From nobody Thu Feb 2 03:48:31 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 774A412943B for ; Thu, 2 Feb 2017 03:48:28 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.921 X-Spam-Level: X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=zgrp.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T5vxr7syYlLu for ; Thu, 2 Feb 2017 03:48:24 -0800 (PST) Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-db5eur01on0098.outbound.protection.outlook.com [104.47.2.98]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 580A912896F for ; Thu, 2 Feb 2017 03:48:22 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zgrp.onmicrosoft.com; s=selector1-tridonic-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=y2+LLx07JaIk9mhiAqXxHqeKLW3lcfWw7CFb3a1Q7Mo=; b=V5jpfw/iEo1qtlz0mFrKmbBVZyXtHMeUOqCizxLuZTXUyVOtDgWSpfVleCtf8H4KSQDIatwBh+I3MwDLWu01keQByyda3y5zTzi+Z2qhTpHH6msdP4Zj0bMdIbttEdkbtbc87sDqZlR+8X0Qim71SfmUEoE6eim0T8anH1g6fVU= Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) by DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.860.13; Thu, 2 Feb 2017 11:48:17 +0000 Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) by DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) with mapi id 15.01.0860.027; Thu, 2 Feb 2017 11:48:17 +0000 From: Somaraju Abhinav To: Jim Schaad , "draft-somaraju-ace-multicast@tools.ietf.org" Thread-Topic: [Ace] draft-somaraju-ace-multicast Thread-Index: AdJqFjktU/bHwE2RRn6LNdkksHiqaQTMexNg Date: Thu, 2 Feb 2017 11:48:17 +0000 Message-ID: References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> In-Reply-To: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=abhinav.somaraju@tridonic.com; x-originating-ip: [77.119.131.19] x-ms-office365-filtering-correlation-id: 31e89c8d-363d-4a68-0fb9-08d44b6160b8 x-ms-office365-filtering-ht: Tenant x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(48565401081); SRVR:DB6PR0601MB2198; x-microsoft-exchange-diagnostics: 1; DB6PR0601MB2198; 7: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 x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(192374486261705); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(8121501046)(5005006)(10201501046)(3002001)(6055026)(6041248)(20161123562025)(20161123555025)(20161123560025)(20161123558025)(20161123564025)(6072148); SRVR:DB6PR0601MB2198; BCL:0; PCL:0; RULEID:; SRVR:DB6PR0601MB2198; x-forefront-prvs: 02065A9E77 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(7916002)(39850400002)(39860400002)(39450400003)(39840400002)(39410400002)(199003)(189002)(8676002)(7696004)(236005)(53936002)(5001770100001)(97736004)(50986999)(76176999)(54356999)(81156014)(81166006)(561944003)(101416001)(33656002)(189998001)(230783001)(92566002)(19627405001)(7736002)(5890100001)(2501003)(66066001)(7906003)(106356001)(105586002)(74316002)(8936002)(2900100001)(3280700002)(86362001)(5660300001)(6436002)(2950100002)(99286003)(25786008)(229853002)(345774005)(54896002)(55016002)(77096006)(6506006)(68736007)(6606003)(38730400001)(606005)(4326007)(3846002)(3660700001)(6306002)(102836003)(122556002)(2906002)(6116002)(9686003); DIR:OUT; SFP:1102; SCL:1; SRVR:DB6PR0601MB2198; H:DB6PR0601MB2198.eurprd06.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en; received-spf: None (protection.outlook.com: tridonic.com does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/alternative; boundary="_000_DB6PR0601MB2198CF3BF7F6028B5B25DAA6FC4C0DB6PR0601MB2198_" MIME-Version: 1.0 X-OriginatorOrg: tridonic.com X-MS-Exchange-CrossTenant-originalarrivaltime: 02 Feb 2017 11:48:17.1167 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 8b206608-a593-4ace-a4b6-ef1fc83c9169 X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0601MB2198 Archived-At: Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Feb 2017 11:48:28 -0000 --_000_DB6PR0601MB2198CF3BF7F6028B5B25DAA6FC4C0DB6PR0601MB2198_ Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable Hi Jim, thank you for the review and I apologise for the delayed response - I was o= n sick leave due to a surgery. Please see comments inline from the authors. Why restriction on reading messages? It is not like an external observer i= s not going to be able to see the lights go on or off. [AS] There are several situations where lights are not visible but (multica= st) network data is accessible. Moreover, sensors (e.g. presence detectors)= are continuously talking to actuators and controllers without necessarily = having a visible effect on the lights. For several customers privacy is a v= ery important concern and is almost a given. The statement "anybody can lis= ten to the traffic and tell when sensors detect presence in a building with= out even being in the building" is a very difficult sell. Having said that,= it is true that simply encrypting the multicast traffic at the application= layer is only a prerequisite to provide the privacy needed and additional = work is required (e.g. generating random messages at different times). In t= hat sense the symmetric solution is probably not much better than the asymm= etric solution. But the demand for privacy from customers is very clear and= the perception among them is that unencrypted data implies poor security. I am not sure what you mean by synchronous manner. Does this mean that the light needs to change state between the command and the response message? (As opposed to an asynchronous manner.) Or do you mean in a synchronized manner where everything happens at a given time relative to the command (which could be all at the same time). [AS] We mean the latter - the lights need to go on and off together and not= serially. Will clarify in the next version of the draft. The solution in section 4 does not seem to meet the following requirement "Only authorized members of the application group must be able to read and process messages." [AS] You are right, we cannot satisfy the privacy requirement in Section 4.= We could extend the current solution to include a group wide encryption ke= y to meet this requirement. However, this will add additional latency to th= e asymmetric solution. The statement is made that AT-R tokens with references are more efficient from a bandwidth point of view. Does this mean that there is going to be a recommendation that these be provided prior to the first command so that al= l n devices dereferencing the pointer will not kill the bandwidth? [AS] Good point. Will add the recommendation. This document needs to have a solution for dealing with nonce space allocation for the cases where more than one sender is going be able to use the same key. This is going to be part of the problems with replay detection as well as security considerations. [AS] Okay. Will add some text in the next version of the draft for better c= larification. The idea as written in 4.3 (Nonce value) is to use the Client= ID along with the sender=92s sequence number to create the complete nonce = for replay and CCM processing. Should the algorithms be using high water detection of sequence numbers rather than the case of not yet used? Or is that an application specific type thing? [SK] This is tricky since it can create all kind of new issues. One way to = handle if the sequence number of a sender is about to roll over is that the= sender requests a new key issued for the group by the KDC. Tricky part is = if there are multiple senders who are not reaching the roll over of their s= equence number then have to be forced to use a new key or there needs to be= some overlap between the old key and new key before every sender in the gr= oup starts using the new key. How does section 5.2 Token Verification reconcile with the idea of doing references in AT-R tokens? [SK] I guess the current 5.2 should have been in an optimization section an= d not the security considerations section. In the rest of the document we s= ay that the AT-R is either self-contained or by reference. I guess we wante= d to keep both options possible. 5.2 then should only be mentioning about t= he security considerations when using a self-contained token (like revocati= on of the token not being known to the verifier). In section 6.3, if a device has multiple security domains, why could they not come from multiple KDCs? [SK] Multiple KDCs are okay. We need to ensure unique Application IDs assig= ned by different KDC since they indirectly map to the domains The term low latency needs to be much more clearly defined about what it means in this context. In a manufacturing facility, I might have a tighter latency requirement for communicating commands to valves that I would on dealing with lights that might take a while to come on anyway. Does that mean that you feel that this would be an ideal solution for such an environment? The same thing might easily be said for emergency alarms. I want all of them to come on and come on fast in the event of an emergency. A better description of what is meant by low-latency is clearly needed. [AS] Okay. We will try to include more details. In our current implementati= ons we need 200 ms between an event and the action - this leaves about a 10= 0 ms for security processing. We will add this in. I do not think that the current security requirements is sufficiently strident to reflect both the threat of breakage, cross-breakage and restrictions on where it should be used to pass muster. [AS] I thing this will be the main discussion item in the webex. We will ma= ke a proposal for the security guidelines section after the interim webex. _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. --_000_DB6PR0601MB2198CF3BF7F6028B5B25DAA6FC4C0DB6PR0601MB2198_ Content-Type: text/html; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable

Hi Jim,

thank you for the review and I apologise for the delayed response= - I was on sick leave due to a surgery. Please see comments inline from th= e authors. 


Why restriction on reading messages?  It is not like an exte= rnal observer is
not going to be able to see the lights go on or off.
[AS] = There are several situations where lights are not visible but (multicast) network da= ta is accessible. Moreover, sensors (e.g. presence detectors) are cont= inuously talking to actuators and controllers without necessarily having a = visible effect on the lights. For several customers privacy is a very important concern and is almost a given. = The statement "anybody can listen to the traffic and tell when sensors= detect presence in a building without even being in the building"= ; is a very difficult sell. Having said that, it is true that simply encrypting the multicast traffic at the application layer= is only a prerequisite to provide the privacy needed and additional w= ork is required (e.g. generating random messages at different times). = In that sense the symmetric solution is probably not much better than the asymmetric solution. But the demand for priv= acy from customers is very clear and the perception among them is that= unencrypted data implies poor security.

I am not sure what you mean by synchronous manner.  Does thi= s mean that the
light needs to change state between the command and the response = message?
(As opposed to an asynchronous manner.)  Or do you mean in a= synchronized
manner where everything happens at a given time relative to the c= ommand
(which could be all at the same time).
[A= S] We mean the latter - the lights need to go on and off together and not serial= ly. Will clarify in the next version of the draft.

The solution in section 4 does= not seem to meet the following requirement
"Only authorized members of the applica= tion group must be able to read and
process messages."
[AS]&n= bsp;You are right, we cannot satisfy the privacy requirement in Section 4. We could extend the current solution to include a group wide encryption key to meet this requirement. However, = this will add additional latency to the asymmetric solution.

The statement is made that AT-R tokens with = references are more efficient
from a bandwidth point of view.  Does t= his mean that there is going to be a
recommendation that these be provided prior = to the first command so that all
n devices dereferencing the pointer will not= kill the bandwidth?
[AS] Good point. Will add the recommendation. =

This document needs to have a = solution for dealing with nonce space
allocation for the cases where more than one= sender is going be able to use
the same key.  This is going to be part= of the problems with replay
detection as well as security considerations= .
[AS] Okay. Will add some text in the = next version of the draft&n= bsp;for better clarification. The idea as written in 4.3 (Nonce value) is to use the Client ID along with th= e sender=92s sequence number to create the complete nonce for replay and CC= M processing.

Should the al= gorithms be using high water detection of sequence numbers
rather than the case of not yet used?  = Or is that an application specific
type thing?
[SK]&nbs= p;This is tricky since it can create all kind of new issues. One way to handle if= the sequence number of a sender is about to roll over is that the sender r= equests a new key issued for the group by the KDC. Tricky part is if there = are multiple senders who are not reaching the roll over of their sequence number then have to be forced to = use a new key or there needs to be some overlap between the old key and new= key before every sender in the group starts using the new key.

How d= oes section 5.2 Token Verification reconcile with the idea of doing
referen= ces in AT-R tokens?
[SK] I guess the current 5.2 should have been in an optimization section and not the security considerations s= ection. In the rest of the document we say that the AT-R is either self-con= tained or by reference. I guess we wanted to keep both options possible. 5.= 2 then should only be mentioning about the security considerations when using a self-contained token (like = revocation of the token not being known to the verifier).

In section 6.3, if a device has multiple security domains, why could they
not come from multiple KDCs?
[SK] Multiple KDCs are okay. We need to ensure unique Application IDs assigned by different KDC since they indirec= tly map to the domains

The term low latency needs to = be much more clearly defined about what it
means in this context.  In a manufactur= ing facility, I might have a tighter
latency requirement for communicating comman= ds to valves that I would on
dealing with lights that might take a while = to come on anyway.  Does that
mean that you feel that this would be an ide= al solution for such an
environment?  The same thing might easi= ly be said for emergency alarms.  I
want all of them to come on and come on fast= in the event of an emergency.
A better description of what is meant by low= -latency is clearly needed.
[AS] Okay. We will try = to include more details. In our current implementations we need 200 ms between an event and the action - this leav= es about a 100 ms for security processing. We will add this in.

I do not think that the curren= t security requirements is sufficiently
strident to reflect both the threat of break= age, cross-breakage and
restrictions on where it should be used to p= ass muster.
[AS] I thing this will be the main discussion item in the webex. We will make a= proposal for the security guidelines section after the interim webex.







____________________________________________= ___
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/= listinfo/ace
________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments. --_000_DB6PR0601MB2198CF3BF7F6028B5B25DAA6FC4C0DB6PR0601MB2198_-- From nobody Fri Feb 3 10:03:06 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 47A92129472 for ; Fri, 3 Feb 2017 10:03:05 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -5.098 X-Spam-Level: X-Spam-Status: No, score=-5.098 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-3.199, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id osRMwocd4icD for ; Fri, 3 Feb 2017 10:03:02 -0800 (PST) Received: from mail2.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D594A129494 for ; Fri, 3 Feb 2017 10:03:01 -0800 (PST) Received: from hebrews (24.21.96.37) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Fri, 3 Feb 2017 10:25:49 -0800 From: Jim Schaad To: 'Somaraju Abhinav' , References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> In-Reply-To: Date: Fri, 3 Feb 2017 10:02:42 -0800 Message-ID: <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0567_01D27E04.AAA73720" X-Mailer: Microsoft Outlook 16.0 Thread-Index: AQDlYgNaFJuUoYTAmdgrcl0KzneQLAH92LGxoyHX62A= Content-Language: en-gb X-Originating-IP: [24.21.96.37] Archived-At: Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 03 Feb 2017 18:03:05 -0000 ------=_NextPart_000_0567_01D27E04.AAA73720 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit See comments inline From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju Abhinav Sent: 02 February 2017 03:48 To: Jim Schaad ; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast Hi Jim, thank you for the review and I apologise for the delayed response - I was on sick leave due to a surgery. Please see comments inline from the authors. Why restriction on reading messages? It is not like an external observer is not going to be able to see the lights go on or off. [AS] There are several situations where lights are not visible but (multicast) network data is accessible. Moreover, sensors (e.g. presence detectors) are continuously talking to actuators and controllers without necessarily having a visible effect on the lights. For several customers privacy is a very important concern and is almost a given. The statement "anybody can listen to the traffic and tell when sensors detect presence in a building without even being in the building" is a very difficult sell. Having said that, it is true that simply encrypting the multicast traffic at the application layer is only a prerequisite to provide the privacy needed and additional work is required (e.g. generating random messages at different times). In that sense the symmetric solution is probably not much better than the asymmetric solution. But the demand for privacy from customers is very clear and the perception among them is that unencrypted data implies poor security. [JLS] I am sensing a problem here. You have stated that there is a requirement that encryption is a requirement that people are going to say must be me. However, below you have stated that if authentication is a requirement then encryption suddenly becomes a non-requirement? You appear to be stating that there are circumstances where it is fine not to have the data encrypted if one needs to know where it came from. Consider the following case I have a sensor in a room. When the sensor sees movement, it broadcasts a lights one command. The command is picked up by both the lightbulbs and by the security system. The security system must know which sensor provided the command and therefore no encryption is going be needed here? That just seems wrong. Additionally, the situation where things are "continuously" talking would seem to be a good place where one would want to install a controller and not have the sensor directly talking to the actuator. You don't want to flood the actuators with trying to constantly turn on the lights. Also the use of actuators in this sense makes one think that this is a solution for things other than lighting systems which is what people are complaining about. The solution in section 4 does not seem to meet the following requirement "Only authorized members of the application group must be able to read and process messages." [AS] You are right, we cannot satisfy the privacy requirement in Section 4. We could extend the current solution to include a group wide encryption key to meet this requirement. However, this will add additional latency to the asymmetric solution. This document needs to have a solution for dealing with nonce space allocation for the cases where more than one sender is going be able to use the same key. This is going to be part of the problems with replay detection as well as security considerations. [AS] Okay. Will add some text in the next version of the draft for better clarification. The idea as written in 4.3 (Nonce value) is to use the Client ID along with the sender's sequence number to create the complete nonce for replay and CCM processing. Should the algorithms be using high water detection of sequence numbers rather than the case of not yet used? Or is that an application specific type thing? [SK] This is tricky since it can create all kind of new issues. One way to handle if the sequence number of a sender is about to roll over is that the sender requests a new key issued for the group by the KDC. Tricky part is if there are multiple senders who are not reaching the roll over of their sequence number then have to be forced to use a new key or there needs to be some overlap between the old key and new key before every sender in the group starts using the new key. [JLS] Lots of spinning in graves from the idea of having a sequence number roll over given the harsh requirements that a nonce (built from the sequence number) must never be re-used twice for many of the algorithms that are going to be used here. I do not think that the current security requirements is sufficiently strident to reflect both the threat of breakage, cross-breakage and restrictions on where it should be used to pass muster. [AS] I thing this will be the main discussion item in the webex. We will make a proposal for the security guidelines section after the interim webex. [JLS] A proposal before the call is better because then we have a starting point for discussions as well as allowing people who will not make the call be able to have some initial input on where discussions points should be directed. _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace ________________________________________________________ The contents of this e-mail and any attachments are confidential to the intended recipient. They may not be disclosed to or used by or copied in any way by anyone other than the intended recipient. If this e-mail is received in error, please immediately notify the sender and delete the e-mail and attached documents. Please note that neither the sender nor the sender's company accept any responsibility for viruses and it is your responsibility to scan or otherwise check this e-mail and any attachments. ------=_NextPart_000_0567_01D27E04.AAA73720 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

See comments inline

 

 

From:<= /b> Ace = [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju = Abhinav
Sent: 02 February 2017 03:48
To: Jim Schaad = <ietf@augustcellars.com>; = draft-somaraju-ace-multicast@tools.ietf.org
Cc: 'ace' = <ace@ietf.org>
Subject: Re: [Ace] = draft-somaraju-ace-multicast

 

H= i Jim,=

t= hank you for the review and I apologise for the delayed response - I was = on sick leave due to a surgery. Please see comments inline from the = authors. =

 <= /span>

W= hy restriction on reading messages?  It is not like an external = observer is<= br>n= ot going to be able to see the lights go on or off.<= br>[AS] There are several situations where lights are not visible but = (multicast) network data is accessible. Moreover, sensors (e.g. presence = detectors) are continuously talking to actuators and controllers = without necessarily having a visible effect on the lights. For several = customers privacy is a very important concern and is almost a = given. The statement "anybody can listen to the traffic and = tell when sensors detect presence in a building without even being = in the building" is a very difficult sell. Having said that, it is = true that simply encrypting the multicast traffic at the application = layer is only a prerequisite to provide the privacy needed and = additional work is required (e.g. generating random messages at = different times). In that sense the symmetric solution is probably not = much better than the asymmetric solution. But the demand for = privacy from customers is very clear and the perception among them = is that unencrypted data implies poor security.

[JLS] I am sensing a problem here.  You have stated that there = is a requirement that encryption is a requirement that people are going = to say must be me.  However, below you have stated that if = authentication is a requirement then encryption suddenly becomes a = non-requirement?  You appear to be stating that there are = circumstances where it is fine not to have the data encrypted if one = needs to know where it came from.

 

Consider the following case   I have a sensor in a = room.  When the sensor sees movement, it broadcasts a lights one = command.  The command is picked up by both the lightbulbs and by = the security system.  The security system must know which sensor = provided the command and therefore no encryption is going be needed = here?  That just seems wrong.

 

Additionally, the situation where things are = “continuously” talking would seem to be a good place where = one would want to install a controller and not have the sensor directly = talking to the actuator.  You don’t want to flood the = actuators with trying to constantly turn on the lights.  Also the = use of actuators in this sense makes one think that this is a solution = for things other than lighting systems which is what people are = complaining about.

 <= /span>

<= br>T= he solution in section 4 does not seem to meet the following = requirement
&= quot;Only authorized members of the application group must be able to = read and
p= rocess messages."
[AS] You are right, we cannot satisfy the privacy requirement in = Section 4. We could extend the current solution to include a group = wide encryption key to meet this requirement. However, this will add = additional latency to the asymmetric solution.

T= his document needs to have a solution for dealing with nonce = space
a= llocation for the cases where more than one sender is going be able to = use
t= he same key.  This is going to be part of the problems with = replay
d= etection as well as security = considerations.

[AS] Okay. Will add some text in the next version of the = draft for better = clarification. The idea as written in 4.3 (Nonce = value) is to use the Client ID along with the sender’s sequence = number to create the complete nonce for replay and CCM = processing.


S= hould the algorithms be using high water detection of sequence = numbers
r= ather than the case of not yet used?  Or is that an application = specific
t= ype thing?

[SK] This is tricky since it can create all kind of new issues. = One way to handle if the sequence number of a sender is about to roll = over is that the sender requests a new key issued for the group by the = KDC. Tricky part is if there are multiple senders who are not reaching = the roll over of their sequence number then have to be forced to use a = new key or there needs to be some overlap between the old key and new = key before every sender in the group starts using the new = key.

[JLS] Lots of spinning in graves from the idea of having a sequence = number roll over given the harsh requirements that a nonce (built from = the sequence number) must never be re-used twice for many of the = algorithms that are going to be used = here.

 

I= do not think that the current security requirements is = sufficiently
s= trident to reflect both the threat of breakage, cross-breakage = and
r= estrictions on where it should be used to pass = muster.

[AS] I thing this will be the main discussion item in the webex. We = will make a proposal for the security guidelines section after the = interim webex.

[JLS] A proposal before the = call is better because then we have a starting point for discussions as = well as allowing people who will not make the call be able to have some = initial input on where discussions points should be = directed.







_= ______________________________________________
A= ce mailing list
<= a href=3D"mailto:Ace@ietf.org">Ace@ietf.org
h= ttps://www.ietf.org/mailman/listinfo/ace

<= /div>

_______________________________________________________= _ The contents of this e-mail and any attachments are confidential to = the intended recipient. They may not be disclosed to or used by or = copied in any way by anyone other than the intended recipient. If this = e-mail is received in error, please immediately notify the sender and = delete the e-mail and attached documents. Please note that neither the = sender nor the sender's company accept any responsibility for viruses = and it is your responsibility to scan or otherwise check this e-mail and = any attachments.

------=_NextPart_000_0567_01D27E04.AAA73720-- From nobody Sat Feb 4 07:46:52 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 21CA0129418 for ; Sat, 4 Feb 2017 07:46:51 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.888 X-Spam-Level: X-Spam-Status: No, score=-1.888 tagged_above=-999 required=5 tests=[DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-1.887, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=zgrp.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a-hkzKB6otZ1 for ; Sat, 4 Feb 2017 07:46:48 -0800 (PST) Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on0127.outbound.protection.outlook.com [104.47.0.127]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id BD99B12940E for ; Sat, 4 Feb 2017 07:46:47 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zgrp.onmicrosoft.com; s=selector1-tridonic-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=Dhq37EnGhcX03KM2esecvYMwOQV6775PnDnAfqhppMI=; b=ArZ5KhdvvibgEM4wxI6MlCP/0BaHlrfCu3K1caoWVYuk8iFG9pu7N18fMXIKWs0b9arTZwT9oon6Pb0Il/ajTddbDUAPsFBJO+SF5RSK4jJRCBXCS9KvlrtjcELOnTQeRW4gW2+D1WXDWAC0qmUGANJbkL/aQePrMJvk2FZLWlI= Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) by DB6PR0601MB2200.eurprd06.prod.outlook.com (10.168.57.141) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.888.16; Sat, 4 Feb 2017 15:46:44 +0000 Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) by DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) with mapi id 15.01.0888.022; Sat, 4 Feb 2017 15:46:44 +0000 From: Somaraju Abhinav To: Jim Schaad , "draft-somaraju-ace-multicast@tools.ietf.org" Thread-Topic: [Ace] draft-somaraju-ace-multicast Thread-Index: AdJqFjktU/bHwE2RRn6LNdkksHiqaQTMexNgAD/kTgAALLrFJw== Date: Sat, 4 Feb 2017 15:46:43 +0000 Message-ID: References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> , <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> In-Reply-To: <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=abhinav.somaraju@tridonic.com; x-originating-ip: [178.165.128.185] x-ms-office365-filtering-correlation-id: e9baad68-1c3f-47dd-b9a8-08d44d150523 x-ms-office365-filtering-ht: Tenant x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(48565401081); SRVR:DB6PR0601MB2200; x-microsoft-exchange-diagnostics: 1; DB6PR0601MB2200; 7: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 x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(192374486261705); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(8121501046)(5005006)(10201501046)(3002001)(6055026)(6041248)(20161123564025)(20161123562025)(20161123558025)(20161123555025)(20161123560025)(6072148); SRVR:DB6PR0601MB2200; BCL:0; PCL:0; RULEID:; SRVR:DB6PR0601MB2200; x-forefront-prvs: 020877E0CB x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(7916002)(39850400002)(39450400003)(39840400002)(39410400002)(189002)(43544003)(199003)(102836003)(6116002)(97736004)(101416001)(5001770100001)(2906002)(3846002)(92566002)(4326007)(189998001)(74316002)(606005)(25786008)(6506006)(77096006)(6436002)(3280700002)(122556002)(76176999)(54356999)(50986999)(2501003)(86362001)(5890100001)(5660300001)(230783001)(2950100002)(2900100001)(7696004)(6606003)(66066001)(561944003)(106356001)(19627405001)(105586002)(9686003)(6306002)(54896002)(99286003)(53936002)(81166006)(8676002)(81156014)(8936002)(236005)(3660700001)(55016002)(33656002)(68736007)(6246003)(7736002)(7906003)(229853002)(38730400001); DIR:OUT; SFP:1102; SCL:1; SRVR:DB6PR0601MB2200; H:DB6PR0601MB2198.eurprd06.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; received-spf: None (protection.outlook.com: tridonic.com does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/alternative; boundary="_000_DB6PR0601MB2198B6F0033915C28C1EE346FC4E0DB6PR0601MB2198_" MIME-Version: 1.0 X-OriginatorOrg: tridonic.com X-MS-Exchange-CrossTenant-originalarrivaltime: 04 Feb 2017 15:46:43.9870 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 8b206608-a593-4ace-a4b6-ef1fc83c9169 X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0601MB2200 Archived-At: Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 04 Feb 2017 15:46:51 -0000 --_000_DB6PR0601MB2198B6F0033915C28C1EE346FC4E0DB6PR0601MB2198_ Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable Why restriction on reading messages? It is not like an external observer i= s not going to be able to see the lights go on or off. [AS] There are several situations where lights are not visible but (multica= st) network data is accessible. Moreover, sensors (e.g. presence detectors)= are continuously talking to actuators and controllers without necessarily = having a visible effect on the lights. For several customers privacy is a v= ery important concern and is almost a given. The statement "anybody can lis= ten to the traffic and tell when sensors detect presence in a building with= out even being in the building" is a very difficult sell. Having said that,= it is true that simply encrypting the multicast traffic at the application= layer is only a prerequisite to provide the privacy needed and additional = work is required (e.g. generating random messages at different times). In t= hat sense the symmetric solution is probably not much better than the asymm= etric solution. But the demand for privacy from customers is very clear and= the perception among them is that unencrypted data implies poor security. [JLS] I am sensing a problem here. You have stated that there is a require= ment that encryption is a requirement that people are going to say must be = me. However, below you have stated that if authentication is a requirement= then encryption suddenly becomes a non-requirement? You appear to be stat= ing that there are circumstances where it is fine not to have the data encr= ypted if one needs to know where it came from. Consider the following case I have a sensor in a room. When the sensor s= ees movement, it broadcasts a lights one command. The command is picked up= by both the lightbulbs and by the security system. The security system mu= st know which sensor provided the command and therefore no encryption is go= ing be needed here? That just seems wrong. [AS] No, we are not suggesting that encryption is a non-requirement if (sou= rce) authentication is a requirement. I was just merely pointing out below = that encryption would add additional latency in the asymmetric case. We tak= e your point that our current draft does not have encryption specified in t= he asymmetric solution. We will add the possibility of encrypting with a gr= oup key in addition to the authentication in the asymmetric architecture in= the next version of the draft. Additionally, the situation where things are =93continuously=94 talking wou= ld seem to be a good place where one would want to install a controller and= not have the sensor directly talking to the actuator. You don=92t want to= flood the actuators with trying to constantly turn on the lights. [AS] You make a good point. However, the lighting deployments are very vari= ed. We will always have sensors talking to control functions which in turn = talk to actuators. The main question is where is a control function, which = is just a piece of software, deployed. In bigger installations, we typicall= y have more centralized controls on dedicated hardware. In smaller installa= tions, the control function software could be running directly on the lumin= aire hardware. In this case the sensors talk to the luminaires directly eve= n though they are talking to a control function. At manufacturing time, we = typically do not know the type of installations the luminaires/sensors woul= d end up in. So, we have to usually take care of both situations with a sta= cked controller approach where bigger controllers take over if available. Also the use of actuators in this sense makes one think that this is a solu= tion for things other than lighting systems which is what people are compla= ining about. [AS] This is not the intention. We can put this in the security guidelines = section. The solution in section 4 does not seem to meet the following requirement "Only authorized members of the application group must be able to read and process messages." [AS] You are right, we cannot satisfy the privacy requirement in Section 4.= We could extend the current solution to include a group wide encryption ke= y to meet this requirement. However, this will add additional latency to th= e asymmetric solution. This document needs to have a solution for dealing with nonce space allocation for the cases where more than one sender is going be able to use the same key. This is going to be part of the problems with replay detection as well as security considerations. [AS] Okay. Will add some text in the next version of the draft for better c= larification. The idea as written in 4.3 (Nonce value) is to use the Client= ID along with the sender=92s sequence number to create the complete nonce = for replay and CCM processing. Should the algorithms be using high water detection of sequence numbers rather than the case of not yet used? Or is that an application specific type thing? [SK] This is tricky since it can create all kind of new issues. One way to = handle if the sequence number of a sender is about to roll over is that the= sender requests a new key issued for the group by the KDC. Tricky part is = if there are multiple senders who are not reaching the roll over of their s= equence number then have to be forced to use a new key or there needs to be= some overlap between the old key and new key before every sender in the gr= oup starts using the new key. [JLS] Lots of spinning in graves from the idea of having a sequence number = roll over given the harsh requirements that a nonce (built from the sequenc= e number) must never be re-used twice for many of the algorithms that are g= oing to be used here. [AS] Definitely we will not have sequence numbers rolling over. The current= proposal is that a concatenation of a [Unique client ID] and [individual c= lient sequence number] form the nonce. The only point of debate is whether = we want to roll over keys for all senders if the sequence number space of o= ne client is exhausted. Note that because the (unique) client ID is always = a part of the nonce, we will never have re-use of the same nonce. I do not think that the current security requirements is sufficiently strident to reflect both the threat of breakage, cross-breakage and restrictions on where it should be used to pass muster. [AS] I thing this will be the main discussion item in the webex. We will ma= ke a proposal for the security guidelines section after the interim webex. [JLS] A proposal before the call is better because then we have a starting = point for discussions as well as allowing people who will not make the call= be able to have some initial input on where discussions points should be d= irected. [AS] Okay. I am currently preparing slides for the webex and I will add pro= posals for what else we can add to the security guidelines section in the s= lides. _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. --_000_DB6PR0601MB2198B6F0033915C28C1EE346FC4E0DB6PR0601MB2198_ Content-Type: text/html; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable

 

Why restriction on reading messages?  It is not like an= external observer is
not going to be able to see the lights go on or off.<= /span>
[AS] There are several situations where lights= are not visible but (multicast) network data is accessible. Moreover, sens= ors (e.g. presence detectors) are continuously talking to actuators and controllers without necessarily having a visible effect o= n the lights. For several customers privacy is a very important concern and= is almost a given. The statement "anybody can listen to the traf= fic and tell when sensors detect presence in a building without even being in the building" is a very diff= icult sell. Having said that, it is true that simply encrypting the multica= st traffic at the application layer is only a prerequisite to provide = the privacy needed and additional work is required (e.g. generating random messages at different times). In that sense the symmetri= c solution is probably not much better than the asymmetric solution. B= ut the demand for privacy from customers is very clear and the perception a= mong them is that unencrypted data implies poor security.

[JLS] I am sensing a problem here.  You have stated t= hat there is a requirement that encryption is a requirement that people are= going to say must be me.  However, below you have stated that if authentication is a requirement then encryption suddenly be= comes a non-requirement?  You appear to be stating that there are circ= umstances where it is fine not to have the data encrypted if one needs to k= now where it came from.


Consider the following case   I have a sensor in= a room.  When the sensor sees movement, it broadcasts a lights one co= mmand.  The command is picked up by both the lightbulbs and by the security system.  The security system must know which sensor p= rovided the command and therefore no encryption is going be needed here? &n= bsp;That just seems wrong.

[AS] No, we are not suggesting tha= t encryption is a non-requirement if (source) authentication is a requ= irement. I was just merely pointing out below that encryption would add add= itional latency in the asymmetric case. We take your point that our current draft does not have encryption specifi= ed in the asymmetric solution. We will add the possibility of encrypting wi= th a group key in addition to the authentication in the asymmetric architec= ture in the next version of the draft.

 

Additionally, the situation where things are =93continuous= ly=94 talking would seem to be a good place where one would want to install= a controller and not have the sensor directly talking to the actuator.  You don=92t want to flood the actuators with trying= to constantly turn on the lights.  

[AS] You make a good point. However, = the lighting deployments are very varied. We will always have sensors talki= ng to control functions which in turn talk to actuators. The main question is where is a control function, which is= just a piece of software, deployed. In bigger installations, we typically = have more centralized controls on dedicated hardware. In smaller installati= ons, the control function software could be running directly on the luminaire hardware. In this case the sensors ta= lk to the luminaires directly even though they are talking to a control fun= ction. At manufacturing time, we typically do not know the type of ins= tallations the luminaires/sensors would end up in. So, we have to usually take care of both situations with a stac= ked controller approach where bigger controllers take over if available.&nb= sp;


Also the use of actuators in this sense= makes one think that this is a solution for things other than lighting systems which is what people are complaining about.

[AS] This is not the intention. We can put this in the security guidelines section. 


The solution in section 4 does not seem to meet = the following requirement
"Only authorized members of the application group must be able t= o read and
process messages."
[AS] You are right, we cannot satisfy the privacy req= uirement in Section 4. We could extend the current solution to include= a group wide encryption key to meet this requirement. However, this will add additional latency to the asymmetric solution.=

This document needs to have a solution for dealing with nonc= e space
allocation for the cases where more than one sender is going= be able to use
the same key.  This is going to be part of the problems= with replay
detection as well as security considerations.

[AS] Okay. Will add some text in the next version of the d= raft for better clarification. The id= ea as written in 4.3 (Nonce value) is to use the Client ID along with the sender=92s sequence number to create the complete nonce = for replay and CCM processing.


Should the algorithms be using high water detection o= f sequence numbers
rather than the case of not yet used?  Or is that an ap= plication specific
type thing?

[SK] This is tricky since it can create all kind of n= ew issues. One way to handle if the sequence number of a sender is about to= roll over is that the sender requests a new key issued for the group by the KDC. Tricky part is if there are multiple send= ers who are not reaching the roll over of their sequence number then have t= o be forced to use a new key or there needs to be some overlap between the = old key and new key before every sender in the group starts using the new key.

[JLS] Lots of spinning in graves from the idea of having a= sequence number roll over given the harsh requirements that a nonce (built= from the sequence number) must never be re-used twice for many of the algorithms that are going to be used here.

[AS] Definitely we will not have s= equence numbers rolling over. The current proposal is that a concatenation = of a [Unique client ID] and [individual client sequence number] form t= he nonce. The only point of debate is whether we want to roll over keys for all senders if the sequence number space of = one client is exhausted. Note that because the (unique) client ID is a= lways a part of the nonce, we will never have re-use of the same nonce.&nbs= p;

 

I do not think that the current security requirements is suf= ficiently
strident to reflect both the threat of breakage, cross-break= age and
restrictions on where it should be used to pass muster.

[AS] I thing this will be the main discussion item in the = webex. We will make a proposal for the security guidelines section after th= e interim webex.

[JLS] A proposal before the= call is better because then we have a starting point for discussions as we= ll as allowing people who will not make the call be able to have some initi= al input on where discussions points should be directed.

[AS] Okay. I am currently pre= paring slides for the webex and I will add proposals for what else we can a= dd to the security guidelines section in the slides. 



_______________________________________________
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments.

________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments. --_000_DB6PR0601MB2198B6F0033915C28C1EE346FC4E0DB6PR0601MB2198_-- From nobody Mon Feb 6 00:30:00 2017 Return-Path: X-Original-To: ace@ietf.org Delivered-To: ace@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 94C11129560; Mon, 6 Feb 2017 00:29:58 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: X-Test-IDTracker: no X-IETF-IDTracker: 6.42.0 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <148636979860.18909.403865345306236128.idtracker@ietfa.amsl.com> Date: Mon, 06 Feb 2017 00:29:58 -0800 Archived-At: Cc: ace@ietf.org Subject: [Ace] I-D Action: draft-ietf-ace-oauth-authz-05.txt X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2017 08:29:58 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Authentication and Authorization for Constrained Environments of the IETF. Title : Authentication and Authorization for Constrained Environments (ACE) Authors : Ludwig Seitz Goeran Selander Erik Wahlstroem Samuel Erdtman Hannes Tschofenig Filename : draft-ietf-ace-oauth-authz-05.txt Pages : 62 Date : 2017-02-06 Abstract: This specification defines a framework for authentication and authorization in Internet of Things (IoT) environments. The framework is based on a set of building blocks including OAuth 2.0 and CoAP, thus making a well-known and widely used authorization solution suitable for IoT devices. Existing specifications are used where possible, but where the constraints of IoT devices require it, extensions are added and profiles are defined. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-ace-oauth-authz/ There's also a htmlized version available at: https://tools.ietf.org/html/draft-ietf-ace-oauth-authz-05 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-ace-oauth-authz-05 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Mon Feb 6 00:37:22 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B7FE8129CAF for ; Mon, 6 Feb 2017 00:37:20 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.701 X-Spam-Level: X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sics.se Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nXYDh-JbFzL7 for ; Mon, 6 Feb 2017 00:37:18 -0800 (PST) Received: from mail-lf0-x230.google.com (mail-lf0-x230.google.com [IPv6:2a00:1450:4010:c07::230]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7D63012945C for ; Mon, 6 Feb 2017 00:37:18 -0800 (PST) Received: by mail-lf0-x230.google.com with SMTP id n124so40480621lfd.2 for ; Mon, 06 Feb 2017 00:37:18 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sics.se; s=google; h=subject:references:to:from:message-id:date:user-agent:mime-version :in-reply-to; bh=F6CxRsYPhGXOLRJ1MiQ2LOGIufbLh/OuD2lbNuiSwzE=; b=gcNEV8TagDAmg9jUqahdcjJ6I5O1YSU40VSmItjU4R2XCGJ3QxSm4nWiTJbrjGHITF ksY1PgzWA0P/Rt+jtDb3ew0Yg8VGbxUgPhriX3japyXz+ipnI17LPsUWEdaanCHsKfsS dtIgeEidkeurjZdcpXYD7YmTCibKxrFwtS4/bYGRwEO9WQRLCQP62S1beZPA7zVGMzpa MIxAvgRkvTRxuzHplKrbP9LB56AjkVA0hTDcnRJgbC2mGUvAQk7BKw8n5wNNxsAUTNHs 1nhGGj7hrl4TCQnss2m/jg5jpSG8/3RxU6jDS8CrmmA1WiUbRBfdR5Gc/vwHJJRCwhLp 0scg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:references:to:from:message-id:date :user-agent:mime-version:in-reply-to; bh=F6CxRsYPhGXOLRJ1MiQ2LOGIufbLh/OuD2lbNuiSwzE=; b=nhxV2L9gfyG1iGz1INrSdCXXyVNUN5prrru3Uhko6rFtdlK/rPZ076mgKkExypgVlH tCQLfY8/ED36m5Km2QU7XjDQSYx4TsK04M4eqFSVxknC1+X2jtrYgH11kbDRq4SeOfEq xPuaOynvwcQVm0uX+4gwbNXwLKD69oATt+O7a6XGL7AUqAlUOVlxG4EnfgjQu8HOcZr4 I4vWlRm8N6K/goJjFrsX7K9CihXKcr1NQ0v/NWUi5oXz34F4wDGoerkpryFmOx2aLhpq GHrQeo3AS/F813lttJcPMg+53Hh4pT3BJHMh/vpw+DR9del3UVTJCOG0/NWx6leqkc3h w8VA== X-Gm-Message-State: AIkVDXIeiXN7TEIpOZ487jcANgowZjRtZkNKWCCcsg9dKZmKICrZDKGzQlfLEJnk/7ERDQ1L X-Received: by 10.25.32.149 with SMTP id g143mr3108715lfg.7.1486370236278; Mon, 06 Feb 2017 00:37:16 -0800 (PST) Received: from [192.168.0.166] ([85.235.12.155]) by smtp.gmail.com with ESMTPSA id 9sm24326ljn.1.2017.02.06.00.37.15 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 06 Feb 2017 00:37:15 -0800 (PST) References: <148636979879.18909.5062709426532254112.idtracker@ietfa.amsl.com> To: "ace@ietf.org" From: Ludwig Seitz X-Forwarded-Message-Id: <148636979879.18909.5062709426532254112.idtracker@ietfa.amsl.com> Message-ID: Date: Mon, 6 Feb 2017 09:37:07 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: <148636979879.18909.5062709426532254112.idtracker@ietfa.amsl.com> Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms060902060605060507090404" Archived-At: Subject: [Ace] Fwd: New Version Notification for draft-ietf-ace-oauth-authz-05.txt X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2017 08:37:21 -0000 This is a cryptographically signed message in MIME format. --------------ms060902060605060507090404 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: quoted-printable Hello ACE, I have posted an update of our draft, please see the changelog for what=20 has been updated. I am in the middle of implementing this, and I'd encourage others to do=20 so as well (https://bitbucket.org/lseitz/ace-java). I would also welcome review comments, especially on the Client Token=20 (CT) concept which is probably the most radical change wrt vanilla OAuth = 2.0. I would like you to specially consider the following questions: a.) Do you think the usecase for CT is valid? b.) Do you think CT is a reasonable solution for the usecase? (alternative solutions or suggestions for improvement are welcome) c.) Should the CT (or an alternative solution) be part of this draft or=20 should it be a separate draft (or none at all)? Regards, Ludwig -------- Forwarded Message -------- A new version of I-D, draft-ietf-ace-oauth-authz-05.txt has been successfully submitted by Ludwig Seitz and posted to the IETF repository. Name: draft-ietf-ace-oauth-authz Revision: 05 Title: Authentication and Authorization for Constrained Environments (AC= E) Document date: 2017-02-03 Group: ace Pages: 62 URL:=20 https://www.ietf.org/internet-drafts/draft-ietf-ace-oauth-authz-05.txt Status: https://datatracker.ietf.org/doc/draft-ietf-ace-oauth-aut= hz/ Htmlized: https://tools.ietf.org/html/draft-ietf-ace-oauth-authz-05= Diff:=20 https://www.ietf.org/rfcdiff?url2=3Ddraft-ietf-ace-oauth-authz-05 Abstract: This specification defines a framework for authentication and authorization in Internet of Things (IoT) environments. The framework is based on a set of building blocks including OAuth 2.0 and CoAP, thus making a well-known and widely used authorization solution suitable for IoT devices. Existing specifications are used where possible, but where the constraints of IoT devices require it, extensions are added and profiles are defined. =20 Please note that it may take a couple of minutes from the time of submiss= ion until the htmlized version and diff are available at tools.ietf.org. The IETF Secretariat --------------ms060902060605060507090404 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC CtQwggTqMIID0qADAgECAhAU4QcxMULaotNy8Yzm2pESMA0GCSqGSIb3DQEBCwUAMHUxCzAJ BgNVBAYTAklMMRYwFAYDVQQKEw1TdGFydENvbSBMdGQuMSkwJwYDVQQLEyBTdGFydENvbSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTEjMCEGA1UEAxMaU3RhcnRDb20gQ2xhc3MgMSBDbGll bnQgQ0EwHhcNMTYwMzE0MDkzNDMyWhcNMTcwMzE0MDkzNDMyWjA4MRcwFQYDVQQDDA5sdWR3 aWdAc2ljcy5zZTEdMBsGCSqGSIb3DQEJARYObHVkd2lnQHNpY3Muc2UwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC9kgmm82Op78D9DXYNJrQW5bUdSxElnOC/CzAK/enHn+uF B/RLo8alI6Ukd35qsAtcje0I3e/RtbkRnkEuhKneH+aDRofy7YaWQO61CjIlcdndTx8FEmXK /swcafYX5PbyzQFGgApwtWFkVXcq3R87CDB3VbkHzTHIBmfwZ4hhDeEyuJoSuWEVWQppfTji /GpVLiDx6s+Zqm3qI5EkjvhQ+jX3tJxXqUf4w1BY6/sBLfvr7TOPGPoAmi6B2UOgyDSfX3c0 +jzlYFLNb6Eqc7uGvaQi7VN39kAJXz9f+qL/wokaNjboK3/JyTG/ikxsWymzO9E0/U9apn2Y z5SVUGSDAgMBAAGjggGxMIIBrTAOBgNVHQ8BAf8EBAMCBLAwHQYDVR0lBBYwFAYIKwYBBQUH AwIGCCsGAQUFBwMEMAkGA1UdEwQCMAAwHQYDVR0OBBYEFN37NX1Db3Xp23cbQI1MpYPUMw84 MB8GA1UdIwQYMBaAFCSBbDlhvkkPj7cbRivJKLUnSG1oMG8GCCsGAQUFBwEBBGMwYTAkBggr BgEFBQcwAYYYaHR0cDovL29jc3Auc3RhcnRzc2wuY29tMDkGCCsGAQUFBzAChi1odHRwOi8v YWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9zY2EuY2xpZW50MS5jcnQwOAYDVR0fBDEwLzAtoCug KYYnaHR0cDovL2NybC5zdGFydHNzbC5jb20vc2NhLWNsaWVudDEuY3JsMBkGA1UdEQQSMBCB Dmx1ZHdpZ0BzaWNzLnNlMCMGA1UdEgQcMBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzBG BgNVHSAEPzA9MDsGCysGAQQBgbU3AQIEMCwwKgYIKwYBBQUHAgEWHmh0dHA6Ly93d3cuc3Rh cnRzc2wuY29tL3BvbGljeTANBgkqhkiG9w0BAQsFAAOCAQEAUy78MN+soYHwIz+6m9mMkzPF KfgIq7sLupWnis7K5U66U9zfKOVDReyfUvPmar7P7Tb9uNNrUlkk3lSISplqU30TMnVbtK5D I0mxdpa1hZxIAa8uWQnAh/oYJJYaMziKxpZgsUjel6/ZnD0z/QsuHo763I1boi2ghe4Knj0f qFO79ErRr9aJJBfQlFVwQ4gRoYtMz18/usC3eqGxFz8a/LCeRMWeZJagGJ/St1WW1HUBmMFd vRFweeUdCvDbzK+WjqbxhXyi7b0sH65lWIjINCBVQ0AvqOwm/aXEWcIQlAIJjr2kEC6c0VY6 V1aP16BAKooEgGGOTrmcDGeteXZRyjCCBeIwggPKoAMCAQICEGunin0K14jWUQr5WeTntOEw DQYJKoZIhvcNAQELBQAwfTELMAkGA1UEBhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4x KzApBgNVBAsTIlNlY3VyZSBEaWdpdGFsIENlcnRpZmljYXRlIFNpZ25pbmcxKTAnBgNVBAMT IFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTE1MTIxNjAxMDAwNVoXDTMw MTIxNjAxMDAwNVowdTELMAkGA1UEBhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKTAn BgNVBAsTIFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MSMwIQYDVQQDExpTdGFy dENvbSBDbGFzcyAxIENsaWVudCBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AL192vfDon2D9luC/dtbX64eG3XAtRmvmCSsu1d52DXsCR58zJQbCtB2/A5uFqNxWacpXGGt TCRk9dEDBlmixEd8QiLkUfvHpJX/xKnmVkS6Iye8wUbYzMsDzgnpazlPg19dnSqfhM+Cevdf a89VLnUztRr2cgmCfyO9Otrh7LJDPG+4D8ZnAqDtVB8MKYJL6QgKyVhhaBc4y3bGWxKyXEtx 7QIZZGxPwSkzK3WIN+VKNdkiwTubW5PIdopmykwvIjLPqbJK7yPwFZYekKE015OsW6FV+s4D IM8UlVS8pkIsoGGJtMuWjLL4tq2hYQuuN0jhrxK1ljz50hH23gA9cbMCAwEAAaOCAWQwggFg MA4GA1UdDwEB/wQEAwIBBjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwQwEgYDVR0T AQH/BAgwBgEB/wIBADAyBgNVHR8EKzApMCegJaAjhiFodHRwOi8vY3JsLnN0YXJ0c3NsLmNv bS9zZnNjYS5jcmwwZgYIKwYBBQUHAQEEWjBYMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5z dGFydHNzbC5jb20wMAYIKwYBBQUHMAKGJGh0dHA6Ly9haWEuc3RhcnRzc2wuY29tL2NlcnRz L2NhLmNydDAdBgNVHQ4EFgQUJIFsOWG+SQ+PtxtGK8kotSdIbWgwHwYDVR0jBBgwFoAUTgvv GqRAW6UXaYcwyjRoQ9BBrvIwPwYDVR0gBDgwNjA0BgRVHSAAMCwwKgYIKwYBBQUHAgEWHmh0 dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeTANBgkqhkiG9w0BAQsFAAOCAgEAi+P3h+wB i4StDwECW5zhIycjBL008HACblIf26HY0JdOruKbrWDsXUsiI0j/7Crft9S5oxvPiDtVqspB OB/y5uzSns1lZwh7sG96bYBZpcGzGxpFNjDmQbcM3yl3WFIRS4WhNrsOY14V7y2IrUGsvets D+bjyOngCIVeC/GmsmtbuLOzJ606tEc9uRbhjTu/b0x2Fo+/e7UkQvKzNeo7OMhijixaULyI NBfCBJb+e29bLafgu6JqjOUJ9eXXj20p6q/CW+uVrZiSW57+q5an2P2i7hP85jQJcy5j4HzA 0rSiF3YPhKGAWUxKPMAVGgcYoXzWydOvZ3UDsTDTagXpRDIKQLZo02wrlxY6iMFqvlzsemVf 1odhQJmi7Eh5TbxI40kDGcBOBHhwnaOumZhLP+SWJQnjpLpSlUOj95uf1zo9oz9e0NgIJoz/ tdfrBzez76xtDsK0KfUDHt1/q59BvDI7RX6gVr0fQoCyMczNzCTcRXYHY0tq2J0oT+bsb6sH 2b4WVWAiJKnSYaWDjdA70qHX4mq9MIjO/ZskmSY8wtAk24orAc0vwXgYanqNsBX5Yv4sN4Z9 VyrwMdLcusP7HJgRdAGKpkR2I9U4zEsNJQJewM7S4Jalo1DyPrLpL2nTET8ZrSl5Utp1UeGp /2deoprGevfnxWB+vHNQiu85o6MxggPMMIIDyAIBATCBiTB1MQswCQYDVQQGEwJJTDEWMBQG A1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMgU3RhcnRDb20gQ2VydGlmaWNhdGlvbiBB dXRob3JpdHkxIzAhBgNVBAMTGlN0YXJ0Q29tIENsYXNzIDEgQ2xpZW50IENBAhAU4QcxMULa otNy8Yzm2pESMA0GCWCGSAFlAwQCAQUAoIICEzAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcB MBwGCSqGSIb3DQEJBTEPFw0xNzAyMDYwODM3MDdaMC8GCSqGSIb3DQEJBDEiBCDgc0FQRdX1 jS6LBS7zeLR8bZRcfh4ce1ApLaO4Pf6FojBsBgkqhkiG9w0BCQ8xXzBdMAsGCWCGSAFlAwQB KjALBglghkgBZQMEAQIwCgYIKoZIhvcNAwcwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMC AgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMIGaBgkrBgEEAYI3EAQxgYwwgYkwdTELMAkG A1UEBhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKTAnBgNVBAsTIFN0YXJ0Q29tIENl cnRpZmljYXRpb24gQXV0aG9yaXR5MSMwIQYDVQQDExpTdGFydENvbSBDbGFzcyAxIENsaWVu dCBDQQIQFOEHMTFC2qLTcvGM5tqREjCBnAYLKoZIhvcNAQkQAgsxgYyggYkwdTELMAkGA1UE BhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKTAnBgNVBAsTIFN0YXJ0Q29tIENlcnRp ZmljYXRpb24gQXV0aG9yaXR5MSMwIQYDVQQDExpTdGFydENvbSBDbGFzcyAxIENsaWVudCBD QQIQFOEHMTFC2qLTcvGM5tqREjANBgkqhkiG9w0BAQEFAASCAQCPAXkLEET8NCyAcBRUrs8l 0A/qo3iuVP9kcR9BfysTAc9SBEzDPjnq12RREuK5gN355BlkOlhuyoGF3AJEGp6WbzdOkR0v RXgif0UYoCpYRAYT9SgOawcoIjzTn2P/Y0qRQZHmWvUEs/MTKSVkDAFZyZ5c4DdHt4f7aYnH GZEwa45a3Srw3yYJBjvqP/6m+a1hlBAmw8jM/F7QETNGBk118+skG5StPMpdqwEV44H1lZ4U bZf1fUGBwEhoL9f2VaDXcqyHFIGWQyPyEpCq8cs7uOtDvkikdAfeu+65J4QI/eaFEk0ajzAO IjJGBZG9dkWxiViHST5VFgosfVpJixVcAAAAAAAA --------------ms060902060605060507090404-- From nobody Mon Feb 6 12:01:17 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4FEB812960F for ; Mon, 6 Feb 2017 12:01:15 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -3.788 X-Spam-Level: X-Spam-Status: No, score=-3.788 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-1.887, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=zgrp.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6DqQrmGmIwIY for ; Mon, 6 Feb 2017 12:01:11 -0800 (PST) Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-db5eur01on0100.outbound.protection.outlook.com [104.47.2.100]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 44D281295FF for ; Mon, 6 Feb 2017 12:00:54 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zgrp.onmicrosoft.com; s=selector1-tridonic-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=VPC3mnOOV+RzIJgUK/0fN0rpw3O9le8+LwlShPoE4OY=; b=cwtpNJhrifrUAgQojhG3vbS+bbo8JmWRlPTVHI3XIM31NthxsH3hkYnFRKy741mRE5umG0DYHooL6udCuttD3CINdLw3msFbqp1kWosMf/wfDbfd+HL/AlQ2GMY18MI1oxYdlJT0vFgUhYbPtrCcEbjj88oLyEiizqrAHf6lKrc= Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) by DB6PR0601MB2197.eurprd06.prod.outlook.com (10.168.57.138) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.888.16; Mon, 6 Feb 2017 20:00:51 +0000 Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) by DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) with mapi id 15.01.0888.025; Mon, 6 Feb 2017 20:00:51 +0000 From: Somaraju Abhinav To: Jim Schaad , "draft-somaraju-ace-multicast@tools.ietf.org" Thread-Topic: [Ace] draft-somaraju-ace-multicast Thread-Index: AdJqFjktU/bHwE2RRn6LNdkksHiqaQTMexNgAD/kTgAAmt6R3A== Date: Mon, 6 Feb 2017 20:00:51 +0000 Message-ID: References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> , <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> In-Reply-To: <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=abhinav.somaraju@tridonic.com; x-originating-ip: [25.161.237.4] x-ms-office365-filtering-correlation-id: 9e75e913-a32a-41d9-980e-08d44ecada0d x-ms-office365-filtering-ht: Tenant x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(48565401081); SRVR:DB6PR0601MB2197; x-microsoft-exchange-diagnostics: 1; DB6PR0601MB2197; 7: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 x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(278428928389397)(192374486261705)(21748063052155); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(8121501046)(20170203043)(5005006)(3002001)(10201501046)(6055026)(6041248)(20161123560025)(20161123562025)(20161123558025)(20161123555025)(20161123564025)(6072148); SRVR:DB6PR0601MB2197; BCL:0; PCL:0; RULEID:; SRVR:DB6PR0601MB2197; x-forefront-prvs: 0210479ED8 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(7916002)(39860400002)(39450400003)(39850400002)(39840400002)(39410400002)(189002)(377454003)(199003)(6506006)(105586002)(8936002)(54356999)(50986999)(81156014)(106356001)(19627405001)(7736002)(81166006)(8676002)(2906002)(5660300001)(4326007)(7696004)(38730400001)(76176999)(101416001)(74316002)(7906003)(77096006)(229853002)(68736007)(345774005)(86362001)(5890100001)(9686003)(25786008)(236005)(606005)(55016002)(99286003)(2501003)(230783001)(122556002)(33656002)(6436002)(561944003)(97736004)(3660700001)(92566002)(3280700002)(189998001)(3846002)(790700001)(2950100002)(6306002)(54896002)(6116002)(102836003)(53546003)(2900100001)(6246003)(53936002)(66066001); DIR:OUT; SFP:1102; SCL:1; SRVR:DB6PR0601MB2197; H:DB6PR0601MB2198.eurprd06.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; received-spf: None (protection.outlook.com: tridonic.com does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/alternative; boundary="_000_DB6PR0601MB2198D32E596B0E56D148B4E0FC400DB6PR0601MB2198_" MIME-Version: 1.0 X-OriginatorOrg: tridonic.com X-MS-Exchange-CrossTenant-originalarrivaltime: 06 Feb 2017 20:00:51.3996 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 8b206608-a593-4ace-a4b6-ef1fc83c9169 X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0601MB2197 Archived-At: Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 06 Feb 2017 20:01:15 -0000 --_000_DB6PR0601MB2198D32E596B0E56D148B4E0FC400DB6PR0601MB2198_ Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable Jim, All, please see a proposal for the Applicability statement that can be used as a= starting point for the Webex. Abhinav 5.1 Applicability statement This document describes two architectures based on symmetric group keys in = Section 3 and asymmetric keys in Section 4. The symmetric key solution is based on a group key that is shared between a= ll group members including senders and receivers. As all members of the gr= oup posses the same key, it is only possible to authenticate group member= ship for the source of a message. In particular, it is not possible to au= thenticate the unique source of a message and consequently it is not poss= ible to authorize a single node to control a group. This implies in particu= lar that any hacked receiver in a group could then be used to control all t= he receivers in the group. Moreover, because the group key is shared across multiple nodes, it may be = easier for an attacker to determine the group key by attacking any member o= f the group (note that this group key is dynamically generated and is usual= ly stored in volatile memory which offers some additional protection). The = probability of a stolen key increases with the number of nodes that are in = possession of the key. Moreover, subsequent to such an attack, it is also d= ifficult to determine which of the group members was compromised and this m= akes it difficult to return the system to normal operation after an attack. The asymmetric key solution distinguishes between a sender in the group and= the receivers. In particular, the sender is in possession of a private key= and the receivers are in possession of the corresponding public key. This= allows the unique source of any group message to be authenticated. Moreove= r, an attacker cannot compromise the system by breaking into any of the r= eceiving nodes. However, for constrained devices, the asymmetric key soluti= on comes at a processing cost with cryptographic computations taking rather= long. Therefore, it is recommended that whenever possible, the architecture with = source authentication SHOULD be used to secure all multicast communication.= However, in less sensitive applications where low-latency group communicat= ion is important (e.g. controlling luminaires in non-emergency applications= ), the architecture without source authentication MAY be used. In sensiti= ve applications such as health and safety, building security and emergency = applications the symmetric key based solution SHOULD not be used. When using the symmetric key solution two mitigating factors could improve = system security. It is possible to achieve source authentication of message= s at lower layers by requiring unique MAC layer keys for all devices with= in the network. The symmetric group keys are dynamically generated and ther= efore SHOULD be stored in volatile memory. ________________________________ From: Jim Schaad Sent: Friday, February 3, 2017 7:02:42 PM To: Somaraju Abhinav; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' Subject: RE: [Ace] draft-somaraju-ace-multicast See comments inline From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju Abhinav Sent: 02 February 2017 03:48 To: Jim Schaad ; draft-somaraju-ace-multicast@tools= .ietf.org Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast Hi Jim, thank you for the review and I apologise for the delayed response - I was o= n sick leave due to a surgery. Please see comments inline from the authors. Why restriction on reading messages? It is not like an external observer i= s not going to be able to see the lights go on or off. [AS] There are several situations where lights are not visible but (multica= st) network data is accessible. Moreover, sensors (e.g. presence detectors)= are continuously talking to actuators and controllers without necessarily = having a visible effect on the lights. For several customers privacy is a v= ery important concern and is almost a given. The statement "anybody can lis= ten to the traffic and tell when sensors detect presence in a building with= out even being in the building" is a very difficult sell. Having said that,= it is true that simply encrypting the multicast traffic at the application= layer is only a prerequisite to provide the privacy needed and additional = work is required (e.g. generating random messages at different times). In t= hat sense the symmetric solution is probably not much better than the asymm= etric solution. But the demand for privacy from customers is very clear and= the perception among them is that unencrypted data implies poor security. [JLS] I am sensing a problem here. You have stated that there is a require= ment that encryption is a requirement that people are going to say must be = me. However, below you have stated that if authentication is a requirement= then encryption suddenly becomes a non-requirement? You appear to be stat= ing that there are circumstances where it is fine not to have the data encr= ypted if one needs to know where it came from. Consider the following case I have a sensor in a room. When the sensor s= ees movement, it broadcasts a lights one command. The command is picked up= by both the lightbulbs and by the security system. The security system mu= st know which sensor provided the command and therefore no encryption is go= ing be needed here? That just seems wrong. Additionally, the situation where things are =93continuously=94 talking wou= ld seem to be a good place where one would want to install a controller and= not have the sensor directly talking to the actuator. You don=92t want to= flood the actuators with trying to constantly turn on the lights. Also th= e use of actuators in this sense makes one think that this is a solution fo= r things other than lighting systems which is what people are complaining a= bout. The solution in section 4 does not seem to meet the following requirement "Only authorized members of the application group must be able to read and process messages." [AS] You are right, we cannot satisfy the privacy requirement in Section 4.= We could extend the current solution to include a group wide encryption ke= y to meet this requirement. However, this will add additional latency to th= e asymmetric solution. This document needs to have a solution for dealing with nonce space allocation for the cases where more than one sender is going be able to use the same key. This is going to be part of the problems with replay detection as well as security considerations. [AS] Okay. Will add some text in the next version of the draft for better c= larification. The idea as written in 4.3 (Nonce value) is to use the Client= ID along with the sender=92s sequence number to create the complete nonce = for replay and CCM processing. Should the algorithms be using high water detection of sequence numbers rather than the case of not yet used? Or is that an application specific type thing? [SK] This is tricky since it can create all kind of new issues. One way to = handle if the sequence number of a sender is about to roll over is that the= sender requests a new key issued for the group by the KDC. Tricky part is = if there are multiple senders who are not reaching the roll over of their s= equence number then have to be forced to use a new key or there needs to be= some overlap between the old key and new key before every sender in the gr= oup starts using the new key. [JLS] Lots of spinning in graves from the idea of having a sequence number = roll over given the harsh requirements that a nonce (built from the sequenc= e number) must never be re-used twice for many of the algorithms that are g= oing to be used here. I do not think that the current security requirements is sufficiently strident to reflect both the threat of breakage, cross-breakage and restrictions on where it should be used to pass muster. [AS] I thing this will be the main discussion item in the webex. We will ma= ke a proposal for the security guidelines section after the interim webex. [JLS] A proposal before the call is better because then we have a starting = point for discussions as well as allowing people who will not make the call= be able to have some initial input on where discussions points should be d= irected. _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. --_000_DB6PR0601MB2198D32E596B0E56D148B4E0FC400DB6PR0601MB2198_ Content-Type: text/html; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable

