytnjmvjjmvgq/DyuiTf6f1wTX0Wfj2vijX4e18R7V2jdRZdJ 4tmUcxWYh+yzAT6+8rtUTH1Fb9z5K/MAliE6EdUlh9gRKueVcV4E7Xk+h7c3Ua41QemkX5PD5Qru AcooWsEPSpegs48u7X6blKf62tOEVHb/fvrLU/RZLbU/lc/by+D1X9lqu29VlJM/ZlJ6aOXsocTN Wp1KD61SUkW2ggmzVqfS2mrhUbvN5aguLU88JJ8qYmbzLvWbUPMzns970vxUPG8uQ+tiSiiy4vN5 n4rfJl6Lojmf+LH00KpkmUqOtsxanUrBxENJp1fACxMv2cn6hfnETQwqZmdKupj5pP2p+Ky9ELNy pmqaOc2gnRQfp27qd1afrflb6aFV7V7LLz/H0KQYTD65dDIEFiYvu02oJszmHr0KpdTQqOdTP7U+ lc5b14nruEe3cWczP5W/Tb04G006n/qx9NAquqVWp9LDxH95+j9qtg1zCmVuZHN0cmVhbQplbmRv YmoKMTE1IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCA0NjMyPj4gc3RyZWFt Cnic7V3bjuS2EX2fr+jnAGZYvBMIAszuev3sZIF8QC4GgjiAnf8HUmz1dEszOhJLQ0k9vbIBe5dS F1nFuhxSxSKdNP/7A/F/kjOnv//69NtTafHZK1+alPGn3//59Lc/nP7Lj1T05x+8/J/fp1P59y8/ nbo//P7L0x9/sqdf/ncmE7M7ERlbSPzr6Wf+97cn78qvu/+6FE7RqZSTswn043MZQ5jvLGinrPc+ nygqipZieul3jGI0KsWUdZgnbJLyJidfRzh5FQNFyrOEfUrK2FxJNycVnA78p1m6zBtL3VRKgoiU p+wtzVImZs5apv+W8s/1quNZK5xT2XGXdl78LiqnidKJgkrBG+sAN0yWOXLZUErzZJmaj+RtDVlW Um2rdMVZZWO2VVR5+n3ybCOzYvdWkbbOuAqyRvPLJuX52QyWRVCMYFZPmCq/kh25CqpklCMba4ha w3+yFUO1KaiYYhjXu86bmFAY77yK4WlIJpGd9ComJJ6teYPiYfJQ7WTnKTLFmOjcfc5nupN9Z6O8 Lj9o6yasjsqyDjScqI6uYadiTfvxshKePUGFH9bKxeIHquh64r/UyFcoh1D8Ro18XeCZCMmOCOKm N06bi129qG0XlKZUx+mkKNfYYoXiOhOVPvNTBkBklXcmhzw9AiZcp2Q+sOtkh1WpDc55VehWhAXR rDmfVDG2CrqyaO+iVjnoCicuMwuXrEqWgVEFXa0okaukm9mRUqpwekaTcp5ffU24vKpffqXLr26v 6os+xVw5MV5nFTT5a2gdUu7z6YPSegx6jNJld+WSdnGeLkZLMkzjiyqckeycaHkOGCKwlc9H86B1 peKy+bKDzlWAJpBTwZCex6jGM5z1zlVRZfATydXobMxKex2qJMCmaxhQmwrwxcR8rBpqgf+awVdD f8BUGQTUQX/2io6HO+WYY8FxsXji+sgQOTJ03ntqAJbN1SabfF2EiGzR9gVYuayoW4VMjoPJ+qql isgpRo4Org6Eyrx4ZB2rjGdsuyZHPxnUl61uWctDPDGDkfhZ4F/zGN423sbz6dvTH7+yn2VbLv/E 07finK8r+oIvgyfN7b8+lTbNY+kw6rd/nP6ktf7059O3fz9xZOQYch5U1+6ex9u9Ae9r8D7J3ndf xttTGG/XdrydQL+E6GQwnh9l/TrQbj+3kQ/q1wK5QTmjdiAH2O9XIX0gT+dAO9I3NF+gXzROOI+I L2AXUD6IX0DHIXsU6gO0UyRnxC+gL5Ybel+qJ0I5QH4RfdDupXYE6CShfSF/BfkC9KEe9sZP2o8P aPCgT2nwoK/SwwcZPSD0IKIHTjyqr+hB94sfv9VsDm8el1G8QPFRbBfI/yD6Uv8s1U/ErzC+SP08 ipsejB/KUxrXktDPRJl8oDyFcRPiQKnfBuMXyxnITao/0B9K4wiSJ7ALyBfSQ6k+SOOREFfP6BV7 00nP54gX/ZTzcgeIDBwCUSngQe8jhyl1aGDioGIgQIgcNRhnDQB4D0BqtUCA4wTzsnABAsP+4NPt 5mG/FXyWmi+U+spWsvryqxFcgtaMrBO1I7eN5CmEOVJ3juijZQoKa+j9ZuEFhH2pvonD8ndmjzfv OB3GyxdLXT5vz3o0uBEhBFpSwLbXjB4AtQqgwvg7SHHaPP5CbZUugwD34m3InbaTpdvDDvUr3GaQ olQYB6XbbEhbG20rPiq6byWHVp8RoByE21pS3Nh426lh/IXICXEi3TiSagzyCMCDSJGTNH6JLQSN H21wIfptkRyMp8PM3u0XtFIgiwJDo/1hBHvE+5CNAl6z74bSwCxciIoXJNPfv87q+p508b56Oqie ysWcKNr8op5WmRhtycW4xP1OTZxKSQfn0w0QoAeXCXNKR8rRx5uEXiSavQmGRmL8mwefASn/smom T2xbFZ37CIZ7df+vSflP6AEiBTu/6swbUhZwDh/A4eI+/PmBV1HbYJJfQ4jXVcHr4WKReCmDeFSd JrLqakvR2xFbfSOsH9EDqHGExvssZh3OFJoQ/CD1OrcBycQmO65Zg59AC+nLJNP4pA8oEXrQ58PY cVEF7cZF1fvBQHsGPcAxQUnFAaBErtJGUtaTNfMuEwsS+jmxzsv1dIEDhI4D2gK0t69guAsYhNaO fSbqHbOOXQr8iVzw0A9UWeJAKMj/wlFhb4pIXQCUJOB3nTPk9YxdorvZr+0cQVYxerZ3c31gsnS8 l/xMgbAumY8j3qY/tz1vA3+gv8Klxetjdo3gmO5sspwGSsnGnkeEIUKsGnCisR0hUeNRQSQhBiVy 4LMAYkAhwj6gSBBeWAA95A4EokeEzeUAzn8WSxfN+ZIgkJCwkPIu8M9wQmBwkMMSAJUGbPR90UDs NdgKQ0SEurCkeoPV2YCVXZ+9wcwORoWw48Vu5nGaVc7aRBU4DeIbsQ7hiYfuDDly/RkIeRCFqjAU fGC2WFdDsCv2WnLXv8DVQOgKo6EctK+08Bt4Xzk83gJuGjOFlPqVAxoBJYgwoV5ipuTuQBxNF5hR QxuWb6BUhYKhHckZabflgu0I4lAI7BqCLsSHHEJtsp1Wh4KLDc6tqPCGjxT2oB4ghukPlewqwArw UAU0B/CpSqWGgKt2N4tnl1J0845UjoKxZsGgBS0dfjIQb1ph/I+MbRPHJF6jXr/D1YcpyIe88y32 xbbYmtpij7bl9tfFpwD81K+R1Ag/7Yrr4fqEPOhjk61GjG3a+cgF4pU7z5ll7LiWDUpmNUp++AI+ 7n/x4+0oGeAZHWZHua/gIz6BXCANPuI/C3NExVl00qxElMwgPWwozb1plEMrza1aO1tULB/p6YVW ucetcsY+elJNq+IGHytHfTYb8lpkbT4dbadjlmvnz0rLRsBsyEZpbeKs0+b5s3P1K1vlNz52Wmm9 An6QPE/pQbtmBt3qAGQrKCU9aCGtiyKtIwH4leblNgvxQr2V2q84sKC6WJXn7usPDKwO4oUVMcRH aZEEhSFJqhliz7W2R24EmqUVkWZAIQjN/SrQR2g+QvM9Y23pWVDp6mxlw92rJN3aR2Y00M9PgE6r EpGvj7Q0qETfyAMS2mdBGgk8WkqjHL6r3P32lU5RJb2PsvkjdVOtKjFKl/6Nwh+Sj7SwUqvKY2K3 KcWz0pUFoi+teCl142uXRJHKGclNeoRbaI/SMAfhgbRi59olYFbapI1eOROcqQDurbb7hcAUFs+Q evDZ0mOdVM7lxcsfOMhNyu52gcas7LJ0dTpTDu3VVTKvh91qqbZ22S3pGr/Vh5aVIa80ZoiXptLd PSlGEVpQq2ryrYozIgwhLq4hrQ6A6AjLFz1fizHVw/FJW7c6KKNDqvBU0hI9sP1j3WDQcqf2uONg eiaOOw6WIfnrWaSKa+C2r4x+3KiwaL113Kgw3b7lTQtVXuejJytJS8AdNx4swuL2ekp/Gld4Yt9t Kpbfx5UIM45omysRcPjt35a6fUG3j5U7WK+tj3EBw7vpHPcrzISFO6vAeqf3K6wNbxsuo++tBvtx J8KMPB/jTgQc3/u3lt/PxWMPegODePyN/N5xL8KBG98jzwe/qaBlBfTv7C6D446Dtgh7Rg44joeg fNQ7rdOPGxUufqbRBZPHfQkLre3Inl+Ec44LDGbGeScXGHS50Gc4cj5a+pLv3V0dPZUO7XRSlC/H UTePDyh5QAP/R2DexnPDnYlKn2NfkQeRVd6ZHPK0QKy55Zod+eFHfvgi+Rz54TP0j/zwRfp55IfP 0Dnyw2tnaFmGC1xoOudVCZt2n7j5sfIvq7XjyK6ckfORXbksDko/1x35jstw6bT3nY1HlJWmnCvC 0ZEQuQyofJ8JkTiMe/5JTDuF8SP9cmb27m2f+siunJZDo2X98d16Rh/2zXdsF8aPhMgZ/PhBPtfe aUIkDvtRqxx0V958+3TutXfrjuTKpnI7kiun328WXh403fHe7PHmHVulex2JlQdAHZEnjr/JqmRz 2if+Pnga57vjwpGkudAKjyTNTVYPD542Ob+8LosXSjVfbY/EymkNeIzEShxnc1CRUvT7rHOPNM5J vh78owuK13P+zWhSzrPW3kHd/OPyq6bIdefLr1oecDqux2qKiY4V9cx8Ldzp9jqroMmHfRDAcdXW GiuEA/c+6IGi46asmfkSfk/c6KasWVxhvSIbdE1hlO/zLq1qzViI+HF8NEa5xOzcV3w87uVq6//v 816uI44fcbxtHN/mWq2GedzHvVuTinrv926VCffZK39KzpR4Cs4au5MvKVfJ2XQOtGStPfX/WwLt m8ZXgdbBQKtczImizS96ZpWJ0ZbeLvx0cvEqahtM6jEKH3SSd0pHytHHm0p1IssqRh/YA7wNquSJ VT7dHgTwwMdLHynp4HzvF59B59dP19mbYKhnsQQeQD4IjeqiK/JfjF8zGbTupdg3nXhilSOfTUFm cxpgO8kRKccD1jq+Q3R43j4BUlA3cB9wptt17r1U+XEfDvWBpHvFHG/E/hV0jkcFzQXJCou9c/Ss PtpS9LaGw8/SuV0gRYu0AT3Ak76FukM+4IT0Jz3T+KDY3Y7P+eBBrpnzXheDwRo7LigbgB4Ouk6A Uh5vh++jni/ie8FfyC/aoFV0np3vrFvEpoOcPdZq9AusDQnpzzN6gDSuTrGqvAk0EHnwbej2Jz71 c4wtemBI531j7CZxEXpCKDmkAVD3MWATu3oYYrHuw+FCjy421SVRDs4tNHs5HpEzsoHG4eFmxLk4 9kI+pqG1syqSu6TRbr2mMp2IeU3vefEXXS9+QUf5jEB4y6giBjgtSe2pLHhUvp013GeUFy8N6mDi Sr4GRoUF89FnsIdqB760hy0heMWg04AHu+NgAcYH0hgE2wELaFGQ0JBQD9dafdOQPTnljM/5PZB9 A8d3nwhIbrMwRN0pZmq492HErOO9ULSHM+cSAZ7xSZlA0eyCZyD6xIqKwiokhSOCQ6Rg51vgBmSJ eLEFY7p4sSX3Wng+ICBF0l0gKzQq/AsEQbBNi3EDRtxYitD9yjdmkX/A+lO1Nqzapes4t8olTyFJ p7YPHtA8DbjQwYxLagAr0AMIsgYTqJN348Ot2gGF473oVc2+IvdkYoUzxdFSDnHFq5eGixS5K993 swJGZCgr6IXkCzoYLuTfYXZFje0+2LZ0pg236sWxqm4+6nwgWO1Nb3VFoxK7v7xLnt4XkIbxxY+3 o7SNZ5SGgdI8QJ4Pgfw9DfKXnoWnFlY/VwXSbKQF8eD7KC9LSgelA0nz9xrla8G8LCTPVvmZjc41 fPT6pg9yemk2f+98k0TMFScwmyXwtapELcxU3uvkZKs8/3uriCeWJz6/xkE/RRWI4cM+yfnSHE7p UQlpsXZ0rHr0NhjGaYpiuf6l/nacqJPqroxpLm+rSdlkU8URGEJgBZkYkC+QC/s2S+caROHksiLH oBXmrXZisTzm8tIudwYJS6nvFgKRVbQqLS7MkF77aLq4CJ/QIbeCGuIjo1K5SYsjNrrCQKpXUijW bH4blbYRy2cbQNWyWFGrclLCS6rgokpa1LCVJiGJN7o1e/VDcss8PjyiGZ3n0LrXnX3Qj0lRoLDg Rquj/mvXFr+7JXGr8a+Nl3Za8LYqmoi2JsXeWlrKrdEdDK2OUreKQtKSB5eo0jL+CuPOo3qij3Jb RTOLEm7Gw3Giu4tmDxODuO/TjlfTiu/mEZYUkV5suHpJuEYlisTFgKVH7qX7AFI5C0stoN26Vlfi NovXrdaVUly006puYTy9H3y4u1eexhXOKsqONlzXS2+jgkVZ9rqsulVJpkY7bjM7m70aDzGlc62k c6EH73CRh5ipJIh0Z/37gdgDNQrWKpuTD/MZZdechDfVBz69Hm91TQrXjTOVcXbDCyHz8197f6Py 5aL8E07/efrrU3BJ3V67/e3Va9zHlUJ5LZ8fUq+1e4u07prc4LVec3lv5NuYCUaVSqVjDPzAJlnu dbZDRkJQFIzN+RUj/dd7DA1f5475b04b6+KQo1tz9541XZMdvHZrvTAevHLZRzd8rdcMGC9FWilf toNGWDfeJV9yFAe8J1+KULj0hvXe6z3eB6+X3HGiROWi7AHn19Yr413La8YvrRfGy0kPKiuyAd/X VsB2ZLav3+bGZjx6yp4p9dnOmX/jkvZvZ/z2+q15+Dp3rVnOkax/xfet+cr4uenNjF9au7dyYlZS mbj+W7fWjvGfn/4P1BQi4wplbmRzdHJlYW0KZW5kb2JqCjExNyAwIG9iago8PC9GaWx0ZXIgL0Zs YXRlRGVjb2RlCi9MZW5ndGggNDg4Nz4+IHN0cmVhbQp4nO1d244jtxF9n6/QcwDTvF8AI8BevH52 skA+IE4MBHEAO/8PpChp1N2jPmoeieqWNrMD7O40u3kpVp0qFskqs9Py852Rv7K3u7//9vL7S30S SlChPlI27P74x8vf/rT7jxSpFPYfvP4r75td/fnLT7vDf/749eX7n9zu1//uq0nF74yxrlbxz5ef 5ef3l+Dr14e/fY47F5WNJpkC2gml9iEuNxatVj6ZvDNJmeRMyq/NzlWYrMopFx0X67W6qKBLCecV D+MxOilntTNuPyjrlDvUfmlQQhoV0v6jS51w2iiXXa6fO5kRJwS91BVnlA/O2AN9jdYqhgjn8dgV mYbaE/nvEj1CztKHOXLMVuyFerlSpoHQteMmp7c111f161e6fjW8qutMBmtjOuvQeWM2OVWSD7WT JipjonSvNDRXtNJF19acy8q7YlqHH63yUReXX4c/rXnCv1kGUnJrzSko510KixXXuS052eSXKTR6 Vz4MThntvJ39EJLo4jxOm/PFqOBtqJ+VqGKJZYa3Z4dfuVDaWObXqL1yIYSzeZ6vuPbeaBOWgcG7 oIReepbxptQZXq2MJ+2YEs6ICvpjhGez9mmZgbywmo/LVH99UYYgbTiZ4nk8adQEMhIrbN42GyEn GU7RpgpgjsE6D0YvtSYBJcGuy/C4n4pchSFUqVyuVXiuCehc8Sr7EM/4eIy2zhoV81GX7WH/MtA6 KwLmFghFIr6MXOVXvM9aHqVs3OVuBKN0bCBCFPWRc6jzFVQ0pqQSLrGrE05IyXnfUHOVYJtda81J 2Db7AUnxxMkHOgbfXHMRntSVZxa5tzgVQjKtNXuxHSboD2uWqlQWvk0zNQ8z7UUOc7bZtLKb91mA p37Qkd98TErrdOzF3sCIe8S82JNUISQNPYE4ZqXpELO2DQr99Kp03EflS7Jnn4GpEcgwXjeAC6mY fclKC743oBZSIPMVC3eolEfI1cuUCKL06wzGZVPiqLsaVPvwqgzUiyFRvGmcmlBtRtdim4sREJ0I xIwu5RRYqJPmbUnLEJCMSt5X7lxUNbEa+LnkZWARbNMl6RRbarWpQab3fZWlQHa2wVaXWkMVH5mx ZXnwSSw1F5v6KtTSTVMZpa8m+5xbahXZDTmUBiXjK2uLmDfUmgTI2ujqReHKitU11Wq8ikkM2wYK RBmVLBsbZivZ0jpbrctiqdSLpVyBfVlbVXvLhTQj0Leu8eVNsbiUlz5LWZSvpQ/nD4f+fPz68v0X ASQhc/2Tdl8rHJ38GiKBYgvI+nz39beX+kzsmXJQRF9/2f2gtf/y593Xf72I/Ies9506Pnfzz90n 8D6oR4N6vAfPf5x/niNZPzkur8n6DTmuz1y7wZL0T9xzOC523sF8ofpRPfB9NI+AbmheULsB1YPo SfK5I+edpX9g+fADx5+0fIH6YT2Z5LdCvg/kiJb3O+OJA3LEyh3kqwY5NTrMD3hagL4Yd7WtKtg4 ruozKtBsG2NOmhZ8uDyOH7+2eNVX1+SIg5BEQuRAHEQiGUJuFikDQDIoqYgOH8n+o3oQspJIjOqH 40L0YTUYiRC5DFzfdcunr4QMXpxFSTFgpjTQRQZIUM6zlLl9B2p17DBISwJtu5nVjayXTu3SVhBr LSPrBfSfXvUgbGJXZ6RVRmM0SzeE3SSm35uf2dVxt/lFiNaJP2F/0OqVtS1Au4PFdRHhvABaiSbb Bn8H6XfoZa9DLY2Ql+RImpMQxRHCovd7ITjJwVciPrTdpyc11nfDISBD5ELGHWls0sC9kRHazX0A 2AYa+6wBwfb/aja+yHHDIZTuy0bWhGFNEtpxVdoocjr8tEiR3Fjj65mfq9cbtDV7Z59VL98+6+NF 4IfqgSwLdCAU1kbr4rR/uwzjvbyriGMQnCIfD7Aueu3KbLUuYtUK64uirSDQn6N6xVbH5IDk6lYH Yg9a67HLho2WqY+m/eHmUCc3x2ZumnWWhTcrJBZ22MXgk9lQqy/ijvOyqIC1VUXXw37v66gbJZM1 qWjOBuOiORtJPmvQ9Nqm7u1uGN9fWF3vo40OjZxILHc/ixQCOqB+0odRwLgaV5jGB6V9cL40TGkv vya7dmN3SRHJEcv0Ar47n684+l/7OQ1YB+27bdKkUZa3Eko9v94gcXc3otdxtS4SpNRLHEKKBorc e9dwo+XesvnacEvvYbYUVvKq3b44Q4tj9BxwE31CspPp2e2k9L1PHrJOCNbE73XW4slPXGdSkele e/Qs/2y0Q34ni2u4Zra9Rn8SRO7FAdBSQcs35L3vJIFL3vjJ5ff1z+8i7mPxudNZqW5n0t5vGF2H Fk+u795vGC2g4P/nDaOe+rrXWbIn0cubaYh7O+kXXTYNwWHWX18/2vro8lbHktwNgaS6+3ne7+xd t8K592HCe5/3Yi2SbmeV77x9/2Q353pur7/frbtsu914t+7KmGNiMDm3G/9ddd/Zwze6z0Pdp3wq 2SRXXvnAKVvDWrn8SscDvUK9sxZtHhEYFhwo75VOpqR9XJzjVB2MpqJSClGgf6DZq5YxwZgaluPM zHpbENKxjZx19GH0xSfQ+GkNVIIQ1MyI+NsCOA6DenU8/dvjC9j4scCJCk+x+KHAHgREBDkIRyXv hhGi1mEjkCaYinBC4Nwmlu5H5XDeBu5VeOfRsA9MO8twMsChIMx/oL+ADyZNjwvwuD+ORqGjnSfI pCowCtw2+GAye+Pn4P22uStmfupcPBOlV82MkNjFQ1Qqt4zImH2g1KLRQPmAnAilNmT0BZIPKFE8 XrmAsA/LM93IyQI56y+iOw9xNqGB4P5+AXXhgQR2DiEDYQ3SBAITYkG2Pu3+LIVOXd046qknIXdt qUaWJmUbmwK3ARmYBqErzBNYFZJQvlfhsE41RnlR2VqPWodyBetC4A+/uIJNaI67AjiAbodGwmRq J7oaKXFoJmRU02F1KIChnQBIXrZEJpSaVIUIMjHlRqYIHDcscB9ee5uds8HO03zSqelxfmjVpKxi SCXeYtXwSNNd9/SAOQwPNATxX1h7SYeOAoWv7lv/DPw0n8P8c+TX+QD8RgaduQH+JIMOzANP3Qdy BwRFGOrlke51H5P1zNP3Lu/tsWf3YNhrMeTZROg3vfPh6V576vQOBXsTnjxzwN6Dhn7Z2chet2Q7 2C7YGYIiJJro+OI8SW5LvnA1VYT4+z9nisWmHGuUhwM1yiGzwcmeOPqzaug6eS/EAYAjKDhK+nnB kcXPC44yOlPAV/UFFcAvNN0G6hWsCvYKt/EBFRi2KjiDuLtwgLBXCRQEmiSYGWDjhSYJ4l3cq8+I 2z/RVY1JEvRoSWNHBVmXeZJMCjQq+BEUTEgy+eILKkBfTEbeVBVs3KHu4jYK3cbny0Qc7fnOQqXL AsK+JiJagkzM8zRwOB44INsh8bkC5z7S44BVQWlHOBfQF3gcNMgGuyXZEdSsgteI7EvXsyd5nNY2 UjB70ToD8h0kGWRh3CvILCvYO7zC4o0UOHJYgDETSQPslePlB40c4gCuChbQRsoapixkhslETYwU aCdAI+UDKkA6/ArrBbZh6KpoQwhaYbgN3t7Jt1ovWRbfMZdFLMWQyUsib+ND9F3QS13UKNQJPDJC C4nWyLx6ucJCQrTCsAy7SxspK+o2bL2Mc0Wubr3AXtMsjGmZryQZY9bQeolf3uDuIuG9oo2O1iQk IhwHhEbYRsfFI914T+uloxdwDL9j6wXrV+gdoO0d6MwI0FuTUFV0d6HJYZAhNPGFTapC5llOC2A6 To+7NphqpJh4tzQ2X6COg1ZKP6l+UJ84HAfEzC0dwB3d6xDJ4ReQRXm+go1fYbg1aYsmMIUIuMbi MdOeYYyZCJfxUhCOg17SPgJ1l1aVNYuIi/U66dUeOt6g6+j4wfgAxQeCUz+QvWKh3Y+IsFeBX+t2 9JgukB3aIl7XWGy3RgvvvbC7wjO8qVLsx5Dfyqb6Y04tJOJ8RkLvrcq5JjBvPJ7jfR4ynn+jyQh9 TKrmNDdDLsK4j3B0kTCp3j1N9yBMSy5CcMaTPaPHnimDd303CmRqUDQRMgoIe8sf0hmdoUN0YO9C ozO2iD7oDCB5VrTxlry1QUUbTf8wct3CMLDhKEiGZAMN9QoLd/fDxWws+AcLgtAa5iEYQXXbksUI DbxXlqFeE8FGvuqlKS7H/8Dmew7KeB3vkP34DvnB4dlxNjcVGaMDcseTRMOByQPIuwQQJsm4UHR8 ODBeeIYe1bNRDt57p0R5tLsZG2dUvVltQrlDmSLaUmB6KyuflEpLqoVOWfvoFAkISe8cX6pXWq2n SfOyWiYFoPdLrjklwjZ6/5uNCvdgyf/oqG1PkpQO0g31n40W2mt5R7bbTQ/2yplKRqGFckRqIdr+ BOi40M+OUQiRyxR5zDTggKWjH8E6lfJWd+DRRcyniUv9YHY161+E+Td6WUlk1GY2Dnevu+5Pc1f/ 0fj/ueKy3z7vbXGm2xOs9fI3Q8c/a+CxipJkYNbg2Sx7dyfB77UQuHKhgdW+i/td0m3SwPTK+9gr h3iv8PR0WpFO4fLp4POkGUIHA29Lu2ii8KIpocF9xSYWozdO75xadiuD8Nn3USGHsRlZt5L87hlZ WUXP5hxmd7LIiXh2wenmR++Vg/qyYYYNAF9UcEVvZAB02s95NK7pnwMhVL+6tyW950AYsG7T+PIJ 9OrqjAYzwbAzohUMjAlHDiOg06kDYBswgjOM/8vTCsYjPcZ+u28E502jK6+Q/GGF2MNN8q9FS8zL f1Ps4fG4BQnnWaEpY0NrmF8n6KyFMstQag+jmctSQoNTz7QGSERxAR1W+9sXUZhX4BM9jtsksS1p REdVDMlOa5EGWZwJ4RyNGJu5ZL+JffQu1GBWbLrXtZP3yNq3O7s6nWrrdfaKrQeu7thxsc4c1hnI 7o512ryAmzXo9AV7+uXOmz4PF0H7utzAHU+DoNOAcCS98u2y24GIguy56q3OT+BszKLUwiFTWXl3 xTSYq1u6YrB1vUJ6x1XSttA5szZdcJw2JzqsEib5hYJroQm0n/nV2W2rzKZEjjAVE/IDTaoaZ2Zc LR2lU4KiWsehiZPp4G2RNoYvpslacxndwzeoxE5P3eBMkkFA1/jUkL4OchGf/5HPfob9CP38IU/g NWwaB84L6Y5zaJXVOSV9FwSG1LoC6yDh4RcwsyhcxvO5FOkZ0R8RrQoShKaNgyZw5CFtFDLi3KJL RgDgdRN09RyadBrCkzl7exo33tv0bHk6aT/bFfkiEcjiHTHaG60/gTY2hWU8DsglCOUwrZBXHeMJ xEXa6YzbaLL7V7b0ynzTCF+v2CiDWb7hZtwpefHiDlqWzuVlvJwaiE25rm0BLIS3kzvu4uOUtZAd oQqFXLdGntmOq02IG1BR0WYTRrOOBjk98p62PZoPfoOy4wB7mhoIhk5+wbdAB3ELJRcebnLM2YU5 CMaEss2m4rfvDoKZgnkXzhrWKg3KWA5pJ8IVgMmf3+LRAc4gWqFgLYlUNO4uauOKwwj0DJom7J1A 0FhP3XhcCSdX72bpTWzoSeOf5puAA4fZ5mk3I38SDH2AGkC56duMWK+dMtnmhmzv/NIXLmoe83AR fxaK3x3gnbTYlUZbLZi6sFdN67nVJwrqIl518kt42MaCg2TeYEtaj84brW6w9XNnbeq7+ebPrF1B Et5H288F/40dRK27hLEUcxaT+7BL6IeappuEE08P9AFNvC06Bz8/xDZzCrvmkE0DTRFoT9E7w/wi t+c+yoLNtujnS0ZFa1v8fFiJQ+zgjyfjYwS0pw0S8+hLBCqr0imVWN6PyP6wwhFZdBCMjcNABlJj 71OzB+U2C3TJRhxAR2F7BXTvFLng3uGc6fCZvQLqIr59sIBIdGIE9sgue7D0zvy5cEB18Qhxqcly BOobQq2xSNQrNgkZsqrX4f57h568UhKAMWDL6Gjx6lH4QExBSEIyiiO8B4GEgoxNAaN5kzF0e92D oGM7oCjQKMo6K5qAnr2ijNKgiu6JIP7pFJ3+0aKF35vfkNyx95toY6lXrJWrIbZX1HSYn6hX+DwW GTshHUL8XnGT2bif9A0ukp53Dx92Ubl7r1xNUPZYKVE2WrH2iqh298iK7Mro0S4tXk5BNgpFlHLe R4TaxyMSfoWxiFIx1Q9u9jH+x+wZAHtG55QrOTTsi+KwOp/e9rc5dJI/9DPXfh66F2PNmPvb6Ddf DplC7e7fL399iT6r4a3ht+lb0sLp+/rWodCMnh7eCnpSLL/W5zMIYXRUYUTZNz3+TjDBGoGRMum6 iUlZl7J1b/o+eX94/OZ9mQWlSwg1c2KYdHT8/PCmM6qIUipm8t7w9PBWbUAeTCs7PQRjd1arUi/B zo1c6RxDCCXn6ci9Ud6UfGx5GOLk/dHIp+/XkYtQCJ8Jv04Hfnp8HLeVXjorFJuM+/T0OG6vDw+m Az89BSOvyTxPm5Yzky4z6Ez05mzSsw0xn8356PXpnA+v173MYl3QdjpHw9PTsPdP7NthH58O021C 0caeTfjx8WHgP7/8D3MSxfQKZW5kc3RyZWFtCmVuZG9iagoxMTkgMCBvYmoKPDwvVHlwZSAvQW5u b3QKL1N1YnR5cGUgL0xpbmsKL0YgNAovQm9yZGVyIFswIDAgMF0KL1JlY3QgWzMxOS4xMjI5MiA2 OTMuNDcxNjggMzYxLjQyNzggNzA2LjM1MTU2XQovQSA8PC9UeXBlIC9BY3Rpb24KL1MgL1VSSQov VVJJIChodHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL3JmYzgxOTIpPj4+Pgpl bmRvYmoKMTIwIDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCA0Mzc1Pj4gc3Ry ZWFtCnic7V1tj+O2Ef6+v8KfCxzD9xegKLC7l+Rz2gP6A5o2QNErkPT/Ax1aXlvy+rE48siSd3WH bG4lihzOO4fDodlp+vvF0I/s7e4f359+f6pPQgkq1EfKht0f/3z6+592/6VXKoX9B2//p/ZmV//+ 9edd948/fnv64We3++1/+25S8TtjrKtd/OvpF/r7+1Pw9evup89xZ51yKRcdwTihVBji9cGcNspl l+tnjoB2NKZJyiRnUn4/esoqd2NWCJJXRVvn/VUIslfG7r8Zm3XUXrkQQnkPwqWOS1LamGSKdMdG F1UBpn+O9mys8salxo6tVSmW4MxoxyFrZbLxjR27oKLP3uXRjr0phLZyARUnMpuklS6uz2iImw/j p6Ccr60Emc0Ur6zJByiM1ipGbcJ1fqeZKR/zCCQTmMISpV2ow0t3bAOhQvs02rGJRtF//j3xalv9 9pmun/XaEs1jUi5mFxohclmRDJyYadj1ZC61QauSsxXvNzpSSwSxdL8pqhMjwU6tcypmby4ogV/a zULwJBN+iB/MYqRIrI8hE0+oHAMpYTAR6tUVRRqnRZlZaumjti29kozqbLUb12SGqFOKDi29xqwi GYtx/egtaf+UCkB6p0EccX+7qfQktyNYYmowTwMbZ7PpoAgk6Ia09HUobKYh6jdjKMiEK0fs0sjN nmAyXscGirm9/btkIy52TNqlcwPGjVomnJVGNeRTBSM39ButVj6Z3NhvISuc2wQiq2BLbgQ46LA3 UeImIhiCw7W4UN4TxxVvbGPHzpD7UqVIGmJPzbVO46oshKioYSvAobYqscHnY9Kuujwhh5aOOcwW slVED9/g8REtsrOt0lFNStW/DR2XqGxJobHjqEmvlGKtMCaiNSqQ3I3rH55THZ0nj0+XFjXBYono yWtyoaVjnnCQjjg4tmMd2+RUSf4S6U5WJpKf3KkdxrKQ3ORixlQVd3VIauq0Ooy2rjPqWucaIIl8 Ht2k2pjmLnmyHm0aiGfuEk0sNqkgbO5uXc8rG2PaKU/SR+8ifU0gvH94Aufl29MPP5FAVU6Jtdm3 umg4xDBOZLYq6BiMpvffn+o7TZixVWp3337d/VlrY/+y+/bvp1x1pd4D1z3XP4Hn6fLznPfPf/wm G16QxYtuwAeYn3eXn7tX0B7hD/TjPXj+I8B3ZPYP4EHz4sKDxjUB9KPBc8CPXHjgfL/K0BHC8wye Fx7eNIIH9APhRHgGePCGhx+H8A/GRfMNCE5m/1z+ZMsFc14G4E0D/jEA//r5Tb9e1XCeFFqJJttx Teczj4MdwBSkHNKkTAyicbkcADkVSQKgkEPtATwIfrYlYGoQYY2/t+yjUfu722vIHYiLARdALkZS gtoz9TObemBeH1V6ltLbaL7QT3hh2k0m3qA2Re25fouUPUX+D7JrXL+aqQWRPTXIf55Zy474maP2 /RglH7fvQh48lPClPHiuRytklwN3XkzOENZ00F4PN8Pvv8AGggfJxDXYXMWK3FrQHi7Y0LyYC0Lu whX2jwwG0y1H4+byxmYd9fchs/oPYpWrPGJSUjal2BKcQnNbp8jd7JRxgxBc5wL2L7SIlzL+m3N3 V+du1OnITvnsGwT2URhAyiucO9o07i225aWdK2ipxTcCT2qRBxbfcFxm6ISrV9n9C7me3CCrlG8B 8cD0LZAvNfsmxoOoBbY9Yi5SxYIuzJCxmB5AcsT1Z5j298C3o/bRBWVc1C0GkqvRAKVhe7RIZWoi rmTCxTEz2Aw1HdODnyhR2KCe5WPPZFDZsRaELuaiMADFN7vBBuzNXXw/it+JFhLcxT1U6NzFPVLo XAP24LsMS+3RPZsmA+N8VL4k27Cri/ItYFwbKPpXAPELkORXgJGXr20mVFtVdD1vMjrDZ2Bqck+F S518WS4tCykuILAoUnY5Lev2gzhbXtaWlzUJni0vawTPW17WXTyxLS/rVgxuPt80DXKvvKzB+dYt L2vLyxKVnm3rbkSbbnlZ1+3vlpd1K0W3vKzOQnyQvKxB2YgtLWtLy5okVaco2PUkrEg8Z0po0Fdo RbTFiO+zXnhGlnKdkd738KN4rdQW4zQ9L2nRZ/Z5uTEYqc3huX3JLQY50AjYM+iXb7q7Z/DZIp7s VAypCMI6I5vt83qQuOVK43i3+1EPElm7U9LfeET+UDZx8l7s7MnCUsk0iHBSCpYryDM73sixP2Xz NVQzvLuZRdRmq0OuU4JSkoTULTe1jGtm2bmnnyw3d22ZpVIbK1x4pNwuxFcTtdF63MbHCgCOmnfS 6c5o2xLg+mQhwrkd44MGwXa2X933/hvTj3KWBlAjMIMmUtspCH6uHpt7eS1lT6EeQxvKQmd6xbxg 5gYK2x9Ay0TmyY65z5jNbpeZZ5NGTrgIJpKtzfNma4S1pQzOnbIwDT/Yzh6r3d9/Mcs9l4RYFSkx ppESO4goxPJsUiOnYmX4WZvRhFn6Z2dFJl7poIxzbtf/WeXq3cMzufJQrpRPJZvkyptcuVopxdVT hwe8d3QKKmkXbe4RBL7oKOWVTqakkE4o7rRWUSmFSKvp94bdBGNqueXjiwhehHQYI2cdfeh98QoG P/JnCTZa02MgA17AeRgE7kFdX/jCc7+Ag8MXFs4cIRF2hZGI0A67Cg6hHdID0hy9gOD6AMY4CPWF LxBpMa4SGgMydWHzLmLRCeA+t3Rl3eWxXQSo6n8QenqBlNHl6ZH8X5byXk9GA0QNYNLRXmaRXk9+ mKKE1KGzWVkbSxlXix5JNKYVYhRMKzQG7CoU9AUfXChtkK8RVG10bNIBUHYwEmFXECVIZWF6QD0D NRNUQGzVi8dAhOIbhNBpDWOUr+TUN8H7IiYHgy/6GuXgFJLUakdSnHvaqW92+uoMq63eedbrF2Pd 3TfDxrU/mb5vNsHEsK0ulh+21Z2gMxc1x3LCy3dXBV1J57iOOmY4JO189TtBbbF1EIaK7/k2Dd7i UUE1N3Dmmnyzz+TMBa+sI5euQY9CYYOqjC8IbM6StN9yi1+sxOEEX8ELPhLxkpy/xr2DA3+sINEO FVRM0HyxFwl8tM/FcH1pH/DVwJfrs09foeBY9NnVonf3y+7BWxNsGz9Y8EEWoBMCXXy9yPdn+H4y XOrxF7lLBlDvbkOqaI56U/ylIe6qSTgHzg4cHHlBXGdxbIH73vfzCKQMXkCnkO9GYk91WP0Een/F K5NsSQ3aGgacoT2Ui11jGYHLUiQ8GCoYvcHWhb/xIuffWnvNsvev9777LvNXsAv5FZ2M5J6wRGeK 0UkakBKD7tJEJyNhAgKzBtrsFX3Qrj23TLZUrQyhGl8TEzFmS1HjJuw8yu48O6VNKlEI8a1UQi7o B55gRlkKF4s3ulIY1wt77dUcN/2s5ophT3gwzmbTISUEZY3P168Y9jYT8PWbRy61sZR6fAVwZtDP y0g+uCdCGq+jW+Z4s1D2PzSeKzNuWwGtiUZ7qdQ55nmFuc9dwX4QnOh8IVfbIfoCY87OB9/kok/H 8fNVhnR3S0XyuSvPsRmSeUBwYhUUbO5iUto675c5/sT13bmH2pjVlqDak8r05VYbYB6a4OJT6lC8 1HyljmMVtLYXyphHh1m4x4cg/heqWy1Vp372kw9SdW+vwyN4/Ak6Eogj0YE2pqH/qPUuP4z9TfX+ 47yQ/fVoucnUn5ALph3W3vyBzR/Y/IE5/AGpamNMvLH3chrvaWLcY7FUpXyp+oPMA+7cS2DZ9p1b qGapgjf38ROwfS9WERfOsenRYt9njnYstRnA1ntMaeB6x2LrMtn1Szs8oH1gtmeXYZp5j1bshDzX f+DCyVwdPsx6v63+O+O+RahBmOtlrn2RqrosdbctqoOM6p7PXi4E4ZmbxcAs2MMukMNd6V0vcwbt ftBhf43lQvddPUqZyAe3OyjJAEotU5q3KtAj2n1lVaDhaolrx1FcjlsuTcpflVpHcKPg60xvGfVn UlDeRn/DvsAn3ei/3eMc3dEB9tpkFVzNX1zCXj96ug2Ua8BN3NxZ+HzuNBwudyPvnlv8kBtvF7pP dNNGy9rHxS53YPpjt5YNbb/Namq5yeCM8qYOsUjclVsOnhuf5O5vov04obgr4nPU/6ZnJsop96wI N875IHy7Nv05exlxxOdoHcrdj0ZwCvmfn1nPGB0uK5rhC/jFT+wvNHrRlkxNU1EmG99g5qapI2y0 vVdO1/O+a0pGfhQhW0opigVBuQdymXcqLXwF3Iczwp9Zqa/IeZS7WnCxE/dS2d9SlQekcrWZd5CO 3bwbQlK0pI3ruqrok4pdO7dusaGr0jl3fQW0t4rqqSC37mWLpXb4Ae25bpQUXV6PJyzmPquzUe5A IQAPKl4AKxdtktPHP7b7SddPwjJ2H9aRAljZqC0sbag9kraNLvexX0wtuGnHW7WjVA4x8jwghYCn u1FOVqLm3kWZm+7jHiqw75lY1xu/TAGwT8eVQuFqscJpQrmPawtjP/p2yhbelpXH2cLb7ev6B4lv P5jkYLtWgqoXLWx2bQVy1G4Xtnj1VTs4d7yaK7VcPkF2B55MZG6/c3PZt9XSwH8T3M5diJHYARNm 4WqoQDZGOmOky2Y56qxiKdYuU+FYiiuF1M/cFY5RsIB7xIN7cFxKysXwAKQWcTE3iwviAW1fADgL CioxtyvRfJ+FklE+uPZqtypgvnAb5Pr2yLaNfDfKzR3uNcyiLVwJR0Xl2OOCecFtdnzrdGffrVGV DZe5weDTcb1UOJmbS8+0g2srGTS3dD6M1pkm/bfPV6qEC7c0BxqXmfXOPurODdpePxo/6ie4oIyL umE7WqxEIXeGCOPXSx5tniu35NR1umA77rzyUZeFSkNvpYQm6Qepkllc6ZEqIbLZ62Xt9dx0nHvb n5sWIVby5caSTe0lKdgRTKENPqkSlItFNrkrGabG55aa5EYA4b4DU9M9j5Siij4p58JCdh9eP4yu MUZcA7D1AqiHCpe+ouM4AOvca4znLqnB9e7ZXjPzOti5L0jhXuu7VDre3HZtbfekIrkbuSd1NXLE Pkx749VO7et39rpbCFMII2vzE9jrd5SgInVV0zQPGNvrqJU1OS1zxcMHKanaTj2pK2xmXgfBdR/y IrlRpUcpuM7U2+wkXXQ/ey+6drqfPRZ/KMvefml9LEUVM0spd8699Sj9EuDXAPxevrc+maw6TFS8 RFtTzIIzV/GSrFd6sZK5j+6PSd9bn3xRebHaWdu99SO+14Psbay0bHdz/49eSHu7t/5DycV2b/1o /xPvzU3ko8TlamFt99Rep+p2T+0kN2e7p3aEb2dOStvurd/urZfhyI9kf6sF1ruU89uh3lqpGYUG /C4Vo5J2Xf5x3+AGwI7ROeVKDpGsdSrZJFfe2NEpm5LzLh/AOhajMsGYuth9g/eUvt8Pa3jrlHGW uHkf7glBWeMzhL27sddm5XL9hulZ5DrRL8p1f3ydbLaBpMvuvj/l0v/9P09/Wy788g5Owgp5Utaa A5yn309w1rE70mdv6/CQ/MF3dN8P05E7kpumqfPTb6aSnP7YvB8j+qxOzU6/nTWjMY491GZl/9L0 nnatnO2e5EGr09OulTk8SHbQrPe4m/67GZpIbX0tNXRpol+UDz4TAw0nHJMK/o32pxn2W/fmPWhN A1tjUnZEwcG0j0+P094/8efTPjw9TDtGlelXP8RO7zGYNomosmjOxEiBlOpgzi55em5NeDfnU+vT 02FrGrX+Eo0/m/Px6XHO3ZPzOR+eHlolR6OEMGz09hDMNxZ3ivu+m7IypvhIkJzR2cTuTTmb9KB9 j9LD9qTziPDJkoEawHp6epx2ypHE43zah6cHUpMo+2BrVtOA1KfHbwL+fySJFzMKZW5kc3RyZWFt CmVuZG9iagoxMjIgMCBvYmoKPDwvVHlwZSAvQW5ub3QKL1N1YnR5cGUgL0xpbmsKL0YgNAovQm9y ZGVyIFswIDAgMF0KL1JlY3QgWzk1LjUxMTMzNyAxODkuNzE3NzcgMTQzLjg1OTc4NyAyMDIuNTk3 NjZdCi9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJCi9VUkkgKGh0dHBzOi8vZGF0YXRyYWNrZXIu aWV0Zi5vcmcvZG9jL2h0bWwvcmZjODMyOSk+Pj4+CmVuZG9iagoxMjMgMCBvYmoKPDwvRmlsdGVy IC9GbGF0ZURlY29kZQovTGVuZ3RoIDQ3NjY+PiBzdHJlYW0KeJztXdtuJLcRfddXzLMB07xfgCCA tGv72ckC+YDEMRBkDdj5fyDV05JmemdOk2fEnp6RehdYrfrCJotVpy4sFs1Oy9/vjfyTvd398+vD Hw/DlVCCCsMlZcPuz18f/vHd7ne5pVLYv/DyU543u+Hv337ejf/587eHH352u9/+t28mFb8zxrqh iX8//CJ//3gIfnh7/NfnuHM+qGK8juA7oQx9iPWPRauVTybvTFImOZPyy2fPNZisyikX+Wy93ayC LTm0NZyDStEkU6oNhxKVLSk0NlyyikIm+V+tYe+dMsUb29awMUYFU4IzLy3rl5b1ty27oIyL+qTL p/05PKp3MtBYYi6lsUPWK1eyd7naIXJyjEvKZnOg4UzDDDeZoJUJsaldrsPRKe2ETV19bmxSOqWS Gubm9VG9M3oQRV+Sb+xRGuR1eLczCXNWSZik+5xbbVSUlku9YSGFCyE0sqk1XoWQQ73hEKLSOjXK o5XZ8S7VecnqooIupZUQXitndUXMrd93OKjs7NiyAMOoBWDDwSkfc6XHPg8NW6dS8q0UjlE5n2Ks N2zjwJbRn3A/aDnJD3lnvuWRFsmo4otpI0WxqjZ1Y3+H1mLWjTzhdJAfKdchmpM6Z7KgtG1p11jl BT8b23VGaUHEOmyR/RXVlosP9XYFTqLL2Z7A2ikcHh6V2Taiv01s7Y4IdkrO+95WhItFRRGWesOk FeGyFS4Opm732OSUaIVzDf/SbiYGL0aDbiaSfCkEK0wWVR7Hf34s0qrYjRM0w+aQaKxQ8sBi9VaF SjmKQNT7aopwuMl1tSmtJi8qSMS3odVGKZNGc1FeuLbeqM+Cz9mDiXw2yGU4osrE5BqMckFpYZRs 3KxRHqyYeLq4+R440b8uuzy87YRTnPgDcx0RCS/Fiv08dMQ4+VLZ65bZnnj54W2D0U3qCbHplLEy yHrDIQkBG9hhbDfVzXjxnJRMgW7VliFLD/IRlmOGQGb8+Yaj1nufxr6B0862a9zepXF14nLaMtqo BjGvIw7pmURhR69bYHkAHW+jb+1xsFPHpNvcCb+bgch1dovKmGj8OVocxDMWUUyDZidwIoldnYMJ 830gcSINlqTzz4AlYqpHB2y2I6KEJ34lJAa0HkA0YehTE/4YMXdyEtFubTkmFZsAyGexlc/I3qmV JEaLMISg9/CWFnzVg8n6zWuD2+SDyYOPmLUKWZ8+8/aIjhITP+2UFwtQ7kV5Wzp6evEw0qcvDz/8 JOAtCnX4k3ZfhhG+RrHEuJGRGS3Xvz4M14TaZTScv/xr9xetffzr7st/HrLS44j0y/UCrj+evx4s 145256+7T6Cdn8jrn8F1D74Lng+a/C56/sfz1zOgP6KPN9x3WXrC8SJ6Ljxe2H/AVw6Mq5D8jMaL +hnAvMD+J5L+JJ0h/wD+Z+WUpRuaFzgukv5QHkE/Ib+x/ew0Lp/7zBf6LuTbI9w2Ohw15NANjW78 1K+pz+CGRk0dy1nbG8eSQw3wxy8tayjX1+RIIgEysYjrANJACUCci/qJOJpFOFIyoOZE42L70wuZ SA0M+wOeD+TziB96WUyI/r00Es0/qH22n0iOSH6A9OxkWV9okQk6ziKZ11aNDlYd0RCCIF351EcX 0z4I6CeyCVmJ1aA/T6D/BnzXINubtf0QnZGEAFsX+mIIWcDzsJ+sT4f6qef1/iTF4ep6H1GL9Zw2 vTOvdzJJNyS1tKdF4jxETdJugfYPkHJ6XhCKo+eRXkbzxUZWUEQERbZYfY0ibaSH180u7eUvkPYM PS5En75+R9VuiUm5mF2D3UIjMtCn0BMjY5us/qUp2yk2Bekzr4GgXp5kCF5dL0PcQ/LSyw/q5W+i fgJugrOH2kHXEZcBXGKtQhpnkBVPWvd0BJ3Ud+w8bmh0Hf3Yyxuj+0/aY1DeXZt+fM2hrevHeaSA eD5NzL5+gBUZgqwAswBBusm5U4AVMTpqfwOazmYPaSjTAX3k8LBLmaifnQydjZ9vgp+rCuA1EauK pLnR5QpGYN/aeoNQZ6KhItKTa1y9YgwwllPxcKY7gzaNuGnEW0aQt7toqH3kii2cPLGaab/S0h90 idZaeHuFx25LjiRSsEtkdHIFChqTix2wn+ziC2lLdkvvQhLea9GfDGqhoFOv8T4v7WLFf7xx9+p6 v5B6AS2dIWqh51lzS6MlpsvMsHb7hLVztpDerFQ9Ij5hze9bk3JS79+N3AF6GjJ5+mmTi1k+fJ6X qv1TjApeALzBke40c586LSK//5lrKKBxdf2OuEADHDAATzZ5X4Rr2umzcGR5LT7Z0KXCJ2B+e9lR S/PVley0jhFtFrnuxZIzYCaghCOk2CSzTe9P6ltdXfEb4DBrQJZtuvsqbBg4RuK2zcv7MKRImN3g 97J5f2xcMGjPZWpdyn4tQVnHYDLkv3T+9epr3McFFq+/u2ZLnhmvb0vf889vS9/zFsy29D1ev/LS twBaiSY36J1uS993XqFm2zdQ6SfqD+KfXNHvx4WOr5/C1mkpGFJxS5Hb7IQ3oBFtfZMBQcSfvQKI i8sXyQ8wVIzmHfEt6RfQEQckXyz6zu++6+i3Qn1BUhbtt6brqYCZuNDSevuMkogGr3eqptGrykl9 X3XDOQTX1/srpQJ1w0/Wj2CtUZKbVpNOstoF2w7E4V76ulOqIFulAuoRFtVY74RER1hDiUWjXvJI zgu0t7tXy0JrQVudmPkZupdI3NKRslocfnK8zxaHv7E4fK96v72qhyxdTambVYukrZc+XbpKRd8q D2/3Zljt0Wn1kp5ftpoY61/3ql7H8hWbCUFq6W7zwsYxUpO9FJx5Pqjt8iok8+vjWD8eHVN3M+qR PTah1/5EKC5smXPW7QOwfaVgx72L14yb0nCG4mVcHwDXWy9vpZJNcuWF7Z2yaTzkZt89U3ybF5VF gnL0ITu45QFl3dyYHqLjLHeih1azDzoJCm1/L1wkaOm8jZvLz0DVhRc+l6Wbv9G4HhP0azxoHtC2 hbdK//sel4E15PFhwH3twr1aq61z3FghCjreeuf+LVsFnNVTdJXZToYt1C9kLX4Wt3vZUYvTAfA5 hEF2vYqMlrMb0diN4Gi8lS2HdX2XW/MX0d4lE8AIyUgPXWMOKbZeJ4axkV2U6VPZkjY5dP76Ckz3 CmCzh7SQpQNZIL61LUiGPPaIBQh0ACP9XTAuuFOVBMRbE/NqBCbJDxvDG8TzRiIwbAhw4RAmtEg/ WAhzi8z0BeYPF5m5F3l5a2TmYKnOA123g7lubM3nzlx4rFGLVYus47WYuyxzsNICvRuEnmR4DqIV 638u3J+7X6Ak81CgH14xL50OauTPVeqRsDmNZBB7yyp7vr50Qa17OXOy0+otmzvKOuswi45FKVKl smcg9yqoS2cZIjqwu7Ubbb8OBcZv7FQp9rTTLfv8MjuNljTUPlq3fo3PAP1usjLOrqTfoTySvj8b xKVz+9msXLI/vU4K3+yZK9kz2y70ef6/sTKWF65mdqyu8l45rFvlw231dh7pbEWPO6OEWCvVDd24 u4I/73QR+6Pp025oty223wIq1/V7EVAtZQPAtzL84gV0FwbYKy2bYPXunXCcD5t6vwp3txVnKFHF EnMLPqBwHR1QZQPgKy36L63g7iZLbmEFCsfbawGFDX+i75JlEOndHH3LHHQsEI5miN7I1yndF2In G2r8YDrhQs7DGj1ENWRS+vsoe7ot18yPi8RbVnrobT5sOe9NX19FXy89j0vv+mQPp6iUH23HmWqR yV76mt6w12lJ5tbSu+mNfKwn06syBpn2jRIOYeIEiXSHI2aA3o9FxWDdOnr/EaWNoGUWxDWAWuhE 4yfANegkxydA9Ue2OPDC58az1j1tNSOrlt3sQOoX+vAFYN3TaUSsfllYf0E0WgmVkXwhOiM5Wkte oH3OltXrfpAX7V93ohSiyK3ZA7SfjlK1SMS5VnlTl4VFXDALbHN+Q4S91yFu3RKHeh0SRErbWv4O 9O+QtchGj1ACJGntsuXL6SgXidt0gmVD/blBbgeJCiWosMveDmL7568P//hu9/u3Iu133umj+Jpx zu2O/x3k+eTiN/LsoTzXtkVrPaJiUEm7aPMRgeGNkfJOZR1LERg6Ad4SowsynpM5N8EItOTD5L6o phJstObMbH174/njXpSlKSmkb9HaDKcSmyT4eLhj0UcSuBEyeuMn8PVXrvt2hM/LaadvwIHgG6Pn E1XxObvkDnRH43iV2ZMbnxAVIxgH7JVHb/CTjr8R0DgQ2TGboKmFI4ffgOyDx1Geb2QRHR9ynUVD OBJCkfzz34gayJp156nuIuC3SUsZtPQEricwuuOGtBgT9T5NJuPoExO+Pe7rhICTlszE/EZA6WJU Rh6u4+XrhqyTqYIwA4UNCQKkJOQsCDP8DQgzmK37ocm64klPFG4KgR+PDXCAYdSRxigv06l1gwqB zIsVGxoIxn3YX/RGRx1px2+I1xLE7Ere1QdyQIgTd0tsMx+OqgZf2zbDiAoVO68QIZ4dq55j+w8r KxoaryLVcOJhd/uR5ALxQVO7lFVxxrRnrGs8wh/RDRpmeW8Ag9AdGi/tn8C2XAAtISMPtwS57Vh1 62jrNmwbvB03BU3S0GbllSL8W1yDmdfGQE1wcoFu5SWExkuLt+mI2gtF5ejsOicdfwahnc9o6Q8t cKIlRDI1G+34QikY7NLf0rVD6CW1hU8MYPfgwgVyNL9r7fC/k1ojvVJ76NTXlZa46VD9SrVYrp1q FJNyMYstp4w1yYvmgNqQDf53SnJ+nqGXkaDyn2AkPivnsw9nBvT49BYSRTGDRbOeabewWR9kFihd dG29oxjFikhCVDFf1rEiEFqy9fJpbdupbs7ix2L0qjjSq559rzT3lTYS3Yv2v/dKY3SiFpJHlm7s +dHkQjRbWedwyt+8CnNBGRd1S8WvpRHnnfohS28NYGslXShpQInnonzOK4UCkIunQSigl3Kn7bg7 yRLqVU4Mig67Fw45Fgtne/UqJsju5u+llCGfI6WD6LzwHkva6GL3iHYyeruV0m8sw9lcroOOmZBp +NAaQQRHgpMPOmTQIsHv9YeMM4ci7rEXtWCdcqJIjEO5cPv01mDFYNHDO90VjtNGeuBygy1kkAIg q4ADuninSrGm7OlinAy87E/emyWMlx9+eKk7YV67fXHy+b17jWtVs1/tUCdyU9tH2yz/6A5ye1YY ox1CgnoBYbRemeStbTkZfqUY11a9dV47b9L1TIdUkaK0wOEljPx8THcIz0dOavD1F6ix7bXYOG2V 5x/Jkz7v3fZYa130XtB66ZMFbq1UHywFstVIvY7WqqBk1FqgzyQ7oOQIcIKM43+aD9h6Xpruf7DQ lsxykam7JbNUQGzdZJb28a6bqtKLTzoe5PPO1RiGaeNU9HosNL80TLMe99Jiv9l88zbfQce3uznz Xqc2ygeTGwp4IP+m5i1HG9VQj2mBgkyEz0znQZB5DXT7l3EiprIrStB1ibJXvA888Kfef83tN5jl /fenV2qcSdianWprIeH9RNYKgrW4fGfhNcaqbJzwUp1IudfJAWzslkwVhSt4bNkf9kSlhQ1juuxh r3NwSA3ZK7uILUvIak66sFpfvup4clWvkmnQ4GTjFPNxB6yBglU2G7vIwd6tugDBFiQOq4ZXyvBB 4gHPzSCDg5uBfRnd3ok32u6gfbCg6sVOTwzKDG78mlkvj0eIfcjiiaWoOBxlR2Q3Je1VDsM7q2Y3 obRadLYhEKrz2U1JSDFuihroEu3+uD9cAW2ki82qZL9E1peJyphofFO63X2lN9WMp5xVdDlb/4YA 1jtNgLo08Sd585zS2F+Axexz1t1w2k+n2p/d1hjY9B7WdlrXQWge1+LzwlbSR8mwFV2fBv2xTIZr u2xtKUHTOYlJxWUSHdud0UM0dLbBEJUYiqElit15A1HHA/juzARpVh4LLYQS6y7v3MSpUqpopYtu IdQH800vDL12XKOHKN/rDJtOp0asVqwAiejqweuXat9JfK0hg3Zf8jt4XO47FTNUQjP7tIRjNYmq m0TnlCs5xHrVMgPLUJ8NYFy0DWm6PtqwOPnDz3kYoy/D+GQATgaz+/pghAJHF/778He6cnrwIw33 7Y+ki7HI/a9Hv/lox1/2n4hidByeOvw2fUq+8Pr+8FTZj8ccXR2fkrcm94ffx4Gc9tWUw7a2ky5/ r4wvQYwnmyedt/sNdNrbbzo/ff5wffq8fDyYpHPJfjqM16vjU2IcD1emY329OD4ztGyyS3Hy0OEq GHYs+RDvOh22UcYlbUxKk2GbIWZTojsZ9uT5w/Xp8yIZIina+aDDpLdHl58HblQQlg/Txw5Xx6eM CeceO7r8wrz/B8LBj5wKZW5kc3RyZWFtCmVuZG9iagoxMjUgMCBvYmoKPDwvVHlwZSAvQW5ub3QK L1N1YnR5cGUgL0xpbmsKL0YgNAovQm9yZGVyIFswIDAgMF0KL1JlY3QgWzEwMS41NTQ4OTMgNDgw LjA5NjY4IDE0OS45MDMzNTEgNDkyLjk3NjU2XQovQSA8PC9UeXBlIC9BY3Rpb24KL1MgL1VSSQov VVJJIChodHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL3JmYzgzMjkpPj4+Pgpl bmRvYmoKMTI2IDAgb2JqCjw8L1R5cGUgL0Fubm90Ci9TdWJ0eXBlIC9MaW5rCi9GIDQKL0JvcmRl ciBbMCAwIDBdCi9SZWN0IFsxMDEuNTU0ODkzIDM3Ny4wNTM3MSAxNDkuOTAzMzUxIDM4OS45MzM1 OV0KL0EgPDwvVHlwZSAvQWN0aW9uCi9TIC9VUkkKL1VSSSAoaHR0cHM6Ly9kYXRhdHJhY2tlci5p ZXRmLm9yZy9kb2MvaHRtbC9yZmM4MzI5KT4+Pj4KZW5kb2JqCjEyNyAwIG9iago8PC9GaWx0ZXIg L0ZsYXRlRGVjb2RlCi9MZW5ndGggMzQyOD4+IHN0cmVhbQp4nO1d247kthF976/o5wCmWbwTCALM xetnJwPkA+LEQJANYOf/gRRbfZGmdZosDfsyA3mB9SxFkcVi3XhYU6Kt5j8/EP+VnNn+4/vm901p 8dkrX5qU8ds//rn5+5+2/+VHKvrdC4f/c3/alj9//Xk7/PDHb5sff7bb3/63GyZmtyUytgzxr80v /Of3jXfl7eFvl8LWBmUCRcpgHp8LDdGoFFPWoTqncYqiM/wORf7JUkzj6RtX55lwQ4qYsJSqcwbL QwXn7ZaCSsEb6w5zng9rvQrB6WDrwxqjAvF4LcN6rQzpbBuo1cz8bCi1DBvKRsVELdRmlUMyoWXY mJXVLuQmHphkbBMPslXJxVAXkmC1Ctob0zCq0UnZXDa3NqovsmdzahEDw+vKjhzVaXVOBRfOxfl8 TBv5J5tbxlRudsyThpqQFJnEgxUtNVbZQf8uaamJQ7fLBFhNyiabyttFcSwbiEuE5KKnLIIDIdqq kL2ly4TkqLwu79Q4YTXbHx3SjLmYG9iSZtpDNNWByWg2WWz9XOPIzGITfINZcJSVppwbx2UDSy45 V6e42AXvcmyl2DEdLOP1kV2yiklo5XEgxZLGP1VtfTJKWxNM48CRF5g8fciJzA3stFbehQZPYXIq uxFj48DEjCvC313cnAmNFtixyGd2Q41MdjYrSrG+eVJxc543mz1nXadl4saGUBXzXh+3mDcm17cO HKNKpsV1VmKWfchEZm8gDgZ5GPySHfQ8nqeaUREaZM8Whb0c6/2OEA6jrPXZXSbEETuxFitkCskh 6UZx80yT541pMG8mqWxys+H0ISrXZIakuucTx2pNdkhm6j3HPxRijt11L7CX1E0GTqZ7bFZ4T5rs m+e1aevOeVz66sNrurw26svnmqSCTWn+vel0hoV0UENdIjiiQK6V98GSSjr5uj0V+pbgiz60mD2j Mwc9ObcOHLVyTXZPqjmBZcA2GT6p5oRcojXbMLLQa0XmXdm9/lFS5GNkLqavs+qwyePDjm1xtA+u OtHxsaV4tk5+UggthB2OwT1D3LJCROJngd9mGs4bT/Q8v21+/MZhHB/Oyn9x+1b4sodTfCiuw5eT CKtk8KT5+fdNecYCn4fjzNuv2z9rbV//sn379yYpzW5hR9zQ7t18u7bz7fbbfLvToF3Y3/4kHAfQ 7zJoN8L1vsjGR/xB4zuwL5CfCbQ/gf2l+/BNPC+ST8QHJCfC/gms9wnsY4q79p/eoB0eIYh9tX1k 8Krq/uROZH4Ej1Rkrd2O/y4rOGt8twIHVsCTuJgTm9R8INwqE9nH2HSQp0EOvIraBpNGggYfDBJo OS4KOXO0e6a6zmTjTi+YgTfMM8/MiM6e3iD0xAzqRcQGV5Nmxr+b3inNHiD6+F5yeYU8bvR2JNMH XcreBEMjIY3ggU/ojW9g9qOdIE8sJ+n4gAi8ARcCH1hErntGDxBV3oPdhW9AqtwL2pAgHspJ3zia vbMdRHvu436oxPLrfKpPjt+AK4eTI3InCwzanebwozdsAAJn7DxR45Emc09GegIPIFET9Ri/Mdny MVGI2CidurY8tsAXTaLlc1fk0NTUTSPed7G6YfkV6+E+YJihqp+uQzF1SKUXrFw8FJz85go6GQp6 KiwmiCzMXjTULaxyRxuLyYUrFzvciR0f2Zq9GsxFku+vb28ehUGGQRYvCINuEaIYKHZykegowTAA RMYUD3UDpwCpwgqHTDyWBnqVLl0PkwSVXUo2jsJ4D8P4DAg2Ab2Co9+BwZndt2fHbz7wQL52OhxP vc/a0Lw4BJoX3kmYAuVnbOgyzYuPAXyazDAWkkmc1yTso6mn+5pymN/X8Rz7fa1GYeWuiWxLFEb6 KnvVFjk9owdoKEPzc0Pd6Wl7kbLJzQY2TWJW4WMVPq9bQK88GNDojQVuRxwafjB2aYr6oXrgycV+ dYHvhkiF/FgzYonOBmA0Ezs3XvmM7QUR4CTT7uYRIN75e556sHTBeB2qO1RquHKP3oDnJ7nMi5mI LSAMS8U2aEUeroo8yFcORRQCyAAIg1HbJEDwIzO3PAibeQVOT8/z9BJYB3nQ/gLaX9viQp+UppRT 3WDiaAdurzwSwXIKUR95sHW8KrvHAXHBSR7CQfL4GrKkJRpoc5ML7EM/MAZfcGGewNn7ixyIhCa/ HHDzSMgOO3l+al8ADKNrPMwYcaDgX6TyhS0XJFfsFW8RHMpxOPlZXm6FJrdZbXsujug63mzidaDQ Qn42/xhLpocuEA+I4x2E0js0QZNAj8ArCIPBe1C0hglEMxOz1YMaDiwyG9a66Xs6BCLJWlN+HaUe +ItvrbHfE5/QMOwsn7wfRN8VjiaEaxGyAZPQePJA7CkWRKxySyq/ocV+CkkQfgC9jvx6WJxLUAv0 QHg0/iXH2+NEEBR5yHOwHE2FzmpNpHqsK/uecfqDJnDIUcOmPI22+8DxUDoA9jZdCIpDp6vfUUK0 y/TLXptoJlvhKrWV2LYa5iVbfkMy2w+A/Y9/GvjoAQndg9715LQAb+8Xdne8UpUb2AWHAcSSBbhr JcYD8de4HMTj3NPJY195mIXPW/1SorBaoWssOQLW8Y79q0Qh8HAIw154zvx0qarwEg1iAlIPjoIH PXCk/IKmpyAGMMYhEMo6tWBq+ADmyl/Oaz2PczD2hkImyFc0xRSH4AioTi2M48Dc1JbXX36lPsRk Wm4O++WoLrmTkf9qkTz26wgS4CwtuJCOpuFKaeEfTFKQp81BM3q7BOT5aGpSBuv2ee9fPQllQWCG nfQNMKg1U14AqX+KhHjKvv5GW0L8JGFInGR9N7DpUyTEh1B+xdw1XBL2S4j/KmcnjagSZ+N3PLHK s6k7XrucguZajcq+JRN0vVLCKyhg8ern21HBiydQ8IJAfw0KYRAo8KFBQYonYWEOAoVCUOEMWBgF FeDoVEgFFRyR0gkLx6D+0vGlBVxQYRTUXzo+KkwjLJgi5ieQKziOUE5gQRmp3ILxIZ1CvnUrYIT0 NE8cOLJ8x5J+VQOIBAZW3gEGClWYkgr21QUP0Y8MVOikOGijhRWjoIBFoaCi9V55H+G8l3KAJzWn bx4jQJuNdBRtBWpHxbuQD0TFrEbISscS2335fSoDW+U7odgGqQzgL+DLRyt+36+8F7Il4up8KPiS OivQX1pdsFdVOrENQzYVKRpQWGTbbhQUtNMJ6IG2+Vm4XsR/tC5kGK8sb08W+pzzOvydzeC+Ana9 cqdUp9HeIhmU7hWQhf4BbsMXDPruiUvK7krj1usrIg8EUINK0HO14PLTOwRp5CU9VKwOp6vDkR5a vqrDWVo+dvIZlTs5nC+CaGEejz8oo6wuv93ttc/cxZHZ8fis8VoOpAbjCCp8EwKskaoCXAOp8Ato fwbb8Ay2+cU1rXxUs7+69IQwc4S9I+sOSIZWChXjBpIMz/NCb4YgqXt5US3F9qVRCeIDWJfYK94J Ayep5UReqK9c9cOWSYidog2CWLTU7V9249hljL8V1tdlCCw8MluQO1LHeeXgEAW3SD1Q0NvNDN0p mJci4/far8VB7PgDeH21Zek3EKqf07sfmV/26I7oXI/QF/drxWwvy1UNs518zLKvWq+Y7ULMdvIZ 0Dsfuc8FbcVs+xr+a2O2q2NZ5FhWbPZjYe34k8N38itfHZqdfHx5hWZbNXiFZs/7r9Ds0L5Csxf5 uUKzjQt8VGjWBafy4fvSKzS7MDa8OjSLzPEKwV7cl8WxaowqHb6N/hgQ7OjT2WT2GVyHhOSB1EuJ t56i8nSVrC9JQjLwCki80S9bzSck+/IVolySP3Z8cUZZW74Vf5EvjlS4TsLICmJfGP/BrpQ+OwZR A3U9a4g30d4zLwrhGNfGCR9tD2u+x4dY4qb9ZfmaNL1rvzMAz72VOV7JrknTX9tprUnTX8IprsB8 o8PJVlGIOa5J01VZW4rMBx2UPibLPJgD+WT4OjoOtqMpK0je1aGtIPllfq4geeMCHxUkD5RUPuZE dbXeK0heA8mr16mewxdtXct1ai+BvFdI+wI0PYFxnl+bWGgcqehMixAuDTKDJZV08vm+QGstqTn4 qPwxg2LFg3sfrdfcs672oIb7hqhZUg+3uyvue889rFrIZJU93jmuuO+u/c64b8hBGW2vsScr7vtw zmlNvH5Iw7niux8LvaPm83oqmRArvrv4bFzBd6MhlUsiySM6ihXfvSwkK75b4eeK717k54rvNi7w UfHdaJ1KzsYrpNys+O6K7wo86afFd6OLKpas5MfBdwuhehtTGpIcvNqVwgbZwG4bM5WvCA1n/TFd HtAVrC35xrzk+kde0LdA9qHZiF69JzW5Ul4Zk+vdQGcqdA7khZD5+ffRv1xWtvxntv/Z/G3D8ak6 9Tr9a9qLZzi+X3oND2nUOvTyevKY/1na54qPh3gqhn1G8A+8pZaM1zSh3Go2yVa/J3zS+9Q86c0T U7DeUQjTBRxbh158eNm1TDodG/d9eOCZTsdWsGTe5VO6/cySQ8oxJn48WTL7iuCs92drHnUfrXnS naWuVOUjohyn+zZu3y+KzyqsgGna79S67+V9aXjX6dA4LPyXzf8BVGReUAplbmRzdHJlYW0KZW5k b2JqCjEyOSAwIG9iago8PC9UeXBlIC9Bbm5vdAovU3VidHlwZSAvTGluawovRiA0Ci9Cb3JkZXIg WzAgMCAwXQovUmVjdCBbMTAxLjU1NDg5MyA1MjIuMzE5MzQgMTQzLjg1OTc4NyA1MzUuMTk5MjJd Ci9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJCi9VUkkgKGh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0 Zi5vcmcvZG9jL2h0bWwvcmZjNzIzMCk+Pj4+CmVuZG9iagoxMzAgMCBvYmoKPDwvVHlwZSAvQW5u b3QKL1N1YnR5cGUgL0xpbmsKL0YgNAovQm9yZGVyIFswIDAgMF0KL1JlY3QgWzk1LjUxMTMzNyA0 OTYuNTYxNTIgMTQzLjg1OTc4NyA1MDkuNDQxNDFdCi9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJ Ci9VUkkgKGh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvcmZjNzIzMSk+Pj4+ CmVuZG9iagoxMzEgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDMwMzA+PiBz dHJlYW0KeJztXdtuJLcRfZ+v6OcAplm8EwgCSNpdPycRkA9IYgNBNkCc/wdSnJ5LtzRnyJplq0dS e+Ebm1Mki1WnDu80aP7zE/E/kjPD37/v/rsrKT575UuSMn74/Z+7v/1h+A9/UtHvf3D8N+enofz5 yy/D+B+//7b7+Rc7/Pa/vZiY3UBkbBHx6+7P/KdZvHdDssr6bPl/auUEG5WzpO1AQaXgjXXHIl9J zVFlHUxdqCOt+O8YG4RyI5Vz2VBuqGtQPsWUB4qKoqWYsFgTlQkUG8T6lJSx2bdIZb3r6Joqa1gH kVKLVM9aSqGlrsaR4vLNhcoWwd4VkZS47T4mGlwKg2FbSCaRReaSiylRNsrr8ptrVbCaWJhN5deW TdCygV6piCHOziZj9xWxOqhonU1XK2LYZIIrv6nqImuls45VDY9yTVaesm+Qa7wKbDuNctkkbE7O VeUSW0SKbO+uUbL3ykTWWN2CLalkTYMJj4JDUhQ0hQbBWaWsc93jRsGJlC4dXhdMXkUKde8Y5War MsUc6zrWxfBcjo06LjaZNNt9vcY6qsDoYxoFU1Yh5tDg0uxTzrPPNgpmv/M++QZcY8+P0TX2nXWe A0FDxKBAbD3kWo3C+qSs0fY6sozgxuIug9tFwZErwg5dF5yU9knHVrnJqYKEdaQQys1BZR91b7ms Mfal1NB1JrIfRedbBVvmGjmGujtTjAWqQqtglzg2Bl8XfCXeXRTMtlmIT92dnVYcP2yzjqPjaMdh tDvKOw7W1MRTClYZHVJjlb2us8wrHneO4t66ERna2USJG6FmkUIywaCnivccWA3TBF+qfr0ewarU hj3Bc4gJrhGFfWSWkrMxdXtgXNWOddgIlz4xT2lCH6mlBc1Muwl/bEwqMp1ojHWBg7ktHKg3wgf2 ft0GQDw0yBycW+N+8IyESbs6oxAiUAhMKJoQSNx9MTN9boEgywHhojNdFMvEv22cJOVWUZehastY MQdKjbbGgU61sBQhXeMMhyFTZ7oWHZu8DbEOFDK6Fn1UmgeODTBxha/9wKwCt8raYfpPLv914rku j8+7n7+VIbQK5a84PP+6o+E0icKEICeuXR6ev+9Kmh0HP+xJz/8Y/qi1/vKn4flfOx43aBvMPmrU Ptj9h8LmKLPCTh/ME/jg4v5DYp5mgqGzKJcOH8gTleHC8YMn8AsfD2WkpIPz5184VDj8hX8ChcMG Ooeqa1F10Qf3DZUBlRhA4bhWcl0Z1A7UH6RRGbCBsLqoP7CVeGCiuFZZqhLYDqzdSnX5F5mJXzqL IgJlQEuEHyx0tUepD87KyHRZ64xGlyUZ26D0yQ90Nv72Imb2yXHhsteYBkFj/q/P14HVcvzxJnGc qAKsh36LFI8NaDRrLoK5d/S2AZMx+iFXx6JQQ3xCpvUg/gCbDgtHDZSrBLuIGGF7Fg7BGqkEx69+ osxYXWaZnvlNdGcPggiEP4yFlIlkHZgINmhRHKdmMB60exl1mPYF48O57BkmT38wq1TThxkvmpV9 ApvKstCbs8IbzLQpjLRZo5z89eORuLooimFjRPQElyHHRWjwYtIkZ564HXKuCoky+oXzUsCUc+6O Y4eeVrKQJU6haab2FqKF0W8WKVIOlwPCVBb+cIwUMXouw9QJ/0wlU1GYMVYiRZUaBqNs1DrUUVbe kdCxIAeDod2YK8Fnvn1AmdJITojEGUIK+/DzKvFF+Ikw/JQ18cDBPh4Vo3lINM4TjXX7ckSDw4LN sc5f/OV0DfI/0OV0Avm1A/kTyP8NlGtk9aSHy+lOy+TYr0AOyv8E8meQDtolracDekP1FOsByIft FeaH7QJ24kD/onqi9p4m0lrrA+wf1cd9ubN+RP31KEwHenPA35EfSe0HyYf6z7MQgxDUOasoOzJ1 JIUWgGqGNCW1VGBJCSDLasgI6onkiy0AyQH5pZ4APRMhOKiPv8oGZrv+3pwNWNBHsC9QX0ujFLI9 4FMbil23vYTyo/Yi30RyUP1R9EV2guRv0Xez24Z2oXp6VB9pDBXi0hvF+ipryVkFHhf7BtYi9GTo IULLg5FDGK1v9EwQfWe7498++kq9EaAAyo+iu9hqUX7QF8gbF2cDUu+SMkuhDUO9CecA1opSMOqg /kL6QekoSiG7Rfa5Rd+boq8U2ztH355j8XfOc5GHoB7KQuRCcwMIcVD+FGT11KBfCOgBpgP56doy 7/yU2ptH96XbTqAvxH0E+vrGvmguF7YL2CTK/wh8R6wHgG6Eogta0eikHylrQViEfPnhOlbsfarj Ec2+/nc+ilH1Q2RPaIVJA7tP6ZJefvjEaF+9nGpdD5mIpEhJNAotUvLSaTCxkbuDuW5TKzfVEy54 W0g1Xh/X7gx2h7NmdzudL6bBUsxASyvCgTGywc82EZNixZanVwSsZctSf0Z9KF2eRDpGcaL7AnXD 5Qp9+8QlZV1yDaThAXEmZPjvnEwsvc60kZWNrCxBVnoFZOi/Qr9bf7fOpwvxtXAyvVKnbzjxQfHg 1puGeLLh34Z/b4l/H9Xbu+lBulIkHJjBctHuXukK6mm1v9vK0tI7gVYaOovlfK3Ek+lNaqvFk6X3 FUpXyiF+oF4HawTStYD3vm4o1T86RULoVIt0j/DCXgpx8Tb8a+bx0J6F5YrHt0I5nddSq/HBRKVj ub6xjjgocgmnqeD0FdKg8LxQZbXvdX40hVqbOpzefLnS1KH05AFktUI2Ko21EFXwnsXXd4CuPBXI lVR6X5jdn5ZP++LnKVx2rwAPAR0BCgg8T8B9HkHXok0Gj48nLTT3w1VdlOOhiSzbTF0ZCZ2dFKIo HDWi0bbULxZe1oGsAI26pMtkKNoi/+2EJ9KdM+9lt5uUnS69kyqD/n0E9oBiJsoPY+9pR8l1TPbl qj/TMFhFW5VWJiM4kE3vnF5t0Ig20kFY7ETuEcz1ItNS0o9iK3JvL91Wf9t2eGw904vFW0hIb7u5 Ny5yukVj4yIbF9m4yMZFVuUi0qlMACBiRxBGH2hIlQnv6fMT97d+2okSoJB1b6sTt85WzZ766NuL FBQdbrGuz6W4SjWnD4e8+UGW2laC2fMj91e76SMmd1e72VMo6xmg9GQlxB3ANqT7G5Y+Rb5tWL6e f639DTC/cALj1k38sweE1lq9EO79kI6MpGt+72UPb69Vn5ttZ/pG1FqrMtsJkA1QW5ylRoxn75Kt BIQ1Vjx74mw7pXI9GLzRKZXZ43D3dkpFOiWBOgVOfEs7a+FdnvcGvp9tt24vNnvr7MbhQcX7mNfo 9jzjehcJIMKINh8C97t8kcAPvxa54uzBOx85bKfzruv/s90uWhvpzd5S/WRH/d97n1dj5vQ1221Q cReDitk7wPc2qNBgF8jijvhBg+7SR+7RtV2fLah/VIC/dbA0exP8PoZM1RfGN8rfHX2kV+2idOBF t1LO2fPvn4xybsOwjz0MqyJzCCqtvBaxUfIXfRKzisusvXSY50eO3ute9I8a/Jam3gvvnf2olLb3 Gd2QjVrozantjO5Bx1F7tcByRQdw7HRqBTkbOrXyBDoQbVRH+beDJtfbux00uU8Qv7eDJg81ACOG mrju8Ya7O2EH+mTDpA2TNkz6cUz6OIff3tlB/Gjp8LrHdhC/7h7bQfwX1uOcIhviAvsh3jNZQKC1 kYWNLGxkYSMLn+WkfPRRMTov8dzVdlR+kaPypR/1EFPa74jLZSbTO7QT2Q0xkyo7l/cdPO02D7ot WFvel/GB+zzmRNHmY7fZ8ZETm47OcTR28kTlykM995oOz7HNr1NsukcolSZ6tkqvgiYTchy+74gV MEn49+6v/S4uOhXolE/JuGSPBZ4TxgLHvtOHbkvOlBJh11EK5yf6DsWMPRZCHn4qt3OVbQeBSzsn l+uzreEu2BcZXFIXsp+T59m5kxkNLFtL0mafL++bSrP0MSePSnIKIcVZvnPqmMtxG4O31s9ynVMv doQb+NvpTMGFlmdKkZjZzlpujVU6kYmvWj7Jfk6eZy8t54jAdD3mFw0/JZ/aHdkx/Mtmj4mHPMYo Ry7QPNMp9WgN/weu91I/CmVuZHN0cmVhbQplbmRvYmoKMTMzIDAgb2JqCjw8L0ZpbHRlciAvRmxh dGVEZWNvZGUKL0xlbmd0aCAyMDM2Pj4gc3RyZWFtCnic7V3bbtw2EH3fr9BzgTIkh1egKGC7SZ7b GugHtE2Aoi6Q9P+BjnbtetnkiByV8moTxogvWi53RJ45M3MoUWbS/PWt4W/J2enXh8OHw3zEZ6/8 fEhZP338/fDLN9Nf/JKK/viGp5/c3kzz109vp9MvH98fXr2l6f3fx25idpMxluYu3h1+5K8PB+/m d5++uxSmSEbFSM6Bz/F5tiHUP8w6ZaKz3NhE/o1MTE+f+7kek1cxmGhytWPjvNLOk8ttPeekgtOB f6ubzOfebrIxRnmTPZm6zVarFHnsXWPXPHqUk6NU7ZpIK0pGx8aeKSqbTMNoGD2DwuXYarPXyviW cSYdlNUhtY5zIKUp60DVnr2OKvgUbWPP0atsYo51aGijnDepdZRTUjGHVJ8+b4n9rRXLsxmBO27w kmAU/3e5tWfjlPfJ13sWOrZ1jE+rm5wkqWyzaTbZk+LG1vZ2bBuC0jGZOt6kfm0jn2LQzMNVH+H5 sMHlRiTzsKlEvqFjqVvT3J6B3+DWUTM4mZ4bO+ZWPscQeiOOHCny3tW9Woo48kxclGzdrYWIo5CV aYt+QsRxaFB5hlxvxFF2bEjKDX4tRJxjEo+e/a/as9NWZU2xcZQdj12gEFsIQ4Q458IxXDd438xZ mlzr9Ln5xzEd64w4F21jtJYiznEqp8mbBr8Oc/gNrjGoMoK4Oady3RHnjW4M10KT5+geZiz3Rhyf nHLUQMqGgsqcEDUPRbCK+ATrzicEnOdca5tk2XOy1RauLY9a0poaKS5orWaLG/IAIeCCocZw7dyc 5DjTarINHK1dauELEeCCt4o5oyFaSxEX2KXawrUQcYGTLUstNZQUcYGzLWOoKQ8QIS5qaozWUsRF E1RLEueI3ZSCbhzjaDP/QQ1ZgBBv0Xsurn1DzSfFWwxJtVWTC3j7v9IJZ1ohTsq5aPi1wO9mGz49 +GzP7f3h1RuOOk6F+V+c7t8dzPQoF/Hcmsdizyqvg5/lgPuHw/wiIzvbYzZ1/9v0ndY37vvp/o/D 6/sWIeZyZrqTmczsPumjkafj9Obzx50GxzM4jvoBn4vae9BeE+gHHUf2oOO34PhrmT03tAyHQj3r CweyTM+W6ligHwAW7mRjgDCCxgb2j8YeHY8yrBGwH9ojxfKNzFcSao/OF8wX/FxkP2iPxgf2D8Y/ xWXslwLvpcAvJTwEHjRoaLIQeNCk9wUhnpRCGu87KY4zA86dfUMUBWdrkKsj2hdS0hcbFo0QJQC1 qH8NUIvmCx4H/ZsgPN9rp06AH+QXVao9X5a6ENPCsUc+hDCL2kv7B2MM51BXxvh8gW53xOmBA4FB 0EKHuwWDf4fag1wLtU9pX4QEiQc4uu8EZvS5yH6N8CCc3wz6uRTx39ScsVjU7uuNPigu2bxtcMde bndnZW53CzjsFkxXL/dCeQmMx1IuF+ZhXigHSN0L2QlLSZQXopizNW2g8bmSPGlvdJXB/KJwh/I8 1P4GzPuj/zIdLucR3jA5WttAXAhgwrIYlsvIQQDRVZOv80uNLkf3gL4hLQrLRDRqiObEyhtKiaV0 CcIezI4QqqTlMhpPW0HP+fVkI1mokdZIFkayMJKFkSzUwh4EHiAQsSMIwwME0uvl8FBcFnyx8LB1 0EbhRLqcJaVdaT9rNdDiEuz9XiBQXNA9LhCote+2EiK8EGDtgn9xVf1Y8F9O+MaC/1UlWFUGPr/x Y6z3L8/5C633F7fM7G7Vaiz39w1ynZb7tw6iV0+EnZfvi9vPxvL9ctmzcvm+uBFvd0S48fL9HSCY OzD4qL1YGkTEiQgSBQQh8Q+Jbp/EKZbowPhLpTgkla0l7OLm2/1qDcWtvENr6J6GCRdFUVq7Vmso 7qceWsNyajm0hquKFFUGPr/lf2gNy3P+QlpDsVnC7lLsoTWsC3Jbaw0bB9GrJ8LOWkOx8cjQGhZ9 bq3WUGzBsjsi3PpWAfC58BYCMCm9rmXemvilV0cgUMGL5IRgFtspHAeYMXeq+ZGd8JYGgBNU83+p 2sragFBs67RfLaPYJGpoGd3TPKn9iAXQeQkvAV6riRQ7fg1NZDkFHprIVTF8lcnPN6UbmsjynL+Q JlJs57e7UmBoIuuC5daayM6CcW8NotiKcmgQi3O1VoMoNuXcHfFsfb0DOo60BgTkXlrDzrLor7XW LTaU3W+te7497Sh1u0dvBELg7C9160Cxd/AoXUfp+hWVrsX21qN03UXpWmwMvrsMcpSu+yxdNw6u vUvRYpP6UYpuUooW2/Xvjki2LkVRyYl25UC7eHTarQMuAyPiQY4rzcCky7Fo+RxlZsJbCsatA9eV QXa7jACM56VvKSgePbJfaaJ4kMnQJrqnZ1J2eCFtonjKzNAmliPg0CauKrJUmfn8QUhDm1ie8xfS JopHSO2upBjaxLrgdyltolNw7a1NFI8zG9rEImbXahNnD3bbHY1caFMApDQgxeJLVSDG5gXrXHco EMs43+umBsXDKPerQBSPthwKRPckDLGqsPpD0WKtAlE8d3QoEMtzNRSIq4os58w8o19PMaXjEnxm rps8fCSumyIXwlwnnNYvz8HuAdgD0XwflQ/sKTEnEyk/wZ2UnR/AS+kp8DwlXsYb9or030h1Zq9+ NDU5O9sNzfXuZGea7TyZF0Lm1x/O/soxKuJ/Zvrz8PMhcCb93Or5r7IVf8K/759b5cfXno+eWuUY 1Ketno/OreaT+ge2Wc+UCmVuZHN0cmVhbQplbmRvYmoKMTM1IDAgb2JqCjw8L1R5cGUgL0Fubm90 Ci9TdWJ0eXBlIC9MaW5rCi9GIDQKL0JvcmRlciBbMCAwIDBdCi9SZWN0IFsxMDEuNTU0ODkzIDEy My42NTkxOCAxNDkuOTAzMzUxIDEzNi41MzkwNjNdCi9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJ Ci9VUkkgKGh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvcmZjODMyOSk+Pj4+ CmVuZG9iagoxMzYgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDMxMjQ+PiBz dHJlYW0KeJztXdtuI7kRfddX9HOA5bJ4JxAsYHtm9nkTA/mAJLtAsBNgN/8PpKi2pG5bR2RJbN2s MeCR2VR1sVh3FkkaNP/8QPwrOTP88/vqj1Vp8dkrX5qU8cOf/1794y/Df/mRin79hc3/3J+G8vO3 n4fxw5+/rX782Q6//W8NJmY3EBlbQPy6+oV//lh5V749/nYpDDYHlXJyDrzH54JDqL+MjFYp8uv4 nVFRtBTT5sX7QEbD3VPWoQrZuKyS1ta0AU5exUCRch1lXcjgcmxEOScVnA78qQbZhahsSNa3ASYi 5Sl7Sw3EYHjOmFbINiqTqAFlskHlFE0rMchrRb6FGMaRkqAcrNKWGcN25zmKXmWKOVYh81SoZE1u xTklFXNIqTvPGU0qMOg6N3vLYpJ1zo2AySnvk68DFrKccVpZoxt4OSntk46tcL1VlLMxveGGoHRM VGc3IdxcWMizDq4SOFrFDOEbAdvCQpRig0wL5YOfK59jqOtkq4MyOqRWlK1WLgbfADhq5ndyrYCd VdZ7V5doytwz29QI1/P4bDJ1gZZOXsiKmqwTY8DGxreKnU2kcg66wewJNb3Nbm2q6wLtjVUxukYN 5HTkP1jy6uZUK5O1bZU8x2wfbIh1TSGksbOW7bRvsEwHdOYv7U6ed+yjGaWNdXUtEsiwjOlistil 40FZB8bCUNnr8yG4OuktY5lcZMmtQ/XsxhDZBqEJzrErFapUZ5iGTbZhLqnDZLb2hU9boDJHRdYd XTH1PJ+uxQcITrm9MCcOeirDZrdi7aSzWNnRVz7kpHs2OKxZKggYza4KeXYTmEuLvg9J0yFUAmm2 e2wh16hQ8MUKFrN2MGAgr6zWDdMm9A6DSdyrxR+SAubuTb691KgG9luyowZZc8kql1pNX2C/JTX5 WSy+ypngGgModjdVZLh1LSdEOBsWUMa4u5McNQ+QTV9dScowZmFSrCUaPC0hibmDMm0uXPF6tXXN YTXrK9LU4GlVTNQpiQLFPnUclHOR+FngbzMOHxt3+Dy/rn78FgcOSUL5F4fXX1c0vCVHLFtIa+zA 3MO2mjQ//b4qT1gO16aBhtd/DX/V2n77aXj9z2rrpuu3dqdB+9f97Ra0uy+g3YH2Z9CO8ERwnkB7 Xrd/fW1JsfSdE1cEo8hRdVKewGApgkFZ2SRq1B8QU8wkudMkgv4e9IfjIiGTAKaF8BHTIvig/zMQ ogToifgkxcNMPkv3XUjxQMWAeArNIeovhQ9oDBWbPkzjWeLz6hSJBwwOiKCDTCCeX0A7YPwXIZyU ZPgQElwkoGjSAT3he42QmVE7UsyHmfN0+iAhQnRDCh70h/gj+MAAonElAAfSARkuqZJB4zrOW2mX u68bpXRYgWijxtxQVYNkpEGEHI/6I5P3BCh+rMmbLxf11ccUFFEgl3ODRnYVPKeLT5dD8249QQQf GBQLDBDy4NB7n2xl2qcrg5cKBYEygzToZHykNIbtKDoSGk+IT98QtNlYwfHeiHGuqubZ4vUjD3J4 0s+UB5kt+19d+PLIgxxn/RbOg2ikOaV0kLrbUrddGsYhOELlAJUGohsKH4X8rKUWUGjZpeO9kzC0 GmaxKrWkTTw+zEIShTgSzTSiLAqzemccZ8Vej4zjQa11bMZxVvZ2dSZ76YwjINoLID7KRPbKOELB BUyFXBoN3ovoieBDOMKMGlQ8CD6YR9SOFJhGmTzpvCD4CB/U3mu8QlMI5x3l3cD8ov5ovLD/tzZT 2J5x7JWzFUsOmiEkyYjiSAKR5kLOitCcePBepNGONeWzIujrTaTOSqr7oqkbmLgSXs8Ks68Pu2l5 9/VhNy0SvxwDioMGYRAMg0KUJOi0dgXTtAuPF+o1FBQi/SUM8qTpZ9Qfpc/hfAnT1eKkkTBYP3bp Yra14pG9Pcg758rezjalXF0oCBwtNFloUrw0Dl84u3orClKK/0NBnuYwzzZyXSr3hWiJZA7NOQgy 4NqldA47FV491pQr8yIsNIN06LSC83DajtRJNedsutfzUo6A1MBCYfxky7i9FiyO9uynG3r7Ms9m O9+jKOlWDcidFyXN9pxfLIKq5Dhn+9cvheQj9j6w9f9CWhOFKmh15xGi3oc7COm2sBVFOgB6Zp32 O0B6dioE/KReQHU115XVK0emwfe/cT/h2KTP7KCWCyV9au7D7MyXC+GICs0q7XhM0+NmrmN1+oTD axRZa4fp7zKAD43vBuDg2qtyMSeKNm/wtsrE8VCXN0U4iqUvh1kEkyYaEj4YVadTmp1l5vjtA/MC HmxFLXsTDE1kcFOxQZ6onIOydR8IfMPHt3ekpIPzu2849HL4Df8CXg4H6Dwah0PjCOABHPmb2tvz cjhARCv4jreSrj1EhC+H6MKRe8A+GF35AJ/AA43GAacWTxRkavRyjC6kFWTRhN4xpW4R5r0Txeq4 OuXTgWvWaFVIENkZ0TPtp3nQbj9ppw+2wUMZNpur/bPUMrrpIGaj88/7ITnwBkgNiGqTopqQyRsE icCDI+YUUXzGzE0vnzFzC3vMeFkHs5+X2brVeZlmPisyfi4WXyLnWDeCdkSBjbpnax3d7l0mT7Ce SqAJ6Cs0Za2Z2kU6Zlug+OGB2ES9LZFT2WBH0dsG7bMN/ZptFFSWGC1ozw307t4dwHd2zwhaMGwM c4MaarOScs/IiV0NPFtQhg14uRzUNkxs9wnPMUAkcDM9fxq6GCtEXchX2FOFtII+CBwg1BvQG4Yu k9y3Fbv72OIj34GATYR+C3xgnzbKN1lrvNnP7CdZ0dm7J94DBFQxrjUjal1SQSfrGvTlJUXdHLIj syNXz17d/AWkGr+gDVJo8RZtJBJufCG0gQYkvp7QRhC0PWPhvdpLp7bFKX5hGba4ckpasSXdMy0d l5AfpJVfEI60OALwOUoIo+00vZZApPyJ4PhOe8RhwlyKv5BPdrtaK3upSbENbVlxuNSaUKcqIbj/ De3URIoCwJHuRLzXNVePV0feHaF+dh9ButglPZcUTgXSAcKKfenWHKTLxcudyMZKWR7gAwv1pPjc Ch2Eqk5cBoBsrFClIRt4KTpDekpLpYT9ofwuXSTYWDZAWWlqWT4lhICQ4HCLEFKM0r2Y0gmSCsjS vsznrN1D4wK+wPTik7P7Aovr4BuPo5YWkV4H18AjroHoPIN5eel15pu0AEt40MrS83Inpzm1j1e4 k6vzvHQ84OVWtuX0KspFpWwXy5heNtPTTDdxVCKU2CMzc8BJmN5kdv6EgfRgT8RinQIvKAppR8KO F7f1pffutrd6nHL4VKyP7Wg30pYuIxbr66fKB0b5MK6OQyodbMOeEHiSP3BwuiW6O1Vid7us55Mt QDzpfTLX44bC95z6uISgUSIeS5bHGfILLVnW9km/u1/zGLG43UsaFl71ghk54RIJ9Eg+2cETSFfV 9jPNr3pdlsU/Z1ISk35+Ge4xtD/90C50Cuqt2+Klr0SA8o/wB/iI08AL7+CF51ijJUZhEgSVq91r lYUGUdiV+oT9lvpQqHylTiPW0vOrxY/R0j4ox8QyLYdufDb3RKo+euVWOyULxPMlHC+cr14L5ksf CHEhMyw+cKLTASdi96jvhaJV9W29Iht0y2qO9O7r4ww71rsxl90M41nli+vdxW/Qerg91+z2tI/r trya0/VorzU8qd27rfCqo97tFYD1vukrZEa9OMJnyBTdSQ0IpGXUXrmgx5suzpT5qbGowFgufedX 55Kq2sjJ8AAjkXENxxpJr6VC+lma7keLjMhvRQv4Qn8G7RD4dDeRCu1Lt+qwTjtGkFWRVqh35quO leW3dfkENg1UFHuptztH2IPUE6SC1BCep767WQykd9DBC3av0w09WR08svwVOtxHuFtXu1rlQKlh V+6NBcRY71pSZnPb1SPNf5p16xZ0RucUcbwRzlOY9vF0z5jSWJVajvj0sIrODTHTLl05xcujM7+t VTYnHlr1yBWCJzzuLbs9qgSwGpKmMiK/pjL7KC7lMHBHQ9OG31d/F5+L6t1IsTX8kVAhZH7+ffKX t1qNn8orQjmtZttr99e8F79h+/3SKyvL/2jSOvbib82el7/HgXzENfldcfIHlH9QxmRnok4z3NdX gmqb6R3us+675nn3coCZjcZm/24Q29axlzXrFkezXrvWsVeBHXmm46zXrnUzf/8HcOn3HgplbmRz dHJlYW0KZW5kb2JqCjEzOCAwIG9iago8PC9UeXBlIC9Bbm5vdAovU3VidHlwZSAvTGluawovRiA0 Ci9Cb3JkZXIgWzAgMCAwXQovUmVjdCBbMTAxLjU1NDg5MyA2NzguOTYzODcgMTQ5LjkwMzM1MSA2 OTEuODQzNzVdCi9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJCi9VUkkgKGh0dHBzOi8vZGF0YXRy YWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvcmZjODMyOSk+Pj4+CmVuZG9iagoxMzkgMCBvYmoKPDwv VHlwZSAvQW5ub3QKL1N1YnR5cGUgL0xpbmsKL0YgNAovQm9yZGVyIFswIDAgMF0KL1JlY3QgWzEw MS41NTQ4OTMgNTM3LjI4NDE4IDE0OS45MDMzNTEgNTUwLjE2NDA2XQovQSA8PC9UeXBlIC9BY3Rp b24KL1MgL1VSSQovVVJJIChodHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9odG1sL3Jm YzgzMjkpPj4+PgplbmRvYmoKMTQwIDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0 aCAzMTM3Pj4gc3RyZWFtCnic7V3bbuS4EX33V/RzgOXyVrwAQQDbs7vPSQzkA3JZIMgE2M3/Aym2 +iK1+zRZaqnbbXMMeGYoiWQVq04dkiXKbDT//GD4V/J28/fvT789lRLKpKgUKUub3//59Lc/bP7L l1Sk7QP7v/l+syk/f/llM/zj91+ffvzFbX7937aamP3GGOtKFf96+jP//PZEvjw9/PYpbGx2KhH5 CNqhXPoQ6o1ZnRXpnGljojLRmZj27Z6rMVqVYso6VCs23EOXXWqrN5GKwUST6/VazV1g/fi2mnNS wevA/6rV7HNWQevQqApjjCKTyZlqzWRYPBMadcGiseaSZ91VR48im0FqVIVxUdlkGlRhdLE0n2Nr zaSVoSYlJ6d88q06Dk5px+bmFh+9SCqbmGNdx56r89Y2Vmy1USHmULdkm7XSWcfGeo1XRIkaPETk edZG5V1ssAmh41mvlbO6wT08GX7A2sZ6ySmTs7V1t9NRBUqxteIQlI7JNNiayUpzHxrrjUnloBnV l3Y7m41KjhpqlrmdK/0wqcEoPLuRt8E3qpivK8oxNISPMsra+VZrc04rHwPVa77gz8dI64LfwcM2 2rJDDVHvUrR1kUEw1CDFMT645FJ52jFTcBzoL3Uksan5kNLQkaRV3kp5sSPZK5vLMwtHf6/LXS3Y BiQrN+r9M7o8s79RF2rBGBBia18YjvQYD6f17rV9qD4xD3AptdqT5yfzCBbP1u6TcluvKhiWlTPa NqK596TSGBzP1k9BMXUhS6P41gjrPjI7GYNZTYA9WLaqP3nlx6BWFcBYhkFGrFbYJKOVbQIhYYQm RzsnWpZeEWtz4OT39w4KRkWXbFrHOyh6NaHrVfeQsTO2Q+VLzGy2LiGSBeP4L/aPldwj2KCMC9Gu 5h6BSVPiWUI99lcCXuPMlfwmag5wzqY6owueRyPzeDCDV4kldB7IwrUysW0jzOyJ3H5K1FKrZS3Z Fic3HC1D5gFrqdU7FaNrUHpwQVGZKldHk2ulpEokq9daIjvbYzgTZa5dJVBMf+NGeQ4cfC3w09yH 94XH/ry8Pf34M3eEtVf+xM1bQbDdygir0phg2O03DFxs44bnOW/fn8pFnkbkwffe/rH5o9be/2nz 9u+nVMK53vZuKHc/ny/3GpRnUI7qAe2i+wncrx2o5ydhu1Yml3sV9h/p7ZtMz+lZKC9qF/QT6fN5 KP/prWVtallz3gfKqi07oEs4VkKdQVtDNvUiaxeNrQP3Q7lAu+h+pDcoV1zXp1O8bGuT9cp72ZoU H9EYIhuUjgmyNSn+InzJl8dkstK77JgciGB1UJ4RqCHDf/QgZ4SDCIwK1Q8BA/Uf9AcCFQquQmBG /UFyGdBPE0A9oJ+ofmRvBvUHtSu8/9HJjVjey+SGweoysDCA5GCSbYD7rxaCK3B/uv9Wrm6nTeUf jbh+nIBX1W+QuFJGBoYRAqB02IVAAYdd6CDQAVcG0nsFIKmekbyE7l+KGEhnoZfZV7u8iA2i+lF/ hIRnYTtZEMB7SG4KyRjwT/Ii1gb8eRH/emCRBoilAkFn2heZ9pGPtM8tL9qi9UYN6/KzZ5W1ZYpJ xs+dlimkDBwC9UIMf6YdYh1Pc5/moJJ4eaEWlSQwR8IJpzAqvYLyF6DuFzCcr75J8lGWUlX0lGSi IJUgC4RICNqFFBEFaiHF9cKhW5taI0IkXuOSIoMwckkjFNQn6j/QpzSiSZnJwnZVp8q7rLnFqRca IDEDnbd0gUPDSfrqyowV4RNUgzQSLruQfzXzRZtVEG+EG81fjeH2teSrJq7Xy3vlWrK2KuuSs9jX kk/KZ8+fxm8J3C9D5rkSZybvHPREnrlWcq/kCunSsDSe3Ghjvl3eT5oYNTdxafJqT09cWtS3vlqk q0W08etePW/plvCIh2T8olzPW7pRTO95S19yrqnB2uujc61PPrfG4Dl+G3hZ8BSsvH05lnEIae8X NSvTSaNap5M94+pyPT3jqtLPz5FxVV32c1ReNdQNMPV5crKaTnBYe7ulU5VOVa7A754A9lhTlsUT wAQbNnM3MCZnz/QEsGvsEOt4egpPTwCblvcEsPf39wSwiwyqJ4DNi2g9AexaCrdwAtjJQWo9/2vW xLnnf92G4PY1+WXt+ZNPdKtwvz/Wc61XrTDsTo+ZXBl2v9ri/9y56OSIzo+RTLfggZ8LT64Pp4TW nQegP0JVA1BsNxk61cu154/2dMS5ftbPFavIe6NzxSan3vb0vMuUCqXnVWLD5DTfnpd2S9qKx2R0 BHJPS7sRtq+84gblEu6hL5Y78eBcGOoZjRcia3eaei+1Irl2jJ5pt9Upqo1Kx8Lg62zys7KuWhQY n1R/twS7T7Jkcj3vWig34G5+vBAuIj3DcUFxQMjt1sZRMX8R3i9d2l89R2+hDDOxPQjRHG0FtMaZ EJULybWsJkr3IIVMFUqybGrwu/K5q4aekgrrJHj3DJZzH4v5aFO9tfNTXkC7r4BCvILBReXiJJO1 kyVWhsqldsm0NGSvHApX3xVEcknHRToFR1RZSFkX28VdiHJU5KqGbF9eLPKmZfsSIBQcOSAJ9EBk edKwIUw7EyPLvPwNHJbG3xj7eFPPB8EVlE+JiJr4fmDNKL9zLhGcfA/uY2wfV78u1zc/504jlnqp 61FyhfpZKTv3qmzGTj6y2DdjL9vszM3Yyccj+2bsLXEBj8n4i5sfbYred2MvG1Xfjd2V993YefYg 3Y1diiSB8UIkoOLvfTd2dhgTIxRqF3nCKPmz+kHm+x2z8sF2x8S7V8AK7xUfHmX3TTyZWngPKmi9 zQdfIQei70Gd+yL7RyO4fQ/qMgF6dMDoe1A7O+97UBcDbN+DujpsPNgeVLChnK4V73u+YN+Dqtx/ oz0oHiQemeRX2JG85hXGUgVlUrRJ3pZ+grfz/CYykzXO7liWcc5txr+LAO8KTwTwQABuw8ecTHR5 329mdDG68sHGnXkMw0oqahdsGtkNvDAYlFc6mhwpnlrymQt7gDFkWIXpvY2/u5B3VaWkg6fjhV00 fH8BN/4KLlAAjVMEbWDJkRyHzL5MNlhD9TZgd6HklJESoeQEhpYS6i7SFR4P9ATWlQONYysh9ASS fIaVoIGi4YmodLAUzNFIUBMf03oO64nvdDi+wDIeG7ejCxyGzxsJz59FNqIZTc9rZFTTxETGTaMH JhYyeWCsqKD9eQuZXEBPzLWQPdNE4O0CBzZuyNRBHPst8nToCN2hr3doiMgT12mSD+pQHg5w40hA DDMooHfrObWe3VEQAuvZXXCKbAzZHy/YQXCmnsScMuXQAFrowqT1CZohdL+wG84ctkDY4X38W3NY bKcvyCKQAUOiA5/AKACxF9JhxHpxd1EbuFfQgBE8wKocje0x+mPYtRnUZQN6xLwAEQ2knoQuvEqH CiIHDqziOYJFkIJ7JcdMRBj18w5TfCJDzl4hBzZSiJmoV5BiYnRq8vRxVRPXGTFD3MTYpRioqjU1 ee2E3oqbmGhwAsqAch/3jisUky0iWuPrGOuGlrKKkVhdQMETKxXPr7EFIWzCBg/NV2ylcijFYQc6 rtwN0bwN0zw4HhDkBjZnyheTTSTXEj/FU1as3gGzjFG+EEsdG/QLiR6E0pdLrMZmZe0+b/zWrAbP zOXkBQ495ChQk5Bki3u1pGPdgM99+ikMbqOiXeA93qli0CsszOv6evw3sO3xDaUNoOR3dJCr8EBb g7b7wbbHszAvCR0hKM4/WmrzEPSn8tb+x8nD+hy5PdfrU3oO+mN9uqBdP7O/i7TU90ZWz0x/8G/N wNe1pN8EQwlbX+xzxvD+y4lHgAxQUuUsyfuQgaU+67S2C35W8IRJ4kLSIh4v5PqoXenRWWtnTq2c A4T0CV8mEebm9ZegdqFjtHcyJAfFlLbvcGwzhBgfcXZQNmVyPpwDNIZDAnAYnFMuJwr1FQYDt/FO +jucOz783p45nt3ujd9LZ44b0lxzsPBLK6kIw/NMQ8pYozN3jG+0Zlzwn6e/zv3G16h68pmVQcfq 9wVD9bKELfLDWGzrH4YghMzXv4/+51hFjv/4bRPBJ3W86/i/6V3cwuH5clfeXjOj0uEul+1QNLnr WHpWZ357nv7hbPx33f9BWQ6ZJd1tIkc5aTtGb/OJHJPbj8XT28sql9eZmCtOBTqU7gSyQ4mdCnQo He7yOg0Fk7uOpfux/D9nlUdiCmVuZHN0cmVhbQplbmRvYmoKMTQyIDAgb2JqCjw8L1R5cGUgL0Fu bm90Ci9TdWJ0eXBlIC9MaW5rCi9GIDQKL0JvcmRlciBbMCAwIDBdCi9SZWN0IFsxMjYuNTIyNjc1 IDQ1Mi4wNDk4IDE4Ni45NTgyNCA0NjQuOTI5NjldCi9BIDw8L1R5cGUgL0FjdGlvbgovUyAvVVJJ Ci9VUkkgKGh0dHBzOi8vZGF0YXRyYWNrZXIuaWV0Zi5vcmcvZG9jL2h0bWwvZHJhZnQtaWV0Zi1p Mm5zZi1jYXBhYmlsaXR5LWRhdGEtbW9kZWwtMTYjc2VjdGlvbi05KT4+Pj4KZW5kb2JqCjE0MyAw IG9iago8PC9UeXBlIC9Bbm5vdAovU3VidHlwZSAvTGluawovRiA0Ci9Cb3JkZXIgWzAgMCAwXQov UmVjdCBbNTcuNjYwNDg0IDE5Ny4xNDQwNCAzNTYuOTUwNzEgMjA5Ljc5Mjk3XQovQSA8PC9UeXBl IC9BY3Rpb24KL1MgL1VSSQovVVJJIChodHRwczovL3RyYWMuaWV0Zi5vcmcvdHJhYy9vcHMvd2lr aS95YW5nLXNlY3VyaXR5LWd1aWRlbGluZXMpPj4+PgplbmRvYmoKMTQ0IDAgb2JqCjw8L0ZpbHRl ciAvRmxhdGVEZWNvZGUKL0xlbmd0aCA1NTMxPj4gc3RyZWFtCnic7V3ZriO3EX2/X6HnAENzX4Ag wKx+TjJAPiCJDQRxgDj/D6SotftKR83Tl+qW7shjTJxuiUtV8dSpYpEyGy1/Phj5K3u7+ftvL/99 qU9CCSrUR8qGze//fPnbHzb/kVcqhe0XDv8rnzeb+ucvP292//H7ry8//ew2v/5v20wqfmOMdbWJ X17+LH+amw++/jvVQXRGmRClFRNVjsE6f+jrrLmYVfAxy/+ZbNVoZUowpaHV7JQurqVR75U1MZqG RktS0cUkA5huNShtdGkZqmhCmexCaZGrtJa8aZGrsVEl55tkoJ0KrqSm0XqjbJKGG0ZrxZyccS2i NSGobL1tkm1RRnvvWppNWrkkiphstWrBhaBluTU0m70qxuvYpLGQUxbRJmWSMynjVktRycYw3WrI WVlXQkOj1viq24ah2pBUDtmfN1qbFaGHjZXFEn0W3fscN9aJbHNtGmKFla/lkieMxWmjXHa5ftUJ +DiBpiuDEMRI1QK3g6hm7k0qsVwZRfJK2/qN/Sj0YRT6DGKstOZSi2BzVDJ3GyYbZbRVTSAPtNVj pE4+GmMqaXqkSaBIxN9ira6ubgHuPD1Ur3z08YpKvRFQ2S7+RrvyskZ9mUILzq68C3us2NpVEFGI WeV8ZRReq2gH6IJFYMXL2ZJbbMAHQWPtiplWV4hK62RbGo1RRGFzQ6NZvGw2F2DgvNFUlI0m2Z5L QNSqjBch9Gw0aPHHduC0sKa0r34gtCyBIB8ptdnJVsVQbNHVF1+0v3byJdKWtaxNg48wRemQqilP c7C6OnTSbrpV4UBJFmeL85U1rxrYhywLITUm5JYmowBFGYDOFZagVYkpNlHQJOSjjSk5wTIv7KOl 1SLcQ1CsRaiCDlkoTUOrSeyzidiGKDBijWvRv1BaJW7dNYhViy/RpUWq4m+VFt/TIlUx6pJM0/y9 yCplMy3VbJQXdGhrVYRlbAtPjFrGaky6INY5YZQyzrnN8G/p9/zhaQyfvr/89K3ScIEB+Sdtvv/y YjbHcFEJJmcBmLL5/ttLfeZ2bF1U+/0fmz9qrb/8afP9Xy9ByWoXr1SHNPXCbV+IMsVMUkjHFy5u XwhjSSFW4nx44fP2RZYY0BgtUHd8EcGLkPZ95Kwldhp84zPoPNh9UyVY8cGn4QYDXsB5mE9gVMaA b8Cm4AuL5gG/4T2SlUMzhy8CUC2vKKgPPFyoWtQ5FAlu6hOYOd8HNjhkV1hW31BTGSmKFnvbMpAw 5fLMZdlebsrFgUgKEPuoqWJIPQ0HNZrfaFBDiQh9n56FQbPIl1sKH7fPJQLx0mwOvqEPMCjUhQef b0O9oWCRiuCs4RywxOmmRvAi7mpa5EgeDk2PnjerIjw5pKPRmNoW2LApiS8vL4sWm+XXMNYRsgP/ EQ2KtpyRbxgq4xtoCc7Por5tHnAR509qGpGU4Qu7m9/X75NJ6cU5Gu8yoauZ4eGhL6U9/Lr8KSHP yDPHnak4iZGCCc5OzxyPCvlSOCqsWkgv4ASHrs5o3SJFZA1dO4HshpcvT99ojUA6HfRu6q7GvSm4 BmKHKBSCTMxW4Ddo70wzKOTO4wFhrwKi817GVvfKpoGxX9A3I1iCplUQlCLExHHw537xCuwDvkBh CXQibWY9irU1u6KhaqExdAQHPiAb0aaRECGSdgQ5Wh8+sDqfgbDXmNZwo355okWDAEYgCALQUhBB mZEY6YeLizj8JRI5OHCDAA/hmtYUhDlM8xANacu+PD48TNjoMAsyolkuu8saHAaaQwW+KcCGLAuS JtQ17gLRrAImd53HTdKvZJRzseQGuIQrvWPQ+GRs98XYsAbpXYWefdBCvBUwvQ0uofnwLn2PNJdp 1qh0cXmexSsFh9IIBnA+hF6ieMFB4sJvfy1gjx151rqrnWd/UINwXUGLwyxvzfwmdsZ4itBdDJfO MAtFkxeYC8qgJbzNAF+waagmpjHkl2zGDKcQhy1VOJykkZja8rsux7D7Knx7HWqFsn/LtgREk36R CHYhj1Vs0raf2MY2IFbPcJ48ged9+q7CKClncy0LewO685bYMQ7pvgwuU7bxuZDlORs2IpjDgFtu TY6nybYXyXrweWJ6x3aKxjMpF/SNRUCIHi4GDgjYdBTIB2LrFp1BkTQVATbVWgT0BVgAgqozMBVh 65lYKje7dm16DzKp5K1307gIVTJjifD5KTo843lTRwo2w7nS+XF+45Af7pxYC2LW1zWpL6w85RNt UFh8RhTGT3C4LcW4utgWDz2z1hKQttGp28VJG85fw+QYXxtOb5P1zJHzG5odM0EzOPGMCJGvDl+g yn1GFNqRLEPv1nFP6G3SvUl9OEqa8dW8TWg9AswZNcaQkyKaB6eB0mO3L5hHujNtu6le12sESo7T WO0gLexYBAHBDyaCOh4JgiUN8Bt8TqkfC+lJPZeob7nn7XBAjkZ3hyxPjh5s451PCvDOu1+eZEb1 FOSLNCflNdgzm4bLYmjYggCBe+cJPMTlfpu/bacl33IwC3IENnfU7+whfc6J32lkC9xOeDxRBOaU 2Z5qn0bRfudqZji9VZfajDwFDFwWqMzg59GxVhnv7CyRUKI3LTseP5hxeo92OVPxO+Bfo0vW7uhY Y0dWzCd90e0PM85lLJJq6phwWSI/9G5uCUEo1LMKbAflRquQvU0eEIK3cX77FXZCswtY1fX1cks4 qXSHNf34Cy0Eerz70FaL5XK93SuJD5+mYY+GNTNc7/O05xkuQ1ZF5wRgNTHObcAJwjOPq25MdC7H Gl4le0e5K6hfPiCi73aC5jgj4UT3MeP+g361frgP9MJcZebDC4WVrQaivE9G3scct8Z19vCVcSVo XFYFHcUhpYNxaZXFOaVs9kP7ckBHWfs6nYb8JVx+rsHnP5rLzw34vPbg8xl8/hvo13LjNOnycw8+ 7zXX/hF5Xj//Ap4DOQQgT/cZPP8K2gHto/Gjdo44//p5Ac9RO2A8DugXyR/JE8nHo/bBeHrNF9oJ kg+YL9TLjeeVIzevANYjXF/IHtB83YhNI+Tz9QZcU8o0AKIBQ0PqpOiADBsJED1H7bAGgwwPfB4C CFiYLBBp4IDgfIEBw/aBfCDAAjlAPYKFk68SzeHPACzOBSBmkCYPRQJ8IxItjeW9TJj0sbTPRL6L xXLki0hOBOUJxk+304lb0XIGXBI+J6EFzpd1EYDrQc5IzhdyYdL+4boGnBr2i8YPnsN+O3HGvb4m OYV3yhRv7HxSAVcCu9I6ITXSNOyXXTng84gksJqD40QWdi0QH/1czuLO1wC+wAYEcLGQAShaXDSP QwE36pc0DTowYp1yJxLCLsFuTgTNF+kFPUfgjKAOjD/n0xLs9ONSyul6hVHQocj7CtB1rZ49bFyr p18Oml6ziGghwglke1kmb/utq75CaQEwNrPWyYcZ5MNQhhEsFM36YOQLQTt0AInkyWYkEUCiTCUL tEiPCJDQ5ztFb2y01C2a6cXJSMdFE4EbRz/seoEOkCREEw52OmNYfzTK5AZ2Dy2DpBBszjuTcRNc gQgByZQetBiEdGwKs1Oq7073ZEAUMvxtycWdOFyMQOQ0OHfa9lgrysmk6cGojk1ZddqGhPpFcmP1 S0LRWqnEtUhjr1R3t8QNSVYhJJMpwHdCSidJRSjKGYnJ3rD58qStt6CtwPkOf4N5cecLp4hUxGaZ STCHqiCdODRV1iTZ+QJQYlOY7Hx71cSwtR2Inz5KDVO3lOpaTvZByA90mmyqvlPGII8v6uqw/3br Kr+1LKwXIr+TnNplJ+6MrScpSlonDf6MLFaNLGCRDpnZ6JUMu7ulzO4Tslvvt47cUaE5KlTtVbDb q0gKQRpaRywZQ/u018lhv4LaWxvAo6cQ75Q9Al9qw/bXcPM6ATFau702HkjMgzW95ZoIgxEZ5VBW EaHu5PbYshwUq7MJaEgX1oLvW6Pbfe5V3T0NvTWdYs/BPL3gyH4m6YW2quh6de60U7gxge1W/c9a JHtijtUQm91517wmemVyWmmTfa1Q/fqZuvZQggzVex0hozGSPU/TaT9lrX2Hbhh/43NU3YpJyNQT DCfY/Rc2bGC5BnuUse9Z946Vcu/2UANb1vM8JX91vjSCXF9pwOenpHTSztyV02frL+glwtLNZbaM pkDGaC9q8yX55VDm1taPRPW5LUYyYr82pdgQIw0TUscDJd4YtbsBsvGQjTdR+XK4MnK1QzYoTgDe H50uvXjIxruwv9lpe8gmWFXP2OR8RSheq2gPd0E9D9mAzz8P2eyeP0g9Y7d06o1LVCAhIOud10qe 3FwvN06O3Xr3tbUUSGDbuKhb3MdaFfgPXgz2g660y6GDD07szJV1Qoc7rb5qN7HHKg1vB0O01BAp YvO17J4re29LpysYnvXdE+0867uvz7cx79ju9FfbYelVZYDIAxlOdL7UBDjHGCWWt3kl59ipPq6X aFlQok+U3ri0nc0jQlMiD3vfnEeTpGLiAtIfnl+zThaRJXThM4rbkP3ffDOZJWMIT9jNw3mXXU6f TDXKBvuW2y7urHKuVwXYxC2B7YY3b/cb+NhUlI0m2fvysawI2QOuyGRWusMYzrdT1u3mJr/WRbIP Xhzb62AqLf9edsVevbTSRijtY1HBWd+LozseTH0UZ/qjsdarJzh8scp4H9w6W77Iaa4E8iyvebB6 4R9+idzb1jEL5u82m36f5KdjtehaWdu1UhO0Rm8c4XbbX+h5UkN8qtLW3eKm51tkl+/tOF6nX+Pp ZaqsidE/vfHo5IesR2Mvz10tW0/WGUEni5JnrLNmIYqNuBEOkL9q1RqBth+fvHUdOvv7AfTvo/Wi Uw8SZtwv7bvkrE0SO7Qr/QLBrfnj1SRB8E6G7Ve6OvJ5zcOE1d5Zfu3heeXzmodl7OR5zcONGObz mocmjT4KnwJOOcTBT7q9Nz7yvOdhwmSe9zzMInXPex7muZpb3/Nwq/sc2p3y8z6HCQt73ucwDynm 3OcQYlHempXupnze53DdNCCIvY/LGhCYH68XqJYUSlBhk71VNuAbBaJJYoMimK0dG+fcZvh3teOz h6/s2EM7Vj6VbJIrBzt29Q4J510+zHO39IJK2kWbBwKAL3aS8UonU1JIJ1XtVFtUSiEKyzp34CYY WVL59CKCFyHt+8hZRx8G3/gMOj/e8VqCjdYMFpIBL+A8juf0Xo9qf/r5/BuwKSyrBEZ1zAydvfBI VmiCR0g4+wYSOxzufpWc6wOLPbDmEzJqCg0XGwMUyUfWGLAlQkUha9/34ZS0VIqs9zO36G2x/tSS 3alcfE8QEEnenb5hhm9yObVldzM0Rvl6R4rgy8Upyvrk1q0W73d53Vp3WYUupsvWIAh2WYXDQUG5 h/HveSLoc14gWv7K0xBoIxIzDyq8rXqIBMiO4NLCELEAnPKggkcFZ74jCaJBWQEpuEHvDknxG5I7 L6zBDULnXtyJl6/Xi63jxT8dhqZ0/bpy217ytt/xE+n0am+neU/2CiEQL174AukPmpX5Apra/yr7 Bb+OXuBR0SsNMhrIHTAwwFUADRR5adg5776hB11XurBzOEHe4GAfQ5drtG7RLaJm8Bu4d8RWZxDG oW6H7ntfIXlBhQNhjRnC0HgHDOEOmMP5YOH0RgLR0U4PF45q5OZH30CS+oZaghM3ZBd77VWv0eyw rvsO7VQRB9HgsNpYnDdWlBJLgy+C1s4HO6gpzGT4OBYOF4HiDA7XMQqCaInwlR8VnGDPsNuhUAfS RJi7oA3uOn/0sf7XGuRxhgHBKSIxwuCeD38WDNUZPtGvcz51go2UNmscYuGv0Ct6RqwIcQZx3nXN 5I2hrcsDLz3E3pFbhwxhCE1Df98yqjEz+nINsqJRthx+HGxp1IKkDb6A2rI7uVxIAGFohAgIqQCd 3uyZUelo2jBqoz0lxn74jYC+QQMdniCEM4hBfAqPVy09qsUJYzGkIQ4jKhSjwKw1jCSH8hhFkig8 CqAlGDZ51BCMClFLMGJjh3SM5K4nxYtVwWcfG0gh3PGBAQo0REgp1gUymDKmiRmGcLqPnluiBfXR j/beJ/3ic/t8oI5jIJjbm7ArwLJSUNm7lWLD/cYCQWRxohtmjmF8j5z6uuRkiXzLfXKQGYluyMsW 0C0PgNga+OEu4cKa/E4LzYKEA+azEfCPvjGghKiHBQgeP1a0ETJjm4KOxcGYpqY9zf2K0lGnhlx6 T28/kQztEkBDYIBI3bJF1Eg14HD5Cgp6oxQrCuZh++UUYOczaBldo/euGF7Rqh5SWrV0hJCL/gy+ MWOR8CUAMC5F+v1xzXFG6MsXRSE205MY0aOaoSjEFfkdTkjFe257oEQoXZEBmctIInYFRnP+AnJF 3NQReCeqRZOAcUy+gRzhDTKabmATQhHjfZZ4mq80L8RShDOkudl9RoyrVq3PqIfjOSb8BprHqab7 Aj1K2quyVv5rhrL6HZWYs0jWPDjTM1S4T7nzvALn5fj84gK6XSQBRte+YXdI10ijzb7Z1OKcOOGM Fr0NCKjWiP21lYQca88meVAsxbcUXHY/WNElPOTNFJ8pgauHZgmLVFXxLIzvvGdlxj2f3gNUxBTl c10Dq3CRjqlGepcZO0tY2XmXh3s75raf+aNn/mjaJ4wMbrQVRx8V6cddIIGga6HuNns0SXWykbAy tJxz7HnI/Zk96pE96qcQvP0Bk7X09gfOrfC1dJB69jtfPtvhAdLkfDV2+zAJHDowx571sdI0SzjQ dQ/p9Cv5nMHY+oHWDEXxpyD5/BR/JgL6cMQeWBoC650Qx8JcaoGSdpYbtQUBLWVeX8FQka8zrUVH Whktf6aBesaNSP3q5WaE1jSU3GlxNb2aZ+Ts+abopBFfk4P3r/iNxiVq2vslCrGiJjZMAcHzWdWb EdepX+IPkfGpk57JY56PQ0M1V2l3dMpYo8vzdGYLzr+X05kLnETCGNxUZ91WGLjqCXF8zoF2o1iK fOLzRodbRpy1944jkayE5zNhFpO9U4dPoMJT+Th7i84OjBQ+ml9q49I5qhrdtOzNws04nnYssOm0 yN2IcI2gPjqm82Yc0aR3cWawVvpsRkfV9j/OOrh6OeVcr1ze3b8sXAjevZyKqcraUdch9QlgEUbn lCs5NJygNkiK5uPr8TZfFT26ZLLhpseffs51SmH7zAk9NaFeXG0FRja/vXiBrcGDf7/8lR6R9U7l knc/z7rv7UM6die0MsSUdPbS3eC51Vbl7Q/F1U6jt+NP1gfjj3zImw8q1PvcSyi7T2zVU4aP9x90 +y+G0edOT/cfqx3UTvPoY6enO3Gc/xq8EFFfrCmXZ/xBxZBSKsW9mrGLKqYQwnHGo09uZzz6iIxQ aZ1zjrIOzGiMw+enOW8f5tdz3j89zFm62D4Zz/n49GAC/wdFnjuaCmVuZHN0cmVhbQplbmRvYmoK MTQ2IDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCA0Njc3Pj4gc3RyZWFtCnic 7V3bjhvHEX3fr+CzAbf7fgGCANqV5eckAvwBiW0giA3E+X8g3eSKO9TysPtwazjD1USBEs0M+1pV p6q6qtrsdP3zval/ZW93//z94b8P7UkoQYX2SNmw+/OXh5+/2/1RX6kU9j/48r/1e7Nrf/7+0+7w f/787eGHn9zut//tm0nF74yxrjXx68Pf6p/h5oNv/+11EEpUtqQQdiYpk5xJedpX8K2pUpTJLtSx +Bx31imXctERdVzaoIz2yrv9jy6NwWmjXHa5/dzV2bg61wsjMa1zE33tvA3F138mp326PBSbVYj7 H3WXI0SldbKvx3C2YW+U98EZ1204Wq18Mnmw4TpbZ701ZaDhOjlb8pkNPNtyTMrqpJ3ptuy9U6Z4 M7oYWSude/vdfmN1UUGXMjhkq4PK3tV/X2rY+rYYlehMNr41XLflwBuwXZNVKb019rmRRZ3bl3YH BuyMyp3hHpqlqM36PQv0W3VFVfYsZbDZkFR0Nl8miEPLPqniixlsOGkVjElWfH1zFQJV/lzmun3D JKm5+rkJ1vVpmONnZ63Se3rstmus8salwXadV8UMCTZqhV3d6FQqLvR52TkVszejA05OheDjZZ7b 83LlXxVDjmWImV2Oqkm1AZpoDWdnh2miol9IudPyYcg5Kx2DDUNDrpJVJRvD5c3bD7khWN0OM8rT 3gYVdXF5YMwhvKxGf8wu13+kEWHRaP4smp9tN/oqK0KHpXkG8SlVUVEhut9uhQ5XF2N0hYtWNiVx SRF0Bd0QxSVFMBVqXP1bWqEIjTRNGhAVzkflS7Jn4I5Ua+umjq1RqVRVlZ2m9qgc94L9/FRqo6WK m6oOXEar/Tx0VZnrRMpAq3H/bWXFvrZVl9MZbfv7WVu1RulQda2Bzawaqi6V0wfG6prQqBjfbTV7 FZM3ZajVUIHHZ99nFJ9ybaw2N9JqlRexhBEtlmk1VZIe0rqpVks1Uvb2UhdMo1bRW2sGWk06q755 RQmK2mi1p8Y2qyJddDnbvkJRW3VVbaw8MCIrq4pbXBwhrBRsY+4OFO03qy5V3VXnRlqt9pFuzQ6Y ihXfQqpG/6tWr7HSlY0x7ao5mUx9UUmr9fv64csYHj8//PCpbmplhPaftPv864PZHb0RbXFiMLo+ //2hPdPVKLB76P78r91ftP7o/rr7/O+H3CSJ3o/o+Xk4/1yD7z+Y888N+F578H0G338C/VpunObD +edec+24J/AcjBM9R/2i79F4AlhPD+YbQL/+I7kOP3L9erC/8DkaZwHPyXVD36Px0+2g70l6M5Gk H7Av7L57RFdgvogO0bw0mheiH7TviA7BeFh+ROuD5ACkB5JP2fmy8mrajtHhfEMnL7xBLz6gF4l+ gZoKFv0CzSMfBMuPn4V92bJI/eIA7yK2AUirgQRFiHd+YQRc6zfXYaBsZDGIlMmwfbRDC2EHlO0I O1jdBn2P+k0y82LHg9YZfQ/XE8lkQA801pCyHWIKGKcYHaJ+yfEbtP7IRkD8xepsSA6Q+wh1qst0 XiXvRcnnTVG6OXu7AhBNBBE2q6RBRmYZljUWVqbsdYy1PZT2T4hvjo9wuVjbilx2VgcOgK/FcJm0 bdF4aH5H6ylka8yNs2L4IuUrYMfPrj+S88DXxNKbB/oqHD/Jp5CP0D6icbJieWYfDqKfXMbw1AVl XNQDNpYmNUiac1gNj9TMoISS0izRTj8KcQir2d/GG4gB/iRS6+YAL6ZXoemzAgIAz1IGKu3EB+sJ 15lkN5YNC6m/ZrS/AMDQ95kEKhZ4aMMbATAJ5Oy8xPpFhqUU/7LAj+iBXZ/L4r1v6GpVosl2wJQh XS+0G56lYCQpFjoW+MCqxis7/mJN1Ru5BjHwnwRS396yX8gTiQADeviQJboUeSAyEHJ0ze7RJ093 oYeAVfjQvgjZG6x+Tyt824nBgU6QQsN68twYwGurim65G32JJgUkl30dWKBP81c2Ty3rqRWKFimk Z+tuPLJofdA4hdZzetbfTa66juoDoHrr669SySa58oXs3SFo3uXD8EzxY2IkVw7K0YfsIAOxC4kY hXUcsYwICDmj8MeZFSs4L/IIAQKplEU5d2iFlMN2ZsCf255jFTG6HTRONsQE8RcZLjl32CsLUC8n ypclYgpKp5Z20xWMpEbPnsXCjWZdwQtZTvDkgoyvFXYsYcSepi3L6ql7mL3ViYOQx5INa17KPzc7 3pEGxL2Eid/LCZfYwe6G11fh9WgoQMijJw4oCPFbW1mWM8UoEs2LlewIaTqxe5MyHgvA7DtlaygO gRZGjx9lGwlpnex42H2B2jeCIzbwlYUpZLYi2GT9mKAdtA53o76RwhTGVQn5bZH6vLYstpzGYLyY 59pUfc86OzLWrpw5BH9h+x3D47Ec1e3RkVWe6ehEpOSj75Fxyu41qXJC1YaNuiRpeDFpKxW0srJ1 nr3WgBSKkPs4t2+QjuYQCufzRx9dx9jUw6ffUnoEeV68WGYJcn+zEkfK/ddDu2mVxAUAj0xYZJWA uRM4MsvwcyttK2OTudNCVpevSXpjYXgb2/6dePPfifunC5Ct2tZYovPmH7os2GX9QxgHp0V9F8DB zR11nfzZ3FFX4dTq9BbkyCBPMel8rZnDkqXwjjXsWYN54awfSbfoQsA2e5gP6wKcO36kmyE3UOR+ AaB9QzW5IYZnGYNNzJUyjK8rCLMadljb+e9LmMbADQxbPbm11ZOTOlti62mxWWkzu1MWA0OhIHUo fck0dbhfC9X0pdVUNgiVzR5i94VVL0mvyMLZSSNB7d5GP6K+3ouiz54QspJL6GRSOF8a4/v0JqTb Z1mychWdF5KnWnQcwL1ng0ppqSQ3o+xRMbcY636RyqJlj5PIc27aalmbkb1QbXVhvVGyXA6rwbAH paxGzqZlSElSdpzo3OW6agOzScYbFSrDOD69efD2OL5QHBirRUq52eHxNxlfhXb7Ayv3ZsZBqSig parBbFWSrtNvv9EqRl3ct+mY7N3LG9rqHM2hmc3NORhnpzfx3m952XWW7V893kG/6+ZPOOBsp7rR yXXT91zdSCrsCxEyqk9L94sUGbaOMXkgRjtOpAQMa2ajurvkwcs7ORBADH1zxRm2jy43RenNM1+8 JHbwKHWQKBsX35eU7niRQ6fqkZSHYFmBg5EtR9WKDy8UHmRIdR9dq4EuCUaOfLpfsOxIbqCrFMUO bBF5SFWVYeN22QMuITlDK/is+5gsxiVWlYjVH1hzXepCpvft+BSsAnQvFLzSiOXXGl4vALAU1Zb/ DcC2EpNNyEcLC17NfKXI2nLJvzUTCX7P3tiwMpPqve4Xq0KIyYfrTDYGIjumFjtgqWATMjiatUFm L8ohFNR8JcFABPbGqmRjmOFo/y2lDlj5QNf1lYrdJj0Mc+sJ/bszARnYoKIuVTO6c0WMLvpCFnmi g9gQYSICQb7STSF6FwrRt4ZLcwtCWpBL+VRkk3mI2hmX5d97lQdSPrtO0A4GSJfrP9JiJaHuxDFF bxMZeTS3/oRiI2nX/J2rIWIORrakBlmL894cnj56FUyYI9F/IMJrdffdS13zu1B+vtgBPevFlcpE v/PI7rVVdl1dgSgpPiXn29FKBO8RXThjZhw3566wuk6zZjYKgxwudONnF8dTUq74sAyOs04KVmvO 7H0ec1ciWSjfAGYYz21dzewUo60WoQhuqYKmS0n32SvVr6xCzJV5RIKZzQbsnAF4gUJ1YQggWhGp 3DehUplsiN5StSnELhokLbp8LEEM8Lrow5HTMhnMZEF3iCMsXrB2zXWr/mZ5zkYl0XWUyXnR67yy U2barhe6XUiqstfc15HD70mv7eyFmVk/2HV1PQTxGsp58qoF2A47c1YCIk03zMv5s1dIZe+4mhnH rwz/gvgetFMmxKUqjd25H3V1FTJIbmMrldJyWAiXP6AEQzBfmGAIcO0JtP8E6O0J4N0jqhwDvl+q XuHs9ZSF/Ejs5cZsQvetC8+PVygRq3V85zUZ2ErqdDwrezXS4rXvAI6bqLSrf98HjrP6uVQWD+vN EpJjtNdK6DSGpdbCykNknZDatJifgSwoAfUoFF0F+kUFEDSp5yxWl4r0s9F8sfHdQQ8cPMevMt0Z bUf0BDRz0k6E9im6gZS10++8Rhatn7B+g8uSC+O+zaqYtFDls0Cee4rdN8gG36Obx1mqJ+vWre50 aO7g8ZnPKd6tNSN0MzgaD42PA9lwTR41SRFKUGGXvW3i6M9fHn7+bvfH16LK70JKEz+jcc7tpn83 OfXq4VdyykM51UuT0/pAH6EVA4o2TzYKvjjsoK/2uikppJctObicqigMdc7Ju9dKlAmmysz89e56 lbNuOSj9Xzx7zV8PC//iC0WXYKM1k19ENCrYFD4SrvtYjIqlWLvIPj5HNbxeSfjiin20BSyljegn 5hGsJX7h0Au0LXAmAe7wI5jIEbZfvciIij6Bzo+S6OtfwOH6gPqgZ34UX+NrhdgELwlixWfsrTSq nUnBnZGqrzgrIUHwhMZb0N7yZELLlCG5patCeL6Pyvvn+7Du/H64ONnaeP4HHtcy9buoo7I+6jcU Mn2DMvwRgP5HdEjBHnYgJRk5JVAGL1C62EMKqcMX1P4T+fwRKIdP7FGqkCtaKkROKiiUdfKwQSyL Be0IXWc0d3KK1DVQtPE782WutBMYVTPGqQNVtFvTvg/l3vVOrERitQEpLRjroaKBVMIr9Ala7cQW h0O/4JuCWg6tqIaD/DBG+bbRekSVgnoc3BA0EUhZUEeHq4hnCNcdqvtQV4TES9ufb7QcJsriSUtR +/NrOFU7T1bkRB9N6IU/3/fQjp8oz7ALPA3URzh6jS9KPhesitpE25eAktYDT1yIhuACSEpG2pq7 hVjm94O3ogX74KUAb/ni4aIJQkrEa4VQBPsPMIpAX4Qcr03X/UTYGBwXWpUt14qaBZ8WUbag/w27 YuDiQx8N3mEE4XjroeuV1gYgmxhc6L5uV9DK+Oy9/HbVkXhXgumXopP0sduEdOSVstnz9jDuZ8NP cfNE3skJCq8AwE2/ArWHrMViXrhtuuUn6iV0zkK4mU5DV73y7HZMHcOntOsyMIeHFOun8/M7GdSJ sg/nB7r+6gJiqFYnq0pJFW27QlP2FIqXQpLdw14MEh34xRN6cax3eg4HY92OEpzZcHDDwQ0HNxzc cHDDwTXhIAwGQTSMcTBcwsFUlPXWzHBWsuHghoMbDm44uOHghoMz4CB0fwb04lg46xwOFqdSLjq+ FxzkefyK8Ez6sAQ6rXkh9n6CcvnzcMmYVTraQJJO0Ck9Hm5HlTjP3Uln5Vwoy1Qm++aCPee+7469 NkMoaPFbC7Kj6xegCmdsnicaD1mZY+5g5HsJOu7QuWBlsi1c+TJF0uHK77T2fp8iz4G4dZPQhZuX LfnGhPzFCOvkUhUJuswQRXLjzL7Di6JSClF7+5oDhp1DsA99+EVUxefs0ovR4TIyR7AaDwN6aUcT r8a//3RW3gvyXLXFKZ+DCc4OLNY15in0aRwEbFLOmxxS+foFcUwAZzIW/jZ1moF8PBibjAOmQbA2 Jis0JOiuQz3wAdYdV2E/wNqp4EMc8PzhqGjogYc8QnsrMC3yPpSEOueDbaEnAUpMPiSbdq7g4UJh htbqivwLGJ0K5SIdhLqd0xCpQD0/H9C1QtNNv1yKeWtda+y4ZozhBB3PtJxbNv2N9rFiMQA5EWmZ vCy9YkngfvAebHwgzeeTQYHND+uOc4GGVLApfp5oL0it8ejo9wSQTl6gwg7ogBfrWjD1DvZ9Zepd V2vzbRBFm4G0OHj2BSup0GmzgmdMF9NIUrsqu6GSPCgZq+qMik0DS+oQcggK76ODZDy5DJpYV6QP 0xE9OPeIFnrYc/EspOtW6ZySfmkL+zTcofvXrha4iYKQtvRM+FAuZxFJvHG9JlYxlK8nLYVJKuCp VyOXeHxjM1oUP52IiWCBT9pC0HJF96fxgKH056gRhlyxXIhS7CMYlfVwhp8m2z7FPPiiN8MetvlQ R2GLH0j5xvw1tgIn/jEP33wClH98EXOKJ5S/Csab1EBMOe9Lse4LIVYghUUQUzFNtJv95adT3Axg t6JzypUc4oADHfo/H78e72jNxpKVP0ZY/PBTbsM9jDLGsvtetcOFSklp9/vkcai/0jnkvPvPwz8e YlWlznz+8vj089p1+0eyrhw+K6pqGc5MHx++c/bwyJ189vL08FVrvdradf2mX708bV+1Vfk/2oH+ +AplbmRzdHJlYW0KZW5kb2JqCjE0OCAwIG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVjb2RlCi9MZW5n dGggMTgzMj4+IHN0cmVhbQp4nO1cbW8bNwz+7l9xnwdMFSVSL8AwIHbSft4QYD9gawsM6IB1/x+Y zneOpdqPJV2vTgtcUySteEdS5EOKlOTQoNPXz5S+BTbDn592/+7GEYmiZBxSRobP73d//DT8k0jK y/GF08/0PA3j1+/vhukfnz/u3ryzw8f/jmx85IHI2JHFh91v6auZvfD4tybA6agcsTMDORWcGMsn WRfsXFDCLqT/1Liyj8obnXSrcw1W6WhbmKY5k/dsG5hGrxxrZ+pcKWgVjDfUwDV5QlGwEhvsmh5l cbrFAmSc8pZbbCAhpIk516QtkzIj39BgBKsMeeYWtiLJYGwoNsBAFBuX4oJ8cp0lHyBbk4BIPro6 V2eUp8DcYlpjJQHRiWtAl3LeWB9buCYVjE+mretqo7LOen/JdUkoK7LWDvn3JPdy8KzD/nn35u0I BeXGP354/rCjU8pKEDUk0XgaVIrYkDwUh+dPu5Fopwkm7Dz/NfyitZZfh+e/d05FDsF6mzhMBOuO hBTvPsE9ufpEMPsjgbSSNLkxbF9eMROFFGtNWvszJaB3zNsjJagoyfokZ4JHr0CV9cSLlfYUvZzF a4sIP+Ds0VwsLdDMA/l3sbFAswRkfbdgjnqipKDQwXsdGihQgdLIITrgsYICZ1O8IvG6ycTIdesn XtetXxAQKzyTwpQ6CF+Hi3XA+bn40sdtVnHAKjf0+nYuzuT/cB4u5s46U4tnfcd1MYt6e8jmYTl8 C3WZZwyRHAvg07gQwBZPNnx6rpau3+MqitOSRfhDOdkcUObHQuCaMEOgZ03CawJK/Yw0LpxdyECs xM+EELRjOUOT94AVFu4yBGofGuaBXCIGCUcyJCBWc7SmrinV02IzXgHxQlaExsIzZCRjcnqqtlNN ZEKDVv0uhFYsWEU6yxaUK3KlDEBokY0OgADTEQZiJlvHLEcWJkwZ6EywSAZ6A82vX6lzVr2ZBFOY K03k6ikQI2i9cMORgGTgOIS4RmmjAF2TVnAeixPm9UUw32l5vTXQ4HIeV+2nRTCh0xlNdQsRghn5 XpjZJxA0NxqTiNZmOEUSpPA0E68sUxAfG6Z4QEDTvfn+TnPf3577FcJDr3v75y4PqFzCtUT3Etzf J+MEmstIYXI9vzS1Y8VKW6w4sPpGBb7kYGxZaguzF+1bYfaW5RxqO1u9vqqJYubkrmpWW1B3Qqyg 8F0ACQuEQwJepLorv3uU+1ArRnHFL66vHRu83hIJq5F+R2NbQ8B2mxRXbismt+7qENd6KCJhf4FX ggWI7c8H3a0V3aoCy0OsdUGuG8q/9dpt3NdCR3Y3vDiDdnsFA/IejTvqSvBGQ7+t1lsDF8iARkTF 5QIjrohd2HDCCcKGs7LU9aRfCNH+ZaR7keeHjJDXr0tODfImJK/8yiYkf6VowLIisq3/yl8AFe85 K98uOtkpShnU13Mp3BvGkOgv77qz1oJiDW7kdO+M3CMH4XnAJAsXpLiadV81M37lnm2x5YCO1DF2 18ul2FHdhd6cT0ARVlz5uXsRhoO6P2uvlx9gadhf1WCswMwIl1cYPveIXZi1YL7+Lss2fPCJj+Th bRiYIeYjUa9C6uI9t9Rn/WeVTdtv/YtY21F923WjtssQhX2L4ik/2S2KJ3izoTBwvssHLwTA7b/1 DruATt27hdJ2BsY6NdYSXGzY4HnVA+/+gmc7117hXHvNbc+InA5L00qNBMqU4grx3cuUfostKIK7 0/aK57grls39pdCa+2ooSm5EdXcBg9HQXYgZcwv0xQV3ZUbgKuZx49674I6gvxj8AvQegt4o0U6S NifQaxWiER9o1u3xtACmXKn92WCPcn1cg+cf6Po4gec1g+cDeP4tkGv69Hw5sf1inMHz80FuM38G eiI+0skHygX2f9nm+nL8sdNuCA8RjLvr43sgd3/oGz8A/ED7gHEL+PNTH38L5oX8DseRPTv1twA/ aBzpg57vxj/AIcQbwA/UE/gL6gPwA+MlFlU5yrgsUVlKrUs986JICC+Sap9bunuFhK/h4Col32Zv 21KANTDsCyonwsCU+Ye1viNT4rJnQXVz62i2+FzZ3Q1A6IbURtgIG2EjbISNsBE2wkbYCCcCidkI G+FVCaCZCkEFkxqzsZnKWyT5ih4RngmgqzT14+KLN6Z9E6+sCWQueuqL8fohEbzkAhr9y5DHRwUH oCwUUbnl3CM7Xpddu8CenCqOONq6UvWbXs0yFpwXAodj207hcOUuBabUz8Xg+Qy40nqh783b6Ja8 isTarRil8ycMO26QIdXhXPHtta/YkOv9yM1lrLxsyLVO8OZ+nLVGsdPTBwXW8s1jb9BCs8HbizA+ IAFhHd9n2gMP4Cu50JmVq2qXqUQfgHB8sw5ZHQZEt6lmFB+RNP1qK58W4CRr+v1Wwvh3W/lI49Yy 2VacOWuVjUEaPm5OaIbzLe1Z3/8BUvCvKAplbmRzdHJlYW0KZW5kb2JqCjIgMCBvYmoKPDwvVHlw ZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VD IC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjQg NCAwIFIKL0Y1IDUgMCBSCi9GNiA2IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJveCBbMCAwIDU5 NiA4NDJdCi9Db250ZW50cyA5IDAgUgovU3RydWN0UGFyZW50cyAwCi9QYXJlbnQgMTQ5IDAgUj4+ CmVuZG9iagoxMCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BE RiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgov RzggOCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjYgNiAwIFIKL0Y3IDcgMCBSPj4+PgovTWVk aWFCb3ggWzAgMCA1OTYgODQyXQovQ29udGVudHMgMTEgMCBSCi9TdHJ1Y3RQYXJlbnRzIDEKL1Bh cmVudCAxNDkgMCBSPj4KZW5kb2JqCjEyIDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8 PC9Qcm9jU2V0IFsvUERGIC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRl IDw8L0czIDMgMCBSCi9HOCA4IDAgUj4+Ci9Gb250IDw8L0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4K L01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDEzIDAgUgovU3RydWN0UGFyZW50cyAy Ci9QYXJlbnQgMTQ5IDAgUj4+CmVuZG9iagoxNCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJj ZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdT dGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjcgNyAwIFI+ Pj4+Ci9NZWRpYUJveCBbMCAwIDU5NiA4NDJdCi9Db250ZW50cyAxNSAwIFIKL1N0cnVjdFBhcmVu dHMgMwovUGFyZW50IDE0OSAwIFI+PgplbmRvYmoKMTYgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVz b3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9F eHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y2IDYg MCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0Fubm90cyBbMTcgMCBS IDE4IDAgUl0KL0NvbnRlbnRzIDE5IDAgUgovU3RydWN0UGFyZW50cyA0Ci9QYXJlbnQgMTQ5IDAg Uj4+CmVuZG9iagoyMCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBb L1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAg UgovRzggOCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJveCBb MCAwIDU5NiA4NDJdCi9Db250ZW50cyAyMSAwIFIKL1N0cnVjdFBhcmVudHMgNQovUGFyZW50IDE0 OSAwIFI+PgplbmRvYmoKMjIgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NT ZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMg MyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y2IDYgMCBSCi9GNyA3IDAgUj4+ Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDIzIDAgUgovU3RydWN0UGFyZW50 cyA2Ci9QYXJlbnQgMTQ5IDAgUj4+CmVuZG9iagoyNCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNv dXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4 dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjcgNyAw IFI+Pj4+Ci9NZWRpYUJveCBbMCAwIDU5NiA4NDJdCi9Db250ZW50cyAyNSAwIFIKL1N0cnVjdFBh cmVudHMgNwovUGFyZW50IDE0OSAwIFI+PgplbmRvYmoKMjYgMCBvYmoKPDwvVHlwZSAvUGFnZQov UmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUld Ci9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y2 IDYgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDI3 IDAgUgovU3RydWN0UGFyZW50cyA4Ci9QYXJlbnQgMTUwIDAgUj4+CmVuZG9iagoyOCAwIG9iago8 PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9J bWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8 PC9GNSA1IDAgUgovRjYgNiAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQy XQovQ29udGVudHMgMjkgMCBSCi9TdHJ1Y3RQYXJlbnRzIDkKL1BhcmVudCAxNTAgMCBSPj4KZW5k b2JqCjMwIDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsvUERGIC9U ZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8L0czIDMgMCBSCi9HOCA4 IDAgUj4+Ci9Gb250IDw8L0Y1IDUgMCBSCi9GNiA2IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJv eCBbMCAwIDU5NiA4NDJdCi9Db250ZW50cyAzMSAwIFIKL1N0cnVjdFBhcmVudHMgMTAKL1BhcmVu dCAxNTAgMCBSPj4KZW5kb2JqCjMyIDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Q cm9jU2V0IFsvUERGIC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8 L0czIDMgMCBSCi9HOCA4IDAgUj4+Ci9Gb250IDw8L0Y1IDUgMCBSCi9GNiA2IDAgUgovRjcgNyAw IFI+Pj4+Ci9NZWRpYUJveCBbMCAwIDU5NiA4NDJdCi9Db250ZW50cyAzMyAwIFIKL1N0cnVjdFBh cmVudHMgMTEKL1BhcmVudCAxNTAgMCBSPj4KZW5kb2JqCjM0IDAgb2JqCjw8L1R5cGUgL1BhZ2UK L1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsvUERGIC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJ XQovRXh0R1N0YXRlIDw8L0czIDMgMCBSCi9HOCA4IDAgUj4+Ci9Gb250IDw8L0Y1IDUgMCBSCi9G NiA2IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJveCBbMCAwIDU5NiA4NDJdCi9Db250ZW50cyAz NSAwIFIKL1N0cnVjdFBhcmVudHMgMTIKL1BhcmVudCAxNTAgMCBSPj4KZW5kb2JqCjM2IDAgb2Jq Cjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsvUERGIC9UZXh0IC9JbWFnZUIg L0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8L0czIDMgMCBSCi9HOCA4IDAgUj4+Ci9Gb250 IDw8L0Y1IDUgMCBSCi9GNiA2IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJveCBbMCAwIDU5NiA4 NDJdCi9Db250ZW50cyAzNyAwIFIKL1N0cnVjdFBhcmVudHMgMTMKL1BhcmVudCAxNTAgMCBSPj4K ZW5kb2JqCjM4IDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsvUERG IC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8L0czIDMgMCBSCi9H OCA4IDAgUj4+Ci9Gb250IDw8L0Y1IDUgMCBSCi9GNiA2IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRp YUJveCBbMCAwIDU5NiA4NDJdCi9Db250ZW50cyAzOSAwIFIKL1N0cnVjdFBhcmVudHMgMTQKL1Bh cmVudCAxNTAgMCBSPj4KZW5kb2JqCjQwIDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8 PC9Qcm9jU2V0IFsvUERGIC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRl IDw8L0czIDMgMCBSCi9HOCA4IDAgUj4+Ci9Gb250IDw8L0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4K L01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDQxIDAgUgovU3RydWN0UGFyZW50cyAx NQovUGFyZW50IDE1MCAwIFI+PgplbmRvYmoKNDIgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3Vy Y2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRH U3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y2IDYgMCBS Ci9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDQzIDAgUgov U3RydWN0UGFyZW50cyAxNgovUGFyZW50IDE1MSAwIFI+PgplbmRvYmoKNDQgMCBvYmoKPDwvVHlw ZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VD IC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUg NSAwIFIKL0Y2IDYgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0Nv bnRlbnRzIDQ1IDAgUgovU3RydWN0UGFyZW50cyAxNwovUGFyZW50IDE1MSAwIFI+PgplbmRvYmoK NDYgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQg L0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBS Pj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQy XQovQ29udGVudHMgNDcgMCBSCi9TdHJ1Y3RQYXJlbnRzIDE4Ci9QYXJlbnQgMTUxIDAgUj4+CmVu ZG9iago0OCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAv VGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzgg OCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJveCBbMCAwIDU5 NiA4NDJdCi9Db250ZW50cyA0OSAwIFIKL1N0cnVjdFBhcmVudHMgMTkKL1BhcmVudCAxNTEgMCBS Pj4KZW5kb2JqCjUwIDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsv UERGIC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8L0czIDMgMCBS Ci9HOCA4IDAgUj4+Ci9Gb250IDw8L0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFsw IDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDUxIDAgUgovU3RydWN0UGFyZW50cyAyMAovUGFyZW50IDE1 MSAwIFI+PgplbmRvYmoKNTIgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NT ZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMg MyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFC b3ggWzAgMCA1OTYgODQyXQovQW5ub3RzIFs1MyAwIFIgNTQgMCBSXQovQ29udGVudHMgNTUgMCBS Ci9TdHJ1Y3RQYXJlbnRzIDIxCi9QYXJlbnQgMTUxIDAgUj4+CmVuZG9iago1NiAwIG9iago8PC9U eXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFn ZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9G NSA1IDAgUgovRjYgNiAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQov Q29udGVudHMgNTcgMCBSCi9TdHJ1Y3RQYXJlbnRzIDIyCi9QYXJlbnQgMTUxIDAgUj4+CmVuZG9i ago1OCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4 dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAw IFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJveCBbMCAwIDU5NiA4 NDJdCi9Db250ZW50cyA1OSAwIFIKL1N0cnVjdFBhcmVudHMgMjMKL1BhcmVudCAxNTEgMCBSPj4K ZW5kb2JqCjYwIDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsvUERG IC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8L0czIDMgMCBSCi9H OCA4IDAgUj4+Ci9Gb250IDw8L0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAg NTk2IDg0Ml0KL0NvbnRlbnRzIDYxIDAgUgovU3RydWN0UGFyZW50cyAyNAovUGFyZW50IDE1MiAw IFI+PgplbmRvYmoKNjIgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQg Wy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAw IFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y2IDYgMCBSCi9GNyA3IDAgUj4+Pj4K L01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDYzIDAgUgovU3RydWN0UGFyZW50cyAy NQovUGFyZW50IDE1MiAwIFI+PgplbmRvYmoKNjQgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3Vy Y2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRH U3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y2IDYgMCBS Ci9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDY1IDAgUgov U3RydWN0UGFyZW50cyAyNgovUGFyZW50IDE1MiAwIFI+PgplbmRvYmoKNjYgMCBvYmoKPDwvVHlw ZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VD IC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUg NSAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQovQ29udGVudHMgNjcg MCBSCi9TdHJ1Y3RQYXJlbnRzIDI3Ci9QYXJlbnQgMTUyIDAgUj4+CmVuZG9iago2OCAwIG9iago8 PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9J bWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8 PC9GNSA1IDAgUgovRjYgNiAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQy XQovQ29udGVudHMgNjkgMCBSCi9TdHJ1Y3RQYXJlbnRzIDI4Ci9QYXJlbnQgMTUyIDAgUj4+CmVu ZG9iago3MCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAv VGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzgg OCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjYgNiAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFC b3ggWzAgMCA1OTYgODQyXQovQ29udGVudHMgNzEgMCBSCi9TdHJ1Y3RQYXJlbnRzIDI5Ci9QYXJl bnQgMTUyIDAgUj4+CmVuZG9iago3MiAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwv UHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8 PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjYgNiAwIFIKL0Y3IDcg MCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQovQ29udGVudHMgNzMgMCBSCi9TdHJ1Y3RQ YXJlbnRzIDMwCi9QYXJlbnQgMTUyIDAgUj4+CmVuZG9iago3NCAwIG9iago8PC9UeXBlIC9QYWdl Ci9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdl SV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgov RjYgNiAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQovQ29udGVudHMg NzUgMCBSCi9TdHJ1Y3RQYXJlbnRzIDMxCi9QYXJlbnQgMTUyIDAgUj4+CmVuZG9iago3NiAwIG9i ago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VC IC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9u dCA8PC9GNSA1IDAgUgovRjYgNiAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYg ODQyXQovQ29udGVudHMgNzcgMCBSCi9TdHJ1Y3RQYXJlbnRzIDMyCi9QYXJlbnQgMTUzIDAgUj4+ CmVuZG9iago3OCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BE RiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgov RzggOCAwIFI+PgovRm9udCA8PC9GNSA1IDAgUgovRjYgNiAwIFIKL0Y3IDcgMCBSPj4+PgovTWVk aWFCb3ggWzAgMCA1OTYgODQyXQovQ29udGVudHMgNzkgMCBSCi9TdHJ1Y3RQYXJlbnRzIDMzCi9Q YXJlbnQgMTUzIDAgUj4+CmVuZG9iago4MCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMg PDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0 ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNCA0IDAgUgovRjUgNSAwIFIKL0Y2 IDYgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDgx IDAgUgovU3RydWN0UGFyZW50cyAzNAovUGFyZW50IDE1MyAwIFI+PgplbmRvYmoKODIgMCBvYmoK PDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAv SW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQg PDwvRjQgNCAwIFIKL0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0 Ml0KL0NvbnRlbnRzIDgzIDAgUgovU3RydWN0UGFyZW50cyAzNQovUGFyZW50IDE1MyAwIFI+Pgpl bmRvYmoKODQgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYg L1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4 IDggMCBSPj4KL0ZvbnQgPDwvRjQgNCAwIFIKL0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlh Qm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDg1IDAgUgovU3RydWN0UGFyZW50cyAzNgovUGFy ZW50IDE1MyAwIFI+PgplbmRvYmoKODYgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8 L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUg PDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjQgNCAwIFIKL0Y1IDUgMCBSCi9GNyA3 IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDg3IDAgUgovU3RydWN0 UGFyZW50cyAzNwovUGFyZW50IDE1MyAwIFI+PgplbmRvYmoKODggMCBvYmoKPDwvVHlwZSAvUGFn ZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFn ZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjQgNCAwIFIK L0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0Fubm90cyBb ODkgMCBSIDkwIDAgUl0KL0NvbnRlbnRzIDkxIDAgUgovU3RydWN0UGFyZW50cyAzOAovUGFyZW50 IDE1MyAwIFI+PgplbmRvYmoKOTIgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1By b2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwv RzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjQgNCAwIFIKL0Y1IDUgMCBSCi9GNyA3IDAg Uj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDkzIDAgUgovU3RydWN0UGFy ZW50cyAzOQovUGFyZW50IDE1MyAwIFI+PgplbmRvYmoKOTQgMCBvYmoKPDwvVHlwZSAvUGFnZQov UmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUld Ci9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjUgNSAwIFIKL0Y3 IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQovQ29udGVudHMgOTUgMCBSCi9TdHJ1 Y3RQYXJlbnRzIDQwCi9QYXJlbnQgMTU0IDAgUj4+CmVuZG9iago5NiAwIG9iago8PC9UeXBlIC9Q YWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0lt YWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNCA0IDAg UgovRjUgNSAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQovQ29udGVu dHMgOTcgMCBSCi9TdHJ1Y3RQYXJlbnRzIDQxCi9QYXJlbnQgMTU0IDAgUj4+CmVuZG9iago5OCAw IG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1h Z2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+Pgov Rm9udCA8PC9GNCA0IDAgUgovRjUgNSAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1 OTYgODQyXQovQ29udGVudHMgOTkgMCBSCi9TdHJ1Y3RQYXJlbnRzIDQyCi9QYXJlbnQgMTU0IDAg Uj4+CmVuZG9iagoxMDAgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQg Wy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAw IFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjQgNCAwIFIKL0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4K L01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0Fubm90cyBbMTAxIDAgUiAxMDIgMCBSIDEwMyAwIFIg MTA0IDAgUiAxMDUgMCBSIDEwNiAwIFJdCi9Db250ZW50cyAxMDcgMCBSCi9TdHJ1Y3RQYXJlbnRz IDQzCi9QYXJlbnQgMTU0IDAgUj4+CmVuZG9iagoxMDggMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVz b3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9F eHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjQgNCAwIFIKL0Y1IDUg MCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDEwOSAw IFIKL1N0cnVjdFBhcmVudHMgNDQKL1BhcmVudCAxNTQgMCBSPj4KZW5kb2JqCjExMCAwIG9iago8 PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9J bWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8 PC9GNCA0IDAgUgovRjUgNSAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQy XQovQ29udGVudHMgMTExIDAgUgovU3RydWN0UGFyZW50cyA0NQovUGFyZW50IDE1NCAwIFI+Pgpl bmRvYmoKMTEyIDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsvUERG IC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8L0czIDMgMCBSCi9H OCA4IDAgUj4+Ci9Gb250IDw8L0Y0IDQgMCBSCi9GNSA1IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRp YUJveCBbMCAwIDU5NiA4NDJdCi9Db250ZW50cyAxMTMgMCBSCi9TdHJ1Y3RQYXJlbnRzIDQ2Ci9Q YXJlbnQgMTU0IDAgUj4+CmVuZG9iagoxMTQgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2Vz IDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3Rh dGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjQgNCAwIFIKL0Y1IDUgMCBSCi9G NyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDExNSAwIFIKL1N0 cnVjdFBhcmVudHMgNDcKL1BhcmVudCAxNTQgMCBSPj4KZW5kb2JqCjExNiAwIG9iago8PC9UeXBl IC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMg L0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNCA0 IDAgUgovRjUgNSAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQovQ29u dGVudHMgMTE3IDAgUgovU3RydWN0UGFyZW50cyA0OAovUGFyZW50IDE1NSAwIFI+PgplbmRvYmoK MTE4IDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsvUERGIC9UZXh0 IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8L0czIDMgMCBSCi9HOCA4IDAg Uj4+Ci9Gb250IDw8L0Y0IDQgMCBSCi9GNSA1IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJveCBb MCAwIDU5NiA4NDJdCi9Bbm5vdHMgWzExOSAwIFJdCi9Db250ZW50cyAxMjAgMCBSCi9TdHJ1Y3RQ YXJlbnRzIDQ5Ci9QYXJlbnQgMTU1IDAgUj4+CmVuZG9iagoxMjEgMCBvYmoKPDwvVHlwZSAvUGFn ZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQgL0ltYWdlQiAvSW1hZ2VDIC9JbWFn ZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBSPj4KL0ZvbnQgPDwvRjQgNCAwIFIK L0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0Fubm90cyBb MTIyIDAgUl0KL0NvbnRlbnRzIDEyMyAwIFIKL1N0cnVjdFBhcmVudHMgNTAKL1BhcmVudCAxNTUg MCBSPj4KZW5kb2JqCjEyNCAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1Nl dCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAz IDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNCA0IDAgUgovRjUgNSAwIFIKL0Y3IDcgMCBSPj4+ PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQovQW5ub3RzIFsxMjUgMCBSIDEyNiAwIFJdCi9Db250 ZW50cyAxMjcgMCBSCi9TdHJ1Y3RQYXJlbnRzIDUxCi9QYXJlbnQgMTU1IDAgUj4+CmVuZG9iagox MjggMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQg L0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBS Pj4KL0ZvbnQgPDwvRjQgNCAwIFIKL0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFsw IDAgNTk2IDg0Ml0KL0Fubm90cyBbMTI5IDAgUiAxMzAgMCBSXQovQ29udGVudHMgMTMxIDAgUgov U3RydWN0UGFyZW50cyA1MgovUGFyZW50IDE1NSAwIFI+PgplbmRvYmoKMTMyIDAgb2JqCjw8L1R5 cGUgL1BhZ2UKL1Jlc291cmNlcyA8PC9Qcm9jU2V0IFsvUERGIC9UZXh0IC9JbWFnZUIgL0ltYWdl QyAvSW1hZ2VJXQovRXh0R1N0YXRlIDw8L0czIDMgMCBSCi9HOCA4IDAgUj4+Ci9Gb250IDw8L0Y1 IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFswIDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDEz MyAwIFIKL1N0cnVjdFBhcmVudHMgNTMKL1BhcmVudCAxNTUgMCBSPj4KZW5kb2JqCjEzNCAwIG9i ago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1NldCBbL1BERiAvVGV4dCAvSW1hZ2VC IC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAzIDAgUgovRzggOCAwIFI+PgovRm9u dCA8PC9GNCA0IDAgUgovRjUgNSAwIFIKL0Y3IDcgMCBSPj4+PgovTWVkaWFCb3ggWzAgMCA1OTYg ODQyXQovQW5ub3RzIFsxMzUgMCBSXQovQ29udGVudHMgMTM2IDAgUgovU3RydWN0UGFyZW50cyA1 NAovUGFyZW50IDE1NSAwIFI+PgplbmRvYmoKMTM3IDAgb2JqCjw8L1R5cGUgL1BhZ2UKL1Jlc291 cmNlcyA8PC9Qcm9jU2V0IFsvUERGIC9UZXh0IC9JbWFnZUIgL0ltYWdlQyAvSW1hZ2VJXQovRXh0 R1N0YXRlIDw8L0czIDMgMCBSCi9HOCA4IDAgUj4+Ci9Gb250IDw8L0Y0IDQgMCBSCi9GNSA1IDAg UgovRjcgNyAwIFI+Pj4+Ci9NZWRpYUJveCBbMCAwIDU5NiA4NDJdCi9Bbm5vdHMgWzEzOCAwIFIg MTM5IDAgUl0KL0NvbnRlbnRzIDE0MCAwIFIKL1N0cnVjdFBhcmVudHMgNTUKL1BhcmVudCAxNTUg MCBSPj4KZW5kb2JqCjE0MSAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJvY1Nl dCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9HMyAz IDAgUgovRzggOCAwIFI+PgovRm9udCA8PC9GNCA0IDAgUgovRjUgNSAwIFIKL0Y3IDcgMCBSPj4+ PgovTWVkaWFCb3ggWzAgMCA1OTYgODQyXQovQW5ub3RzIFsxNDIgMCBSIDE0MyAwIFJdCi9Db250 ZW50cyAxNDQgMCBSCi9TdHJ1Y3RQYXJlbnRzIDU2Ci9QYXJlbnQgMTU2IDAgUj4+CmVuZG9iagox NDUgMCBvYmoKPDwvVHlwZSAvUGFnZQovUmVzb3VyY2VzIDw8L1Byb2NTZXQgWy9QREYgL1RleHQg L0ltYWdlQiAvSW1hZ2VDIC9JbWFnZUldCi9FeHRHU3RhdGUgPDwvRzMgMyAwIFIKL0c4IDggMCBS Pj4KL0ZvbnQgPDwvRjQgNCAwIFIKL0Y1IDUgMCBSCi9GNyA3IDAgUj4+Pj4KL01lZGlhQm94IFsw IDAgNTk2IDg0Ml0KL0NvbnRlbnRzIDE0NiAwIFIKL1N0cnVjdFBhcmVudHMgNTcKL1BhcmVudCAx NTYgMCBSPj4KZW5kb2JqCjE0NyAwIG9iago8PC9UeXBlIC9QYWdlCi9SZXNvdXJjZXMgPDwvUHJv Y1NldCBbL1BERiAvVGV4dCAvSW1hZ2VCIC9JbWFnZUMgL0ltYWdlSV0KL0V4dEdTdGF0ZSA8PC9H MyAzIDAgUj4+Ci9Gb250IDw8L0Y0IDQgMCBSCi9GNSA1IDAgUgovRjcgNyAwIFI+Pj4+Ci9NZWRp YUJveCBbMCAwIDU5NiA4NDJdCi9Db250ZW50cyAxNDggMCBSCi9TdHJ1Y3RQYXJlbnRzIDU4Ci9Q YXJlbnQgMTU2IDAgUj4+CmVuZG9iagoxNDkgMCBvYmoKPDwvVHlwZSAvUGFnZXMKL0NvdW50IDgK L0tpZHMgWzIgMCBSIDEwIDAgUiAxMiAwIFIgMTQgMCBSIDE2IDAgUiAyMCAwIFIgMjIgMCBSIDI0 IDAgUl0KL1BhcmVudCAxNTcgMCBSPj4KZW5kb2JqCjE1MCAwIG9iago8PC9UeXBlIC9QYWdlcwov Q291bnQgOAovS2lkcyBbMjYgMCBSIDI4IDAgUiAzMCAwIFIgMzIgMCBSIDM0IDAgUiAzNiAwIFIg MzggMCBSIDQwIDAgUl0KL1BhcmVudCAxNTcgMCBSPj4KZW5kb2JqCjE1MSAwIG9iago8PC9UeXBl IC9QYWdlcwovQ291bnQgOAovS2lkcyBbNDIgMCBSIDQ0IDAgUiA0NiAwIFIgNDggMCBSIDUwIDAg UiA1MiAwIFIgNTYgMCBSIDU4IDAgUl0KL1BhcmVudCAxNTcgMCBSPj4KZW5kb2JqCjE1MiAwIG9i ago8PC9UeXBlIC9QYWdlcwovQ291bnQgOAovS2lkcyBbNjAgMCBSIDYyIDAgUiA2NCAwIFIgNjYg MCBSIDY4IDAgUiA3MCAwIFIgNzIgMCBSIDc0IDAgUl0KL1BhcmVudCAxNTcgMCBSPj4KZW5kb2Jq CjE1MyAwIG9iago8PC9UeXBlIC9QYWdlcwovQ291bnQgOAovS2lkcyBbNzYgMCBSIDc4IDAgUiA4 MCAwIFIgODIgMCBSIDg0IDAgUiA4NiAwIFIgODggMCBSIDkyIDAgUl0KL1BhcmVudCAxNTcgMCBS Pj4KZW5kb2JqCjE1NCAwIG9iago8PC9UeXBlIC9QYWdlcwovQ291bnQgOAovS2lkcyBbOTQgMCBS IDk2IDAgUiA5OCAwIFIgMTAwIDAgUiAxMDggMCBSIDExMCAwIFIgMTEyIDAgUiAxMTQgMCBSXQov UGFyZW50IDE1NyAwIFI+PgplbmRvYmoKMTU1IDAgb2JqCjw8L1R5cGUgL1BhZ2VzCi9Db3VudCA4 Ci9LaWRzIFsxMTYgMCBSIDExOCAwIFIgMTIxIDAgUiAxMjQgMCBSIDEyOCAwIFIgMTMyIDAgUiAx MzQgMCBSIDEzNyAwIFJdCi9QYXJlbnQgMTU3IDAgUj4+CmVuZG9iagoxNTYgMCBvYmoKPDwvVHlw ZSAvUGFnZXMKL0NvdW50IDMKL0tpZHMgWzE0MSAwIFIgMTQ1IDAgUiAxNDcgMCBSXQovUGFyZW50 IDE1NyAwIFI+PgplbmRvYmoKMTU3IDAgb2JqCjw8L1R5cGUgL1BhZ2VzCi9Db3VudCA1OQovS2lk cyBbMTQ5IDAgUiAxNTAgMCBSIDE1MSAwIFIgMTUyIDAgUiAxNTMgMCBSIDE1NCAwIFIgMTU1IDAg UiAxNTYgMCBSXT4+CmVuZG9iagoxNTggMCBvYmoKPDwvVHlwZSAvQ2F0YWxvZwovUGFnZXMgMTU3 IDAgUj4+CmVuZG9iagoxNTkgMCBvYmoKPDwvTGVuZ3RoMSA0MjMxNgovRmlsdGVyIC9GbGF0ZURl Y29kZQovTGVuZ3RoIDI2MjEwPj4gc3RyZWFtCnic7L15fBRV1j987629eqvet3TSnc5GGkhIOoRA IIWECEQICIQEjIQ94EKCyqZAVGRVwWXYxCFuoLgQ9hBE0Rn38RHFQVwYUEFwiTAaEYWufs+tThBm nuf54/d+3j9+72e6qW9V3druPfec7znn1u2AMELIDsCi3GtLB5aRZNIXIVwMpdddO7xi5F33PXkO 9pchRCZeO3L0NfIrwv0IMT/A8dyKkTl5814f8wpcnAT7tZWlQ6squfpFsH8XQtZHJ90yob7k9e+2 IORS4Pj9k2bfHrzY76nPYH8jQsLYqfXTbhHPtGYhFLiAEPfJtAm31SMrkhAKH4LzlWk3z5san/RW V4TS4fljmusm3zL3p3E9JyK0oBfc/9m6KRMmn7jxyC1wfDic37MOCmwLpUaEHjwB+2l1t9w+t+5k YCdCq1io/xc3z5w04Zdtlj5wfziO62+ZMLdebGJnI/QQPT9464RbpnhW5s9B6GHYxZX1M2+7PZ6N PkHokSp6vH7WlPp/Djnlgv258PyPEJWdESU+BMn6GiMG8YAySgEMoVTANNQVsDsqBuwHX4xU+GJU imoA98AX6/eS0TXoBsRMmjfrZtR12qwpN6HgzRNuvxU5oHfgE4/DWeSKbXzFNnTKTVNmwblXol4f pJ9HkAhrunTVr7Lic/g7/Fe8B6/DS/BcnIcuoTfRMnQPuh3NQLWwXA/nWqE1Dqh/F5SD8lEBKkRF qDe0YzAajarRWKjtHjiDia9ClfFdaA8sBFkArR1bdbBVB2dY4AwrLHvQdXqL05EFrvocygNI0Y8F UADOTIYlLV6KSqFsECzXwX2uh7KRsD0K1lWwrobFpN9RiX+i3zUAd0qGJQ22S+GKQbB9XfxHuPJz NBqWKlhugIVeVdrxvFK4ahVctQquqrvieZ/rzxsN21VwpxtoW/6llgG4KqBflQdnl8K6DJZBsFx5 daVe2zo0FpYbdBkUwdHesBTDPdlE67ULyAoLvZeglxTCVhEsveEOxVDHG3SprtIlGNCfT9sowbm7 /u3caigbq7c0cQ1GDkACV+yC45936IIMetgdcRNmTZiIgrqmBROaVjdl4qwOfQt26DTDfExeRhwS uQ1cPlzuT6yZD9FUYhM5YhBYQj8smNy96IrP0IphFXCXYNDLHdZG4HyhH94BCh8HTUVsBtdKrUnX QtAdTD8cw2CCMfJwPxgOogtiHDRVjGvQUglQRjKgARniMbA3I6AJmQDNOlqQOX4JKSChS3pfXUI2 kNQlZEc2QAeyxy8ip44u5AR0IxegB7njvyMv8gD6dPQjb/w3lIR8gAHkB0xGSYAp0Oe/QX2TAUMo BTAVBeMXUBjwV7CNVMB0FAbMAFn/ijJ1zELpgF1QBmA2yoyfRxGUFf8FrI9iN5QN2B1FAHNQV8Bc 1A2wh455KCfeDvaWCxhFPQALAH9GPUHjfgYbzAfshaKARagAsDfgT6gPaMRPYJu9APuCZvwETFMU /ycqAQ35J/BNMWB/1Dd+DlimH+AAHUtRCeBApAKWof6A1+o4CA2InwU7LwU7GoIGApaDnv8I9ktx KLoWcBgaDFiBhgAOR+WAIwB/AOa4Lt6GRqKhgKPQMMDROlai4YBj0AjAKrCUH4BDRgKO1XEcWPgP wCiV8e+BF8cA3qjjeLCj74GRquPfoQmg4d+hiWgc4CQdJ6MawCnoRsCpaHz8WzRNxzpUGz+DpqMJ gDPQJMCb0GTAm3W8BU0BvBVNBZyJpsVPo3pUB9iApgPOQjPi36Db0E2At6ObAe/QcTa6BXAOujV+ Cs1F9YDzUAPgfB3vRLMA70K3xU+iBeh2wIU6LkKz41+jRjQH8G40F/AeNA/wXh0Xo/mA96E741+h JWgB4FLAL4GJFwIuR4sAV6BGwJXobsD7dXwA3Qv4IFocP4FWofsAV6MlgA/p+DBaGj+OHkHLAB9F KwD/BPgPtAatBFyL7oeSdegBwPXoQcANOj6GVgNuRA8BPo4ejh9Df9ZxE3oEsAk9CvgEWgP4JFoL 93lKx6fROih5Bq0H3Iw2AG4B/AI9izYC5zyHHoftrejPgM+jTYAvAH6OXkRNgC+hJwC3oacAm9HT gNt13IGeiX+GdqLNgLvQlvinaLeOe9BzgHvRVsAW9DzgPvQCYCvgUbQfvQj4MnoJ8ABqBt/wio6v ou2AB9EOwNfQTsDX0S7AvwAeQX8FrjyC3kB7Ad9ELYBv6fg22hf/O3oHtQK+i/YDvocOxD9Gf9Px ffQK4H+hVwE/QAcBD6HXAD9Er8cPo4/QXwAPo7/GP0IfozcA/64jPAHwE/QW4FH0DuCn6F3AzwA/ RJ+j9wC/QH8DPIbejx9C/9DxOPoA8AQ6BPgl+hDwK/RR/AP0tY4n0WHAU+hjwG/QEcDTOp5Bn8T/ C32LjgJ+hz6Nv4++R58B/oA+B2xDXwD+iI4BnkX/ADyHjgP+E/Bv6Cd0AvBn9GX8PdSOvgb8Rcfz 6CTgr+gU4AX0DeBv6HT8XfQ7OgN4EX0LeAl9BxhD3wNqgO+gOPoB8D+c/t9xervO6e06p7f/G6f/ rHP6z//G6T/pnP6Tzuk/6Zz+T53T/6lz+j91Tv+nzun//DdOP6dz+lmd08/qnH5W5/SzOqef1Tn9 rM7pZ3VOP6tzett/OP3/iNO//n/N6V/qnP6lzukndE4/oXP6CZ3Tj+ucfvw/nP5/wOkv/1/M6e// h9P/P+X08zqnn9c5/bzO6ed1Tj+vc/r5/3D6/+84/ev/cPp/OP0/nK6PZNJxGQSMzOgjRnT0cS6s fcDdDHB8GLirBBinGpigBmyqCb3ILAx66dgOsG8msFl/4CB6bMIfx+Jf/8t3UnzSpaYTj+tP+B8+ XCtK0pctKInNAMZHYKsdizY9fpIeo2vyHUI4kFg6PjtAfz/BWTiIduLfwZNcwF7cA+rMglQY0OQY WJoDOG8NtoFncAHvDcYsnBNB9+PH4rOBl/qCdT4Z34vviW+F46tA5y5ADf7BYuD1YXD+aOCyb5lT wHYbwAcuBa/XB12PXdDmI/D9BerwCNj0K/gu8EAsPOseuF8xSKZ//DXwdtnofnY1d1TaDUywH/Mg jengxVLRChKJHwG7zgDpPoVegDpF8EF2EPizm4B71mEv8yZs/QmsWcNGUsMM4F6FJw0Gxr4V+G4F WPC72IaHc0e5c/E7gSF58K5ZUKfp6FtcgIeSZ1hjvB9Y6ziwyLehvfR7kB3HbuHGaSXxx+Ovgwfe i2X8Mn6Ny+MejN0dfyL+EvjyDPB4faHdlcDp94J1vgMa+BNZFF8E/mckPPkNHMBBnAESP0K8ZCFZ yBwGr9kfdOAm4ORNwBo7wPr3g70fAfs5gU5hB/bjIXgifgj/RIxkMvmAeYzZxXzMYvY5kHcYPHU2 cPozwCV/Ayv+AHNw/1w8HM/AM/Fa/Dg+QZrJD+RXVmTvZS+yMS5DO6FdjA8Dr+wBTb0O9HIRyPYp YKddYP9/B1v5GZ3HCu6F6/ATuBmfwD8QiaSSClJP1pBnyIvMMOYh5jW2gL2GvYl9n/2MW8KtFCYI 2qXN2iPai9qH8b1g7wzEMh6QRhlI9G7QimeAtQ7D3T8FJviK6g/cvw8ei2+Ep9yGl+FH8Yv4Dfwh /g5aifRvKulDSuGpM8kskNM95BHyKDz9A/geIp+RY+R78gvDMalMT6aBeYJpZlqYQ8w3rMJmsN3Z HmwFO5aNQ8/kcddyI7lnuee517lzfDE/ma/nzwj3CIvFv8WyY//QkFanNWs7QXdF0KT5IIk/gzfY BrLYDyz5N5DIp9AL7dALPhzCmVDvIlyGy/FQPAbfgKfge/BS/DBehx/DT+KXoAXQBiJA3SOkPxlJ JpApZDFZSh4gu+DbSt4hR8hR0gY1dzNhJsL0YAYzY5lxzK3QhtuZhcxikOxDzFbmA+Ywc5o5w7RB r7nZZPYOdj67nt3C7mI/5K7jboHvk9yr3EHuQ+4Sd4knvI9P4nP4Gfyz/FcCL/QUhgvLhY+Fn8V6 nISzoebBK9mCeMEGk8lW4mAX4TYoCGAWYs6HUAT6YSRYxc+ohNGgX8z0ONTNSbysnV7Jq2wzXH87 3o8K8BtoEU8Y+kLsBNqBvyAn2L+QvujvuBZ72S3Mrdy7JISeBzZaTV4m+/E1aBcpJpVkI1DlKfws 8PtNwJWP4pvwbeh53IZ74wW4EC9CHxMXMxIvhtjuScJiCQ/G5xDUAN3NTobo6X/94CLwNd9qf2ZN 7F3ATy0QHVQDux3Hz6HfMQeRmBu0cjTYOAsxx1PAEpT1asDOFoE9eoFBbuY/QLswj5BQyPdj54MH +Q19y7WCRl0DTHpam87+mf06XhjvBhYGVgYRwe0QlV0LFnMKtOQA7NO9G8DSZeCSPLDq4RAJTobY aSnEIM3xjfF74/PiM9F7cO3vuCv+HTeBRbTAFcXgnd8GK/kUrwQ7vPZ/b+f/9NEmQ0zwHfbgdJwH 9tDGzeZWc1u5Xdwr3Pt8D5D2YoiI/ga+th14K4gngW//Dv2KRegbL0TxUahvL6h7FbqZVDMH0ADs gxjyMLSkEOLrREtug7vcA9LbCPZ8AGzjHPDEDRCVHMUEu6FFk+D5ou7VRkOUexvaDD14L94JJZOB tbPBY/+OzbgXuR2ep8Kd1gBrHYQ6fQGe/hyK6/XqCrxQiivhXr9CZD0ZntATDcfboQf2QHYwDJUy fwN5p2EFXYNT8dNwXS1YqBkynCLua0xQV21YvBeZzhwAHxOH8ibwXn7UFzdALSzQjhhy4gpUoF0P dTiMGbYZf6TXYj2ZEl/KzNFuhrjoOegTlZ0tlCKk9h+llvTrW9ynd1GvwoJofl6P3Jzu3bpGsrtk ZWakp4VTQ8GU5ECS3+f1uF1Oh91mVSxmk9EgS6LAcyxDMOo6MFxWG2zOqG1mM8KDBnWj++EJUDDh ioLa5iAUlV19TnOwVj8tePWZKpw59V/OVBNnqpfPxEqwGBV36xocGA42v18aDrbgsSOqYPuB0nB1 sLlN3x6qb6/Wt02wHQrBBcGBnrrSYDOuDQ5sLptdt2JgbSncbrtBHhAeMEXu1hVtlw2waYCtZne4 fjt298P6BnEP7L2dINEElWr2hUsHNnvDpbQGzUz6wAmTm4ePqBpY6g+Fqrt1bcYDJoUnNqPwNc2W iH4KGqA/ppkf0CzojwlOp61BK4Pbux5ccX+LgibWRoyTw5Mn3FDVzEyops+wRuC5pc3u+Sc9f+zC zW0DqpZeedTPrBjomR6kuytWLA02HxxRdeXREMXqargHXEvSy2pXlMGj7wchlo8MwtPIfdVVzfg+ eGSQtoS2KtG+KeGBtKR2RrBZCl8Trlsxoxa6xreiGV0/L7TD51P3QariGxhcMaoqHGou8YerJ5Qm bXegFdfP2+lVg96rj3Trul2xJgS73Wzp2DCartyYcvmYvqWfTrfKr78sWUxrFB4MCtEcnBSEmlSF oU29KEzphVZM6gWnwacaw1XNk6FHpjdLA2pXKL1pOb2+mUtXwsEVvyDQgHDbD1eXTOgo4dOVXxDd pHpyWdXgeOd2cyTSnJ1NVUQYAH0Kdeyn7xd06zq7hfQM1ytBWIH40HCQ7YTq3jkg/lCIdvDKFhVN hJ3mxhFVif0gmujfgdScSHUzqaVHDnYecY6mRxo7j1y+vDYMmrxLD5qdzWLG5X8WxWUfWNe7Gbv+ l8NTEsfLR4bLR4ytCg5cUdsh2/JRV+0ljve6fKxjq9k+oIrxk44t4mf0o6CUN1w+me5UGZvZdPjH 60o9uZkBpdQLcLCsWakdlMBqORT6H69pEcQrLmqJn6NX6as/LuuoZXPvyNX7fa7av6p2xhUM1JfN IOWjxq5YIV91rAwIaMWKsnCwbEXtigkt8caJ4aASXrGPbCFbVtQPrO3s0JZ460p/c9n91dCIOtwb lJWga7aH8bIR21W8bOTYqn0KZEHLRlXtIJgMqL2mensaHKvaB6GKqpeSy6V0L0j3UDkGRd9BRP2Q f5+KUKN+lNUL9P1JLRjpZWJnGUaTWkiiTNHL4NONOkwGYj46GwVDRsZc4UjHoC34wY7vK4Qhg8hX TJCpYhYxf2beYcvZ+7nxvIFfJ4wQvhcHSx5pv3RG7i7fBt9WQw/4/mh80lRi2mW2mydYWMutlh2W Hcpa5Q3rWduP9ln2zxxbnNWu5a6P3aXuL73Ee9DXB753wPe5xNffnNQ96W+B0uQhye+mtAR7BZcH fwmtDL2W+lhYCS9L49OWpv2WsTGza2ZT1pAuVdkDIiTyzv9136O67XGOO1dWWuvGW4p/Eb2iLvwn vy7Ws9P3hvfZ8/vvl2IKEtPgXOly/ksgYkL4DOS0HJTe2UrykYHkqRGZU70pUQuXwhFurNiLZwiS eHmVARu8bh8jZfBihsBmYCaD8K3kUSSQR1UjoanSKsxgr2xoweLO0DfPeyKRYe01xUNPnlTaEt9h ysAppd/UoJLikuKhSuybmkiPXFxWWlaKGWvIylDAEKfmDvoCosj55Ayu0p6NebQl2KudhtrWM9uZ KXptDegmNbqUW2o4z503sDzHG6ZwUwyzudkGHnEM5g2yKHAYsYyhXRRBOYOKnCOXyIzcgu9UZSaY omd2DG4ha3YanxngiSjna9piNTGomdJmdRdhq62oiC5Qv1kNdqYg5GTydXymAOd1b6fAbMfWCxe0 swmk0rTFT7PjuMMQI6XgCepSkRVsg+RB5iq5ysx7jG7scJpc2GEzuYg92egmdq/kw46A5CN2JPqx gxH9xJ5idHOK1eTiFLPJxVsMRjdvSZJ8nMKKfk6RJR9vEUQ/b5F8vsF+0eH3iyaXa7Db6HC7jRaz 2WCQZUHgB8M9rCkpSUksy7WQjep44nA6PR6EBxO7zZacHAgwhIgut9vn88smo1ESkcNuVxRLP5Nx i/t71xaT6vFFTWpaRrTEhFeZNpmIaViI5ziC+/mlLb7vxS25ftVf62f8w4JP3qXL72TspNJeXKwU w/asSKRd34W9YhAqYIm+bSvK0U+h31jH1vnOAlrUubmU6x5ZoPx1aXcPXVn+5QPdUmMPF+TDErLn M/l0cYZhCTFhe5gJYyjasGxX8TkcqDhRcWzomeEr9hb/rJ2oOD70HxVf4XV9/tEb3/IFzjyGl2jz 6XJM+/SLxBazXPsUZ4KN3AAd/KCubf1U1xLuV47w3FTIBBiqYZhrJ4gBRVcNVJMI/pIfCmo0TGmv GQpaNLQtoUJXqM9DV+oMnRd1kzaC1IG2KKhMNWdZtjBElMA6FWQTD+BUaqaACGxLln42PhZkc1nC Un21PnNTh762g0mhkhIqLioQHM4gBYq9Z2E+IU6Hze0iU15b3zSpcvHB5dP6FoS1EafxT99C6k1O HNA+1Mb8+LT27GNTaU0GQE1UvSaDVU8myZSnkWnyWnBDz5oFSQTagDoptE4ISYk67RJ/5h4z0trY ZujW0xY7eXVl7P2Ygihh8l02p0MgzMCRpb2Tpi5/de2Wa8pf0EbseOXC8Tt+xM/hnE+05AsfntXa tYu0JkmMh/wTapKM3lPTl9vx6EBlMhkYKEsmAaOB83AWs8Eoe7gA40L+JUkRtAS34AzVIblOOaVT qjPSLGN5mcWMnP1cLfGDaqbVHnX1888KJqm+pGhF0vgkktTPcko167vm8WZi7odmBTE91wnn4n5y P4uES6RVEpG8KVSxaY82eIee9LRHfN5Ye03E54l56SoGJd6TyFNS3F5z0veD0uZVzrd72r0nrTZ3 kbWI9r8b+h/V1NTYM3sW9izMyMzILHS5MwryHQLdd/OC2+UWMvlf1g4aliJ6Z4/297l3mmeH33HN 2OsKZj48N825fmlfxnPHiCHJIhtwys0F6lPTBv9FTOkS2O31LO3im3L8ZpDZaHSYrWQ/Bk4cpHpF RiLcxFxGZQhTSCaWoAo6C3MiL7eQJ1WFwxMryCrSBJ7Ya7ysr+3FseKTKKemPVZzMtF96UDEnV/8 d60RN2KE79YWHcYLsIAXaPdqv2n30v66Q9uHn8F0FKRktyQaeFlowcmqn9+IewERzcIZQpoFpaAg ykUs8hqnze545MlYGzWS9hi2FiErtRN7yOngeSGzZ8/C8P3Ym33H2MLRg8gy7H1n/gP1wduTJo6m z+uPl5LppAlijDw1lItVMLxCiD4UCCpyGZYp5RT9WQzyss/cTJ91smaoAg4np60GHgGt6U+y8FLd ncDdHgF4AWrPoDTVSXohmWRcUVv2cm11g+6Rmw/XP0KHL/Wr47H4adIHdJVBvdQAGOtgwjgIoVkq g2T8PfFxzPdwl0f0erQPBed3fmib7vo6uK1HroDzwQnddFh7yMv98LuD+pBK8CFm7iBk20H0iFo+ V14mb8Fbha3SFvNe6W1JrLRWu6p9lSnTrHWuOt+0FLGIFPE9pZ6mwWQwP1AqM22R3iPv8H+V/mr6 lHzOfyx9bLIqnqCHeKiSp9tcUc9m0ZRiybEQiwp7ls2ICxytYDHrS3UcNXhDh1//o74NtMJtkQa6 UKMGZcZ5bpdVEfhwKrIqhT3dqbzAWxWXKz8PdNqqZGSQvL/PXbV6zt+PaL8D5g93BaIV+YkVd3Dd Lm28VrtnDTj5zfjPe9Z823/ULRp8XlP7j7oZOpO81h/65Uno0gyQgYQqVekmcidZCWJlW3CXneM5 DP7sxr2iBN7dKKH9uApkhkmNauIQm8IG2WaWZb1yK96Cm1Ci+4qHngcF1wXfXtOmm2QoZOWFgp5p hflMhnZ6w4e3YpJ7kg2vHhhPe2cJ1Yx8hFgj1CCAS9Txuz17fPv877JveQ55DnkP+cQB/gFJAwKV 3sfYP3m2spuTRN4XRFl8oW8QO8AzwDvAJ6Z50rxpPsaVAZa5zLPRvzFpY2Br0taAaEMBJRAM9AjM DiwOrA4cCYgB2i8uhzMaIIrREqAKTKgGqqBGcGgn9BFqIU/sJNhoacGVajjFmGMkRtp3xs12Tjrq cuEKqLIvxXJUmUO8yZ0d2K73YDEEWtCJsUjDyZLiWKSmoRj8ErbmR2ogBdqHAvGDO6xFtA47LPpK NStFrKgUcaIV1taiiP6p3s6TAaOqVIPk9/qJ347pKCbcCP7VVFPNKB9RdQD5IUVPgiUQP9GrV69q 3ADch62hnjZgu54F0YwwKEt6z7T8PBfYusCzvMAaL2UqTT+8Euk9pbqqTtTOeLH45qcXrh2ar52/ 1oU57eKjWPp8e8mY0TdOmXFn0pl3v3tp0s6J/duHZ9BeGgq24ode6oI+VfOWOt9xkjuTViaRzcxz 3BbHHqaV2+P4zHPMK7oc+AHXA24Skk2IxW67K5RiUowQC6apxgoTVk2rILwxYVcLJqolxZ5jJ3Yq XvtmPwf+pXK3AnoF+gfCyYNidnOmqdl4EPrA6FKOLkpZlbIpZVvKqylcygnhaEUaTvNFXEfdc/BR 5M2+bEztHeYEGmgtyqnp6BAKdLehjUYLlAp1kVKpglBBfKjGnq7bli49odB1WYz9SH4eHSUTXAAo nJo2FCumWSPGzJl1fc/ylFlzqwYPmmrQYv5b/jLvgwXTDi9cq33z0Vva7/i+UN2ti+tn3OU8xUwf M6Rqcm3X+zaNW3zzstdu879832vauVNgTyBcthTkKiMTOq4WGYOmIsnoNUaMI403Gb8y8m0mzLMu Np3NMg0yjTNtMe01vWmSMBGRkTcJnGwwCchoNJla8Euqj2EdDFAzMbImxkRYGQmq6aDpEOzsx1k0 bcS79iCWhQtQC67axa0CF047wqYIm4RXBUbwWUrIIshhveZWfB0epFv1yQYIgIaCbVPDLoE4M1ZT TEUIIRfSV5Ri2UTg2Km63Yx9jUON7xuPGTmUUFoQbwRcXAHOt0L0aMVWTBbGniV3/bBnj3ZO24Yz zzNPXbrxV+1Tkox/0QygceNA4wq4zcALitpFNAeNhbaBtsHe9aY/m9faPjNLNqvdFrKGbffZgI6w SQYp2KzWFtKkuswmh9lssskOGi+qmBmOVwPhXaVee3Xt8psgsBqrmlIgZSEyVUR5s4Mqn8HhigYd uQ7VwTha8POqA0J8JUchOUqJUqEwCj1Voc+yWyxm1qKAOh5yY9WN3b4UcwsOqTbTHPzyIYRVtAlt o04y+fA+fG0HTVLlPAlKqm9QulR0toCCyGVdrWmwJkRrBtHiy/qq6+pVipppB7kKPfPzEGgo+Iq0 cdhjnD20av68CfNqT64mp2M/dr1x4n7MTl+lvRdHeF5g/MxVq5cuvSlELmq//Zajnft094Ovfwa6 OAYkng266EZhdEDtM8Nwh7hUXOvdwm0RnzNvte8z77EesB+0fmA3Obme1lJlvms3+Ug55BD2ow/o D1ew4LEp/iCQFhVhMojIv9liSgnlhEiICiy0uUTCqnRIikuM1IIrdm7DGFNhpaawOdAtqt4nTg7M eU7y0QojNvrSPUdt3rR/8ZPtCZJtrwEBdnhMqpCow5ZB1TCXoZsuSMWmmyw4UARciB2X5cazFu2c PGpA9Z3K9I3NF7ULH/xD+wpn/7jl89gTC0cMq6sfNaKeHZk8anhT7C6t/eMvtXO4Gi/Hj+DJ+y99 u/xP81euum8RaOkYsF8PaKkBLdmH2PgJtYfFGpUNPkNvtpc8iKs0bDW8Ynjf8KlBDkFOzwgoxZBj IDmGEkOFgTHQFhtaaZCFX9hLCGYF0SiCae7MEbDQQmpVM6lgMOMzYYjoOqRQTD0N2GNMd7NKm646 uLPtEYi8nDwh7pDNVjiGeW3O+bux9k+h7U32Ccz97Q5tiGZ/HeeSub+BTo6Mf8O6ob89KA3lYtPu XDGQEs1oiV9Qb4aNt6xv2T/hPhHYO5TZjsUKk4GyjT1RH2MZus54KztJhKjIOSdzaeZa0zrP06bn PM/5Nidvydzc9bncfb69ye459iX2JY6lmexa6Me1NN/ovg62IhLdTme606aXdK/oTrq3kgfBlR1U FZcnWp/UmESaknBSEm/LolokwWm5WWoWyWohD6omm6kktSKVpNKrU2mJj+dSjkpzIkcrLNjiy/Me ZeakH3V5e/y7N9DDq5qSWE1E0f1ApK0moouNLrrudHgC1FATieCMjIJozw73SXmfDadm0iL7FSrE XLGNB90y6dThD0/PqJ2/SIt98vZ9j8/eN75ieO34YSNqfXOqx8y6vXraFMbd/Ynap48ceXrqpuwe L9/5njb9rqNz3sIjRt04flTF+NpY39vvWTB72oIHaXTaH3rH0WGNh9SqPtZy6xTDfHG5+Bz3nLjZ vNm+G+1jdptbrLvsb6B3rQft1qi90lBtGm+93l5r573cHNd69zHluIOrs+OEcab4c8A41YRhckoo CIZJhazoxpkr4QrpuHSuwzibEsZ5hUf2J+zT5DlaYcM2X3rCTo1X2Gf75Uj2f7DPTgF3MFgh8BUp iIJpUgMNp2ZgXZZOXa41WJFHDRwz3zpj04sXsfT+cZysHTn7wsfkxgXXD5sG9jkTj0weObzp0p3Y cOQ4tmpbtDu0W7WNe5mkZWvuvP/B+xpBiu9A8PIVmwHaLqDuqp/phXm+FytL2xhC+Awc5HI5wm0T 339ez/OL6aDIeVCUkrZEDgMhlfUdmoVgL2Oi60s/J3ISgrZCPvaZfmcLKldlk1E2G+jtDTQtS5I3 cr0ssnUbY57FcBnIkJYYVNim0Ccl8jJ4WJtyXs/N4Hm6hPTsjD72igzttcTjO7O0RDU0Y0euNnkk jc7Goy3sdRCm8+hGVeE5LHBubjzH4KDZGiUtwEoG2Cjkr+UJW8i04BWqxBfSHzLyLOwtVg0qd0+Q YK/QkacW+7xD2yD5LtZHlNpibTSQB5uoaUjHBeC6MXvdJTvTFhtADmzBu3/CO7WvtXbtu0RNNrND 2TjUZKqqWAiWiJcMJwxPa8LRmphoTXAZ/oRnmEKW1kXGhRCAk3uCHE8rY0Ysw+hh9uX61NCKDFVi UK825CnxXVmjQqiOFTvHk1di1zA/bsZ+7IB9rzb0HPTRDGDnJdw7dJQQ3atm84rZHuUUxRbt7ent VbnRzqm+5wVectmRPgoLZxE0NrlXkqWFPLJD2QDBwe1qqh0nyUk4BWGI1RQppLiCLuLyhSwhRcGK N/hMZ25PdR/QVpTTlhiKK4m1n9RHXvXRKb2+YUoh/xKhs3qEztMRWXI2jq8/70m/d+ZNq/2aZsD+ b37CydNfqI7E6ChtofGuprdTevS5/o75C4I7f489W7N51ZCxmq1jzJYOTb/KtYKmy7j/PiTEj6pS YVGUzwIQdDLNKojyKgDsHVWHhzLhGEAXlA1+P0vOMfZChVyJcQaaQaYwU7k6cZp8hrEM4TEdLmNk SWIFCeMgEiB9BrGxLHSZg+N4UVZ9gX6yHjj5AlE5nTAMzwKLvKyaeYFwLIuRaHS7fZBdTVANKVgf Em7UB4XTVClFwrlSo0SkVpKGWDhDCkLu6TXcOKlzUMALTAJhkyc2jA5qdw5yDm2z0jHOWCSip/lL F+hDmLASlOLipX/9ayIa3SVFJVMURWgYWt5sGFnenDxiLKRjTFzbIbJya1wDSV3azrO9enVkUok8 LBRi4ItDdobhXtVeaYztmae9Sfrgoux338RDtZ1c66UVJBg7Qd/IrAHJTwTJ2yGj7IqOqiVzsnGd eW72N+x5lpVCTonP6hpKd9lSnBVOkuvc5iROpyOcmm6zi0FHOkbEn1nPN/KEL8/K3AZekiajkiEK +ne/GsrtrnYf3r22e333xu6ruzd1F4Pdc8FtOlKDKGjPhQSqhazc2a3HyM4UPAamUtNwPpJIgUBY sWK66E5PT0Sd8cYdgSInTUR9dNW43U5zz2o46QqeTsjKArLaLgdBLjRBCuUlk06HCPzEcyFIb/MK e1J9zswIgwp37GSE15AhLz2/dOzM8UtW1zwxe4h2SjPhrNdfzL5uTPmQrh9uxbamyDUj1Xnvcq2B G9aPn/ZCJPPlRZMPNJhEwr6pvchJY64tHS1xsX3aXMlYM+yaG7Ipu0yIn+Zu5A4jHzqiDlsiLXcs d21C6/i3pI+Zjw2/MFK6lGXMMnVxdHHdwd0hLeFEwS643Xa3uwvJZtI5IYtbz62V3mHeMHAluAJy gusVhE8gShVU5FZPVF/LoC8teKzq9nRjRbNqtkXN5eMtmIYYqtMTtbTgLDXV1k1mLGfNlegs0m/l y4WwxZnZJGCLkCLkQjYFvbfTv3Dk5Zh/mFJDCUIPX9shajsZoWu6UUPpAdMUnuPZcJA6w1DQ7XIn wlirQt0hW4JTrtHe/0H7QluG5+MoNj07OU/73PfM7Kfee7tp9lbiH3fuW7wKj8W34j9turG5bNbi 77Tfte9+WEO91aOgoRNAQxXguEVqfhaY+7XuKewUI5ftLnIPclW76lxckbunf6l/PbfGwKVYqVra bekWRfRmbqPhaEInaatUe2MIB0O5ED5YbaCFSq5CFKqFwf9WCy+rIG1lA6Zq5Hbpg9U8/YYTStSP UL0BLXqUBPbW3t1S261w6tB7Jz4dO4yzjt1VOGh8cfHNI/vt5lqTMl7XTv/X7nubJpVnp7CvXyow 2yrf2Lp1z1SbmerIn4Dzz0FLDWi12lfkIKRO520pHM7ltoGr5ySGTSeYyFK6AYkCX86QQTKC0NwX NOWaVEiVWSmI6aAQqAS0yHhli/QOhNi7WE/a/tWsOLCnQBE4uUYwK+4qs2I4YCR9VNMZ6lj+xJZc +paciAWZfK71grb/V63hV6j9Wqj9Yqi9hGapJVB7nksXgmKu+Kp4XGRzxNUiEUWUaIIE9S/hK4A1 rmcgtSe+oCHXQAxX11/+7+pfkxiii9FXRJA8/Df1WwvevQ+ZHNtI6/bMhdhDVLITwfoOgPUFgeHK eiWXJ1cKs8XZxvvExcb73Iv9Eu/m/Ta3zZ9lzfJk+bKSxUGGcewoaaxhBnsnO99zu2+PeY/ylulN 5RPltGJmkvggtTY1xVdE/5YCNAm7krrxko0anK28wo7t1Nrs1NqyXd0sDAK/4R0PxZm2SpISDDLQ 5NRcyAa8mU0ytsgpci597QhWF1q46Sqro41X2tsadH+RsD4wPjo8VBxriBTrhKcbIC4IWcECU9NA GW2FPfODbIcNOhUbjVcLmBKysEbbtPsbbesLB/c98BHEGvldtc9Snm98/dSZl2v2DyD+X2MtY5e/ hqcdPoUnjx986t3Cmxec/0m7qF0cHG2FdlJfka3r51NqusRyMkMkOZ21bYNED0Iy+t6PCKII2smJ Qf4DPRFcqaaqpuGmWhNTb2o0EaqqTaaDJtZEDInOPkhHMHV1veNqA5x1Xt/sdJmJ14KJ8UhG11cm 4Qbo6l/0tVMlLn/X4CxSirO0o7GXudbYq6T/72Xk7hjNgu8H9dgFbWLQTN0OduZFabR3cGc4XV+r JQ53FHEqN5xr5E5wXApXy9Vz5zi2kaMj0QwSCfMpRqgZnUDMQcrHtFF0tj2LbmV7dHbmrI6mlOiv vRpmQW1p/e7HWVzr72VQj/Ug279Q2eKHVJ/IY5tNljmGMCw4K0mWRJmTREmGDHuvGhF4hyDwDA1i ZAhiZFmCoEVmJEY0wNkQs0DFkMEgCiLbQibv4AaJsFJtgk4U5LLkO2li0h9y91KV8ySI/rLYvSB3 /T0VggXCFY8+ZqZviHRDVIrFvzIUixNxy24paDBFoV/e3SFmQvxCAxg0oEr1ZvCZ0mp2Hd/ENrMH WWEx/yx7hj3PQbwVP7Gz8PqoRAWeBhvpfF/5dmYJs55ZL22QtzKtzDuM/BpziLkkM33laxgyC2Id HGmoqdb1gY+f2WkzlPAt8TOq3WIoYXNNLgCjo4QNGmwlUJNDOy3exNrsTqzhDH0NJ+nrjvN2mO0l KBFG4cSgNq7J1/MaDP8E63rQpEr8YOwoKdPu1m4Buo7dQVbG3rh0N2n+RRsIPfk48OAz3EuIQ31V 33CBagkLHhyJLOcTCHOl7Pke+66kOI1qyNBYh5Lo+ut8HJ53gnvp4uBfKY8BmUF63IqMxKMaDEyG mGFgWLA+oGxVSuodlYO9+0R1aXas1aeTukMpAA869LX0gwxRnSzbSRKrSClymHRlg1KOPI3UsVOk GfIcMpd9Wtoq75Za5fPS77JrE7ta2iS/Kb0jf0KOskekT+XT5Ax7SvpONs2R5sr3kvvZe6X75dVE qDJMITPYaVKdPJvMY4VSUs6WSuXyGHGMVCULHjnHHCW92ajURy4xC3Sgl5ck2Ul8rFsSOgZfU0BQ ssQZBSGPNxvz9Fd2RBwumqIGCnorzaBZomrOjBooQNFGVaEbBpGhQwVEkJFIdbekmGpsoiNrMOQ1 H7fRAn9LvI/aDZ4SZEVJyksMOxODLOcxBDYJ3IYxsoQYwagkQUwxY3MLNu2kM0tbSS+dIMbVJIjB PXJUlMsTVGGRiMUDi6AXDhiCBiNpIb1UGzCCCiciFU5CeSk0MIbbmCjHKe0NbZGIUvyjAkmhEmuI NRT7PAqkAlCgnGxAiSkQJcUJY7siN+jIA+wjQePF+InthiAN+mv0j84oEQQWAWoDmprQWOtDeD+W sYBf1tq0Y5Dq/gNCfw9z5vcy9p6LC+kCOrUOmCdM/Tb+L9UsMbzoZdwiawNeA+kialeUYWmz6VrN hhYxeYIIFCQyIiECI4G8QFYMS1vM0hazefwH+ju4lapXNQw31BqYekOjgTQZDhpIwteLUsdNdZs3 jxwZlfKu8gfyFf4A0iTwCJ0uAfZ0JtXnTiBYlnanjQcJJfSI+ocTqgRaIQYTOnJwr0S1Rk+mIjod DdDPatxjKBAbDQV6w/r6ukfFkQAc42LyGJVhy5j7IGxpEneIJxn+r8wH4mciE2RyxCjTR6wQH2Y2 iU3MNrGZeVU0JJLU/IIoUfP1JPWEasrJi5IgBcFRACVrVSnUPUpGAehnlyUHYQ9AJILgIYxb6Eoy hT4kXxhGVOEGUilIDuIXhpKBwgbheeE98ik5Q04LvxFDJskShghzhWXCC4Sn3mRWpPODOlWhGuma QDkEW9fhIKnCdu2T2HZQgG7M4d/LmJcvldLouhoio9MQGVmQHz2pjl7LrRXXGdeZWRELZtEieDI9 c6U5NmGOda5zCbtcXG5cYr7PttyxzLnMvcyzxGcUbKAJPqfN5/B5nD7B3s0kebsJjCtzm4yRrMjB RFyjBnMDaqA2UB9oDDQF+GDgXIAElMwmhOnQRa7e5/fvTFr4l8vBjx6D1yTeLdMxLVD0BsjjooV0 ECK/I9FA2GG7PI5ZPSDvxWnLd+JSfJ+2UDug7dMW4h7fbN/+9bG9e0+Qj0+sq98R6a3dqm3QHtdm QrpR95sWj8cvXbhI5UBj7wtgBVQOc9R0ntvn2OdhruXwNO4IR2zWdJPZjPwKjV4tSHT9W17hSgnk drSPCyiWK1k+6erU4nJm0RHG/pFdQIdB6tSRoIbDXgJN68hP/4Q/x+brF26duHbYjHdee3Lb7AE3 Dipo4lpdoWPblrZMtzpjn7Cva7XdJ/YfXmeS9X69hU+GfnWiLEj9FiwJLA1tQBscG10b3fxcZYF7 TnCJvMS8TFnmWO4X+YCU7vM7Ao6QN/0m93wk3o5wtVAHKjbPNy95XnCFsNy63LckuF7YYFhjfU7Y 43rTdcRlLfRXWacL0+X5aB6EI/g6dAO6GbFprtTMzDSXgBieZCRB8JvZQq7bnVGR2k0iVGIWOrCH R6oW5mNJyshI8WaS8m3Z2NYhTVtCW7LV7Nrs+uzG7KZsPph9Lptkp2Q2GbHFmGLMNTJ0eGFnl3/V FpDryRhExqikvS2ixLTE2KRbHxagYXIDRMn0bXO6yy3QeTZ8Z76KrJDQpffs0CMnTVoL6TQcrsct jbcMUM17V2/TXtLuxo14MC7DCwuytNaiohO7d3/55Qtq0diakQ+3Duv+oSMs3FmCH8R1eBpepTVo 619Zfas64JU7tYuXYqBozj6h5/KoptEoGqJQ6JkQuqDeU2QZbBkjzDDMMNLZG03hPeajksyLvOwW XXJPc5m5zCKIimR1mB0Wh9LT3NNyreUO8zzlsGyYK831zg4sk5Z5lwR4yeWQjBbzSPMd5sXmR81P mTlz0GR0mExGi9FpcrvS7YoD1zqaHMThQMEQVWRQaScSzXSwKxOZFAgNP/ZnNvHN/EH+EM/yS+vD OBjODZNwyHmlPqdeGTHqVtoxWqO7rT9SM52fgZtrrngPqCcr0Aeg6nmujjcUbnuI6U7CYav1D30P ryEzv/974+uv1S6YsVP785FZo26cWvz532cUVwxK23Waa614955nPknqteR57Stc8nx1KLaRGZZW dc2QcUaOxklD4t+wP4H2d8WH1L77rC2BPVlvdmUFu+B0291OT2QKNyXrdn6u6fasT41HwsZqebR5 dGp1uM441TYtND1rWtc5gSWBNSGjLUxjqeSUKF2rU7y+6IjUEeHXUl8Lsw2pDeG7U+8Of5n6ZZiP yNmmtNS0cJEpGi6Xy02lqQPCM0xTwvNM81OXm1akbpa3mJ5NtUMgb+JT+bBX9ppcqUJqWDax2F3p Ub3B6EwPnunZ5CGeVjIF+cE/GCG59GN/NweDBulzzwb7glH6Ung4rsWrcRNuxgexiH9kVV+RwmK2 W7bkORt3Y7dqd0fd5UJmhq872IzSrBClHJ+1JjrQ2+2jDjYqH1m1Ham9qvWxNn3aUXtkFh3gaYi0 10ROJtazIifBgBJORQ+1U0Ee/kC/MA2ZE+uvd9iLUkE8sIK9d3bY6N4h1WIrMgVtRbK+WGjZGdVs hDJTkeyhi70ocuWnc/KIs7fc21SQWgByHGwakFoW3iw/lyrr7+ITQzCX3yBn6l86Kn052RV4p8Pt YnXNoqNRQ3DQt2npqof6Xhfd92Pt0kVnn8MO7Ba0o/YFC+4enNO1F27+4I774+hV7TvtCD6W9NCy eSOig/227n0q571U/5epP71raphUkFoUTc+ZesuBlQu/uAljpP+lQsTu08erZ6nhHCmXzeWGS/VS o7RaEnjMkXSWIQISJbfbxy6ikRDupsq8EMS5aBG1Iti1MubhpJ40ktWEJV4x9kJHr4yo2k6gV4oT 8xYABk4pPdnhLYr1xIBORqAjHfi4NpR9QBvGvn7hwkX6txsfAV+eBrXyohVqL0EUJEEBEpGuFa+V hDFSpbJGWWtd53zMtUXZ6/rEeYo/zxtMRiNGREi3S0ZD0PQBDXf1lN0/nE7brfc3+knQn+tv8h/0 s34MuW3Qm+s96GW8lAh8/2PK3qaTgZ7q2kNW6BKXbtoQjShmEk6lg2UFj+Asg33VXQsbfTgr9+6j L3306UJHAMKTbw70GnvLtDUvMZFLmnbhszXVEx4bvfA80n81gLhR0D4em3ciBot0vMpWpKcFo3y9 owfFI/gI+ZT9lONoCjKXW4vXkPXsOm4Tnd1t4HNEmubUinOw4EUuvgvK4Aeja/kx9C8cEhLEyAGd m0ir9XcDTAuZqBp4JNKMGuiSayUTEAuGCKptYPEitpE9zp5gWbYFG1R5EdPIHGdOQDoGtrobzoCE oBUbEKFvBXIxxl7hircCYGE17TU1EU/b5Xi/7epo/49Y9uBOJRHF7oYAdhSkOTV6CKu7MgRZKqoJ JbJTYoi14/74NnBAvWM/c60X/8L2/b2M6quAkLCS5o04rtoiTIQPGvINLAjSoILgIG9u3Alr5or1 Dm8BROanVYm+FfECGDv3EN3TX4hVuwJRNgggQCrHG33IKXVB6ZLwrXza+Kv0m/yrkXuLe0d+y/gZ +hgyxyPG79ApSXqefYp7Xn7GuJ/dye2XdxvfZqXubCqXIweNj7GPcI/JfzKKHe8/RGw28TQuMIcS yYcEG5D4hWiVN+5M5IQbVSfNECfTPQPPICyw+gijbjNXZIG6O/Lvet3AcsGWeO5OHpLAlnieegOD jMErNEDmOS7PIDsMBlniBSEoSg5RlFiD0diRLsJDGCMimDUynGwQJJEXBYHrUBI9cQSnCpafA3lh C85V5SB/wHBAzaF5Ouwag4m54F5Tpz74vENjNT5PLObzxmo8nS+KlMvT4elXrz39uUFRYvoSTQ6H XqkvV68SWY6eHDZ0ZAYUGqiq2EFV7LrK4CnakzjnGDaCR8Ff4mxto/am9oV2DKzQypy9hFgEmeKg iy2J34JwI/XxqT7qE1bWL49gx8rs89xm4XnpacPn+GOBv8+wDj/KbODWChukRw3P4qcZyYedQhbO EKpxpXAfs4JbIUlR3EcgXjnI5sil7HXyOHkxe7/8ELtJbmI/Zv8hmwrZXvIj7GPyW+w78iFWkInE GwRG5A0sI3IIepZDEiTpQQLZEezwBkMQcQ6oHXQb/bmCJBkQ8O3Le3nV7ozy5fRd3k7RZwJjfBkR MCIoJeUGGvQYOlyikXaEl/YEHfqKtMHm+cQWyrk8Cna1dVouTxnbDR4uM8rSOCGxfnevZI3KPQE6 k03dbzU0NKBZPXDCUnXh/6L1xmNxBg7iMVov2HtM26+1khg5oHXBn8R6xcz4osbpc4ihdVUgexG9 QWfqvKL2MxQclDHLsBwjsBzLcIntIMEOOhWHlgR5gaYRmBUgoweLYAjk6YiTReiJFjINeI3KCwSG RHk/ccO9eeLeDTl9EJEW4t6LLwd8U3dKVD50joFXOelRYokV+KQO7Tx/MjGpzqqrpbVj3EK8cowQ ItjipSKdzIyBsjpH06zEFTuNx+FqfD0eHTtFpjMjYi+T0ksvxtaDxj2sTSKLdR87XM3jczmVI1wh YkrYCpawhVhBNobwBNqvQCrWzj2GELWrQ5jBteK0xI9NipW2thpax46X2lAAiz5RwRm25jsfxj+d Pq1NEsYc+33SMcqTGfBMj/7MUjW7hKvQH5nLqvoTbUgReJ6kgB23Y459DB2HTqyVnpp9eQJGrKbj SfBUOpcc0u+CfGu4gHg082mIWi88d4zb9DlIdXD8DNud7YfCKA83qHWCT0ziAi7fEP+gpMHpnyvH rVJPb5l3TMZU77SMJRkPex/xbfbt87/le9tv5HmT08V7XZl8F2e1dw5ZQjbzu/k3eeOr0U8VEkjL 62HtakpTI92jaWpqFoA3EJ2ZdimNpJXpM3dzzZZo3wCmM4ybA78F2ECgK85HKpQmJhGMDqlJ1pKQ 6lcAPL5oqIXcvpsVjCa5K2ViOKav4bC+hjO60rkGqsOQ3CND7CJlmapTjJuMJAV8jREbVbMravRV RHG0FuT7IHWE+V1C4934uBtXuMe7Z7oZtzd/ev/OcXIwu4a2GjoMHUnsndTjCTAkoPMYrGhsqmcY kYT97cgJ4Ibqtk53mRY/uNcfiI5Km5xGaiLV9I04KCdjVhLBU0MNNcbMnnR+lMvJOFzukJ4J8hCU JOY3FHZMiqI5uD6bR5+WjKfEIx998HJLOeNP174zKAIz6Omapw9UPvbwG9cNn1k+Ct/Y87u0wqrS 6wbmKwbyVfcNj1Yv36u13H/fdUmFXrGsbMeysQ+UJ6UHk0YM7KN9ZMvzZBb3qczLKEybAiJfCtrw qD72kIQe34ds8QtqD0NRof9aP7FV8pVypavSU530q8AXsH1MfewF/oFsuancPtD/qLBeko1mcCbI B52wgxMctC/sBoMFye6Q6KtPxslKF8JkWFpwF9WI6xGdWeQNlCTk3VA8tC1W/M0wpaHjRwdtNHLT M2VcM6BKNUzlp8pTXVM905O4mmqIO+iYNJ2ZmJjylOm0Q2h3efxlKfbes+N1TYvtG7ddtUUHz6u5 d/G0KUu41ti5R7XT2m/aOe2zcdUbSfYzFfWbnt/zxOPU4kZD20vAErzoS3VElaXaVu2qs0y3TXct 8MzzriVrjW8qb3o+UY54vuW/Fb+1f+u8wNt72Xs5h9iGuMo81cbpRqG3rdBV6GHmcHMsS7klluXe Z21bXPtse1ySWddQf9Ssh2SOqDnfREu8yVFTx0iEqRWzSAaZ2awGpMKpSIXzUP5q0NNWCAZYOBR0 C5iW4hDKMdENU6gCAmWfXwg5vL6q/n/M8KwZ2hZpb4vQ13Q1JyOJd+SwTniAhs65nYk5YoUcz1+e 3cn20L43T6qYvmDRTcOnOrEj0v7+t9r32NX2+inyQ97IUQ9tPbBx3MycV14Hd8FiAadvoSMJo0B2 Ezr0ZrXazVbNV8vVtoS2rAPVuCBJ9cmNyaQ3EzX2dka9Q5hS4xBnqXe9JDl0dTFQrVHNBsFsoX8Y 3t3FbMrAVFMsFuRbRXUnJHoDVcWXW9hwPqExemyVGJfT83nQFdN0fro83ZbQFr6mOhQq6GigLT/P bQ3hK1WFnaBd7L997F7tovb6jnuwN2bLKZ0/YdniaZOXbhxXjTMhrzVj76NEuVS/9bpbn3l67xOb 9HmFZ9hM0BUHSsJP7UMK2EmZoWi9tMG0RnmW2yLvl/abWnyi6MCDyLV8mVyR/KxpD7/H95b8tvGI fNR4QfjVZEqyJDlVYAinarZGLc5XnR84GaeuDckl+trshjV5QDVazLbh5lozMXtsNP/e4/VHcb5N n2YRCCamW6R2Sawj3RJrT5K+Vi1Ap000alKg2uNtNhDzTtZg81BxpxkEFMI5zoQS5SSPT56ZvCmZ TbaERNVkiYLAO9gwctW8izZIv1WHR81ylHjUZAsAULCHcrUeZZTE9PTcBpWAM/TBNDjJ1kHVdL2j 89T2jpBQvwDBAVsRrfQON10175Tkfvpu/1CJHjRWn6QMWqM/3qyClMz0oWb6eLMKwkpEOfpkplmR CASq+XreB2yBqYoHIdWjOo6YkJ4F2hN5upv8jj09v92mfX/fdOw43IZtfExl7plwzdhMZm7lDcXF GF+fs+GJ3Q8dA12IaG9pBxasHIRvnr9owIDbKG94wAC+4Q4jF2pR83qyOJsNKkFrNdvo4UT2VQ9x uqzEYXNZzXYLUsx2jBTikESLAY83xA3EQDtC5rHV4sJxF3bR3WQF7nsObs3bHbKUXyJWiMNFRsxS cqzjrcTaglnVZLZnEMd41OQ66CL0t4N7JGPU5XXP3UemJybIR4BSL0EocKkGUvfED/9K6GAYLBB+ NBTldfwulfohe74+dpHnFnRWcNJfF4SsYc/GovV3zL0tY0C/vgUffaSd3shmDF+yeGTaX5WiEeXH Lu1lBuu2r41ga/UIIgcPUyfOCSwNEJvRVN9jiamxBxvEYRJmcnE+yWdUPIAMYMZZqh3V6ZVdKqGr brJcsF6w2/qY8l19svK7lptKXeVZpV3PGWNu+UHw2QajyZBtNGWaXW5nN5PR7WI9adQCdusWoCu6 2aoryU6DMbHOyk4YQDg9se4RTRiC5PTrjn88RwknxZJJV2a5GxW4wSl4vHx2F0OGz0NJR/J6fb5V PXAPoKAWVUb5aSGbN/cy+7R38I/SpsROdjqrWHvHu49O/4/0yukP3wGdo6vvH4PAdKGxaIeLa9B5 yzLdMT19Wpepkek5PPVybs7l7vT7Bbw+eZoqsLsgZHWYSTgIgcKVU6nn4f5iIKvy1sJ0u2nhwSML JmL86huNWOhXv3+V9tNXl+6tnfbgsrop95Zl9nImh1w9wjc+9sLuVX/HBux78U+Xrn25dUbxvgfN 5N7nHn/iz8800b879zBCbDXwugvtUCMWnIKLaEcq1+BrrP/Av2FJ4FxcGqmy1lk5jIndYbXZGQfB FirUACNIsuxwyi6EDHKGKKnBtOg2CcclLPn0X/e5UtOiqz1NHlLvOechZz3YgxwZLqdOW3BukxOf c2Kn112SEHzDrEjHBBzYOt+xl8itITNqA5m69fBKLO74AQMNEJKJE1Q5qrs7nm7i55cdmLCxIqCd Do7oW3ZrvgbRcOzUpkH1y1bFHiI9towtKF2+JPYD/Q8YSOIXl/qcDAHN2YckOgvDKpeo0nCJNErN 0kHpkHRW4lKkWmmR1AQFHMMLCLIeC/3VCp17waAaiIl4jhdYmQjgM3VdDKVFWa/Y0a4/2lGim+cf E0fAOGdFOqdQP5KYw8zuwax26eIQNuPiZ5BFPqmNwJv1GjrRSnWoS8gQgu6ewh6Ra3RjSMWQ02FS jIr0rzVinfx4BSsPShbsyCAKhznfKhoHY7cpXwHL87pc7lZyEwqRGduL6V9GgJiY/qx4mD7M3jG2 VtNZZfq7mvyr6k1r7bQ69HA2s7Bz1O0B7C1Ye0f2hF49HGFLpNCWaMzqixff23KjxXKO5dKj9zC/ UFZdDpo3Xp/h8zMdeTq202TV3/6qC7zdogKjMHY+U5rKb5Nfld+W3pM/k+WRTC1DTIJHKuPHiLN5 bo90nG1jL7G/8NwwYZg4lV/A3s8+xm7kNvAbhA2inMLa+Agb4bL5bCFbzDGVs+WcfHmOiywxPGvg WB5kpc9gkRlZNrAt5BbVx+WIRSmQ6k0xEUMGbkR0XjPk7iV3dqQO+vwV5XyDB5jiyj8okHiTTrPQ zvkptGlv75BCHVNr6RgJmlWTmJHTOc9jOfbiwXis9id8n/ah9su9XOul83i2dlfsRnxsufZC5++C dR0Yqc8cUrtQHeWGc6SRa+YOcoe4s4npQou4JijgEj/5hVgco05tRF7237SxQ/86fkbcMTtoIUL8 OmD7TNxnH+oCV9fAs8C7Gp28yxhlomLUEw2XkoHiQE9p2BhkcrqMlGq7NHbZ1OVpfouw2bib321s 7nKoy4kuZtQlp8twOPBql+Nd+C70J+4lsN+oH+SEECv4AtQd7pCFkO4VWUGxWjP9SUkZmTKYlEXJ sFnVsQW1VjwTDKSFlKkWnz8jkARlM5NwbRJOgrJd6RkZmTSS3IFQph5cSSV0rfaEemfCqZlqf1iK YUnLjGaqvftGczI/yDyeyVgyUzIbMxmUGczMzYxnspnerK+LO5PDjlcFCR9QfB7iGHC15xtqIsV/ UJI+bNb5q4TEfOBZEepuccQectK8z61nf26XTlGZlynqD7ZaiJmVB6euyS178oY7nswCzgpkjuhT 1107nVzSs39dN+00m/HQc6NGjx41/obSdbFqMv7P3YsHrVyjEVL22NiuZYvXxy4l5uqw1dBnLrRJ 9Qh2t32sWCeyLSyG3lJKxVLLtwrH65RtFcwm3mgwQAhOcIYL6ZSNMP3Pk/4nypYNGUYzla/JZLzM 3EZ8jnLIVcytS+rfyDthGJ3Re+gqqtaFBATOVmun00YUDb49AgTIrTxcs6EihSS/MKXX8MU7tBQ2 Y+OuAXWL76R8fT3E5RugpSbI4taqg87g0+Kv9l+d7FvkDEdsXs4rkWql0l7pqvasJev4deLa/6e9 b4+Oozjzreru6Z5+zfS8HxqpZzSaGT0saSyNLMvYVkuWH1gxVvwAKcSLcDCJQ2IEtmJCEtvJhoDt gE0SwHkQC7IYL87G4xEBCcxBCdklbDYX393lLrDZG527zkk2Fw5ODuuQ3CDdX9WMZEPY7N29R/9t 9Xz9VXXVr+qrR9ej56tuY0J9SfhH10/Ul4yfu34u/8K0HnX/SPgb+Tn3XxmuUfdB+fNu0cdboR5h RRSUlGCXEh+uGqkSqjwp8o5lV3nxWl6MzI3q6k7rRqxFdkYlyoZ0ui1Q8Jc3GrJdsNnMZeP3pkNv f+NXtDDzwmtfmvnNIZq8f9eu++7btet+ofaLVD408/wbv5p57vOzJ7958uTYN06eZPk9PPMx6QHk 18K662tOy9LAuoDgL4hdZlegUNUnXmleGeir+m2Vytbuc+uxi8pvq9y4fy5fp4d13fJ65tbpvgaP x5u1LL4A09+9Ut/wOn/vyfk/WKvzMZfNY9ha/bL1F9N5D7GWXtmflGNLsEu5Pkzl9u98dJIKM7+f HDyyEVUcvufG7Z/7woc+fBeqduCGmf858/bMxZlX1mx9+1/EyfFTD44/+jBbg12LvG9H3n2kmjzo dPqXCwWzEFyeWC/0mX3B9Qn3iE2r3aFIYcg1pF1jXh0YigzFr64+oZ1IvKVeNH8TNHzEU8UKQdJD 5YcViteSo1ho1vgbsOLO+nz8YYV6BANl3C5P/y5elv8335X9plsqBbDTtVO7MbAzsjN2YzUKgPpk Pnkrr7DZ7O3yLVrilZ1/dt13Rw9RceqjX19OxZkLd9xw48HPX3/9l2Y+JoTXbr7rOLUoxpgPXPvg 79aIj3/r+MPF01//Dhsj7yRE7OS1f9Kpf8BFVQ/d7LrRNeoSW/2Dno94RvySpjI9BeGIMWsI3cZG QzAmhL1Og6LgDhcFWasnqqXm1RFVUuP7/cf9wnX+/f7T/nN+yW+RLPubAC1AEA7QMfY/ga97kibI 3AOb+Rv6IpsZ8AUGCgP3d1dbuTHcQvqLkc39xQ6+/6Ft6RB/k0G5LZSXGrKPjrF7etVNfcND16xd ccWmVin7wE19Hf/a0vPYzK+QxzzuaAt5bBS+70zJPjntzkV8kfQx/7HgA7n7GlUluCYo+J82Jz3P p36Wfsu8WCs3mFvNHeZ9+gP+R2snDaUn7dT1ZT9ce0P2Tv+dwS/U/mmd2pldLa/R15sbvWtSvbVK bV0u22l0pNh/vR11iqy5fGoqauaM2tratFJX6yzabdwW/GToEw2jjXeFPt/4tdB9jY/XPp42D9Aj kS9Gv9r4543FRXIkFXZS6ULYSdgFO0x/isVcuzs1kDmSETJOtLqQiS/iynoYdwYW0fwi2rqILqpJ 5dG42mmKVMam8h4Krbs8MjM9sVjTbROsyH+P8YY/k6z0oXxvChuJXieVP6w7ZEplGqbZ2iWpNakt dChyA90ZuUg1GhGkeKpWqA+YhlAfv06i0pp6fSBO42sCClaD+PG3wFRo2y1V7O/1H7G1VGqizGu5 +kEdc0+P23VldyzO3U4VLDeZdEntmtpj5ldqf1D797VyqtYwJSlOKqs10s7WbeOR5m5aWdpzd22m wDUKqjH6E1rWKZCG6QF6gYoE7Z5pGEg8ZCCMkJQ6G4hEr5MuSALLQthB1OH2iIN4Iw4ijTgdnYUI e+YccTINOCFeb8Tmj3elyNa4g/HLG6cD8dm4UMk8VzLghu0l2XYL21Vya9lZLoyKVkBl2yXMtrLu d93sC46q+7u99TihHF57wuwygkYXs5YMpmfwyzN6F6ko8A7N79hkO9dy2VxdrrI79h0KA+wdCWzO nKdx/64PfbwzEwxdOfPta/e9+rNX/75+5je+6wZvzicTWfq9ocE333jlbdratGlrfaI1GQr6+lde /dVDZ+85vHhlrx1O14QSN67v/8KX/raIu8ie/YVwr+tBjIo/dhqSBItyrcG7zLPeM+RVYiESFcMh EvEHgjTiF4I0KqqKphhRVtxeEhmLFCPiMNhURIxMUKkUomzQGCchWeFP7QxdbdVaCdb/1/FXBEhO fVTMRvxbQ93B48HTQXE4eCB4NHgueCHoIkEryF4KIAVj8dvG5qZT/cVO9BNX8D1lwdkppnTw+7LO gfUmf3bxOlM6YEHP86XG3Du1aCjtC/IyjciVP/N96Y72joxPuH1KzyVy66PbP/2+27t09bOfpXEp Oz2z5XNNiapXG9vfv3rxffTF6b/7s5mDKJ+70ctslrKYIX3DiVzj+7DvfpeoyjF5ubDc1y/0+34u KHxN65P0MNFCwaCmyoFgNhQirIP0hPk8qfwA54/Mk1T3/ATJTS+4qfvfXtqWB5l3zY+2lR9kZrNM fSF4SZNBvGrZMztveux9NGZv6l53ayONHd+6/U8eu18Ym4lO77hi4+h5OoXFIvKpYyb4AeRTp1VO yFUfby0o7CSzk5udsMR6eRycL1OT8WWFr0lUFnW3WzN0rMUFvxhX41otadaf1w3c2xeccHWyoBGX HiQxPUMa9QJZpt9J1Mr/5ho1DR6XrkYKEiUqlYnG/q9DNVb+B3f8OtEkXVNVQaAy7GoXeybuRBP1 Bd20+Y4iyYxE4pbWrW3kSpx5R5eELl1i/8CJ0lNCHlPUA47X6CA0yd5VQWPGD8Yqf6Q2RTe8vg0j 1bYY/zubu8u7/vk+DgoR+K3dxN6uUVa0Z/9MR9gfMAEswZ6c2UJzP1wWkT3WX9PUDErv7f/13dXh 5mahplymKlZES1GmBv0nZzFKViOyoCkutYqEhRrJ54orQbVG8xkGV3dI611il7xOXCcfE4/J/H8B Z++itShCXZJckqprklFF4lLYFVRjWsgw0qReyrma1XotZywmna6V6hqyVljrWqdcqe4lt0l7Xbep t2l7jTvJXdKdrrvUu7Q7jVfIK9JLrpfUV7SXjF+SX0rnXefVX2rnjd+S30oXXW8pF9XfaheN5nfr NqgV3YaQynQbmGtOi0FWWa1dpsXwThWGDRUVhvc5bUyF4Y+pJchltQSt1dPtEZhugrtHpezlUbLw caKDHCJSz+NJGjN/MEnj5ckGU0uoaCWUlRK2/T9oJcwpHtzSRFh//bjumF3I5lslkynqvIXOWncM duUCOmuxzGSmPaYz1/Rc113ZecFVWwIB9qMpUaRDM0Xqe/5J6j3zIxqaOTXz6ycfR8tYJ0ww+j+v Cqfe3oq2YeB+G+b32zHncL3yQ0k4pkzSn9CXlAumy63EpahcL3eSpe51dIh+mo4qWpY2KUvoMmUN Xa8c09+S31LUjJRVGrWCtExbJV2lPSe536dtkYa0G6SPa7fRz2hfke5XntJekn6i/V4zRUlRVC0s JaVGrV3q1tZIakiKacu0q7SbtEelJ6UXtIuSqiC34/4ou8tfHscMmekMOCHDV6CSpkis5sDcXLsB Pk80NBdm+daOaccbriuI2UsaDxXvCzplVicCbz17mRaEXNGCED5ekttV9vREd+/YaB43p03RFNll oV1nl/0Xyn9SlF9mtuPS/XsL3wQU2zC/HeidihBNt8zpQpRtc09YI13zShFoyCyD5ccsXAuC7cS4 5ZZbmSrEre2U1ytltWrQ/TP30mvO/hVdP3OMHpx59OVXhbQgzvyE1s2ob/93euXMk+yO98y8X9qE Wg3QwuP+ehcNsKxHDW/BHTa9BYWdZHZyhXFNKG/PW1ZwybJk6h7ZEkhAlgIC26HPHvEPYwI4QU+j G/SarZ56kgzlQ8MhkT365DOkbIE/EfUnagohpsXXJTrRWGE/1+HJOarAXQIVmMtPu4iTWFKoqJME f1AZYZvKil6sNyxv/0Zp3brBevM8e4jXWr6L6NwbnfhdpHj4s+lKj7itv2hhgF6GAbokWeSpWdTW 7IUzokX5fu/K1s1fOB7T1x2wAjGc/NFuF2tmcDBegruyjal8EykeEWuiHP8D0kObZt6i6ZmDqzKr rtk/8P6rYr0d2/8khhvKI/z698Lktu0ran0/MXcPsdKvxarnf6D0Lbrhcf8LEsXscNZZbPkKGsVJ oW5N+A19SxM69bXaWmOQDgo76U5hv9/9U+mc8YY0bUhaq/SQ8rSwh7iJRrdglo0eirYaD/Eh3mtZ RDsiHccEM5ltQcuhTY+rWrvlrUzQvfy9dGyG7rW8SW/e63j3e2VvHGU/hXWT4Ffc7eSAcZQttdjm D8ShGBHmok0lSv+Neb6Beb7vtk/NzfPZ4mpb063Wm5gSMF1GduXN5a833crfc/Sv59k7axint8w9 R6Sz5xyPGi1QL9Hy4JriZnXJ/jArd4OETWRpeZetgHFb07t0ywCZvJ8bIu0ddEmnrLg6UiGqLGlP hWrpPdtbFw/MHBR3zXz0yGiCjv8jfWGkVaTCvzw/s+jrym/YV7VHxavpI64nRIV40dc9SFT+au0G NBymqBUFndV1N/tOsktmL16WJEkW0fTleQM7kRXiVtyKjIFCJAomn8wF49YUBd0B+wwy2+asoHcT RUXUmZ8LLllDBP+5byb8+4a9GNowVCY75OOyuxQmuzJvYIe4xA2jyPzNvYrmVnFAfrfhnpOdh/1D 2ZWFld00NVSJNC+7G2UvXZJdQg/vRifPmr9bUyV097qq4YD8qqm6K7LzrEj4SYpksIy6ZMmt6Kie hZKdpeo12VRVUtiboSWXS1YxN5Lc80aSVAhOVJ2pRhq6RHTV1A3MUTUNNg3zURyQnWXFpaqASgbL qOyGi21HXUjZLS8b9iW3erns6ryRMZlSMd0zDIhrGBIx2BuNde7Svfqc7LwqXBrbJSl5NBgZLtSL qi6k7D6fyYbusuyyrGhsGL9cdo1oc7KbFdlN3eSy+yA7buX3kl1R5YWVnZVYwOeBxYX5BsuCrOhM dn3eKIoOwYnp8XhMw2u6iMfwmV4czPhMsyK7jqrQZcMA1IVJu2G44UK9IHMLKHsoZLEuTjOYG/2e wd5mY8wbRTGIYRK27PWYlseF+8PnsTzseyMeM+QxicIUqxEEh2KaLpfhCrBsuZnLa+j6QsnOSiwa 8bMuTjeZ2+1WPazvNueNoniIx4uW5fNZ3oBPIT5vyOe32NdSfFbE8rLPYwLJq8Lt9QKqhFhGVbhM 5MJYKNlZiVXFg6yLM71MdnQNFuu7L723W9MsYvlIIBgM+n2hoJsEcQ75Q0G/P+iP+f3so55Aen04 VJ8PUHecZVSHy4tceBZKdlZi1VVhJrvHYnlBx+dza263NW80zYcZAGQPhQL+SMhNQv5YKBwIwxUK VAWC7FOkQFqoCkvz+wF1x/0wOly+iGV5F1L2pB1l3YTXz9y6bgRUXVX980bTAhCcRMKRSCgYC7tJ JFgVjgaj4VAwHLJDQfYBVSD9ARx6IKBpfi0RgDHh8sWYUuACGVbbKTsGi25VZDffJbuul2WPRCPh YDyikmiwOhILxSB8JGyHI3OyB3HowSCgajXaVxCyBwMxf8C3kLJn0glCNN0fYm7D8IQ1rMdD88Y0 wwQSVsHEItVVKqmK2FXVsWq4qmLpWIx9shbIUASHEYkAqqUiMB64QtW4LRZKdtZSG3NJdHGeYIS5 PR4rZngMIzJvPJ4YicVJdU1NTSKeqjFITTxdk0qkahJVNYlcIkHQDQEZiePwxOOAGpk4jAVXBLkI LZTsrMRamtLo4jzhOOy61+uvYuNOfN5YVhWpShA7lUrZibqkQVKJTLLOrkvZ1Um7ya7B5JrdjvEE Dm8iYZhxoz4B4495E7F0PBZZKNlZn97WmiXowaMJlhefL1Dt8Xk8iXnj81WTapuk6+ogbq7OJHV2 Q10ulatLJetSrakUQTcEZMLG4bNrAPUsqrFtO5Dw1VTlElWxhZKd1faS9gbWPcdrWF78/lDS6/d6 a+aNz5ckyRTJ5HIQtzHnJblUc66xrjFXl8zVtdeliZ+wJl2TwuFPpbxWjbeVfUIpBFd1U0111ULJ zmp7Weci1j0nkiwvgUCk1gpYVnLeBIO1pDZNGhobG3Pp5kaLNKYXNzbnmuFqzHXmsgTdEJDJNI5A Og2oVUjDROCym5M11X9cgv+8YZ3vqp42TMhCyQxzh8PxXCAcCGTmTSSSI7kG0pzP55sbCvkAyTd0 5QvNhXxzfb65p3kRQTcEZKYBR7ihIeDPBJY3wMThynRkamsXSnZWYv1rl6KLi9Y1wu6PxaoXhWKh UOO8iUYXkUUtpGPJkiVtLcuWhMiSlu4ly9qWwbWkbW1bG0E3BGRjC45YSwugoVUtMNVwNSxvzGYX SnbWgW3euJJ1cbkW2IOJRDIfSUQiLfMmkciTfDvpWr58eWd7z/IIWd6+dnlPZ8/yzsLyzo2dS0mC fUKWtLTjSLS3AxpZ3w6ThKu1t6W5caFkZx3YB69ZjS6uelE77GHbrlsSt+Px9nlj20vIkqWku7e3 d8XSdb1x0rt0Q++6Fet6V3T2rrhmxQpi4yCkfSkOe+nSeKw9vok9naqDq219++KWhZKd9ek3XNeP Li7ZipZDoqlUblkilUgsnTe1tcvIshVk9bp161atuGpdgqxbsXndVauugmvdqutW9ZIUDkKWrsCR WrEiUbU0MbQCJgfXkoGlHW0LJTurbfbARlk5cxVZZZHf/e53t1vkD744/KR82SWhC/QYmRB/REak 3eQdYz79Ofkg/G4CrRKrSUL6NtmK8KNw7wb/stA1+zYwV4MeBrWDNoCyoGtB11RoM6gHmBdAjyGO 61jcjEv/zN5HijXS85zuB10P+orranIf/B6Qu8h2dh1pfbES7qu4/qD8GLkX9mPwH2JhOWf4q8l6 +C+C/cuuq2dnlbuJgmsE9rd5Xh9jOrCcv+O+hXxXAncn+FbwLRV5o9z+z+RLlbyyPB5kdqWa7MP1 e0GbQIdB16J8GD4PnA333bDrkEsFN0AerMcXrJ/7L1M2qJtbedN+kvyaLCdHsKAVMIC1kq24J5YL 38finL0TViEfYF/6ltgU+qNoEWU7xbT0ropdwLLmQMUukmVkTcXOvmvdVrG70FVEK3aZPxvtQeo7 yfXkY6SZ9JKbwW8gG8gWcjXZAZ/d8LuZ7CJJ0kFaSJ4sRchLiORlCBbqZrKHfJKMAJkkV5KPI8yH EXIXzknEnnxP5By/5Pfn8G1DWotxJCHJR3h8f5jCKrhuhZ2dr8f1sqQtPJ2P8TQ24dqHgd+DfDDX DnCWq0/gfANhvXHly3uzOfIP71U3Z7Yc6DHFb5PTIFQKzknQGEgkjvjtccVscybA/UHOS+GmtsnZ KViWtfPrzV9pO3BWPIXOox2XT5W2ssunxp2+Ns7bryjz1sWcl9xlbyXYZvfEAWsFCcRbsW0EHQEd Bz0LkiHQKfJT0CxIFE+KD5fW2IjhEUTk7QmKj6B5ODi/CJoFiZD+EeTlEfJG5YoEqb41rhos+W9x VJX4LaC8OFugA6DToBdBLnIzzsdBsyARtofh9zARxIfFh0qWbfVo4jfJfpAgfo14KVP5mBKPjVu8 bL467g20OT2WeB8ZAAmkKG4gUyAB0d4L2L1sP7LYX2pezIuwf1zztFkIfxhCH4Ygh5HkGM6Uux0Q C394PBBm0f9pyevjuE+V8oWyZdyKtg2gFG4jVNwh7iJpYov7wGvAPwReDb5dvAHrCyanM+612g4g vW4E7xZDpAHePWIYLdEW+8Q4e/c0go2WPOV0Rkv1jW3I8SoxyoN4RZMUwN2iUmqzk0+LDi/8u8ZV ncl3V8kKtT0j3iEquBlt8QBCRWzvM6KGmtV4TraMq2bb0R5D3IJsbkGx2JCRopR38Yh2lRBRj09c LSYwL7XFm9B1h8DXiDWcPyo+hBveFh8czybsqafFL3PUl1ikSH5luWmtHDc9bVM9qshekFEU70EF 3MMTPzqeXdpGerJiPcmDBJTxftj280Z/CLZDqLVDqKlDqKlDEOoQe+wmHoTPQYRpFW8nI+JechR0 HHbWrEIlFOgkt9TVt02KMTGKgrGeRlFSXI2Pqx4mWbTkD/Bg0XHD09b9jLgb7Xw34nTEPeORaNvN T4uNPCuLxqNVDDBSQnN9RoyUqwbAMKuSZ8QECoIVTLVYUwrZxR4bbtaQbUKFvxbOsUIS/k54iVU3 +4o75z+q8B9X+H8r89kp4Vz5phD+lvHpnoTwM7ZvR/gnchw2QXhaeA4dlC28KkwwKYRXhEnSDf4y 3DeAT4K3gz9VSv3QnhAmxsEg+9dLZphlVniu1NRasdiZiiVSVbH4w209GeH7wvcwNbKFfwCvA/+e MIWx2BaeFdiXHmxhSthDfgj+XaGDXAH+eIX/QDjLmrjwpPAEemtbGC95mAjFksLY6ZLM2HdKpOwa aLXPCt8RTmFYsIW/KGXjuHpyPFtne59GfFR4RNhTqrb9PZrwEB2kbyLQGHmZceIXHi51skiOls4m 7UnhqHDUiXY6GafZOSHmM/nm/AkxmUk2JzuTJ5I9lnAPOpDjAu5f4TDOnSQpoPWAHNBR4WBJ6iz2 vI08sXwJ5ADOY9w2jPMItxGcrXnfC9zWLdxBNoIExLEPtB90APRZjHpHhdtBnwJ9GvQZfmUPaBS0 F73JCBAjQIwAMcIRI0CMADECxAhHjPDUR0EMMQzEMBDDQAxzxDAQw0AMAzHMEUzeYSCGOWIAiAEg BoAY4IgBIAaAGABigCMGgBgAYoAjHCAcIBwgHI5wgHCAcIBwOMIBwgHC4Yg8EHkg8kDkOSIPRB6I PBB5jsgDkQcizxFJIJJAJIFIckQSiCQQSSCSHJEEIglEkiMsICwgLCAsjrCAsICwgLA4wuL1Mwpi iGkgpoGYBmKaI6aBmAZiGohpjpgGYhqIaWHvGfFcz18Ccg6Qc4Cc45BzgJwD5Bwg5zjkHCDnADlX yfoeXhgCms0+0H7QARDDTgE7BewUsFMcO8Wb1yiIYYtAFIEoAlHkiCIQRSCKQBQ5oghEEYgiR4wB MQbEGBBjHDEGxBgQY0CMccQYb7ijIIb4jzfK/3DVCJ+lg26MtcIB2sD5fvIa5/vIy5x/hpzh/NPk BOefIp/j/HbSyflekuUc8XG+h9huWrI7vT1hdAEbQdeBbgYdB50GPQtSuO1F0E9Bs0KHUyt5lY3K ceW08qziOq1MK4JX3igfl0/Lz8qu0/K0LCR7qgST96PoWsgRft6P8xsgDCI4d3Nbt1BAugX0sx04 CkLB8b2efKORvthIn22kpxvpkUbaowprqcR7uiTpFCA4HXSM7Er7ZVBnNrcSPdM9T7wWsUvZJfYE PVtmDU4T+GugM6AToM+BOkFtoGZQBmTza40IP+jUVqI8C8qBUqAkS4KE2eMhv8/tTAomPTH+lyZh b1cp5eqBe7qUy4NNlHIbwZ4s5bbbPSp9guTYrIh+FzV3Cvx0yT4P778os2+X7KfBTpbsAti2Uq4F 7NpS7sd2j0m3Yn3GoFsqfDPyzfimkn01gr2/ZDfYTLsjl2WhG5FQBr4NdJCcB89UUHXllNIl+wqw 2pLdxUK7SY5VPJVJMxfPBWJcHIdAb0zSQYk6uv26/WX7NcD/NwoWzeOV5IQE9mKGfWBPs882fxOB e+xSj8bCY3w4U+FFxr9rn8gctL+OuGjmCfurdot9T/OEG5fvhtwHeRIl+3PJCeGUE7AP2Hl7T/N5 e7e93r7e3mRvy+B6yf6gfZaJSYbooHDqCXsAEV6JXGRK9trMBBdxjf1J27FzdlfyLCtfsrQcb2fz WVYCpK2c+iKUb2NmgrXxrZ0T1Oc0KheUo8q1Sq9yhZJWapUapVoJuv1uy+1xG+wPLbfsltyCm7iD TJ2miT2bCMr8EYUssbPE7ZbAzmyphsWcQN0CWU+KAbFf6N/cS/uLUx8i/duTxYub0xNUe/8Hiq50 Ly36+0n/lt7i0qb+CWV2U7Gzqb+oDFw7eIbSe4ZwtSjcNUHJlsEJOssu3VFV9K+CJ7nj7qpJQmns jruHhkg0/InuaLd/pa9rTd97nIYr58veLhe93FpdvL9/82DxseqhYhuzzFYP9Rc/uzn5wcFJwSuY q/smBQ9jQ4OT0ojgXb2JXZdG+oYQ7DwPhtbsQTCSYwzB3L0kyYKhP+llwVBH5XBZwBEuxRjCaSbJ 8nBZzeThJMrCnXk5ubrvTDLJw2QIeZmHeTlDLguDFgNs35lslodKJ+kgC0UH00kuWAOPyLYRpNnm QSjmdTwim/LEiq2XgmQqQTrmg3TwtER6KYxdDhOsnwsTrEeYpv9Ps6O3iY4vHt333Ood6dXD6dU7 QMPFw5/4SLR4YHsyeWbfKPNIFsXs8PYPfYTx63cUR9M7+or70n3JM4ufew/v55j34nTfGfLc6i2D Z55zdvSVFjuLV6ev7xsa714+2POOtA7OpzW4/D0iW84iG2Rpdfe8h3cP8+5mafWwtHpYWt1ON09r 9U7W7gcGz7hJL1PP43xc0DW04eGq1FBv2BpZyRr05BWp6L6qpyRCTxK9aahopHuLJoh5Nfc09zAv 3GfMy4PL3opXdN8Vqaqn6MmKl4XLvnTvvMIsYYHYxp/+YmrzBwZZUyk61793ne1mhntHyeqdffjB vYcTjstDkt3vafa8lxkdHd3NTqNNuwnpLzZu7i8uYduQFAVJDfcN4VrL3DVR5NfOqOrqidkpeDZB CLqHJcdsTZS9oMJhyi2KMCaPKQJbKuwZj1e33fwMRvD9IKzjhL2lVr58FvaO12bY+mXPeGtHmWO5 yngpnmpjen+dgDKeKXPH1wzL0czR5qOdY5mx5rFOpo79xAlctE+wobTUekIke5p2zxUErHuGSPm9 GUjvoVKimic8xixNTUNNu7mqJXl3Uc+9SR6FPl+wuyux7ubR75mrkPL13ZVIUBPl1EfnYKMVEPcc 5aByJGXX/OmSgYuQ/wuCZIftCmVuZHN0cmVhbQplbmRvYmoKMTYwIDAgb2JqCjw8L1R5cGUgL0Zv bnREZXNjcmlwdG9yCi9Gb250TmFtZSAvQXJpYWwtQm9sZE1UCi9GbGFncyA0Ci9Bc2NlbnQgOTA1 LjI3MzQ0Ci9EZXNjZW50IC0yMTEuOTE0MDYKL1N0ZW1WIDc2LjE3MTg3NQovQ2FwSGVpZ2h0IDcx NS44MjAzMQovSXRhbGljQW5nbGUgMAovRm9udEJCb3ggWy02MjcuOTI5NjkgLTM3Ni40NjQ4NCAy MDAwIDEwMTcuNTc4MTNdCi9Gb250RmlsZTIgMTU5IDAgUj4+CmVuZG9iagoxNjEgMCBvYmoKPDwv VHlwZSAvRm9udAovRm9udERlc2NyaXB0b3IgMTYwIDAgUgovQmFzZUZvbnQgL0FyaWFsLUJvbGRN VAovU3VidHlwZSAvQ0lERm9udFR5cGUyCi9DSURUb0dJRE1hcCAvSWRlbnRpdHkKL0NJRFN5c3Rl bUluZm8gPDwvUmVnaXN0cnkgKEFkb2JlKQovT3JkZXJpbmcgKElkZW50aXR5KQovU3VwcGxlbWVu dCAwPj4KL1cgWzAgWzc1MCAwIDAgMjc3LjgzMjAzIDMzMy4wMDc4MSA0NzQuMTIxMDkgNTU2LjE1 MjM0IDAgMCAwIDIzNy43OTI5NyAzMzMuMDA3ODEgMzMzLjAwNzgxIDM4OS4xNjAxNiA1ODMuOTg0 MzggMjc3LjgzMjAzIDMzMy4wMDc4MSAyNzcuODMyMDMgMjc3LjgzMjAzXSAxOSAyOCA1NTYuMTUy MzQgMjkgMzAgMzMzLjAwNzgxIDMxIDMzIDU4My45ODQzOCAzNCBbNjEwLjgzOTg0XSAzNiAzOSA3 MjIuMTY3OTcgNDAgWzY2Ni45OTIxOSA2MTAuODM5ODQgNzc3LjgzMjAzIDcyMi4xNjc5NyAyNzcu ODMyMDMgMCA3MjIuMTY3OTcgNjEwLjgzOTg0IDgzMy4wMDc4MSA3MjIuMTY3OTcgNzc3LjgzMjAz IDY2Ni45OTIxOSA3NzcuODMyMDMgNzIyLjE2Nzk3IDY2Ni45OTIxOSA2MTAuODM5ODQgNzIyLjE2 Nzk3IDY2Ni45OTIxOSA5NDMuODQ3NjYgNjY2Ljk5MjE5IDY2Ni45OTIxOSAwIDMzMy4wMDc4MSAw IDMzMy4wMDc4MSAwIDAgMCA1NTYuMTUyMzQgNjEwLjgzOTg0IDU1Ni4xNTIzNCA2MTAuODM5ODQg NTU2LjE1MjM0IDMzMy4wMDc4MSA2MTAuODM5ODQgNjEwLjgzOTg0IDI3Ny44MzIwMyAyNzcuODMy MDMgNTU2LjE1MjM0IDI3Ny44MzIwMyA4ODkuMTYwMTZdIDgxIDg0IDYxMC44Mzk4NCA4NSBbMzg5 LjE2MDE2IDU1Ni4xNTIzNCAzMzMuMDA3ODEgNjEwLjgzOTg0IDU1Ni4xNTIzNCA3NzcuODMyMDMg NTU2LjE1MjM0IDU1Ni4xNTIzNCA1MDBdIDE4MiBbMjc3LjgzMjAzXV0KL0RXIDA+PgplbmRvYmoK MTYyIDAgb2JqCjw8L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAyOTc+PiBzdHJlYW0KeJxd UctugzAQvPsrfEwPETZQqkoIKSGNxKEPlfYDwF6opWIs4xz4+9prkki1ZFYzu7MedpO6OTVaOZp8 2Fm04OigtLSwzBcrgPYwKk14SqUSbkP4FVNnSOLF7bo4mBo9zKQsKU0+fXZxdqW7g5x7eCDJu5Vg lR7p7rtuPW4vxvzCBNpRRqqKShh8p9fOvHUT0ARl+0b6vHLr3mvuFV+rAZoi5tGNmCUsphNgOz0C KZk/FS3P/lQEtPyXz6KqH8RPZ0N19uKrGXs8VgHlLKITomPhUcr4M3baNMW1w/3BDEWswJAy1LID In6O5BOSKY8oxeCfRjKPZI0h55GMtrKN3NzlV3chFHyzFY2Efw07uQ1SXKz1M8TF4fDC2JSG227N bIIq3D8myJboCmVuZHN0cmVhbQplbmRvYmoKNCAwIG9iago8PC9UeXBlIC9Gb250Ci9TdWJ0eXBl IC9UeXBlMAovQmFzZUZvbnQgL0FyaWFsLUJvbGRNVAovRW5jb2RpbmcgL0lkZW50aXR5LUgKL0Rl c2NlbmRhbnRGb250cyBbMTYxIDAgUl0KL1RvVW5pY29kZSAxNjIgMCBSPj4KZW5kb2JqCjE2MyAw IG9iago8PC9MZW5ndGgxIDU0NDQ0Ci9GaWx0ZXIgL0ZsYXRlRGVjb2RlCi9MZW5ndGggMjc1MzU+ PiBzdHJlYW0KeJzsvXl8VEXaP1pVZ+u9T+9LOp3udNIBOqxJgECUo2wihB1MkEiQHUQJIIKigIog 4ICO+4o7LkiAgAGZAZFxR1AcFxwFFREXlFEGEUj3feo5fUIY9b7z++N+7p37efvkPKdOna1O1fN8 n6WqTgglhHiAiKRD3169+8jV8ixCaAXk3tl38KBhM89fcyXs74V1f99hIy60/FVZQYjwPBzvMGhY +073BkZfBPv/gP3akb0qqwbfMfVfcDO43nXnuOljZxS9MuAtQnxwPTk0bs7s2KORD78jxN9AiDx8 4oxJ09+eV30/Ibkm2L9y0thZM0iQmAlJzIXz1UlXzJvY/8jjQUKS3xMya9vk8dPnVt2q3U7I/Wsg 76LJE8aOP+h9Fe6XhPuRzpMhw11iuYyQHcdgv2Dy9NlzY5tzRhPyspc/74qrxo39i/mz1nD/pVDm 4ulj586Qj9kXEvLaZDg/duXY6RMCtR0/hX04TnvNuGrW7Ewbcjchr7/Nj8+YOWFG4QeV22EfymP9 K+F1ZyP6jxE/bikRYKHECkcocRIXUA/JBRojcaAFpBXQNrBQUkzaAm1PSoCWwUJJF9IVaDdYKKmA hZLzYaFEg4WSXmQA0IFkGNARZDTQ52ChZCNpIJTeSe+ENC+ThVwIR4Vx82ZeQYonzZwwjcSuGDv7 SuKFVoZfJgNnsRZp2iINFTNtwkw4tyXF9yJ4HiMm2PI1iVc56Hh6GdVoGxqkFrILaquWjCKDSR9c KXFAbXjhrflblsH7dYO36gelr4azRsPdnJnJxAUrT62E1Eq4pl/mE2InAlBn+iRRM72IC7a5cKwA zuwF60WQNyDTQIbCdhjsV8GxaliteBcVruR3yoVtAZzVC9aLID0U1hGwVsE6OvMDtA0+I5MLV/Bn 58IVufiMTpDfC9J9YL0IVv1ZuXB1AxkJ2yrYjoJrRsMqkC5wdjdYK2AVm8vNy8zvJUFOA5wzGc6Z DOdMhqsaiAK5K7O5DZhbDdeNwpJ9AnXghRwBrl+Jd+d3Jtm2bQeLNHbm2MtJDFs4prfw5AmXz8y2 cyzLk4KwlK6C55uk+6USuDxH3wrvkonMbZKYVRYZ/4kgAgJpvoyQykEDBwHHxQr3SPvSQ2iJcj7d AAyYAQ4hYlJ6iUsDtj7wOuU/SRAoo5QEpe+tO8hJUwY4xJRJgyybM01QZgtQK7ECtREbUDuxA3Ug dRIHUBXaoQlaxJk5Q9zQFmdAatxAvcQD1Af0NEiYF2iA+IAGgZ4iIRKAdJiEIJ1DwkAjSHNJDtAo iWR+JXlIY9C2v4IE5gHNJzGgCaDQQiQOtJDkA00C/YUUkQTQVlD3v5DWJAm0DdIUKcqcAJltBbQt 0nakDdD2JAW0A2kLtCPQf5FOpB3QEtIeaCnpkDkOnM9pZ9IRaBdSArQrKc38TMqRdiNlQLsjrSCd gZ4Hrf4zSH5XoD1IeeYnaI1uQC8g3YFeCPzwE+kJ9J+ACecB7U3OB9qH9MgcI32JBvQicgHQfuRC oBcj7U96Ah0AfH2MVAJn/whIwukg0hfoYODzH8kQkL0fyFCkw8jFQIeT/pmjIK+VQEcivYQMBFpF BmW+BykeDBTkHXIuJUMgPRrk8XtSQ4YDvQzpGJCa7wAVRgIdSy4BejnQb8k44PhvyXjg+W/JBHIp 0InA+9+QSUgnkxqgU8hlmSNkKqmF9DSkV5CxQKeTyyH/SjIO6FVIZ5Dxma9JHZkAdCaZBHQW0tlk cuYwuZpMATqHTAV6DdCvyFwyDeg8Mh3oteRKoNchnU+uAno9mQH0BlKXOUQWIF1IZgFdRGYDvZFc nfmS3ETmAL0Z6WJyTeYLcguZC3QJmQd0KbkW6K3kusznZBmZD3Q5uR5yVgD9nNxGbgD6J7IA6Eqy COgqoAfJ7eRGoHeQm4D+mdycOUDuRHoXWQz0brIE6D1kKRy9F+gBch+5Fej9ZFnmM/IAWQ70QbIC 6ENIHyZ/AvoIWQl0NVkF9FGgn5LHyO1AHyd3AH2C/Bnok+TOzD/IU+QuwJmnyd1A15B7gD6D9Fly L9DnyH1AnycPAF2L9AXyINB15CGg9eRhoOuB7icbyCNAN5LVQBvIY5mPySbyeOYjshnpi+QJoI3k SaBbyFNAtyJ9iawBuo08k/mQ/IU8C/SvSLeT54DuIM8DfZmsBbqTvAD0FbIu8wFonHqgfyPrM38n ryJ9jWwA+jrZmHmfvEEagL5JNgF9i2wG+jZ5Eehu0gj0HbIF6B6ke8lWoO+SbUDfI3/J7CP7gL5H 3id/Bfp3sh3oB2RH5l3yIdKPyE6gH5NXgO4nu4B+gvQf5G9APyWvAv2MvJbZSw4gPUjeyOwhn5M3 gX5B3gL6JdJD5G2gX5HdQA+Td4B+TfZm3iFHkH5D3gX6LXkvs5t8R/YB/R7pUfI+0B/IB5m3yY/k Q6DHkP6TfAT0J/Ix0J/JfqDHkf6L/CPzFjlBPgX6C/kM6Emgb5JfyQGgp8hBoKfJ50DPIG0iX2be IGlyCGiGfAX0fzH9/3lM/+d/OaZ/9x9j+jd/gOnf/AbTj/wBpn/9G0w//B9g+qFmTJ95DqZ/+QeY /iVi+pe/wfQvENO/aIHpXyCmf4GY/kULTP/8N5h+EDH9IGL6wf9CTP/4/yVMf/9/Mf1/Mf2/DtP/ 2+30/15M/yM7/X8x/X8x/fcx/fX/H2A6j0RiNAcQWcCIEY/68fhrB4zZqEBbAyJ2A9TqDRh0MSDK UMCNSwAjLgU8mAISOg+4cG0sN5Ys3MMjPnBFK8DTDoB2F8AV/QCbhgLeGFeMBYmfiVdE9CsyX/4H y7jMuIP3HFz8yd+wjP9HP2krCcEalp4mITEJGoYAchBAFdimp2SO8ON8y76FkxuzKwFJWUungERs JzvpMbhqHXB1A/BfALD5QcCTOwERZMDI1wENhsIiQf6dNJRpAM3xKNTlo8CNAXjrG0AO/DQIuLaA LBb2wVWLQU/mQ90MBoy7jQ7IXA3oekC8CTTIAMC+GXRhpirzp8wdmSdAfrcIr6OODQOujgNu+kH6 CCS6LVxxF6DEAXqHeRPokEsAx7YID0G93i/UiDQzCbSkAFrxGiiDCFphN93BUnD3CeRrGqTzhZ5w l8cz9ZldcFYE2mQyYM1WWkb7srg0OlMJPOiHZ8yFu94HUr8ZlkaQ3f3UJh3LPAF6JgTt2w/ep4G8 Q3cI6aZF6R68oqGWWoPu6wfv9VeQ1700QV9mV0k2qZOkSdeCBHpBk3LeeRquPEx/YTfAskB4VeyT uRCshsWAk1DbIPWf0zBtTwfRkaw1u4o9LMwEu6MYru0IemUK1Pe9cPfPaIpuZja2R3hcfE48Leem D2Yc0CJJQMyHyMvUDm8ao7PojfQD+iXrycawB9gXwp3iM+J7ylh468tA29wG6PcLddOudAi9lE6m 8+kSeju9j+6me+kRdgEbzqaxH4XJQp3wF/FCWIaJs8SbpFuk5fKRdFV6V/rd9C+ZTplbQL/OBx1y O7TJw/BmWwB7PoblAPmCStRKHbDEaJyOoNfBcgO9jT5G19BnaAM8ZS/9gn5Df6L/oqcZiCKTWQ6L s3xYEmwmu4bdyR5ke2DZy75nvwoBIV9ICWVChVAtXAWlWiKsgmWT8LkYFveIGajnTtLd0iPSGuk5 aad0TLYpN4LB9vaZx5vaNH2WJuml6bvTG9INoJF80IZhqIU8sEyGgEyOBW08FzTRk8Dn+6gN6i5M 29Dz6QComTF0Kq2jc6Emb6b30yex7C/QbVBLH9Ifocx2FsEyt2Nl7EI2CJbL2ARWx1axO1gD+4Cd EhTBKjgFn9BG6CvUCBOE2cI84W6hXnhb+FT4QjghnIElI1rEPDFfTIopsa84RrxafFj8WvxaGi29 JX0lW+Tp8i1yo/xPpbNyvjJYGaLUKCuVzcr7plrgzldAE73YUubpQWGR0FvYRP7ESsQQe4e9A/w8 howXKhlwKltDl7LraQMrkObK3Vl3OpAcE5NQ16+yR9gJ1l2opP3pMDKVddTvJnvFZ2FTIb5Cjorb 4N3egTvPlW30BvajbCMbKGHl8My/CR3ElPAW2S8coIr4KPlEtNAAPcqeFgYDF/xFPF+qInHhQfKC UEevJ5tYb0Isp00rgI8H0mcBF4bTTvSkkCECGwhc1EXgtsg09hFohWvA7riHjhcngW1RQueDLnkK pKK1dKXcRvbRN9gUcRnz0AbCxGfg7cppARUkL7mZ1gj3yz+yj8FO2iNayGfC81D6PewFoVI8Jg2l k0ECrgfrpi6ziMyTqsT36CQi0JGkUOT2yXyhkxiHLdhJgDbtoZaDgGSN5AKhEnKCwDkDgC9GAELc D8u9gBMicNAUkPFLAMXeIQ3ycNZIJkkOCqhDiPhWeijYhE+BtTEJLLI7wKJ+H+ye+XDHNaAnV5I1 dHH6OtAmUZCcz+gAqQ/bI/XJtGXL2MdsGLv73PaF2i6kQdCg34K1Qsj50ktkmfgh2LY9MivAVvCB BsqHkl0O+uoQvOUP8ISLhB2kJD2Qrc/0EUBnSQfArn06k0ctYEleAdbyNvKkIpGxSgrauJ6+B+97 HZnAhmZmCxPSU6AeVkItaFBbVwP+3Kr1HDH8Aq3H+edVdO9W3rVLWWlJp44d2rdrW5xq07pVUbKw IJEfj+VFcyM54VAw4Pd5PW6X6nTYbVaL2aTIkigwSop7J/rUxuqTtfViMnHRRW35fmIsZIxtkVFb H4OsPueeUx+rxdNi556pwZkT/+1MTT9Taz6TqrEKUtG2ONY7Eavf3SsRa6SjhlRB+rZeiepY/VFM V2J6FabtkI7H4YJY7+DkXrF6WhvrXd9nzuRlvWt7we3WWy09Ez0nWNoWk/UWKyStkKoPJGasp4Hz KSZYoHe39YyY7FCo+nCiV+/6UKIXL0G9UNh77Pj6wUOqevfKicer2xbX057jEpfXk8SF9c4UnkJ6 4mPq5Z71Cj4mNoW/DVkeW1+8Y9mKRpVcXpuyjU+MHzu6ql4YW82f4UrBc3vVB649FDy7Czd396xa 0vJojrCsd3BKjO8uW7YkVr96SFXLo3FOq6vhHnAtK+xTu6wPPHoFVGL/YTF4GltcXVVPF8MjY/xN +Fvp7zch0Zvn1E6N1ZsTFyYmL5taC00TXlZPhs6LbwiHtS1g6od7x5YNr0rE63vkJKrH9oqs95Jl Q+dtDGmx0LlH2havV116xa53OLMJm71lYkLzMUzh6TzVf2hzzVJeokQ/YIj62LgYlKQqAe/UlZMJ XcmycV3hNPhVU7iqfjy0yJR6c8/aZWo3ns+vr5cK1URs2b8IcEDi6Pfn5ozN5siF6r8IT3I+aWY1 OG6k61Op+jZtOIsoPaFNoYzn435Z2+I5jSyRmKHGYAPVRwZD3Y6t7tYeqj8e5w28vFEjl8NO/cIh Vfp+jFyes4Fo7VPV9ayWH9lhHPGN4EcWGkeaL69NACc3oBHpqzclm/+cqt/Te3K3eur/vzk8QT/e f1ii/5BRVbHey2qzddt/+Dl7+vGuzceyqXpPzyohh2VTLEfAo8CUo5tP5jtVtnqxEP5kZOrxjYoJ uBJzaKxPvVp7kU6rLfH4f3hRY+YYvwo3Zy/LFrO+W+rc/e7n7J9TPNsyAQoMqrL/8FHLllnOOQas pj+wX3YDHE+GV8VjPevJCJDMQvhrzOzoytfqnHoNqqwnPwH4T8/K7p5zYk42XQ0/zp1ti/sA0C1b 1icR67OsdtnYxszCyxMxNbFsC9vJdi6b0bvWYJzGzNblOfV9VlRDXU2m3UAoGLlwfYIuHbJeo0uH jaraooKnsnR41QZGWc/aC6vXF8Cxqi0xQjTMZTyXZ/KdGN8h/Sm85AZmwvNztmiELMSjImbg/rhG SjDPZORRMq6R6XmqkccgT9TzNMzjP44xPYdXteQeFMnqtnrvPNjAjI8PAR9L+ENnRyN/xmUP+Ymq VGX92TuiTSqSY8pg012m7ywf2abZ7sPlXbuXL45ezn7O4+oGV8KVcJthecrTFZalvi7+lP+7wG2B 24JfBL8IjQs7wo6cG3JuiDwEy3uR93JFfYk+l7c99lX8eP6vifUF7xfuSD6dfLpVYauP2lyfurZ4 cdtFbRe1c3Ro3+FQx90lrOyjzk1dx/1/ernn3KW8uHzn/y7/1ctniOZS6P4zf/tq1hhnxb9MOSYU lce+LGrDt28N7r751LqmSSox8dFZ5uYIAyXz00NYrbSPqOQ8zVLkpER1KyZVbaQlG8kjDhNsNZfy iOMyIqhCTBCE510PrQim1BM1TSeOqieOkh4VPSo6dqA1NMlcpV06dymRFVh8KqUH7nqnctS2RfOK zkukaCo9ZBs9SR0/7G86vbd62d0v/SWdl46d8/wJmq0Va6Uys0WlxG3mJbA8IlDYNpBHhMscgO0N qspGQOJkg9OJiUMNdjsmvtecFgsb4XTkOZjjeXe2jCn4/Vs5PQniKi1KwlLiB6tVZU2LaCqVf17R tYu2jarckx5CD9LPt225e9mo90437f8h/VOaj+x6Nv0ZvYnsJhYycJNFIMpzciMdrCWpUMEYtdAK YmEC7BC5q9JtEHhhV4FPsZpIZLX10XuhJMdrjh9Sj1aoFaQHp+pRtekodbnLO3YoKSvxeWWlqHPn Lpt3D76kU3lnYffuuuXJytDYS+G5F9BGNpVNBzQs1kIz2AyBVdJKeGSCsLA0A04IiTNuC6YGqodq 1MOkfeXRjh1IHbxkWdx3AWtNGzdt4m28FcgSKL1ACrUg44Wt0Iu4joir4fhqEUt5oqYG6umoXqit u3fv5pGzEZmvRZe0A9onlzk1u9Nms104wmmzWi8cITdmjmguvi8F+b6icprDc608pZ8F+8c1v91+ 4YiIzKnTxqmicrqecXWgWcJRUfJG7faAGS7GtuUJLcQb1+wiNp5D/DYbUBvPI+2hYXcD2Q3l5SXO WS//9k7H4U4yv9Nh4BJM/KCFrFaZ31LlOUS12Tjlec23PHvPBjkWUiPAdqAcrX8Fc9YPqxtWZ+ag NlCUl7Cl1qXONxySWbEGWW/PAN/FoZ45wz2jfaNDQ3OmKdOs4zxX+KaFanPmsWvkOdZrnUvke5W7 1TeC+9kH8gfWT5zh5uLy0vKahMRPDbzaIHFS8/JKCswya/FEaQczJWbVzPDF+BlYRRF+hnlVngvb xeXgB1wmnumaRcCs0GJwaYxwfYxnEBM/g+AZZFX0teW83eGla1JHgfJkTR0ms5VAa+pIDenKfxTW 6uqU8SOplEd1dy7p5Pe7QYzkRH5R0qP6Szp1dqnJRL4ij5i2b/WcDbMvnLrv0ffn3b7lmfnzn3nm hvkX17B9VKTnPT9mYzqzP51Ov7L23hfpQ+l7fjxGJ9OpP0y5hXPsAWC908B1FrJf62XRS47Ugm9I kFr0t0AqaHZX6TRxAVvJ7jOJz4vUTGSJCWaJ2hh904JVYeG1SChHncbMQcQSSHyruZC9IsheDmQv aHMtxJnH4BDklrBNAgEolfi9HPxeEo1JmsSkkHUrraCLiS6IdXo94g92KiqbQOx7BMqpq5zXJ6kB NMRfPOGSZaUMRL+EnW64YN/we75oP1u87vz5eS/0fXMMjnclogK1EGXBLUQByeA1YOLwh+LGZYUn MAeFClhjI8qVLg1ml2oPejzyCDvnGZcLEz9oZlWFVNQrRTkHBfgJ0Sg/Go044EjUxt822she0mzM EgjE8lQXY7E8wKv27+/mdDdpz1kk1YPTXZ24+LHmB9rcboYP1MxOFzOec1Czuj1sRNTL8/i9N8Ct 9RdgnNe/17Dmf+9pXCL58/jT8GFa5+5Sd/klabv8kvKa6Y2I0s9WbRvumGYb77jWfa3nVvc291fh r3KOhW3brS96WI4aUXPVqCr/NXMMavEgMcHWDC0cjlpUkyy/GQl7I5GwKRIWKDOFI4I9qjayJzYO clFXIw1u4m9AeJE3UmazGIJqMQTVwgUV0cwyK7APmJcLK32JLSIxotKums21qQcbw65iC8CI3soK SB5duR7FruY4aKZUhXpcl7eKpooeR5tqDrncnFeALHG0SzmuV3fpmoIYMtiV1NCamVlJLPTFk12A gzp3LisFqUNNAiIJOgW0sKyIypkuLFD4+P0/rrnvuhsfpFs8J9/dd+Kip3c+Njq6du0FFeN23LDr q4nT/vzgMs+ej79dW/XstieWju3IJXBk5rDoB95L0YbNQhBBvjHLgTyxsQV8W0NBjTdeMEIol42U DXZo64QFtIUzarG09kUjYrR1RGptT9htwRBo95jKpS2mJPGecHqyPQff3e35QtzlPXqAjjwKjX/0 VfVVd7m6K9WJr7zxW0l2v723/Ra72Nt1iWtOjjDUf4U61Tvef7V9nvcW+zLvrTlP2i1STECms9rs DlGh8FzK25T7Ki9RHsO30zJ4GZ8Y3MqeICE2WTNDKSUopt1tNLHbaGJ3Mxa7Z42JXRVjsSAXkdhC xThVMU5Vmk9VZiURtpOUJNUkgzc9/iK/KrmqbbCRdt0Q2ke30q6EQIVZmzF6VXEjvSPLHamjyB9Z PD6eqmmG5aZDXC7AiODMovMKIAtwB4ALravm8OLp4udQjEyhdGlOGvzBGUThlCTykyMb8u6atmDd Y9eXDPC6rbMab5k6ZYW3If7tC3PfnDZx/I2r0kc+eDlDbwret6T+xvmPeh9mc68fd+PNN8c2vTZp w/gxD7aL/uVPO9L/OsythTAgliptBdy20xe3EFvmlPY8rx+7jIyDEC4jNetwjlRCOJeRmnVoR6qY EPCQKqi4TCY9n1ewCamEVEZqRqqrBXeVbbLtftsztjds0gBhgP1OUXCDeBObLCiSxSoooE/s9jcF 0SsIomAnzGYXFeEl9hL3QelqzUJEEU4hb1rERjbxRUmyaLl5pRZDcVh0qwITP6B5YWmkXTS7ouUn SpWF8TJllZNxYbDavaUE3OIYExi/mF8DiUOb+TVsk6ORrsD2/p7rYK43jnOxrlAPq6g21OMVJypc 5byRy8uXtEuJgAdOpxOau+foqi3Envlsg7sc0PZ9zVpSLuS3LRfE3NwKfotqYAY4R/PaNGu5beHg cpuWLLflR2Dbthyxo5qmfvsjqbgrXkZLXCW+hEtwUXZ3083soT+/+mpDuoyOeVLYfObiJ9OPApTd 1TSN4wS3D+PSUyRKz2geDzanG6kVQQONFCtPnQURLcBTHrQO3UiFoGHQoBDpJ/GUB41FN1JrENub n4SNfS4KbSEUatvOq5dGHJaozxdxcxVmdYpiNGJ3UKIEQdmjcYkJRCyuXDjicKkCkWraBSjDQaa1 G5WgE2n/8LzcZbl3e572vGL7wPZJjsnsCTrahAVzB6mDdSsoFAGQRvVYfG6P502H0+vweB1OO8CN 5uEF0RyrwSdxODUfzRbqRadI93EoAvWiuXjxXGPUq9QF6kpVVP8HUAkiqAQpCapBFjRAJbgq5t5G y4iT3gWS13WDY9PvgUveueByDrzUcN8EAAXrocYFKyDwoSWmdikJWI6gCkLtQ+vArar+d7ZpiTcA Mp64Ly4A0BCfVwHLMDniL777rrixYe2KS1a0euZP7OOmFwfdfPsOapp92/HXm+hCddnyXY/dv2FQ Dz/75/PpOaPTJ9597fYNBzmiVAJ/+UAP5ZI2TNgC5vcxrBtXYzYRM2rLZCSKDDZKNLNRXPdPkDqQ mfBsRA5uqVh0l8R2VqflOWkeHUMFmtMqqtmp3Q5WTI6UH/XaLVFKClV+FbonajSgcp4KoEYLoHsS yPoSu9/frf7N4K2ao+quGs5bbaeFaC9F8/UK9YqNcg+PTRPGK+NNU93jY7NNV0cWm26JfGB63+9S Yrxhi3TMkPnLgDrjqTgeUPiBolgiFucHXLyUg+0MyplD93HbsZGrNKPMlCscsqnQqKJCg7MKmzmr cJaKnAW+twoABy947EVu+6qrigHZumqeKEp1FIE5ihAbbaTlWn6PwJjAVYEFATGA7l8AazHg59cG /LykgUZWsDHV7Gnoeqwl6x3VlRoqM6imLJ/xU7lCa4lS4HNQBXx37l7ICtdkbm7pJPKJS+3C9Rr1 tmBD4fTGYHG/aSMvGHE5u2DbpIama/be/Hn60EO3Hln7aVOXQX8aOPOJx6679llxmGNqh8oO5//w j3G16V/eW3b0BtqfzqfPvLxm55lPa56tbnz43nXroEbHgm7zS08TO5mhOXbZqQh/zCSaQXlwoOnA qGi22WcJAuMVOQhtPoGFnaZZ5u/IIGCmMUzoAZur6AJwgEKOrDAOVI/X1FVUHj86UD3BvQUVqoPb guWuct3wA4Hj/rxMBFlJdHa7u4wVNq1IH+3f2blFuPHnW8VTa1fclXanTzd+spZ+S197kMdRh4HU hEBqAiRBOgh9tpCI4aqHEYaVYFZ2srn5uN8eaVvDzmvdjN3Js6ejZ5+PkhRp3g/jfmtD8NrifXmq PR5IItUv54yTj0gead4P435rA9nxcrSo2+OBZPAszDfYSE60HVes4LewEe3aueNRWWoVdduj3KLA wMHxzRg3SDk5RnDZdBqOBk/gQWdQMMJJgnGW0CzTQoHPxk/34R19KNO+s/GBc4MP3EM5Wl7eHIN4 EQsiGwWR9YIcwliE01D82efzPEic0fJ5Jn8sv9KHWseHb3r2/YyHwbNo+2wBjJXDSpcyP23t7+fv lzxs+6aDZO5AryfX0/nibFOddabtavu1geVkGV0h3mJaZL3Zdov9tsDbrlc97nyAjw2RWJhvYrH2 fNM2luSYEmods5FokNigGKvb0RY1bcBI1ICRKIcRBNHorO1mat7KJpFU9qSUcVKqGWtSs5xaDLDG SYlTdTJnI71dC3UKIsAEEWCCCDDBWfUCFRrZJM1XgAcL8GABHiyY5TMc8ZhP8zHfqo6vGboNFRoG NI4367dm69ldXoOVyC2qLNagXquZWUfqqn/XKNJ/NJksK816V4bxTCDH422BOS0BiE6dccXh7Tu+ nTZ9yW3pEx9/nD5x++W3TJu8+NaJk5Z267dq2KI1a29c8LSQ0/reqav3H1g98Z7WxbuWbssQSnes fJkOn3zzTWPGLbn5TKZy1aCnFt747BojHsclOwr6cPUW4gRRSfDq8AV1ihoQaUKXdKy4eLMo+1W0 wfl+Lk/5UDaLkCZ0NYkmWbxZuP2qEexrOHuAP8yvZhXokRZBhxeteWCcFLrANDmB/B3UNS0mjmmt OIMHXcjhLgyuuIKu4pS1VZSHbgc5BIfDSwZTio6kXXXJIyi3j/K5D84bb1eqphNqiU7YfsD8XBpV rmk//VtzIKJFIc5afFobNPlcKNR/8NRzn/Vvj2rf8kFaabfwAL+WuNR/SWKicIV/enhS4trw9dEV 4eXR+/3PhLeFv/Ufjp2Iec7zP+xf6xe6tR4vsyJuLSZAtoLxmBxrFR3kGMNNwwh/JN03WFfbDbwQ eYaM5Rnik2dEefK20nJizR628mrmh63GYSvX1q5zzcRVxdwC0AJgAiA7FKIcFZp0xe9qliOX5mKu Valz5Ag0dVaGshLUbCQamprU1NGa6t+YhM1W4fmsrLSIa2nYEhAftwvDhUmKQuJD6Zmx1j9/7LDr B3emnV+avvkMVV5defS6a//52PP72VtPzp674Zn51z9Kh6nXXjlgwUczbMGR06jpowNUvT/9Zfqn 9NfpjS9sF0of2LzrwRWgqkFKtoBrcouYBE2okK5aTJSIrJiZXCEKFVQWLawCTH7CeCTwUVM2Ql/H 9e5RFePy5QgNnrISnwDrlt27dwvVu3efeXr3brj3TPqo2E2U8d59tSJJpqJiJoUCLRSYUiiKciGY Ao+wPYyx7RIJm2nIdMkoDA3qIXp4Eu8BqMBnlYOa5ygUL+NuV1zsdqar8DpfhcvWND2whntYM8gX YnfxFT4SU7MtZCtFcL4oOLHsJTaKT0BnozZIGpj7g4lEB2s+8pz8XEwQKmQSNsUkKl2t8Kerh2vA vqioPEpC7cNH4RcMq/rL8tgBqaG0jP+J3c+UCfRMRniLLUqP3Uh70IqN6YlQo5kmQqRq8OwV4mC5 3Nk6aYTBzjRkHb2TRnRIT4gc7wNnPXhZ1P347EmndHQxyZyKXPfiPkP0oXz/AsQdC2KSH8O+eMyK sQSLBe+D1OzA+2NawTR1OFX0s39qyCZOIgYxft9qVM+oaiWk7dUO6iTTZHOtulRYpb4hvSrvUI+p VpNUTUeywepka736s+1n+88Os2gT7aJDsFrMkija7A6TrCg2SJtkm0IJ4W/sxDhyTLF54RATBJ7n 43lCTLR54SpzVJJMUVmQG9kMzUxMtm80RhnbSq0A/FbNbYuRCYowdLC4RzwgCqtEKjZSqlkH23Yo B2zCKhu18X3VqexR2AJlocKUPzs/+FDn4RCs8BeEpg2H1KNHSbBHRfhoj0MVvPfp6BKpXSoF3tyS dkHcIqsD/y1Rd+1y7Nq1RNK3wI79663D+tdHh4yqahCdgknZmjkGzuRJLu3VdGZdzR/qSPglaAlN CHHBExeSRbIisJJ3WdWnzzU98OjH9J/39cmPlEhbT/Wh29K92Ch695ZrblvOLda7wbr+BvjLxT09 ungLEaGlWvOeGVHskxiZmJiYZb7ZLE8JXy3NMM+y3iTdZJWL/GYhWNQm6s81GzZrcwwBAw85GCgw e9zRNm1atyaR3CjUdF406iIm0AhpvCJoACzXWJqdey/BpGzjpiGotsNaIdcfspvrDlnm7SibeKlk 5BzZy7lKHl5o3K2lZ3VC8/C7FSZtEX43m4Xfw8Y5sIjfwRYuhvK0cKos/OxoDDsoYtneiROovjCR 7Zk41YAMpidkva/Cgv0TNanuo4PNfQ81FU1AKwbifqUeQtR/Z8PNsAKQV6jgbXA16irn4UQ9msj7 KUpc8RahQgdL0HgnPdKcTABcderCkZ2n72bJNW/Nmjhp8cpLFr68Iv1net6irhf373Pjw+lP6PTL kj1HdRt+14r0Wmlr9ZYJlz1VUrRt4aT1tR2FoS7/xMp+V7U+vVqxdZ3WZ+g8jDxPzHwtzZH2AR/8 uGkcm5rLqN6m+K5HtDE8FSOd7OMAGWfnLiQ3564i90vPCU/atwgN9tfse8mh3J9zXQ53ris3V2gj t3K1icTy+tpHei/xjQxNlqblXude7r5fuM9xf2QNfYKtcf3d4SFeEla9algEhPhsQ6tytD96typX nYSKOeD8CjlR0awmnReTZAwMhXBeAJsugE0XwKYLJGMmCvDGwws2XkpTKDpuNHp40BzYBNAakMh6 vC6saDjE+9jAvJxJA7KYyC+ASnUXlHQSA0qSK0jm87q5ihQbdp6XfuWro+kPH1hHe+78By3uvr1k 55+f+XL09MO3PP4FYx1/PP0yvfK9r+iI9Qffarv6jsfSP97+UvqbZdu4RnwY8HsUyJeT5NKQ5o7l 0Z4mXR5catRJTAGDg1v2QJ7Q8rMvZqZ5GOM3I2OaLdhHG8QcZGiE1HBeror1oaIvoKKtof7HDP2L wdAnDYaO/g5DZ3drzuHijh16ztM6CzmKSTZJJtEkyqFgOMhkqwWkziLIPr/X7/ELco4QiFO3A0jQ FIlTv8UV5zGFVKoN/BbRGs7xAX/A7/Z5GfB7YbxTtmulCLj8Yfrrc6NuqJ49a+C1t+9enF5Py29/ smPvynuuGLg2/ba01Zc74PL0nl1Pp9PPjO20tnPH3t88dfiXNlF498cA2/gcDCtp0HyyFDWZFIUI Iq98izlqJSaFc1t71V2qDBcujllidmYJ20Uz05UbwhlymPn/ABzM5j9ACVv3S7M8ma3WSgMoaiqP H/oNMnTsAJXii2fXx8SCMw8LqTN/F26Wtq5N93g+bV8LJZoOMrsFZLaQDtTCOd4cH6stopeZPNQt FBSQuDvACkmUoVD5eHkolQNRhwAepZnSZFFhgcF9BQb3FXDuw1hSAVgzMRYrqsUI+iF8Z9Ts2VD6 fnxn1Owl/N5s5sIiWpSLlZeLlZeLlZebjFmoBcXTgp6HJZQcd+k54lmp1pzI1omKlcIjUs1ePtQJ 7Os9LuU8MgM810tM5ETCkVBEkG1JtdCXzEuaCsVkojBoz40Tv9MTh5O9npgCe/lSYZxGrMB8XheQ qDkeJwUCEILeJXgXFWpFsxrl7Ah2WVmh6xxQ8AeUdgxQgQ+y8bpFwIUuLmEAm74yvXf1R+lHGjbS wZ88QukdyXXxyzdftXjnNfGuSyi7/YZj57Mez9OmgzNnbaGXffQBndUwqfHODjMWVg65edDSR3al Ty4c24W6OP5uB7IIuFWg+VqIYTUKSJmCsXola6D9iu0EnPWrHuthEq9aASkcPt3AE3D4tIbVTxkx Md53vrHrediHvrGkVN+27aBvW7XWt4lCfZsb1bfBsN7n3saulsakVdI6CRgCrK2VZDWpJ2J7opHB 5AA5RiR3DDJXEUHSe164TASzsvK9ISs/GLLC2QtNNVQtj4kfVLfAmp6jqzYsBHusprpuZkVTs73D u2QQs41fiavEtX0nN2j4t6oyXwtj0Yb5SlMnsEnybHa1vNS+1CWbkfcbrJz1G2kYXDyn2WzwvNng eTMvlBkFPWmxmIzjJuM4JE5sRvWStHLPlr+a1ejLsOqnY0JXlzxHw0CstSbmoTGP5hnsqfWIHpok ur2kD4AwEOIfWYTo795sVMVRtabuRLPRACak7gIeTfXgTkM26N+5DCoBw7DJ7uuUGeP6TW21s/rl G1/eTVcH18zvOesG4aczocY3p37GuYvbeW2gjiRyo2ajTBSiEjHFuJHLntbiCtNZTUC5FZBxhP8Y 9E78RoHIv6dADtfoGMeRjWPb3TvZe9CCP6/l5buXENkJ5VOFgGYztbFCARhSo5vJBG1k5Q80Oewu xB3gKEhIfGhFK56yuflhyWkTzIQyk9nqICYzs1hlbC8121inNmNjqYT3JGbf7aTxbmcazhnmxEON PXbsUPfu3cEdtlRK50FiDHvKU5CJZaQCUhGphJQzkJbgKYZ2CWAVx0nHWT/IglQx3CQ+okTLw95q idpiFnepE4lkEwh1gMIygebiL87vhgm8yUtsJHETlY3U7AQfRGSjQfC2hAcuU8fbH0fN3aOiQn+Z mhYShVCYytEWEOY0eVmOSZxju8X2OlSlrZ+tn1NoLRbaix1VwqXiHPtcxxK7ycokU7m9s2MQ6y/0 UjRTpf1Ch+Vedp9wt3K3aY3wtCK7mdPh6CAxryQxk81u7yCZIGmyDXUOpRo4XiaTGXxMu93hUHk7 1boXupl7K1tD7LTjBilmaqQdQYrMFnREdbfTEtNsC6zUuhVe2EGtcBZrhI2TEiMcg/iCATcSc85Q qdrIRr4Yk2qlhRKgE1uz0dUdZCzERwbWVASbULa4xwZ74Ra7h2rAg4OKUlss4LijJ7fkenTkYAOy eNZh+wuxZU4Dl34ATvsH6K/1r7fBsVZwjHcYn1zvsPDcbP/x+5vj5Y7iOPYhb+5S7ujUBZOb2kJu tp84VQ0eH6mr4UEewiEPDKdA5y407kq4aIK67qUF9NIO/lAZHUOll9Ij16WrpK2nf7r9osEPCGdO 9RHfOl0mHjwd49L1IFiheSBdZrotO6oEWO3IJuw1tuIYLY+v1BS0+TEcz0OUkDKBFx1TTOBPm5gi CCazyJhZMYkCKhmOFgZA8hwAUJ4Vk2XJQH2J8z+qA0kXTbA1tSTKR03MSmPWwdZa6wzrQqtkNTWb WzY0t3DgmB0K9T9AkA4JRMy6Kb81ZS3dW6iXVE2qAhsZvHVUK7q1gULh5qFp8MlFbGFdwLfwLuYX ba5SUwwItEF1xw7cYoA2bDBpfcrhvXds7lNu0jrpyU7lSn6onLsym0OQ7KQneW4Ck5o1Ua44vLB6 +P7xzR5I5urJXEj6ePLkel+2/Y0BayicOguUUIBOaPsHXxPY1tfOpKHBF4kLoLEXnl7Ix/6DPfip 9D5xkBzq1/qHndSrer05gZwcUVRFrzVgzRGfCWx2vOoQAoFgDovlaq5BnkEBLVwlVZkvUUe4xnhG BcYER4YvyVkeuI+poagguKNWs89Qij6jzX1c0lBR+JIxhSrG8EgcHscbTDF0vqL3GWPiW4QuxYhN K7wJeyAGhhfm0lwnaiEn8oITb+5Mcg7QR0+iDUnkFggXijQ7emddvZrm1q789xGV4PJ5VBLvJHJH A827Liop6URcpQxcPjKOLqWd36J9nmtIb96+J711zes098NPaM68b25/J/0he5NOpw/tTD/5jwPp 1Ztep6P+mv4lvYeW0pyN1Prn9Fe6tyc2gZzZSZAc06ITXNO8rL/a33upeqlXtNqigIgkEOQOCDG5 jSo9Z7zTZhx4keQmh+bCHnMMX5jUrEI5rrXlb24Kx8IU/sJBO1aZHavMjlVm/x8Vd1ZqbFmp+a2v Emqpv8+GNOr0qs1Wq+GsNFXocQt04qLgNrN43AXpZv+Ntb6j8oo7qn9Iv5FeSq/b9nDNgI43p2+V tjrcEzZPfynd1PS8QFcsGH2Tz8495kcBq9ZCHQZJPuumxd1WB3V3jozKm2ianieacUioCamCtIAb ePx17HroXg/1GBaZnoCK/WKjO1wK22Mb84tKXXw/t6hUzW6d2S0c/2hjblI/Duer2S0/rvWDRKHj 4sjFsWHW0ZHpkZnmuY55zsWWpc577M84G51HHF87VdDtMZfT63I5XU6b2Z3D4mG/RXbz8ZlS0Gz2 B8KhaABNUt3TB7+MN0IgQOL5yBbBoNPpMEUN3mjZ1Ze1UaNJx4OyMV5bNppV5l2HpRgnkzE2VhMr mFGwsEAoyA+yFh18yCHB/5RD5D/E1UT3Nb/nzWaFL3QomI0TcM2ZZZRUqgl2ytvjOEt9mCUf48KZ J9XyR7KOgGYxac5yp9rN5e7GAZDWoe50AI6GQ+UuQFo3rA4tUq7me2HNg7UZOqtbBNEC/oAnIbRj wIwJZEzsJ4w/ypbtevvaN/dVthoxIHN854grL2kb7/85fXTx3QPveTzdQdo66PV5D36QW1gw8Op0 He1484quVqXpaqGky7y+k3G0dAeQ9q0Ym/9MC8lYywpSGX015Y88Nhl9NeV3PDYXT0ksKgoAEHwy r7mRzdoY02PRL8oxytrznllKN9HseOojmhVb0ZRtwp8Mo/wLoy3PGG2X1o1BfkfT5vta2udgDoEq PFRzWMW5Enpkp4W3hX0kvriLedK54rJ0jmRfu/bUz7wXB/RNPtSAl9o0S9JZJVaZ3jCJfs7XflDe pWJ3Ux/xYtMc51PSEadiI8zFhyDLZq/B316Dv72Gj+VNMsN+YM32A1OzsYaDWju0p2tifhrzD/az Wv8M/0K/4P8dGMS4g2HcWGLZ4YM6s1sMZrc0M7tFzFrVOrNbmpndUuPjRsRZZteDYJVqTdZJa1Yz CIQpUkPBL9PVC7po6K25xNqd49On338nfWrGzr5rr/9gs7T1zPpP02ce/xO1fyMMOrNh+6bLd1Iv n1xCiDKHIyCbz3ua07pBq4cEHDpcX8jHNDRlDwjNB1BvNuoR/AtHiLLuzWGUAGtGxNCggJTZspfp A7KcukOrX49PABx9v8Gqj/17X0NnrDVJulq7k8Fy0tlV7u4c7Ef6uvq5+waryCWuKvclQfVe071O lvWOSlQaDqV8pVKprZfUy9bfN1wabrvUN14ab5vmmy3Ntl3nc0o+7tq4TcC/zMTxrwf/cf+kBntJ crSoIIIDISsmk2SB1zXbHU6nzetxu33+QDAIVkjFRokEY3xrc7v4VhvlM5ljRGIM7EgvfgvYZIr6 gl6fL+i2mc1RnxuSbpfN6YypLq+qutxmmynok5wuFVgUiiQJQdXpNJtNJgZlCrrdLhcxhQOBsHqB mQ4hMWID6oNVIxIdsjnGI9OhUCNdvl4HxZpwqLIJ/ImmcKgpOLD3hF6Hm5HQ8CY4CPJeIGMFy7Oy pW9x7gb4a4lD3bULSMUuI9WSgLPhBGfDBc7GBreFd6noHkghZLZBD4Twua5Zf8UBORttmqTxmSXA szNrSLOx2ULqaYkHHY4Sjxs2nhJwOnjPEqUPp6977UBBuKuFBr59b1Ai0vbwK+krX0q/VaQEvOk3 gK973HPXdwXCZ03h9Pc/L28QXgADtWZFbELf049z3JRBw/cB/rYxptmtEmc6G1IEQ3szGGK3OvY6 2pBSg/cNDQUMLWZtzjNGpOaUEdL5SR+DKDix8xKx2PY7iKz3hpq7CWJ3uOjrje5AKdzla80BCTEE RODEzC2DYJwf+kjrDgmxFRB3UmxtamNp7xAn08nyZOtnsiiJgiCbFLMsm2UB3BketY9ZrF5wY2VB Ngtcjft5rhBj1AvsJdusMgW4p9ZGFtLA3TULDMDf0ciCoO/NQzXLQgs4/XQTVJXVFiPC0EFsJWOM 55iBub2GEtesqAJsWdj/IqsIWHCz3bEzXgucmTqhOz3Ha46qTfrmMEd78HOPY0wAOHJJu1TKBFpZ ws5KnlrCuyhVIP3rA8A7Ed45abKZbeLWzHHwj47jWIRq7MxGrW02g1Y2wSqCx7M+xBXy2TEKvx3l E3fREt2vBd+GdW9663saH9z7wsto5IumF9l0oTLdZ/78WavoujMbm/7MuWd5egoLotbto6VEIUWZ Kskporih3hT5BVEqpAQ7DImJx+K5mnze9NDk7MREUG3HK1DLNXdheFxxX8JV4ltOb/v44/QUZchd v358F39SUXoKbcAn9dACopRSZFVgKYArWZIoe0EUChUe4QQviD/tefMDvMP/+O89gsbLwG0ri9OG 9KyPP6a3pafcJRfdxa3dizNHxIh4PmlFurA1WrHZbm4TsofbtLa3aVNu7+zrktOtTb82NfaaNlPt U9rUdlhmv6X1/f4Hws/Yfa2MeGMRztnjqadCz7baHHqp1a7Qnlbv+T5tZerlp3zUGB9sKI9wu892 vZdxVTqIp/ICecFUcZvScrG8uJ94UfFIU3VqomlKao5tie0N26/2X1OuLqUOKqrtC0oDneLe4JjW V7VmrSPtHT0cKx2PODIO6RHHOsePDsHRPLjAYcvOE/3WmDl6XIvz2U8OHIDkkPkAJUeSy7cDoxEO R0QINLJnNXuwGM3Uu7yRCK/cbNFJ7yJLp4hgbT1WHdsy1nPSgIMzfB4Tdw6R+wvjBdyG4M/mCd2G KBB5MxXwrgw+yLBAd1jRgfgHN6IgheUqMEymgkZ2qeYo0vg8kliyQ3JdUirnprvDwUYkGzMfGInj 6LMlO5ZjzCKaKO1QvqOcrS6n5Xx6oTaN3zqAwy8ChcH89jj6pz0q3/aolNsXbJf3yCxP7iEz2YsG olefXIG2pAPtfBRrOYgGPg6SlNF7kx1o7GO/ityxa7PLxo2UOn0cUSql1tSh6NccbbZg0KNLffUV t1oOpXocbUod0ud8NV9bp/e5lDcPVUHx5UMQSF0hBp3LSvkEKL6UlRbp48/PZ3ySS8Dv83n9gURS kBUH0wcawUlCxfgtU9dt6zvrorJp+yfRkt5LF8zLrQ9euffWpc8OVs2B/G2RwOW7rhrdafqUyY8l c28a0ee5xQMXDfQ67OGCQsuVbc+rrgvWLe+vjb243dxjpxef15V+2iqitqpsf1HtpYPOu4ZL0y0g TTzOpZJc+oZ2HZVszgKpTOotST3y6vNYXl5+pCRyYWRG3qo8uZunwl8RHuAfEK4x1dirnDX+y8JT TVfYJzuv9F8Z3pH3sW1/YH/oC8/3ge9DX+YezMvkhWJSe2d7bweph1OTBjgHSxOl/bn/Ek+pNtXn EGVGciKgHS2+iMMaNIaFBQ1rio930AqRuQv2Wqlq1ay11oVWUe/ftaLEWIPZIPUJw389ZvQo6JNq rXz0OfYscM4axtveOhtgEyeeIru4SogbhUNEeRD18Bga/iW63SfoEzcLGdtB6Sq6mtbTY1TMoz3o ICpQbphzuaFcpnI5h1NkPYoWOHVz1qPIepS/IudtPNXPi0eD2MmIgzNoKNq3yzlWM2ermXoPH+Yd As5sOpdbOTvCHw6I0DVK3UxSFwd0dnUu6RRlPpUk8osEb6DFYM+2TzfMXH/5ujot/dNftk1jpSNu n/P8k1fPeV7a2vSvlYNWvjkr/WP6g4fo3dtHLN/91t5Xd3NkH5w5IhwF1A3Tn7eQQOaYlo/hZaxB M1InUlWvU6TZGQqljgVO6rRS3vk1gwhEdEesSjAiWqnDp5h4hSlYYQqOd+Rzs4GiYO1+/1WMRam7 ajrxlY9m7Gu20bxIT0/PwDDPsECtpzbwAHtAuN/+hPpE2GayhyxT2RRhqnS1bYZ9of0p2ybzZssm m81vu8X2JRMc+WOcVzkXOAUn5diZ7IA9crVQrFVkNTlIjhEzcTqt5GwZI1B0gyGdnCGRV5wFDhPi cn4O+pTHDVT9QVuEvFRgTeWBqQFWruZIgQGlobGmoU3WGU0qDTlCQ3a4CJkgjEzQL+JDdvMh6/kQ 73wFexSap/RQmOLAaKCFX6agdlL0Wep4ttIxp3RXs5uqM8hZgKuZmf2cCc5A6loNR2ce591lM42O Y1d5e7XmEPxxTqoDVjLGGNOAPnehFKdRZ4d76DAlVKzP/fGF/elfZn5z69p/5K0LLRi19Nknbp76 J7o48OIemkstz1O2aN2jOdOueGXfBztvBMzpA7x0QB9BRbdr8y1MtBfaS+297FKZtyxyCRtuGeod FpnExksTzOO8tZEdee9Lf/d8GvrK85X3x8B3oa8QW/x5eakwB6T+YY5OSjtWYG/n78bK7P1Zb3sf b7/IJZaR9kn2r+Sv/afocYdKfYLDqjoBc6yKiwDoCOeAzskXEXRKeHv+9CK2YqHLaZxwLhMUIRMU qupeF1VdmqvWtdAFuMQ5V0cnl5tDggvVMccpl8z53IVo5UInnbejy8Hb0WV0S7mM7iee0GpRkGa7 9UmC+nw15AZ3gYJDo/UvE2xX9igHlIwicv4YpAhKFOUH9Z4S1eUKeQYNCSWMPBOKlg5ugTR8Jji6 5M3ggpl6LyogTsWhrLfO17NQw/ta4mVcsYFm0zkDYIe2HGTedcKuBX+/eur7N9Xe3X5jU+z5q+c8 uea6uY/e8vCK048/QoVlQy5gjlN9mPvtN19+df/bu7hG6g8aKQpI4wPueFgL5JGID2z/GqnGPMI6 QZgmXWWeYDX59C9qYFUd0obyVG4EpyG5P5ZOeU+ExY7ubqGOkQvcleELIkPco0NDI2Pd08NjI3Pl ub4T7ERQJX7qtAcCg/08ICL4I85V6mqVqaqYE7EoZCt7lkuJgew7NGwqFQT6Lg/AQsCY1XXOZxDQ rAlodrCPMFRiN6Zc2o3Oazu/lbmoTWm9ndrDeXzQQGGylG9f5GZQHs3zc90wGketl+hgmh2phHyg FihaQZtSo611qdcRINai3SPY7jpWRLDFcYITb/dzNUxNCqOQhyAPeOBEXcvgDB9MkB1AXdFUV5Ed bpwdccctm5kGLOg9Al4ljnEbGseJT7Jw2dbiH7Z8k/6Rev/xd+qgZ45YNiwet6JpPxti6zry1vnP 0JGBxxtoHuhQG22V/iz9qxpbt3UyveuWnpOfIvi/twhbKO0jAdpai3rN1BlqH+oQ0kIzQg/YHrQ/ YzeF7a3s9aEdITHEq1UL55XmmuyCzRmxUB9LeT2iIBPLI17qzXiwDj2amB0Gh5UZsOkmpkgEdgfF HrSNHbuWYk9aKpJXuorQkMalN6TZQXqzjmMrdBrzuTyT4qzr+FM2+uvNRn+/RTWPHeb4cQaw83GO Gnk8GNpGt5I4OUEtxPAvm9uCe5rgBqHUHU0drdFdTT7bvtylj+Lxqi7ZrMgmsHtVszuHuGRnDgUf sc2iRTQF8jiTO00lZaVd+JQzwGkO0z4+QXbDI494wjfNGTA6p2unob327BHuX1E3rbTPJe6HLH1q L19xZiJI3oXpIcK3IHlR0ob+Tau1WiVvsbXQO8Da2yubc0O5xdaktzhRbu3svdjaxztSqbJOtp6y /MvnaJcoLjo/cX7RgKJVxauLlc7xzq17FPex9on3bj08Prz1FGVcfFzr2uKFxfuLjsR/SPxY5Ar4 ZV8jW9/QKuJRUBWrMdIBFfFCsoPsBQeykV2vqVIk4rT0zo/YLH5fSWFJy08Z/GSM6j6pFeFk6sJg cG+AqgEtUBtYGBCLoUnYiGJE4wCicaAZjQOIxnzSH+Z+q6MxP4tPAsyicUAf3ICJU4asn9ImI+fM dtJCkp+HzJSHzJSHzJRXsN25x3nAmXGKec4ezkFgaejfoUGsdqKMOsOcV5z5OL0rwp+sz951IjY7 Q6ni2XEOz6mBZ8W0rjI7xaElQiNEo/ie4HNiD2VnPBzSo6p1oMIDfIgg+hJF+qwGjtKBMmMQTMv5 QBPXWTv1nH390qCDzqn/5NiV79627dqnJnyy+q/f3vfU9fPXrL127pqq8JDCTuNHdalfTis+vZfS FfcuPDP15J65zwlt3t2x/e1XXn2FS+0SQoQjGOG+awvxg0j5AqX4iQN0vArFMqG3sNUuYpYvECoN mFw2l1eQKHFGJMVrtdgMnWszmhuHIrfBsFahWSvpXJox0x1m6keF69dwoGcrpF7esGbuwbpwyCda 8+YwPw/HLGFDm728ofk8AH2eKh8kivsnNuNAk4EYjm9d2rm03n/Mz2b4V/vr/Rm/6GdebGovNqkX G99bqPe8q1CqY/xrVTHCP0QuYidhNtB0SgsgWuiuhYkXprn//ZTuBxCG8MDQ7Rjo6zs42NJwq0tl BwRB6vi5DGCMkdZ9AB6PQpxwyA6l0CHbcqjdBAhBeBhpEUnxL7qU6K6B3+9zJVzY9LLPtaThhh1z XujfcPW0wbdVgB/w0x01TzzYNIY9uuS6YX+6vuklQAf+fxUr+Gg7otCntRCznA2VZ6c+WLKxwjNG sOGMMUleT4joIWFsXZ9oj1RGqliz8comw5RuMiZpNBmTNJr0iWAMHTUBqYxUEbOx0DNGLFRPSEYC n9wNx9h35tU/yLzKvNpcb95hPmA+ZlaIOc88w7zQ/Eg266A5Y7bkmcF+V0QmmGU+VEFri0+9gRJZ kkWLrBRKRHxEXC3WizvEg6K8QzwmMiLGxL2wJ4q6q8f4k7PNL2Lzixb+fBEVhWgoCtHoasJyWjgr iANN/84EMyvwQwvQ1ClqRMG5oM+sS/3RDycGQXsvbWhoEL/bs+e0T0ye3s+llP8XzZN8pC97dbM+ hs3cYvDeT0Z7/aR11GfaYUvp38DIptGgkEfKo8yC0/6zdEIWzMZcBL0P2WIkzEZCyM6XlUeMEK6x MLcc82CA+NhGdxEPGB9rgK1bwow4Zmg3Q44sipIodzH3FaVCua2lynKNcLVlv/ClrDwl04ScVApN 5XJXcw/7IHu1WC1XKdXm68V50n3mV+X3xA/kQ/I3yi/yryaf22KRBEFksqyYzSbYMZtMhYrsVRRZ EMVCyeKVJIsFmls0UWhKiXehWK3EIjZSp2aWRAwG5pv4Xu8YemOqPhBjFRhzVqxEKwKEVf+uRCHR +5AYZuq9R6yQUrArepBBIFJ82GNHhAYca0f0YZ7IITwmAVCALh5BX5OEbPbP430ntlQMfD62mjUX +ECOuhN8CAc4dc29J2CvB8r5ICz+PQ7YBvFDPYpqqjBVCEizfU/2/maaZ75ZYOagnY/cAedP/3aH ZjEX55abTbm5FTKfcpBbDpv3N8Rwsz6e/UIHDruqI6kU9jjLmR0b4jjCZ4Ofbz7boJbL+gb3bLhZ bzWGbXE3kz/K/alITV4/PM3rrUDCu+s3BPnF36/P0U+nNdV6bA1SWdbXR/rwuDhNUAXYnT77TXoq 3f5Z+tEF0tYz22h9ek7TeJZ3bZp/q+4mEIAuOG64UrO3xLFzsCs7VrgFUp2DTvp09JZYdA7+6BNP JUQbHBvcpas+Rri0TN926Khv8/UxxFohqEmnlCc9Ih2QxEFAjklCnjRDWihlJBH0ioUJuqrhd0KV 4wM77xFCd5Bj/P9GnNU7J8/qndwWekdnK91CNWXNU6ODO5Mxuryz8EMGiufCD8cf7AvQxxXj3r// eBPc1IBDjHU7QE6CNZlgX2whniykqC1G7ugJl5HINaovYiRyjETYSOQak/giRiLHSISNhM3oKbcb CYeRcBoJj2E/qkbCbSRcRsJjmCGqkXAbCZeRsBvDskxGgnd7aZVWe2mheEg8ZP488FVM+rt0IsYC pljCHMyJmQUhEY3IPm74KVROhEOqZW8hXVW4upAVBgJhR+EqF3WJGD4IYugA4/EYPvDihODsx0Ig xTCIYMMgAkbiXcbQpBahBFqjRYOmFgNakFmDhatyaA4+IKf5ATn4gBwexnLxB+SglZKD0aYcDlZo LuXY+KNyjKB/Dn9CK8JKEnj7BIJdAsEuUUj3EspDayyPcMgTEPJyfwN5GJ8n/qxNdMbwno5rXjSO dJZ06ChYUNhI526M9z3XQtYjpWgMt4if1rScTcb3m7BvuW4m4Y4V6NJKPrfUFWg5UcJh83qSXpsr h7rtPsN0MnzeP1K0/CtE+L2qAE67R8sKna+WNtajnZ6aOueevBvefPjZjYnR58+4s6Fq/IBF3cTk XQPHXF61dd3mpiL20BVjut31RNM9bMPcuYPvv73p46xFfRgkyU/Xax5JkD1sjdqofil87TkmnPDI IteT+cBy81R6r7o3eDCYCYoxk9fh9bvBoqay326xO2wOg2kdhsRhL1MeSkhBEK3oIFrUVrSlrWhL W5ttaSvCiDUfz8jOgpXhLN5WVuwXxuC6JRt1P6Gh7rKiuW6l8GcdGOSwVczt6uCxIJsRXB2sD+4I ikGBlfj8yDd+5CE/co+/UB+l7HJlB8//rjlt+Tdz2tXCnBaz6LZDc/+7eT4wgLPFm3+6gX0cTexz DqSMGQU46LXH0bM2tl92mS0mi2IRZDXpkh051GlxZxmGz4mp40oUGSPbxdOCK5Y8dvWntY8OVi0N baZdNOtpMXnPut4zKjtd3zSL3XLl9AvueLsJ58L1yhwRi6Dl7SREt2/24cfcPPrXR/AbHUe0CTwV wgNuxRKy9ZUvMo2Uq02T5CkmU6nazd3NXxbsrfZ39/f3Do6WRpuHqjXuGv/Q4HRpunm8Ot093T8+ eA31mWXJfqkwXBpuudR2hTBBmmC5wmYJRETFBUDVcszRcWMU0knNg85QQQ762DnIOkrzZyoVjHVm o/lGtwwmssNY9Y+KZIe6YmKH5igoLO2gUKKoSkwRlLNfPOp4ANCKnzGdh8kg7UB2cegjcpBpHAXE 5uChGZwBS7AzgUSQOzAQlsUPREuCk02IBo/jwMQIhtCyHx7FudukY5iHyrKfHG3JCWpdqgbMrJpz +cMYM8tjotinP0waZr5cutwscnOFn+XBD/+Q7GeAWrrevZ649W+fUP913y0/kD66ZcOSWzZsXLxk A/PQoj/NSX/etPu7G2mU2t9+6+13//bWm1DYJekpYhy4wk2i9G5ttk1tq56n9lfFHrH6GMuLtbYl cjv5OuVemDsjtipm6hbolnNx4OKcatOlttGB0TlTTdNsU9TpgWk5O2L7vJ8GPw3vix7yHooejGVi /oSYUlO+MrGb2ke8WB2lfmX9LjetWl0OwR/hXXWyP+KwEkfIYIiQwRCh7EQMSBXstVDVollqLQst YgzZIqZlR44d1sdcWILGSDLDU2ieoaF321k4b5fhqLLZ1FPCSrJhcD0ArgfDCwn5/f44oxtObdEN p57TDXfi37vhsIsfAB+74fL6dgnSc/rhmrvhUscP/bYHDrvgXOUtO+A8hj7w+7z4CYkil9CixZc8 0e2OyUv3Tr36wHWjVrZzPTVn7nNPz561Pj1F+suyIUNWZO59PH16+YBuTaeFJ3bveuvvb735Ibeo FgMkvArt7iKfaZXtPVQVaUIsFXuKw8SJ4mxRNrtMZpPZ7nGZ7UQwUSs2GLGYW60y0f+rva8Bj6o6 E37PuTP3b+6d+zOT+U9mMpmZhBlIYhIIgUAmAQqaFdAgEgwCKipIRQhi7VIMW63aqrT2qz/dbnHt btXa/QgJQgC70LW11ZbKbtVu7ap0y+7aPsti/Wi36pLse869kwyr5Vn34fue78nTd+Y9573nvOfe c897ft7ze+V0KkACNH3OwbvOUby/fwRjXJP8XdEqq3JFXqjOaaedQQyxrLey2F74nQ8bxDhprjqz 5SRbtXbKOVOC92XBfOFuP98fsmoL29zqpJ4zgClhfXnX43PXd1x19dyurtlXB6s8uT/fvGjWE7UL O9ZsOfsyxrlj7C1hL6ZMo4AtpDPE6yg7UW7WlZ245hC5sgPGzpT2czpETYlIl4jqEsGOcCvewUcj 0sH0LOUSZX5meXpdervygHJn5uuBp6f+jaAr4Vgk3Ng99dWwN06voNRsImqkT+5T+tQ+X5/Wp2+Q Nygb1A2+DdoGfV9uX61Rm8vUZqbMyKxUe33X5a6r21qzNTOQ+aL6Fe3BuoenfqnxL9SntK/V/kXd cO67uVBdSdNMl4iaEpEpEe77iqVXEEsvJZZeU2Sq9BtFu6ptpVyb1VRPLJWr8PjqK2NsMDYdncqn sqId0SXR1dE90ZeiohFNRjdF34x6ktFdURr9FuaACsyPfJakGGTsJtukZJLj2HcmJuH7CIeDoRY+ e2L6rRZC6vsqN1bSykSF5HHWkvDxkX8ujYH8czHAspEnUe9LxkgsEy0GIi1NLPh0PgofcUxWqqP8 jO1oioWMplioKO+LR/k8B/NF2R+iV4E09s5+PoKRyeONnkm0Hc+TPHsmC58vLQrPO7sMRUb8iidh nq1SYXfJx3gMqmvzLWuajjbRjqaBJtrEJoIyEHFUWJ7fU07iU+ecPxYvnluSLG4pngtTGYPXQgaP u5Hi479MZcnxo7/4Jjd3JJgv3jPSb5YGCqIXufM2qzZfWn44AlbWhVNbFpeWqxQKm9nsTZnCe4rN 7RbYkcSb+WIV1m/DGoxb41uEw44+U6ydVlXjDU7NWaZtBkxBTOupOCh1Upx4p6FRFcTLan9NHNI1 uiZPUeOkrlZRxYInDkmzkmk+zsZgbnBVOV/YuXMnlFWjbLRq1YTDOQfA1uZq6+n0lhmtTsU5PsvM xrD5Lgk+Zt0xZNz7x9s/MT37xecfXdI5M/+Fnk99a6U1qPWv374hFGqI33nk4eXrn//USz8lcxI3 bVk3f05NJNt08c7FC2+vSxYW/fENkcv7Lm+tSVQG1Exz5/a+lbuv/CarWzNj79C891EIkyQ7DXa0 dGbR+MbW0dJJlw4hlgiVbwTOsdGqo8UeJAaiBIimq0SAkKkUDBXbTMFnmGlIE/2cZkx1mjGNjEny AmXBGukWaUD6vOQBVH4ekwalo9JxSeSbgtzdQWd4ZuWnbfJlE45G7xLufqH3eN5jahVratkQnatd OUqjdIhugAiZsff6/9K75+f+O6PMJ8+089nes+2sUbOam80XyrYcZMPOjC+baLJa+emrfL02NWN/ 1H7Nxql33jn8zDOBQl3Vn+825657nF57H5E2jt5/39kvXjo1xkZfsK4+wb79SD59EGJsOrQi3EJT gRDbNPJ2MWoHWwoBkpEDIY0EQj5swCxMP2gOlfovoZLyERrvv4SykTDraMR4LybM+y9hm0/yjK9m C/PGKzzecwkH3ekedxYgzLu1YedsFUyysTA5GibhxTEm2FrWaYm9HaO3xB6LDcbGYh622ITNUXBR apo7OTHekLIz8FPKceWE4lFKDaky3pC68xIqn43gC1z5DATvtSh8EkBZHD1nAMYd6f9g98RpVPky oPY29yBGLMwxj+nXDZ0tA2cHTWAXxaPFQZetOLAOSj6/E1UVDOnO39fm+Lr78MQ2aaFj+ytXf22J 6dvns26+7LIHZu/7yr5FH18yvZ8+eHb4/osWXtaz6x7a9v5rKNEYm/FBiap0Btt1/I57PpLfHUlz FsnLfJ6ND4SG3EGy8eNQ3y7yokDNslVDYa8MqiwSUQWvInsJ9Wb4DsmGwuvHzNePYa5kOgR72/iB 6V4CaatNZU2abrUp2O9tkZlB8aHDaBPXVtnojFJV3QJ1aHAlU0lnWyCEBl69VtxRV98CKTQMbQrU KTm1Daari2Chupwsp73yCuV6cj1dL69XPgG3kdvo7fInlNvUu8nd9DPCvdI98meVP4NHlC+o34TH 1W/BAWmv+gJ8V30NXlH/FX6hvg9n1Kn4OmoEQmod5NRWdQkUVcVbtEMtXkycltJx+Pg+7NWB6cNF g2+pAN4ysLRgblxTZanCXanXq/nYasTXC5g2iMcKxwrQwLYFtPETF1VJlrOKGlQUFQRKs84qf6+q onbIl+yLkqoIQLwNGtHScrFYVAbYBxxI/Jmid8BLvUgVlRQtkrTvV3/HsuWpWPTsqrOrYpFTJ1e5 55CNjzlbbefu+mVLnd2VkBNQfl5qad18oJmQ/z268a9PZpORwr8eHL3Zkzt75w2blm2j9zizFmwd /AHMabZ3NVuf7+Y0p//HJwkrNWeknQ3b8XEurzNNxNf7CWUDtL9yFsubvKUVuamU5nn944vlnYbY LnnI4x6S6A41umvmncxu8u0josedTvmPiVGWss+M2KV9n/K4h3OQoVraWOKcMcY19LTr8VZpQsY9 rtRKOd5uC/RGaYrsjeGJIsTOID7jjN1Izipf0e11vcxPsvc4Ry2yFUkpzfE4us/vzFkdLTYwyiry a9USCGioiBPRwCyja3y1uGYR6lE9luqOSjptkcWO+TxmvnrMfJkfBuBuTuFZoNTkx7G+C5K8Z4pK L7Gush6wBCvlnEzuniHsKRHs9OSikqxuMROVzhRR8UAy0+IRNSUgxpWo7fWAR/QpPr9smxAQglJC jvsq/RnISnm54G+B6dIsebZ/vrBQLEqXyt2+ecZC6xL7KuNy+ybpOvkG+3bxk9JW+aB4yNhv/0Z8 X6nzWXVQp9f664xauyE4E1rt2+TPyI8ID2tPkCfpk76va8/AfvGQ//ueV8WfKm953jL+xT4jvqck fHwbocZNU3SWbTvaHB+dcct2XPUbHhssWZKzkpH1s26sXxJ0omX1kbFXi62sTdCxiOZ5X1UnwYCo +qycWrCWeS5X+6yN1nbrs5ZqqR4ssEwcjmD+6z6ghsIZ/LNr8yT7Odoe/uPFoMD3B0leRVVlzM6q abGFbt3DXrBRab24eL1q+FPPWZKckizbLniloNcr+VHOWd0f1HW/bBlGQZWDGJxtGnKrE6BEsj2y YWl+nUfPxnaUnSDE6hfbYDt51eBvTZ2s0dnaTEEfIU8U1dQSlWxS72A7NugVRWWJRTZZd1hs29sV RZ/pJWv4HIiANdATz5DfBn57PdeDo5eeWbUqgnos/llNtCry4RuG3KrJ4uZ/Y7+Q5DfbGTKaYfdg smfFPj2lpeizYyewr3MC/GPH90GjkcJyfGL8TNbe7sGWHn7mxvG9EjtsEh2qe7oHm/lyS3nsxF4p 5bja7ukHbFvm8f3YC8B7Y01wfEhqZHccgpn0kPOk8ZuPhwvzcNbYiWE15UnBTHczkrvJ8+X9dhtM RWTzcoGJXSTOXA0rfvxkhHO1798HrErmNXIgzPcxCbUC6R49fOipDk/zUwd3T5+zf8/ovsNPTfkJ VtF/etJ6kd589pEfHKPXv/8a3f7Mf7yEdbWBWsGvsa42KWHHN7h1tTk+11x0Jt74tdvmVxjEJ3qo IlJRx4xt8A6f0VDgeZsfQhY/YNjESEf5bGJxabRtpfGQ5yH5Uf+XjaPeo+JR6QeGYhRDbTEhoFTo MXM6meXbSR7wyQ32lZ5eqde3wv8weUR9xHeAjmjf973o/6H5mvCK8rf6z8x/Uu1SGfVpYFtGREf9 kJ8/62eUIQLVQVWpyE8/YDmrUHC33F0vioIkKwoRRYXtZ0LNG9UvnRiGbvpQE6S6T9BMVTSooZrP w/MKNbOgBAEUgerP60TPakJQ0wRVUQSBitij1DRQl9jEvljfoaVVY62o7Ciq2AofKIpLxQF+JuO8 oj8l7KDpJZjYF1vbv+N+qYU3zNgum/9knjnFT5CZKBasXV7lZvpV7mn5bYZxt8wzu2OixUpAu9zu 5q19/khlm48fxlDZpqXDbQIiux6qbjP5btGKNpKublOKidJe4kIvH/3mc7XsEtv15jBr4VvZDK1Q Swxy5+ijP/9afWJqdvgno18gn3v9tVmjv6R1ZPTdhY1dze+Pamd/RC7pHV3FWv3q0cuEf8OcFKM3 YX864izBcdZI8/4ANw2PO0V3ptjgDA3zCTpuag6HM1jMTd1R2LXS1J+TGbXyzFipBg3BJySihi36 xEDRNlK+opZyM2W0oRB7PRY5FouazOLjWbyZiw8bCbZk/I3ixxNtdcHlxh5VKOpFlHyqrrHFZIak KXZIj9i1vlqtVp+hzdCn+x+1fHV2XWBRqNfuDfRWrLfXB9ZX3C5u02+3Phn8ZMVd+met++z7AvcG H1Gf9D1rHrYOBX+l/kvwN/pZ893gWKKqlHVDAV8i7jHmG3caghEdj74z3maP7xFtNQzNxLod1cFo MBDI2moQLwwNK++sTw36fGqAbX7yiewGkDATtCFxJEETI7TjGQPTohgcocuKvg67aNPV9hGb2iOk a79B0rAgrjIvnlrFlNaoLdGEpdqYRjXkGG5gy+lpx754ajtW5Jh4Z9kpoJhb2RkyEfPMySj7LtWp WMQ8xSmIsI5oKevK5WsYWN69m2dUrKX9WDtGsHY8jH33t8A39hYprxuDY2/sb21T061tfnaIS0Wb 5W5772VdKUDF1M2nZeppIVDrrJxr5fs5XfWUfauoJn1HcPbU9kVhK+f1jX78b14vpJOFX+wb3diZ ady+vGX0hqfMukz8JqPSU3f20Vt3bt9Gb3r/+3u6envY6aGnASSbf+FOAh+0F23RS4lHbWftpMcj qGo7at3RIakdG7zoAaEdfqD99DesZJ9lP7cwm6fCTc7H76pdPH2MvHGMvP6jYxyAQo/wf+hK74/x GWH4+2Lf7uieKD0tnQ7QN6U3A/Ql6aUAPSIdCdA90p4A3S3tDtBd0q4A3SHtCND35feDdKO8MUhX yiuDVJO1IA0GZAl7yD4QjHf9wrvUr1OitevQzj7ZsLTYENgk3SHtkgSJBGYG2/261o4NfjEca/Hf SqSZcjsl0C4Iuyih0cjmJ5yxLDakznbR829LcQo6VrWfZecNO2/pnHGMfzBfYGMQsGXz5s1kswtk FamoYUtdW8OiKFWX0ST47VT+qqmtLQL5XyXK852//cvPtC+d8rHwVVdOUJhSC4Vf0sXeF3hK/ay4 mKfU2/LbQUpkEqQnpBMBelw6HqBHpaMBOigNBujj0uMB+qD0YID+ifQnAXqLdEuArpPXBWmP3OOm FKr6AgSfDrC00XRMMj8mFpGflphDI8EEpNBOiN9o1zC9avXwXKyjWHLpt1KKUsckqwW2SXoDTy2s 2NvZzEM7T6qTJqf5JxrZBxpL9rmJNZ5OmzdjurFPLTazb5zwLzg2l9FXfjtZuGrqjOnC35cIz+8w gWZfNmVhaHXPBMVq4iG411MjvAc6XjSVHSw/g95088vbRkf3Hxgd3fay8N6Wl7cgReiB/h9vYV/v jCD/Iz6fDONfy/V4kEYNVhwH9BGxf4flQBLZp428IKKOLGI5ESVQ0UXggTmvRxQpap4ykqj+C6Ko sqAXEnxl8ZzUwD4vpXxQLtI4oI8kIaJ6I4MCAkpEcUhJwWSSXLmg1JCXsYuCD4OBB6+8itd7YaOr lcVzUoMEOurAUHpN9r4eNCbkgg4yFiiFAZYPJhefoiqOXHS0PDywI0MmF6kkFw/KhYn0QoJeFs9J DbK7QdC9ZPnb4/WgKErgYTJBRI1SxfIhSCCzw32RVFTsFJXk4vDKMpOLjiSw04Al34WWi1EWz0kN Cpim9kG5KOPgysXnQ7UWqxEBazDdhyTKxVcmF6zakFdBMcooFwzxf0cuZlk8JzWoYFlYOZRek7XT XtFbJhf0UdUJuXiVcrlYaHl5YIeXiRHlwqo8UfYoKBflwkbXKovnpAYVAgH/B+XiGwcvkwlW7Lrf r2P5ELEGM3RDBz9oOgSYpHhg1cdmsXwqFjWPiSQyelVFVy6wXAKufaHL4f934IOKCqwcStmPvS92 OtnSNBfQR8OKjp3q5MdqRMRCY/lNP4pI80MFikfkgTUUoSYyMaoek5UnCaXkM1Tf+R7+0aGiLJ6T GnSIRGymljnAVC9JZkpaCdDHjwXKMC3LxOwqaqAHrICJNYrfwq6liUFZYLYSV5f8fi9oYtCv+0HW JL/P8mnne/hHh0hZPCc1sP38QaaWOcDqHVlhSloJ0MfEAmXbwaCN2VXGyiwcqLAgCGYAEmBjUBYY S5NhSIYhgl8MYTBQ/LKhB7BMXVCIl8VzUoMJlVWhCbmwJl5WZfbJThfQx8LWNhCoqAhg+ZAMMMMV 4QCKKFABVViCHLmYpoG8pimBX4piMFAN2dQrdP18D//oUFkWz0kNNqRSEaYuO8CaeMWnYPEogcJk ghV7RThcAVFQTLDj4WgFiigQhhSKR+GBsZazLNWyJTClODvuz2cqthH2G+d7+EeHVFk8JzUEoDod /W/IJRSKREIQA8VCuURiIazpKyKQnpCLjT/VLsnFBp/F5GJcYLlUl8VzUkMQsrkEU5cdYKoX681X jIPKZAIQjcbjUaxGFKzBkvHKKNb04TjksNioPHCwIlARVCsqJAhISQwGmq1WWHHLOt/DPzpky+I5 qSEE+XxqYjyQqV6aX4PwOGhMJgCJRFVVArOrhjVYTVV1ApuWWBXkseXXeGCs5cJhPRxGkaoZDAb+ oBYOV4YqzvPs/wHky+I5qSEK9fU1E+OBrN5hvcbYOKBPHLWgZLK6OgkZ0MIQy1ZnkiiiRDXUo3h0 HjgWC8di/lhMhbCaw2CotemxcDUK6IJCfVk8JzUkoKkph/nPvWT1jt/yY/EoAfpUohZUXZ3JVEMt +KOQmJKprUYRJTPQhOLx88CJRBR5EwkNolodBgMr6k9EayLRCxvdprJ4TmqoghkzpkyM09rYxzRs A6rGAX1SKYBMprY2g9WIEYeqabX5DIqouhZmQA0GZYGrquLIW1WpQ1yfVllVhdqBURmvjcXP8+z/ Acwoi+ekhmqYNWvqxDgtU71M7M2nxgF90mmA2tp8vhamgVEJqYb8tFoUUSYPs7DlN3ngVKoSeVMp Har0izAYBCrNVOWUxAWWy6yyeE5qqIF585omxgOZ6hUIBSA7DgEmE4Bp0xobp0ELBNKQbW1smQaN MKURulBSAR44m00jbzZrQNpow2AQSgey1Q2p6vM9/KPDvLJ4Tmqog+7umRPjgUz1qsBeY34c0Gcq FqimphkzmjC7VuQgP2fGrCasUabNgG64CIOywPl8DnnzeQtyVgcGg2iuIp+dnsme7+EfHbrL4jmp YRr09MxFNde9xAYbwokwKmklQJ/GRoDW1vb2VuiEcB7qF7R3tkI7tLRDD4onzAPX1+fr6yP19TYU 7IUYDBL5cP2U2Vj3XVDoKYvnpIYm6OtbAGzvDIdkEulkDJrHAX1mYGs7Z05X1xxYBLF6aO7uWjQH q7C2LrgK5mBQFri5ub65Od7SHISG4KUYDJL1seZpndOmXdjo9pXFc1LDTLjuum6mLjvAPnqawF7j xFps9JmFre28eYsWzYPFkGiCmT2LFs9DEc1dBNeieBI88MyZTTNnVrbODEFTaBkGg+qmxMyLFl50 0YWN7nVl8ZzU0M7Wn4E0d3QxzDPhvT3vfdLkLuVAviSWOdG289+RfgO2Myzj/wZed6J9iF17+uEK xDcR2xGXI8Zct0sR1yL2sGvkP1i6h+ebsAXxltK1d/nYWe9yeMj7Pbge8atIP87cxTb4uPvMIx6s fN3nPSR+Ax5Bvq+g/7XI+1V+j++xL3yh/y+gsURL90PUub8zU4j3+Zxrn1Mh4z0vQfwMPmMp2h9D 7EaeANpdiHeT77GT4PiyiXuQ/jQ+/27mjjif2W463YX+HRgug26fRjqG8RDRNjwTI4F/gI8IMrDV wL8fMN17EBf+v4rPH+AP8Ac4FzyvwBBrUsiX4B1sgv4MJKDYrW+A5ayu9/01eNnZe+i6EgQgHjYB swEGXJqACttcmoIfbnRpAYrYXXJoTxmPFxU6v0uLfLCtE7bAelgLG+FSWIbPXIfX/eiyCW6GFEyH euw2NaL/pdxlE2yF27HtWYd+F2P7shZuQN6b0UxhNyBVdrcUXI5cN8CtSK9F13OvJvieQs4mfMJF +EthDG7k9/7g0+bh1RakmbkW3Z0Y1vNnbnSftx6fcCP69btP7+dvsw3N65DTXX88Vsu+u/1BOAjL hLrhXCR5/FlhCpxApMKUoUJl8qBQK1QOzU4WR4SaYbuiyeicJrAPGDVwM4XmJsQ9iEcQPbBaqEJ3 E807EAcQ9yAeQTyOiG0pmsw3hbgJcTfiCeYjVAqJoVTS7KwVohg2ihI1hDCcRhxDFCCJZgPiEsTV iLsQdyOKnI+5bEK8A/EI4tvcpyiEhx5sxriHhz7HreENG5v45Vrnsm8Vvxy+stexL73Msedf7LDN ctguanGc67scu3aqY9vZpgFmq3rT0c6QEMKXDGHEb0GT0O+AQQgk4TGhAgYRqSC6LkXBHs7kmnYf ETxABCoQFFFy7KhAhnSrqVOlY/Q02JCk/0ZPOT701LDfatrdeQn9R9iDeARRoP+Iv5/Tn8Md9ARL czQ7EHcjHkF8CfE0okhP4O9N/L1B3wCDvg4NiB2IqxF3Ix5BPI0o0dfRNOk/sBLJTUZ3IFL6D2ia 9Gf4Wj9D06CvIfUafQ2j9uOh1ramg5woNLhEMusS4bhL2KGmEfp3Q+9OwRyVQ0ljjjospGEuNAvp oexFyREhMtS+PjlCfzGcKiQf62ykL8MgIpZ+NE3EFOJSxDWItyCKSL2K1KswgPh5xMcQBxExl6Fp Iqboi4g/RHwVGhGLiEsRZXp8CB8zQl8aynUlO0P0R/R72AtP0mP0+9z+IX2e2z+g3+X2C2hXof0i fX6oKgmdPvQHDGOibaLdgP5e+u3hjJ0c67ToEUy7JJoNiB2ISxBXI+5CFOkRmh66LmnjTQ7Di6il JOkQ/JLbX4fHZShuSBZz8zADppiRmzUHKTR2p3bnaDH30KN4yYzcAw8ixYzcnfchxYzcJ3cixYzc xm1IMSN33QakmJFbuRopZuSWLEMKjRH61QOZ2mTrkptIqtOgt2Eq3YapdBum0m3gobexH7zrYXH7 06F8HlPsy8XClHxy4BAZeJYMXE4GHicD68jADjKwkwy0k4GryUCBDCTIQBUZKJKBw2QmJsUAKe47 57KtGCEDL5KBvyID/WQgRwayZCBDBlKktThCq4cububWAm4Nd7JCh/acuVj7GLQaU7Qa83w11glH 0HwJcYxfFZEplXaYo1XMTg/nO5zr+llNmzoX0ecw4HMohufgTUQPCug5zEbP4U2ewxsYaHYgrkY8 ingacQxRRO40RnwXNw00GxA7EFcj3oF4GlHk0TmNSGGTG8U9PGINbqSXsCv6HP7S+Kum1cVKM2EW zEXCrgQxqsiSqrEq2uqMZdqWbI0Qff+/67/7dx2UToU+QHdBJQri8669a+jdyuQIeWQodzjZWUEe hioP5jrSBjmSRXsm9PPr6ZCQmd0CCfo02k1DieUYzBjKTU0eIn4Wan/y3cTJ5C8TIxTJtxKHkz9J jXjIUPIVdHl6f/LlxL3JFxpGZHR5NjdC0DqU4qwHEzOTf/UiZ92JHl8eSu5g1v7kpxILkzcluMc6 x+PqfrwqGsnLcyuTi/B+8xPXJIv9eM/9yY7E1cl2h2s6C7M/2YhRKDhkHiM7JcEfWlPFb3hF6wi5 sThVekhaIS2RZkhN0lSpWkpKlVJcCsq2bMp+WZNVWZZF2SNTGeQgOwq/wHqzQZF3alnXioCH0yZl JlMy+A57mcIlMBgQuml3TxfpHjx6LXRfkxr8bU/NCFEvWznorekig3Y3dC/rGpxZ6B6Rxi4fbC10 D0pLr1qxl5AHetF1kN4zQmDZihEyxpzuig/a89hHgYh11/1xZtfddX9vL0RC2zoiHfZcq+1j8z/E WOOaZZsmI+fQlYMPdfesGPxGZe9gEyPGKnu7B7/Yk+pbcZC8Q95eMP8g+TWzelccFOaSdxZcztyF ufN7e7tHyHLOBynya+TDHPNrzidjw8z4ICVXOXxfdviyGB75MsxCPkWBLOfLKgrn8xDGt7c/s2D+ 3kyG84RT0M95+sOpcp4Xs8iTzXKe0AC8yHleDA0wnsG5nCWRQJaqBGchMUhwlgSJcZblEywNLsu9 4yz38icJZIIn4fDoJ0o8+gnkOc/O/HNhXVehQIZn917bt2BdzYI1NQvWIa4Z/Ny2GyODA9ekUnuv 7WUeqUEht+aaa29k9tp1g7016+YPXlszP7V3dt+HePcx79k18/dC34JlK/b2FdfNH5pdnL2gZu38 3uGFS1taz3nWvePPaln6ITdbym7Wwp61sPVDvFuZ90L2rFb2rFb2rIXFhfxZwPP40hV7Zejqndfn 2MPUp2J+XROv7u0KmbfM5Zl3dnVkR/wQaitPgq/QO6jVdA3qiMxrWue0TuaFZYp5+dHZcL0iO2ZX xw+RJ10vE52tmi4obL21/1aILFg/3/n3I6DT1ltZgjtmof/3AfotGCyund+/FaB7MN/TPdhx2coV eyUJXdewVxqcVXLz+RaMjB11HOvRcRZzFIRxRubWztwUxWX8oPxvdW2+z3mAHh4mxSqCSnavMFjV vYxiVbBsJb5r38oVh1CXYs1Dfy++YD8pkP7SPdxoO2dEMIu9cwm33upSblpsdW0nJAbpLyXJOLDE Koyn2Fa8Ifwnek+IEgplbmRzdHJlYW0KZW5kb2JqCjE2NCAwIG9iago8PC9UeXBlIC9Gb250RGVz Y3JpcHRvcgovRm9udE5hbWUgL0FyaWFsTVQKL0ZsYWdzIDQKL0FzY2VudCA5MDUuMjczNDQKL0Rl c2NlbnQgLTIxMS45MTQwNgovU3RlbVYgNDUuODk4NDM4Ci9DYXBIZWlnaHQgNzE1LjgyMDMxCi9J dGFsaWNBbmdsZSAwCi9Gb250QkJveCBbLTY2NC41NTA3OCAtMzI0LjcwNzAzIDIwMDAgMTAwNS44 NTkzOF0KL0ZvbnRGaWxlMiAxNjMgMCBSPj4KZW5kb2JqCjE2NSAwIG9iago8PC9UeXBlIC9Gb250 Ci9Gb250RGVzY3JpcHRvciAxNjQgMCBSCi9CYXNlRm9udCAvQXJpYWxNVAovU3VidHlwZSAvQ0lE Rm9udFR5cGUyCi9DSURUb0dJRE1hcCAvSWRlbnRpdHkKL0NJRFN5c3RlbUluZm8gPDwvUmVnaXN0 cnkgKEFkb2JlKQovT3JkZXJpbmcgKElkZW50aXR5KQovU3VwcGxlbWVudCAwPj4KL1cgWzAgWzc1 MCAwIDAgMjc3LjgzMjAzXSAxMSAxMiAzMzMuMDA3ODEgMTUgWzI3Ny44MzIwMyAzMzMuMDA3ODEg Mjc3LjgzMjAzXSAxOSAyOCA1NTYuMTUyMzQgMjkgWzI3Ny44MzIwMyAwIDAgNTgzLjk4NDM4IDU4 My45ODQzOCAwIDAgNjY2Ljk5MjE5IDY2Ni45OTIxOSA3MjIuMTY3OTcgNzIyLjE2Nzk3IDY2Ni45 OTIxOSAwIDc3Ny44MzIwMyAwIDI3Ny44MzIwMyA1MDAgMCA1NTYuMTUyMzQgODMzLjAwNzgxIDcy Mi4xNjc5NyA3NzcuODMyMDMgNjY2Ljk5MjE5IDAgNzIyLjE2Nzk3IDAgNjEwLjgzOTg0IDcyMi4x Njc5NyAwIDk0My44NDc2NiAwIDY2Ni45OTIxOSAwIDI3Ny44MzIwMyAwIDI3Ny44MzIwMyAwIDAg MCA1NTYuMTUyMzQgNTU2LjE1MjM0IDUwMCA1NTYuMTUyMzQgNTU2LjE1MjM0IDI3Ny44MzIwMyA1 NTYuMTUyMzQgNTU2LjE1MjM0IDIyMi4xNjc5NyAwIDUwMCAyMjIuMTY3OTcgODMzLjAwNzgxXSA4 MSA4MyA1NTYuMTUyMzQgODUgWzMzMy4wMDc4MSA1MDAgMjc3LjgzMjAzIDU1Ni4xNTIzNCA1MDAg NzIyLjE2Nzk3IDUwMCA1MDBdIDE3MSBbMTAwMF0gMTc5IDE4MCAzMzMuMDA3ODEgNDA0IFs2MDQu MDAzOTFdXQovRFcgMD4+CmVuZG9iagoxNjYgMCBvYmoKPDwvRmlsdGVyIC9GbGF0ZURlY29kZQov TGVuZ3RoIDM3MT4+IHN0cmVhbQp4nF2SS26DMBCG95zCy3QRYRuTNBJCCqSRWPShpj0AgSFFKsYy ZMHta884iVQksD7P+2fisjpUup9Z/GHH5gQz63rdWpjGq22AneHS60hI1vbNHAi/zVCbKHbBp2Wa Yah0N0ZZxlj86azTbBe22rfjGZ6i+N22YHt9Yavv8uT4dDXmFwbQM+NRnrMWOpfptTZv9QAsxrB1 1Tp7Py9rF/Pw+FoMMIksqJtmbGEydQO21heIMu6enGVH9+QR6PaffUdR5675qS16J86bc8lzT3KP pLZISYqUSiKypcFWEu2IXogKJMWJDkj7wpHkcuNJ7JSntKTuQh9O39DWY4oCc3AqI58xFT8iCUGX JV4KmkAc8EjCINSCJM+EOpHqlgyHFHQZKlC4onkkFUootaJCyZYuKTxVNKu6ufhjQzlVkIPCN6RK GtQkzy2JWpBLgapwUQZVSAb/+/ya3XejuVrr1gJ3EffBb0Kv4b6uZjQ+yr9/edfAdQplbmRzdHJl YW0KZW5kb2JqCjUgMCBvYmoKPDwvVHlwZSAvRm9udAovU3VidHlwZSAvVHlwZTAKL0Jhc2VGb250 IC9BcmlhbE1UCi9FbmNvZGluZyAvSWRlbnRpdHktSAovRGVzY2VuZGFudEZvbnRzIFsxNjUgMCBS XQovVG9Vbmljb2RlIDE2NiAwIFI+PgplbmRvYmoKMTY3IDAgb2JqCjw8L0xlbmd0aDEgMjMzNTIK L0ZpbHRlciAvRmxhdGVEZWNvZGUKL0xlbmd0aCAxMzA2ND4+IHN0cmVhbQp4nN18B3xUVfb/ve/N m55pKTOTSZnJMBlSJ8mkk/LSQ0lPIAktIaEaBAxFFAQWERZEZS2LZVcsa1vLZCgOZRE1YmWVBdvP RcHurrGiy2Ly8j/33TchILjq7////z7//zzO+95367nnnnvuPfc9gjBCSIfWIhZ11DV5MqqFyGKI +Ryoo2th5+Ja3VcPIoQnASm7li+1p/5buQchphkhTjdn8dyF9vvjDyGk6EZIZZjb2bsYWZATIcNS KG+Y27NyznWPPWZFyDQPIW/HvNmd3Z+cCjsFz2mQnj0PIjSPsnqEKl6A5zHzFi69siTCGYBnaJ+t 71nU1Tl/+vRIqOpaaP+RhZ1XLlbvwscRGl8A+e2Xdy6cbQ3JhLrHT4P0WYsX9S4dTkTPIjThEElf fMXsxQn9y+vg+STU0YpY2RzmAOKQkrud80KJGIrsa+gZBilVjEahYhgZy8jWQiQa9atpstsRXHYD 9/XQ13iGYhrDQDSRHWLPcDbSmlgCw53EapEMDQLGQ7wMyZEDJaJMlIfGoUJUjErQeFSPpqA2NBVN R1ejHegxu2F4WKzFjZJR9ki+MjQRNUr5OkflI78taBK6DdUOPxu8UCWqQGi4a/jEyauAi3g0FqWi i//GjoRYqOdxdDfU/Sd0HdqMfotuR/vRAfQXdBA9hQqAjyLghAdeSoGbcmihElWhaujBBOBtEqpB tagOetMAfDahZtSC7gN96GFzhGkXtHk5ugZtQw9DradwKM7F8/FGtBHdAq09gw6jt9EHaBiH4Wrc ga+9BNc/+wcjEgGS+IewQNgwnMB9I3wkTJObh+Xcm9xH7Bmaxm1AoULv8GeQ5+3hBNmrwrRhJJ8z nDD8FZOHjMEaZFejCBLHLeA2cH7uGDtJCCctKP74K9iageajRSC79WgDyHoj2gTS3oquRFeh1fC8 GmK3od+hW9Hv0XZ0J8jxfnQDugPG53rAbeguuN8Oz3dCud+jB9BDIMtH0KPoMRi/PSiA9knj9jTI cwfEPw45/iyOLMn7iBjzBPIhP9qJdkGJJ8X8ZJQPQZlnUT96Dj2PXkQvoZfRK+gI+it6Feo8IKY9 ByP0/Hkpu8Q29460GqznmZGaXrigrtfQUXQMvY7eQG+it2C8/wu9g/6OTqB30XvoJDoF4/8R+hh9 iv6BvkBfoa/Rt+i0WOI4lKElTok5PpdqOi7VdWFNH6AB0C8TUBLOAvLiHNC2PFyMeTwPr8Yb8Sa0 BmS9Ba5b0B/QjSDzW0C698J9B4T/BPJ6EORFpfZnkNf9ILWg/PrgOSjF3SAD0vf90Gfa+72ivIgM ngeJETkQCdD+94tSPCePl0ZCR9HfRMmcLx/ap6DUzsnsBPTwQ/RPkMMASOoNMed7ovw+Ael9Ds/n JPqhKLFP0Gcg1WAJIttvQLrviqXel3KRsqNzfSnmO42+R/9CZ8GWCRhhBsswh5VQFp4g7Tsx9Qz6 N+T4AfIMIQHmMMnHijnlWIlVWC2191P5g7l1WI8N2CiOnhOrsRaHiOEIHIlt2IFd2I3rcSFOx9kw ouPxBOyBMc6BcD4uEke4FJfhclwFKbW4ATfiJTDmi/FSvAxvuOS8vO3HUcws/ApzZkhQjFgxmP83 s4UMrITDX6FpcN0gdBBDIM+Wa5Ca+xfScGXIwNmYvw5/j4/J/440crMsfPg0QnzlzBnTp01tb2tt aW5qbKivq62ZNHHC+OqqyorystISvriosGBcfl5uTnaWJzUleWy8a4wzLtYSZjToQzRqlVIh52BR wii5wlnZYffFd/hk8c7q6hTy7OyEiM5RER0+O0RVnp/HZ+8Qs9nPz8lDzjkX5ORpTn4kJzbYC1BB SrK9wmn3HSl32gO4vaEVwlvLnW1234AYrhHDsnjxIQQeHA4oYa+wzCu3+3CHvcJXuXze5oqOcqiv T6Muc5bNVqckoz61BoIaCPnGOhf34bFFWAwwYyvy+2BJDiHN+lhXRWe3r76htaLc5nC0iXGoTKzL Jy/zKcS67PMJz2iLvS/50ObrAwY0qyNJ2+3s7pzW6mM7odBmtmLz5o0+Y5IvwVnuS7jqQwt0ebYv 2Vle4UtyQmUTG0cawD7OZXDaN3+HgHnnwOfnx3RKMXKX4TtEgqSLI2KC9GAYAW/AIfTP4SC8bAnw aBY8+NY2tNJnO5pl8yPek9TmYzpIyqFgSngLSVkbTBkp3uF0kKGq6JD+LZ9n8a2dZU9JBumL/1zw D9LtPja+Y1bXPIKdszc7y8up3JpbfXw5BPhOqa8VfWkeyN/ZAZ2YT8TQ0OrzOBf7wpylNANE2MkY zG9qFYtIxXxhZT7YI0qlfJ6KcsKXvWJzRzllkNTlbGjdi7zDJ/sy7badXtgCtRE+fBFlMCjxFZtb u+f4Yjts3aCfc+ytNoePbwPxtTlbZ7eRUXIafAknoTmH2KJYCvp2Qe5gZtJzhUtpb2VsbBsZLYiw V8LNWVoACQYYLvGRjGhpgb0V21AwG7Qi5SCh8+qBB9ZVVk2SWFK0rNrmaHPQ30+wZJN44lw+5ai6 DBAxwhNt55Ks0dyEoQR7xezyUQyeVyknMSjVdnE+GSILqWEooSTDWR1MYl0wcyGOgWrEKDKKFrsP 1dtbnbOdbU7QIb6+lfSNyFoc34lNzokN7a3iaEta0nzeE03PHUmTQj6mDBSwMskWHFPxuUp8Hnms viB5fDDZvlnpnNi0mdTslCpEdpg+0GN5/PjOLbmmTJiXlWDanJWdTrvBXrm5MzC8dtbmPp7fvLii Y14+qcM5vnuzs6m1wCay1ti62nYVacqEJuKJzaUpyWB4SvuceFNDH483NbW37jXAvnxTc6ufwUxZ R2lb3xhIa91rB8MuxjIklkSSBzt5IDU1woNSzG/byyO0VkyViRHic1cAIzFOGYzDqCvA0DhDMI6B OBmN48U48oMRsswD+YKtrbB3k7FZ1TZvc0cbmVkoAsYR/mEfdhYhH+Ms6sOMXOtTO2eX+jTOUhJf TOKLabycxCtAK2CJBeEQg7S5wwlGCrSpFdkw1UOWVGkPDA83tzqO2AbaHKBn04DaW32qJDD8nGsC 5Ksi1AHRVb61XZ2ED9TSSsoqXOO72kBngxVClvE+FdSgkmqAHJViGaKLUKgLxgYGUCy/Fh58a9t8 bUmk0db5baIuG3yo2pkPw07r5OJJQ562zSZnhjgxYR6oXRsJqIA31NRKY2zwCI21USEptMB5lxOS ujrsIG0Z6moCPaeGVG2jMbPBHsriZ4uktkmJiHSLdWlC1D5VKlQI/0hYk0rmI+dStLVR5sWnjVIG aNvg0wBH8aNEKRUA6UDSeMIL/NsIrJKsT5NqGgKo0XklmBXCtFiTApJ9Ia7xnWD5aXkNxDhzg4WV xEBopDr6aayC9FwLcmddzYHhB50rHaN+KclOsjIQxUS2vaDYqG3zhRG+qUkpycoLY0PE6M2blSEX L0DlpQwZQYgUvWQ1XDqkAG9WP2rbNR+ud/FYfDXez+Qym5mXmZdZJ1vHviALky2RPS97nivijsuV 8kb5NoUarob/5nVKWa7crXKqblVj9VnNJM0BbbH2Bu3LIZUh20NO67p1r+sz9S8Y4g0rDS8aq4wv mkpNW/+PX0+HWuAqD20LvRmusxe/wkb/SsOWhN0ctjs8BK6GH12XXfI6HVEe8Zi51fy4+XFLlmWu VWu96ScvH5LOPD6e3fT7wmtm6gu+QyqlOHD7P7CJZwovbHgxdfhNYZpsvfwI5FUiJrihhrmEZLPA r1bAyN8O1qespZVPUpM8ChXDKlmZXc4plVrY8b7LY2WakmMYVs6VKBQIsTIZW4YsxV6P0evxeoq9 pjyPKS/XG1kzkGE04Tyrx+uNtBzJWL2xvx9LmJ5m4y2/sK70tDYH62Cd4GlgwMZqIXfCabwet+L1 Q88/iidjRhA429mPZElDO6B3jcNfsJ9zKciFVtL++ENdtoNMNHTJhMegUBSBTf6QUhTA0XuQC4eA dQvgCD/PlkP7kTVDb4BfMFA89MYA9gwcJwwf+IXlgF+XXO6MS2WyMk3Z2d6MGMYcHh/vjNMx4WEx jDejiMlhP59yX+vWt2+tab7rvS0pdZNqE1vuKJ5+bcvYhMnXTXPU1NU4vM64pvu/vedPGPdNl2lM utNj48pWPti94MGlhSHh0XoydpNh7NJh7LTIjMpoXw9APIdCUBj+jlfLQz9QlIR9wMvLRA4HisUu DZAxUP0oCbjGYTrG6TA6gGEuM5VxOo3ejGxZ+sS7zzwm7MLrbzt120ThTFzDptmre3YfYP64/cwT MznbxLu+2rPggd6CwXVvET0MwFi+DDxp0ArK0ZMwvKwacaoA/jevRdxJpMQWVqlEsgDW+HGJigCP RviAgSeCxJ6hfsOJfngi7Gp+bjHohdfoCHdIFGBDhz5hwKFlrJztNWH/y8KtrwW5PABcqlAL5XI3 wyjlGOr+9x45fk8mk8Mwa3bxihJRQKQJaIAy1S+ytPvSuYgkxfadcMd+/IVgOgv6PVG47aWhz4AN aN8z/JlMzaUjN1pP2+8LYwL4b7vdGEe5o/YzMpAf+Nq8KizMjE+63XJzAIf7DaUOAry8fFSvB4wi YwP9gIahw8Da3l9UlHCb5TCep7ARP9JXI5OHj7b39256e3tDy30D29v/3DJh59RpW2emx7dc12GO i7HpmYSXh6oSxzY/8P2992Fm54zYyG+dKfzyR3vmPbisiJUrOVwLPZ8JOqsQ9WOZ1HMFux9/B3ZI g797EoZXU6YuUQSwjtfzeiaWYbQsw8i4EpkoYTrKhP9i7DneP2AYIhN0188tQyyJkYwL6AgQaxTK v/8eH/ieyRt6nrMNfcuEnP0IeLyNnD6LPDZJ2sHK1VjFEQ3Wq9XaEE59Ulkm04AVK6HizCimJs8z dLzfIBoNUNmLZQIOQrMk/QSp38bmCyexffAwtssaX3xxcOXLL7MbgYN1IKVS4ECNrqYc7FTJMUPa D2F5hVKpVpPFuky1b/grJB9+i9fKVZhlFcoSWYloRovBgJrzcnOLvdjTnwES8EYaaob6+6F9286f V5DICouiEu2uTFhx9izeiBOEcnyMuXJoE8jrMaZpaNtQM/D7HEjsE+CXQ+OkUZWxwO1OhEsAQ0ZN VNDUI8CE/0cJ4swlc/e5s8xYzvZD4BjUmwJyyIN6Teg+aW1yaBUKjYFhjBq41MikUnMynS40zFRm LJHJ7axdFxh+jTfoWLmC4TQcpzZoNSVqsWtecVEhvcv1FhcHVyhLf0Z/hjEvzwMrD73I6Kl/cX3i KsUqYGPkZllnqCPUnAM3tsOiKt52x/ocRcRRHkf05uSsxLYS5gPsfkEow395QXhvyMzZhK1Hn8Nr RN2bAT02QI9D0Axp5BUM0gbwM7tUsFyCgXqG1/Eco1KgkDJtiULOEVY8XjJueXnYQ9TMYzg+IHVD e4mM4uC6jcRCYbMROs18KNxbfRKn4tnFJ1ntQ0PvCws42+CXtzMleD7wxSAXWKwSsFh6FItqKGdP wVrDIAOywF0JNscMq6MtAMBz5RcuOHsvkS6uOgwYHzsyirbHjnCmZHoiiOWRlTRte3aRIAiDBMmh pDC46oaq7pKY1VurZvMxzM1+QXigHk/BVX7MPFAvPCI8+umH4654sEe8A+cbQaImkKgO2YLzuU8e sR//C5iGZF6nV0acksuV4ad4VYnyfHN/XLIwvPYSWYKrppOIcvS6CZybyq974drVZ/CaNc9uqBAE R9mcynW/5WeVOdmr5zx2TaUwjbPlLLhzWWZLgV1wOEunATNk3mcBr2YUh9ZQXveEmxlGjnTghe60 KKLlAVjZIxTmstCYcEYheysmRhH1Pq8sUZQhOn8lxkCjjXnF4oJ1XFwbMkSFCP+ZBUVthjUg2K9w 6KQiIsIcSkaH9o8NC0ROL/Z8j1f3+FaVJU6aX5RWP/aocO9VV/V0500vHYPvLygc+oCzuSZv7q5e 3JChVrc1CxPYOzqahRstaVWg67OGP2MHQafy0DZJ193uKLQftmqhKJ1R+FVR8ftwJHIPH9qlM1W7 