Jim, All,


please see a proposal for the Applicability statement that can be used a= s a starting point for the Webex.


Abhinav


5.1 Applicability statement

This document descri= bes two architectures based on symmetric group keys in Section 3 and asymme= tric keys in Section 4.


The symmetric key so= lution is based on a group key that is shared between all group members inc= luding senders and receivers.  As all members of the group posses the = same key, it is only possible to   authenticate group membership for the source of a message. In   particular, i= t is not possible to authenticate the unique source of a   messag= e and consequently it is not possible to authorize a single node to control= a group. This implies in particular that any hacked receiver in a group could then be used to control all the receivers in the= group.


Moreover, because th= e group key is shared across multiple nodes, it may be easier for an a= ttacker to determine the group key by attacking any member of the group (no= te that this group key is dynamically generated and is usually stored in volatile memory which offers some additional prot= ection). The probability of a stolen key increases with the number of nodes= that are in possession of the key. Moreover, subsequent to such an attack,= it is also difficult to determine which of the group members was compromised and this makes it difficult to = return the system to normal operation after an attack.  


The asymmetric key s= olution distinguishes between a sender in the group and the receivers. = ;In particular, the sender is in possession of a private key and the receiv= ers are in possession of the corresponding public key.  This allows the unique source of any group message to be= authenticated. Moreover, an attacker cannot compromise   th= e system by breaking into any of the receiving nodes. However, for constrai= ned devices, the asymmetric key solution comes at a processing cost with cryptographic computations taking rather long. &= nbsp;


Therefore, it is rec= ommended that whenever possible, the architecture with source authenticatio= n SHOULD be used to secure all multicast communication. However, in less se= nsitive applications where low-latency group communication is important (e.g. controlling luminaires in non-= emergency applications), the   architecture without source authen= tication MAY be used. In sensitive applications such as health and safety, = building security and emergency applications the symmetric key based solution SHOULD not be used.


When using the symme= tric key solution two mitigating factors could improve system security. It = is possible to achieve source authentication of messages at lower layers by= requiring unique MAC layer keys for all   devices within the network. The symmetric group keys are d= ynamically generated and therefore SHOULD be stored in volatile memory= .


From: Jim Schaad <ietf@a= ugustcellars.com>
Sent: Friday, February 3, 2017 7:02:42 PM
To: Somaraju Abhinav; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace'
Subject: RE: [Ace] draft-somaraju-ace-multicast
 

See comme= nts inline

&nbs= p;

&nbs= p;

From: = Ace [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju Abhinav
Sent: 02 February 2017 03:48
To: Jim Schaad <ietf@augustcellars.com>; draft-somaraju-ace-mu= lticast@tools.ietf.org
Cc: 'ace' <ace@ietf.org>
Subject: Re: [Ace] draft-somaraju-ace-multicast

 

Hi Jim,

thank you for the review and I apologise for the delayed re= sponse - I was on sick leave due to a surgery. Please see comments inline f= rom the authors. 

<= o:p> 

Why restriction on reading messages?&nb= sp; It is not like an external observer is
not going to be able to see the lights go on or off.
[AS] There are several situations where lights a= re not visible but (multicast) network data is accessible. Moreover, sensor= s (e.g. presence detectors) are continuously talking to actuators and controllers without necessarily having a visible effect o= n the lights. For several customers privacy is a very important concern and= is almost a given. The statement "anybody can listen to the traf= fic and tell when sensors detect presence in a building without even being in the building" is a very diff= icult sell. Having said that, it is true that simply encrypting the multica= st traffic at the application layer is only a prerequisite to provide = the privacy needed and additional work is required (e.g. generating random messages at different times). In that sense the symmetri= c solution is probably not much better than the asymmetric solution. B= ut the demand for privacy from customers is very clear and the perception a= mong them is that unencrypted data implies poor security.

[JLS] I am sensing a problem here.&nb= sp; You have stated that there is a requirement that encryption is a requirement that people are going to say must be me. = However, below you have stated that if authentication is a requirement the= n encryption suddenly becomes a non-requirement?  You appear to be sta= ting that there are circumstances where it is fine not to have the data encrypted if one needs to know where it came = from.

 

Consider the following case &nbs= p; I have a sensor in a room.  When the sensor sees movement, it broadcasts a lights one command.  The command is picked up by both= the lightbulbs and by the security system.  The security system must = know which sensor provided the command and therefore no encryption is going= be needed here?  That just seems wrong.

 

Additionally, the situation where thi= ngs are =93continuously=94 talking would seem to be a good place where one would want to install a controller and not have the= sensor directly talking to the actuator.  You don=92t want to flood t= he actuators with trying to constantly turn on the lights.  Also the u= se of actuators in this sense makes one think that this is a solution for things other than lighting systems which is wh= at people are complaining about.

 


The solution in section 4 does not seem to meet the fol= lowing requirement
"Only authorized members of the application group must be= able to read and
process messages."
[AS] You are right, we cannot satisfy the privacy requi= rement in Section 4. We could extend the current solution to include a= group wide encryption key to meet this requirement. However, this will add additional latency to the asymmetric solution.

This document needs to have a solution = for dealing with nonce space
allocation for the cases where more than one sender is going b= e able to use
the same key.  This is going to be part of the problems w= ith replay
detection as well as security considerations.

[AS] Okay. Will add some text in the = next version of the draft for better clarification. The idea as written in 4.3 (Nonce value) is to use the Client ID along with the sender=92s sequence number to creat= e the complete nonce for replay and CCM processing.


Should the algorithms be using high water detection of = sequence numbers
rather than the case of not yet used?  Or is that an appl= ication specific
type thing?

[SK] This is tricky since it can= create all kind of new issues. One way to handle if the sequence number of= a sender is about to roll over is that the sender requests a new key issued for the group by the KDC. Tricky part is if ther= e are multiple senders who are not reaching the roll over of their sequence= number then have to be forced to use a new key or there needs to be some o= verlap between the old key and new key before every sender in the group starts using the new key.

[JLS] Lots of spinning in graves from= the idea of having a sequence number roll over given the harsh requirements that a nonce (built from the sequence number)= must never be re-used twice for many of the algorithms that are going to b= e used here.

 

I do not think that the current securit= y requirements is sufficiently
strident to reflect both the threat of breakage, cross-breakag= e and
restrictions on where it should be used to pass muster.=

[AS] I thing this will be the main di= scussion item in the webex. We will make a proposal for the security guidel= ines section after the interim webex.

[JLS]= A proposal before the call is better because then we have a starting point= for discussions as well as allowing people who will not make the call be able to have some initial input on wh= ere discussions points should be directed.







_______________________________________________
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

____________________________________________________= ____ The contents of this e-mail and any attachments are confidential to th= e intended recipient. They may not be disclosed to or used by or copied in = any way by anyone other than the intended recipient. If this e-mail is received in error, please immediately notify = the sender and delete the e-mail and attached documents. Please note that n= either the sender nor the sender's company accept any responsibility for vi= ruses and it is your responsibility to scan or otherwise check this e-mail and any attachments.

________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments. --_000_DB6PR0601MB2198D32E596B0E56D148B4E0FC400DB6PR0601MB2198_-- From nobody Tue Feb 7 17:38:32 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 43A43129566 for ; Tue, 7 Feb 2017 17:38:31 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id urT6Gl6bMIeF for ; Tue, 7 Feb 2017 17:38:30 -0800 (PST) Received: from resqmta-ch2-09v.sys.comcast.net (resqmta-ch2-09v.sys.comcast.net [IPv6:2001:558:fe21:29:69:252:207:41]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9ACB612955D for ; Tue, 7 Feb 2017 17:38:29 -0800 (PST) Received: from resomta-ch2-14v.sys.comcast.net ([69.252.207.110]) by resqmta-ch2-09v.sys.comcast.net with SMTP id bHCvc46T6ImZIbHDIcfYVu; Wed, 08 Feb 2017 01:38:28 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20161114; t=1486517908; bh=PWQpIbgE6x+6Hw94Gom0yRQKVSPyl3tmkIet/sJNYF4=; h=Received:Received:Subject:To:From:Message-ID:Date:MIME-Version: Content-Type; b=XaTRuEdzLF2Y7gqxVcOGRGjY3lOQVvrdtKt9N2TVzGu+QgohWOnTBv4qBIPKm1FWH tt3glL8Nhgf0N1o6wjW/YzJTqIxHwbBGZivUE7Uii6xYkukUC2UPS4YpmyhP02WQ63 AilfC9crgpTHYe4q2uTFCnaAXrbhX0b6+sh2gcCGdWltZRJjgXMET0CUrxGJN30Uu4 0hXbqlXQWt03O7DBXUfY+ayTg/ZmexahDb0PHNjsgpJQubK1uJQAeUGdklOMNXoTlU AX4tjlOYokKPT5c4PludJ9eRDs5We/oDFzXb+dUnj5VC+rFr35sRGwFRbIupbkVpg2 tpBKCyzpgpHfg== Received: from [IPv6:2601:152:4400:9b5f:1139:d049:134:71bb] ([IPv6:2601:152:4400:9b5f:1139:d049:134:71bb]) by resomta-ch2-14v.sys.comcast.net with SMTP id bHDHcXTrKQBtVbHDIcFi85; Wed, 08 Feb 2017 01:38:28 +0000 To: ace@ietf.org References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> From: Michael StJohns Message-ID: <300875db-d2c9-554f-efc6-92923f5b24ca@comcast.net> Date: Tue, 7 Feb 2017 20:38:37 -0500 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/alternative; boundary="------------5FBC263091CDB9ED8FD345C5" X-CMAE-Envelope: MS4wfF0M1oCcS9nYsRTbi35DVgFLQp1pWBv3v84fAngOX/y4EGYNWb+kSp0/jMNrs4r4bjuNMa0EedKVAFv3bwaSR4UdllXWi8er1bx3zY4Q7vXMWtm85rOh qqJi9zhalAQcX6O9haD5BDqmaNQlTgzc2X59gx6z4Tws/ZKwWUXKOR7F0ZEZ4uru70lqqN8iEx259Q== Archived-At: Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 01:38:31 -0000 This is a multi-part message in MIME format. --------------5FBC263091CDB9ED8FD345C5 Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit I haven't had a chance to comment on the document, but I have a few comments on the below that will depend on getting the requirements correct. In the introduction of the document you list three requirements and Jim has taken you to task for them. There are actually four requirements, one of which no one is willing to state in this document. The fourth being "The security can't cost anything in terms of either latency or hardware assistance" - or something similar. Otherwise, we wouldn't be having the argument about symmetric key multicast. Finally, we're missing an actual security requirement that may or may not be optional: "The compromise of any given end point will not give the attacker more privileges in the group that the compromised end point nominally has been granted". This one is where the applicability statement comes in. On 2/6/2017 3:00 PM, Somaraju Abhinav wrote: > > Jim, All, > > > please see a proposal for the Applicability statement that can be used > as a starting point for the Webex. > > > Abhinav > > > 5.1 Applicability statement > > This document describes two architectures based on symmetric group > keys in Section 3 and asymmetric keys in Section 4. > > > The symmetric key solution is based on a group key that is shared > between all group members including senders and receivers. As all > members of the group posses the same key, it is only possible to > authenticate group membership for the source of a message. In > particular, it is not possible to authenticate the unique source of > a message and consequently it is not possible to authorize a single > node to control a group. This implies in particular that any hacked > receiver in a group could then be used to control all the receivers in > the group. > > > Moreover, because the group key is shared across multiple nodes, it > may be easier for an attacker to determine the group key by attacking > any member of the group (note that this group key is dynamically > generated and is usually stored in volatile memory which offers some > additional protection). The probability of a stolen key increases with > the number of nodes that are in possession of the key. Moreover, > subsequent to such an attack, it is also difficult to determine which > of the group members was compromised and this makes it difficult to > return the system to normal operation after an attack. > > > The asymmetric key solution distinguishes between a sender in the > group and the receivers. In particular, the sender is in possession of > a private key and the receivers are in possession of the corresponding > public key. This allows the unique source of any group message to be > authenticated. Moreover, an attacker cannot compromise the system by > breaking into any of the receiving nodes. However, for constrained > devices, the asymmetric key solution comes at a processing cost with > cryptographic computations taking rather long. > See below - you need to provide some proof of this. Or at least figure out the asymmetric key size and implementation where it takes too long. > > Therefore, it is recommended that whenever possible, the architecture > with source authentication SHOULD be used to secure all multicast > communication. However, in less sensitive applications where > low-latency group communication is important (e.g. controlling > luminaires in non-emergency applications), the architecture without > source authentication MAY be used. In sensitive applications such as > health and safety, building security and emergency applications the > symmetric key based solution SHOULD not be used. > This paragraph is pretty much wishful thinking and hand waving. It makes an unproved assumption that source authentication is too expensive (in latency or hardware) and that some measure of security may be gained by using the group key to protect the group message integrity - including the control messages. Even a weak asymmetric key (which evidence suggests *can* be used in a manner to meet latency requirements) will provide a more secure source authentication mechanism than a symmetric key system. > > When using the symmetric key solution two mitigating factors could > improve system security. It is possible to achieve source > authentication of messages at lower layers by requiring unique MAC > layer keys for all devices within the network. The symmetric group > keys are dynamically generated and therefore SHOULD be stored in > volatile memory. > Seriously - no. To validate a MAC signed object, you need the MAC key which means you can forge things as if they came from the MAC key owner. Unless you're talking specifically about pair-wise MAC keys, this makes no sense whatsoever. For the meeting, what I'd like to hear about is: 1) The actual minimum latency value and how it was picked. 2) The target minimum hardware and how it was picked. 3) The security policy for "Controlling luminaries in a non-emergency application". E.g. Do you actually care about security here, or is this just marketing? Or put another way, what security assurances do you get from implementing symmetric key multicast in a control system? What is the liability to the product provider if the system is hacked? What's the detection mechanism for figuring out you've been hacked (besides the obvious one of the lights going on and off without the switch being thrown)? Can this protocol be used in this specific mode for any other application - and if so, which ones? --------------5FBC263091CDB9ED8FD345C5 Content-Type: text/html; charset=windows-1252 Content-Transfer-Encoding: 8bit
I haven't had a chance to comment on the document, but I have a few comments on the below that will depend on getting the requirements correct.

In the introduction of the document you list three requirements and Jim has taken you to task for them.  There are actually four requirements, one of which no one is willing to state in this document.  The fourth being "The security can't cost anything in terms of either latency or hardware assistance" - or something similar.  Otherwise, we wouldn't be having the argument about symmetric key multicast.


Finally, we're missing an actual security requirement that may or may not be optional:  "The compromise of any given end point will not give the attacker more privileges in the group that the compromised end point nominally has been granted".  This one is where the applicability statement comes in.




On 2/6/2017 3:00 PM, Somaraju Abhinav wrote:

Jim, All,


please see a proposal for the Applicability statement that can be used as a starting point for the Webex.


Abhinav


5.1 Applicability statement

This document describes two architectures based on symmetric group keys in Section 3 and asymmetric keys in Section 4.


The symmetric key solution is based on a group key that is shared between all group members including senders and receivers.  As all members of the group posses the same key, it is only possible to   authenticate group membership for the source of a message. In   particular, it is not possible to authenticate the unique source of a   message and consequently it is not possible to authorize a single node to control a group. This implies in particular that any hacked receiver in a group could then be used to control all the receivers in the group.


Moreover, because the group key is shared across multiple nodes, it may be easier for an attacker to determine the group key by attacking any member of the group (note that this group key is dynamically generated and is usually stored in volatile memory which offers some additional protection). The probability of a stolen key increases with the number of nodes that are in possession of the key. Moreover, subsequent to such an attack, it is also difficult to determine which of the group members was compromised and this makes it difficult to return the system to normal operation after an attack.  


The asymmetric key solution distinguishes between a sender in the group and the receivers. In particular, the sender is in possession of a private key and the receivers are in possession of the corresponding public key.  This allows the unique source of any group message to be authenticated. Moreover, an attacker cannot compromise   the system by breaking into any of the receiving nodes. However, for constrained devices, the asymmetric key solution comes at a processing cost with cryptographic computations taking rather long.  

See below - you need to provide some proof of this.  Or at least figure out the asymmetric key size and implementation where it takes too long.


Therefore, it is recommended that whenever possible, the architecture with source authentication SHOULD be used to secure all multicast communication. However, in less sensitive applications where low-latency group communication is important (e.g. controlling luminaires in non-emergency applications), the   architecture without source authentication MAY be used. In sensitive applications such as health and safety, building security and emergency applications the symmetric key based solution SHOULD not be used.