k8Fg7E4P5Rylyv3YCWu3DoeO6BLsu8DS5w29kQTDdhiUzigu0/tR/K+oITiqcfHurBiWdDYrM1We lVnE0M1cKistjnJ2sO6G/qVzD81I7Z7d7amcVRSV0967orc9J/fKAxvcLU01dvukhkZXSXt+ZM7U 3pW9U3Pwlsv+ODfDEvWtISpca0nMd6aVZIxNzZ+8orlm89xChUavPKUN0yvDXdmOhHGeBE/B5GVk x1IHmmEW9+mlwXUTB/APfIgMdi4qxL7PcyVMUDPpWnRY3A08eWGauD2BUYVliOkbFO4AN672B7+s 9sgR0s4UmOd6aMc6akcJy7MZhZAdpdpaoikxnTw3gYvP7Sh/lDQiRdhXgImRthIQlOnLVu9afM2u xRnfm/MmlxQ250Z9j0+t/ss1PH/lo5exXYOPls6pGhNb0VPDTpB8G9kc4EmJGqRVIBwplJhl7BwH 9h8rFSxTgrDoP4BVBgNHjTtxPrxHqOJfNBvRcgd22FgH87qwT1iCzSeqJryD5WD6BgQBG1kZtO6A 1ivFNegBqXUbp1bLsV6P5HApjCalIkTLsqFhsDZr9g1/inSwYoSq9ToNy2m1cpNRqSjhMBL3iNAs bdpD142fXIV2/ooKxS6xbgU4Sl6yBNEbOyi8t86Tskb45/i3Y5Xjbrpze7rMcRTffP9DwhLo7L6P XsFHhdDHX2GnE3mrocft4u6jnfZ4L+IYu1/GqgKMzK9WIHEjxLOsRqsuUZUowEgz0laLrquwDA3l nRgwnBA1Q/3jTJIOYrpKMo+dFaZg46HW1hexHL8qpOMjbK3Qc/gVfAPYxIVgJd6W6dAYlI5uluxE ZKTGGWA0O43YlRRgzHysxjYcGWk2vAKOWrwhnlGC7YoZ02A+HVOfOsTLG4PLjbQZNOUFd83HM/oH JB8j5tdUQcTt1rF07wzmwZtFFoA4uSKLOn7hRnZkMcvOYZVye2Vz17ja5fUJhav3X7MhIr02r/2J xvFPzV1y7/yM07cWTc621ld4Ly/dEJeXaE5tXFpZfVVrRqG7ONmS4Ho2Oj5p8rrJQxPw05bEnNii kgkVZAHbMvyFLJq8NwcJBdc3TfR+RiOub2Z/mNIawOm8Sl+varIP8lywJ8Wj1re9yHrxLKMsISil gnaKk/pojKBLdHTd1kNLFj015bQ65+a57dfPzBhGlpSSxKIlxdEtyfkzy8Ywuutf2VjiiOLahV0v VE2u3vCXtc3LJzm7JwvlGl1a6xrQuQ3gtT8tUyLniNfuNFr3M2TSGzC/R2/EBtYYBh3xh9Sj/TgH MsbgTPC+G0eMN/XAyaBSL+iXlRvttRM7/2MfiH26+o7mlYeuq6q5/rmVXRuzi7aVlPdMcCfW9JTa q6oqYtzRUaW/OXTNVYevnxRuGIiNS21cVjl+aUOSyhgRAuM0CfT4BIxTBHh9XcF5FQFKHIrtZqLE IZqxODyiIbzJOWiojyIsj1Y70DtseENUWNG9+OmsF+oldIfs5MWuZOcYac9YtdxeXtuWTYas7vpD S+JrYk4PLTKnlCYWLYahSxo3o2zMbW4+xVq94eCy649sLFEr8dazV+PTzStg8KbgA3TwoG9zYNVA MEftKAHNleaoVmtGAUbvdyTIAHiT2XFEJkuM/zaqPkTQqoZ507kRkHZbAxknpGWbN/6HzKJeyhUO qUPho7sawyiyqYLKEMsOdSdMnM9PeHiqe1rHrNSlgbXl5av6FvY8sDj/DLbnjE+ctlzDTLDWO8vm VIwxRz6jMekUpesOrl718ra6sisf4Ava8qOuXozoiZnMxm2HXWTUiI4aVCEBJoQ36cET0eujY0yq s/pQrdaig30uhpV3iLc06xroygu8G4H1PK+0PPcf/ytMvn7qbfy8cqTXklKGSwcMWY7g+GKZLXll cdKE7Fh8o7Dke+Ft7C7uvbe7dIX3h49ke3Sh5oyanPsPDrUyDx28o+fOrlSjVlhNvjSaJEyTuWRa VIjqUQf6WBq9NI23LYDf3MkWWnX78eMoCTXgN3iVd6w3CS4nTM1QVImKGCOf7OxsfkFpCv92wqQJ mjSWzR07Qa+MVTJ6VjlBOSG3s/DVgrppL+XWl7zEx0we0VHSJ1jtREsKPpTRaxjIMAyIGj5A18E8 wwBcb7wxIPorNj7xf1srRIwREeGSXZPLyQw3m2PY8OBuBSSaEx8/Coh8HeGYuiTExLthcoUGH+lk 2hBlHnfZre1Z7WajxRCbZPu6Yf0ML7/u0Jqr+5Zkm8Zku9K9puj4cFd6Yc+trSlNcbhjyLGip2Jm QaQ1pdD1ZrQrXJEwsyWlLDmC3tlKZ83Ylt+0poTrjAmRBrvVgFWMq7yzqOqa6dnuys58Z0FOZmRU a0bcuOwMi2t+XcuGqR6Vxj/oHZcbmZgbY3NZQxhZ2BjnGNbWMDMmo3RMy8wYbznY2i0w7MQSmVFb cL2Q0/UCzNEepDQ3aJXgnafv4Y2wICgbzrkHxeeWjF0/kUs8Z8kUlwhygKAoYulayHy2ChaF06e1 sfyEyZm1S2vdzG0Pdk8eWs1tEO4PuMaNDfdOX98wNBlm2zbg8RvucVjVooOe0AGkZsgnhhZQOlN0 VHi01RodHiWLibVEn7U16AN4Ih+i52I5xsJyYWf5iDqqBu+K57LipDODLng8hiFxx7r75xUbvYuV zAsmRzfiAQ5zypKUHxc3LsliSRoXF5efZBG+EU4xVuwavBuXcjpHfpLVmpTvcOQnW63J+YLm4ODh gweJNVkhTGM3Qv/CwWJeH+yfHfoXgcLBWqqMoaFGlSGRc1H+bLE24M9mOhtWpwzgot0q3TDPTT5n E0VuQdnB98kLdnDnLy9OFsHRjk92FrEwoRf0n+0tW/1ET+v29Kiqmnr3osuFaOadsKAAggKJvuLh RTkx4Sf10eaQtavY2IM44gJpgCbeCja1GDRRjeZLe2utSq5UKBD5QEmOYYvHm3gWqRuUdYo6OWZl TWwDopoGE7uYuB9kr9lPNszklIueeugvnf+CUy0k/Pb0adyF04VufBAPCjJuw+Bz+HEhfehN4I7q 4AbwE+sod7sYRgU6D/qnl6tUao1MdVbRgM7yTFPQ4lDTfmSoX1rH1BfJQjRqRIPwsXP6Inv+4A95 oB4YjQO5JIFNTgye//VZIwL4IX+YQ7UfP4g0KAE/xFuRRpOUnNggH4yvNw7yMfVWR4S5LqJBc67D 1AqKPJF5m3F8QBRQ2M8oROewtNFzjgp5zWQ6R9A77G9bZVpzWGxB/FGZ1hIWybuP7ZZFJGfkjWlp k1s83nFjFi1gdsXnxYc2zx5aeC7EnrklhU8wtdWR+53bh9xBuwS7iAg09QK7FM5odiFlRAMr7mR5 Q71GqaqjJseUJ50rQgeJbG3+n8p2vmUyX2CYjsljy2rbc0cZJvYM2QBZJLME87YadjoxwGMobCRH nYOFozAUBXc1MuMMv74+NgBwbiM96hzs4ukXsTKK88/BYsrX7luxxL+qtGLdvmVX+FeVCCuW8u35 trWLCttzoxjZlc/fUFu6/rn1Kw9fX1N27bPX/fHujClLS+++J33KctFLEHpl0aJs3cEdmj9EaSfi VRM3YbdZDftPspXkNaZ6TZ26xTnaESimxkU0/tQ1/U+ZR3sO50R9UdchflJsUPSX9h7USqGX2yCO xo/9B9hdC72gO1pkAXvaGdxdm2F3HYEdVrK7VmuZJHO9a9BYHwN87+IVjahFOhIRnTrxbZ+XHmX8 dE7Rec05f8dpzrlwc818pokqntjqJT0qXd+/3lpQkBP+0IXba6EX1x525ieayRZ75Ys31clVIQrX 2bnsugv22BjtAptghBE0o0XS7AhR7WeMROUYrR+piWH3h7zEBbCCV/OmerNZDSMjKb+HcL9qyDJw bp7sRcqfU4D0NvuCyQ/KyVoZvSMtNru34uwJlbW4ZkZuzYoGN8sszKvPtLTNITPnFndRiiVr3h/m Eu7vAu/nKHCfju6UtC/OivYzY5AejWWi/EqrI4AZ3oDiDHGMiY1zfTNWz8XUK/fhfKQaPsSrdMZq lfZfQSUjh3T0sI66fP3irlHslONXVzP61I+oZ7a40Utlz/MH6WYxhmWP1qy5p3nxrvoZ+5s6Zobl dDdMXDLBlbvogUUdt+RNuX3ixKmmrJm1rVeOt+OkKVfXOMPD/u52Fqab450uc3hW9Uy+6PKmtDDt 81Hm7DTzmDhXhDWvehqx/EROXCGyBmfpLqNVpTeRNcesVanhirSpTGd1Wn0dGrZGDI92ZL1H6PoD uxxD/1DwRZT+p7KP8nrJSm/MEV9cSqcVR0uvK+jeNjNF+BIbz+ItwrL6GQVXeNR6U+LkDdPwVwex rETYf1CIm9IWFkLG+LfA+zvsmVH7Sq2aGBgFwmQimutk1C4bG6EnDaq688z3AF2b/D+VS5x5lDlY wZ1BB9eIVxcVF4r2215aMzWndlmtmz0ztKCpZfZkZv2gUvRhvTPWNzCPAJdmmEeNwKUSXSHtOUIV SpaxY0ROE0O4aI7Ryzjy1kc6M6xDuOHcmWEuqMrorxuOkLn05M8qJh030jOvZ4VPhIXYcKy46HUs B24P7fMz1Uj8OgPJpgF/JuST+LNe6rxRFRje4WfT1PuG30L64beIH8qqZNIRYR05Imz48RHhfzh0 7Pu1tV7i5PGI8HWPwzFP+OqmT8cbE+bsW+gJLTyBSxf3Ck9Dr5/5w1acJRzZdg/Z2dOz1mrouwY9 J/U9Xs6pVYyzUSVTss5GpVLFwcUijYJh7RhrQ9SKSAgqAsNf8ZEIGzCj57Ady9QKmUallHN1Gg2D WIlfj8iwWRyL3JnTzx0SW1+HmyQIQ9LGfkJGTKSx579RP30jCNtMR2go2WxaP/0MnPLVwu9xwoen sEm4Fy/Bk4VHGITPCH5cK6iHBCIDM/jjRD8j0XZJBiHWyPAwe6gSm822qIjA8Ek+NMIcFhoKjNhY LjLSGh5Wp9IFsNI/sqk/TFiBVdjozfV6wMLlSmNu6fdGSjq7F0X8qpqIySATb+TdSE5Qpb/I6t38 8HzruFhtbJxTn1hdmBF6TsUXXfv8hjKOe5XhYK7l1XlGVJ6+bz8KPVahBVKP1UoGNJ1s0PH+4ZOQ RYGzd6sa5HY5Ix52ySQnLSMX9tO5YP+9Hq/hRMZh8Wsd/J9LkJfNWWQTHo4d4bfhrwUb6xYi8ReP MKuPPjq05U0yDseEHcw3eBmyoQhyTjdhN9Ia0WEb8gz0kzdM6WnmCPEsQBbcA4jHB8cK5tUkGyOj I40RiYXu9NrsqPJNL296mjG5CxKiExyxzhR77LjUqJSaruzp919VBTuX96AdQcZAOx7kPoAcTBVK Iu35kTY+gGt2R9UFmy2WXm1domkcDEj7kvd+zMrGVzbh5vjStKiotNL4+JL0qKj0kkvyxs2KSi91 BXO7StOjEMYLhz8DqSwhn0MdQBwzkXwoiOv71I1I3OSmp13IBZOSWJ0VE5NVnTi2MjMmJrMSL4nN qk4YW5UVG5tVNTahOiuWSHsQ72IXMFsRi4x+BjF7cQ54+uRQ8Eh6GvliYpC5HO96+23E4O3Awavg lbFgyZ0HEMMkQVDF5PpDyfc743fqGsHXKi4e+iv2iH4wdoJFupCpu466sO0Ge16i1ZqYZwe0WBLz 8G3slz/cBQGHg0aICLtjbIWV7TloMxKlogroNz4JZtrGlOx0ucJQgInfqQtTJAbwJF5t587olMpw e2NYABf3hQMn4huDPNg4A0NviIeXIlfkharCGXy5yDidWeLRwoWu9nPemdc1qY+atqVXpYQnTLlu xriKOz6+o0Z4ITK5APzs5MjIZPC7C5Ij2WPNGzoLNAfwlVFpxc60puIxH4xfedfgLMnZHnG6QdbV wwnsV6IELbwasQxm2CaE2xBZq0Dg5IUZ58RenDXA7PviTTn5b5zYIJ5XHIPhtvn1Km0Af7BHiVjl QjQZES/c6xW/lcPxjPgaP8csB3mbzMz3335bvX53z5Zn+/ufFab9Fb+FDdux/oujU7c8ISw4+YEw /THg5yOou12sO2ov0uKTvAqq1quUk9FCsfL+4xkZRGQRJiP5VkDhzjZlZTJuvOy7r6rX7eq5vh9+ 3LFXBLfw5Xbhm6+Otm95Am8/+T6+/3HCeTp4BsWcH3YhMX6WfLH1Oq/iuLOKFtlZpocMD9HbE4R5 6aMxnM7ohGM4RehVFB88Wwj+OAbfgw2T6sAyuVgHy57lepiz4BuMroP49UBYiZOE1xmt0HuQe/bg maehl9uhjq1QRypK321OidcrQVuf4A0x8U7Vv5VKc8qZ1BbzmQjKEdES8Ej6hw73G94g1cbFZ5Fz RqIkoC/0VVM4PQimb+bDxdcU3nA279VXpl1WXJw9KS3c033nwubitJrcGGtmffZl82Jya9KKhd7n 3xLmzvuLOW1ipm/uXfOyDpgzW4qfmLigyq3U3niLUDI5M4K880UbGRf7HmiJERXukclxiF4NsnuQ D1VhhVajZIwGpZHVwoVUoORHyOIJq0MG3UcQ1vulT6GwM1ThdrlyzKyXzTFznMINsy/qh9nYKnwy +4eoo9GD3cKn2NI9yLhw1q7H1617fBdsCV6mIZD9I+zNzAGqrXtBWd17yLddiMzxI+LBhjTFoVIH NrE3428gZxZ46elcOlipWDCmv5V2oxbowMd++5gwAupk536cBP6iGSfwpjFh9jEWuDjbP/Vd7n/y 3Oxz38nRnpHTaHI8LZ2hHEDOX1r6Ij4+Rz7So/4ilxmfhSWvOL1y4zOre/ZcO6Hquv5VPXvWTxg8 y+B/OHtrczuqEhgDI1jtS2tyO6vGMjffIzwxbdJ9Qp+I9wp7wpwmPKtrZt5y/zVGp0HY0Tkjf9lO GM1eWGMFzgneorTr7VOBw/gpH8pwSM4wGi33T1YhkyHFLCUsmEl+HnUHv1oTP8UdEGXtPXHYMHRE 9Cp+dhlxrXUYObeLfN21HdcI79bju4/g2LfZ6h3Pv/PDnreJtl0t/p/tdGQPerd7YQX/cqfFEhsT YDy7DODXgTeezKuiwfcMtXfrtWKLoV3BXQrsuwYyYIAODxwRdcLW93MK0I1AERt8beuWXtuK1tkR vg5nTZmfZ7KkVqbUXDtuXcvrqzruWlSYWL9s4kHGDWo65Zqu5hRXWXp0We4DdTPTO26aUbtx7dqq 3afIadbw5+LXLbloX7BHdvwZH5KeGZkeH5meHhnPakAhP+ejQjV57i/jnV8mZ0Z+FIqsdmualbWw ViuX3KUOYDev0fChrmqN7sugYkl+K3mvkTeQZyDfKpMXJUbxfBv2agbxGMP63610lMJSj3jUUiW9 95ArsqQztDC5Arziwepb3789buKEyqjiP7Q0XVnriq9d2bRtQ+3cwsh5C2u3N6Q0Njan9Ny3KHfh rOI54934xs47F+aznII7rtVHZdWmJ1Wm2/bFZla565tirEf0YTp5astVE1fc7Fan13STcyw3eAjj xG8TQtDlkiYjRQD7ea2Wk7MajYqTKbmQAExLDY80cpbF8lm4WzrUMOWJX5RnwIIFWgL7Wi89MvzP JUa+msEOozcc9vTssi+GdmAB1x8W6oTr8VKsFr7H6qMsP3j4TdY15AdeZ4EVsgKvscgbfGPYZ0kK 4IFdSoNBCWP/j512ZSbsG1y80eIaiDDYbJzxa8Msz5fnWRAyk06QERY/agoe3iT+rFIjQwjrcpFM WjMU0nt8haj08Cy94ZZZq9f45n/0TWTh3Dv+tuXWx3t+Ny1VwWRuGL9gx2VZgsVbl2MvHpcVHpXX kptWmxOD/9h1T28RuA5je57903XTva8mNy6fYLHac+bdMj+1JidWY4rQzt7S6raPayAzfAHM8O9B GnJUIn0ZzoArySKyQffs4mWzROshmg/s8Rwxekk/+y6SKrnRZPP+mfA5oxzayl4v83z+Oth98T20 +F11DhqP1gbfq6TgnciJvHg3r7aiMKsTLj23H3+MKlAh/pgP1U+oKCzMHZsiU6d9HNPFf8KrzwmS vDUc9VpyxJbbeONPFyKiv+CdYvAsiRoYNzE7wSMlhY4NP/d6kdWmt5W5q9f8uevyh3vHucvbMlLq Cpw5C/+0aM6OhXlx+fUDY4pTo+Z0zJgTV9DAuSu8Mcs7k2vHxcWXtjK7bCUtl5W3bZqW6pl81cSy +ZPLoyOLajsKq1bPyE6qX1RW1N1QUhqWks27S8orK+MLvMnfhqflVyRNqjfFj0tILMvNEM+5xfUi HTxyb/BL7Sfjoi0epZKsogN+g8cN+svrLJmJnxt0oaHKuC+ju1Sgyn5e2T1KC/OO0Je6GUR3jdKr XO1/LEP1ViaZmpyc0V9mxDCuc+fiOURaQubMa+95ctbv/cv+0OlRMlmbKmbetaSoas0T8+Y8tqZK sBFtXdxlKyzMCTdnTWbeueOje+cVRBxNqFteY7Xakztu75l1zxXF+Vs+ftee35CxYK7aZA5p2zQ9 DeSwAQ2yp9hq0C0F2S3LGSRTCBwjEOeE/BeRfrLFIQ4K7PzCN7DTBu9npzHXPfOMsPyZZ8Rv1+jf JpHNGX5z+APZevo126jfcdkcVBt8gDAhmRRuBJoMFJDIAzQT6DYpfR3Qc0ApQNACcgFtHJU2C6gO aIpUr0NKU1/y/9z/X/hB+wuBtgBtAJoENEfib5IUvw1oBdCtUnicFF8tIcm3C+guKe23QGYgJemj FL7IXw/4f+sHfTgG9B4NYyKzQcDt0rP1F9ZVffF4bIC0jwDTgYj8pPqpHv10nfiRX8KDVG8WUC/Q 1dJYuqV4oqsLJF24KK8/s/4N4gw7jjoRh6YCkQ/UPagDIVUX+hieSKoCtZO/CCRTQbgb3S+F6cyk YfJB+11SmEUFUJ6GZSgSVUphDiXDEw3LIYRQGVqELoed9iLUA+33ohRUKoa7wUmeja6AmPliDjtK Ay8wD+52yLEMYkkeO0qHK/tHtdhHaqmBnF1QzyIxdQ5aivIh9dL5SWoGtJKGskbiHh6Jy4XQj2uk 9V2BFov3ToihPKdCSgnU0APYCHFz0TxI6xWfZgOS/i2He7f4142kv9M07EZgBH9k81BJAXMd6mY2 gO+M4G4H4oE6gNYC7QA6BHQSSIlUzHrIey3kfQ3uGO6/gZTfwBjdCHeM7mbWwb2D3Jm1kHMN5OTh vpgh7wUR3NOAOoBYZrW/u6QlwFzjLxmOLZnMXA3ZV4lMrIJMqyDTKmB9Mdx3AL0mPnngPhOIQa/C fVgMnZefWQm1XAW1pMF9MRAj3n1AXwGxqA7ur4rx7zFXAqtrxftM8Y7InVkONawQ+VgBcWlwPwTE iM8GoB3MCn4FewUuiV3EemIvZ0pi56fMa5mbMqdldkp3S1fKrJbOjI6W2A5PBzMzY0bLje24vh1/ 2Y4N7WntHe3s5JSWlkMteG3Lay1Mc0pTy6tN2NeEb2zChqbFTQxgB8HGlIaW+pS6lo46HFuHy1PK WkpTSlr4AHO5X6Wv3Mv0MJf5M2Lh+bKd8HxoP9MLvPLMkp3pOZUQu8Qf5agMMBP9dmdsgJlAYTyF an9sPEAVhUoKFf6YBIByCmUUSimUUOApFFMoolBIoYDCOAr5FPIo5FLIoZBNIYtCJgUvhQwK6RTS KHgopPqj0wFSKCRTSKKQSCGBwlgKbgrxFFwUxlBwUoij4KBgpxBLIYZCNIUof1QWgI1CJAUrBQsF M4UICuEUwiiEUjBRMFIwUNBT0FEIoaCloKGgpqCioKSgoCCnwFGQUWApMBQwBSQCHqYgUBiiMEjh BwpnKfybwhkK/6LwPYXvKJym8C2Fbyh8TeErCl9S+ILCAIXPKfyTwj8ofEbhUwqfUPiYwkcUPqTw gd82DuB9CqconKTwHoV3KZyg8HcK71D4LwpvU3iLwpsU3qDwOoXjFI5R+BuFoxReo/Aqhb9SOELh FQovU3iJwosUXqDwPIXDFJ6j0E/hWQrPUHiawiEKT1E4SOEvFA5Q2E9hH4W9FAIUnqSwh8JuCrso 7KTgp9BHwUfhCX9kGcDjFB6j8CiFP1N4hMLDFB6i8CCFByj8icL9FO6jcC+FeyjsoHA3hT9S+AOF uyjcSeEOCrdT2E7h9xRuo3ArhVso3Ezhd35rOcA2CjdRuJHCDRS2UriewhYKmyn8lsImChspXEdh A4VrKaz3W/MAfkOf1vktBNZSWEPhGgqrKayicDWFqyispHAlhRV+8ySA5RSWUVhKoZfCFRSWUFhM YRGFyykspNBD4TIKCyjMpzCPwlwKcyjMptBNoYvCLAqd/oh2gA4KMynMoDCdwjQKUym0U2ij0Eph CoXJFFooNPvDuwCaKDRSaKBQ7w+D5QzXUailUOMPdQFM8puSACZSmEBhPIVqClUUKilUUCinUOY3 gtXHpRRKKPB+QwFAMYUiCoUUCiiMo5BPIY9CLoUcCtkUsihkUvBSyKCQTiGNgodCKoUUCskUkigk UkigMJaCm0I8BReFMRScFOIoOCjYKcRSiKEQTSGKgo1CJAUrBQsFM4UICuEUwiiEUjBRMFIwUNBT 0FEIoaCloKGg9usrAVQUlBQUFOQUOAoyCiwFhgKmgPhhQEIC0BDQINAPQGeB/g10BuhfQN8DfQd0 GuhboG+Avgb6CuhLoC+ABoA+B/on0D+APgP6FOgToI+BPgL6EOgDoPeBTgGdBHoP6F2gE0B/B3oH 6L+A3gZ6C+hNoDeAXgc6DnQM6G9AR4Fe09XFvgr0V6AjQK8AvQz0EtCLQC8APQ90GOg5oH6gZ4Ge AXoaiP/gkK4k9imgg/D0F6ADQPuB9gHtBQoAPQm0B2g30C6gnUB+oL6QabE+oCeAHgd6DOhRoD8D PQL0MNBDQA8CPQD0J6D7ge4DuhfoHqAdQHcD/RHoD0B3aRfE3gl0B9DtQNuBfg90G9CtQLcA3Qz0 O6BtQDcB3ajxxN6gWRm7Feh6zdxYFI310bHRN0azvqhDUUxg+BDfHpWSVhkb5Yli9FGxUTdG3R31 RBS3xobfs31pY3ibLbaSt5ki4KYOqeQj0zPh5k6Em80BN5MZbmpdZZ11ppWpt3RYGGTxWQ5Z2A7L Ygupfo8lv7QyzYxJS6FmqMcXcSiCQSaDabFprUmmhvidphjYf0O60WSOrLQb0gy8gUWGmwyMjqQa MrLE1CJDQkqlXh+rZ+r0M/WL9MN6mV5/t/4J/VMQ4PXZ+ZV6XayOKSH3p3Sv6t7TccW6Ot1MHXuj 7m4dAzq9MwJzGNayvuampKSJAcVw40Sfsn6qD2/yuZrInW9o98k3+VBL+9TWPoxvED8Ga/YZyV8I E583bN2KSqMn+qKbWn07otsm+tZCgCeBYQig6L4IVNrWu3TZjN6kGQBJ5E5uuDdpaRJE9CZJPwgu TVrauxQl/f/ww//TDPwP/mAE6aj29hJaCj8YaTGUNDLcRBd6yU/EpUQzaCb4gXokWf4XGIxj7Qpl bmRzdHJlYW0KZW5kb2JqCjE2OCAwIG9iago8PC9UeXBlIC9Gb250RGVzY3JpcHRvcgovRm9udE5h bWUgL0NvbnNvbGFzLUJvbGQKL0ZsYWdzIDUKL0FzY2VudCA3NDIuNjc1NzgKL0Rlc2NlbnQgLTI1 Ny4zMjQyMgovU3RlbVYgODMuOTg0Mzc1Ci9DYXBIZWlnaHQgNjM4LjE4MzU5Ci9JdGFsaWNBbmds ZSAwCi9Gb250QkJveCBbLTIwLjAxOTUzMSAtMjA1LjA3ODEzIDU2My45NjQ4NCA4NTAuMDk3NjZd Ci9Gb250RmlsZTIgMTY3IDAgUj4+CmVuZG9iagoxNjkgMCBvYmoKPDwvVHlwZSAvRm9udAovRm9u dERlc2NyaXB0b3IgMTY4IDAgUgovQmFzZUZvbnQgL0NvbnNvbGFzLUJvbGQKL1N1YnR5cGUgL0NJ REZvbnRUeXBlMgovQ0lEVG9HSURNYXAgL0lkZW50aXR5Ci9DSURTeXN0ZW1JbmZvIDw8L1JlZ2lz dHJ5IChBZG9iZSkKL09yZGVyaW5nIChJZGVudGl0eSkKL1N1cHBsZW1lbnQgMD4+Ci9XIFswIDIx MSA1NDkuODA0NjldCi9EVyAwPj4KZW5kb2JqCjE3MCAwIG9iago8PC9GaWx0ZXIgL0ZsYXRlRGVj b2RlCi9MZW5ndGggMzYyPj4gc3RyZWFtCnicXZLdaoNAEIXvfYq9bC+CrhoTQQR/EvCiP9T2AYyO qVBXWc2Fb991jk2ggsK3M2d2zjh2VuSF6mZhv+uhLmkWbacaTdNw0zWJC107ZUlXNF09b8Tfuq9G yzbicplm6gvVDlYUCWF/mOg060U8Jc1woWfLftMN6U5dxdNXVhoub+P4Qz2pWThWHIuGWlPppRpf q56EzbJd0Zh4Ny87o3lkfC4jCZdZopt6aGgaq5p0pa5kRY55YhGdzRNbpJp/cRlAdmnr70pzumfS Hcd1YiafyZdMMmPah0zHAJkZ6MDkpaAQsRMoAeWgFISaxxy6M1O46UCJxH2ombggVEnQ52GL7aFL QCfQgSlHppfzADanhz/fjznBjgOPvgf/qCRRwsdlEpdJuNq7fOhts0EsgLnwzJQ46OfIhyn8p4h5 GHQGqxnm7QVbr+hu/W/rft2Xor5pbfaBl5AXYV2BTtF9T8dhXFXr+wtR9L9pCmVuZHN0cmVhbQpl bmRvYmoKNiAwIG9iago8PC9UeXBlIC9Gb250Ci9TdWJ0eXBlIC9UeXBlMAovQmFzZUZvbnQgL0Nv bnNvbGFzLUJvbGQKL0VuY29kaW5nIC9JZGVudGl0eS1ICi9EZXNjZW5kYW50Rm9udHMgWzE2OSAw IFJdCi9Ub1VuaWNvZGUgMTcwIDAgUj4+CmVuZG9iagoxNzEgMCBvYmoKPDwvTGVuZ3RoMSAyMzU5 NgovRmlsdGVyIC9GbGF0ZURlY29kZQovTGVuZ3RoIDEzODIzPj4gc3RyZWFtCniczbwJYBPV+jd8 zkwme9qkTZsulCZNF7qmbboFWpquFAp0hxYKdKcg0ErZFwERwSICooiIgIioiJCmgCmggBZwQ0U2 vfdypSKiV0DwKheBpN9z5mTY9N7v/b7/+373S/qb32/OzJzznO05ywQQRgh5oIWIRTVFZabEQaf8 xRByGVBTP7m2NWFB2UCE8FCAR/2Mafpv8z4EzVQjxHk1tY6fjNd5fIaQpBUhmW58bVsrCkJGhNTL 4Hn1+Emzm/bsa34TIa+FCMXUNTfWNlw6ov0WzgvgekozBChWs/0QGvgdnIc2T542q2ZCXB+EMqUI seWTWupryxuGBENU6yD9nZNrZ7WqJuKDCGVD+kg/pXZyo09i/IdwPg+u929taZvm+h2tRijHQa63 Tm1s7dsQCffnfIWQXyliRU14FeKQlFvPmeGJYMrsCdTEIKmMUYhlDCNiGRGYy6L7PsPK9HpkRXp9 EHfdeR2PlVQzDASTskPsZS6QpMY/geFIQpVIhMkdoRAugq8ehaBINBAVo5GoCo1GY9A4NBfNR5vR 23q13l8f1NvLxxGCIlAMykKld++qve+uPr29vRfQCpJq7wfki/JRHhoOpxG99b3nzs85P/P8dGoV xBV6fw5QOnrwsxNtgnifRO3oKfQi2o8OoHfRe+ggOoQOo/fRB6gbLUNL0Sl0Ep2GZzPA9kwogSyU jXJQLqSajwahAjQYDUGFaCgaBlYUQe5KwPIyVI4q0KskEckkNtVV/VDKpagJtUG6a9E2dBpLsRkP g/MlYM1OSPtjdA2LcRBpcf/zD9SMF5TVVdeC3tu9kdwvrouuarGuV8yd7dWyl+k1bglSupp6b7gW uL7ujRR94KruReKm3sjea4wVWoo7BtFc5AVhN7kmbgn3BncC8hXJ53Dj/wuzhkEZjEONUA4TAZNQ K3A11PZY1IAmwNmjUB7T0Aw0G83hW8kUNBP4MfQ4Wgw1tgzO2yCEXl2AFkHoUqjF5ehpaBvPoJUQ 8jiU51K4c7k75Cnglfy9JI4lEAt5ov2+Z1ajNVAj66AtrEcvoVVw/iyEPIeeh9AX7oZvQC/zdz4Y vuE/3r+Rb2mvoC1oK9T4G2g71DMNuxfyFtqBdqEOCN/Ch+yEVnca9SAXuo3uoJ/RdWgncuyFA6C1 ZOBheDiUXjNfStVQalPQdNQC5dXG27EAvNkSPm/z+TJYwJcZKR9q5SL0hLsElvFlcK8EnuXtXwdW ELvWQB6I/dT2V/kwmr8/5o5cfe3u9T/L/5a797wJubUhO+pEu9Fe9A7kfCfk3Q5ne0C/Drl/010i b8MVG5QKvXcPf/cb913b9YerDrTP3ZcPg+4CRY777vbvbvc5PTvM9/Mj6Cg6hj5Fx6HEz4L6EH2C TqAv+Z5/Fn2NvkVX0S30DboE9XAO6uQi+h79gH6CMeIqhFxD19ENqKM7UFd3oOeSeoqFmvKHPhwG tWX539OT/z/5rP1jEFOHP2VuOl2Su14M+v8aNoOBXPVeg9ZXjZ5x1UCwUhwvVnC3uJ+RgktGci6Q +az3Bj4p/g7JxFqRT+8N8Px1CFkHNYwbO6Z69KiqyorystKS4qLhw4YWDhlcMCg/LzcnO8uaOTAj fUB/S1pqSrIpLjamX3hYqDEk2E+rUXuqFHKZVCLmYITCKCbPmF+jt4XX2EThxoKCWHJurIWA2vsC amx6CMp/8B6bvoa/Tf/gnVa4s+mhO630TuvdO7Fan47SY2P0eUa97XiuUe/Ao0oqQa/INVbpbVd4 PYzXonD+RAUnBgM8oc/za87V23CNPs+WP6O5Pa8mF+LrUMhzjDmN8tgY1CFXgFSAsvUztnbgfgMx L5h+ef07YHxWkWRtbFhebYOtuKQyLzfQYKjiw1AOH5dNnGOT8HHpJxCb0XJ9R8yh9qcdalRXE61s MDbUVlfa2Fp4qJ3Na29fatNE2yKNubbIOd/5QZYbbTHG3DxbtBEiKyy9mwC2cWFqo779NwTGG69c fjCk1h0iDlP/hogkWbxbTHBd0AhsAwshfwYDsWW5w4rq4MS2sKSSnutRXaAdWU3RVTamhlw5JFzx qSBXFgpX7j5eYzSQqsqrcf/NaPazLazTx8ZA6fN/YfAH1/U2Nrymrr6ZcG1juzE3l5ZbeaXNmgvC WuvOa15HvAnur62BTEwgxVBSaTMZW21aYza9AQL0pA4mlFXyj7gfs2lzbDBhdD9lM+XlErv0ee01 udRAEpexpLILmXvPdyTpAzvNKAlVETtsvjlQKeF57ZUNTbbgmsAGaJ9N+spAg81aBcVXZaxsrCK1 ZFTbIs9DcgY+Rf4pyNtDdws3k5xLwqT6SiaQrSK1BQH6fDgYs9Phghqqiz8lNZqdrq/EgUi4DVJx 30HUA/HACRuWU0AuseTRnIJAQ5WBfv6DSYFum7gwm/S+uNQQcNcmms6/NY3eTQyK1Oc15t5n4AOR cm4D3bH9uZ0MKQt3wvCElFRngXCJDYOeC2EMRMMHkVr009tQsb7S2GisMkIbshZXkryRsubrt7DM WFgyqpKvbXcrKX/gjF5Pu3vNrWxMDjTA/OhAoU7580H8+d3TgocuDxYu69ulxsKydhKz0R0h0kP3 gRyLwwfXLk/zSoJ+mQ+uzZhfa4T5c357raN3YV17h9Xa3ppX09yfxGEc3NBuLKtMD+RNK62cHziH JOWFCnFheXZsDDie7A4jXlbSYcXLykZVdqlhar2svNLOYCanJruqIxSuVXbpwbPzoQwJJYHkRE9O SEylcCLl7w/ssiK0kL8q4gP483oHRnyYVAjDqN7B0DC1EMZAmIiGWfkw8oEa8muG8gVfm6dvIHUz r6q5vaaK9CzkC/UIf9iGjQORjTEO7MCMWGmTGxuzbQpjNgnPJOGZNFxMwiXQKrAvhsIhDqm9xghO ClpTJQrEtB2yJEq9o7e3vNJwPPBKlQHaWTVgVKVNFg2OnwsbAvcNIqiB4EG2hfW1xA5UUUmelYQN rq+CNitECLcMtskgBpk7Brgjn3+GtEV4qB7qBiqQf34hnNgWVtmqokmilROq+LastqECY3+odhon F04SMlW1exkT+Y4J/UAetpSQDGxDZZU0JBBOIbEqWkgSJVheb4RL9TV6KG0Rqi+Ddk4dqTyQhjSC PxSFN/KQB7ovIpItNkyhkttkcRAh/BGtiCP9kQuTVFVR4/mzpe4bIG21TQEWhd9XlO4HoHTg0mBi C/wtBVPJrYdJNCUOVGqcBW6FGM3HJIHLNlXY4Frw/PR5BYQY04SHpcRBKNxxdNNQCcm5EsqdDSt3 9L5unG247xMbYyQjA2mYKLALGjaqan84wDY6OjZG+nCoig9ub5eq/vwBWl5S1V0mgfo8GDLoylkO X28kgbWw531TsGEwz72NU3EzXoN/YYxMEbOU+YA5zw5kZ7FHReRTJ/pMdI3rx43ijnBHxOz/8DtJ fEgil1RJHBKn9GOZVFYpc8h+kQfJH5cfVCgUtYoOxWVlrfJV5TmVp+oxD7HHKI9l/8e/73nqPOs9 V3q+dt/3K3Waet0D3933ff+ukWqiNcM0L2l++MPX6eXnlfVvvru8Lngnem/3/kk7ULtd+5nPBJ+T //H7T18v3wTk3gv5vlH19DOLxnmm/4ZkUr7y9l8IjCL84ZKP4npPu6pFE8WfwqkUMcIEG+ociaph nS0B1WD1krMimYiTMliGkV4ilsmlDuxh7cOwrKyfTLyS2QQ+lhFJxFkcJ8JYBA/noEyzScP/ZZq9 LKYxXpY0s0l9JRH7m8zmAL/jifOXdndjNyfEG4ysgTViszfLiqrfH+08X92F7b9WnzuHg1wXuMA7 rzD7nXlkBwjW9uxNsEyD+qJIlNPhH74fb0Vi5IW37lGJ5XIxcuCtVk2wOErl3xMWJva7IMkKvyAG e65kXgFDrliw+sypHo3F5GXpUV8/khCPtR6M0aAx6DVasaQvyybFMUajxpw4kPEWZAp7c/DSg9Nd 2/EMvKdxavK4gqgf/NKbhjvsGfWDIqKjitsK9h54cS1eOnZ1QxIX6Hp/4rowefzQZuzsN8jc1zU+ IKXE+WticWpf18CpUCvVvdfYC1w06oMGdHr06evrwMfsXJDKgXW7izywh8aBVXZ5NtqPveEWf+zR weSiTOeZK4AxV8D8HvUZKLIwsVGPNEkDGXOir84nPNwY4sH4aL3A2lT2wss7XD+5zpau++rJ0RsK Bq0bVf18c9pnx8rXD0rIwoU492VXR02wfldEZN7id2e7XK4II6n1yVBxQVC2SuSL+oGPwEd2q1VY pSUlKpfqvC/IsrSXpLQoiRmnxvTwxSfiiw8JJacXBQVZm57rnu/6AZfgRBy7P2ni5kkvLsHvMRvG 7nhu9ggTFNER167lh2Yk3/GB8vgI6tQG6SpQQodYTlLTwppVhLBSfEEmw9wFJkt+Ed+rQkj7XLeX ha89AyTt4wZrc/ozl5yfMMHOHiaZC1zremSti2yVwjoasTshBRmK2s3KJIzYgd+wqiRy5luOk+CL 0iwJxH438utH1N0WyBmN1ggR73SeZjycv+xlekSLXZXPO/dBXBhl915lf+VioR3mdmoNyHc/3gK+ Uoq7rTJDlM95b+/wPpEO7Le7iHhSB/bcE56t+kefXJIPUpMad3I9p64f9SLpCXXYlyGtL1VjSDZo PFhjSByT7K5m9urg9aObt7QMiG/a1OIdExOpdv2G90eOHjc25smzL5SMevVie+WmwaIBEdFDlr7X Nuu9J/JFErkYb17jbPDuq5WXv3Zjyyu9HWOCQ8CiFndPUiBzh1QEpW7nZJgUvhpxSkWW9BLLctCj cxApmkxiayZWHzVdP0rLHYoFisYMRzN70+78q93OhNmZSucbXKDzLBNJSn0HpLCPT6HfHixTiKRQ 7NusCoVYcVGWwyGoViiKRPjDpuunu9XnukmZJ7urM9mAv3adZD1cJ3HsnV9wrGjJ2rV3vNetg3j3 9v7CToZ4fUgrxfh1q8xLq/T1vuSTpSDFrfT8QezuMKR4j54hrVRDejmUZESyry90kWQoXHZyYtP6 5oiSwmy/gS8MmTzD5QmOZlr5C63ZCu9AdWds0pL5zC/rIb0N0C90kJ4c5XfKJQxU5da9IgV4Uyx3 9F6zy2USR+95aE6MiOOksiwwifd/GnOm2QxuxpKmsaRhk9lkJk3rSCIpPMyXHTZjke68S2e3429O Ou8wi5wLoPReYcY515Dy+xHK72tIlyMjtojkE2ExkyVy9wXI2/EevgdALbBfO9V7mAFc4O358CR4 f1Eyv0/aag1SKaVShdzTS8Oy8Dzn6emt5UR+Ej/GKrN6Onq/svp7yhiJiJVKlGKxwkujUmbJ5QqM kYLkwu3DzcSLe+ksaeRj1nhhSwY4cr/uRAtx6H5qt+A9OSthjWwEyxq9zd66VG+zKHlngCLj8FxH hkj3hvWkzZLa9TVrwpa9zpv4149dXXe+AYeg3bYNXya5ngm5vga2q5BlN5ZycgVx8Ahx0DI9xaos Vs7KpZIscQ4mDTMxM9Nsscw3zTP5ZWJTj6knUWOx8AXMakgRY28NtM9rP7gWT9l2ET+yeBukK3ZO do2Fqr7jOs0cwG3E81l6r4pM0JO9UQQKPYC0fIp9iduT9/P/0TPb+AOXe9ftmXivx4jFtGd6paSY E/syEuL97uu+IlPZincnPLZ/bnrpigPA8zK6jMPnjiyfPTw8dNicEeVzisKZtbZe9HrJ6B3/emkn BlH91o3X2w62Dy1Zvn/CtINPAe8D24QRzwPpUBzxyh90ekq1EtJTVVI/7UWxWOrdI8uSPuTBTvW4 hzYj8WC8geHCYJb+WPeyLXbcWmtfWtz12nN7t218i11e/PK8Ya5oLjC6Zt30x550ft8OaW+HdhQI afujUFRolTH+GPn7yhCMUN2dAfJgGe+r5WG+km69v95f3veCIkueg90ug1hjMdERlxhEvJwF2ipt JHHsXct8wEyJL3g3t4VQeIEffeAbl5wZUW7HY6dunZAQOmhCbuqwfsMXz3xjVWbjoAi8JT4zTE38 cOKoBcMyJldlqb3HFTHiCc2u4iBLGWlHLeCdL0KdJqP8jnAYTLuhdmPBbnmflPB92BNF9B6yKjW+ BRFRl2K9OUM2DDy+uxUe/+DcvgOMdZ6JJqXZDR66212ad13IQKj6ODF1zH0ZOgCLofLF7MWhyw62 JY0fVx5SuH/miNnDjANq5i6cWzMgbUbXQsOwomGGYesLXlzlDsR1Y54eEydVqmU7+ugDk4cmJBcO SEjKKGsdlvN440CxwkO62VfXNCJ5aHpC0sAKMnsYAXWi5udmQR2IIR5VxrFYdFGcxfJNALzp0etH +eHLSIYQkdo1f7drPrtPtPj2fNFi8toOTYayuQVx6EhrR9DafZCKb+1+uixFlte3tLVn8oNTz72c J0Pt8c0b/KeZvZUx462WOdsfSbAHZU8Y+sxSOz42adfcHOv0rY1sy51Nw6YN77f1eXYcSY9MCesg PSlKsPoyIhZLkV4M80gxIxWxWbBsRzAUZBJ/6WUhvsXfRKaIZviDxDHMC7G3NxbVuXKvuYZ/hAOK SzG0ylsXoROvdLkwwz4KacCCRWThfd6y3SoRjDIO/P0eiYdIrYZCurQXS+CLoMW+tKdViqUiLwdu s8qRSOStVStEevl7vV8hZe95pOn9AnmCO/dSeGqUcpHYw0NCpgeYmsgPhG4vqHG7Qb9TPWqYCvGN Xd0D9lvoEUwnfpA4Q+oHyUFkqby0Jda09ptRb5g9MzfO3ZshSiJZwSeef8UF7vvO0l8/xxedN3fs ZrvcM3hREz/25HUhMf76HQ5mRixm5PvxGTJVh+pXs6xCKeWwSMRypA1kucdrCy1L03WYMMKMRmPh B0Iy8kB56lKxqMkVsdsVcRaLaiqxBJJ2uGLxWTbXFXJoJ74GvX8JtJLDrAvpkQkV7vbxkeFgB7bZ VYYIB/7Y6imLV36K9SgEh4QE6Et8HBgGFK3m94DimBuiUjrJIb2IzP3pNKcbisVigt4fIfjOFLM5 OYl0HEnyQJb0Ix8Ne8+JwkQ2TFT65pgRc4rCev72xdTpFa9VGkpG1SWOfrYxZde5rLHpQV79rHHp L41YWlIQM6w544W3KqseCTe+rNR5KfqVzit3DsUfBcTnRAUlR/oNLoIcbe79Fdr9EvAE4TDXVATv x7ugTSLcaVVrpRFKzt/pWSwrCzkp5SAD5iu8C+PXC+p7DiA8Aipe8qDTl2ioS2Bv5S3YO7Vq3+id 0sK36kY8Xhlj1yUOTzHkDi6JM0+MT59clsBI5x95anBIGDfENXdfY1nB4q45RU+MTfZJKEl3+Wt1 4VVroNY3wgxnB3sLBaE0uyfSOfA7dnFfDweWWWULPLGn1++KYljnSN5pDcJBAbfYUsRPKO+uD07x ywMoY5T88PrAly/WHbkrh1519Q55cl/r8GUDs5YW5MwcldTx8qAlA8MC/DFzc+b77YW+/ttCgs01 7SP37tHryeqAtAYoOy0yoKQOpYI0BWkgVHunVYNCpCrO75a6VFEiLwv+jSvm3Qc/AAg1nxDv7bYF is/obgGp1B4N7zwn5y/a0xI/JnbXBvHg7fUjFo+MsT9Sl72mJLrZ/Mwm3LPw2FODlCq87dbc9yY2 FSx2zN3bOWMa/lLr4yAj+HSw7hq0VbIqtHYqlT5QPns7g30iYWb7jtXHJyr4+EoRdJGo0BMBxarT SskNdal7jkiaKD9owhS0h2+gGFaCBi1fo6k+Qluljl6S4q5x9hrDODN3bImpLC3UD+qsWbRvpiVj +vZJE7a0WPaw+pyGbMvY3CiOiQ5L9F3/mkTpKVup9c9fcnjOxHdXlmfPfrs0p6U4Nqa4NQfRdTeM s6uhXWpRZgcHy2u7NdBDoVBKkK/Sx4O7ofCUSjVy79uIuaEpl5dADwfTyQLCYgaHrz6qPvMZnHTz 61koSx8f98ol2ZCsNiTqsCjwqfqfsMNV0OF6F+fgLc2P3b4ouhB0w7bamcp8tHobXu3naiPr67Gu apEWynEAGopq0IoDyAO3Q5EOwx3vJCBFDJswAKa/HVbVyNCEkZEJI0cmRLIG3X78KcpF6fgTa7ih Vu3tyi/IL/1EGpofw0pTUD7Ol+ZLa1MGnOpfVP1JSnHmiT4j+LlUJskA+MwxhDQW9RWNmWwQ8GMO zDRNJhNxpTBr0IFDVRPf5evr4+6CYhhqfXVcX9ZHGJqSUlLjWOFIG5rBB2vdI3V4RJgH6+2emiW7 ey3b1ifY0rx6ZOYUvXfA4HQsLVww2tx/9r6Fc96akpg7KCDcT5kR5R3ko7CMX10ZlhuAJznZ554o ezSvb8N41y1DtJ88Wd+/KD6pJDVIYHascUzK8EXV5kBtn8Tg8ERGzoRYxw7MmTU6JSJvnGXwFLMy NDpelzUpXhdjHhBO7pRLn7mjGZTVNyHTkNGfk/lGRUezwfHFacHG9OFRhEMHDCcjwWaonmPQ//yQ qcNTQTyXEoJ3WT2x0l+t4G77FHuUKUpQiTD1uue3YK2WFE7dFFl1SIir9fVhj+0cWWLMyB5u3rlT HFlUVBqzdiuzaFqbt6k43dnELXGN35iQE+X1jgPaJ1nJnYD2KQOPlHUAeWInTAlF0A48ZBi+Yklf keyGpASmUP2sci040wIt+o0tgmr+e/SVTL5Sj9PhkZ9OkIUtv8Tzds/+hB6Gb7jO4q9x9J2/4iEZ QYlhPj5hiUFuZqtX3Xlt9WoO+YQnBPVJDPfxCU/sE5QQ7gP2LXZVs81gnw9Zix9AYWBfIPKGNovk 2ihNlBiGfdkeuefv4hG+vIl6YqLe+zckmEh7E1ktnqMmatwNLbkv614u4odsZQvSW19tGrLCEjyo cGjo1MddWsb8sMmX74RPeLW1f6DfNnWAl2zV02zxKvyaYLeQD7Kihf4fAXUrR9ldSIovd8pkSP4e /jtM8lioaJg+4etWNYZFZxEjl7AirkzkrmnoHJnumj5yHlxAz4Ory4ifXTE7d+IPvndFMgHO77kl dzbgT1wJwur8BKQpQ1FdfF1q3HUp5+sSnWbL+G56X+XdX3X3V5XoxsrbytWrSayjICdK8B+xqKAj yM+Bd9kDVJhQbBiMGLusOpUqziS+EVXsfSOkOCgsILAooEQltFrwA9QtkFmLhUyryLhh0NwdZY33 S7OONmRy1GjYSRJPnUYbEmHSb5J4+mm89BHxhs1LpAEJSQNCS8r94pKtUe8yJ0zpRg+/lKos51zm vdTccA9t0qh851z28kFLcYJuYgvpw65zzjChv0FOdNDfGF/S33RIQfqbUufHIF2JokR9W1JMWhAZ 64T+xg90gmWa+zre5pckMaXQyV7atLNypD4je1j8TvbylqS8KM07DuejzKIZj9KOB625GlajckjZ vRqF6QkMC31hnCWr0d89i403udJ7m3D3z8+FQerhtag8e5790UlvzcwU2B45dHLO8JZBhsihk3IJ Y9f0D5bDmuPQ/OmHgRcdemLM8jGmjKalQ2B9QpjMnlxN7C2wS4vCUFqnSq6XkoqVhyN+DuAjVYUr A5zqYmWRrMJ4kpqYSZ08LM3JGpCfEwuTKFKBfzaLSmFvFT6xe0L8uISdLykKYSLwwCwqfqJ5xWZG +uSHT2TLla5q7sk3xv9hDnWQzFbA1sN8GYbAbEUqJ7MVZR8tna0YVbJQ/1uepfIKWbH+1N3ZCvUA D81WUsHQVPdkhU5K3bMVy8x9i8wNaet3yZ7prnx8ZLTd3zwsCaYr/Rota9bjnknvrxmh1kTcasZz z35c8IRjTvmTYxLJhMXb73265ymS8vYldjBe+3EHv3PYYVXLvLWMRipF3iXK25zQvMhA/2ADIyXn KzGmCM3ro01c1duVG14R29iyYuOgwvJ4G3u565Gaj489MdM/dUSGcy7id86usvsh1WRU1oVicOee wNDAUDnU355OjTzFuA/WG6FkWezlXxAacUMTI9EXQ8lxVvkmxS4Fo/C4KRGmmvdWx2QzHbyDsBVM fCbdYoNajbg3GPvc293U9WXZ/aEDS8fUmZreKq3cOWL+LO/ECaNz28rjI8ZunjVg1fDSNSlZVal+ Ppam0qo5Qw3YK7k8K66vh5d2s39AbmZgdERUoNacP9Ya1TDColK/pPXWGk2BgTGRkX4BlvxKktNM mEF/BKt/HUruUKuI5/GVSyRSnafUT6L+l1KuKkK3ddqbrHsSaD7O+7lTZFuZn0Xx0+fwZH4PNpXf B3ZPnT8a8FjWu/tcl7A/uFVXRltr/NSBHp6qtzoY5bNYG+s6+KyLmfSIp5p4ECjtY+xl5ItiOxhE PIgWltm7rB5yHYN8ipRFnregPEvucyA91OEZI8i2bzi/3KZbwWb22AZxbElxSexLG3fu1GfkgPvg ncdeB7PK+dgl8B0ZDNmrzCZ7+JCmFFmsnpwYI71UwrIy+RwWs47eL6wyViItEYs50rASE02ZZkva GLripq9ljieS5sUvV7Ex++iN5NRfD7pmfMhedjZv2cY8d0cLaYRBGtn8bzVXWSM4kVisVCokcrlC IZOKsEajZkUM4+mpVnshDxVZX3vwy2uytD5PltZkmW3VKdRKT41cJFGpJDJpkVhSwuASL94qsg/A vzS6f7fR/95uI1l38/tIwq6jhn7/3Yo7+9mTq4MMy4+v3l7uFf3s/JdjPYfDwKzFW5smueogYyPW LYGazFmygtlFWk4+5C4ScqdAJzuMUkfvD9a+RiOjN2KkYkVKmZy8/yqSSMRFLCsqwZjUHylH+ke3 eY8mwl9haeVuBovlrGegVckLORyNpVgdvdSjWz1/qbS7CqWRuzgslonIXbyQcQ/fRe6RIgm9hxcy OBpL0R9iUiAJTY8XcsXDd/GTAwx/ZvInirzkuu76tQcvca34Bksxe9a1FC9wLcI38a+ux/DjLrI0 RgNcNXyL8kPFVpXW2w/pvWQwE/cP8HH0nt8DM3KvEphesVZPuaoXx4uweIS3Vuvnbl/mTIslzb2b luauR79ucwBtaBjz7VzYUEvFtMKCXNuTH31yc31AlL9vUlB82ZBcvavlqMvc/yeot8eeOrognWE2 slyfzIZBpF1u2Mw8B3ZuhfH6ONgpQyarmkUSKcNhuUQvYf/FFTFg6m5GepNU1pXENAKyr9edeK6b 7EbC5I68d8AG9vids0yq8yxzy3mSGT6fOffsMqcJ4r7q2s6cwNkw6Q3qQlqG2QMztc/9PR04ukNM ojRdwaaj4AF1vnR1IQzE/HzxqrlmcExQaJDaYDYasxKCMmbvmXWc8Y22RkYlxSRG+cSF+wWlj8oo e3FGPlkL3oK0zoGP9oc5VNwBFMxgmNRCmnYkD3XgqD0BxQ8lncknfurfJf/wvPXWn5iDLcFpUf7+ UWnB+tQoP7+o1H9jH1d+3z168gzZglrfe5U57p6vGDs4fweD7Z5GGGuj7H1LYfyI6kDFdL4CK1Sy M/mQRQ+vAhjzQ9boHzpnXQ9fdBr/YBjGS8CuE3gA2OV7AHEMS37CgGM65GRmgvkB6+GEo0MyYgMC YjNCjOmE0/GAgLgMYwg9CTFmxAVADNBTPmfHMm2wWtbYwa12YSk0EdIEjtMJMjvWuZ0ZgT/fSloO c4shKyd/pONbzl7acspR5il3m/H+X20z7GLGJ9oaRSol0jcWKmWAu9EwqJk1imL5VMwopiMg1MEg exzSAlmVchQZ8JG53BN95A+pXumGP2wi75D5qginQ/L9pWDm/iyQMcSUZfUL0Ad4BkOHSY8LtLS8 NolRQmDEfYFpEMipsXe/9IiI+ChThDbaqOuTVm4ZvnJK9qI/D+bfv4DHdt1n/34GIbAfzFfJURyY H1kO5tNS4wvuDGSAt//PCi/szwKZ/Ohy64P2b53k/OefZIrdymj7ZUREmKLiI7RRYGhqBbX/z4OJ j2zrjeTX5izys8oRZhnElmGmCpGBDJqFOZFuY7PHnKXbmJ3ckt+3iqtJS4qBdWsddwKpkM6ukjIw O90tl0xGI2BKAA2UvOXH/Cv+VB3SaL10zO8uc8LkzoWNrnndh1zV+C2Gm339l19mjnctcsX94Cp/ j8Qpgjj73x/n7t0KyQg0+YE4yRuXiBSvZDXGk/HxmImdyxo/OOSaz51wVTh/m/TDP289Nv4w3vo9 /hsm/4wHV8FsOp97A5ajfe0SEcTZbpVx3JfsJPGXqMLdtXvo+1v3q/h8lze+4urCg1xNkuynfz9D YtFDLCp3LAwnceDtVplI9KV4EvslfigWssqEjqSCWPJc+yGmpqfFUU9DSW+BOBZBHGT/NqSvAy+z ar3C/ZWcl155QqFAAV/6TwoXbKI/9zB1Hz3VTfdv+TkV/yuFZH4fiG8gZh+yX6aVwHJNazazi4Yc PuCbOjovOnpwdZK23+jVE4YM+OHk6e8HuJr2OHBlwrDkPsv9EoYmXSlfOs78dM+Pvwb7OF3bL5JW cBFsO0Jt2x0QzvUNIeWk8VJwesUJpZLYVgG2TbrftqPd17vVZLvWm6wX+fUasQf6H78BQewEi1PD wVSj8SJvWjUxbQyYNurZCUPSL508fTGde2OP49Jdy1xbqGl41K99dXcuXiRvEVxNoibXDWifnntY hv2NL+67/krUdHs9XG5aBXV0mLUx22hLJu8fftoLsxwOk62A4/yyvIfOsZhtQTv6cEtc0fg0GQEY 1sY28E9JUPgBJMI/8jsXP0JnQFIZJymjMQhxnHHHYgDgb/psDWLq4ECj46NkUSWsgT34N7IGZEJD OvygMFfQteaKTq08XrcfB0JBh+E+Vo1fiNYvHL5c9FXP+qCrXKO7hGFVAgf1FTVdppjVPYl/tlYO j8Bkk2cgE6b11eE4/gWEyCN9zp45E3bMyc6YvXc2YRvHOs96xmWVJee2DI9ybodOHukZZy01k1Nm xdp/ddQWbXXtXHsT+DXX7pAcvasxqTLTmP344eXBA4Pwi+byjJDsxYehNpbCTOUiZ4CRwNIpxnKY Pb1nVUjIWxzxFY7DIgfu0ymtk7EOHNCBG+hvJEh74QvP3NN97ig/ZzFouIgw8ur/4p1PcLHrmBVv Xo9Dt7D7tj/319uLIJ01/Jv0WKRHFrKrdGCPv8Zfow924AtWJTaoVf8USZG2ntE7cGAHoumQZd1R shA57l7TkbnRQJbumIrBZaQIDlUiMbDX7ryKS8ua+2sDUkakly2z1Aw5vHDkymZLv5K55VeYuRtw cems+kpz/Mjs8CED2oaPTap7pqpw4YJlJZfIfA1WR2fBuhQ0qgv1xc9aVaZEnSlUZzLpQlkZ1PNq a5BGlprod0yTukuHdbqo1LDroYZrUfXSX2XKa6SW6W+i+H1w8pKJrKDO9Gjubh333NttuPfK9m7n f/C9E/3t19n8p0+tGD4vZWB7Qd3yyn7xI2cXPP/CgNq8sIXzsp8uDhk2bKixeePElLYGc31RAl4x 4oVHs+TSDQqlMXvsgJTilMCVwf0rUibUBASsU3qrJLHlswpb18VK4wvJrk40rCsS+Dd5KpRrlSnF EoWYU8jAmT5j9VGxLOLEKpXsF5GC/ENLibSObSCvRMmvLsgevwbGkW5S+4nu5Q5xZ/wOP4YTjA2i hG/szuVM7K1vXC0uCz6GDa5vsOFFtvbOJqbLOYj4JzuU+OdggQFldaE+eMxeXQB8FVDU+60qb0WI 79U+fUICr/vVwZzNf7fC424ZCz8rOEOX+ur7tpzulSx5d098PylO9vPyNR9OC8rJzvRPWT6oeOGo +F1bbzKHnN9NHWtfXoG31G5us7KcWLRRpQwf1Jg5p4XZsM61OqRiJZTTXOj5iLcyGVk7AmIceNVu uZeXnG8RPiHylJgrARFHg4JS/Dnv6151Ccfu9ndi5TlhS8L0cG8XuT2r5OF3d8ImGcqa9eb4Sdta +wekNzz/8ZJFT0/fMW2gVJT5Wk398/WJe4MGjssOH16Y2yd0UHOuZVxeBN44auP0nLyVf3m+4cC2 9vrUdWlNq6oiw2L7j19Vm16bE+bhr/da9HZzTFjBeFL606Faf4R8iZHhHZbB5KU46eG7uTqGdHIz /+a+Gxa27skCGf9+dP7tGGNxDmSniWbfXiqavQU840zypgv6DfGLOWjaAdQPr0RqFALNSB6gCgpQ w1eO9uN3UTzqjw9YDfLcIFXsT8nJPlxsv6DkeFV8/34hPv1VKi7sJ5/6zHvu0p+8MbbwC+kjGvIC 2w+GKPeuhEZwpj3qB/YbU1LDw+9Ns+jvJ90/hGB0KSnkF5QRHqywD8ley52zrfaRV6ekPfn0whlJ EzY+0vhic9KC6f0bhkR+Pv/R1vl9M8dmPTrFy29gc3HuGItfRO7Y1OSxef1wQdmiyrj4ETMGzdo5 KGvT+MwZ1anRxVPzp25OD8ofMZGprxo5YkREdv+0oOQ250th+bm5oYasnIJ+sXnxfr6xeWSG2cCX fiwKhhlmeqdY7AvNaZXdwxTmAM/j7ZtkuuwRdVSp0Yj1xwLrJdfFDcIobaFNqudUovBukBGL3D4k NfXBl4P4/p/vQdbZH6t3u27snDx70YH52dCSttbUr61PzJ65raH2tVm5rpS0cXn9gjJqssOKCnMD wwvGM2cPuq50lK9Lalw9hjSk5pXlozdOz7Wu/A6Hhg1qzsmoyQn18COtakIMeT+Po9ge1p8fdWHe KWE5zN2UsDfJYuQMWWw9MJfqubOVrSZgnlzj0pC3zE/1XmPXikoRh3ztSMQ58M+dDIthddTtnoeF STDWYXbtZGcNs3my85uxU5gEJqHFZSXt+QQ8fY4+3YU4fHUP9CDM0qe7z5GFTSrGEfjEJGazs2YS Y2AvtDg/d34+BR9G9LfJ9N9ti5p6T/feEU10/xvpe59ToiZUKZyAJpADNgKqAZMBHwGOA7IBLYAd gL2ADYAfAQmAmQALec4dz3b3vSPccYgAsUIa/80PpL8EsNmdR2LbdHe+x7rDSf4Wu/NI9Ch3eLWb hTIh1zPdYaRswgD5gAGArf/dXP7PP5CHq4BboiYM01YMZYal/+G+ZlL//yGutj8PxzEAaBu4CqCH +7YALv4v2EaePQxg/u/ufei5SsBSwBpSR4BogB0w190OSDtu+H8S50PxL0FPoRN8LzuDaqHXVgEY GDhMqBEhpRc6CWfkqgSNIv9jgkgGugHNc2vaO6lmkAea4tYsSkTpbi2C2GLcmgMl3C/mw0dAOlOh tCegFnhaD6NTHNRLPKhsGBsnwLqoAXQCfFNgXGvh/0V9C4TWAg+D6/XwdAsf1oSmof5w78N3kbBE iDEeZg6lkNp4iJdcmYrevHslDdQfY6NxTUWt/LEWQqiVcXAlC+KYBFwKYeNRM1xr488agUmOZsCx Ae68+/9TwDprFUJ/8GeoC+kZdrfMDw/ROxhGEFgQyC1wryBcgnAK4rYgbgnid0HcFMS/BHFDEL8J 4ldB/FMQvwjiuiCuCeJnQVwVxBVBXBbET4L4hyB+FMQPgrgkiO8FcVEQ3wnigiC+FUSPIM4L4htB /F0Q5wTxN0H8VRB/EcTXgvhKEGcFcUYQpwVxShAnBfGlIE4I4gtBfC6IzwRxXBCfCuITQXwsiI8E 8aEgjgniqCCOCKJbEB8I4n1BHBbEIUEcFMR7gnhXEAcEsV8Q+wTRJQiHIN4RxF5B7BHEbkF0CsIu iA5B2ASxSxBvC2KHIN4SxHZBvCmINwTxuiC2CeI1QWwVxBZBvCKIzYLYJIiXBbFBEC8JYr0gXhTE OkG8IIi1gnheEM8JYo0gnhXEakGsEsRKQTwjiBWCaBfEU4JYJoilgnhSEEsE8YQgFgtikSAWCOIx QcwXxDxBzBXEbEHMEsRMQcwQxDRBtAliqiBaBDFFEJMFMUkQjwhioiAmCKJZEOMF0SSIRkE0CKJe EHWCqBVEjSDGCWKsIMYIoloQowVRJYhKQYwUxAhBVAiiXBClgigRRLEgigQxXBDDBDFEEIMFkS+I bEFkCcIqiExBZAhigCAsgkgTRKogUgSRLIgkQZgFkSiIBEHEC8IkiLhOIrJSmSdRA7MEVcD6aQnC zGI4ewLOvoAjLDHg2ALYBYCBj3kcwq7xRxMcdwEYOJJtqFZyZBbC0wvg6WI4LgTA1AOOVkArgGXm 2xuyKhzMY/as3uAuZi4zz94Q7JkVw8xDmYAWhkxEdsHxGwB5dh7EPI6ZA+dz4HwcMxvUbFA/M7Pg yir+2MIf1eTIzID0Z0L6ajjqmZnW6cxUnBXcwmYFT2GygifENleMj22qaIxtqKiPrauoTaypMNVk 1jDjEsdWBI86OIppHXV+FDMitqIiswKXx5ZVZJbhQ2V4E/9XGltSURxbVNFahE1FeFMBbi3Ahwpw SwG2FuD82LyK3NiciuzYrAqrg5lil3nmdzGTmEfsicFw/gh/3nuIaeqUKfO/2M+0gclW5tHOhNR8 uPyovY8h38Gw9r4hwTBroITtQf2CyTseQriXkouSk9IdSrftfaKBblH6ndJNSv+idIPSb5R+tQea gP5J6RdK1yldo/QzpauUrlC6TOknSv+g9COlHyhdovQ9pYuUvqN0gdK39oA0oB5K5yl9Q+nvlM5R +hulv1L6C6WvKX1F6SylM5ROUzpF6aTdfwDQl5ROUPqC0ueUPqN0nNKnlD6h9DGljyh9SOkYpaOU jlDqpvQBpfcpHaZ0iNJBSu9RepfSAUr7Ke2j1EXJYffLCia/CedpL6U9lHZT6qRkp9RByUZpF6Wd lN6mtIPSW5S2U3qT0huUXqe0jdJrlLZSepXSFkqvUNpMaROljZReprSB0kuU1lN6kdI6Si9QWkvp eUrPUVpD6VlKqymtorSS0jOUVlB6mtJySu123SCgpygto7SU0pOUllB6gtJiSo9TWkRpIaUFlB6j NJ/SPEpzKc2hNJvSLEozKc2gNJ3SNEptlKZSepRSK6UWSlMoTaY0idIjlCZSmkCpmdJ4Sk2UGik1 UKqnVEepllINpXGUxlIaQ6ma0mhKoyhVUaq0+1YAjaQ0glIFpXJKZZRKKZVQKqZURGk4pWGUhlIq pDSE0mBKBZQGUcqnlEcpl1IOpWxKWZSslDIpDaSUQSmd0gBK/SlZKKXZfeqAUimlUEqmlETJbPcp BkqklEAD4ymZKMVRirVrwaXjGErRdu+wYPLDCZ4i7V7EJ/ejFEEpnFIYpVBKRkohlAyU9HZNMlAw pb6UguzqXKA+lAIpBVDyp+RHSUfJl5IPJS0lb0pelDSU1JQ8KXlQUlFS2j0LgRSU5JRklKSUJJTE lDhKIkosJYYSpoSsvcAELoATcAdwG3AL8DvgJuBfgBuA3wC/Av4J+AVwHXAN8DPgKuAK4DLgJ8A/ AD8CfgBcAnwPuAj4DnAB8C2gB3Ae8A3g74BzgL8B/gr4C+BrwFeAs4AzgNMepcGnACcBXwJOAL4A fA74DHAc8CngE8DHgI8AHwKOAY4CjgC6AR8A3gccBljXHYLjQcB7gHcBBwD7AfsAXQAH4B3AXsAe wG5AJ8AO6FDVBdsAuwA7AW8DdgDeUhUHbwd+E/AG4HXANsBrgK2AVwFbAK8ANgM2ATYCXgZsALwE cDDLrG0qQ/B6ZUvwi4B1gBcAawHPA54DrAE8C1gNWAVYCXhG0R68AvA0QB2AWwMWBjCt/gv9GZNf pl+RHxusM+kydewm3S4dY9UFBue3ahdqv9Ce14oWeuPNauzoPdSpjonPB7Ya1cEh+a2e+KAnXumx yWOXB7vL46AHc9Djc49vPFirx8DsfPZdzG9FI4xXofLoQoekt7TQJi0ebcPLbGFl5GgtGWUTL7Oh ilGjKzswfqaqAzM55TYN+V+O+PMlK1agoOxCW1BZpZ3dvDkou6rQtpBoq5XXvUQjuKUqum3a9Lbp 0dFtbW04um36tLa2aSj6//8f/N824P/MB4q+zS2hQqZBbYCYNm169DSgu5dAtLk/08jZNP6U3NwW 3YHI/3+V1cuwsLhgABiAUAPuBbgATsBtwC3A74CbgH8BbgB+A/wK+CfgF8B1wDXAz4CrgCuAy4Cf AP8A/Aj4AXAJ8D3gIuA7wAXAt4AewHnAN4C/A84B/gb4K+AvgK8BXwHOAs4ATgNOAU4CvgScAHwB +BzwGeA44FPAJ4CPAR8BPgQcAxwFHAF0Az4AvA84DDgEOAh4D/Au4ABgP2AfoAvgALwD2AvYA9gN 6ATYAR0AG2AX4G3ADsBbgO2ANwFvAF4HbAO8BtgK2AJ4BbAZsAnwMmAD4CXAesCLgHWAFwBrAc8D ngOsATwLWA1YBVgJeAawAtAOeAqwDLAUAItgvATwBACWwHgRYAHgMcB8wLwscpwLmA2YBZgJgOUm ngZoA0wFtACmACYDJgEeAUwETAA0A8YDmgCNgAZAPaAOUAuoAYwDjAWMAVQDRgOqAJWAkYARgApA OaAUUAIoBhQBhgOGAYYABgPyAdmALIAVkAnIAAwAWABpgFRACiAZkAQwAxIBCYB4gAkQhxr+Oz33 f9en6r9twP/s44fQ/wWwbgRRCmVuZHN0cmVhbQplbmRvYmoKMTcyIDAgb2JqCjw8L1R5cGUgL0Zv bnREZXNjcmlwdG9yCi9Gb250TmFtZSAvQ29uc29sYXMKL0ZsYWdzIDUKL0FzY2VudCA3NDIuNjc1 NzgKL0Rlc2NlbnQgLTI1Ny4zMjQyMgovU3RlbVYgNjguODQ3NjU2Ci9DYXBIZWlnaHQgNjM4LjE4 MzU5Ci9JdGFsaWNBbmdsZSAwCi9Gb250QkJveCBbLTIwLjk5NjA5NCAtMjA1LjA3ODEzIDU1MS43 NTc4MSA4NDkuNjA5MzhdCi9Gb250RmlsZTIgMTcxIDAgUj4+CmVuZG9iagoxNzMgMCBvYmoKPDwv VHlwZSAvRm9udAovRm9udERlc2NyaXB0b3IgMTcyIDAgUgovQmFzZUZvbnQgL0NvbnNvbGFzCi9T dWJ0eXBlIC9DSURGb250VHlwZTIKL0NJRFRvR0lETWFwIC9JZGVudGl0eQovQ0lEU3lzdGVtSW5m byA8PC9SZWdpc3RyeSAoQWRvYmUpCi9PcmRlcmluZyAoSWRlbnRpdHkpCi9TdXBwbGVtZW50IDA+ PgovVyBbMCAyMTMgNTQ5LjgwNDY5XQovRFcgMD4+CmVuZG9iagoxNzQgMCBvYmoKPDwvRmlsdGVy IC9GbGF0ZURlY29kZQovTGVuZ3RoIDM2OD4+IHN0cmVhbQp4nF2SzW6DMBCE7zyFj+0hwob8WUJI BBKJQ3/UtA9AzJIiFYMMOfD2NR43kYoUpC+7Mx4vG+ZlUep2YuG76dWZJta0ujY09jejiF3o2upA RKxu1eTJvVVXDUFoxed5nKgrddMHScJY+GGr42Rm9pTV/YWeg/DN1GRafWVPX/nZ8vk2DD/UkZ4Y D9KU1dRYp5dqeK06YqGTrcra1ttpXlnNo+NzHohFjgXSqL6mcagUmUpfKUi4fVKWnOyTBqTrf3Uh Ibs06rsyrj227ZxHPF1I5I420tF+i1oO2jmKD6A9KANJdB5BGahwJJdAERfwlL7z5CgTOA+eWQSC LkOyna+tQb5WoNO7HOG5A51AkaMCLjF0BVxi3KjYgI5uVH4m278JPSYKkYDTWmBS0ApcdYPDYj8+ 1LbolLijjDAGHC0RMuPIund/Hg6Och+S+1gIsnzMZenum6JuxtglcZvptmPZi1bTfXmHflhUy+8X y5HDoAplbmRzdHJlYW0KZW5kb2JqCjcgMCBvYmoKPDwvVHlwZSAvRm9udAovU3VidHlwZSAvVHlw ZTAKL0Jhc2VGb250IC9Db25zb2xhcwovRW5jb2RpbmcgL0lkZW50aXR5LUgKL0Rlc2NlbmRhbnRG b250cyBbMTczIDAgUl0KL1RvVW5pY29kZSAxNzQgMCBSPj4KZW5kb2JqCnhyZWYKMCAxNzUKMDAw MDAwMDAwMCA2NTUzNSBmIAowMDAwMDAwMDE1IDAwMDAwIG4gCjAwMDAyMTE1NzAgMDAwMDAgbiAK MDAwMDAwMDE1OSAwMDAwMCBuIAowMDAwMjU1MDQ1IDAwMDAwIG4gCjAwMDAyODQyNjkgMDAwMDAg biAKMDAwMDI5ODQ1OCAwMDAwMCBuIAowMDAwMzEzNDA4IDAwMDAwIG4gCjAwMDAwMDAxOTYgMDAw MDAgbiAKMDAwMDAwMDI4MiAwMDAwMCBuIAowMDAwMjExODIwIDAwMDAwIG4gCjAwMDAwMDQ0MjQg MDAwMDAgbiAKMDAwMDIxMjA2MiAwMDAwMCBuIAowMDAwMDA3OTAwIDAwMDAwIG4gCjAwMDAyMTIy OTQgMDAwMDAgbiAKMDAwMDAxMDM1NCAwMDAwMCBuIAowMDAwMjEyNTI2IDAwMDAwIG4gCjAwMDAw MTI2OTUgMDAwMDAgbiAKMDAwMDAxMjg5NCAwMDAwMCBuIAowMDAwMDEzMDk0IDAwMDAwIG4gCjAw MDAyMTI3OTIgMDAwMDAgbiAKMDAwMDAxNjM3MiAwMDAwMCBuIAowMDAwMjEzMDI0IDAwMDAwIG4g CjAwMDAwMTg3NzQgMDAwMDAgbiAKMDAwMDIxMzI2NiAwMDAwMCBuIAowMDAwMDIxNjQ5IDAwMDAw IG4gCjAwMDAyMTM0OTggMDAwMDAgbiAKMDAwMDAyMzUzOSAwMDAwMCBuIAowMDAwMjEzNzQwIDAw MDAwIG4gCjAwMDAwMjU4MzAgMDAwMDAgbiAKMDAwMDIxMzk4MiAwMDAwMCBuIAowMDAwMDI4Mjk3 IDAwMDAwIG4gCjAwMDAyMTQyMjUgMDAwMDAgbiAKMDAwMDAzMDY0MiAwMDAwMCBuIAowMDAwMjE0 NDY4IDAwMDAwIG4gCjAwMDAwMzM1MjAgMDAwMDAgbiAKMDAwMDIxNDcxMSAwMDAwMCBuIAowMDAw MDM2NTUxIDAwMDAwIG4gCjAwMDAyMTQ5NTQgMDAwMDAgbiAKMDAwMDA0MDEwMiAwMDAwMCBuIAow MDAwMjE1MTk3IDAwMDAwIG4gCjAwMDAwNDM0MjkgMDAwMDAgbiAKMDAwMDIxNTQzMCAwMDAwMCBu IAowMDAwMDQ1MjEzIDAwMDAwIG4gCjAwMDAyMTU2NzMgMDAwMDAgbiAKMDAwMDA0NzYxNyAwMDAw MCBuIAowMDAwMjE1OTE2IDAwMDAwIG4gCjAwMDAwNTAyMjEgMDAwMDAgbiAKMDAwMDIxNjE0OSAw MDAwMCBuIAowMDAwMDU0ODk0IDAwMDAwIG4gCjAwMDAyMTYzODIgMDAwMDAgbiAKMDAwMDA1NzAz MSAwMDAwMCBuIAowMDAwMjE2NjE1IDAwMDAwIG4gCjAwMDAwNTk0MzMgMDAwMDAgbiAKMDAwMDA1 OTYzMiAwMDAwMCBuIAowMDAwMDU5ODYzIDAwMDAwIG4gCjAwMDAyMTY4NzIgMDAwMDAgbiAKMDAw MDA2MTg0MCAwMDAwMCBuIAowMDAwMjE3MTE1IDAwMDAwIG4gCjAwMDAwNjUzOTUgMDAwMDAgbiAK MDAwMDIxNzM0OCAwMDAwMCBuIAowMDAwMDY3MDQ4IDAwMDAwIG4gCjAwMDAyMTc1ODEgMDAwMDAg biAKMDAwMDA2ODczMSAwMDAwMCBuIAowMDAwMjE3ODI0IDAwMDAwIG4gCjAwMDAwNzIwOTAgMDAw MDAgbiAKMDAwMDIxODA2NyAwMDAwMCBuIAowMDAwMDc1ODI0IDAwMDAwIG4gCjAwMDAyMTgzMDAg MDAwMDAgbiAKMDAwMDA3ODI2NCAwMDAwMCBuIAowMDAwMjE4NTQzIDAwMDAwIG4gCjAwMDAwODE2 MjMgMDAwMDAgbiAKMDAwMDIxODc4NiAwMDAwMCBuIAowMDAwMDg0OTY4IDAwMDAwIG4gCjAwMDAy MTkwMjkgMDAwMDAgbiAKMDAwMDA4OTY2MiAwMDAwMCBuIAowMDAwMjE5MjcyIDAwMDAwIG4gCjAw MDAwOTM0NjUgMDAwMDAgbiAKMDAwMDIxOTUxNSAwMDAwMCBuIAowMDAwMDk3Mjg4IDAwMDAwIG4g CjAwMDAyMTk3NTggMDAwMDAgbiAKMDAwMDEwMTIzNSAwMDAwMCBuIAowMDAwMjIwMDExIDAwMDAw IG4gCjAwMDAxMDQ4OTMgMDAwMDAgbiAKMDAwMDIyMDI1NCAwMDAwMCBuIAowMDAwMTA5MTYxIDAw MDAwIG4gCjAwMDAyMjA0OTcgMDAwMDAgbiAKMDAwMDExMzY0MiAwMDAwMCBuIAowMDAwMjIwNzQw IDAwMDAwIG4gCjAwMDAxMTgyMzIgMDAwMDAgbiAKMDAwMDExODUwOSAwMDAwMCBuIAowMDAwMTE4 Nzg3IDAwMDAwIG4gCjAwMDAyMjEwMDcgMDAwMDAgbiAKMDAwMDEyMzA4OSAwMDAwMCBuIAowMDAw MjIxMjUwIDAwMDAwIG4gCjAwMDAxMjc0MTggMDAwMDAgbiAKMDAwMDIyMTQ4MyAwMDAwMCBuIAow MDAwMTMyMTM2IDAwMDAwIG4gCjAwMDAyMjE3MjYgMDAwMDAgbiAKMDAwMDEzNjg4NCAwMDAwMCBu IAowMDAwMjIxOTY5IDAwMDAwIG4gCjAwMDAxNDE1NDYgMDAwMDAgbiAKMDAwMDE0MTc4OSAwMDAw MCBuIAowMDAwMTQyMDMyIDAwMDAwIG4gCjAwMDAxNDIyNzYgMDAwMDAgbiAKMDAwMDE0MjUxNyAw MDAwMCBuIAowMDAwMTQyNzU4IDAwMDAwIG4gCjAwMDAxNDI5OTkgMDAwMDAgbiAKMDAwMDIyMjI3 MiAwMDAwMCBuIAowMDAwMTQ3OTkwIDAwMDAwIG4gCjAwMDAyMjI1MTcgMDAwMDAgbiAKMDAwMDE1 MzQ0OSAwMDAwMCBuIAowMDAwMjIyNzYyIDAwMDAwIG4gCjAwMDAxNTgxOTUgMDAwMDAgbiAKMDAw MDIyMzAwNyAwMDAwMCBuIAowMDAwMTYyOTY2IDAwMDAwIG4gCjAwMDAyMjMyNTIgMDAwMDAgbiAK MDAwMDE2NzY3MSAwMDAwMCBuIAowMDAwMjIzNDk3IDAwMDAwIG4gCjAwMDAxNzI2MzEgMDAwMDAg biAKMDAwMDE3MjgzMCAwMDAwMCBuIAowMDAwMjIzNzYwIDAwMDAwIG4gCjAwMDAxNzcyNzggMDAw MDAgbiAKMDAwMDE3NzQ3OSAwMDAwMCBuIAowMDAwMjI0MDIzIDAwMDAwIG4gCjAwMDAxODIzMTgg MDAwMDAgbiAKMDAwMDE4MjUyMCAwMDAwMCBuIAowMDAwMTgyNzIyIDAwMDAwIG4gCjAwMDAyMjQy OTQgMDAwMDAgbiAKMDAwMDE4NjIyMyAwMDAwMCBuIAowMDAwMTg2NDI1IDAwMDAwIG4gCjAwMDAx ODY2MjYgMDAwMDAgbiAKMDAwMDIyNDU2NSAwMDAwMCBuIAowMDAwMTg5NzI5IDAwMDAwIG4gCjAw MDAyMjQ4MDAgMDAwMDAgbiAKMDAwMDE5MTgzOCAwMDAwMCBuIAowMDAwMTkyMDQxIDAwMDAwIG4g CjAwMDAyMjUwNjMgMDAwMDAgbiAKMDAwMDE5NTIzOCAwMDAwMCBuIAowMDAwMTk1NDQwIDAwMDAw IG4gCjAwMDAxOTU2NDIgMDAwMDAgbiAKMDAwMDIyNTMzNCAwMDAwMCBuIAowMDAwMTk4ODUyIDAw MDAwIG4gCjAwMDAxOTkwOTYgMDAwMDAgbiAKMDAwMDE5OTMxMSAwMDAwMCBuIAowMDAwMjI1NjA1 IDAwMDAwIG4gCjAwMDAyMDQ5MTUgMDAwMDAgbiAKMDAwMDIyNTg1MCAwMDAwMCBuIAowMDAwMjA5 NjY1IDAwMDAwIG4gCjAwMDAyMjYwODUgMDAwMDAgbiAKMDAwMDIyNjIwNyAwMDAwMCBuIAowMDAw MjI2MzMwIDAwMDAwIG4gCjAwMDAyMjY0NTMgMDAwMDAgbiAKMDAwMDIyNjU3NiAwMDAwMCBuIAow MDAwMjI2Njk5IDAwMDAwIG4gCjAwMDAyMjY4MjcgMDAwMDAgbiAKMDAwMDIyNjk1OCAwMDAwMCBu IAowMDAwMjI3MDQ5IDAwMDAwIG4gCjAwMDAyMjcxNjUgMDAwMDAgbiAKMDAwMDIyNzIxNiAwMDAw MCBuIAowMDAwMjUzNTE1IDAwMDAwIG4gCjAwMDAyNTM3NTEgMDAwMDAgbiAKMDAwMDI1NDY3NiAw MDAwMCBuIAowMDAwMjU1MTg0IDAwMDAwIG4gCjAwMDAyODI4MDggMDAwMDAgbiAKMDAwMDI4MzAz OSAwMDAwMCBuIAowMDAwMjgzODI2IDAwMDAwIG4gCjAwMDAyODQ0MDMgMDAwMDAgbiAKMDAwMDI5 NzU1NiAwMDAwMCBuIAowMDAwMjk3Nzk3IDAwMDAwIG4gCjAwMDAyOTgwMjQgMDAwMDAgbiAKMDAw MDI5ODU5OCAwMDAwMCBuIAowMDAwMzEyNTEwIDAwMDAwIG4gCjAwMDAzMTI3NDYgMDAwMDAgbiAK MDAwMDMxMjk2OCAwMDAwMCBuIAp0cmFpbGVyCjw8L1NpemUgMTc1Ci9Sb290IDE1OCAwIFIKL0lu Zm8gMSAwIFI+PgpzdGFydHhyZWYKMzEzNTQzCiUlRU9G --00000000000001fa3605c9801f23 Content-Type: application/vnd.openxmlformats-officedocument.wordprocessingml.document; name="Revision-Letter-for-draft-ietf-i2nsf-capability-data-model-17-20210814.docx" Content-Disposition: attachment; filename="Revision-Letter-for-draft-ietf-i2nsf-capability-data-model-17-20210814.docx" Content-Transfer-Encoding: base64 Content-ID: X-Attachment-Id: f_ksbh10bt1 UEsDBBQABgAIAAAAIQB25OZ6mQEAALEHAAATAAgCW0NvbnRlbnRfVHlwZXNdLnhtbCCiBAIooAAC AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC0 lU1Lw0AQhu+C/yHsVZqtHkSkqQc/jiqo4HW7O2kX94vdSWv/vZN+BJG0Kba5BJKZed9n35DM6O7b mmwOMWnvCnaZD1kGTnql3bRgH+9PgxuWJRROCeMdFGwJid2Nz89G78sAKaNplwo2Qwy3nCc5AytS 7gM4qpQ+WoF0G6c8CPklpsCvhsNrLr1DcDjAWoONRw9Qispg9vhNj9ckEUxi2f26sfYqmAjBaCmQ 6nzu1B+XwcYhp8lVT5rpkC6ogfFWh7qy22Az90LRRK0gexURn4WlLr7wUXHlZWVpMt8v08Lpy1JL aOZrtRC9hJQoc2vypmKFdlv+Ng5ZJfT20xquEexr9CFdHo3TiNZ6EFFDk+HOLFxlJxCJ/vRhNNKd EAmXBtLpCda63faASAN9AGyUOxEWMHnrjeKXeCdI6T06j328jUa6EwKc6olhq3xQDhCP/yZbU4B4 gD/5iYmBPgg20p0QSCsB1tfjk1jJ7LOkztWPkFZM/Mextzuknh6Eg/6AjSNJH30+qNeTAtXizVcL d/wDAAD//wMAUEsDBBQABgAIAAAAIQAekRq37wAAAE4CAAALAAgCX3JlbHMvLnJlbHMgogQCKKAA AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA rJLBasMwDEDvg/2D0b1R2sEYo04vY9DbGNkHCFtJTBPb2GrX/v082NgCXelhR8vS05PQenOcRnXg lF3wGpZVDYq9Cdb5XsNb+7x4AJWFvKUxeNZw4gyb5vZm/cojSSnKg4tZFYrPGgaR+IiYzcAT5SpE 9uWnC2kiKc/UYySzo55xVdf3mH4zoJkx1dZqSFt7B6o9Rb6GHbrOGX4KZj+xlzMtkI/C3rJdxFTq k7gyjWop9SwabDAvJZyRYqwKGvC80ep6o7+nxYmFLAmhCYkv+3xmXBJa/ueK5hk/Nu8hWbRf4W8b nF1B8wEAAP//AwBQSwMEFAAGAAgAAAAhAMBTeF9gAgAAihkAABwACAF3b3JkL19yZWxzL2RvY3Vt ZW50LnhtbC5yZWxzIKIEASigAAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3FjBjpswEL1X 6j8g38GBtJukWrKXttIeemlTqVcHBmIFbGQP3eXvaydKwrZdtETO1s3Rk/jxZph5M8zt3WNdBT9B aS5FSuJoQgIQmcy5KFPyffU5nJNAIxM5q6SAlHSgyd3y7Zvbr1AxNJf0hjc6MChCp2SD2HygVGcb qJmOZAPC/FJIVTM0R1XShmVbVgJNJpMbqvoYZPkEM7jPU6Lu83hKglXXwEvAZVHwDD7KrK1B4F+e QTcGSVVcbA0oUyXgHlYb3JwhQ2XogYo4YLFDzGVGN1hXNFeswNDaQ54IXYQZa9iaVxy70N4Ma5lD FcY3B+Av5pyST48ISrCK0Ge8m1+zd4n9/7/3ThXZLJnG47g7TTuNXWUK58h7f44MzrOhs3S9CN08 XiQjQ/fOJfdCClyxdQUn7kfTUARnLkmAyIXE/is8WIYoxDZw/091vx+pXU4j7J122Wj4ol2TkQXo VLwKafJc9avPnuNB9XL5fNHWa1BmIDlROJoGq8+P7nOp/LQ5cb3eLbxpf9MdlzG66JJ61mqU9Q+T 5UfqUXSyUo5QD5ai0yKwpf9bHzyaBkvRn2lm9OtMnE4zr8t9+loDiOV9Im1PVJobD3zLacdEGWrI WmVFoWy5EQQuTjn0MlectuMHWH8DRNNAepncMw7msh+DwaWE14/P7fMq1Y+P6fOahh/t3HI3eCO5 +9GsL1QRu8XB1XrntLnpPzT1YBkSVG9Gvdli5I4o9mM0uFQr8GN7cV4r8GM3cd7m0Z9WMH7gdDoc obnbW/vtjnvj4CePN2PAoKDQPnW9/AUAAP//AwBQSwMEFAAGAAgAAAAhAInPBcJOfwEAFSQfABEA AAB3b3JkL2RvY3VtZW50LnhtbOx9627jOJb/9wX2HYh82KkG4kT3S2aTga5V2U1XF6qqqzAYzAdZ omNNyZJXkpNKLxbo1/gDMy/XT/I/pGRFvqXoWE4ih0ZVbEkkRfL8zoWHh+R//uX7JEE3OC/iLD0/ Ek+EI4TTMIvi9Pr86NfP/sA4QkUZpFGQZCk+P7rDxdFfLv793/7z9izKwtkEpyWCItLi7HYanh+N y3J6dnpahGM8CYqTSRzmWZGNypMwm5xmo1Ec4tPbLI9OJUEU6K9pnoW4KOB9TpDeBMVRXVz4na20 KA9uITMpUDkNx0Fe4u/3ZYhbF6KemqfGakHSIwqCFkrialHy1kVpp6RWKwUpjyoIarVSkvq4ktY0 TntcSdJqSfrjSpJXSzIeV9IKnCarAM+mOIWHoyyfBCVc5tenkyD/NpsOoOBpUMbDOInLOyhT0ObF BHH67RE1glxNCRM52roE/XSSRTiRo3kp2fnRLE/P6vyDJj+p+lmVv/6a58hZ2l9lcWvhQFt+muME +iJLi3E8bTh88tjS4OF4XsjNQ424mSTzdLdTkZFdNoknt+rK+wJZql/3/ySpav5wiaLAQBFSRJOD pQqL75zXZAIovH/xo7qm1bkiowCZFyCtFKCFmFHgz8sw6jJOw3sOJeXEjKwxL6eiCiknvu9YkVGO LVemVUARldF4q1Kkeb+ekrxBGYyDogE6KRFvVym1Ke5u0uqj6fVujPA2z2bT+9Li3Uq7vBdrt8TA 2KKsmqHaTF7sVplP42AK0m4Snl1ep1keDBOoEbAHAoQjSgHyF4BCvuhP/J3eJ7RGRMYcXYBlNMyi O/I9hWfK2TTIg0sApWBbgqQpYFCRu6BXSnJXrz9w9wyssOgjJBQcQVaJwqhvuXgUzJKSPLEFXXBk +pbph5x8/SOEZDdBcn4UgoTE+dEpuZtXD4f0ovhtnkQyqsfFb06xeO+0znPaFFz9eWw5t2flxUd8 ExPDEl3hEmpGnpVViuo9q30kmp6pOK66Ux/VT9b2UR5fj8uVLlpu/PrKSZqsqqq+W+UeImBTuSUi lBdeFJdZfob+K8DjDDr0AxSH/gtn6TVDp2q66Ei6Kj5Dvd2gxGfIml3PihKJyjECKScyVFn2RFcx BakLHFBiL7GiYmi26Lod90gxDUKQIpB2iEEFg+yQFIFkDUYA/+qqDb0wS7K8YR/6mbNVc7fOscBo 9N7DDLtT0bdnY6BoQqg6f3A7jku8xN9E6tI2Q0OnOS5wfoOPLn65cs/QAok7rFlbuoBtBaZRjMvR IJbSYjQIg2lQ2dsDoj0H1N4diBoT3jRJEnTnmQHRZ7q/976+LLrrDHRXVUMVXMPsWN/sQM4NItzR VMnTyetb9ZREzTcsl0jJx+GzM9htS0MXBzn6nE3QB1yG4+NKn33NZsAVxTEK0gh9zCZBitwgvUvi 22MGUiq+5GqCzUJKWdccW1nXRfWTx3XR7VkSUGbHQVFaRRycH33LBv8NfD/474/stAZCKZokkvp1 KYuejdaXCEzrEOc4uUPBFARGGINVgO6yWY4iXAZxgiMExjkZ4BeozFA8AYv8BiOSwGl4G/3Vev8W AFEG6GfC4CcMmJBkSZatZbbpc1eOA+iYIIpA7BbQbUGSVB3Z9F+WYjS8I18n6BLNYMQSoGEShN8Q FcCQZ5glERplaQl/8qXchPPqPA+I8m2rncxw8/YcX88SYP6mApM7uFdMs7TAUERcjuHlAJJR/B39 8fs/z//juvwz+tsH69erv//x+79YiC6ahmZoStfm7gPDhcXeaaeAygbz6406yHBNwKn9Qup7MXgJ HxY6+5rhq37nRvw4miM5TEBNkVwUvOdHwazMyOUoTuCpTz81/tcaevRR3a+5nxEGA9OvCOP4/MgB wGcJme9o64v23bGVFksJw6J1TUsnxFu2rURJlcztbavN6GB6gbjGJVDda4Frven4kNn48vuNVP3z OC5QXEnfbAQK7zu6lN5/8tHlwK2EGtVeYJnOEkzFbN+bvIGS5RgUPemJACVZSfoCNHmeBFM0xOUt xilJMUHDWUl+oNEsDcnEQEA1fDYaQe7omD4ipkIWhGNUBt9wWt0rynwWlrMcWK26AfbiJE6hSdd3 RG9B1psgj6GHF94GgxgoByqVxN+IFQI2RphjYoSEWTqaURfVG6L6cJ5nefETimlGUmJ+ghAlLiEk fE2yoiR2DBRV0OYV2QQjSRAqAvceyHEEdgChRdVn0AspoQQx16FTgqqVtO3QicU4u4WEQUl6pphN p1leEqMEehJMEDDjkjik8z5NojQroUPf1HYMiOw8CEkW0tvNq0n+6hWEeEGFFAw3obtLQgs8mIDV WJmVaDKDesIT+gqwNYM78iIqujF0CWkAyU8LhAfEIzlMMGlNDOQgr8xxeffTCZAZwHegbAl9Ad01 iYnlRXgviimrgQlG+qUg/Ucp29AAumd1nD0rSkB7PhhRZXe8moL8f+ghuh+qM1lyhi2avt+1+c41 fA8F0yUaxWklKMJxFodUz1ZwHcU4LxBVPNMsIxL7ExHKVMRQrTEbkdFEy090jDKiqAoUZbVIehvf 1IIizHovxFPCKoSFGyFeWx5EoxWVWMUn1wjAPxpQwViE5XShf6jgb/ocJGvdiSBArokKBTU9S6Mg JX3nxiUog3ZPB1Spz9XoXFVC6ngQRVnBwvu6qEqa5XU9KuoX7/eP6/esx56eNRcapCi65CiPY8q5 JwOw+Xf0FQMHTYiTq8U2f/z+z3sW/OP3f835594worw75+UxXAYJ2LHRHSqmOAQ52OPuASMwLkkL f2QilMOk/qqzDpNP5R30R110MKo/NfDg+Vd4dnt+ZBgambs9K++mgKroe9AksLM8AnVAr7LpvKQ0 TqoUCR41EyLNzWEGUm+ycpvOha7cjaErI/xuw/0vS/dJsxcrNUyugrtsRgquag94wVFT/6ss+zYv Q9AEOsU0ivOi/JhBu+klUKx1RR86WTKbpK3nCzfS7J0NljhYYdXVl/lVU8Gm/9/mcUR+XsM3lNHq 7SbtPElJwLIqudvub0v2ZN/fNPVbFVK/On+H293doKpJEFZ/51c/AEK4HgckMiTBJEPxG2SmPyrJ RDuqVh8C/awCZvvci8jaPv8CBLfNTnpvoR/Cn4Oq92iHQO+JFb6WOq9u8sbnTaM2pphXe0MCWjFa F/qrIunSzInoOpavkrz7CXRYE2HzfHL1xw6359P8j60xUJYGEKyR/JTqNXezSRJJsBVb9TbF6zwo SRrR1akkWatRuIB4MgEhipLuukLXEVxcFOxHFGwYBNwbxMVdUeLJAMPYvWwNX9H/rrUcl+IFRFWz Jb3rcEyOhafFAkLDoMCIQuDPDGSXNcHUfE/mZO852SNchHk8JY4mBrJLsqhJouNwsvec7AgdXc7F PwkfqVRAxf9HLAIAkGArpsPlft+RkGM6hRUuztmtJ7pmeJZs2j4nev/Zf+2s4yRLyQoJGMu0Y4AF 5ayOw4D/DDDRHVtTDGlP8YIcJk8IE/Rzg4jlyFE0QJ8WtEadgwUgum85tu9xgPQaIP/HojJsoJJh 7haGvXFpQB9IvaFfBMd2DZ/0AGeBl88CFycMWBd0xVd1y+E0PSCamp4sCiIf5xwQTTXNc0Vb39PS Bk7TpzE/GAgti4pkuxIndL/tzFaA3Q4zFZqherou77ZIlYPhucGAEJmubCavcjxior5gi4KtGV0v c+LUf2rq1zNVGyQBi+tatGVD0HfcHYVD4fmhwOJ/UHxTlKx9LQvlxH6hE5WCL7iebnIXdL/JvkDp AwHyUdtrfh+nHeOCceJVtyRL4Y7DfuNgne4id+5jM8lXFaS/rNFsyXHUF7acL4nJtoP1vkzk4uOM 7PpHs9KkHGB7ARiUV37EaURWfH8IrrGd4+AbzbWV34R5Ocj9ag++HKRPy0FcWXB8bZMbuyqkfvVS ELeoUGBSqVSn4OtBXlW4t6mqrq507Tjj60Ge3w557319bht7wzY49YajC22q763srniHkyS7XWrw xZu/eldXv3xF7y7fvruC/5/ROfr1g2t99tyfnrnNu0xwdbOoR/M9EpWxyR1aFbJeH8iKzJf1HKKc lxRTNMXOdwLjEv1pR5bNsp6eCTlmwd52/fdXkG8gH8tclu6blupIe9ralDPqk7kCt1tzpfoOWZjt cLL3nOzbTWXoii+KMtCMk73fZN95zZXqm4Kkd35yBkfCUyNhmzVXsqFoli1wZX8A7L/NmitzuzVX giXahq7xJTX9h8l+1lyprqQrtsUDYfoNEKaYJ93wHM/kjpxek5qF0I5pKqJlcUL3gtBMi1MkD7jX 0zjzHhBNdQGGbjL1ynOaHghNRdfUNVvajU8PcGGzqvi6JtjcSdFvO7ObNVeyqKie4vE1V30flT5q zZUmarZuqQ6nfs+pX89ULZD85TftlU0oX7BMIeiyIokSPbWTs2SfWZLJD2S4imHJfNjRd2JvN2Es Oo4mKXzt2wGo3XqtWH+V0obGPXLtm27omupSDHNk9xfZj1/7pgmqI3tG1w7vHh9ntZ48L+w4q+FT wOpFCkm2U5uu6qPdwnGQXpMjnKqBNj2BlRwSN8luCNL++P2fLQcMOdqqOvJq3ZKAFVvQdQ3Rd7qO D0hnk+pHnNyQJWq0gXWb4dllw1e0Z05bGbrmOXLEXhVHT3en54y4V8RucAr2lwcDIqP6Wm/S6YMB PRlvoy9jg0WlK4bvqF07aJ9YLHDefwbeD5Ign3Def3m8TwnDYhIQa9pRu44I47x/wLwfxTmmpxIH CWd9Xu+dRVYLTwwSS9N11zQdLrG4xGKWWPH0RuGiitf71YpYwgAMslU1DNH3Oz+8gMvWw5atGpet vN6vWbZqDLJV8GRL9aSu5y25bD1c2bp+kqsMp+0QXC5web1fl8AFBmCQt7ogW5ZldB0BxeXta5O3 s4jLW17v11bvlrwFBmCQt6JqOY7icfuWy1tWoF0UYdmWrVy08nq/LtFKGIBBtkqCYBmO1/WKHS5b D1i2RuGCn4DLVl7v1yVbCQMwyFbFd2zb6HzTNC5bD1i2xuGEy1Ze71dW75ZsJQzAFlGgar6sy13v ZMWl64FLVx5TwOv92HovyymW2XlJs3RRcrteVMrl1OHKqQ2zRXk7KJ7PFvF6vzKRSxgAJFOJyd7V DJJXlwzLtwRuIXLJu5vkTbLrQUDXkbQFMJfAzy4R7gnDIA5Uw9IdiYdJcnGwozgA7QO/i3UiYfmw hF5z12I7GThM1lxB8jrfnJdz2GvjMPwQgx0Qhy20k4HBNNt0TNXmM0qcwXZjsKiCw8GrsMV2MnCY Lkqmbhgi5zDOYYyYuwCuypIZZaSizIMSX98dzhRDi5nWtJOBo1RfEDxfkDlHcY5i5aggLePBTZzP ikHYX/5Zr3q5A+kFibR7oDFIMkV0PVk2fC7JuCTbTQQQ1EVRViwa3lwcPEu9l8UBIQyDNBAUzXFd hY8UuDTYTRrE0wU5wKUAr/frkrrAAAzyVvV1wVZEg8tbLm93krc3WTwd3GRJibnY5fV+ZL1b4quF pyo6icV4FG3TE7Sujcd+nTRS9eMCWSRRUiXzhYunDutNgPJzVpT1mRyjGOcoyDGaAInjAU7wBG4f I3xyfXLcHJCJQJaN4u8Duj9eEEV0DnGUZLeDZr9bGMlEqBxjVBeBsjyCoic4SAu4//TCruM+C0rS ujt0C2hGUGoSlBguyjEK4AZpeNVHxygnZ55AD34PQsiTXWN4CFUYxwmm+6sNUmC+wRgHpH9ocUOM imyCbyEdRlE8GsF3Wp4gZKEZqBCUxN9wcodSjKOieR3ZBrMp/rh9W0O4DKHE6vqezMU4myUReVtD 1wWC1kReoistJ3iGcyS7JeCGQ3ba3XZMl7Afkz1CaA8Stph3MBDjKyH2X633b6Gzi4r0kyC9QwnQ exZc4+KYlhTFRRmnVd8NcXmLcVpjgXAIBQeKCzTJMjIdTx/A5ayYQVXu4HaEkwRHNbTq9PTiT0UZ 5OWfEP4fSAoVQ3/CafQnQp+7bAaQJLQNkgnh7aAoZhNM6YaGGeS9CfI4IEQibSpm02mWl/CSoPds CV0a0w4McV4GcQpdSIiQkBqieELaCe2GDpkCnMmRRMs8kc3ZIgQOBFqSbOlyqnhUvwUIm8wi0nMl hc6bS3RLc6dZ+dMJy5hC8kTDsbqOp+AHfvXCkiPw+ghcC/I9+gAiw85x8I3mKi/OqWn3tw9A5L8j q6BMTRQpkSNUr1JRAcXOavlRlAD2KEvnaogcp0VFBDlIq0rXiIogJU/hzc2zE/QVVydxETkx1164 AOkQjomAo+8b3AutwSJfgPKouQlE1izBVCjCZYEXjkGECyIG0XTW0oWQklR7XhCtSpAAKwIPDuMU 93dktEHLtM4/ozJ5HNS9XgQgdCg95iYXkVgDGPEPQecwyBNZdD1HdbsOgOyxPFmvTfp3IiWb/rOo cTGZgm1ZHba36Nh6KY3Z5RxEgFJLAN4bUfP798ZsUcsgeESORQcsrj9JsD6KE77qNw+TT+UddGFd s2BUf4ZVreH5V3h2e35kGBphtbPybgqVjL4HTQKbjncKepVN5yWlcVKlIP63lZtgmpXZZOV23j7h vbkbAyUi/G7D/S9L90mzFys1TK4C0Cmk4Kr2RNxHTf2vsuzbvAxBE8gZ28DiOeir7Ja4J1GtvZor +tDJktkkbT1fuJFm72ygF5C6uvoyv2oq2PT/2zyOyM9r+IYyWr3dpJ0nKQnWVqVaWyjqBsg0cZNQ rAqpX52/w+3ubjisSRBWf+dXPwBCuB4HBWAxwSRD8Rtkpj8qoNOOqkWrQD+rgNk+9yKyts+/AMFt s5PeW+iH8Oeg6j3aIdB7YoWvpc6rm7zxedOojSnm1d6QgFaM1oX+qki6FHFhqYai+l3r03+E884M QVjhvK7uyxfLL00rMimSi1+u3HWSn1K95m42SUImgAzL2eQ1fUiSmPuRJGs1ChcQTyYgVM/zXcXs 2o/ORcGT2pT3RmM1zCXnEMxHXuh/1xqNy+Mu27I8W+Iw6DUMEBoGBSa78LdmZv/MQH9NdBzLVruO DeD0f2r6R7gI83jKuFhHkF1NFiRO9r6THaGjy7kKII6ESg1MgjIco8/OB1RkswU4HECz8xAjKB4A X8ZpQP3KROUtxqGsh71iC5IoyVzb9R/2qPItozBLo5iC4F7xHbFoPsk0BF+2ifHMsdBnLOSYxhmE i9Mt64muyqKoy4bMid5/vffRd5Buymfocx6kxSQuCiIFoCJlniXoQ56VGdQDDdAHoh3eU3HBAhHf MFXL7fosaw6RZ9ARUR6MykGMyxEZGU8G+SgExAzj4kegYcCJLGu+6uomx0n/cfIGTOWf0KcpDuNR HFKbksmGUCUYP8smx0C/MfB/DKQWbBM+O6qF+kk/Sb2+X0TPFgTPcTgL9JoFGj9yFSO1tR9Zk2VF F9SutwjkMHhqbfhYP7LraKbO6d97+m/nR9Y1y3B0lUv/AxhPL/iRKzWw4Efe4HdlQIki+4rvutxM PoCh0gNu1xP0mQRgE29LlYou02DAh2TYtqzL3BV7APggC1TIYpMIDe9QgKZBnJMA+wDRkP42OmgI bJAinEYMGJFFRfB9k2uaA8BICwQnbHM1qmk5nr/bSTAHOPiWfUEWVbXrE3I4Uzw1U2wzh6UrquYL PteWB2Bz/2AOawENvWr1xWOn3xRN00Tf5SEaB6Dn9zn9pmqub2lyHefOcfIqp98c3yBV4hjoNQZY pt9k2yE+JD79tjz9Zsu6aut8BNBvFlhaxjGLtl3GodqupDpdL/fjMHhqbUin3wj5t5t+kxXVc3WZ i4G+03+76TdZ1WXDtnxO9p6T/aFlHL+6G6bfGAAiOY5kWibXC30HyAKtD6NN7amg8LGrOBTBFsXN W2RwgPcF4Nt4wDXZkVxL6nrzOU70Z1B71AOuGWfoV7iP3KAMrvNgcu8KXPAfs4kEVTYF1+GewX6j g8krZLiSLOi7Sf8D9Arpkmm6Kp8i7DkLLAVlb+0VEiVbVFSdw6DvevKxXiHVEQ3N5e6BvtN/O6+Q 6qi+Jzh8BesBmMcbg7J38QppquxbmsB3f+k/QGovygLRe9W4i23iyVmEn+qKuqPJHNv9xzY95GGr eHIW4SeYrmP4LgfIAQCErh54RDy5ICuG4fCBUd8xsI3XWLQ0z1M0TvQDMIu79xpLtmz7lsrR0W90 MHmNNd8zlR1DzA/Qa6z6liBa8m7uokOMsXRE27UMbjH2ZER5cnLCIAV02XQEc8eQyQNEu6JIvuVq fPq034pwzZGnyqYjT1nmknRFtD1H4Ouy+m4907kkioYtd/jxZNNzFUJqDoA+A2DLEGNfFWxF4OeE HMCoeWEyiegAdK8DstFcU1TzS5cfbpR6gokBJaImaprs8Rml/qNkeY+n2mZ4g4uf1s7SoOq4bwIn JjNCkHVRVDhQ+g+Ue+ERFwjH9EjcWRrXtxfA0KtGX2RpkBA2GM7bQm6wxZ7KouprEod33+G9zcSC 7JiC4XvcRDoAE4lMLCiyIpzdTypALa6JPlyzUQWTTBAFzzFs7j7sOTxYZhZU15YUXdtto8tD9KDb mqUJHu+XZbzYomKqKt8YtReiAcorP+I0AsMg+hBcYzvHwTeaaxsvrLaLF1b2bUlVXD7O7rupMffC atuG9Ouaawsqd8P3HQBbntepiZJginyIcQBDjC29sBq7F1Z3fMmwNe596D9K9uyF9V3LEPip34cA lIe9sI93ZeqOYcimxOd7+46RrWKkRUHVXX4SwyHYGcSVaUiCcIYu0xLnKS4bv+Ux+oJzuvWuht4Q G+OnBWwcQh+wgN2yBE3mp4EfghZc2DwYDZBV2UtsDnpNsGTN52Zzv3HA4qCXBM/ylR3nYg7AEU16 Kqy+qnvlMFntLdWUbd81uvY2FuNoXscwwUFOW03aeH4UzMqMXI7iBJ769FO3DAgep9fwLIlToLyk ECOFXnycJbjOSpNyxtsL4yVbu7/XMmSNNPiq+XmYfCrvEjx/bTCqP2FVJXj+FZ7dnh8Zhkai9c/K uym8J/oeNAnsLIdqFfQqm85LSuOkSpHgUblyc5iVZTZZuZ3H1+PVxDF0c4Tfbbj/Zel+xU/tSg2T q+Aum5GCq9qP4u84aup/lWXf5mUImkCRPYpz6O8M2l0BnfR+c0UfOlkym6St5ws30uydHaREvVVX X+ZXTQWb/n+bxxH5eQ3fUEart5u08yQlAdIq17ddlZImOb67af1AVUj96vwdbne3qFBgUqlUpwir v/OrHyAhXA+EAgRHgkmG4jfITH9UYKU9VcsegX5WEbN97kVobZ9/AYPbZqeivd0P4c9B1Xu0Q6D3 xApgS51XN3nj86ZRG1PMq70hAa0YrQv9VZF0Kcbc1S3J6Dx86h/hvDNDTIZCXE08vX323vv63JvY SqKkSuZKm7Q1barvjQHRSZsZ73CSZLdLDb5481fv6uqXr+jd5dt3V/D/MzpHv35wrc+e2+OB9cXZ Gv29aDgy6QNbVlx144YsVSHr9YEkio0K6lQhrLUMuJx/MjkvyY4j6A7fwLffI+4muqVnQo5ZsFcz r82mm8sn2B0CEVmijjRVVWRZfEXsyoSQg+Ll3h0xwMzENNSqDKdMi1wt2fRM8RWdo8ORfmBIn0VM SFcsgKkucaRzpPcV6UVYsgl1zzV01XxFUfYc6gcG9Shks18EUVI02+JT2X1H83bh4ZqrSJLDI1l6 T/bl8PBDFWo0up1M5392PhyTveyP0SfnM/wN0gi5jjPf275n7f8xjelWxQwcLXqWpnkSX+jVf47e +YxDXXQd2+LH+PQeC1ttKmF7pqKZm8IoONF7pNLpbtWmfIY+50FaTOKChl5DRRY2k1jctJpFLviK aosGP+fnAHRElAejchDjcjQow+lkkI9CQMwwLn4EGgacSL5tSqrBz8g9AJy8AYP5p8VodwYEaI4n yjaNmOUI6DkCfnD0AQMaRN2yBZGbFoeCBsXUhDP0qcxxtVsVVRALWmMbcGiaYViqz8FxIODodjMz RTZF0XP4Zmb9hgfTMSmiquuSzl1Q/SY1A6UFyfFlwZU5pXtN6Socc4HeB9CuAw4vbW3wwmNMRVNw BfkVDUqYYHJQAorHmFJta5uCpao88o4jva9IZ40x1SVFFuRXNEHBkX5gSGeNMVUl1ZYci8eYcqj3 FerMMaae48qGLr8eqB8omreLMdVF35at1zRAO1Cy8xjTeYxpy//Ss074MaFZA00V11dlwXlFo9GD ZeudA03BiHUNyeNzv33HwjaBppqhK57Co0EOQa9vCDTtr3K7yHaMkdV0XZJ9g4u0A1Bve42RVXxX 8nQuBQ8AJ4+LkRV9z5El+xWFu7xGD94BO/F2DwxWZE0yHL7PE2eBHrNAp9HQsmZpsq3zGUzOET3m iG5DwCVJUWyHHx7Wc9izhIArkqDbhrabQVA/6SepN6gFV7ZFl6+87QkLXJycnDCgHUaApujvOMN5 gGhXXNUXTYPv1txvgX/wuzUvnqfes1b+mIAsUfSqoimKY/LYYh6G1kMGpmFo8fRGYRqGaK5tej53 VnGo9xjqGltchubLokhAzQ2wPqN5u4hLwbNtyXde0a4tr9P5eLQQjkms2Nah7tkINYGMhyoMLz/c KKfkGOp1u36u5w3Zk2TT9V7ReouDhf/Bwhpe0YowRkF1JPUbXBzeaevhmpBTdDvGOUYBlWh//P7/ Cga21nXNBX7le44cAFvf67C4QDguAQ1olsbN7SBBUIlh+wbbFkSGroia6XCM9Bwj20QpS4apyIbF HVsHbgsfqi1Qh2aLZ+iSnECc4nKbMBTVVDzDpmdtcvRzU7h/8CfoN6QDbd16igrCGl4/Rl9wToPQ NPSGjHh/YglOl1UZDGND5uzP2b+X7L8Qi88WZGY7luKZ4uuB/EGiel2QGblzf4Q8+RomqwAQFA8M HnE3B99qME4xjuaNCBMc5LRbSCecHwWzMiOXoziBpz791E2HhhH/6+3ZEI+yHJPlQvMj3PdKnuEq kSRRUiVzmUhSXZ02kap7y7Baz26Kpvm6q3btTn31vf0kTNxhvW/PoNTyI04jGJlHH4JrbOc4+EZz lRf+LK0dNckdIv4cjAL4P8K3OEfT2sQp4EmQooz6ey6l9598dDlw/4zGZTlFWQo5g+kUsFCgAP6h aVaSyY8gIW7CDOAyjhPcXuoXS2kxGoTQ4tkE54NRBY4xZC6K8TEaldNjWvYxFDWVj1EalAiXId3l YaUY8r9VQlZMR8cokUhuHF/n8FV8i6ck/wlCFrQNWlFglGYlKrLJ06vnTklbXmAynVQ1qfHTxrj4 C4sN6kmGqXc+BO2XhGBQly9MNnRSYwKO8/+4Lv+M/vYBSPl39HmM0R+//7OJKJzz/h+//wvF6YNs Fxcox5PsBkcnUAxcNYXcEpaeTadZgSNUZmiI0Yz8JJOiZIawGUShdzgA+YT8GCcR8SHj/5mB/IAs dA7xPWBzIckJuizJe4e4hOEYSTcjexjGaWmg8m6KocpFCelr5iA1epGGOBOh1ltitIdBuMVpiBEO wvF8rxBKDpoOhqpRLZLn/RyEYZZHhGrQZ6RnLq33FpnJuU9SFxMURXydTqAQ9IYI4+Ls9PT29vYk DtLgJMuvT+8TFKfzzPV2x6s3Tr6Py0ny0wlQkdT3FteQmVNnEXRU0qdA9MGYEv0YUhdTMqVwg5O7 E6YBtiarlqR1Pe3EhVtPhJuVFNnxofE85ZY0mOBiLtjAiCqDOCXGWhB+w+WgwOEsB14akKBLYmPV k7iEo9Yk0dpJwDgKwdC7roQ1KYBmI8mWOJCBARXJUhTX7DrCjY8/+g/jr3OcUQhHQRmgSRbhhBga L8Ig30XwPGApDaLJQJQPTiiBhTHKiI+wOFsrF2pnEHzV5QyTT+UdDAnr9wSj+hNVdYDnX+HZ7fmR KWtkdHJGTLrzo+h70CSwwYoBs4JeZdN5SWAMXSeY5Ch+Oz8iun9eXVpMLScE+qmKSvCocXRun3uY lWU2eXz+vO1n3T47GLlgOr3btYAvjy2AEHuRFMPkKrjLZqRNFc1G8Xd8T9arLPs2f5mg0ZEnSOu8 KD9mt/VLEuKsaK7oQydLZpO09XzhRpq9s0FLnR8RxzJcfZlfNRVsUPc2jyPy8xq+oQx0j7Em7TxJ SfhlVUG1J3AFTbRMb9OCUVpIWP2tKxA+jGpmzUavqi4Nfw6qsikPQNli1alLRdco3/i8wfHGFHOk bkhAOq+qC/1VNXjJIFcU0ZDNro8svY2j7BbEHV30PodWVeepHbU6hz5J42SV75ubi+zc3F7g0vvE uLzFOF26T2Re/dp/hA05yUgsrwvjBv9+DP5frlz05pl1q+/fy9Zt6//Rc5Hzy9UvH8kA/qP38y9f PLe/psLFT+tsASocqq8q2Q+lrC7InqduXCdDC+FStr2w2xF0T1dejZR9du5+ydO/j63x7QNBDavO OqazwBzb902x67kGjkuOy8etxBNtR7Jt2eeA5IDcEyAROrLpmuD2WsBGamYjOgXGFDolGqYmi0LX sRwcrBysj1m5oSqe7Kty1/s0cDhyOLaXUFvvrTNk0VlmHK0GXtc7xrOsQVQMRZE1k8tPDti9AXYB hlAtGLjnSZx+Q/lZDGDLLyODYqf/rV1muKapG9pt9qLdt2ez+Y16HmSxM6rNuE3xwdb3iLgXa9ay kLM4ttk3Vrc9X1Xs1+PT53L1aeUqy462EjCl5dm7jeRXlxVwEHYAwvUUA3KZlit1vRKIU4yLjaV9 UVsxpExualG0ZNNU+ciWI3M/yNzWTa04sq96Oh+5ckDuC5Br3dR02QWRnqiSnkzDAVkTDVkSuPTk YN0XWLdyU5uKKil21xHoHI4cji3ZuQDEtf4vUaDweekNZnKAGZIgLLPeIXnAVndzYTLSTE8HWcMF DRc0exM0CxuuoEF7TSybr1b1REV4RfHXHKRPC1IWX63q6rphqrt5/rivdi8g3KDbXNd2VJMHbnKx sR+x0bgd4nAyZXLSCrKs+ZrNIckhuR9IIkTPcpmHarJYV5pnSbqtyxyTHJN7weQCBg+iRZTHWhN0 TGxmaZrnu13vGc7ZjLNZBcoTFvvDEhzVN7reWoiDkIOQHYSibpumJnCDg4NwTyBcsjnWw1BRbcfy hN1c39yhs5aou243vZ5iuqQ5qiC4Tyc4etRlT8+5O+zQfRFmjJu/sXhVFEHRPdfnk1gcljvC8uSE xYCRJEOQFYEvwOZ42w1vmwyYBAejQRIXJZp+o6KxkopbbVsh2arpCTqPVOcg3Q9IUb1ddT0JkuMR Ey5lSVAkufPDHTguOS7vI062nwSRHcfxRC4tOSr3hUqWIBNFFizV9zftzMlhyGG4Kwy3W8QjCKLg m3xdBAfk3gCJ0BE5wWXuAELTLInDO5TPEozaZ34woFXSJF+yDW5bcrTuD63V8T9z4/KELYLZslTP FLh5yYG5L2Bus7xMMT3DMWweBsDhuD85+cAh89tu1iNImikKKl8OyfG6H7yyjM1F2VJMzeGx2xyE u4HwgmlrKEfWfd/kW0O9QLRtsPFtVVM05QmjEDiD7olBw+yB6JT2uYNME166KykVArje4LDce3SK aAqOLnnc18DxthvetopO0QbbblgnuKbvSRbHKcfpfnD6yAAVxXRU3zQ4Ljku94XLx60gVGxBNC3d 4cDkwHzGGBVRNwVd9PkkK4fhvmC47XlouigaFh9gc0DuC5AdxqiojmMbqvSEi9g4Wl8dWlc2QWYL UxE0R/A0hW+0x7G5EzahvPIjTgF3OPoQXGM7x8E3mqujABZZVDzDlbjK50DdnxClASxk1+CuNtuV XMP0RZefcM5Ruz/Urt9td4ujEADwvihafDU9R+l+UMriZCJz5pKv83UnHIS7gXBtsBW5E1Zf1b1y mKxiUNY93dB9ZycMroZgFeNoXtswwUFO209ae34UzMqMXI7iJCE7I5FP3UZgI+JiIEgaZTlwlKQ8 SRTQcJUakiipkrlMDanZw+meGtW9ZfzMOb7udPiqaTVMPpV3CZ7nDkb1hx7nQJ9/hWe350emrJEw zDMyv3d+FH0PmgR2loOeK5YYuT4UApHanR+RsPe5XKLF1L1P9qGa70TV5vjtcy+Khu3zL8iQ7bPH QNcIv9u1gC+PLaBiqDYphslVcJfNSJsqmo3i7zhqqHaVZd/mLxM0gZY6inMYRGa39UsSMqRsruhD J0tmk7T1fOFGmr2zg5S4h6urL/OrpoIN6t7mcUR+XsO3QxXDHGNN2nmSknDBKtu3fSi2L8iyIld3 V6QGLSSs/tYVCH+A6pCDupLY7X4Ifw5a6hp6T6xgs9R5dZM3Pm8atTHFvNobEtCK0brQXxVJl+Zt DdWwNKXrnV//Ec47M8RkePoU2uD12hHrjdn33tfn3t54vTYWtTVtqu+NAdFJmxnvcJJkt0sNvnjz V+/q6pev6N3l23dX8P8zOke/fnCtz5676Ozolz149kN7kEnKK6pv6RtncWghnUj5tWMQLryfTHiL hmcritX1jhxcTO+JvcNsHrpPtkxjOzlZsTVRd3cb53ESP68mZtt6WjJsT/DkrmM7OalfHqlFT5Zl W+l6ipCT+gVytaernmpyUveb1PfrShZo/vLbxjykmm8a07P2/Zh2LGaWbvuqJVhdB771HRcHxcL1 kptD5d9ZnJYGyxy6aEqSKHS+yS3XSE8N5+0i0RXLNX3d4YZI38ne5Z6EuiDrhtR10BfHxNNjgu78 d6C6bUO7myMH6oXdoxgnUc+6oK3B2eLgFVtSXJ07fXvPs9vElKu+Lhlq5/t7caI/g/Jm2nqQRRDo hui5ChcEB6C8D1RxX1xa760zZBVFfJ3iaA3i388mQ5wXPdbaTEpb9XRTMmQ++Oo3r7JEh2umYNi2 3HV0OCf1nviXhaaCLyiiu+Oyk9Vo6x7RdH2/SLYv6prNsd4TrIdZKwBFY5oZ0UxNFRWPe4v7rblO WEiteoIsyF0vruOkfoGkVizVsTrf6IOT+uWRWtEV03cULsD7TerDD0Bp7TjYsyb+mHxMMSiOJqhi 51so9h0aB8XFPAaljkHRJFkQO9/Hliulp4bzdjEoqu67mtL5akNO9qcmO2sMyqKkWw8KyfNdxRO5 b7z/oHjk1n6KZpmGZ3ME9B0B24Q06KKrOLbe9X6OnOjPoAu22oyORScItuEpisnjXQ5AJzyw5xsD EjSbnE3s8SmmA0DCArlffrOYh70PRLkcapNfVfSOpvi2b+syl0G9lkEskR6y6FmKbXBS94R/H7+D oqaYriS4XRsWfdxB8b7T2TdKfCkw+XGNCT6+YhQkRYbCcZBeY1SO749eu19GEqf0QTnOMUZRUAZo kkU4QVEejMriGMUn+AT+4nI0iKW0GA3I/0mWxmWWA/UWHoXBNBjGCZR/jII0WngETZxNcD4YUaIP YmIuwG98gohPrXobGgc3VT2LYNKqLKDj/7P3tbttI0m7t8KTH7sZIPLb301mkQAkm5wYJzMTTDIT LBb7g5YomxtZ8ivSyXiBA8yF7N7cXMnpJilFsqVJ0yJtkyoDiU2KpNhdT1XXV1eVZ9cvneTl8XRh Vuls/iSXYjsane+qfrVm3m9X4pxWXwKVOKESZ330hCtxUhHELPD36RnlQxrVaLNed8qjakp7VOpM BogozutZbG21fro1t6GC5oPqkT9GH9spvih5LHzO90W2gbFvq+E05G7Uego5FNM/OhYu29au9GKr ZiIKEeSF0EwEoHcY9PY5nNZWW3Zl192bUIVjEgMgAZDdArJYJvP8arEsRmtHgg1AqYoIweIBezAC Qh4JIcnV1ayO2TbDCJFExm50mBC7u1dyGBjZI/epy30PQ9td4OrDuLrSgbMrG+1XegH3sNt20h2A DpaSO9qvZbF7xr1QedDdESD5AJC02/5OFBeItl41EyAJkLwNyfGlnZeASxWEyD9sQ28jBRsgaQvJ PUKEST/irVdqA4odmxCp9XstKewKfQcBFQRCKwC7w2BntXZZ6vg0wj5jHgVQAigfAJR2Wj5GIXdd ZnKWQKXqhUqFOPJiCmIExMiBYqRSqe7Gw6z2hXgKx7iEG4AQQNhlvHZs5xvQ6r4nSBACIgGR3SLy emKHSBEGylWy7ZIvgEhA5C1E5uPCUkhGkSdR6y05AZIAyVuQnIwt120cepggHwzQJwjJ3RRDwos8 3HobJqDYsQmRygDdlW5nY4KikEkUt17dF2B4bDD85lp2UViqV1gRQnjrHQMAkgDJHZDMLXdWYI5C cBcDJrvG5NTWCA09RCL+gFspAJHHicg8v7BCJCIsotGBGzcAkYDIb0cz0pkpj2cFykhh7O7dTg+g BFC2JSYvLVdu4/lxOUR9AZKdQ9JWmUS+JFEYMYAkQLJbSF4truhOSJoz3y66iAnFqKoU02ac41iK Lu7mfqmQ6aXT9vZhqGT5qK9nOOzv/o/fO4mp7Jg7l5pQ2dVsoxZksXDOUmeSLrPP6cSZLrV4TZzx 4vJyMXfKoMKXi2x84Vwmn9LcyQrNu3menekn6HFks/L+9OT85GvXBudf13lRbtd84SzKHrGsKl55 9VmUZ/SrOPm1fuYqRJGfOM6PC1POfZmelDdsVL50snz77f66fvXxYj7JTLDjr/qZC4OXbEumPGGa FBeOntL5jbMo9Kid/73OCk2EbFrOYeGsh5/pSS/nKtmuj71nBZe+j8MQqtEOjYf3F8TfZAZD8E3O sdqaynAcxC4FyAxN7FdyW4sTUxnVKS6SwilXgq8Aef5/vnMWU0f/WWh5fp1r4VvWDb5Vktg5q9C1 1COoRXFucklfmPS9F9WW0x3rhn5yKfurNUCLfq28X5iz1Ysly7SslXy9nPdEaO9hwj2LU3b113qk dxaw1bo3MmUO/+o4P/1f51QL/zw5NzWjkzNTvLYs2nw9nWa/OeVlztnqZLG8HutZK+s6mznUL2xo Wy0kp9GHuCLz5WJyPdOE0uZXqpfpa5MeoFfhU31bNv/klCaTXndPTblq/YzTkfr6wPnCEHycXhWG XuvCPaPNktdmZTJ1pPuy4n6tdb00ZbxnFkrF85VWoXF7aRbhdJanGvXzZTpLCn1rPUl69n5489N3 FtJWYkQU8dvOY+2XtC3fbPW+u83MJyaAW3nj/RLk1V/Oi785/3inCfxP52NaVW1fwXOrTvsG75Wo 3Ja4Yw1rfccfv/9ndcMfv//XKOhVf82zUmRcanW/KNLliQVcMeOuL+O2/eY9hivBhBPvSOD62nQS qJod5JXYNCK/NCQPrbJffz2U2Ycy+/XRUy6zH0eY0nBfLlr1kPqrl2/STUpjVrKe+cbVFVC3e8P6 dEksRevd6p9uyAEK8j9oVvRPb1VLBfl9glzk7fOsAWPfTkxTbiiVrGcRYonAwl3FEscre92u7BkO eIwC2HADuOwGl05tbF8ZSFoAkgURJggDIAGQXQHScZ4FZcW3zfZ/p+TH9/FX4ZlbtbDFwvM8JmBT DoC1G7DaNNfFoYqZ57ad/QMgbAGEuylGFaau8EMQGyA2ujUGbucOWe2hwoTQOITaMoDObtDp1NG5 la5ltSPfi7WdGoFZAKDsCpQbdup2EsceMRkQFzMGe6gAkV0hcreh+u4z23DyfV3crSxWFHhK0YgC agG1HaF2nfhuAUeGlBBxdJjtCnAEOP6pEP05Dh3p4ZfOqQkxm03S7+p8MCuZKZUbBTKGjg8A0m5A auPlE5JyFwno4gYg7AaENsqj7wYkpJDEABjsBoNbnQSb+i2xS4LQCw6r9groBHS26bcUJBIcKWhC DaDsCpTN8muoG3gYQVETAGRngNznthS73JZZapdqQ6LQU4JAAAhw2xVumzguMSJeTMEUAjh2KUaN 49LdQuMAxkYQ2uGJfeH8mmr+0EuDcJ6bxeI7qyAsEwwFMQU2BDbsjA3fX6XjbFr3kbCMGJCARhAx AFh2BEubiIGMcehG/mEghLzgTkC4m2KIe77PXaheD2KjG7Gx2fm0uXs9DL04BgMcwNkNOO/jXteK FqHIN/ADUAIoH9+9TmiApY9gCQdAdgXIne71D+G7Q7zrwveJ4pwCbAG2T8C7jqiKQkZjgCPAsVvv uvToS+fDMpnnl1leup9X+Fg5pi3gihkOtNkO7j6A60Fw1c8rfi7rU6eTd8l5GizT5FN5158C2Zks t0A6AA41RbeztJiOivHV5Wg5HWs+Pcvyb7CqTcRIutgLPAn5L8Cr3S0tznOtj393j8AR0nqPJyJI KwB0doNOm8ARcwX3lITA0RME4Z5FTXEZHEoxEBsgNr4ZOLqeNA4cER8p6cZgzAM4uwHnvfZl4Ei6 ngfRTABlV6BsFjhCvieUZBDJBEB2BcidgaNf1EGBIy5DJYMA4p0A265g2yhwhFEcEkkBjgDHjgNH wn3p/KLPOyopkvNlcrl2Q9sJTuZTzhh4+gCp3SDVqnS0GzHlQunopwjCPRSLOBEyhnoCIDa6ERtr 4yAfF41dfdwXIeEMXH2Azm7Q2dSpgiOEVQD9OQCPHeHRmAOnm/6U9+GHgxwqSEUoogL8gADZriDb yKEiXeQHIazoAMcOJahxqDBPoJfO+2KZJpfrzL4PPc5sfL2RqdjINSQipjkuhhRF4LlueM6q3rCS PBTqMP8kuIY6AeFuinGf+4ggSGkAsdGN2Fi7hibj5uUDmI+UBh10FQN0doPOhq4hKQPX14ACPAIe H8g1pMLDNmkjFHvSh80hANnOINvENSRVFEro3QRw7FSClq4hytDLr3k2+i3O07yUoSucNOvnxGLi uz5EhQC43QDXrms7VYK6h1nr4F/pBIQVxQwNx9Wv6lxxNrtLRxbElHB2mDC5S8f8YrJ6x/EsTZbl qM0YXz1LrouFOZxmM/1pXP7UI9NQzObnjqGGVjg1Kgmrif+As08w4cQ7dPbX061/1ex2Nntf3MzS 1d3JdPWDq0frCz7qD7+8euZRYdSSl8XNlZ6EyW/J+oJgsZyky/wWH+R61mapuSP/96tnpoPQiq3L x9QTj8qfuwzT/O5tzmp+/xYLNr890ySdpG8OfcCv931AxUubpDibvU1uFtdmTBXNptlv6WRNtbeL xafVlyGByqdOs2Ve/Lz4Un+JxuLGUflhuJhdX843Pt86MV+8CZK5kcTV0a+ro/ULrmH3/TKbmD/P 9e+wlKsrjK2vXV1SGDa4y/EbAoPKMCQk2pfBVz5kXP1fv8D4z1FtLSrKo2pKxz8kG2uBfjauJvXW o2uU7/18jeO9V6yQuueCUsaW71L+VQ34loD1Ip+E8fFoa/8ar8mZmir5Dy7Aj0qHe/1j9PHlDn1t e/W3YWweBS4yazEwthVjEyWY72GICDwBhtDfocc02xzXTTqbLb70nr/32WhbLP/0R2RFIDOidZDu qnaJWEXnkBe4WEnonQm8+CiOvqFyY9OYJIsZjmEzNXDhI7nbh8qHuxpS3u5AZheEpcInLCCQnAk8 Clpra/xpEzFBAfGkCMBefEJQHbIauhuFHAWhjCToaCD/Qf63Jv/Xmll2ZeWvED4LKY1M6Aa4ELjw cReKAfFhWUhz5Tm0ykl1RUw5KGXAiMCIj+c4JEqEEScEuBC4EByHLfLh7iHv8CZmtTfxf/S/L4vl J2eW3KTL9VL6wsa0ZNyLETswJRS4GLj43lw82OU0PTk/eeGcvvvMyv/FCyeZT5zT8Id3J5Zbr2RE OYcyKMCa4PVpjSutvP5MERJhUG2fEFSHy1x7MBjRCCMfvI2AwW4wuOH+/sysHOBSAzIQ0C4EINkR JOumSkNVPbKrno1s8+WtisgRovwoBGcCCIiuBMSGj9pKi1KedCPIMQdEdobInR2ujNdnV9mdGzvP j88w9z3I9wTUdoXaRvWYXRp6CEPtEoBjh0K0bHDl4Zd3k+StZCYWGl8u+EsApB2B1MZxLONQuTFs 1AAQdgRCm9U6iD1BWQgYBAx27jgWdo5jDUiCYnAcAyS7gSQ4jp8syewcx37MPAoBdxAQnQmIZsnN jAYBFgHkXgEguwLkPr+xOKRcuwwEEywGLwjgtivcNvEcc+5irsAWBTh2KUaN59gl/VWRdw8OoR2u 8BfOr+my7O4nnOdmsfjOqn5AFHEUUWjgDmzYHRu+v0rH2TQbJ0ZzsQvZMIFIhEBZAVh2A0ubkA1z FXbd8DAVpf4EQNguCHdTjHjSC90YegCB2OhGbHwNcIwv7UrDMIQjzmODNIAkQBICHKtzlgGO1Zb1 no1vcwhWYQ6hmBsHYIeBmOhKTDQLcyDqBcSD6g8AyM4AuTvMEf5gEuRX9RB2xzzscuUl8bjECnJL AMJdQbhJxEP4VFEewIYjgGOHErXKlScbAYIVNn5I8zw5T9cBAwvIMo8RxThAFiDbHWSdsqcyY9QC s87zSin4zgK8hCqPYBcy7gG8HYLX6KzFRXo3Hns3HLsVBrMAMA8i6SoFJhgA+CAA6+cVP6fzidZU J++0NA2WafKpvOvPoT2qLTArY4sr6iPkQyMCAGs30taqiz2n0lMHNueFiG0nINxDMRwwHAcRiI3H p5hVTGZQMmVLpDz9EVkHzbbC1JYl3JigREYISjkAJz6KLTVUXiyj84YPrfIefezFPoZsEWBCYMIW mbBh42PsBUoSWAqBCx/JrThUPtwf8B/fuyIe8XyKJGwVAGaFJbNFVm2S2iARwyiIwIsDPAgLZrsL pn0+h2X9WEl9gqFBJnAq+Ftb41Kr2BTGkWQePYjzIDbVKlRXzLWbYtwVvhIuVPoBWQmysjVZuR2b sqsSiXkgsAohuQQ4EWz8FnmxUWwKCV/b+D5sUQQmBCZskQmbxaZ4HMSelCFwIXAhuNoeIjZ1wA5U zggVngC/ODArLJktsuoqNjXU8VltJ1YeclkAta5AtoAi0H7MrYMNqTykMQuglQFw7GNx7GBZtsNd uIiSOPJdcHsB1wLXtsu1jTYYC8R4xHAIfAh8CNHYtljQqnUpY2EUHLgCQuZKq1BdMdduijEecyEV bGABWQmysjVZuQ4NFMtknl8tlsVoVZ3Yrtcp8ZTCmqWAK4ErIRrQGl+WWSwrTrQxJUjgchRT2DIG jAiM2CIjNstkIb7PXMWgPiNwIQSwus5keZvcpEuHrZfJPZ1kXzjpyfnJCwvuRTwMCfZgIxlwL7jF 22XfD+G7F84vSv/3Pvyg/1ehObHqiGC3zZNSrGQIoWbgTnAAtcaYNs5y4pNIUeib85SgOlzm2o1B gaWgnoQqcoDBbjD41RM+tuuCiWJXcoWgkQggshtEDrwL5t2IU89GujkYq50zErk+47BzBgRGVwJj Z/tBbXvvcY3Z2d3YE65k4BUD2HYF24ZtXIVCYRhB5QwAZFeAbFIoElOOiR+AZQpw7AqO6x6YPdaQ 6Uvng9H4L7O83LyygnaD1p0kiBALYsNTwGnAaR2F4CbLZFqMsrSYjorx1eVoOR1Lj55l+TcAbOPF 5CKMceBDDAsQ3CGCn2uL79amQLvtSETQGHEK6AR0doJOq2BjjKTnKVCnAYTdgNBmmcY+l3EMAW/A YDcYXPtnryd2wUbOSeALkIqAyI4QCcHG3pDQKtiIhB9SCk2IQWB0JjCaRW2wZJ7PItgaA4DsCpA7 o9+/qIOi3zJm0kWCAmwBtp0FG3usizRoqMcx5zSAHcrASR0uAGWcVLgvnV/0eUclRXK+TC7XQRor mc8i6vocIvqA1I6QauMHFxH1kULxQSCEClWdgHCP2GCYqlhAegKIjW7ExtquyceFnduYeVqMhFCe GSDZESTBbdwbElq5jQlHVCgPVF8QGF0JjIbJ/rEbhxGHliAAyK4A6TjPTjc9xqZCySEuY+xHvqcw bAwGyHYF2Sb7Uyj3PCEi8LsCHDuUoGV/IU+gl877Ypkml+v0+K2c+UZuWO6h0COw9ANwOwKujRuW E85jjx+WtgBu2E5AuJtiTDI/4tCgFMRGR2Jj7YadjC1LBeGYI5dDYVGAZEeQBDdsb0ho5YYVMSHU p+CGBYHRlcBo6oYlCEce1FwBQHYFyNtuWFMi+hA3LI8YQUQclkADkAXItuOGJVwwhqFcKMCxSwla umEpQy+/pr7qtzhP81KGrnDSyA2LCY5dl4A/BYDbDXB3uWHNmXH1qzpXnM3uQlOLVN+V6rD0trvO 2fxishrEeJYmy3JazCS8epZcFwtzOM1m+tO4/KmHrgeWzc8dAzCtvugxElbj+QHJQzDhxLtNHlK/ yCZ5qnO3AbVbBCDGPOHJtlWpfs3zWfuz/SDs2+J772XitUs0G19ejdaq+k3Z4WXrw89i6+Nl6syy T+mXLE8dLcUvtFm6zD6nE2e61AL9r+tbxys74K/OlwstvE+dL4vr2cRJf7tKx4VTXKSXTrFwLpLP qZPoqy8v9XJnvq9yjJ3rZ86di8UX5/J6fPEIfrJWiaCfWvyczvVUpZN3yXkaLNPkU3lX8XrxOV3O kiszI3pus9xZLXflZBi76jOrqLI+FuVxUhJiduPMUz39ei5L5dYpej5XxeuL1Cm+LAwmzrJ5Ojmx UHlQLJCSrRfC6qO8e+JirSkYTkfKmefTkRYPWbFYmonVPPK/11mROpNsWppzhWN450UlisorSlYx AimpxMli6qSZ4TAnu9LstCh/ixdaNGWzdPs+/XF5Z3nhiu80y61OihNHC7PiIpt/0v8nhZNcXS0X iRZSpaTKr6/00/QXlMIxmxu+dsYXi2xcvkUlH6dZusxfrL5u40uSx2LepmTJncXV1SKvBE853V9H UbUJ00NPTGjAzGvi5NnllZ7ptf29vq26zMn0yDSzXOb6aGGYJzOzt0ErJ6+r41XLiZF5dqIBY4qZ Gxy3KtSKbH5QadHWarLHhnl4Ptsa0G6jzI71Xv3lvPib8493Gpv/dD4a4ZLMz9NSzqy1rzOtqU0m Bmrm9Hk6T5fJzPnj9/9sqXZ//P5fJ8krCVUpYKWwNDrGHdF04nwoBVmPJ85MU15qsIkRNkY45S93 SpDadtW/6nvPZu+LGy2/6mcn09UPqb5YX/BRf/jl1TPXFSbm8rK4udKIm/yWrC8IFku90OTlUSd+ kkxP5iR9s+f8r7fOm3Fvv9TZ7G1ys7g2D67efpr9lk7W7/92sfi0egYSyGT5aRG31Jrt4ovxBDm1 nrs+Kj8MF7Pry/nG51sn5os3gcaYltLV0a+ro/ULrgnw/TKbmD/P9e+w9ECtZnt97eqSwsDlrlTf TLEVcSiUuy9cWz2k/urlm3Rzute4Wl8wrv5fHX0DCOPdOMg1s85Sc0P+b31z+UcltcqJqpcWVP7c BUzzu7eR1fz+LQg2vd3M3tY8jH9IqtkrJ0TPHq7wdWvy6iHv/Xw9qL1XrF57zwXli5XvUv5VkfRW WMAPkSuCtssi/Wu8msyxltDpsn7dx5asA/Vsvv7prdol+kuq19xtJ0mEiALsi32ZYn8mSTghtBNZ snNNARHxYCICKURcF7dtcoAw6EYYfDNt9LaP1CaDlHIShl7c9jIBGHhYDNR5muOVN9su/spCyVrP ZwfSPzTpG9bL9HHAfEWB7D0n+86qlKfhDzuT226sUjIIw4QiGgI2eo6NJglkwlWYRKLtWj5A9EcQ CFU3N/LSOTXG+Twt1qlZP6R5npynzVK0aBApzmXbuYUAjYeFhs1+VOzHLFAH+ovupjz1iNR7WMDH keASDKQhGcnGU2JnHgdEqFCAQjQI8/iWg8Rqs0cYkUi2vtkDAPDQAGi4LU0q7lIMvpEB6MRbm79K +7gU/+N7G8kc00C2Xm8esPHQ2GhiJCMkfeW2XvAWiP4IAqFlIxnRII4CBGvF8I1kyXyP+t5h2uAA jWQcUF8JqYAFes0CKyN5ixOGMLLK8FtMbI1+RhmlBreA5v6i+f5GP9YWvwhaL6sFAHhoADQz+hlC vs/3ZtsC2ftC9p1Gfyn+x/c1+iWVoUKy7TpFgI2HxkYTox8LzuMwDoHo/RcILRv9MlASe9wDaPQa GjZGP+IxEy4/zN87QKMfhZx4EQKX6DCM/h1VNGyMZe66jEsC+RGDMJbHTRLIhYviiLng+D4yM5mF mmw+kH0AWnGQ5FsU79XIXu/Iff8s7m/jY+GGEVYQxTgmG5/yEHsYbPwhSLOySClj1MLId55X0uI7 C4jwCPnUjylApPcQKdcJU0hmDZA1IH5Nl2UrMaGhYYDhvK8rOSW2epHnMqHfG2DSf5iMamXCzhco kVSCtN1PDgj/sIS38gUSP5IqPCwMNEBfoAxw4CEfNor1mwVu+wKt98mIwPVE7IdA/56vfeuUmS1P sF05CTdCIoYIed8h0MwbKJSvfIkokL3nZN+VNPNZHLhXhnqRwjGD6FDf0dHEpcZdxTmFKiJDEAkd udSQNqMw52Av9B8iXbrUeER8qQJQLgYAk0YuNRwTTkQAGfj9Jvz/2y5gv5vWImaB9CmsBf2mtQWl qfJCP/bAGug3pe9kDFpvrIuR64kAXER9X87v7yVk0vVdBhDoPQSaeQmJi7FSjALZe072PV7CwzbX aXoTFGEQCn1HRyMvYRhSwhFkWw5AJHTkJWRcYk45ZJr3HyL7vYRbOBjCeA/2ehLpucjj4PwaAOwb eT1R5AcehoY8/SC8ft6+btmN/KHmzNdmXuZX1dbxlpeUCcyxT1vGxoH9YWfZPK26w9YHP1/P0vrW 8lLA3hPB3k7xY99AlFbvBA1E+9VAFPtMSZft26NfPaT+amgguuv+4+0OyFweYtx2WA4aiD6+bvpj 9PGxO4vvbpWOxY4x1ecuNKJnm8x4k5rW2LcG/Pr536O3b3/66Lw5/f7NW/3vg/PK+eWd8j9Eatvl 0Cs6vm6nCyzB1A39aJ8SWT1kz3KA8XoFanVBgC6wj9wo2kOmeu8RpV9YyZIBiftbuRlPf0TWwn4r E8EqBYFESlFKAO0DRvtw8V7mXVzVjnPLrcmIE35EGVcA9+HAveFONCKokP4Rec+PEevDRfuebs6f mZPMJ4cXt/Jd5bnyiGLpsBIMhzeaJBYxjuNQkSNKLIJ1YEhYb1Cq3IIbtAEQI4JC4IZhc8Ng2aGz Hchh5PoUVgngi37yRYfbrinyvEj5dfAIeAN4o2e80WyveUij0PWOaPfJ8aF9qEC3qVlJYh8HAloV DQnCuyktPKU45YamQOn+Unp7fz2zK8DpK4pFEADpe66VrbfWW5XXi3EQ0wgqT/ed6g1300dChgj6 E/ee7FUHnt1Bv/G9d9MrznykoC9f39HRqFUt8X0X4cOaVALRn4RIaLlVLcVxrLgHqmG/oWFj6tMo IJJLehCp60/6Seo9S2LMkUuhNn3PWeBW4TnLhO+IUsWOKJYx0IWxkWHMjSAUBDxhx2UYy1gEnk/B 9BmuYXxACiyPkORhCOVVjskw5oGLtPED0a+BGMYdpIIJHkexiKEsdf8hslVmbov0vRri65YTuhDm LAoZ1NocAMIb5TZRHHuR70KkqN+Et/H98cCXMiSHabcD9P0xyhnyBci+frPA2hK07kmLfIKU8EIg fM8XvdLz1zNl7ot1CZMyx6tno9scgI0aQlzFVSQhTwlY8amzohg6K8YhpS6DUGjfWbFhcZSYE00z CIj1ney7GvAMVSBvlT7pr1zeQ8zDOqszN1BCehDX6DtDNwlmEU5DQo5p0/pwpXirVT5QFPtMHFMR 18ECw+koykmJDF3JIBQwAIh0WPtBRDyKggj0igHApFGokPmuopzANoFeEF4/r3HzKRsFU1Al4wOz pXsVRLQyRlcI2TNpiLmSHlN2RaNJG4483WKgpz8saz/LfSrPDnUuGlTUFTIkIoS6QVBRt4c4b+J2 ojRykaDQNAMWuJ4ucC1vqRaSUcEwRNMGgHkonNvMj4hjQX0RAPb7jf21tj9eTOzyKVkYxy7zYCd1 34Xeeif1UCXf4PMpEXYj6vuQTwms+NRZcej5lMwVgR8dk208UFZsmE8pkBTCg1oC/bcAn0E+5SCI WRoy43vnU7LYDal3RP3xBsrQjapmCsmFCGHxHoAUbzWfkqKYhQocvAMARmf5lL4Ig4DBgjEAiHSY Tyld7kscgSQZAEya5VMihQLsgY+u34TflTVpzoyrX9W54mx2FwDYD0OqDuxHfzeXMr+YrAYxnqXJ spwWMwmvniXXxcIcTrOZ/jQuf+qh64Fl83P92VmqhZ0eI2Go+qhb8pzdJRLBhBPv/rDazW7EFZII t+289T7O9tdJJfW3bk5qde5ReLX56xnW+3CR5c7pSDmX2sCf5V8jl9nVZzYqFvloko+vSs/G5kdi VCyTqV6pR2P9AtVF/7O+IP0tGRej8rLpbPFlNEvO0tnfnHk+HU0r4l0kuTO+WGTjNHfy6/GFo48v s3l2mf07HY0XefHCuUx+qw6X6SyrnQ3OJF1mn9OJM10uLp2kfoSzmDppplWM5dd3NPs/R4vpyIia 8pLNzzZefUsAPWE66Y8uMj1PeZpe5k6xcM5STbJl6mRzZ5bNU+eLngBnfL3U1nmh1a1s/knP84nF UopdGhEet13Wt1+8bbHQPTF2b+WN9y/Nr/5yXvzN+cc7TeB/Oh8uNhKYLdh042xxsVxcn19cXZtL V3dqSZPoi4xQWV+Ypxq85vmJBvUyvVxoNj8x3/w1eTrTwsJ8Ol8UznWupYDGvjEstOi6nqVGhJgj DbbpaJblhZMZGZPMz8srNcv88ft/NKcUL42w+uP3/5rbf3wfj+IKc6V5osVTasM0hDIiBWrb8ACm 6QfTvA5Sva4ZdD38+tHaGDRjVPx0mUzKdcRwz0SvjXrpTovpKCNmwf66aI+yFYeMJpcjTF9a8AmT gQgi2faWpx7zSVsKem0V6V81Pc9m74sbLQbru7WKU//U8NAXfNQffnn1zHWF2Vfx0uhIr55NfkvW FwSLpdaw8vJocbV61DybVVfM0uk6CLY+ebYoCq2M3T693IyYrc9merom6Zs953+9db4y/jZf6mz2 NrlZXJsHV28/zX5LJ+v3f7tYfFo9Awlk3AMaCMu8+Hmhx10eaqpsHJUfhovZ9eV84/OtE/PFm0Cv VJoe1dGvq6P1C64J8P0ym5g/z/Vv/YyN2V5fu7qkMIC4i/1N35YfMOHLfYWzq4fUX718k25O95rX 1xeMq/9XR98Awng3DnLNPbPU3JD/W99c/lEpDuVE1QyIyp+7gGl+9zaymt+/BcGmt5vZ25qH8Q9J NXvlhOjZwxW+bk1ePeS9n68HtfeK1WvvuaB8sfJdyr8qkt4pX8O9WLa9Z/Jf49VkjlOzFDy47Dwq n9nrn96qXUtsSfWau+0kCXFpyBjet5fuzySJ140k2bmigIB4MAEhhWARlm2H175kk8WXsA7/rZZh kBKdSomxfr1Em7VLR4P1U1qsDWnjf2PaSF+l7NjsQsCSBJ7vt+0LAlw8OC72RVxOTk4scCAjJWMB DW97TuyvrrCrT6VgqGRCscitpAGNkFRUQJC13yhwqmKYKwfuMp3a7UhTjEXMg3KIfad+vRHmVkTM bic2opRCGdTeQ8CmOhVCKhYeA2nfd2I322uDueLChUYuAxDzz0ycdh1HvVrMsvGNsyxDo+PxYjkx wY9isV2SYY/mJ7EfIxdS9/sPCufUlBorNcDF1KkX/xO7Glyx63MZQhJ231HQaNeOxyWle53FQPQe rQfVrh28sTdjnXo/cj5siwS7tGvMYqmg0UnPwWFVrBZ7HvKhlVFPSP3aysSTJAjUgTsy72bj9Iim u+eFMhwy1noXUwh7PDwbjP8sHCYahsNoIL1QKsDFYFdCu3AY82LOUExbxgEQ+2GJvTMcdmsni5Vc ECj0PBeFgIde42EzMLZF9V6N7nWDmB5Fyo8IAeD237ivYnqbosvGgOcuoZJzcOz2HQA25p6g3PME PmyPNBD78YndLKInowgjzsFJ138h315ED2tJoHAE7rz+g8JE9MRq6XfKpd8unqfN2Ch2GQUM9BwD TeJ5WtkTMRWQwzWA1cDE81yC0I6A3ou7xbQswEE5ZTF29+0xBHD0aFXYqp1m4rubC4Td+hAQgg8N DwEaHhsNNqahFEppOtUbBYHUfYzumjPfLpRGAhR6cdB2Wu+BFRhMyaKq/kJ98LM2aupby0sBSQ8q NHaKDPsSE2WBg/ICKDHRoxITyKNS+fG+VaB6SP3VtzaGY1birxQ+9RVQY+KYtpDjiItYtG5XQo2J B1wNSkHVpM/9j9HHx+7ouKd+ktgx2vqcZf+O53+P3r796aPz5vT7N2/1vw/OK+eXd8r/EKntiuW9 Wu9ft1RCRERxSMl9SogQjNeLU6tLBRQRedwVgEZKhlL4ezCxE1JgQz6eJBgvVqmRpgqAVb6IlMhH lZUGJH76JD4sy5ELxGkQhkDsXhP7a5Zjz7QWa03N1O/tr0a2h2424phgRSNxTJkdVpgYFPvWSalD 5d11AW6rbEWPutxnoGH2HdIN27/iKAxCSK/vPdnbTGDjOBaxR0AW9B8UO0tSDHTB2zMPpieeeh/2 rRny5kpul3OI/BAHjEAVub6zbZOcQ8aIp3gIbqMBLOBNaohYQAPT2IuxPKI89GM0YfXPUa3nhkkI k+ylo1GazasKA5ovTEcdlU1LyVlkSZFObFRdKQIUhv4RJecBjwyfR95Xa0TuxFk6mzjP1fvqr+9W radKq8D0hLNhEenLGB1T4jqwyJBY5HW5h+tNmpjAv6UlhUISKT84HsgPEtU22fkca2XCF2234QBS d0Nqq9prMpYyogcaPvUn/aTp7nmhnKtIcfDr9gTr48VGFpGwK5cUC8kZA3HW75XLLotI+NjlAWwp 7TmxIYuol3SzauxDZRAwAbYzZBH1lXcbZRHJIGREUih903dI11lE/RXary0ToEhMMBYIdKi+I7bN BChCueAYujEOABQ7KngNdKU+9vQnhmXoUUSBaXvOtE3SnwQlyPc5FNcZwPLdesk1KSn1qB8DOPq/ jP9pyTULLGAUcE8ER5Qce4yemOFmMTxEMhzBgnmcH5G8BB4ZPo+0mgxH/JAS4UNONbBIP935zZPh cOBHTFAwsfqNarumlaFLRRQCqXtB6gNK1XKJI+xFtGVKH1iq9iydLpZpVay2/KhbOpzdmnRSf+vm pFfnHgUmzV/PgOFjVlw4ySxZXuYvtHqT5c7pSDn616WeWqPymBLAzhdz1UJrP8vcOTMFWM3xZGUx OEW6vMzmmnDnNy8cfZG+sSifkeqn3IzKx79wxlfXqz8nWf5p9fdFspx8SZbp6jgz3pypFkjViZPy heb5dDSt6K6fa9SwPLlMy3dZfXy50AbNYmkuuUjK7x5d58n5+rnm67dOlC/x8Av3/ei09eYXX/Rk ZLPrjUmbzk1H1ULbbqtp+3Gh6bRc6OkwszRezKfXZQ28m6+EO7EQ8tRVDFH6xKpUPzDrW4jgJykN Wnnv/VrCwzNPWwN6/eov58XfnH+80wj9p2MiwXMtT3LjDLklSyZJkWhhOElnTtmOMisyfZ2WV874 IpmfpxMTJM5v5uMLzWvZv2tZaSTU+onmYJxcJWfZzISadz7RjhXdgCiv7SJT92JF4LeOgGmweJZq U6zGV4W12vcwWSbTYpSlxXSUEQPUbbCODLRGJbRGyNsNKfvS8XWRXigd36/S8ZJFROvr+3ajVQ+p vxpKx++8/2gLB7NIIBXEbSt7UDr+Qe38n96qdmqLM4GpCKN9baf+TJR4a15oVZJAZfHHFRDEp8xX Hmx17rd3t7Y7bm57Sex2qeCYReyYCgUNEgN1o/qS7iMjB2yiO8KPFAkk7AnuO+2b1X0l0vcUKVdq IHufye44z/zaLV9xvnGnJ7N0WaQTu/gudWOP8gjiu/2Ggk18lwUelyoEYT8QZe9WBMxS2UPSxVEE GDg+ZY+7GLGYAu2PS9lDLAiVVMZtDWTvM9lLZS9898s9NT0eBMhk8wEOBq/poYiQ0ANJPxRNr0xt aqrqCelGsedDMbAjVPUkRYHnKrDqj0vVw1FMKXUhnDMIVc9I/Xvqepr/FcHQTvYIdD3uhdhzPVjm B6Lr3U4Gt2sfTZHESHkAgiPU9TCOaOxD46/j0vU0xyuFYgpkH4Kud7FF8V6N7HW94eueqqrgIVck gqjk8FVVianHhQ8iayCq6p1dila6Ko0D5SMCzukj1FWFG4hQQb3dftBeP6/4OZ1P0mU6eZecp8Ey TT6Vd7WmxTKpbRdJ9m1JAED0RRgYLXb+dbP/PZVBFLvKcwk4sIenDJoz365MIgnjKipJ3SYADixP YIpmVMUJ6oOfr2dpfWt5KQDsiSxAO2WM/R5pWb0T7JHu2x7p0PdjFe+RGtVD6q+GPdI77z/aLZBS SSawaNschT3Sj6+I/Bh9fOyaNgQTTrw7Y6prcWyNqT5nWcnx+d+jt29/+ui8Of3+zVv974Pzyvnl nfI/ROq7Rx7zIb7kdja6S+SRmIT7wqHVQ3avBwTj9RLU6oIAW90fV87jKPQigo7ItLSSJQMS98Mt 27v2uKefTX1Gy139WAsogPugS1UPFfDNnMjCC0LsoyPKfjpGrA8X7c8CE0lbC3nTs+2U/Pg+rsS9 ZaF2iWgcuvyI8kBBvxkKA9jlOccsdtE+H58dvutP+oHv2xDePS+EK6WfDKm//WbttfQfKo/nN3mR XlZ5Qj0b47fJZ5X3xDzXY5IeD6OCRTYc9i2TvUp91KrWQOjSkMfh8WB9oHDeMMRtGqQxwWLKY8jv 67+xvcMonaRFOi6Ss1nqVKt5neVlXPG5XbK/VDxA3hGtgYPEh1UNkiCiSnhQdgjskiet2Gw2terZ GL9NPiu7JPIDghDI5L6v2aWKPlQ2HYb74LWNksR4LGMf6rT2niGbRTE550qLYSjKPQDb6cCi3CJQ KoxdWJKHbyZRKaIQh0BqMJOetP617vbbX+XrABuJxCgkhMM2VbCRwEbqmHhWNpKM3YhF0Lak9wzZ sMApllzhGGykQdhI4b1r2UuEGOcxuEiGbyBJLChXrfewBVI/LKkHbyCVNfqP10JCIZYhB6d171dm sJCePPGsLCTNSoHLQkjFOi4LicexNpIEBbL3nOyHtoCgMQ6wOKb97oMEglWqnSKejDFUgAcT6Ulr Xxd1pfBjNpOCOCI+hUASmElgJnVMPCsziSJfCITAb3FcZpL0gpgyCrumB2EmrRSL2lQaqlh+np2k Jy++jrbuE9bjen976NrY1pWMSuwfVhsCuPmxudkqXxILhZQLCjTYuk9aVq87IRzzzrLYD2MWQrYO GLtg7HZMPCtjV3hUIu4b1gOG7DNDNjR2owgFPrSI7j3ZW2qyFAkifAaVGYZnLZkz326yxJH0UOC2 HRo+sMnSWTpdLNOqzVL5UbfkObtFC1J/6yYtqnOPgp7mr2fA8OFCC4PTkXIuktwZ6xfTtB2Nk6vk LJuV9cNPzk+caw2hF855ujhfJlcXNy8cP3zrfLnIxhfOqZMXy+vz81nqFAtnmc6SovyruEidhf5v aR5+4jjPT+fO/2fve3fbRpJ9X4U3H3YTwPIhu5tsMosYIJvkxEAmY8SzEywW+4GWWjY3kuhLUfZ4 gQvMaxzgnJebJ7ndTUoiZSluWZJjUhUgifivye76VXV1VXXVbTKV9QNOxEP32Ww0EO+8EzffZDOp csk2E0PcwI3/O0uMSTZRKYSSyUOV2/Y+y7+9O9UQVyQKWBC6+15FtAutGsLklQF4L1+8Wfx9+Mt1 8TfjnxeCwP8yfhXwrKE8Gyr4NbDVqj6fpRPBKYZkE8HPfDqVxpJkJM4NZEhQfybODIQeoPjykvdn uey2/JZ0wPNEZWsTgyCvprwY9lI0mQ5rcqA3SIqkN84GfGQMsv5sLNo/Nb5ywfHj7E40rZ6cm2jk WA7zbKzOym+qDbVsyCgbuuL9RIiW8i6f/Wz8w//8k7w2G0nqTIzpLe+nwwfZs6TfF71SEirPRsYo nRaVeCilQ3tJt8mivdDZpjMhZ4V0lq8XA5/34lKknC+1OkFlMQaPLpwqnJdieEGc6U12P1VjXon7 OnXkkFZEKx9WgjctbtbdLEnUv+H9byX1J+Lh8QJKiRD3/W+8MESLQ7GIXnRjfuHPP/57akyzWS46 MJ9a0r7A7Cjry1ZazIySFwfNjhZJfi0GY8DvUtFfmf9OZybDXhBTKz5uvet4Z7IzIWD7N8nkupSR FQunfCqlQ6ljDTNpoRJ0WVcHa6HNaxSyrBYWy0KWHnbW1VXaWMjyqOoXPiq2+dwGFlU5n1NZq/Xl O4njVqOx9nTZhH5VTxJ7FsLeprBW1cj60mzqjYuBW4BdW1AuC/u2qcKZabqEBhur3q0dbo3p5T4d ZPes0tTmiCu/+TYY1AZHXdljAdwrXtxzPlk5L2Vh9VqwOB3gi+W088un8DuFGIHtmtZ12w2pb2Fg O2C73djuc/R1P/VPEYvM0JufhZnzyZkzskzLNvcdVAQsfHQsrCIl+qVxRccXZ/kmdlG8b488IO/Y kPdkoF1pcu1JbApQ9KTJVQugmOEYRy8oGgEhPwoht7ejVBlrJ71R8sDznpjTC55rFfyJBYUDsm8n HcgxQOkKSkvTu1aci41RTNwIMAmYPCwmZUSFXuRVyHxz77nMAJFHhsiRtOzzyYDnfHCRXPMg58k3 9dTTWL3Os9mtVhkKy3JCSgCsANYDi89FKNo6WMozYHReZU5ECPNosO/sXsCcMJPMZ5LSllWq270y 0kVn2kCeQ/xg76VfAZkwbaxMG/1sfDsreK61F9GSex5QvO8cWQBLgOUKLMfZVTrivdubbMK1oOlg QmlM952CBqAJ0FyB5l2W3vbuslFRwVMDnMSNkS0mdAAngPPQht2rES/0JnPsC0AxmMwBlDuBcrSD HW0iaJbl33rpZJgnctdcv5jlvFoo6eWC9H0URBQMbIDiA4vWNNOTq0iAiVK1UQAQCYg8pCbKb9L+ SE9OWrZvOt6OftzqCqByv6jcsGiw4whbHsRTghzZTY6UNmjpXpeBa4NUxiZp+S4xs6i39/SuAMBj A6BW6IfWLEZNm9g4BEgCJA8MSRXhoWd5jpDlBzbbCZOgWb2gZmWxgDKX7DuVG1Ds2KTI2aPoG5mt o1dl69BSsmzL9UkQgBUWsLgbFp+c0cq8Mgtwas1txHJd1/LAqwroPDA6B3xapJNq38wCokYz/1gJ Unnm6fyM0udKfSveM3QhP+MP/bzvB9stMjeKq+mdzAk0h1c+G0nRd31Sk4d8Oi3Rdl1mZhM/eklf IXCZ0evUMGTat2FJwHTawOOrHaRN/CbTI02TMTeuZoXcYVsmT6s6J9NdLkZnZaweppsHrxzsQTmI Uy6aHST5QzWUWtsjPYKZGUFKryck7Svj3r188WasPk5OuYLXWtpEwfZlUrCBTLQ6Tor+TZmir0rc N39E5qBbn3hR5oHk+Xgq8/RJUC8Ti53qaPGUMGaa+9biAcHtQPCZhOcVlykdSxhODVlaaiCDF6sE o4M8GRa9eiLRJpp7y1onFlkPOf3EdV75zcvEda7ryF3F2onr9qhyrySFWzm/yPW2VMXbn8JNjfbi Xv1cbRaNnNi2N0UOlI1Ur84/8vpwW0QhV+nE1R3rd/psQkIfMhiWC4v6OLRoLxN2qOntP8XEv/vz wexzKaBeyTzSVXvi93PGKe7WEyU0iIjl+5tM3N8TJd6CF/YqSdZOKSAgXkxAWMgOGYZirS0RBZtS oC8X4P3GOluvlhyyKIoIYKDdRtNtS1fhyKYUOQzI3nKyG8YbZeIcpnw0qGTBUOY+TwZlWJcsb6HE wdRIZb0BafZcNVpuwEjAQopRpUYARlqMkdL+xQeyWoU0jKm6QlfckNaIbGj89dMvP/31xPjr5T8u 1S8NcNiYUVtMHQCO9oPjr5fR5eX5L597JQx40dcreIdMl9kUyoO3HAM65cEJNpmP0W7W7McRbS0i 9QYx6IQsCL1954sBFnhZFqj7OPUiPEPHCojKkAR0by/dqxLcz/FQ267tUBuqvbYeAdstnE0ahsg1 9x2YAGR/WbI3KN0RIL+RLufFTCZrFIrZ7DqdXOtp88S37dCM9h3YCch+WRzoaPO2h5kT4t2yindQ m6cRdlzTBBboiDZfxijqJQ0JQj+K0L6d5UD6l54Fn63QO24UI9sEi+ZxKfTYcwI/8IDsbSf7OgVY TAAFV2H8+nowRb4VkRAW9t3XgwkNiRm4kqigB9cdO4wFVuxhYIFWs8DarTlayjB1qYn2vscT6P/S c+LzlWGLBq5PQAIclzJsB5SYkb/vcnNA9pcm+1pluJwFttOGzchBgc0gCKx72rA88/SmeeqGUWA5 +zaM7biPcZROeLmLsTr4MhvxetEhANiLAmytJNHfnbjcfAi7E9u0OxEFXhjGm2RD2Uj1atiduPb5 I958RNwoNHezvcDuxNc4G3yOvv7oAAtkIRtVe95rfXLW9Kk6dyMQPaoz4wMfjbL7lQ6fvf1H9OnT L1+Nj+c/ffwk/v5qfDD+fhH6v0bhux/c5x3oeLafLaaIeLYVs02m87KR9fMBsqzFFLTXCQE2mf5Y OU9j17bCGG/AxFpIwQLy1S0gF5aElgk5bcG+TPXVXjG+gXha+4DN0I9iD+w8bbf8bWnw9ZFjRmjf WnjbBULHMGEYb7oqtgPp4VoNejaqHc8nxnTWvzGS6SLZo0z3psEWphl7EcSCdQH5XQV+3adfwv20 vYrLmZ4vKgwxJjaEJbSbK3Uis6jvMkQQBOG1m9QalHZCG8Whx4DSraZ05+0Dcw2yvZPsDtYBhEMX O8ruCkzaXiatAgK7yqJdMOGd6SjC2PUD1wtiYMeWs+N2xjpEQ5OgvaeUbzvrdwwThvHmvOvKlLTT qUSES5FdK8JwqsELNHCRj9ARaSTHyQudZYFP2bWqApHzPle1ckT/v/FCaWgDIytLREge0TKN2aGH bRSC+67diNcyjdEwDEJrN99EBzctWqYf2F4ISnG7WeDZmxYt18c0tMBG0fZJX9koloqh1vSHTUTw jhu5gfYvRHvR3qZ6jftaKltuZFN779HlsDx4VZLiWJbKtZ2bz1stY5tRHMVHpBsdHzu0jAH0GLyr XK21+q/YXm+jNqbM9awYEtN2zwIgzzy9UdukQsBjvO/oqBYXnI3j5f6bJXleWcHZq60/7/sFzz+K k4YYe4GpaaUs/BdvHA1Kcs81CVmWNjH62XgsDtTaS6oci2X4bTKd1qp8D/LstnaYjHhe1I7HaZ5L AtykI67KrvezxxXFb/N0XCtTJs4kj14sSxiVry7fWL0oTwreG6XjVPyu3iULOMs3VTXZX37GeA4F i7PFYNQ6mfN/836x6GzZQR39zgps5MfhvuOVW8z7GzaAtm4y0QLThsmkUS79K68KUSvVomK9Bd8W meDK7JbnIxlELzUWdduXmLkYeZJF08KY3szrRpWqy1CImkm/ZFt55hx9voyNUFZQ/1lWUD81zifz Jk5qry1LYTeAL9jaUGwtkDMHvvqZTu6yb0IVSq8nyUidKWaTCR8Z4s3J7XQ2SmSLJ3P9SXzKfZIP 1I2rof6tIunZf8lBzRMh1bJ8rDqphlOOYl/Kymxo/PnH/yhJ8ecf/3si6ZNOxTiN01GSS3omCwFZ 0lpSSYj4tFAjqxoS7Q+Haf9UgiPn4+yuAY5a88Ywz8ZCLI3ka5ekHkhSjyWpp6qNZDTNZOG5lVYa 1JWtVZfER6o66LVW1so6/TwiV+XIQh6RluUR8Vwbhd5z9o1DHpE1GDym/eUkQjEjaN8FbCGPyEuu hvdX5Zx4hFG60fD/PVECVc47KSCQja3QjMAv3G7DWMMg8Sr1+l26p5WVGSPqExNKlLQbyFWAQ9NE 11v687Qq7yLGaED2rfQAFH4IFBrm2S2RYHk+sq0A9kR3AglN0/yWUBDzg2MGLtQibjsUtgt1cmyP OD6OgOwtJ3s9mkkaa6WiOzeVLiWBXqYML2BBAAVcWo+JhZNFRyl0KfGt8Ii2B3ZXEHyJmSHdZu+N OE/G/D7LvymZcC5tkUPxjHSefOaFunDJ+7NciAYddTGkyGYqbT5gpN0YMeLZpHKn9gQu1BripFpL KOdnfQKZataApsRjHmYAj1bDQ2sbGQk8FhMgdbtJrSPzqY1cKwJjUbsp3QjB0zIY25hENLYhiVrb J/vdDcamTakVBZDQtBNQ2MVgTOzIIrYFWyU7gYSdDMZOhIjjuLBjvu1QGPAWe8TPtrB1i2ksdlwf TFxtR+yqrVvptM+0deMwtqkLG9/ajomtbN0+ipDDgOgdEASHsnUT6mHLdiFeqv0YedrWXZtANG3d 1PTDKGagS7QbHjq2bjsIbYex3UIkqivtJPWGWdQOghhFYCBsNws0d2PrlXtzHMuxffADt31u3N00 bFsuocSGsMFOQIG3uEDF2fNBLKRZ7DsWAxB3AcQ7WbUtLD7MhzygrYfCdmHQxBYEix2Icmj/ar9p Gi6V2mfahq3Iox4FNbftoNjGNkxJRBxGYVXbAUlwKNsw9ZFlIQsWPe3HyNO24foMsiHF0OpqIoip GYBpuAPoGOTJsOilvBj2UiRzBMq/yzxYPZl9qqeyT/VM8r5MbKWjWbg2iUNFeYBIyyEiU5n9vMyM 9g//80+1LHZCqvijJB8bb9NTflolZ3x3+uZvWsHXOKYBJSY4qtuNE60dFZEVB1a0G6m76GUyY89F FqQoaDcLrOb41arJE5tmbFHYm972WXIPOxAQDgnxwSzbCSjssgPBxDRGdGO2T0BCq5Cwk6+GmFbo shig0HYobOmrcQPC/Ag0wlaQXbS3fbm2VS9OMxf5lm4c2w89Qj3AS9vFxDZuHJt5LAhcWDu0negH dOOYYk2BMKQ26ABGnnbjNKYQ3SB/RpFt++DnazdAnl8VzbLFYtPfe2XgHSsjjdIJL+siVQdfZiNe PapuBYAdBGCjrVXZtTJGvyBNv/wmKEjTroI01Iqph+mmBUfZSPVqKEiz9vnjLUjjuzGKaLwBO2uh pzHjQEGaH6+IfI6+/uiKxBvqGjpr+lSd06xI/PYf0adPv3w1Pp7/9PGT+Pur8cH4+0Xo/xqF735w n3eg49l+qgpRGsWhjzbxdNnI+vkAWdZiCtrrhAB1hX6wnLciyw8glW7Ll5aNukJ6dXg8in0zAsK3 3ei0JqhBx6aEcRRTau5bwQP6/xD6NyIZtMIXSEBti0IqzU6Qvxm+oEV/GjBsUfA5tJ3+28Us2B5D vo0gVKXtZN9jmR0rIDbzbMgw1nZMbBWXEBMvCiGBchcEwTPiEhoIadVInGmFVGBkeQ61QL1tP7wP USHIwh4OQw/2s7UbHjr72ZDvewQ5sMW13aTWkfm+Y1u+D5RuN6WfUyEoYBYKIMa27ZP9M03ZQs+j EYkhPLIT9N/alI1kydgwBvbvBPm3N2UL6U9ZEDCgf8vpv50pm/phzDzYWdN6su+xig51CMEeA/dG 2zGxjSkbI8f1cAzGnA4IgoNlSrRMi3kYBEP7MXKIKjoO80xiQRWdlsNDK7+ZjT0Sx7vtwq+utJPU m2bRIEKec0QscK+zqaBT/NFgj9ffIy0CyR4tTMZ5UvDeKB2nevWDiPii2I+PyGNwfJjvLuqfaS23 XIpd3z6iFHYA+o6BfnsXAXYj345BuQHMtxXzz/CLIBd5LDyiEH8AfXdAv+W+Bspck/gg4DuN9e6i vekBk8tYQy1jZaKlR64wPZsmih2XEPeITN4g/rvDENs4AElkuSHyj8gBCMK/S1g/mNcTebbDjqoC 2HEyRmc540lX7zpNSdPna5qIRcEx7QE6PuboKl/oOLptx6Y4DHYz/3TQ0e0EEWWOHx8P33eStZ9T yAvbQYQcE0KG267yPNP1afvMCawYcp51gv5bewEt7Nso9jGQvwvk394hRjCyiB0C/dtO/+18Q07k mjT2GZC95WTXrcalt/63kR9FngPSoO2w2MZVYAWYiWUxbBXvgCw42F4hEvnYtGGV2H6M1PcKNSjf hR7urbyYLRBPbQsA327A/791SZLkmafrixHqIezufS/9jvXFrrgQ57ysMKYuHZY+VyvEQNVb68Qo z/0Q+Gz/eRIMAh/ZaCaFQW9aSG/Z9UOturWRTo3ihpcLajl3Lqyqw3F+sjwaNY5uV49483CiJFFx Ixqv2p+K+dlIpsZ5LzQm02FvqEj89v80a7Ksl04k9kzX8fbtxG4XNjVkxyuD616+WILjw1+ui78Z /7wQpPyX8ZUb/Ztkcs0VrJb7vp5A+URogmvuMe7T4kbWglMYnQ2H6e/Gn3/8T+3RP//4X+P+Ju3f NJB8JZRKziflN/Bi2EuRRHXtjSUDNK4ucd9L5xrqqY466rieae8Yx/fYj3fE+J+Ps34BxEHZ9LIA ooeddfV4NhZAPKq6d4+KND63gUU1x+dUZGp92UeFscW9+mUfsYv8yKGblDnVyPraXRtQrS0qlpVf 21QCy7R8G3lYitJ9Khj36SC7F1KsyBVBS2iV33wbDGqDo67ssULqfHZqnpdCr3otFGF8yeXa2S+f wv3U70OxhYhvbYpcAcZedfyYoYeZu293/+tlbGDhw7DwkzFIT6w/tOrxuTEKY7bvsDQAK4B1jdtc J5+647qmH9B9G14AkYDImhcvUKF8jd2PC2FqLAw1W+YBRQGOmUf3neMEoAvQnftaVnfdrAci8ZBJ XBsDEAGIBwGiBgap42IHoX079wCDgMGVZdBwrLcPA3m27/iYASIBkQfSLJVH+/vLcq1Nosz3CaP7 jhcEpAJSn7kqp4xg3/dhaQOIPBQiV+PsY+nrNH5Oiv6NdP5/mY248Tb++cu7UsA2QNuqIThTc4MG 0xE/dqhr7TuVHjAdMF0tWPm51i6HCWXaRPvOZAHoBHRW1i4dEWkyJzIDvBMIH4epAQj3AML1FEOu T82YwNoGxMZhxEY9fFzPLsRMy4kQ+MABkYdB5N7sQiSMGPN8sKkDUg+F1C3tQpZpWjFyAJGAyEMh ctUu9Cl5bBb6tDAL6dpWZFIuM2QQpQnAPRxwn21bsSlCBLtyywmgE9D5Y2wrtuvafhTC3A4gPAwI dfTLwEN2gMAFAhg8DAbrGQS0rEW2G8SR7SFAJCDydVuLbBI6MSMgOwGph0LqltYi2/E8h1nVBlNA JCDy4NaiizzN8rRI/8MHq0aji62NRrYTEoq949mzD/h9efw+f/tZ7GAcOIBOQOdh0KljNDJZ5PsO hvAOAOFhQKgjCM3YYSzcdw1SwCBg8LHRiOvVAKIWI9hkAEmA5Cu3GiFCIjJPAgVIBaT+aKsRphFz fR/WNYDIQyFyjdWoAcxWdfNsg8FLph02Ipmof6qMX5FOHmzT9UzT9iESBZjvcMxXU1uebf2yXGwz iwJQAag7AVW0V3zhkwHP+eAiueZBzpNv6qmd7GKORYIwsn2AJ8DzR9nFsONFpglzOWDwQBhslmPR sYs5jgqnAncBQPIwkNybXQxh3w082OkESD0YUrfde+eHkRMCIgGRB0OkfjSVMi59zur2pc869iUH WW4YhWDcBRAfDsT7sC85MfKCIIANowDUwwB1nRVJnnm6jqoTBMhGzm62pcdJkDpXq08fUHMRoF+r j5dNQ60+qNVXHb3iWn1WaMaRF27KeKQagZJeNcMptkw3VKL0OOZ+qNX3og77z9HX/dTqs10HxTjY tOUPGHs1usFxA+ZZ7GgYG1j4ZZX6uUekwd2vv2fiHQJfozrGHvholN3rdXuNtb1lA/B0H7WivgM/ in0HcgWAeDmMeNnaZ0AQc20XtsYAIg+GyENVV7QCk2BCwAAL0D0MdLW2twa2TQIHqtMCCA8DQg0M OggLFAZQiwkweBgMbl1Z0fJsHAcmBDcDIg+DyCqKrwHF198xXSvKWafsJWdalQzsEFEUQdwvSIxD SYxtdxnbbuSaESwvAZGHQuSWFS61Sxk4MYpcG+KAAbmHQ+7zzXYx8zCGfMmAzgOhU8tsRxizIrxb AM/jCEkA4R5AuJ5iyPbjCMeQvBrExmHExtZlIh3KPBp7sGQFRB4GkUdj5OpqD4/FeIddbCJGofI7 SMJDScItjXcoQBT5UM0REHkwRB6mDKnlejFzQkjJA8A9HHCfbbsjxAviMADbHaDzMOjUsd2h2DEp oyAiAYSHAaEOBrGHGUYQ4AQYPAwGty5DSp0ARTYGpy8g8jCIhJC79tBQL+TOtSyHYAwSAyTG67Da 2REOmRvBZhpA5KEQedBysAKTyETWpjQ6gF/A7w803lGGXNOkEK8A6DwMOrWMd7bvkBD2eQAIDwRC HUHomk7smLBfFjB4GAw+oxxsZHmIxgwgCZAE613tHFjvNkgMx7Fi5hCIhweJcSiJsaX1zmGmE2IC qcQAkYdC5JblR7atbWuzCDvEB68+IPhwCN5L6jvf8wIagaEZgHoYoOqY8iwHIzOyIMYeQHgYEOpg 0LMRsREDDAIGD27K06tgK5PS2jYDSAIkDwNJMOW1h4aapjzGLNcEiQES41ASY9vcdxHDFEx5gMjD IfIFKgkHyLNpCFkJAMSHA/E+rHmIWcyxMeyqBaAeBqg7VBIW3xJZAlf7hWa7KglfrdACVW+t06I8 90PQs/3nbYTKrzfp1DjvhcZsyqdGMrhLJn0+6E2mw95SphnJ1ChueLkKlVN3Imbx3l2az6a1u07K 04NB1jyb3jaP77L0tneXjQpeO32qPqIvujkb87w3LAl/I1485f2ZUBMeevxOKA89Wd9Rfk+y/Br5 xhNjevtwn+T85Acsk59FjzMhpf+dTE6MPBFtjeW3G/c3qVB/5EhIAlSDoCgjRqaQ3V+MhjwhxXxz KIZpzu+T0aikhaKQIoD4ZyD+meWjnmCzguei4TolToxxkjauiZ+8dzXK+t/U4e23QlKrmMkRTm5v R2k/USv2xXdMBhIjk8XXj7NJWmSyMUVGeSopiqT/bU7CltBpg4itDbqYKie8aPZOjEbJH/JQUqN+ bKSKnyZNpprj4T7Lx5Ie/Tw7NT5yNeBzYlZPLh9aWCsHvOD9Qr1ocS6R1pbeKJ0WEln9G/XEWL0+ EYga347EQyPxbDocivdMCsFshZENJdr6/LaYnmroMjgOwwgFch443glDYz5/ZXPIXr74vix4zicD AZ/BRXLNg5wn39RTxdmHv1wXfzP+eSGI/K+XZ/ZGB+N4WTZ+P/z/gzv0fIpt6NBXbvRvksk1V/Kl vb07SyeC88dqcjLG2YCPSuEqOlVTaKYzIQ2Lm6RQF+pqjxCkw3QiZtziPjMm/F48JVZ4Yh4Tp2RD mydiIXmrKWCcFul1Y3o8NZSiNcj6Qr0RcjabSLFbvel7c/v5xeWJ8fcvn+pTc21qly/9LTu/+K/f sk+/RnLSLlpMOp6fVCpQWixGpzmmWd7QfOYKZzW+/WRiXHFDzEFSJA1KQ1ImSJwbn8USNcu/GZfV IBvxbNKXJBJzajkRD2dSuzk1/NGoemaQFEmFoTnlxDuFnjZ9mPRvcqHgSNtVkQlgyJlWtJLK1qZF PlNNnxpxBb26NibfJrGwaPxEdnd6k923mHSlWrLUU2q8JrlmDu2KmpK4fDLlC3KXFKipjPXRkZcW Oo3QTuSxUqPE7/JtcvCkTjM/u/q6PFH0FAw/mb9aS7WJSIypue+Ia1BtWgLqXyXwHk0n/PfbUZJK uVFIGVTy/vT9WjxVJhbxX9Xm1eiyeJAm7vKdyXDxp/wgccNXcfH+wxsPOzLQ6r3E9Ic3g9+TxQ1B lgt9a6qOlua8qUDHiMsnpv/58EbmSptP8qqZCmBSDZorQnW73/ZPNw2E2z/fsCRu/7gggJAJH3dt 4LfnNiCp3STF1ehT8pDNZJ9Kmg3T3/lgQbVPWfZt/jLTMVWrQ1n+50t2X71EKdOLI3WRZaPZeFK7 3jgxyT4GQgX48Eb67cTRb/OjxQcuYPdTng7kz2vxP1Pm4TnGFvfObykk8zyWbPX9lF6EWehuCgRU jfTLf6sP6H8f1doiUR2VQ9r/OSnbVjwg2rbKQV1pukL5xusLHG+8Y47UDTfIwSu/Rf0qO7yy/1SI cYSC3YqPbGXv/3d/MZ5i4uT5K5kpOmqGP/vlU7huAlCAKP8rb3ySs1Do265NN3mGgLNWVTRMYjf0 XzBuAXjoQDx0Pl8YVUutE7UE/5ZOBtPKJjlIlRq2WFvINblcjs2m5TKsLz5qmg7rBs3GvaKVz5fx tFz9C9Xtmk/Ekrrf9HbMF/rVxfIJtbhf6xyZ3z6/qu7XWVyYYewhjF4wJwEg90DIVVUcy3XqRkiV 5ozSDpWNxw2AtKu3qxy4ylXnF3ektv4/kSecxolf2UXj+O9h8/iS/do8EbKVJ87Zz80TkkHlycab dNgQecwxA/SCe1qADQ8DzPV27UsuJ46SOTdL8Io7F0L8uwBvWyB2nXmXnvsV9hGnwzC7bHKZgO9s Kqfci1x53+XPy4dpwcfG2/OLy3eNuz/+usK1K8bp7/NlU1WW/62LTiFWHGJzo3qsx63VlRq3ds4i p8/ic6m4haWq6iSYqsBUVR29YlOVE3tWYMebdvirRmBBXdeHsEt8D28Yr7XDDaaqlnyxnHU/R1/3 Y6qyPCcgwcb6A8BZq7oLjmPkW/sOlGrnSuNeZ3NgexhsTXfub9KCrzDf+iXKyxu+WraA0QKL7NFG 68t37XftHw19rJ0aNWPV0cGgWuYrXlDRX9ktlzt4DMFcYqS+8cK44YlQk5VJd5Q88K4OUW4g4216 yk9PjEjGxkx4TWQ8vDtRnc8NPL/paaOesr4171lvlHtXXihfQOYv2NomKNtYsQs29wh2npPrpq2u 4vR7Jruu9nmzjBryRMYoTmvz/DAXeuv3PA8nBj+9Pi1Rcps8jLJEQKafZ9OpMZRBi9Mikfs/ans6 StYUT+TJcJj21R3ptEj7oq1JFUZ5xW+SuzQTd/GivxrdugihXY2tTSdCWZHKTS2odq6TCCxXUbBd petWAcONQZCKsGxjZakexZHzoimkJ7NxeU86ultz7XyxfnOqvi8egKXIq4OjJHG556cKlp0DU24P mkgBVMofLtqYCX4t+bkSIXJJkVQ608nS9feUw6CMZY+Xsez+xlj28iYdPqBmRCPKXjCJJ/BBh/jA L2PElzJ4EyOM067OTKrnapk8j5ifc/TSMfhW/rvchvFOhzPNICCIRmDy6jgLyUD5hqL3nY040my6 sEit3Rd1m2d36UDGVaV3j9qtK7bzpWnTa92YYRpXFpNN42xjzukqh8vheLR8luOx6vVvsnUrR0B/ DW18zgoZkyWEu0RBpYJIJEjr6pjn1wK7atGSGKXXtTZSy51cc/Re8X4ym/LVtuQpqTpd8qnSjc4n Ar/lTHORZ0Um+m+8vTy/eGf880vMMHKsf5UhheJlo5Hckz27PRVPyxbUvjIDn1rlXu4sb+5QSa6y 2evcAXgoCpYBdXMLebWRLGK+cZuJ9exDuWdn3Vwlz2gEnBCMbBvjPc9gLQ44ee5W6tc27T39xRIy zW3Rk2Rczl21LYnShlHBLuXFsJeileQptV2kQpBclS1NRUvlrFjcZFO1afHJNpc5QXqpdJSL37ze +h43o6mwDHUHhPhAiM/iInuVIT5WhIR8dTfVRigbqV6df+R1SltEyQU1CVR3QMhCrTyKFwfUfMn1 GwQDvWgw0C+fQuPt2mnr3X6ChEwWY5MyiT4IEtLhuMDyvMiSEh8sJq3mrSfrC2xKtqdVcsAMUUij fS9LACavBibbZ/DGgRm67AXLQwIkXhoShvEmkJn/FjKkufN0U4oj4+3ny1gngTZC1HNiBGKl0xiq W3uNRuIsFU/6aDfz3BmkAyDqe45rvWBiawDQDwCQchz8Vrrtl06E0pGqHDKPvPlzmaSDIc/0SUTA adhtDF2Ko7TPT7US5puB43keJYCJ7mIi5yqksd+M/1uPByfEZoBjSPvSaRnx5kvMDBcj770R58mY K+1WqifnC/dHkT1We3XkiUkJMmNYLHV7jlnmeO0Zfk2lrWnAetMPQpbvOps8DACXtsBlJH1a69OV byylIoGkMyWZhNpWwAAjXRUpGiBAgUU9rMgNIOgkCJbm+3U1cLSM9wS5luV6mzbOA0haD5KqYO8G D49WhdjQ83EYbvKbAkY6gJGag0cDEbZFEA7IC+5yAUS8NCJWS6QmDVy0qpNn9eXW0l68ZXZGSiLP MaMXrOgKoH950G/wQU3K/SMqZv42S+VmZ3F6iSUN/GAXu2bAYOHebfyojWoNp6WeW8H2kBe5LizX ug2PbTwLmDLf2f+GD4DEq4LE4TwLju95KHRATe+2SNnoWVir6mpNRpZFTRxhWPJ3FjnrqrI/QoFv