This paragraph is pretty much wishful thinking and hand waving.    It makes an unproved assumption that source authentication is too expensive (in latency or hardware) and that some measure of security may be gained by using the group key to protect the group message integrity - including the control messages. 

Even a weak asymmetric key (which evidence suggests *can* be used in a manner to meet latency requirements)  will provide a more secure source authentication mechanism than a symmetric key system.  




When using the symmetric key solution two mitigating factors could improve system security. It is possible to achieve source authentication of messages at lower layers by requiring unique MAC layer keys for all   devices within the network. The symmetric group keys are dynamically generated and therefore SHOULD be stored in volatile memory.


Seriously - no.   To validate a MAC signed object, you need the MAC key which means you can forge things as if they came from the MAC key owner.  Unless you're talking specifically about pair-wise MAC keys, this makes no sense whatsoever. 


For the meeting, what I'd like to hear about is:

1) The actual minimum latency value and how it was picked.
2) The target minimum hardware and how it was picked.
3) The security policy for "Controlling luminaries in a non-emergency application".  E.g. Do you actually care about security here, or is this just marketing?  Or put another way, what security assurances do you get from implementing symmetric key multicast in a control system?  What is the liability to the product provider if the system is hacked?  What's the detection mechanism for figuring out you've been hacked (besides the obvious one of the lights going on and off without the switch being thrown)?  Can this protocol be used in this specific mode for any other application - and if so, which ones?






--------------5FBC263091CDB9ED8FD345C5-- From nobody Tue Feb 7 18:55:17 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7A7B71296AF for ; Tue, 7 Feb 2017 18:55:16 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.701 X-Spam-Level: X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8n_29fx3edIg for ; Tue, 7 Feb 2017 18:55:15 -0800 (PST) Received: from resqmta-ch2-02v.sys.comcast.net (resqmta-ch2-02v.sys.comcast.net [IPv6:2001:558:fe21:29:69:252:207:34]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1B9EF1294C9 for ; Tue, 7 Feb 2017 18:55:15 -0800 (PST) Received: from resomta-ch2-10v.sys.comcast.net ([69.252.207.106]) by resqmta-ch2-02v.sys.comcast.net with SMTP id bIPFcY4faWRJ0bIPac2tnA; Wed, 08 Feb 2017 02:55:14 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20161114; t=1486522514; bh=Tq53w9G5KwIhQ0FcesZsFanWKrv8QI28apsgkw+65TY=; h=Received:Received:To:From:Subject:Message-ID:Date:MIME-Version: Content-Type; b=biXSUGex7gTP93zXGVQrl9XQO4FPRhxqKOOlfbJjC17ksKxiBnoOPSy6uauZWKNwr 3iKBmC5zCjjq6+X2M2Quw3jLB15d2BBiq/SFB+oQqvo7POIVU1UZUQFTW1laJycQ1h sSmpfeyOyj6ALuxKV77VEagkU4EpDdmn5ZQTXxHUAcVFXMuoWy9/l1a9sx3j15rayR l+wCh95Mt5QoZu+xeiS+/jkhiCkFtsAWEJPzLarCcAR9FF7BfiqPRfBZ9wIU8VKKbN iEPu2TNDojFw+nw8G57nO2j/W7wbAtG/Pb+dGS300pz8L/RD0PICsA1n4JhbHgg7kY HM1Wc22SILcPg== Received: from [IPv6:2601:152:4400:9b5f:1139:d049:134:71bb] ([IPv6:2601:152:4400:9b5f:1139:d049:134:71bb]) by resomta-ch2-10v.sys.comcast.net with SMTP id bIPZc0QkepXWBbIPZcuKP7; Wed, 08 Feb 2017 02:55:14 +0000 To: "ace@ietf.org" From: Michael StJohns Message-ID: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> Date: Tue, 7 Feb 2017 21:55:22 -0500 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 7bit X-CMAE-Envelope: MS4wfBN26iUOhOCPitcpoVkbzWR/V6MD5YpU7Nzhb+tpOVohX4cTQihMPmGBy4U3M7txgMxoSBNvgBDMQtFoBhtXsMIg4im4GI33umg7twj5LnxKI4rXXPRN GXc/uCOdExMLeIaUG5NsgUeYg/Gi3hHOK6C4Cp2QHueP0tbP/tcr9SGDqTCZ+D+Jnmbco1akmtZWPA== Archived-At: Subject: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 02:55:16 -0000 Hi - This is sort of non-obvious, but one or two articles I read suggest that RSA 1024 performance may be better than the ECDSA equivalent. The tradeoff here is obviously the size of the signature and the transmission thereof, but... While 1024 bits isn't an ideal security strength for RSA, using any asymmetric key system for source authentication in group systems is going to be much better than trying to pretend that symmetric group key systems have any authentication properties at all. I saw a PPT presentation by Hannes that didn't include any RSA performance numbers for the ARM processors even though the key sizes were compared. My guess is that someone has numbers for 1024 RSA signatures on the tiny ARM processors that might be useful to throw into the mix. https://www.cryptopp.com/benchmarks.html has comparison values for a specific library. What I'm suggesting is that we figure out how to meet the "can't cost anything" requirement with weaker asymmetric keys rather than accepting a low end fantasy of symmetric key multicast authentication. Mike From nobody Tue Feb 7 19:04:05 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3A7FB1297C9 for ; Tue, 7 Feb 2017 19:04:05 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.901 X-Spam-Level: X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tSyFkdmA87za for ; Tue, 7 Feb 2017 19:04:01 -0800 (PST) Received: from mail2.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 24C9C1297AC for ; Tue, 7 Feb 2017 19:04:00 -0800 (PST) Received: from hebrews (24.21.96.37) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Tue, 7 Feb 2017 19:01:25 -0800 From: Jim Schaad To: 'Somaraju Abhinav' , References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> , <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> In-Reply-To: Date: Tue, 7 Feb 2017 19:03:26 -0800 Message-ID: <0a8001d281b7$ec518750$c4f495f0$@augustcellars.com> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0A81_01D28174.DE3488E0" X-Mailer: Microsoft Outlook 16.0 Thread-Index: AQDlYgNaFJuUoYTAmdgrcl0KzneQLAH92LGxAt1tul8CN9x3J6L/v4jA Content-Language: en-us X-Originating-IP: [24.21.96.37] Archived-At: Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 03:04:05 -0000 ------=_NextPart_000_0A81_01D28174.DE3488E0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit See Below From: Somaraju Abhinav [mailto:abhinav.somaraju@tridonic.com] Sent: Monday, February 6, 2017 12:01 PM To: Jim Schaad ; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast Jim, All, please see a proposal for the Applicability statement that can be used as a starting point for the Webex. Abhinav [JLS] Did you actually change anything from the current document. At first glance it looks like a cut and paste with absolutely no response to any of the issues that have been raised on the list. 5.1 Applicability statement [JLS] This should have a description of the criteria which should be used to determine if any of the solutions here are needed. Without this information, it seems that the solution could be applied to anything. Is this really just a lighting solution or is it a more general solution? This document describes two architectures based on symmetric group keys in Section 3 and asymmetric keys in Section 4. [JLS] Based on the mails we have exchanged; this statement is either wrong or insufficiently qualified. You have stated that even the messages in section 4 need to be encrypted and thus might have a group key. The symmetric key solution is based on a group key that is shared between all group members including senders and receivers. As all members of the group posses the same key, it is only possible to authenticate group membership for the source of a message. In particular, it is not possible to authenticate the unique source of a message and consequently it is not possible to authorize a single node to control a group. This implies in particular that any hacked receiver in a group could then be used to control all the receivers in the group. Moreover, because the group key is shared across multiple nodes, it may be easier for an attacker to determine the group key by attacking any member of the group (note that this group key is dynamically generated and is usually stored in volatile memory which offers some additional protection). The probability of a stolen key increases with the number of nodes that are in possession of the key. Moreover, subsequent to such an attack, it is also difficult to determine which of the group members was compromised and this makes it difficult to return the system to normal operation after an attack. [JLS] I have no idea why storing a key in volatile memory would offer additional protections. [JLS] Losing power is going to lead to potentially very long delays at power and missed processing of messages if every recipient needs to individually generate a new dynamic key and distribute it, not to mention the potential problems with the question of who has good randomness for the generation of new keys. [JLS] Which group members are/were compromised. You don't know that it has gone away. [JLS] This text does not address the questions of size and homogeneity of groups. One of the issues that has been brought up is about using the same key for multiple types of devices such as lights and doors. The asymmetric key solution distinguishes between a sender in the group and the receivers. In particular, the sender is in possession of a private key and the receivers are in possession of the corresponding public key. This allows the unique source of any group message to be authenticated. Moreover, an attacker cannot compromise the system by breaking into any of the receiving nodes. However, for constrained devices, the asymmetric key solution comes at a processing cost with cryptographic computations taking rather long. [JLS] The last sentence does not belong here. The term "rather long" is extremely vague and is even worse than the term "low-latency" in terms of what has been defined. [JLS] Should also know that the sender that was compromised is immediately known and can be dealt with. Therefore, it is recommended that whenever possible, the architecture with source authentication SHOULD be used to secure all multicast communication. However, in less sensitive applications where low-latency group communication is important (e.g. controlling luminaires in non-emergency applications), the architecture without source authentication MAY be used. In sensitive applications such as health and safety, building security and emergency applications the symmetric key based solution SHOULD not be used. [JLS] Personally, I would not know how to test this, so I don't believe that RFC 2119 language is appropriate. [JLS] Why should emergency applications be different? Does this mean that all devices need to implement both solutions and need to figure out which of the solutions should be used at any given time? What defines a sensitive application? The ability to monitor a sensor even if the state of the lights is not? When using the symmetric key solution two mitigating factors could improve system security. It is possible to achieve source authentication of messages at lower layers by requiring unique MAC layer keys for all devices within the network. The symmetric group keys are dynamically generated and therefore SHOULD be stored in volatile memory. [JLS] Given the fact that it is "easy" to impersonate MAC addresses I am not sure how this will mitigate the problem. This would be killed by either MAC impersonation or having a message re-transmitted by a proxy agent. [JLS] As stated above, I am not sure how keeping keys in volatile memory will be a mitigating factor. The only think that I see is that I cannot physically steal the device and work on it later rather than having to do it "in place". _____ From: Jim Schaad > Sent: Friday, February 3, 2017 7:02:42 PM To: Somaraju Abhinav; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' Subject: RE: [Ace] draft-somaraju-ace-multicast See comments inline From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju Abhinav Sent: 02 February 2017 03:48 To: Jim Schaad >; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' > Subject: Re: [Ace] draft-somaraju-ace-multicast Hi Jim, thank you for the review and I apologise for the delayed response - I was on sick leave due to a surgery. Please see comments inline from the authors. Why restriction on reading messages? It is not like an external observer is not going to be able to see the lights go on or off. [AS] There are several situations where lights are not visible but (multicast) network data is accessible. Moreover, sensors (e.g. presence detectors) are continuously talking to actuators and controllers without necessarily having a visible effect on the lights. For several customers privacy is a very important concern and is almost a given. The statement "anybody can listen to the traffic and tell when sensors detect presence in a building without even being in the building" is a very difficult sell. Having said that, it is true that simply encrypting the multicast traffic at the application layer is only a prerequisite to provide the privacy needed and additional work is required (e.g. generating random messages at different times). In that sense the symmetric solution is probably not much better than the asymmetric solution. But the demand for privacy from customers is very clear and the perception among them is that unencrypted data implies poor security. [JLS] I am sensing a problem here. You have stated that there is a requirement that encryption is a requirement that people are going to say must be me. However, below you have stated that if authentication is a requirement then encryption suddenly becomes a non-requirement? You appear to be stating that there are circumstances where it is fine not to have the data encrypted if one needs to know where it came from. Consider the following case I have a sensor in a room. When the sensor sees movement, it broadcasts a lights one command. The command is picked up by both the lightbulbs and by the security system. The security system must know which sensor provided the command and therefore no encryption is going be needed here? That just seems wrong. Additionally, the situation where things are "continuously" talking would seem to be a good place where one would want to install a controller and not have the sensor directly talking to the actuator. You don't want to flood the actuators with trying to constantly turn on the lights. Also the use of actuators in this sense makes one think that this is a solution for things other than lighting systems which is what people are complaining about. The solution in section 4 does not seem to meet the following requirement "Only authorized members of the application group must be able to read and process messages." [AS] You are right, we cannot satisfy the privacy requirement in Section 4. We could extend the current solution to include a group wide encryption key to meet this requirement. However, this will add additional latency to the asymmetric solution. This document needs to have a solution for dealing with nonce space allocation for the cases where more than one sender is going be able to use the same key. This is going to be part of the problems with replay detection as well as security considerations. [AS] Okay. Will add some text in the next version of the draft for better clarification. The idea as written in 4.3 (Nonce value) is to use the Client ID along with the sender's sequence number to create the complete nonce for replay and CCM processing. Should the algorithms be using high water detection of sequence numbers rather than the case of not yet used? Or is that an application specific type thing? [SK] This is tricky since it can create all kind of new issues. One way to handle if the sequence number of a sender is about to roll over is that the sender requests a new key issued for the group by the KDC. Tricky part is if there are multiple senders who are not reaching the roll over of their sequence number then have to be forced to use a new key or there needs to be some overlap between the old key and new key before every sender in the group starts using the new key. [JLS] Lots of spinning in graves from the idea of having a sequence number roll over given the harsh requirements that a nonce (built from the sequence number) must never be re-used twice for many of the algorithms that are going to be used here. I do not think that the current security requirements is sufficiently strident to reflect both the threat of breakage, cross-breakage and restrictions on where it should be used to pass muster. [AS] I thing this will be the main discussion item in the webex. We will make a proposal for the security guidelines section after the interim webex. [JLS] A proposal before the call is better because then we have a starting point for discussions as well as allowing people who will not make the call be able to have some initial input on where discussions points should be directed. _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace ________________________________________________________ The contents of this e-mail and any attachments are confidential to the intended recipient. They may not be disclosed to or used by or copied in any way by anyone other than the intended recipient. If this e-mail is received in error, please immediately notify the sender and delete the e-mail and attached documents. Please note that neither the sender nor the sender's company accept any responsibility for viruses and it is your responsibility to scan or otherwise check this e-mail and any attachments. ________________________________________________________ The contents of this e-mail and any attachments are confidential to the intended recipient. They may not be disclosed to or used by or copied in any way by anyone other than the intended recipient. If this e-mail is received in error, please immediately notify the sender and delete the e-mail and attached documents. Please note that neither the sender nor the sender's company accept any responsibility for viruses and it is your responsibility to scan or otherwise check this e-mail and any attachments. ------=_NextPart_000_0A81_01D28174.DE3488E0 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

See Below

 

 

 

From:<= /b> Somaraju = Abhinav [mailto:abhinav.somaraju@tridonic.com]
Sent: Monday, = February 6, 2017 12:01 PM
To: Jim Schaad = <ietf@augustcellars.com>; = draft-somaraju-ace-multicast@tools.ietf.org
Cc: 'ace' = <ace@ietf.org>
Subject: Re: [Ace] = draft-somaraju-ace-multicast

 

Jim, = All,

 <= /span>

please see a = proposal for the Applicability statement that can be used as a starting = point for the Webex.

 <= /span>

Abhinav=

 

[JLS] Did you actually change anything from the current document.  = At first glance it looks like a cut and paste with absolutely no = response to any of the issues that have been raised on the = list.

 <= /span>

5.1 Applicability = statement

 

[JLS] This should have a description of the criteria which should be = used to determine if any of the solutions here are needed.  Without = this information, it seems that the solution could be applied to = anything.  Is this really just a lighting solution or is it a more = general solution?

 

T= his document describes two architectures based on symmetric group keys = in Section 3 and asymmetric keys in Section 4. =

[JLS] Based on the mails we have exchanged; this statement is either = wrong or insufficiently qualified.  You have stated that even the = messages in section 4 need to be encrypted and thus might have a group = key.

 <= /span>

T= he symmetric key solution is based on a group key that is shared between = all group members including senders and receivers.  As all members = of the group posses the same key, it is only possible to   = authenticate group membership for the source of a message. = In   particular, it is not possible to authenticate the unique = source of a   message and consequently it is not possible to = authorize a single node to control a group. This implies in particular = that any hacked receiver in a group could then be used to control all = the receivers in the group.

 <= /span>

M= oreover, because the group key is shared across multiple nodes, it = may be easier for an attacker to determine the group key by attacking = any member of the group (note that this group key is dynamically = generated and is usually stored in volatile memory which offers some = additional protection). The probability of a stolen key increases with = the number of nodes that are in possession of the key. Moreover, = subsequent to such an attack, it is also difficult to determine which of = the group members was compromised and this makes it difficult to return = the system to normal operation after an attack.   =

[JLS] I have no idea why storing a key in volatile memory would offer = additional protections.

[JLS] Losing power is going to lead to potentially very long delays at = power and missed processing of messages if every recipient needs to = individually generate a new dynamic key and distribute it, not to = mention the potential problems with the question of who has good = randomness for the generation of new keys.

[JLS] Which group members are/were compromised.  You don’t = know that it has gone away.

[JLS] This text does not address the questions of size and homogeneity = of groups.  One of the issues that has been brought up is about = using the same key for multiple types of devices such as lights and = doors.

 

 <= /span>

T= he asymmetric key solution distinguishes between a sender in the group = and the receivers. In particular, the sender is in possession of a = private key and the receivers are in possession of = the corresponding public key.  This allows the unique source = of any group message to be authenticated. Moreover, an attacker = cannot compromise   the system by breaking into any of the = receiving nodes. However, for constrained devices, the asymmetric key = solution comes at a processing cost with cryptographic computations = taking rather long.  

[JLS] The last sentence does not belong here.  The term = “rather long” is extremely vague and is even worse than the = term “low-latency” in terms of what has been = defined.

[JLS] Should also know that the sender that was compromised is = immediately known and can be dealt with.

 

 <= /span>

T= herefore, it is recommended that whenever possible, the architecture = with source authentication SHOULD be used to secure all multicast = communication. However, in less sensitive applications where low-latency = group communication is important (e.g. controlling luminaires in = non-emergency applications), the   architecture without source = authentication MAY be used. In sensitive applications such as health and = safety, building security and emergency applications the symmetric = key based solution SHOULD not be used.

[JLS] Personally, I would not know how to test this, so I don’t = believe that RFC 2119 language is = appropriate.

[JLS] Why should emergency applications be different?  Does this = mean that all devices need to implement both solutions and need to = figure out which of the solutions should be used at any given = time?  What defines a sensitive application?  The ability to = monitor a sensor even if the state of the lights is = not?

 

 <= /span>

W= hen using the symmetric key solution two mitigating factors could = improve system security. It is possible to achieve source authentication = of messages at lower layers by requiring unique MAC layer keys for = all   devices within the network. The symmetric group keys are = dynamically generated and therefore SHOULD be stored in volatile = memory.

[JLS] Given the fact that it is “easy” to impersonate MAC = addresses I am not sure how this will mitigate the problem.  This = would be killed by either MAC impersonation or having a message = re-transmitted by a proxy agent.

[JLS] As stated above, I am not sure how keeping keys in volatile = memory will be a mitigating factor.  The only think that I see is = that I cannot physically steal the device and work on it later rather = than having to do it “in place”.

 <= /span>

F= rom: = Jim Schaad <ietf@augustcellars.com>
= Sent: Friday, February 3, 2017 7:02:42 PM
To: Somaraju = Abhinav; draft-somaraj= u-ace-multicast@tools.ietf.org
Cc: = 'ace'
Subject: RE: [Ace] draft-somaraju-ace-multicast =

 

See comments inline

 

 

From:<= /b> Ace [mailto:ace-bounces@ietf.org] = On Behalf Of Somaraju Abhinav
Sent: 02 February 2017 = 03:48
To: Jim Schaad <ietf@augustcellars.com>; = draft-somaraj= u-ace-multicast@tools.ietf.org
Cc: 'ace' <ace@ietf.org>
Subject: Re: = [Ace] draft-somaraju-ace-multicast

 

H= i Jim,=

t= hank you for the review and I apologise for the delayed response - I was = on sick leave due to a surgery. Please see comments inline from the = authors. =

 <= /span>

W= hy restriction on reading messages?  It is not like an external = observer is<= br>n= ot going to be able to see the lights go on or off.<= br>[AS] There are several situations where lights are not visible but = (multicast) network data is accessible. Moreover, sensors (e.g. presence = detectors) are continuously talking to actuators and controllers = without necessarily having a visible effect on the lights. For several = customers privacy is a very important concern and is almost a = given. The statement "anybody can listen to the traffic and = tell when sensors detect presence in a building without even being = in the building" is a very difficult sell. Having said that, it is = true that simply encrypting the multicast traffic at the application = layer is only a prerequisite to provide the privacy needed and = additional work is required (e.g. generating random messages at = different times). In that sense the symmetric solution is probably not = much better than the asymmetric solution. But the demand for = privacy from customers is very clear and the perception among them = is that unencrypted data implies poor security.

[JLS] I am sensing a problem here.  You have stated that there is = a requirement that encryption is a requirement that people are going to = say must be me.  However, below you have stated that if = authentication is a requirement then encryption suddenly becomes a = non-requirement?  You appear to be stating that there are = circumstances where it is fine not to have the data encrypted if one = needs to know where it came from.

 

Consider the following case   I have a sensor in a = room.  When the sensor sees movement, it broadcasts a lights one = command.  The command is picked up by both the lightbulbs and by = the security system.  The security system must know which sensor = provided the command and therefore no encryption is going be needed = here?  That just seems wrong.

 

Additionally, the situation where things are “continuously” = talking would seem to be a good place where one would want to install a = controller and not have the sensor directly talking to the = actuator.  You don’t want to flood the actuators with trying = to constantly turn on the lights.  Also the use of actuators in = this sense makes one think that this is a solution for things other than = lighting systems which is what people are complaining = about.

 <= /span>

<= br>T= he solution in section 4 does not seem to meet the following = requirement
&= quot;Only authorized members of the application group must be able to = read and
p= rocess messages."
[AS] You are right, we cannot satisfy the privacy requirement in = Section 4. We could extend the current solution to include a group = wide encryption key to meet this requirement. However, this will add = additional latency to the asymmetric solution.

T= his document needs to have a solution for dealing with nonce = space
a= llocation for the cases where more than one sender is going be able to = use
t= he same key.  This is going to be part of the problems with = replay
d= etection as well as security = considerations.

[AS] Okay. Will add some text in the next version of the = draft for better = clarification. The idea as written in 4.3 (Nonce = value) is to use the Client ID along with the sender’s sequence = number to create the complete nonce for replay and CCM = processing.


S= hould the algorithms be using high water detection of sequence = numbers
r= ather than the case of not yet used?  Or is that an application = specific
t= ype thing?

[SK] This is tricky since it can create all kind of new issues. = One way to handle if the sequence number of a sender is about to roll = over is that the sender requests a new key issued for the group by the = KDC. Tricky part is if there are multiple senders who are not reaching = the roll over of their sequence number then have to be forced to use a = new key or there needs to be some overlap between the old key and new = key before every sender in the group starts using the new = key.

[JLS] Lots of spinning in graves from the idea of having a sequence = number roll over given the harsh requirements that a nonce (built from = the sequence number) must never be re-used twice for many of the = algorithms that are going to be used = here.

 

I= do not think that the current security requirements is = sufficiently
s= trident to reflect both the threat of breakage, cross-breakage = and
r= estrictions on where it should be used to pass = muster.

[AS] I thing this will be the main discussion item in the webex. We = will make a proposal for the security guidelines section after the = interim webex.

[JLS] A proposal before the = call is better because then we have a starting point for discussions as = well as allowing people who will not make the call be able to have some = initial input on where discussions points should be = directed.







_= ______________________________________________
A= ce mailing list
<= a href=3D"mailto:Ace@ietf.org">Ace@ietf.org
h= ttps://www.ietf.org/mailman/listinfo/ace

<= /div>

_______________________________________________________= _ The contents of this e-mail and any attachments are confidential to = the intended recipient. They may not be disclosed to or used by or = copied in any way by anyone other than the intended recipient. If this = e-mail is received in error, please immediately notify the sender and = delete the e-mail and attached documents. Please note that neither the = sender nor the sender's company accept any responsibility for viruses = and it is your responsibility to scan or otherwise check this e-mail and = any attachments.

_______________________________________________________= _ The contents of this e-mail and any attachments are confidential to = the intended recipient. They may not be disclosed to or used by or = copied in any way by anyone other than the intended recipient. If this = e-mail is received in error, please immediately notify the sender and = delete the e-mail and attached documents. Please note that neither the = sender nor the sender's company accept any responsibility for viruses = and it is your responsibility to scan or otherwise check this e-mail and = any attachments.