Rg5yd4t+qa50DgUbpmwSORQjELmdZZym0X2lwrxewDwNWcRCwEiHp+Vdbe7EotQMKAQedhgj29nc zSiOXQLKfMcXg02b+yNtvhbcvK35OnCpi6wQ8NNl/Gxhvm5gplUDcFZZ3iUzaCDfcj3qUgbI7zby K6n4XPu76RLLtQi49zqMkm2M7zYxPeZaoG91WmoczvhuOSRyQg9qqnZ71vm+8X29uq7pD2aRj2zY ZtZZ/OiY4B2KHeKZsLmssyjQAAFyvcDzTIgc6iwIFk6F9HZrdwIlJPAhGLfTisau7gTLjinCASxu u4qRBga6Afrt3CPERogGLkSsdFgKftc90ki9n/LpacMWroEg24lc3/fBTNxpBD0Z0y9x9FwbMhYQ chmClFMdhtA2NmQL2STEPqjm3Z6UDmZDtgPiho4JGXi7PSVttCHLuagBk1b1+WzboHPxrtC0IRdB Z9Eu89doAAEhy3I8m+0EhOOKO7csEzPbB29RZ3lnYSK+y9Lb3l02Kvi2lmLbZZZYoECmuc6CZHdL MUImYg4BX1OHMbJlspeYRq4NeQs6vojdbFldkzp7njFZAz4WjkzbpLspcwCf176G1cjj/8jeqoOe mDLHg+mo4+iR+PiOmHl+UDeKTGY5GODTXfhsY5A3sUN97MEKqNPiRBnkZe3q98bl+cX77xW71nPr eXEQYjCudBc160Jx5Zmni3I7iLLY3XGGeWyrbHFR7n0ZOLcoEY3KtqFENJSIro5ecYloFEfMtgMo QzsfvCfK0DqxbbEAsQ3jtXa4d5t9ofDzi7qJP0dfNxV+NvZT+dkmgWXSjQ5FYLlHO+Z9E5msGkVQ eLun8K6t/KznRESWYwZQMaLLS+htyz0j5nq2EpQAiY5C4tDlnm1iUeIFsF2+0xiqu4n0YgIZxa7n g/+ns7DQSkRLhfIeMNgF31kU6IAgtBwHmbCZojx3I1Z5o7oZ8IGPRtn9cSDk9fdIi0CyRwuFqi86 IX72ppUO1ZMnJCi1kgBEQRAiDwNzHCVzdJc9HsWzaoV9OK5vYwf2TQE3dIsbtkwZjf2I2jGsqY+V DTrLCOu7vMZC1S+VKmOuVB3XgMjeCyY9NSS3bh6G9dLDdqI4FEolSI+jlR5HyS1GqoKN5c6H4iYp DC7amSUFF2cN8cg3Xvz5x39Pxc+HUZYMjOmsfyPjkzU4ivihGfoOcBRw1HFw1LnA5EyF3l7k/E5O y+Ln5cO04GPj7fnF5bsT4+9fPvXidFTwPJ1cn6isuXeyYt2JFkN5tsMYgZRNwFBdY6izZDKob4kp eUTPaYasyKXIB3/8cbJFVzlCK1926CLsxBCddBzoXg8CTF3i+w6AAORfC3qkLf+WMZuqoERvnBbp tdrOtp2rkLqBJbAN3HGU3HEMrsKu9nALFyiKTBM5FNYAwOXd4oEtkxc5LKYogsnuWNkAXKCltmgs tUXlFFVuwaoyWe2SBks5sVAgXQg1O2KW6uzkUnHGqguwYhDpApzM+Wnu90u2qERs2iRkEWyU6jbr iPaKL3wy4DkfXCTXPMh58k09dZxMJV4h+WNur8g0vRgWiYXixsCKd5zzTFe5QceLQRyKiedJkD8f +o+TCnXDi7FhyOIwMFkEsTWdFQiLRU1XJUN6O21Z156mmo5DAsl0I74H6fU6y7pVWvquMm4/W79z r73cfKajoBPKiOtAct0u8+2W1nbPIU7IABHa4qNjcOnusm2NYV1WZ3v7nRDnd7VsJxrMQ1mIgxB2 6x0x83SWe5QV/bZkkKkxTkZpP81mUyPpy3B/wU/3aXGTTozEmJSZpLQshA5CgUNsmG46yxSaBQOx HZAgiHezlwEQXjEQdOZPywsCiiFpaWdB0HkL4Cwf9YbzzXAt6+TT9NMKTg5D08MeZHrrLBODLbBl hNSzBdqBb6EAnPUd5tstkw9FThiZHuzN1hYfHYMLRN4Kdc5YqHM1Y2AZVDhKx2khTSB9Pp0aV1o5 eZBLIs+mIGaPl6k6rDmNBcwlpxQ33LjnV0aRJ8Nh2v/rVGYJUSZCdUkcTBV/yXvWL5fWc4/jMY+F EUxJwD2d4x5lPB8kRSJXV1rWcyo4QWhowA2dBbxOqCnyHOb5sJunuyjQAAFxxFsDVSsMQNBJEHTe dK62YanMcS3r4dPE07GbYxYhz3IYcHBXOfg47OZd7d6x+QNsP7b8CGL6uyyPtvQHEIZt28WACF25 0TG4HFVssFRHlTbaMPtnxm2eFbxfKDtmFeqoI01JQFAQeMA7R8s73c3a9iAmEskT0vIvkx7nfJzd yQPFP3xqiI8YJ6P7RIyIZuaAKI5IGMBe4M5yhFbRUBZT6tq7GbWOaxO9zVhs2zHoaJ1lnM7bAe+y 9LZ3l40KfuSRtJaHLGz6UAOxs7wMkbQtI6SW5Qx5NnFC4Nsu8+12ljPkxLHre4AIbfHRMbgcl+Ws qvWssm/WCiBdzktXXoqBSftcg3EwocQnjg+Mc7SM013tqGFWLpc6yqpcY5lbVa1SGdCGoglN6xn1 QoJDEwPXdJcxcj7kOZ9oSVE7wrbn2bDnoNOC8s2XmBkYOdZ74/L8QvzDpyqrzfkkLdIyN/xFnhWZ +BYtKUI84nlxDLvxO4sarehi1/Vdy9wtMcdx2eAd4hLfQ7Da6yzjHEcs7mCQHWcorm3aPrFdCNbo LAMfieG9q/07MocCRsh3PQuSo3VYHm3pUCChF9suA0Toio2OweV4HQr+vFrXvPZdVhYnMn6eFyfS 0fBcP2TMBYvY8fLPEfgVdGNt3dC2aQC80FW4a9n5YkuQlu0Wcd1tO58cxH75X3muuBqtGUiHEkTD fQ/k9GYw/8b+iCe56rXs44c3yazI5OEwHYmrsfpT9UxgQcbh37+/4mIi5VJxfPnRj2NT/FkdfbQ4 sxz98tz60V8Mt/ivwvvV6LJ4GPH508lw8QeXbYs7voqr9x/eeFjV7HxfPNyKURj8nixuCLJ8wPOp Ospu521NxbCNuHxi+p8Pb6Qpd85Yqplq5GW/5j0b8eFCMG//9FVWFNn4+c/n9Xlh+8dTQdMB/7hr A789t4GSmeqkuBp9Sh6ymexTSbNh+jsfLKj2Kcu+zV9mOirvhcB/Pi2+ZPfVSwQYa0fqIstGs/Gk dr1xYpJ9DJKJnBHLo9/mR4sPXODupzwdyJ/X4n+mJNscY4t757cUkg8es3x9Aiaux3CEy7OPJEbZ SPXq/COvU9oiSqopkVTd0S//nR99H//aUkUdlYPf/zkp21bcItq2yuFfabrih43XF4jfeMcc0xtu UOJYfYv6VXZ4Rc23kGuH6AW3Ef27vxhPsYDheeumulYpPGe/fAqNtykvhr0UTabDnvw7VHNeL5XD L37zd+/XqD/NuVyLSxly4mhjqQrgvUe7xRFzPQqhe63nsie9oP3K3bBqltfLexP4yI98wElncbKt cdsJLOxia5OkBUR0ABGGscbOW8kRYy5H1IlcM1zNcTzXiV2oO9Fh1GwT9Gqase9GsOem41JEBr26 GHnvjThPxlymYylLO87Vf6PINNCCKA4ta0erHaDllaPF+Fwm7FluRYpnk75US6ZGz4hH2X1PzkoD nemGRZbDHKj12XHAXMYGW27UYTeC/H2Zk+A/KqJeAyhWbLo2ojEApdNA+f/sne1u28iWrm+FyI+Z bsDKKdYnmY34gCySnQDpTBD37sbGYH7QEhVzhxa9ScpuN3CAuZBzbm6u5FSRlCzZVlK0VI5NLwOJ PkhRIvmsVatWvbVqVqXzZrKRiroZhp3oou6T83KWFROX3ZeNusNMxFwvpiBPGDcz7/HHLRie1Zkd b3vGfwQff3EiBbrzqwbdqMvGpIzcIIQSo6PF3ER5QInHmS/2m2f2smYYuRTjSBDIdYzWcG7yYnmV XaWFWS7dFQHHLIC4YbRc9BNXpl2m9M6Ii1mri5D6ZdAhGTEkwwZcXJehkAMR4+5uvHq/Odayblfa lSzPy0XelNX2dM/7YeFIsMRlsOjYqGFx8sW0PF8VdC6XzZdSv+gLnq/WdTTABYvQ5zTcL7oHXJ46 LpqSi6xq18NV33ZalNOvdbua4bqGkQ5cTDLrKFa9QVeAgxk3MaVe7rLOGqec3wz4V8vCuES8x4kg CYzYjRYTk+QRCTiJcLRfqYaXlTzC2Jc+grUVxms46+TRzRo2JtkjrvqA0vdAifncwVDHaz5ni1lW ZbNP6ZcsrLL0a/spm3klJILQD2LAZ7R+ZWheiUUcBxxD32/ERNzOK900OW1iSe18qbbWRwa4YOnJ GIEDGXnHr56mi/qoXzKsbjMHs6xQr+rVemEGrBDiR4S6EMSOmZUtDkZxUvOqPHdSFWadXyz17FCj 6l8oJiwBafLLTnS4UZRIIfYb2n9hiQ6Z0EQSAoYzVsNZJzryC7MUB41EmHgBjHSPFokDJDKwhxD2 GMwcGzEkA8tt+q4nPCGBiPEScTuR8f7TifPTe3Vvlu0qGp+6RIZ+enJdN9n5zybcBBGOEx8SYKPm ZivRpRc6z6d5uayddKpTYQqnq7w5y/Vwdy+fMVzEicRIMijLOFp2TLp9THIZe+5+FLysbh/zXZcK F2L80RrO69evDUwH8RizBEFFU3PTIYwTnyFY+GS0pnMjDWmLp0/Ou6LpKqwdVLSLesxnVEIXebSg DF/i2uWcQ2Zt5F3kexZn6FZhuHEkg6p2UcqjJIx1hUnAZqTYDKnaRQNOfTeBCGTcbmSLBPXDri+y qsgXX53qTa7ud/V+5rrt/XtGJ3y8KkV2G/P12T23E9qzphpKKJJJDMKFUdvyAWuqqV9IwsiFdPnI gdm7phoW2JeIQWdj1KAYBAm4vX3P/3zvqR536+yf0Tke31/4bjxhkUnsIySTEkFps3E3Ze/xrcbs IWXwaEAQi4mmAlgZJStGM5mlHxIe7JcJe2ECX98LRcKhDN5oDWedaa6vF5N5UZYzs5nMIsA8pJBV HnHr28p8d45imhXCS3weEQmUjJeSgSsPiRh5bgjD2iMm4rbOV7UsTtuyGPCBgyhiLodIfdR8dILe qyz9mi30NPbMOfnHx46RvsEx6tYh4XkBjqEY72hhMZq3mUSJurn7JYJemIDXRW7gxeBlR2s4627d cnYxoFtHReh73CcAxnib3/27dYRw6YeQFYJu3bpb5/luGBCIxEZMxO1unWpZjLt1xA+wlBEEHKPm 42637u/Rp+HdOsJ8n3gBKFRHC4vRvEzsJkK6+7mMl9Wtc2XsCQSDMuM1nPvnZep3pt1D915zWtxD R5wIEe059fCuQdVns9VpTIssrdoLoy/D21fpsin1y3leqK1J+9efvDo1vdrF1ZvTTMUS6iwxfb5W 2F9u9dDfvtPipLkustWn0/n6r/82tccfauvV21c+4dpe3zTXF+oqzP5M1zuEZTXLqrp9VV6sjlWr y1Zk+hP1X29f6XGUFSftYforj9q/7lBFNm8e/unTsmnK84d/vsq/nO3x9bm6p7Ps3b4H+P2hB+iM afNWnBYf0utyqc+pu2fz/M9str5rH8ry6+rLEEftUed5VTefy6v+SxSMG6/ajbIslueLje1bbyzK d2G60Cbcvfp99Wr9A9fc/VLlM/30i3qUrbteMbbed7VLo+3grslvNsGUxyJIdjXB7UGm3f/9D5h+ m2pjX9G+6i7p9Ne0O3ZrA+rYbndRbx26p3zn9jXHO/dYkbpjh9bJtr+lfdad8C0PKzzqs+ARC4r8 c7q+npmeOvLsXOizapWPP8Z/OD9taIj1v3nbkk3y1cydn+8Tr2630Ca2R2VCIhLuiuXA9m4PHEcC EY+Sx7M9sLLHjX1vCivMLtPFNJtp8zMb1WA4JBxWSIN89dpbsCgOwgi8xYiJuL+WQu87ds+pdH76 eJKYlB7kgcA+SkDKNmqGnOl66slrx/ntLK/VOwvnNHOWtcJom6mTpHbq5fTMSU1WWKAeQcKHZcJG DlCgvM8kisoTJ2jHQI504dMj5++fP0ySvNCzchdfjtq92sU5DMBBPPQ9jwE44wZHr9vye/n+0//6 vfzwW+x0sBgu3cmDhCVcAiHjJWRI0R+OYikiAT2gUXuMV7PqOU9qvz0//95J7sJkbrhqH1mSSFjn bNwN5EHmhgvq4Zi70FSOlhWzKuASh57PgIKxUmAAAWEEIewSgGCsEKxzgdPy/tWLjMYTUCQlIwLU zqPlZDVLYmOkySiWwEEYYQrdrBGDMWygidIglnEMRIyYiHsHmvoGxlk1MINqdiOXUsITCdS0753l X86KTR3hdVYU5dWIkdpi5Omfk9Et0mc0JGdJUBIj2uIORvASjWC8ZqATtdvZzrGe6T5ZXDdMYpcJ mM7ych3AaD3AYVLXkee7MUnAQMZqA0b1bxALGEVAwWgpMHEFlAlBW+E/QDBKCNbZhfyiNspSs0Av qY5hEPy5I6GO13zOFjPVc559Sr9kYZWlX9tPfS9/Pe2SUHdGOYyCCyF5xAIJ+IzVowyeNIERQgmD XPaIibhd5Of9pxPnp/fq3ixrPTfiU5Vd6q3q6cl13WTnPxsFJ4L5mEso6DJqcLrqPxcdIbVznhb5 NC+XtZNOtbRdAXWVN2f5wkmdRTf5xqwaECZuIhikgUcLj0knl7px4FEXpjyM2IUYYMBk5IvAf8QK C4DB42JwU7i2Kibz1fwoow6vG1PXoxEkwkbsI/bu1jLsE1cKWDZuxJAM69YKFArOYqhmPGIi7tSu rQrnpnFpOy5Ffp43urMyzeraOdWCrXOFSLfdRK9CuZQsEpBvHTVHzlV26jRVOp/n03+v9Szutlvb Vbv9/KF25luoPKvzPtZHUad3Yxm6t26APvZxEIcYEjzjRl8reHQAZpS34bEnGfNhRHK0TBiJE7ww FMyF4Gq0FJi4gsDjUSigeRgtBDe1+XSxm7aOjZlGAftxECCImUdLxgFSNjiMY5xEkPQdMSQDlxsK g9hPBAEixkvE7ZSNblm6hqUpnYuqbLJp0/a6+8FknbKZZfpd3XFNF0arzTIsEo4hGTxqjpwqOy8v NRUtP1ntqK88T4urVO1oVk8N+W7gUQLDz6MFxahIjE9jN4HFy190Z1a1GUQiARCMFoJ1Z/ayzC8m l+UWFM/qDI+LJutFFEbdcS780HOhfgl0x78BCSNhyASoeaE7viZCNYleAhO1X1J3fKMw9brEjd49 n2adnqJrdlRfa9l2000wQhT7HgHHMmqMHPX216xpO+HzorxST+YbkwVU/1xB00oqUuWGFtdOkdeN 2scAIMwiHvgu+KFxA3QblnZKySBtAhEYeTgGpfBoQTFJ5whGw5h70N6MlgITCMJIJJKAQGW0ENxo E9rldybneZN/SXXXZlDRXywS1WLAak2jz40MLfqLoxgTkUDUOWIwBuZDAs8LGejdRp4PuWd1ybaF cW5amEFVf6kfcOmCGqF/D6r+juEW6TMaUvXXjajkHoXh1ZdqBC+p6u9e1XEF9TkOYcWil2soUB33 WwYiGJNCMGhJRmsDRklewUKGgv3cZL9ldBTcf8kQI26oYjAwnBfZsoy1UdmeozablYZT1BJCAhcq j0GvfGT20CW7d42JGCkBg1C4TMDYGZjGuExjWLqfyDDmoauBBzOAlNWYDOHV9hTMfmTU0b3zQEdR UVSeOEE36qF2aF/+2rUlZWVgOgK5iZtwWEn35ZrOaG3nJrlrNsdUMMQCggnYwvhswRSavTJdlKmb z/YTtY4706Uv4rR76N5rTou7F5K6SMaMywMbYn02W/3GaZGlVXvW+hzfvkqXTalfzvNCbU3av/7M FAt65vrVm9NMNcEKC0wf5eqf3rrUuP/WzUvdvfdDrHH4z/vmOjrHn7NmWS3aYp+lo3NDR86Z2q8t MPF+Ejmz/DKrvmSOsoasuH7tOL+d5XW75SytHRc56qhql9laD3J0UxayXBTXTnpxoe65Dp/0fIez prnQuvXV4U+Xyi+c5dMzJ9dLRmsSm6x25lV53u5b/80p8q/ZVa4VJ2qPi0LXKs2n5xeTeVGWs25P /fqS61kV6p2f9PfryTeprmR6Xi7aza3E7WddHsOZLepJlf1rmdXNjyha+ZA72Bzr0+x++EWhrnH6 Je2v4j0XWb+t9m2LhZTK0vRZ9x/p786iXF0bfVleGzhZzGVAwuTQjfSDfMM/p6vPnJbN2RNxyU/M TxzkF2sq3v7bl+Zvzn9+Uvfwv5w/Mmd6li6+dP5hWwK2Si5vDO6/dt4pG+4s9aiz59WLrJm+dmal svVF2TiKat3oL1qjvRn9VCynC93pOlI+o26ydKadgPI/6/3vq1L8rK7vjsCnS0++3rjg+sQXugJQ O4tsov3kUTuPrH+qPdvpdZP1L3unWm9fUO3j21JB7f3Te+prvJqYplxCV/tW7bZVYEj5iJlyNN2b y/PTrNr4WPcr1IO6HvoH1K9Nph8QwQPfP/gg9fOKNbYgShKk/l6KW/lNoTQvdU+grVpVrTifraKD e9VC7Ww3R6uFnq/FHxf3q5z6kFw99DueFifNdZGtDpTO13+s+xq1xx9q69XbVz5pV0B901xfKHpn f6brHcKyUhFa3b4qL1bHqtVFLzL9ifqvt6+0Ea58UHuY3mI0jysii2y+7sEN/7RqpxsVwDz489Vm B3L4x1Xjodqqd/se4PeHHqDrcG3eitPiQ3qtg9TVPZvnf2az9V37UJZfV1+GOGqPOs8rFcaXV/2X tEH9+lW7UZbF8nyxsX3rjUX5LlSNhOoodq9+X71a/8A1d79U+Uw//aIeZdv7XTG23ne1S6NN4q6r 3owcfV8qT72rimV7kGn3f/8Dpt+m2tjHt6+6Szr9Ne2O3dqAOrbbXdRbh+4p37l9zfHOPVak7thB X7zut7TPuhO+pUJJPN+jjzmZ+yKcbVycdssiL+7a/frNbXNev71lpTc7qygiyxa33tder//am3B+ qiK6rOoP9nxyLE+l+TFKSR//x4fovgao5bF76Hb8rmEjmUju8l1yKTDs20WmMEec8UecfP+DDRtM 2I4JmxUjv9UXN5zrixV59BE1X4Doi0L0nqnGG4yajBa6fiBikTyi6AQQfWGIDpz07IsgdB9zKQcA 8oUBeack/Df1SBv5dxN8ccwlYdDkA7728O1GjafpwjnNdPGyWT9k5CjcMvUby4VzUeaLpn17DbQB vcKPkjiJ+p4p0Av02qC3d6xprZHddL5mAjc3QSjij1k4GCB9YZAOqTQhYiIDjCPAEXC0F7B+TqTj Eey/cZIqPc9aIYFu3d/rFP881dWSS+djrzA4WVVSNsFXYO6FFLwp4GsPXydZLqY6AVA7Eycw7G6Z BQMyDLj7mFXzAN8Xha+JZJ4wGiZM7gfhIMk8QGgK4Y47FruJH7uPOGEM7tiLchvrwcP6ejH5AbL4 Q53fsdYXT9K28TarcxEjN+TyEVfZBct6UZa1GvO8Z1DeaAlOLGPh7dTPAZ/A5758DhvwpCxKkiSS ACQA+WMHPE/+8dFJ2kl/QdveG8BLIi64kJD8BHjtwbs5BD9o7NPE+xLEkjAmADAAbHHEc6ePffAo KBN+5AaPueAQgPvCwB0yCkpdhAMqH7HYK+D4knDcQnAsDcPDRnUNrNGNhAgDBqNiYI3W4DUa1H1A l9JlhDAXQWAD7Fpkd6fM4FmdYnra7rP7VA3sjctQUBQ94voWYG8vyt5MFBQ0IomHXZjMCxDagdAk 8PB4IhP/EVfCAgZfFINrTchy1ldxGyKscKkIKWME8AQ8n6KwgnlugkMhgU/g80kIK0gcUcxAGg5A WgPSUFjx9+jT0CwYDyWizIcOEcBrD16rwoqAhBFGUAgBALYI8G4f+2BhhSAJ5QGFNACAawvcIcIK hP1ICgIFugBHe37UmhBB+AkiEQJ9MNBrhd4tBEdjjgbCigd0KV3ECWYYijuBLdpDF4QVNz1g7lMZ JiBkAnuzY28mwgrGOArCAAIwgNAOhAYMCi/gUSyg2AYwaIfBtbBCr4k3XFlBaIh5giDFAnza4XNP ZQWRLHDjEDLSwKctPocpK7jHvJjC9CIA0hqQhsqKd7/9NjgPRhgJQxJCOAr02qPXqrQi5iHHDOZa A8AWAf6Gk32wtgJ5gedyBsWmgVxb5A7RVhDCY4RhrSnA0aIjtVfkIWYuCiNICwC99ug10SI8pBOG OUkCEYE8GOC1CO/AxSQEcVkSwkAAQGkJSpMRexxRSRCFehwAoR0IDRhksYotSQIpUmDQDoNbI/b1 A4ohMCLjBEagAFBLgO5bDCEKmUdc0FoDn7b4HDZk7wqBIwHFjQBIa0AOGLI/GZwuCiUjQQzpIsDX Hr5Wx+w9gULpwpg9AGwR4G95WYNB+2d1IdLTdp+9pmhhEUssYUokWKU1qxyiR8AB5x6GEo+Ao8VG Yqge4fm2EMfGUgriB1gkUoLhgeH9cCnF8M5xgCIPEUiGA70W6R1RYYdvGRPHSeiFHCbMgzHZMSYT DQgXGIWUQLYIILQDoQmDMogx55AbAQbtMLjWgMwW9aTK/rXM6ma4EkQgRJHk4CoBUzuY7qkE4ZxJ SjwJfAKfT0IJIqTv0YQBkACkLSANlSDRxxPnc9fudykvE3oD7HscE6AX6LU4jt7Fn1s8PquzOx4m ZTEwPMxRGAsPuoNgeBYNby2p+lYzsSVoMUCXuGEkYw6zWQBdi+gOr4bC/IBhD0OBaODSFpeDqqEg 5NIEFvAEHC26SWvVUEjECGIgggB6LdJrIuHZCFe3sB3DRTDN0hCaBDENQjBGMEbrWZrRCZOe6+++ 3xe4HiYMJxBWgi+w4wtMBFVuTAhJOESHAKEdCA0YxIlLXBESYBAYfAxB1UVxPVxOhQIPxTFUfgJI LUG6p5wKJSyikkIhCODTFp/D5FTIp4RKAakOANIWkIPkVKrVNxdTsciXiQ9znYBde+zeTdMdSJFE kiQOY54AvUDvj1AkrT3tUD0SDiLpIRgdAXBtgjtcj8Q9iiLfg6lUwKUtLofokdwgZkLC6kyAo0U3 aU2PJFBEGWbQtwJ67dFrrkcakhZwJfcC5ktAF9D9ceqdHW6VBdwlsOgdsGmJTRM1iUj0EuIY1CQA oR0IDRikAYlDDya1AYOWGFyrSfLp+cVwIQknhGMZw3xh4NMOn3sKSQjijFNQ4wGf1vgcJiQhMqIx w9CzASBtAXmvkGQLzWd1osd3k13v5a+DlyKnMReeilXA8MDw7KW7HrK2lAG8gvrEZQHUkAB4LcK7 LX+542QNlpba4Xr90JU0hiFeoNcWvUMUB5REEiU+5HUBR3vO1JrigEsaRRzWSAV6LdJrojh4SCcM ucT3PXC9AK9NeAeKDVzfjwX1QMMFUNqB0mgtoDgOUCRAlQ0Q2oHQgEFMXYIohywTMGiHwS2xwSV/ QN0Kzw+lx2H0DAi1Q+iecgMWcuIx6gOfwOeTkBu4JIncCBEAEoB8TLnBNNuegjKGc72b/rrkQxNg AtE4EASqGYA92rNHWyoElwqCohCib4DXIrx3VQi33OyDdQiujF3Pi8H5Ar+2+B1U+YDQBAVSAo6A 4/PTIbCAxYgg0CEAvfbovaND2ALzWZ3m8Q4JxfA+JCcBpyKCoUKwPIuWN7RiQ+TGHglA2QNQ2oHS aP0PHkg/DKGDBxDagdDEEfIoCQiTwCAwaFdEUecPKNggpBfEqusGeAKeT1FBITwau5jBXDHg0xaf wxQUnGPiIgmSHgDSFpCGK3+cvB8834YHVMScgDcFeO3Bu8+aH2O4CKbyCU6YR+IY5BNgjBaNcVs+ cbvNeHgNh1C4EYbUGsBrDd4h2gnuBXEkYKoS4GjRl1rTTrjc832eQCQA9Nqj16SGwwO6lEQIFEsE nhfYtcjuQPUBwm4QYOoBlADlD1MfMBwhxih0kQBCOxCaRJYRZ77wIOELDNphcK0+mGVNNm0m5+Us MxIesEgQ4gsNHJAJZD454QH2BKJEahKBT+DzxwsPBItpnCQEgAQgf6zwIGqbej169Ktq7Q3Q5UHE McaQIwJ07aFrq8oBIbFHvBACVYDXIrzbw/TbHvbBg/Q8jigXOAR0Ad2nMEjPPB6jAIY5AUd7ntTa ID3CnCYMFloAeu3Ru4XhKE7KQHQwuDspOPG9KISCB2CJ9tqRwatGeElM3AjmBQGUdqD8P0YDvjyQ oRtiEB0AhnYwNImUZRRHxIcFdIBBOwyuRQd6hLfIF9mkyNJqkS++mEkPQu5FBENtIuDTDp/7rhqR CI/6LkgPgE9bfA6THmDqe7EXQt8GgLQFpKH0IOwbfOdD3+Ab0Ov6mEaUwCgY0GuP3m+rD7YoHcM5 P1xNQePY9yT0DcEYLRrjtpriTqPx8KoHiHvSheV6gF5r9A4RVKBIBhxxAjgCjs9PUIFFrNxpDHE5 0GuPXhMBwkM6lVxgJjnUtwd4bcI7UIOAE+pGMYPOFUBpB8r7NQj6nWn30L3XnBZ34aQ+QYnYs9J4 v2UDzvpstjqNqR4FbC+MvgxvX6XLptQv53mhtibtX3/y6tR0P1AjpkKZTKe4e6KfEVIrJ9BfbvXQ 377T4qS5LrLVp9P5+o93x1Z7/KG2Xr195ROu27A3zfWFugqzP9P1DmFZzbKqvmXdtbpsRaY/Uf/1 9pUusLLipD1Mf+VR+3fXDQz/9La/GP75Lccy/OO5uqez7N2+B/j9oQfojGnzVpwWH9LrcqnPqbtn 8/zPbLa+ax/K8uvqyxBH7VHneVU3n8ur/ksUjBuv2o2yLJbni43tW28syndhutCZ9O7V76tX6x+4 5u6XKp/pp1/Uo2xbixVj631XuzTaDu6a/OY4qPRkTMiu7m17kGn3f/8Dpt+m2thXtK+6Szr9Nd1o 4dSx3e6i3jp0T/nO7WuOd+6xInXHDq2TbX9L+6w74du6WNWbCujLmV/xz+n6dma6M/rsPPizCgqO P8Z/vPlu829i2CIkodzd8wfDvh3Xk4QmHizSAia8pwl/V1C3liwZCemQiL2YBCBUAi7tcLkS0vV5 u8minhuVf5QCY6i8B1za43KYgM7FKEpiDxJzAKQtIA0FdEHTpNOvm2olA3xJFIeuT3Z1xAFfwPcA gx2GJXu2xT0G9IqEYN+HYtBAr016e8f6UGUZIzjh1IdCvQCpLUiHKMuYJIQxFwJWwNGez3yYssxk BjLxGMOSQcAK+NrD10Radqe7ZRQMEO5jhgQoIwFfO/iaLF+COeYcRfsl9+/qdQDCA0C44475LEq0 cATcBrgNq8OEW+7j6Z+a+g4FWLEJ2XVWFOXVrfM+Vqf8NWsmVdpsd5LGcPdMBnRdImXMEqisBx7E jge5XRnFMBqOuQwhNQZQ2oJy4EosPIxihCA59lya9pHR+uzqBBvHX0ZD2N1Kc3r6xqc2XHM+3w7X 7jdbHlGfkUCC2YLZ/qCM4Ujt9v5zluukp3N1llUq6nO6/pWj+1dOXitLnucLZd9p7TRnantV5epL us3l3CjR77qqLQZhFdg02PRj2HRnwMpcy6u0UobrXOaqKT7XAbRqkdO2iv+inGVtDaysbbiv8uZM mbcydwN7dhlhAY0ghQn2DPZ82Nj6ZgyyFdl1UXTb7uaLaXmu4+nN5jkd63VYzJxplbWnuDDwSJQj xGMEi1aBRwKPdFhLTIusapx83jqh1ulkf06zbNb1BpozdR3OymJmJqB0fc/3UAI1ip8Q2KMyRRPN BA0x80LIDAOEliA0YFAEjNKIQMACDNphcPQqkLl67+VqQFCCcYwxaEDAf9jxHw/RgFCPBjTwYA4f QGkLymEaEM7cwPUjKDHxXBr2kdEKGpBeA5KoQ5gqQAhjiXC5LmMIRgtG+wOMdrRWe4/YQ3ejvi/1 GOsFaSUsBj4J+17EfUrAJ4FPAp908DzOSqpSD9OqmAQTLgpjGUKeFQwXDPewhmsgVbkJLtKBgg7i ejSQHhQtBbsFuz2s3R5U0EH9KPR8D6b9PSGwR2WKJoIOxIlHpYDBMIDQDoQmAYsX+X6CQNkGDNph cPSCjtPrJnvJgo6QxxJDogL8hx3/8RBBhxBe7BIE0T1AaQvKYYIOjEQkXA5poefSsI+MVhB09IKO UAVrpoIOJAQlCQYVFhgt5HIParXGJT103+qABT1cN/D8UEiwaLBosOiDtsO6YX1Y5Q6Tllhy1w/a xVnBbsFuwW4PZ7dbaoixnuT9Ko+b4GKoysMVPEykAKk3+CPwR4c11YOqPDCVCAcx9OCfENijMsX7 VB76nWn30L3XnBZ30SSJL2LmxgdGsz6brU5iWmRp1V4WfRHevkqXTalfzvNCbU3av/7U1YnpBlED Ni+rTBtOz7Pd23N6617g/ls370X33g+hZ/jP0zC8n0TOop5PzstF3pSVvrDLOtMS8XYgq5xreWk5 c5rri8yZV9r4z/LpmZM3Kkqp8ku1q0tvhs3T2Uwfor5eTNLp1yNnni8mVd0cOc30YjItF6pL9b5x vmbZReciZ4t6UmX/WmZ6n+7FRXHtnC4b50t78NSZnpX5tP0l+fT84qj9/5L2j7zddVaqPRfl6ie1 R1bXRUVQV2X3o/U781z9EvUDfvrjLG10iuY8uxU/PeH71KgA0Pl3fc7//r+d00x1XLMjfRPSolBn fZEtVJujuq1tqmnZnJXVkTMtl8VMryB7Sbee6/jxkh851+VSa4r1dWtU6/bza4M2irok8rF/aBHY gxzBP6erz6hm6ewxPICBg35iTuEgv1hT8fbfvjR/c/7zk7qH/9VmRf7nv//v2uo1lpPWT/zPf/8/ bVlVdl5eZjO9ZqFqgC7VborAxXzZLl18daaCAvVU+YnWBaRN6pyXs6zQiGvXoLfcPvwlvfkCDfCd 7Xy93YRjgXHkBi5+0Q3aC8ZZE3ya6YkT07N08aXL2JcL3d/uoKzSeTPJs2Y+ybFuH7fbyImGdtJC O0H+m3uB6wMp9dB/6Wlx0lwX2epHpfP1n+h+strjD7X16u0rn7Tpwze61X37avZnut4hLCvVyNXt q5uoXRtTkelP1H+9faVLg6ziv/YwPYKo/esOtRneD//0dj9g+Oe3OgzDP54rVGbZu30P8PtDD9CF yZu34rT4kKr2VJ9Td8/m+Z/ZbH3XPpTl19WXId4uS/emDUc+l1f9l+h45eZVu1GWxfJ8sbF9641F +S5UnlDF/92r31ev1j9wzd0vVT7TT7+oR9n2AleMrfdd7dJo87rr+7bSSQnyJJXdu3dcZ3uQafd/ /wOm36ba2Gm2r7pLOv017Y7d2oA6tttd1FuH7infuX3N8c49VqTu2KHtPrW/pX3WnfCtkEnQGAXs 0H0n6NbvbAJG2q0//txFVfc1Ny193UO383fNGLtB5AUtgGDGBmaMMMUJ5qDSBDPez4y/M/Vgy7if l3/a7AgayfFZxAKPRTClDGzKjk31cvyWyIn2+EZ6fCplHGMYLwUqbVE5cJFNGnkCEXCTAKQtIB3n VZw3Z1nlpAvnvfz10yV11Fe2z3g/BNSKWrUwJTMd0I4Z84iE2brArR1uHz6g7foBkyw+dBFlGNB+ MgPa8+6iKqf1r2XeZM60KFUk2JTOPSPeejKOnq3ZDibfGv5Omyadfp2c503+pZUG62Fs7Xr+5vyz zBe1c9Y0F+2QlH5S6wGE9cCUfmcL0Sd83SbqFCbtKXQduCOnvihy9fNmC31S6sLpJ/o89TB9en6h 9U66wWjOVJPxr2VWXbdb2wH8Iy0EqJ3yMlM281c2m+iOofNT2z18/fq1c6GMo85+dtpPNHo8UF/k dgQ7v5jUysteHDkXZdVMaj1Cre6ReqnHXcr5ZJap7z1yGmVes6pU+zWVcgxV0wsTztNrPc7d3bbu jqZV1qkD9C3W33jVjobXWXaugThPv6rtz+U+lU56caHOXc8c60arFOJrXWyu2FWAvzZonZEIOKYH n14CQ/lPfOxzR2O6NcD/R9bPX+oEJbtc4Gq0dEOWnS+UMz3v5lC046OvW7XAe6xnUWwM9c/K6fI8 09epXBTXziyvp8u6dtoJkP0XaQ1L00l1jroZ9XrraycoCu2YW0mP9lQa/4W2+To/Vy5rnnezrtaf OHp807Z8r5SnK7pbU3Yx++0bVN/4vO7CqpDdeZcpl3HkXGU38oxvHUF5xvp6MT2rVDv5V/dtN/ev NvIwYYSZpIdeAgxEFs8D3mPlRXp1RTuTYRUVfSuoasOnbdVFF8hNVAiSVep55vwj+PiLpnCpbaBU wZtWZt/2Q/20y26j+vzeGo2+nwIaDdBo9K+esEaDCkHj3YOV7UFgcHez4gkOQxy+HI3GTcA9zbRj fSIt4ViVG//xITqMakN4URBQAqoNQ8PmgRtL3w9fjGGDCdsx4e8WjNwd0pooIUiAfRImsFoycGqH 06FjziyIEyIZ1IADIG0B6TivQj3IsnahbU201o2uUoA6i9i7UbMRZx4HIYKlKIFaa9RW2TyrdCbV AEeX+sgVwaFnmQGOgOOGE/2cSMcj2H/jJFV6nl2V1dfWlb5fZ0yb0qTenOCxYOTg6XqgFWjdKAXz Ud0VTehJNl1WutVPlotpN+I0aVewneigYGYCLCaCBDKAmVUArE1gTxJno9inPFP0TZVnzf9q41MT TkVIOY0gCQWcWuT0zpT1m9HQzenqLrt/KHQbWRp7UYICAsgCsvaQ7VRBG861HdqPtMrkVw2rUZ+f cMaEgNkRgKolVI0WxxMqDmXefnPG+i0A4WEh3HHHoogQFECCG9yGHbexTmvrYnjmc6KFn8RuQoFL 4NIOl6slynbOazGAFDOEIzeCzAtAagvSgVOkPeInQQTVWQBIW0A6zqut1btUs97NPzHAkxPmc08C noCnPTy7yVJXWfo109N3zjLn5B8f+7n7XWtvlE8RnsuRoMAqsGqHVaN8CsLYR2i/+fmQT7EC4f13 jHqJJDyBQS5wG3bcxjqfspwNqTGH4oi7MYGuKnBph8tD5FOoYDgRjAGkAOmTyKcwGgtKKXhNANIW kLfzKapZN86nUEEo9QLoowKe9vC8m0/5e/RpeD6FhBH1SAysAqt2WDXJp3AcMZHE/WxyyKc8JQh3 uA3ie4LDECu4jT3dxvFrA/8gQpcm1D10PVSgDWi7rzWKYoaFryt6AG1Am2XaUIhDifh+IxMQ+zxi 7IM9zxUh3i9aBf8A/mFXl6nI0vmkyOtmz7I9el0/wl2YewKg2gG1TUPppddXo59VNjdbWiukEWUe hFhApj0yDzH0SWKBcAw9TwDVIqgmKVKhGnMsBbTlAKI9EIeNwqMwEBTtmbUHJAHJbzfir4Ld5fi7 gc+PJ4l+sh4ONarOEwhXBD4MYAC8NuHdWKGmdqqsSBu9sEnppMrXLvK00MtN6I/k08yEWhYLX3oB FEEDaq1S2y2VptzsIs3rWi/m9dokIHBd6ok9U9lAJ9D5HTr1kl2fqnKul5nSy77ml/lMudV2GUAd GmSLRjnV6RaxIzj/riChUWDuh6GME7BDsEObdqhtTbOgW4udWTaThkOgIIwpzM4CYO0C2/Uk7ynf /uZmvvzRjdT7yMjZRkIyImByDLBrld12jeIey1w9q9IvNy8v+apzedSt+GzOr2B+wDwGWTzg1yq/ 3frjPZd6se6Np3q97tWy3nXRroRtxC6JSBiFBEbngF27vvfCWa36vkXlCM6xrFRfeWsVe52SvLOK vYkxSsYiLnwwRjBGm8ZYXmaKmr90wkeFRArSSu1ZNa+NprtR6rqShRDtAKR2IL1Py6HfuVlIVT90 C3vfCsR5FMg4OHRRodGtR28O1MoFDFhH3e+ODeuowzrq/asnvI46cRMSsWSXhqE9CCy3vNH4E6Ia 7ojsuF73Xu5n3fjDOuqPGRIcf4z/OMw66oz7cex63zTs1bdW77JNOIQr1r5ktQv4gI0oC3O9iiAM NYG172ft3y0EuN/cLZwEfpCAPhE4tcRpPztmC8Wnf2LqOxRexSZi11lRlFe3zvo4nV1q2dpssqjn z+wcN0/DJKflhpK4nMA6zuAqbLmKYRNDMCcCx9F+y40BkADkN8sz6oWYb6ItXaOxi7jukfcYDQ3g GIWRD9p6oNYatVU2z6pMhSUmrboIAhFGoG0AHC06UdNlmYXJsswIsygSPsxRBmTtIXuYZZk5wySO PQ0loAqoPo4O4G7E6WE/2bOIKpR+swLhDrdBSSgplIYEt2HJbaz7s1vu4+mfmnleVp3eRAu8n9kJ fv/emYzqcJKgULYjl+A/wH9YG9XZc/ls7hNBQMgNkNqCdOByT0h4TEoQbQOQtoC8vdzTavhY15Zy Ah2zRFF54qgt7eOvnWMtKwN6CfXChDIYDQN67dHr3ORtzSbCCA97fhJBAgyotEOlSQKM+p4XuxHU TgAI94PQaKUNTKj0CJQnA9oegzbqs4BHCajygLbH8G0R8aTrgloEaNuTtqn6eWm+yG76wJN02orp TBLcgjHq+VB6EDjck8Nd3YphmUMqiPQlg0YYcLSDo84bztsi32rb16xxFlk2q3WF79NMOdBZrkFN i+LayRf1RTZtK7SZ+NGQssjlEsAFcG0lDdfUbvE4grNrdFXoi7Su+1r7q1z+QkFYVl9N7I8iD2GM YPol2J81+6uzaVfSe75ctBF27aTTaVnNdOUdxW1rn12Z89cGyKI4EExGoC0BZK0hqyvv90g651m6 6Nbf0TUYal02sF2I5+osq7LNkMjE3bIAMc4CYBfYtcXuVV4UOiqfl9VVWnULRjht4aguSNiI1Q2I JcSNfClh/BSItUZs32Xc8KUmcYCLXUoTKIoMZNojU8cB625Vnx7WD5dpoyKBk6xb0Czp41oTd4pw ErkcAgCA1hq08izNdZlr56eTRP7cyvzmy0o512rlaTXGKoxNV97WSElFmOcGyAcRC6BrBV0DBKmX BERiAggCgjYQLLJ0PinyulktrzdZ5a4G1bSjOHa1TgEwBUwtNfI6FbWeRFllc7NZeVJEPPCh8g9w aYvLfl7eLvdpNC0P8yRxCeT3gVJblJpo9knoUY8KUHgBhrYwHKbx4iwKZeKDrB+AtAWk4+iv3G65 t8gcwXlOe9Tzbky3HcptzlKj4VsiQ49RIcEEwQStmeCt4bDrokxnOls7bHQMcS9KhIBaAoCqRVQ3 dTLKoc7yy7wTHDTlqg94I/8yoTZhoetR6PsBtRapXYUA6WK2u4KQiZMlNIxdIgBXwNUirpqELUfa E/rGyS/qI2dZFY5ywE1WtUsbt4XnLvNqWR8ZECyCRPKYQ5gABFskWDvayzK/mFyWitPJPN8i81md 57E2tNcq8FHhzjRdaKGlMppsocOetardwPCoiylFHqjXwPAsGt7N7IouMNfZDjO1D+ZSCi6gxj3w aYvPIauEIBl7iQ9lvABHi+7y1UFXCeFIMhYyCK0BWXvIfneVEGfSvfNblWVOlKdfqvTcKABAMY1k DAsIA76W8DURYbTTJWNvvyi03wIQHhbC+++YG/HI96ASDbgNS27jRqO938LjLhI+EXu6FgAVQD2w SNtl/5+9c91t3Mj2/asI/eHMBVGnbmSRvdEN8DoJ0JkESXaCjcFgg5YomxNa1CEpuz3ny7zGBs4B 5lnmUeZJThUpyZItdZcsUTf/HaRt3SiS9Vv/Wqtq1SqLy9jBnBK47IrLfWyewmMRxX4cAFNg2hGm RgGCYFagAAOGwLAjDLesxOlSYguBeT0A2RWQvd4bb2Po8yyt+T5NflPtZ+J5ikiQgGGOBeh2h25D Z+t5Vr0yzZN6VrxS6ew4S3Kd6aw/oOuqGDBLfJ8T4mCSBcx2yKzOXypTJbHjJKuqZDxYIfOsrvOD UY1NO2Qy8D2sFIdZdWhWy6sHdJWi5zU29bOPTo5ybgzYZZ4fuoxhAA3sdsju55e66CdmKwwMiBWW q7SWw/EGsR0Su9NKF0IsEocB9soGoh0iemZutfoOBVe+DNhDmufF/ZNr/tAO1yx7MjPTe7dmz+XZ u57suXxWjWy0lRuPmAi4i17vXEiG3pyL3nx+ddLSqpBLvQGPq1161XRwY6BGjEvCvRDzNlAjqNFe jXH9NSfVo6PTjvNkk16lkJ181ZsUpYqllX7pKtbqodasYtQbpkl9Y7SrHONOJChD7voJ0Q97PZfO s06TclgWyhCLu1RZxd/1MNfgdqJrCwx7danuRvmkBtFZNeoHswWw3LZDD7Ph0JDONGSbBbDcD/yA cmzUCBy769Le7HUBLGUBZZGNMWMg2x2y3S2ApQ6NaMyguMC3G3zX5bfrZwbtr/a5+ip/jiZzeBxJ um80q5vh/CIGuQoCmtuib8L7N8m0LvTDUZarV+PmZ3bp6sJ0gK4BU2G8ukYmZjx32zxXT9qCzb51 uS3a545Cz/antxi5/bYf9qZVWi3XzHrsiHtJ1UvaFTx62GTlPXnez4ZNmDZfdqYPVPaTa/Xoba85 su7WR22bDdMyu1Pfs3jz48F6o1Ipy6DYsA3O78dFrc5CPRykk7r3ba9S6pqNm3HlxalmaXMtf+jd 3+gUn2fORZleZ5WKJ5vJ6Ex9UzlaMYkTbidlzP2hUt5imqv7PZkoa9HD6umneeVevTVwocffk/Hj 7f2dur/qg9nwd28NOiBuu4xHYt8brr3Iyv82mH9G9Tk3hzBvA/U9MYvfyxlrKt7/r+v6P3p/+UG1 4V97vyqDuknG1zpNWhnXOLlN59WgF1ypx0uW26QkrZTbmxWH1ES2q1kUl1ndCMlYz5LoktN12paZ /qX49gc9F/1L8fHnSJv0RIlH1aNuIyuMtlae6eTtu6zSc9l5Ws9q4pnZeGs7//7H/1TKXpLbSa4O f68NRmvKdDJsU8IPrwR7a79CCbMeWGvVcFqWOjdsyUN9dE7f6ua9Se7SxXVn9dJdWUzZ5Y3qt0et 1sdeM0dB/ZqdxlX+U/2gZHd2mslo8ZO0F6He8at69f79G5fbOl3ynU6+fP9m+OnxDX6zcXTVPHr0 Sit9Sqn+RPX392/0nNncv2kOM1MT0vy0h1p2X7f/9Kqfu/3nVxzi7T+urEOZ2je7HuCXlx6gdQOX m+Iq/5g8FFN9TW2bjbJP6XDRah+L4rf5lxGbNEcdZWVV/1jcz75EUb/0qHkxKPLp7Xjp9ZUnxsU3 vlIA5d+2j36ZP1qc4IK7P5XZUP95rX4HTZQzZ2zx3vlbam1wz7uxpV5QcjeknMfts896weYgg/bf 2QkMPk+1cf/XPGpv6eC7pD12YwPq2LS9qU8OPaN84+sLjje+Y07qhjc04UFzLs1f7QU/G7f2PRG8 nhUxj67JINX9y+xgCGY7CWY/fP8xXNcBNTwuAlcTw6bSYbYbbwIVhv10TY4fO5aUWJMDE97RhP9X Xv/HU9/cZGUNp4LyENsvg8AdCdw0IqqeHqsvnZbjdzqEbMC7rd7pd4+rdw8qCm6efwwtHyPKNwb8 sijkggXagQW/4Lcjft8Nkokxw4/Dum/0oI8BxNL1hS/YpngIEAPi3SCeewfZeFSUt41zYIgmE5JK 18WMKdDsBs0WzqWcFD0aruHUo93/3Yx2/3c72q3f9/WaN5p4ucTi0vZRwRYUd0nxk+wqrbaGgJIg DoVvY6kKAO0K0BbRx1n/BaeGiNqBYI6FzQOAaIeIzryBYjzM2nIGS3knhpyKmNqMoqwBOO2U05bU ZHiXjAfpsD/r+lf4PKur/bCtndGY+sS24LLAzrq1s9bS1uZNalTVo3fzHLwmRNz4ThMnxwtiFjHs IAGou+88vn7ae2wrwcxlHmEOBudAa5e0tgNvO/nkvk9Cy9132jNABahPQU0GL4XUcuPIIRYGOABp l5C2mGbja/VK1X+K68KlnSRV1QjvhneuAH1Wt+eDsTdOuRMTL0Z6HCzyBCxS10/5nEUaYy2pZ/Eg wgglsD4BrJM8Leu9cG37NPKiCOV1wHX3XKem/tPn3mjkgzAnYMID1ID66FAvXJBdoQ59ZrkBoAbU x4f60QHZkWorYr7tUQzggOouqW6nbl48zCiYyyQN4SWD0i4pXSHxrK6rWcuYTap00L9N65tiOO8o st/SPJ2Pij553cDwiGQ28W3M7cPwujO8Bs6XJ9larhP7oYXOAYx2y+gkLZulYOPBC7KkpGfFTmgj fASl3VE647QsBqrPz8bXpku9ooAyipU0YLNTNp/S2U/u0jK5bhYkUkJI4wesf9kAYsqYb4UEAguI DwrxJE1+04haawiev2aALxNuEAfW66lXBnyP5R8sEWrqIFiOy2KJXFTA2R2cKxxexFVpY7tKxkPF eX1jvJomimzHwWgGTK3LfqCFs5jWV8V0bDoabKmTiR0UDgObHbO5SufaOHHdiwYISy7iyPcDIAyE D4nwsyjx2Ssm+htQ7nIHs3GAt1t4Vwg1VVabxJRKZBIBzu7hzMbboMl9Grm2DTSBZrdorsC51m1d 85oBwDSWoVBuKwAGwAcE+JnT+vQFA3SZJRi1Q/isQLdbdJcBNR4MkMwVhINNsNn1nNu28wAk9Cwa yRhsgs1Osxq/3imtkTIndoWPrBtg2hWmDaQvLxOuenjX9mM4oCC0S0I1oMlAp9VsVcOe+DEXh4QT dBynm10Sry526xDMipmD1enguGOOs0kznumyt+Qte0vpbGWhcQaJF/gSKw2AaceYToqy1kzyRVb2 7AkDSKlDRGyj1hgg7QzSRUyzvctIqUMp4+jpQWc3dC7Y3H7nQxp7Ig4OuY/M8W+1veZWN8+dNRxN QYmGgpXdsTdwoJ953PVe/7rKn9NBKJNBQHZLbZ+9skSH8X73cfNzKtwYi8rc1Gb3VP2atdFV/lP9 kKfzTyejxc9Ve2z1jl/Vq/fv37jcJvpU64eJsvbhp2TxBr8oh2lZNY8e9V2vDcpT/Ynq7+/faHd9 rhTNYWa3lzQ/zzuC7T+92mNs//mVrmX7j2eqTYfpN7se4JeXHqC1mOWmuMo/Jg/FVF9T22aj7FM6 XLTax6L4bf5lxCbNUUdZWdU/FvezL1EwLj1qXgyKfHo7Xnp95Ylx8Y2fjLWKt49+mT9anOCCuz+V 2VD/ea1+B40mzxlbvHf+llrbwXO7Xp6FFaHFfbrJoWkOMmj/nZ3A4PNUGwtC86i9pYPvkiUfRx2b tjf1yaFnlG98fcHxxnfMSd3whkZJm3Np/moveFVG7SjwAi8MNtyvtbf7rB3Avw0WzZnqfe7PTsHP q+f/c/Truy/28SaGbfPIdiKpIYdhGxg258K1iMRMFUx4RxOeT0it+O5rbPpZ/BZ5hIfi9XQtILAb AjeNLainx+pLp+X4XZbWowa82+qdfve4eveQjK+b5/sZm+Hbz3SPP1IHemPALxFWICRHnQLw2yG/ 7wbJxJjhx+ncN6YVADgTkjYOECAGxN0M8L5sfJc4NLJlAA8VaHaD5kFyZSiVsR3DywXFnVL88pRV m4ShbfuoBQdAuwK0RfTlRbeZ43vCktBQINodojNvYJddtElIHOlSBk7BaYectqQmwzu9imrYX+n6 zWGlLnVtESE7FrB2C2uLq46p+k1MtWaHsRVcT//i1XcoBPNlDB/SPC/un9yZD4Mkz/vZ8Mwub/kK msh3Y9sZyIyMBIlcgi3CITPd94lf79wp+tx1iYtgGLR2SWs7nrhTqOHZgQwdgApQuwZV76R5xh7M y+xLxtRhloOFL7CvLu1rXgLtCzswT5L5rpqfe6cB1lZgW5RyFPoB1ieA9bAsJnvBmgUWd4mIgDWw Pj7WZ+YsGY9m3WZlWZRn7AruRWtoEPKAhhxaA63pXGtSU8fwc280gJowP3YCgg4UUB8f6oVbuCvU rh14wgfUgPr4UMMpPGWncEelYTJ2QoFpIyhNp0rTTnE+YXSLyU1CCBcO0tNAaXeUakbPuDf4+uVZ ypJFPnNsrFeCeXVrXjvV0BdMujJ2MQMESrujdMZpWeh6k9n42pRNj9EwhhsNNjtl8ymda/fOW/+y kZft+JaPfcsB8WEhfrZ/3prXTDQ4FAreKAC+wLfroYytHQQ7snx1RiiWDji7hnPbLfR4FFih4EAT aHaJZgtnMa232XpU2LYvSYwiT2CzWzbPfvh3blhrQ8J1LxpYH2Oh49gEHjWs7xDWt6D0WUD47BUT j1u6vsUcwAt4u4V3hVBTvybwPT8kPuAEnJ3DmY23QZOzmHPb4kATaB6g05/BudZtXfOaCcAK01Aw AAyADwnwM6f16QsG6BKfMhJzVLYCut2iuwyoqcsahZEbCE0h2ASbnU6vbTuFIUIasTBEAiPY7I7N duJ3lwxG6oYktgVm2oBpV5g2kL68pDohjvJfY8ROILRLQl+2pTtxHcYkRQI44OwKzlkp9W43VrEp 467tYnU3OO6W42zSDKe67C15y95S2kb9zZMGmLLQspmNimvAtCNMVxi8EMNrUtuLstY2xhf57LMn DIzOCokVh6jRBKPrFNGvX+aBCzdSFHpIWwCd3dC5YHP7TTdFHNmBx1D3GGzuxmZbV+fZvvAbMNTP DNpf7XP1Vf4cThrFXMR03ztuVzfD+WUM8jQpmxujb8P7N8m0LvRDFa2qV+PmZ3bxyuyy8XVPI6aM TFkgEzOiu22gqyetwWbfutwa7XNH4Wf709Mw/LnoFeO0920/VL97mTqv4l79Vp8oC3WTk/Gwl96l 5UPzjpuk6ikk1Jvqm6Tufat+ZePfen+bVnWvVYG+OoT+dPPU/Y2y//omfeglZdqbTOteXVyn6olS vyvJ8556VPUGxXg01WvR3vZ6v7bHzZPBb/owybg3HQ/TMn/QLb4kqr3bYpgqQbvJBje9KtWc1qk6 d/0dN2lvmI1GaZmOa33wQTqp9aGGvevsLtXnnt72sqF6NRsdob7+y9opLaueunp98lXa+y/vz39q WqQuelP1WCnzjbo9vXFxm44HeVJP1Q3XV9y2xnXR3j717ltlMb1hWidZrm63px6Ps7oo9ev6eLfJ Q6+apINs9LD81nTYG+VFMeypzu5O3zjVAunb697VVLdWdVNM82HvSn3lVZ7qcyrTUdvIV7oh1RNJ 73GsSZ+oAqfSX6jO4cc4cDhz9XmOC918ioCmdd8a9JpSstANg31PSb1ImI7ePZyYIO3ljDc7W+91 j9b7yw+qFf/a+1kZfWvSuiyXJixNlDIMy0T5MTfJ3bIkTKblpKjS6m3vV0XscKjgrpTd9NJPkzwZ t71lY2vKkEplCNo2tKjMPtcrRu3BZ9/3oIVz6dsS/WFdsK9aLT04B3jWwapfs+u7yn+qH5TdzK4/ GS1+Bu3dUe/4Vb16//6NK0VDcP0wUTdj+ClZvMEvSqWTVfPo0Z/Tqpqn+hPV39+/0XlZ8xupl6TN kSbNT3uoZcdv+0+veojbf37Fldz+45micph+s+sBfnnpAVr3abkprvKPyYPuleZtNso+pcNFq30s it/mX0Zs0hx1lJVV/WNxP/sSZU5Lj5oXgyKf3o6XXl95Ylx84yvpV05b++iX+aPFCS64+1OZDfWf 1+p30MQHc8YW752/pdaW/FxLlwMYSm3q25uC6+Ygg/bf2QkMPk+1sQg3j9pbOvguaY/d2IA6Nm1v 6pNDzyjf+PqC443vmJO64Q2NW92cS/NXe8FPxqcD4lMv3nfNnRd1XX8bLD6jNC0tT6RDu9QI7c/R r73fZ2k96mfsSbLDMKmTfuvc9ns/pU3JyZ71h3VdyWroZmKiFnWtKHBhooYmShxm+7G/7zGZ8/Qu X9VQnvYntSnO4sx5xDIsBtPbxocsizvlKVRnPAn0YclfnkWWj0GaflL5uX/+KVZuctQMACzc3eZm rNyeMm3unL7alaM86GOoGF4dRh1lxWdWN7Pxt7Oxcr/nR0yrQZlNGslTH9RPzd+/LhZc1b/WXXlu wzL2WBDsuB5s9sorsuEXRCuPbi2iFUQrixeDk4xWLOY5MbGC9lm4Ql+MVrhjSY/uJqOIVi4iWlFf o7ygsj9qJmL6mW4D9Xe6FLHIt3RPMQt1Y5+4AQzV0FC5Td2IhvtOe0PMckom+fP6YGR1BPyJk14X eoZmWum5HD24XYxH2fW0nR3+rJ+++EiyNIiusdSfWjnM22Ycvp0yqppJv0cfv3jm459v6LRhRuLp xMDLgxYR+dwJ2G4LqRG0GAQt6UzhEbQgaDn5oIWEQRh4FsZv5zfvC76Q5VIR+HLf+y4haDl9D+lp 0KL//0y8IvYWr1i2G0gZbeq6YaNPBxa80PFFgDkWxCur8cpiTmJToLKU8/PQpCbqd1fJbfMRnfTX u8/qm9kxSuWmT4rxsEmEW5rJ6P1FZ6GZjG70h7d/PcmQxSiJ6sMOwYjvk8jeqGhmFnopwciXb/YO wchoJt8IRhCMnHwwwmLfIRbdlHrbHASOzpJjGLiS77+u4yUFI+biel7uz7pgZCnx/jEMoWRPUYhk xA+taFNyIYzzqY9DPceynX1XYMM6gtOKQlYCjFkYMks/Wg5QptVqcLI0daL+vE7rlaVIi5Dk3//4 n2p5QY3+rmfZU81R5tHO/AvbhUkrBy17VZ3U06qXXM1XNQ2mZTP3UmX19Gk0dOTIhFFmMfdFzbJh MmWHcIW6IZXhKZjykdcqGjTRidn6Hs9b4/NtL5lM0rFem5YX940R5VlVa7uZG+ThDWe/17jBfL5t Vz0p+stkUOsJ3FL1oc9yPNslePOFnM3auypNNbLNCs7nN2yU6ZWIN6rDzXWnO0v4vEnyPB1fqwMm WuDUdSlTaM7g7fxMquw2y5OyOdxseZX6huJxpOWr3uMYbfv3o5Tqcxy3qx719/3uKqnS3+m56Xat YqauLxkpP7Z9VZ3pubfqh4bN3zV9QKq7CHUH4tmA2Hz9Wpsjq25Cmd5l6b260aOsXfLZCJS+G0Vv kuuB7qWb1kSUzdrQWi/PbVp3OdO2p2JZ1RstgEn0Is5KtWMz3taEuk+Tcx/PstJtshiGSxbDehqz NYL+LHfFcWzHCfddPxxe2KmcsSZgad3mkZ0WETvUD192FX/t+U2Xcq80dpitmJDW1WQwUKZyxten uwAlHw/FVKcK3TbGfezL2WX0u/ftrS5jleiSADeJ7qrWr859Uvci4IErnX0XDBpPb9s/svzuaVUW 9dq3C7nis+tYfOC8vNBXrHI/prfFXdvxKq9slH3q/fsf/3dpod+///H/THpEy3ciKR09pnHGAIKy bihb7/sHZarcMeWJj5VTqH23haP2lS7a8farYy9ai+PHGZit+6VJEzt8+8OdaJxY9Yf9VVvqZHA7 ey34bvGq/tP+6nw7rg3RXeO+l8m40n1af1IWdaG+sbn6n4Mfvur9Z6j++Sn4+Yf21oRB8MPbnqdC MuW5tzVzdHKuZqNJzF048vMjmUgT4Y5vOT6HNEGa1hhqUNxeZeNUd3ul9rf6t0k9uFHdXkOkejb9 lAzqx2eb6kTP3mwCIuWhbYd2ABAB4mdA1FGM0rqbNNFDGKMszYd6fKJuC6A1j9vSVcPpbMRENehV O9qxFNn9vu1CFamVio0GaV9J8Pn2Lx/qfnuVjQnq4bs1t+mz/cofTEyUCU4cbz5JiTH5RXu8cNrk oJa4x/PWoPxc3PZ+SJW8G3AjLeYHEQU34GZjQeiv/2giQIETkTA6ifl9gHSaIP2x9+1jNz8bJGxn QZrCfv0vFWzqU1s7EFSa9Ig28aUXRCexNOXLQK5rgeanfddiOnD+ooox62Zl3UXz8vXadt4m33d2 lx8Tfimh9roMp40Zv3us2P0km/bJ84sk2cdK3uef+2rRuZe8+jRp+W8PYZ4Sy30aWJ7z2ay7OVbl N+lyK1DROPD6G+fvWJ+f15zyGkAGyAhv7t7KfTinWnNUEi6Dk/BQjpEevEa0148Tv0Ln5PuP4RHG 7PfYIvrUf/9jFPaC7z9+/2Pvfe/H6Lvvf4nCP6zpQRsLaa23/fepAGpxfm6B3Qjghp4UumaeWe1S h8Tevmcwz1nXttWHNQ72Q6orjF+06OlFEychep00V6OI/xV9/Pj9r71vvv3TNx/V/z8rYfzPH0Lv 588KY+MiNgfQZ/hZf1SEIogdZ9Pa6vYg6/1Rway5gcMffenHz1u3A9cJ6b7T6I+86dSpT80to/da JgT+9c9//bNJU2m2ljHaZVJwaVMZgE2w2T2b+r/HVPeHqk5v+w2qJ+Gd7BKSLY1jn6Wn9UUfsvd/ DNTE9j3uib3vZw41gZoYqkmSJ+XtuavJegtckpjzjOaW289ETWQcxYx68JvPqG3PW1MMoKQ88mN3 xyJrz0s4AcpOu7j1bWlFoWf7IobAwF3p3l1pAnMEPSfaQiaDJTKwuGfHcEigFwfQi5XwJhkM0qrq 32XqK5t6NSYONCfcY56170QI8Apev8TrYLnUbL9NATViVjBpux4Fs2C2c2YNcLR8QgPH00mRwBE4 diyhyyHCRYxkvroQwY6kFxAfQwrQi0O7XLfpbVE+tLph5GpJW1ARepitA6uHZnUwmW4BqmAijIXc d+IrQAWoXwJ1mFW/bUMq9yR3PUSvIPXQpN4k5fA+KdMtaCXU8imJNZegFbQektbHvaDMcaWhZ0sG fxW4dnPGxoOC1HI8Ti3MAwLEDkE0QlFSVzh+vO/iF0ARKG6Lou0FrhfwTbuYAcUT9M3O26c0gNKy IhLHdDefEemaR4FyfYty7slY7n1nC7ToZ/uPcy0gssvc5WJGdqB3O9aJLCYzgCIM/dAjiFLB5wH4 fJp0pXlbXihkNAxoC5d7sQViEUOcgMsmmC0djhSKw+L4CiuEPQ9sz7EXmHsoT5TfxFWhDrdpHGJe HZZ2AEu7CGt7uiBDG97ZX1RZ5P1m90qjGg+xHXMZYtL4oKLxOr3Fp4ugJpM8G7RLSvLkQe93m+V6 r1qj2WPHj5jlBeAW3B6Y2zop9U73JpRa1HeIHYNSUHpoSpvdxo2U1I8VfFBSMHpwRq/LYjoxW9wQ 0cBym4KqgBSQHhTStLguk8mN2eg7I65gEcd8EUDt5IyNx93t2I/82MO4O0A8LoiEB4FH975TO0AE iNuBaAVWYMsd18cgeezAIG7o3QgJrSjeLTsVbfnlttxfk8mAUEsQlNo8nyazPELjaMcZZTTZIZuM uq5rc7pb9hea7JBNxgLphXLHlRZospPwS2Tsxg7luxUYQ1ueRFsyiwUs8BG4nlVb3p/pmHOT+DfM ynSgEyKSXL8BteJOpIFM0i+Z5/tM2igWA7k4gFyszvWPsyXlMMv7cyIWh4EPWkHrgWm92h5WyWJh 0wCwnk/TnzeyBlBS36Ou6+w2wYpQ7yhQbvDgqBMExELwfjktGvueLzhHi15MizpuHPpNQ6FFL6JF qfSYiCT60YtpUeF4HrNszEFdTosy27W5C8/oYlrUJjSUoUAy1OW0qG35MeUMLXopLSqJILEQSAy4 mBYlduQ4kbdbtTu06CnFo8y3pOvsproYmsY8ymfPeyVJYLBN/UImCWeWv1vWLfgEn0Z8rszzZZM7 sULosa4KWSzNtfQ+3ebvqkkySN+/mZRplZZ36ZsPZltPR4FPIxe9HFSkkzM2n3SlNvGEwAa+APG4 IArueIS7u42fAUSAuCuIjPiOK10UnOi6WcFbO8ws3FDQHbfgAG8IKPeDo4xDhzgxcASOBjjuZf8Q Pa6xbWnuMAwjQbGZFig9AKUro3Dpp2RQ9xtmb9JkmJb9PB1f1zdmiffCEZaFambg9uDclsn4On0p t4IHkgqxW5YouAW323PbEFsXVX9YDcxqmwppU9fx4RwA1iM6B3VRJ/k2GktsFvgBw3pnYHtE32Br bGXIPctWzAFbYHsE1yAbmjkFjMaOhX1HgelxMB2VyfWteqI/ypPrygzZSBDueUgSAbJH9GMX4Baj UWW4TQ+l1OZBsNsSRJALcrcnd8mVfRG5IZMucRCEgdwjam5dm9XxoTSMw4giaQq0HlFnTWm1hCWD wEYIBloPTWvD6aQs6kJ9h+EkgvCkT+AIANZDwzop01H2qdXWZDgs9Ubao7y47y/K/JnNJ8RWxCRy DUDwKRBsttmfRwUjNka8gOwxka3KwVbY2pT5zHJ8YAtsj4jtsKq3wlbEImCBhNoC2wNhuwLlOV7I uuGPHVx07liMULFb+RpYICzQ2AI/A7AZsSFxiCMwLAJij0jstg66dDgNfYUcqAW1R6N2W/+c+YHj SxmAWlB7YGrbzMpJv5jUprlqnIeBjQVCYPUorF6nheLVzIW1XZ8yG6N1QNUA1e4LLtg0sliAMQDg eFgcz1P8t6/YSoTlBcRBxVYY2BFcE3upsolZ1Oe4LpMu3BPg2jmuBjhS21VdDsGm7cDxAOo5rwe1 rJomfbzlCotzNwCloPQYfXxdJqNRNugP1NduU6kkCt2Qh0jRBLaHxnax2shuExfy5Co1XHRkeTQk LqaAAe2hoV1Mpm0NrfQD3/FiuLGA9ohKO0ke8iIZblV5z3MjGoSYWAO4R1TbF4DLosCiIcPOIgD3 0OA2yI4VcbNKp2ark73Y55Jj3BW8HtFDuCkm/Ty7zcyqlUjmMC8MdtsYHsyC2e2ZXXIOtmOWehYV jgNmweyhmX1cLGfvtGrHt2TAgwAEg+DjE2yGLIljEQQYswWyx0S2WkH1HC9vy4VHIuQksAiWWMPu jml32648sjlhvrCQkwxsD43tUly5g4su3SC0gwgAA+DjA2w2/OyEMqZ2AGJB7PGI3bryVWxZHglB Lag9IrVbF77ixKVWjNEQUHtoatsJk3b/zaI0nZsWkevHLscwAoA9MLArcJ7hBfU+3ebvqkkySN+/ magOIi3v0jcfWjMsJjqeNHTPic/DKMKeorDA43QZxaR/9aB/mU2yx9KXDMl3wPU4uJbFtM7G11vl 34WhTX1HwwlkgezBkV3sFrYFs9KNvMiiCCTB7FGYHaaVktlEu7FbebOC25wJH9yC26Nwu0W1NhE6 PFZ+AVAFql9GtfNqbZYbhoQRrCM9KI4vVaAzxnH9wNW//tlrSqSskHqO/cJgqwpukcdcGmHJAPqA zvuAp+7K4HZy9sa2VEzpJK5l77Jo5EmSMOC+YFARqEjnKmKAI5MRcz2MdwLHQ3RqbWE9dGan1TIm zq/qs6KYQic6b1voxDrnt18/TFKzCbzIFR7zMOcMUI8C6qAYmoFKJIsjH/sqAdTTGFIWtusJjv0J gGO3OG4aUp5FByfhTe9lTPkkrqTruEDyIKKSQDYgG8dwt+7sc9eL9XK4vF3L2euIUYKFsOwgxuRa 520LHTHyhqlktmPFwBE4dorjpXvDJ9RJd+0Ks5B6oeMH0AxoxpE0Y8U/vhDt6J+9eBjPXUg3dq2I Iq0TCgIFmZ88FESPKRpOKtmR6zkhfJDOG/j8FGQvZ2wcQHOPB7YQIUA8H8W8yA7tFS5U4G5EfG4h BQadQMd+yTOPsR6cfWonJmTaWDQQvjIjbAoMEelcRA5vUHu56cbOMPE8xw0DjOvAlg7QITcer+qI l7oso+Wt1Hcc2+WAFJB2CulrGXxs91PUhjgpyro/nt6e/0DkCzZBoDGJpcXhSEJXoCvzk9+Prpy9 nMyF0Wwr75hSN6BwUCAkEJL5yUNImkvRO4ZsJSYWdUPLlUjwhJhATOYnDzFpLkVv5LKVmNBAxtzF +F7nDX0RYtLB/kMrgwwviNEtGUpBfay+AcAHBPjs+7wNFmiW6+sQ4kqKBCmY3PH6jK3DJuH6jFtx AGpB7dGo3do/t0QQRhLFy0Atgv29GOdFhPmjPLk226hEelzGYehDP6Af0A/oR3sRW23cSSnzbYGt jqAgHVNpVt7EiiQTFrYzAo6ngCONbY9bNorIHRRHLBN83csEhePEoWQMVodOoOtO4EkAMx1iB4iT l0XDwIaHlMVaGyAiEJFORcQARxaTkDsO4mzgeIA+rXEaVV+25Uo75vIwUj+AFJAeoV+/1NxTbYiv eqWdcAiPLBZAV6Ar3Xd++r+zV46FBj6XELPwx5G+y5DFB5NDV74Xg3y0w7PvwbdOrqTSo0IypJlA TCAm85OHmDSXsnXOK6OcR2EEzwRi0rGVbcjUXgnHXxDN2oT7tnBQxRQAHx9gM2Kp4zu2F4BYEHto Ys/eV1uY3PZr0ojvWRHH4mWY3fE6iq39c+H4QRzYSMEFtQbUItj/onFeULBfF3WS9/N0fF3fmI0c WkyJRIiMAojJ8brAram1hBsSG44bqO1+vtoARyYJj2MfVbyAY+c4znIHq0G9kjz4r3/2/vLHPz6k Va9Mkzx/+KuJisZShIJgGQew7Rbb1xVINKb5ygv3xzaPqQthgbB03x9eYjrhioaYjQqKMLa9CCuh YXPozPdhkUuGePZ9+PYzYx61LF9JAdQEagI1gZosX8vWM5ac2BHDjrDdN/RFqEkHkwyrIfkLIloS cR65DJu+gOATINiwTLxjScvFmhAge0Rkt448OItDz/MxjgFsj4jtC5LyHF/GAi4usDXAFgHzF63z MkLlu7TMRtkg0YFGv06uzRbgeW7s2xQJvtASaMn85KElg5vp+Ld+/TBJzTySgLrS9bAKEirSMZhG OZLEsfxYcg4cgWPXOM5yJIeDAYoFn1LLGNUW95kkoRtAJ6ATndL4umaetRa+7qRULgSNHAtJqRAW CMv85PckLGevJ9uV7oylb4cOxuegJFCS+clDSdpr2b52Z8isUDQiATWBmkBNoCaP17J9HkIsuGfH WNMLNenYzDakz6wONLwgTpfUdqT0kAAGgk+AYEPRDbjncAwtAdkjIrt15MEIdW2XQmmB7RGx3drF JW5Eg0gGwBbYfhlbBMxftM7h2V/BZYwcKr6yQdofFEOzDD9u+z71Qw4hhBB2ccZtz20AouBMWhSF 5ADikUG0bMt3IoK6sADxuCBSagseRAFABIjH7ZpDh4ZeiNLEAPG4IBLXF9y2d1sgPXsFIB4KxPVt aVPXCcNgNzcLbXkSbSmIQ/xdtw5GW55EWzIRx74V7zahg7Y8ibYkJLaIF+9WcQxteRJtaXGfy9Dl aMsL0FgZWVYsdtsdG215Gm1pOVZgWRi3Pqu2vL/A4UIZxZ5FAoAIEI8KohW7vqQEXmfXzbrHwRhX hJzvuH4ITXbIJrOo59vE3c3vQJMdssm47QmX2AJNdj7CyIQgoYMmO6Mmk4G0/FA3Dpqsyybbi1f5 hba0qc9C1J8/r7a8P+eY5iAnf/X8EnarVtfUqsuL637SLJI8iStCxbr2Wkwq1nHfpzL2IXQQus61 4ukyqmme9pV0mC334zKMAxtli8DpoTmt0qrSFfBNUeVcOBFzgSpQ7RxVAxyJYtGPPcwTAscDKGcT D2Tj61KJJmKC02sjk5hAMs+1HI6YAIpxKMVIIRhnLBi25Xm+G0MwIBiHEoxhCw4U40wVg3qhL20U HYNiHEAxVoZzJklVGY3j2MRmjHDsQQZGD83osFRwGA2Lx9KNvBhjjWC0W0ZfSzmxJE/L+txdsPWN ZVbAmHMZ2Q4cMwjKoTu926ws1aGNahYzVxDX2y3TH5SCUgNKTXBUP5ZjoxYxcDyAaGLA/OyHv0hI iBcw9F8QjEN7Wdn4rvgt7VfZ9TjJs7FZSpMdhh73KKIC8NrJGRt7WraMeWB5mGkEiIcWzlFR3ifl 0FQySRhzxvluJQNBKkj9EqmvZWS2TBdbsZ3EtRxnfFZw1/ck45CV82nx8+4GTaC0bBl4LsID9HUH 8Mqa8S+lmkU+1Z1Bv6rLpE6vT2PkCKNg7bUYrT11Q8EEtvDrvG0hG8+CuVuziUbqSTeI6W41PYAo EN0e0dwQURERTxIbcwlA9NCITgwRJdRxWGAhkxaIHgFRs/0obQVp6GBmAYweg9GxWWUJwUOCpfxg 9DSG/ZjlhK4QkEzgeADJbIb9kuFdMh6kw/64Gq0Qeqyrwnhfey0m432Cy8gPY2znCL04tIuVqF/9 u6ycVlCNi5gHl0S4MsLCx85bHFqyVkuGw+LspWS9+S3py2kkDe3SeGYD6K4TSQ+ZepCSQ0tJNoE/ chn+iOXFQSgYJoohIocWkbsim/TvirxO4ZBchEPCic0DTjGjf0Zte96KYgCljAQVliJqFyhnrwDK w0K5vkWZSyOLWrsNx6JFT6hFic8YCxla9GJalLvMjcJot2FOtOgJtSh1XMdzZYAWvRgb5Z4XuHK3 1U9o0ZNS3TiOYhru1KIIwDCY89nzNg69mOdYhAlMUHTduCdO3cuzppD9cMRmMEqN8n2beSFWUMPE tzbxlcmAYVqng9qsdrjt2l7s7xaJgLmzZ25v2jyH8UyEef1s0yWVMs+L+36eVUerZ3646XcZRkRG DDF41w27QueuEduGfsmxRMhjrHI6q7Y8lkLuZ1nJpaR0vro1JZZrcV+GGKqDWBxALFZCreph3B/l RTE8f9E4oTLyR1pO4gfUcQjSNyEjh5aR6XACGTmlJtqlOqvnBDbhkBHIyKFl5KauoSOXoiPEtnjs uBw6Ah05go5UEJJTaqRdlqVFkgccVc06b3EIybOZ6HHVL9P/PU2rGnJySk21g5xQj9ki9FCxG3Jy HDmZ5A8Qk1NqqJ0GS2QkhA/fBGJyaDHJBrcYLLkUHbFdGjtOaEFHoCNH0JE7G0pySq20yyywG1Iu JTwSKMmhlaTK4JBciozYnvCsUASQEcjIgWWkXf7Tvy2GZrueCBp5lKAkN1A9OKo68TrPxmlft9DY dFt14evyGRbqPgPYzoE1wJF7nmUHIbp64HgA/WzWqqBm8Gk1jMkqFSlFRAnHwAJk4tBuVpVdj5N6 Wqb9KjWrC0CckLoxR/nZM2r6i0JW9XD99NMgnehxpP4CYLOxlyC0Y0di8TCUtpMzNo4MSERsEsWo 6AMQD6CfTWQwKMbDTGumiUtKXemykKKoHPg8dP8+LfMVQI91Udip4nPNZrS8wAmEa9scIgIR6VpE THwuJ/AEcZCeDhwP5XNdQF/2+moGMep5yvmFTEAmupeJFddX+Yr9YTrKxunQbDiLhy5hAtPdQPXQ qE5VULMVq1Ry1+YWBatgtXtWDYAksccjhwFIAHkAIJtw4HL2Yn11UQGNSBD7loBaQC0O7Go9qoYy ujzvZ2YOl+SUORJTjCD2OMFBcq0emW014sTSJhRLdEFq56Qa4MgtFgaBqykDjsDxCzjuuiXOPGs7 HSy51CYeKXdJJEmIrGFgegBMV1MwfzNLt5QeCazQQ9B0Rt3kpYGap1W1Flb9zKD53Ozf2VEGv6ov uH//xiJCL3x9Vz9M0vdvhp+S9gzqgV+Uw7SsnhBYZePrPNUfqP7+/o2eknk3ywBqjjIDZFk+DFDd /qArTG/78eaWLF/e4LtkydLUTaFk3T2ZXcnG1xcXtfEd89Pe8IbmxJpzaf6aycCK1ggpqW2F+w53 T9DYX4+z3qwC7qV3yppNPCJbWCGxvX0nrQKBYyGwPo/ymcqvoHEul6m+SWlevizXD6nek/GpGVQP VZ3e9hsrOMsr/WKDmtWqjkObel4A44ZxX5xxJ3lS3r5i4+Y88Lgg+x7LgHEf0Xlr/7ts812oVJ3d Gq5AjblvUW/fJZVA+hFJN/FeqC8tN9QNjGb//+x93XLjRpbmq2B1MS5PFCUgE0ACnhh3AAnAVkS5 XOGqtqOjwxcQCIqYIgEuAEpW702/xkTsRuyz7KP0k2yeBPgnkVJSBC0ykeWZlkQSIPKc75w8/ym3 9cJ91l5YLVK4JELVP7oRhbbnUCW+8mjtR35GnCRpVQ3uMvaV0CUtVtTsmJ4R2F3Pk1C4OB1cJEU+ ym7nJQfFIBnH+a2gpRdaVmh5Chv9svSIbhE70ruej6TYriw9FZ86vqVnWyZ1kdV1k7gS39PZ0afp tCgfGkyLTRW2XGKjUKl0ia282XwPQFi+72PL7LpFXAHidAAxzKqveyACk8jx3ajrZkKFiNNBxDgu h/dxme6jJ6iOEGUsVaiQFRVZXqfliDkH+8DCIxS5ysZ8Q1gcxfW3HdM3qUryyCXuG4w/l0UIO/g8 hgHZaxHnGPk0op6rQprS7Wdyg3yV5LlhTzCv04FwvYYVuF4UIOX7K8ifJ+RnaZkVwywRh7wRhBGl nc9+Vm1TpysRIqjAxLZCelh/TftO71CxnaQ4MiI9xIf5gYqkGxaqRQyHmofpLkXSDcHXkW5FoTL6 pbKAGr8vLm/TejBM77JEyAE0Ld1HjsKCfNbwWr3TdMY8pFLMO3IQNXW76wZ/hYfTwcO0uMkm6WA2 LnIx9wGbXmQYBCtMSIuJtYl0e+DCxwFyiUqRyouLOr6ZCB4jiU3b90wHmKzQICca8rS+L8qvgywf lewpy3nCDxptrE2xwYC6ix3LU22h8oIkK8T0hWUT3zcdNdtDYqsiHWeMCdr/Eku2I+q5xO96aKgC xBsCQoDthoG8wPG7PvJEsf1N9UBzWBZMDU72OaUUY+r4FlUFN/JuCgAKMYfCihDRsQpFyYuF27KY z8TAoFNiBb4aBvh2YDjK7m/7NjapoaIG8u3+t2lxW8az8cNgUiS82VrEArB826OWq7S+vFq/KuZl ki5RIRY48pDnYk/pf3lhMUyrOsubqQx7YQOHduRQR6kMybAhsls4dujoVDXeyML6Xs9mGGZlmoDa i0/jkPFDRFio+wSZkWdgVYov76Y+z7M1VAuegR26vh9ihQppUXGzNygMJ3AD/cCTAFQZ8DpJCUHE svrQCNUBSYX2cOnsLk1yg4vblLOyqAv2fUL5KS/yI4R7UC6tZObVMiO71Cy38bQep2UuWB/IHHVi Evuw8o6+7OB7ic52els29UKnDxkzpaq2L0pt7/ywsVZJCXVDGWYYmlEPznJQMvNqmenN9t7m6aZx MoiHw3LXsZuPhUj3fMP1ox7UcCkhUkL0khCtZzX3lSTL850oDHowlVRJkpIkIW9zAKcIi21DtmHj wD2s1Uj5m1uEZzu9jdC0dVOV624KrnQKpyep+EVQ+CxXub4QEbeXRAbVQyZ3SnRlF92NNKzkhsPs 3IX3gPN3CbIjU6equ1YWkRZrp8CGYTN2qpEcErG9FwOrs9mmoSKPtr66uoYTBSBN+iF+SEvt0zbT coc4m47HfCo1LkMqcZZfpFfDQGZ3plh/TxAYCOnqACaF9LNFui129pxvmMjyejAj+DVI304zK4ws 33J6MKq6O5oZ2EQoMHtQy7BGM3sLzfhrJ65RX3xuUCtXV7SYTotcu/7EdtU4H8IvtvZjGg+ZWRll 6WSo/RTXyTjLbxfaV6wJn9LQd6N+ddHJDpV4Ft9kk6zO0koAApZBDc8I1PAtqewvuW2vNnBwZ4rk OHRqe6blKIArgJ8dwG0RgNs4cj3PwgrgMgG8Rx70sEpmgqNCCdUdw9Z7UGKqsC4l1idpfluPBc8r NJEeuSoyqrB+nliva7EWf9OzgtDzlFJXQD9PoOcMsoNxE40TqlBmcAuRTxXgFeDPEvBtg9g+LS22 7Xm67fRggILCvGyYl3uFT7rV9hFrhKnjUleVmyqxPs+tbMTeHCyHkoltZQgFyPHV9EKJMC/AduI6 hh6Giu1SqbqrK15UsbWWQtszl24TZIeOgRVCZEKI3BvhKpcuNnfb85BOiJq7rey9s4L50t5rwnSD PfIwhqVb1PYByQryCvLnB/nml1G2x8kahutZOibqbEaF+fPE/KiMb6fs98FoEt8KRqg9BwVYHUGp MH/umC9Go0pwOC92mJr3HCo/6DvElpKJ87F9mGc7KGZg+FTyNprzVWrspVH2h5aJhKqI4xg6jVQw UxbB3j0lcMe/q6t5lQ61UVFuUQjbQaO7ASWRoaYk922z2O+/q6thBtnk23lW8TB6VguAy/Z1jK2o B5lkBS4A1ysU1n1Wj0X2Ngv7OLJVjLr3eqhOZgvjTwQ3NKLUNpUG6m12b4fZ41i6Rw5skT6LIRRH wMV2khquiS0r6MFcjz+NpCYxDQM7PRgv86eRFNkusYmlBL9LwbdxaB3YrKxIuoFSxzYs5KhcnVR2 Ca9La2b8bJgo57iegwvr2LZGIpcqiMtrep/LIoRTEHvN8DAiZJvE6sGZjSrPJhPIN9soJvFNKniq u+f4oWWobkCF9/PEe1tGWpTCPd84iNww6NdUToV4iRBfzAY3DwP2Q6ywyAwoM9vV9BqF9/PEe1nM IYe9z1wPEhFiEE+dhKcwf56YX1aQ7gF6ww5QiKmar6pAf56gXx990RYLiFk4mDg+tlS/wNsBf39k i/DVcczQ6NlQfMkVmgDbLRqEBvGxYrtc4mxGJuOYGrYnG19twvZeJ1QpE8n4qrs2dbAaoiIbXxEK A6wbalKcbPKqW77vh4qvkvHV8kzLRESlaGXTw6GBIjtStVSy8dVxXdPXlbxKxlfDDyKTKHtYuv01 8m3LiHzFV7n4SnSCowir/VW2/TVgdhMNFV8l46tJSYBcZQ9Lp4cdP4pcfFjB5Vl0mr2GrztoRijx Qrs3HfAilLsXKSj4U8VF/NnXhGbHuI23q/LojPbw+LzZZlYWdcFwJdJwYyLie1aoRhmdswgctKjN DaVXFU9ZMhUr4jaoSyyKDytx6ku39l5SsmP/tXyX6SUgo7JFz9IWPU/tJ7feazpxmc4TMQxsQl0n 0lU68+1EsHN4925zvzPFKpg9BwGMFdYV1s8X67bYQZWOjV2HqHLBszWttvNVj4IAGYGh+CqJDtse qAKlxu04yTUb37zPco3ryxAxtLFhE90NVL2KElxZBNfuheBazD12QlNZUvILLvy3NLblFuD6YZae u/juyPEJRfojJ7KDkCqhVkItj1AnxbDPQm1R4lDsRQcJdc9KYIwoIlFkHeaW9IxmuqN7PjJ6MHq+ Q5wFVmRiV1nR8m+4PXB/F6VX577ZCjnAtucbuoPVaENZRLdvabO6jPNqVpT1YJ+SSWS6th4cWFCt YH9SsBdhu++YPtWVoSKVtpNb03GL63VazghRSIiv8slqcz8ryK8290SstpuBHLnYU3NbFdDPE+jz oWATgxMQAx0YBVVAV0B/K6BXSS2GdD2ITBdjNblWIf08kT5MRI0Xj+o0pOqkBYmQLsB2y6AustSs BmnY3uukCfPUznKB62sQChxTihyMqJJaJbXnL7XM7eyF1OIAhWEQqiynkloJpBZ86F6IrUltz7ZV T68SWxnEFgICvRBb5EQmZYayElvpxbZH9fdVMS+TdMCT8Pl8epOW5y7Mh1Tj66FBbWVQKxGXScTX T89Ucs6zcLrr2oiofLMsci54TgOxTVMPFdvfju1H4Suhhh8ENrBL8VXubVvlnKTxpy1Td51ITZeR aRPetKvPHcY7LEy51c9oEt9WknJOrEIviCzchwIWcZLbW0jOX5Pa1uhRiIDZHINiBhECaUX/pDn4 ooDtXNjVFfBOYy+Msj+0rNLmVTrcXOt2PWf6nhn5PZuifa6K7PX40J79d3U1KjYDgdvBYmBTNwjC 8oOlQ56cMZaW+98+/zE8/b//e3U1zCDcfDvPqjH7oWW1CL4oNW3L7lenmwLQNghdXd1n9VjLZnfm VpNkO4CwRZDr+Krb4O2CCa+JFshpbMLKVJmtNIFK3YF5umq8hjSBSuXyg8tf1PFkMEnz23ospxoW K/mxowATXZX8yCLcj1PGf8oSjpLWNn1sUTvEB0GzZzM7bdfwA4QOcyT7RjPfcgMc+opm4jQjOsI0 cg8rOekZzZATRK6rH+aj941mZhREvnGYbCrzREUMjrk8YZ+jNy1+OHSZT+GpI2rlF9sehQzu0jIb ZUnTSVDHt+cuygeEDUwcmR7S1QxSJeASCXgynudfB30/Z8uLSODaSrRlEW15IoLYsHwURfQgaPbM gzaQSX07PKyet3dRB8PwqI0VzcRpZll6ZIQGUEfRTJBmpq4jk6DDkm89oxlGxLAs77DpQb3DWRj6 hqOyQvvsAbpBo8hSWaF9bA1MaGQHh+0BynVQ0fpjLk84GtCbyV6YGraFDVXgJ7/Y9iiYB6vOknTQ 8xO2cURC37PVtE1ZhFtwJoxP9cCPlE5/O7YfJwTKGBIEJlZ8lYuvtqVTRE3lOknGVyPSfVeP1PYr G19dauqWqSqcZOMr45fpG0jxVS6+mshzXC9QdpNkfLVc07ED/7BGBMXX05NXz7NoFCo9/HZ8veH/ y6mzeJqjBeuWKYVZWdQF+06hCZo2MiPXUIfJ9gcjG/HreDabLMqxF7gRionamFjYocrZlmzTQNjQ jdCOFF/7tWlsUwRiiU+bWrqnSp17uoGMa8Fj6xGyQsPCyhrtMVAqsfHJoRUFhKh4b0+RMhLUKHoQ OJ4dKd+lpzipqrFYo6XveIR6arBjT3FSp5M8rQUb9wLqWLQHk/sVVLaqlKng3mO4umV4uF/ThhVQ VkARNVIIpj7SA6VRegqUWTHDYlMkkU9C88Cxcwoof25AVayOFPuOSXUV+ThrFfCY8U3UNIGAqdAE aN10It1RQQ2pQLCh6ifF7aABhFj4wsWRQQysECEtIrL8tkyrah9UWKZthtRXqJAXFWkLig00nOPK xFGNw8C11QxSmVE9bBi1j67DVhj6oa0KwKVDhQDzEdappauqU2mY3+tBByvb/+x3dRFvFnmOgaip WmPl3c/L+SQdMFiL7eSOQynSscKDtHiomM8CxYGikNC9yA90V6mIt4PE/jwX4CtxSYhdoqLZym6T wG7bjND1wnYjnh3SyFMCrARYAgFeBFP7I7+6g3TiOKpDR8mvBPK7GTbuhQDbuh/4ka2SIbII8Jaq r7gS63WxPduyjJAqLEiLhWFZiJWKmlQ3feyrCkD5N/YNgEi9wW+nQRnX6WCSTbP6PFe/LvBCat63 IwNFWIm2tGp+mpUlu7VQ80iE7cBVzSMyoUGE7TYmLnZU4E3+/V0F3s5MgIX89gAhTzcOO2pKye8p b+JZfld8TQdVdpvHkywXy3Tbpm0Rz1CVbNLhQm4NvmqQn+d5OhmkeRLPqvmED4ESm+lj6i5DvjJk 5dWIo6K8j8uhqC40PDfAJqIKEZIgQsWw2LrqMs4rJglTrhrPcq0vslRMvP2QmDToganTIcnPez8Q QQUmvq0HqtRTfqXfg8AGW28xmfNBqFUNiYrbh3PX+GJ1gRGODOwpKZZIeT825qdiCQpshAg5tpqY Jy8UJoJQMCk2Ld1TPbryQeHsd7VltZUglvVQd3TdxQrL0qo1BoVUMGive5RYah6T1FgQnMREncC0 IpWYlwgLAmxHiBp6aKvtQBa29zpsEQ/v4jxJh4O8Gp29ZSdUjoEtw/M9EFQlvnKLb49STQlbAVvo oEqTecmWO4AXymJy7iJ9QNLJjDDWQ3V+gxJ0mQQ9rus4+TqYZnV22xy7piSdmNRyLaoq6d5O0o/i aVm+HvlGoDpeZdHgK6cKlNY2e0VokoGJiIGQKqiWChYbe3gmeOaf7UaGbmMqPxQ6pLhUSJmXkwHj RZ2WorWmVui4KLB6ULCgMAOY2WFYsn/XCxDF7MfgLivnYlrHjNzA8S11OJO8auWuyGaDu4LplT21 C9uRiOOFKrwomy/iuI7vmyrxK58vsjOkIlT+aFumFVkq9iDvXsCtg+GwEDMOjCCA4UxYAUIeQIjs D6EdBIRzsxdehSy7/y7vYIPlfyJq9wVns4Mt/ReRLQvbQRghBdUT0VOdubNrZyrVaSJ2cjkyIuI6 1FNYkBQLp6zHhJOe6R9JOuOWOUNNWp2Jbj4go4mRF2DjwLh2+85pi+VrBHIHzVzTdh01LE8aw7vf dZkLp/Msl7m+EqGiTNO2baJHSnYlkd3HUZSzRzEM506+pvUAWrvFskSE2dV6qBqjZcX0g3bzUKfi gCCuboU+UqFieQExYjv5HoDAhq9HfRjo2yHdZcCLCDZ0hM3wwKbjs/AAj4CN7SQ1LMezTP2whgBF 0s3sJ7VCyz2sQleRdDMiq9u2QwxF0s5IqgehQYh/WL2WIulmltv3CIkOM10USTe3J9fxHE8Jfock pY4b+uFhnQI9C6MThKjnBD3ICKoweg8Oap71I4CObcv2iaNGqssitU9jS/x0iXpepoMqFSvuwIT6 2KOqA15eUDD9NlhVRywhIja/ynM9bPmHGZwKHn/WgzX8F+Cr5eoe83YPyzP0zOrVETZ801Oewh40 M0kY6IZ+WKtTz2hme2aAfUdtycq7ksC72mi+Psulrq9GxM9CUWQYVI0kkdikZlI8GKajLE+Hgt3g IQ0cV9X5yAuJOVPr+2GC4hBjrwcTAjok/blDRgAXumvproMPM5mVrlDm3zGXJ2z+rYZk9ML2Izik CAcqxi7vRp/Ek8kgE9zjLUQ8J1QTQSS3++Jb9pfg6AfHJpYqMHwVYHYImWfiADu0V0Jmb6EZf+3E hezF5wYJurq6/vQ5TbSs0sp0Wtwxj+omTWImalpWr7+a5Vo93rQstmMEEYM4vt2D5rEjiN15Qujj 52gQxQkMZbvO67QcMQNcC+I61n4qhunmLOwGNPBK0vxoXqtvJk+hZNCQMCR0buLNmmdllEhHRcl8 BcQniX0Xj9jDN3+tw2cbvfi/5lNPzPP7cVanL3P34NsCVQdd/dtg0kk9qIDOIZHtmo532L60Zat/ K6BsX6VuGVZErc6zVUocuvwnAFdMSBDo3bceSsTIX9K7LL1Py++0T2zB2m/FnC1hs3hwhyrQPaIH euexXuloyyy7ii33O+3HuNI+ZrUIcS3s+cGhMZfT17NG6NlugBWEdkLoWhvHdymDEJfSIXMNmKsw LJL5FLxzBihGy1orRuAzaItTBbRhVqZJXUBH7jeVphX5bfF8prqLZ90x9ycdMR7UWl20i9DiyUS7 Dr9Ey2VUzBMCfs3KIkmrCjyjB74e9rHPP1xq2pdxys9OmDafZtoq1e7ZQus0Zxdl07jMJg8a+xp+ 1U2ap6PsKVHiMo2XlKnYbYMFGdNhBi9pcT7UfvtBS8Zxxv6qxsV8wijOLqvhTuuP8F/zqtYm2VeY QfegFezdUmNmf80jacuPXQpIuuGEHrFR501apyXpxKLY063OE0ASSfoXwOp8ysD8sIBuKzB77Bs2 DX3kHthaf/JoMkzX8WnUeXRMMjRlVTVPK4Ykpr+0nzKm1tKJ9pn9KEdaGWegaMv0Ni6HsOgvP39u tpqblGnVeDgsuSq+ZMo3zr9qD8X8Ums3o7zQ2DdO2zsztcp0bJkV86r9xveNeqyK6ZrG5J9ld9Gm MVPuMdOcWc72hKTIGV/Skg+g5io81qZZzn7OZ0O2fYmoUBO5NjXxYZUoJw96RCPkUNp5vY1EoAcl +Z0AYIiuR77TfUZTMv3BTKu7OHnYIGj3X7XDbGRmG1cJdTz5yiyzG+aXMtVQl/EwHRSjEVNT9T1o qvYhue22MPUuNZ99+poZmExX1do8ZwqmquET96CFVjdhtvQ0jfMatFy6MquHBVObcGWVplOwXKeg r8DSW17KlGHdqLmmPqpilt8svskmWZ0tdG4S5+wxIZs2fN9oQ7avMxIkY6bigCqtwdusoU7Z10BJ aTxhz39kon8/5ybtaj1VY3O0+pyZvBNmUTd2LzxmXbDv0ybpHdtB3nG7l70BfsYQlqd9+fBZY09z /YlxAH65Hz8A/b6FLWNY5P/653/DnTK2jwzTKimzGxCTOk3GecYM5k3SMZ6s85k91tKCv2tJlTAO f0rLcTwDSnMTn2MlaQx2hpgWMPDmMKuS4i4tOUSuYGOp4lvGimNTeLS5LEAfp289LsCTWH+P7bDD SeMBNUDIcqY/ps2e2LohMfN2prPWj5pxj2qcZu1qrhgEYRevrhiHYLdtIQ/bK/Nt2G1aSC4ErOVr Izrv0svby/fstv9zzryjTWYuxOzzD3wFHz9H2l++FVCxyMbID6K3Nvg3eGhGjuEHhynXA24INPvP f7ut/0P7+yfvrx9+135LG3uqsXQAHqn2ifPkGWwe+AAPGqSolhZXBSGEUQFVTjt2zjZfxH60t7iZ fK4fJuniW+LR6p/RPAn7yG/s7fv/vHAJ5oytH2aMVcM/4uUH/KIEhPK/itniZhXj7SSFK6p/sNXx X5qdgTOZrx2AAf+aW03S0XLB+199U9R1MX399eU6vfe/POOc+PHQG/z62hsAvzdZcTP5ED+A5lzw bJT9kQ6XXPtQFF8XX6abOr/rKGOK5pfivv0SiIKs/uJv0mIyn+Zr72+8kBc/+ky1LP/6tfmLY6l5 wCXwfiizIfx6y36ye2grjC0/u/hIDTLyVMWsh1hNNzIcY1cdE79J0vxv+wDJc6iGr28/+CjIib3Q tp2u201biT5S5rpzvXl6zwm67ucPwTatx3nZ/Gg++CKYdJ2QwNqZF+0MTMS2vcg2uz4D9k2YdEqA WQfFFwix/837+IM2LYZzttNVszTJRtmiNmc9AN84BsJuyWdwAtYj9vxrhlDAMYUCjme/iqMZrG2O 7Qd2W7beOrtrDTlmNvIbtXdOJlm6dGzgdXBDtOwZy+LtKN4u9TEx1vynZXCfGaAV2MDZlHklrR27 9A/apeeMB0X59fJFyW62jKdSZugmDciBxuvTgNI2C24/v2IhKq8xztovUcaZMs7OwDjTrcC1wl2F G/wmXeyndqSzb+FXKOPsxIyzj+Fv3RhnFmMQRvToxhk2TMos/VCB6cQMtyZKuBFyA3sCbInWJlsY TRuByMcW2E/e35ZBsudtMGagFDMIsfDgKftt8tBYYm3scaRV82S8+roH7ae/fv4Cxk4T24NgUMGf CFoxmuAhu8sUSh6gbhxCX+wtHkVdBPLeohvtZabsiO6vBzjLdNKEv5oVr4hyqf2VL5GXWGxhEI9o LhiyQX9Oza2xzhve6A5B0sWdJ2n8lTOl1OZ5PK/HRZn9gz0OxI0nRQVTpdovX/+K1xuXOMSmaxLc sZaQKPm0HTMgPp8Xlv627NAkfgBZ4ai4AN+Byc6F9vnzj8+1o3bxvN+zayFoDjpl5etdfzNtckiA IEiIZOuJpfhB+/zjz3/9EADuOFz/ol1r9zzUX6ZQ3JRqF3naiAXTCzU8BFc47P7sVdAI0yKHuiVm AsKHLhYq5NFH368+x6+K50N28+HFNgQ/iV0hFAWR0/lQ1D2xqra+znMODcaggG7Dg06KjeRAkxkA VjG/o2TvnswWI7p4Xn2yHer7OM+4+U7lPCvn+QycZ9+jfmDuGtbEb9JJZsNwI9sNdvlVWx9T+Ttn 5jzrvuno0c7m7u7AREObIr/rmqw39X9OATBCdjXb5FMoaAcLGrydj+EX+vPHCJzXtvKnsa1Pefvf PqsFjOKTeeoXecHTO9zJYT/GbEHaO+a/fKv9/ZeImsgyf4dfbGSi36FuI25NfEg/5RWvCeJ8ErLs ferg6MBGTiVu3YjbL+FnJW9vJm8/fvnySYMKQe3LUo4+cNYsww3vmHv/7fsmtJBV7/kln7lUEoR1 kMrzWTN1TNN+Xn9s4m67AjEojiz3wIm+O3Okb6tAtq/YtCw31CNVe3E8xH6/HowfpXymfxvR2wzF Pym6ftCgAjaJeR8fbyNhuGb/nsTp2yJgiOVmk/Q2HbaR+lWNbJaP05J9CbtsEVyOE16nzf5B6QH7 ortsOI8n1TebMeG2UZF3xMxvauig4SE3ePOMlGJeDBdUh6UkRRMTYqRaRNGX5BTptkCm4SJD7zot ls+nzS/Z5A4c5sZ1b5bO3rseLl6z2lUvL1AStyZxq2GGq5HWg5VYfcfTVlD23W5+WnwzSUEMmk9r vxbXn65+LT58CXnva9XWKS1C181MsdGDlqRlHWf5mvQs3gOpZdInYrUSbFgBNrCC0ilCiY+NSxYd BysQZWnVwGhNW7PPNgZIDer++tOy45ABKJ7NGvDw5KcILhAxI+K5u2p5FS7eFBe3aXFbxrPxwxZI XJ/ivvj9Eo5t1WRbCbCGX8gvLnUbL64sv6m0xUp5V9OkEFdsKDICj6DDAPzUms6g5Y1nEtjN0Fsm 1R5jczsZjMgzLEvvusdVSeMK29ttvmu+tedF04YE/eLbWtGgXTIeLszhDAyBhWhM4zwHz/HLeF6B owxd4syKvOITRaFY45ZZi/nCkOalHmDPQ7HGyWiAvYIcz2fa36+n2k9Rxe0w/Rlj2vKY9bqYZr7J M9Ux3VTG2DYxA93r2rqTqDLm+89t3Qu+NLSqZiQX6ndHHjFDtDMhqAi7Sxy05eyh9bozqAPkRRRN B26r0xImyWUx0djVdZklvFAPTINZMcmSh//QrnOteYw2vNEIVZk2EzKGbQSimf66ijy2DH+vXYPG zL82ehOeoO0LLp/RLp1ArmkFv4E2l1XFEqgIXrZ0qXngBuYxRAMmD++hTJH3ZUOF08VaOOcxEZt7 XWh/EcCvbRgeRtZb41dlpF/7nMDhx2VIN+kkYzBqit8grjCDUtkyg32k6fYBi5uthLH7ckvdUlY/ Lk+q5re3TPh2mtz7FPyYzdJUwY8q+Gn/OuGCH9P1XSswd5Vp8pt0UaNhWrpHHa5xVcGPrAU/Rhia jhNGxwaTTTD1TdJ1bbHy9Veg2G7V+jHEtKB4nhma8Q100bJtN0+y2QRmt21PtMXrwa+mPZfHCdIc 8gGQ5mqSBDCd5jarIDPwDlzgcZon7FuGd2lZZ1X6Ldu2q0XU92kzR2MTXyO4FS2msyLn02zaYv5F fm3jumfMX1Ui0QFa9vN0TnFd33P3i8Oa/R9YBNB/lRSzNTtzgfdthuOmCm325qfqzNRtK4qo5HNc kWkgYi+2DFlXSbBpEzfsuv//1FZp+BGxAnTQKtUpB0f+t0UhPWak5Rok0p2us58yMXJ1ysEvxZRZ E0GcP0yyewHi6jZB2NEPiz3trHM7sojbdkB9ZmZ3jIwzYPiP2f8QYC72Q8+i7i5f57SZi5yIfTk5 Uj3iKTP3ms+1nHPLkxexsr80L9DaeenMtRkYNlh5wzIebcDgCA9TD7K0Hg0ylFejtcKpAeTCBtxT 4icYxPnXpjARvC4YT8TnyqblbdOfDuzTRmUxbTvN2UpgoDafWjuIJ8wR2sjENh7Y6hwIPlyUXzfJ plkOM+Th7ARtlKbDmziBtAEfSDuFuCufHgAfX15/H6/On1s+RJ1O0oRddqn99LC6UQanNTCvRiTv ZFBmYhh80zgaQg8DohiL//3feR7mRSSJ3Q34Z1wKkI8QHUVWeFTt/SeQb2duzWvmcmRMlJkjCTmm pJhCARjgsypmzDGroTiwbVxvx3ppQyYbzA9tx9YK0NEknoGdA4trTpiO/ChARp1BMRp8GTOTjdHm uvjy7YJS7zU4uDEvpqBR7tJxlvBAD6OpAPH0MEKRER5pqM3bE6+axmU9GxcQ5GomqvxaMKI1DSHX n7R3UOD6LQfg2htQ7vqOV71+KzIN2XAxCXHnrtbJEHFZJz+8i/MkXY081KCjqa1ZyHLtriMVGjfH TVRJmsOv7+EACoC6CCt05Puk8yPhToYVMBYRqvVhqji0O2iTgge82Os3Ezi0o53A3pQ1QguTY7jo d6GeH+IYQUh8OWH8Bbo++MR/Xp/GCx6q5l7MCspvea3bqIynoCMWYz5b8rUGWAahbaaMmQhcQu2I CE1RaIbMkD9STu2NabogD1SLzXlxd2Olcijy08ta9cBIyszbMmZ2ADPredfP2pa/yEpwI1lExu3A oLp3pDLSN6YpQBCmk/HT3y7aLf6C+xg8wp1/A90XEKhvjkWLF/SGGiJ+YsV9nLfztuKKGfTtuQ/D MhsJUVcngUP1qOvTUf9s6n4PTk8G0gq7Uzy5FBFWw2b+zIGB4bfNWZoE0ba45bVEPr3nBMY9ri9K Jgz/o+YgwYXGgaTjpJgPBzc8B7q0UlrzgZffLdyMTX3EXfdmbwVl9dgXuc/qMZx0mCUwdZnrLnDF ea/U029ZnbkgAjocOIZH3MMS5TuDVKcLugU19inbspovUWVbqmyr/euEy7ZsR4/CwD36nCaMdOJa Udfxj/9KFoxIwOgtW0D+iWpFFXO9BDFmBhOL7DxhuTOImbbhoyjo+jDwU2HS00KeU0DTGmK2uwqd BFgPCC92EFwTDi1tiMuJyfj2OrC7R1GszfN9TwRY37/XTvK5tgP+kaX92mDYGYKJN+7xxTajxQ9z UHa6QWszkJ51pLb5NZu7V2MscV2/aRSxDSIyaNcVZmfj7TyihqU7hukdNday8fAnk+Nvc65NslTT wiE01sLZqFuQ9SRChXTqh/pR49SnSbWfPwQC9MFBiAwjONKRdCdMn51ZE+i3fEbpd8IbriDpeu36 YvfhVtponnO4t6XwH1v9u+gEFWArMgNk2c6RRqieI1ujJU3fwWEfzNIES/IuziaLKUaLTXN9dn/b sisiSKYZ6pj2T9HspHgKRUpJyquKZvNyVlTMGBDKg0UR1pHVdf1816Tc/vCG4wVecGDx/1luOB/D 3wSYa7mR7uKwf2bMsxvO0TcEEsDBs07/yn/FNwRoLWN7wAYxjyAmB+wxtu6Ynn/cAoGz3WOEthaL esgILHocCqqs7WufExi3kbWFgXCLAhptHEOlcZpr89mwCVEmSVHy7Cuz29rzaPjxLhq7M7PmHivI 7dZfmc4mMcQReUSkOQLuY1GDyuVTZmG6VVnkDzxZDH2o0B3Im2AXB69dikAObHEn3BV3F4OcNFEM YiGbBME5z4ruMqaj+zYidm8jXPvk83lelX9E5fNVPn/5Jj3JfD6y/NDxdnbb8Zt0kmwlBrII7bq8 UeXzj/KcrZfcTT4fuYS9HOxyBjqDmOEGka3jqGOInQqTTj6fD4Me940PMFN24c7ucjc3XKcXAdno vy3gsDxq2NZhjafSmHO6FSI/8HpbnvnIuLVdREl0JMVx8/ThTztasZnF3CJxj+mHHD2y7QPHDTyl 3/ogcMM5q3m3W9Qg+PFsRekszWEE+2KiapzUcKzE+mG2fE7RFNqY86yCxh7QlPfZZKJl09mkSVOw S6fblOETL9agHrFp/7Km31O2qzAbfqOkvumcaEgPfU8wjBjI+Rc+MhcYBEPDhlBh1mxT2k0KsRs+ QHzRPhVrF7u5ddHM0NYumr2r+RO++gLCMovdL4Zm+4uGsdfasID2l6a4XoinEfaoiY/U3apCg52F Bn9Ll3FAgMAySlgXG6gs00kzSHmczZYoqzb7Qs9h7QuZ2NB6Lfw3kA8C2M7eW3WViMxm0KlDmOGp ukoEolCk+ZL1KJR5QBQK0sQLU2H/KJTI1c9FoUSufyYKJXL5s1Eo8RvsiEK9fANA/+ujUHbHUSgw GF4VhTJfFYUyQieinv2qYcBbUV2NwXbktEkmaVyukRwKvxtyTEBk4K+GpMlPcXNvLgP30HbPifLo 1i3Kd76/xPHOTyyQuuMDQLzmWfhvzYIfRdMsxyEIdV01dZ8Ni3va2jQLaDXPPPOHa8Th7+TZ5Knc L1/cFOflyxtSuvpwu+ttvg5qr/3at4/zSWuy/Pwh6OjU9cgNXGPn6apKiB9bM4FlRgR3PQvtdIVY ieuzz1n9Y/EqavlV/YPC92+8dvoxiE3N0ZgCT9GPvNBEXn/z6/vY8k6r3JQtr2z5k7fl9cDX/cDf FU3nN1FmwBq9QtMPDNJ19kHZ8j205TvL2Vuu75DQVEIsKMSMgH5ElS3/p4vBSVVF7Cuv2/Ovwrb7 hqSf2HJ3dHxDEm7hQDRToVsfZFeCoJk+XTw6Qef1bodhBcghwWF1aNJUPpiOj6woPCyVKA01SGgQ PYj617Wyu3GdJ8ZXmcub9DbLc0iJ806Eiy+LwQrZ4ixuLU/TYTrULi8vL/hgUmheSOE8bTiRCY7Q bufGtyPdeboczuZgt2Dfdq0tD5dthrvzKZtb676ebMEWiXwfnVdf6/k0uJzyZrN1EQ1is9UhAU97 cV46fPVRxErHXmR4Ryoh7Axg2x/e0C3b9BZmfo912yemai7Wm6cYQv7mffyBnwPfnlFRzOsJP0EQ tNh7XqC6Xkp0DxdeLD50oU3TOK9EzoS2XBs5budnmivXuQN18UTn3TNlof3rn/97wed//fP/LGuZ 24D4VvCwS1YToeEijXleY77xgUH7U5HzzZWpocdXLopl2McGUXOOFZ9jNmIOwuMP89Ol40lVLAZ9 w4Wfi1F9zxyFQdA2/7XthXCnd5+Dj9+2o4+uP1Vpoo2Yga6tDSRjWrH55rNT9dtIFQCpfmroyidP Z+0MObYNzEs4sJutFw58X/ZQCnBnjTOP327KmJpCr+UA3ta5aQ8HXR1G+piZAroDm9gNbHSkM73k ype4zZeofInKl7R/nXC+BLl2EHo7O+P4TVSodZ1egRvhsGs/T+VLemj0dVb7ZATYt3UHKyEWE2Li BGbkdD7tUOVLpBZXUbe9zR1MW2P+7PyZLe7F3x8tYswErmSr/aqV32VMdMrroQHa57s4T8agJcp0 NLgeBJdrB33C/y9okt+uHfbJRej0ySK6nMcafUmr81jm720P2VMPs9zm4Z8duvcISYigng/4eAb1 1TAfZDN29wHcfbC6+3mifudyzh31ly8aYvBjW05XdyOECVWlpAKhkVXkQ4VGVGhk+SY9ydCIbVLs OaYKjSyI91JohFrI8LAKjZy44j6H/bizUlIbey41AqqEWEyITcPwAxN3nSRWoZGXxEDCUtIXAiYb 8n1ii9xeQLrKrJ/ys4szaGdtwM7Ev/Z30TDI2x8JtT9/9ymB2EqJEb9oAJN++EWD4fQQzxKRMPLs w8YnSVMfa1HL0Slft6LGBXZCbDj6UQ9s33j4U62ou865yAJdbst4Nn5G63Tx9bsU6ZPSZBiCXiTz 5liXZr4kTw1kME9y2nQfNIqkKfPL+MmTUCHER67HFdRE8VI/po2aSV4Xy96MxRn2cFUzJGwOYUyu d5qKrPhm8sArmutxMYc1xeyNDIJ18zKeTB7gWLpUmzPFzY/4XhUHwRnvMWjAbXrrMQqJbwQhDo5U 16lcqM5KCuF091WlHhQJPoISlAoy+BTwHsxFhb9fGo+1T+Tvpnl0FflTkb/2rxOO/Jmm4fvIUQOh FsR7KWhg+p4T2XgHvbaSW0X+1LZ11KIo5KHQwt6uE+aUED+25Sw3QJHVtUehIn8yi+t2d2gf72cR c0mKkl0/K3LeI/ck2PJLRG0d6b/z34hrsd+4dzTklSjcd9qc/dqcRVXxcbfsKbjTo03jPG5t4Mcf btq8n/EeTzUm+ciQP+UVbFX42/zMTW3fmG9PNZYZmhSxLzxIY/Wk8iJpNyTlfyn/6+T9LxJ6oWlE uwbM8pso020tNO4ZjmdjuoNeW8mt/C9l0B218oJYYUh9Z1dsWAnxk/kvyMJh5+cAKf9LZnFV/tdb +1+wyFN+anHUbD1ta1PvN4bcU91lWzryqaMqFZrcPFsGiTBW1ODGqWV6rmV2PZyypcbN04c/5dk/ oPlu5pNJCscyTbKKZ9+rOi7rZe1AM6PsGZXSxbNt1wB/8Me5gPkz36xVNq2qA75pNga2J8wn6fKQ 9wwqFdZ3nKaioSlngNfXjjTbOMzsIh7exTkcLZ+3J9Evo1nLozrb0ofbNE/LLHnug4zEvy2+Eog4 zEYj9mczOa75wmaTYXfQ0j9mkxie/i/auy+Lq45M9O/jvACiaM2MOUbslnA3KXSewTpDWOOvD/nX drwOfIwtDohcA53h01nONs14ot2wLbWov92itB+LIHLN0HW9Xf70gSKoDLguyzQW8+IaBC8FB0Cy wHCqLaSBt2ouZIibWwwjazrnN37qYMnENRG8yLpkl4ECaMpFmsmvy0KQczN0vhc62M0ktqsH5q5M oZh49CSOvAo4qjiyiiMv36SnWcfjUGJTXZUALIj3UgefiSLboP1p/nnzOHIUrSS9B4EpKO556xjP fiSHR333CzOUmnuM2POtTfXdZnxz6Wp+NNe/qKZ02/XCQB1dJ6ymLMcxA+Mwe01Fyg8Q9Pvv5ovX WoPkjLTUsw8P4rx0oAR8B+LqyDKc8CAsPvUdFBa7xeJ25tlOFHl+jw6/UhGbA58T9AFERy62hkcv xMKjy4QchHKawApEf0dpzHuLRUIWGNtY9w+cx7wXcvP5tPlMNrnb8t710uJYeHXLC/qD+XOx5vc3 gfnAt4zvivxMpGz6NIO7OzR/KbSR+jq2w8OKORWilRY/xD99BPP0DtT1Y5xvgPkchLcN/L/xc3fE okPVjIMJMs1drX2aUjNKzfx/9r51uXHkWPNVEPqx7j4rqXG/tGPHgatHGx5PR/f4zDoc8wMESxK2 SYAGQGnYv/waG3HOy/lJtjILIEESkKAGKBFkOcLTIgjikpWZlZcvM19bzUQAusJPXNWckqrRDVN2 Bx8Jx1XNK/L026ma3jZ6u1Z56xFLL3+152FCnQTSUaXA9l9xTPL3CyTffHs+Z9fNN2SxXr7zntDO K3uqqloWJJe4oHNBZ4JOj6ezJX7MCxjBd7fiUn9SUh+4uh84Q6NcudSPWeqnbGn5Nn+CAm94vu7o rbMLuwn8i3Lvb0Ti/Ft1VC4fJP/mwv23jnUX7mZySnoQKLb5ihmYEyHn28rfUG8D4nZ1kP91EGXN NDTRllwuysOIsidJdmC8ogN0dJvPeUDUtOsuIDXVNlXJVDlI7c1NoafFVjVtTRXlV9yB+Tod89be bdN2mwP9ULiHXcGLVMgXJIpv9+MdIbW8C/yjKLJ4sixIfrnGoV1CpeAH+mT01ktEq4XQRpzABSfQ MGJO+ZZeH6uW11f6mqSPSafrxYmAZUlwvSkpSDaPEyI83hOskd08Wln/mBAyxXYS9N7kd+owQAk1 vVqypQDHsGBpIeRpSc5EiOcLkoVF/ECEGxnmcCzSWRythAwwhBE9ofa+Vb/7GprwEsuZv8bJFFc0 ep4ZIvoeOXBDVSC9D3HBqtB8Gd1D6WfpcuKAi60Twb+uikrxF/XK0ubT8dvRLVhVKEvJH0C1G2ue 30oXBvwsu6rM5w1hhy363nx6UGsd+C/hgL514Bf309bnv3nbn7+4v2wf8NydX9y4P20fgKWCg1t3 ou9HDQvKQewF10s5ugVrW5J12fOTCxImRXz1EGfLfIdk9LDgeemXbdLSfXWZg8R9yhAwBn9+WeUF mQvvbj59eb919o+/7CwVLMR/pjefPvxn+pdf/O3F2AxQgjPKU+EsEOc5ye7YzIcUlCWaidXPR7dg EPvZw0lPSBRSpbX78nAI2PMLyZHsN9gPAcn+KUuLlD6K8O7Lzaf32KtIkXXpN6Z7KHVmM9hWlgvk dLgEM6OVawlPmafQCKLWIymcQKUsk+RKseJzEsF37UpVY4+k6wZDHI50mPMjWrolyv0waWdSf166 R7z+nNefl5+Ouf7cF03HMvgE2Yp4zxV2OrKmUE3YQq9Gco/a/+V9TA9mUQzWx1SzFEuSxLbedlyI d0vTAldUJadfL0AexOohBrw6e70BezZlsNYZMN14kQe+D82LLYvnBzCQRuGKhO/73Z4T9MExVGfr sujptnqM+FOzpBcvMjszINwW2x7ZSzV31m6uvm2HjB3zGzaqqusOqkQxHFkyxH6pe65KuCo5a1US tdbCnZk6UXXZUd3gFW1qrk6GXmuuTt5anayLCcb36Get/URdUQLRaGu0KXDtx7Uf137PqZAuhZRn plgkyXI1VX/FnAdXLEOvNVcsb61YnqnVPLfIj6Z5nm7x3NXRaIbmddKdwNdMXXk93f9GhOJlk23i /HwJ5Pf8r4vdYViSE9j9AFO8bHIDFzAkQzZesYPE0ek8XjZZky5VFV3XecUdeJzs0Ea9wDbc15xn fbzW7bELTl1G3OMtJxydnf8q9Y99ygkPXE04tgVrdqwbSsSO+cWanevWasUnizZPYwGv62WbJ7R0 ZVUjcibKf4qyT2CwMKXBV6pA7kkIKgYCQrNwRf+ShXfxNbm+FHxQMwmpievq/WV5klKd9HxtKhaR VueMj7ZPVcO+Z18wkqgVSV5cjAvX2CnI3Z4bN2K5qpcLj2/x22vVn5Ksaj+v7Xi3WTp/sib8UiDX d9eMTotwNUvHSKxLIcrSPBduYVp5XlByUOZeLKh5wYplUVDoO2bh7W0c4RkwwDqib1/FbifkPnyI U3oWKSIYNF1H3jKiM+BtfWlYjTMYJhFkm9IMVqjaiSn/FfTHV1VU+AoOgG+A+1pRUDV4NadrcIfP WH17vUV/MM/hJXcCe6Zli4Z+jDOWqmrEo+snORrXp5nHYVmAE9cphoqZYrCTQB0wbUDAhKe8eNT2 UeMrtjRiXOulcMocOWY+XG6aVDzX5YBuhJ//chXEM+rIxMndpWDTc7CJwl6PA3ZSFxE0TMmBnkhc BM9GBG1U2cJGZbfJYHkGejClot/u4IGdOt7Bf6sNIM3ed+E6TbF0JziDjM5ok+LNrAOlP1t2wzrc QZX6tAotpcX9+IwviBKtFptAxK7plCaz1aZy6RaiPzuUqNuilW+33chmS39vfbNW5VtH9zT6ntcD v2NiWPOqjpn43V2f7+rNM7ZXr9Cir92b53ha8xie6iue5fbaCkbcmmcHkuJZvmEpQ/cRHSk1RMXy RdUr20UMZiaU1JjsP7yM/+u3dfe+LAjSf/xHTTwF4eYPcwHcerprUNtmOaG6jjryU/x8vy20KI7C Ozdc3Pz0nrWbw+MqvQA124RpWISlzG6+pCrgWqD7WpTFkzI8QLe6BcmqvFPjXeDB2MmgDmB5QD3U 1coV/a+CZ+Dz/KmDaaiLskuXfWiHhNt/PZ8TFu5//Y+74o/CPz7Zf/vLbwLYgvuMBzsY8NHoNmLK +Fiqvmbfiu2rDfla+BUM3cUspGd5JI/vYMeNkyhezMokD4jBJ7Yr/sSosSUOeIVwCnYyXBivlZRb LdtnJ+QuThIQ6/LmIBV3WbhAn4uVyneqj5ccR3Mtr19k7Uwa3t2ym/CGd7zhXfnpiBveybal+o7Z BqDDi/BeWTV6maJn2l4/94I3vOPmD91xf/6LN0zDO9EIbN0UFS7EHYXYl1wpcF5xrCwv1Bi/uNrg dFbhtZuap8Js89JFxqQHxL/m4Sz+xk4oje+q+inEK1TwP0iPhNMH8I1zAg3rMU5MknACbgBznUlE vytBnFXunl70sXYJiJxPU4ynkWyOTvY6J1pG1gg8c0QYarACIAKKc0l/cjUJER8Y5l8haJwIyySc T+K7ZbrMZyshI7ejc8EQqHkJEc5LiDje0pfJAABBPas5dZTuGFqEUny9rhCd+OlvX36BHESt3Vgo PJBkmmZX+NuCRPcJfbK71VWcTMkCMhVJAZdM6B3fMdhIRu7CbEpXcB3uqLAnETh385T6ZOyizNWD 6MtDPF2GM4iUTJdRkTdmvrY3B2btNSg411B9UeLuWhd3rVTR3F/j/trx+2uq5PmS6nFTryLeM6ae ZLu64qivWNPC/bVTNQAHa1AOXfNFx2vzP7gQ7+Z0A09yNPUVcZ3cXxuVuL4AOIneVV4mUbY6B7Pi qy4+3rWAvuDNT0eNoG9OS/X0Tl/fOR0biZvZrpuL3dVjPVaHdVsemrZHZu/uq3jVUFXPNdrs2m4q /nRgO4Zri7rWD6hyMtTQXF0KFN/tRY1TgO18Av3wFBZ2kJvWUQJ5EVLNT0UfgbgXNt0d0rsUYKUp OvFQt0z/qnC7WFtEVRDA/6J70C+oHYrNdouAwly4vr6+gNoqupkgzicnhG4L9GpQSD3JoKiBqrE8 ShcEI6KkhjOCu1AbFyurZ6QQqOe/UZaAkSXRdYMe2pMx1TNMQxzaqOSmW8/nhIXbAwZV68usC2Cv m0/UgkAM2gRM6YzM0wfgvCydn4bFwICyG2u0LgClwQqsvkOaGA2uqyCMQGpvIAJwSy9c//UuzboI i+roqiEafENimEJDcRTZHzqoNL4NyZ/GRZrF4exayD8APtxUZOs34VLYfKB/V3XYjN9KrFqRhQLy vFB5w3AcbWAwOZnhipI/n4ddWFTXJC9Q9KFHEXJ93l/B7evzrfUfm77+4XmG/T4la4m+Z+tDd68a q9VveZ4VtCLTesrzaJSsdF3XslTNXi3S7VKyD9ufOjCarCuUzwYfUcNV5QC6ZU9V/vtf/0WX/N// +u/v0imyLpmq6MKicp1yITqG5eliPw17ajol/wA+xwK+fSCz1QfKXhDMrT69m9P3hpoEYTGj23W+ 3QmnRXe7kmq7sssVzAgUTLFapFAMArElIuysNpSJgYlOtQ6CKjrpHFHyRaMVo3BmOkdxJD/oG9k+ CZ0j2MIteSzTCznYzv9cxhmmfFiHwrIXUzibrYTHLC4KkpSdvoTHNJmyMvf4VoiLrd6KOcssrVN4 EWUQSmZ6w4A+Pvk9nFN+7lLlJPuuYemWfX5LdXWFtAIa2lW2D6vGa2t0CdBWDNleTMn0qc5xgzxS FBZkeik8ktnsCnuKXkB1fhnOCpMVfRLKDZOyojwjdzHONmFBsPK8LgWiiuVbeiAdyM/ge9WgexWr KV6so8Dr1DQyK2XN5WIKfMPyFZ/rTLGJhb6s9FF1NEO1EbhylrvZi7C0iH/EcziWlmNp11+6x1n7 aDi2bLRaZngRDsOrRdh9x3c1v58m5FhavrN/HLD2UZZdiBNbXIi7CbHsmKYiDR4C41jakxbXLafw I3XkwQPc89BqDloFSqyGDqwNdfTnmbeGaKYaxqHsDUTC6B5ADFUpZB7OoTNM45UnK+gOSC9UgnfT +SJNMJ6wM6IhLLZBkxBuiJYZ9IKerYTwIYxngGmFn9Hrza+f1U3M2NiXL9WXA1+z3V7ydS7uQhkQ 4O4CdxeO311QXVuy1aDN/MWLcEujVnrnm7armkMHvrm7cIb2x2Cld5LlOZZh8tK7jkJsiKpkyE4/ c4a7C2ftLmwJ7pE9/ktGLmylEzYOyT9urrzrmBS3V7EMU2Tqqair9WlX0/lvx0yIpnVsocMgvt3r uXZjo/oPg/mikqlJjmv0C9ieDBBDkh3dl3oOhx17dt/HQZKgwJoz+/M0QWBYcndRLz7BXu7Ffchg FpuToKRkST3ILol20Q28wPR4ov2kEu0vS6aLuhK4qjX0+PPTjI4p7C48OsajY+WnI46OaaKlGYHH o2MV8Z5xrDVDV13L6meb8egY372HTKZLmqX6mt22PXMh3nMpNE2xA95I+MBikH+rjsolHfJvLtx/ 69hYhHqot3lsi9CsnbyPgvd0nn7TPagK5kTrThrYdYh5euj1waQwnDRaHxq3VTq00/9nDKrzF6xE KPuAweS3gr52mE3jb+DblN4vBpzYMCMhpu+w1SqLVShkZJFmBX5LLxbBMDXqHVPqUCHP98jE7koX AK5PV2dsZGsJDGLt0BXrEsV4DIdwN40RbHYPddtVbUvsN6xp3z3k+vS7zZ8mSwL+aQo30l3MloOg X/nMuTj35V24c8+d++N37kVfMRRH5FnzinjPgWwDNVCCweufuXN/hs79cNAX2VFtRW7Lf3Eh3oW+ GL4ki25wNkLMxbW/uD7rkG+J8pG9UPMk+8Z+grugF/g/+LPJ3TbkBZ1jwG/8tMkZP32VTXL5CpoW XmHTwlOFzkTraEtLhKWcSF824t6JyNBjlyNkqHp/mbGt6w9V8KYhZHQaPDps4Itz55tw5ya0+PKg 3LZlCf80BXsU3VcCXXQvOLYMApeyLvuu3w/b1EqNyf7Dfx+2rPnhRVPWA1nvt5Sn0aGIdVjfak3E 4E/UgykngYDSy6Nwtk6BJGkJUa1aMAo32A/9NqZnrieM3C3jaZg8oVAGeSFqU9FHvE8fQXVnBIZ8 gGkB/SFxwjw0YcLm0ZDfoU+O400eGPI2//Dlx5//9hcvF+Br6M5OhEm6TKaI3GUtm6DtEgMDTkkR xrO8SYHs8pdmyb7n+AfqtH7M/HV1JdjMtqO0i6ENFfAH46OSgAJEEGEeCvS6Z53NgZm6ACoNzTEc yzwQoJW7gX024j1AZU2D1Kff7ALkYb4LwCvJ74tZiONcNp2MnlAex0mEvq2XZFXTLM8aOh04Ghvj RQkljd2FJ5R4Qqn8dMwJJUORDEnhQLOKeM/EokXFdERVG3q4AU8onaFpMhhaVFcch+7QbQkSLsS7 Qux7ohyYryjEXF4GkBd7bbl/REs+X+UFmbNQPnbHBke5FjEF5ryaxnmUPpDskn1MyF1axGFRDnPE Y6yCCiOnze5AOTYHHACwCu6X87CEbj5QnUif5z2bjQbxPhIWy6wsfsUAZoxdlJc5uV3ONs29cYgk xigwzzALszvq1C/nE5JV3ge75qq8Uk6S8bkd9N3LorUpBKPzeZjBiLnsIQbE63rgJYzLZOWPlCyz VR7nl/XMS0bfIE3oBdiapYsinpczU9+Xtbmbhcuje3otgVAfP12R6ToOW1+XfLmAWDmrbaZLsSqD MsIiLOiiJvT2cRLNlvjQcPWfJxiTz4RP7AThHztrcU81UDaLk69C9jGmuiS7mWIj449hEt2D2qQv efXzz97Pn1BhvPbSSZKmue5zS/f4cVkdK23o3Q0LXmB3x1q/+jh48jcWT/uJTKkWSF+2orgP7Kzo T2Nf0Z9OYEVRlVMdgNr0J6osYUKv/ztMvhyd0qRPXvJk3okp0V6pM+WP6f2CjJkp8QXGzpTXuy/Q OaEny7qkSg5Hb3cJtmHQA8/hwTYebFt/6R5n40JPlgyfo7c7++mmrKiO19ZSupHc/fx0Hu062I44 GHxa93zZNUQe7eooRZLpe5bxmp0Dj4UP93FlYxIYHu6qKYsxLNh5h7vQ9uPhrhMKd4HdxcNdR7ii ZxzuktEE4uGu41rF5gKG3+iWfsz82Fx20DKrsHtzYcQcP9l8F7GFCCes7eXjo9QKB7xS839G3/M2 o35MhdgmOaomjzyQGRQ5/Ptf/y8XftoYgV+YKcsw2WB1IEVArSG50gxqP9KEWVFNNuq1YM/yFPa2 OK/1LQbKU8sRtCN9iAzN4uceIk4EjEbBuYgUL2u86Mecrm5+u6q/FjWith5ofKtWWpnr9dq8zmYx C+jlnJGIxA9gQ27OWaSzOOpRrCIHgWPY+oHKM44/tr2Dx/csRdFbZyCcGTUMxRYd2SijPYepTvje kFrXX4NYXF0JP6aPwnwZ3QsXUKBChOXiwxTafVHCsQNx8oG61hcAMIdKDjLtVGag+44q2v1Q2LzM YPDnbDWAtmoPfq16OU9Y5IYa69MZbHBYc7IuYxLAir/btRNaC7drOP5tW6uZhRRbclzF4G2fu+QW DXYXnlvkucXy0zED+RXVU0SL5xYr4j3X9lmXNdezhq7Z40D+89v8hwPyK76lW7rjcyHuJsSqovrU nuFA/mORlwE7Kv/wZWMUswRoLYtY5kJZnfwmG1rLokH45infC9ONS0h9FRg2mhNSCA9hFqfLXFhQ 6xpK8pNoqwMBFO9n8QOZsugJs9RxQlRCtW+afRWKjFqQcYQ3Y3m/KnAE+c2bBFODEDK8bMm9YuQF knbh7ZZGOZ1lvSVRmYps8nrKFS1TlmVTGwwDQrV+XsQRjh1rDVyl1CPK6XmY3p6SKM6x0Jvui/ek gCFmdLnB48arxMlD+pXgc6AjlglJWlw/q8mZabavjRRZljzLb9Pe3bTRuThXZrnbcOeKO1dH71zp vhO4otwGRMSLcLus5lwZjqyJahtEr5Hc3LniztVBcaOiJ/mm5bXVVXAh3nWuPMXxRUM5GyHm4vrk c3Lfjvt235MFO3qH75hASt+5Gi+Ynt6aSjwiKnSEsnTvWo1qIGWwZuSljRYY32uTdW6YsvSMqrY2 4QBxmDJ2b8guw68QeP+sdQX/NAU8dMNyJE/uh9g4GfyKqjq2YusH6gI52X/4Y+3e2sBPe6EyQwtM Xx/aQTx+WrW0oxeEYJnBdgUtXS9h74L+tsIyYWMCi/uMUNuhrCD5RrKUKrcV9qZMYd8Lk2kHouuG b4quBrETTnQkekXfeTh7pIbZe8BjMQuEGSwMCnpJDYjHbVNuTqk/2QNtNykFV/YMqecgvZOieQSs DGMwKdN+oDcgv4OVRy2RBgKvh9uXnD/ZbgTfTHJR1zSqW4ZOCo6ZzYGKQGKs+YvvEiwOY2Uksztq LBX3c1bTh/yPEwMAF00Sai3AKBGwFTpQXnJUJdCt8+sv3Ur5NXOjufauZHkUATgKegW+wbo+6j5u 0Xj4x4SRCth0HG/MNpVOjcMlSzN1W+kH2z6phf1r844A1QcFLiY0p6d+CNVdVJBCAcLCGXaB77RT B36gODI3j9b0hl05B8dudYkBGEbanADFCjKD8TyUymy4xh9yYZZSn6f2IwzQdCC8ajh051CHniM+ Zg0WYxQlCnOoIV/P2KkV3WxGnIBuoTtIWWBeTqHpol90z/UC0Xd7kb3VkRyM7C3KUbRFwzXOcKrC DTWgIR0MPIHbyh1JCNVywAGH3spwog6BcEacz7c6+RdpOith87DNre0dDHqs7R0cxIFo/Gk5ZmOy xGhxkhYC1pzGqMhZkwWo9IsKoTScyuBJLSKNUabaFWPw2WDYRzmJhDU3EO6yMFnOQnzMtosI4WJB wgyDO3RDubgPqS22yGsnXkDU8sD0bdEHDU8Dzzmne+AdrEjpkV79n4suYm8YnqqKMi9oOcK0697c DFg0yr+Le3CSK78MLJ0oSueUdWH5a1zBzoDqlAzEkO7QtzDCZiOmYVGE0dccdvPSEgWPu0kkurCS rNqe6fUcwXIu2CuL3YVjrzj2qvx0zIUtouNLduv0X7wIh23UQuuS5Gha0K99KMdecSPg44CFLaov 6rLuc+xVRyGWTMlQLFM5GyHm4tpfXJt9tq3E4pYwv/4rBcHGJuqmgb4jE9oxq/fGpHi5Mq7SkGN7 8Ga23A+d90sMdk1yjU4CnkzKvTTB9HwCaLQM1S0lMzqpb84h9c+H3CSHCe1v24bwTxNyTPPEwLHM fgmucwnXbKIxPFzDwzXrL93jnHEgybYqt2JC8SLc06uFawLVNzwNfss9vaPQ0WOwCgYrilM917Dd ABiNi2sHcRU9xTR9p41ejeTm4jqAGIx6lsPxR2a+owyF9ezF+QKT/0uiNVqiyvzWMRlbfhk4YkKe 3hYQnYFfRemCrAEbXTLFl8dMrRe4rPcEqhBb0OWvExA5EUr2wGP296XHJ7u73n9L03OomtvEAJpC AIjveK7FdnOZ2vioti6sq43Q2fABkqLeyDyGQuGm5uXPWm7wT1PYRBRVRbMUpZf1cTIFd4rsSrap uYehxmT/4YdEjaq2rlqW2K9Z1ClUCwrCJypRF1MYi4Tl8yVOcybcyFCrzFrOX2VkxhBn1GBiZkc4 y1MBf8aU+j8+B66pyNZvF2zmTZrMYNIRfI+B8/JrqA33XRuSQvRg9STGtVhiNOsPUsE4nwobD0KT 8im2oZ8hVMWT7Koc9FLcpzkBIHsZi83ILclKA6JrC3FJ1ETT9MZVjjYSgCSYGrgcuDbz9IFMmzT9 7pIYruV5gdLPo3wzLRaYlqLZvDCImaF7qm1XoZSgb9A/ZFb2HVkrmfKX0zT5QyHApL0MjM/wLiOl dwQ/3VFPa/0Fly41HL1vgO5COF/MnnYtB1FeOPIOH+MStWoh3FLjCUxpSp+vpPif+BGHA97GURc1 pXme43qDj6wcweYIwyOoVv8oXNhJSVTEW+cMbB2VISKwMMtOF0IIlC2Qt4DQV5MQTgZD9KILqVVD tGzjPEldCszH0vzALCd1c1YLAtQEjwY9orJ1T+lSlq1DKI3TUnIZmwPDwwJ0obrh+4quygey/nhs fbCN/Vdo8oR7ObLGv//1XxsZ+/e//ls46rFdja+XVlVa8TfWCmdtt9RmiXRhYdU0FJGPEumUwp+w u/AUPk/hl5+OueJCNV36Dc8JVsR7LicoabZunVGjzDevuHgZinJExkezWwllGOMDrr77TI0mdo1b +ny1sMj7BvMCpYv9w37/rJpSVIc+lMeRRl3VlC3qhtpag9NIbg5dOHNvqFkh2RiY+Ch8T4xidHps 4/C98aMPlivHsZJQWIMVBA+QqYXFimDiMq5mNAvpapboDhyCHDcHs7e1NjM09zWPKpuGKPfEOJ6L qxiVOwt3FbmrePyuoin7vt/aGA4vwm2wWrSdmk+mOXjfW+4qnp9lNhwGXDZUW5aUtvgFF+JdR8ox NCkYvM0pd6ROWVyHd6TQjD9ml6QZRElf7J6+0Qw6ikHaFHHd4GONrja3xb16Tc9Kl3zTcKwDgYfG BgiVfc9W9J7W1VtBqURVN0RP482zG6BUMsAeS2AUS1GjgEGhelJiIzcAKji3WAM/saFgmkRkgSeG wsU8LKJ7qmEZsFTIluDtIWQboaWz+CsRLuyIHbvw6R/0qaN7EFm4P2rnMFk9QtdQgcxyeA4Gzdpu 9lnExezJqTpDEO+HfHl3R3Ks/IBGnOQ9w6oAtp8Ij+lyNsUyiHROhLtlPMWxV5Sm90BCej7QAkmQ swao7HeUmEm6OZ8dnJAVVWOUGGHxB6rAZhkJpysc08Twt9vIt5vy5hmB9pAkgb/m6QOrR2lSeHvy IBqmqInuYeSB2zKDQWRqYlrL8QCapJQ9FNJ4wzIR/R4qbEiSLu/uT2TXn6xeOgNHMnRd881+vcZP Zu9WPVULHLdfjPiEt7/P+3p0C7x18Usq0J9HcQ6g4aoTtXB9fX0BogiTEKvNAKSQboRUBNdY4jow GbfBnaK2Fg4WPcMV9QOhv7mKPrCK7qKklCBwLTEYp0mtGZqi2z1LK8ZfY0XVhz/FoYjhjGqS/ANI +iIDeDObS5rCWEBocE+y+BvZ+xrsyfUJT2zXgzw5PEAXvqSer20dCkB9oKU9aU2hSaonqz1RcG+l KSTDcGVTO7/ZjR2sDwWsDwm94c8yBq7wxKTs/5+DK4keJNMUzEunZv8tda/BF3awHgVrJaAkmpkm i6quAg6VoU8WGxPCW5gYvDZwQuq5pqzBBHUyp/EtVj3SlwpX1KzJ8WaQZKCWTYS/rwIF0AQUvVXh gj7NdEkvcGjlFSZFfFW2HYVhw9Qxh7kY9OUuoKArjGcwKvoTfVx4T6hfJb8vMMwQ/HpRVn3exhl5 DGedph5IkqyaOuZguAF25GUkbPJuWcO3FgFsGoBFR49pPSKV10XuRXUZqqQE1CzvB/M7F7DNBpXB wTYcbLP+0j1KsI2smLLp6W0ZArwIz9PXNKGl6rKpDD3Mj4NtznA3H2wShmL6rufZbUzJhXg3wy0b piR7Qzv6HGxz0uL6WfooeMsMnEgznF/pi/mlEN8KRUatvziCyAZlJJIl4Qx7BSXU5sbZEpCQEoJf O5jZimKYji6ez+bC+XIIvpTXfGlQvjSBL6MyONEePHh242GW5D6TGrIoBr7CfcEuviBeCc/hviD3 BddfukfpC+qGYeqe5bKj3Ix8zoyUHVnzZed8zEjuCx5sEx+w8MLRZS1oa6HDhXg33SFLkm/bvPDi tcXgBJvv9/IQt6T/yEjQXHVRZRUb9NaulGmqrmqyyj1bLmXdJKnBpx2fgIB4owf+EGfL7VKkpu0d /mnyuCXJs03FA2/gLD3uHQy/HgS2brd5KT2pMdl/+EExQaZtOY4Olsp5YYL24T830JkcwMVsCkRY ADrhSvisIhwILirMYAZEHQeE/3mk1qZwB7MfsjDJWQf3OIHCkxQK4MqWwJtKExxOguGvgiRTBjCa kjnlVhhOwdATdH1YAaTv2vTZfkwf6a2zS+HmD3PhPkRkNKCE4oguwYpVuDAwUZqT8gHX3ZS3RoaU GOi/209or0Ho+9c/0/ef0idZ47SxgAaLmGpFRDcJviu8SEjf77PCACFqiW9izeJL1NB60ETVJ3+Z zMpZr6yeByqACiREmOdL6F47WQlU1xVLAi8+IfDVxZ/T2fQLVetxRC6gLvPCydLkG4FD1IWkz/Qr gkHrVCO/w1YAEK+yDOrv9ub9WA1QmhAom4JHJUmUPtVHZxD6Ip9Ui92l37Qqm7oYuAdqi8+97cFw VFBXt4ue2sjFejoN40Us56tPoQKDhXJ2Xg1JeiSTK+oPA+w5uXv/QpyV7EqG7en9eOZcYuu37C48 ts5j6+WnYx5hK1uGIpscZ1UR77nYuqIrjjQ4eJ7H1s9wtx8MZ6UrqiUqZpsjzoV4F8/iUWtGQXHl Ub8DikH+rToql3TIv7lw/61jYxHqod4GBP6zsh+R/9/pfQLxg1yoeaadjHMx0DSt33AKzs0ns/kM yqfqmk8lkTKqCowa/PJJuM3oesLgwiV1NHPGtpv4STPjbm9szFLdZ2dRkUzVlPolPs/G1yxXkzub 3Nk8fmfT8AxZN5y2MBJehNuptey0Zsme4fdLKXFnkzubQwK5dM8yfS3gQtxRiGVLlKggn48QH4sY nCKQa+M2WpXbuCXUR/ZmzfCTEJtaortbpEIYRZC8zdMoDmdCQrkrzb7CG5YZLMhc5ZRATTiVvcCO ovii7g3dpIvL2jnK2sb1HbGsTeOcidvGV+8pc9sWA/zTiA3zHNtRfKuXJJ4MNkzyLdXWevaueSts mGpYmmy0VnF3e/hnsGH9IGDfhfTqsJ2oohT45mEbAvZdHVlRbNWzxr46LZ1mBcEtm2shvCvNSBFH VJVBY935IkvnMUCtsPVulkHbrNtlgksMyiy9FaYEQTAd1lr0XVFVnX5rfcR0fBfmwj3A6BIyRShR li4L2A5yQBTSXWAFALvwLn1fxxni3IX78AE6YpOkCxklyZZc80BtUt+ejFOSx3dAQpxZsSBreCW0 Rs/zJYGmZ19iwHdGa84FlGdKLbw4AbxWByrqkqt6pnWyVJyshDye0+cME5Iu81kNulr2Zw8TIZyy ORKUN6mko8EyJVE8ZY3uO1BRMxzNVtyhPe+joWLZSpCBYqloz2IyvRQY3C+cp2VTwRQmAzxiV3/4 uEXoLqzoa5blBENPUj0aIjLULqo4klC9GJEpzjSI8zXXAVJ5jV2mrDsnYYJgy7AD/QzflVwp6GcI HzH96N/pbImMyHDrdyvcXtba77oLk9mKo7t+P1TVgQ0tUXW9IDAgBjhqM/jqSvhEMuGik0GQo0Vw cSlEYYnZZ4N+sLM6NieNnhwV25/D6IOR3xezME667Zye68mmOTS0p3xInoIYDN3+K3AQNFwu2er3 cL6YkS7KwpAt0w7o+pxpaOFlAAFM6uJJHCDAAQLrL93jBAgEuuOITpvfgxfhucXabqdbjuOo5wP9 e3OAQBBsJP2kdudm8wsg6m+d9XgZyeFR330mMIcSrnGbsnlc5XCH9w32BUoX+4f9/lk1pTqKLLqt sxeZFmH/5WoK1JSkG5LpHSi2yo3ywcXeHSLoPkK90TlG/sav9nLfqz2oP0RIe4iA7gDhzCeCeWNb sJZoyPMhye8LyG3vgfBPU1JfsyXF94J+wZWz8bzL9Dv3vLnnffyet2zpoq2LbWkKvAg3aWsugGV5 YqC6LfRqJDf3vLkJ3mSbDQbNVyxLMwKtrfEvF+LdTILj+nqgn48Qc3EdQFzdIZzj617u2Jt6Y2Nz pX6ou4/stV7oQXZEgxzS9VIMVQmoydFLVR0YIaFqnmJIrTbk96rT73zGbc7s+mtYnqsrtuLwBmXn QUTNT4BZECaPbQXLsa7hBDwE4CRo5AhNlIUYUtnQ2BAnmgBvUBkX3sXX5PoSB7Tuiu0TIvWSB+8m /ReA8LwpO1eGQh7ektoL/Un4co8ygGn59S/X/AxEgH6WaA/Qa+cF3pQqlGVCHafZCu9D/rmMMyRB 1WkStRze8kYGagCg5J76Np1AaJpjq6qi9us0+9oB5CPb9b4DowEdCG/jZIosn4BapOtV7mMVF9O1 32YvUJALklG99/obRbd3LBuC7mtraPFZNvZc91GMmB03IxnsA6RBtvMl3UlaLkY3hiWKQI5bOWwG yP5NG8GeOjUcNfD1cZXQHDqoprDb8KAaD6qVn445qKZKkqnabdhpvAj3x2sQW80SfV/l5btnbIAM 2RTR99qL97jw7ZobgeQogdgWPPxe4TsrFkd2qB6FYzE4FmMUWIzREfC1wSNvHPvTZd+wJNTBHHbB /njCQyxvwz1E7iEev4eoKbqpW7z9fmckselSVWIMnWLgGdvvVtJjsBcGA1hovk8Z0OK9D7uKq2Fr rq/Bb7m4vqYYjLof2zEgLN4UYjE2h6w5cLHleX0X7mJA50sYYe++nunXl6c5x0eiV0nMbtsJzMSH 22/vdbLs2qrs9GuUc/zp2p2gsar7pu/0K0AecWhix9wRdU1S5QPVOU72H/772jxuS3bvy4K8vLy3 oiy6qir6BxopORitWh5eCWxVGhz9f/wL3doG6me2n6T0PxluVJdCXNCtaVUG8RH6RY/dgl3EeghR HRyFS3rDSyGBqbnpbQe20WTbcJ3DtrscF+WB7IuU2gKr0gBAe6A0MZHS19u2TzNhRVtxJEvsp7ve Sh4lGEMv9ZxEP0rFS30chFKupWoCg75BqkDWQBpxInaSll9HsxCmU8fwC8Yw4H8gy1CB/ROY3NQq XE5y8s8lnD9L7+KoxLiG1BrNyCN0kp6mJIe53GyGMJpPc/CuIrw6cN6UEZbdIi9gNjp9jhA/d9kf DMuX1KCnZcF7Bgz+nLBweyBRWLS7LFzc18dSrwfPrx0Uam4zLgRvhnoc4B1vscIYXp6aOM8Nz35Z wkpjd+cJK56wKj8dc8JKUwJfl/io2Yp4z43wUhxHM82SirxOmG+73/ecsMsMBo2kN9ZUkY/w6oxL DnRb9N1+sQqexjovcW1pqDdEnKSTzy/Y4G7lGBanF8gJ/Hx9epmvomfQJ/xKqEmeZfEDZhqoD4m2 zdrbg3LBsvszuw7env0M7P18idm5aZbSN5jC1yF8wc5bu4z3ITzP6Mz9yo+dkPvwIaZXQnc5Ce/K HCQlSFVKSV3tJKUudvpAvW6WIlyQKL6lDjSSvcnt3VbezBrbV0CSqlmuHPSLN54NAhANWzyJO1Tc oVp/6R5ny2PDUxWT9xLt7FDJlhWYytAN/rlDdYYO1XAzkVXRcdTWPtxciPfyp6bm+9L5CDEX1/7i +mYO1TH7LM2wqIjlVtLkmB/9BUjCES7BX9MCPERssVP6yvR6t5AtjQGMCp1vpkKaUMf58Z6yKTIt 4zmqeljibC9ZxnBtYZ1VhTCKqOUMnjv1TOFXvmtXJ8zTKZldnwYTlPGM03iZelRmfLydAG66YsgS SYpq80Q47ZnwGLzuXohssAjZXsBpfPxBdVT58vjGQDbKJYxiRXoyTPKCIODY3vmHIaKWiigGsnQo iOfYwMFqYKmiaEA4bHwAO8PxZU/03F4PfwrIZkyrUAEvm1JsvpJBmcfQnoIdicELnS6h98bnLxEa cV50KUywVyQi8spCBfY33SPoJcksJ48Ms8d21WkaLaGmgd731/sVnMt+TMiUTP/UIJl7XGcYiuH6 ymEWjvuzg8HofqXbCPUK7qAsDeGTUOlUtRh9Bm+2o3ZV0/ZMtx/k5GySRQa7DU8W8WRR+emYGwoG jqEGDgfuVMR7rqeZZ9u+fEYNBXmy6GC79WDoO9HTJFtz+KidjkIs64alB/bQjQl5smhHDPJv1VG5 pEP+zYX7bx0bi1AP9TYg8ODAoesFBfMFhOA/b6rKv2yqyjECBNVYE8L8uSItIWAr4T59hI9Yjv5Q byyBP0qjaJkJFWfAjaqGCWVyKg/nBBII0/j2lvqHSbGdrlrHnlgOAfrxY9KgCGNodIHeJDQGCLMi jpazMIOeGH/s4ExIjuNLfs+ZDvvOBBe+Awtf82pSTSoHgdTWbqzbanJVejKWz5BK0osgdRFDh01Q WEm6SVeWzAM6bUvlnM7L01et2tWUXX3KbYDECEwA7MHvC6qwY6QCUiaDdCbbTkplf/2sfQn/NAKE RTXQDbdfWfzZxHxMdhse8+Exn/LTEcd8FFWUZc3kMZ+KeM8BhCXV82X3fFqE8pjPQZ4TduLBAMKq YXqOogBDcyHuJMS6Lik6r7jk4tr8nM3Ao8awzEdoUbI6IsejD+roBENMGjVwXF0fuocgl/XvlvXm dRItUzJcrpO5Tn6RTq4Ff6i2+SjcUL2SpQ/rLshNBdYQOPmdREtsIwXoeAiiUIU1wg61EAkrq1PC Gc4HLuKH8SGlfyinYL9JdEuWZVH0B98hRqqHVdlTTV3p1+zwZKihU1/fDdShs8MlNSb7D3+MyFT1 WhD8aVykWRzOroX8AxYdlBhVULJfqj7f5UY7I9n6nMmq9ZQO1ptqSparGuNqvTkCPOgvmGxOCgJj CKAyBEcXVL0VGRwUCitWKbXq8+XdHcmBFZqU7O6SSYEli65xoE7lgy1ZC7+JgaZ7Vr+HH728IwS9 9Mmw1iiL52G2AoFm7hwV7r/bf/0zqwAE8EKlCbyfcrCwFumC+mgFEd49bHHMAZ47DvHGGXXGsQN/ iY4n2S11bt+XBTSLcBLP4gJQFPT5H8IsTpc5Du6gqu3P1GJihbysXT+W+GI32Qn9g140/or1jxU1 kjCD+zxUMOoJfBvEd0tqQ0olrWKox4rzaJlD7Q7WYWJd12qBsH00XNA8DYtwEgJZmdMcrbWjEGWk mgUC31T0hqLMyhsG/P6h6Yv1AR3EXpYN27DkfrhwXgpweNW/LgXYYWYqtiXH4hef6wJ1UwkUhmXg a7eSqRXycKUJkrwg4bSNuxuMADZdgz0QG4PTVo5w/ISeZOXHjYy8LHNssXvxzDHPHJefjrm1FJUO w7PaFD5ehCed6hWapm7oytCmJc8cn+GGPlyvXsnzJbsVzsCFeA/iqpq+aAWvJ8SvyIdBsNkZa/DF NaCxBl88San6ZdM3gzpXLQbwkjVj2HbIpqfSnKScf1h3MMEBROeAObtVT4ptlzpMwJtmPjL9HfPG sUXFek5Ho/H/1u1H6izfjUl+rd5n49wwZ2eXJHAMR4PWUttxlc+GHTGDri2sSQueV2Y95ik9lb4f hBBYF5DpZTnYEs6o8u9zmLCzM9RqBPRrBR5AlCmdzMi8PoeT8uE/dt7wnmrsbBYnX4XsY0x1b3Yz lSXUpcfPO58D15QseXfnXr/SON7it+tnTQ/4pynVZoiObhreuKZY9tCz1e7HaLQmSsdwwMbb5+EA Hg5Yf+keJ5DcNX1HkdpqRPAi3JOoxcs1U3eswSfQ8XDAwKr79XfkNwSS656r2r7e1jmZXaS8a/Yj qT+YqmCvG7xZJeBc3DfRP8uwZVU8n14hxyIw+7i5MUl2r5DEKzvzWxroyIjbiJ5s7wS87YGWbttv l5v3X+bQnRNbNTyZJi1XZHSk+WEPZwCcUwtWzMNkSd+0WJZtSOdURcXQdfiBJNM020QzWASD8twd KQDN2Y4Hw7HBVWQk/gbsFq6QklCNUEKTpqsknMcRNryllyJhdF/eEhLH5eMhoilPb4tHCLuk0Lk9 m+Lf7DJ9wKKerli6PnTHitF4sDvhcNH0JdHuFw5/M6yXJiui5A9dyjn0w2+ri96XBb6vYb20awkG sOWAeVqkeR5PcO+ATgvCHUlIFkdXSQ57wlQIpw9hEpEpHtjaNFAvAggkQ7BYEoEqmLLrYB9veo9P JLsPFzVUWf3y6YJAQRVApYRZuKLKQMFbqsI9CcGdRgzVH9d6tXoU1BkLAIczDcx+i2C0NAdU2D+X cQb4rCijL8ca5OdPtYkYhL70Tbp0T9Ud0ZN0c+h+Kdyl6vmcsHB7aNkNL+/jZV/WQdUQZd3RrbPd Ql4WBJ2w2/AgKA+Clp+OOQhKfydqRlu5CF6ER0VqtQKmYgSBorTQq5HcPAjKd+yDYqJESbR0S+ZC 3FWIVdWzVP80MVHd+PDx47I6Vu6XIxKiJx8e5KnmK3YxbwONioH2ij09Rxo80WRFdqkzcMZyM8Z9 xl3PJtsKgWB0cadlyl5gfV2zXhRZPFkWJL8UbkkIUVT6F7VRP9Ano7de1juisI4F0f9n71p3G8ex 9KsQWWC20kg84kWiVAPUQtfpAN09QSV92R/7Q+UoKaNiO7CdSgeDAfpBZv/ug/WTLA8l2ZJjJXQk u+z4NNApW9aN5HcOyXP5zniogFPa4Od3+jIaP4yM7lepkaU2s2rtMQQbz8Pn3Cy7nE6vi8DoXL4q W4K626imAvZhwMYzMoXahdCdIzIYalMTZDydMbAVV6sdlsQDRXvBMvbUBP4wJl8Goys9ov2XwdBX 7ZgCGhbMN8u40Bb16T1UhJtWzWKntRMhx7L4Mb9i2Sb39HT9694NGNj1itzMBPZ6uduhsV8Ka2We PjkcLo/Fcv+enX8VizMeT+CAUztwGZ7Xvv8c1b9fhJf1A1G4dMVZ+GP9AAwVHKw9SbVPTa1jKCpb tWme7t2ANQ3J3Er77ICko9ng9Otgcg9Oo2qXqcMkisYX9a5VE9v9FCTufKIrmGo6rsfpLBuSd2fn F8e1s7+/XBoqGIhfxmfnf/1l/MNlXB+MRVFVOKM4Fc7SwbvZBPxYg5ESaaUs9UKpvHzvBgwcb0/c wp+yfgoZ3kuNh0O5x26qu/0MrKC5tf18Mp6N1auQdxdn58faUcqZQ/8n1z0EvHQwrdzfaaRrp5++ jveoPkX7CwYj9XGY3zD9BHaiXJKXKoA+X3d21V4P/lnlwnMoFb6M2oViHIz9tZ8/Bu2vaH8tvu2y /ZVyO7CQCNXUdCMt1S1W0hTvt7K70f6K++KNBqFaXmAHftI0P6MQLwsxD0RitSyig/bX3Xx5kKd1 7a+OJ2XLYsr7bX81gsPq3rNC5nJZqqRDEqb9DpQO0Sq7VyaI1bHXbUy127fU7nKfr47qbrShPmtK fhvY6lWNyXs/dPvXgCfW4QU5QhH9C8G/atS+KJWXR/1qI2Ee0svIu0Ev652QGBTjKKuI5uPxyTxm uDjpZRu/NsbXz1ltoz/Of8gfIMoHrO0i2G03TEMOyLJj4/itaIKq22UPJanR5/ecZJUrkMrsdj1R e9PnfGsnJOvd9PJ+uksfb8ep6rRaKL26+cnTCHx1xSS9vh709RmD6WzQV/dSUvswnnyZc/Gru8/6 BfP73AuhmrB/IzKvS1lLkdC+IliE9KFWzHgCI1SuHRT+Zqq5p9MiD+oUDsDmQM/Es5lSg6dDNQY3 ulfLX3u1roH1OTx/af8XRdyL/C1mmo7uh/k5g9uvK347m1tfSpvu/ALc+3QCPxgWkJ0STCWNsGYx riRzZrDp0Gk2FYHOt0D5vHuy8JK/5GZVc97HH06TAVSdUHvsE+Krc7QXt3Sy7p8Yz93CebNMpI37 Ng8422LwI0rbN0aJr7UzWWjnJnErztDbq0Kn14MedHDDO/hb6vrx5NgIda4VxUl4yCG3ewkdSCRb yqIsrBhKf1+VZqS8ng+4AeY2h+VVkmaUnxc6ugYTSWN25gkpN0X1SJqf909BV2ecWlvmk0/taCXQ J7/syX4PrsvFsLLl2+V+Md/lvD6cadPRQfvWvx+ehjPtTjQTDSJmBXG7JOK3Q0ggaJLQoJ375lsR EnDXdcMobqJQM3v5fSUk+O9UqfScu6ZHyJGe7qqVSLUMQiU4NVNqTXM3VsqL9Hq9I1h36XM0gch1 9kDubpUyhPjhMM3lTU2Vd2M4Jb1TH4E0REtsqiu7zO8Jad3k+n6i51+oOZc+o6o6aTiQwZpQBUg1 3GEQdr2px1Vdy/eEgWsurPXnH/82xfGff/zfn3/8r5qW01G+O69SC6tFnlqnzIA5Z1Gft1wz9qCi yyQbjr+CF6v6+NypA8tK9SKBuh88oZiAcoajO+1V7KllkLpdOgT+nqI2DGxl1mM1iHyH+6wp9K6l 5n1rUbVX+WMwqhajaotvuxxVG1CbWY0xMfomGJBXZdGkVhT5Xa/jMKr2ABcX3bEahInDk+RZIS6f ukTtymx3rmPKU1DeK/pRSF+4jawvK0dmr+UdJbu9ZDcY7eZL/UVW5MIj/0j+abAStxkPIp9uMR4c 4fhW4UjyfejqiJPHv5mgMWJ+aLGuK3gjGg8SjRWzhQH2REg9X1iHk96G2Nsg9gg5Oitn5zm5RsFV kTsSf1nyQPYMMGrFgeO29d8gRleO/Xq1rd4GRvevop6piRwOL8TMRLRCxqRtCRStw1X/XRUo1P/p uK2a3q9r+D3QHB+OTBbtzIqT0OWHY8FEyWkPrUbJmWQ636CfmSDPi6mMD4iRApG3QeSpJfuSgl5V PpZppGy7lZTadhi+1MoXyQE+JiFxOfOWZeubFpVdf1p6T5JJOsx0fhAs9BallGZj8lOROFQWDTLQ I8KPLJdbOIOhHulEj5DkflTk4J8S/8Wdv9Eqi4fCcmi0xbkOQbIxkPxrxYDDkZcjeO3Yslxb8lYw OJjIqWJWxMgpjJwqvu1w5JTtu5RFIUZOlZ33QiSFbVuhdEO4FiOncJputaPojI+QuyyIkyhBITYT YuaGdhRLjD/ZqBi8nZXzIuapJq7fskFVPVKhpzeJvhJeImQUYrzLwaDfAOFFGFV/vJr0xcRYILjr cTUNIa5wEWT2ns/icb1AKosLxkMfPek4pZsC7JsHoqyezZf9QTvVwytJL1Z3MaRz7mQPr37d+RIP fDt7NwSVNeD+dHmVzWM2hgz4WdbP6SgKIj4DxU8TGlFuYWrLwSh+Q+VOPj1qvur+DBgUINNcp6DD Fy0n2bRn5gPzpBVRhQ4E2HYV3Vtc1r7eB2e5Xmxx1m539WZYdJTCD2XgtTPDfysWHRmIyEp4k8/l tRql65evi1nr2wLugUXH/+nvCxady88ZUFJNSUpGYyDiHUOQNejoki4HVgPz8DzgD9XnqLv3P8N1 6iqiTdSwghjCLc9mcLzgJQGqq/fkCEKQfvvtt/fkL7ezv6lV3m0GJ8DR0/yQGgPgSDmCgp5jYNbR VCMn8ALq5tent4OpJv6F3id5qYMlGuL6e06y9GqaPxdCn57EDj2zSOuko5+LTaoFipyNbpR6yun1 s+Jj/mPviJBfgc1FwXZWdBe0haRDckam93c5XVFe6QHaq0atOqIwMiUBmSYNhB7K+/7o6VOP9Oec A/Z39Qbk7vNE5/Xd3anBneZ0gmo0yjt6PVaA4GqcTUf/OSvOJDfZZPgslXkn/VsA7WF8f3sF7R8C aabGYTYhgxx7czQovQp9UoHky4gs2/kfGpaq5dOZ6uKewXrFdkTk+jESMe2gx69GxPTrnMqorjuU RH1OgS5zru1G98NPeQGWYfpFCVeh8qD8ynoMSDJyRBC1M5IdTBzPdf4YjOPBOJ7i2w7H8TiWK23W GE2sb4IhAFW6QiaTZJs1CDCO563O6p0xICkhdgIhmzzzKMTLHmfm8MCz0emH4mouri/G+Azyzenp 8jbfjNvIckLPlwmyJSAm22Ny7SgIymP1/+GsahB8mwQfIUfai1/zjdfV47oZZYKF1FL6ERGKCO0A oesk7lssCF1b4sy8iSFNXBpEB6Yca5j7Bm1Zq8/hVU2oBnJs735bdpNVYO1mdM0qQG3bc1wb59dD VnLrovDZMKpk79TcKve2PmLGLMUsO7I4QwlCCWotQavivZYBZwuqsBJ1HcuEgHs14JoUAxdR7B5O 6jcqhs0phrlJJQ9/eqWx2aHC9T0JvnGEJEJyu8ZmHng+93zcaiD4ugDfSmNzTTuua2tmjs9DKdDg hwDtAqDr2JqlYJTHFLPSEHod6cYa6B5Wmm6FhsrON/ONm26XBmr32/FqWzP3bTexA1RyqOS6UXK1 zKR4bcutRSNXsHCLu2EExOYA8fpUWeaHNk9s3goHh5PmUmAZ81wwz6X4tst5Lr5FbU/4+VEMkX+x 0ndIA5YEh+O0wDyXjbwnTMWd8dU6rhP7Hm9aqKEQL3uIrTAQvot5Liiu5uK6Zp6Lkb+R0cTxuIcW dQRieyCWlbs1/Iz294Hr2R7DyCxEXxfoW8/bzRIWsYgjazaCrwvwbSC1SnIWuGpzjAhFhHaA0HXc 3Y60YioFQg+h15FybGTOa5kfw5hvcVSSiNSukFrzWdYAuGMNW80bXvIMyh7b5ZdfaY80WxU5Hk2k U1ggUeBR4Dv2SS8DznbDMAk9LIODgGsPOAO8icDiiRM3eUQRb4i3VzgH6oH3Jr4ByZgQUQCIQxwi DrfsG5B26NgOxUw4RF8X6FvPN2CLmEayMZ4BwYfga+0baJUJJ6XlO2GCm2AEaBcAXcs14FjcSjzc niD0OtKNm3IN0Fj60qPI74FI7Qap6BrYbdeAHSg14oQ4NaHAtxd4I9cAlTwRouv6Swi4VwMuHycY uZfTCqVrx6HdMnRgj9MKl9f1oR25YTuq+cbe+PT05buswCkS6iUx7TqYs+uXr6vD1rcF/fTdd+Ss NCukd3e3g74uunl6mz5mk9Prwa1aQ/d0FcfFLm9Kplk2hFX19P7mJptCie4U/gymUOjx+8vLc12f UV13NtXF7AZqKT6a6VX5TTbKJoN+tda3Ogq/pCN96aku7Xg97t9P/8tAh3LORZAEXQfw4NTY8j1h 4J4pb3iVzlIo+5rd6rGHQxX4kRJ4cNEkS2fZFVSEzR5yN8D4enFyDSL70ClKuKCy/VjdZlXTa5IH MqZLzcJJVYm5rpQyh9/uxtPp4NNtvRP1nUj5sCl5l/VueidayPK/Fyckgc/n/zjnJ+TsR199zmb9 3nHPQPAszw9iuyWl0eFk1etMaH0WZtVjVv38x3Ans+ptKXwaWVh4ruy8FxJyGYNEC8Eb+mtld++1 5QCz6je2PuiseqTtCN+OwqYAHBTiJ9YYIb3QwnRSFFdzcW0w/81d9Y0re5MQOsG5G1OKBmlEZGtE liF0ffXKCkgVZnmjgBGXWTISmO2MSOwCieuF01EqGQvdw1ldI/g2CT5CjuYmb213bpqilaq8GiyF 1/UM8OoIxhwZYfgn4rUbvD4D0YVNuJ+OSPZ7OhyMcgu7nuhVO00UrJM4PncxCRoB2xFgwUND1G9f slnpdkjJzx9/0KhMFUSvyGBUevzIMJtO05vsuGdG6xzHoYwTTKhEtHaB1sKtXQPeHjTog1G0NaOR ZTseLp1RVrrR7CZ1R2wNlW03k1LbDsOXmvnw/r48VngEl8TqYxJKxq1l2fq2tUjWVg7vyffwwiDw 5HKSjqZKx5HzMuzgHcy6f6U9evye/JjPvQa6xLY8h4oQ4+FRl3SjS8jFo1oM/q6WgVfk4/gegllM pjTXdxIqcPmHMOwGhgYzWh6htK+tfHYuW9Xc3Dm87eZ2OoHTg5nAL7JhOpoN+iaGHiZdntAIdSfq zm50p567YeSz0czMeBPEzAmcLSIQIbA5CJgkOVlK5SS+v0XjMo54+xH/0DMYWurJJGLuFqMCcGi3 NLS2DAI78VFPv72hFb7NRCzaxTmulXW680PbIAPMo1YcvNH6oYe2VrnN0utTnUzVh/VqNQRukE0N yx3FsceddjmuCIgdAQQhECE+D9WdZNdGILBdzxOug1rhjYCgVVysFcjAc+Mi8wLBsO9gMNnQ0sS3 7Zjj0viNjPmadb8cGlk82mLJQxz9TY4+IUclJ1w5ByyiKtXC0MiqKRjzgog1pdohKPbeqglHDCiB oiR0XS9shYPD4UQomGqQEwE5EYpvO8yJwKnjMl80Tfz6JphOXdknh5SG3gEVWkJOhE1N1B9+in/t hhOBclfGIuEoxGZCbAkWCC/AAu8orubi+mIxoWo625wLzcT2agWByyLWjnMM4YhwrBAilAA02edz 7nsJ9TAEHvHXBf7WpEHwfBEnGmYIPgRfB4bPp1WF/Ap9aKkYjSygjnS5E1lNC2sEJ4KznQH2yVQs E99iLoayI+DaA84Ab1Yk1O4jCBFviLfWeJvPuZ9nszuzna904jBMkAoQ4dcefmU13RVmGCNvtxX4 thNsMQwSsfiGsbjeLlhIL2JOguBD8HUBPrULhto2tU2w5qQqFaIZJ5VkcSgtDxnUEJVdoHKdgrqS +64nJW6EEXodKUQoqMsc6hhwEBwbAJTZoesKH3n1EaDdAJQUHF2bILmiricSO+IIVgRrN2B9HcmV 7UubtszRRRgiDJd0Jt0MrxCNY9uKYtyUI1w7guu6vEK2sFkk3XaltBGBiEBjWiOPsTDGUEQEXAeA M5lipQidwMFIbMRbe7zV/M9m3CeOF1IvinGCRfy1xl8NbnssRi3d6DzinHmo0VGiOoDiusHkrvBE YGE8EYKvC/A1udEv1vSjiziyJOeoExGWXcByHT86i2LqBjFWbUTodaQRtR/dpe77PKJo/DWbkMsf LnIr+4WJ61xYIbVsjphETHaDyU26zoVMmOVxTI5FsHYE1te5zgNb2j5FnYkw7FRnbsh1blO1RBDu 4dAkIVw3DNe1S/J4vssSLKiHCOwAgUYEykAqlbRM3S5+QcB1AbiGqSn0pJdo4jBUDKgYOnI5Xxtm PPMkCHwpm0zB/w8AAP//7F3pc9vGkv9XpvThxU5ZMu5DWesVzkRvfWgtJ6lXqXyAiCGJNQRwAVCK srX/+04PDh4iZVAYHbRalZgkzjl+3dPXdJPr46JM4s/vDiTJk1RdMg5Ic8in42ieVnDGlUzJUw9O /uP6eHZWwMd1EufXXp5VRZ6yG66ilF138JZf4cb8kiqftWeyJK3PpXRc3Tp4kVdVfnnrcJFMphsu ptU1pdna8beL1xZ1A4uQNa5kl0XlKEneHbC2lnkaldA9GpWVUybR6tGpk5VrF47Kpd/89aM8zYv2 5ZpmKp5Wn5iy1qbLLb6eJhVt2sbbBG1s2vas28lmjvx1mR6Xs2hE3x3MClrS4ooenBD2dxGVlESz WZqMoirJs8NZkVc5e9tPcH9VP6XuK8cCuZa141lURKfxuwPZl7VANZwDfrSif1Vw1Gz+OuAhFhGL fbAY03JUJDOAYQ/wabqhK7ZiIfgQfALAR8jBlyklSUyzKqluyJi9ZVzNSMsPjw76cERdCyxPsgF+ CEoE5VBQFnRMC5qNaA/oSZIq67IjIfQQegKgx/jh59Ajtm4fkzBJKflSRFnJ4EjOGo5IXoVfzl73 YotmKOuK5SmITcTmYGz+Xw/AGbZn26HiDQJccwYBJwJwWxiDEXi6b+vIGJAxDGYMnexellPyv324 hOaFkh+iConoG46+gbY009BNX1EBYohFxOLj2tIURbE028NlGMEnAnybbGmwJu9mSzMDR/ElO0RQ IigFgHIXWxp7q8PUEhQMEXqC+CHY0jRFl44JcMZzOpoX7GNK05S8Oj//5XVnVevFGtVQ103T8hCf iM/B+OxjT9M83wxdfxhDRHuaQMBtnidZC3TdDm1kDMgYBjOGTn6vaJrRqpdJTfVd23AMDQGIABwM wIEmNclXVd3TA8QiYlEAFnczqUmG4aqahOBD8IkA3yaTWr0s9wxMs13LCS0V4YhwFADHXYxpsq8q sul5CD2EngDoNcY0S9eOyZdaMdnJdqbonumqJtp2EY7D4djHdmbaque59rDgR7SdCQTcFsbg6Y7t y2g7Q8YwnDEsYtEuq1kvy5niarYlu2g5Q/gNh99Ay5kaSLKjSYhFxKIILO5mOdPDMJACBeN+EHwi wLcxGI0tyv3sZqpkqlIgYWQkglEEGHcKQrMC31VRIEToieKDYDfTVUU+JufJ5Syl5EOUpJs2dp5/ 6Luz01Bk1XNctKYhSIeDtI81TfF0zdcDeRDg0JomEHBbVi/f9n02U8gYkDEMZgwLaxqkZOkVh+aE jut5uC4h/IbDb6A1TZMUW5ZMD7GIWBSAxR3j0BTDUc0QrWkIPhHgW7OmrQBwfzvGbYLj3jbBMFQC S0JHMZKUCJLaxSZoaK5nGgpmXEXoCeLmPMmbrHYmwW253s57J3tTfCmQFQOTvSFGh2O0j0lQCgNN 8o1hmS/RJCgQcFvkJieQfUVVkTEgYxjMGDqT4Cyfqb1MgpKm2Ux6Qos0wm84/IZWTnC90NIMZIWI RRFY3NEkqMqGJcnDXKgIPgTf9gA7WJT7GdNkWXU9XUVOiGAUAcZdjGmqL1mh7AGiEHoIPUHGNFmy 5GNylpcV+TQeJyO6MKIdkt8ow0+eEZW8Ovt0pvYzqMmuKklagP4GxOlwnPYxqMmeasu24g4CHBrU BAJu8zzpumWqmgczgowBGYMgg1pyGfWMsQslyXJDrDiF8BsOv6EGNVXSNVlD4y5iUQQWdyxF6jq6 Y7poUEPwiQDfJoPaaVbRAnIdfaBlGU0ocUYj9m0pQOP0g3P2up/NTfHlUJZQoUS8CsHrTsngXN+y XG+YaonQQ+it2NwYUORjcvrxS/D5Y/CFfAjOz52fA+J4HvtGzj5/+vJpBZt70OcT79N7MBgGn89P P30kWkGv5H6ZPn3TdG3ckYsUJoDC+lgLdV32XCUYFpOM1kKBgNs8T5otWY5jobkGGUN/xnBy1IMD GJ4l+7qCyEJkCUaW5vqO4jjo4UBkCUaW5DqqatjDkIVSy4NLLVJoKpKmYh0N5AD9OcA2dWbE2hol GS34N4alw1E0iy6SNKkSWvZL06vJtmk76GhCPA7H486R25LuGQFmEkHwCQEfIQe8Ei04mRqGSJYZ Yr8y3bpkqiHaGxGTQjCZ0mh8mCZltRIKMk7SihYrq3WvCCVF0QxHQ0cnYlMMv6xuZgvHfEHHPXPR SYEauIhCRKEYFA7NRxdathQ4GK6EeBSDx15eQktSFV3CrDAIOjGg21Fzdp3Q1swQ4YfwEwI/pjvD vK+rzHxljkmekWq6skKTdoXul1bfDiTLc3BrKsJVBFz7LNCGYUmOrmK5EYScCMgdHR31AJ0paUwR kdG7h6AbDrpNXA6OjOqP+lh1kd6GoR4apuSqokMYn/1kbyZKKVSY/OGLLrGyp6Ohm45p+qonmEU1 o3Fxu/EK/xtGt4MfC4T044/ktN2DBGJtmmT0MKVRkSXZ5A0pk0kWVfOCHpa0ekOSWXlI/xpRrpEd diePCPkcepaq2OQy+soE5CxfbBghVQ5yckm5YbUk+XhFmGb3/j6NKhIVtL7snz2WFC00PU3WRGt6 yLgHtnMr4373j0n1E/njzPn1/Z8ENr7dwhpJSoaZy/yKaVYR6xQlo2mUTTgoSMQAeuj7+fkCOjeA K/aar7Q6LKKKviEXNxVtvq5AaA8G7STKYjJO82vefhLTio6AxI7I75TMZzE7GPOBWDKIlARuaocM TrY0OC6YLAMHFjTIiA4ONF4NTnYwC/UQl5z42KCP85S1oTzuQYGGFyi6P9AjvMfrRyNisI9mCi/S 8+ompe0DovHKn1q/h131O7vi+t2BbWp8SIAnvjuI/4q6C9y8iGlR8l8L+bVkJJJSuKP8+90BDHtL ZBCRXfcMhhT+6kctC7q7370qEe9+/4rovPvtCZvNmP4y9AG/3fcBtRC5PBUX6fvoJp9Dn+o5Gyd/ 0bibtfd5/rV9mWRI/KnjpCirz/l18xIGw6Vf/KSXp/PLbOn8yoEs/8VlNP7uAKQ09uu39lfXwA57 PxdJDF8n7NPj+lCLse7a9pIKKOA2cS4rbIEiO5a3TTbkDxnV/zYNGN2N6nIat2MzAn6/NOTRvMrr 4UiBauBXPaSjD1H9bE4D7NlyPahrj25QvvV8h+OtV7RI3XIBVy54W/i3usNr0oiqKrrnvxy783+P uumksGe9edjj8e4wXFD6C5CePr33j59aptltyKGprz4zuaR+xkK2e71BtuCEVX/Ut36TQymGFASh pSKH6sehDE9XQwcLdb5kXrQzAX8zidhtHa5PpJTheY7jh2gORiwOx2IbJQX2gTjOy0X06E2vKm+G JQc2JldELArB4m7hKqoUKmpg+Qg+BJ8A8BFy0FnyIZtYFF9F2YiJ4B/PQ+J0BlS3WbTJ+2bR7oFU 3dIN05Rx+wciVQxSl8z4R4R8mTL9cBRl5IKSOURWcfhmhOGMZjyV+ixPsqoHUCVLUT3dxSQVCFRB QAUo3sE8wWvCkLrMa/ulZ9RDQ3WCEIu8IlJFIHWX9IxSoHq2HqoIPYSeAOgxuXMFdOyBNzNaMDb5 lRTHCYNWcRorFofK8+zm9fG8Pdb4CVf7fgLpJ8Gzvk5cXUf3YgpPjklYRJf0Oi++LvINj6M6ROcj oyI40W4W78FINF2XVcvB/RbISMQwEhLOMx73UpJD4gjUX83QMgIN96UhUAUBdaG/9sufITmOF2iP KHIhAh4OAb122qiu6XvhMJZzOz4OWU4qNvJbDh1N8kzcEfVs5unxGYOwzSmdZ3wlbL6XV9xUzcAM FLRcIg6H47DxisNuDS6orOBvD/p10tuBrxuubRsmpt1BshFBNrs58BXLC0zXRfsHgk8E+O504J+e nZPzVqog53QpI8XNUQ+sypoRyLrhIVbFY+CFRaM3JpAnFip2N3/3DDOoTePL5NZHDglUy3IxscZL XgrEWhiBxW8ILnhiqttdlO9lH1UdTVZkHysGoiQlgnx2iYYwQtdzZb/ZYITQezqO+J1w7j7REDaH yvPsJkZD3C8aQtXCUFcMtAYgIxHDSLZHQ9xlDOglb2mK5Kiyglh9cjnmO5C3+rjDZU/ynVAZtgEZ 3eECAbd5nnRN0nyNzwgyBmQMgtzhW9LG9XKM65ZuujLWYkNECkDkumO8/0ZxUzMC30EDFaJQBAp3 3ChuypatyWiiQvCJAN83/cwBLNUruNyD/p7wAgy7+Ow0LdR9U8bYoQeYvpfpEl/Z1f7EBPSg/vEe 1KUYmu0pBu65ecGLllhzaLc0rXL6l+MlNw1XCdmKhST1cknqibzkmuvKgSIj9F6wrPTYXnJV4lB5 nt1EL/n9vOSSojq2gTUakZEIYiR3e8k3yYvntE8qMdlzPE3TMaIXgSoIqDvGaMimZ8iu+ohJF1Hc HtjOOxBw/7p1iiGZmhUOs/7fDp149pPdUsWOlXaa92ClHay00/x6xpV2tMA0FF3d5oLgD8E6Fkva g2QZni+/HKHsySvtfLcL9cnH4PdNhe5WF+U+RKwYnukFxraCFkjE6wKNbga+hvlHkVx3INcHSLkj +a6nOhL6/x97fm8olBn9zoD45A7/HYcc2toGQ/YxR0i25MpSgFwbqeU7pojdAjMly1atIMQKPkgT vWliD6lic2dWg0ihuvhSbfZ8zN0vVU5AGoOTnXx2tDoAmylLDgNZCTDeAClrF8rawwVn4ZZMShJx amG0U8xTWgL1xLSiowri2xIG2nmZXFESjarkCmJM+7mRPFeWTR/jMB8FoHtDLLsEf+lS4NqBjhVb kRnvwIz3jxcfQMyWZhrGMYE4J2C3eUZ8zoLh2wdaltGEQlDJNMrYl8/0f+ZJQS8p9OawByWZjmLq hoLMGClpB0raR7GmIRnlSDmS1X4V8RRF0j1dHUQbmCJCJG1snig1sBTH19Dq8dgT9VLiom4BzlBD VR7oMETOIBBwW+ZJNtzQRXMoMgYBjKFz7N43cYxsOEGgSJiy4/nIE3sMx+/dvasFimI+aoU6pJZn TC3fKUXs5t6VPV1xLAmtNUgTvWliL+2e/Ty5TBBL5/GSJ7ck4yK/7EFIiiNpsqfg4oKEtAMh7eX6 wn0F2YRTUeOyXVtr9qIj/XzLpuNaiqJgBO2jkMvekO4uvmVJl1TDsjEfAC4NOywNeyhjPbhv2Qh8 WXccrCCMlLQDJb0M37IpWYGtK94g2kAPkkja2DxRihX6joe+5UefKMy5sRKL4mimHKjDYLjHOTfW uKeuh4FkPdBoXNxuvML/BDXeUQ3DtUUHr4pu/CqZDX4s4P7HH0lKo/FhmpQQQV4lh1cJkzuXKh+8 qQ/Hcb56dF6kK7+v8mR2eJWnFV06fESIk6ZgH6ymjOZqrQ/shEzShcR35GJekVNIKPxDRcZJFnOb SKcbQtI4vownGTsRVSTOR3OQdgnrzGjapMi/gDB4/vjuxQkte6z4sua5lh2Izp6E7HpgO7ey63f/ mFQ/kT/OnF/f/0l+B6Bc5ld0DTMMXStzvwe97RJBdsb1NlPxYVaOF/TEYA2ZjOGC7o44ZwezvCJA F0Ar5ZxRxm6F3/XQNDRDH2aj+26WMt00dTu0H4gtPPPVoOW4FmPdpySaMeIbJVFVE1mSjdLaKME5 esKAR69JuWDSjFJnbJI4EcINOZN4kyxKyWlw/jOpaEpHjI3zR8c55/k5yP5kyv5PKvYEhv9LhvHr iNEyLUsCCeWL5Coa3ZCkLOer1sIHGAFIEJnlBPJVwaWshxcUTPWzIr9KYgrtgbZC36oiiulhPh4v rrpkR9hyGRN6BfI8rFgrrWc9g1zkRQIJsNg9Nzm7tkwuZ+kNKauodQrwaygp80vKh+o6n6fsuvlk QtkqzThdEV3Wl7I3t6MPzrfL2TQqk79hsiLYUclOX+bxPOUbx5KsollM43rLWL1wrjry1ldN8eO7 RQpnaIpInFzRgkGn2d6WNXljyyZvLBk3OTxJlBY0im8Ab6P88pIdmUMMS0Z49iM24PwhzV35jBYR T/15RL7AFtMZw/M4GTVuS+j/2hQ11Q2iOGYNhBIH10k1XVpfGAOGbXhNIxiMaX3FeF7A3DExJqbc KxpxvswewKUXynr0V8VbDAIMO9aS2mr63wcANQORy/D4n1E8/9pglIwZ4TZtWaGyNMomczAysgYC fpKM4YIR8EXECJVhKs97LSiGaRm+qqJk9fxkjRUhCkiinfoRewvDbkMuLWN508ja1wzODQtikL64 WUDqDdDDfBZHcCIajfIi5typXgI6kEEcADljk0t+z+eMUNnATPN6R+slvbxglMPosc0STfyELTxV XsDSE+2dPFc2C1u5KXvYOrEYuqTIug5k8QDS12pPQkt2/fuKSTtm2dTr9yxn2VQ3pTLrmWUTEvq1 a8fuWTb73H1Xls0+99+RZbPP7Xdm2ez/gC1ZNr/9AEDq/bNsaoKzbDa/ds+yqd4ry6auGoEiOduS SfCHbEvQtwHV8PqNie1kN7QdQxedtOLpc0Dei7M8AS/fqZ3Auz+998XkgNQ8xzY87cEhpimB4TgD k0E/rfB11yQ9K1fqbg293qYB8bJq/3Y+/tzqa42a0ioP7Gxn+ryMvoIAv1A/W/9RK8eBAtrqP0fk nGmRhEGDK1UgkPHXMGEtgnfR9M5X8e6AdsU7x5RUKPJWQYIR/jImm/EHNU8epQm7q9az+PE5qE/t U9ffu1xF7qkFvJ2n8aQ11H08D3kSFqbEF60tcqF81uPSqLJ9FCfFUG3TN4dtSHpaS1w3ltvEyLXg LsMKbckSHdz1LHr8lEheBuspWOYmURFzqC7bPDoyfbOKXF7WcTSiZZksYrzhCn5DOeUWKbAfAaVw xsBuBPWP8Z7LPEuY5kbjI8JZQafTQbuXFEywccVJOZpzK0uSrTGBTdWeeOr1KBtNQXJtFNRDm8/7 sxjpLfatzZaet0t9fD5Y2cSlVmUd+NjkEJcdx/F9ddhWmH567G42sHUGtKMey/UJfhXqsajHdie9 Z6nHGq4ehJ7rbSFC/hARSoZihprl8LFCPRba9qzbCRxdWC0DlfF53TC2SWzCIKYasuKaqiMYYqjH Dm7o9c56bB20sBLIACImaE9HtYra6pDLl9xSSD84/2aSLA96/4ZKyuTc2vUHx+FbelMrpnMeQs/e thYnQT78ev4FRNqCzvICXBmNqLwmlj7/qTlh8nwB9a5jwvp9mVTcYUPZeEPv241n7WjVPncukrOu p9yJ07puluK4fuU3RlmnCKxMFPc3txOzMg98VFuArKgeFzdw/AqiVponpzT6yienIPMsmldMyk/+ Zs0BJSHNS0jqseyybV6xSWC9pWSakhs61jCT2F6p1aZsG44Uit52h2r1Ep2tqdXPhlEst/HxdP1d VP2FRryJeldFEvjYpG6qqqd4ijEsTOv7CVqTHSuQ3GFVz54q/lo3PFm1ffVhmJWwxq/S9ODHAu6X Iu5sbi6Lsq+1aLRYqbk8tY2yKno5g0WbvFpjP5vMZwofnW90QpZ13fO+1Ylv1jafVtWsPH77tiqi 0VFCq/FRXkz4r7f5rHx7nXxN3t5E2eSw5UOHkzmPnMpux25vNZMJmYPXEKkVQQBewUWRWZ6AF4Oc MXmEB5bVKS2q6R0MXkhDmHjDI8ho2mzpbPhwO8d9gkk039cUzX2gdf8Zk9JmheTwkPj1usNHEmL2 oguml2R5XIdNt0Q2YsTE5FeI8GtClbicyQTpGdDnVSd6RlUVjb6yWXpFjyZHb/gj4SH1E6+TNCUg 1UZpvcg24Ybw/HEymddky9WPlqBH9ZYzLkNE2dLzo9dkVERjntm/PkpmUTWthe3oKk+Y3JFfQEeb hxaECfvJpOYMP5HL6OYu5UUIZOuu1uFeM/aoCYRlLhQKcIzxnxBOmcAhGJeomFBAN0N6xmcDwF2w MxDND8j/qT6xPDdVMa/ZJMSK3m882O9Xo9ekDeXl9RLiZNS0tI6YpY3WyK6dMq4AMgtrE0g7i7l/ 3fg12KnZI7CEJtKa/ZcmXymTv6AloDWBTNW5UzfJUbeW2cCWXdd+gcvsGhtoqZJz2Dq8cY0z1J7v ixp7sNwyBLRydGdx6DHksunrgW7vsxr2MgJhf+cR32yWb/J50UVpN4aQrWrNTnGeksqwYD5UnOe+ KSyaJFuuYegvdTR2dEKa9XuWnZBYsv6+TkgsWd82sMOe0JL1pmZ6kmlu89zwh2C166WVIZQdybBF e7qwZP0LlGqEuXl1zTIV29lmX0UiXteudNX0FBfT0iC57kCuy77vTgflan2tiK5ETzdOdTDsrKqm Cyc4a8vVPM2YigIPYnfDLuJuMy3NrpIiz7h18Yic8g3O1XReQvhyXlRRrfKMGrRBexrPUGvtukoi MqHVG/jncMRtWm/gnWBJGze2lNeN2lQud4T7h8p6YzNXwecXVUHv3HD8LCdsS4Qn+MKWZo1vCGbd TIpuapj6+LadGe5l66My6qZqOI5wJQl5yr15yuZ5MkxV9UzzEbPAZ/PL+pokvdpw7rRbarmd7O3S DTjDe79qbGZCPIdTVo6PuXUagmkWaTpycGCt+hdG3K8vxFdxRJzlB7MzgxwX+7YmnEAOCFiU28EU 6gqBh9cnmyC6XIw3JOORceAKgVixe/pCjnosYkyPMDXbHRYqjIvYgy9iiqornuEMEzZQgXlZSxEo MN+HDN+pYWPaVC5ZZFHqApBjOoYAleW44YZx5kUdtwMKzq3QZKYevGXnwIOYpHTCWOgiL1H9miSD vE8ZxNe1cbSN5sUXjpjdGM+jtPyhdkO2sa9LWlWrUa3rIvWCUNztyjxeXXQ3MwjVtl3TM1Rk5M+b kcteGLqSMywW8GG0Ee7GQm3k+1oCllK/jhP2b5Fkk6UksLU+8vE8bDgd41Ag6TK+Vl9NfstPz97+ lr//EjC+mqZt9EVd3XPMtA5aVFFSi6g1G2zPNRJrHylUthSLyTeiszoiUSBRbCQK2IQDFtJa11vJ 4VoTxJIIwa7lEah15sPTsy75ICOFaDard+TwXT19kK77oWfqwtMaI9IR6RuRPqH5pIhm05sNIG+x vG8qwgkTvFey1yxRK9i3urWJ76gpfihJOwpsSUpJmvdfmFRb0xTLGOb8R6laINFtnifJ8ELFDoaF 76F55IUxx9rHWucB5uIv98du2nwLyZp5bt5mK17tvq2TOEdZBlb2L9N5WW/e46r9W16RFfbfThJI OL0wGNRGi27/7e3Ne28WO/egwENMojkTVGpBo9mVu7wdt96Xcsem3FWjxOe2zMMfn/eO8YeeYZvq n10m/qVy0F1HIcka3xfSWFdmRV7l7L1wcTLJYPf1q3rbEGxhWE981l30ut1cycREbpkhUZqzG5qE 05N5GoH/uPG98P3cXYq3KL0pk43iIBz59u5JQ9KZiIgp/xuR2XFDS2aM+UFG4+J24++3M2Jz480w kENZfnlbvmD3JGc1fNdWD1FLtgNX140XWOfn8JCX3LEkfWlDN1iI+epztVQ/pccwmppqS4HpPcww orwxZPla2dTCi8TAnE/3MYX6BUin4AfnUskGqG5a/daxqrmB7/gvcD8skLwX1ZUnyimdMQEuJtdM kqCH8xmZ1XubIf9qk7ifDTEb2JQJNZ3/v61DwsRBCElgekrGLimPCAlhg2wSMwmy184n01ICQ3VE q07PfxK2VR1kC5dfj+Yx+Xgb2E14zelCO2DDz4j5mFO0Ydhyj0FXDFcOLEu0O/9lDPod7FIIcd6a VEu2lR6TKiuqHDiu6EDDF0pJUECtDyVJkm5I/ssTG+8YdG4zSMu6kiOIGF21o+gi77U1WrINOVRC 0V7qhx3VPRD6wOzO52BBBSWhf43orOomaxpdweK/LF91pqiVG4/6TKTvKoopPBXofohYZ7QgB79m 3FfQ6aLH5Ac20grTyX8As1780KsJD0qKoYwXpM8himVpb3hp1SxnMz9LodzZEk+EUk7jfJ51lclg zg7AsAi2Rhq1MUlw6iJPUtbFOscQT5kY9dvsblhBqPgPpCPuIc/kdPmV3pDrHBLGHYBhlo05/yQf P/Hvn4P/+vX0c+DD9/NfnPfvuy/1FT3GnQ2laXu+6PoyezzubAA//fq+GVP4thht79OHD8FHvx5w dpSsHfrg/PuAm8f7AF6STS8IRG//2+eB/3T25fTTR+f9we1ErnwbWA76J5SlLNh9XHQou8qUtwoC bB51CFiWXWWY4fa7GnXXOyOyRv5oFqA/+TdLNrU/yfWUZrW3J8/Sm+YnY/I3UOeVRgVMU5SmPYbd 9O3Qd5wHSs28j8M+imZJxQTiNwDicspUEgIGlKM+g2nZmmO9QAyfnNaVq/lAMqZwMV8ZrQd4YS3T wBCDXFZWkK2NyUbgpWvoZZH3L4qbjS5club3MI7VZmtUSJmALHXKeFiaUJ7buBGZ+JLOBH0gtGbJ Yb/aTjYi1wonZMfG0QjOLUr0XoCTtxHI/9kHRY6kqprzQJYBNMoL1c84msDD3KCOb7Di+lidhGoZ aH1YiGFJpmw4w6Tt2/5LYHRAG4z6ePpwRnIaz40QjdmiXf/iwyCa12yBuMIWHV8SDfEn6+UDMLjP dT7qPpqCZAWqFAwsNTZ8NJ/pOD70SpRfRlmfSbKdUNU90Uay+0D+EUb98On/esyJIjuBrrjCHCtN 55dyP/MchGyY5nyjRFtBu89CoJqO6fj2MPW/OcMnbu3xhuvoeiBM7m+67tKyIjuwLkU3A9fVhena TTP+FdFpzpbcV1Cl/DX5F82zycbWQOW5M8D5+mvg5DjPGQ11tkB2VZNJqH71wVI+brUZ48n536RO PSTbdWOn7LthqVZ7wYcIXlflM0hPZHFS5VGdi5917OfiNwSILn5NaRQDYZtKnTuOt7H7OZlX/Gcb dzr5OL/8whrNTvGs2E3KOE7fIFw1ChDcXVNwPSD860Ue3/AvrYR78v8AAAD//wMAUEsDBBQABgAI AAAAIQDDXhlCpAIAAE0LAAARAAAAd29yZC9lbmRub3Rlcy54bWzMls1y2jAQx++d6Tt4dAfZxgHi ATItTDq5dZL2ARRZYE2sj5FkDG9fyZ80phnjXMrBliXtz/9d7S5ePZxY5h2J0lTwNQimPvAIxyKh /LAGv389TpbA0wbxBGWCkzU4Ew0eNl+/rIqY8IQLQ7RnEVzHhcRrkBojYwg1TglDesooVkKLvZli waDY7ykmsBAqgaEf+OVIKoGJ1vZ9W8SPSIMah0/DaIlChTV2wAjiFClDTh0juBlyB+/hsg8KR4Cs h2HQR81uRs2hU9UDRaNAVlWPdDeOdMW5+ThS2CctxpFmfdJyHKmXTqyf4EISbhf3QjFk7KM6QIbU Wy4nFiyRoa80o+Zsmf68wSDK30YoslYtgc2SmwkLyERCslnSUMQa5IrHtf2ktXfS48q+vjUWaoj/ lclO4JwRbkrPoSKZjYXgOqWyrXA2lmYX0wZy/MiJI8uafYUMBpbLv9rTrgplBxwiv44/yyrlHxMD f8CJOERrMUTC3+9slDCbhd2LR4XmIrjBwAbSAMIeYI7JwIbfMJY1A+KuQh2HDiyNhlOdiuPQLrDB wD72XswFQCcmSW+ihE1cobNFBqVIt4nuiOQ2UXct7swuYiQPnyuEH0rksqPRz9GeurZWuA+MG1h1 QV0Wuf6cmJcUSdvtGI6fDlwo9JpZRbY8PJvhXnkC7moTxd3KITmV8+6sPddjwKb7MvKK2JylJWgi kUJGKGCnXH5OgnKftLZR7Nae7OR8t9hF32b3oJy1/zvGzS7qnzO1X2nJ8xr4/nd/4W9n7dSO7FGe mYuVkv5TuZuWCFvX7N6MugCHke8M3cNz7vxDuREAblawNansGtHVkqo2lNfav2uuYsEN5XnZ7V/e u+1f8Tp63C7DbRT8J15f1f9BBLqx3vwBAAD//wMAUEsDBBQABgAIAAAAIQDGGUWGpAIAAFMLAAAS AAAAd29yZC9mb290bm90ZXMueG1szJbJbtswEIbvBfoOAu8OKdmxXSF20CZIkVuRpA/AULRFRFxA Upb99iW1N3IDWbnUBy0k/08zw5kxb26PPAsOVBsmxQaEVwgEVBCZMLHfgN8vD7M1CIzFIsGZFHQD TtSA2+3XLzdFvJPSCmmpCRxDmLhQZANSa1UMoSEp5dhccUa0NHJnr4jkUO52jFBYSJ3ACIWofFJa EmqM++AdFgdsQI0jx3G0ROPCiT1wAUmKtaXHjhFeDLmG3+B6CIomgJyHUThEzS9GLaG3agBaTAI5 qwak62mkM84tp5GiIWk1jTQfktbTSIN04sMEl4oKN7mTmmPrXvUecqzfcjVzYIUte2UZsyfHRMsG g5l4m2CRU7UEPk8uJqwglwnN5klDkRuQaxHX+lmr96bHlb6+NQo9xv9Kci9JzqmwpedQ08zFQgqT MtVWOJ9Kc5NpAzl85MSBZ826QoUjy+Vf7em+CmUHHGN+HX+eVZZ/TAzRiB3xiFYxxoS/v9lYwl0W dh+eFJpecMORDaQBRAPAktCRDb9hrGsGJF2Feg4bWRoNp9oVz2FdYMORfey9MT2ASWySXkSJmrhC r8UWp9i0ie6J9DKjrlvcifdipPafK4SfWuaqo7HP0R67tlb4E8YFrLqg+kVuPmfMc4qV63acxI97 ITV+zZxFrjwCl+FBuQP+6hLF38pHeizH/V4HvseAbe9oFBSxPSmHMFRhja3UwA35BJ2F5ULlxIvY zz26wcU6WjwgtALlqPvjsX50Vf+81J3TkqcNQOgHWqG7eTt0T3c4z2xvpqT/0v5mFCbON7c2Yz7C 0QJ5oX95yr2DOLcSwO0NbCWVrjG6mtLVgvLaOHjWWSKFZSIvG/7ze8fRGb9Xd2H4PVwv/xO/z9r/ UQx6L2b7BwAA//8DAFBLAwQUAAYACAAAACEAJUba5K4CAADVCgAAEAAAAHdvcmQvZm9vdGVyMS54 bWyklttu2zAMQN8H7B8Mvbey49xq1CnWpBv6VmzdB6iyHGu1JENSbn8/ytd0XgvH9YMvlHhEUiSt 27ujyL0904YrGaPg2kcek1QlXG5j9Pv5+9USecYSmZBcSRajEzPobvX1y+0hSq32QFua6FDQGGXW FhHGhmZMEHMtONXKqNReUyWwSlNOGT4oneCJH/jlW6EVZcbAUmsi98SgGkePw2iJJgdQdsApphnR lh07RnAxZIZv8LIPmowAgYeToI8KL0bNsbOqB5qOAoFVPdJsHOk/zs3HkSZ90mIcKeyTluNIvXQS /QRXBZMwmCotiIVPvcWC6NddcQXgglj+wnNuT8D05w2GcPk6wiLQagkiTC4mLLBQCcvDpKGoGO20 jGr9q1bfmR5V+vWj0dBD/K9UNoruBJO29BxrlkMslDQZL9oKF2NpMJg1kP1HTuxF3sw7FMHAcnmv PW2qUHbAIebX8Rd5ZfnHxMAfsCMO0WoMMeHtmo0lArKwW3hUaM6CGwxsIA1g0gPMKRvY8BvGsmZg 2lWo4/CBpdFwql1xHN4FNhjYx/415gxgEptkF1EmTVyx0yWWZMS0ie6I7DKjZi3uJM5iVGw/Vwg/ tNoVHY1/jvbYtbWDO1tcwKoL6rzIzeeM+ZWRArqdoNHjVipNXnKwCMrDgwz3yh1wd0gU9yhf2bGU u732XI9BKzgUFSCbRgXR5BGScRE8+Jvp/AaVUvif2FJaXyCN4OCV/IyR76/9cOZ+FLVow1Kyy60b ufcX/jqs6E/aPf5QmLYneYw032YW4dUtbgfLW5ona/iDee3b86kAf17YFmq/mt5N5tJY/QzGrZ6+ /XhwY53k7cx3sIY5hy17Qz53LlzM1/dVgHRlpVRPWqm0VqhkdhW4r4GLMpl06zn3yzscSld/AQAA //8DAFBLAwQUAAYACAAAACEAIVqihGIGAADbHQAAFQAAAHdvcmQvdGhlbWUvdGhlbWUxLnhtbOxZ S28TRxy/V+p3GO0d/IgdkggHxY4NbQhEiaHiON4d7w6Z3VnNjJP4VsGxUqWqtOqhSL31ULVFAqkX +mnSUrVU4iv0PzPr9a49JgaCilp8sOfx+78fM7u+fOUkZuiICEl50vJqF6seIonPA5qELe9Wv3dh zUNS4STAjCek5Y2J9K5sfvjBZbyhIhITBPSJ3MAtL1Iq3ahUpA/LWF7kKUlgb8hFjBVMRVgJBD4G vjGr1KvV1UqMaeKhBMfA9uZwSH2C+pqltzlh3mXwlSipF3wmDjRrUqIw2OCwpn/kWHaYQEeYtTyQ E/DjPjlRHmJYKthoeVXz8Sqblys5EVMLaAt0PfPJ6DKC4LBu6EQ4yAlrvcb6pe2cvwEwNY/rdrud bi3nZwDY98FSq0sR2+it1doTngWQHc7z7lSb1UYZX+C/Modfb7fbzfUS3oDssDGHX6uuNrbqJbwB 2WFzXv/2VqezWsIbkB2uzuF7l9ZXG2W8AUWMJodzaB3PPDI5ZMjZNSd8DeBrkwSYoiqF7LL0iVqU azG+y0UPACa4WNEEqXFKhtgHXAczOhBUC8AbBBd27JIv55a0LCR9QVPV8j5OMVTEFPLi6Y8vnj5G p/eenN775fT+/dN7PzuoruEkLFI9//6Lvx9+iv56/N3zB1+58bKI//2nz3779Us3UBWBz75+9MeT R8+++fzPHx444FsCD4rwPo2JRDfIMdrnMRjmEEAG4tUo+hGmRYqtJJQ4wZrGge6qqIS+McYMO3Bt UvbgbQEtwAW8OrpbUvggEiOVxbsE3IniEnCXc9bmwmnTjpZV9MIoCd3CxaiI28f4yCW7MxPf7iiF XKYulp2IlNTcYxByHJKEKKT3+CEhDrI7lJb8ukt9wSUfKnSHojamTpf06aCUTVOiazSGuIxdCkK8 S77ZvY3anLnYb5OjMhKqAjMXS8JKbryKRwrHTo1xzIrI61hFLiUPxsIvOVwqiHRIGEfdgEjporkp xiV1d6B1uMO+y8ZxGSkUPXQhr2POi8htftiJcJw6daZJVMR+JA8hRTHa48qpBC9XiJ5DHHCyMNy3 KSmF++zavkXDkkrTBNE7I+EqCcLL9ThmQ0wM88pMr45p8rLGHUPfzgw/v8YNrfLZtw/dnfWdbNlb 4ARXzcw26kW42fbc4SKg73533sajZI9AQTig75vz++b8n2/Oi+r5/FvytAubK/jkom3YxAtv3UPK 2IEaM3Jdmv4twbygB4tmYojyS34awTATV8KFApsxElx9QlV0EOEUxNSMhFBmrEOJUi7h0cIsO3nr DTg/lF1rTh4qAY3VLg/s8krxYTNnY2aheaCdCFrRDJYVtnLpzYTVLHBJaTWj2ry03GSnNPOTeRPq BmH9KqG2WreiIVEwI4H2u2UwCctbDFFmtTUkwgFxLBfsqxl3nrs3i4lythLn4+QJg6mTddnNVBNL yjN03PLWm/Wmh3yctrwh3JZgGKfAT+pOg1mYtDxfWQPPrsUZi9fdWVWrTtbnDC6JSIVU21hGlsps ZUQsmepfbza0H87HAEczWU6LlbXav6iF+SmGlgyHxFcLVqbTbI+PFBEHUXCMBmwk9jHo3bDZFVAJ nd7kmp4IyG2zA7Ny4Wa1MfvKJqsZzNIIZ9muX81MLLRwM851MLOCevlsRvfXNEVX/HmZUkzj/5kp OnPhfroS6KEPp7jASOdoy+NCRRy6UBpRvyfg3DeyQC8EZaFVQky/gNa6kqNp37I8TEHBhUPt0xAJ Cp1ORYKQPZXZeQazWtYVs8rIGGV9JldXpvZ3QI4I6+vqXdX2eyiadJPMEQY3G7TyPHPGINSF+q5e XGzavOrBMxVk6ZcVVmj6haNg/c1UWOYALoizHWtOXL258OSZPWpTeMpA+gsaNxU+m15P+3wfoo/y cx5BIl7QXU1nYb44AJ3topWmWVkJb/8WlMudcXaxOM7R2fklasbZLxf3+s7ORiVfF/PI4erKfIlW Cs8hZjb3RxQf3AXZ2/B4M2J2RaYws4M9YQwe8GCcDZm0LcE6YtLSWbJPhogGJ5Owzng0+6cnP8z3 rQBte064cjZhhtc4251y4vrZxDmFkQwtOyc2T3EuBmwq2eJtlPMWmXuKJW/isiWUd7vMmb3LumyJ QL2Gy9TJy12WeariSjxyogTuTP66gvy1jEzKbv4DAAD//wMAUEsDBBQABgAIAAAAIQAC6MfuDgQA AO8LAAARAAAAd29yZC9zZXR0aW5ncy54bWy0Vt9v2zYQfh+w/8HQ8xRJtmQnQp3CcewlXbwOVYo+ UxJtE+EPgaTiuMP+9x1J0XKatEi65cUm77v77ni8O+rd+wdGB/dYKiL4NEhO4mCAeSVqwjfT4PPt MjwNBkojXiMqOJ4Ge6yC9+e//vJulyusNaipAVBwlbNqGmy1bvIoUtUWM6RORIM5gGshGdKwlZuI IXnXNmElWIM0KQkleh8N43gcdDRiGrSS5x1FyEglhRJrbUxysV6TCnd/3kK+xK8zuRRVyzDX1mMk MYUYBFdb0ijPxn6WDcCtJ7n/0SHuGfV6uyR+wXF3QtYHi5eEZwwaKSqsFFwQoz5AwnvH6ROig+8T 8N0d0VKBeRLb1XHk2esIhk8IxhV+eB3HaccRgeUxD6lfxzM+8JA+scn454I5IlC1rrevYhn6vEbG Fmm0RepQRYYRvy6o7EC3Z32OFH1J1TjohpQSSdeTXcmwKr/ecCFRSSEcKJ0B3P7ARmd+IYnmzy7x g5WbPATnMCO+CsEGu7zBsoJGmQZDaPTIACWECVPnUvwpdNFKKVpeX2EEsu/CSyF0B9d4jVqqb1FZ aNGAg3sER5wMY0debZFEFSgXDaqgA+aCaymo16sN6xwmkIQGcRZr4OZA/5c83oGBKa0weazUia2z 6FtbzOsnm294Hks9zSNDNx/NqlV4ubhBe9FqdzaLFG72AgVHDC7l0TxdiRqGI5hK8vLqMQY2O0nW JfFZRwLeCklqfGuKodB7ipeQ3IJ8xTNef2iVJsBop+p/iOBHAWBuPH+E8r3dN3iJkW7hGt/Ima2U JSXNikANymteQxW/mTOyXmMJDgjSeAXlTaTY2Ty7xngrv1BhX0AZpsfoFtrm7kJoLdjVvtlCrv+H m4yOyxk+NGrlF5+gc7xqHM/jUebHg0F7ZDQZzy/S55CLeBLPR88hPVt08Mpy80ibDnMrU7oD5izm iJWSoMHKPOOR0Sjl3QXhHi8xzEp8jBRt6cEwdIBiiNIlJNEDtrlZXhPVXOK1XdMVkpuet9OQz0ph zn04cJkJiuXvMAsbh+4kalxJepUkTTtLwvUNYV6u2rLwVhym+xEEg/XjvbR56tOzyzVcsW3tG2RL xepiHn4uzOVipPRMETQN7kT4x6euuqgsTGXgFWoaV2DlJpkGlGy2OjFmGnY1fADaTbkZdtjQYkOH 2Q2qzGFBu1v0sqGXHemNvGzUy1IvS3tZ5mVZLxt72djItjBSJCX8DmrdL418LSgVO1xf9fgTkUtC jSsCRVDsWdk/OCcOo0RB8zXwNmkhPfabxZI0r0V1bR7S1MlHs2wZZ2dnDs4OcObgv9NFlpzOR4sw Wy7OwskknYUXo+EiPEtnp4vJYnY5ytJ/uvL3X+rn/wIAAP//AwBQSwMEFAAGAAgAAAAhAAbS+Ie8 BAAAgkoAABIAAAB3b3JkL251bWJlcmluZy54bWzsnMtu4zYUhvcF+g6G9olEiaJkY5xB4kuRoigG mPQBGJmOhYiUQMl28gxddNdu+2x9kpKiJSfjCywltjZnE9kkzy+eo5/8CMPOl68vPOmtmMzjVAwt dO1YPSaidBaLp6H1x8P0KrR6eUHFjCapYEPrleXW15uff/qyHoglf2RSDewpDZEP1lk0tBZFkQ1s O48WjNP8mseRTPN0XlxHKbfT+TyOmL1O5cx2HeSUrzKZRizPlc6IihXNrY1c9HKa2kzStQrWgtiO FlQW7GWrgRqL+HbfDneF3BZCKkMX7Up5jaWIrWe1I4RbCalZ7Sj57ZT2JEfaKbm7SkE7JW9XKWyn tGMnvmvwNGNCdc5TyWmh3sonm1P5vMyulHBGi/gxTuLiVWk6pJKhsXhuMSMVVStwb9ZYIbB5OmOJ N6tU0qG1lGKwib+q4/XUByZ+c6ki5Cn5m5BxGi05E0WZuS1ZomqRinwRZ/UK523VVOeiElkdS2LF k2rcOkMnLpdD29PYlHIreMr0N/XniZn5cUXknPBEtEQdccoU3t+zmglXLtzeuFVp3hQXnbiBVALu jgCJ2IkbfqURbjTsaLtCtU584tKodMxT0TrxtrDoxH3sx8m8EchnxWzRSMWt6mrrWFrQBc1ro2tF 1mxSfi33yt/UKHv62EL4RabLbKsWf0ztfrutrfUJo4HWZkG9XeT5xybzfUEztdvxaHD/JFJJHxM1 I7U8esrhvfIJ6L/KKPpSvmQvZbt+1j29x1g36mhEH/NC0qj4fcl7797dK2+qI5ZSG0imzlVSN5pT 1O28YPJOMvqsh2gVkev7DFY0US0ewj5CU8vWPXyZFPFvbMWSh9eMVWPK1kS3mlEFz5Kqr48R9rA7 Mj3JSnfE6lLdq5xLNRiZUeqAN+V14+MySVhRxz+wl7rrv3/+qtt/jarWhM03w7NvUl9iodPRzUMr cHUZBgsqnsqjpkccPdauB0tzWVZqQh0/NyPKLru824/JoM9I5s+mySCMz5KN+wnZ/P1v02xcRM6S jdeJ0dwwPEs2ZqFf2mlq8mfJxu/Eadg7zy5AOnGa75xnFwg6cZofnGcXCDtxGsGftQvY73iuQ47C HrWBPfKJ5018bNJpDvu7W5+4JADYn2NhAOwB9pdxGsAeYH8ZpwHsPwX2bhvYu33fJX5ITDrNYe+E Exy6t25dpbr6AHuAPcAeYN+B0wD2APvLOK0z2HttYE88MgocbwPr5rAfB+PRLZ6WGb6vPsAeYA+w B9h34DSAPcD+Mk7rDPa4FezHfY+gO9+k0xz22Jlib+rBx/jnWBgAe4D9ZZwGsAfYX8ZpAPtPgb3f CvbTcIQc3Ppj/Anu476Hb+sq1dUH2APsAfYA+w6cBrAH2F/GaZ3BnrSBfeC4I2dMWn8bf0omzp2D NoeFt9UH2APsAfYA+w6cBrAH2F/GaZ3BPmgHe99xyCQw6TSHPSLjSf/Ow3WV6uoD7AH2AHuAfQdO A9gD7C/jtHPCXpSQF9VP7XTTO+JXitUNxZ4ws9PvDSuRfSDMbKl7w8pv9x0I2/n/ANuw8tOAA2Fm k9gb5h0JM6txb1j55A+EGdvvDfOPhBl/7Q0rD09VmLmao9fN/wAAAP//AwBQSwMEFAAGAAgAAAAh AIXawNQsEwAA8s8BAA8AAAB3b3JkL3N0eWxlcy54bWzsXW1z2zYS/n4z9x84+tT7kPpFfkumbsd2 kkumSZrGSfMZIiGLZ4rUkVQc99cfAEISZRAUF1zq0Lu9zlwsSvsQfB7sEtglwJ9++T5Pgm88L+Is vRwd/Xg4CngaZlGc3l2Ovnx+/exiFBQlSyOWZCm/HD3yYvTLz3//208PL4ryMeFFIADS4sU8vBzN ynLx4uCgCGd8zoofswVPxZfTLJ+zUnzM7w7mLL9fLp6F2XzByngSJ3H5eHB8eHg20jB5F5RsOo1D /jILl3Oelsr+IOeJQMzSYhYvihXaQxe0hyyPFnkW8qIQFz1PKrw5i9M1zNGJATSPwzwrsmn5o7gY 3SIFJcyPDtVf82QDcAoDODYAzkL+HYZxoTEOhGUdJ45gOGdrnDiq4bg1pgZQRGU0A6Ecr3g9kLas ZDNWzOqIHNao0zXc41xyNA9fvL1Ls5xNEoEkVA+EcIEClv8vrl/+o/7k39VxeQmjn4UvRFn4kk/Z MikL+TH/mOuP+pP653WWlkXw8IIVYRxfjq7ymAlCHl5wVpRXRcw+izaLE89j0YZX+pj8fnaVFvXf h8Xqw4HELf4Ux76x5HJ0fLw6ciPPs3UsYend6hhP66e9HN1nz37Ncv7s10/y+CSOxNlY/uz2Spoe 6Auo/q1d1uLpJ3XqBQtjdaYklvHi+PxMYsoPn5aSVrYsMw2rTKp/10AHBpfCr4WX31bBRnzLp++y 8J5Ht6X44nJ0KOHFwS9vP+ZxlouAcjl6/lwfvOXz+E0cRTyt/TCdxRH/OuPpl4JHm+O/v1ZBQR8I s2Uq/h6L5qtGFNGr7yFfyBAjvk2ZFOqDNFCKLOPNyZX5v1dgR5r9JvsZZzLOBkdPIVTzQRDH0qKo XW0z5vLJtatfgU403teJTvZ1otN9nUg5wj5OdL6vE13s60QKZsgTxWkkQrr6vXkaA3UXjsUbwTgW ZwPjWHwJjGNxFTCOxRPAOJaODsax9GMwjqWbAnDKLLT1wlpnH1t6ezvu7nuEG+7uW4Ib7u47gBvu 7oDvhrs7vrvh7g7nbri7o7cb7u5gDcethlrBW+Fmadnby6ZZVqZZyYOSf++PxlKBpSafOHjypsdz lItEgKkim74R90YLmfq8u4coJ3W/n5dyDhdk02Aa3y1zXvRuOE+/8SRb8IBFkcBDBMx5ucwtjLj0 6ZxPec7TkGN2bDxQORMM0uV8gtA3F+wODYunETJ9K0SUoLDu0GL+PJNOEiN06jkL86x/0zKGFh/e xUV/riRIcL1MEo6E9QGniyms/nMDBdN/aqBg+s8MFEz/iUFNMyyKNBoSUxoNiTCNhsRb1T+xeNNo SLxpNCTeNFp/3j7HZaJCfH3UcdQ9d3eTZLJc0Lsdt/FdysQAoP/tRudMg48sZ3c5W8wCmW9uhq1f M/Q811n0GHzGuKetkbDG9aqL3IirjtNlf0K30LCca42H5F5rPCQHW+P1d7H3YpgsB2hvcOYzt8tJ 2ei0CqmT096yZFkNaPt7Gyv797CNA7yO8wLNDZphEXrwBzmclXJiRL5NK/s3bIPV362eRiXU5mlI hFYmWXiPE4bfPC54LqZl972RXmdJkj3wCA/xtsyzqq/VXf5YSdLJ5V/NFzNWxGqutAXR/Va/etAg eM8WvS/oY8LiFEe3V8/mLE4CvBHEm8/v3wWfs4WcZkpicACvs7LM5miYOhP4w1c++QdOA6/EJDh9 RLraK6T0kAK7iRFuMhVSFiEhiWFmnMYo91CF9yt/nGQsj3DQPua8eran5EiIt2y+qAYdCL4l4uKD iD8IoyGF9wfLY5kXwnKqzyhgtbRhsZz8i4f9Q92HLEDJDP22LFX+UQ11lTUeXP9hwhZc/yGCUlPc HmT/RbjYLbj+F7sFh3WxNwkrithaQnXGw7rcFR729faf/Gm8LMny6TLBI3AFiMbgChCNwixZztMC 84oVHuIFKzzs60XsMgoPISWn8P6ZxxGaGAoMSwkFhiWDAsPSQIGhCtD/CZ0aWP/HdGpg/Z/VqcCQ hgA1MKx+hnr7R6ry1MCw+pkCw+pnCgyrnykwrH42fhnw6VQMgvFuMTVIrD5Xg8S70aQlny+ynOWP SJCvEn7HEBKkFdrHPJvKRR9ZWj3EjQApc9QJ4mC7gsMS+SufoDVNYmG2CyEjypIky5Bya5sbjrLc fnZtl5lax9G7CR8TFvJZlkQ8t1yT3VbMl2+rhRhPm6+a0Snt+S6+m5XB7Wyd7a/DnB3utFxN2LfM dp+wifOz1RqWJrP3PIqX81VDzcUUZ+PuxqpHbxmf7DbejCS2LE87WprnPNttuRklb1med7Q0z3nR 0VL56ZZlmz+8ZPl9Y0c4b+s/6zmepfOdt/WitXHjads60tqyqQuet/WiLVcJrsJQVgtMdbr5jN2+ m/PY7SFeZEeBuJMdpbNf2SHaHOwT/xbLOzskaKrzrZ+eMOK+GkR3ipy/L7Mqb79VcOq+qOutGDil BQ8accbdC1dbUcbOY+dwY4foHHfsEJ0DkB2iUySymoNCkh2lc2yyQ3QOUnYIcLQy7wiwaGXaw6KV ae8SrUwUl2jVYxRgh+g8HLBDgB3VhAA7ao+Rgh0C5KiGuZOjmihgRzUhwI5qQoAd1RyAwRzVtIc5 qmnv4qgmioujmihgRzUhwI5qQoAd1YQAO6oJAXZUx7G91dzJUU0UsKOaEGBHNSHAjqrGiz0c1bSH Oapp7+KoJoqLo5ooYEc1IcCOakKAHdWEADuqCQF2VBMC5KiGuZOjmihgRzUhwI5qQoAdtVpq6O6o pj3MUU17F0c1UVwc1UQBO6oJAXZUEwLsqCYE2FFNCLCjmhAgRzXMnRzVRAE7qgkBdlQTAuyoqljY w1FNe5ijmvYujmqiuDiqiQJ2VBMC7KgmBNhRTQiwo5oQYEc1IUCOapg7OaqJAnZUEwLsqCZEW//U JUrbY/ZH8Kyn9Yn97qUr3ahP9aXcdahxd6hVq+xY3dciXGfZfdC48HCs5hvdQOJJEmcqRW0pq9dx 1SMRoMLnbzftK3zq6D03XdJrIVTN1AA/6Wpp5FRO2rp83dKY5J209fS6pTHqPGmLvnVL4zZ40hZ0 lV+uHkoRtyPDuC3M1IyPLOZt0bpmblLcFqNrhibDbZG5ZmgS3BaPa4angQzOT61PO/J0tn6+1EBo 6441hHM7Qlu3NLVahWPTMbqKZkfoqp4doauMdgSQnlYYuLB2KLDCdig3qU03g0rt7qh2BKjUJoKT 1AaMu9QmlLPUJpSb1GZghEptIkCldg/OdgQnqQ0Yd6lNKGepTSg3qc1bGVRqEwEqtYkAlbrnDdkK 4y61CeUstQnlJrU5uINKbSJApTYRoFKbCE5SGzDuUptQzlKbUG5SG7NksNQmAlRqEwEqtYngJLUB 4y61CeUstQnVJrXKomxJDVK4Zg4bhNUMYTfkmiEsONcMHWZLNWvH2VINwXG2ZGq10hw2W6qLZkfo qp4doauMdgSQnlYYuLB2KLDCdig3qWGzpSap3R3VjgCVGjZbskoNmy21Sg2bLbVKDZst2aWGzZaa pIbNlpqkdg/OdgQnqWGzpVapYbOlVqlhsyW71LDZUpPUsNlSk9Sw2VKT1D1vyFYYd6lhs6VWqWGz JbvUsNlSk9Sw2VKT1LDZUpPUsNmSVWrYbKlVathsqVVq2GzJLjVsttQkNWy21CQ1bLbUJDVstmSV GjZbapUaNltqlRo2W3ovTGKELaBu5ywvA7z94t6wYlay/psTfklzXmTJNx4FuJf6DnSVBw9br7+S 2Oqte+L3peBM7oBeW64UVTvAakD1w7cCiak3WMlGBPr9X/rFVaqtulKr/s4LMZ3Wvzk8fH11enOl 6poHGm3H+ddnPDLOuHnVlTrRhIlr/E1yo75l1dFU7pC4fWjTIVdfaJerN1u/euye88UHAaGOyQ+C a16oT5u3kk3k/mCi4SeHah0Vm5Y8Fw0+1i6YVVswvfuWrHnQBOiT6He5bd65tirB1t+5Vh2rvTgN xN6xlT3tkf3Z2/S+6ndbfQ+F3/FZR35X/dzG77jhnXbVMVd+x1Z+dfn/L8FvtYGl5vfCSu+KqW16 Qxn81711LP9bsbw21HfHrXcJqmOuvJ9YedcPT/wVeD++6Ma74rOd9zP1P4N3TcYW76so7MT7qZV3 /ejJX4L3k268r5jqxLsro9U7IZsY1XL+LzGqOonBaKx+7cxrOBPEhnojTNu45dCg2bLHvYVKPdjY RaW9laUcK7e10BzobO2kaZO4s8blJKnoFn+8TeXY7EG/YLRqYPRd9yPx/Q1Pkves+nW2sP804VPZ C8W3R4dqk6Mn30+q/Xqt9rma2FkBDrYbU31s7wzVG3z0E4c2qs1R0WpT0J4sd5A/XBaCEjUGf9ou JbQeTz9tYDXVqg+263rC9Wr6FqCW+bWDVs0BkZljquo516qN7tHwSIcl12Cno1u1UKBllLma7Nbv utWx3bEM2E3MqPZ/1E/MMeD6tQ69u4oO9z27ihxYN/WVDkO3ccNUsDqG04lYNZJ7ypG+7nqfUeaf sodrlka38Z9rsjc/Vb+4yRL7L5r63VE1a265o+zqe82/2LqnoPS/TnxW4zjiE4vPc+ITlc8L4hOV z+fEJyqfVWaZ+MTic0J8ovIZEp+ofEbEJyqfnPhE5XNKfOLyWeUqiFA0QquEMRGKRmiVFiZC0Qit MrlEKBqhVcqTCEUjlLKgyIRSGhSZUMqDIhNKiVBkQikTikwopUKRCaVcKDKhlAxFJpSyociEUjoU mVDKh2ITSglRbEYpI4rNKKVEsRmlnCg2o5QUxWaUsqLYjFJatDOjlqe9pzoT2rBA5oevfPIP3eAn DFdH7Qs6GtbJbC9cfvV6/Pz5dfVj/RC3ufxJX3n18WpZZvonuiOsFq5Wv1KfzB/JlVLrhVTyw6el 7ElM/FATuf0MeS5XK8lHw1kRxrFcIzHnRfCBPwSfsjlTS8w5K8qrImaNX86u0qLZLCzMw+r6uyws FG1niht1jKfPvtzq5jutjhOyV/nauuxq74HNyzVBwo91K+1L1Y8vzs8OtTNpymO1XEo6y+XofLX8 OJTvJP9eLlmiX49cU6lDvKhfYpVBNZdxyC3pmi9Pt6/h+nTHfrL8/np88vylpRd37nn1OHWd5RHP 1S4CVYxRZyoEor68P+X6SfmHOA/XC0FCue5hg7yOP06269jkZL2KW07GsXCdiL/pZ/6Hm3kVQtf0 I96jWtPOOL2G7m4dtWjNWJMWe9WiNdlNWuxVi9Y8OWmxVy1aU+ykxV61aM3Okxb71aI1sU9i7FeM 1poAibFfMVrLCSTGfsVorUSQGPsVo7WIQWLsV4zW+geJsV8xWksnJMZ+xWh9Gp3E2K8YrU+ykxj7 FaP1KXgSY79iUCnDIzGoluGRGFTM8EgMqmZ4JAaVMzwSg+oZPolBBQ2f1KCKhk9qUEnDJzWopuGT GlTU8EkNqmr4pAaVNXxSg+oaPqlBhQ2f1KDKhk9qUGnDJzWotuGTGlTc8EkN2tMIn1Pa1gifU9rZ aABOaXOjAUj9b+1vVGPt6HQHJw0/GJQTyr971UUpAe+VHJSB90oOSsF7JQfl4L2Sg5LwXslBG+UP QCptlj8AqbRh/gCk0qb5A5BKG+cPQColmgcglTLNA5BKqeYhSKVc8xCs0mb6Q7BKG+oPwSptqj8E q7Sx/hCs0ub6Q7BKG+wPwSq9fHQIVimxOgSrlFkdglVKrQ7BKuVWh2CVkqtDsErZ1SFYpfTqEKxS fnUQVinBOgitlGEdhFZKsQ5CK+VYB6GVkqyD0EpZ1kFopTTrILRSnnUQWinROgitlGkdhFZKtQ5C K+VaB6GVkq2D0ErZ1kFopXTrILRSvnUYWinhOgyvlHEdhldKuQ7DK+Vch+GVkq7D8EpZ12F4pY0K fFOE9irwTRFK9g7DK23/65sitAWwb4rQNsC+KUJbAfumCL3s0DdF6I2HvilCrz30ThF696F3ktAL EL2ThHZh9k4S2onZO0loN2bvJKEdmb2ThIod3klC1Q7vJKF3JHonCVVKvJOESiXeSUK1Eu8koWKJ d5JQtcQ7Sahc4p0kVC/xTxIqmPinCVVM/NOESib+aUI1E/80oaKJf5pQ1cQ/Tahs4p8mVDfxTxMq nPinCVVO/NOESif+aUK1E/80oeKJf5pQ9cQ/Tah84p8mVD/xUBMqoHgoClVQPBSFSigeikI1FA9F oSKKh6JQFcVDUaiM4qEoVEfxUBQqpHgoClVSPBSFSikeikK1FA9FoWKKh6JQNcVDUaic4qEoVE/x URQqqPioClVUfFSFSio+qkI1FR9VoaKKj6pQVcVHVais4qMqVFfxURUqrPioClVWfFSFSis+qkK1 FR9VoeKKj6pQdcVHVai84qMqVF/xUhUqsHgpC1VYvJSFSixeykI1Fi9loSKLl7JQlcVLWajM4qUs VGfxUhYqtHgpC1VavJSFSi1eykK1Fi9loWKLl7JQtcVLWajc4qUsVG/xUxYquPipC1Vc/NSFSi5+ 6kI1Fz91oaKLn7pQ1cVPXajs4qcuVHcZQJfVX8XP/wEAAP//AwBQSwMEFAAGAAgAAAAhAPzlvKwu AQAASwMAABQAAAB3b3JkL3dlYlNldHRpbmdzLnhtbJzRzW7CMAwA4PukvUOVO6SggVBF4TJN2nnb A4TEpRFJXMVhhbef2wGrxIXukn9/sp319uRd9g2RLIZSzKa5yCBoNDbsS/H1+TZZiYySCkY5DFCK M5DYbp6f1m3Rwu4DUuKXlLESqPC6FHVKTSEl6Rq8oik2EPiywuhV4m3cS6/i4dhMNPpGJbuzzqaz nOf5UlyY+IiCVWU1vKI+egipj5cRHIsYqLYNXbX2Ea3FaJqIGoi4Hu9+Pa9suDGzlzvIWx2RsEpT LuaSUU9x+CzvV979AYtxwPwOWGo4jTNWF0Ny5NCxZpyzvDnWDJz/JTMAyCRTj1Lm177KLlYlVSuq hyKMS2px486+65HXxfs+YFQ7xxL/esYfl/VwN3L93dQv4dSfdyUIufkBAAD//wMAUEsDBBQABgAI AAAAIQAFVTJRWAEAAIgCAAARAAgBZG9jUHJvcHMvY29yZS54bWwgogQBKKAAAQAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAACEklFrwjAUhd8H+w8l723SdjopbYVt+CAKwjo29hbSaw02SUkyq/9+ adWqTNhjOOd+Ofck6XQvam8H2nAlMxQGBHkgmSq5rDL0Ucz8CfKMpbKktZKQoQMYNM0fH1LWJExp WGnVgLYcjOdI0iSsydDG2ibB2LANCGoC55BOXCstqHVHXeGGsi2tAEeEjLEAS0tqKe6AfjMQ0QlZ sgHZ/Oi6B5QMQw0CpDU4DEJ88VrQwtwd6JUrp+D20MBd61kc3HvDB2PbtkEb91aXP8Rfy8V7v6rP ZdcVA5SnJUuYBmqVzlfUas623sKVWtEUX0ldjTU1dukaX3MoXw75nMJGKenNQckqxX8N3YyGHe+e LI96x3BMT/sfL4DSc7mT45Zn5TN+fStmKI9IFPpk7EejgkySUZwQ8t1lu5m/AMUpwL/EiR8+FeQ5 ice3xDMg7xPf/p38FwAA//8DAFBLAwQUAAYACAAAACEA+Mw2oIMBAADYAgAAEAAIAWRvY1Byb3Bz L2FwcC54bWwgogQBKKAAAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACcUstOwzAQvCPxD1Hu 1EkQhaKtESpCHHhJDXC27E1i4diWbRD9ezaEhiBu5LQ76x3PTAwXH73J3jFE7ew6LxdFnqGVTmnb rvOn+vroLM9iElYJ4yyu8x3G/IIfHsBjcB5D0hgzorBxnXcp+XPGouywF3FBY0uTxoVeJGpDy1zT aIlXTr71aBOrimLJ8COhVaiO/ESYj4zn7+m/pMrJQV98rnee+DjU2HsjEvL7YdMslEs9sAmF2iVh at0jLwieGngULUZeHQMbK3hxQUVero6rJbCxgU0ngpCJQuRlWZQnK2AzCC69N1qKRAnzOy2Di65J 2cOX7GygADY/AmRli/It6LQb1MxbuNWWVKzKU2BjSQqDaIPwHck8ORt0Tj1spTC4oSB4I0xEYD8A bFzvhSVKNlXE+BqffO2uhky+V36DM68vOnVbLySJKKtVVZ3OXc+GsCUUFdmYVEwA3ND/CWa4gnZt i2p/5u9gyPF5fKi8XC4K+r6C22NkfXpB/BMAAP//AwBQSwMEFAAGAAgAAAAhAIVrccrgAAAAlAEA ABgAKABjdXN0b21YbWwvaXRlbVByb3BzMS54bWwgoiQAKKAgAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAlJBBa8MwDIXvg/4Ho3vjpB1jlDq9lEGvY4NdjaMkBlsKljMGY/99Dl0H7WEw g22exNP30P7wEYN6xySeyUBT1aCQHHeeBgOvL0/rR1CSLXU2MKEBYji0q7t9J7vOZiuZE54yRlUK vvyno4HP5uesm832/ua53C9QBU1ljBgYc552WosbMVqpeEIqzZ5TtLnINGjue+/wyG6OSFlv6vpB u7ng41sM0C55zu5n7OVaLtHm5H8pZxtzIVyAA/MQsHIcNei/3f/MmDDYXHYro59kma1vki76apPt NwAAAP//AwBQSwMEFAAGAAgAAAAhALsV0iZZAQAAAQIAABMAKABjdXN0b21YbWwvaXRlbTEueG1s IKIkACigIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJSRy27CMBBFfwV5i4pTCgQQ oeIhSCiojxACSzc4jqntCbaTAl/fFLXdVF10OXPvzJyrGdyfpKiVVBsOykO3DQfVqEpgzxXzULSe 3XRRzVii9kSAoh46U4PuhwMGfTaFxEwKY0FupZgSS0ILmjBaq1Yq02fgoczavI9xcnUBVIJJMiqJ aTAAJmgjAYnR14D+8X+bIKeq0lLQktiq1AxDmvKEVqcLSZXFTcfpYE0FsRW/yXhu0BVu/8P2CfZ/ Ig2F2lvN82suzhSxha7ij1b25Eruhr3j7PKS5uNss1Sle9d8XJerhZL+s+eh4WgVxU257ZGOGvHV JOts5iJqY8ePnn0fcNgKuttiMdGt9vTce73Eu+DoFIeC1g/nzaGtAl66sCvC3rL06/lTsJhHcVce 3DCJ81aUpNt1nAVhLLQWD5CLjI7fzPutA94A/4o+vPb+/NXwAwAA//8DAFBLAwQUAAYACAAAACEA dD85esIAAAAoAQAAHgAIAWN1c3RvbVhtbC9fcmVscy9pdGVtMS54bWwucmVscyCiBAEooAABAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIzPsYrDMAwG4P3g3sFob5zcUMoRp0spdDtKDroaR0lM Y8tYamnfvuamK3ToKIn/+1G7vYVFXTGzp2igqWpQGB0NPk4Gfvv9agOKxcbBLhTRwB0Ztt3nR3vE xUoJ8ewTq6JENjCLpG+t2c0YLFeUMJbLSDlYKWOedLLubCfUX3W91vm/Ad2TqQ6DgXwYGlD9PeE7 No2jd7gjdwkY5UWFdhcWCqew/GQqjaq3eUIx4AXD36qpigm6a/XTf90DAAD//wMAUEsDBBQABgAI AAAAIQD+cPdChAIAAJUJAAASAAAAd29yZC9mb250VGFibGUueG1s1JRNjtMwFID3SNwh8n4mTib9 1aSjmc5UYsMCDQdwHaexiO3ITv92XAEJlkjsOAC3YjgEz04aMrSFSUFItGrqPNtf7C/v+fJqI3Jv xbThSsYoOMfIY5KqhMtFjF7fz86GyDMlkQnJlWQx2jKDribPn12ux6mSpfFgvjRjQWOUlWUx9n1D MyaIOVcFk9CZKi1ICbd64Qui3yyLM6pEQUo+5zkvt36IcR/VGP0UikpTTtmtokvBZOnm+5rlQFTS ZLwwO9r6KbS10kmhFWXGwJ5FXvEE4bLBBNEeSHCqlVFpeQ6bqVfkUDA9wK4l8h+AXjdAuAfoU7bp xhjWDB9mtjk86cbpNxyetDinLaYFMEmZZJ0o4c6rb+eSkmTEZG0i67aoXoPbCutI0PGLhVSazHMg wVv34MV5DmyvsH/755ps4+J2C2hSl4K3HksiYOY9F8x4L9nae6UEkW5AQaQyLIAxK5LHCNvd9PEF 7uEIfiG0IuTbgTQj2jALqwbiKpwSwfPtLqod13UUvKTZLr4imtvVV12GL6BjaeY4RncY4/BuNkNV JIjRFCKDYe+mjoT2We4zqiMXTQTbCHUcdxtUHOo4zRh4pl+Z2DNyDcvKj3i4AQ+R81F9u3gwa27M f+Th4fO7bx/fel+/fHp4/+Gojx5kQ+hY9nrYxzD4Oz5G1XNaPsLR7WAwne35CMLf+BjaQd18TOHA Vjkxv0iNUZUUTkmX1BAqYfpQjaR8w5IDiRE4Dy0REQRm0ybSKTFGHRNjSnI+1/yIh5k7Ik7zcGKJ XP9cImE0+CclMiUCRJAjJuxhWR2a9vDsZuK0QxP3H+VEaE08yomqUt2+/zAn6oaZfAcAAP//AwBQ SwECLQAUAAYACAAAACEAduTmepkBAACxBwAAEwAAAAAAAAAAAAAAAAAAAAAAW0NvbnRlbnRfVHlw ZXNdLnhtbFBLAQItABQABgAIAAAAIQAekRq37wAAAE4CAAALAAAAAAAAAAAAAAAAANIDAABfcmVs cy8ucmVsc1BLAQItABQABgAIAAAAIQDAU3hfYAIAAIoZAAAcAAAAAAAAAAAAAAAAAPIGAAB3b3Jk L19yZWxzL2RvY3VtZW50LnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhAInPBcJOfwEAFSQfABEAAAAA AAAAAAAAAAAAlAoAAHdvcmQvZG9jdW1lbnQueG1sUEsBAi0AFAAGAAgAAAAhAMNeGUKkAgAATQsA ABEAAAAAAAAAAAAAAAAAEYoBAHdvcmQvZW5kbm90ZXMueG1sUEsBAi0AFAAGAAgAAAAhAMYZRYak AgAAUwsAABIAAAAAAAAAAAAAAAAA5IwBAHdvcmQvZm9vdG5vdGVzLnhtbFBLAQItABQABgAIAAAA IQAlRtrkrgIAANUKAAAQAAAAAAAAAAAAAAAAALiPAQB3b3JkL2Zvb3RlcjEueG1sUEsBAi0AFAAG AAgAAAAhACFaooRiBgAA2x0AABUAAAAAAAAAAAAAAAAAlJIBAHdvcmQvdGhlbWUvdGhlbWUxLnht bFBLAQItABQABgAIAAAAIQAC6MfuDgQAAO8LAAARAAAAAAAAAAAAAAAAACmZAQB3b3JkL3NldHRp bmdzLnhtbFBLAQItABQABgAIAAAAIQAG0viHvAQAAIJKAAASAAAAAAAAAAAAAAAAAGadAQB3b3Jk L251bWJlcmluZy54bWxQSwECLQAUAAYACAAAACEAhdrA1CwTAADyzwEADwAAAAAAAAAAAAAAAABS ogEAd29yZC9zdHlsZXMueG1sUEsBAi0AFAAGAAgAAAAhAPzlvKwuAQAASwMAABQAAAAAAAAAAAAA AAAAq7UBAHdvcmQvd2ViU2V0dGluZ3MueG1sUEsBAi0AFAAGAAgAAAAhAAVVMlFYAQAAiAIAABEA AAAAAAAAAAAAAAAAC7cBAGRvY1Byb3BzL2NvcmUueG1sUEsBAi0AFAAGAAgAAAAhAPjMNqCDAQAA 2AIAABAAAAAAAAAAAAAAAAAAmrkBAGRvY1Byb3BzL2FwcC54bWxQSwECLQAUAAYACAAAACEAhWtx yuAAAACUAQAAGAAAAAAAAAAAAAAAAABTvAEAY3VzdG9tWG1sL2l0ZW1Qcm9wczEueG1sUEsBAi0A FAAGAAgAAAAhALsV0iZZAQAAAQIAABMAAAAAAAAAAAAAAAAAkb0BAGN1c3RvbVhtbC9pdGVtMS54 bWxQSwECLQAUAAYACAAAACEAdD85esIAAAAoAQAAHgAAAAAAAAAAAAAAAABDvwEAY3VzdG9tWG1s L19yZWxzL2l0ZW0xLnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhAP5w90KEAgAAlQkAABIAAAAAAAAA AAAAAAAAScEBAHdvcmQvZm9udFRhYmxlLnhtbFBLBQYAAAAAEgASAJEEAAD9wwEAAAA= --00000000000001fa3605c9801f23-- From nobody Sat Aug 14 08:30:19 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1C86A3A1447; Sat, 14 Aug 2021 08:30:14 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.097 X-Spam-Level: X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nohats.ca Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id kB8FIDgnqjuK; Sat, 14 Aug 2021 08:30:08 -0700 (PDT) Received: from mx.nohats.ca (mx.nohats.ca [IPv6:2a03:6000:1004:1::68]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 045BF3A1444; Sat, 14 Aug 2021 08:30:07 -0700 (PDT) Received: from localhost (localhost [IPv6:::1]) by mx.nohats.ca (Postfix) with ESMTP id 4Gn49g5HMZzCWP; Sat, 14 Aug 2021 17:29:59 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nohats.ca; s=default; t=1628954999; bh=OMY8l8tUjwDIgBDUd+fhWqBuvFgpLoUtfpczb8NjvWw=; h=Date:From:To:cc:Subject:In-Reply-To:References; b=UqpwoHChWuu6fCGDjfc3oKLloCcIAYzEgFh1CiwK7UzbQCzA+FspqHr7Ad1jqzTkA xnUfUhMq+6bmobX8K9wY0yY/XxqCZe5PDpnSbAIWPKJNivapdvQQ8CqZtgM2gGaWuo x5NEqK3Rqio01DDPZFncbQadQHo7fWQtrpfA5/Rc= X-Virus-Scanned: amavisd-new at mx.nohats.ca Received: from mx.nohats.ca ([IPv6:::1]) by localhost (mx.nohats.ca [IPv6:::1]) (amavisd-new, port 10024) with ESMTP id pf6Sd8hlsy9I; Sat, 14 Aug 2021 17:29:58 +0200 (CEST) Received: from bofh.nohats.ca (bofh.nohats.ca [193.110.157.194]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx.nohats.ca (Postfix) with ESMTPS; Sat, 14 Aug 2021 17:29:57 +0200 (CEST) Received: by bofh.nohats.ca (Postfix, from userid 1000) id DBE15DFF76; Sat, 14 Aug 2021 11:29:56 -0400 (EDT) Received: from localhost (localhost [127.0.0.1]) by bofh.nohats.ca (Postfix) with ESMTP id D85A0DFF75; Sat, 14 Aug 2021 11:29:56 -0400 (EDT) Date: Sat, 14 Aug 2021 11:29:56 -0400 (EDT) From: Paul Wouters To: "Mr. Jaehoon Paul Jeong" cc: secdir@ietf.org, "i2nsf@ietf.org" , Last Call , Roman Danyliw , skku-iotlab-members In-Reply-To: Message-ID: References: <162136896309.19274.13384213577960243417@ietfa.amsl.com> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8BIT Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-i2nsf-capability-data-model-16 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 14 Aug 2021 15:30:14 -0000 On Sat, 14 Aug 2021, Mr. Jaehoon Paul Jeong wrote: > Hi Paul,Here are the revision letter and revised draft reflecting your comments. > > https://datatracker.ietf.org/doc/html/draft-ietf-i2nsf-capability-data-model-17 > > You can find my responses to your comments from page 36 in the revision letter. > > Patrick and I worked together for this revision. > > Please let me know whether this version satisfies your comments or not. Thanks, looks good to me! Paul W From nobody Sat Aug 14 13:56:49 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 749B33A2292; Fri, 13 Aug 2021 11:39:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1628879986; bh=HL5DWWU7b2T0q0E+3qL9EHfPpKrh6KpHVBMqlsgbBMM=; h=From:To:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe:Reply-To; b=VY+X8lxbe0h1SaQ9V/Dmj796dKaYQlrEnMJ19Z35gWDW9k1Lr1BaRSQ6Q3Nk0aD7z 0I0INDtudkZVFf0w/lSc2g5PRDdb/ehmu0Le17RQDvz7o0ineLNOu/fG2SO6/nJ+HF 1sjKEpvLhD+hFPO7v9d9yMOqzFionaReDZClzuxs= X-Mailbox-Line: From new-work-bounces@ietf.org Fri Aug 13 11:39:37 2021 Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 70A0B3A2250; Fri, 13 Aug 2021 11:39:20 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1628879960; bh=HL5DWWU7b2T0q0E+3qL9EHfPpKrh6KpHVBMqlsgbBMM=; h=From:To:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe:Reply-To; b=RXeWXXwf/wqqCedWa23lcoH5/mtQZRKqT1r/oAd7KxMZcTmtHJNnSFjRC5YcayITl qq7l/HenKk99wWnT/SK3IfhJcFcXET5ikHByAzVh404MFz/sfRSvdxorsRjYuyNosI QzFK3qcfmATAac9ws1+5lKJXs5rK/U+q9ZVyzxk0= X-Original-To: new-work@ietf.org Delivered-To: new-work@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 9DAEB3A221F for ; Fri, 13 Aug 2021 11:39:13 -0700 (PDT) MIME-Version: 1.0 From: The IESG To: X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk MIME-Version: 1.0 Reply_to: Message-ID: <162887995362.31613.16622964624667351495@ietfa.amsl.com> Date: Fri, 13 Aug 2021 11:39:13 -0700 Archived-At: X-BeenThere: new-work@ietf.org X-Mailman-Version: 2.1.29 Reply-To: iesg@ietf.org Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: new-work-bounces@ietf.org Sender: "new-work" Archived-At: X-Mailman-Approved-At: Sat, 14 Aug 2021 13:56:48 -0700 Subject: [secdir] [new-work] WG Review: Application-Layer Traffic Optimization (alto) X-BeenThere: secdir@ietf.org List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 13 Aug 2021 18:39:55 -0000 The Application-Layer Traffic Optimization (alto) WG in the Transport Area of the IETF is undergoing rechartering. The IESG has not made any determination yet. The following draft charter was submitted, and is provided for informational purposes only. Please send your comments to the IESG mailing list (iesg@ietf.org) by 2021-08-23. Application-Layer Traffic Optimization (alto) ----------------------------------------------------------------------- Current status: Active WG Chairs: Jan Seedorf Qin Wu Assigned Area Director: Martin Duke Transport Area Directors: Martin Duke Zaheduzzaman Sarker Mailing list: Address: alto@ietf.org To subscribe: https://www.ietf.org/mailman/listinfo/alto Archive: https://mailarchive.ietf.org/arch/browse/alto/ Group page: https://datatracker.ietf.org/group/alto/ Charter: https://datatracker.ietf.org/doc/charter-ietf-alto/ The ALTO working group was established in 2008 to devise a request/response protocol to allow a host to choose optimal paths to resources from a server with more knowledge of the network. The working group developed an HTTP-based protocol, and reported proof-of-concepts of ALTO based solutions supporting applications such as content distribution networks (CDN). To support current and future deployments of ALTO, the working group is now chartered for the following activities: o Collect implementation deployment and experience. It is hoped that ALTO practitioners will report their experiences on the mailing list, and the working group will track implementation and deployment reports on a wiki or in an Internet-Draft not expected to be published as an RFC. This will motivate further work to extend and improve ALTO. o Perform protocol maintenance for the existing published protocol. o Develop operational support tools for ALTO. Based on experience from deployments, the advice in RFC 7971, and the latest opinions and techniques from the Operations and Management Area, the working group will develop tools to configure, operate, and manage the ALTO protocol and networks that use ALTO. This may include YANG models and OAM mechanisms, in consultation with the OPS area and the IPPM WG. The working group may also update RFC 7971 in the light of new experience and protocol features that were added to ALTO after that RFC was published. o Support for modern transport protocols. ALTO only uses the capabilities of HTTP version 1. Since then, the IETF has developed HTTP/2 and HTTP/3. The working group will develop any necessary protocol extensions and guidance to support the use of ALTO over HTTP/2 and HTTP/3. o Future use cases. The working group will provide a forum to discuss possible future use cases. The objective of this discussion will be to determine a small set of use cases that have strong support and a realistic chance of implementation and deployment. The working group will not develop protocol extensions for these use cases until it has been re-chartered specifically for that purpose. At the conclusion of the OAM and HTTP2/3 deliverables, plus completion of any adopted drafts emerging from the other work items, the working group will close or recharter. Milestones: Mar 2022 - Support Document for ALTO over HTTP/2 and /3 Aug 2022 - Wiki or internet-draft on ALTO deployments and challenges Aug 2022 - ALTO YANG Model _______________________________________________ new-work mailing list new-work@ietf.org https://www.ietf.org/mailman/listinfo/new-work From nobody Sun Aug 15 13:49:45 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id BBD023A0AD4; Sun, 15 Aug 2021 13:49:35 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: Nancy Cam-Winget via Datatracker To: Cc: draft-ietf-opsec-ipv6-eh-filtering.all@ietf.org, last-call@ietf.org, opsec@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <162906057566.11176.6571419812700378889@ietfa.amsl.com> Reply-To: Nancy Cam-Winget Date: Sun, 15 Aug 2021 13:49:35 -0700 Archived-At: Subject: [secdir] Secdir telechat review of draft-ietf-opsec-ipv6-eh-filtering-08 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 15 Aug 2021 20:49:36 -0000 Reviewer: Nancy Cam-Winget Review result: Ready I have reviewed version -08 based on comments I'd provided on -06 and thank the authors for addressing most of my comments. I find -08 in general to be ready but would like to see Tim Chown's nits to also be addressed. From nobody Sun Aug 15 23:00:20 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 77AC23A16AF; Sun, 15 Aug 2021 22:53:50 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1629093230; bh=w5XgHbe7Pvfuczni3c3sX6i0Lo1l5UYnI0PTyT6Bx4o=; h=To:From:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=Fr4KlK36RtLRxLQ8zXX7NxrcL/D7pjEE5QJKaHSVjebsAaGGW08lw2zqojMTOUpuj B3uvhy+TeCRKytwTU0L+Zd78T0bx2Uav5uEpBp/uJAd2PEAjOzVmGiZSnePILUa3BB C1n4pLEKF95/sJZQUjVIGY6EsAbayy4wD2M9gjiY= X-Mailbox-Line: From new-work-bounces@ietf.org Sun Aug 15 22:53:49 2021 Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 5AB283A16AA; Sun, 15 Aug 2021 22:53:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1629093229; bh=w5XgHbe7Pvfuczni3c3sX6i0Lo1l5UYnI0PTyT6Bx4o=; h=To:From:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=uZ5tBKPGdJn4XcYAAMDCvqJXgxBFEQWKUNKtYVbV2koq2VkDARcJFz2XxdD5wOScI eY7UdyaCQNlBQHeshrBNtBmkw94z3SuU4GmNF8b1PCNCyrjL2oj0wFusftSnrWDXlC AFlji4Pv4QJ0Czb8zi1TH9ojE+DB5FDkNeGuxgbE= X-Original-To: new-work@ietfa.amsl.com Delivered-To: new-work@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8ECCA3A16AA for ; Sun, 15 Aug 2021 22:53:46 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.902 X-Spam-Level: X-Spam-Status: No, score=-0.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RFQpmp-1hweW for ; Sun, 15 Aug 2021 22:53:43 -0700 (PDT) Received: from raoul.w3.org (raoul.w3.org [128.30.52.128]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A698E3A16A8 for ; Sun, 15 Aug 2021 22:53:43 -0700 (PDT) Received: from [113.0.203.47] (helo=[192.168.0.103]) by raoul.w3.org with esmtpsa (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.92) (envelope-from ) id 1mFVZ7-00060z-Dz for new-work@ietf.org; Mon, 16 Aug 2021 05:53:41 +0000 To: new-work@ietf.org From: xueyuan Message-ID: <40a0c8f7-6320-5438-2f8e-d03a7f0654a9@w3.org> Date: Mon, 16 Aug 2021 13:53:38 +0800 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:78.0) Gecko/20100101 Thunderbird/78.12.0 MIME-Version: 1.0 Content-Language: en-US Archived-At: X-BeenThere: new-work@ietf.org X-Mailman-Version: 2.1.29 Precedence: list Content-Transfer-Encoding: base64 Content-Type: text/plain; charset="utf-8"; Format="flowed" Errors-To: new-work-bounces@ietf.org Sender: "new-work" Archived-At: X-Mailman-Approved-At: Sun, 15 Aug 2021 23:00:16 -0700 Subject: [secdir] [new-work] Proposed W3C Charter: Web Applications Working Group (until 2021-09-13/14) X-BeenThere: secdir@ietf.org List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Aug 2021 05:53:53 -0000 SGVsbG8sCgpUb2RheSBXM0MgQWR2aXNvcnkgQ29tbWl0dGVlIFJlcHJlc2VudGF0aXZlcyByZWNl aXZlZCBhIFByb3Bvc2FsCnRvIHJldmlldyBhIGRyYWZ0IGNoYXJ0ZXIgZm9yIHRoZSBXZWIgQXBw bGljYXRpb25zIFdvcmtpbmcgR3JvdXA6CiDCoCBodHRwczovL3d3dy53My5vcmcvMjAyMS8wOC93 ZWJhcHBzLWNoYXJ0ZXItMjAyMS5odG1sCgpBcyBwYXJ0IG9mIGVuc3VyaW5nIHRoYXQgdGhlIGNv bW11bml0eSBpcyBhd2FyZSBvZiBwcm9wb3NlZCB3b3JrCmF0IFczQywgdGhpcyBkcmFmdCBjaGFy dGVyIGlzIHB1YmxpYyBkdXJpbmcgdGhlIEFkdmlzb3J5CkNvbW1pdHRlZSByZXZpZXcgcGVyaW9k LgoKVzNDIGludml0ZXMgcHVibGljIGNvbW1lbnRzIHRocm91Z2ggMDM6NTkgVVRDIG9uIDE0IFNl cHRlbWJlciAyMDIxCigyMzo1OSwgRWFzdGVybiB0aW1lIG9uIDEzIFNlcHRlbWJlcikgb24gdGhl IHByb3Bvc2VkIGNoYXJ0ZXIuClBsZWFzZSBzZW5kIGNvbW1lbnRzIHRvIHB1YmxpYy1uZXctd29y a0B3My5vcmcsCndoaWNoIGhhcyBhIHB1YmxpYyBhcmNoaXZlOgogwqAgaHR0cDovL2xpc3RzLncz Lm9yZy9BcmNoaXZlcy9QdWJsaWMvcHVibGljLW5ldy13b3JrLwoKT3RoZXIgdGhhbiBjb21tZW50 cyBzZW50IGluIGZvcm1hbCByZXNwb25zZXMgYnkgVzNDIEFkdmlzb3J5CkNvbW1pdHRlZSBSZXBy ZXNlbnRhdGl2ZXMsIFczQyBjYW5ub3QgZ3VhcmFudGVlIGEgcmVzcG9uc2UgdG8KY29tbWVudHMu IElmIHlvdSB3b3JrIGZvciBhIFczQyBNZW1iZXIgWzFdLCBwbGVhc2UgY29vcmRpbmF0ZQp5b3Vy IGNvbW1lbnRzIHdpdGggeW91ciBBZHZpc29yeSBDb21taXR0ZWUgUmVwcmVzZW50YXRpdmUuIEZv cgpleGFtcGxlLCB5b3UgbWF5IHdpc2ggdG8gbWFrZSBwdWJsaWMgY29tbWVudHMgdmlhIHRoaXMg bGlzdCBhbmQKaGF2ZSB5b3VyIEFkdmlzb3J5IENvbW1pdHRlZSBSZXByZXNlbnRhdGl2ZSByZWZl ciB0byBpdCBmcm9tIGhpcwpvciBoZXIgZm9ybWFsIHJldmlldyBjb21tZW50cy4KClRoZSBjdXJy ZW50IGNoYXJ0ZXIgaXMgaGVyZWJ5IGV4dGVuZGVkIHVudGlsIDMwIFNlcHRlbWJlciAyMDIxCnRv IGFjY29tbW9kYXRlIHRoZSBjaGFydGVyIHJldmlldyBwZXJpb2QuCiDCoCBodHRwczovL3d3dy53 My5vcmcvMjAyMC8xMi93ZWJhcHBzLXdnLWNoYXJ0ZXIuaHRtbAoKSWYgeW91IHNob3VsZCBoYXZl IGFueSBxdWVzdGlvbnMgb3IgbmVlZCBmdXJ0aGVyIGluZm9ybWF0aW9uLCBwbGVhc2UKY29udGFj dCBYaWFvcWlhbiBXdSwgV2ViQXBwcyBXRyBUZWFtIENvbnRhY3QsIGF0IDx4aWFvcWlhbkB3My5v cmc+LgoKVGhhbmsgeW91LAoKWHVleXVhbiBKaWEswqAgVzNDIE1hcmtldGluZyAmIENvbW11bmlj YXRpb25zCgpbMV0gaHR0cDovL3d3dy53My5vcmcvQ29uc29ydGl1bS9NZW1iZXIvTGlzdAoKX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KbmV3LXdvcmsgbWFp bGluZyBsaXN0Cm5ldy13b3JrQGlldGYub3JnCmh0dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4v bGlzdGluZm8vbmV3LXdvcmsK From nobody Mon Aug 16 04:43:10 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A7D293A097E; Mon, 16 Aug 2021 04:42:52 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.553 X-Spam-Level: X-Spam-Status: No, score=-2.553 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.452, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ericsson.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id k_V9kfQZw0i8; Mon, 16 Aug 2021 04:42:48 -0700 (PDT) Received: from EUR05-AM6-obe.outbound.protection.outlook.com (mail-am6eur05on2062.outbound.protection.outlook.com [40.107.22.62]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 881853A093A; Mon, 16 Aug 2021 04:42:47 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=QWOVqYXYx0xZckchkpk1tWdgEQsT7No7y4yeihHehUXX6cCIvmKdrrXstN3Veu9xxSWHdS98aYgozBoNbkUFWXGoQbOJTWK7RCIaSVoq+zGCQLoeIFg4+9MDeyYh4S4sM34r2MfwxGi6NAt7Nt0B7h8w65Q9Ftmt0MBT0Lr0D4NZqOhsxueTc77j4l/l2LsGVdOkNZeijdYealxvrlqvNsL1hZfmmhGT1Nei1D7my7TmJTXyc3wl3uJ9r76fJEEM24ullpRDMn1FiI6DHSvORuDb176dfyeneuY3QeziNqWOb24ez7IuiHyeQeqFsHdjnHPuWZ+aIIgQ3gEeHfFY1g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=z9Mp7ZJQddahj3weMjjTIOlQYr5eKhktpSgN6WJvEWA=; b=gALasIoXtuExKXccbgHSOF+m5xm0MwmRaI5cwiqhQvMLBr2BEVp7VoveRqXN6byDB8hUlwfgUo3CYGCAUGgQ6hNzfe0OJj7gfR+xkq1la2nxb6Y1texnOROI3AkESiQvgcx9Tqn1PmO4CUExdAhqH27eIUrInBuXaTR9noBqeJsIq7+JjxBeYP3xrEXywN+VOuRhRU26HIlybLsCKAEPOhyKT3hVsK5SbdqbdPin8LmR4fw035YJ4uSSONNnqQV2SAM4Cz9vDdwEV0CNpwxIvyBbWElBidKTJWLscTXPoR4d8c8vAhfALFoYw6NvmhBjiRuyhf1sIUlwTD8tD07kKA== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=ericsson.com; dmarc=pass action=none header.from=ericsson.com; dkim=pass header.d=ericsson.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ericsson.com; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=z9Mp7ZJQddahj3weMjjTIOlQYr5eKhktpSgN6WJvEWA=; b=eo8BaF7TMdEYs1hf8xSnhxSA3Xpq6SqtQC1Q7itl3/STzMCMFxJSTMUxmcpV9/NujiRKbp7qItjls68HjbCuBqEMa8SiEEOEToNEWc/4fASJslGhCsJa/ufB05y7+9Hp3S/99oI/RqZQAoKQsMEjj/uVcRxOxYWv989KAazebdo= Received: from HE1PR07MB4441.eurprd07.prod.outlook.com (2603:10a6:7:9f::27) by HE1PR0702MB3770.eurprd07.prod.outlook.com (2603:10a6:7:84::17) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4436.12; Mon, 16 Aug 2021 11:42:45 +0000 Received: from HE1PR07MB4441.eurprd07.prod.outlook.com ([fe80::e8b0:f0a5:f77f:5802]) by HE1PR07MB4441.eurprd07.prod.outlook.com ([fe80::e8b0:f0a5:f77f:5802%6]) with mapi id 15.20.4436.018; Mon, 16 Aug 2021 11:42:45 +0000 From: Christer Holmberg To: Derrell Piper , "secdir@ietf.org" CC: "draft-ietf-mmusic-rfc8843bis.all@ietf.org" , "last-call@ietf.org" , "mmusic@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-mmusic-rfc8843bis-04 Thread-Index: AQHXiHuaKwNvVxh38UeIXE0jeBnkSat2FrSw Date: Mon, 16 Aug 2021 11:42:45 +0000 Message-ID: References: <162800423634.21024.2545408390256116127@ietfa.amsl.com> In-Reply-To: <162800423634.21024.2545408390256116127@ietfa.amsl.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: electric-loft.org; dkim=none (message not signed) header.d=none;electric-loft.org; dmarc=none action=none header.from=ericsson.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 508d8a69-1a79-42d1-288f-08d960aaf6eb x-ms-traffictypediagnostic: HE1PR0702MB3770: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:7219; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:HE1PR07MB4441.eurprd07.prod.outlook.com; PTR:; CAT:NONE; SFS:(4636009)(136003)(376002)(366004)(346002)(39860400002)(396003)(64756008)(38070700005)(66556008)(66476007)(66946007)(83380400001)(33656002)(7696005)(26005)(4744005)(478600001)(76116006)(52536014)(71200400001)(5660300002)(6506007)(55016002)(66446008)(9686003)(186003)(86362001)(316002)(110136005)(8676002)(8936002)(44832011)(38100700002)(4326008)(122000001)(54906003)(2906002); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?eTVJbnUrWXhwNVl0b2NWV0lkVnJRbzRVdjA4VmtNUGVNdUxHcjl3cSs5TGRR?= =?utf-8?B?ZDhBVTRHWUhpem1kdHNzZm1jTUZvZ1RzREx1N293WTlQeWFNZHJacTNPZlBh?= =?utf-8?B?NXZSM2tlSVVwTG9mM0FYSjZ2bEpOdFVGZ3BHeWtYQ1YzQmh5R2VhNE8vNEdB?= =?utf-8?B?YnduSmhDTEF2eWx4N2NjVW1iRG5Hd05RbW1Cdm1BbjBhRnVMc3FxcG5iMmJR?= =?utf-8?B?VEpCempySGdjQ3hzYmdzOXU3NlBaU1NhSnByQTlZczhOL240ZG8xM1NnYVV3?= =?utf-8?B?NXU1RmE0Zm01Y2xNZ293N0tOd0tZRFNaQmRKU2lwWUd4bDFTaUxFWUtwUFV1?= =?utf-8?B?aStVRUJmTHY1Um0wVzQwV01RS1RPWmRMN1pVd0hGRXpienpSM3JhZm8zWXVv?= =?utf-8?B?aFZKVHljNFRiVmhGTnBmNVR2WDQzVXlMZmE2TVBYUXV0ZjJUbHhFY1BRcFls?= =?utf-8?B?bm9mdElOR3NoWGlPSUJIVTNWcnR2b1Zob2RpVzROWGViMzhLcEdib0N3WDJB?= =?utf-8?B?WVV4OEZxbGlTbU1mV0Z3cTRua2dhWmZtOXJJOENxcmVqdUhYcExuWGQ4a0hx?= =?utf-8?B?L1J1ZnpZUjcrUWJrbW4wRktrRUU5cklCWU9GNFhmNXF3VzJRTHhpRnhhMGgv?= =?utf-8?B?RllZVVZxNEw5Y0FYcUpES2ZNSStSOUgra003bDlzekV1bE5KMlBuS3Y0eFBO?= =?utf-8?B?a1A3QXhWZFRERUZmQ0tNUytKd0hzRVBZNEE2emE2azVybHZIYi9kcW94QkVk?= =?utf-8?B?L2RvOHI4K3pwcklzV3NkN3lwZ045ZHNUbFhDdDZNS3d4QllnbXh5UDdXRDhW?= =?utf-8?B?ZFgvUmFWdFZKMnZCR1ZwK1JsSTEwUE5CUEcwcWNSZStQWnB6NXdpUkNtMnl6?= =?utf-8?B?YWtlNkdNY2FnQTNPNC9EaHUzdFhDMHoxV1VmRmg3NU56YXpQS0ZPaEVzc0Ry?= =?utf-8?B?MTNMWjJPMC9jNVYxL2l3VEZpRElwOHVSZEl1dFNEUy81Ti9meHFqajlLNHo2?= =?utf-8?B?SFlNbjBRZWtucVNQTHlMWHZMQkc3bml4R1VVYk5pOXBaQ0ord3lnMTBVVDl3?= =?utf-8?B?UnZHVmh6Q2FGQmlIYnhGTEtDOEYrTUZwSkEyZGxldEdIK0tweGNMK3BPaGo1?= =?utf-8?B?YWZuTGZTQWF1YzlvcFdGYTNsb0VLL3k2WUxUK3NVbXVXSXE1VlVmNHRsNkJa?= =?utf-8?B?eUd5a24va2VJNGxUTitvd2NaRkxhWStmclFGVk9RcXg5aVFhQjlnNEFpblJr?= =?utf-8?B?bWlEVnNLRk9jMXkvdDBPOStlRnh1YVUvNHA2MFZXSFdCL3lhdjdnQndoUEZT?= =?utf-8?B?ZWtYQ01KNm9JclVPM2JJQ1FJMWtKRStpeTEzWE5TZUlORVlwTUFSTStRYXdx?= =?utf-8?B?UG5ERUNDTk9vVHJBWGVqS09yN3Q3SG9IV2NLOFAvWjY0cFpHeUZhQzYwYlk5?= =?utf-8?B?N2xDSDgzejBod2hwcFg2T29lL2VHekEzMHVxakdkVEUzbE1VajZBRFVlRldl?= =?utf-8?B?Z3MyRnFTRFJWbEpvbHRyUG1SWi9ySjNUdjllT0Z1NkR6UXR0Qkphak9ESFZD?= =?utf-8?B?QUVqK2J5MllSL2k0cytRRkV3THVNcGZReWdzcjRsL3l0Ti9hRGMzdG92cCtw?= =?utf-8?B?SVFQdzltbjdlTE1xZldXT2w2bFFBejh4b210MktUTGZvSEhNUjFNT0pYQmhy?= =?utf-8?B?VkMwNGZic25FZ0hZVEoxS2dzVGx3emowRDI3M01jTlZhVlRwTE1zR3drMGE4?= =?utf-8?Q?s5DnfcqHRHUZ4PEjYphpAiv9+kvaAryG8ouQoI5?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-OriginatorOrg: ericsson.com X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: HE1PR07MB4441.eurprd07.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 508d8a69-1a79-42d1-288f-08d960aaf6eb X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Aug 2021 11:42:45.0890 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 92e84ceb-fbfd-47ab-be52-080c6b87953f X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: AtcVmUArhUmzXaCZZGZ6DTMSSu9V3uPS3PhP8Lt8I30gkz+2MT+iC1secutLas3eAt40JkzylbA9qdIjIggbLmyI7NNWRk+Bln2gycZ5FJI= X-MS-Exchange-Transport-CrossTenantHeadersStamped: HE1PR0702MB3770 Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-mmusic-rfc8843bis-04 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Aug 2021 11:43:02 -0000 VGhhbmsgWW91LCBEZXJyZWxsIQ0KDQpSZWdhcmRzLA0KDQpDaHJpc3Rlcg0KDQotLS0tLU9yaWdp bmFsIE1lc3NhZ2UtLS0tLQ0KRnJvbTogRGVycmVsbCBQaXBlciB2aWEgRGF0YXRyYWNrZXIgPG5v cmVwbHlAaWV0Zi5vcmc+IA0KU2VudDogdGlpc3RhaSAzLiBlbG9rdXV0YSAyMDIxIDE4LjI0DQpU bzogc2VjZGlyQGlldGYub3JnDQpDYzogZHJhZnQtaWV0Zi1tbXVzaWMtcmZjODg0M2Jpcy5hbGxA aWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbW11c2ljQGlldGYub3JnDQpTdWJqZWN0OiBT ZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLW1tdXNpYy1yZmM4ODQzYmlzLTA0 DQoNClJldmlld2VyOiBEZXJyZWxsIFBpcGVyDQpSZXZpZXcgcmVzdWx0OiBSZWFkeQ0KDQpJIGhh dmUgcmV2aWV3ZWQgdGhpcyBkb2N1bWVudCBhcyBwYXJ0IG9mIHRoZSBzZWN1cml0eSBkaXJlY3Rv cmF0ZSdzIG9uZ29pbmcgZWZmb3J0IHRvIHJldmlldyBhbGwgSUVURiBkb2N1bWVudHMgYmVpbmcg cHJvY2Vzc2VkIGJ5IHRoZSBJRVNHLg0KVGhlc2UgY29tbWVudHMgd2VyZSB3cml0dGVuIHByaW1h cmlseSBmb3IgdGhlIGJlbmVmaXQgb2YgdGhlIHNlY3VyaXR5IGFyZWEgZGlyZWN0b3JzLiAgRG9j dW1lbnQgZWRpdG9ycyBhbmQgV0cgY2hhaXJzIHNob3VsZCB0cmVhdCB0aGVzZSBjb21tZW50cyBq dXN0IGxpa2UgYW55IG90aGVyIGxhc3QgY2FsbCBjb21tZW50cy4NCg0KVGhlIHN1bW1hcnkgb2Yg dGhlIHJldmlldyBpcyBSZWFkeS4NCg0KTWlub3IgcmV2aXNpb24gdGhhdCB1cGRhdGVzIFJGQzU4 ODggdG8gYWxsb3cgYSBwb3J0IHNwZWNpZmljYXRpb24gb2YgMC4NCg0KDQo= From nobody Mon Aug 16 13:33:07 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B04583A0EE8; Mon, 16 Aug 2021 13:33:06 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -9.599 X-Spam-Level: X-Spam-Status: No, score=-9.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=ajGMbl06; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=v+DACq5+ Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vsfzPUROOywQ; Mon, 16 Aug 2021 13:33:00 -0700 (PDT) Received: from alln-iport-3.cisco.com (alln-iport-3.cisco.com [173.37.142.90]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2ACD53A0ECE; Mon, 16 Aug 2021 13:33:00 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=15692; q=dns/txt; s=iport; t=1629145980; x=1630355580; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=e61pfljnmFzgNiaHixZDNwoOrzTcY8WaV9nVFvtYzDk=; b=ajGMbl06Ac4YhgyAY/ATMVyEMheKVPv1yOhi9+TjcLAWubfUSZwxVVR7 EJD7A9cnoivoxBhEHK1d48P/6lk27m7xoT9+e9M7vEFDitljJE80xe5Tz 3FBFcWxka50vEjjjdhh/T5U02+fg/zpIirmx8HvL6fB2SVFw/3O6QCuVX c=; X-IPAS-Result: =?us-ascii?q?A0BmCAB9yhph/4ENJK1aHgEBCxIMQIFOC4FTUQd3WjcxA?= =?us-ascii?q?oRFg0gDhTmIaQOKW49fgS4UgREDVAsBAQENAQEqCwwEAQGEYQIXglYCJTQJD?= =?us-ascii?q?gECBAEBAQEDAgMBAQEBAQEDAQEFAQEBAgEGBIERE4VoDYZCAQEBAQIBAQEQE?= =?us-ascii?q?REMAQElBAMLAQ8CAQYCDgcBBAIREgMCAgIfBgsUARABAQQBDQUigk8BglUDD?= =?us-ascii?q?iEBDotpjzQBgToCih96gTGBAYIHAQEGBASFLg0LgjQDBoEQKoJ+hA+BGIFUg?= =?us-ascii?q?3onHIINgRQBJxyCYj6CIEIBAYEZEgESAQk+GYJYNoIug1VbBjIyBA0VIRBbJ?= =?us-ascii?q?FUBAgMKBhgCDxQBBA4DlTqnGjpeCoMomG0EhWEFJoNli2MDlyqWEY90j3ovg?= =?us-ascii?q?XaDCQIEAgQFAg4BAQaBYDtpcHAVOyoBgj5QGQ6LSIJYDRWDUIUUhUpzDSsCB?= =?us-ascii?q?gEKAQEDCYl1AQE?= IronPort-PHdr: A9a23:HQhsBxwcp/ZxT1zXCzPBngc9DxPP8530IwcK55thgLVLIeyv/JXna UrY4/glzFrERp7S5P8Mje3K+7vhVmoN7dfk0jgCfZVAWgVDhZAQmAotU86YAFL2LbjhaClpV MhHXUVuqne8N0UdEc3iZlrU93u16zNaGhj2OQdvYOrvHYuHhMWs3Of08JrWMG11 IronPort-HdrOrdr: A9a23:XvjFCqpO29ZnzOG1+OMZI2EaV5t9LNV00zEX/kB9WHVpm5Oj9v xGzc506farslkssSkb6K+90KnpewK6yXbsibNhfotKLzOWxldAS7sSr7cKogeQWxEWk9Q86U 4OSdkENDSdNykesS++2njFLz9C+qjDzEnLv5al854Fd2gDAMsMg3Ybe2Sm+w9NNXR77PECZf yhD7981kKdkAMsH72G7xc+Loz+juyOsKijTQ8NBhYh5gXLpyiv8qTGHx+R2Qpbey9TwJ85mF K11zDR1+GGibWW2xXc32jc49B9g9360OZOA8SKl4w8NijssAC1f45sMofy+wzd4dvfrmrCou O8+yvIDP4DsE85uVvF+ycF7jOQiQrGLUWSlGNwz0GT/fARDwhKevapzbgpAicxrXBQ4+2VFM lwrjOkX109N2KfoM213am7a/kh/HDE0kYKgKodiWdSXpAZb6IUpYsD/FlNGJNFBy7i7ps7ed MeQP00ycwmO29yVUqp81WHAebcKEgbD1ODWAwPq8aV2z9ZkDRwyFYZ3tUWmjMF+IgmQ5dJ6u zYOuAw/Ys+APM+fOZ4HqMMUMG3AmvCTVbFN3+TO03uEOUCN2jWo5D67b0p7KWheYAOzpE1hJ PdOWko+lIaagbrE4mDzZdL+hfCTCG0Wins0NhX49xjtrj1VNPQQGa+oZAV4oOdStAkc4zmst qISeZr6s7YXCLT8NxyrnjDsrFpWA4jbPE= X-IronPort-Anti-Spam-Filtered: true X-IronPort-AV: E=Sophos;i="5.84,326,1620691200"; d="scan'208";a="751080901" Received: from alln-core-9.cisco.com ([173.36.13.129]) by alln-iport-3.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 16 Aug 2021 20:32:58 +0000 Received: from mail.cisco.com (xbe-rcd-003.cisco.com [173.37.102.18]) by alln-core-9.cisco.com (8.15.2/8.15.2) with ESMTPS id 17GKWw4G027637 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Mon, 16 Aug 2021 20:32:58 GMT Received: from xfe-rcd-001.cisco.com (173.37.227.249) by xbe-rcd-003.cisco.com (173.37.102.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 16 Aug 2021 15:32:58 -0500 Received: from xfe-aln-004.cisco.com (173.37.135.124) by xfe-rcd-001.cisco.com (173.37.227.249) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Mon, 16 Aug 2021 15:32:57 -0500 Received: from NAM11-DM6-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-004.cisco.com (173.37.135.124) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Mon, 16 Aug 2021 15:32:57 -0500 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=I+6qhbo4qSnUPMlaU8Wt/Z4fzBGe9KmkvQ9nqYpDTtTnyfAtoRLLYrV0DAUR+nY21gwH/CRUXtB8Wlf/9PYGk4C6CqHokCIB1Tv5+SvRip0jOYwKoxBZ+eqlL0pP7JYcc7prMRxMiEzZQOJf9jIe9+XrzbxALU3Own+LRrEzCDAmA6ReoVLP3aPm+d8yfpk8xt8BOmwJUx0Pw0R31bfGeYwQxOpkPNm0sDham+Jx6X3GpwEbeRI8tew8JFchOiWwkcZ8aC176ZMTwExIQlWtkAUs8brHvO5qb7Fgo7ULhLknT0Nntsy8dWF/TbJWfas/7W35gYarjLlZGlliQQTRTw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=e61pfljnmFzgNiaHixZDNwoOrzTcY8WaV9nVFvtYzDk=; b=FpeZkmMzvegb440L56Ge3LXr+P28D9OxZaic/cJKtswE5nMy59dl/zVda8BSDN9KOATui4QLv+vkCXnkNqR75DjoxADsu3Uq4V4ChL1ek4otAH5Rx7xvnimMlyEdiMJUbsmHr6kJ0yJmCwwVkoPerrVOXEXUGjeT4R8kly+8G/lc0BLYnyzNgMvh8jJtTXLlNdLE9IuKd931qSvEiOlLrai9KVhc/LLBa81VVFTgjNqbdoErPFU018Z3rNCEiHiVdl/F18rpdPB2cq1JxPBRWJPsCqauNenvXI7vpIJ2rp6yvLx18U3BSS1P9oP3Wd7iFvfZkgUEDK1SMoZ06Xc7eg== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=e61pfljnmFzgNiaHixZDNwoOrzTcY8WaV9nVFvtYzDk=; b=v+DACq5+UUDj8i+c/ono5mWv6cAPCK52p9R25tzYXq9qqlEJrg0A1u+iM4NeHlRentJheZgPrfNx59jeqXzQLIUgTKdsfYAlWu8V/dN6RUl45wMaWJLTnhk9v1IpJNPK867Zosjx40zSXAuG3THsA7qnE44UD5/dfP97t54I3cI= Received: from BYAPR11MB2887.namprd11.prod.outlook.com (2603:10b6:a03:89::27) by SJ0PR11MB4831.namprd11.prod.outlook.com (2603:10b6:a03:2d2::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4415.16; Mon, 16 Aug 2021 20:32:56 +0000 Received: from BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::a19c:e0ca:19d9:19e2]) by BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::a19c:e0ca:19d9:19e2%3]) with mapi id 15.20.4415.023; Mon, 16 Aug 2021 20:32:56 +0000 From: "Acee Lindem (acee)" To: Qin Wu , tom petch , "Yaron Sheffer" , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeP4X50ao4BcToNQmG4p4waGPgvAwC2t7+A Date: Mon, 16 Aug 2021 20:32:56 +0000 Message-ID: <01E042EB-F99B-4DFD-B353-A18E8B21D517@cisco.com> References: <3d7ca7c307fa4561b5c3da82fa0e2bd2@huawei.com> In-Reply-To: <3d7ca7c307fa4561b5c3da82fa0e2bd2@huawei.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/16.52.21080801 authentication-results: huawei.com; dkim=none (message not signed) header.d=none;huawei.com; dmarc=none action=none header.from=cisco.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: a0f7e751-322b-4694-47ec-08d960f50806 x-ms-traffictypediagnostic: SJ0PR11MB4831: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: dZsrjI7anH0S6MUPjD7GFGsaev5K+dIZRLBGxU8wKCA4oWX9ieWwrfOARMSmzeyEHmruYZZvf8gE8meA1jN/nsGNU5p8qiPGD9GFbojypxhNcPRtMXaKQOwXYObqMKZnA09FEH2xNKZEg2PqiEKFza/qf+xgGrnMV2/wFpQeJolsp2xmNkvNVlcDVc0CZwk16HTErcuXZcm3mqwMOL8QidZSkwa71eHEQSNxeXylQPAH4btzZuisS0eL7YtdSf4dAGB3B4bBd85r8SskLeS6HHqnWZviyuohoIpDBuz7nDeFvwVMEgpTndgYH2utP/KJbqcqJ7fELvOYw7McDysu1+pJIyb6ZeWGvD1s7zENibXin7vt5puJq/B5VmYEgwfhmEsl6SvfP/l58TKDR4erYb2ZdkvcVzsnDZedO76gny/p25KfJ1Nd7V5UozsPD4kHATw5eHd2iRtTSMny9vCLVHZ+7fQTd8voFIDtDKz7W/JseyNAoheAUv/2E3v8V2KOAVlmrEVBZ96zV+AozQXDmxosh7twjh2tfanm1yg20Gq4ajCo68ubQz6LqMzVZS8IEaNrCyMYARcv2XnVI8TkM2DGrGsrX5S26pUrVQnLA1qVCsZ28ybu5VZCTyVkOhkI7GbNfT6pbK1vOqV9UJVK6+nr2mAkTdjXJFIDighzo15bkZS3Fy54ueROM9epjDuq1dRLFh5qrYEQ35V73XYfwqETZdxeJ4y3BycTwn0pgzoa4OKPbbgadRDIhhR7X/d3QlSEYsYtbtv9P06eHVoWh+Jb7aGd1iI+imP4q5UyQrgFSeLlXAfTRlFzKSs9/hjz x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB2887.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(346002)(366004)(376002)(136003)(396003)(39860400002)(110136005)(66446008)(66476007)(4326008)(8676002)(2906002)(966005)(122000001)(83380400001)(8936002)(71200400001)(64756008)(316002)(66556008)(33656002)(86362001)(66946007)(76116006)(6506007)(478600001)(186003)(6486002)(26005)(36756003)(5660300002)(6512007)(15650500001)(2616005)(53546011)(38070700005)(38100700002)(45980500001); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?Qzkrb2VRbGJwc01ybVZQempCaEpVMGViQTV6UVdMdEh1dVhLdEM0MUpRNytw?= =?utf-8?B?NmNKbEU2bENWWlRoV2l4Y3FFVlMzZ0dXK0UrbnFWL3dMVnRjQk9TVFR6WW9q?= =?utf-8?B?Uk5BajZGRzhBaEwyam1WeG9jS1FHcnZXcWI4V0h3VXB2WjMvWi9RRDg4YUIr?= =?utf-8?B?Wkk2UkpnNmlGc2FPdkU1L3JCSDhna2Y2bEVGbDRXOWlSMngwMHo3Y3oybTdL?= =?utf-8?B?am5wYWdDK21QVXJram5USnptZXFaeGlJZm5KNDU2WXlDMzhuanYrSE04OURD?= =?utf-8?B?bUxsd25wWGN4c2xrdWNtVjZ2bkRGb243ZUF0amxGR09BWlJ1bklVbDZsMDVv?= =?utf-8?B?OWc1VTJmVHFaUE1HQ1hSR1FVWkMvK0pGZVRyeTEzY2p5TDJWaFQxWG5LZVJU?= =?utf-8?B?VkNKS3ZXUVlBb2s3Q1NYL2dPdmJWN0RCMXZYQTRsWHVjNDkzdkVCTXl1enBS?= =?utf-8?B?T2sxa2VsNEU0aVFTenlZTWF2b1czMVFHYlNtOUF6cGVCZXVCUmMzMDYxSkpr?= =?utf-8?B?MXdzQ0JDRlpRWE9jZlBacGpNY0RjQk1sb01waTFqTEswckZ1MmdwRDFHemlM?= =?utf-8?B?bTZOOTREaEhlOUd2bllKWjZZYi9raXNhbTY2bUZ4S0tKRGNUdFFIcVhQakxv?= =?utf-8?B?TjBwRUFMN3ZIZDhoZUhrK21DR3BQME1PZXFrZjlCSjd1VldYam5vTUIwSjNj?= =?utf-8?B?Rk5LdUVGMC81L0lPTDUrc0N0dXdXMGtQR29vMS9lc0ZzR2tSNGtUbW5Sbmw4?= =?utf-8?B?bW9DOExMb1NBQS9KVDRLQ2pWa2pUTEVQQ1Fpdml5ckVxeTNaNkZTQmYvaG1B?= =?utf-8?B?ZlpNOVhTcmVVNU41YkFNL3dMdnJZMlppKzhueCtDMUZjOFgrSHl4NkxHeklR?= =?utf-8?B?UThOS1A3Z0M2ZGEyclhpYWNhL1NXWk5YZ3JGd0xKd3hQWkhxMHZmM2R3ZHRZ?= =?utf-8?B?aER3bVMxTldWVkF6Yi9sc0JNZWJVRm90bkdFS3lsNitiZ0Q5aE50Y0JIZTJx?= =?utf-8?B?TTRUSDB6U3ptU1J4MlI3SWxLbGtpeWJXaHFyQVg5L1Yyd2RYQjE1bnd0RjhG?= =?utf-8?B?ZmoyQURkYlgycU1VVmVhdVhmcmpkbVcvWk1kbmpKOEwrbWJUdCtTWjZ0WTNz?= =?utf-8?B?MTJsSCtBV1loY1phbmtGeEJFQktqaExQWEd4L2RXN0JMRlkzWmtYSE9LV3VX?= =?utf-8?B?Nk5QT3hYeFVYODhkdjZkRUV5UjJaeXpZRUFrWW9sNDE4MWordXY0NDk3SWV6?= =?utf-8?B?TVBTUkVzdEpuejZaaFpkVkxjWG4zaFBtUTlydVpYUEdENWNOSDNJdUxnY0Jz?= =?utf-8?B?T29zZW9xeGhVOVFCWkoxQnpYUjBMUWZuSW5iUkdZUHhrUG9iM1R6MjVVR0lE?= =?utf-8?B?MktXek5NTldNMVl4bE1TNUdSRWFUcU5OWTZuWkd3cWY5M2xKdHZZMVpKTW1Q?= =?utf-8?B?Z1NGZjZtcUNxbXV6V1RobmdzRFM0eFhLMURxVHRndFZpSEJwajhhMDg1T1dQ?= =?utf-8?B?eHJkWko5V21YTndTYzdjSU03cEJjVndWWHB1cjZHZXQxazRWaE9QNkFzTHlH?= =?utf-8?B?UmlVbmxVckxWZldkVzhDNFk3YWp4TmF5YVVDNkZFY1BZTU1kZmFGUnhnVDdH?= =?utf-8?B?bW9sREZOUUNNbi9iS2RtSUhUc0V5MWZKNzExNGwvQzNaY202ZTJKM24wY1Vw?= =?utf-8?B?dlFoSnUybnVCNFRXeStwemM4R0kxc3paWGUyR093K256RlhUQlNVUi9saTJj?= =?utf-8?Q?VxUbJfKdUskFaiLA2VszliZoJFtMu73dVqzEN6S?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="utf-8" Content-ID: Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB2887.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: a0f7e751-322b-4694-47ec-08d960f50806 X-MS-Exchange-CrossTenant-originalarrivaltime: 16 Aug 2021 20:32:56.5930 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: 5fx7vsO/1XHcH9CFqPg81jYd6WmzE5TnJZW8oKuFUwJXPpqpDekjXNJFj1C/nyLQ X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR11MB4831 X-OriginatorOrg: cisco.com X-Outbound-SMTP-Client: 173.37.102.18, xbe-rcd-003.cisco.com X-Outbound-Node: alln-core-9.cisco.com Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 16 Aug 2021 20:33:07 -0000 SGkgUWluLCANCg0KQ2FuIHlvdSBwdWJsaXNoIGEgcmV2aXNpb24gc28gdGhhdCBZYXJvbiBhc3N1 cmUgaXQgc2F0aXNmaWVzIGhpcyBjb21tZW50cz8gDQoNClRoYW5rcywNCkFjZWUNCg0K77u/T24g OC8xMi8yMSwgOToyMSBQTSwgIlFpbiBXdSIgPGJpbGwud3VAaHVhd2VpLmNvbT4gd3JvdGU6DQoN CiAgICBUaGFua3MgQWNlZSBhbmQgVG9tIGZvciBnb29kIHN1Z2dlc3Rpb24sIHdlIHdpbGwgdGFr ZSB0aGVtIGludG8gYWNjb3VudC4NCg0KICAgIC1RaW4NCiAgICAtLS0tLemCruS7tuWOn+S7ti0t LS0tDQogICAg5Y+R5Lu25Lq6OiBBY2VlIExpbmRlbSAoYWNlZSkgW21haWx0bzphY2VlQGNpc2Nv LmNvbV0gDQogICAg5Y+R6YCB5pe26Ze0OiAyMDIx5bm0OOaciDEy5pelIDE6MTgNCiAgICDmlLbk u7bkuro6IHRvbSBwZXRjaCA8aWV0ZmNAYnRjb25uZWN0LmNvbT47IFlhcm9uIFNoZWZmZXIgPHlh cm9uZi5pZXRmQGdtYWlsLmNvbT47IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGly QGlldGYub3JnDQogICAg5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3Vy aXR5LXN1cHBvcnQuYWxsQGlldGYub3JnDQogICAg5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2Fs bCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0 LTA1DQoNCiAgICBJJ2QgYWxzbyByZWNvbW1lbmQgY2hhbmdpbmcsICJrZXkgbmFtZXMiIHRvICJr ZXktaWRzIG9yIGtleS1jaGFpbiBuYW1lcyIgc2luY2UgdGhpcyBpcyB3aGF0IGlzIGFjdHVhbGx5 IGJlaW5nIGFkdmVydGlzZWQuDQogICAgVGhhbmtzLA0KICAgIEFjZWUNCg0KICAgIE9uIDgvMTAv MjEsIDExOjUzIEFNLCAidG9tIHBldGNoIiA8aWV0ZmNAYnRjb25uZWN0LmNvbT4gd3JvdGU6DQoN CiAgICAgICAgRnJvbTogTHNyIDxsc3ItYm91bmNlc0BpZXRmLm9yZz4gb24gYmVoYWxmIG9mIFlh cm9uIFNoZWZmZXIgPHlhcm9uZi5pZXRmQGdtYWlsLmNvbT4NCiAgICAgICAgU2VudDogMTAgQXVn dXN0IDIwMjEgMTQ6NTcNCg0KICAgICAgICBTbyBsZXQgbWUgc3VnZ2VzdDoNCg0KICAgICAgICA8 dHA+DQogICAgICAgIEFuIG9mZmxpc3Qgc3VnZ2VzdGlvbiBmb3IgeW91IHRvIGNvbnNpZGVyDQoN CiAgICAgICAgT0xEDQogICAgICAgICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mIHRo ZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElH UCBwcm90ZWN0cyB0aGUgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBU TFYgdXNpbmcgdGhlIG1lY2hhbmlzbXMgZGVmaW5lZCBpbg0KICAgICAgICAgICAgW1JGQzUzMTBd IGFuZCBbUkZDNTcwOV0sIGlmIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1l bnQgaXMgdXNlZC4NCg0KICAgICAgICAgICAgTW9yZW92ZXIsIGFzIHN0YXRlZCBpbiBbUkZDNTA4 OF0gYW5kIFtSRkM1MDg5XSwgdGhlIElHUCBkbyBub3QgcHJvdmlkZSBhbnkgZW5jcnlwdGlvbiBt ZWNoYW5pc21zIHRvIHByb3RlY3QgdGhlIHNlY3JlY3kgb2YgdGhlIFBDRUQgVExWLCBhbmQgdGhl IG9wZXJhdG9yIG11c3QgZW5zdXJlIHRoYXQgbm8gcHJpdmF0ZSBkYXRhIGlzIGNhcnJpZWQgaW4g dGhlIFRMViwgZm9yIGV4YW1wbGUgdGhhdCBrZXkgbmFtZXMgZG8gbm90IHJldmVhbCBzZW5zaXRp dmUgaW5mb3JtYXRpb24gYWJvdXQgdGhlIG5ldHdvcmsuDQoNCiAgICAgICAgTkVXDQoNCiAgICAg ICAgIFRodXMgYmVmb3JlIGFkdmVydGlzaW5nIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywg dXNpbmcgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCwgdGhlIElHUCBN VVNUIGJlIGtub3duIHRvIHByb3ZpZGUgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBmb3Ig dGhlIFBDRUQgVExWIHVzaW5nIHRoZSBtZWNoYW5pc21zIGRlZmluZWQgaW4gIFtSRkM1MzA0XSwg IFtSRkM1MzEwXSBvciBbUkZDNTcwOV0sDQoNCiAgICAgICAgICAgIE1vcmVvdmVyLCBhcyBzdGF0 ZWQgaW4gW1JGQzUwODhdIGFuZCBbUkZDNTA4OV0sIGlmIHRoZSBJR1AgZG9lcyBub3QgcHJvdmlk ZSBhbnkgZW5jcnlwdGlvbiBtZWNoYW5pc21zIHRvIHByb3RlY3QgdGhlIHNlY3JlY3kgb2YgdGhl IFBDRUQgVExWLCB0aGVuIHRoZSBvcGVyYXRvciBtdXN0IGVuc3VyZSB0aGF0IG5vIHByaXZhdGUg ZGF0YSBpcyBjYXJyaWVkIGluIHRoZSBUTFYsIGUuZy4gdGhhdCBrZXkgbmFtZXMgZG8gbm90IHJl dmVhbCBzZW5zaXRpdmUgaW5mb3JtYXRpb24gYWJvdXQgdGhlIG5ldHdvcmsuDQoNCiAgICAgICAg VG9tIFBldGNoDQogICAgICAgIDwvdHA+DQoNCiAgICAgICAgVGhhbmtzLA0KICAgICAgICAgICAg ICAgIFlhcm9uDQoNCiAgICAgICAgT24gOC8xMC8yMSwgMTU6MDEsICJRaW4gV3UiIDxiaWxsLnd1 QGh1YXdlaS5jb20+IHdyb3RlOg0KDQogICAgICAgICAgICBZYXJvbjoNCiAgICAgICAgICAgIFRo YW5rIGZvciBjbGFyaWZpY2F0aW9uLiBJIGFncmVlIHRvIGtlZXAgdGhlIGxhc3Qgc2VudGVuY2Ug aW4gdGhlIHNlY29uZCBwYXJhZ3JhcGggb2Ygc2VjdGlvbiA3IGFzIGlzLg0KICAgICAgICAgICAg QnV0IEkgcHJlZmVyIHRvIGFkZCB0aGUgYWRkaXRpb24gcmVmZXJlbmNlcyBpbiB0aGUgcHJldmlv dXMgc2VudGVuY2UgYXMgZm9sbG93czoNCiAgICAgICAgICAgICINCiAgICAgICAgICAgIFRodXMg YmVmb3JlIGFkdmVydGlzZW1lbnQgb2YgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBN VVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAgICAgICBwcm90ZWN0ZWQgZm9y IGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWLCwgd2l0aCB0aGUg bWVjaGFuaXNtcyBkZWZpbmVkIGluDQogICAgICAgICAgICBbUkZDNTMxMF0gYW5kIFtSRkM1NzA5 XSBpZiB0aGUgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQoN CiAgICAgICAgICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwgdGhlIElH UCBkbyBub3QgcHJvdmlkZSBlbmNyeXB0aW9uIG1lY2hhbmlzbSB0byBwcm90ZWN0DQogICAgICAg ICAgICB0aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRpb24gY2Fu IG1ha2UgdGhlIFBDRVAgc2Vzc2lvbiBsZXNzIHNlY3VyZSB0aGVuIHRoZSBvcGVyYXRvciBzaG91 bGQgdGFrZSB0aGF0IGludG8gY29uc2lkZXJhdGlvbi4NCiAgICAgICAgICAgICINCiAgICAgICAg ICAgIElmIHlvdSBiZXR0ZXIgd29yZGluZywgcGxlYXNlIGxldCBtZSBrbm93Lg0KDQogICAgICAg ICAgICAtUWluDQogICAgICAgICAgICAtLS0tLemCruS7tuWOn+S7ti0tLS0tDQogICAgICAgICAg ICDlj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgW21haWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21d DQogICAgICAgICAgICDlj5HpgIHml7bpl7Q6IDIwMjHlubQ45pyIMTDml6UgMTk6MjYNCiAgICAg ICAgICAgIOaUtuS7tuS6ujogUWluIFd1IDxiaWxsLnd1QGh1YXdlaS5jb20+OyBzZWNkaXJAaWV0 Zi5vcmcNCiAgICAgICAgICAgIOaKhOmAgTogZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1z ZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZzsgbGFzdC1jYWxsQGlldGYub3JnOyBsc3JAaWV0 Zi5vcmcNCiAgICAgICAgICAgIOS4u+mimDogUmU6IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9m IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAg ICAgICAgICBIaSBRaW4sDQoNCiAgICAgICAgICAgIFNvcnJ5LCBidXQgSSBmaW5kIHlvdXIgbGF0 ZXN0IHByb3Bvc2VkIHRleHQgdmVyeSBjb25mdXNpbmcsIGJlY2F1c2Ugd2Ugc2hvdWxkIGJlIGZv Y3VzaW5nIG9uIGludGVncml0eSBwcm90ZWN0aW9uIGFuZCBub3QgcHJpdmFjeSAoPXNlY3JlY3kp IG9mIHRoZSBUTFYuIFNvIEkgd291bGQgcHJlZmVyIHRvIGtlZXAgdGhlIHRleHQgYXMtaXMsIHdp dGggdGhlIGFkZGl0aW9uIG9mIGEgcmVmZXJlbmNlIHRvIHRoZSBJUy1JUyBhbmQgT1NQRiBzZWN1 cml0eSBtZWNoYW5pc21zIHRoYXQgd2VyZSBkaXNjdXNzZWQgb24gdGhpcyB0aHJlYWQuDQoNCiAg ICAgICAgICAgIFRoYW5rcywNCiAgICAgICAgICAgICAgICBZYXJvbg0KDQogICAgICAgICAgICBP biA4LzEwLzIxLCAwNTowMCwgIlFpbiBXdSIgPGJpbGwud3VAaHVhd2VpLmNvbT4gd3JvdGU6DQoN CiAgICAgICAgICAgICAgICBIaSwgWWFyb24NCiAgICAgICAgICAgICAgICAtLS0tLemCruS7tuWO n+S7ti0tLS0tDQogICAgICAgICAgICAgICAgPuWPkeS7tuS6ujogWWFyb24gU2hlZmZlciBbbWFp bHRvOnlhcm9uZi5pZXRmQGdtYWlsLmNvbV0NCiAgICAgICAgICAgICAgICA+5Y+R6YCB5pe26Ze0 OiAyMDIx5bm0OOaciDnml6UgMjE6NDQNCiAgICAgICAgICAgICAgICA+5pS25Lu25Lq6OiBRaW4g V3UgPGJpbGwud3VAaHVhd2VpLmNvbT47IHNlY2RpckBpZXRmLm9yZw0KICAgICAgICAgICAgICAg ID7mioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5h bGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQogICAgICAgICAg ICAgICAgPuS4u+mimDogUmU6IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYt bHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAgICAgICAgICAgICAg PkhpIFFpbiwNCg0KICAgICAgICAgICAgICAgID5UaGFuayB5b3UgZm9yIHlvdXIgcmVzcG9uc2Uu DQoNCiAgICAgICAgICAgICAgICA+KiBSRkMgMzU2NyAoZm9yIElTLUlTKSBpcyBvYnNvbGV0ZWQg YnkgUkZDIDUzMDQuIFVuZm9ydHVuYXRlbHkgUkZDIDUzMDQgc3RpbGwgdXNlcyBITUFDLU1ENSwg d2hpY2ggd291bGQgYmUgY29uc2lkZXJlZCBpbnNlY3VyZSBub3dhZGF5cy4NCiAgICAgICAgICAg ICAgICA+KiBSRkMgMjE1NCBpcyB2ZXJ5IG9sZCBhbmQgRXhwZXJpbWVudGFsIChhbmQgb25seSBz dXBwb3J0cyBSU0EtTUQ1IHNpZ25hdHVyZXMpLiBJJ20gbm90IGFuIE9TUEYgZXhwZXJ0IGJ5IGFu eSBtZWFucywgYnV0IEknbSB3aWxsaW5nIHRvIGJldCB0aGF0IHRoZXJlIGFyZSBubyBwcm9kdWN0 aW9uIGltcGxlbWVudGF0aW9ucyBvZiB0aGlzIFJGQy4gKEknbSB3aWxsaW5nIHRvIGJlIHByb3Zl biB3cm9uZykuDQogICAgICAgICAgICAgICAgPklzIHRoZXJlIGFub3RoZXIgUkZDIHRoYXQgZGVm aW5lIGEgcHJvdGVjdGlvbiBtZWNoYW5pc20gZm9yIE9TUEY/DQoNCiAgICAgICAgICAgICAgICA+ QWxsIGluIGFsbCwgdGhlcmUgYXBwZWFyIHRvIGJlIG5vIGdvb2Qgb3B0aW9ucyBmb3IgdGhlIElH UC4NCg0KICAgICAgICAgICAgICAgIFtRaW4gV3VdWWVzLCB3ZSBkbyBoYXZlIGFsdGVybmF0aXZl cywgc2VlIExlcydzIHJlc3BvbnNlIGluIHRoZSBzZXBhcmF0ZSBlbWFpbA0KICAgICAgICAgICAg ICAgICINCiAgICAgICAgICAgICAgICBPbiA4LzkvMjEsIDIzOjM2LCJMZXMgR2luc2JlcmcgKGdp bnNiZXJnKSIgPGdpbnNiZXJnQGNpc2NvLmNvbT4gd3JvdGU6DQogICAgICAgICAgICAgICAgRm9y IElTLUlTIHNlY3VyaXR5IHBsZWFzZSBhbHNvIHNlZSBSRkMgNTMxMC4NCiAgICAgICAgICAgICAg ICBGb3IgT1NQRiBzZWN1cml0eSBwbGVhc2Ugc2VlIFJGQyA1NzA5Lg0KICAgICAgICAgICAgICAg ICINCiAgICAgICAgICAgICAgICA+VG8geW91ciBsYXN0IHBvaW50LCB3aGVuIEkgbWVudGlvbmVk IGRlY291cGxpbmcgdGhlIG1lY2hhbmlzbXMsIEkgd2FzIHN1Z2dlc3RpbmcgdG8gdXNlIHRoZSBl eHRlbnNpb24geW91IGRlZmluZSBldmVuIGlmIHRoZSBJR1AgKmNhbm5vdCogYmUgc2VjdXJlZC4g SWYgeW91IHRoaW5rIHRoaXMgaXMgcmVhc29uYWJsZSwgcGxlYXNlIGFkZCBzdWNoIHRleHQgdG8g dGhlIFNlY3VyaXR5IENvbnNpZGVyYXRpb25zLg0KDQogICAgICAgICAgICAgICAgW1FpbiBXdV0g T2theSwgaG93IGFib3V0IHRoZSBmb2xsb3dpbmcgY2hhbmdlDQogICAgICAgICAgICAgICAgT0xE IFRFWFQ6DQogICAgICAgICAgICAgICAgIg0KICAgICAgICAgICAgICAgIEFzIHN0YXRlZCBpbiBb UkZDNTA4OF0NCiAgICAgICAgICAgICAgICBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBw cm92aWRlIGVuY3J5cHRpb24gbWVjaGFuaXNtIHRvIHByb3RlY3QNCiAgICAgICAgICAgICAgICB0 aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRpb24gY2FuIG1ha2Ug dGhlIFBDRVANCiAgICAgICAgICAgICAgICBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9w ZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uIC4NCiAgICAgICAgICAg ICAgICAiDQogICAgICAgICAgICAgICAgTkVXIFRFWFQ6DQogICAgICAgICAgICAgICAgIg0KICAg ICAgICAgICAgICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0NCiAgICAgICAgICAgICAgICBhbmQg W1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGVuY3J5cHRpb24gbWVjaGFuaXNtIHRv IHByb3RlY3QNCiAgICAgICAgICAgICAgICB0aGUgcHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlm IHRoaXMgaW5mb3JtYXRpb24gY2FuIG1ha2UgdGhlIFBDRVANCiAgICAgICAgICAgICAgICBzZXNz aW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9wZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBj b25zaWRlcmF0aW9uDQogICAgICAgICAgICAgICAgd2hlbiBnZXR0aW5nIHRoZSBtZWNoYW5pc20g ZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgZGVwbG95ZWQuDQogICAgICAgICAgICAgICAgIg0K ICAgICAgICAgICAgICAgICA+VGhhbmtzLA0KICAgICAgICAgICAgICAgICA+ICAgICAgWWFyb24N Cg0KICAgICAgICAgICAgICAgID5PbiA4LzkvMjEsIDE2OjA5LCAiUWluIFd1IiA8YmlsbC53dUBo dWF3ZWkuY29tPiB3cm90ZToNCg0KICAgICAgICAgICAgICAgICAgPiAgIFRoYW5rcyBZYXJvbiBm b3IgdmFsdWFibGUgY29tbWVudHMsIHBsZWFzZSBzZWUgbXkgcmVwbHkgaW5saW5lIGJlbG93Lg0K ICAgICAgICAgICAgICAgICAgICAtLS0tLemCruS7tuWOn+S7ti0tLS0tDQogICAgICAgICAgICAg ICAgICAgID7lj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgdmlhIERhdGF0cmFja2VyIFttYWlsdG86 bm9yZXBseUBpZXRmLm9yZ10NCiAgICAgICAgICAgICAgICAgICAgPuWPkemAgeaXtumXtDogMjAy MeW5tDjmnIg25pelIDM6MjUNCiAgICAgICAgICAgICAgICAgICAgPuaUtuS7tuS6ujogc2VjZGly QGlldGYub3JnDQogICAgICAgICAgICAgICAgICAgID7mioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBj ZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRm Lm9yZzsgbHNyQGlldGYub3JnDQogICAgICAgICAgICAgICAgICAgID7kuLvpopg6IFNlY2RpciBs YXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHkt c3VwcG9ydC0wNQ0KDQogICAgICAgICAgICAgICAgICAgID5SZXZpZXdlcjogWWFyb24gU2hlZmZl cg0KICAgICAgICAgICAgICAgICAgICA+UmV2aWV3IHJlc3VsdDogTm90IFJlYWR5DQoNCiAgICAg ICAgICAgICAgICAgICAgPlRoaXMgZG9jdW1lbnQgZGVmaW5lcyBhIG1lY2hhbmlzbSAoYSBUTFYp IHRvIGFkdmVydGlzZSB0aGUgUENFIFByb3RvY29sIHNlY3VyaXR5IHJlcXVpcmVkICh1c2Ugb2Yg VENQLUFPIGFuZCBpdHMga2V5IElELCBvciBhbHRlcm5hdGl2ZWx5IHVzZSBvZiBUTFMpIHdpdGhp biB0aGUgcm91dGluZyBwcm90b2NvbCBiZWluZyB1c2VkLg0KDQogICAgICAgICAgICAgICAgICAg ID4qIFNlYy4gMy4xOiBJIGRvbid0IHVuZGVyc3RhbmQgd2h5ICJTSE9VTEQgYWR2ZXJ0aXNlIiBh bmQgbm90IE1VU1QuIEVzcGVjaWFsbHkgZ2l2ZW4gdGhlIHN0cmljdCBjbGllbnQgYmVoYXZpb3Ig ZGVmaW5lZCBsYXRlci4NCiAgICAgICAgICAgICAgICAgICAgW1Fpbl06IEkgYmVsaWV2ZSAiU0hP VUxEIGFkdmVydGlzZSIgaXMgY29uc2lzdGVudCB3aXRoIGNsaWVudCBiZWhhdmlvciBkZWZpbmVk IGxhdGVyLCBpLmUuLCB3ZSBhcHBseSBTSE9VTEQgTk9UIGxhbmd1YWdlIHRvIHRoZSBjbGllbnQg YmVoYXZpb3IuDQogICAgICAgICAgICAgICAgICAgIEkgYW0gbm90IHN1cmUgd2Ugc2hvdWxkIGNo YW5nZSBpdCBpbnRvIHN0cm9uZyBsYW5ndWFnZSB3aXRoIE1VU1QuIFNpbmNlIGlmIElHUCBhZHZl cnRpc2VtZW50IGRvZXNuJ3QgaW5jbHVkZSBUQ1AtQU8NCiAgICAgICAgICAgICAgICAgICAgIHN1 cHBvcnQgZmxhZyBiaXQgb3IgVExTIHN1cHBvcnQgZmxhZyBiaXQsIE5NUyBtYXkgZmFsbCBiYWNr IHRvIGNvbmZpZ3VyZSBib3RoIFBDQyBhbmQgUENFIHNlcnZlciB0byBzdXBwb3J0IFRDUC1BTyBv ciBUTFMuIFRoYXQncyBvbmUgb2YgcmVhc29uIEkgdGhpbmsgd2h5IHdlIGNob29zZSB0byB1c2Ug U0hPVUxEIGxhbmd1YWdlLg0KDQogICAgICAgICAgICAgICAgICAgID4qIFNlYy4gMy4xOiBzaG91 bGQgd2UgYWxzbyBzYXkgc29tZXRoaW5nIGFib3V0IHRoZSBjYXNlIHdoZXJlIGJvdGggbWV0aG9k cyBhcmUgYWR2ZXJ0aXNlZCwgYW5kIHdoZXRoZXIgd2UgcmVjb21tZW5kIGZvciB0aGUgY2xpZW50 IHRvIHVzZSBvbmUgb2YgdGhlbSBvdmVyIHRoZSBvdGhlcj8NCg0KICAgICAgICAgICAgICAgICAg ICBbUWluXTogSXQgaXMgdXAgdG8gbG9jYWwgcG9saWN5LCB3aGljaCBoYXMgYmVlIGNsYXJpZmll ZCBpbiB0aGUgZW5kIG9mIHNlY3Rpb24gMy4xLiBIb3BlIHRoaXMgY2xhcmlmeS4NCg0KICAgICAg ICAgICAgICAgICAgICA+KiBTZWMuIDQ6IHR5cG8gKGFwcGVhcnMgdHdpY2UpIC0gInRvIGJlIGNh cnJpZWQgaW4gdGhlIFBDRUQgVExWIG9mIHRoZSBmb3IgdXNlIi4NCg0KICAgICAgICAgICAgICAg ICAgICBbUWluXTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBpbiB0aGUgbG9jYWwgY29weS4NCg0K ICAgICAgICAgICAgICAgICAgICA+KiBTZWMuIDc6IHRoaXMgcGhyYXNlIGFwcGVhcnMgdG8gYmUg ZXNzZW50aWFsIHRvIHNlY3VyaXR5IG9mIHRoaXMgbWVjaGFuaXNtOiAiaXQgTVVTVCBiZSBpbnN1 cmVkIHRoYXQgdGhlIElHUCBpcyBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRl Z3JpdHkgb2YgdGhlIFBDRUQgVExWIi4gSSB3b3VsZCBleHBlY3QgbW9yZSBndWlkYW5jZTogaG93 IGNhbiB0aGlzIHByb3BlcnR5IGJlIGVuc3VyZWQgaW4gdGhlIHJlbGV2YW50IElHUHM/DQogICAg ICAgICAgICAgICAgICAgIFtRaW5dOkkgdGhpbmsgbWVjaGFuaXNtIGRlZmluZWQgaW4gW1JGQzM1 NjddIGFuZCBbUkZDMjE1NF0gY2FuIGJlIHVzZWQgdG8gZW5zdXJlIGF1dGhlbnRpY2l0eSBhbmQg aW50ZWdyaXR5IG9mIE9TUEYgTFNBcyBvciBJU0lTIExTUHMgYW5kIHRoZWlyIFRMVnMuIEhlcmUg aXMgdGhlIHByb3Bvc2VkIGNoYW5nZXM6DQogICAgICAgICAgICAgICAgICAgIE9MRCBURVhUOg0K ICAgICAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgICAgICAgIFRodXMgYmVmb3Jl IGFkdmVydGlzZW1lbnQgb2YNCiAgICAgICAgICAgICAgICAgICAgICAgdGhlIFBDRSBzZWN1cml0 eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAg ICAgICAgICAgICAgICAgIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0 eSBvZiB0aGUgUENFRCBUTFYgaWYgdGhlDQogICAgICAgICAgICAgICAgICAgICAgIG1lY2hhbmlz bSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBpcyB1c2VkLg0KICAgICAgICAgICAgICAgICAg ICAiDQogICAgICAgICAgICAgICAgICAgIE5FVyBURVhUOg0KICAgICAgICAgICAgICAgICAgICAi DQogICAgICAgICAgICAgICAgICAgICAgIFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YNCiAg ICAgICAgICAgICAgICAgICAgICAgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNU IGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAgICAgICAgICAgICAgICAgIHByb3Rl Y3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgd2l0 aCBtZWNoYW5pc21zIGRlZmluZWQgaW4gW1JGQzM1NjddW1JGQzIxNTRdIGlmIHRoZQ0KICAgICAg ICAgICAgICAgICAgICAgICBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMg dXNlZC4NCiAgICAgICAgICAgICAgICAgICAgIg0KICAgICAgICAgICAgICAgICAgICA+KiBBbHNv LCBhIHBvc3NpYmx5IHVuaW50ZW5kZWQgY29uc2VxdWVuY2Ugb2YgdGhpcyByZXF1aXJlbWVudCBp cyB0aGF0IGlmIHRoZSBJR1AgY2Fubm90IGJlIHByb3RlY3RlZCBpbiBhIHBhcnRpY3VsYXIgZGVw bG95bWVudC9wcm9kdWN0LCB0aGlzIG1lY2hhbmlzbSB3b3VsZCBub3QgYmUgdXNlZC4gUGxlYXNl IGNvbnNpZGVyIGlmIHRoaXMgaXMgbGlrZWx5IHRvIGhhcHBlbiBhbmQgd2hldGhlciB3ZSB3YW50 IHRvIGZvcmVnbyBQQ0VQIHRyYW5zcG9ydCA+c2VjdXJpdHkgaW4gc3VjaCBjYXNlcy4gTXkgZ3V0 IGZlZWwgKG5vdCBiYXNlZCBvbiBleHBlcmllbmNlIGluIHN1Y2ggbmV0d29ya3MpIGlzIHRoYXQg dGhlIHRocmVhdCBtb2RlbHMgYXJlIGRpZmZlcmVudCBlbm91Z2ggdGhhdCB3ZSBzaG91bGQgZGVj b3VwbGUgdGhlIHNlY3VyaXR5IG9mIElHUCBmcm9tIHRoYXQgb2YgUENFUC4NCg0KICAgICAgICAg ICAgICAgICAgICBbUWluXSBJIGFncmVlIElHUCBzZWN1cml0eSBzaG91bGQgYmUgc2VwYXJhdGVk IGZyb20gUENFUCBzZWN1cml0eS4gSUdQIGV4dGVuc2lvbiBkZWZpbmVkIGluIHRoaXMgZG9jdW1l bnQgaXMgdXNlZCBieSB0aGUgUENDIHRvIHNlbGVjdCBQQ0Ugc2VydmVyIHdpdGggYXBwcm9wcmlh dGUgc2VjdXJpdHkgbWVjaGFuaXNtLiBPbiB0aGUgb3RoZXIgaGFuZCwgT3BlcmF0b3IgY2FuIGVp dGhlciB1c2UgSUdQIGFkdmVydGlzZW1lbnQgZm9yIFBDRVAgc2VjdXJpdHkgY2FwYWJpbGl0eSBv ciByZWx5IG9uIGxvY2FsIHBvbGljeSB0byBzZWxlY3QgUENFLiBJZiBvcGVyYXRvciBmZWVscyBJ R1AgYWR2ZXJ0aXNlbWVudCBpcyBub3Qgc2VjdXJlLCBoZSBjYW4gZmFsbCBiYWNrIHRvIGxvY2Fs IHBvbGljeSBvciByZWx5IG9uIG1hbnVhbCBjb25maWd1cmF0aW9uLiBIb3BlIHRoaXMgY2xhcmlm aWVzLg0KDQoNCg0KDQoNCg0KDQogICAgICAgIF9fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fDQogICAgICAgIExzciBtYWlsaW5nIGxpc3QNCiAgICAgICAgTHNy QGlldGYub3JnDQogICAgICAgIGh0dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4vbGlzdGluZm8v bHNyDQoNCg0K From nobody Mon Aug 16 17:17:22 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3E1573A0798; Mon, 16 Aug 2021 17:17:20 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Qz28D0ImcOaH; Mon, 16 Aug 2021 17:17:14 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 028DD3A0795; Mon, 16 Aug 2021 17:17:14 -0700 (PDT) Received: from fraeml707-chm.china.huawei.com (unknown [172.18.147.226]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4GpWm64FfQz6BG19; Tue, 17 Aug 2021 08:16:22 +0800 (CST) Received: from dggeml703-chm.china.huawei.com (10.3.17.136) by fraeml707-chm.china.huawei.com (10.206.15.35) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Tue, 17 Aug 2021 02:17:09 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml703-chm.china.huawei.com (10.3.17.136) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Tue, 17 Aug 2021 08:17:08 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Tue, 17 Aug 2021 08:17:07 +0800 From: Qin Wu To: "Acee Lindem (acee)" , tom petch , Yaron Sheffer , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeS/QTAao4BcToNQmG4p4waGPgvAw== Date: Tue, 17 Aug 2021 00:17:07 +0000 Message-ID: <823a8f74b1824ff8827734446fe6f335@huawei.com> Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.136.123.117] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Aug 2021 00:17:20 -0000 U29ycnkgZm9yIGxhdGUgZm9sbG93dXAsIGhlcmUgaXMgdGhlIHVwZGF0ZSwgdGhlIGRpZmYgaXMN Cmh0dHBzOi8vd3d3LmlldGYub3JnL3JmY2RpZmY/dXJsMj1kcmFmdC1pZXRmLWxzci1wY2UtZGlz Y292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDYNCllhcm9uLCBsZXQgYXV0aG9ycyBrbm93IGlmIHlv dXIgY29tbWVudHMgYXJlIGFkZHJlc3NlZCBpbiB2LTA2Lg0KVGhhbmtzIQ0KDQotUWluDQotLS0t LemCruS7tuWOn+S7ti0tLS0tDQrlj5Hku7bkuro6IEFjZWUgTGluZGVtIChhY2VlKSBbbWFpbHRv OmFjZWVAY2lzY28uY29tXSANCuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIgxN+aXpSA0OjMzDQrm lLbku7bkuro6IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgdG9tIHBldGNoIDxpZXRmY0Bi dGNvbm5lY3QuY29tPjsgWWFyb24gU2hlZmZlciA8eWFyb25mLmlldGZAZ21haWwuY29tPjsgc2Vj ZGlyQGlldGYub3JnDQrmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJp dHktc3VwcG9ydC5hbGxAaWV0Zi5vcmcNCuS4u+mimDogUmU6IFNlY2RpciBsYXN0IGNhbGwgcmV2 aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC0wNQ0K DQpIaSBRaW4sIA0KDQpDYW4geW91IHB1Ymxpc2ggYSByZXZpc2lvbiBzbyB0aGF0IFlhcm9uIGFz c3VyZSBpdCBzYXRpc2ZpZXMgaGlzIGNvbW1lbnRzPyANCg0KVGhhbmtzLA0KQWNlZQ0KDQrvu79P biA4LzEyLzIxLCA5OjIxIFBNLCAiUWluIFd1IiA8YmlsbC53dUBodWF3ZWkuY29tPiB3cm90ZToN Cg0KICAgIFRoYW5rcyBBY2VlIGFuZCBUb20gZm9yIGdvb2Qgc3VnZ2VzdGlvbiwgd2Ugd2lsbCB0 YWtlIHRoZW0gaW50byBhY2NvdW50Lg0KDQogICAgLVFpbg0KICAgIC0tLS0t6YKu5Lu25Y6f5Lu2 LS0tLS0NCiAgICDlj5Hku7bkuro6IEFjZWUgTGluZGVtIChhY2VlKSBbbWFpbHRvOmFjZWVAY2lz Y28uY29tXSANCiAgICDlj5HpgIHml7bpl7Q6IDIwMjHlubQ45pyIMTLml6UgMToxOA0KICAgIOaU tuS7tuS6ujogdG9tIHBldGNoIDxpZXRmY0BidGNvbm5lY3QuY29tPjsgWWFyb24gU2hlZmZlciA8 eWFyb25mLmlldGZAZ21haWwuY29tPjsgUWluIFd1IDxiaWxsLnd1QGh1YXdlaS5jb20+OyBzZWNk aXJAaWV0Zi5vcmcNCiAgICDmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2Vj dXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmcNCiAgICDkuLvpopg6IFJlOiBTZWNkaXIgbGFzdCBj YWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBv cnQtMDUNCg0KICAgIEknZCBhbHNvIHJlY29tbWVuZCBjaGFuZ2luZywgImtleSBuYW1lcyIgdG8g ImtleS1pZHMgb3Iga2V5LWNoYWluIG5hbWVzIiBzaW5jZSB0aGlzIGlzIHdoYXQgaXMgYWN0dWFs bHkgYmVpbmcgYWR2ZXJ0aXNlZC4NCiAgICBUaGFua3MsDQogICAgQWNlZQ0KDQogICAgT24gOC8x MC8yMSwgMTE6NTMgQU0sICJ0b20gcGV0Y2giIDxpZXRmY0BidGNvbm5lY3QuY29tPiB3cm90ZToN Cg0KICAgICAgICBGcm9tOiBMc3IgPGxzci1ib3VuY2VzQGlldGYub3JnPiBvbiBiZWhhbGYgb2Yg WWFyb24gU2hlZmZlciA8eWFyb25mLmlldGZAZ21haWwuY29tPg0KICAgICAgICBTZW50OiAxMCBB dWd1c3QgMjAyMSAxNDo1Nw0KDQogICAgICAgIFNvIGxldCBtZSBzdWdnZXN0Og0KDQogICAgICAg IDx0cD4NCiAgICAgICAgQW4gb2ZmbGlzdCBzdWdnZXN0aW9uIGZvciB5b3UgdG8gY29uc2lkZXIN Cg0KICAgICAgICBPTEQNCiAgICAgICAgICAgIFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2Yg dGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUg SUdQIHByb3RlY3RzIHRoZSBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VE IFRMViB1c2luZyB0aGUgbWVjaGFuaXNtcyBkZWZpbmVkIGluDQogICAgICAgICAgICBbUkZDNTMx MF0gYW5kIFtSRkM1NzA5XSwgaWYgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1 bWVudCBpcyB1c2VkLg0KDQogICAgICAgICAgICBNb3Jlb3ZlciwgYXMgc3RhdGVkIGluIFtSRkM1 MDg4XSBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGFueSBlbmNyeXB0aW9u IG1lY2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUgc2VjcmVjeSBvZiB0aGUgUENFRCBUTFYsIGFuZCB0 aGUgb3BlcmF0b3IgbXVzdCBlbnN1cmUgdGhhdCBubyBwcml2YXRlIGRhdGEgaXMgY2FycmllZCBp biB0aGUgVExWLCBmb3IgZXhhbXBsZSB0aGF0IGtleSBuYW1lcyBkbyBub3QgcmV2ZWFsIHNlbnNp dGl2ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUgbmV0d29yay4NCg0KICAgICAgICBORVcNCg0KICAg ICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNpbmcgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJz LCB1c2luZyB0aGUgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50LCB0aGUgSUdQ IE1VU1QgYmUga25vd24gdG8gcHJvdmlkZSBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IGZv ciB0aGUgUENFRCBUTFYgdXNpbmcgdGhlIG1lY2hhbmlzbXMgZGVmaW5lZCBpbiAgW1JGQzUzMDRd LCAgW1JGQzUzMTBdIG9yIFtSRkM1NzA5XSwNCg0KICAgICAgICAgICAgTW9yZW92ZXIsIGFzIHN0 YXRlZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwgaWYgdGhlIElHUCBkb2VzIG5vdCBwcm92 aWRlIGFueSBlbmNyeXB0aW9uIG1lY2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUgc2VjcmVjeSBvZiB0 aGUgUENFRCBUTFYsIHRoZW4gdGhlIG9wZXJhdG9yIG11c3QgZW5zdXJlIHRoYXQgbm8gcHJpdmF0 ZSBkYXRhIGlzIGNhcnJpZWQgaW4gdGhlIFRMViwgZS5nLiB0aGF0IGtleSBuYW1lcyBkbyBub3Qg cmV2ZWFsIHNlbnNpdGl2ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUgbmV0d29yay4NCg0KICAgICAg ICBUb20gUGV0Y2gNCiAgICAgICAgPC90cD4NCg0KICAgICAgICBUaGFua3MsDQogICAgICAgICAg ICAgICAgWWFyb24NCg0KICAgICAgICBPbiA4LzEwLzIxLCAxNTowMSwgIlFpbiBXdSIgPGJpbGwu d3VAaHVhd2VpLmNvbT4gd3JvdGU6DQoNCiAgICAgICAgICAgIFlhcm9uOg0KICAgICAgICAgICAg VGhhbmsgZm9yIGNsYXJpZmljYXRpb24uIEkgYWdyZWUgdG8ga2VlcCB0aGUgbGFzdCBzZW50ZW5j ZSBpbiB0aGUgc2Vjb25kIHBhcmFncmFwaCBvZiBzZWN0aW9uIDcgYXMgaXMuDQogICAgICAgICAg ICBCdXQgSSBwcmVmZXIgdG8gYWRkIHRoZSBhZGRpdGlvbiByZWZlcmVuY2VzIGluIHRoZSBwcmV2 aW91cyBzZW50ZW5jZSBhcyBmb2xsb3dzOg0KICAgICAgICAgICAgIg0KICAgICAgICAgICAgVGh1 cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZiB0aGUgUENFIHNlY3VyaXR5IHBhcmFtZXRlcnMsIGl0 IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMNCiAgICAgICAgICAgIHByb3RlY3RlZCBm b3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYsLCB3aXRoIHRo ZSBtZWNoYW5pc21zIGRlZmluZWQgaW4NCiAgICAgICAgICAgIFtSRkM1MzEwXSBhbmQgW1JGQzU3 MDldIGlmIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4N Cg0KICAgICAgICAgICAgQXMgc3RhdGVkIGluIFtSRkM1MDg4XSBhbmQgW1JGQzUwODldLCB0aGUg SUdQIGRvIG5vdCBwcm92aWRlIGVuY3J5cHRpb24gbWVjaGFuaXNtIHRvIHByb3RlY3QNCiAgICAg ICAgICAgIHRoZSBwcml2YWN5IG9mIHRoZSBQQ0VEIFRMViwgaWYgdGhpcyBpbmZvcm1hdGlvbiBj YW4gbWFrZSB0aGUgUENFUCBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9wZXJhdG9yIHNo b3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uLg0KICAgICAgICAgICAgIg0KICAgICAg ICAgICAgSWYgeW91IGJldHRlciB3b3JkaW5nLCBwbGVhc2UgbGV0IG1lIGtub3cuDQoNCiAgICAg ICAgICAgIC1RaW4NCiAgICAgICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAg ICAgIOWPkeS7tuS6ujogWWFyb24gU2hlZmZlciBbbWFpbHRvOnlhcm9uZi5pZXRmQGdtYWlsLmNv bV0NCiAgICAgICAgICAgIOWPkemAgeaXtumXtDogMjAyMeW5tDjmnIgxMOaXpSAxOToyNg0KICAg ICAgICAgICAg5pS25Lu25Lq6OiBRaW4gV3UgPGJpbGwud3VAaHVhd2VpLmNvbT47IHNlY2RpckBp ZXRmLm9yZw0KICAgICAgICAgICAg5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5 LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3JnOyBsYXN0LWNhbGxAaWV0Zi5vcmc7IGxzckBp ZXRmLm9yZw0KICAgICAgICAgICAg5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcg b2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1DQoNCiAg ICAgICAgICAgIEhpIFFpbiwNCg0KICAgICAgICAgICAgU29ycnksIGJ1dCBJIGZpbmQgeW91ciBs YXRlc3QgcHJvcG9zZWQgdGV4dCB2ZXJ5IGNvbmZ1c2luZywgYmVjYXVzZSB3ZSBzaG91bGQgYmUg Zm9jdXNpbmcgb24gaW50ZWdyaXR5IHByb3RlY3Rpb24gYW5kIG5vdCBwcml2YWN5ICg9c2VjcmVj eSkgb2YgdGhlIFRMVi4gU28gSSB3b3VsZCBwcmVmZXIgdG8ga2VlcCB0aGUgdGV4dCBhcy1pcywg d2l0aCB0aGUgYWRkaXRpb24gb2YgYSByZWZlcmVuY2UgdG8gdGhlIElTLUlTIGFuZCBPU1BGIHNl Y3VyaXR5IG1lY2hhbmlzbXMgdGhhdCB3ZXJlIGRpc2N1c3NlZCBvbiB0aGlzIHRocmVhZC4NCg0K ICAgICAgICAgICAgVGhhbmtzLA0KICAgICAgICAgICAgICAgIFlhcm9uDQoNCiAgICAgICAgICAg IE9uIDgvMTAvMjEsIDA1OjAwLCAiUWluIFd1IiA8YmlsbC53dUBodWF3ZWkuY29tPiB3cm90ZToN Cg0KICAgICAgICAgICAgICAgIEhpLCBZYXJvbg0KICAgICAgICAgICAgICAgIC0tLS0t6YKu5Lu2 5Y6f5Lu2LS0tLS0NCiAgICAgICAgICAgICAgICA+5Y+R5Lu25Lq6OiBZYXJvbiBTaGVmZmVyIFtt YWlsdG86eWFyb25mLmlldGZAZ21haWwuY29tXQ0KICAgICAgICAgICAgICAgID7lj5HpgIHml7bp l7Q6IDIwMjHlubQ45pyIOeaXpSAyMTo0NA0KICAgICAgICAgICAgICAgID7mlLbku7bkuro6IFFp biBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGlyQGlldGYub3JnDQogICAgICAgICAgICAg ICAgPuaKhOmAgTogZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0 LmFsbEBpZXRmLm9yZzsgbGFzdC1jYWxsQGlldGYub3JnOyBsc3JAaWV0Zi5vcmcNCiAgICAgICAg ICAgICAgICA+5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0 Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1DQoNCiAgICAgICAgICAgICAg ICA+SGkgUWluLA0KDQogICAgICAgICAgICAgICAgPlRoYW5rIHlvdSBmb3IgeW91ciByZXNwb25z ZS4NCg0KICAgICAgICAgICAgICAgID4qIFJGQyAzNTY3IChmb3IgSVMtSVMpIGlzIG9ic29sZXRl ZCBieSBSRkMgNTMwNC4gVW5mb3J0dW5hdGVseSBSRkMgNTMwNCBzdGlsbCB1c2VzIEhNQUMtTUQ1 LCB3aGljaCB3b3VsZCBiZSBjb25zaWRlcmVkIGluc2VjdXJlIG5vd2FkYXlzLg0KICAgICAgICAg ICAgICAgID4qIFJGQyAyMTU0IGlzIHZlcnkgb2xkIGFuZCBFeHBlcmltZW50YWwgKGFuZCBvbmx5 IHN1cHBvcnRzIFJTQS1NRDUgc2lnbmF0dXJlcykuIEknbSBub3QgYW4gT1NQRiBleHBlcnQgYnkg YW55IG1lYW5zLCBidXQgSSdtIHdpbGxpbmcgdG8gYmV0IHRoYXQgdGhlcmUgYXJlIG5vIHByb2R1 Y3Rpb24gaW1wbGVtZW50YXRpb25zIG9mIHRoaXMgUkZDLiAoSSdtIHdpbGxpbmcgdG8gYmUgcHJv dmVuIHdyb25nKS4NCiAgICAgICAgICAgICAgICA+SXMgdGhlcmUgYW5vdGhlciBSRkMgdGhhdCBk ZWZpbmUgYSBwcm90ZWN0aW9uIG1lY2hhbmlzbSBmb3IgT1NQRj8NCg0KICAgICAgICAgICAgICAg ID5BbGwgaW4gYWxsLCB0aGVyZSBhcHBlYXIgdG8gYmUgbm8gZ29vZCBvcHRpb25zIGZvciB0aGUg SUdQLg0KDQogICAgICAgICAgICAgICAgW1FpbiBXdV1ZZXMsIHdlIGRvIGhhdmUgYWx0ZXJuYXRp dmVzLCBzZWUgTGVzJ3MgcmVzcG9uc2UgaW4gdGhlIHNlcGFyYXRlIGVtYWlsDQogICAgICAgICAg ICAgICAgIg0KICAgICAgICAgICAgICAgIE9uIDgvOS8yMSwgMjM6MzYsIkxlcyBHaW5zYmVyZyAo Z2luc2JlcmcpIiA8Z2luc2JlcmdAY2lzY28uY29tPiB3cm90ZToNCiAgICAgICAgICAgICAgICBG b3IgSVMtSVMgc2VjdXJpdHkgcGxlYXNlIGFsc28gc2VlIFJGQyA1MzEwLg0KICAgICAgICAgICAg ICAgIEZvciBPU1BGIHNlY3VyaXR5IHBsZWFzZSBzZWUgUkZDIDU3MDkuDQogICAgICAgICAgICAg ICAgIg0KICAgICAgICAgICAgICAgID5UbyB5b3VyIGxhc3QgcG9pbnQsIHdoZW4gSSBtZW50aW9u ZWQgZGVjb3VwbGluZyB0aGUgbWVjaGFuaXNtcywgSSB3YXMgc3VnZ2VzdGluZyB0byB1c2UgdGhl IGV4dGVuc2lvbiB5b3UgZGVmaW5lIGV2ZW4gaWYgdGhlIElHUCAqY2Fubm90KiBiZSBzZWN1cmVk LiBJZiB5b3UgdGhpbmsgdGhpcyBpcyByZWFzb25hYmxlLCBwbGVhc2UgYWRkIHN1Y2ggdGV4dCB0 byB0aGUgU2VjdXJpdHkgQ29uc2lkZXJhdGlvbnMuDQoNCiAgICAgICAgICAgICAgICBbUWluIFd1 XSBPa2F5LCBob3cgYWJvdXQgdGhlIGZvbGxvd2luZyBjaGFuZ2UNCiAgICAgICAgICAgICAgICBP TEQgVEVYVDoNCiAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgQXMgc3RhdGVkIGlu IFtSRkM1MDg4XQ0KICAgICAgICAgICAgICAgIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90 IHByb3ZpZGUgZW5jcnlwdGlvbiBtZWNoYW5pc20gdG8gcHJvdGVjdA0KICAgICAgICAgICAgICAg IHRoZSBwcml2YWN5IG9mIHRoZSBQQ0VEIFRMViwgaWYgdGhpcyBpbmZvcm1hdGlvbiBjYW4gbWFr ZSB0aGUgUENFUA0KICAgICAgICAgICAgICAgIHNlc3Npb24gbGVzcyBzZWN1cmUgdGhlbiB0aGUg b3BlcmF0b3Igc2hvdWxkIHRha2UgdGhhdCBpbnRvIGNvbnNpZGVyYXRpb24gLg0KICAgICAgICAg ICAgICAgICINCiAgICAgICAgICAgICAgICBORVcgVEVYVDoNCiAgICAgICAgICAgICAgICAiDQog ICAgICAgICAgICAgICAgQXMgc3RhdGVkIGluIFtSRkM1MDg4XQ0KICAgICAgICAgICAgICAgIGFu ZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUgZW5jcnlwdGlvbiBtZWNoYW5pc20g dG8gcHJvdGVjdA0KICAgICAgICAgICAgICAgIHRoZSBwcml2YWN5IG9mIHRoZSBQQ0VEIFRMViwg aWYgdGhpcyBpbmZvcm1hdGlvbiBjYW4gbWFrZSB0aGUgUENFUA0KICAgICAgICAgICAgICAgIHNl c3Npb24gbGVzcyBzZWN1cmUgdGhlbiB0aGUgb3BlcmF0b3Igc2hvdWxkIHRha2UgdGhhdCBpbnRv IGNvbnNpZGVyYXRpb24NCiAgICAgICAgICAgICAgICB3aGVuIGdldHRpbmcgdGhlIG1lY2hhbmlz bSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBkZXBsb3llZC4NCiAgICAgICAgICAgICAgICAi DQogICAgICAgICAgICAgICAgID5UaGFua3MsDQogICAgICAgICAgICAgICAgID4gICAgICBZYXJv bg0KDQogICAgICAgICAgICAgICAgPk9uIDgvOS8yMSwgMTY6MDksICJRaW4gV3UiIDxiaWxsLnd1 QGh1YXdlaS5jb20+IHdyb3RlOg0KDQogICAgICAgICAgICAgICAgICA+ICAgVGhhbmtzIFlhcm9u IGZvciB2YWx1YWJsZSBjb21tZW50cywgcGxlYXNlIHNlZSBteSByZXBseSBpbmxpbmUgYmVsb3cu DQogICAgICAgICAgICAgICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAgICAg ICAgICAgICAgPuWPkeS7tuS6ujogWWFyb24gU2hlZmZlciB2aWEgRGF0YXRyYWNrZXIgW21haWx0 bzpub3JlcGx5QGlldGYub3JnXQ0KICAgICAgICAgICAgICAgICAgICA+5Y+R6YCB5pe26Ze0OiAy MDIx5bm0OOaciDbml6UgMzoyNQ0KICAgICAgICAgICAgICAgICAgICA+5pS25Lu25Lq6OiBzZWNk aXJAaWV0Zi5vcmcNCiAgICAgICAgICAgICAgICAgICAgPuaKhOmAgTogZHJhZnQtaWV0Zi1sc3It cGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZzsgbGFzdC1jYWxsQGll dGYub3JnOyBsc3JAaWV0Zi5vcmcNCiAgICAgICAgICAgICAgICAgICAgPuS4u+mimDogU2VjZGly IGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0 eS1zdXBwb3J0LTA1DQoNCiAgICAgICAgICAgICAgICAgICAgPlJldmlld2VyOiBZYXJvbiBTaGVm ZmVyDQogICAgICAgICAgICAgICAgICAgID5SZXZpZXcgcmVzdWx0OiBOb3QgUmVhZHkNCg0KICAg ICAgICAgICAgICAgICAgICA+VGhpcyBkb2N1bWVudCBkZWZpbmVzIGEgbWVjaGFuaXNtIChhIFRM VikgdG8gYWR2ZXJ0aXNlIHRoZSBQQ0UgUHJvdG9jb2wgc2VjdXJpdHkgcmVxdWlyZWQgKHVzZSBv ZiBUQ1AtQU8gYW5kIGl0cyBrZXkgSUQsIG9yIGFsdGVybmF0aXZlbHkgdXNlIG9mIFRMUykgd2l0 aGluIHRoZSByb3V0aW5nIHByb3RvY29sIGJlaW5nIHVzZWQuDQoNCiAgICAgICAgICAgICAgICAg ICAgPiogU2VjLiAzLjE6IEkgZG9uJ3QgdW5kZXJzdGFuZCB3aHkgIlNIT1VMRCBhZHZlcnRpc2Ui IGFuZCBub3QgTVVTVC4gRXNwZWNpYWxseSBnaXZlbiB0aGUgc3RyaWN0IGNsaWVudCBiZWhhdmlv ciBkZWZpbmVkIGxhdGVyLg0KICAgICAgICAgICAgICAgICAgICBbUWluXTogSSBiZWxpZXZlICJT SE9VTEQgYWR2ZXJ0aXNlIiBpcyBjb25zaXN0ZW50IHdpdGggY2xpZW50IGJlaGF2aW9yIGRlZmlu ZWQgbGF0ZXIsIGkuZS4sIHdlIGFwcGx5IFNIT1VMRCBOT1QgbGFuZ3VhZ2UgdG8gdGhlIGNsaWVu dCBiZWhhdmlvci4NCiAgICAgICAgICAgICAgICAgICAgSSBhbSBub3Qgc3VyZSB3ZSBzaG91bGQg Y2hhbmdlIGl0IGludG8gc3Ryb25nIGxhbmd1YWdlIHdpdGggTVVTVC4gU2luY2UgaWYgSUdQIGFk dmVydGlzZW1lbnQgZG9lc24ndCBpbmNsdWRlIFRDUC1BTw0KICAgICAgICAgICAgICAgICAgICAg c3VwcG9ydCBmbGFnIGJpdCBvciBUTFMgc3VwcG9ydCBmbGFnIGJpdCwgTk1TIG1heSBmYWxsIGJh Y2sgdG8gY29uZmlndXJlIGJvdGggUENDIGFuZCBQQ0Ugc2VydmVyIHRvIHN1cHBvcnQgVENQLUFP IG9yIFRMUy4gVGhhdCdzIG9uZSBvZiByZWFzb24gSSB0aGluayB3aHkgd2UgY2hvb3NlIHRvIHVz ZSBTSE9VTEQgbGFuZ3VhZ2UuDQoNCiAgICAgICAgICAgICAgICAgICAgPiogU2VjLiAzLjE6IHNo b3VsZCB3ZSBhbHNvIHNheSBzb21ldGhpbmcgYWJvdXQgdGhlIGNhc2Ugd2hlcmUgYm90aCBtZXRo b2RzIGFyZSBhZHZlcnRpc2VkLCBhbmQgd2hldGhlciB3ZSByZWNvbW1lbmQgZm9yIHRoZSBjbGll bnQgdG8gdXNlIG9uZSBvZiB0aGVtIG92ZXIgdGhlIG90aGVyPw0KDQogICAgICAgICAgICAgICAg ICAgIFtRaW5dOiBJdCBpcyB1cCB0byBsb2NhbCBwb2xpY3ksIHdoaWNoIGhhcyBiZWUgY2xhcmlm aWVkIGluIHRoZSBlbmQgb2Ygc2VjdGlvbiAzLjEuIEhvcGUgdGhpcyBjbGFyaWZ5Lg0KDQogICAg ICAgICAgICAgICAgICAgID4qIFNlYy4gNDogdHlwbyAoYXBwZWFycyB0d2ljZSkgLSAidG8gYmUg Y2FycmllZCBpbiB0aGUgUENFRCBUTFYgb2YgdGhlIGZvciB1c2UiLg0KDQogICAgICAgICAgICAg ICAgICAgIFtRaW5dOlRoYW5rcywgaGF2ZSBmaXhlZCB0aGVtIGluIHRoZSBsb2NhbCBjb3B5Lg0K DQogICAgICAgICAgICAgICAgICAgID4qIFNlYy4gNzogdGhpcyBwaHJhc2UgYXBwZWFycyB0byBi ZSBlc3NlbnRpYWwgdG8gc2VjdXJpdHkgb2YgdGhpcyBtZWNoYW5pc206ICJpdCBNVVNUIGJlIGlu c3VyZWQgdGhhdCB0aGUgSUdQIGlzIHByb3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGlu dGVncml0eSBvZiB0aGUgUENFRCBUTFYiLiBJIHdvdWxkIGV4cGVjdCBtb3JlIGd1aWRhbmNlOiBo b3cgY2FuIHRoaXMgcHJvcGVydHkgYmUgZW5zdXJlZCBpbiB0aGUgcmVsZXZhbnQgSUdQcz8NCiAg ICAgICAgICAgICAgICAgICAgW1Fpbl06SSB0aGluayBtZWNoYW5pc20gZGVmaW5lZCBpbiBbUkZD MzU2N10gYW5kIFtSRkMyMTU0XSBjYW4gYmUgdXNlZCB0byBlbnN1cmUgYXV0aGVudGljaXR5IGFu ZCBpbnRlZ3JpdHkgb2YgT1NQRiBMU0FzIG9yIElTSVMgTFNQcyBhbmQgdGhlaXIgVExWcy4gSGVy ZSBpcyB0aGUgcHJvcG9zZWQgY2hhbmdlczoNCiAgICAgICAgICAgICAgICAgICAgT0xEIFRFWFQ6 DQogICAgICAgICAgICAgICAgICAgICINCiAgICAgICAgICAgICAgICAgICAgICAgVGh1cyBiZWZv cmUgYWR2ZXJ0aXNlbWVudCBvZg0KICAgICAgICAgICAgICAgICAgICAgICB0aGUgUENFIHNlY3Vy aXR5IHBhcmFtZXRlcnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMNCiAgICAg ICAgICAgICAgICAgICAgICAgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdy aXR5IG9mIHRoZSBQQ0VEIFRMViBpZiB0aGUNCiAgICAgICAgICAgICAgICAgICAgICAgbWVjaGFu aXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAgICAgICAgICAgICAg ICAgICINCiAgICAgICAgICAgICAgICAgICAgTkVXIFRFWFQ6DQogICAgICAgICAgICAgICAgICAg ICINCiAgICAgICAgICAgICAgICAgICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZg0K ICAgICAgICAgICAgICAgICAgICAgICB0aGUgUENFIHNlY3VyaXR5IHBhcmFtZXRlcnMsIGl0IE1V U1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMNCiAgICAgICAgICAgICAgICAgICAgICAgcHJv dGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViB3 aXRoIG1lY2hhbmlzbXMgZGVmaW5lZCBpbiBbUkZDMzU2N11bUkZDMjE1NF0gaWYgdGhlDQogICAg ICAgICAgICAgICAgICAgICAgIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCBp cyB1c2VkLg0KICAgICAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgICAgID4qIEFs c28sIGEgcG9zc2libHkgdW5pbnRlbmRlZCBjb25zZXF1ZW5jZSBvZiB0aGlzIHJlcXVpcmVtZW50 IGlzIHRoYXQgaWYgdGhlIElHUCBjYW5ub3QgYmUgcHJvdGVjdGVkIGluIGEgcGFydGljdWxhciBk ZXBsb3ltZW50L3Byb2R1Y3QsIHRoaXMgbWVjaGFuaXNtIHdvdWxkIG5vdCBiZSB1c2VkLiBQbGVh c2UgY29uc2lkZXIgaWYgdGhpcyBpcyBsaWtlbHkgdG8gaGFwcGVuIGFuZCB3aGV0aGVyIHdlIHdh bnQgdG8gZm9yZWdvIFBDRVAgdHJhbnNwb3J0ID5zZWN1cml0eSBpbiBzdWNoIGNhc2VzLiBNeSBn dXQgZmVlbCAobm90IGJhc2VkIG9uIGV4cGVyaWVuY2UgaW4gc3VjaCBuZXR3b3JrcykgaXMgdGhh dCB0aGUgdGhyZWF0IG1vZGVscyBhcmUgZGlmZmVyZW50IGVub3VnaCB0aGF0IHdlIHNob3VsZCBk ZWNvdXBsZSB0aGUgc2VjdXJpdHkgb2YgSUdQIGZyb20gdGhhdCBvZiBQQ0VQLg0KDQogICAgICAg ICAgICAgICAgICAgIFtRaW5dIEkgYWdyZWUgSUdQIHNlY3VyaXR5IHNob3VsZCBiZSBzZXBhcmF0 ZWQgZnJvbSBQQ0VQIHNlY3VyaXR5LiBJR1AgZXh0ZW5zaW9uIGRlZmluZWQgaW4gdGhpcyBkb2N1 bWVudCBpcyB1c2VkIGJ5IHRoZSBQQ0MgdG8gc2VsZWN0IFBDRSBzZXJ2ZXIgd2l0aCBhcHByb3By aWF0ZSBzZWN1cml0eSBtZWNoYW5pc20uIE9uIHRoZSBvdGhlciBoYW5kLCBPcGVyYXRvciBjYW4g ZWl0aGVyIHVzZSBJR1AgYWR2ZXJ0aXNlbWVudCBmb3IgUENFUCBzZWN1cml0eSBjYXBhYmlsaXR5 IG9yIHJlbHkgb24gbG9jYWwgcG9saWN5IHRvIHNlbGVjdCBQQ0UuIElmIG9wZXJhdG9yIGZlZWxz IElHUCBhZHZlcnRpc2VtZW50IGlzIG5vdCBzZWN1cmUsIGhlIGNhbiBmYWxsIGJhY2sgdG8gbG9j YWwgcG9saWN5IG9yIHJlbHkgb24gbWFudWFsIGNvbmZpZ3VyYXRpb24uIEhvcGUgdGhpcyBjbGFy aWZpZXMuDQoNCg0KDQoNCg0KDQoNCiAgICAgICAgX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX18NCiAgICAgICAgTHNyIG1haWxpbmcgbGlzdA0KICAgICAgICBM c3JAaWV0Zi5vcmcNCiAgICAgICAgaHR0cHM6Ly93d3cuaWV0Zi5vcmcvbWFpbG1hbi9saXN0aW5m by9sc3INCg0KDQo= From nobody Tue Aug 17 00:15:22 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 026253A1B66; Tue, 17 Aug 2021 00:15:20 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.097 X-Spam-Level: X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, MIME_QP_LONG_LINE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8PVB6Eow7HPc; Tue, 17 Aug 2021 00:15:14 -0700 (PDT) Received: from mail-io1-xd31.google.com (mail-io1-xd31.google.com [IPv6:2607:f8b0:4864:20::d31]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1768F3A1B68; Tue, 17 Aug 2021 00:15:14 -0700 (PDT) Received: by mail-io1-xd31.google.com with SMTP id b7so17265834iob.4; Tue, 17 Aug 2021 00:15:14 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=user-agent:date:subject:from:to:cc:message-id:thread-topic :references:in-reply-to:mime-version:content-transfer-encoding; bh=kgmCUdgHagsAo3eekAz5OACaR6iKeqamMHUFGphlt7Y=; b=S0DFb0A8ZAI4k+/Pl6Vz9apKx3DZXGtk3CaQN53mHxyT9EQA2ISzjUIfZHskcGibbM ZjulGjBbpE9FM3i0r7kSvRwrUs7Syi18gNrYUhdkYVelLBQDRqZyelBxeRF1gj+1iXKJ 7pYls6tHKF4rFzR4GjiHgvD69u5FF2Jy9pPUETO6pCavVwNAK0ZVRTB/ZXttx32P6Ch2 Tb3XoaXBhjWh1oWSjrStUM/j7usasa1RbdOtrGRJ60Spi9BaRUcx43AuL0BYZ8Zfa6Kn VhLrXyKmFX7JbTARfeY7PS0EDmJk0kfKOp3tA76Ekotg8V15NaBlISs/fCoaIrw6YDcR XgoQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:user-agent:date:subject:from:to:cc:message-id :thread-topic:references:in-reply-to:mime-version :content-transfer-encoding; bh=kgmCUdgHagsAo3eekAz5OACaR6iKeqamMHUFGphlt7Y=; b=gjcV1GhVVX81/Y0l4ioLSgxQky7zJUQIL1RyiglgUN0P1JVkIy8vhhNtaHD1m5FDnD EQDAYfbrUorm98OaiPg+r4vMzECU/Tpf9QA/Oz3NplUrKjRQy8VbqXHWo5yxAslkOUha CTHKrigqOyVs6SP10O2J3LtwLCHo6KbHpIgBhfjkd2xEtH/I6YrZXKsPkyqzONv414tJ aE17MLWZ6DXxHFP0LEt7K2s2xr6Uj6zhwSjhmEKbYJHtCdmTvQntJwkM3byVAbo0wR54 LB2sQEoOGq0G6WZG9ydFVyo7w5D70bhWSqLEL3O5HGk3wm0c/CDU7IXf1M+CILU0+zGt Fv7w== X-Gm-Message-State: AOAM530Sb5zlYu8lz7XplBHiDMAYqKVC5R0uRJraolDftETkgixF9h7P 6kkmMI+twY06FRaUqSE3Kk8= X-Google-Smtp-Source: ABdhPJw7TuSdCzYbYn4EpR28knX+Ug0Ieox5zLeP3dd3euUSYU9yROTfVkD+35B0qDNJ3PdOxZjQ+Q== X-Received: by 2002:a02:a709:: with SMTP id k9mr1704247jam.64.1629184512031; Tue, 17 Aug 2021 00:15:12 -0700 (PDT) Received: from [192.168.68.110] (bzq-79-181-28-50.red.bezeqint.net. [79.181.28.50]) by smtp.gmail.com with ESMTPSA id p13sm640357ils.69.2021.08.17.00.15.09 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Tue, 17 Aug 2021 00:15:11 -0700 (PDT) User-Agent: Microsoft-MacOutlook/16.52.21080801 Date: Tue, 17 Aug 2021 10:15:07 +0300 From: Yaron Sheffer To: Qin Wu , "Acee Lindem (acee)" , tom petch , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" Message-ID: Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 References: <823a8f74b1824ff8827734446fe6f335@huawei.com> In-Reply-To: <823a8f74b1824ff8827734446fe6f335@huawei.com> Mime-version: 1.0 Content-type: text/plain; charset="UTF-8" Content-transfer-encoding: quoted-printable Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Aug 2021 07:15:20 -0000 Looks good to me. Thank you! Yaron =EF=BB=BFOn 8/17/21, 03:17, "Qin Wu" wrote: Sorry for late followup, here is the update, the diff is https://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-lsr-pce-discovery-security= -support-06 Yaron, let authors know if your comments are addressed in v-06. Thanks! -Qin -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- =E5=8F=91=E4=BB=B6=E4=BA=BA: Acee Lindem (acee) [mailto:acee@cisco.com]=20 =E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=8817=E6=97=A5 4:33 =E6=94=B6=E4=BB=B6=E4=BA=BA: Qin Wu ; tom petch = ; Yaron Sheffer ; secdir@ietf.org =E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@ietf.org =E4=B8=BB=E9=A2=98: Re: Secdir last call review of draft-ietf-lsr-pce-discovery-sec= urity-support-05 Hi Qin,=20 Can you publish a revision so that Yaron assure it satisfies his commen= ts?