------=_NextPart_000_0A81_01D28174.DE3488E0-- From nobody Wed Feb 8 04:56:27 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 33E5A12940A for ; Wed, 8 Feb 2017 04:56:26 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.921 X-Spam-Level: X-Spam-Status: No, score=-1.921 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H4=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=zgrp.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id QqnMn_9SnAjK for ; Wed, 8 Feb 2017 04:56:23 -0800 (PST) Received: from EUR02-VE1-obe.outbound.protection.outlook.com (mail-eopbgr20110.outbound.protection.outlook.com [40.107.2.110]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F1E60129A16 for ; Wed, 8 Feb 2017 04:56:22 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zgrp.onmicrosoft.com; s=selector1-tridonic-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=Cl6XNBg1T6BxeS7Mu8hBFXCpQVjc3v7a6XrhhVhw3OY=; b=MNNJmgzT5NW25cHy9F2USDPHmh6F6F5/GPvmSENcm+5qifBABGsr+D5DrTp6d8/FswPlMdHsE7anpFjtZZip3eGYDw5T+Vu0NfXbCmmfjFB3oIhRSlOUJ0dZzWkwiJVlvTznZTCMKFLXdsu2+rS6N/VhOeN0Kf+pTtYkaVV6Ljw= Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) by DB6PR0601MB2200.eurprd06.prod.outlook.com (10.168.57.141) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.888.16; Wed, 8 Feb 2017 12:56:19 +0000 Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) by DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) with mapi id 15.01.0888.026; Wed, 8 Feb 2017 12:56:19 +0000 From: Somaraju Abhinav To: Michael StJohns , "ace@ietf.org" Thread-Topic: [Ace] Asymmetric signature performance Thread-Index: AQHSgbbKrDUQekkwkUu3ytBizxocQqFfEEhh Date: Wed, 8 Feb 2017 12:56:19 +0000 Message-ID: References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> In-Reply-To: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=abhinav.somaraju@tridonic.com; x-originating-ip: [25.161.237.4] x-ms-office365-filtering-correlation-id: 8bfd84a8-4136-4d0d-ae2f-08d45021e03e x-ms-office365-filtering-ht: Tenant x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(48565401081); SRVR:DB6PR0601MB2200; x-microsoft-exchange-diagnostics: 1; DB6PR0601MB2200; 7:JHAdqZnbrsmAbyRoYxq8rh8aGxAC2RaiOAK9utsiPF1T6WSFXmhrlYOFDr+EJm/I0D+J4s451Nj2gjcWWM036X3rz89UyrSYtMUycya56vRz6+69cYbJwhq3fy/ixD/rtpZ+ATRSNEKymC31fuQvX1Dh03aS6UQ8mIxKJYfoKTiQBpGmzd6VnCcgrbWpwjqEoT5o8wifgX3CpRMwmdng+s1iQi2DkYeWSGGxvbKfYJ8kqraVSt+go9+qTyWrxm0LRpHtRfUo6aiNQJXjpZE9hWIHbviCg1CHqzJZXGhRrWjL4zRHfgGQtl0DxYB+BjPbWFM9DXlzRnlu+F1FUCLeFqeIImtp6M47kgLl06C9lHjK4wNUGLfIJy7WoHrz0ERacpzgmZnz5dfzMjQ5VFZKFqN916d4p+DYhvsgoRWa3KOPVhQUhSDK9V/yEo63iiR7nb3B2lC7Hn4K23JADBqqclORy+mRrOaBQh4IxzOX/FJOz9GITYj1aWXBEOkmBTNxpjrdlWoue5DXcX8SF7TpSA== x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(158342451672863)(68173958961439)(192374486261705); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(20170203043)(5005006)(8121501046)(2017020702029)(3002001)(10201501046)(6055026)(6041248)(20161123562025)(20161123555025)(20161123558025)(20161123564025)(20161123560025)(6072148); SRVR:DB6PR0601MB2200; BCL:0; PCL:0; RULEID:; SRVR:DB6PR0601MB2200; x-forefront-prvs: 0212BDE3BE x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(7916002)(39850400002)(39860400002)(39840400002)(39450400003)(39410400002)(199003)(189002)(377454003)(6436002)(55016002)(6506006)(229853002)(76176999)(3280700002)(101416001)(606005)(5890100001)(77096006)(2501003)(97736004)(25786008)(5660300001)(86362001)(189998001)(99286003)(54356999)(122556002)(74316002)(8666007)(7906003)(2900100001)(2906002)(7736002)(50986999)(105586002)(2950100002)(106356001)(8676002)(53936002)(236005)(106116001)(8936002)(33656002)(7696004)(38730400002)(6116002)(68736007)(3846002)(3660700001)(102836003)(66066001)(9686003)(54896002)(53546003)(6306002)(92566002)(6246003)(81156014)(81166006); DIR:OUT; SFP:1102; SCL:1; SRVR:DB6PR0601MB2200; H:DB6PR0601MB2198.eurprd06.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en; received-spf: None (protection.outlook.com: tridonic.com does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/alternative; boundary="_000_DB6PR0601MB21986D2333C3DA59BA51D8D8FC420DB6PR0601MB2198_" MIME-Version: 1.0 X-OriginatorOrg: tridonic.com X-MS-Exchange-CrossTenant-originalarrivaltime: 08 Feb 2017 12:56:19.0748 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 8b206608-a593-4ace-a4b6-ef1fc83c9169 X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0601MB2200 Archived-At: Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 12:56:26 -0000 --_000_DB6PR0601MB21986D2333C3DA59BA51D8D8FC420DB6PR0601MB2198_ Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable Hi Mike, the signature size of RSA is an issue even in the 1024 bit version. The mai= n wireless protocol, 802.15.4 has a PHY/MAC packet size of 127 bytes so we = will have to fragment IP packets (Bluetooth LE is even smaller at just 27 b= ytes). This makes it very difficult to meet the time to light requirements.= This is also a concern for the 70-80 byte overhead of ECC but we can proba= bly just about manage. Abhinav ________________________________ From: Ace on behalf of Michael StJohns Sent: Wednesday, February 8, 2017 3:55:22 AM To: ace@ietf.org Subject: [Ace] Asymmetric signature performance Hi - This is sort of non-obvious, but one or two articles I read suggest that RSA 1024 performance may be better than the ECDSA equivalent. The tradeoff here is obviously the size of the signature and the transmission thereof, but... While 1024 bits isn't an ideal security strength for RSA, using any asymmetric key system for source authentication in group systems is going to be much better than trying to pretend that symmetric group key systems have any authentication properties at all. I saw a PPT presentation by Hannes that didn't include any RSA performance numbers for the ARM processors even though the key sizes were compared. My guess is that someone has numbers for 1024 RSA signatures on the tiny ARM processors that might be useful to throw into the mix. https://www.cryptopp.com/benchmarks.html has comparison values for a specific library. What I'm suggesting is that we figure out how to meet the "can't cost anything" requirement with weaker asymmetric keys rather than accepting a low end fantasy of symmetric key multicast authentication. Mike _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. --_000_DB6PR0601MB21986D2333C3DA59BA51D8D8FC420DB6PR0601MB2198_ Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

Hi Mike,


the signature size of RSA is an issue even in the 1024 bit version.= The main wireless protocol, 802.15.4 has a PHY/MAC packet size of 127 byte= s so we will have to fragment IP packets (Bluetooth LE is even smaller= at just 27 bytes). This makes it very difficult to meet the time to light requirements. This is also a concern for the 70-80 = byte overhead of ECC but we can probably just about manage.


Abhinav

From: Ace <ace-bounces= @ietf.org> on behalf of Michael StJohns <mstjohns@comcast.net>
Sent: Wednesday, February 8, 2017 3:55:22 AM
To: ace@ietf.org
Subject: [Ace] Asymmetric signature performance
 
Hi -

This is sort of non-obvious, but one or two articles I read suggest that RSA 1024 performance may be better than the ECDSA equivalent.

The tradeoff here is obviously the size of the signature and the
transmission thereof, but...

While 1024 bits isn't an ideal security strength for RSA, using any
asymmetric key system for source authentication in group systems is
going to be much better than trying to pretend that symmetric group key systems have any authentication properties at all.

I saw a PPT presentation by Hannes that  didn't include any RSA
performance numbers for the ARM processors even though the key sizes
were compared. My guess is that someone has numbers for 1024 RSA
signatures on the tiny ARM processors that might be useful to throw into the mix.

https://www.cryptopp.c= om/benchmarks.html has comparison values for a
specific library.

What I'm suggesting is that we figure out how to meet the "can't cost =
anything" requirement with weaker asymmetric keys rather than acceptin= g
a low end fantasy of symmetric key multicast authentication.

Mike




_______________________________________________
Ace mailing list
Ace@ietf.org
https://www.ietf.org/= mailman/listinfo/ace
________________________________________________________ The = contents of this e-mail and any attachments are confidential to the intende= d recipient. They may not be disclosed to or used by or copied in any way b= y anyone other than the intended recipient. If this e-mail is received in error, please immediately notify = the sender and delete the e-mail and attached documents. Please note that n= either the sender nor the sender's company accept any responsibility for vi= ruses and it is your responsibility to scan or otherwise check this e-mail and any attachments. --_000_DB6PR0601MB21986D2333C3DA59BA51D8D8FC420DB6PR0601MB2198_-- From nobody Wed Feb 8 05:19:35 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8E9FE129A32 for ; Wed, 8 Feb 2017 05:19:33 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.221 X-Spam-Level: X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OvL33gfcFw2s for ; Wed, 8 Feb 2017 05:19:32 -0800 (PST) Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C3DEC129A29 for ; Wed, 8 Feb 2017 05:19:31 -0800 (PST) X-AuditID: c1b4fb30-f7ac898000007389-d8-589b1ae18577 Received: from ESESSHC016.ericsson.se (Unknown_Domain [153.88.183.66]) by (Symantec Mail Security) with SMTP id 42.C2.29577.1EA1B985; Wed, 8 Feb 2017 14:19:30 +0100 (CET) Received: from nomadiclab.lmf.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.68) with Microsoft SMTP Server id 14.3.319.2; Wed, 8 Feb 2017 14:19:29 +0100 Received: from nomadiclab.lmf.ericsson.se (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id AA7D1508C4; Wed, 8 Feb 2017 15:20:38 +0200 (EET) Received: from [127.0.0.1] (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id 48CED4E94F; Wed, 8 Feb 2017 15:20:38 +0200 (EET) To: Michael StJohns , "ace@ietf.org" References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> From: Mohit Sethi Message-ID: <3fbffd36-f846-3f21-74b8-811e54715847@ericsson.com> Date: Wed, 8 Feb 2017 15:19:28 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> Content-Type: text/plain; charset="windows-1252"; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV using ClamSMTP X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrNLMWRmVeSWpSXmKPExsUyM2K7k+4jqdkRBs2r2Sy+f+thtpiyLsuB yWPy4zmMHkuW/GQKYIrisklJzcksSy3St0vgyji/o5Wx4DlfxcyWC+wNjN+4uxg5OCQETCS2 rlfoYuTiEBJYxygx9+FJRghnK6PEhn0rWSCctYwSl5b0sUE48xgldp++zN7FyMkhLGAs0Tx9 GSOILSLgKXFy/2cwW0jATmL+qllsIDabgJ5E57njzCA2r4C9RPfRe6wgNouAisS/c8fAbFGB CIn5T1cxQdQISpyc+YQFxOYEqv9/bxsLyKnMQPaDrWUgYWYBeYntb+eAjZQQUJO4em4TM8Ra dYmtHQcYJzAKzUIyaRZC9ywk3QsYmVcxihanFiflphsZ6aUWZSYXF+fn6eWllmxiBAbxwS2/ DXYwvnzueIhRgINRiYd3Q+esCCHWxLLiytxDjBIczEoivE7AGBDiTUmsrEotyo8vKs1JLT7E KM3BoiTOa7byfriQQHpiSWp2ampBahFMlomDU6qBsUm84aRnX01WhZCiS9bhrc0mC2Ka2AOK Zm8s3PfqftDc7caeatFrlPeFzfNK/1LsW+mjve+RfKJ+ooPVX0ENvhthJTs6V/S+yBVueHYz 9h9Lyju9pzK7miqNDWb1RHxfcvy//eLJ4kH6NZumMG72Xufq8v3B/CcH2WreFHEt9Z0mvv/1 Wdb1SizFGYmGWsxFxYkAhRfuYV4CAAA= Archived-At: Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 13:19:33 -0000 Hi Mike At least with our measurements on an 8-bit microprocessor platform, 1024-bit RSA exponentiation was extremely slow. Please have a look at Table 1: https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-01 Also, a lot of research in the crypto community is now on faster and more efficient elliptic curves. For example, the Crypto Forum Research group at the IRTF is currently working on Edwards curve: https://tools.ietf.org/html/draft-irtf-cfrg-eddsa-08 Hope this helps the discussion. Thanks Mohit On 02/08/2017 04:55 AM, Michael StJohns wrote: > Hi - > > This is sort of non-obvious, but one or two articles I read suggest > that RSA 1024 performance may be better than the ECDSA equivalent. > > The tradeoff here is obviously the size of the signature and the > transmission thereof, but... > > While 1024 bits isn't an ideal security strength for RSA, using any > asymmetric key system for source authentication in group systems is > going to be much better than trying to pretend that symmetric group > key systems have any authentication properties at all. > > I saw a PPT presentation by Hannes that didn't include any RSA > performance numbers for the ARM processors even though the key sizes > were compared. My guess is that someone has numbers for 1024 RSA > signatures on the tiny ARM processors that might be useful to throw > into the mix. > > https://www.cryptopp.com/benchmarks.html has comparison values for a > specific library. > > What I'm suggesting is that we figure out how to meet the "can't cost > anything" requirement with weaker asymmetric keys rather than > accepting a low end fantasy of symmetric key multicast authentication. > > Mike > > > > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace From nobody Wed Feb 8 07:56:42 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 77F77129BF6 for ; Wed, 8 Feb 2017 07:56:41 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.523 X-Spam-Level: X-Spam-Status: No, score=-14.523 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xycvEr9iwqFc for ; Wed, 8 Feb 2017 07:56:40 -0800 (PST) Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 34597129BED for ; Wed, 8 Feb 2017 07:56:40 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=1791; q=dns/txt; s=iport; t=1486569400; x=1487779000; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=OeGSdIzRNT3sDtuZc5ZtEcg64AzBi/FkwenpwlQZW5I=; b=JodAcUGibmRuALzujIslZwGQPzfrxaU1v+9/o+LL8RgY+3ZUX9IJj1av YQ6jDiRpZ9+HpvsQdHrgK0A7HjHe/1+eb6goThbiZT0AM2l7k+2ZEtxtI zmvDTqRwcQahzXjlnwSrhTFOcnoBuS+7GQHRhrhojkgW/E/6iZjkhU6wx Q=; X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AYAQD1PptY/5pdJa1dGQEBAQEBAQEBA?= =?us-ascii?q?QEBBwEBAQEBgycqYYEJB41akgmVNoIMHwuFeAKCaT8YAQIBAQEBAQEBYiiEaQE?= =?us-ascii?q?BAQQBATg0FwQCAQgRBAEBHwkHJwsUCQgCBAESCIlsDrIki1YBAQEBAQEBAQEBA?= =?us-ascii?q?QEBAQEBAQEBAQEYBYZMhG+FBoUzBZtwAZIIggSIZ4YjkxIBHzh+TxU8hkJ1AYd?= =?us-ascii?q?xAYELAQEB?= X-IronPort-AV: E=Sophos;i="5.33,348,1477958400"; d="scan'208";a="209289241" Received: from rcdn-core-3.cisco.com ([173.37.93.154]) by rcdn-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 08 Feb 2017 15:56:39 +0000 Received: from XCH-ALN-010.cisco.com (xch-aln-010.cisco.com [173.36.7.20]) by rcdn-core-3.cisco.com (8.14.5/8.14.5) with ESMTP id v18Fudgd009211 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Wed, 8 Feb 2017 15:56:39 GMT Received: from xch-aln-010.cisco.com (173.36.7.20) by XCH-ALN-010.cisco.com (173.36.7.20) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Wed, 8 Feb 2017 09:56:38 -0600 Received: from xch-aln-010.cisco.com ([173.36.7.20]) by XCH-ALN-010.cisco.com ([173.36.7.20]) with mapi id 15.00.1210.000; Wed, 8 Feb 2017 09:56:38 -0600 From: "Panos Kampanakis (pkampana)" To: Michael StJohns , "ace@ietf.org" Thread-Topic: [Ace] Asymmetric signature performance Thread-Index: AQHSgbbKrOsc7yrakUCD09wRZ9MojKFegaOg Date: Wed, 8 Feb 2017 15:56:38 +0000 Message-ID: <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> In-Reply-To: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [64.102.61.105] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Archived-At: Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 15:56:41 -0000 One correction: 1024-bit RSA/DSA is not the same security level as 256-bit = curve ECDSA or Ed25519. To compare apples to apples you would need 3072-bit= RSA/DSA sigs which ends up being far worse in terms of sig size and perfor= mance. Agreed that symmetric group key auth has plenty of limitations.=20 Panos -----Original Message----- From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Michael StJohns Sent: Tuesday, February 07, 2017 9:55 PM To: ace@ietf.org Subject: [Ace] Asymmetric signature performance Hi - This is sort of non-obvious, but one or two articles I read suggest that RS= A 1024 performance may be better than the ECDSA equivalent. The tradeoff here is obviously the size of the signature and the transmissi= on thereof, but... While 1024 bits isn't an ideal security strength for RSA, using any asymmet= ric key system for source authentication in group systems is going to be mu= ch better than trying to pretend that symmetric group key systems have any = authentication properties at all. I saw a PPT presentation by Hannes that didn't include any RSA performance= numbers for the ARM processors even though the key sizes were compared. My= guess is that someone has numbers for 1024 RSA signatures on the tiny ARM = processors that might be useful to throw into the mix. https://www.cryptopp.com/benchmarks.html has comparison values for a specif= ic library. What I'm suggesting is that we figure out how to meet the "can't cost anyth= ing" requirement with weaker asymmetric keys rather than accepting a low en= d fantasy of symmetric key multicast authentication. Mike _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace From nobody Wed Feb 8 08:18:29 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A7AD9129C15 for ; Wed, 8 Feb 2017 08:18:27 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ihtfp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id qmOqV5SZ6sTS for ; Wed, 8 Feb 2017 08:18:26 -0800 (PST) Received: from mail2.ihtfp.org (mail2.ihtfp.org [IPv6:2001:470:e448:1::3a11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6EBDC129BED for ; Wed, 8 Feb 2017 08:18:26 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id 75472E2038; Wed, 8 Feb 2017 11:18:25 -0500 (EST) Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 32715-05; Wed, 8 Feb 2017 11:18:21 -0500 (EST) Received: from securerf.ihtfp.org (unknown [IPv6:2001:470:e448:2:ea2a:eaff:fe7d:235]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mocana.ihtfp.org", Issuer "IHTFP Consulting Certification Authority" (verified OK)) by mail2.ihtfp.org (Postfix) with ESMTPS id DE05AE2035; Wed, 8 Feb 2017 11:18:20 -0500 (EST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ihtfp.com; s=default; t=1486570700; bh=iK96RlV5zzfdbzGDYX6APHxvTsPmIrCo2y52WA/0Z3c=; h=From:To:Cc:Subject:References:Date:In-Reply-To; b=m7yOmp+ib3kosYGPuEkUZVvusNVW2cs2UbfABxhx85tWTAfcLY/hJ67xgjbSqzM32 cJ+/0hpg6/KUqCuXZW83+y6dzf/ssjutFCoDEFEbfL+H1PaL+LoDqi0sC+Lbut/GyS HmzFwViaioUvGCZRLlfCAI6ra1fTRnpyqviT2MGI= Received: (from warlord@localhost) by securerf.ihtfp.org (8.15.2/8.14.8/Submit) id v18GIJQv023864; Wed, 8 Feb 2017 11:18:19 -0500 From: Derek Atkins To: Somaraju Abhinav References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> Date: Wed, 08 Feb 2017 11:18:19 -0500 In-Reply-To: (Somaraju Abhinav's message of "Wed, 8 Feb 2017 12:56:19 +0000") Message-ID: User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Virus-Scanned: Maia Mailguard 1.0.2a Archived-At: Cc: Michael StJohns , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 16:18:27 -0000 Somaraju Abhinav writes: > Hi Mike, > > the signature size of RSA is an issue even in the 1024 bit version. The main > wireless protocol, 802.15.4 has a PHY/MAC packet size of 127 bytes so we will > have to fragment IP packets (Bluetooth LE is even smaller at just 27 > bytes). This makes it very difficult to meet the time to light requirements. > This is also a concern for the 70-80 byte overhead of ECC but we can probably > just about manage. Is the concern the computation or the transmission time? Even if you have to fragment packets I would expect transmission time to be well fast enough that computation is the major issue? > Abhinav -derek -- Derek Atkins 617-623-3745 derek@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant From nobody Wed Feb 8 08:51:05 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C1E9C129C51 for ; Wed, 8 Feb 2017 08:51:04 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id fVLCWPSG4AIl for ; Wed, 8 Feb 2017 08:51:03 -0800 (PST) Received: from resqmta-ch2-10v.sys.comcast.net (resqmta-ch2-10v.sys.comcast.net [IPv6:2001:558:fe21:29:69:252:207:42]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5E718129B83 for ; Wed, 8 Feb 2017 08:51:03 -0800 (PST) Received: from resomta-ch2-14v.sys.comcast.net ([69.252.207.110]) by resqmta-ch2-10v.sys.comcast.net with SMTP id bVS5cgrv1uQ8ybVSQcV8lW; Wed, 08 Feb 2017 16:51:02 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20161114; t=1486572662; bh=fCJ8WROwP2Us5WewOA+7NH1G4YaYxJbkyVQMxdKpKIM=; h=Received:Received:Subject:To:From:Message-ID:Date:MIME-Version: Content-Type; b=cj8q3kJwTQHk685lbd0sYujq2h6JSslJ8sXDrCgTjTopwcgsImlUEDAZt4MYWjrzg 9e9A1aFyI38lsWc/HJ1DlXBPmt78rM6fKFvYD46G04K5lF9ubNNK6tmUjVjexofhuB T1hfCe82Zu3f+fcAHwcsyVto4EEcrh6IWGaRm48CWMpH9ULbXxMN2q6xVZyd3twBwK tH2Xe+1pEyUbN+pLnVef41GeYlNtEBv1vm5zMLkCBtvOyp5lJLpibG6He+r5ijio94 52lTgcb+3bJrPGW/NzPmDuD2vfVLT/NEmyIEsP0f1yui5668794bvEaiVT3YC8xnJD gtVE8e3fAvw9g== Received: from [IPv6:2601:152:4400:9b5f:1139:d049:134:71bb] ([IPv6:2601:152:4400:9b5f:1139:d049:134:71bb]) by resomta-ch2-14v.sys.comcast.net with SMTP id bVSPcZy4BQBtVbVSPcGnWk; Wed, 08 Feb 2017 16:51:02 +0000 To: Somaraju Abhinav , "ace@ietf.org" References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> From: Michael StJohns Message-ID: Date: Wed, 8 Feb 2017 11:51:12 -0500 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/alternative; boundary="------------77DBD1D5F19F24CF309EAF2E" X-CMAE-Envelope: MS4wfG7ZRo1kOxaAfPO2aCath5zFL1nGPvvyYf6HjcQ/ahI7Tr775C86jwoBzAHQRUCcbtzmFT6tVJ23TV1JzlcxRvTTghM9OgvgNBIQYcoW/+43TeMWP1G5 6mHMSGo8ROYZe/ArDBJjeP2LaUCQAx1pCZ/n5wQKqLuRUo+kOhDS5MWG2wnHx1nHGB/ZUB5QLbRF2Gvy1+EdwmtobCJQq5KdYMgsamIov3zzzI+IM/Y29GDH Archived-At: Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 16:51:05 -0000 This is a multi-part message in MIME format. --------------77DBD1D5F19F24CF309EAF2E Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit On 2/8/2017 7:56 AM, Somaraju Abhinav wrote: > > Hi Mike, > > > the signature size of RSA is an issue even in the 1024 bit version. > The main wireless protocol, 802.15.4 has a PHY/MAC packet size of 127 > bytes so we will have to fragment IP packets (Bluetooth LE is even > smaller at just 27 bytes). This makes it very difficult to meet the > time to light requirements. This is also a concern for the 70-80 byte > overhead of ECC but we can probably just about manage. > I could have sworn this was going to be running over IPv6? E.g. is this an "internet protocol" or are you just wrapping it up in IPV6 packets for marketing? Or is this yet another requirement - "Must not cause excessive IPv6 fragmentation"? that needs to be stated. You are specifying this as group key multicast protocol on IPv6, but I'm finding it hard to figure out whether or not you expect this to work in anything except a single subnet, homogeneous transmission technology model. If that's the case, why are we talking about this as an IETF task? To put it another way - you can't have your cake and eat it too. If this is an internet protocol, then it has to be able to work in the ... well.. internet. If your target is closely connected nodes with identical transmission modes, then why not go get IEEE to standardize something? Look - IP protocol is a pretty big hammer and there's this tendency to try and make everything look like a nail. But some things are not nails and can never be made to be nails. This lighting multicast, cheap, low latency, control system is really not looking like a nail. Mike > > Abhinav > > ------------------------------------------------------------------------ > *From:* Ace on behalf of Michael StJohns > > *Sent:* Wednesday, February 8, 2017 3:55:22 AM > *To:* ace@ietf.org > *Subject:* [Ace] Asymmetric signature performance > Hi - > > This is sort of non-obvious, but one or two articles I read suggest that > RSA 1024 performance may be better than the ECDSA equivalent. > > The tradeoff here is obviously the size of the signature and the > transmission thereof, but... > > While 1024 bits isn't an ideal security strength for RSA, using any > asymmetric key system for source authentication in group systems is > going to be much better than trying to pretend that symmetric group key > systems have any authentication properties at all. > > I saw a PPT presentation by Hannes that didn't include any RSA > performance numbers for the ARM processors even though the key sizes > were compared. My guess is that someone has numbers for 1024 RSA > signatures on the tiny ARM processors that might be useful to throw into > the mix. > > https://www.cryptopp.com/benchmarks.html has comparison values for a > specific library. > > What I'm suggesting is that we figure out how to meet the "can't cost > anything" requirement with weaker asymmetric keys rather than accepting > a low end fantasy of symmetric key multicast authentication. > > Mike > > > > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace > ________________________________________________________ The contents > of this e-mail and any attachments are confidential to the intended > recipient. They may not be disclosed to or used by or copied in any > way by anyone other than the intended recipient. If this e-mail is > received in error, please immediately notify the sender and delete the > e-mail and attached documents. Please note that neither the sender nor > the sender's company accept any responsibility for viruses and it is > your responsibility to scan or otherwise check this e-mail and any > attachments. --------------77DBD1D5F19F24CF309EAF2E Content-Type: text/html; charset=windows-1252 Content-Transfer-Encoding: 8bit
On 2/8/2017 7:56 AM, Somaraju Abhinav wrote:

Hi Mike,


the signature size of RSA is an issue even in the 1024 bit version. The main wireless protocol, 802.15.4 has a PHY/MAC packet size of 127 bytes so we will have to fragment IP packets (Bluetooth LE is even smaller at just 27 bytes). This makes it very difficult to meet the time to light requirements. This is also a concern for the 70-80 byte overhead of ECC but we can probably just about manage.


I could have sworn this was going to be running over IPv6?   E.g. is this an "internet protocol" or are you just wrapping it up in IPV6 packets for marketing?

Or is this yet another requirement - "Must not cause excessive IPv6 fragmentation"? that needs to be stated.

You are specifying this as  group key multicast protocol on IPv6, but I'm finding it hard to figure out whether or not you expect this to work in anything except a single subnet, homogeneous transmission technology model.  If that's the case, why are we talking about this as an IETF task?

To put it another way - you can't have your cake and eat it too.  If this is an internet protocol, then it has to be able to work in the ... well.. internet.  If your target is closely connected nodes with identical transmission modes, then why not go get IEEE to standardize something?

Look - IP protocol is a pretty big hammer and there's this tendency to try and make everything look like a nail.  But some things are not nails and can never be made to be nails.  This lighting multicast, cheap, low latency, control system is really not looking like a nail.

Mike



Abhinav

From: Ace <ace-bounces@ietf.org> on behalf of Michael StJohns <mstjohns@comcast.net>
Sent: Wednesday, February 8, 2017 3:55:22 AM
To: ace@ietf.org
Subject: [Ace] Asymmetric signature performance
 
Hi -

This is sort of non-obvious, but one or two articles I read suggest that
RSA 1024 performance may be better than the ECDSA equivalent.

The tradeoff here is obviously the size of the signature and the
transmission thereof, but...

While 1024 bits isn't an ideal security strength for RSA, using any
asymmetric key system for source authentication in group systems is
going to be much better than trying to pretend that symmetric group key
systems have any authentication properties at all.

I saw a PPT presentation by Hannes that  didn't include any RSA
performance numbers for the ARM processors even though the key sizes
were compared. My guess is that someone has numbers for 1024 RSA
signatures on the tiny ARM processors that might be useful to throw into
the mix.

https://www.cryptopp.com/benchmarks.html has comparison values for a
specific library.