=20 Thanks, Acee =EF=BB=BFOn 8/12/21, 9:21 PM, "Qin Wu" wrote: Thanks Acee and Tom for good suggestion, we will take them into acc= ount. -Qin -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- =E5=8F=91=E4=BB=B6=E4=BA=BA: Acee Lindem (acee) [mailto:acee@cisco.com]=20 =E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=8812=E6=97=A5 1:18 =E6=94=B6=E4=BB=B6=E4=BA=BA: tom petch ; Yaron Sheffer ; Qin Wu ; secdir@ietf.org =E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@ietf.org =E4=B8=BB=E9=A2=98: Re: Secdir last call review of draft-ietf-lsr-pce-discovery= -security-support-05 I'd also recommend changing, "key names" to "key-ids or key-chain n= ames" since this is what is actually being advertised. Thanks, Acee On 8/10/21, 11:53 AM, "tom petch" wrote: From: Lsr on behalf of Yaron Sheffer Sent: 10 August 2021 14:57 So let me suggest: An offlist suggestion for you to consider OLD Thus before advertisement of the PCE security parameters, i= t MUST be insured that the IGP protects the authentication and integrity of = the PCED TLV using the mechanisms defined in [RFC5310] and [RFC5709], if the mechanism described in this= document is used. Moreover, as stated in [RFC5088] and [RFC5089], the IGP do = not provide any encryption mechanisms to protect the secrecy of the PCED TLV= , and the operator must ensure that no private data is carried in the TLV, f= or example that key names do not reveal sensitive information about the netw= ork. NEW Thus before advertising the PCE security parameters, using the= mechanism described in this document, the IGP MUST be known to provide auth= entication and integrity for the PCED TLV using the mechanisms defined in [= RFC5304], [RFC5310] or [RFC5709], Moreover, as stated in [RFC5088] and [RFC5089], if the IGP = does not provide any encryption mechanisms to protect the secrecy of the PCE= D TLV, then the operator must ensure that no private data is carried in the = TLV, e.g. that key names do not reveal sensitive information about the netwo= rk. Tom Petch Thanks, Yaron On 8/10/21, 15:01, "Qin Wu" wrote: Yaron: Thank for clarification. I agree to keep the last sentence = in the second paragraph of section 7 as is. But I prefer to add the addition references in the previous= sentence as follows: " Thus before advertisement of the PCE security parameters, i= t MUST be insured that the IGP is protected for authentication and integrity of the PCED TLV,= , with the mechanisms defined in [RFC5310] and [RFC5709] if the mechanism described in this = document is used. As stated in [RFC5088] and [RFC5089], the IGP do not provid= e encryption mechanism to protect the privacy of the PCED TLV, if this information can make t= he PCEP session less secure then the operator should take that into consider= ation. " If you better wording, please let me know. -Qin -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- =E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer [mailto:yaronf.ietf@gmail.com] =E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=8810=E6=97=A5 19:26 =E6=94=B6=E4=BB=B6=E4=BA=BA: Qin Wu ; secdir@ietf.org =E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.all@i= etf.org; last-call@ietf.org; lsr@ietf.org =E4=B8=BB=E9=A2=98: Re: Secdir last call review of draft-ietf-lsr-pce-d= iscovery-security-support-05 Hi Qin, Sorry, but I find your latest proposed text very confusing,= because we should be focusing on integrity protection and not privacy (=3Dsec= recy) of the TLV. So I would prefer to keep the text as-is, with the additio= n of a reference to the IS-IS and OSPF security mechanisms that were discuss= ed on this thread. Thanks, Yaron On 8/10/21, 05:00, "Qin Wu" wrote: Hi, Yaron -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- >=E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer [mailto:yaronf.ietf@gmail.com= ] >=E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=889=E6=97=A5 21:44 >=E6=94=B6=E4=BB=B6=E4=BA=BA: Qin Wu ; secdir@ietf.or= g >=E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-support.= all@ietf.org; last-call@ietf.org; lsr@ietf.org >=E4=B8=BB=E9=A2=98: Re: Secdir last call review of draft-ietf-lsr-= pce-discovery-security-support-05 >Hi Qin, >Thank you for your response. >* RFC 3567 (for IS-IS) is obsoleted by RFC 5304. Unfor= tunately RFC 5304 still uses HMAC-MD5, which would be considered insecure no= wadays. >* RFC 2154 is very old and Experimental (and only supp= orts RSA-MD5 signatures). I'm not an OSPF expert by any means, but I'm willi= ng to bet that there are no production implementations of this RFC. (I'm wil= ling to be proven wrong). >Is there another RFC that define a protection mechanis= m for OSPF? >All in all, there appear to be no good options for the= IGP. [Qin Wu]Yes, we do have alternatives, see Les's respons= e in the separate email " On 8/9/21, 23:36,"Les Ginsberg (ginsberg)" wrote: For IS-IS security please also see RFC 5310. For OSPF security please see RFC 5709. " >To your last point, when I mentioned decoupling the me= chanisms, I was suggesting to use the extension you define even if the IGP *= cannot* be secured. If you think this is reasonable, please add such text to= the Security Considerations. [Qin Wu] Okay, how about the following change OLD TEXT: " As stated in [RFC5088] and [RFC5089], the IGP do not provide encryption mechan= ism to protect the privacy of the PCED TLV, if this information can ma= ke the PCEP session less secure then the operator should take that = into consideration . " NEW TEXT: " As stated in [RFC5088] and [RFC5089], the IGP do not provide encryption mechan= ism to protect the privacy of the PCED TLV, if this information can ma= ke the PCEP session less secure then the operator should take that = into consideration when getting the mechanism described in this document d= eployed. " >Thanks, > Yaron >On 8/9/21, 16:09, "Qin Wu" wrote: > Thanks Yaron for valuable comments, please see my= reply inline below. -----=E9=82=AE=E4=BB=B6=E5=8E=9F=E4=BB=B6----- >=E5=8F=91=E4=BB=B6=E4=BA=BA: Yaron Sheffer via Datatracker [mailto:n= oreply@ietf.org] >=E5=8F=91=E9=80=81=E6=97=B6=E9=97=B4: 2021=E5=B9=B48=E6=9C=886=E6=97=A5 3:25 >=E6=94=B6=E4=BB=B6=E4=BA=BA: secdir@ietf.org >=E6=8A=84=E9=80=81: draft-ietf-lsr-pce-discovery-security-supp= ort.all@ietf.org; last-call@ietf.org; lsr@ietf.org >=E4=B8=BB=E9=A2=98: Secdir last call review of draft-ietf-lsr-= pce-discovery-security-support-05 >Reviewer: Yaron Sheffer >Review result: Not Ready >This document defines a mechanism (a TLV) to adver= tise the PCE Protocol security required (use of TCP-AO and its key ID, or al= ternatively use of TLS) within the routing protocol being used. >* Sec. 3.1: I don't understand why "SHOULD adverti= se" and not MUST. Especially given the strict client behavior defined later. [Qin]: I believe "SHOULD advertise" is consistent w= ith client behavior defined later, i.e., we apply SHOULD NOT language to the= client behavior. I am not sure we should change it into strong langu= age with MUST. Since if IGP advertisement doesn't include TCP-AO support flag bit or TLS support flag bit, NMS may = fall back to configure both PCC and PCE server to support TCP-AO or TLS. Tha= t's one of reason I think why we choose to use SHOULD language. >* Sec. 3.1: should we also say something about the= case where both methods are advertised, and whether we recommend for the cl= ient to use one of them over the other? [Qin]: It is up to local policy, which has bee clar= ified in the end of section 3.1. Hope this clarify. >* Sec. 4: typo (appears twice) - "to be carried in= the PCED TLV of the for use". [Qin]:Thanks, have fixed them in the local copy. >* Sec. 7: this phrase appears to be essential to s= ecurity of this mechanism: "it MUST be insured that the IGP is protected for= authentication and integrity of the PCED TLV". I would expect more guidance= : how can this property be ensured in the relevant IGPs? [Qin]:I think mechanism defined in [RFC3567] and [R= FC2154] can be used to ensure authenticity and integrity of OSPF LSAs or ISI= S LSPs and their TLVs. Here is the proposed changes: OLD TEXT: " Thus before advertisement of the PCE security parameters, it MUST be insured = that the IGP is protected for authentication and integrity of th= e PCED TLV if the mechanism described in this document is used. " NEW TEXT: " Thus before advertisement of the PCE security parameters, it MUST be insured = that the IGP is protected for authentication and integrity of th= e PCED TLV with mechanisms defined in [RFC3567][RFC2154] if the mechanism described in this document is used. " >* Also, a possibly unintended consequence of this = requirement is that if the IGP cannot be protected in a particular deploymen= t/product, this mechanism would not be used. Please consider if this is like= ly to happen and whether we want to forego PCEP transport >security in such = cases. My gut feel (not based on experience in such networks) is that the th= reat models are different enough that we should decouple the security of IGP= from that of PCEP. [Qin] I agree IGP security should be separated from= PCEP security. IGP extension defined in this document is used by the PCC to= select PCE server with appropriate security mechanism. On the other hand, O= perator can either use IGP advertisement for PCEP security capability or rel= y on local policy to select PCE. If operator feels IGP advertisement is not = secure, he can fall back to local policy or rely on manual configuration. Ho= pe this clarifies. _______________________________________________ Lsr mailing list Lsr@ietf.org https://www.ietf.org/mailman/listinfo/lsr From nobody Tue Aug 17 04:32:00 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4BD6E3A0913; Tue, 17 Aug 2021 04:31:38 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.897 X-Spam-Level: X-Spam-Status: No, score=-1.897 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fFe_MN62kPA3; Tue, 17 Aug 2021 04:31:32 -0700 (PDT) Received: from frasgout.his.huawei.com (frasgout.his.huawei.com [185.176.79.56]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2BFDF3A0900; Tue, 17 Aug 2021 04:31:32 -0700 (PDT) Received: from fraeml735-chm.china.huawei.com (unknown [172.18.147.200]) by frasgout.his.huawei.com (SkyGuard) with ESMTP id 4Gppk736fHz6BHKJ; Tue, 17 Aug 2021 19:30:39 +0800 (CST) Received: from dggeml704-chm.china.huawei.com (10.3.17.142) by fraeml735-chm.china.huawei.com (10.206.15.216) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256) id 15.1.2308.8; Tue, 17 Aug 2021 13:31:28 +0200 Received: from dggeml753-chm.china.huawei.com (10.1.199.152) by dggeml704-chm.china.huawei.com (10.3.17.142) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.2176.2; Tue, 17 Aug 2021 19:31:26 +0800 Received: from dggeml753-chm.china.huawei.com ([10.1.199.152]) by dggeml753-chm.china.huawei.com ([10.1.199.152]) with mapi id 15.01.2176.012; Tue, 17 Aug 2021 19:31:26 +0800 From: Qin Wu To: Yaron Sheffer , "Acee Lindem (acee)" , tom petch , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeTW1v5ao4BcToNQmG4p4waGPgvAw== Date: Tue, 17 Aug 2021 11:31:26 +0000 Message-ID: <887d7eb31ef442828e145f63fe826399@huawei.com> Accept-Language: zh-CN, en-US Content-Language: zh-CN X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.136.123.117] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-CFilter-Loop: Reflected Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 17 Aug 2021 11:31:58 -0000 VGhhbmtzIFlhcm9uLg0KDQotUWluDQotLS0tLemCruS7tuWOn+S7ti0tLS0tDQrlj5Hku7bkuro6 IFlhcm9uIFNoZWZmZXIgW21haWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21dIA0K5Y+R6YCB5pe2 6Ze0OiAyMDIx5bm0OOaciDE35pelIDE1OjE1DQrmlLbku7bkuro6IFFpbiBXdSA8YmlsbC53dUBo dWF3ZWkuY29tPjsgQWNlZSBMaW5kZW0gKGFjZWUpIDxhY2VlQGNpc2NvLmNvbT47IHRvbSBwZXRj aCA8aWV0ZmNAYnRjb25uZWN0LmNvbT47IHNlY2RpckBpZXRmLm9yZw0K5oqE6YCBOiBkcmFmdC1p ZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3JnDQrkuLvp opg6IFJlOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2UtZGlz Y292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDUNCg0KTG9va3MgZ29vZCB0byBtZS4gVGhhbmsgeW91 IQ0KDQoJWWFyb24NCg0K77u/T24gOC8xNy8yMSwgMDM6MTcsICJRaW4gV3UiIDxiaWxsLnd1QGh1 YXdlaS5jb20+IHdyb3RlOg0KDQogICAgU29ycnkgZm9yIGxhdGUgZm9sbG93dXAsIGhlcmUgaXMg dGhlIHVwZGF0ZSwgdGhlIGRpZmYgaXMNCiAgICBodHRwczovL3d3dy5pZXRmLm9yZy9yZmNkaWZm P3VybDI9ZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA2DQog ICAgWWFyb24sIGxldCBhdXRob3JzIGtub3cgaWYgeW91ciBjb21tZW50cyBhcmUgYWRkcmVzc2Vk IGluIHYtMDYuDQogICAgVGhhbmtzIQ0KDQogICAgLVFpbg0KICAgIC0tLS0t6YKu5Lu25Y6f5Lu2 LS0tLS0NCiAgICDlj5Hku7bkuro6IEFjZWUgTGluZGVtIChhY2VlKSBbbWFpbHRvOmFjZWVAY2lz Y28uY29tXSANCiAgICDlj5HpgIHml7bpl7Q6IDIwMjHlubQ45pyIMTfml6UgNDozMw0KICAgIOaU tuS7tuS6ujogUWluIFd1IDxiaWxsLnd1QGh1YXdlaS5jb20+OyB0b20gcGV0Y2ggPGlldGZjQGJ0 Y29ubmVjdC5jb20+OyBZYXJvbiBTaGVmZmVyIDx5YXJvbmYuaWV0ZkBnbWFpbC5jb20+OyBzZWNk aXJAaWV0Zi5vcmcNCiAgICDmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2Vj dXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmcNCiAgICDkuLvpopg6IFJlOiBTZWNkaXIgbGFzdCBj YWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBv cnQtMDUNCg0KICAgIEhpIFFpbiwgDQoNCiAgICBDYW4geW91IHB1Ymxpc2ggYSByZXZpc2lvbiBz byB0aGF0IFlhcm9uIGFzc3VyZSBpdCBzYXRpc2ZpZXMgaGlzIGNvbW1lbnRzPyANCg0KICAgIFRo YW5rcywNCiAgICBBY2VlDQoNCiAgICDvu79PbiA4LzEyLzIxLCA5OjIxIFBNLCAiUWluIFd1IiA8 YmlsbC53dUBodWF3ZWkuY29tPiB3cm90ZToNCg0KICAgICAgICBUaGFua3MgQWNlZSBhbmQgVG9t IGZvciBnb29kIHN1Z2dlc3Rpb24sIHdlIHdpbGwgdGFrZSB0aGVtIGludG8gYWNjb3VudC4NCg0K ICAgICAgICAtUWluDQogICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAg5Y+R 5Lu25Lq6OiBBY2VlIExpbmRlbSAoYWNlZSkgW21haWx0bzphY2VlQGNpc2NvLmNvbV0gDQogICAg ICAgIOWPkemAgeaXtumXtDogMjAyMeW5tDjmnIgxMuaXpSAxOjE4DQogICAgICAgIOaUtuS7tuS6 ujogdG9tIHBldGNoIDxpZXRmY0BidGNvbm5lY3QuY29tPjsgWWFyb24gU2hlZmZlciA8eWFyb25m LmlldGZAZ21haWwuY29tPjsgUWluIFd1IDxiaWxsLnd1QGh1YXdlaS5jb20+OyBzZWNkaXJAaWV0 Zi5vcmcNCiAgICAgICAg5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNlY3Vy aXR5LXN1cHBvcnQuYWxsQGlldGYub3JnDQogICAgICAgIOS4u+mimDogUmU6IFNlY2RpciBsYXN0 IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3Vw cG9ydC0wNQ0KDQogICAgICAgIEknZCBhbHNvIHJlY29tbWVuZCBjaGFuZ2luZywgImtleSBuYW1l cyIgdG8gImtleS1pZHMgb3Iga2V5LWNoYWluIG5hbWVzIiBzaW5jZSB0aGlzIGlzIHdoYXQgaXMg YWN0dWFsbHkgYmVpbmcgYWR2ZXJ0aXNlZC4NCiAgICAgICAgVGhhbmtzLA0KICAgICAgICBBY2Vl DQoNCiAgICAgICAgT24gOC8xMC8yMSwgMTE6NTMgQU0sICJ0b20gcGV0Y2giIDxpZXRmY0BidGNv bm5lY3QuY29tPiB3cm90ZToNCg0KICAgICAgICAgICAgRnJvbTogTHNyIDxsc3ItYm91bmNlc0Bp ZXRmLm9yZz4gb24gYmVoYWxmIG9mIFlhcm9uIFNoZWZmZXIgPHlhcm9uZi5pZXRmQGdtYWlsLmNv bT4NCiAgICAgICAgICAgIFNlbnQ6IDEwIEF1Z3VzdCAyMDIxIDE0OjU3DQoNCiAgICAgICAgICAg IFNvIGxldCBtZSBzdWdnZXN0Og0KDQogICAgICAgICAgICA8dHA+DQogICAgICAgICAgICBBbiBv ZmZsaXN0IHN1Z2dlc3Rpb24gZm9yIHlvdSB0byBjb25zaWRlcg0KDQogICAgICAgICAgICBPTEQN CiAgICAgICAgICAgICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mIHRoZSBQQ0Ugc2Vj dXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBwcm90ZWN0 cyB0aGUgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYgdXNpbmcg dGhlIG1lY2hhbmlzbXMgZGVmaW5lZCBpbg0KICAgICAgICAgICAgICAgIFtSRkM1MzEwXSBhbmQg W1JGQzU3MDldLCBpZiB0aGUgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGlz IHVzZWQuDQoNCiAgICAgICAgICAgICAgICBNb3Jlb3ZlciwgYXMgc3RhdGVkIGluIFtSRkM1MDg4 XSBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92aWRlIGFueSBlbmNyeXB0aW9uIG1l Y2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUgc2VjcmVjeSBvZiB0aGUgUENFRCBUTFYsIGFuZCB0aGUg b3BlcmF0b3IgbXVzdCBlbnN1cmUgdGhhdCBubyBwcml2YXRlIGRhdGEgaXMgY2FycmllZCBpbiB0 aGUgVExWLCBmb3IgZXhhbXBsZSB0aGF0IGtleSBuYW1lcyBkbyBub3QgcmV2ZWFsIHNlbnNpdGl2 ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUgbmV0d29yay4NCg0KICAgICAgICAgICAgTkVXDQoNCiAg ICAgICAgICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2luZyB0aGUgUENFIHNlY3VyaXR5IHBhcmFt ZXRlcnMsIHVzaW5nIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQsIHRo ZSBJR1AgTVVTVCBiZSBrbm93biB0byBwcm92aWRlIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3Jp dHkgZm9yIHRoZSBQQ0VEIFRMViB1c2luZyB0aGUgbWVjaGFuaXNtcyBkZWZpbmVkIGluICBbUkZD NTMwNF0sICBbUkZDNTMxMF0gb3IgW1JGQzU3MDldLA0KDQogICAgICAgICAgICAgICAgTW9yZW92 ZXIsIGFzIHN0YXRlZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwgaWYgdGhlIElHUCBkb2Vz IG5vdCBwcm92aWRlIGFueSBlbmNyeXB0aW9uIG1lY2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUgc2Vj cmVjeSBvZiB0aGUgUENFRCBUTFYsIHRoZW4gdGhlIG9wZXJhdG9yIG11c3QgZW5zdXJlIHRoYXQg bm8gcHJpdmF0ZSBkYXRhIGlzIGNhcnJpZWQgaW4gdGhlIFRMViwgZS5nLiB0aGF0IGtleSBuYW1l cyBkbyBub3QgcmV2ZWFsIHNlbnNpdGl2ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUgbmV0d29yay4N Cg0KICAgICAgICAgICAgVG9tIFBldGNoDQogICAgICAgICAgICA8L3RwPg0KDQogICAgICAgICAg ICBUaGFua3MsDQogICAgICAgICAgICAgICAgICAgIFlhcm9uDQoNCiAgICAgICAgICAgIE9uIDgv MTAvMjEsIDE1OjAxLCAiUWluIFd1IiA8YmlsbC53dUBodWF3ZWkuY29tPiB3cm90ZToNCg0KICAg ICAgICAgICAgICAgIFlhcm9uOg0KICAgICAgICAgICAgICAgIFRoYW5rIGZvciBjbGFyaWZpY2F0 aW9uLiBJIGFncmVlIHRvIGtlZXAgdGhlIGxhc3Qgc2VudGVuY2UgaW4gdGhlIHNlY29uZCBwYXJh Z3JhcGggb2Ygc2VjdGlvbiA3IGFzIGlzLg0KICAgICAgICAgICAgICAgIEJ1dCBJIHByZWZlciB0 byBhZGQgdGhlIGFkZGl0aW9uIHJlZmVyZW5jZXMgaW4gdGhlIHByZXZpb3VzIHNlbnRlbmNlIGFz IGZvbGxvd3M6DQogICAgICAgICAgICAgICAgIg0KICAgICAgICAgICAgICAgIFRodXMgYmVmb3Jl IGFkdmVydGlzZW1lbnQgb2YgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJl IGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAgICAgICAgICAgcHJvdGVjdGVkIGZvciBh dXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViwsIHdpdGggdGhlIG1l Y2hhbmlzbXMgZGVmaW5lZCBpbg0KICAgICAgICAgICAgICAgIFtSRkM1MzEwXSBhbmQgW1JGQzU3 MDldIGlmIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4N Cg0KICAgICAgICAgICAgICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0gYW5kIFtSRkM1MDg5XSwg dGhlIElHUCBkbyBub3QgcHJvdmlkZSBlbmNyeXB0aW9uIG1lY2hhbmlzbSB0byBwcm90ZWN0DQog ICAgICAgICAgICAgICAgdGhlIHByaXZhY3kgb2YgdGhlIFBDRUQgVExWLCBpZiB0aGlzIGluZm9y bWF0aW9uIGNhbiBtYWtlIHRoZSBQQ0VQIHNlc3Npb24gbGVzcyBzZWN1cmUgdGhlbiB0aGUgb3Bl cmF0b3Igc2hvdWxkIHRha2UgdGhhdCBpbnRvIGNvbnNpZGVyYXRpb24uDQogICAgICAgICAgICAg ICAgIg0KICAgICAgICAgICAgICAgIElmIHlvdSBiZXR0ZXIgd29yZGluZywgcGxlYXNlIGxldCBt ZSBrbm93Lg0KDQogICAgICAgICAgICAgICAgLVFpbg0KICAgICAgICAgICAgICAgIC0tLS0t6YKu 5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAgICAgICAgICDlj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIg W21haWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21dDQogICAgICAgICAgICAgICAg5Y+R6YCB5pe2 6Ze0OiAyMDIx5bm0OOaciDEw5pelIDE5OjI2DQogICAgICAgICAgICAgICAg5pS25Lu25Lq6OiBR aW4gV3UgPGJpbGwud3VAaHVhd2VpLmNvbT47IHNlY2RpckBpZXRmLm9yZw0KICAgICAgICAgICAg ICAgIOaKhOmAgTogZHJhZnQtaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0 LmFsbEBpZXRmLm9yZzsgbGFzdC1jYWxsQGlldGYub3JnOyBsc3JAaWV0Zi5vcmcNCiAgICAgICAg ICAgICAgICDkuLvpopg6IFJlOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRm LWxzci1wY2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDUNCg0KICAgICAgICAgICAgICAg IEhpIFFpbiwNCg0KICAgICAgICAgICAgICAgIFNvcnJ5LCBidXQgSSBmaW5kIHlvdXIgbGF0ZXN0 IHByb3Bvc2VkIHRleHQgdmVyeSBjb25mdXNpbmcsIGJlY2F1c2Ugd2Ugc2hvdWxkIGJlIGZvY3Vz aW5nIG9uIGludGVncml0eSBwcm90ZWN0aW9uIGFuZCBub3QgcHJpdmFjeSAoPXNlY3JlY3kpIG9m IHRoZSBUTFYuIFNvIEkgd291bGQgcHJlZmVyIHRvIGtlZXAgdGhlIHRleHQgYXMtaXMsIHdpdGgg dGhlIGFkZGl0aW9uIG9mIGEgcmVmZXJlbmNlIHRvIHRoZSBJUy1JUyBhbmQgT1NQRiBzZWN1cml0 eSBtZWNoYW5pc21zIHRoYXQgd2VyZSBkaXNjdXNzZWQgb24gdGhpcyB0aHJlYWQuDQoNCiAgICAg ICAgICAgICAgICBUaGFua3MsDQogICAgICAgICAgICAgICAgICAgIFlhcm9uDQoNCiAgICAgICAg ICAgICAgICBPbiA4LzEwLzIxLCAwNTowMCwgIlFpbiBXdSIgPGJpbGwud3VAaHVhd2VpLmNvbT4g d3JvdGU6DQoNCiAgICAgICAgICAgICAgICAgICAgSGksIFlhcm9uDQogICAgICAgICAgICAgICAg ICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAgICAgICAgICAgICAgPuWPkeS7tuS6 ujogWWFyb24gU2hlZmZlciBbbWFpbHRvOnlhcm9uZi5pZXRmQGdtYWlsLmNvbV0NCiAgICAgICAg ICAgICAgICAgICAgPuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg55pelIDIxOjQ0DQogICAgICAg ICAgICAgICAgICAgID7mlLbku7bkuro6IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2Vj ZGlyQGlldGYub3JnDQogICAgICAgICAgICAgICAgICAgID7mioTpgIE6IGRyYWZ0LWlldGYtbHNy LXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBp ZXRmLm9yZzsgbHNyQGlldGYub3JnDQogICAgICAgICAgICAgICAgICAgID7kuLvpopg6IFJlOiBT ZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1wY2UtZGlzY292ZXJ5LXNl Y3VyaXR5LXN1cHBvcnQtMDUNCg0KICAgICAgICAgICAgICAgICAgICA+SGkgUWluLA0KDQogICAg ICAgICAgICAgICAgICAgID5UaGFuayB5b3UgZm9yIHlvdXIgcmVzcG9uc2UuDQoNCiAgICAgICAg ICAgICAgICAgICAgPiogUkZDIDM1NjcgKGZvciBJUy1JUykgaXMgb2Jzb2xldGVkIGJ5IFJGQyA1 MzA0LiBVbmZvcnR1bmF0ZWx5IFJGQyA1MzA0IHN0aWxsIHVzZXMgSE1BQy1NRDUsIHdoaWNoIHdv dWxkIGJlIGNvbnNpZGVyZWQgaW5zZWN1cmUgbm93YWRheXMuDQogICAgICAgICAgICAgICAgICAg ID4qIFJGQyAyMTU0IGlzIHZlcnkgb2xkIGFuZCBFeHBlcmltZW50YWwgKGFuZCBvbmx5IHN1cHBv cnRzIFJTQS1NRDUgc2lnbmF0dXJlcykuIEknbSBub3QgYW4gT1NQRiBleHBlcnQgYnkgYW55IG1l YW5zLCBidXQgSSdtIHdpbGxpbmcgdG8gYmV0IHRoYXQgdGhlcmUgYXJlIG5vIHByb2R1Y3Rpb24g aW1wbGVtZW50YXRpb25zIG9mIHRoaXMgUkZDLiAoSSdtIHdpbGxpbmcgdG8gYmUgcHJvdmVuIHdy b25nKS4NCiAgICAgICAgICAgICAgICAgICAgPklzIHRoZXJlIGFub3RoZXIgUkZDIHRoYXQgZGVm aW5lIGEgcHJvdGVjdGlvbiBtZWNoYW5pc20gZm9yIE9TUEY/DQoNCiAgICAgICAgICAgICAgICAg ICAgPkFsbCBpbiBhbGwsIHRoZXJlIGFwcGVhciB0byBiZSBubyBnb29kIG9wdGlvbnMgZm9yIHRo ZSBJR1AuDQoNCiAgICAgICAgICAgICAgICAgICAgW1FpbiBXdV1ZZXMsIHdlIGRvIGhhdmUgYWx0 ZXJuYXRpdmVzLCBzZWUgTGVzJ3MgcmVzcG9uc2UgaW4gdGhlIHNlcGFyYXRlIGVtYWlsDQogICAg ICAgICAgICAgICAgICAgICINCiAgICAgICAgICAgICAgICAgICAgT24gOC85LzIxLCAyMzozNiwi TGVzIEdpbnNiZXJnIChnaW5zYmVyZykiIDxnaW5zYmVyZ0BjaXNjby5jb20+IHdyb3RlOg0KICAg ICAgICAgICAgICAgICAgICBGb3IgSVMtSVMgc2VjdXJpdHkgcGxlYXNlIGFsc28gc2VlIFJGQyA1 MzEwLg0KICAgICAgICAgICAgICAgICAgICBGb3IgT1NQRiBzZWN1cml0eSBwbGVhc2Ugc2VlIFJG QyA1NzA5Lg0KICAgICAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgICAgID5UbyB5 b3VyIGxhc3QgcG9pbnQsIHdoZW4gSSBtZW50aW9uZWQgZGVjb3VwbGluZyB0aGUgbWVjaGFuaXNt cywgSSB3YXMgc3VnZ2VzdGluZyB0byB1c2UgdGhlIGV4dGVuc2lvbiB5b3UgZGVmaW5lIGV2ZW4g aWYgdGhlIElHUCAqY2Fubm90KiBiZSBzZWN1cmVkLiBJZiB5b3UgdGhpbmsgdGhpcyBpcyByZWFz b25hYmxlLCBwbGVhc2UgYWRkIHN1Y2ggdGV4dCB0byB0aGUgU2VjdXJpdHkgQ29uc2lkZXJhdGlv bnMuDQoNCiAgICAgICAgICAgICAgICAgICAgW1FpbiBXdV0gT2theSwgaG93IGFib3V0IHRoZSBm b2xsb3dpbmcgY2hhbmdlDQogICAgICAgICAgICAgICAgICAgIE9MRCBURVhUOg0KICAgICAgICAg ICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0N CiAgICAgICAgICAgICAgICAgICAgYW5kIFtSRkM1MDg5XSwgdGhlIElHUCBkbyBub3QgcHJvdmlk ZSBlbmNyeXB0aW9uIG1lY2hhbmlzbSB0byBwcm90ZWN0DQogICAgICAgICAgICAgICAgICAgIHRo ZSBwcml2YWN5IG9mIHRoZSBQQ0VEIFRMViwgaWYgdGhpcyBpbmZvcm1hdGlvbiBjYW4gbWFrZSB0 aGUgUENFUA0KICAgICAgICAgICAgICAgICAgICBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhl IG9wZXJhdG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uIC4NCiAgICAgICAg ICAgICAgICAgICAgIg0KICAgICAgICAgICAgICAgICAgICBORVcgVEVYVDoNCiAgICAgICAgICAg ICAgICAgICAgIg0KICAgICAgICAgICAgICAgICAgICBBcyBzdGF0ZWQgaW4gW1JGQzUwODhdDQog ICAgICAgICAgICAgICAgICAgIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUg ZW5jcnlwdGlvbiBtZWNoYW5pc20gdG8gcHJvdGVjdA0KICAgICAgICAgICAgICAgICAgICB0aGUg cHJpdmFjeSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRpb24gY2FuIG1ha2UgdGhl IFBDRVANCiAgICAgICAgICAgICAgICAgICAgc2Vzc2lvbiBsZXNzIHNlY3VyZSB0aGVuIHRoZSBv cGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGludG8gY29uc2lkZXJhdGlvbg0KICAgICAgICAgICAg ICAgICAgICB3aGVuIGdldHRpbmcgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1 bWVudCBkZXBsb3llZC4NCiAgICAgICAgICAgICAgICAgICAgIg0KICAgICAgICAgICAgICAgICAg ICAgPlRoYW5rcywNCiAgICAgICAgICAgICAgICAgICAgID4gICAgICBZYXJvbg0KDQogICAgICAg ICAgICAgICAgICAgID5PbiA4LzkvMjEsIDE2OjA5LCAiUWluIFd1IiA8YmlsbC53dUBodWF3ZWku Y29tPiB3cm90ZToNCg0KICAgICAgICAgICAgICAgICAgICAgID4gICBUaGFua3MgWWFyb24gZm9y IHZhbHVhYmxlIGNvbW1lbnRzLCBwbGVhc2Ugc2VlIG15IHJlcGx5IGlubGluZSBiZWxvdy4NCiAg ICAgICAgICAgICAgICAgICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAgICAgICAg ICAgICAgICAgICAgID7lj5Hku7bkuro6IFlhcm9uIFNoZWZmZXIgdmlhIERhdGF0cmFja2VyIFtt YWlsdG86bm9yZXBseUBpZXRmLm9yZ10NCiAgICAgICAgICAgICAgICAgICAgICAgID7lj5HpgIHm l7bpl7Q6IDIwMjHlubQ45pyINuaXpSAzOjI1DQogICAgICAgICAgICAgICAgICAgICAgICA+5pS2 5Lu25Lq6OiBzZWNkaXJAaWV0Zi5vcmcNCiAgICAgICAgICAgICAgICAgICAgICAgID7mioTpgIE6 IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5v cmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQogICAgICAgICAgICAgICAgICAg ICAgICA+5Li76aKYOiBTZWNkaXIgbGFzdCBjYWxsIHJldmlldyBvZiBkcmFmdC1pZXRmLWxzci1w Y2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQtMDUNCg0KICAgICAgICAgICAgICAgICAgICAg ICAgPlJldmlld2VyOiBZYXJvbiBTaGVmZmVyDQogICAgICAgICAgICAgICAgICAgICAgICA+UmV2 aWV3IHJlc3VsdDogTm90IFJlYWR5DQoNCiAgICAgICAgICAgICAgICAgICAgICAgID5UaGlzIGRv Y3VtZW50IGRlZmluZXMgYSBtZWNoYW5pc20gKGEgVExWKSB0byBhZHZlcnRpc2UgdGhlIFBDRSBQ cm90b2NvbCBzZWN1cml0eSByZXF1aXJlZCAodXNlIG9mIFRDUC1BTyBhbmQgaXRzIGtleSBJRCwg b3IgYWx0ZXJuYXRpdmVseSB1c2Ugb2YgVExTKSB3aXRoaW4gdGhlIHJvdXRpbmcgcHJvdG9jb2wg YmVpbmcgdXNlZC4NCg0KICAgICAgICAgICAgICAgICAgICAgICAgPiogU2VjLiAzLjE6IEkgZG9u J3QgdW5kZXJzdGFuZCB3aHkgIlNIT1VMRCBhZHZlcnRpc2UiIGFuZCBub3QgTVVTVC4gRXNwZWNp YWxseSBnaXZlbiB0aGUgc3RyaWN0IGNsaWVudCBiZWhhdmlvciBkZWZpbmVkIGxhdGVyLg0KICAg ICAgICAgICAgICAgICAgICAgICAgW1Fpbl06IEkgYmVsaWV2ZSAiU0hPVUxEIGFkdmVydGlzZSIg aXMgY29uc2lzdGVudCB3aXRoIGNsaWVudCBiZWhhdmlvciBkZWZpbmVkIGxhdGVyLCBpLmUuLCB3 ZSBhcHBseSBTSE9VTEQgTk9UIGxhbmd1YWdlIHRvIHRoZSBjbGllbnQgYmVoYXZpb3IuDQogICAg ICAgICAgICAgICAgICAgICAgICBJIGFtIG5vdCBzdXJlIHdlIHNob3VsZCBjaGFuZ2UgaXQgaW50 byBzdHJvbmcgbGFuZ3VhZ2Ugd2l0aCBNVVNULiBTaW5jZSBpZiBJR1AgYWR2ZXJ0aXNlbWVudCBk b2Vzbid0IGluY2x1ZGUgVENQLUFPDQogICAgICAgICAgICAgICAgICAgICAgICAgc3VwcG9ydCBm bGFnIGJpdCBvciBUTFMgc3VwcG9ydCBmbGFnIGJpdCwgTk1TIG1heSBmYWxsIGJhY2sgdG8gY29u ZmlndXJlIGJvdGggUENDIGFuZCBQQ0Ugc2VydmVyIHRvIHN1cHBvcnQgVENQLUFPIG9yIFRMUy4g VGhhdCdzIG9uZSBvZiByZWFzb24gSSB0aGluayB3aHkgd2UgY2hvb3NlIHRvIHVzZSBTSE9VTEQg bGFuZ3VhZ2UuDQoNCiAgICAgICAgICAgICAgICAgICAgICAgID4qIFNlYy4gMy4xOiBzaG91bGQg d2UgYWxzbyBzYXkgc29tZXRoaW5nIGFib3V0IHRoZSBjYXNlIHdoZXJlIGJvdGggbWV0aG9kcyBh cmUgYWR2ZXJ0aXNlZCwgYW5kIHdoZXRoZXIgd2UgcmVjb21tZW5kIGZvciB0aGUgY2xpZW50IHRv IHVzZSBvbmUgb2YgdGhlbSBvdmVyIHRoZSBvdGhlcj8NCg0KICAgICAgICAgICAgICAgICAgICAg ICAgW1Fpbl06IEl0IGlzIHVwIHRvIGxvY2FsIHBvbGljeSwgd2hpY2ggaGFzIGJlZSBjbGFyaWZp ZWQgaW4gdGhlIGVuZCBvZiBzZWN0aW9uIDMuMS4gSG9wZSB0aGlzIGNsYXJpZnkuDQoNCiAgICAg ICAgICAgICAgICAgICAgICAgID4qIFNlYy4gNDogdHlwbyAoYXBwZWFycyB0d2ljZSkgLSAidG8g YmUgY2FycmllZCBpbiB0aGUgUENFRCBUTFYgb2YgdGhlIGZvciB1c2UiLg0KDQogICAgICAgICAg ICAgICAgICAgICAgICBbUWluXTpUaGFua3MsIGhhdmUgZml4ZWQgdGhlbSBpbiB0aGUgbG9jYWwg Y29weS4NCg0KICAgICAgICAgICAgICAgICAgICAgICAgPiogU2VjLiA3OiB0aGlzIHBocmFzZSBh cHBlYXJzIHRvIGJlIGVzc2VudGlhbCB0byBzZWN1cml0eSBvZiB0aGlzIG1lY2hhbmlzbTogIml0 IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRoZSBJR1AgaXMgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNh dGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViIuIEkgd291bGQgZXhwZWN0IG1vcmUg Z3VpZGFuY2U6IGhvdyBjYW4gdGhpcyBwcm9wZXJ0eSBiZSBlbnN1cmVkIGluIHRoZSByZWxldmFu dCBJR1BzPw0KICAgICAgICAgICAgICAgICAgICAgICAgW1Fpbl06SSB0aGluayBtZWNoYW5pc20g ZGVmaW5lZCBpbiBbUkZDMzU2N10gYW5kIFtSRkMyMTU0XSBjYW4gYmUgdXNlZCB0byBlbnN1cmUg YXV0aGVudGljaXR5IGFuZCBpbnRlZ3JpdHkgb2YgT1NQRiBMU0FzIG9yIElTSVMgTFNQcyBhbmQg dGhlaXIgVExWcy4gSGVyZSBpcyB0aGUgcHJvcG9zZWQgY2hhbmdlczoNCiAgICAgICAgICAgICAg ICAgICAgICAgIE9MRCBURVhUOg0KICAgICAgICAgICAgICAgICAgICAgICAgIg0KICAgICAgICAg ICAgICAgICAgICAgICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZg0KICAgICAgICAg ICAgICAgICAgICAgICAgICAgdGhlIFBDRSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJl IGluc3VyZWQgdGhhdCB0aGUgSUdQIGlzDQogICAgICAgICAgICAgICAgICAgICAgICAgICBwcm90 ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBDRUQgVExWIGlm IHRoZQ0KICAgICAgICAgICAgICAgICAgICAgICAgICAgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0 aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAgICAgICAgICAgICAgICAgICAgICAiDQogICAgICAg ICAgICAgICAgICAgICAgICBORVcgVEVYVDoNCiAgICAgICAgICAgICAgICAgICAgICAgICINCiAg ICAgICAgICAgICAgICAgICAgICAgICAgIFRodXMgYmVmb3JlIGFkdmVydGlzZW1lbnQgb2YNCiAg ICAgICAgICAgICAgICAgICAgICAgICAgIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQg TVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcw0KICAgICAgICAgICAgICAgICAgICAgICAg ICAgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNhdGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VE IFRMViB3aXRoIG1lY2hhbmlzbXMgZGVmaW5lZCBpbiBbUkZDMzU2N11bUkZDMjE1NF0gaWYgdGhl DQogICAgICAgICAgICAgICAgICAgICAgICAgICBtZWNoYW5pc20gZGVzY3JpYmVkIGluIHRoaXMg ZG9jdW1lbnQgaXMgdXNlZC4NCiAgICAgICAgICAgICAgICAgICAgICAgICINCiAgICAgICAgICAg ICAgICAgICAgICAgID4qIEFsc28sIGEgcG9zc2libHkgdW5pbnRlbmRlZCBjb25zZXF1ZW5jZSBv ZiB0aGlzIHJlcXVpcmVtZW50IGlzIHRoYXQgaWYgdGhlIElHUCBjYW5ub3QgYmUgcHJvdGVjdGVk IGluIGEgcGFydGljdWxhciBkZXBsb3ltZW50L3Byb2R1Y3QsIHRoaXMgbWVjaGFuaXNtIHdvdWxk IG5vdCBiZSB1c2VkLiBQbGVhc2UgY29uc2lkZXIgaWYgdGhpcyBpcyBsaWtlbHkgdG8gaGFwcGVu IGFuZCB3aGV0aGVyIHdlIHdhbnQgdG8gZm9yZWdvIFBDRVAgdHJhbnNwb3J0ID5zZWN1cml0eSBp biBzdWNoIGNhc2VzLiBNeSBndXQgZmVlbCAobm90IGJhc2VkIG9uIGV4cGVyaWVuY2UgaW4gc3Vj aCBuZXR3b3JrcykgaXMgdGhhdCB0aGUgdGhyZWF0IG1vZGVscyBhcmUgZGlmZmVyZW50IGVub3Vn aCB0aGF0IHdlIHNob3VsZCBkZWNvdXBsZSB0aGUgc2VjdXJpdHkgb2YgSUdQIGZyb20gdGhhdCBv ZiBQQ0VQLg0KDQogICAgICAgICAgICAgICAgICAgICAgICBbUWluXSBJIGFncmVlIElHUCBzZWN1 cml0eSBzaG91bGQgYmUgc2VwYXJhdGVkIGZyb20gUENFUCBzZWN1cml0eS4gSUdQIGV4dGVuc2lv biBkZWZpbmVkIGluIHRoaXMgZG9jdW1lbnQgaXMgdXNlZCBieSB0aGUgUENDIHRvIHNlbGVjdCBQ Q0Ugc2VydmVyIHdpdGggYXBwcm9wcmlhdGUgc2VjdXJpdHkgbWVjaGFuaXNtLiBPbiB0aGUgb3Ro ZXIgaGFuZCwgT3BlcmF0b3IgY2FuIGVpdGhlciB1c2UgSUdQIGFkdmVydGlzZW1lbnQgZm9yIFBD RVAgc2VjdXJpdHkgY2FwYWJpbGl0eSBvciByZWx5IG9uIGxvY2FsIHBvbGljeSB0byBzZWxlY3Qg UENFLiBJZiBvcGVyYXRvciBmZWVscyBJR1AgYWR2ZXJ0aXNlbWVudCBpcyBub3Qgc2VjdXJlLCBo ZSBjYW4gZmFsbCBiYWNrIHRvIGxvY2FsIHBvbGljeSBvciByZWx5IG9uIG1hbnVhbCBjb25maWd1 cmF0aW9uLiBIb3BlIHRoaXMgY2xhcmlmaWVzLg0KDQoNCg0KDQoNCg0KDQogICAgICAgICAgICBf X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fXw0KICAgICAgICAg ICAgTHNyIG1haWxpbmcgbGlzdA0KICAgICAgICAgICAgTHNyQGlldGYub3JnDQogICAgICAgICAg ICBodHRwczovL3d3dy5pZXRmLm9yZy9tYWlsbWFuL2xpc3RpbmZvL2xzcg0KDQoNCg0KDQo= From nobody Wed Aug 18 12:50:28 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E5BF23A19B7; Wed, 18 Aug 2021 12:50:16 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.101 X-Spam-Level: X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=earthlink.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VRn4OqzONmKf; Wed, 18 Aug 2021 12:50:12 -0700 (PDT) Received: from mta-202a.oxsus-vadesecure.net (mta-202a.oxsus-vadesecure.net [51.81.232.240]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7A3533A19B4; Wed, 18 Aug 2021 12:50:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; bh=6//Kb40f6L3aE9mgmZiXJ6Jt9wTDj6W9TjZ2qu S8TbM=; c=relaxed/relaxed; d=earthlink.net; h=from:reply-to:subject: date:to:cc:resent-date:resent-from:resent-to:resent-cc:in-reply-to: references:list-id:list-help:list-unsubscribe:list-subscribe:list-post: list-owner:list-archive; q=dns/txt; s=dk12062016; t=1629316211; x=1629921011; b=nQSMqyZH9+/Q8yK0NKpNkhPQH36Mo14zGUmSZg7wkNTZEUNRExJa3++ PiS1jvs/I4svHq9O34BQSQ8vkj0bS6mYBLdmVnIEpxEu1erYhCSryhBxo4Up0gy6nhRErrw xOjMvnqUJcHROoKXscF7RXPzaN445Z9N5UgJucE9FLYxjFYAMqY5U0WJdlXrZTuqOJmc2U0 /ThGVzGifbQgGX3PrbD3RBw66S99Esh3nV2oqgsDft/2398nd9DAgs3tpegj6Mkfpp5YRSi 6Ki9mX7UT6+IU8AccYyc98xm+lTxZiGmDbzPVAx3NU1blOGh1c4rSsslJVs/Vr0BNbyMDYK /xg== Received: from [192.168.1.72] ([99.51.72.196]) by smtp.oxsus-vadesecure.net ESMTP oxsus2nmtao02p with ngmta id de0bc759-169c7e7645ecc661; Wed, 18 Aug 2021 19:50:11 +0000 To: Tero Kivinen , secdir@ietf.org Cc: draft-ietf-roll-aodv-rpl.all@ietf.org, last-call@ietf.org, roll@ietf.org References: <161643127376.6337.10029863442550466574@ietfa.amsl.com> From: Charlie Perkins Message-ID: <8b572d7a-fd1a-9055-7052-057bb56ce720@earthlink.net> Date: Wed, 18 Aug 2021 12:50:10 -0700 User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:78.0) Gecko/20100101 Thunderbird/78.13.0 MIME-Version: 1.0 In-Reply-To: <161643127376.6337.10029863442550466574@ietfa.amsl.com> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-roll-aodv-rpl-09 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Aug 2021 19:50:17 -0000 Hello Tero, Thanks for your comments, useful as always.  Please excuse the unusually long delay it has taken for us to respond to your comments.  Please see a bit of follow-up below. On 3/22/2021 9:41 AM, Tero Kivinen via Datatracker wrote: > The title of the draft has some acronyms which are not expanded (AODV, P2P) > and if you expand them the title comes way too long. I would propose a usable > title, which might not need to use all possible acronyms, but would better > explain what this document is trying to do. How about "Supporting Asymmetric Links in Low Power Networks"? Replacing "LLNs" by "Low Power Networks" is probably O.K. because lossy is almost implicit given low power (or, often, reality). > Nits: > > In section 1 the text "RPL [RFC6550] (Routing Protocol for Low-Power and Lossy > Networks)" defines acronyms differently than what is used everywhere else. In > all other cases the document uses format where the acronym is in parenthesis > after the full text, i.e. "Routing Protocol for Low-Power and Lossy Networks > (RPL) [RFC6550]" format. I would propose using the same format also for here. Done. > > In section 1 there is acronym DAG which is not expanded, expand it on first > use. I think that sentence reads better just omitting DAG. > Also there are unexpanded acronyms DAO, P2MP, which are not used anywhere > else, perhaps just expand them here. In same paragraph there is also acronym > MOP which is not expanded here on its first use, but it is expanded later. > Expand it here on its first use. Done, except that I thought it would be better to exhibit the acronym DAO since it is well known to readers familiar with RPL. > > What is the difference between different reserve bits X and r in sections > 4.1/4.2 and 4.3? I made them all to be reserved bits 'X'. > > Period missing from the end of sentence of the Option Length description in > Section 4.3. Done. > > In the IANA considerations section I propose add a note to RFC editor saying > that the sentences saying " The parenthesized numbers are only suggestions." > needs to be removed prior publication. > > Done! Naturally Yours, Charlie P. On 3/22/2021 9:41 AM, Tero Kivinen via Datatracker wrote: > Reviewer: Tero Kivinen > Review result: Has Nits > > I have reviewed this document as part of the security directorate's ongoing > effort to review all IETF documents being processed by the IESG. These > comments were written primarily for the benefit of the security area directors. > Document editors and WG chairs should treat these comments just like any other > last call comments. > > The title of the draft has some acronyms which are not expanded (AODV, P2P) and > if you expand them the title comes way too long. I would propose a usable > title, which might not need to use all possible acronyms, but would better > explain what this document is trying to do. > > This draft defines a new mode of operation to the allow peer to peer on demand > routing in low power and lossy networks. I have not enough knowledge of RPL to > really know how the new mode differs from the old methods. The security > considerations section points to the RFC6550, and then explains that if rogue > router has key it can do all kind of things. > > Nits: > > In section 1 the text "RPL [RFC6550] (Routing Protocol for Low-Power and Lossy > Networks)" defines acronyms differently than what is used everywhere else. In > all other cases the document uses format where the acronym is in parenthesis > after the full text, i.e. "Routing Protocol for Low-Power and Lossy Networks > (RPL) [RFC6550]" format. I would propose using the same format also for here. > > In section 1 there is acronym DAG which is not expanded, expand it on first > use. Also there are unexpanded acronyms DAO, P2MP, which are not used anywhere > else, perhaps just expand them here. In same paragraph there is also acronym > MOP which is not expanded here on its first use, but it is expanded later. > Expand it here on its first use. > > What is the difference between different reserve bits X and r in sections > 4.1/4.2 and 4.3? > > Period missing from the end of sentence of the Option Length description in > Section 4.3. > > In the IANA considerations section I propose add a note to RFC editor saying > that the sentences saying " The parenthesized numbers are only suggestions." > needs to be removed prior publication. > > From nobody Thu Aug 19 10:55:45 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6FC963A11C4; Thu, 19 Aug 2021 10:55:42 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -9.599 X-Spam-Level: X-Spam-Status: No, score=-9.599 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=i9Ls74XB; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=cPsR3Ahk Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sR2Unf-VJHxe; Thu, 19 Aug 2021 10:55:35 -0700 (PDT) Received: from alln-iport-8.cisco.com (alln-iport-8.cisco.com [173.37.142.95]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3A4413A11B6; Thu, 19 Aug 2021 10:55:35 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=18726; q=dns/txt; s=iport; t=1629395735; x=1630605335; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-id:content-transfer-encoding: mime-version; bh=ET5pfyfiIoxwIINzLEP1L2vk9ZXIf0h+u5HOAgjHXQI=; b=i9Ls74XB3RJNZvFfMN6LU7OAgG5mgd6xlbJU/l+TG2iNFBnGILwVYrMq mEBA5+QFB3Lqn3G0bwRPGxRqCXBVt9FvUD5k5wGxiTuphEYhsftDh+Ly2 FMMuPvslRBf52do2h3IrD8t4ZaKY2bxPU9Qn06oSs5+IcehQBn7tI2Ota o=; X-IPAS-Result: =?us-ascii?q?A0BTAAAlmh5hl5NdJa1aHQEBAQEJARIBBQUBQIFHBgELA?= =?us-ascii?q?YFSUX5aNzEChEWDSAOFOYgEA4pdj2CBLhSBEQNUCwEBAQ0BASoPCAQBAYRlA?= =?us-ascii?q?heCHgIlNgcOAQIEAQEBAQMCAwEBAQEFAQEFAQEBAgEGBBQBAQEBAQEBAYEIh?= =?us-ascii?q?WgNhkIBAQEBAgEBARAREQwBASUEAwsBDwIBBgIVAQQCERIDAgICHwYLFAEQA?= =?us-ascii?q?QEEAQ0FIoJOAYJVAw4hAQ6OCI80AYE6AoofeoExgQGCBwEBBgQEgToCAQ1Bg?= =?us-ascii?q?n8NC4I0AwaBECoBgn2EEIEZgVSDeiccgg2BFAEnDBCCYj6CIEIBAQIBF38SA?= =?us-ascii?q?RIBCT4Zglg2gi6EMlsGMjIEDRUOExBbJFUBAgMKBhgCDxQBBA4DlTqnHzpej?= =?us-ascii?q?XKOMQSFYQUng2WLYwOXKpYUgh6KIYM4j3kvgXaDCQIEAgQFAg4BAQaBaA4ka?= =?us-ascii?q?3BwFTsqAYI+UBkPi0iCWA0MCYNQhRSFSnMNKwIGAQoBAQMJigQB?= IronPort-PHdr: A9a23:XkxTXxWdBI/VvHqQqegXzZF6aA/V8K3gAWYlg6HPw5pBd62i+9LpO 0mMrflujVqcW4Ld5roEjufNqKnvVCQG5orJq3ENdpFAFnpnwcUblgAtGoiJXEv8KvO5YCkzH cAEX1hgrDm3NEFPE5P4YFvf6nS58T8VHED5Mgx4buT4E4LflYK5zee3rpbSeA5PwjG6ZOAaE Q== IronPort-HdrOrdr: A9a23:aRinD6NQjuQBAsBcT5f255DYdb4zR+YMi2TDiHoRdfUFSKKlfp 6V88jzjSWE9wr4WBkb6Le90DHpewKeyXcH2/huAV7EZnilhILIFvAj0WKG+V3d8kLFh5VgPM tbAs1D4ZjLfCRHZKXBkUyF+rQbsaO6GcmT7I+0pRoAPGIaCZ2IrT0JdzpzeXcGIjWucKBJbK Z0kfA33gZIF05nCviTNz0gZazuttfLnJXpbVotHBg88jSDijuu9frTDwWY9g12aUIK/Z4StU z+1yDp7KSqtP+2jjXG0XXI0phQkNz9jvNeGc23jNQPIDmEsHfuWG0hYczFgNkGmpD21L8Yqq iWn/7mBbUo15rlRBDtnfIq4Xi87N9h0Q6/9bbSuwqTnSWwfkNLNyMGv/MHTvMcgHBQ7e2VF8 lwrjykXtNsfGH9dG6W3am6azh60kWzunYsiugVkjhWVpYfcqZYqcgF8FpSC4poJlO31GkLKp glMCjn3ocaTbpaVQGugkB/hNi3GngjFBaPRUYP/sSTzjhNhXh8i08V3tYWkHsM/I80D8As3Z WLDo140LVVCsMGZ6N0A+kMBcOxF2zWWBrJdGafO07uGq0LM2/E75T3/LI27ue3f4Fg9up8pL 3RFFdD8WIicUPnDsODmJVN7xDWWW24GS/gz8lPjqIJ8YEUhICbeRFrbWpe0vdIj89vdvEzas zDca6+WcWTWFcGMbw5qDHDZw== X-IronPort-Anti-Spam-Filtered: true X-IronPort-AV: E=Sophos;i="5.84,335,1620691200"; d="scan'208";a="759691083" Received: from rcdn-core-11.cisco.com ([173.37.93.147]) by alln-iport-8.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 19 Aug 2021 17:55:33 +0000 Received: from mail.cisco.com (xbe-aln-003.cisco.com [173.36.7.18]) by rcdn-core-11.cisco.com (8.15.2/8.15.2) with ESMTPS id 17JHtXc6005868 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Thu, 19 Aug 2021 17:55:33 GMT Received: from xfe-rcd-004.cisco.com (173.37.227.252) by xbe-aln-003.cisco.com (173.36.7.18) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Thu, 19 Aug 2021 12:55:33 -0500 Received: from xfe-rtp-002.cisco.com (64.101.210.232) by xfe-rcd-004.cisco.com (173.37.227.252) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Thu, 19 Aug 2021 12:55:33 -0500 Received: from NAM11-CO1-obe.outbound.protection.outlook.com (64.101.32.56) by xfe-rtp-002.cisco.com (64.101.210.232) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Thu, 19 Aug 2021 13:55:32 -0400 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fYcdaMBQI5K/jYw8y3FDBc/jyxby14CGQxpidY8Tg5vJv+lV7MDqyxaLvonTj+FLhAptkTHlu+Q+tFCujtaUWRlLswqHrT+9E7UD8FZMwa9UoJCeXxZNjYfgRGvs8SUlisgy5I+6R0Kv7uFmzrRA4zYe4HLKzffDt67oRRSzTtjCveoOPp6R10LvDPCuT2Z3ATZD/jUUkoNaaqjkVFpBACNb8dQ8d071ZehJwgK/QuOfI4x7YXnYRY9WqLofsAUc3QJD0nvlAJ5Lwws8hvsVie2j+KIddkAcYEsoOgBnojelOPdPFj+IrHnUYgcmmcgvRjINYMSeH88BPp20HcWMuQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ET5pfyfiIoxwIINzLEP1L2vk9ZXIf0h+u5HOAgjHXQI=; b=feyjG7bDA1mh7A9rvFsxsdLeS+XvReBzXCTHfCqf+JKGCiqUCrQkJdjiP7Xex/adCFlMD7kE+MEXSZbiAlQW4GDQrY4a9gLAxG+BetMNDqz8YsCEuGUXKIyQTpzUAYGwpnpnvleLNclyV0qr/AbwVzox09gDDQn/ptqj4gA84wP3hEFfkUS0X4lSOPS0mjO4aVjg4AzmeIj6pi2HE5vgFLNa/1LQB5MiCYLDhShdY6v4hdTloZgv2gtkiBRAJpj66sXWcvjGf2RQMggnjcPtTPwju1+HSLI28b2hhVWKZRI7Kkx5UZlft5UctanmO6H9ONeP6gOJVDNPET3QLDY8Hw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ET5pfyfiIoxwIINzLEP1L2vk9ZXIf0h+u5HOAgjHXQI=; b=cPsR3Ahk4v2Wg+ykYm8o8Mpl9p6NxIWeYDY5SWxnxtIiogte1fAeJgb228t2ak1z3p/9y8wGPsJ4sJgzOyF0FChTULdyPH450n+NbcMdcv0MAc/wFkIVAzLkzr1ijILVwsoPBYRa8QrTjmSjl1pY1XnGERaV7zBC/Wsf0bAuK58= Received: from BYAPR11MB2887.namprd11.prod.outlook.com (2603:10b6:a03:89::27) by BYAPR11MB3334.namprd11.prod.outlook.com (2603:10b6:a03:1c::19) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4436.19; Thu, 19 Aug 2021 17:55:26 +0000 Received: from BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::a19c:e0ca:19d9:19e2]) by BYAPR11MB2887.namprd11.prod.outlook.com ([fe80::a19c:e0ca:19d9:19e2%3]) with mapi id 15.20.4415.024; Thu, 19 Aug 2021 17:55:26 +0000 From: "Acee Lindem (acee)" To: Yaron Sheffer , Qin Wu , "tom petch" , "secdir@ietf.org" CC: "draft-ietf-lsr-pce-discovery-security-support.all@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 Thread-Index: AdeS/QTAao4BcToNQmG4p4waGPgvAwAOpaiAAHKQBAA= Date: Thu, 19 Aug 2021 17:55:25 +0000 Message-ID: <8BC3300E-2F4E-4965-8857-FC31BA7D1B40@cisco.com> References: <823a8f74b1824ff8827734446fe6f335@huawei.com> In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/16.52.21080801 authentication-results: gmail.com; dkim=none (message not signed) header.d=none;gmail.com; dmarc=none action=none header.from=cisco.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 2c1fa47b-eb46-4257-7666-08d9633a864b x-ms-traffictypediagnostic: BYAPR11MB3334: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BYAPR11MB2887.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(376002)(396003)(366004)(39860400002)(346002)(136003)(8676002)(66476007)(76116006)(66556008)(53546011)(6506007)(33656002)(71200400001)(6486002)(64756008)(66446008)(36756003)(66946007)(2616005)(86362001)(38070700005)(38100700002)(122000001)(4326008)(5660300002)(8936002)(186003)(6512007)(966005)(478600001)(26005)(110136005)(2906002)(15650500001)(316002)(83380400001)(45980500001); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?utf-8?B?Wkp6VEJCampwOEU1L1czSDFSR1kzV1pCU21JTmJ5YmZtN1hwc2cvQXFCa2tj?= =?utf-8?B?YmRpUkw1Y1M0UjFYV1ZGVWVUZ2VVRzU0ekhUcEVSU1lYemJVUEkwTWxicWVB?= =?utf-8?B?T1V5VDF6YWFrQ0I2OHdKY0owVlF4NXN2NjJWRGg2ZDVVb2ozSEkyT0hkL09w?= =?utf-8?B?MjhIL1YxbzFxR1RlTEpMVTNzT2xib0NyQmhCMU1ycVBjbGVyU2VFY1ZIdnU0?= =?utf-8?B?SC9qVGJudWRESTJ2eWg3TDFnZGVhWVRqZWV2MkxlYTc5bmpqME9ZcW9wQjkx?= =?utf-8?B?MjY4WERNMDgweGkvZDhsZ0x3bHNFa0lYVlkwSHZrT2k4NTBpRWdEcXJ2TzRN?= =?utf-8?B?MzUvWGtyeEdtdmIzVFFkRG91ZlJxY25STWNnY1JKaHplNUtWa00wdFRjRWVZ?= =?utf-8?B?ZERReFdueXFhV285SWJHMHIzSW5zaFRraTJDak5NNlp4YW82bmVzbkd0L2hV?= =?utf-8?B?VSt2L1FnS0t0cGtBd2NuNktCb2c5QWxEeUtzaXNjbE5JVHVkd2xNZk5lOGo4?= =?utf-8?B?TEtFLzROc3FkK24xTHVLcU5aVG8vNGoxWHZWb1hhUXlpNHV5K0d5em82Wk5o?= =?utf-8?B?UEs5RXRocXJxZTJIT3Jtd2hHRnAvSHJOR2tLbWRnLytld2pmOTFERGRLY09o?= =?utf-8?B?UFpnZzBqMFhRdUZBcWNMVGJFNThVSmNGSDdKZDNvREpzRjhFMEVvUkJYSzZn?= =?utf-8?B?SzgvOG5zVFlacFhoNUhQbkp1VDZqdDRqaTZkcDROR3dsNktDL2djV3Y1Ujhj?= =?utf-8?B?c3Boc0wwRGlHdG9ENlJ0bTVBNWxIbzUrVVhPa0ZCUzFCS3pmNC9wcGdldHhB?= =?utf-8?B?WS8zSTFCZGF5UzA0bkFmLzM3azN4dkRTTXJvbkpXdWg0c1gvTEhUenJvMVJ3?= =?utf-8?B?TTUwSlVGZUlpL1U0dmlzMjBsMk5DK0YxazJXb3dBbTRPeUlSQm5UT2hoa1JU?= =?utf-8?B?ekZ5TXRjanV3d0NIOWVTYnFRVDN3L2k0aGhOaS9sL1RiV1dYZU1DZVlNT1k5?= =?utf-8?B?Q29ac2FaT0hpOFNlZy9IazRwUzZ0TmpiQUVIZHZpL1UxTFdWZVNXMzlPQjY1?= =?utf-8?B?dzFxUnpKc2hOOUY1RmF3ZUhGRHJDNldnTUhkYXJpMk5mbDJoN1dSeWF0eXpx?= =?utf-8?B?cDNlZEtva0tqT3dSZFcxL3Myc2ZWSDczWEMzRnVZSGdDS1FCRzYvRUgrcjhI?= =?utf-8?B?VHZYVnh2THR2T3ZsZW1WTzFjVGt3Y01ISndOdWRLM3haZUxaTExJQ1BQcWxs?= =?utf-8?B?eU9QSWVRT055Smlxd3Y5Rks0UVBQTnM4eDJtWEp6MHFXYzJyaHNmZ0FZTzZu?= =?utf-8?B?anAvSXY5aWxuL1BudHBqK1pUMW9vQVNXdTgzZ3Q0eVNIYnFiYzFvZGF5VEpx?= =?utf-8?B?Sm9yZmVET3VJRUZtcHp0R1FzZkM3N1F3d0xaNGVPZjNNZk5qdHRKRzFGUWFW?= =?utf-8?B?OW02NC8yVFlWdUVoZ2dCZXRJQ1ViWk1SWnQ1M280MC9GTXBoTnhNV2VBMXhn?= =?utf-8?B?b1hmRWRCU0NkdUh0REtlMnpaZFY2YlBwdUhjeHF5b3psVVNVeGt2VGNPNXN1?= =?utf-8?B?MGZnM05GSmFhSEs5c0VFUFRpdW9SNlMrcm9HY3RDaHI5QTA0WE11OU1QdmFE?= =?utf-8?B?eTYyK1VLUk0ydXJaaWVLVjZ0WHQyWEh2cHBpNHhoeDh3bWFtMURUSEZYSm5l?= =?utf-8?B?eXFJekpNbWcweW1JY2tNanFuT05WaWt3VjJwVEh4STdaQ2xicEgxSnhtTm5r?= =?utf-8?B?TlhITXE2Q0RRZXVnSjB2N3R5WW1GMmZBaEdiUFg4RU1weUk2aHNsOU4vSkFr?= =?utf-8?B?KzdwWVdwM2h3MS90bFpPQT09?= x-ms-exchange-transport-forked: True Content-Type: text/plain; charset="utf-8" Content-ID: Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BYAPR11MB2887.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 2c1fa47b-eb46-4257-7666-08d9633a864b X-MS-Exchange-CrossTenant-originalarrivaltime: 19 Aug 2021 17:55:26.0302 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: gZQLNb+aoWkkTKSDMBSAvxZr6CHuWR76pY8E+mmJwRTxo4CONPrbYqxSlHUQ8/h3 X-MS-Exchange-Transport-CrossTenantHeadersStamped: BYAPR11MB3334 X-OriginatorOrg: cisco.com X-Outbound-SMTP-Client: 173.36.7.18, xbe-aln-003.cisco.com X-Outbound-Node: rcdn-core-11.cisco.com Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-lsr-pce-discovery-security-support-05 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Aug 2021 17:55:43 -0000 SGkgWWFyb24sDQogDQpUaGFua3MgZm9yIHRoZSByZXZpZXcuIENhbiB5b3UgdXBkYXRlIHRoZSBz dGF0dXMgb2YgdGhlIFNFQ0RJUiByZXZpZXc/IA0KDQpodHRwczovL2RhdGF0cmFja2VyLmlldGYu b3JnL2RvYy9yZXZpZXctaWV0Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1 LXNlY2Rpci1sYy1zaGVmZmVyLTIwMjEtMDgtMDUvDQoNClRoYW5rcywNCkFjZWUNCg0K77u/T24g OC8xNy8yMSwgMzoxNSBBTSwgIllhcm9uIFNoZWZmZXIiIDx5YXJvbmYuaWV0ZkBnbWFpbC5jb20+ IHdyb3RlOg0KDQogICAgTG9va3MgZ29vZCB0byBtZS4gVGhhbmsgeW91IQ0KDQogICAgCVlhcm9u DQoNCiAgICBPbiA4LzE3LzIxLCAwMzoxNywgIlFpbiBXdSIgPGJpbGwud3VAaHVhd2VpLmNvbT4g d3JvdGU6DQoNCiAgICAgICAgU29ycnkgZm9yIGxhdGUgZm9sbG93dXAsIGhlcmUgaXMgdGhlIHVw ZGF0ZSwgdGhlIGRpZmYgaXMNCiAgICAgICAgaHR0cHM6Ly93d3cuaWV0Zi5vcmcvcmZjZGlmZj91 cmwyPWRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC0wNg0KICAg ICAgICBZYXJvbiwgbGV0IGF1dGhvcnMga25vdyBpZiB5b3VyIGNvbW1lbnRzIGFyZSBhZGRyZXNz ZWQgaW4gdi0wNi4NCiAgICAgICAgVGhhbmtzIQ0KDQogICAgICAgIC1RaW4NCiAgICAgICAgLS0t LS3pgq7ku7bljp/ku7YtLS0tLQ0KICAgICAgICDlj5Hku7bkuro6IEFjZWUgTGluZGVtIChhY2Vl KSBbbWFpbHRvOmFjZWVAY2lzY28uY29tXSANCiAgICAgICAg5Y+R6YCB5pe26Ze0OiAyMDIx5bm0 OOaciDE35pelIDQ6MzMNCiAgICAgICAg5pS25Lu25Lq6OiBRaW4gV3UgPGJpbGwud3VAaHVhd2Vp LmNvbT47IHRvbSBwZXRjaCA8aWV0ZmNAYnRjb25uZWN0LmNvbT47IFlhcm9uIFNoZWZmZXIgPHlh cm9uZi5pZXRmQGdtYWlsLmNvbT47IHNlY2RpckBpZXRmLm9yZw0KICAgICAgICDmioTpgIE6IGRy YWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC5hbGxAaWV0Zi5vcmcN CiAgICAgICAg5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0 Zi1sc3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1DQoNCiAgICAgICAgSGkgUWlu LCANCg0KICAgICAgICBDYW4geW91IHB1Ymxpc2ggYSByZXZpc2lvbiBzbyB0aGF0IFlhcm9uIGFz c3VyZSBpdCBzYXRpc2ZpZXMgaGlzIGNvbW1lbnRzPyANCg0KICAgICAgICBUaGFua3MsDQogICAg ICAgIEFjZWUNCg0KICAgICAgICBPbiA4LzEyLzIxLCA5OjIxIFBNLCAiUWluIFd1IiA8YmlsbC53 dUBodWF3ZWkuY29tPiB3cm90ZToNCg0KICAgICAgICAgICAgVGhhbmtzIEFjZWUgYW5kIFRvbSBm b3IgZ29vZCBzdWdnZXN0aW9uLCB3ZSB3aWxsIHRha2UgdGhlbSBpbnRvIGFjY291bnQuDQoNCiAg ICAgICAgICAgIC1RaW4NCiAgICAgICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2LS0tLS0NCiAgICAg ICAgICAgIOWPkeS7tuS6ujogQWNlZSBMaW5kZW0gKGFjZWUpIFttYWlsdG86YWNlZUBjaXNjby5j b21dIA0KICAgICAgICAgICAg5Y+R6YCB5pe26Ze0OiAyMDIx5bm0OOaciDEy5pelIDE6MTgNCiAg ICAgICAgICAgIOaUtuS7tuS6ujogdG9tIHBldGNoIDxpZXRmY0BidGNvbm5lY3QuY29tPjsgWWFy b24gU2hlZmZlciA8eWFyb25mLmlldGZAZ21haWwuY29tPjsgUWluIFd1IDxiaWxsLnd1QGh1YXdl aS5jb20+OyBzZWNkaXJAaWV0Zi5vcmcNCiAgICAgICAgICAgIOaKhOmAgTogZHJhZnQtaWV0Zi1s c3ItcGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LmFsbEBpZXRmLm9yZw0KICAgICAgICAg ICAg5Li76aKYOiBSZTogU2VjZGlyIGxhc3QgY2FsbCByZXZpZXcgb2YgZHJhZnQtaWV0Zi1sc3It cGNlLWRpc2NvdmVyeS1zZWN1cml0eS1zdXBwb3J0LTA1DQoNCiAgICAgICAgICAgIEknZCBhbHNv IHJlY29tbWVuZCBjaGFuZ2luZywgImtleSBuYW1lcyIgdG8gImtleS1pZHMgb3Iga2V5LWNoYWlu IG5hbWVzIiBzaW5jZSB0aGlzIGlzIHdoYXQgaXMgYWN0dWFsbHkgYmVpbmcgYWR2ZXJ0aXNlZC4N CiAgICAgICAgICAgIFRoYW5rcywNCiAgICAgICAgICAgIEFjZWUNCg0KICAgICAgICAgICAgT24g OC8xMC8yMSwgMTE6NTMgQU0sICJ0b20gcGV0Y2giIDxpZXRmY0BidGNvbm5lY3QuY29tPiB3cm90 ZToNCg0KICAgICAgICAgICAgICAgIEZyb206IExzciA8bHNyLWJvdW5jZXNAaWV0Zi5vcmc+IG9u IGJlaGFsZiBvZiBZYXJvbiBTaGVmZmVyIDx5YXJvbmYuaWV0ZkBnbWFpbC5jb20+DQogICAgICAg ICAgICAgICAgU2VudDogMTAgQXVndXN0IDIwMjEgMTQ6NTcNCg0KICAgICAgICAgICAgICAgIFNv IGxldCBtZSBzdWdnZXN0Og0KDQogICAgICAgICAgICAgICAgPHRwPg0KICAgICAgICAgICAgICAg IEFuIG9mZmxpc3Qgc3VnZ2VzdGlvbiBmb3IgeW91IHRvIGNvbnNpZGVyDQoNCiAgICAgICAgICAg ICAgICBPTEQNCiAgICAgICAgICAgICAgICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBv ZiB0aGUgUENFIHNlY3VyaXR5IHBhcmFtZXRlcnMsIGl0IE1VU1QgYmUgaW5zdXJlZCB0aGF0IHRo ZSBJR1AgcHJvdGVjdHMgdGhlIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBD RUQgVExWIHVzaW5nIHRoZSBtZWNoYW5pc21zIGRlZmluZWQgaW4NCiAgICAgICAgICAgICAgICAg ICAgW1JGQzUzMTBdIGFuZCBbUkZDNTcwOV0sIGlmIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGlu IHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCg0KICAgICAgICAgICAgICAgICAgICBNb3Jlb3Zlciwg YXMgc3RhdGVkIGluIFtSRkM1MDg4XSBhbmQgW1JGQzUwODldLCB0aGUgSUdQIGRvIG5vdCBwcm92 aWRlIGFueSBlbmNyeXB0aW9uIG1lY2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUgc2VjcmVjeSBvZiB0 aGUgUENFRCBUTFYsIGFuZCB0aGUgb3BlcmF0b3IgbXVzdCBlbnN1cmUgdGhhdCBubyBwcml2YXRl IGRhdGEgaXMgY2FycmllZCBpbiB0aGUgVExWLCBmb3IgZXhhbXBsZSB0aGF0IGtleSBuYW1lcyBk byBub3QgcmV2ZWFsIHNlbnNpdGl2ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUgbmV0d29yay4NCg0K ICAgICAgICAgICAgICAgIE5FVw0KDQogICAgICAgICAgICAgICAgIFRodXMgYmVmb3JlIGFkdmVy dGlzaW5nIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgdXNpbmcgdGhlIG1lY2hhbmlzbSBk ZXNjcmliZWQgaW4gdGhpcyBkb2N1bWVudCwgdGhlIElHUCBNVVNUIGJlIGtub3duIHRvIHByb3Zp ZGUgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBmb3IgdGhlIFBDRUQgVExWIHVzaW5nIHRo ZSBtZWNoYW5pc21zIGRlZmluZWQgaW4gIFtSRkM1MzA0XSwgIFtSRkM1MzEwXSBvciBbUkZDNTcw OV0sDQoNCiAgICAgICAgICAgICAgICAgICAgTW9yZW92ZXIsIGFzIHN0YXRlZCBpbiBbUkZDNTA4 OF0gYW5kIFtSRkM1MDg5XSwgaWYgdGhlIElHUCBkb2VzIG5vdCBwcm92aWRlIGFueSBlbmNyeXB0 aW9uIG1lY2hhbmlzbXMgdG8gcHJvdGVjdCB0aGUgc2VjcmVjeSBvZiB0aGUgUENFRCBUTFYsIHRo ZW4gdGhlIG9wZXJhdG9yIG11c3QgZW5zdXJlIHRoYXQgbm8gcHJpdmF0ZSBkYXRhIGlzIGNhcnJp ZWQgaW4gdGhlIFRMViwgZS5nLiB0aGF0IGtleSBuYW1lcyBkbyBub3QgcmV2ZWFsIHNlbnNpdGl2 ZSBpbmZvcm1hdGlvbiBhYm91dCB0aGUgbmV0d29yay4NCg0KICAgICAgICAgICAgICAgIFRvbSBQ ZXRjaA0KICAgICAgICAgICAgICAgIDwvdHA+DQoNCiAgICAgICAgICAgICAgICBUaGFua3MsDQog ICAgICAgICAgICAgICAgICAgICAgICBZYXJvbg0KDQogICAgICAgICAgICAgICAgT24gOC8xMC8y MSwgMTU6MDEsICJRaW4gV3UiIDxiaWxsLnd1QGh1YXdlaS5jb20+IHdyb3RlOg0KDQogICAgICAg ICAgICAgICAgICAgIFlhcm9uOg0KICAgICAgICAgICAgICAgICAgICBUaGFuayBmb3IgY2xhcmlm aWNhdGlvbi4gSSBhZ3JlZSB0byBrZWVwIHRoZSBsYXN0IHNlbnRlbmNlIGluIHRoZSBzZWNvbmQg cGFyYWdyYXBoIG9mIHNlY3Rpb24gNyBhcyBpcy4NCiAgICAgICAgICAgICAgICAgICAgQnV0IEkg cHJlZmVyIHRvIGFkZCB0aGUgYWRkaXRpb24gcmVmZXJlbmNlcyBpbiB0aGUgcHJldmlvdXMgc2Vu dGVuY2UgYXMgZm9sbG93czoNCiAgICAgICAgICAgICAgICAgICAgIg0KICAgICAgICAgICAgICAg ICAgICBUaHVzIGJlZm9yZSBhZHZlcnRpc2VtZW50IG9mIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1l dGVycywgaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQgdGhlIElHUCBpcw0KICAgICAgICAgICAgICAg ICAgICBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2YgdGhlIFBD RUQgVExWLCwgd2l0aCB0aGUgbWVjaGFuaXNtcyBkZWZpbmVkIGluDQogICAgICAgICAgICAgICAg ICAgIFtSRkM1MzEwXSBhbmQgW1JGQzU3MDldIGlmIHRoZSBtZWNoYW5pc20gZGVzY3JpYmVkIGlu IHRoaXMgZG9jdW1lbnQgaXMgdXNlZC4NCg0KICAgICAgICAgICAgICAgICAgICBBcyBzdGF0ZWQg aW4gW1JGQzUwODhdIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUgZW5jcnlw dGlvbiBtZWNoYW5pc20gdG8gcHJvdGVjdA0KICAgICAgICAgICAgICAgICAgICB0aGUgcHJpdmFj eSBvZiB0aGUgUENFRCBUTFYsIGlmIHRoaXMgaW5mb3JtYXRpb24gY2FuIG1ha2UgdGhlIFBDRVAg c2Vzc2lvbiBsZXNzIHNlY3VyZSB0aGVuIHRoZSBvcGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGlu dG8gY29uc2lkZXJhdGlvbi4NCiAgICAgICAgICAgICAgICAgICAgIg0KICAgICAgICAgICAgICAg ICAgICBJZiB5b3UgYmV0dGVyIHdvcmRpbmcsIHBsZWFzZSBsZXQgbWUga25vdy4NCg0KICAgICAg ICAgICAgICAgICAgICAtUWluDQogICAgICAgICAgICAgICAgICAgIC0tLS0t6YKu5Lu25Y6f5Lu2 LS0tLS0NCiAgICAgICAgICAgICAgICAgICAg5Y+R5Lu25Lq6OiBZYXJvbiBTaGVmZmVyIFttYWls dG86eWFyb25mLmlldGZAZ21haWwuY29tXQ0KICAgICAgICAgICAgICAgICAgICDlj5HpgIHml7bp l7Q6IDIwMjHlubQ45pyIMTDml6UgMTk6MjYNCiAgICAgICAgICAgICAgICAgICAg5pS25Lu25Lq6 OiBRaW4gV3UgPGJpbGwud3VAaHVhd2VpLmNvbT47IHNlY2RpckBpZXRmLm9yZw0KICAgICAgICAg ICAgICAgICAgICDmioTpgIE6IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHkt c3VwcG9ydC5hbGxAaWV0Zi5vcmc7IGxhc3QtY2FsbEBpZXRmLm9yZzsgbHNyQGlldGYub3JnDQog ICAgICAgICAgICAgICAgICAgIOS4u+mimDogUmU6IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9m IGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnktc2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAg ICAgICAgICAgICAgICAgIEhpIFFpbiwNCg0KICAgICAgICAgICAgICAgICAgICBTb3JyeSwgYnV0 IEkgZmluZCB5b3VyIGxhdGVzdCBwcm9wb3NlZCB0ZXh0IHZlcnkgY29uZnVzaW5nLCBiZWNhdXNl IHdlIHNob3VsZCBiZSBmb2N1c2luZyBvbiBpbnRlZ3JpdHkgcHJvdGVjdGlvbiBhbmQgbm90IHBy aXZhY3kgKD1zZWNyZWN5KSBvZiB0aGUgVExWLiBTbyBJIHdvdWxkIHByZWZlciB0byBrZWVwIHRo ZSB0ZXh0IGFzLWlzLCB3aXRoIHRoZSBhZGRpdGlvbiBvZiBhIHJlZmVyZW5jZSB0byB0aGUgSVMt SVMgYW5kIE9TUEYgc2VjdXJpdHkgbWVjaGFuaXNtcyB0aGF0IHdlcmUgZGlzY3Vzc2VkIG9uIHRo aXMgdGhyZWFkLg0KDQogICAgICAgICAgICAgICAgICAgIFRoYW5rcywNCiAgICAgICAgICAgICAg ICAgICAgICAgIFlhcm9uDQoNCiAgICAgICAgICAgICAgICAgICAgT24gOC8xMC8yMSwgMDU6MDAs ICJRaW4gV3UiIDxiaWxsLnd1QGh1YXdlaS5jb20+IHdyb3RlOg0KDQogICAgICAgICAgICAgICAg ICAgICAgICBIaSwgWWFyb24NCiAgICAgICAgICAgICAgICAgICAgICAgIC0tLS0t6YKu5Lu25Y6f 5Lu2LS0tLS0NCiAgICAgICAgICAgICAgICAgICAgICAgID7lj5Hku7bkuro6IFlhcm9uIFNoZWZm ZXIgW21haWx0bzp5YXJvbmYuaWV0ZkBnbWFpbC5jb21dDQogICAgICAgICAgICAgICAgICAgICAg ICA+5Y+R6YCB5pe26Ze0OiAyMDIx5bm0OOaciDnml6UgMjE6NDQNCiAgICAgICAgICAgICAgICAg ICAgICAgID7mlLbku7bkuro6IFFpbiBXdSA8YmlsbC53dUBodWF3ZWkuY29tPjsgc2VjZGlyQGll dGYub3JnDQogICAgICAgICAgICAgICAgICAgICAgICA+5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1w Y2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3JnOyBsYXN0LWNhbGxAaWV0 Zi5vcmc7IGxzckBpZXRmLm9yZw0KICAgICAgICAgICAgICAgICAgICAgICAgPuS4u+mimDogUmU6 IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnkt c2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAgICAgICAgICAgICAgICAgICAgICA+SGkgUWluLA0K DQogICAgICAgICAgICAgICAgICAgICAgICA+VGhhbmsgeW91IGZvciB5b3VyIHJlc3BvbnNlLg0K DQogICAgICAgICAgICAgICAgICAgICAgICA+KiBSRkMgMzU2NyAoZm9yIElTLUlTKSBpcyBvYnNv bGV0ZWQgYnkgUkZDIDUzMDQuIFVuZm9ydHVuYXRlbHkgUkZDIDUzMDQgc3RpbGwgdXNlcyBITUFD LU1ENSwgd2hpY2ggd291bGQgYmUgY29uc2lkZXJlZCBpbnNlY3VyZSBub3dhZGF5cy4NCiAgICAg ICAgICAgICAgICAgICAgICAgID4qIFJGQyAyMTU0IGlzIHZlcnkgb2xkIGFuZCBFeHBlcmltZW50 YWwgKGFuZCBvbmx5IHN1cHBvcnRzIFJTQS1NRDUgc2lnbmF0dXJlcykuIEknbSBub3QgYW4gT1NQ RiBleHBlcnQgYnkgYW55IG1lYW5zLCBidXQgSSdtIHdpbGxpbmcgdG8gYmV0IHRoYXQgdGhlcmUg YXJlIG5vIHByb2R1Y3Rpb24gaW1wbGVtZW50YXRpb25zIG9mIHRoaXMgUkZDLiAoSSdtIHdpbGxp bmcgdG8gYmUgcHJvdmVuIHdyb25nKS4NCiAgICAgICAgICAgICAgICAgICAgICAgID5JcyB0aGVy ZSBhbm90aGVyIFJGQyB0aGF0IGRlZmluZSBhIHByb3RlY3Rpb24gbWVjaGFuaXNtIGZvciBPU1BG Pw0KDQogICAgICAgICAgICAgICAgICAgICAgICA+QWxsIGluIGFsbCwgdGhlcmUgYXBwZWFyIHRv IGJlIG5vIGdvb2Qgb3B0aW9ucyBmb3IgdGhlIElHUC4NCg0KICAgICAgICAgICAgICAgICAgICAg ICAgW1FpbiBXdV1ZZXMsIHdlIGRvIGhhdmUgYWx0ZXJuYXRpdmVzLCBzZWUgTGVzJ3MgcmVzcG9u c2UgaW4gdGhlIHNlcGFyYXRlIGVtYWlsDQogICAgICAgICAgICAgICAgICAgICAgICAiDQogICAg ICAgICAgICAgICAgICAgICAgICBPbiA4LzkvMjEsIDIzOjM2LCJMZXMgR2luc2JlcmcgKGdpbnNi ZXJnKSIgPGdpbnNiZXJnQGNpc2NvLmNvbT4gd3JvdGU6DQogICAgICAgICAgICAgICAgICAgICAg ICBGb3IgSVMtSVMgc2VjdXJpdHkgcGxlYXNlIGFsc28gc2VlIFJGQyA1MzEwLg0KICAgICAgICAg ICAgICAgICAgICAgICAgRm9yIE9TUEYgc2VjdXJpdHkgcGxlYXNlIHNlZSBSRkMgNTcwOS4NCiAg ICAgICAgICAgICAgICAgICAgICAgICINCiAgICAgICAgICAgICAgICAgICAgICAgID5UbyB5b3Vy IGxhc3QgcG9pbnQsIHdoZW4gSSBtZW50aW9uZWQgZGVjb3VwbGluZyB0aGUgbWVjaGFuaXNtcywg SSB3YXMgc3VnZ2VzdGluZyB0byB1c2UgdGhlIGV4dGVuc2lvbiB5b3UgZGVmaW5lIGV2ZW4gaWYg dGhlIElHUCAqY2Fubm90KiBiZSBzZWN1cmVkLiBJZiB5b3UgdGhpbmsgdGhpcyBpcyByZWFzb25h YmxlLCBwbGVhc2UgYWRkIHN1Y2ggdGV4dCB0byB0aGUgU2VjdXJpdHkgQ29uc2lkZXJhdGlvbnMu DQoNCiAgICAgICAgICAgICAgICAgICAgICAgIFtRaW4gV3VdIE9rYXksIGhvdyBhYm91dCB0aGUg Zm9sbG93aW5nIGNoYW5nZQ0KICAgICAgICAgICAgICAgICAgICAgICAgT0xEIFRFWFQ6DQogICAg ICAgICAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgICAgICAgICBBcyBzdGF0ZWQg aW4gW1JGQzUwODhdDQogICAgICAgICAgICAgICAgICAgICAgICBhbmQgW1JGQzUwODldLCB0aGUg SUdQIGRvIG5vdCBwcm92aWRlIGVuY3J5cHRpb24gbWVjaGFuaXNtIHRvIHByb3RlY3QNCiAgICAg ICAgICAgICAgICAgICAgICAgIHRoZSBwcml2YWN5IG9mIHRoZSBQQ0VEIFRMViwgaWYgdGhpcyBp bmZvcm1hdGlvbiBjYW4gbWFrZSB0aGUgUENFUA0KICAgICAgICAgICAgICAgICAgICAgICAgc2Vz c2lvbiBsZXNzIHNlY3VyZSB0aGVuIHRoZSBvcGVyYXRvciBzaG91bGQgdGFrZSB0aGF0IGludG8g Y29uc2lkZXJhdGlvbiAuDQogICAgICAgICAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAg ICAgICAgICAgICBORVcgVEVYVDoNCiAgICAgICAgICAgICAgICAgICAgICAgICINCiAgICAgICAg ICAgICAgICAgICAgICAgIEFzIHN0YXRlZCBpbiBbUkZDNTA4OF0NCiAgICAgICAgICAgICAgICAg ICAgICAgIGFuZCBbUkZDNTA4OV0sIHRoZSBJR1AgZG8gbm90IHByb3ZpZGUgZW5jcnlwdGlvbiBt ZWNoYW5pc20gdG8gcHJvdGVjdA0KICAgICAgICAgICAgICAgICAgICAgICAgdGhlIHByaXZhY3kg b2YgdGhlIFBDRUQgVExWLCBpZiB0aGlzIGluZm9ybWF0aW9uIGNhbiBtYWtlIHRoZSBQQ0VQDQog ICAgICAgICAgICAgICAgICAgICAgICBzZXNzaW9uIGxlc3Mgc2VjdXJlIHRoZW4gdGhlIG9wZXJh dG9yIHNob3VsZCB0YWtlIHRoYXQgaW50byBjb25zaWRlcmF0aW9uDQogICAgICAgICAgICAgICAg ICAgICAgICB3aGVuIGdldHRpbmcgdGhlIG1lY2hhbmlzbSBkZXNjcmliZWQgaW4gdGhpcyBkb2N1 bWVudCBkZXBsb3llZC4NCiAgICAgICAgICAgICAgICAgICAgICAgICINCiAgICAgICAgICAgICAg ICAgICAgICAgICA+VGhhbmtzLA0KICAgICAgICAgICAgICAgICAgICAgICAgID4gICAgICBZYXJv bg0KDQogICAgICAgICAgICAgICAgICAgICAgICA+T24gOC85LzIxLCAxNjowOSwgIlFpbiBXdSIg PGJpbGwud3VAaHVhd2VpLmNvbT4gd3JvdGU6DQoNCiAgICAgICAgICAgICAgICAgICAgICAgICAg PiAgIFRoYW5rcyBZYXJvbiBmb3IgdmFsdWFibGUgY29tbWVudHMsIHBsZWFzZSBzZWUgbXkgcmVw bHkgaW5saW5lIGJlbG93Lg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgIC0tLS0t6YKu5Lu2 5Y6f5Lu2LS0tLS0NCiAgICAgICAgICAgICAgICAgICAgICAgICAgICA+5Y+R5Lu25Lq6OiBZYXJv biBTaGVmZmVyIHZpYSBEYXRhdHJhY2tlciBbbWFpbHRvOm5vcmVwbHlAaWV0Zi5vcmddDQogICAg ICAgICAgICAgICAgICAgICAgICAgICAgPuWPkemAgeaXtumXtDogMjAyMeW5tDjmnIg25pelIDM6 MjUNCiAgICAgICAgICAgICAgICAgICAgICAgICAgICA+5pS25Lu25Lq6OiBzZWNkaXJAaWV0Zi5v cmcNCiAgICAgICAgICAgICAgICAgICAgICAgICAgICA+5oqE6YCBOiBkcmFmdC1pZXRmLWxzci1w Y2UtZGlzY292ZXJ5LXNlY3VyaXR5LXN1cHBvcnQuYWxsQGlldGYub3JnOyBsYXN0LWNhbGxAaWV0 Zi5vcmc7IGxzckBpZXRmLm9yZw0KICAgICAgICAgICAgICAgICAgICAgICAgICAgID7kuLvpopg6 IFNlY2RpciBsYXN0IGNhbGwgcmV2aWV3IG9mIGRyYWZ0LWlldGYtbHNyLXBjZS1kaXNjb3Zlcnkt c2VjdXJpdHktc3VwcG9ydC0wNQ0KDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgPlJldmll d2VyOiBZYXJvbiBTaGVmZmVyDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgPlJldmlldyBy ZXN1bHQ6IE5vdCBSZWFkeQ0KDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgPlRoaXMgZG9j dW1lbnQgZGVmaW5lcyBhIG1lY2hhbmlzbSAoYSBUTFYpIHRvIGFkdmVydGlzZSB0aGUgUENFIFBy b3RvY29sIHNlY3VyaXR5IHJlcXVpcmVkICh1c2Ugb2YgVENQLUFPIGFuZCBpdHMga2V5IElELCBv ciBhbHRlcm5hdGl2ZWx5IHVzZSBvZiBUTFMpIHdpdGhpbiB0aGUgcm91dGluZyBwcm90b2NvbCBi ZWluZyB1c2VkLg0KDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgPiogU2VjLiAzLjE6IEkg ZG9uJ3QgdW5kZXJzdGFuZCB3aHkgIlNIT1VMRCBhZHZlcnRpc2UiIGFuZCBub3QgTVVTVC4gRXNw ZWNpYWxseSBnaXZlbiB0aGUgc3RyaWN0IGNsaWVudCBiZWhhdmlvciBkZWZpbmVkIGxhdGVyLg0K ICAgICAgICAgICAgICAgICAgICAgICAgICAgIFtRaW5dOiBJIGJlbGlldmUgIlNIT1VMRCBhZHZl cnRpc2UiIGlzIGNvbnNpc3RlbnQgd2l0aCBjbGllbnQgYmVoYXZpb3IgZGVmaW5lZCBsYXRlciwg aS5lLiwgd2UgYXBwbHkgU0hPVUxEIE5PVCBsYW5ndWFnZSB0byB0aGUgY2xpZW50IGJlaGF2aW9y Lg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgIEkgYW0gbm90IHN1cmUgd2Ugc2hvdWxkIGNo YW5nZSBpdCBpbnRvIHN0cm9uZyBsYW5ndWFnZSB3aXRoIE1VU1QuIFNpbmNlIGlmIElHUCBhZHZl cnRpc2VtZW50IGRvZXNuJ3QgaW5jbHVkZSBUQ1AtQU8NCiAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgc3VwcG9ydCBmbGFnIGJpdCBvciBUTFMgc3VwcG9ydCBmbGFnIGJpdCwgTk1TIG1heSBm YWxsIGJhY2sgdG8gY29uZmlndXJlIGJvdGggUENDIGFuZCBQQ0Ugc2VydmVyIHRvIHN1cHBvcnQg VENQLUFPIG9yIFRMUy4gVGhhdCdzIG9uZSBvZiByZWFzb24gSSB0aGluayB3aHkgd2UgY2hvb3Nl IHRvIHVzZSBTSE9VTEQgbGFuZ3VhZ2UuDQoNCiAgICAgICAgICAgICAgICAgICAgICAgICAgICA+ KiBTZWMuIDMuMTogc2hvdWxkIHdlIGFsc28gc2F5IHNvbWV0aGluZyBhYm91dCB0aGUgY2FzZSB3 aGVyZSBib3RoIG1ldGhvZHMgYXJlIGFkdmVydGlzZWQsIGFuZCB3aGV0aGVyIHdlIHJlY29tbWVu ZCBmb3IgdGhlIGNsaWVudCB0byB1c2Ugb25lIG9mIHRoZW0gb3ZlciB0aGUgb3RoZXI/DQoNCiAg ICAgICAgICAgICAgICAgICAgICAgICAgICBbUWluXTogSXQgaXMgdXAgdG8gbG9jYWwgcG9saWN5 LCB3aGljaCBoYXMgYmVlIGNsYXJpZmllZCBpbiB0aGUgZW5kIG9mIHNlY3Rpb24gMy4xLiBIb3Bl IHRoaXMgY2xhcmlmeS4NCg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgID4qIFNlYy4gNDog dHlwbyAoYXBwZWFycyB0d2ljZSkgLSAidG8gYmUgY2FycmllZCBpbiB0aGUgUENFRCBUTFYgb2Yg dGhlIGZvciB1c2UiLg0KDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgW1Fpbl06VGhhbmtz LCBoYXZlIGZpeGVkIHRoZW0gaW4gdGhlIGxvY2FsIGNvcHkuDQoNCiAgICAgICAgICAgICAgICAg ICAgICAgICAgICA+KiBTZWMuIDc6IHRoaXMgcGhyYXNlIGFwcGVhcnMgdG8gYmUgZXNzZW50aWFs IHRvIHNlY3VyaXR5IG9mIHRoaXMgbWVjaGFuaXNtOiAiaXQgTVVTVCBiZSBpbnN1cmVkIHRoYXQg dGhlIElHUCBpcyBwcm90ZWN0ZWQgZm9yIGF1dGhlbnRpY2F0aW9uIGFuZCBpbnRlZ3JpdHkgb2Yg dGhlIFBDRUQgVExWIi4gSSB3b3VsZCBleHBlY3QgbW9yZSBndWlkYW5jZTogaG93IGNhbiB0aGlz IHByb3BlcnR5IGJlIGVuc3VyZWQgaW4gdGhlIHJlbGV2YW50IElHUHM/DQogICAgICAgICAgICAg ICAgICAgICAgICAgICAgW1Fpbl06SSB0aGluayBtZWNoYW5pc20gZGVmaW5lZCBpbiBbUkZDMzU2 N10gYW5kIFtSRkMyMTU0XSBjYW4gYmUgdXNlZCB0byBlbnN1cmUgYXV0aGVudGljaXR5IGFuZCBp bnRlZ3JpdHkgb2YgT1NQRiBMU0FzIG9yIElTSVMgTFNQcyBhbmQgdGhlaXIgVExWcy4gSGVyZSBp cyB0aGUgcHJvcG9zZWQgY2hhbmdlczoNCiAgICAgICAgICAgICAgICAgICAgICAgICAgICBPTEQg VEVYVDoNCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAiDQogICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgVGh1cyBiZWZvcmUgYWR2ZXJ0aXNlbWVudCBvZg0KICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgIHRoZSBQQ0Ugc2VjdXJpdHkgcGFyYW1ldGVycywgaXQgTVVTVCBiZSBp bnN1cmVkIHRoYXQgdGhlIElHUCBpcw0KICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHBy b3RlY3RlZCBmb3IgYXV0aGVudGljYXRpb24gYW5kIGludGVncml0eSBvZiB0aGUgUENFRCBUTFYg aWYgdGhlDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgbWVjaGFuaXNtIGRlc2NyaWJl ZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAgICAgICAgICAgICAgICAgICAgICAgICAg Ig0KICAgICAgICAgICAgICAgICAgICAgICAgICAgIE5FVyBURVhUOg0KICAgICAgICAgICAgICAg ICAgICAgICAgICAgICINCiAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICBUaHVzIGJlZm9y ZSBhZHZlcnRpc2VtZW50IG9mDQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgdGhlIFBD RSBzZWN1cml0eSBwYXJhbWV0ZXJzLCBpdCBNVVNUIGJlIGluc3VyZWQgdGhhdCB0aGUgSUdQIGlz DQogICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgcHJvdGVjdGVkIGZvciBhdXRoZW50aWNh dGlvbiBhbmQgaW50ZWdyaXR5IG9mIHRoZSBQQ0VEIFRMViB3aXRoIG1lY2hhbmlzbXMgZGVmaW5l ZCBpbiBbUkZDMzU2N11bUkZDMjE1NF0gaWYgdGhlDQogICAgICAgICAgICAgICAgICAgICAgICAg ICAgICAgbWVjaGFuaXNtIGRlc2NyaWJlZCBpbiB0aGlzIGRvY3VtZW50IGlzIHVzZWQuDQogICAg ICAgICAgICAgICAgICAgICAgICAgICAgIg0KICAgICAgICAgICAgICAgICAgICAgICAgICAgID4q IEFsc28sIGEgcG9zc2libHkgdW5pbnRlbmRlZCBjb25zZXF1ZW5jZSBvZiB0aGlzIHJlcXVpcmVt ZW50IGlzIHRoYXQgaWYgdGhlIElHUCBjYW5ub3QgYmUgcHJvdGVjdGVkIGluIGEgcGFydGljdWxh ciBkZXBsb3ltZW50L3Byb2R1Y3QsIHRoaXMgbWVjaGFuaXNtIHdvdWxkIG5vdCBiZSB1c2VkLiBQ bGVhc2UgY29uc2lkZXIgaWYgdGhpcyBpcyBsaWtlbHkgdG8gaGFwcGVuIGFuZCB3aGV0aGVyIHdl IHdhbnQgdG8gZm9yZWdvIFBDRVAgdHJhbnNwb3J0ID5zZWN1cml0eSBpbiBzdWNoIGNhc2VzLiBN eSBndXQgZmVlbCAobm90IGJhc2VkIG9uIGV4cGVyaWVuY2UgaW4gc3VjaCBuZXR3b3JrcykgaXMg dGhhdCB0aGUgdGhyZWF0IG1vZGVscyBhcmUgZGlmZmVyZW50IGVub3VnaCB0aGF0IHdlIHNob3Vs ZCBkZWNvdXBsZSB0aGUgc2VjdXJpdHkgb2YgSUdQIGZyb20gdGhhdCBvZiBQQ0VQLg0KDQogICAg ICAgICAgICAgICAgICAgICAgICAgICAgW1Fpbl0gSSBhZ3JlZSBJR1Agc2VjdXJpdHkgc2hvdWxk IGJlIHNlcGFyYXRlZCBmcm9tIFBDRVAgc2VjdXJpdHkuIElHUCBleHRlbnNpb24gZGVmaW5lZCBp biB0aGlzIGRvY3VtZW50IGlzIHVzZWQgYnkgdGhlIFBDQyB0byBzZWxlY3QgUENFIHNlcnZlciB3 aXRoIGFwcHJvcHJpYXRlIHNlY3VyaXR5IG1lY2hhbmlzbS4gT24gdGhlIG90aGVyIGhhbmQsIE9w ZXJhdG9yIGNhbiBlaXRoZXIgdXNlIElHUCBhZHZlcnRpc2VtZW50IGZvciBQQ0VQIHNlY3VyaXR5 IGNhcGFiaWxpdHkgb3IgcmVseSBvbiBsb2NhbCBwb2xpY3kgdG8gc2VsZWN0IFBDRS4gSWYgb3Bl cmF0b3IgZmVlbHMgSUdQIGFkdmVydGlzZW1lbnQgaXMgbm90IHNlY3VyZSwgaGUgY2FuIGZhbGwg YmFjayB0byBsb2NhbCBwb2xpY3kgb3IgcmVseSBvbiBtYW51YWwgY29uZmlndXJhdGlvbi4gSG9w ZSB0aGlzIGNsYXJpZmllcy4NCg0KDQoNCg0KDQoNCg0KICAgICAgICAgICAgICAgIF9fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fDQogICAgICAgICAgICAgICAg THNyIG1haWxpbmcgbGlzdA0KICAgICAgICAgICAgICAgIExzckBpZXRmLm9yZw0KICAgICAgICAg ICAgICAgIGh0dHBzOi8vd3d3LmlldGYub3JnL21haWxtYW4vbGlzdGluZm8vbHNyDQoNCg0KDQoN Cg0K From nobody Thu Aug 19 11:31:48 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2D87B3A149D; Thu, 19 Aug 2021 11:31:41 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.101 X-Spam-Level: X-Spam-Status: No, score=-2.101 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, NICE_REPLY_A=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=iki.fi Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ldf-ZAOvqgiU; Thu, 19 Aug 2021 11:31:37 -0700 (PDT) Received: from meesny.iki.fi (meesny.iki.fi [IPv6:2001:67c:2b0:1c1::201]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AE18A3A149C; Thu, 19 Aug 2021 11:31:36 -0700 (PDT) Received: from fireball.acr.fi (fireball.kivinen.iki.fi [IPv6:2001:1bc8:100d::2]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) (Authenticated sender: kivinen@iki.fi) by meesny.iki.fi (Postfix) with ESMTPSA id 9A4A520106; Thu, 19 Aug 2021 21:31:28 +0300 (EEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=iki.fi; s=meesny; t=1629397888; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=GPznc+uQoXTkGsbikoZwzPlsEO+blbxlJ7irBPHpwog=; b=a0LzN0vg1/d7TcprRbvKF2tzCdcu8fmqlYSGUBiaieCbUWK5EaRIVF6c69IIzMtc3t50yl xxZI24v15V4VhFz7pCWJMz9cp8T8+N6cVveu8ESKMdmvJXqravvBwovixudxT44Yjq3b8H C7KcyfFQq2jFUgsQ0ElFQZgABPmFb04= Received: by fireball.acr.fi (Postfix, from userid 15204) id 5E7AF25C12D8; Thu, 19 Aug 2021 21:31:28 +0300 (EEST) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Message-ID: <24862.41856.351274.966681@fireball.acr.fi> Date: Thu, 19 Aug 2021 21:31:28 +0300 From: Tero Kivinen To: Charlie Perkins Cc: secdir@ietf.org, draft-ietf-roll-aodv-rpl.all@ietf.org, last-call@ietf.org, roll@ietf.org In-Reply-To: <8b572d7a-fd1a-9055-7052-057bb56ce720@earthlink.net> References: <161643127376.6337.10029863442550466574@ietfa.amsl.com> <8b572d7a-fd1a-9055-7052-057bb56ce720@earthlink.net> X-Mailer: VM 8.2.0b under 26.3 (x86_64--netbsd) X-Edit-Time: 1 min X-Total-Time: 1 min ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=iki.fi; s=meesny; t=1629397888; h=from:from:reply-to:subject:subject:date:date:message-id:message-id: to:to:cc:cc:mime-version:mime-version:content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references; bh=GPznc+uQoXTkGsbikoZwzPlsEO+blbxlJ7irBPHpwog=; b=HrYjGaVS8bE4iIZ96Tqg0seca0AQihUiwSp4w/CHkWRAuciQVr5V1zFUFi9jSaFfoorSVX Vhq3GwtpWz7BitOJoJyiHZ+AG/CG1mhKA6DrJvt3xIYUpFu2Nja7FWPL8cRTtY3iWZmOQ8 UzmUpgbzXqXf9KXzGdFMe1ks6vh8qvg= ARC-Seal: i=1; s=meesny; d=iki.fi; t=1629397888; a=rsa-sha256; cv=none; b=a/7JkK7SJ3jaCuIdCQ1xYGEfWOGI6c0jWWkG/P6xchLSsMLuwvJ3LHKzvHIC8YBFZQeLUP UsMyJy1wt5ZBt7b1ietREgsT2mD+kDzf1TssgeXL1rWF88HJQNxD9Mx+GO1JTg3C3XzfmA +HGgJOQR4F4GVmcWaXD770U9KgUgMxM= ARC-Authentication-Results: i=1; ORIGINATING; auth=pass smtp.auth=kivinen@iki.fi smtp.mailfrom=kivinen@iki.fi Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-roll-aodv-rpl-09 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Aug 2021 18:31:42 -0000 Charlie Perkins writes: > Hello Tero, >=20 > Thanks for your comments, useful as always.=A0 Please excuse the unus= ually=20 > long > delay it has taken for us to respond to your comments.=A0 Please see = a bit of > follow-up below. Changes look good.=20 > On 3/22/2021 9:41 AM, Tero Kivinen via Datatracker wrote: > > The title of the draft has some acronyms which are not expanded=20= > (AODV, P2P) > > and if you expand them the title comes way too long. I would propo= se=20 > a usable > > title, which might not need to use all possible acronyms, but woul= d=20 > better > > explain what this document is trying to do. >=20 > How about "Supporting Asymmetric Links in Low Power Networks"=3F Repl= acing=20 > "LLNs" by "Low Power Networks" is probably O.K. because lossy is almo= st=20 > implicit given low power (or, often, reality). I think that title is good.=20 --=20 kivinen@iki.fi From nobody Thu Aug 19 11:38:15 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id E6ADC3A152D for ; Thu, 19 Aug 2021 11:38:12 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit From: Tero Kivinen via Datatracker To: X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Reply-To: secdir-secretary@mit.edu, Tero Kivinen Message-ID: <162939829229.829.1162175904235977932@ietfa.amsl.com> Date: Thu, 19 Aug 2021 11:38:12 -0700 Archived-At: Subject: [secdir] Assignments X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 19 Aug 2021 18:38:13 -0000 Review instructions and related resources are at: https://trac.ietf.org/trac/sec/wiki/SecDirReview For telechat 2021-08-26 Reviewer LC end Draft Joseph Salowey R2021-07-23 draft-ietf-httpbis-bcp56bis Stefan Santesson 2021-08-11 draft-ietf-bier-te-arch Last calls: Reviewer LC end Draft Steve Hanna 2021-03-22 draft-ietf-regext-secure-authinfo-transfer Catherine Meadows 2021-04-14 draft-ietf-ntp-interleaved-modes Sandra Murphy 2020-10-15 draft-ietf-tls-external-psk-importer Tim Polk 2021-08-06 draft-ietf-opsawg-vpn-common Joseph Salowey R2021-07-23 draft-ietf-httpbis-bcp56bis Stefan Santesson 2021-08-11 draft-ietf-bier-te-arch Valery Smyslov None draft-ietf-netconf-crypto-types Mališa Vučinić 2021-06-10 draft-ietf-httpbis-semantics Samuel Weiler 2021-08-25 draft-ietf-alto-path-vector Brian Weis 2021-08-19 draft-ietf-dnsop-svcb-https Klaas Wierenga 2021-08-30 draft-ietf-alto-cdni-request-routing-alto Klaas Wierenga 2020-12-02 draft-ietf-core-echo-request-tag Klaas Wierenga 2020-05-26 draft-ietf-kitten-krb-spake-preauth Paul Wouters 2021-08-26 draft-ietf-alto-unified-props-new Paul Wouters 2021-06-10 draft-ietf-httpbis-messaging Liang Xia 2021-03-17 draft-ietf-core-sid Early review requests: Reviewer Due Draft Stephen Farrell 2021-06-21 draft-ietf-idr-bgpls-srv6-ext Tina Tsou 2021-08-25 draft-ietf-opsawg-sbom-access Sean Turner 2021-08-18 draft-ietf-taps-interface Loganaden Velvindron 2021-08-18 draft-ietf-taps-arch Next in the reviewer rotation: Christopher Wood Paul Wouters Liang Xia Dacheng Zhang Derek Atkins John Bradley Nancy Cam-Winget Shaun Cooley Alan DeKok Linda Dunbar From nobody Mon Aug 23 12:46:47 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 6EC743A10A2; Mon, 23 Aug 2021 12:43:36 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1629747816; bh=dN/Jz2e/cqjqM76ZoDX4SXMVh3UPA5VcCNdManGYz0M=; h=From:To:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=PkXv2x7TE8hkFV57DzgIXG6dqWv+jqf/22spBaVxdaei3cxB47otJ1IdJ3au7W07O JxLYELbS4ULwLwzElifX+jpLedi109GMXy2uup01rA1nWsKc/ub5G2Ljn2WYN7govF BJaQz1E2HLozQIcZoAt6xOVpagxrgi5v7VqBvc9M= X-Mailbox-Line: From new-work-bounces@ietf.org Mon Aug 23 12:43:35 2021 Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 5C5013A1075; Mon, 23 Aug 2021 12:43:35 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1629747815; bh=dN/Jz2e/cqjqM76ZoDX4SXMVh3UPA5VcCNdManGYz0M=; h=From:To:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=rRtJ0J9OKJ+m0a6cpxqQ/FzWUEMlUZVaU/OtGaFkFKGpLShRJTVHTh0752UGgFErw kisry6RsQREXqWgumkv+WP789+LdgT5FbYD1hcqF/AqKG822aUGirYOA4Jm5SReaOF eFEme4NoJq1cRfNNqmPGU+/l4utn8uCrDVz4nKP4= X-Original-To: new-work@ietfa.amsl.com Delivered-To: new-work@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 39A873A1091 for ; Mon, 23 Aug 2021 12:43:33 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.097 X-Spam-Level: X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TwPM9J9O6Teb for ; Mon, 23 Aug 2021 12:43:26 -0700 (PDT) Received: from mail-qt1-x831.google.com (mail-qt1-x831.google.com [IPv6:2607:f8b0:4864:20::831]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 37E823A1069 for ; Mon, 23 Aug 2021 12:43:26 -0700 (PDT) Received: by mail-qt1-x831.google.com with SMTP id v6so5023859qto.3 for ; Mon, 23 Aug 2021 12:43:26 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:mime-version:thread-index :content-language; bh=FxcG/tiSfCEswS16v24k73Z7ril1QoST/zesPv+OazI=; b=FirOBtLhQV+tVRhBpFyNkwwfWqie9CP1Z43QzXgHLodVR+5VXVaI4w2cwFbiOppNDt qKt6FPz01f3qX5g5puURsWoYiCgG3XW7eEdC1byHcryBWvpNST7jP9WZAEDqfN9o/i3g N/GtyTNYVVmRjbC83NPhWGLmNhhd4E5E2ik+j+VmfXq/d7kULXj6hpnDnaXFDdvYshBu xeLLC/ZyT91MF0kdztBnQrr/eEWkPH2EZAsOfbmlTJleqaTZsbSPrBOu++3vuSZyZ7Ec C8yF5KVJY74Rr8VykVbgMChgt/avQn14i8DBEkyp84NI4S93EDSQfKAf5tAbabdLMBid SIYQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:mime-version :thread-index:content-language; bh=FxcG/tiSfCEswS16v24k73Z7ril1QoST/zesPv+OazI=; b=VbU+v3E/k+woq/peanfAJ3SuOPBd+jcQZpQHDDB4GtdSRfo5mhvikipzrUeEFokxH7 v/VBk2Ny0gCupIKHHBY2/ulDMB8VGVdCa7gCgNmJZYsY2O+VQ0gCzXQ+dQ2LkT1LAD1x az8DqYt2bdFPWlv4I6J2snwUBZSyDY3gCzAoI8zj4vmcjkqssKGRI2C3Hc6FAlcRsTYa 1yiU3Pj1ywQ6rNDTS2p/C5JGcPFqITdSLuMMvaiZ++iJeT9O+UcHBE9cto4YVGe38hNo BhGYM0t40E6iiLj1mMuljtDCwkkmgurIuzsnr8fm0RI3ZTCcYRRlf8XMX7Aa3np1vtiQ hFRQ== X-Gm-Message-State: AOAM5328R4RELNaaKk/I7yDqEXPoYOYu9hNPNmcd9wH3o8eq85n+z0lU 2UYr8+9DjmxUJDW58RHc3CWdVyZkdR8= X-Google-Smtp-Source: ABdhPJxCYjRMIMqWwgwqVVUFMrNYcIrNf3rZxaSA/PH7ZBqHLVpKhv/CXHsqxAZ64TiGZz+O2WHWrQ== X-Received: by 2002:ac8:5ad5:: with SMTP id d21mr31280421qtd.200.1629747804434; Mon, 23 Aug 2021 12:43:24 -0700 (PDT) Received: from DESKTOP6VF5FH7 (pool-96-249-149-147.hrbgpa.fios.verizon.net. [96.249.149.147]) by smtp.gmail.com with ESMTPSA id w129sm9246912qkb.61.2021.08.23.12.43.23 for (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Mon, 23 Aug 2021 12:43:23 -0700 (PDT) From: To: Date: Mon, 23 Aug 2021 15:43:23 -0400 Message-ID: <0ade01d79857$22a7d4c0$67f77e40$@gmail.com> MIME-Version: 1.0 X-Mailer: Microsoft Outlook 16.0 Thread-Index: AdeYVsQglFhsCGD+RJSBDrajtL0i3w== Content-Language: en-us Archived-At: X-BeenThere: new-work@ietf.org X-Mailman-Version: 2.1.29 Precedence: list Content-Type: multipart/mixed; boundary="===============6706180962945594018==" Errors-To: new-work-bounces@ietf.org Sender: "new-work" Archived-At: X-Mailman-Approved-At: Mon, 23 Aug 2021 12:46:45 -0700 Subject: [secdir] [new-work] IEEE 802 July 2021 Plenary - New Study Groups X-BeenThere: secdir@ietf.org List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 23 Aug 2021 19:43:41 -0000 This is a multipart message in MIME format. --===============6706180962945594018== Content-Type: multipart/alternative; boundary="----=_NextPart_000_0ADF_01D79835.9B979450" Content-Language: en-us This is a multipart message in MIME format. ------=_NextPart_000_0ADF_01D79835.9B979450 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Dear Members of the IETF: In the spirit of continuing cooperation between IEEE 802 and IETF, the following letter addresses new work items for information and potential coordination with the respective IEEE 802 WG. One of the first steps in the IEEE Standards Association's standards development process is the creation of a Study Group. Study groups are chartered to create a formal Project Authorization Request (PAR) document that includes a description of the project's scope and purpose. The following Study Groups were approved at the July 2021 IEEE 802 Plenary - * IEEE 802.3 Greater than 10 Mb/s long-reach point-to-point single pair Ethernet PHY * IEEE 802.15 SG15.3ma:maintenance revision Study Group Further information about Study Groups may be found at http://www.ieee802.org/StudyGroups.shtml. Please note, per the IEEE 802 Policies and Procedures that a Study Group is chartered to operate until the next plenary session, a period of four months and, if it wishes to continue, must request a charter extension. Study Groups may also terminate between plenary sessions if their proposed project is approved by the IEEE Standards Association Standards Board. Additionally, within the IEEE 802 family of standards, there is a requirement that each new project proposal attaches additional documentation that describes its engineering feasibility, market potential, assurance of coexistence and distinct identity relative to previous standards (referred to as the "CSD" in 802, which also includes the "5 criteria"). The "Criteria for Standards Development (CSD)" used by IEEE 802 can be found in document: https://mentor.ieee.org/802-ec/dcn/14/ec-14-0028-00-00EC-csd-informative-ext ract.pdf Also please note that IEEE meetings are open and may be attended by any individuals who register and fulfill any registration fees. Details regarding future IEEE 802 plenary meeting schedules may be found at http://802world.org/plenary/future-plenary-sessions/. Please refer to individual working groups for their interim meeting schedules. A listing of all working groups may be found at http://www.ieee802.org/. Sincerely, John D'Ambrosia Recording Secretary, IEEE 802 LMSC jdambrosia@ieee.org ------=_NextPart_000_0ADF_01D79835.9B979450 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