What I'm suggesting is that we figure out how to meet the "can't cost
anything" requirement with weaker asymmetric keys rather than accepting
a low end fantasy of symmetric key multicast authentication.

Mike




_______________________________________________
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace
________________________________________________________ The contents of this e-mail and any attachments are confidential to the intended recipient. They may not be disclosed to or used by or copied in any way by anyone other than the intended recipient. If this e-mail is received in error, please immediately notify the sender and delete the e-mail and attached documents. Please note that neither the sender nor the sender's company accept any responsibility for viruses and it is your responsibility to scan or otherwise check this e-mail and any attachments.


--------------77DBD1D5F19F24CF309EAF2E-- From nobody Wed Feb 8 09:10:15 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 779D21289B0 for ; Wed, 8 Feb 2017 09:10:13 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.701 X-Spam-Level: X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id JqeG5OT84HnD for ; Wed, 8 Feb 2017 09:10:12 -0800 (PST) Received: from resqmta-ch2-04v.sys.comcast.net (resqmta-ch2-04v.sys.comcast.net [IPv6:2001:558:fe21:29:69:252:207:36]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8EB78129BFE for ; Wed, 8 Feb 2017 09:09:53 -0800 (PST) Received: from resomta-ch2-02v.sys.comcast.net ([69.252.207.98]) by resqmta-ch2-04v.sys.comcast.net with SMTP id bVkecPfA2E5a6bVkecI7i8; Wed, 08 Feb 2017 17:09:52 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20161114; t=1486573792; bh=iVVeFXg7glBeAxC4Nyd1PsbDKLtwpDGnTTsoA10Ahsc=; h=Received:Received:Subject:To:From:Message-ID:Date:MIME-Version: Content-Type; b=fdSgmSN7oxoMN2IYgCe3gfAhuzmmi04xk8RqMLjTkBrHxqOdJUAdwp978SECj5cAk qaA+F7EhGhTWhASyxMVdwMGDXBlZ1ciMf/OfYzpG548uTHMsyrj7CaHtU6b3JKNW4B XNwwLm9WpE1E2U03T/IuREofsAsyR/CEXBxrKXiNAD+dmgx4FUTlIZRQ1i5YiGF2Gv Tb2B0hUNePt5nRV3lkDxbTszQZ9hiX1Zs6qODH2IEInmoFKisggvLzdHjrqLbx1000 JF1hXeuTeRhzrVHgynVgLbOL4KT8smjdC93hRayTIPij//hRUNWzUt8ycYisb80Zcc O/tKX1rBfv4Pw== Received: from [IPv6:2601:152:4400:9b5f:1139:d049:134:71bb] ([IPv6:2601:152:4400:9b5f:1139:d049:134:71bb]) by resomta-ch2-02v.sys.comcast.net with SMTP id bVkecWuNy5ddFbVkecRFFZ; Wed, 08 Feb 2017 17:09:52 +0000 To: Mohit Sethi , "ace@ietf.org" References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <3fbffd36-f846-3f21-74b8-811e54715847@ericsson.com> From: Michael StJohns Message-ID: <1fd13717-96d6-a7d3-6fec-86ff428967bc@comcast.net> Date: Wed, 8 Feb 2017 12:10:03 -0500 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: <3fbffd36-f846-3f21-74b8-811e54715847@ericsson.com> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-CMAE-Envelope: MS4wfEDGmbpTgAMDryzD8EF6LDuyuxULLAeiKKcFroG9Oxo/gM4hoUL7NKx87KcGMDci60lnheUKD/Ca/RwLL6rfSHs83Qo188JnKViFfOHOVxQvDq3QyL4N mrSz8N3eUj8D09HRuLtEmkv+gTQfaACkQXK6HX5jRShG5qQYks1Rhx2T4Rp9TC6HFJEOxLOUZWHASvko58lE0+IY53f4H2Ce5+OElUR0ANIOClYq2qupGGTT Archived-At: Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 17:10:13 -0000 On 2/8/2017 8:19 AM, Mohit Sethi wrote: > Hi Mike > > At least with our measurements on an 8-bit microprocessor platform, > 1024-bit RSA exponentiation was extremely slow. Please have a look at > Table 1: > > https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-01 I look at Table 1 the first thing I see is that you're using the wrong abbreviation for time - (ms is milli second), what you want is micro seconds or (us). Or are you actually trying to claim that a 1024 bit operation takes 199 seconds? Or all of 3+ minutes? Or are you using an abacus and a monkey to do the math? (And by the way - using "3" as the RSA exponent is just wrong). Table 1 doesn't actually indicate whether this is a signing operation or a verification operation, or whether or not the summary function (SHA1 or SHA256) is included. If Table 2 and table 3 have the same mistakes in time abbreviation (and I'm not sure why they wouldn't), you're saying that you can do an ECDSA function in 2-6 milliseconds. Which more than meets the requirements. > > Also, a lot of research in the crypto community is now on faster and > more efficient elliptic curves. For example, the Crypto Forum Research > group at the IRTF is currently working on Edwards curve: > https://tools.ietf.org/html/draft-irtf-cfrg-eddsa-08 Aware of this along with Curve25519 and its ilk. Most important thing would be to get the numbers for an ARM M0 or other tiny processor for these. > > Hope this helps the discussion. > > Thanks > Mohit > > On 02/08/2017 04:55 AM, Michael StJohns wrote: >> Hi - >> >> This is sort of non-obvious, but one or two articles I read suggest >> that RSA 1024 performance may be better than the ECDSA equivalent. >> >> The tradeoff here is obviously the size of the signature and the >> transmission thereof, but... >> >> While 1024 bits isn't an ideal security strength for RSA, using any >> asymmetric key system for source authentication in group systems is >> going to be much better than trying to pretend that symmetric group >> key systems have any authentication properties at all. >> >> I saw a PPT presentation by Hannes that didn't include any RSA >> performance numbers for the ARM processors even though the key sizes >> were compared. My guess is that someone has numbers for 1024 RSA >> signatures on the tiny ARM processors that might be useful to throw >> into the mix. >> >> https://www.cryptopp.com/benchmarks.html has comparison values for a >> specific library. >> >> What I'm suggesting is that we figure out how to meet the "can't cost >> anything" requirement with weaker asymmetric keys rather than >> accepting a low end fantasy of symmetric key multicast authentication. >> >> Mike >> >> >> >> >> _______________________________________________ >> Ace mailing list >> Ace@ietf.org >> https://www.ietf.org/mailman/listinfo/ace > From nobody Wed Feb 8 10:34:43 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 91D05129D42 for ; Wed, 8 Feb 2017 10:34:41 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.221 X-Spam-Level: X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id glLw0xZwgYjl for ; Wed, 8 Feb 2017 10:34:40 -0800 (PST) Received: from sessmg23.ericsson.net (sessmg23.ericsson.net [193.180.251.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id AC366129D2F for ; Wed, 8 Feb 2017 10:34:39 -0800 (PST) X-AuditID: c1b4fb2d-fb9fc980000059d1-25-589b64bd1ffb Received: from ESESSHC022.ericsson.se (Unknown_Domain [153.88.183.84]) by (Symantec Mail Security) with SMTP id F3.2C.22993.DB46B985; Wed, 8 Feb 2017 19:34:38 +0100 (CET) Received: from nomadiclab.lmf.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.86) with Microsoft SMTP Server id 14.3.319.2; Wed, 8 Feb 2017 19:34:04 +0100 Received: from nomadiclab.lmf.ericsson.se (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id 50227508C4; Wed, 8 Feb 2017 20:35:14 +0200 (EET) Received: from [127.0.0.1] (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id E21DC4E94F; Wed, 8 Feb 2017 20:35:13 +0200 (EET) To: Michael StJohns , "ace@ietf.org" References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <3fbffd36-f846-3f21-74b8-811e54715847@ericsson.com> <1fd13717-96d6-a7d3-6fec-86ff428967bc@comcast.net> From: Mohit Sethi Message-ID: <47c889ff-561d-26f8-8383-229953795e30@ericsson.com> Date: Wed, 8 Feb 2017 20:34:03 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: <1fd13717-96d6-a7d3-6fec-86ff428967bc@comcast.net> Content-Type: text/plain; charset="windows-1252"; format=flowed Content-Transfer-Encoding: quoted-printable X-Virus-Scanned: ClamAV using ClamSMTP X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFjrNLMWRmVeSWpSXmKPExsUyM2J7iO6+lNkRBofvM1t8/9bDbDFlXZYD k8fkx3MYPZYs+ckUwBTFZZOSmpNZllqkb5fAlXF7elbBPOWKbQ1TWRsYp8l0MXJySAiYSPTv vsPWxcjFISSwjlFi36seZpCEkMBWRolLS3UhEmsZJaYuncAO4cxjlOif/YwNpEpYwFiiefoy RhBbRMBT4uT+z4wQRSsZJc7vPgOWYBPQk+g8dxxsLK+AvcTi2TtYQGwWARWJ29PmsYPYogIR EvOfrmKCqBGUODnzCVgNJ1B974vrQMs4OJiB7Adby0DCzALaEssWvmaGeEFN4uq5TVBXq0ts 7TjAOIFRaBaSSbMQumch6V7AyLyKUbQ4tbg4N93IWC+1KDO5uDg/Ty8vtWQTIzCID275rbuD cfVrx0OMAhyMSjy8GzpnRQixJpYVV+YeYpTgYFYS4Z2TNDtCiDclsbIqtSg/vqg0J7X4EKM0 B4uSOK/ZyvvhQgLpiSWp2ampBalFMFkmDk6pBsYoaddCBY4ox9oN9aeaAyNdNF+t0T2fbcnY cyhx1omlJnYXg7w4FlivKVKw8e3Js2fflDFdP/hr7RzBhBciUms/JmZI2vaGtQekdMR8Nmiv jF/TduP2asczYvnvwwXPbLq7t6MmWfrs/Mzgym1VXD2sf1uPMyuslrThzHK2rF+0jvPwvoon SizFGYmGWsxFxYkADxXJsl4CAAA= Archived-At: Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 18:34:41 -0000 Hi Mike Reply inline. On 02/08/2017 07:10 PM, Michael StJohns wrote: > On 2/8/2017 8:19 AM, Mohit Sethi wrote: >> Hi Mike >> >> At least with our measurements on an 8-bit microprocessor platform,=20 >> 1024-bit RSA exponentiation was extremely slow. Please have a look at = >> Table 1: >> >> https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-01 > > I look at Table 1 the first thing I see is that you're using the wrong = > abbreviation for time - (ms is milli second), what you want is micro=20 > seconds or (us). Or are you actually trying to claim that a 1024 bit = > operation takes 199 seconds? Or all of 3+ minutes? Or are you=20 > using an abacus and a monkey to do the math? It isn't the case of a wrong abbreviation. It actually took that long to = do the exponentiation operation. We don't implement our own crypto and=20 use existing libraries. In this case, we use the following library:=20 http://emsign.nl/. The author of the library himself runs some initial=20 measurements to find that 512-bit RSA exponentiation can take roughly 26 = seconds. > > (And by the way - using "3" as the RSA exponent is just wrong). Agree. The point here was to see if we need to invest more time to get a = secure and efficient RSA implementation working? What we concluded was=20 that the performance of ECC is significantly better, at least for our=20 platform with the libraries available. > > Table 1 doesn't actually indicate whether this is a signing operation=20 > or a verification operation, or whether or not the summary function=20 > (SHA1 or SHA256) is included. We do write in the text that the numbers reflect the signing operation=20 only. The time does not include the summary function. > > If Table 2 and table 3 have the same mistakes in time abbreviation=20 > (and I'm not sure why they wouldn't), you're saying that you can do an = > ECDSA function in 2-6 milliseconds. Which more than meets the=20 > requirements. > > The best time with 163-bit koblitz curve was ~300 ms (for signing). I=20 don't think it meets the requirements, but I definitely agree that we=20 are getting quite better all the time. And bear in mind we use a 8-bit=20 platform that not many deployments have. I think 32-bit is more common=20 and cheaper because of economies of scale. > >> >> Also, a lot of research in the crypto community is now on faster and=20 >> more efficient elliptic curves. For example, the Crypto Forum=20 >> Research group at the IRTF is currently working on Edwards curve: >> https://tools.ietf.org/html/draft-irtf-cfrg-eddsa-08 > > Aware of this along with Curve25519 and its ilk. Most important thing = > would be to get the numbers for an ARM M0 or other tiny processor for=20 > these. In the draft, we also cite an implementation where the authors were able = to do Ed25519 signing on the same 8-bit platform in ~1,5 seconds. Thanks Mohit > > >> >> Hope this helps the discussion. >> >> Thanks >> Mohit >> >> On 02/08/2017 04:55 AM, Michael StJohns wrote: >>> Hi - >>> >>> This is sort of non-obvious, but one or two articles I read suggest=20 >>> that RSA 1024 performance may be better than the ECDSA equivalent. >>> >>> The tradeoff here is obviously the size of the signature and the=20 >>> transmission thereof, but... >>> >>> While 1024 bits isn't an ideal security strength for RSA, using any=20 >>> asymmetric key system for source authentication in group systems is=20 >>> going to be much better than trying to pretend that symmetric group=20 >>> key systems have any authentication properties at all. >>> >>> I saw a PPT presentation by Hannes that didn't include any RSA=20 >>> performance numbers for the ARM processors even though the key sizes = >>> were compared. My guess is that someone has numbers for 1024 RSA=20 >>> signatures on the tiny ARM processors that might be useful to throw=20 >>> into the mix. >>> >>> https://www.cryptopp.com/benchmarks.html has comparison values for a = >>> specific library. >>> >>> What I'm suggesting is that we figure out how to meet the "can't=20 >>> cost anything" requirement with weaker asymmetric keys rather than=20 >>> accepting a low end fantasy of symmetric key multicast authentication= =2E >>> >>> Mike >>> >>> >>> >>> >>> _______________________________________________ >>> Ace mailing list >>> Ace@ietf.org >>> https://www.ietf.org/mailman/listinfo/ace >> > From nobody Wed Feb 8 14:48:24 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F3C4312A08E for ; Wed, 8 Feb 2017 14:48:21 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.701 X-Spam-Level: X-Spam-Status: No, score=-2.701 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=comcast.net Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hOhMqht9BzZR for ; Wed, 8 Feb 2017 14:48:20 -0800 (PST) Received: from resqmta-po-12v.sys.comcast.net (resqmta-po-12v.sys.comcast.net [IPv6:2001:558:fe16:19:96:114:154:171]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C0C4512A086 for ; Wed, 8 Feb 2017 14:48:20 -0800 (PST) Received: from resomta-po-07v.sys.comcast.net ([96.114.154.231]) by resqmta-po-12v.sys.comcast.net with SMTP id bazjc3Tu1nZkvbb2BcrR8G; Wed, 08 Feb 2017 22:48:19 +0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20161114; t=1486594099; bh=Z+DxOFBSpZVjljjBp5GtSgab3mBJ9n2RAZDsnQTtEkQ=; h=Received:Received:Subject:To:From:Message-ID:Date:MIME-Version: Content-Type; b=pOEPlxejOS7omPQhLPwbB+rGjNJHWnhyelpf2avpkigA1gCDsqWA+5oc46RvBm9aF mJxf2LGIVL3mc8vXIK09KUS/BqbVJZ5K+d+ngN7fusI0342AOX732rgRNi9c6NBqJs 53zP2aR3GOjs5XobyIg0eIEzFmO/ZMMZ869aGHOFdeqXOQPKTOSLIon7Cr2KcAmW6g hY1vcO+WPtDMW/MUR9xE/0MbS68AVnVtPOX1ItsSQn4wRX0i8zkaTpCLSk0YFbq99h SkdfbiRiPxazCq9FwDzMMLPePaLYFCLDfWgSjfezhdJpb1Al8fEInAU7ELVtkNgCzC U9YGQejFNEU4w== Received: from [192.168.1.117] ([69.140.116.172]) by resomta-po-07v.sys.comcast.net with SMTP id bb2Ac7Zi9xeYybb2BcfQOP; Wed, 08 Feb 2017 22:48:19 +0000 To: ace@ietf.org References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> From: Michael StJohns Message-ID: <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> Date: Wed, 8 Feb 2017 17:48:29 -0500 User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-CMAE-Envelope: MS4wfFnTPTolxqOOlwoixkUSob2PJSoy1iGT2I4u7CpzQN468lB9VEGp2VzpYtJ2qevfrgWhbji40y6iTcXJMp/s2FtTNeLgf+eiCmRdxwE+oxb4j81xQOnC TpzaABzppKRB5qCVN5hK9N7B9PylS76yt1RcuSweNXmNH7dwp0JpyZR3 Archived-At: Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 08 Feb 2017 22:48:22 -0000 On 2/8/2017 10:56 AM, Panos Kampanakis (pkampana) wrote: > One correction: 1024-bit RSA/DSA is not the same security level as 256-bit curve ECDSA or Ed25519. But neither is a group symmetric key of any sized used for authentication/authorization. The point is that weaker but good enough security on the asymmetric side is going to be a better solution than ANY group symmetric key. NIST et al have given some guidance about key strengths and their uses with respect to the broadest set of threats and following the guidance is pretty much good engineering. But, looking at something like RSA 1024 bit (or the ECDSA equivalent of about 166 bits - I think that's the right number), and looking at the threat environment for the target application, and noting that it's trivial (protocol wise) to change out the size of the key (e.g. scale it) in higher threat environments, 1024/166 bits may not be a bad choice for minimum security for non-man rated IOT control things. Mike > To compare apples to apples you would need 3072-bit RSA/DSA sigs which ends up being far worse in terms of sig size and performance. > > Agreed that symmetric group key auth has plenty of limitations. > > Panos > > > > -----Original Message----- > From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Michael StJohns > Sent: Tuesday, February 07, 2017 9:55 PM > To: ace@ietf.org > Subject: [Ace] Asymmetric signature performance > > Hi - > > This is sort of non-obvious, but one or two articles I read suggest that RSA 1024 performance may be better than the ECDSA equivalent. > > The tradeoff here is obviously the size of the signature and the transmission thereof, but... > > While 1024 bits isn't an ideal security strength for RSA, using any asymmetric key system for source authentication in group systems is going to be much better than trying to pretend that symmetric group key systems have any authentication properties at all. > > I saw a PPT presentation by Hannes that didn't include any RSA performance numbers for the ARM processors even though the key sizes were compared. My guess is that someone has numbers for 1024 RSA signatures on the tiny ARM processors that might be useful to throw into the mix. > > https://www.cryptopp.com/benchmarks.html has comparison values for a specific library. > > What I'm suggesting is that we figure out how to meet the "can't cost anything" requirement with weaker asymmetric keys rather than accepting a low end fantasy of symmetric key multicast authentication. > > Mike > > > > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace From nobody Thu Feb 9 02:46:42 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C2765129552 for ; Thu, 9 Feb 2017 02:46:40 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -3.787 X-Spam-Level: X-Spam-Status: No, score=-3.787 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-1.887, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=zgrp.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GrIjC5POku-a for ; Thu, 9 Feb 2017 02:46:37 -0800 (PST) Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on0125.outbound.protection.outlook.com [104.47.0.125]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 445AE1294F6 for ; Thu, 9 Feb 2017 02:46:35 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zgrp.onmicrosoft.com; s=selector1-tridonic-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=ec4daSysvQiE9+evMwc/ODHKBIc8NQIJFebEM/sfrt0=; b=ji+zrK5px046mv9l8zoN2exBv874TNfza33D7QimJvNgBGyJ8CWqPpNhr9JxNIbLbGZf5jz8YR/yRvSRz9jP805rnf+06Fxf6TdFwI9TukSX8SIZKqvPHLjlFEBhYATpiMHPVhmwXVyQ9FaR7Z2JtDwS5/+IfGc1IuVolot1bJY= Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) by DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.888.16; Thu, 9 Feb 2017 10:46:31 +0000 Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) by DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) with mapi id 15.01.0888.026; Thu, 9 Feb 2017 10:46:31 +0000 From: Somaraju Abhinav To: Jim Schaad , "draft-somaraju-ace-multicast@tools.ietf.org" Thread-Topic: [Ace] draft-somaraju-ace-multicast Thread-Index: AdJqFjktU/bHwE2RRn6LNdkksHiqaQTMexNgAD/kTgAAmt6R3ABBLmEAAEFcVLY= Date: Thu, 9 Feb 2017 10:46:31 +0000 Message-ID: References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> , <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> , <0a8001d281b7$ec518750$c4f495f0$@augustcellars.com> In-Reply-To: <0a8001d281b7$ec518750$c4f495f0$@augustcellars.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=abhinav.somaraju@tridonic.com; x-originating-ip: [25.161.237.4] x-ms-office365-filtering-correlation-id: f736dcc8-6bf2-4226-5378-08d450d8e90c x-ms-office365-filtering-ht: Tenant x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(48565401081); SRVR:DB6PR0601MB2198; x-microsoft-exchange-diagnostics: 1; DB6PR0601MB2198; 7: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 x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(278428928389397)(192374486261705)(100405760836317); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(5005006)(8121501046)(10201501046)(3002001)(6055026)(6041248)(20161123562025)(20161123558025)(20161123564025)(20161123555025)(20161123560025)(6072148); SRVR:DB6PR0601MB2198; BCL:0; PCL:0; RULEID:; SRVR:DB6PR0601MB2198; x-forefront-prvs: 02135EB356 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(979002)(7916002)(39860400002)(39850400002)(39410400002)(39840400002)(39450400003)(189002)(377454003)(45074003)(199003)(5660300001)(33656002)(2950100002)(6606003)(38730400002)(345774005)(3280700002)(561944003)(122556002)(4326007)(6506006)(7696004)(2906002)(229853002)(66066001)(77096006)(92566002)(86362001)(53946003)(53546003)(6246003)(53936002)(55016002)(106356001)(101416001)(19627405001)(76176999)(105586002)(93886004)(54896002)(50986999)(54356999)(2900100001)(74316002)(7906003)(189998001)(7736002)(97736004)(102836003)(2501003)(8676002)(6116002)(236005)(81156014)(3660700001)(5890100001)(8936002)(230783001)(6436002)(81166006)(99286003)(6306002)(9686003)(68736007)(606005)(25786008)(3846002)(969003)(989001)(999001)(1009001)(1019001); DIR:OUT; SFP:1102; SCL:1; SRVR:DB6PR0601MB2198; H:DB6PR0601MB2198.eurprd06.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; received-spf: None (protection.outlook.com: tridonic.com does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/alternative; boundary="_000_DB6PR0601MB21984DBC2BD62F6A27D8D21FFC450DB6PR0601MB2198_" MIME-Version: 1.0 X-OriginatorOrg: tridonic.com X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Feb 2017 10:46:31.7198 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 8b206608-a593-4ace-a4b6-ef1fc83c9169 X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0601MB2198 Archived-At: Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 10:46:41 -0000 --_000_DB6PR0601MB21984DBC2BD62F6A27D8D21FFC450DB6PR0601MB2198_ Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable Comment inline From: Somaraju Abhinav [mailto:abhinav.somaraju@tridonic.com] Sent: Monday, February 6, 2017 12:01 PM To: Jim Schaad ; draft-somaraju-ace-multicast@tools= .ietf.org Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast Jim, All, please see a proposal for the Applicability statement that can be used as a= starting point for the Webex. Abhinav [JLS] Did you actually change anything from the current document. At first= glance it looks like a cut and paste with absolutely no response to any of= the issues that have been raised on the list. [AS] We have changes from the current document. I have highlighted in red b= elow the changes. 5.1 Applicability statement [JLS] This should have a description of the criteria which should be used t= o determine if any of the solutions here are needed. Without this informat= ion, it seems that the solution could be applied to anything. Is this real= ly just a lighting solution or is it a more general solution? [AS] We are mainly interested in the lighting application. The only other f= ield I am aware of is blinds but I do not know enough about their requireme= nts. It will be interesting to hear from others if they have applications w= here this is interesting. This document describes two architectures based on symmetric group keys in = Section 3 and asymmetric keys in Section 4. [JLS] Based on the mails we have exchanged; this statement is either wrong = or insufficiently qualified. You have stated that even the messages in sec= tion 4 need to be encrypted and thus might have a group key. [AS] Fair point. This is the current status. Will have to fix this part. The symmetric key solution is based on a group key that is shared between a= ll group members including senders and receivers. As all members of the gr= oup posses the same key, it is only possible to authenticate group member= ship for the source of a message. In particular, it is not possible to au= thenticate the unique source of a message and consequently it is not poss= ible to authorize a single node to control a group. This implies in particu= lar that any hacked receiver in a group could then be used to control all t= he receivers in the group. Moreover, because the group key is shared across multiple nodes, it may be = easier for an attacker to determine the group key by attacking any member o= f the group (note that this group key is dynamically generated and is usual= ly stored in volatile memory which offers some additional protection). The = probability of a stolen key increases with the number of nodes that are in = possession of the key. Moreover, subsequent to such an attack, it is also d= ifficult to determine which of the group members was compromised and this m= akes it difficult to return the system to normal operation after an attack. [JLS] I have no idea why storing a key in volatile memory would offer addit= ional protections. [AS] This prevents the case of removing a device from the physical location= and figuring out the group key. Not sure if it helps too much. We can remo= ve it if the group consensus is that it does not help. [JLS] Losing power is going to lead to potentially very long delays at powe= r and missed processing of messages if every recipient needs to individuall= y generate a new dynamic key and distribute it, not to mention the potentia= l problems with the question of who has good randomness for the generation = of new keys. [AS] Agree. See comment above. We can remove it if the group consensus is t= hat it does not help. [JLS] Which group members are/were compromised. You don=92t know that it h= as gone away. [JLS] This text does not address the questions of size and homogeneity of g= roups. One of the issues that has been brought up is about using the same = key for multiple types of devices such as lights and doors. [AS] The specification does not allow the same key to be given out for mult= iple types of devices. All tokens are linked to a scope and an application = group. You can not use the same key for two different applications. But you= make a good point. We can add this to the applicability statement. The asymmetric key solution distinguishes between a sender in the group and= the receivers. In particular, the sender is in possession of a private key= and the receivers are in possession of the corresponding public key. This= allows the unique source of any group message to be authenticated. Moreove= r, an attacker cannot compromise the system by breaking into any of the r= eceiving nodes. However, for constrained devices, the asymmetric key soluti= on comes at a processing cost with cryptographic computations taking rather= long. [JLS] The last sentence does not belong here. The term =93rather long=94 i= s extremely vague and is even worse than the term =93low-latency=94 in term= s of what has been defined. [AS] Will discuss this point during the call today. [JLS] Should also know that the sender that was compromised is immediately = known and can be dealt with. [AS] Okay. Will add this point. Therefore, it is recommended that whenever possible, the architecture with = source authentication SHOULD be used to secure all multicast communication.= However, in less sensitive applications where low-latency group communicat= ion is important (e.g. controlling luminaires in non-emergency applications= ), the architecture without source authentication MAY be used. In sensiti= ve applications such as health and safety, building security and emergency = applications the symmetric key based solution SHOULD not be used. [JLS] Personally, I would not know how to test this, so I don=92t believe t= hat RFC 2119 language is appropriate. [AS] I agree that this is not testable. But I not sure how we should procee= d here. Any suggestions would be great. One of the big objections has been = "what if this solution is used for something else" and that guidance should= be provided as to where this specification should be used and more importa= ntly not used. [JLS] Why should emergency applications be different? Does this mean that = all devices need to implement both solutions and need to figure out which o= f the solutions should be used at any given time? What defines a sensitive= application? The ability to monitor a sensor even if the state of the lig= hts is not? [AS] See comment above. When using the symmetric key solution two mitigating factors could improve = system security. It is possible to achieve source authentication of message= s at lower layers by requiring unique MAC layer keys for all devices with= in the network. The symmetric group keys are dynamically generated and ther= efore SHOULD be stored in volatile memory. [JLS] Given the fact that it is =93easy=94 to impersonate MAC addresses I a= m not sure how this will mitigate the problem. This would be killed by eit= her MAC impersonation or having a message re-transmitted by a proxy agent. [AS] This was an idea for Eliot Leer. The idea is to have pairwise MAC laye= r keys and this has nothing to do with MAC addresses. It is to do with trac= eability of messages after an attack is detected so that the source of the = multicast message can be determined. Maybe Eliot can comment more about thi= s. [JLS] As stated above, I am not sure how keeping keys in volatile memory wi= ll be a mitigating factor. The only think that I see is that I cannot phys= ically steal the device and work on it later rather than having to do it = =93in place=94. [AS] Yes, this is about physically stealing devices not helping. ________________________________ From: Jim Schaad > Sent: Friday, February 3, 2017 7:02:42 PM To: Somaraju Abhinav; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' Subject: RE: [Ace] draft-somaraju-ace-multicast See comments inline From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju Abhinav Sent: 02 February 2017 03:48 To: Jim Schaad >; dra= ft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' > Subject: Re: [Ace] draft-somaraju-ace-multicast Hi Jim, thank you for the review and I apologise for the delayed response - I was o= n sick leave due to a surgery. Please see comments inline from the authors. Why restriction on reading messages? It is not like an external observer i= s not going to be able to see the lights go on or off. [AS] There are several situations where lights are not visible but (multica= st) network data is accessible. Moreover, sensors (e.g. presence detectors)= are continuously talking to actuators and controllers without necessarily = having a visible effect on the lights. For several customers privacy is a v= ery important concern and is almost a given. The statement "anybody can lis= ten to the traffic and tell when sensors detect presence in a building with= out even being in the building" is a very difficult sell. Having said that,= it is true that simply encrypting the multicast traffic at the application= layer is only a prerequisite to provide the privacy needed and additional = work is required (e.g. generating random messages at different times). In t= hat sense the symmetric solution is probably not much better than the asymm= etric solution. But the demand for privacy from customers is very clear and= the perception among them is that unencrypted data implies poor security. [JLS] I am sensing a problem here. You have stated that there is a require= ment that encryption is a requirement that people are going to say must be = me. However, below you have stated that if authentication is a requirement= then encryption suddenly becomes a non-requirement? You appear to be stat= ing that there are circumstances where it is fine not to have the data encr= ypted if one needs to know where it came from. Consider the following case I have a sensor in a room. When the sensor s= ees movement, it broadcasts a lights one command. The command is picked up= by both the lightbulbs and by the security system. The security system mu= st know which sensor provided the command and therefore no encryption is go= ing be needed here? That just seems wrong. Additionally, the situation where things are =93continuously=94 talking wou= ld seem to be a good place where one would want to install a controller and= not have the sensor directly talking to the actuator. You don=92t want to= flood the actuators with trying to constantly turn on the lights. Also th= e use of actuators in this sense makes one think that this is a solution fo= r things other than lighting systems which is what people are complaining a= bout. The solution in section 4 does not seem to meet the following requirement "Only authorized members of the application group must be able to read and process messages." [AS] You are right, we cannot satisfy the privacy requirement in Section 4.= We could extend the current solution to include a group wide encryption ke= y to meet this requirement. However, this will add additional latency to th= e asymmetric solution. This document needs to have a solution for dealing with nonce space allocation for the cases where more than one sender is going be able to use the same key. This is going to be part of the problems with replay detection as well as security considerations. [AS] Okay. Will add some text in the next version of the draft for better c= larification. The idea as written in 4.3 (Nonce value) is to use the Client= ID along with the sender=92s sequence number to create the complete nonce = for replay and CCM processing. Should the algorithms be using high water detection of sequence numbers rather than the case of not yet used? Or is that an application specific type thing? [SK] This is tricky since it can create all kind of new issues. One way to = handle if the sequence number of a sender is about to roll over is that the= sender requests a new key issued for the group by the KDC. Tricky part is = if there are multiple senders who are not reaching the roll over of their s= equence number then have to be forced to use a new key or there needs to be= some overlap between the old key and new key before every sender in the gr= oup starts using the new key. [JLS] Lots of spinning in graves from the idea of having a sequence number = roll over given the harsh requirements that a nonce (built from the sequenc= e number) must never be re-used twice for many of the algorithms that are g= oing to be used here. I do not think that the current security requirements is sufficiently strident to reflect both the threat of breakage, cross-breakage and restrictions on where it should be used to pass muster. [AS] I thing this will be the main discussion item in the webex. We will ma= ke a proposal for the security guidelines section after the interim webex. [JLS] A proposal before the call is better because then we have a starting = point for discussions as well as allowing people who will not make the call= be able to have some initial input on where discussions points should be d= irected. _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. --_000_DB6PR0601MB21984DBC2BD62F6A27D8D21FFC450DB6PR0601MB2198_ Content-Type: text/html; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable

Comment inline

 

From: Somaraju Abhinav [mai= lto:abhinav.somaraju@tridonic.com]
Sent: Monday, February 6, 2017 12:01 PM
To: Jim Schaad <ietf@augustcellars.com>; draft-somaraju-ace-mu= lticast@tools.ietf.org
Cc: 'ace' <ace@ietf.org>
Subject: Re: [Ace] draft-somaraju-ace-multicast

 

Jim= , All,

&nb= sp;

ple= ase see a proposal for the Applicability statement that can be used as a st= arting point for the Webex.

&nb= sp;

Abh= inav

[JLS] Did you actually change anything from the current do= cument.  At first glance it looks like a cut and paste with absolutely= no response to any of the issues that have been raised on the list.

[AS] We have chan= ges from the current document. I have highlighted in red below the changes.=

&nb= sp;

5.1= Applicability statement

[JLS] This should have a description of the criteria which= should be used to determine if any of the solutions here are needed. = Without this information, it seems that the solution could be applied to anything.  Is this really just a lighting solutio= n or is it a more general solution?

<= span style=3D"font-size: 12pt;">[AS] We are mainly interested in the lighti= ng application. The only other field I am aware of is blinds but I do not k= now enough about their requirements. It will be interestin= g to hear from others if they have applications where this is interesting.&= nbsp;

 

This document describes two architectures based on symmetric= group keys in Section 3 and asymmetric keys in Section 4.

[JLS] Based on the mails we have exchanged; this statement= is either wrong or insufficiently qualified.  You have stated that ev= en the messages in section 4 need to be encrypted and thus might have a group key.

[AS] Fair point.&= nbsp;This is the current status. Will have to fix this part.

&nb= sp;

The symmetric key solution is based on a group key that is s= hared between all group members including senders and receivers.  As a= ll members of the group posses the same key, it is only possible to   authenticate group membership for the source = of a message. In   particular, it is not possible to authenticate= the unique source of a   message and consequently it is not poss= ible to authorize a single node to control a group. This implies in particular that any = hacked receiver in a group could then be used to control all the receivers = in the group.

&nb= sp;

Moreover, because the group key is shared across multip= le nodes, it may be easier for an attacker to determine the group key by at= tacking any member of the group (note that this group key is dynamically generated and is usually stored in volatile memory whic= h offers some additional protection). The probability of a stolen key incr= eases with the number of nodes that are in possession of the key. Mo= reover, subsequent to such an attack, it is also difficult to determine whi= ch of the group members was compromised and this makes it difficult to return the system to normal operation after= an attack.  

[JLS] I have no idea why storing a key in volatile memory = would offer additional protections.

[AS] This prevent= s the case of removing a device from the physical location and figuring out= the group key. Not sure if it helps too much. We can remove it if the group consensus is that it does not help. 

[JLS] Losing power is going to lead to potentially very lo= ng delays at power and missed processing of messages if every recipient nee= ds to individually generate a new dynamic key and distribute it, not to mention the potential problems with the question= of who has good randomness for the generation of new keys.

[AS] Agree. See comment above. We can remove it if the group consensus is that it does not help.  

[JLS] Which group members are/were compromised.  You = don=92t know that it has gone away.

[JLS] This text does not address the questions of size and= homogeneity of groups.  One of the issues that has been brought up is= about using the same key for multiple types of devices such as lights and doors.

[AS] The specific= ation does not allow the same key to be given out for multiple types of dev= ices. All tokens are linked to a scope and an application group. You can not use the same key for two different applicat= ions. But you make a good point. We can add this to the applicability state= ment.  

&nb= sp;

The asymmetric key solution distinguishes between a sender i= n the group and the receivers. In particular, the sender is in possess= ion of a private key and the receivers are in possession of the corresponding public key.  This allows the unique source = of any group message to be authenticated. Moreover, an attacker cannot= compromise   the system by breaking into any of the receiving no= des. However, for constrained devices, the asymmetric key solution comes at a processing cost with cryptographic computations taking= rather long.  

[JLS] The last sentence does not belong here.  The te= rm =93rather long=94 is extremely vague and is even worse than the term =93= low-latency=94 in terms of what has been defined.

[AS] Will discuss this point durin= g the call today.

[JLS] Should also know that the sender that was compromise= d is immediately known and can be dealt with.

[AS] Okay. Will add this point.&nb= sp;

&nb= sp;

Therefore, it is recommended that whenever possible, the archit= ecture with source authentication SHOULD be used to secure all multicast co= mmunication. However, in less sensitive applications where low-latency group communicatio= n is important (e.g. controlling luminaires in non-emergency ap= plications), the   architecture without source authentication MAY= be used. In sensitive applications such as he= alth and safety, building security and emergency applications the symm= etric key based solution SHOULD not be used.

[JLS] Personally, I would not know how to test this, so I = don=92t believe that RFC 2119 language is appropriate.

[AS] I agree that this is not test= able. But I not sure how we should proceed here. Any suggestions would be g= reat. One of the big objections has been "what if this solution i= s used for something else" and that guidance should be provided as to where this specification should be used and more = importantly not used.

[JLS] Why should emergency applications be different? = ; Does this mean that all devices need to implement both solutions and need= to figure out which of the solutions should be used at any given time?  What defines a sensitive application?  The a= bility to monitor a sensor even if the state of the lights is not?

<= font color=3D"#4ba524">[AS] See comment above. 

&nb= sp;

When using the symmetric key solution two mitigating factors= could improve system security. It is possible to achieve source authentica= tion of messages at lower layers by requiring unique MAC layer keys for all   devices within the network. The = symmetric group keys are dynamically generated and therefore SHOULD be= stored in volatile memory.

[JLS] Given the fact that it is =93easy=94 to impersonate = MAC addresses I am not sure how this will mitigate the problem.  This = would be killed by either MAC impersonation or having a message re-transmitted by a proxy agent.

[AS] This was an idea for Eliot Leer. The idea is to have pai= rwise MAC layer keys and this has nothing to do with MAC addresses. It is t= o do with traceability of messages after an attack is detected so that= the source of the multicast message can be determined. Maybe Eliot can com= ment more about this. 

[JLS] As stated above, I am not sure how keeping keys in v= olatile memory will be a mitigating factor.  The only think that I see= is that I cannot physically steal the device and work on it later rather than having to do it =93in place=94.

[AS] Yes, this is about physically= stealing devices not helping. 

From: Jim Schaad <ietf@augustcellars.com>
Sent: Friday, February 3, 2017 7:02:42 PM
To: Somaraju Abhinav; draft-somaraju-ace-multicast@tools.ietf.org
Cc: 'ace'
Subject: RE: [Ace] draft-somaraju-ace-multicast

 

See comments inline

 

 

From: Ace [= mailto:ace-bounces@ietf.org] On Behalf Of Somaraju Abhinav
Sent: 02 February 2017 03:48
To: Jim Schaad <ietf@augustcellars.com>= ;; draft-somaraju-ace-multicast@tools.ietf.org
Cc: 'ace' <ace@ietf.org>
Subject: Re: [Ace] draft-somaraju-ace-multicast

 

Hi Jim,

thank you for the review and I apologise for the delayed = response - I was on sick leave due to a surgery. Please see comments inline= from the authors. 

=  

Why restriction on reading messages?  It is not like an= external observer is
not going to be able to see the lights go on or off.<= /span>
[AS] There are several situations where lights= are not visible but (multicast) network data is accessible. Moreover, sens= ors (e.g. presence detectors) are continuously talking to actuators and controllers without necessarily having a visible effect o= n the lights. For several customers privacy is a very important concern and= is almost a given. The statement "anybody can listen to the traf= fic and tell when sensors detect presence in a building without even being in the building" is a very diff= icult sell. Having said that, it is true that simply encrypting the multica= st traffic at the application layer is only a prerequisite to provide = the privacy needed and additional work is required (e.g. generating random messages at different times). In that sense the symmetri= c solution is probably not much better than the asymmetric solution. B= ut the demand for privacy from customers is very clear and the perception a= mong them is that unencrypted data implies poor security.

[JLS] I am sensing a problem here.  You have stated t= hat there is a requirement that encryption is a requirement that people are= going to say must be me.  However, below you have stated that if authentication is a requirement then encryption suddenly be= comes a non-requirement?  You appear to be stating that there are circ= umstances where it is fine not to have the data encrypted if one needs to k= now where it came from.

 

Consider the following case   I have a sensor in= a room.  When the sensor sees movement, it broadcasts a lights one co= mmand.  The command is picked up by both the lightbulbs and by the security system.  The security system must know which sensor p= rovided the command and therefore no encryption is going be needed here? &n= bsp;That just seems wrong.

 

Additionally, the situation where things are =93continuous= ly=94 talking would seem to be a good place where one would want to install= a controller and not have the sensor directly talking to the actuator.  You don=92t want to flood the actuators with trying= to constantly turn on the lights.  Also the use of actuators in this = sense makes one think that this is a solution for things other than lightin= g systems which is what people are complaining about.

&nb= sp;


The solution in section 4 does not seem to meet the f= ollowing requirement
"Only authorized members of the application group must = be able to read and
process messages."
[AS] You are right, we cannot satisfy the privacy req= uirement in Section 4. We could extend the current solution to include= a group wide encryption key to meet this requirement. However, this will add additional latency to the asymmetric solution.=

This document needs to have a solution for dealing with nonc= e space
allocation for the cases where more than one sender is going= be able to use
the same key.  This is going to be part of the problems= with replay
detection as well as security considerations.

[AS] Okay. Will add some text in the next version of the d= raft for better clarification. The id= ea as written in 4.3 (Nonce value) is to use the Client ID along with the sender=92s sequence number to create the complete nonce = for replay and CCM processing.


Should the algorithms be using high water detection o= f sequence numbers
rather than the case of not yet used?  Or is that an ap= plication specific
type thing?

[SK] This is tricky since it can create all kind of n= ew issues. One way to handle if the sequence number of a sender is about to= roll over is that the sender requests a new key issued for the group by the KDC. Tricky part is if there are multiple send= ers who are not reaching the roll over of their sequence number then have t= o be forced to use a new key or there needs to be some overlap between the = old key and new key before every sender in the group starts using the new key.

[JLS] Lots of spinning in graves from the idea of having a= sequence number roll over given the harsh requirements that a nonce (built= from the sequence number) must never be re-used twice for many of the algorithms that are going to be used here.

 

I do not think that the current security requirements is suf= ficiently
strident to reflect both the threat of breakage, cross-break= age and
restrictions on where it should be used to pass muster.

[AS] I thing this will be the main discussion item in the = webex. We will make a proposal for the security guidelines section after th= e interim webex.

[JLS] A proposal before the= call is better because then we have a starting point for discussions as we= ll as allowing people who will not make the call be able to have some initi= al input on where discussions points should be directed.







_______________________________________________
Ace mailing list
Ace@ietf.org
https://www.ietf.org/mailman/listinfo/ace

________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments.

________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments.

________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments. --_000_DB6PR0601MB21984DBC2BD62F6A27D8D21FFC450DB6PR0601MB2198_-- From nobody Thu Feb 9 02:50:28 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3B1F912949B for ; Thu, 9 Feb 2017 02:50:27 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -3.788 X-Spam-Level: X-Spam-Status: No, score=-3.788 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-1.887, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=zgrp.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a2gwDqKRFbGL for ; Thu, 9 Feb 2017 02:50:25 -0800 (PST) Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-db5eur01on0127.outbound.protection.outlook.com [104.47.2.127]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 3E0F712945C for ; Thu, 9 Feb 2017 02:50:25 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zgrp.onmicrosoft.com; s=selector1-tridonic-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=jLsQR8n7Wl/ZltRGNx+m1rOZEzjyhvtK8GKWd8y5HO0=; b=kwn/dEQkWludKiUEu2yRJaRA/+Gc6NNiGxpWDPnzDUS/Lzdd6xsmoZoagIb7LaQJhvlebY2089qdU//pX4DeJeOqTP/zo7nUlBOAe13T+jVe3BcIW3Xb8MMHi+hCMPrVxwcq999hMeIAnPi4Um4XCP0jj3CO3eAaC2MqEBBbbXo= Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) by DB6PR0601MB2199.eurprd06.prod.outlook.com (10.168.57.140) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.888.16; Thu, 9 Feb 2017 10:50:21 +0000 Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) by DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) with mapi id 15.01.0888.026; Thu, 9 Feb 2017 10:50:21 +0000 From: Somaraju Abhinav To: Derek Atkins Thread-Topic: [Ace] Asymmetric signature performance Thread-Index: AQHSgbbKrDUQekkwkUu3ytBizxocQqFfEEhhgAA6Rt+AATXQYA== Date: Thu, 9 Feb 2017 10:50:21 +0000 Message-ID: References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> , In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=abhinav.somaraju@tridonic.com; x-originating-ip: [25.161.237.4] x-ms-office365-filtering-correlation-id: bf386f45-6b9b-422f-39a1-08d450d971f7 x-ms-office365-filtering-ht: Tenant x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(48565401081); SRVR:DB6PR0601MB2199; x-microsoft-exchange-diagnostics: 1; DB6PR0601MB2199; 7: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 x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:; x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(5005006)(8121501046)(3002001)(10201501046)(6055026)(6041248)(20161123560025)(20161123562025)(20161123555025)(20161123558025)(20161123564025)(6072148); SRVR:DB6PR0601MB2199; BCL:0; PCL:0; RULEID:; SRVR:DB6PR0601MB2199; x-forefront-prvs: 02135EB356 x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(7916002)(39450400003)(39410400002)(39860400002)(39840400002)(39850400002)(189002)(199003)(4326007)(2906002)(76176999)(25786008)(54896002)(6116002)(3280700002)(6506006)(3846002)(81156014)(8676002)(9686003)(189998001)(8666007)(122556002)(92566002)(3660700001)(55016002)(5660300001)(110136004)(97736004)(99286003)(38730400002)(54906002)(102836003)(81166006)(229853002)(2900100001)(68736007)(6436002)(77096006)(7696004)(8936002)(53936002)(106356001)(6606003)(19627405001)(7736002)(74316002)(106116001)(86362001)(33656002)(101416001)(50986999)(6916009)(2950100002)(105586002)(6246003)(5890100001)(54356999)(66066001); DIR:OUT; SFP:1102; SCL:1; SRVR:DB6PR0601MB2199; H:DB6PR0601MB2198.eurprd06.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; MX:1; A:1; LANG:en; received-spf: None (protection.outlook.com: tridonic.com does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/alternative; boundary="_000_DB6PR0601MB219853AEC654D1586B0B7A87FC450DB6PR0601MB2198_" MIME-Version: 1.0 X-OriginatorOrg: tridonic.com X-MS-Exchange-CrossTenant-originalarrivaltime: 09 Feb 2017 10:50:21.5384 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 8b206608-a593-4ace-a4b6-ef1fc83c9169 X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0601MB2199 Archived-At: Cc: Michael StJohns , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 10:50:27 -0000 --_000_DB6PR0601MB219853AEC654D1586B0B7A87FC450DB6PR0601MB2198_ Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Is the concern the computation or the transmission time? Even if you have to fragment packets I would expect transmission time to be well fast enough that computation is the major issue? [AS] This is just cumulative. Adding a second multicast packet increases th= e transmission time by a few 10s of milliseconds depending on the number of= hops. You are right that if we use asymmetric crypto then this contributio= n is still smaller than the crypto computation time. We will try to provide= some tentative numbers in the talk today. ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. --_000_DB6PR0601MB219853AEC654D1586B0B7A87FC450DB6PR0601MB2198_ Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable


Is the concern the computation or the transmission= time?  Even if you
have to fragment packets I would expect transmission time to be well
fast enough that computation is the major issue?
[AS] This is just cumulative. Adding a second multicast packet increases th= e transmission time by a few 10s of milliseconds depending on the number of= hops. You are right that if we use asymmetric crypto then this contributio= n is still smaller than the crypto computation time. We will try to provide some tentative numbers in the tal= k today.
________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments. --_000_DB6PR0601MB219853AEC654D1586B0B7A87FC450DB6PR0601MB2198_-- From nobody Thu Feb 9 03:02:03 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 52CF0129981 for ; Thu, 9 Feb 2017 03:02:01 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.199 X-Spam-Level: X-Spam-Status: No, score=-4.199 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UPDSnE6_2_hN for ; Thu, 9 Feb 2017 03:01:59 -0800 (PST) Received: from mailhost.informatik.uni-bremen.de (mailhost.informatik.uni-bremen.de [IPv6:2001:638:708:30c9::12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4CF0312997A for ; Thu, 9 Feb 2017 03:01:59 -0800 (PST) X-Virus-Scanned: amavisd-new at informatik.uni-bremen.de Received: from submithost.informatik.uni-bremen.de (submithost.informatik.uni-bremen.de [134.102.201.11]) by mailhost.informatik.uni-bremen.de (8.14.5/8.14.5) with ESMTP id v19B1mM4024332; Thu, 9 Feb 2017 12:01:48 +0100 (CET) Received: from [192.168.0.106] (unknown [179.33.3.84]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by submithost.informatik.uni-bremen.de (Postfix) with ESMTPSA id 3vJwBM5R7cz3ZFq; Thu, 9 Feb 2017 12:01:47 +0100 (CET) Content-Type: multipart/alternative; boundary=Apple-Mail-6EF6E073-BD8A-4B92-8E77-43C16367ABD1 Mime-Version: 1.0 (1.0) From: Carsten Bormann X-Mailer: iPhone Mail (14D27) In-Reply-To: Date: Thu, 9 Feb 2017 06:01:44 -0500 Content-Transfer-Encoding: 7bit Message-Id: References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> To: Michael StJohns Archived-At: Cc: "ace@ietf.org" , Somaraju Abhinav Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 11:02:01 -0000 --Apple-Mail-6EF6E073-BD8A-4B92-8E77-43C16367ABD1 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: quoted-printable There is nothing in IP that makes solving this problem particularly hard, so= I have no idea where this argument is coming from. Meeting your favorite se= curity objective is hard in the systems we are talking about. Where the syst= em does not actually have this security objective, we can go ahead with an a= ppropriate solution. Let's stop arguing about whether everybody has to have t= his security objective; there cannot be any progress in that discussion. But= in any case, IP is not the problem, and it is positively weird to see this a= rgument in 2017.=20 Sent from mobile > On 8 Feb 2017, at 11:51, Michael StJohns wrote: >=20 > Look - IP protocol is a pretty big hammer and there's this tendency to try= and make everything look like a nail. But some things are not nails and ca= n never be made to be nails.=20 --Apple-Mail-6EF6E073-BD8A-4B92-8E77-43C16367ABD1 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: 7bit
There is nothing in IP that makes solving this problem particularly hard, so I have no idea where this argument is coming from. Meeting your favorite security objective is hard in the systems we are talking about. Where the system does not actually have this security objective, we can go ahead with an appropriate solution. Let's stop arguing about whether everybody has to have this security objective; there cannot be any progress in that discussion. But in any case, IP is not the problem, and it is positively weird to see this argument in 2017. 