Dear Members of the = IETF:

In the spirit of continuing cooperation = between IEEE 802 and IETF, the following letter addresses new work items = for information and potential coordination with the respective IEEE 802 = WG.  

 

One of the first = steps in the IEEE Standards Association’s standards development = process is the creation of a Study Group. Study groups are chartered to = create a formal Project Authorization Request (PAR) document that = includes a description of the project’s scope and purpose.  =

 

The following Study = Groups were approved at the July 2021 IEEE 802 Plenary = –

  • IEEE 802.3 Greater than 10 Mb/s long-reach = point-to-point single pair Ethernet PHY
  • IEEE 802.15 SG15.3ma:maintenance revision = Study Group

Further information about Study Groups may be = found at http://www.ieee802.org/= StudyGroups.shtml. =      

 

Please note, per the = IEEE 802 Policies and Procedures that a Study Group is chartered to = operate until the next plenary session, a period of four months and, if = it wishes to continue, must request a charter extension. Study Groups = may also terminate between plenary sessions if their proposed project is = approved by the IEEE Standards Association Standards Board.  =

 

Additionally, within = the IEEE 802 family of standards, there is a requirement that each new = project proposal attaches additional documentation that describes its = engineering feasibility, market potential, assurance of coexistence and = distinct identity relative to previous standards (referred to as the = “CSD” in 802, which also includes the “5 = criteria”).  The “Criteria for Standards Development = (CSD)” used by IEEE 802 can be found in document:  =

 

https://mentor.ieee.org/802-ec/dcn/14/ec-14-0028-00-= 00EC-csd-informative-extract.pdf =   

 

Also please note that = IEEE meetings are open and may be attended by any individuals who = register and fulfill any registration fees. Details regarding future = IEEE 802 plenary meeting schedules may be found at http://802w= orld.org/plenary/future-plenary-sessions/.  Please refer to = individual working groups for their interim meeting schedules. A listing = of all working groups may be found at http://www.ieee802.org/. =     

 

Sincerely,   =

 

John = D’Ambrosia 

Recording Secretary, IEEE 802 LMSC  =

jdambrosia@ieee.org =    

 

------=_NextPart_000_0ADF_01D79835.9B979450-- --===============6706180962945594018== Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ new-work mailing list new-work@ietf.org https://www.ietf.org/mailman/listinfo/new-work --===============6706180962945594018==-- From nobody Tue Aug 24 11:29:54 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id DE4B53A0B00; Tue, 24 Aug 2021 11:29:43 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: Valery Smyslov via Datatracker To: Cc: draft-ietf-netconf-crypto-types.all@ietf.org, last-call@ietf.org, netconf@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <162982978380.3381.17549750696257276827@ietfa.amsl.com> Reply-To: Valery Smyslov Date: Tue, 24 Aug 2021 11:29:43 -0700 Archived-At: Subject: [secdir] Secdir last call review of draft-ietf-netconf-crypto-types-20 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 24 Aug 2021 18:29:44 -0000 Reviewer: Valery Smyslov Review result: Has Issues I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. When I was re-assigned to review this draft the indicated deadline was already missed by 8 months, so I don't know how relevant the review is. I reviewed the latest -20 version of the draft instead of -18, that was requested. The draft defines common YANG data types and groupings useful for cryptography. I din't try to check the YANG module itself. Issues: Shouldn't a Privacy Considerations section be added to the draft? The draft defines quite a lot of privacy-sensitive information (like certificates) with no restriction on read access (as far as I understand). Section 3.5. While I understand and support the idea, expressed in this section, I think that the way it is expressed makes it difficult to follow in practice. In general, it's not always obvious how to estimate the "strength" of the underlying secure transport. For this reason it's not clear for me how it is supposed to "compare" the "strength" of the transport with the "strength" of the keys being transported. In addition, the requirement, that "Implementations SHOULD fail the write-request if ever the strength of the private key is greater then the strength of the underlying transport" looks wrong to me. You don't need to have 1024 bits transport protocol strength to transfer 1024 bit key, since even for say 256 bits it's infeasible to break. I think that the better approach would be to advise using strong ciphersuites for transport protocols defined in corresponding RFCs. For example, for TLS 1.3 there are ciphersuites marked as "recommended", that were evaluated by IETF crypto community. Section 3.6: For instance, AES using "EBC" SHOULD NOT be used to encrypt passwords, whereas "CBC" mode is okay since it a unique initialization vector (IV) should be used for each run. Not only IV for CBC should be unique, it should be unpredictable (random or pseudo-random). I also think that lowercase "should" here must be uppercase, or even MUST. Typos, nits: Section 3.6: In order to thwart rainbow attacks, algorithms that result in a unique output for the same input SHOULD be used. s/SHOULD/SHOULD NOT For instance, AES using "EBC" SHOULD NOT be used to encrypt passwords, whereas "CBC" mode is okay since it a unique initialization vector (IV) should be used for each run. s/EBC/ECB s/it// I believe "okay' is a bit of slang, isn't it? Section 3.8: Since the module in this document only define groupings, these considerations are primarily for the designers of other modules that use these groupings. s/define/defines From nobody Wed Aug 25 08:16:04 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 240D03A08E5; Wed, 25 Aug 2021 07:40:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1629902451; bh=wHzqbxlzN52D6hFoqgF7RlSBhop/GzDnyPTNPq/baFo=; h=To:From:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=pLQI21vyy+G4vMcre+SecPduTjfEkmZHa09UySTnIEiPXhxd0ApZK94nQ9ViTw314 c8txQPgectKdUVafKFBBxEyFOdWNfFcJfsjZvNql9TT+wiLvQSXJC99BABETL3BycV ksbbaeyaP2Ma2Yz5a+dVWKMdQ/RXRyVx0nzX/iI4= X-Mailbox-Line: From new-work-bounces@ietf.org Wed Aug 25 07:40:50 2021 Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 72F373A08E7; Wed, 25 Aug 2021 07:40:50 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1629902450; bh=wHzqbxlzN52D6hFoqgF7RlSBhop/GzDnyPTNPq/baFo=; h=To:From:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe; b=WmbFLsMmTQu4dnFrNV/eEnwIgWI8MxmHG44FgEQKv88bAI+P+1PpGNCKC+yBrAKWz vIFbvDe3keXkRm79dYCdV/4BuqFxlX3dRErh5OGiQZ+9PxmZts8/+DCs+hhQtnoqfs 9AtL+VyKxxQ1KSDnq8dGfr50ZDksPje1hJd2GQCc= X-Original-To: new-work@ietfa.amsl.com Delivered-To: new-work@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 67D623A08E5 for ; Wed, 25 Aug 2021 07:40:48 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -0.902 X-Spam-Level: X-Spam-Status: No, score=-0.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HK_RANDOM_ENVFROM=0.001, HK_RANDOM_FROM=0.999, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id daCR0rIFwvyt for ; Wed, 25 Aug 2021 07:40:47 -0700 (PDT) Received: from raoul.w3.org (raoul.w3.org [128.30.52.128]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EF8153A08E1 for ; Wed, 25 Aug 2021 07:40:46 -0700 (PDT) Received: from [1.58.192.4] (helo=[192.168.0.101]) by raoul.w3.org with esmtpsa (TLS1.3:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.92) (envelope-from ) id 1mIu56-0007C9-Ry for new-work@ietf.org; Wed, 25 Aug 2021 14:40:45 +0000 To: new-work@ietf.org From: xueyuan Message-ID: <6e49ddc3-508c-1857-58c5-b2b71dead4e1@w3.org> Date: Wed, 25 Aug 2021 22:40:42 +0800 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.13; rv:78.0) Gecko/20100101 Thunderbird/78.12.0 MIME-Version: 1.0 Content-Language: en-US Archived-At: X-BeenThere: new-work@ietf.org X-Mailman-Version: 2.1.29 Precedence: list Content-Transfer-Encoding: base64 Content-Type: text/plain; charset="utf-8"; Format="flowed" Errors-To: new-work-bounces@ietf.org Sender: "new-work" Archived-At: X-Mailman-Approved-At: Wed, 25 Aug 2021 08:16:00 -0700 Subject: [secdir] [new-work] Proposed W3C Charter: Web Authentication Working Group (until 2021-10-01/02) X-BeenThere: secdir@ietf.org List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 25 Aug 2021 14:40:55 -0000 SGVsbG8sCgpUb2RheSBXM0MgQWR2aXNvcnkgQ29tbWl0dGVlIFJlcHJlc2VudGF0aXZlcyByZWNl aXZlZCBhIFByb3Bvc2FsCnRvIHJldmlldyBhIGRyYWZ0IGNoYXJ0ZXIgZm9yIHRoZSBXZWIgQXV0 aGVudGljYXRpb24gV29ya2luZyBHcm91cDoKIMKgIGh0dHBzOi8vd3d3LnczLm9yZy8yMDIxLzA4 L3Byb3Bvc2VkLXdlYmF1dGhuLWNoYXJ0ZXIuaHRtbAoKQXMgcGFydCBvZiBlbnN1cmluZyB0aGF0 IHRoZSBjb21tdW5pdHkgaXMgYXdhcmUgb2YgcHJvcG9zZWQgd29yawphdCBXM0MsIHRoaXMgZHJh ZnQgY2hhcnRlciBpcyBwdWJsaWMgZHVyaW5nIHRoZSBBZHZpc29yeQpDb21taXR0ZWUgcmV2aWV3 IHBlcmlvZC4KClczQyBpbnZpdGVzIHB1YmxpYyBjb21tZW50cyB0aHJvdWdoIDAzOjU5IFVUQyBv biAyIE9jdG9iZXIKKDIzOjU5LCBCb3N0b24gdGltZSBvbiAxIE9jdG9iZXIsIDIwMjEpIG9uIHRo ZSBwcm9wb3NlZCBjaGFydGVyLgpQbGVhc2Ugc2VuZCBjb21tZW50cyB0byBwdWJsaWMtbmV3LXdv cmtAdzMub3JnLAp3aGljaCBoYXMgYSBwdWJsaWMgYXJjaGl2ZToKIMKgIGh0dHA6Ly9saXN0cy53 My5vcmcvQXJjaGl2ZXMvUHVibGljL3B1YmxpYy1uZXctd29yay8KCk90aGVyIHRoYW4gY29tbWVu dHMgc2VudCBpbiBmb3JtYWwgcmVzcG9uc2VzIGJ5IFczQyBBZHZpc29yeQpDb21taXR0ZWUgUmVw cmVzZW50YXRpdmVzLCBXM0MgY2Fubm90IGd1YXJhbnRlZSBhIHJlc3BvbnNlIHRvCmNvbW1lbnRz LiBJZiB5b3Ugd29yayBmb3IgYSBXM0MgTWVtYmVyIFsxXSwgcGxlYXNlIGNvb3JkaW5hdGUKeW91 ciBjb21tZW50cyB3aXRoIHlvdXIgQWR2aXNvcnkgQ29tbWl0dGVlIFJlcHJlc2VudGF0aXZlLiBG b3IKZXhhbXBsZSwgeW91IG1heSB3aXNoIHRvIG1ha2UgcHVibGljIGNvbW1lbnRzIHZpYSB0aGlz IGxpc3QgYW5kCmhhdmUgeW91ciBBZHZpc29yeSBDb21taXR0ZWUgUmVwcmVzZW50YXRpdmUgcmVm ZXIgdG8gaXQgZnJvbSBoaXMKb3IgaGVyIGZvcm1hbCByZXZpZXcgY29tbWVudHMuCgpJZiB5b3Ug c2hvdWxkIGhhdmUgYW55IHF1ZXN0aW9ucyBvciBuZWVkIGZ1cnRoZXIgaW5mb3JtYXRpb24sIHBs ZWFzZQpjb250YWN0IFdlbmR5IFNlbHR6ZXIsIFdlYiBBdXRoZW50aWNhdGlvbiBXRyBUZWFtIENv bnRhY3QsIGF0IAo8d3NlbHR6ZXJAdzMub3JnPi4KClRoYW5rIHlvdSwKClh1ZXl1YW4gSmlhLMKg IFczQyBNYXJrZXRpbmcgJiBDb21tdW5pY2F0aW9ucwoKWzFdIGh0dHA6Ly93d3cudzMub3JnL0Nv bnNvcnRpdW0vTWVtYmVyL0xpc3QKCl9fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fCm5ldy13b3JrIG1haWxpbmcgbGlzdApuZXctd29ya0BpZXRmLm9yZwpodHRw czovL3d3dy5pZXRmLm9yZy9tYWlsbWFuL2xpc3RpbmZvL25ldy13b3JrCg== From nobody Thu Aug 26 06:30:38 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 449123A13F9 for ; Thu, 26 Aug 2021 06:30:36 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit From: Tero Kivinen via Datatracker To: X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Reply-To: secdir-secretary@mit.edu, Tero Kivinen Message-ID: <162998463625.13972.6284229027970745350@ietfa.amsl.com> Date: Thu, 26 Aug 2021 06:30:36 -0700 Archived-At: Subject: [secdir] Assignments X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 26 Aug 2021 13:30:36 -0000 Review instructions and related resources are at: https://trac.ietf.org/trac/sec/wiki/SecDirReview For telechat 2021-08-26 Reviewer LC end Draft Joseph Salowey R2021-07-23 draft-ietf-httpbis-bcp56bis Stefan Santesson 2021-08-11 draft-ietf-bier-te-arch Last calls: Reviewer LC end Draft Derek Atkins 2021-09-07 draft-ietf-bess-evpn-optimized-ir John Bradley 2021-09-06 draft-ietf-core-senml-data-ct Shaun Cooley 2021-09-06 draft-ietf-jmap-smime Alan DeKok 2021-09-03 draft-ietf-dnsop-dns-tcp-requirements Steve Hanna 2021-03-22 draft-ietf-regext-secure-authinfo-transfer Catherine Meadows 2021-04-14 draft-ietf-ntp-interleaved-modes Sandra Murphy 2020-10-15 draft-ietf-tls-external-psk-importer Tim Polk 2021-08-06 draft-ietf-opsawg-vpn-common Joseph Salowey R2021-07-23 draft-ietf-httpbis-bcp56bis Stefan Santesson 2021-08-11 draft-ietf-bier-te-arch Mališa Vučinić 2021-09-06 draft-ietf-httpbis-semantics Samuel Weiler 2021-08-25 draft-ietf-alto-path-vector Brian Weis 2021-08-19 draft-ietf-dnsop-svcb-https Klaas Wierenga 2021-08-30 draft-ietf-alto-cdni-request-routing-alto Klaas Wierenga 2020-12-02 draft-ietf-core-echo-request-tag Klaas Wierenga 2020-05-26 draft-ietf-kitten-krb-spake-preauth Paul Wouters 2021-08-26 draft-ietf-alto-unified-props-new Paul Wouters 2021-09-06 draft-ietf-httpbis-messaging Liang Xia 2021-09-07 draft-ietf-bess-evpn-igmp-mld-proxy Liang Xia 2021-03-17 draft-ietf-core-sid Dacheng Zhang 2021-09-07 draft-ietf-bess-evpn-bum-procedure-updates Early review requests: Reviewer Due Draft Stephen Farrell 2021-06-21 draft-ietf-idr-bgpls-srv6-ext Tina Tsou 2021-08-25 draft-ietf-opsawg-sbom-access Sean Turner 2021-08-18 draft-ietf-taps-interface Loganaden Velvindron 2021-08-18 draft-ietf-taps-arch Next in the reviewer rotation: Christopher Wood Paul Wouters Liang Xia Dacheng Zhang Derek Atkins John Bradley Nancy Cam-Winget Shaun Cooley Alan DeKok Linda Dunbar From nobody Thu Aug 26 20:00:35 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id E86A43A1166; Thu, 26 Aug 2021 19:59:45 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: Joseph Salowey via Datatracker To: Cc: draft-ietf-httpbis-bcp56bis.all@ietf.org, ietf-http-wg@w3.org, last-call@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <163003318587.6394.11664956253111354366@ietfa.amsl.com> Reply-To: Joseph Salowey Date: Thu, 26 Aug 2021 19:59:45 -0700 Archived-At: Subject: [secdir] Secdir telechat review of draft-ietf-httpbis-bcp56bis-14 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2021 02:59:47 -0000 Reviewer: Joseph Salowey Review result: Ready The revision addressed my comments. From nobody Fri Aug 27 07:53:33 2021 Return-Path: <0100017b8819bf19-1f20d528-72e4-462c-884a-6c29eff0769b-000000@amazonses.watsen.net> X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6A28E3A088A; Fri, 27 Aug 2021 07:53:25 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.896 X-Spam-Level: X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=amazonses.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GOTQ0n9UMIGX; Fri, 27 Aug 2021 07:53:20 -0700 (PDT) Received: from a48-95.smtp-out.amazonses.com (a48-95.smtp-out.amazonses.com [54.240.48.95]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 173233A088C; Fri, 27 Aug 2021 07:53:15 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=ug7nbtf4gccmlpwj322ax3p6ow6yfsug; d=amazonses.com; t=1630075994; h=From:Message-Id:Content-Type:Mime-Version:Subject:Date:In-Reply-To:Cc:To:References:Feedback-ID; bh=Uu/ONjl7dl7hWoksXtnjx/UeTEwG5YasRHnS0hzF/C4=; b=aW/eA3gkN6CNF8x0YAR8W+pvy74y9RZaE2fdPQQJexU/N+7LJhJJoeGZ9V1q+we7 BV4fdQwIXLr+XdH/cl8dgRVBFOje9ifYELFDTq/KwiHctYOzM8gbfd9LImwjIdCXxdI l2SoG3SfNOSbruMbTZLw7ILxfIT4soHelgfiQ0+s= From: Kent Watsen Message-ID: <0100017b8819bf19-1f20d528-72e4-462c-884a-6c29eff0769b-000000@email.amazonses.com> Content-Type: multipart/alternative; boundary="Apple-Mail=_17EAF07D-2366-4962-B625-7E97D33BF5B2" Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\)) Date: Fri, 27 Aug 2021 14:53:14 +0000 In-Reply-To: <162982978380.3381.17549750696257276827@ietfa.amsl.com> Cc: secdir@ietf.org, draft-ietf-netconf-crypto-types.all@ietf.org, "netconf@ietf.org" To: Valery Smyslov References: <162982978380.3381.17549750696257276827@ietfa.amsl.com> X-Mailer: Apple Mail (2.3654.120.0.1.13) Feedback-ID: 1.us-east-1.DKmIRZFhhsBhtmFMNikgwZUWVrODEw9qVcPhqJEI2DA=:AmazonSES X-SES-Outgoing: 2021.08.27-54.240.48.95 Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-netconf-crypto-types-20 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2021 14:53:26 -0000 --Apple-Mail=_17EAF07D-2366-4962-B625-7E97D33BF5B2 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 [removing =E2=80=9Clast-call=E2=80=9D alias] Hello Valery. =20 Thank you for your SecDir review, it is very much appreciated and never = too late! More comments below. Thanks, Kent > On Aug 24, 2021, at 2:29 PM, Valery Smyslov via Datatracker = wrote: >=20 > Reviewer: Valery Smyslov > Review result: Has Issues >=20 > I have reviewed this document as part of the security directorate's = ongoing > effort to review all IETF documents being processed by the IESG. = These > comments were written primarily for the benefit of the security area = directors. > Document editors and WG chairs should treat these comments just like = any other > last call comments. >=20 > When I was re-assigned to review this draft the indicated deadline was = already > missed by 8 months, so I don't know how relevant the review is. I = reviewed > the latest -20 version of the draft instead of -18, that was = requested. Perfect. > The draft defines common YANG data types and groupings useful for = cryptography. > I din't try to check the YANG module itself.=20 >=20 > Issues: >=20 > Shouldn't a Privacy Considerations section be added to the draft? > The draft defines quite a lot of privacy-sensitive information (like = certificates) > with no restriction on read access (as far as I understand). Both the "trust-anchor-cert-grouping=E2=80=9D and = =E2=80=9Cend-entity-cert-grouping=E2=80=9D groupings have = "nacm:default-deny-write=E2=80=9D that, to your point, does not restrict = reads. That said, only management protocols having mutual = authentication (e.g., SSH and/or TLS based transport) can access the = data. =20 Is your concern that the certificate=E2=80=99s content would be visible = to the administrators? Is your comment on end-entity certificates = (containing personally-identifying information), more than = trust-anchor-certificates? > Section 3.5. > While I understand and support the idea, expressed in this section, I = think that > the way it is expressed makes it difficult to follow in practice. In = general, it's > not always obvious how to estimate the "strength" of the underlying = secure transport. > For this reason it's not clear for me how it is supposed to "compare" = the=20 > "strength" of the transport with the "strength" of the keys being = transported. I saw language like this once in a DoD setting. I agree that it is = difficult to implement in practice. I used =E2=80=9CSHOULD=E2=80=9D = (not MUST) to buy some leeway for implementations to be compliant. = Makes sense? FWIW, my YANG-driven server is able to remember what key the client used = for authentication (e.g., RSA 2048) and register a callback to test that = no greater keys (e.g., 3072 or 4096) are configured by that client. = Additional logic would be needed to prevent a low-strength client from = *reading* a high-strength key configured by another client=E2=80=A6though = the issue can be alternatively resolved by configuring the TLS-stack to = prevent low-strength algorithms. > In addition, the requirement, that "Implementations SHOULD fail the = write-request if ever > the strength of the private key is greater then the strength of the > underlying transport" looks wrong to me. You don't need to have > 1024 bits transport protocol strength to transfer 1024 bit key, since > even for say 256 bits it's infeasible to break. IDK about this. Again, I saw this constraint once in a DoD setting. =20 > I think that the better approach would be to advise using strong > ciphersuites for transport protocols defined in corresponding RFCs. > For example, for TLS 1.3 there are ciphersuites marked as = "recommended", > that were evaluated by IETF crypto community. I added this sentence: Implementations SHOULD configure allowed transport=20 algorithms to include only those meeting local policy (e.g., listed as "recommended" by the IETF). Good? > Section 3.6: > For instance, AES > using "EBC" SHOULD NOT be used to encrypt passwords, whereas "CBC" > mode is okay since it a unique initialization vector (IV) should be > used for each run. >=20 > Not only IV for CBC should be unique, it should be unpredictable = (random or pseudo-random). > I also think that lowercase "should" here must be uppercase, or even = MUST. Replaced =E2=80=9Cunique=E2=80=9D with =E2=80=9Cunpredictable=E2=80=9D Replaced =E2=80=9Cshould=E2=80=9D with MUST. > Typos, nits: >=20 > Section 3.6:=20 > In order to thwart rainbow attacks, algorithms that result in a > unique output for the same input SHOULD be used.=20 >=20 > s/SHOULD/SHOULD NOT Egads - fixed! > For instance, AES > using "EBC" SHOULD NOT be used to encrypt passwords, whereas "CBC" > mode is okay since it a unique initialization vector (IV) should be > used for each run. >=20 > s/EBC/ECB > s/it// > I believe "okay' is a bit of slang, isn't it? Fixed, now reads: In order to thwart rainbow attacks, algorithms that result in a unique output for the same input SHOULD NOT be used. For instance, AES using "ECB" SHOULD NOT be used to encrypt passwords, whereas "CBC" mode is permissible since an unpredictable initialization vector (IV) MUST be used for each use. > Section 3.8: > Since the module in this document only define groupings, these > considerations are primarily for the designers of other modules that > use these groupings. >=20 > s/define/defines Fixed! Kent, as author --Apple-Mail=_17EAF07D-2366-4962-B625-7E97D33BF5B2 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8
[removing =E2=80=9Clast-call=E2=80=9D alias]


Hello= Valery.  

Thank = you for your SecDir review, it is very much appreciated and never too = late!

More comments below.

Thanks,
Kent


On Aug 24, 2021, at 2:29 PM, Valery Smyslov = via Datatracker <noreply@ietf.org> wrote:

Reviewer: Valery Smyslov
Review result: Has = Issues

I have reviewed this document as = part of the security directorate's ongoing
effort to = review all IETF documents being processed by the IESG.  These
comments were written primarily for the benefit of the = security area directors.
Document editors and WG chairs = should treat these comments just like any other
last call = comments.

When I was re-assigned to review = this draft the indicated deadline was already
missed by 8 = months, so I don't know how relevant the review is. I reviewed
the latest -20 version of the draft instead of -18, that was = requested.

Perfect.


The draft defines common YANG data types and groupings useful = for cryptography.
I din't try to check the YANG module = itself.

Issues:

Shouldn't a Privacy Considerations section be added to the = draft?
The draft defines quite a lot of privacy-sensitive = information (like certificates)
with no restriction on = read access (as far as I understand).


Both the "trust-anchor-cert-grouping=E2=80=9D and = =E2=80=9Cend-entity-cert-grouping=E2=80=9D groupings have "nacm:default-deny-write=E2=80=9D that, to = your point, does not restrict reads.  That said, = only management protocols having mutual authentication (e.g., SSH = and/or TLS based transport) can access the data. =  

Is your = concern that the certificate=E2=80=99s content would be visible to the = administrators? =  Is your comment on end-entity certificates (containing = personally-identifying information), more than = trust-anchor-certificates?


Section 3.5.
While I understand = and support the idea, expressed in this section, I think that
the way it is expressed makes it difficult to follow in = practice. In general, it's
not always obvious how to = estimate the "strength" of the underlying secure transport.
For this reason it's not clear for me how it is supposed to = "compare" the
"strength" of the transport with the = "strength" of the keys being transported.

I saw = language like this once in a DoD setting.  I agree that it is = difficult to implement in practice.  I used =E2=80=9CSHOULD=E2=80=9D = (not MUST) to buy some leeway for implementations to be compliant. =  Makes sense?

FWIW, my = YANG-driven server is able to remember what key the client used for = authentication (e.g., RSA 2048) and register a callback to test that no = greater keys (e.g., 3072 or 4096) are configured by that client. =  Additional logic would be needed to prevent a low-strength client = from *reading* a high-strength key configured by another client=E2=80=A6th= ough the issue can be alternatively resolved by configuring the = TLS-stack to prevent low-strength algorithms.


In addition, the requirement, that = "Implementations SHOULD fail the write-request if ever
the = strength of the private key is greater then the strength of the
underlying transport" looks wrong to me. You don't need to = have
1024 bits transport protocol strength to transfer = 1024 bit key, since
even for say 256 bits it's infeasible = to break.

IDK about this.  Again, I saw this constraint = once in a DoD setting.  


I think that the better approach would be to advise using = strong
ciphersuites for transport protocols defined in = corresponding RFCs.
For example, for TLS 1.3 there are = ciphersuites marked as "recommended",
that were evaluated = by IETF crypto community.

I added this sentence:

Implementations SHOULD = configure allowed transport 
 = algorithms to include only those meeting local
policy = (e.g., listed as "recommended" by the IETF).

Good?


Section 3.6:
  For instance, AES
  using "EBC" SHOULD NOT be used to encrypt = passwords, whereas "CBC"
  mode is okay since = it a unique initialization vector (IV) should be
=   used for each run.

Not only IV = for CBC should be unique, it should be unpredictable (random or = pseudo-random).
I also think that lowercase "should" here = must be uppercase, or even MUST.

Replaced =E2=80=9Cunique=E2=80=9D with = =E2=80=9Cunpredictable=E2=80=9D
Replaced =E2=80=9Cshould=E2=80=9D= with MUST.


Typos, nits:

Section 3.6:
  In order to thwart rainbow attacks, algorithms = that result in a
  unique output for the same = input SHOULD be used.

s/SHOULD/SHOULD = NOT

Egads - fixed!


  For instance, AES
=   using "EBC" SHOULD NOT be used to encrypt passwords, whereas = "CBC"
  mode is okay since it a unique = initialization vector (IV) should be
  used for = each run.

s/EBC/ECB
s/it//
I believe "okay' is a bit of slang, isn't it?

Fixed, = now reads:

In order = to thwart rainbow attacks, algorithms that result
in a = unique output for the same input SHOULD NOT be = used.
= For instance, AES using "ECB" SHOULD NOT be = used to
encrypt passwords, whereas = "CBC" mode is permissible
since = an unpredictable initialization vector (IV) MUST = be
= used for each use.</t>


Section 3.8:
=   Since the module in this document only define groupings, = these
  considerations are primarily for the = designers of other modules that
  use these = groupings.

s/define/defines

Fixed!



Kent, as = author


= --Apple-Mail=_17EAF07D-2366-4962-B625-7E97D33BF5B2-- From nobody Fri Aug 27 09:14:57 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0FBBF3A1412; Fri, 27 Aug 2021 09:14:50 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.098 X-Spam-Level: X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=smyslov.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n1uIMlIi-7mT; Fri, 27 Aug 2021 09:14:43 -0700 (PDT) Received: from direct.host-care.com (direct.host-care.com [198.136.54.115]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 156903A140F; Fri, 27 Aug 2021 09:14:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=smyslov.net ; s=default; h=Content-Type:MIME-Version:Message-ID:Date:Subject:In-Reply-To: References:Cc:To:From:Sender:Reply-To:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=oTGB8ROnhmf2dc6rHqn0QBKZnqdw6fE4JiAHMQrovmQ=; b=mJz753VN3dfe6qRd8oJRNHNXCr +Y38ONE/oPdBEE/CDjNX5r6WrDl3ygqv7E181lXL1JaBkbpkBFqnCy9qRj+pqs1LSMykHHispHCNU i7ulcSCdZ51zkisUfHGHrT194NFBLEssJvz/UMXEzWoK0uPNdm89o6lurSEOqE5B14KEw8SBi/KRf 4438EVhrlj+0S04BM8dyC2P11nYb8xzA/M03M9bPcbrXlGt/sJLICBJoWxrJA8e+aELmYJ34uzhMv iL5apKnlYwvxTFEjVVEvUfiexCmjqVPfYMwrQuEIDGcXZ/CIFvS0MIaPsQDmV+aYB6s3BXWSeGmIC OdZgh8/g==; Received: from [93.188.44.204] (port=62899 helo=buildpc) by direct.host-care.com with esmtpsa (TLS1.2) tls TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.93) (envelope-from ) id 1mJeV3-0007rS-Kj; Fri, 27 Aug 2021 12:14:38 -0400 From: "Valery Smyslov" To: "'Kent Watsen'" Cc: , , References: <162982978380.3381.17549750696257276827@ietfa.amsl.com> <0100017b8819bf19-1f20d528-72e4-462c-884a-6c29eff0769b-000000@email.amazonses.com> In-Reply-To: <0100017b8819bf19-1f20d528-72e4-462c-884a-6c29eff0769b-000000@email.amazonses.com> Date: Fri, 27 Aug 2021 19:14:30 +0300 Message-ID: <017c01d79b5e$a00a0000$e01e0000$@smyslov.net> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_017D_01D79B77.C55A4540" X-Mailer: Microsoft Outlook 14.0 Content-Language: ru Thread-Index: AQGndKy5sGszK4BuDx47nymU5VnBUwHC5W7jq9m0WHA= X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - direct.host-care.com X-AntiAbuse: Original Domain - ietf.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - smyslov.net X-Get-Message-Sender-Via: direct.host-care.com: authenticated_id: valery@smyslov.net X-Authenticated-Sender: direct.host-care.com: valery@smyslov.net Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-netconf-crypto-types-20 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2021 16:14:50 -0000 This is a multipart message in MIME format. ------=_NextPart_000_017D_01D79B77.C55A4540 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi Kent, =20 thank you for addressing my comments. A bit more inline. =20 [removing =E2=80=9Clast-call=E2=80=9D alias] =20 =20 Hello Valery. =20 =20 Thank you for your SecDir review, it is very much appreciated and never = too late! =20 More comments below. =20 Thanks, Kent =20 On Aug 24, 2021, at 2:29 PM, Valery Smyslov via Datatracker = wrote: =20 Reviewer: Valery Smyslov Review result: Has Issues I have reviewed this document as part of the security directorate's = ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area = directors. Document editors and WG chairs should treat these comments just like any = other last call comments. When I was re-assigned to review this draft the indicated deadline was = already missed by 8 months, so I don't know how relevant the review is. I = reviewed the latest -20 version of the draft instead of -18, that was requested. =20 Perfect. =20 The draft defines common YANG data types and groupings useful for = cryptography. I din't try to check the YANG module itself.=20 Issues: Shouldn't a Privacy Considerations section be added to the draft? The draft defines quite a lot of privacy-sensitive information (like = certificates) with no restriction on read access (as far as I understand). =20 =20 Both the "trust-anchor-cert-grouping=E2=80=9D and = =E2=80=9Cend-entity-cert-grouping=E2=80=9D groupings have = "nacm:default-deny-write=E2=80=9D that, to your point, does not restrict = reads. That said, only management protocols having mutual = authentication (e.g., SSH and/or TLS based transport) can access the = data. =20 =20 Is your concern that the certificate=E2=80=99s content would be visible = to the administrators? Is your comment on end-entity certificates = (containing personally-identifying information), more than = trust-anchor-certificates? =20 Yes, it=E2=80=99s mostly on end-entity certificates, however = there may be quite a lot of interesting private information besides certificates. =20 If this information is only visible to the administrators and = the used management protocols must=20 have mutual authentication, then it=E2=80=99s probably not a = big deal. I would have still added a sentence about privacy of the stored data (i.e. that = persons, that are allowed to access this data are able to learn quite a lot of private information from it). = I don=E2=80=99t insist though, it=E2=80=99s up to you. =20 Section 3.5. While I understand and support the idea, expressed in this section, I = think that the way it is expressed makes it difficult to follow in practice. In = general, it's not always obvious how to estimate the "strength" of the underlying = secure transport. For this reason it's not clear for me how it is supposed to "compare" = the=20 "strength" of the transport with the "strength" of the keys being = transported. =20 I saw language like this once in a DoD setting. I agree that it is = difficult to implement in practice. I used =E2=80=9CSHOULD=E2=80=9D = (not MUST) to buy some leeway for implementations to be compliant. = Makes sense? =20 My understanding of using RFC2119 language is that SHOULD is = very close to MUST, but allows some exceptions. So, I still think that you put a = responsibility to make security-related decisions on implementers, who often are not = experts in this area. =20 FWIW, my YANG-driven server is able to remember what key the client used = for authentication (e.g., RSA 2048) and register a callback to test that = no greater keys (e.g., 3072 or 4096) are configured by that client. = Additional=20 =20 What if the other key configured for the client is X25519? = Which is stronger? =20 logic would be needed to prevent a low-strength client from *reading* a = high-strength key configured by another client=E2=80=A6though the issue = can be alternatively resolved by configuring the TLS-stack to prevent = low-strength algorithms. =20 That was my point. I think that it=E2=80=99s better to require = (by SHOULD) that only those ciphersuites that were =E2=80=9Cvetted=E2=80=9D by IETF = (i.e. got =E2=80=9CRecommended=E2=80=9D status) be used. This will make implementers=E2=80=99 life easier. =20 In addition, the requirement, that "Implementations SHOULD fail the = write-request if ever the strength of the private key is greater then the strength of the underlying transport" looks wrong to me. You don't need to have 1024 bits transport protocol strength to transfer 1024 bit key, since even for say 256 bits it's infeasible to break. =20 IDK about this. Again, I saw this constraint once in a DoD setting. =20 =20 My (another) point was that there is generally no point to = increase security strength beyond some level. Currently it is believed that 128 bit of symmetric key is infeasible to break (provided = the algorithm is not broken itself), If you are lucky have full-sized Post Quantum computer, = it=E2=80=99ll be 256 bits. It=E2=80=99s enough to transfer symmetric keys with say 1024 = bits of entropy (FWIW). So the requirement that the strength of transport must be always greater than the strength of transported key=20 seems not a good requirement to me. Instead require that the strength of transport be sufficient to make infeasible for an attacker to break it. =20 I think that the better approach would be to advise using strong ciphersuites for transport protocols defined in corresponding RFCs. For example, for TLS 1.3 there are ciphersuites marked as "recommended", that were evaluated by IETF crypto community. =20 I added this sentence: =20 Implementations SHOULD configure allowed transport=20 algorithms to include only those meeting local policy (e.g., listed as "recommended" by the IETF). =20 Good? =20 Perfect. =20 Regards, Valery. Section 3.6: For instance, AES using "EBC" SHOULD NOT be used to encrypt passwords, whereas "CBC" mode is okay since it a unique initialization vector (IV) should be used for each run. Not only IV for CBC should be unique, it should be unpredictable (random = or pseudo-random). I also think that lowercase "should" here must be uppercase, or even = MUST. =20 Replaced =E2=80=9Cunique=E2=80=9D with =E2=80=9Cunpredictable=E2=80=9D Replaced =E2=80=9Cshould=E2=80=9D with MUST. =20 =20 Typos, nits: Section 3.6:=20 In order to thwart rainbow attacks, algorithms that result in a unique output for the same input SHOULD be used.=20 s/SHOULD/SHOULD NOT =20 Egads - fixed! =20 For instance, AES using "EBC" SHOULD NOT be used to encrypt passwords, whereas "CBC" mode is okay since it a unique initialization vector (IV) should be used for each run. s/EBC/ECB s/it// I believe "okay' is a bit of slang, isn't it? =20 Fixed, now reads: =20 In order to thwart rainbow attacks, algorithms that result in a unique output for the same input SHOULD NOT be used. For instance, AES using "ECB" SHOULD NOT be used to encrypt passwords, whereas "CBC" mode is permissible since an unpredictable initialization vector (IV) MUST be used for each use. =20 Section 3.8: Since the module in this document only define groupings, these considerations are primarily for the designers of other modules that use these groupings. s/define/defines =20 Fixed! =20 =20 =20 Kent, as author =20 =20 ------=_NextPart_000_017D_01D79B77.C55A4540 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable

Hi Kent,

 

thank you for addressing my comments. A bit more = inline.

 

[removing = =E2=80=9Clast-call=E2=80=9D alias]

 

 

Hello = Valery.  

 

Thank you for your SecDir review, it is very much = appreciated and never too late!

 

More comments below.

 

Thanks,

Kent

 



On = Aug 24, 2021, at 2:29 PM, Valery Smyslov via Datatracker <noreply@ietf.org> = wrote:

 

Reviewer: Valery Smyslov
Review result: Has = Issues

I have reviewed this document as part of the security = directorate's ongoing
effort to review all IETF documents being = processed by the IESG.  These
comments were written primarily = for the benefit of the security area directors.
Document editors and = WG chairs should treat these comments just like any other
last call = comments.

When I was re-assigned to review this draft the = indicated deadline was already
missed by 8 months, so I don't know = how relevant the review is. I reviewed
the latest -20 version of the = draft instead of -18, that was = requested.

 

Perfect.

 



The draft defines common YANG data types and groupings = useful for cryptography.
I din't try to check the YANG module itself. =

Issues:

Shouldn't a Privacy Considerations section be = added to the draft?
The draft defines quite a lot of = privacy-sensitive information (like certificates)
with no restriction = on read access (as far as I = understand).

 

 

Both the "trust-anchor-cert-grouping=E2=80=9D and = =E2=80=9Cend-entity-cert-grouping=E2=80=9D groupings have "nacm:default-deny-write=E2=80=9D that, to = your point, does not restrict reads.  That said, = only management protocols having mutual authentication (e.g., SSH = and/or TLS based transport) can access the data.  

 

Is your concern that the = certificate=E2=80=99s content would be visible to the administrators? =  Is your comment on end-entity = certificates (containing personally-identifying information), more than = trust-anchor-certificates?

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 Yes, it=E2=80=99s mostly on end-entity certificates, however there = may be quite a lot of interesting

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 private = information besides certificates.

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 If this = information is only visible to the administrators and the used = management protocols must

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 have mutual = authentication, then it=E2=80=99s probably not a big deal. I would have = still added

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 a sentence = about privacy of the stored data (i.e. that persons, that are allowed to = access this data

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 are able to = learn quite a lot of private information from it). I don=E2=80=99t = insist though, it=E2=80=99s up to you.

 

Section 3.5.
While I understand and support the = idea, expressed in this section, I think that
the way it is expressed = makes it difficult to follow in practice. In general, it's
not always = obvious how to estimate the "strength" of the underlying = secure transport.
For this reason it's not clear for me how it is = supposed to "compare" the
"strength" of the = transport with the "strength" of the keys being = transported.

 

I = saw language like this once in a DoD setting.  I agree that it is = difficult to implement in practice.  I used = =E2=80=9CSHOULD=E2=80=9D (not MUST) to buy some leeway for = implementations to be compliant.  Makes sense?

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 My = understanding of using RFC2119 language is that SHOULD is very close to = MUST,

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 but allows = some exceptions. So, I still think that you put a responsibility to = make

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = security-related decisions on implementers, who often are not experts in = this area.

 

FWIW, my YANG-driven server is able to remember what = key the client used for authentication (e.g., RSA 2048) and register a = callback to test that no greater keys (e.g., 3072 or 4096) are = configured by that client.  Additional

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 What if the = other key configured for the client is X25519? Which is = stronger?

 

logic would be needed to prevent a low-strength client from = *reading* a high-strength key configured by another = client=E2=80=A6though the issue can be alternatively resolved by = configuring the TLS-stack to prevent low-strength = algorithms.

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 That was my = point. I think that it=E2=80=99s better to require (by SHOULD) that = only

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 those = ciphersuites that were =E2=80=9Cvetted=E2=80=9D by IETF (i.e. got = =E2=80=9CRecommended=E2=80=9D status) be used.

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 This will make = implementers=E2=80=99 life easier.

 

In addition, the requirement, that = "Implementations SHOULD fail the write-request if ever
the = strength of the private key is greater then the strength of = the
underlying transport" looks wrong to me. You don't = need to have
1024 bits transport protocol strength to transfer 1024 = bit key, since
even for say 256 bits it's infeasible to = break.

 

IDK about this.  Again, I saw this constraint = once in a DoD setting.  

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 My (another) = point was that there is generally no point to = increase

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 security = strength beyond some level. Currently it is = believed

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 that 128 bit = of symmetric key is infeasible to break (provided the algorithm is not = broken itself),

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 If you are = lucky have full-sized Post Quantum computer, it=E2=80=99ll be 256 = bits.

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 It=E2=80=99s = enough to transfer symmetric keys with say 1024 bits of = entropy

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 (FWIW). So the = requirement that the strength of transport must

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 be always = greater than the strength of transported key

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 seems not a = good requirement to me. Instead require that

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 the strength = of transport be sufficient to make

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 infeasible for = an attacker to break it.

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 =

I think that the better approach would be to advise using = strong
ciphersuites for transport protocols defined in corresponding = RFCs.
For example, for TLS 1.3 there are ciphersuites marked = as "recommended",
that were evaluated by IETF crypto = community.

 

I = added this sentence:

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 Implementations SHOULD configure allowed transport 
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 algorithms to include only those meeting = local

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 policy (e.g., listed as "recommended" by = the IETF).

 

Good?

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 Perfect.

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 Regards,

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = Valery.

Section 3.6:
  For = instance, AES
  using "EBC" SHOULD NOT be used to = encrypt passwords, whereas "CBC"
  mode is okay = since it a unique initialization vector (IV) should = be
  used for each run.

Not only IV for CBC should = be unique, it should be unpredictable (random or pseudo-random).
I = also think that lowercase "should" here must be uppercase, or = even MUST.

 

Replaced =E2=80=9Cunique=E2=80=9D with = =E2=80=9Cunpredictable=E2=80=9D

Replaced =E2=80=9Cshould=E2=80=9D with = MUST.

 

 

Typos, nits:

Section 3.6:
  In = order to thwart rainbow attacks, algorithms that result in = a
  unique output for the same input SHOULD be used. =

s/SHOULD/SHOULD = NOT

 

Egads - fixed!

 



  For instance, AES
  using = "EBC" SHOULD NOT be used to encrypt passwords, whereas = "CBC"
  mode is okay since it a unique = initialization vector (IV) should be
  used for each = run.

s/EBC/ECB
s/it//
I believe "okay' is a bit of = slang, isn't it?

 

Fixed, now reads:

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 In order to thwart rainbow attacks, algorithms that = result
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 in a unique output for the same input SHOULD NOT be = used.

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 For instance, AES using "ECB" SHOULD NOT be = used to

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 encrypt passwords, whereas "CBC" mode is = permissible

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 since an unpredictable initialization vector (IV) = MUST be

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2= =A0 used for each use.</t>

 

Section 3.8:
  Since the module in this = document only define groupings, these
  considerations are = primarily for the designers of other modules that
  use = these = groupings.

s/define/defines

 

Fixed!

 

 

 

Kent, as author

 

 

------=_NextPart_000_017D_01D79B77.C55A4540-- From nobody Fri Aug 27 09:20:04 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8C83B3A148C; Fri, 27 Aug 2021 09:19:57 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.098 X-Spam-Level: X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=smyslov.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id e7-O6NWPHFMu; Fri, 27 Aug 2021 09:19:52 -0700 (PDT) Received: from direct.host-care.com (direct.host-care.com [198.136.54.115]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E6F0E3A1488; Fri, 27 Aug 2021 09:19:51 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=smyslov.net ; s=default; h=Content-Type:MIME-Version:Message-ID:Date:Subject:In-Reply-To: References:Cc:To:From:Sender:Reply-To:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=ddT5aP/NZfqYe16O1ZQEbWbVYihrGJp1IjEAAVEeLEE=; b=trMNplqtpFawsn7dxcPvYMoX6B XN9gjrFh5BIcZMamDB8x1ROExKsjCx8XaJ4G+LMQUTj+DItP3wsg+AIVXCcHDTj6FERalTUj2QSCQ maNgWX8C4QIUkpKdNjhigE95ts/V20LLB3ldQcNxYzAL8m3BTFVIx9TqnO86P0pE6TLKeSsWWSuq0 f7EnS0rdDEZ407uW3QcE4AYZgly1hvffjPDFuOuG15Z+EVaKu43ltz2tEVUlgsfnw3N2CVxFEjoXq NtVyPCLDMg4q4PMj6tsbNQSK8kUE1ZmVC+LKe4DdAP/w1nvCYg61r2Iz+9RQBlzEcjCK+Z6nNMfnU sON26yiw==; Received: from [93.188.44.204] (port=55235 helo=buildpc) by direct.host-care.com with esmtpsa (TLS1.2) tls TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.93) (envelope-from ) id 1mJea4-0000T5-4K; Fri, 27 Aug 2021 12:19:48 -0400 From: "Valery Smyslov" To: "'Kent Watsen'" Cc: , , References: <162982978380.3381.17549750696257276827@ietfa.amsl.com> <0100017b8819bf19-1f20d528-72e4-462c-884a-6c29eff0769b-000000@email.amazonses.com> <017c01d79b5e$a00a0000$e01e0000$@smyslov.net> In-Reply-To: <017c01d79b5e$a00a0000$e01e0000$@smyslov.net> Date: Fri, 27 Aug 2021 19:19:41 +0300 Message-ID: <018401d79b5f$591b51c0$0b51f540$@smyslov.net> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0185_01D79B78.7E6889C0" X-Mailer: Microsoft Outlook 14.0 Content-Language: ru Thread-Index: AQGndKy5sGszK4BuDx47nymU5VnBUwHC5W7jAisjdPWryGQXwA== X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - direct.host-care.com X-AntiAbuse: Original Domain - ietf.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - smyslov.net X-Get-Message-Sender-Via: direct.host-care.com: authenticated_id: valery@smyslov.net X-Authenticated-Sender: direct.host-care.com: valery@smyslov.net Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-netconf-crypto-types-20 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2021 16:19:58 -0000 This is a multipart message in MIME format. ------=_NextPart_000_0185_01D79B78.7E6889C0 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Spotted a typo in own message =E2=80=93 of course it was meant Quantum = computer, not a Post Quantum one (I have no idea what Post Quantum computer may mean :-), I know only = Post-quantum cryptography). =20 =20 In addition, the requirement, that "Implementations SHOULD fail the = write-request if ever the strength of the private key is greater then the strength of the underlying transport" looks wrong to me. You don't need to have 1024 bits transport protocol strength to transfer 1024 bit key, since even for say 256 bits it's infeasible to break. =20 IDK about this. Again, I saw this constraint once in a DoD setting. =20 =20 My (another) point was that there is generally no point to = increase security strength beyond some level. Currently it is believed that 128 bit of symmetric key is infeasible to break (provided = the algorithm is not broken itself), If you are lucky have full-sized Post Quantum computer, = it=E2=80=99ll be 256 bits. It=E2=80=99s enough to transfer symmetric keys with say 1024 = bits of entropy (FWIW). So the requirement that the strength of transport must be always greater than the strength of transported key=20 seems not a good requirement to me. Instead require that the strength of transport be sufficient to make infeasible for an attacker to break it. =20 ------=_NextPart_000_0185_01D79B78.7E6889C0 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable

Spotted a typo in own message =E2=80=93 of course it was meant = Quantum computer, not a Post Quantum one

(I have no idea what Post Quantum computer may mean :-), I know only = Post-quantum cryptography).

 

 

In addition, the requirement, that = "Implementations SHOULD fail the write-request if ever
the = strength of the private key is greater then the strength of = the
underlying transport" looks wrong to me. You don't = need to have
1024 bits transport protocol strength to transfer 1024 = bit key, since
even for say 256 bits it's infeasible to = break.

 

IDK about this.  Again, I saw this constraint = once in a DoD setting.  

 

          My (another) = point was that there is generally no point to = increase

          security = strength beyond some level. Currently it is = believed

          that 128 bit = of symmetric key is infeasible to break (provided the algorithm is not = broken itself),

          If you are = lucky have full-sized Post Quantum computer, it=E2=80=99ll be 256 = bits.

          It=E2=80=99s = enough to transfer symmetric keys with say 1024 bits of = entropy

          (FWIW). So the = requirement that the strength of transport must

          be always = greater than the strength of transported key

          seems not a = good requirement to me. Instead require that

          the strength = of transport be sufficient to make

          infeasible for = an attacker to break it.

          =

------=_NextPart_000_0185_01D79B78.7E6889C0-- From nobody Fri Aug 27 13:01:16 2021 Return-Path: X-Original-To: secdir@ietf.org Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id D8FE63A13C5; Fri, 27 Aug 2021 13:01:05 -0700 (PDT) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit From: Catherine Meadows via Datatracker To: Cc: draft-ietf-ntp-interleaved-modes.all@ietf.org, last-call@ietf.org, ntp@ietf.org X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <163009446578.19033.10956390674873739814@ietfa.amsl.com> Reply-To: Catherine Meadows Date: Fri, 27 Aug 2021 13:01:05 -0700 Archived-At: Subject: [secdir] Secdir last call review of draft-ietf-ntp-interleaved-modes-06 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2021 20:01:06 -0000 Reviewer: Catherine Meadows Review result: Has Nits I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document extends the Network Time Protocol (NTP) in RFC 5905 with modes called “NTP interleaved modes” that allow principals to delay submitting timestamps. This allows more accurate timestamps to be computed. However, it also introduces certain security risks. In particular, the origin timestamp is repurposed as a cookie that is used to identify a received packet is a response to the last packet sent in the other direction of the association: it is either 0 if the packet is not a response, or if it is a response, it is a copy of either the receive or transmit timestamp, depending on the type of packet. This means that an attacker, even if it is off-path and has no access to the packets themselves, would be able to forge a response if it is able to guess a receive or transmit response. For this reason, it is recommended in the Security Considerations Section that the receive (respectively transmit) timestamps be randomized. It is also pointed out that the NTP interleaved modes are subject to DoS attacks, so that clients SHOULD NOT rely on servers to be able to respond in the interleaved mode. In addition, since zeroing out origin timestamps in order to protect observers from tracking clients moving between networks is not possible, NTP interleaved modes are more vulnerable to such tracking. I think that the authors have done a good job of identifying the security issues that arise with NTP interleaved modes and means for dealing with them. In some places though, the Security Considerations section could be a little bit clearer. I consider the following comments slightly about the nit level, but close enough so I’m marking this as Ready With Nits. 1. The paragraph about security implications of using origin timestamps as cookies has two subjects: off-line attackers guessing origin timestamps in order to spoof responses, and attackers using origin timestamps to track clients. However, I found the presentation a little unclear on this point: the last sentence, that discusses the tracking threat, does not explicitly say that it is introducing a new topic. I would suggest something like: The use of timestamps in NTP interleaved modes also makes clients more vulnerable to tracking as they move between networks, since it is not possible to zero out origin timestamps to protect against such exploitation. You might also want to think about giving this sentence its own paragraph. 2. I had trouble interpreting the following sentence: The NTP state needs to be protected not only between the reception and transmission in order to send the peer a packet with a valid origin timestamp, but all the time to not lose the timestamps which will be needed to complete a measurement when the following packet in the interleaved mode is received. It took me a while to see that what you were saying was NRP state needs to be protected not only between the reception and transmission … , but all the time … . The sentence is so long and carries so much information that I lost the sense of the structure halfway through. It would be better to break it down into shorter sentences, e.g. start with “NRP state needs to be protected not only between the reception and transmission, but all the time.”, and then go into the reasons. From nobody Fri Aug 27 13:28:23 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A67F13A164C; Fri, 27 Aug 2021 13:28:21 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.9 X-Spam-Level: X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dqt65OW2L9oH; Fri, 27 Aug 2021 13:28:19 -0700 (PDT) Received: from mail.networkradius.com (mail.networkradius.com [62.210.147.122]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA2153A164B; Fri, 27 Aug 2021 13:28:15 -0700 (PDT) Received: from [192.168.46.129] (24-52-251-6.cable.teksavvy.com [24.52.251.6]) by mail.networkradius.com (Postfix) with ESMTPSA id C274A216; Fri, 27 Aug 2021 20:28:09 +0000 (UTC) Authentication-Results: NetworkRADIUS; dmarc=none (p=none dis=none) header.from=freeradius.org From: Alan DeKok Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.7\)) Message-Id: <0DA9ABEC-E5F0-4479-B3D7-F03E6BEB7DF9@freeradius.org> Date: Fri, 27 Aug 2021 16:28:07 -0400 To: secdir@ietf.org, draft-ietf-dnsop-dns-tcp-requirements.all@ietf.org X-Mailer: Apple Mail (2.3608.120.23.2.7) Archived-At: Subject: [secdir] Secdir review of draft-ietf-dnsop-dns-tcp-requirements-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2021 20:28:22 -0000 Reviewer: Alan DeKok Review result: Has nits I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. Over all, I think this document is clear, useful and well written. Section 1 says: ... Section 6.1.3.2 to clarify that all DNS resolvers and recursive = MUST support and service both TCP and UDP queries. NIT: bare "recursive" should perhaps be "recursive servers", to match = similar text elsewhere in the document. It may be good to update Section 3 with notes on "head of line = blocking". This text could arguably be in RFC 7766, but having it here = is a reasonable alternative: When using UDP as a transport for DNS, there is no ordering of packets. If a packet is lost, that loss has no effect on subsequent packets sent by that client or server. Unlike UDP, TCP is subject to issues related to Head of Line (HoL) blocking. This occurs when a TCP segment is lost and a subsequent TCP segment arrives out of order. While the DNS implementation can process DNS packets out of order, the semantics of TCP makes this impossible. This limitation can lower the maximum packet processing rate of DNS over TCP. Section 6 says: Developers SHOULD also keep in mind connection reuse, query pipelining, and out-of-order responses when building and testing DNS monitoring applications. It would also be good to note that if the monitoring software tracks = requests and responses, then clients could potentially attack the = monitoring software, too. i.e. by sending large volumes of requests to = "black hole" IPs, which will never get a response. So the monitoring = software should have both timeouts for request/response tracking, and = also limit the total number of request/responses which are monitored. From nobody Fri Aug 27 13:51:07 2021 Return-Path: <0100017b89613006-504db539-c16c-4c87-8772-2b6676e9c295-000000@amazonses.watsen.net> X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 42B813A18B5; Fri, 27 Aug 2021 13:51:03 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.896 X-Spam-Level: X-Spam-Status: No, score=-1.896 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H4=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=amazonses.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YvHCZZbTgZiU; Fri, 27 Aug 2021 13:50:56 -0700 (PDT) Received: from a48-90.smtp-out.amazonses.com (a48-90.smtp-out.amazonses.com [54.240.48.90]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3FA713A18B4; Fri, 27 Aug 2021 13:50:56 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=ug7nbtf4gccmlpwj322ax3p6ow6yfsug; d=amazonses.com; t=1630097453; h=From:Message-Id:Content-Type:Mime-Version:Subject:Date:In-Reply-To:Cc:To:References:Feedback-ID; bh=xR1YvpEQ+4dJZZdDiGLE8SloqxEIwTbteEvkVtHfv0M=; b=dMH1tJR8aiff5tKURsk6SIdwZJfEqiiOdyRDVLHdyDgSTOgbHDFiPZO4XkbJ2IFl A5ERO8NK+WrA+C70kMe2JSS3NP4PZHf/C99bI1TJVXRkSDAz1hef8jqF7D3eTlPbHMM 5JkDy5IrC6um3YKhSk7SR0YKg3nsDU4WQcf5AeBM= From: Kent Watsen Message-ID: <0100017b89613006-504db539-c16c-4c87-8772-2b6676e9c295-000000@email.amazonses.com> Content-Type: multipart/alternative; boundary="Apple-Mail=_D0AC81A2-385D-463C-937B-5ED5A7C76C38" Mime-Version: 1.0 (Mac OS X Mail 14.0 \(3654.120.0.1.13\)) Date: Fri, 27 Aug 2021 20:50:53 +0000 In-Reply-To: <017c01d79b5e$a00a0000$e01e0000$@smyslov.net> Cc: secdir@ietf.org, draft-ietf-netconf-crypto-types.all@ietf.org, "netconf@ietf.org" To: Valery Smyslov References: <162982978380.3381.17549750696257276827@ietfa.amsl.com> <0100017b8819bf19-1f20d528-72e4-462c-884a-6c29eff0769b-000000@email.amazonses.com> <017c01d79b5e$a00a0000$e01e0000$@smyslov.net> X-Mailer: Apple Mail (2.3654.120.0.1.13) Feedback-ID: 1.us-east-1.DKmIRZFhhsBhtmFMNikgwZUWVrODEw9qVcPhqJEI2DA=:AmazonSES X-SES-Outgoing: 2021.08.27-54.240.48.90 Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-netconf-crypto-types-20 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2021 20:51:04 -0000 --Apple-Mail=_D0AC81A2-385D-463C-937B-5ED5A7C76C38 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=utf-8 Hi Valery, > On Aug 27, 2021, at 12:14 PM, Valery Smyslov = wrote: >=20 > Hi Kent, > =20 > thank you for addressing my comments. A bit more inline. All good. =20 =20 > [removing =E2=80=9Clast-call=E2=80=9D alias] > =20 > =20 > Hello Valery. =20 > =20 > Thank you for your SecDir review, it is very much appreciated and = never too late! > =20 > More comments below. > =20 > Thanks, > Kent > =20 >=20 >=20 > On Aug 24, 2021, at 2:29 PM, Valery Smyslov via Datatracker = > wrote: > =20 > Reviewer: Valery Smyslov > Review result: Has Issues >=20 > I have reviewed this document as part of the security directorate's = ongoing > effort to review all IETF documents being processed by the IESG. = These > comments were written primarily for the benefit of the security area = directors. > Document editors and WG chairs should treat these comments just like = any other > last call comments. >=20 > When I was re-assigned to review this draft the indicated deadline was = already > missed by 8 months, so I don't know how relevant the review is. I = reviewed > the latest -20 version of the draft instead of -18, that was = requested. > =20 > Perfect. > =20 >=20 >=20 > The draft defines common YANG data types and groupings useful for = cryptography. > I din't try to check the YANG module itself.=20 >=20 > Issues: >=20 > Shouldn't a Privacy Considerations section be added to the draft? > The draft defines quite a lot of privacy-sensitive information (like = certificates) > with no restriction on read access (as far as I understand). > =20 > =20 > Both the "trust-anchor-cert-grouping=E2=80=9D and = =E2=80=9Cend-entity-cert-grouping=E2=80=9D groupings have = "nacm:default-deny-write=E2=80=9D that, to your point, does not restrict = reads. That said, only management protocols having mutual = authentication (e.g., SSH and/or TLS based transport) can access the = data. =20 > =20 > Is your concern that the certificate=E2=80=99s content would be = visible to the administrators? Is your comment on end-entity = certificates (containing personally-identifying information), more than = trust-anchor-certificates? > =20 > Yes, it=E2=80=99s mostly on end-entity certificates, however = there may be quite a lot of interesting > private information besides certificates. > =20 > If this information is only visible to the administrators = and the used management protocols must=20 > have mutual authentication, then it=E2=80=99s probably not a = big deal. I would have still added > a sentence about privacy of the stored data (i.e. that = persons, that are allowed to access this data > are able to learn quite a lot of private information from = it). I don=E2=80=99t insist though, it=E2=80=99s up to you. I added the following to Section 3.8 (The "ietf-crypto-types" YANG = Module). The "cert-data" node: The "cert-data" node, defined in both the = "trust-anchor-cert-grouping" and "end-entity-cert-grouping" groupings, is = additionally sensitive to read operations, as certificates sometimes convey = personally identifying information (especially end-entity certificates). = However, as it is commonly understood that certificates are "public", = the NACM extension "nacm:default-deny-write" (not "default-deny-all") = has been applied. It is RECOMMENDED that implementations adjust = read-access to certificates to comply with local policy. Is this okay? Separately, I thought about if there are any other values in the module = that may have privacy concerns but was unable to locate any. >> Section 3.5. >> While I understand and support the idea, expressed in this section, I = think that >> the way it is expressed makes it difficult to follow in practice. In = general, it's >> not always obvious how to estimate the "strength" of the underlying = secure transport. >> For this reason it's not clear for me how it is supposed to "compare" = the=20 >> "strength" of the transport with the "strength" of the keys being = transported. All comments from this point to the end regard the Security = Consideration "Strength of Keys Conveyed=E2=80=9D (was "Strength of Keys = Configured=E2=80=9D). I rewrote the section as follows. Can you please = check for accuracy? Strength of Keys Conveyed When accessing key values, it is desireable that = implementations ensure that the strength of the keys being accessed is not = greater than the strength of the underlying secure transport = connection over which the keys are conveyed. However, comparing key = strengths can be complicated and difficult to implement in practice. That said, expert Security opinion suggests that already it = is infeasible to break a 128-bit key using a classical = computer, and=20 thus the concern for conveying higher-strength keys begins = to lose=20 its allure. Implementations SHOULD only use transport algorithms to = those=20 meeting local policy. A reasonable policy may, e.g., state = that=20 only algorithms listed as "recommended" by the IETF be used. Another reasonable policy may be to only use = quantum-resistant=20 algorithms. Thanks! Kent, as author > =20 > I saw language like this once in a DoD setting. I agree that it is = difficult to implement in practice. I used =E2=80=9CSHOULD=E2=80=9D = (not MUST) to buy some leeway for implementations to be compliant. = Makes sense? > =20 > My understanding of using RFC2119 language is that SHOULD is = very close to MUST, > but allows some exceptions. So, I still think that you put a = responsibility to make > security-related decisions on implementers, who often are = not experts in this area. > =20 > FWIW, my YANG-driven server is able to remember what key the client = used for authentication (e.g., RSA 2048) and register a callback to test = that no greater keys (e.g., 3072 or 4096) are configured by that client. = Additional=20 > =20 > What if the other key configured for the client is X25519? = Which is stronger? > =20 > logic would be needed to prevent a low-strength client from *reading* = a high-strength key configured by another client=E2=80=A6though the = issue can be alternatively resolved by configuring the TLS-stack to = prevent low-strength algorithms. > =20 > That was my point. I think that it=E2=80=99s better to = require (by SHOULD) that only > those ciphersuites that were =E2=80=9Cvetted=E2=80=9D by = IETF (i.e. got =E2=80=9CRecommended=E2=80=9D status) be used. > This will make implementers=E2=80=99 life easier. > =20 > In addition, the requirement, that "Implementations SHOULD fail the = write-request if ever > the strength of the private key is greater then the strength of the > underlying transport" looks wrong to me. You don't need to have > 1024 bits transport protocol strength to transfer 1024 bit key, since > even for say 256 bits it's infeasible to break. > =20 > IDK about this. Again, I saw this constraint once in a DoD setting. =20= > =20 > My (another) point was that there is generally no point to = increase > security strength beyond some level. Currently it is = believed > that 128 bit of symmetric key is infeasible to break = (provided the algorithm is not broken itself), > If you are lucky have full-sized Post Quantum computer, = it=E2=80=99ll be 256 bits. > It=E2=80=99s enough to transfer symmetric keys with say 1024 = bits of entropy > (FWIW). So the requirement that the strength of transport = must > be always greater than the strength of transported key=20 > seems not a good requirement to me. Instead require that > the strength of transport be sufficient to make > infeasible for an attacker to break it. > =20 > I think that the better approach would be to advise using strong > ciphersuites for transport protocols defined in corresponding RFCs. > For example, for TLS 1.3 there are ciphersuites marked as = "recommended", > that were evaluated by IETF crypto community. > =20 > I added this sentence: > =20 > Implementations SHOULD configure allowed transport=20 > algorithms to include only those meeting local > policy (e.g., listed as "recommended" by the IETF). > =20 > Good? > =20 > Perfect. > =20 > Regards, > Valery. >=20 --Apple-Mail=_D0AC81A2-385D-463C-937B-5ED5A7C76C38 Content-Transfer-Encoding: quoted-printable Content-Type: text/html; charset=utf-8 Hi = Valery,


On Aug 27, 2021, at 12:14 PM, = Valery Smyslov <valery@smyslov.net> wrote:

Hi Kent,
 
thank you for addressing my comments. A bit more = inline.

All good.  
 

[removing = =E2=80=9Clast-call=E2=80=9D alias]
 
 
Hello Valery.  
 
Thank you for your SecDir review, it is = very much appreciated and never too late!
 
More comments below.
 
Thanks,
Kent
 


On Aug 24, 2021, at 2:29 PM, Valery Smyslov via = Datatracker <noreply@ietf.org> = wrote:
 
Reviewer: = Valery Smyslov
Review result: Has Issues

I have reviewed this document as part of the security = directorate's ongoing
effort to review all IETF documents = being processed by the IESG.  These
comments were = written primarily for the benefit of the security area directors.
Document editors and WG chairs should treat these comments = just like any other
last call comments.

When I was re-assigned to review this draft the indicated = deadline was already
missed by 8 months, so I don't know = how relevant the review is. I reviewed
the latest -20 = version of the draft instead of -18, that was requested.
 
Perfect.
 


The draft defines common = YANG data types and groupings useful for cryptography.
I = din't try to check the YANG module itself. 

Issues:

Shouldn't a Privacy = Considerations section be added to the draft?
The draft = defines quite a lot of privacy-sensitive information (like = certificates)
with no restriction on read access (as far = as I understand).
 
 
Both the "trust-anchor-cert-grouping=E2=80= =9D and =E2=80=9Cend-entity-cert-grouping=E2=80=9D groupings = have "nacm:default-deny-write=E2=80=9D = that, to your point, does not restrict reads.  That said, = only management protocols having mutual authentication (e.g., SSH = and/or TLS based transport) can access the data.  
 
Is your concern that the certificate=E2=80=99s = content would be visible to the administrators?  Is your comment on end-entity certificates = (containing personally-identifying information), more than = trust-anchor-certificates?
 
          Yes, it=E2=80=99s mostly on end-entity = certificates, however there may be quite a lot of interesting
          = private information besides certificates.
 
          If = this information is only visible to the administrators and the used = management protocols must 
          have = mutual authentication, then it=E2=80=99s probably not a big deal. I = would have still added
          a = sentence about privacy of the stored data (i.e. that persons, that are = allowed to access this data
          are = able to learn quite a lot of private information from it). I don=E2=80=99t= insist though, it=E2=80=99s up to you.

I added the following = to Section 3.8 (The "ietf-crypto-types" YANG Module).

            =  The "cert-data" node:

 =                  The = "cert-data" node, defined in both the = "trust-anchor-cert-grouping"
        =             and = "end-entity-cert-grouping" groupings, is additionally sensitive = to
                =     read operations, as certificates sometimes = convey personally identifying
        =             information (especially = end-entity certificates).  However, as it is
                =     commonly understood that certificates are = "public", the NACM extension
        =             "nacm:default-deny-write" = (not "default-deny-all") has been applied. It
  =                   is = RECOMMENDED that implementations adjust read-access to = certificates
            =         to comply with local policy.

Is this okay?

Separately, I thought about if there are any other = values in the module that may have privacy concerns but was unable to = locate any.


Section 3.5.
While I understand and = support the idea, expressed in this section, I think that
the way it is expressed makes it difficult to follow in = practice. In general, it's
not always obvious how to = estimate the "strength" of the underlying secure transport.
For this reason it's not clear for me how it is supposed to = "compare" the 
"strength" of the transport with the "strength" of the keys = being transported.


All comments from this point to the = end regard the Security Consideration "Strength of Keys Conveyed=E2=80=9D = (was "Strength of Keys Configured=E2=80=9D= ).  I rewrote the section as follows.  Can you please check = for accuracy?

    =   Strength of Keys Conveyed

      =      When accessing key values, it is = desireable that implementations
      =       ensure that the strength of the keys = being accessed is not greater
      =       than the strength of the underlying = secure transport connection
      =       over which the keys are = conveyed.  However, comparing key strengths
            can be = complicated and difficult to implement in practice.

           That said, expert = Security opinion suggests that already it is
  =           infeasible to break a 128-bit = key using a classical computer, and 
  =           thus the concern for conveying = higher-strength keys begins to lose 
    =         its allure.

          =   Implementations SHOULD only use transport algorithms to = those 
          =   meeting local policy.  A reasonable = policy may, e.g., state that 
    =         only algorithms listed as "recommended" = by the IETF be used.
        =     Another reasonable policy may be to only = use quantum-resistant 
      =       algorithms.

Thanks!
Kent, as author


 
I saw language like this once in a DoD = setting.  I agree that it is difficult to implement in practice. =  I used =E2=80=9CSHOULD=E2=80=9D (not MUST) to buy some leeway for = implementations to be compliant.  Makes sense?
 
          My = understanding of using RFC2119 language is that SHOULD is very close to = MUST,
          but = allows some exceptions. So, I still think that you put a responsibility = to make
          = security-related decisions on implementers, who often are not experts in = this area.
 
FWIW, my = YANG-driven server is able to remember what key the client used for = authentication (e.g., RSA 2048) and register a callback to test that no = greater keys (e.g., 3072 or 4096) are configured by that client. =  Additional 
 
          What = if the other key configured for the client is X25519? Which is = stronger?
 
logic = would be needed to prevent a low-strength client from *reading* a = high-strength key configured by another client=E2=80=A6though the issue = can be alternatively resolved by configuring the TLS-stack to prevent = low-strength algorithms.
 
          That = was my point. I think that it=E2=80=99s better to require (by SHOULD) = that only
          those = ciphersuites that were =E2=80=9Cvetted=E2=80=9D by IETF (i.e. got = =E2=80=9CRecommended=E2=80=9D status) be used.
          This = will make implementers=E2=80=99 life easier.
 
In addition, the requirement, that = "Implementations SHOULD fail the write-request if ever
the = strength of the private key is greater then the strength of the
underlying transport" looks wrong to me. You don't need to = have
1024 bits transport protocol strength to transfer = 1024 bit key, since
even for say 256 bits it's infeasible = to break.
 
IDK about this.  Again, I saw this = constraint once in a DoD setting.  
 
          My = (another) point was that there is generally no point to increase
          = security strength beyond some level. Currently it is believed
          that = 128 bit of symmetric key is infeasible to break (provided the algorithm = is not broken itself),
          If you = are lucky have full-sized Post Quantum computer, it=E2=80=99ll be 256 = bits.
          It=E2=80= =99s enough to transfer symmetric keys with say 1024 bits of entropy
          = (FWIW). So the requirement that the strength of transport must
          be = always greater than the strength of transported key 
          seems = not a good requirement to me. Instead require that
          the = strength of transport be sufficient to make
          = infeasible for an attacker to break it.
          
I think that the better approach would be to advise using = strong
ciphersuites for transport protocols defined in = corresponding RFCs.
For example, for TLS 1.3 there = are ciphersuites marked as "recommended",
that were = evaluated by IETF crypto community.
 
I added this sentence:
 
        &= nbsp; Implementations = SHOULD configure allowed = transport 
        &= nbsp; algorithms = to include only those meeting local
        &= nbsp; policy = (e.g., listed as "recommended" by the IETF).
 
Good?
 
          Perfect.
 
          Regards,
          = Valery.

<= br class=3D"">
= --Apple-Mail=_D0AC81A2-385D-463C-937B-5ED5A7C76C38-- From nobody Fri Aug 27 16:05:22 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D184C3A1D87; Fri, 27 Aug 2021 16:05:19 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.099 X-Spam-Level: X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=verisign.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BnJ3ImM4tHgK; Fri, 27 Aug 2021 16:05:13 -0700 (PDT) Received: from mail3.verisign.com (mail3.verisign.com [72.13.63.32]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0340A3A1D85; Fri, 27 Aug 2021 16:05:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=verisign.com; l=9063; q=dns/txt; s=VRSN; t=1630105513; h=from:to:cc:date:message-id:references:in-reply-to: mime-version:subject; bh=Auhokxn15UNg7SBhF0JaNUZBZhWcd5IkgwN0codDHJo=; b=dyJXDT6yhrqaBlEuQnz+33GgcE2prRUrEqWiQZnb9gdSJ7pE5LHnVC40 in5K/DhyNtfhrINEhXw7k2qmFZARIpWfUYEQH2kep/1uQKAH4+PHBRF2q 56VtoFVjQJT3b5OeSdk+38cAaasG6WSFCyFOEFHYGM0dgyi2TnaKUp+Zo JKkBDHnPgsqorpRLLrHY4XvnhdGHbL8HNO/l7Q3Vf2nC44CME/MXt8Ed5 C6/hsDC1amwNYUyH6kTorcvyarKtxVbWoUIvi2LW36rD3HNp+TCT/tPgJ VOex5C63uPjxxj7JrzXM+nEKASue8FfBiK4H+hl3fOlnKDHvuRzHjUV82 Q==; IronPort-SDR: fP9KxizFDah8pnvNixyW0g+Ko9MShsB2oiEQPzBqRLcW4Pi14VwJuP2HguUzjOx/lJI7jpz7ko y1XU0iPQaD77za9C6916V+HQ2zMXQuRhiwa/ES8TkQ50r+taRZkki1DlLtn3q63tbwdG5plaEN w/tDnwiypFBMO8dVOP/I+oxQfn36aCWxIacWjoauvIC1hMTU3cflPn7x7/crYoTX/9e6pMCDMZ VS8SH+3idBn41MLjX7MEUg5DXMrNxDiqCcs3kZoD1DLwt3SidCQrYIJS+wDAiV2WfrRLRckA/5 qP4= IronPort-HdrOrdr: A9a23:C3QY76PlzFHjXsBcThyjsMiBIKoaSvp037BN7TEVdfU1SL37qy nAppQmPHPP5gr5O0tOpTnoAsDpfZq2z+8X3WB+B9afdTijlmeuIJpr8IfuhxbxcheTysdtkY NtabJ3BtG1L1Rr5PyR3CCIV/It2sOO/qztv/rZ1HsFd2xXQrtt9Bh0ETyWFUBKRA1LbKBTKK ah X-IronPort-AV: E=Sophos; i="5.84,357,1620691200"; d="p7s'?scan'208"; a="9768751" Received: from BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) by BRN1WNEX01.vcorp.ad.vrsn.com (10.173.153.48) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2308.8; Fri, 27 Aug 2021 19:05:11 -0400 Received: from BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d]) by BRN1WNEX01.vcorp.ad.vrsn.com ([fe80::a89b:32d6:b967:337d%4]) with mapi id 15.01.2308.008; Fri, 27 Aug 2021 19:05:11 -0400 From: "Wessels, Duane" To: Alan DeKok CC: "secdir@ietf.org" , "draft-ietf-dnsop-dns-tcp-requirements.all@ietf.org" Thread-Topic: [EXTERNAL] Secdir review of draft-ietf-dnsop-dns-tcp-requirements-12 Thread-Index: AQHXm4IW1D9iX4Pn7k6ITpXUHmZR5auIPACA Date: Fri, 27 Aug 2021 23:05:10 +0000 Message-ID: References: <0DA9ABEC-E5F0-4479-B3D7-F03E6BEB7DF9@freeradius.org> In-Reply-To: <0DA9ABEC-E5F0-4479-B3D7-F03E6BEB7DF9@freeradius.org> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: yes X-MS-TNEF-Correlator: x-mailer: Apple Mail (2.3608.120.23.2.7) x-originating-ip: [10.170.148.18] Content-Type: multipart/signed; boundary="Apple-Mail=_0ADE64AA-32DA-4700-88A9-476508B1D605"; protocol="application/pkcs7-signature"; micalg=sha-256 MIME-Version: 1.0 Archived-At: Subject: Re: [secdir] Secdir review of draft-ietf-dnsop-dns-tcp-requirements-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 27 Aug 2021 23:05:20 -0000 --Apple-Mail=_0ADE64AA-32DA-4700-88A9-476508B1D605 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii > On Aug 27, 2021, at 1:28 PM, Alan DeKok wrote: >=20 > Caution: This email originated from outside the organization. Do not = click links or open attachments unless you recognize the sender and know = the content is safe.=20 >=20 > Reviewer: Alan DeKok > Review result: Has nits Thanks for the review Alan. >=20 > I have reviewed this document as part of the security directorate's > ongoing effort to review all IETF documents being processed by the > IESG. These comments were written primarily for the benefit of the > security area directors. Document editors and WG chairs should treat > these comments just like any other last call comments. >=20 > Over all, I think this document is clear, useful and well written. >=20 > Section 1 says: >=20 > ... Section 6.1.3.2 to clarify that all DNS resolvers and recursive = MUST > support and service both TCP and UDP queries. >=20 > NIT: bare "recursive" should perhaps be "recursive servers", to match = similar text elsewhere in the document. Yep, I'll make that change. >=20 >=20 > It may be good to update Section 3 with notes on "head of line = blocking". This text could arguably be in RFC 7766, but having it here = is a reasonable alternative: >=20 > When using UDP as a transport for DNS, there is no ordering of > packets. If a packet is lost, that loss has no > effect on subsequent packets sent by that client or server. >=20 > Unlike UDP, TCP is subject to issues related to Head of Line (HoL) > blocking. This occurs when a TCP segment is lost and a subsequent > TCP segment arrives out of order. While the DNS implementation can > process DNS packets out of order, the semantics of TCP makes this > impossible. This limitation can lower the maximum packet processing > rate of DNS over TCP. Can you clarify by what you mean with "While the DNS implementation can process DNS packets out of order, the semantics of TCP makes this = impossible." Do you mean in the case of a lost TCP segment, or in general? I wonder if this might fit equally well under a new 2.x subsection. >=20 >=20 > Section 6 says: >=20 > Developers SHOULD also keep in mind connection reuse, query > pipelining, and out-of-order responses when building and testing DNS > monitoring applications. >=20 > It would also be good to note that if the monitoring software tracks = requests and responses, then clients could potentially attack the = monitoring software, too. i.e. by sending large volumes of requests to = "black hole" IPs, which will never get a response. So the monitoring = software should have both timeouts for request/response tracking, and = also limit the total number of request/responses which are monitored. Yes, thats a good point. I will come up with some text for that. DW --Apple-Mail=_0ADE64AA-32DA-4700-88A9-476508B1D605 Content-Disposition: attachment; filename="smime.p7s" Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCCDOIw ggYfMIIFB6ADAgECAhADuA0Dc6a64oQdstGwJ3SrMA0GCSqGSIb3DQEBCwUAMGUxCzAJBgNVBAYT AlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5kaWdpY2VydC5jb20xJDAi BgNVBAMTG0RpZ2lDZXJ0IEFzc3VyZWQgSUQgUm9vdCBHMjAeFw0xOTA2MDQxMjM2MjBaFw0yOTA2 MDQxMjM2MjBaMG8xCzAJBgNVBAYTAlVTMRcwFQYDVQQKEw5EaWdpQ2VydCwgSW5jLjFHMEUGA1UE AxM+RGlnaUNlcnQgUEtJIFBsYXRmb3JtIEMyIFNoYXJlZCBTTUlNRSBJbmRpdmlkdWFsIFN1YnNj cmliZXIgQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmay8IyCiMMl3lgLo6BSrd LBKvx0U1KZR/8PzvS/rsZDBQJLuVgmOTaBxUrNqo9WtejI9me5HihbHKE9BtydcyC8f+8cOQOX3h Ojs0SZr2P9eXAR8SWf0p/Q/1NkYRorjjPo4z0RovEnX/cl0of7Cny0fW65tMBt/exaxQTso6Ea1i RF9U8bf6ZsFkevsNt1WKSY9X/QvWUhfoZb4fsoa8JUZkJMzb12wS/cLnWhaO5G7cqZ+E2KqhuqlP CrlUGFNVuaPcGsuZRy2X1ByMgA4VIIwNNG0RlPa+KSqpixO6RK7kWTlt5BGhgtKw7MnuDcLtM2Bc SyaPIEqZnapn5qf7AgMBAAGjggK/MIICuzAdBgNVHQ4EFgQU3LcfIDF0S5Qadq2Dgq34xqPwRF8w HwYDVR0jBBgwFoAUzsNKuZlV8rjbYL+pfr1WtZc2p9YwDgYDVR0PAQH/BAQDAgGGMEwGA1UdJQRF MEMGCCsGAQUFBwMCBggrBgEFBQcDBAYKKwYBBAGCNwoDBAYKKwYBBAGCNxQCAgYKKwYBBAGCNwoD DAYJKoZIhvcvAQEFMBIGA1UdEwEB/wQIMAYBAf8CAQAwNAYIKwYBBQUHAQEEKDAmMCQGCCsGAQUF BzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wgYEGA1UdHwR6MHgwOqA4oDaGNGh0dHA6Ly9j cmwzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEFzc3VyZWRJRFJvb3RHMi5jcmwwOqA4oDaGNGh0dHA6 Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEFzc3VyZWRJRFJvb3RHMi5jcmwwggEiBgNVHSAE ggEZMIIBFTCCAREGCWCGSAGG/WwFAjCCAQIwKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2lj ZXJ0LmNvbS9DUFMwgdUGCCsGAQUFBwICMIHIDIHFQW55IHVzZSBvZiB0aGlzIENlcnRpZmljYXRl IGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIERpZ2lDZXJ0IENQL0NQUyBhbmQgUmVseWlu ZyBQYXJ0eSBBZ3JlZW1lbnQgd2hpY2ggbGltaXQgbGlhYmlsaXR5IGFuZCBhcmUgaW5jb3Jwb3Jh dGVkIGhlcmVpbiBieSByZWZlcmVuY2UuIGh0dHBzOi8vd3d3LmRpZ2ljZXJ0LmNvbS9ycGEtdWEw JwYDVR0RBCAwHqQcMBoxGDAWBgNVBAMTD0RpZ2lDZXJ0UEtJLTMtMjANBgkqhkiG9w0BAQsFAAOC AQEAFTczZjttMnThPMxQyeeuZ/VeQHCNNqxCze644O19xXE0Wt3qBx1VRU/QdL4kPtAWvg9sMHhQ tLvp9ySna4uF5+ffFQeHUbX12yBrfmgATdKHP2noPeyVCXnculSqsF/F/854dBW9Z1jfMtvxp/qb TPOf9d5d1mxt+mJ4sDfvd0wl3U2wVCJMUbSXjs8alHeU6ematIwXios5sn2cQcIpMtm/ySjYvhh4 G1DMUrQdpJZTBovuXh8yA3Urq8ZgmBd6mzem450LB48fa6TQyRUZJfr26Ke8EOrBEKLovi+iTCMQ bQsR+4TEsJlJBPemkwqpcfI4V3GVYQjq63ECC2ftATCCBrswggWjoAMCAQICEAr0ASWGduRZuIOf XBBcJ+4wDQYJKoZIhvcNAQELBQAwbzELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDkRpZ2lDZXJ0LCBJ bmMuMUcwRQYDVQQDEz5EaWdpQ2VydCBQS0kgUGxhdGZvcm0gQzIgU2hhcmVkIFNNSU1FIEluZGl2 aWR1YWwgU3Vic2NyaWJlciBDQTAeFw0yMTAzMjQwMDAwMDBaFw0yMjA0MjIyMzU5NTlaMHAxJDAi BgkqhkiG9w0BCQEWFWR3ZXNzZWxzQHZlcmlzaWduLmNvbTEXMBUGA1UEAwwOV2Vzc2VscywgRHVh bmUxFjAUBgNVBAsMDUVOVEVSUFJJU0UgSVQxFzAVBgNVBAoMDlZlcmlTaWduLCBJbmMuMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYSHCx5uh9XazjWbg98gX0iCVG+J/n6Nmf8NC36u by0TWBVZHjfPhbW2mJxoxytCiNYguOuCMVC9cgQpBLxjq2U5siM0l1A9vruJXIL4YKGZ9fXqbY5U QgFhbVOnO2vrbb7JTrJBSzBT0vEvzC2+JtCZm6dG52ayw7pNpGMozj265bXFVZkR0gfpc46yR+pn w42jdaD3TvZTCucUlfGplPblRL/NsZcDiYWL/zc5BJjk1/FK9XvK7chJHnw0mkuQo0w7rV/uet3g V5KiIfC4OPtZnkQxPOoGcMqH3M5NMOgqjpYZgVFFKQC5sdLZJ4sQdHsfKTvwXAdaxtUFdak9OwID AQABo4IDUDCCA0wwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBaAwFgYDVR0lAQH/BAwwCgYI KwYBBQUHAwQwHQYDVR0OBBYEFFaFSmgtcRDwfRFiqt3Vq8LJCLn5MCAGA1UdEQQZMBeBFWR3ZXNz ZWxzQHZlcmlzaWduLmNvbTAfBgNVHSMEGDAWgBTctx8gMXRLlBp2rYOCrfjGo/BEXzB/BggrBgEF BQcBAQRzMHEwKAYIKwYBBQUHMAGGHGh0dHA6Ly9wa2ktb2NzcC5kaWdpY2VydC5jb20wRQYIKwYB BQUHMAKGOWh0dHA6Ly9jYWNlci5zeW1hdXRoLmNvbS9tcGtpL2RpZ2ljZXJ0YzJzaGFyZWRzbWlt ZWNhLmNydDBdBgNVHR8EVjBUMFKgUKBOhkxodHRwOi8vcGtpLWNybC5zeW1hdXRoLmNvbS9jYV80 YjVkNWZkM2IyNjUxYjM1MjI5MGUzNjQ2YWJjYzAwMS9MYXRlc3RDUkwuY3JsMIIBIgYDVR0gBIIB GTCCARUwggERBglghkgBhv1sBQIwggECMCgGCCsGAQUFBwIBFhxodHRwczovL3d3dy5kaWdpY2Vy dC5jb20vQ1BTMIHVBggrBgEFBQcCAjCByBqBxUFueSB1c2Ugb2YgdGhpcyBDZXJ0aWZpY2F0ZSBj b25zdGl0dXRlcyBhY2NlcHRhbmNlIG9mIHRoZSBEaWdpQ2VydCBDUC9DUFMgYW5kIFJlbHlpbmcg UGFydHkgQWdyZWVtZW50IHdoaWNoIGxpbWl0IGxpYWJpbGl0eSBhbmQgYXJlIGluY29ycG9yYXRl ZCBoZXJlaW4gYnkgcmVmZXJlbmNlLiBodHRwczovL3d3dy5kaWdpY2VydC5jb20vcnBhLXVhMEIG CSqGSIb3DQEJDwQ1MDMwCgYIKoZIhvcNAwcwCwYJYIZIAWUDBAECMAsGCWCGSAFlAwQBFjALBglg hkgBZQMEASowLQYKYIZIAYb4RQEQAwQfMB0GE2CGSAGG+EUBEAECAgEBg77/jiwWBjI0NzY2NDA5 BgpghkgBhvhFARAFBCswKQIBABYkYUhSMGNITTZMeTl3YTJrdGNtRXVjM2x0WVhWMGFDNWpiMjA9 MA0GCSqGSIb3DQEBCwUAA4IBAQB0IgeZtJzCYl/O/AcgmSfN3ZeHBvT9eCQJrYrEebI/csxa0Doe 5nPeLteEwaXgn1hE7ZVWcGNSTU5Yv78OnPs3ECg0VQLQSOs8psFS3pH5evSDnehj4tbCiNgf8S1R w3r6Eyb47nMIzL2OVZKhExdTPP2nrDIRrJyhvlcNs4Z/9ocCa7WTCCnNxaZpvlrRHmuL/wTehJ8V TlTt+6deCU3H/2Gte4jr7V4nsl/HPWv15O9YtM20Bc3PxWqVJiP+oGhHHivvsBA8QF2s3RBSebbG HfFfmC1cZfeEit2b0sUzMuXNkhlheEe2D1bBDzZQ9jHZfFHfXQrC93x1ZeUyu4UwMYIDTDCCA0gC AQEwgYMwbzELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDkRpZ2lDZXJ0LCBJbmMuMUcwRQYDVQQDEz5E aWdpQ2VydCBQS0kgUGxhdGZvcm0gQzIgU2hhcmVkIFNNSU1FIEluZGl2aWR1YWwgU3Vic2NyaWJl ciBDQQIQCvQBJYZ25Fm4g59cEFwn7jANBglghkgBZQMEAgEFAKCCAZkwGAYJKoZIhvcNAQkDMQsG CSqGSIb3DQEHATAcBgkqhkiG9w0BCQUxDxcNMjEwODI3MjMwNTA5WjAvBgkqhkiG9w0BCQQxIgQg qgz8OrChjHla5goUYLFZ/nOQgl/GHOc8/SSlJM8QcggwgZQGCSsGAQQBgjcQBDGBhjCBgzBvMQsw CQYDVQQGEwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xRzBFBgNVBAMTPkRpZ2lDZXJ0IFBL SSBQbGF0Zm9ybSBDMiBTaGFyZWQgU01JTUUgSW5kaXZpZHVhbCBTdWJzY3JpYmVyIENBAhAK9AEl hnbkWbiDn1wQXCfuMIGWBgsqhkiG9w0BCRACCzGBhqCBgzBvMQswCQYDVQQGEwJVUzEXMBUGA1UE ChMORGlnaUNlcnQsIEluYy4xRzBFBgNVBAMTPkRpZ2lDZXJ0IFBLSSBQbGF0Zm9ybSBDMiBTaGFy ZWQgU01JTUUgSW5kaXZpZHVhbCBTdWJzY3JpYmVyIENBAhAK9AElhnbkWbiDn1wQXCfuMA0GCSqG SIb3DQEBAQUABIIBAIhPwlUgJ02komliU3Gk8XoW87AL3lzGuLyGUNpvtbK+8dBCbfjMf4xgDQEu uMvlXOa+0P4tNP+yQ/kqi3ULg+Pa4+d8jYzqOTl6FBY1S4DIQN7Di/NLYvR8Rg/CkG4a7Cx2G6CK E7LMefTUxEPh5mL2s1gcxUO/9Y0b4d5/s8Fs5xYCwkZp4irqkamceVErUsXC341LOtwtDB94/47J KdihYpeQVVWTV3o75IeoN34U5q62jkeaLyC1n/hH5CJj0iwxmsYt/LRGr9COCap28WwBrCw4UKmY N7QtY8jfEDAcVAurnHYZSQ2B/3fxeT9KdulZtFLmfpSw/1JgrBHpWiAAAAAAAAA= --Apple-Mail=_0ADE64AA-32DA-4700-88A9-476508B1D605-- From nobody Fri Aug 27 18:31:18 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AF9843A252E; Fri, 27 Aug 2021 18:31:14 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OkiS8vsy2C6z; Fri, 27 Aug 2021 18:31:09 -0700 (PDT) Received: from mail.networkradius.com (mail.networkradius.com [62.210.147.122]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 130123A252B; Fri, 27 Aug 2021 18:31:08 -0700 (PDT) Received: from [192.168.46.129] (24-52-251-6.cable.teksavvy.com [24.52.251.6]) by mail.networkradius.com (Postfix) with ESMTPSA id 2F322821; Sat, 28 Aug 2021 01:31:01 +0000 (UTC) Authentication-Results: NetworkRADIUS; dmarc=none (p=none dis=none) header.from=freeradius.org From: Alan DeKok Message-Id: <06AA66B5-B511-4275-8995-27921240B9E6@freeradius.org> Content-Type: multipart/signed; boundary="Apple-Mail=_5F26C5A2-6405-4EE3-B731-B08F7D7A149C"; protocol="application/pgp-signature"; micalg=pgp-sha256 Mime-Version: 1.0 (Mac OS X Mail 13.4 \(3608.120.23.2.7\)) Date: Fri, 27 Aug 2021 21:31:00 -0400 In-Reply-To: Cc: "draft-ietf-dnsop-dns-tcp-requirements.all@ietf.org" , "secdir@ietf.org" To: "Wessels, Duane" References: <0DA9ABEC-E5F0-4479-B3D7-F03E6BEB7DF9@freeradius.org> X-Mailer: Apple Mail (2.3608.120.23.2.7) Archived-At: Subject: Re: [secdir] Secdir review of draft-ietf-dnsop-dns-tcp-requirements-12 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 28 Aug 2021 01:31:15 -0000 --Apple-Mail=_5F26C5A2-6405-4EE3-B731-B08F7D7A149C Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii On Aug 27, 2021, at 7:05 PM, Wessels, Duane = wrote: > Can you clarify by what you mean with "While the DNS implementation = can > process DNS packets out of order, the semantics of TCP makes this = impossible." > Do you mean in the case of a lost TCP segment, or in general? I mean that DNS has no inter-packet dependencies or ordering. But = when DNS is transported over TCP, TCP enforces ordering, because it's a = stream protocol. If a client sends packets N, N+1, N+2 over UDP, then losing packet N = has no impact on N+1 or N+2. However, when TCP is used, the OS has to = do TCP ACK signalling, and send packet N before N+1 or N+2 can be = processed. That sequencing is a limitation of TCP, and not of DNS. But it still = affects DNS. > I wonder if this might fit equally well under a new 2.x subsection. Sure. Alan DeKok. --Apple-Mail=_5F26C5A2-6405-4EE3-B731-B08F7D7A149C Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEE8n1lTTL4FC4LtEWpfQ55zXdiHs0FAmEpkdQACgkQfQ55zXdi Hs14KAf/YvRxGRNzzyNh93mmxV5cRyn9A6fIaogghOJVq7lvcJfMxMvNwmPkexWg hwUgRzhZFrMM3FF6jKt1T6dpWQoAvmWh95w98M8lHQ4d2Zo0EiOlHCIhR5Aoxsnj 5aj6Gy8FEX2S6eJEZh8Kj878errNi0o60eMJEalMuCEz+Q9wLOtBVctFqIVwW2vb PZhe1hVoJKlf1fxHUhzNTE7Y2LZHk8JcrVWt+5CYL52k9rgS6iEpYWd1XOb6tq3X SgkZD9EvnUvid0P/+oFwdtGx1ybAwfccT8+ZuPH1ndy5uhckoR8KNHovjift6Ccd sqd2KB3p9LswXzmrHVT8j9BR4eRjuA== =eFr+ -----END PGP SIGNATURE----- --Apple-Mail=_5F26C5A2-6405-4EE3-B731-B08F7D7A149C-- From nobody Mon Aug 30 00:40:41 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 249523A183E; Mon, 30 Aug 2021 00:40:06 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.899 X-Spam-Level: X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id H--zgZx1okyt; Mon, 30 Aug 2021 00:40:00 -0700 (PDT) Received: from mx3.uni-regensburg.de (mx3.uni-regensburg.de [194.94.157.148]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6431A3A183B; Mon, 30 Aug 2021 00:39:55 -0700 (PDT) Received: from mx3.uni-regensburg.de (localhost [127.0.0.1]) by localhost (Postfix) with SMTP id F07196000051; Mon, 30 Aug 2021 09:39:49 +0200 (CEST) Received: from gwsmtp.uni-regensburg.de (gwsmtp1.uni-regensburg.de [132.199.5.51]) by mx3.uni-regensburg.de (Postfix) with ESMTP id 710F9600004D; Mon, 30 Aug 2021 09:39:44 +0200 (CEST) Received: from uni-regensburg-smtp1-MTA by gwsmtp.uni-regensburg.de with Novell_GroupWise; Mon, 30 Aug 2021 09:39:44 +0200 Message-Id: <612C8B3F020000A100043912@gwsmtp.uni-regensburg.de> X-Mailer: Novell GroupWise Internet Agent 18.3.1 Date: Mon, 30 Aug 2021 09:39:43 +0200 From: "Ulrich Windl" To: , Cc: , ,"ntp@ietf.org" References: <163009446578.19033.10956390674873739814@ietfa.amsl.com> In-Reply-To: <163009446578.19033.10956390674873739814@ietfa.amsl.com> Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Content-Disposition: inline Archived-At: Subject: [secdir] Antw: [EXT] [Ntp] Secdir last call review of draft-ietf-ntp-interleaved-modes-06 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 30 Aug 2021 07:40:07 -0000 >>> Catherine Meadows via Datatracker schrieb am 27.08.2021 um 22:01 in Nachricht <163009446578.19033.10956390674873739814@ietfa.amsl.com>: ... > 2. I had trouble interpreting the following sentence: > > The > NTP state needs to be protected not only between the reception and My guess is that "protected" (prevent access) actually means "preserved" (kept for later reading) here. > transmission in order to send the peer a packet with a valid origin > timestamp, but all the time to not lose the timestamps which will be > needed to complete a measurement when the following packet in the > interleaved mode is received. > > It took me a while to see that what you were saying was NRP state needs to > be > protected not only between the reception and transmission … , but all the > time > … . The sentence is so long and carries so much information that I lost the > sense of the structure halfway through. It would be better to break it down > into shorter sentences, e.g. start with “NRP state needs to be protected not > only between the reception and transmission, but all the time.”, and then go > into the reasons. > > > > _______________________________________________ > ntp mailing list > ntp@ietf.org > https://www.ietf.org/mailman/listinfo/ntp From nobody Tue Aug 31 00:56:34 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B1F03A3763; Tue, 31 Aug 2021 00:56:13 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.098 X-Spam-Level: X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=smyslov.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5S7aOfowizco; Tue, 31 Aug 2021 00:56:07 -0700 (PDT) Received: from direct.host-care.com (direct.host-care.com [198.136.54.115]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A9DE03A3761; Tue, 31 Aug 2021 00:56:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=smyslov.net ; s=default; h=Content-Type:MIME-Version:Message-ID:Date:Subject:In-Reply-To: References:Cc:To:From:Sender:Reply-To:Content-Transfer-Encoding:Content-ID: Content-Description:Resent-Date:Resent-From:Resent-Sender:Resent-To:Resent-Cc :Resent-Message-ID:List-Id:List-Help:List-Unsubscribe:List-Subscribe: List-Post:List-Owner:List-Archive; bh=biQPn0sYKpES3YLipMAPnhiVH8u9WhGjSq/TWLtQRHs=; b=qKWPeLHCuAK76hIlYnFNhi6BOE i8SvQAqCa2LTi/RxQ9igPdYdGjFsp10dy/XuT3RBAGTF+arbgFTQ8eHyQLt8KLlB3QQrdR6pEzQCr 1Ytxz6Fh+8Haur5JHptWYFzC2tMD+SMxCXj0vAA6lA4E3sdrUcLlP9nY3cmH60r8Pr6R+M3qC+0RX 6gX79yk7CTLCTbQto27uwnjP6bAdqFFuPsw780fULM8iTTmXf3b0ZRAkj2DmwRNTkc/cTvV/8xPSI XvEymk8wg7vmmfdOg9xlVQ4yzuOctH867/5inehW3p3Ao6jPiS8HaBB0stuspJ9WW/HRc4K44U98v OwidMvrg==; Received: from [93.188.44.204] (port=61675 helo=buildpc) by direct.host-care.com with esmtpsa (TLS1.2) tls TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.93) (envelope-from ) id 1mKycj-00033h-Cn; Tue, 31 Aug 2021 03:56:02 -0400 From: "Valery Smyslov" To: "'Kent Watsen'" Cc: , , References: <162982978380.3381.17549750696257276827@ietfa.amsl.com> <0100017b8819bf19-1f20d528-72e4-462c-884a-6c29eff0769b-000000@email.amazonses.com> <017c01d79b5e$a00a0000$e01e0000$@smyslov.net> <0100017b89613006-504db539-c16c-4c87-8772-2b6676e9c295-000000@email.amazonses.com> In-Reply-To: <0100017b89613006-504db539-c16c-4c87-8772-2b6676e9c295-000000@email.amazonses.com> Date: Tue, 31 Aug 2021 10:56:00 +0300 Message-ID: <034d01d79e3d$a5b5d5b0$f1218110$@smyslov.net> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_034E_01D79E56.CB07A190" X-Mailer: Microsoft Outlook 14.0 Content-Language: ru Thread-Index: AQGndKy5sGszK4BuDx47nymU5VnBUwHC5W7jAisjdPUBQDIbDqvEDG5g X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - direct.host-care.com X-AntiAbuse: Original Domain - ietf.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - smyslov.net X-Get-Message-Sender-Via: direct.host-care.com: authenticated_id: valery@smyslov.net X-Authenticated-Sender: direct.host-care.com: valery@smyslov.net Archived-At: Subject: Re: [secdir] [Last-Call] Secdir last call review of draft-ietf-netconf-crypto-types-20 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 31 Aug 2021 07:56:14 -0000 This is a multipart message in MIME format. ------=_NextPart_000_034E_01D79E56.CB07A190 Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Hi Kent, =20 please. see inline. =20 Hi Valery, =20 On Aug 27, 2021, at 12:14 PM, Valery Smyslov wrote: =20 Hi Kent, =20 thank you for addressing my comments. A bit more inline. =20 All good. =20 =20 [removing =E2=80=9Clast-call=E2=80=9D alias] =20 =20 Hello Valery. =20 =20 Thank you for your SecDir review, it is very much appreciated and never = too late! =20 More comments below. =20 Thanks, Kent =20 On Aug 24, 2021, at 2:29 PM, Valery Smyslov via Datatracker < = noreply@ietf.org> wrote: =20 Reviewer: Valery Smyslov Review result: Has Issues I have reviewed this document as part of the security directorate's = ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area = directors. Document editors and WG chairs should treat these comments just like any = other last call comments. When I was re-assigned to review this draft the indicated deadline was = already missed by 8 months, so I don't know how relevant the review is. I = reviewed the latest -20 version of the draft instead of -18, that was requested. =20 Perfect. =20 The draft defines common YANG data types and groupings useful for = cryptography. I din't try to check the YANG module itself.=20 Issues: Shouldn't a Privacy Considerations section be added to the draft? The draft defines quite a lot of privacy-sensitive information (like = certificates) with no restriction on read access (as far as I understand). =20 =20 Both the "trust-anchor-cert-grouping=E2=80=9D and = =E2=80=9Cend-entity-cert-grouping=E2=80=9D groupings have = "nacm:default-deny-write=E2=80=9D that, to your point, does not restrict = reads. That said, only management protocols having mutual = authentication (e.g., SSH and/or TLS based transport) can access the = data. =20 =20 Is your concern that the certificate=E2=80=99s content would be visible = to the administrators? Is your comment on end-entity certificates = (containing personally-identifying information), more than = trust-anchor-certificates? =20 Yes, it=E2=80=99s mostly on end-entity certificates, however = there may be quite a lot of interesting private information besides certificates. =20 If this information is only visible to the administrators and = the used management protocols must=20 have mutual authentication, then it=E2=80=99s probably not a = big deal. I would have still added a sentence about privacy of the stored data (i.e. that = persons, that are allowed to access this data are able to learn quite a lot of private information from it). = I don=E2=80=99t insist though, it=E2=80=99s up to you. =20 =20 I added the following to Section 3.8 (The "ietf-crypto-types" YANG = Module). =20 The "cert-data" node: The "cert-data" node, defined in both the = "trust-anchor-cert-grouping" and "end-entity-cert-grouping" groupings, is = additionally sensitive to read operations, as certificates sometimes convey = personally identifying information (especially end-entity certificates). = However, as it is commonly understood that certificates are "public", = the NACM extension "nacm:default-deny-write" (not "default-deny-all") = has been applied. It is RECOMMENDED that implementations adjust = read-access to certificates to comply with local policy. Is this okay? =20 Yes, thanks. =20 Separately, I thought about if there are any other values in the module = that may have privacy concerns but was unable to locate any. =20 certificate-signing-request? =20 =20 Section 3.5. While I understand and support the idea, expressed in this section, I = think that the way it is expressed makes it difficult to follow in practice. In = general, it's not always obvious how to estimate the "strength" of the underlying = secure transport. For this reason it's not clear for me how it is supposed to "compare" = the=20 "strength" of the transport with the "strength" of the keys being = transported. =20 =20 All comments from this point to the end regard the Security = Consideration "Strength of Keys Conveyed=E2=80=9D (was "Strength of Keys = Configured=E2=80=9D). I rewrote the section as follows. Can you please = check for accuracy? =20 Strength of Keys Conveyed When accessing key values, it is desireable that = implementations ensure that the strength of the keys being accessed is not = greater than the strength of the underlying secure transport = connection over which the keys are conveyed. However, comparing key = strengths can be complicated and difficult to implement in practice. That said, expert Security opinion suggests that already it = is infeasible to break a 128-bit key using a classical = computer, and=20 =20 s/key/symmetric key/ thus the concern for conveying higher-strength keys begins = to lose=20 its allure. Implementations SHOULD only use transport algorithms to = those=20 s/transport algorithms/secure transport/ meeting local policy. A reasonable policy may, e.g., state = that=20 only algorithms listed as "recommended" by the IETF be used. s\algorithms/ciphersuites/ Another reasonable policy may be to only use = quantum-resistant=20 algorithms. Works for me with changes above. I would only add a few words = at the end of the second para that=20 things may change in the future (e.g. if full-size quantum = computers appear), so it is recommended to follow up-to-date advise from crypto = community when protecting transport channel. I would also remove the last sentence in the last para, mostly = because it=E2=80=99s difficult to follow in practice (we still know = not much about post-quantum crypto and generally it=E2=80=99s not yet widely supported in = protocols like TLS) and instead reference RFC 7525 which contains recommendations how to use TLS in applications. I don=E2=80=99t know in similar RFC exists for SSH, sorry... Regards, Valery. Thanks! Kent, as author =20 =20 I saw language like this once in a DoD setting. I agree that it is = difficult to implement in practice. I used =E2=80=9CSHOULD=E2=80=9D = (not MUST) to buy some leeway for implementations to be compliant. = Makes sense? =20 My understanding of using RFC2119 language is that SHOULD is = very close to MUST, but allows some exceptions. So, I still think that you put a = responsibility to make security-related decisions on implementers, who often are not = experts in this area. =20 FWIW, my YANG-driven server is able to remember what key the client used = for authentication (e.g., RSA 2048) and register a callback to test that = no greater keys (e.g., 3072 or 4096) are configured by that client. = Additional=20 =20 What if the other key configured for the client is X25519? = Which is stronger? =20 logic would be needed to prevent a low-strength client from *reading* a = high-strength key configured by another client=E2=80=A6though the issue = can be alternatively resolved by configuring the TLS-stack to prevent = low-strength algorithms. =20 That was my point. I think that it=E2=80=99s better to require = (by SHOULD) that only those ciphersuites that were =E2=80=9Cvetted=E2=80=9D by IETF = (i.e. got =E2=80=9CRecommended=E2=80=9D status) be used. This will make implementers=E2=80=99 life easier. =20 In addition, the requirement, that "Implementations SHOULD fail the = write-request if ever the strength of the private key is greater then the strength of the underlying transport" looks wrong to me. You don't need to have 1024 bits transport protocol strength to transfer 1024 bit key, since even for say 256 bits it's infeasible to break. =20 IDK about this. Again, I saw this constraint once in a DoD setting. =20 =20 My (another) point was that there is generally no point to = increase security strength beyond some level. Currently it is believed that 128 bit of symmetric key is infeasible to break (provided = the algorithm is not broken itself), If you are lucky have full-sized Post Quantum computer, = it=E2=80=99ll be 256 bits. It=E2=80=99s enough to transfer symmetric keys with say 1024 = bits of entropy (FWIW). So the requirement that the strength of transport must be always greater than the strength of transported key=20 seems not a good requirement to me. Instead require that the strength of transport be sufficient to make infeasible for an attacker to break it. =20 I think that the better approach would be to advise using strong ciphersuites for transport protocols defined in corresponding RFCs. For example, for TLS 1.3 there are ciphersuites marked as "recommended", that were evaluated by IETF crypto community. =20 I added this sentence: =20 Implementations SHOULD configure allowed transport=20 algorithms to include only those meeting local policy (e.g., listed as "recommended" by the IETF). =20 Good? =20 Perfect. =20 Regards, Valery. =20 ------=_NextPart_000_034E_01D79E56.CB07A190 Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable

Hi Kent,

 

please. see inline.

 

Hi Valery,

 



On = Aug 27, 2021, at 12:14 PM, Valery Smyslov <valery@smyslov.net> = wrote:

 

Hi Kent,

 

thank you for addressing my comments. A bit more = inline.

 

All good.  

 



[removing = =E2=80=9Clast-call=E2=80=9D = alias]

 

 

Hello Valery.  

 

Thank you for your SecDir review, it is very much = appreciated and never too late!

 

More comments = below.

 

Thanks,

Kent

 




On Aug 24, 2021, at 2:29 PM, Valery Smyslov via = Datatracker <noreply@ietf.org> = wrote:

 

Reviewer: Valery Smyslov
Review result: Has = Issues

I have reviewed this document as part of the security = directorate's ongoing
effort to review all IETF documents being = processed by the IESG.  These
comments were written primarily = for the benefit of the security area directors.
Document editors and = WG chairs should treat these comments just like any other
last call = comments.

When I was re-assigned to review this draft the = indicated deadline was already
missed by 8 months, so I don't know = how relevant the review is. I reviewed
the latest -20 version of the = draft instead of -18, that was = requested.

 

Perfect.

 




The draft defines common YANG data types and groupings = useful for cryptography.
I din't try to check the YANG module = itself. 

Issues:

Shouldn= 't a Privacy Considerations section be added to the draft?
The draft = defines quite a lot of privacy-sensitive information (like = certificates)
with no restriction on read access (as far as I = understand).

 

 

Both the "trust-anchor-cert-grouping=E2=80=9D and = =E2=80=9Cend-entity-cert-grouping=E2=80=9D groupings = have "nacm:default-deny-write=E2=80=9D that, to your point, = does not restrict reads.  That said, only management protocols = having mutual authentication (e.g., SSH and/or TLS based transport) can = access the data.  

 

Is your concern that the = certificate=E2=80=99s content would be visible to the administrators? =  Is your comment on end-entity certificates (containing = personally-identifying information), more than = trust-anchor-certificates?

 

        &= nbsp; Yes, it=E2=80=99s mostly on end-entity certificates, however there = may be quite a lot of interesting

          private = information besides certificates.

 

          If this = information is only visible to the administrators and the used = management protocols must 

          have mutual = authentication, then it=E2=80=99s probably not a big deal. I would have = still added

          a sentence = about privacy of the stored data (i.e. that persons, that are allowed to = access this data

          are able to = learn quite a lot of private information from it). I don=E2=80=99t = insist though, it=E2=80=99s up to = you.

 

 

I = added the following to Section 3.8 (The "ietf-crypto-types" = YANG Module).

 

            =  The "cert-data" node:

      =              The = "cert-data" node, defined in both the = "trust-anchor-cert-grouping"
        =             and = "end-entity-cert-grouping" groupings, is additionally = sensitive to
                =     read operations, as certificates sometimes = convey personally identifying
          =           information (especially = end-entity certificates).  However, as it is
  =                 =   commonly understood that certificates are = "public", the NACM extension
        =           =   "nacm:default-deny-write" = (not "default-deny-all") has been applied. It
  =                   is = RECOMMENDED that implementations adjust read-access to = certificates
                =     to comply with local = policy.

Is this okay?

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 Yes, = thanks.

 

Separately, I thought about if there are any other = values in the module that may have privacy concerns but was unable to = locate any.

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = certificate-signing-request?

 

 

Section 3.5.
While I understand and support the = idea, expressed in this section, I think that
the way it is expressed = makes it difficult to follow in practice. In general, it's
not always = obvious how to estimate the "strength" of the underlying = secure transport.
For this reason it's not clear for me how it is = supposed to "compare" the 
"strength" of = the transport with the "strength" of the keys being = transported.

 

 

All comments from this = point to the end regard the Security Consideration "Strength of = Keys Conveyed=E2=80=9D (was "Strength of = Keys Configured=E2=80=9D).  I rewrote the section as follows. =  Can you please check = for accuracy?

 

    =   Strength of Keys Conveyed


      =      When accessing key values, it is = desireable that implementations
        =     ensure that the strength of the keys = being accessed is not greater
          =   than the strength of the underlying secure transport = connection
            over which = the keys are conveyed.  However, comparing key = strengths
            can be = complicated and difficult to implement in = practice.


           That = said, expert Security opinion suggests that already it is
  =           infeasible to break a 128-bit = key using a classical computer, and 

 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = s/key/symmetric key/


        =     thus the concern for conveying higher-strength keys = begins to lose 
          =   its allure.


          =   Implementations SHOULD only use transport algorithms to = those 

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 s/transport = algorithms/secure transport/

          =   meeting local = policy.  A reasonable policy may, e.g., state = that 
            only = algorithms listed as "recommended" by the IETF be = used.

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = s\algorithms/ciphersuites/


          =   Another reasonable policy may be to only = use quantum-resistant 
          =   algorithms.

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 Works for me = with changes above. I would only add a few words at the end of the = second para that =
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 things may = change in the future (e.g. if full-size quantum computers = appear),
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 so it = is recommended to follow up-to-date advise from crypto = community
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 when = protecting transport channel.

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 I would also = remove the last sentence in the last para, mostly = because
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = it=E2=80=99s difficult to follow in practice (we still know not much = about post-quantum = crypto
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 and = generally it=E2=80=99s not yet widely supported in protocols like TLS) = and instead reference RFC = 7525
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 which = contains recommendations how to use TLS in = applications.
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = I don=E2=80=99t know in similar RFC exists for SSH, = sorry...

=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = Regards,
=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0=C2=A0 = Valery.

Thanks!

Kent, as = author

 



 

I saw language like this once in a = DoD setting.  I agree that it is difficult to implement in = practice.  I used =E2=80=9CSHOULD=E2=80=9D (not MUST) to buy = some leeway for implementations to be compliant.  Makes = sense?

 

          My = understanding of using RFC2119 language is that SHOULD is very close to = MUST,

          but allows = some exceptions. So, I still think that you put a responsibility to = make

          = security-related decisions on implementers, who often are not experts in = this area.

 

FWIW, my YANG-driven server is able to remember what = key the client used for authentication (e.g., RSA 2048) and register a = callback to test that no greater keys (e.g., 3072 or 4096) are = configured by that client.  Additional 

 

          What if the = other key configured for the client is X25519? Which is = stronger?

 

logic would be needed to prevent a low-strength client from = *reading* a high-strength key configured by another = client=E2=80=A6though the issue can be alternatively resolved by = configuring the TLS-stack to prevent low-strength = algorithms.

 

          That was my = point. I think that it=E2=80=99s better to require (by SHOULD) that = only

          those = ciphersuites that were =E2=80=9Cvetted=E2=80=9D by IETF (i.e. got = =E2=80=9CRecommended=E2=80=9D status) be = used.

          This will make = implementers=E2=80=99 life = easier.

 

In addition, the requirement, that = "Implementations SHOULD fail the write-request if ever
the = strength of the private key is greater then the strength of = the
underlying transport" looks wrong to me. You don't need to = have
1024 bits transport protocol strength to transfer 1024 bit key, = since
even for say 256 bits it's infeasible to = break.

 

IDK about this.  Again, I saw this constraint = once in a DoD setting.  

 

          My (another) = point was that there is generally no point to = increase

          security = strength beyond some level. Currently it is = believed

          that 128 bit = of symmetric key is infeasible to break (provided the algorithm is not = broken itself),

          If you are = lucky have full-sized Post Quantum computer, it=E2=80=99ll be 256 = bits.

          It=E2=80=99s = enough to transfer symmetric keys with say 1024 bits of = entropy

          (FWIW). So the = requirement that the strength of transport = must

          be always = greater than the strength of transported key 

          seems not a = good requirement to me. Instead require = that

          the strength = of transport be sufficient to make

          infeasible for = an attacker to break it.

          

I think that = the better approach would be to advise using strong
ciphersuites for = transport protocols defined in corresponding RFCs.
For = example, for TLS 1.3 there are ciphersuites marked as = "recommended",
that were evaluated by IETF crypto = community.

 

I added this = sentence:

 

        &n= bsp; Implementations SHOULD = configure allowed transport 
        &n= bsp; algorithms = to include only those meeting = local

        &n= bsp; policy = (e.g., listed as "recommended" by = the IETF).

 

Good?

 

        &= nbsp; Perfect.

 

        &= nbsp; Regards,

          = Valery.


 

------=_NextPart_000_034E_01D79E56.CB07A190-- From nobody Tue Aug 31 05:56:16 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 76FA83A137E; Tue, 31 Aug 2021 05:55:41 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.098 X-Spam-Level: X-Spam-Status: No, score=-2.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=orange.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tJp4iseNquXH; Tue, 31 Aug 2021 05:55:35 -0700 (PDT) Received: from relais-inet.orange.com (relais-inet.orange.com [80.12.70.34]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8CBF53A1385; Tue, 31 Aug 2021 05:55:35 -0700 (PDT) Received: from opfednr07.francetelecom.fr (unknown [xx.xx.xx.71]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits)) (No client certificate requested) by opfednr20.francetelecom.fr (ESMTP service) with ESMTPS id 4GzRxd5V3Wz1yJY; Tue, 31 Aug 2021 14:55:33 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=orange.com; s=ORANGE001; t=1630414533; bh=ZpIsTIrlZf+DqXEft6Rwq/nGGTjtZaTwkUjdvYYEWVk=; h=From:To:Subject:Date:Message-ID:Content-Type:MIME-Version; b=n7JbLo7WUjve7c+1Mq9LyEOSBXqrecg5JD0GJdru7mFQshs7D9EC3nS7VA7z5H4Te 5tb9ei+xlWgSeErWA4rdVnpICKFk6pz/Vv63cuCCgenMrPgjz/sM3ZLG6QB0VQPZPO 7aZAVwQ7khNBwnA5abpQccR1eHs69HegEbIaXGnOqfusYyy32gQSzTIUMNrY4NlAxu /oBq84p3FQCrM9Mt9PSWbaAHzyDJmJXRju9NvgDI7lfTv0YpoIH9hDn23yv3HJjNv0 EMEaDdV9VLxl1T8ZWiLCWDFcvMDWSzmQfZ5YWZALHTgzfjWbheRIvmX5+tsDELpnYQ x4tTPwGNCT8gw== Received: from Exchangemail-eme6.itn.ftgroup (unknown [xx.xx.13.38]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by opfednr07.francetelecom.fr (ESMTP service) with ESMTPS id 4GzRxd4GKlzFpX8; Tue, 31 Aug 2021 14:55:33 +0200 (CEST) From: To: "tm-rid@ietf.org" , "draft-ietf-drip-rid@ietf.org" , "magnus@rsasecurity.com" CC: secdir Thread-Topic: Early secdir review of draft-ietf-drip-rid-07 Thread-Index: AdeeZ2F4UOjrNwTFThyyY6C1KasB1Q== Date: Tue, 31 Aug 2021 12:55:32 +0000 Message-ID: <18869_1630414533_612E26C5_18869_3_1_787AE7BB302AE849A7480A190F8B9330353E657C@OPEXCAUBMA2.corporate.adroot.infra.ftgroup> Accept-Language: fr-FR, en-US Content-Language: fr-FR X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.114.13.245] Content-Type: multipart/alternative; boundary="_000_787AE7BB302AE849A7480A190F8B9330353E657COPEXCAUBMA2corp_" MIME-Version: 1.0 Archived-At: Subject: [secdir] Early secdir review of draft-ietf-drip-rid-07 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 31 Aug 2021 12:55:42 -0000 --_000_787AE7BB302AE849A7480A190F8B9330353E657COPEXCAUBMA2corp_ Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hi all, I'm not sure the review performed by Magnus (many thanks) made it to the dr= ip list. I'm forwarding it to the list, fwiw: https://datatracker.ietf.org/doc/review-ietf-drip-rid-07-secdir-early-nystr= om-2021-07-29/ I know that Bob sent a reply to the secdir mailing list, but an update abou= t the plans to address the remaining parts of the review would be welcome. As suggested by Magnus, a request was sent to the cfrg Chairs. Cheers, Med ___________________________________________________________________________= ______________________________________________ Ce message et ses pieces jointes peuvent contenir des informations confiden= tielles ou privilegiees et ne doivent donc pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu= ce message par erreur, veuillez le signaler a l'expediteur et le detruire ainsi que les pieces jointes. Les messages el= ectroniques etant susceptibles d'alteration, Orange decline toute responsabilite si ce message a ete altere, deforme ou = falsifie. Merci. This message and its attachments may contain confidential or privileged inf= ormation that may be protected by law; they should not be distributed, used or copied without authorisation. If you have received this email in error, please notify the sender and dele= te this message and its attachments. As emails may be altered, Orange is not liable for messages that have been = modified, changed or falsified. Thank you. --_000_787AE7BB302AE849A7480A190F8B9330353E657COPEXCAUBMA2corp_ Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

Hi all,

 

I’m not sure the review performed by Magnus (many th= anks) made it to the drip list. I’m forwarding it to the list, fwiw:

https://datatracker.ietf.org/do= c/review-ietf-drip-rid-07-secdir-early-nystrom-2021-07-29/

 

I know that Bob sent a reply to the secdir mailing list, b= ut an update about the plans to address the remaining parts of the review w= ould be welcome.

 

As suggested by Magnus, a request was sent to the cfrg Cha= irs.

 

Cheers,

Med 

______________________________________________________________________=
___________________________________________________

Ce message et ses pieces jointes peuvent contenir des informations confiden=
tielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu=
 ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages el=
ectroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou =
falsifie. Merci.

This message and its attachments may contain confidential or privileged inf=
ormation that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and dele=
te this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been =
modified, changed or falsified.
Thank you.
--_000_787AE7BB302AE849A7480A190F8B9330353E657COPEXCAUBMA2corp_-- From nobody Tue Aug 31 09:24:54 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 6758B3A1B54; Tue, 31 Aug 2021 09:19:42 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1630426782; bh=PbgA2Ht8kNj9PGrnCHODpMELexj6AF+lMa5WulHLDLw=; h=From:To:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe:Reply-To; b=tUvd6NOX9yXCMBAd6Jr+s9ruaPQRn2XANnzsIDFSgTbx2SqbJeq9BRCAVSyTuCUkZ IbQ94XZyKIY2dlNbq6i/FM8mY102nvu9n2LGyy+9JHkguQHcCusHnECjr+LtnLb2HA SjfMst+uSmKiJXATi8t7PtJF4QmdA5mYsFPVxPA4= X-Mailbox-Line: From new-work-bounces@ietf.org Tue Aug 31 09:19:33 2021 Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 454603A1B66; Tue, 31 Aug 2021 09:19:13 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=ietf.org; s=ietf1; t=1630426753; bh=PbgA2Ht8kNj9PGrnCHODpMELexj6AF+lMa5WulHLDLw=; h=From:To:Date:Subject:List-Id:List-Unsubscribe:List-Archive: List-Post:List-Help:List-Subscribe:Reply-To; b=C12JdduKq8Cc3OvPJmN02AcdWDZ5isMyo1BZsLry/OQFC5AjGoc+g3OZvv3xFfotG T8ZLzUPJb8iM6aMJeXCX/riIn8PD6lzhht2HJpp0Hf8h/hep58rfLwvnDq+SCc5y9L D06LvddlEsNRzbpgGQ90mOvTNtsJyN5lZBkl8oAQ= X-Original-To: new-work@ietf.org Delivered-To: new-work@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id A42623A1B2F for ; Tue, 31 Aug 2021 09:19:05 -0700 (PDT) MIME-Version: 1.0 From: The IESG To: X-Test-IDTracker: no X-IETF-IDTracker: 7.36.0 Auto-Submitted: auto-generated Precedence: bulk MIME-Version: 1.0 Reply_to: Message-ID: <163042674563.14881.8648073660595021024@ietfa.amsl.com> Date: Tue, 31 Aug 2021 09:19:05 -0700 Archived-At: X-BeenThere: new-work@ietf.org X-Mailman-Version: 2.1.29 Reply-To: iesg@ietf.org Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: new-work-bounces@ietf.org Sender: "new-work" Archived-At: X-Mailman-Approved-At: Tue, 31 Aug 2021 09:24:53 -0700 Subject: [secdir] [new-work] WG Review: MAC Address Device Identification for Network and Application Services (madinas) X-BeenThere: secdir@ietf.org List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 31 Aug 2021 16:19:50 -0000 QSBuZXcgSUVURiBXRyBoYXMgYmVlbiBwcm9wb3NlZCBpbiB0aGUgSW50ZXJuZXQgQXJlYS4gVGhl IElFU0cgaGFzIG5vdCBtYWRlCmFueSBkZXRlcm1pbmF0aW9uIHlldC4gVGhlIGZvbGxvd2luZyBk cmFmdCBjaGFydGVyIHdhcyBzdWJtaXR0ZWQsIGFuZCBpcwpwcm92aWRlZCBmb3IgaW5mb3JtYXRp b25hbCBwdXJwb3NlcyBvbmx5LiBQbGVhc2Ugc2VuZCB5b3VyIGNvbW1lbnRzIHRvIHRoZQpJRVNH IG1haWxpbmcgbGlzdCAoaWVzZ0BpZXRmLm9yZykgYnkgMjAyMS0wOS0wNy4KCk1BQyBBZGRyZXNz IERldmljZSBJZGVudGlmaWNhdGlvbiBmb3IgTmV0d29yayBhbmQgQXBwbGljYXRpb24gU2Vydmlj ZXMKKG1hZGluYXMpCi0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tCkN1cnJlbnQgc3RhdHVzOiBQcm9wb3NlZCBXRwoK Q2hhaXJzOgogIENhcmxvcyBCZXJuYXJkb3MgPGNqYmNAaXQudWMzbS5lcz4KICBKdWFuLUNhcmxv cyBaw7rDsWlnYSA8ai5jLnp1bmlnYUBpZWVlLm9yZz4KCkFzc2lnbmVkIEFyZWEgRGlyZWN0b3I6 CiAgw4lyaWMgVnluY2tlIDxldnluY2tlQGNpc2NvLmNvbT4KCkludGVybmV0IEFyZWEgRGlyZWN0 b3JzOgogIEVyaWsgS2xpbmUgPGVrLmlldGZAZ21haWwuY29tPgogIMOJcmljIFZ5bmNrZSA8ZXZ5 bmNrZUBjaXNjby5jb20+CgpNYWlsaW5nIGxpc3Q6CiAgQWRkcmVzczogbWFkaW5hc0BpZXRmLm9y ZwogIFRvIHN1YnNjcmliZTogaHR0cHM6Ly93d3cuaWV0Zi5vcmcvbWFpbG1hbi9saXN0aW5mby9t YWRpbmFzCiAgQXJjaGl2ZTogaHR0cHM6Ly9tYWlsYXJjaGl2ZS5pZXRmLm9yZy9hcmNoL2Jyb3dz ZS9tYWRpbmFzLwoKR3JvdXAgcGFnZTogaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9ncm91 cC9tYWRpbmFzLwoKQ2hhcnRlcjogaHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2MvY2hh cnRlci1pZXRmLW1hZGluYXMvCgpUaGUgTWVkaXVtIEFjY2VzcyBDb250cm9sIChNQUMpIGFkZHJl c3MgaXMgdGhlIExpbmsgTGF5ZXIgYWRkcmVzcyB1c2VkIGluCklFRUUgODAyIHRlY2hub2xvZ2ll cy4gSXQgd2FzIG9yaWdpbmFsbHkgYXNzaWduZWQgc3RhdGljYWxseSBmb3IgZWFjaApwaHlzaWNh bCBuZXR3b3JrIGNhcmQgYnkgdGhlIE5ldHdvcmsgSW50ZXJmYWNlIENhcmQgbWFudWZhY3R1cmVy LCBvdXQgb2YgdGhlCnNwYWNlIHJlc2VydmVkIGJ5IHRoZSBJRUVFIFJlZ2lzdHJhdGlvbiBBdXRo b3JpdHkgQ29tbWl0dGVlIChSQUMpIGZvcgpnbG9iYWxseSB1bmlxdWUgTUFDIGFkZHJlc3Nlcy4g VGhlIE1BQyBhZGRyZXNzIGlzIHVzZWQgYXMgc291cmNlIG9yCmRlc3RpbmF0aW9uIHRhcmdldCB3 aGVuIHNlbmRpbmcgYW5kIHJlY2VpdmluZyBmcmFtZXMuIFRoZSBkZWZhdWx0IHN0YXRpYwphc3Np Z25tZW50IG9mIHRoZSBNQUMgYWRkcmVzcyByYWlzZXMgcHJpdmFjeSBjb25jZXJucyBmb3IgcGVy c29uYWwgZGV2aWNlcy4KVGhlc2UgY29uY2VybnMgaGF2ZSByZWNlbnRseSBzdGFydGVkIHRvIGJl IG1pdGlnYXRlZCBieSBTRE9zIHNwZWNpZnlpbmcgdGhlCnVzZSBvZiBSYW5kb21pemVkIGFuZCBD aGFuZ2luZyBNQUMgYWRkcmVzc2VzIChSQ00pIGFuZCBlbmQtZGV2aWNlIHZlbmRvcnMKaW1wbGVt ZW50aW5nIFJDTS4KCkRldmljZSBpZGVudGl0eSBpcyBpbXBvcnRhbnQgaW4gc2NlbmFyaW9zIHdo ZXJlIHRoZSBuZXR3b3JrIG5lZWRzIHRvIGtub3cgdGhlCmRldmljZSBvciB1c2VyIGlkZW50aXR5 IGluIG9yZGVyIHRvIG9mZmVyLCBvcGVyYXRlIGFuZCBtYWludGFpbiBjZXJ0YWluCnNlcnZpY2Vz LiBDdXJyZW50bHksIG1hbnkgdXNlIGNhc2VzIGFuZCBhcHBsaWNhdGlvbnMgbWFrZSBhbiBpbXBs aWNpdAphc3N1bXB0aW9uIHRoYXQgYSBkZXZpY2UgaXMgcmVwcmVzZW50ZWQgYnkgYW4gSUVFRSA4 MDIgTGF5ZXIgMiAgcGVybWFuZW50IGFuZAp1bmlxdWUgTUFDIGFkZHJlc3MuIFRoaXMgYXNzdW1w dGlvbiBpcyBiZWluZyB1c2VkIGluIGJvdGggY29udHJvbCBwbGFuZSBhbmQKZGF0YSBwbGFuZSBm dW5jdGlvbnMgYW5kIHByb3RvY29scy4gUkNNIGJyZWFrcyB0aGlzIGFzc3VtcHRpb24uIFRoaXMg cmVxdWlyZXMKdXBkYXRpbmcgYXBwbGljYXRpb25zIHRvIGZ1bmN0aW9uIGFjcm9zcyBNQUMgYWRk cmVzcyBjaGFuZ2VzLgoKVGhlIE1BRElOQVMgV29ya2luZyBHcm91cCB3aWxsIGRvY3VtZW50IHRo ZSBjdXJyZW50IFJDTSBzdGF0ZSBvZiBhZmZhaXJzIGJ5CgooaSkgaWRlbnRpZnlpbmcgcmVsZXZh bnQgbmV0d29yayBhbmQgYXBwbGljYXRpb24gc2VydmljZXMgc2NlbmFyaW9zIGFuZApleGFtaW5p bmcgdGhlIGVmZmVjdCBvZiBSQ00gc2NoZW1lcyBvbiB0aGVtOwoKKGlpKSBhbmFseXppbmcgdmFy aW91cyBleGlzdGluZyBpZGVudGlmaWVycyAoaS5lLiwgYmV5b25kIHRoZSBNQUMgYWRkcmVzcykK dGhhdCBjYW4gYmUgdXNlZCBieSB0aGUgbmV0d29yayB0byBwcm92aWRlIHNlYW1sZXNzIHNlcnZp Y2VzLCBhbmQKCihpaWkpIGlkZW50aWZ5aW5nIHNjZW5hcmlvcyB3aGVyZSBkZXZpY2UgaWRlbnRp dHkgaXMgbm90IHJlcXVpcmVkLgoKVGhlIGdyb3VwIHdpbGwgZ2VuZXJhdGUgYSBiZXN0IGNvbW1v biBwcmFjdGljZXMgKEJDUCkgZG9jdW1lbnQgcmVjb21tZW5kaW5nCm1lYW5zIHRvIGVuc3VyZSB0 aGF0IHRoZSBwcml2YWN5IGFjaGlldmVkIHdpdGggUkNNIGlzIG5vdCBjb21wcm9taXNlZC4gRm9y CnNjZW5hcmlvcyB3aGVyZSBkZXZpY2UgaWRlbnRpdHkgc3RhYmlsaXR5IGlzIGRlc2lyYWJsZSwg dGhlIEJDUCBkb2N1bWVudCB3aWxsCnJlY29tbWVuZCBleGlzdGluZyBwcm90b2NvbHMgdGhhdCBj YW4gYmUgdXNlZCB0byBwcm90ZWN0IHRoZSByZXF1ZXN0IGFuZApleGNoYW5nZSBvZiBpZGVudGlm aWVycyBiZXR3ZWVuIHRoZSBjbGllbnQgYW5kIHRoZSBzZXJ2aWNlIHByb3ZpZGVyLiBUaGUKTUFE SU5BUyBXb3JraW5nIEdyb3VwIHdpbGwgZXhhbWluZSBvdGhlciBJRVRGIHdvcmsgYW5kIG90aGVy IHN0YW5kYXJkcyAoZS5nLiwKSUVFRSkgdGhhdCBtYXkgYmUgYXBwbGljYWJsZSBmb3IgdGhlIGFm b3JlbWVudGlvbmVkIGV4Y2hhbmdlIGFuZCB1c2Ugb2YKaWRlbnRpZmllcnMuCgpUaGUgV29ya2lu ZyBHcm91cCB3aWxsIHdvcmsgdG9nZXRoZXIgd2l0aCBvdGhlciBJRVRGIFdHcyAoZS5nLiwgREhD LApJbnRBcmVhKSwgYW5kIHdpbGwgbGlhaXNlIHdpdGggb3RoZXIgcmVsZXZhbnQgb3JnYW5pemF0 aW9ucyBzdWNoIGFzIElFRUUgODAyCmFuZCB0aGUgV2lyZWxlc3MgQnJvYWRiYW5kIEFsbGlhbmNl IChXQkEpLiBUaGUgV29ya2luZyBHcm91cCB3aWxsIGNvb3JkaW5hdGUKb24gdGhlIGRpZmZlcmVu dCByZWNvbW1lbmRhdGlvbnMsIGFzIHdlbGwgYXMgcG90ZW50aWFsIGZvbGxvdy11cCBhY3Rpdml0 aWVzCndpdGhpbiBvciBvdXRzaWRlIHRoZSBJRVRGLgoKTUFESU5BUyBpcyBleHBlY3RlZCB0byBi ZSBhIHNob3J0IHRpbWVmcmFtZSAoMTItMTggbW9udGhzKSBXb3JraW5nIEdyb3VwIHRvCnF1aWNr bHkgYXNzZXNzIHRoZXNlIG5lZWRzLiBBZGRpdGlvbmFsIHNvbHV0aW9uIHNwYWNlIGRvY3VtZW50 cyB3b3VsZCBvbmx5IGJlCnB1Ymxpc2hlZCBpZiBpZGVudGlmaWVkIGFzIG5lY2Vzc2FyeSwgcmVx dWlyaW5nIGEgcmVjaGFydGVyaW5nIHByb2Nlc3MgaW4KY29vcmRpbmF0aW9uIHdpdGggb3RoZXIg cmVsZXZhbnQgU0RPcy4KClRoZSBncm91cCB3aWxsIHByb2R1Y2UgdGhlIGZvbGxvd2luZyBkZWxp dmVyYWJsZXM6CgoxLiBEb2N1bWVudCBDdXJyZW50IFN0YXRlIG9mIEFmZmFpcnM6CiAgQW4gSW5m b3JtYXRpb25hbCBVc2UgQ2FzZXMgYW5kIFJlcXVpcmVtZW50cyBkb2N1bWVudAogIEFuIEluZm9y bWF0aW9uYWwgTUFDIEFkZHJlc3MgUmFuZG9taXphdGlvbiBjdXJyZW50IHN0YXRlLW9mLWFmZmFp cnMgZG9jdW1lbnQKCjIuIERvY3VtZW50IEJlc3QgUHJhY3RpY2VzIGhhbmRsaW5nIFJDTQogIEEg QmVzdCBDb21tb24gUHJhY3RpY2VzIGRvY3VtZW50CgpNaWxlc3RvbmVzOgoKICBKdW4gMjAyMiAt IE1BQyBBZGRyZXNzIFJhbmRvbWl6YXRpb24gY3VycmVudCBzdGF0ZS1vZi1hZmZhaXJzCiAgKGlu Zm9ybWF0aW9uYWwpIGRvY3VtZW50IHN1Ym1pdHRlZCB0byB0aGUgSUVTRyBmb3IgcHVibGljYXRp b24KCiAgU2VwIDIwMjIgLSBVc2UgQ2FzZXMgYW5kIFJlcXVpcmVtZW50cyAoaW5mb3JtYXRpb25h bCkgZG9jdW1lbnQgc3VibWl0dGVkIHRvCiAgdGhlIElFU0cgZm9yIHB1YmxpY2F0aW9uCgogIE1h ciAyMDIzIC0gQmVzdCBQcmFjdGljZXMgaGFuZGxpbmcgUkNNIGRvY3VtZW50IHN1Ym1pdHRlZCB0 byB0aGUgSUVTRyBmb3IKICBwdWJsaWNhdGlvbgoKCgpfX19fX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fXwpuZXctd29yayBtYWlsaW5nIGxpc3QKbmV3LXdvcmtAaWV0 Zi5vcmcKaHR0cHM6Ly93d3cuaWV0Zi5vcmcvbWFpbG1hbi9saXN0aW5mby9uZXctd29yawo= From nobody Tue Aug 31 13:22:21 2021 Return-Path: X-Original-To: secdir@ietfa.amsl.com Delivered-To: secdir@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8F9B73A09CD; Tue, 31 Aug 2021 13:22:17 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -9.098 X-Spam-Level: X-Spam-Status: No, score=-9.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, GB_ABOUTYOU=0.5, HTML_MESSAGE=0.001, RCVD_IN_MSPIKE_H2=-0.001, SPF_NONE=0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com header.b=Ivm3CvBZ; dkim=pass (1024-bit key) header.d=cisco.onmicrosoft.com header.b=oXf3uF35 Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ilw5JGWHM8_3; Tue, 31 Aug 2021 13:22:12 -0700 (PDT) Received: from rcdn-iport-1.cisco.com (rcdn-iport-1.cisco.com [173.37.86.72]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1C7B93A09C6; Tue, 31 Aug 2021 13:22:12 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=23905; q=dns/txt; s=iport; t=1630441332; x=1631650932; h=from:to:cc:subject:date:message-id:references: in-reply-to:mime-version; bh=UTZlgdgxgwdyEtUIENEJijxljEHcwUidnYiC2BEp9Ts=; b=Ivm3CvBZbg0yik05dytbRw8+e6YUWHXG/sUOSmQosj4WbR4Pj2sCQlkh ugT/cMMQo4Gt3Rq3ec7RalZ+DpZhLji32Kpg9Abj4d7932jQDXwIZ0iI0 GzKe6LLf8pm66X1bygc80rTfVKn11XmG1OBB7ns1y6zoHV89uvODXBFZz s=; IronPort-PHdr: =?us-ascii?q?A9a23=3AtyvWORA/fMoudCRNfA3DUyQVeBdPi9zP1kY96?= =?us-ascii?q?5kmzbxPIeyv/JXnaUrY4/glzFrERp7S5P8Mje3K+7vhVmoN7dfk0jgCfZVAW?= =?us-ascii?q?gVDhZAQmAotU8+GCAv1La2iYykzBs8XUlhj8jmyOlRUH8CrYVrUrzWy4DceF?= =?us-ascii?q?w+5OxByI7H+G5XZiIK80OXhk6A=3D?= IronPort-HdrOrdr: =?us-ascii?q?A9a23=3AcFBCFa8kVunf2FOkEZxuk+F6db1zdoMgy1?= =?us-ascii?q?knxilNoENuE/BwxvrBoB1E73DJYW4qKQ4dcdDpAtjmfZquz+8K3WBxB8biYO?= =?us-ascii?q?CCgguVxe5ZnPDfKlHbakjDH6tmpNtdmstFeZ3N5DpB/LzHCWCDer5KqrTqgc?= =?us-ascii?q?PY59s2jU0dMD2CAJsQiTuRfzzranGeMzM2fKbReqDsgvZvln6FQzA6f867Dn?= =?us-ascii?q?4KU6zovNvQjq/rZhYAGloO9BSOpSnA0s+4LzGomjMlFx9fy7Yr9mbI1ybj4L?= =?us-ascii?q?+4jv29whjAk0fO8pVtnsf7wNcrPr3PtiFVEESotu+bXvUnZ1SwhkFynAhp0i?= =?us-ascii?q?dyrDD4mWZlAy200QKIQoj6m2q35+Cq6kde15ar8y7pvZKkm72ieNr/YPAx2b?= =?us-ascii?q?6wtXDimhcdVZhHodF29nPcuJxNARzamiPho9DOShFxj0Kx5WEviOgJkhVkIM?= =?us-ascii?q?YjgZJq3MciFXluYd099ePBmfcaOfgrCNuZ6OddcFucYXyctm5zwMa0VnB2Gh?= =?us-ascii?q?udWEANtsGczjATxRlCvgQl7d1amm1F+IM2SpFC6eiBOqN0lKtWRstTaa5mHu?= =?us-ascii?q?8OTca+F2SISxPRN2CZJ0jhCcg8Sj7wgo+y5K9w6PCheZQOwpd3kJPdUElAvW?= =?us-ascii?q?p3YE7qAd3m5uwCzvkMehT1Yd3J8LAR23FUgMyIeFPbC1z0dLl1qbrTnxw2OL?= =?us-ascii?q?yuZ8qO?= X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0DKDABvji5h/5xdJa1aHgEBCxIMQIF?= =?us-ascii?q?OC4FTIy4Hd1o3MYYOggEDhTmiU4JTA1QLAQEBDQEBNQwEAQGEbgKCLwIlNwY?= =?us-ascii?q?OAQIEAQEBEgEBBQEBAQIBBgSBEROFaA2GQwIBAxIuAQE3AQ8CAQhGMiUCBAE?= =?us-ascii?q?NBQgaglCBflcDLwEOnVgBgToCih94gTOBAYIIAQEGBASBSkEGgnkYgjQDBoE?= =?us-ascii?q?6gn+ED4ZsJxyCDYEVQ4JmPoJiAQECAYFfg0uCLoZ4aIJmGZ40hC2JGJIfCoM?= =?us-ascii?q?rikCOO4V/EoNli2aQfoY4lhiMQ5hoAgQCBAUCDgEBBoF3JYFZcBWDJFAZD44?= =?us-ascii?q?gg3KFFIVKdDgCBgsBAQMJkgsBAQ?= X-IronPort-AV: E=Sophos;i="5.84,367,1620691200"; d="scan'208,217";a="918958796" Received: from rcdn-core-5.cisco.com ([173.37.93.156]) by rcdn-iport-1.cisco.com with ESMTP/TLS/DHE-RSA-SEED-SHA; 31 Aug 2021 20:22:11 +0000 Received: from mail.cisco.com (xbe-rcd-007.cisco.com [173.37.102.22]) by rcdn-core-5.cisco.com (8.15.2/8.15.2) with ESMTPS id 17VKMA3r011601 (version=TLSv1.2 cipher=AES256-SHA bits=256 verify=OK); Tue, 31 Aug 2021 20:22:10 GMT Received: from xfe-rtp-005.cisco.com (64.101.210.235) by xbe-rcd-007.cisco.com (173.37.102.22) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Tue, 31 Aug 2021 15:22:10 -0500 Received: from xfe-aln-002.cisco.com (173.37.135.122) by xfe-rtp-005.cisco.com (64.101.210.235) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15; Tue, 31 Aug 2021 16:22:09 -0400 Received: from NAM12-BN8-obe.outbound.protection.outlook.com (173.37.151.57) by xfe-aln-002.cisco.com (173.37.135.122) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.792.15 via Frontend Transport; Tue, 31 Aug 2021 15:22:09 -0500 ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=fhZKrQZtbaJ7NUe3EYCGKsa9rn56Ukly+tez7Vcp6l9ZkBZ3KSovtsgIvnjvwmETAKwjysCrif7+ikw4qLvWFms9xfVTDxGhlFKcbmZ0t1vrVuKWv6epPNvD1I6RQcXBu/7jA2q3nt1lV+SQMHv0mhkLuDNrarUQdQh5Os64ak/HqYrnW9nhauB32NixXTcjvcMacY5aXCEPoxldI4He1Mf4yYhyC0h+KIAavD0L+PWPfTpgsVlmGnEXlYPu6tuGNzzHQKgcFP0deYwZSCSrovZh68ErphgHvYUKvz/CfwhJpaDJQ2KVF+C2xW+PCObPJqDdca2bTPs1I6T3No49Vw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZB7LofRCKCnOUAV4810sunD5eF6ywzOd8MElWzAqaaU=; b=F06Sn01xjCYFXqoRKb0hWfl8IkeeFXVMYUSSkbz79JA/CErgKYfDGqrIxZga5LyAWYSIuBmoiSYrR+d0RuDhbkX91/VxG8W2/L3Ygr5PED6fSSjdOSPz36Ppc7uvYPgj4HQIytIzwG+p59G9Z/PH/lzsrPMs0h2XgkR4rwT3+9lz9jAfid9izQwEz1ggp9VO4t6CEz5ft5RulEYRVngT68C2FNSg0j3DY7kKGGeElKU0eMhCxKR+jYi/VFPwnE2tIFfaH5TsBq1C6BojZ1611BYq9BVz/6WGZ/yETEf8zYyAH2XHhkSC+Qg86FjOz696Bz6V97I57Zmbao1LeLvLzw== ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cisco.com; dmarc=pass action=none header.from=cisco.com; dkim=pass header.d=cisco.com; arc=none DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cisco.onmicrosoft.com; s=selector2-cisco-onmicrosoft-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=ZB7LofRCKCnOUAV4810sunD5eF6ywzOd8MElWzAqaaU=; b=oXf3uF35GPya3OnK7l2HqyeScJIQLXaDSAhA8CcL6KU+X0LRCVSZFlHIBrAJYr3/uSDOyY6wm6Ry7G56QJ6uGB64RREh+FbetGAtoKjG+Iya7xvFm+/vcMc4qOXpvQDX4l4xTHaV8MvkZ5FKEyfeqmXfkPz4VMfUvZWa0hjqESM= Received: from BL3PR11MB5732.namprd11.prod.outlook.com (2603:10b6:208:353::14) by MN2PR11MB4629.namprd11.prod.outlook.com (2603:10b6:208:264::9) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.4457.20; Tue, 31 Aug 2021 20:22:08 +0000 Received: from BL3PR11MB5732.namprd11.prod.outlook.com ([fe80::1c1c:533d:ef59:5fed]) by BL3PR11MB5732.namprd11.prod.outlook.com ([fe80::1c1c:533d:ef59:5fed%4]) with mapi id 15.20.4457.024; Tue, 31 Aug 2021 20:22:08 +0000 From: "Nagendra Kumar Nainar (naikumar)" To: Tero Kivinen , "secdir@ietf.org" CC: "draft-ietf-mpls-lsp-ping-ospfv3-codepoint.all@ietf.org" , "last-call@ietf.org" , "mpls@ietf.org" Thread-Topic: Secdir last call review of draft-ietf-mpls-lsp-ping-ospfv3-codepoint-04 Thread-Index: AQHXXgPKnSgH5QomtUKAK8yBTGMG8auOj2PO Date: Tue, 31 Aug 2021 20:22:07 +0000 Message-ID: References: <162333482591.8235.4418205938937483332@ietfa.amsl.com> In-Reply-To: <162333482591.8235.4418205938937483332@ietfa.amsl.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: iki.fi; dkim=none (message not signed) header.d=none;iki.fi; dmarc=none action=none header.from=cisco.com; x-ms-publictraffictype: Email x-ms-office365-filtering-correlation-id: 7b609bb8-9caf-4769-dff5-08d96cbd0196 x-ms-traffictypediagnostic: MN2PR11MB4629: x-microsoft-antispam-prvs: x-ms-oob-tlc-oobclassifiers: OLM:10000; x-ms-exchange-senderadcheck: 1 x-ms-exchange-antispam-relay: 0 x-microsoft-antispam: BCL:0; x-microsoft-antispam-message-info: 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 x-forefront-antispam-report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:BL3PR11MB5732.namprd11.prod.outlook.com; PTR:; CAT:NONE; SFS:(376002)(39860400002)(136003)(396003)(366004)(346002)(9686003)(66556008)(55016002)(33656002)(8676002)(66446008)(186003)(66476007)(66946007)(76116006)(38070700005)(26005)(54906003)(8936002)(4326008)(38100700002)(122000001)(6506007)(7696005)(71200400001)(5660300002)(2906002)(9326002)(110136005)(53546011)(166002)(86362001)(83380400001)(478600001)(316002)(52536014)(64756008); DIR:OUT; SFP:1101; x-ms-exchange-antispam-messagedata-chunkcount: 1 x-ms-exchange-antispam-messagedata-0: =?Windows-1252?Q?lUAUSh5g+UMiVktfYD0Fx8Aau2sVvR35FZjTXcr6iIbV7oBJrJwu7416?= =?Windows-1252?Q?7xYeaKbE/fxRFSI9XJCETsQqHzFd03k12y9yb35k6gDu2oe0o4Z6AOC6?= =?Windows-1252?Q?I3RE4xyq1Rd112iE8UIEzgtSlBu0QGqfIAqHO1vvtd6aaSVbQ2j7h9Qx?= =?Windows-1252?Q?P1fujql4YshK4H8oiJ+lh0WAp124Ffy2rSvunTl4mMzvDDwogJ+9C3PG?= =?Windows-1252?Q?xU51zKFbw/L22eKXEXMxZKN4NO21E1ObvI55cS6UmHSbBG0iucV5dOzG?= =?Windows-1252?Q?/xheVvfzfRPJe29VjjIDnNqOs/EmN7KaIrRhavkoRVVRgzBIVFCIKhzE?= =?Windows-1252?Q?e6i70u4JwIDG5RzPRmNVvBTAbFHnSiUVEbthDejkox2oT1LufyZVw/XQ?= =?Windows-1252?Q?0z4lRCfcfeMvKgXREwH53jIdV2uoYXq5q/fYfMStVORS2jweGo2nqr98?= =?Windows-1252?Q?9vSPfA5UcDslOPvzxGN1c30D3oWEMIY+CKQebzzDABcASbg7lw15a6mF?= =?Windows-1252?Q?ho7it0kVCqeBL0ifC9YQPkkZVV7JyedLcDdnAL8OAgSJtb+RLLw6mcBd?= =?Windows-1252?Q?vwlj79oRm0Mi7bTGPxODsJrq5Hyw7WTaKgCWBq3C2wTF7/B+K9CzJaRW?= =?Windows-1252?Q?fZMGvOfCu9QLiaY/GeXoWCDdzRqZnvD1McGuRU4wqqX5Wvg+hcG8lffT?= =?Windows-1252?Q?AeQiAdzLLlB00fMWwpXuAR/7+l7s6QpgVBrPnDH0yaNglMkU8COSF9qS?= =?Windows-1252?Q?A/XeePltagJooHLhM/juPO5hmfj0Q6QrzJzLBOi0JL6Vs1d2DbVEFK11?= =?Windows-1252?Q?zJTXUA3WMooutjLEokubI7wnjgaZam9n/+KKtVUleQXKNsydzO1sQwy/?= =?Windows-1252?Q?tzVwfuy7aG3GSnz5TwOC5XFLkyJNZpUA1catCiwWnD0S4WZ2RLeKCFgI?= =?Windows-1252?Q?ZRf/RVbjLbknAQq0OGTYC3Dxgb9mfXcSWgbXmMrR6JGu51xZPhq+gMyb?= =?Windows-1252?Q?2+ro7itQ7OktrLnYgfgNFMB5zvciHv2xIa9cqP0U0DODEDvVApzubN+G?= =?Windows-1252?Q?xMWfBvGc7JEtl4pXNCITqaQmaCx7fuAiLIX4DaF0n0Pw6432arKkQBvM?= =?Windows-1252?Q?9mnBhdmXKrwkhaiGz3X+Bnp7TblwJno6VlJ36lGSBOKwdNNx2bPJCIV1?= =?Windows-1252?Q?Rr9uJlpnU7VHwJdTLk+O6LRPrYWj0s+T6w002CdpVY/yvHj8yJm1Yv4h?= =?Windows-1252?Q?sfEcUme9aH5plfB80FVgrUKJ4GVUYmleg3m6lxCrVgANaiXhOvhDFzQ8?= =?Windows-1252?Q?vBTBoIyQuETs6vsLZI6ves0TssW7XzAhgIfZ8mhIF8BDKZiPz25E2Znc?= =?Windows-1252?Q?MO7o3eeZHSR6BYTMu93ZoZ7hKRV4AjANLgPdNT211qynbeGKo+AH3uxw?= =?Windows-1252?Q?wrXT9YBYDnXE7uc2nYoI1g=3D=3D?= x-ms-exchange-transport-forked: True Content-Type: multipart/alternative; boundary="_000_BL3PR11MB5732F1592884274961E7B268C6CC9BL3PR11MB5732namp_" MIME-Version: 1.0 X-MS-Exchange-CrossTenant-AuthAs: Internal X-MS-Exchange-CrossTenant-AuthSource: BL3PR11MB5732.namprd11.prod.outlook.com X-MS-Exchange-CrossTenant-Network-Message-Id: 7b609bb8-9caf-4769-dff5-08d96cbd0196 X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Aug 2021 20:22:07.8898 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 5ae1af62-9505-4097-a69a-c1553ef7840e X-MS-Exchange-CrossTenant-mailboxtype: HOSTED X-MS-Exchange-CrossTenant-userprincipalname: G8MHaxqMfWgclXF8jJgQit566JwWLTWM0JjkYrrHM+q/44QZ2mfE+vorqX5z9pLgdics38XWh48tQyxDX5hSWA== X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR11MB4629 X-OriginatorOrg: cisco.com X-Outbound-SMTP-Client: 173.37.102.22, xbe-rcd-007.cisco.com X-Outbound-Node: rcdn-core-5.cisco.com Archived-At: Subject: Re: [secdir] Secdir last call review of draft-ietf-mpls-lsp-ping-ospfv3-codepoint-04 X-BeenThere: secdir@ietf.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: Security Area Directorate List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 31 Aug 2021 20:22:18 -0000 --_000_BL3PR11MB5732F1592884274961E7B268C6CC9BL3PR11MB5732namp_ Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable Hi Tero, Thank you for the detailed review and apologies for the very late response.= I was between responsibility change and took some time to change up. Please see below for the response. The security considerations section just says: This document updates [RFC8287] and does not introduce any additional security considerations. And I am not completely sure if that is true, if this document really allow= s using IPv6 when it was not possible before. Quite often having multiple address f= amilies do cause new security considerations too. This draft only introduces the codepoint to indicate the protocol= is OSPFv3. What to do when the protocol is OSPFv3 is defined in RFC8287. S= o we believe that this draft doesn=92t introduce any new semantics/actions. Also RFC8287 refers to the RFC8029 for its security considerations, so perhaps direct reference to RFC8029 would be ne= eded here. Ok. We can clarify that in the section as below: =93This document updates [RFC8287], [RFC8029] and does not introduce any additional security considerations. =93 Please let us know if the above is fine. There are several acronyms which are not expanded on their first use (inclu= ding in title, and in abstract). Examples of such are IS, TLV, OSPF, IS+IS, IGP,= SUb-TLV (is the spelling correct in abstract with uppercase u?), FEC. =93Protocol in the Segment ID Sub-TLV=94 is the IANA registry nam= e and I am not sure if we should try expanding it. For clarity, we will exp= and the rest. Let us know if that solves the concern. The use of just RFC numbers in reference format makes the document hard to = read as not everybody remembers what RFC is RFC number 8287, 8402 etc. It would = be much nicer to at least on the first time use the format where the text refe= rs to RFC with title or similar and just has the reference in parenthesis, i.e.: RFC5340 "OSPF for IPv6" ([RFC5340]) describes OSPF version 3 (OSPFv3) to support IPv6. RFC5838 "Support of Address Families in OSPFv3" ([RFC5838]= ) describes the mechanism to support multiple address families (AFs) in OS= PFv3. Accordingly, OSPFv3 may be used to advertise IPv6 and IPv4 prefixes. is easier for reader than current format: [RFC5340] describes OSPF version 3 (OSPFv3) to support IPv6. [RFC5838] describes the mechanism to support multiple address families (AFs) in OSPFv3. Accordingly, OSPFv3 may be used to advertise IPv6 and IPv4 prefixes. The use of RFC number alone as the reference is a common use AFAI= K and we feel that it is not specific to this document. But we don=92t want= that to be a hurdle to move this document forward and if the consensus is = to include the RFC document name, we are ok. Or, as the rfc title tells what the RFC is about you do not need to explain= it that much you can simply say: RFC5340 "OSPF for IPv6" ([RFC5340]) describes OSPF version 3 (OSPFv3) an= d RFC5838 "Support of Address Families in OSPFv3" ([RFC5838]) describes how OSPFv3 may be used to advertise IPv6 and IPv4 prefixes. Also someone who is not at all familiar with this it is bit hard to know wh= at are Type 34, 35, and 36 in Segment Id Sub-TLV registry. Ok. We will expand the same. As a personal note, I have never liked to just use the reference inside tex= t (for example "This document updates [RFC8287] ...") as in case the RFC rendering engine decides to render references in some other way than just text with [] around it, the text might get unreadable (For example it repla= ces the text inside [] with number or footnote or similar). Thats why I myself usua= lly want to write those either as "This document updates RFC8287 ([RFC8287])...= " or even "This document updates RFC8287..." as RFC8287 is referenced so many ti= mes in the document that there is no need to make each instance a reference. Bu= t this is just my personal view, and authors might have different views... Thank you for the comment. We will leave it as it is for now and = if others believe it needs to be changed, we can look into it. Once again, thanks a lot for the great comments. Regards, Nagendra (on behalf of the authors) From: Tero Kivinen via Datatracker Date: Thursday, June 10, 2021 at 10:20 AM To: secdir@ietf.org Cc: draft-ietf-mpls-lsp-ping-ospfv3-codepoint.all@ietf.org , last-call@ietf.org , mpls@ietf.org Subject: Secdir last call review of draft-ietf-mpls-lsp-ping-ospfv3-codepoi= nt-04 Reviewer: Tero Kivinen Review result: Has Nits I have reviewed this document as part of the security directorate's ongoing effort to review all IETF documents being processed by the IESG. These comments were written primarily for the benefit of the security area directors. Document editors and WG chairs should treat these comments just like any other last call comments. This document allocates a code point for OSPFv3 for MPLS LSP Ping and updates previous allocation to only cover OSPFv2. It also defines behavior when using IPv6 with OSPv3. This document is quite short but hard to ready because of heavy use of acro= nyms and just referencing code points with numbers and same with RFCs. The security considerations section just says: This document updates [RFC8287] and does not introduce any additional security considerations. And I am not completely sure if that is true, if this document really allow= s using IPv6 when it was not possible before. Quite often having multiple address f= amilies do cause new security considerations too. Also RFC8287 refers to the RFC8029 f= or its security considerations, so perhaps direct reference to RFC8029 would be ne= eded here. There are several acronyms which are not expanded on their first use (inclu= ding in title, and in abstract). Examples of such are IS, TLV, OSPF, IS+IS, IGP,= SUb-TLV (is the spelling correct in abstract with uppercase u?), FEC. The use of just RFC numbers in reference format makes the document hard to = read as not everybody remembers what RFC is RFC number 8287, 8402 etc. It would = be much nicer to at least on the first time use the format where the text refe= rs to RFC with title or similar and just has the reference in parenthesis, i.e.: RFC5340 "OSPF for IPv6" ([RFC5340]) describes OSPF version 3 (OSPFv3) to support IPv6. RFC5838 "Support of Address Families in OSPFv3" ([RFC5838]= ) describes the mechanism to support multiple address families (AFs) in OS= PFv3. Accordingly, OSPFv3 may be used to advertise IPv6 and IPv4 prefixes. is easier for reader than current format: [RFC5340] describes OSPF version 3 (OSPFv3) to support IPv6. [RFC5838] describes the mechanism to support multiple address families (AFs) in OSPFv3. Accordingly, OSPFv3 may be used to advertise IPv6 and IPv4 prefixes. Or, as the rfc title tells what the RFC is about you do not need to explain= it that much you can simply say: RFC5340 "OSPF for IPv6" ([RFC5340]) describes OSPF version 3 (OSPFv3) an= d RFC5838 "Support of Address Families in OSPFv3" ([RFC5838]) describes how OSPFv3 may be used to advertise IPv6 and IPv4 prefixes. Also someone who is not at all familiar with this it is bit hard to know wh= at are Type 34, 35, and 36 in Segment Id Sub-TLV registry. As a personal note, I have never liked to just use the reference inside tex= t (for example "This document updates [RFC8287] ...") as in case the RFC rendering engine decides to render references in some other way than just text with [] around it, the text might get unreadable (For example it repla= ces the text inside [] with number or footnote or similar). Thats why I myself usua= lly want to write those either as "This document updates RFC8287 ([RFC8287])...= " or even "This document updates RFC8287..." as RFC8287 is referenced so many ti= mes in the document that there is no need to make each instance a reference. Bu= t this is just my personal view, and authors might have different views... --_000_BL3PR11MB5732F1592884274961E7B268C6CC9BL3PR11MB5732namp_ Content-Type: text/html; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable

Hi Tero,

 =

Thank you for the detail= ed review and apologies for the very late response. I was between responsib= ility change and took some time to change up.

 =

Please see below for the= response.

 


The security considerations section just says:

   This document updates [RFC8287] and does not introduce any add= itional
   security considerations.

And I am not completely sure if that is true, if this document really allow= s using
IPv6 when it was not possible before. Quite often having multiple address f= amilies do 
cause new security considerations too. 

<Authors> This draft only introduces the codepoint to indicate= the protocol is OSPFv3. What to do when the protocol is OSPFv3 is defined = in RFC8287. So we believe that this draft doesn=92t introduce any new semantics/actions.

Also RFC8287 refers to the RFC8029 for its
security considerations, so perhaps direct reference to RFC8029 would be ne= eded here.

<Authors> Ok. We can clarify that in the section as below:


=93This document updates [RFC8287], [RFC8029] and does not introduce an=
y additional
   security considerations.=

=93

Please let us know if the above is fine.


There are several acronyms which are not expanded on their first use (inclu= ding
in title, and in abstract). Examples of such are IS, TLV, OSPF, IS+IS, IGP,= SUb-TLV (is the 
spelling correct in abstract with uppercase u?),  FEC.

<Authors> =93Protocol in the Segment ID Sub-TLV=94 is the IANA= registry name and I am not sure if we should try expanding it. For clarity= , we will expand the rest. Let us know if that solves the concern.

The use of just RFC numbers in reference format makes the document hard to = read
as not everybody remembers what RFC is RFC number 8287, 8402 etc. It would = be 
much nicer to at least on the first time use the format where the text refe= rs to RFC
with title or similar and just has the reference in parenthesis, i.e.:=


   RFC5340 "OSPF for IPv6" ([RFC5340]) describes OSPF v= ersion 3 (OSPFv3) to 
   support IPv6. RFC5838 "Support of Address Families in OSP= Fv3" ([RFC5838])
   describes the mechanism to support multiple address families (= AFs) in OSPFv3.
   Accordingly, OSPFv3 may be used to advertise IPv6 and IPv4 pre= fixes.


is easier for reader than current format:

   [RFC5340] describes OSPF version 3 (OSPFv3) to support IPv6.    [RFC5838] describes the mechanism to support multiple address<= br>    families (AFs) in OSPFv3. Accordingly, OSPFv3 may be used to    advertise IPv6 and IPv4 prefixes.


<Authors> The use of RFC number alone as the reference is a co= mmon use AFAIK and we feel that it is not specific to this document. But we= don=92t want that to be a hurdle to move this document forward and if the consensus is to include the RFC document name,= we are ok.


Or, as the rfc title tells what the RFC is about you do not need to explain= it that much
you can simply say:

   RFC5340 "OSPF for IPv6" ([RFC5340]) describes OSPF v= ersion 3 (OSPFv3) and
   RFC5838 "Support of Address Families in OSPFv3" ([RF= C5838])
   describes how OSPFv3 may be used to advertise IPv6 and IPv4 pr= efixes.

Also someone who is not at all familiar with this it is bit hard to know wh= at are
Type 34, 35, and 36 in Segment Id Sub-TLV registry. 


<Authors> Ok. We will expand the same.


As a personal note, I have never liked to just use the reference inside tex= t
(for example "This document updates [RFC8287] ...") as in case th= e RFC 
rendering engine decides to render references in some other way than just 
text with [] around it, the text might get unreadable (For example it repla= ces the
text inside [] with number or footnote or similar). Thats why I myself= usually
want to write those either as "This document updates RFC8287 ([RFC8287= ])..." or 
even "This document updates RFC8287..." as RFC8287 is referenced = so many times
in the document that there is no need to make each instance a reference. Bu= t this
is just my personal view, and authors might have different views...


<Authors> Thank you for the comment. We will leave it as it is= for now and if others believe it needs to be changed, we can look into it.=

Once again, thanks a lot for the great comments.

Regards,

Nagendra (on behalf of the authors)

 =

 

 

 

 

From: Tero Kivinen via Da= tatracker <noreply@ietf.org>
Date: Thursday, June 10, 2021 at 10:20 AM
To: secdir@ietf.org <secdir@ietf.org>
Cc: draft-ietf-mpls-lsp-ping-ospfv3-codepoint.all@ietf.org <draft= -ietf-mpls-lsp-ping-ospfv3-codepoint.all@ietf.org>, last-call@ietf.org &= lt;last-call@ietf.org>, mpls@ietf.org <mpls@ietf.org>
Subject: Secdir last call review of draft-ietf-mpls-lsp-ping-ospfv3-= codepoint-04

Reviewer: Tero Kivine= n
Review result: Has Nits

I have reviewed this document as part of the security directorate's
ongoing effort to review all IETF documents being processed by the
IESG.  These comments were written primarily for the benefit of the security area directors.  Document editors and WG chairs should treat =
these comments just like any other last call comments.

This document allocates a code point for OSPFv3 for MPLS LSP Ping and
updates previous allocation to only cover OSPFv2. It also defines
behavior when using IPv6 with OSPv3.

This document is quite short but hard to ready because of heavy use of acro= nyms
and just referencing code points with numbers and same with RFCs.

The security considerations section just says:

   This document updates [RFC8287] and does not introduce any add= itional
   security considerations.

And I am not completely sure if that is true, if this document really allow= s using
IPv6 when it was not possible before. Quite often having multiple address f= amilies do
cause new security considerations too. Also RFC8287 refers to the RFC8029 f= or its
security considerations, so perhaps direct reference to RFC8029 would be ne= eded here.

There are several acronyms which are not expanded on their first use (inclu= ding
in title, and in abstract). Examples of such are IS, TLV, OSPF, IS+IS, IGP,= SUb-TLV (is the
spelling correct in abstract with uppercase u?),  FEC.

The use of just RFC numbers in reference format makes the document hard to = read
as not everybody remembers what RFC is RFC number 8287, 8402 etc. It would = be
much nicer to at least on the first time use the format where the text refe= rs to RFC
with title or similar and just has the reference in parenthesis, i.e.:

   RFC5340 "OSPF for IPv6" ([RFC5340]) describes OSPF v= ersion 3 (OSPFv3) to
   support IPv6. RFC5838 "Support of Address Families in OSP= Fv3" ([RFC5838])
   describes the mechanism to support multiple address families (= AFs) in OSPFv3.
   Accordingly, OSPFv3 may be used to advertise IPv6 and IPv4 pre= fixes.


is easier for reader than current format:

   [RFC5340] describes OSPF version 3 (OSPFv3) to support IPv6.    [RFC5838] describes the mechanism to support multiple address<= br>    families (AFs) in OSPFv3. Accordingly, OSPFv3 may be used to    advertise IPv6 and IPv4 prefixes.

Or, as the rfc title tells what the RFC is about you do not need to explain= it that much
you can simply say:

   RFC5340 "OSPF for IPv6" ([RFC5340]) describes OSPF v= ersion 3 (OSPFv3) and
   RFC5838 "Support of Address Families in OSPFv3" ([RF= C5838])
   describes how OSPFv3 may be used to advertise IPv6 and IPv4 pr= efixes.

Also someone who is not at all familiar with this it is bit hard to know wh= at are
Type 34, 35, and 36 in Segment Id Sub-TLV registry.

As a personal note, I have never liked to just use the reference inside tex= t
(for example "This document updates [RFC8287] ...") as in case th= e RFC
rendering engine decides to render references in some other way than just <= br> text with [] around it, the text might get unreadable (For example it repla= ces the
text inside [] with number or footnote or similar). Thats why I myself= usually
want to write those either as "This document updates RFC8287 ([RFC8287= ])..." or
even "This document updates RFC8287..." as RFC8287 is referenced = so many times
in the document that there is no need to make each instance a reference. Bu= t this
is just my personal view, and authors might have different views...


--_000_BL3PR11MB5732F1592884274961E7B268C6CC9BL3PR11MB5732namp_--