Sent from mobile

On 8 Feb 2017, at 11:51, Michael StJohns <mstjohns@comcast.net> wrote:

Look - IP protocol is a pretty big hammer and there's this tendency to try and make everything look like a nail.  But some things are not nails and can never be made to be nails. 
--Apple-Mail-6EF6E073-BD8A-4B92-8E77-43C16367ABD1-- From nobody Thu Feb 9 07:10:45 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 81B82129531 for ; Thu, 9 Feb 2017 07:10:43 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.999 X-Spam-Level: X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ihtfp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2hyMUHrbbyZt for ; Thu, 9 Feb 2017 07:10:41 -0800 (PST) Received: from mail2.ihtfp.org (MAIL2.IHTFP.ORG [204.107.200.7]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C55AE129426 for ; Thu, 9 Feb 2017 07:10:41 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id 57933E2039; Thu, 9 Feb 2017 10:10:40 -0500 (EST) Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 10210-07; Thu, 9 Feb 2017 10:10:38 -0500 (EST) Received: from securerf.ihtfp.org (unknown [IPv6:2001:470:e448:2:ea2a:eaff:fe7d:235]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mocana.ihtfp.org", Issuer "IHTFP Consulting Certification Authority" (verified OK)) by mail2.ihtfp.org (Postfix) with ESMTPS id 291DCE2035; Thu, 9 Feb 2017 10:10:38 -0500 (EST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ihtfp.com; s=default; t=1486653038; bh=0356h65dxV4aUblYWy9URxuC6ay675trcmjSlqsLQFc=; h=From:To:Cc:Subject:References:Date:In-Reply-To; b=VFKqUME3ttzY2nDDODs0xXfOBWksyr/6l4rAzsWY2ag+DtAWE8eYvaHC0pdEh/Lku HF1TAqqji2Izv2W52ajxQSeqYVxY7iSr8WYtkgxZ5U38DQMq0tb5TvCpPz/lbOfgQv MjkmlE+g4sBcIm55XOZA4D1Ni7OyCrPd/zmvdeTw= Received: (from warlord@localhost) by securerf.ihtfp.org (8.15.2/8.14.8/Submit) id v19FAbeZ020712; Thu, 9 Feb 2017 10:10:37 -0500 From: Derek Atkins To: Michael StJohns References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <3fbffd36-f846-3f21-74b8-811e54715847@ericsson.com> <1fd13717-96d6-a7d3-6fec-86ff428967bc@comcast.net> Date: Thu, 09 Feb 2017 10:10:36 -0500 In-Reply-To: <1fd13717-96d6-a7d3-6fec-86ff428967bc@comcast.net> (Michael StJohns's message of "Wed, 8 Feb 2017 12:10:03 -0500") Message-ID: User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Virus-Scanned: Maia Mailguard 1.0.2a Archived-At: Cc: Mohit Sethi , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 15:10:43 -0000 Mike, Michael StJohns writes: > On 2/8/2017 8:19 AM, Mohit Sethi wrote: >> Hi Mike >> >> At least with our measurements on an 8-bit microprocessor platform, >> 1024-bit RSA exponentiation was extremely slow. Please have a look >> at Table 1: >> >> https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-01 > > I look at Table 1 the first thing I see is that you're using the wrong > abbreviation for time - (ms is milli second), what you want is micro > seconds or (us). Or are you actually trying to claim that a 1024 bit > operation takes 199 seconds? Or all of 3+ minutes? Or are you > using an abacus and a monkey to do the math? >From my personal experience working with tiny microcontrollers I would guess that there is NOT a typo in those numbers and it really does take 3 minutes to compute an RSA operation. I've had similar (although somewhat better) results with ECC on similar platforms (166-bit ECC was taking around 30s). Note that this is computation in software. A hardware implementation would certainly be faster, but then you actually need to implement the hardware. > (And by the way - using "3" as the RSA exponent is just wrong). It's done frequently in "lopsided" constrained environments in order to limit the computation required by the more-constrained device. > Table 1 doesn't actually indicate whether this is a signing operation > or a verification operation, or whether or not the summary function > (SHA1 or SHA256) is included. > > If Table 2 and table 3 have the same mistakes in time abbreviation > (and I'm not sure why they wouldn't), you're saying that you can do an > ECDSA function in 2-6 milliseconds. Which more than meets the > requirements. I don't think it's a mistake. > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace -derek -- Derek Atkins 617-623-3745 derek@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant From nobody Thu Feb 9 07:32:52 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E7A9B129ADA for ; Thu, 9 Feb 2017 07:32:50 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.522 X-Spam-Level: X-Spam-Status: No, score=-14.522 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SlR0bRUPL5KK for ; Thu, 9 Feb 2017 07:32:49 -0800 (PST) Received: from alln-iport-2.cisco.com (alln-iport-2.cisco.com [173.37.142.89]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F34BF129AD6 for ; Thu, 9 Feb 2017 07:32:48 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3481; q=dns/txt; s=iport; t=1486654369; x=1487863969; h=from:to:subject:date:message-id:references:in-reply-to: content-transfer-encoding:mime-version; bh=YfitHfEKLCyByZlp5/vzKylxOosZXJs3IeRFoKuSV/I=; b=GJmfNbjpW6cWwBT1Ob9K8KCNfa6c8GdHEabaWXw3wpGQhnH5td8e83zW Nuz2/Ts3yLxwC5bOIIOVARAfec/slkT2CoTyEWVNoRYoPv175Nr/CfsdK 65XzNkkbv/rRsq3xOX14Wphw0EmLpG6seBhrxpGT7zDWveMoTyZQWsc4j U=; X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0AUAQBdipxY/5JdJa1dGQEBAQEBAQEBA?= =?us-ascii?q?QEBBwEBAQEBgycqYYEJB41akgmVNoIMHwuFeAKCaj8YAQIBAQEBAQEBYiiEaQE?= =?us-ascii?q?BAQMBAQE4NBAHBAIBCBEEAQEBHgkHJwsUCQgCBAESCBOJUQgOsiGLRwEBAQEBA?= =?us-ascii?q?QEBAQEBAQEBAQEBAQEBARgFhkyEb4UGhTMFm3ABkgiCBIhnhiOTEgEfOH5PFTy?= =?us-ascii?q?GQnUBh3GBDAEBAQ?= X-IronPort-AV: E=Sophos;i="5.35,349,1484006400"; d="scan'208";a="382037124" Received: from rcdn-core-10.cisco.com ([173.37.93.146]) by alln-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 09 Feb 2017 15:32:48 +0000 Received: from XCH-ALN-006.cisco.com (xch-aln-006.cisco.com [173.36.7.16]) by rcdn-core-10.cisco.com (8.14.5/8.14.5) with ESMTP id v19FWl2A005143 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 9 Feb 2017 15:32:48 GMT Received: from xch-aln-010.cisco.com (173.36.7.20) by XCH-ALN-006.cisco.com (173.36.7.16) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Thu, 9 Feb 2017 09:32:47 -0600 Received: from xch-aln-010.cisco.com ([173.36.7.20]) by XCH-ALN-010.cisco.com ([173.36.7.20]) with mapi id 15.00.1210.000; Thu, 9 Feb 2017 09:32:47 -0600 From: "Panos Kampanakis (pkampana)" To: Michael StJohns , "ace@ietf.org" Thread-Topic: [Ace] Asymmetric signature performance Thread-Index: AQHSgbbKrOsc7yrakUCD09wRZ9MojKFegaOggAGacoD///DLUA== Date: Thu, 9 Feb 2017 15:32:47 +0000 Message-ID: <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> In-Reply-To: <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [10.82.248.135] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Archived-At: Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 15:32:51 -0000 I am not saying symmetric keys are better than public key auth.=20 I am saying that applying an 80-bit security level (RSA/DSA1024) today offe= rs a false sense of security. You might as well not authenticate the messag= es.=20 -----Original Message----- From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Michael StJohns Sent: Wednesday, February 08, 2017 5:48 PM To: ace@ietf.org Subject: Re: [Ace] Asymmetric signature performance On 2/8/2017 10:56 AM, Panos Kampanakis (pkampana) wrote: > One correction: 1024-bit RSA/DSA is not the same security level as 256-bi= t curve ECDSA or Ed25519. But neither is a group symmetric key of any sized used for authentication/a= uthorization. The point is that weaker but good enough security on the asymmetric side is= going to be a better solution than ANY group symmetric key. NIST et al have given some guidance about key strengths and their uses with= respect to the broadest set of threats and following the guidance is prett= y much good engineering. But, looking at something like RSA 1024 bit (or the ECDSA equivalent of about 166 bits - I think that's the ri= ght number), and looking at the threat environment for the target applicati= on, and noting that it's trivial (protocol wise) to change out the size of = the key (e.g. scale it) in higher threat environments, 1024/166 bits may not be a bad choice for minimum security for non-man rate= d IOT control things. Mike > To compare apples to apples you would need 3072-bit RSA/DSA sigs which en= ds up being far worse in terms of sig size and performance. > > Agreed that symmetric group key auth has plenty of limitations. > > Panos > > > > -----Original Message----- > From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Michael StJohns > Sent: Tuesday, February 07, 2017 9:55 PM > To: ace@ietf.org > Subject: [Ace] Asymmetric signature performance > > Hi - > > This is sort of non-obvious, but one or two articles I read suggest that = RSA 1024 performance may be better than the ECDSA equivalent. > > The tradeoff here is obviously the size of the signature and the transmis= sion thereof, but... > > While 1024 bits isn't an ideal security strength for RSA, using any asymm= etric key system for source authentication in group systems is going to be = much better than trying to pretend that symmetric group key systems have an= y authentication properties at all. > > I saw a PPT presentation by Hannes that didn't include any RSA performan= ce numbers for the ARM processors even though the key sizes were compared. = My guess is that someone has numbers for 1024 RSA signatures on the tiny AR= M processors that might be useful to throw into the mix. > > https://www.cryptopp.com/benchmarks.html has comparison values for a spec= ific library. > > What I'm suggesting is that we figure out how to meet the "can't cost any= thing" requirement with weaker asymmetric keys rather than accepting a low = end fantasy of symmetric key multicast authentication. > > Mike > > > > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace From nobody Thu Feb 9 07:45:06 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1CA21129658 for ; Thu, 9 Feb 2017 07:45:05 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.999 X-Spam-Level: X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ihtfp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xUAgqp_dvtH8 for ; Thu, 9 Feb 2017 07:45:04 -0800 (PST) Received: from mail2.ihtfp.org (MAIL2.IHTFP.ORG [204.107.200.7]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id F0399129AB5 for ; Thu, 9 Feb 2017 07:45:03 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id A0F53E2038; Thu, 9 Feb 2017 10:45:02 -0500 (EST) Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 10881-02; Thu, 9 Feb 2017 10:45:01 -0500 (EST) Received: from securerf.ihtfp.org (unknown [IPv6:2001:470:e448:2:ea2a:eaff:fe7d:235]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mocana.ihtfp.org", Issuer "IHTFP Consulting Certification Authority" (verified OK)) by mail2.ihtfp.org (Postfix) with ESMTPS id 0FE12E2035; Thu, 9 Feb 2017 10:45:01 -0500 (EST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ihtfp.com; s=default; t=1486655101; bh=bZfyJjQ51m8GmKzGJHicQZm8XrhqZROl/4rzkOxz/ZM=; h=From:To:Cc:Subject:References:Date:In-Reply-To; b=CNrMDUVFpEMSwTWEI9JG7WqNbxP3sSuW3l1IlC6CGnlkn51AoW4Gp3mEWiKouqPUl qboFYmAcAxnrI5X+cfWNKryw17hWnuFxlteJl0tM7jwt/tD9gHEh3tbkJv0MEaWzfI z67OLBKsPed8w92/KEy+GGwDhmCK6P1y0w1+kcRU= Received: (from warlord@localhost) by securerf.ihtfp.org (8.15.2/8.14.8/Submit) id v19Fj0OH026224; Thu, 9 Feb 2017 10:45:00 -0500 From: Derek Atkins To: "Panos Kampanakis \(pkampana\)" References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> Date: Thu, 09 Feb 2017 10:45:00 -0500 In-Reply-To: <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> (Panos Kampanakis's message of "Thu, 9 Feb 2017 15:32:47 +0000") Message-ID: User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Virus-Scanned: Maia Mailguard 1.0.2a Archived-At: Cc: Michael StJohns , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 15:45:05 -0000 Hi, "Panos Kampanakis (pkampana)" writes: > I am not saying symmetric keys are better than public key auth. > I am saying that applying an 80-bit security level (RSA/DSA1024) today > offers a false sense of security. You might as well not authenticate > the messages. I disagree. I think in many cases an 80-bit asymmetric signature is better than a 128 (or even 256-bit) group-symmetric scheme, precisely because with the symmetric scheme you only need to acquire the group key from one node, which means you can attack ANY node, whereas with the asymmetric scheme you MUST attack the signing node (which can have better defenses). Even today, cracking 80-bit-secure asymmetric systems are HARD. We're talking RSA-1024 or ECC-160. To this day, we still have not successfully factored an RSA-1024 key. The largest public break is only 768-bits. So really, unless you're worried about the NSA turning your lights on and off, 80-bits (RSA-1024/ECC-160/WalnutDSA) is plenty sufficient for the next several years. -derek -- Derek Atkins 617-623-3745 derek@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant From nobody Thu Feb 9 07:49:18 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8D6E9129AE5 for ; Thu, 9 Feb 2017 07:49:17 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.522 X-Spam-Level: X-Spam-Status: No, score=-14.522 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0cSfpzqnNTbb for ; Thu, 9 Feb 2017 07:49:16 -0800 (PST) Received: from aer-iport-2.cisco.com (aer-iport-2.cisco.com [173.38.203.52]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 25ECC129AC8 for ; Thu, 9 Feb 2017 07:49:16 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2591; q=dns/txt; s=iport; t=1486655356; x=1487864956; h=subject:to:references:cc:from:message-id:date: mime-version:in-reply-to; bh=Toviqv2hNRTb/2qwaloQGJ8gzUqDSmRq11N9/o4zbpE=; b=FfAD3+WJtu1mjXS9o7zz5OXHkBm12bPu0LyUiwdg51KpYoKx8ZOQ8NXM IBwPUcnTOy2IEv79ZVxHvMBS4wxK9Ft44Evr8QA7Nv5ocMmiPpYozYf4x 9qh6vFbLyZpTuGoZqJaZeYcLudMPucTJ97YThWQPLuTKkoDbELIYWFerW w=; X-Files: signature.asc : 481 X-IronPort-AV: E=Sophos;i="5.35,349,1484006400"; d="asc'?scan'208";a="649519473" Received: from aer-iport-nat.cisco.com (HELO aer-core-1.cisco.com) ([173.38.203.22]) by aer-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-AES256-GCM-SHA384; 09 Feb 2017 15:49:14 +0000 Received: from [10.61.173.188] ([10.61.173.188]) by aer-core-1.cisco.com (8.14.5/8.14.5) with ESMTP id v19FnE6q032016; Thu, 9 Feb 2017 15:49:14 GMT To: Derek Atkins , "Panos Kampanakis (pkampana)" References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> From: Eliot Lear Message-ID: <8f6fda03-f3ee-2966-be9a-a9b05826a8f4@cisco.com> Date: Thu, 9 Feb 2017 16:49:13 +0100 User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:45.0) Gecko/20100101 Thunderbird/45.7.1 MIME-Version: 1.0 In-Reply-To: Content-Type: multipart/signed; micalg=pgp-sha256; protocol="application/pgp-signature"; boundary="od7LeaMIs3Js9v0eaFf5XTqjSODs8K1FQ" Archived-At: Cc: Michael StJohns , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 15:49:17 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --od7LeaMIs3Js9v0eaFf5XTqjSODs8K1FQ Content-Type: multipart/mixed; boundary="whxVjVFCeBGB8l5GfaeFxgOOBiRXX1f2b"; protected-headers="v1" From: Eliot Lear To: Derek Atkins , "Panos Kampanakis (pkampana)" Cc: Michael StJohns , "ace@ietf.org" Message-ID: <8f6fda03-f3ee-2966-be9a-a9b05826a8f4@cisco.com> Subject: Re: [Ace] Asymmetric signature performance References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> In-Reply-To: --whxVjVFCeBGB8l5GfaeFxgOOBiRXX1f2b Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable On 2/9/17 4:45 PM, Derek Atkins wrote: > Hi, > > "Panos Kampanakis (pkampana)" writes: > >> I am not saying symmetric keys are better than public key auth.=20 >> I am saying that applying an 80-bit security level (RSA/DSA1024) today= >> offers a false sense of security. You might as well not authenticate >> the messages. > I disagree. I think in many cases an 80-bit asymmetric signature is > better than a 128 (or even 256-bit) group-symmetric scheme, precisely > because with the symmetric scheme you only need to acquire the group ke= y > from one node, which means you can attack ANY node, whereas with the > asymmetric scheme you MUST attack the signing node (which can have > better defenses). It can, Derek, but it might not. Think light switch or doorbell button.= Eliot --whxVjVFCeBGB8l5GfaeFxgOOBiRXX1f2b-- --od7LeaMIs3Js9v0eaFf5XTqjSODs8K1FQ Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2 iQEcBAEBCAAGBQJYnI96AAoJEIe2a0bZ0nozVagH/13QMuYKz8DRcJ4+SLdomGRW Jei1zHECQGaGp8J5pdK+vAxeY3QA5TFmBkDhSG3kEWq0zZ6T72NuMcLjlVGuPX62 kElMkutRER9KMejTEwnJXu1unovSS00dRjx5fah3jST1B0jBe4+FEPM7M6nFwI43 01P09TmZqUfuPiUzxwZeeirRTPrmCP+IpNLEDUUJBVJkSAfHPvNj6qL/244CBTB8 djHiRCFXt9mHgXcG7WUyLJjOeeFWMUB5L/gnr/ageFfOaz4Isn3aajt5l1K38wU2 SomJuhdbqNQSBtuAaq38i24DJYzCACe0kcKp6paxc4bZ7h1kezHAgSW71m86hDI= =sjS4 -----END PGP SIGNATURE----- --od7LeaMIs3Js9v0eaFf5XTqjSODs8K1FQ-- From nobody Thu Feb 9 07:55:13 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id D0A5D129AF6 for ; Thu, 9 Feb 2017 07:55:12 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.999 X-Spam-Level: X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ihtfp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 4HtAdA24sLHp for ; Thu, 9 Feb 2017 07:55:11 -0800 (PST) Received: from mail2.ihtfp.org (mail2.ihtfp.org [IPv6:2001:470:e448:1::3a11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1CEAF129AF2 for ; Thu, 9 Feb 2017 07:54:42 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id C4C24E2035; Thu, 9 Feb 2017 10:54:40 -0500 (EST) Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 10998-03; Thu, 9 Feb 2017 10:54:38 -0500 (EST) Received: by mail2.ihtfp.org (Postfix, from userid 48) id 8C465E203F; Thu, 9 Feb 2017 10:54:38 -0500 (EST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ihtfp.com; s=default; t=1486655678; bh=yGoBVUL1SzUe5l928pJ5K25tYMw1Hx3nk7eaGNUB80Q=; h=In-Reply-To:References:Date:Subject:From:To:Cc; b=kkh4rLLaOX/CY3I9eOOX00i2k/jcK4FAJRayqldStCu0Y/wni6jBuHTLjqWqilqGE Dy75oPBouzvYkfTSwlR2/xoR0w9P5iwyaET3GSRImXBur6Oa1KxIlUmAOBc65zhELg UAdmZt1n0rbjqQeKMNbnpX0RerfUskKxnId6dbNA= Received: from 2001:470:e448:2:ea2a:eaff:fe7d:235 (SquirrelMail authenticated user warlord) by mail2.ihtfp.org with HTTP; Thu, 9 Feb 2017 10:54:38 -0500 Message-ID: <42ffccfc40fc0822dae821784cfb6fac.squirrel@mail2.ihtfp.org> In-Reply-To: <8f6fda03-f3ee-2966-be9a-a9b05826a8f4@cisco.com> References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> <8f6fda03-f3ee-2966-be9a-a9b05826a8f4@cisco.com> Date: Thu, 9 Feb 2017 10:54:38 -0500 From: "Derek Atkins" To: "Eliot Lear" User-Agent: SquirrelMail/1.4.22-14.fc20 MIME-Version: 1.0 Content-Type: text/plain;charset=utf-8 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-Virus-Scanned: Maia Mailguard 1.0.2a Archived-At: Cc: Michael StJohns , "Panos Kampanakis \(pkampana\)" , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 15:55:13 -0000 On Thu, February 9, 2017 10:49 am, Eliot Lear wrote: > > > On 2/9/17 4:45 PM, Derek Atkins wrote: >> Hi, >> >> "Panos Kampanakis (pkampana)" writes: >> >>> I am not saying symmetric keys are better than public key auth. >>> I am saying that applying an 80-bit security level (RSA/DSA1024) today >>> offers a false sense of security. You might as well not authenticate >>> the messages. >> I disagree. I think in many cases an 80-bit asymmetric signature is >> better than a 128 (or even 256-bit) group-symmetric scheme, precisely >> because with the symmetric scheme you only need to acquire the group key >> from one node, which means you can attack ANY node, whereas with the >> asymmetric scheme you MUST attack the signing node (which can have >> better defenses). > > It can, Derek, but it might not. Think light switch or doorbell button. Sure, but it's still a single point of attack versus attacking *any member of the group*. I.e., you have to direct the attack at the signing entity, which, as we seem to agree, *could* have better/stronger protections than the *weakest* member of the group. This isn't perfect, but it's still IMHO a step in the right direction. "The Perfect is the enemy of the Good Enough" > Eliot -derek -- Derek Atkins 617-623-3745 derek@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant From nobody Thu Feb 9 09:20:38 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6AF7A129C28 for ; Thu, 9 Feb 2017 09:20:37 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.522 X-Spam-Level: X-Spam-Status: No, score=-14.522 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DJt1n4WJqG_l for ; Thu, 9 Feb 2017 09:20:33 -0800 (PST) Received: from alln-iport-4.cisco.com (alln-iport-4.cisco.com [173.37.142.91]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D347F129C25 for ; Thu, 9 Feb 2017 09:20:32 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=2273; q=dns/txt; s=iport; t=1486660832; x=1487870432; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=672fh8EpjsKJItS97ucuPCozpxwLTBFLwu3Abzn2JMk=; b=QHFxl+hJyJuMlfFpDI2sqhpb6fSUDmHC/QBhPIk8bW9HpUQbdDhhI4Cx TlotLtHLFTOOF6MI6a0kytVA6IGekQeN9irOynl6nFFpE+A/qEM9nXHsT 9xmTj8cA+5PUCmPVg5wxjOltwSbYJQVgBVqTQJ4Ur2EKD7RSU5ZoMwVnc s=; X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0ATAQAmpJxY/40NJK1aAxkBAQEBAQEBA?= =?us-ascii?q?QEBAQcBAQEBAYNRYYEJB41akgmVNoIMKoV4AoJrPxgBAgEBAQEBAQFiKIRpAQE?= =?us-ascii?q?BAgEBOg8wBQcEAgEIEQQBAQEeCQcyFAkIAgQOBQiJZAgOsjGLUgEBAQEBAQEBA?= =?us-ascii?q?QEBAQEBAQEBAQEBAR2GTINmgQmEdSaFHgWbcAGGbIsckQ6TEgEfOH5PFYZ+dQG?= =?us-ascii?q?HcYEMAQEB?= X-IronPort-AV: E=Sophos;i="5.35,137,1484006400"; d="scan'208";a="382712165" Received: from alln-core-8.cisco.com ([173.36.13.141]) by alln-iport-4.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 09 Feb 2017 17:20:32 +0000 Received: from XCH-RCD-007.cisco.com (xch-rcd-007.cisco.com [173.37.102.17]) by alln-core-8.cisco.com (8.14.5/8.14.5) with ESMTP id v19HKWbb012188 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 9 Feb 2017 17:20:32 GMT Received: from xch-aln-010.cisco.com (173.36.7.20) by XCH-RCD-007.cisco.com (173.37.102.17) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Thu, 9 Feb 2017 11:20:31 -0600 Received: from xch-aln-010.cisco.com ([173.36.7.20]) by XCH-ALN-010.cisco.com ([173.36.7.20]) with mapi id 15.00.1210.000; Thu, 9 Feb 2017 11:20:31 -0600 From: "Panos Kampanakis (pkampana)" To: Derek Atkins Thread-Topic: [Ace] Asymmetric signature performance Thread-Index: AQHSgut4rOsc7yrakUCD09wRZ9MojKFhNt2AgAABgwD//5/yAA== Date: Thu, 9 Feb 2017 17:20:31 +0000 Message-ID: <74f18ad88c694c529a21dffc968c8f66@XCH-ALN-010.cisco.com> References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> <8f6fda03-f3ee-2966-be9a-a9b05826a8f4@cisco.com> <42ffccfc40fc0822dae821784cfb6fac.squirrel@mail2.ihtfp.org> In-Reply-To: <42ffccfc40fc0822dae821784cfb6fac.squirrel@mail2.ihtfp.org> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [10.82.248.135] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 Archived-At: Cc: "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 17:20:37 -0000 About factoring 1024-bits, https://hal.inria.fr/hal-01376934/file/paper.pdf= shows that a special 1024-bit p was factored in 2 months. Also it explains= that it is possible to factor some primes used on the internet today. Goin= g to 1024 gives a false sense of security. Endorsing it in a standard to be= used for some years down the road makes me uncomfortable. 256-bit ECDSA or= EdDSA are more sufficient with good performance compared to RSA1024. -----Original Message----- From: Derek Atkins [mailto:derek@ihtfp.com]=20 Sent: Thursday, February 09, 2017 10:55 AM To: Eliot Lear Cc: Panos Kampanakis (pkampana) ; Michael StJohns ; ace@ietf.org Subject: Re: [Ace] Asymmetric signature performance On Thu, February 9, 2017 10:49 am, Eliot Lear wrote: > > > On 2/9/17 4:45 PM, Derek Atkins wrote: >> Hi, >> >> "Panos Kampanakis (pkampana)" writes: >> >>> I am not saying symmetric keys are better than public key auth. >>> I am saying that applying an 80-bit security level (RSA/DSA1024)=20 >>> today offers a false sense of security. You might as well not=20 >>> authenticate the messages. >> I disagree. I think in many cases an 80-bit asymmetric signature is=20 >> better than a 128 (or even 256-bit) group-symmetric scheme, precisely=20 >> because with the symmetric scheme you only need to acquire the group=20 >> key from one node, which means you can attack ANY node, whereas with=20 >> the asymmetric scheme you MUST attack the signing node (which can=20 >> have better defenses). > > It can, Derek, but it might not. Think light switch or doorbell button. Sure, but it's still a single point of attack versus attacking *any member = of the group*. I.e., you have to direct the attack at the signing entity, = which, as we seem to agree, *could* have better/stronger protections than t= he *weakest* member of the group. This isn't perfect, but it's still IMHO a step in the right direction.=20 "The Perfect is the enemy of the Good Enough" > Eliot -derek --=20 Derek Atkins 617-623-3745 derek@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant From nobody Thu Feb 9 09:37:54 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A1413129422 for ; Thu, 9 Feb 2017 09:37:52 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.999 X-Spam-Level: X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ihtfp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id suhiXHfHVxQJ for ; Thu, 9 Feb 2017 09:37:51 -0800 (PST) Received: from mail2.ihtfp.org (MAIL2.IHTFP.ORG [204.107.200.7]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4113F1293EC for ; Thu, 9 Feb 2017 09:37:51 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id ECF26E2035; Thu, 9 Feb 2017 12:37:33 -0500 (EST) Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 11642-08; Thu, 9 Feb 2017 12:37:32 -0500 (EST) Received: by mail2.ihtfp.org (Postfix, from userid 48) id 52FCDE203F; Thu, 9 Feb 2017 12:37:32 -0500 (EST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ihtfp.com; s=default; t=1486661852; bh=/REw12b10YwAcOYbHu86jsZp9hBYmiUd3k31ph2eLqE=; h=In-Reply-To:References:Date:Subject:From:To:Cc; b=czVXaFwLCtRHB+g0+BVMAOF1P4BULypxBwZR4IKT9dtpT/mF3lCfHkXxnm6AyFB5h LpD6BCRkPZLCX2TH/PSYlPaoxvo/hM+hIWax+V397kVHM2o8BbyL2//nrhC133ubj+ 67XCdgYnVpXab3AelShElZy0M8Cd9KBukiN/Ihus= Received: from 2001:470:e448:2:ea2a:eaff:fe7d:235 (SquirrelMail authenticated user warlord) by mail2.ihtfp.org with HTTP; Thu, 9 Feb 2017 12:37:32 -0500 Message-ID: <455b40790f94d31f7e718a7faf3ce77f.squirrel@mail2.ihtfp.org> In-Reply-To: <74f18ad88c694c529a21dffc968c8f66@XCH-ALN-010.cisco.com> References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> <8f6fda03-f3ee-2966-be9a-a9b05826a8f4@cisco.com> <42ffccfc40fc0822dae821784cfb6fac.squirrel@mail2.ihtfp.org> <74f18ad88c694c529a21dffc968c8f66@XCH-ALN-010.cisco.com> Date: Thu, 9 Feb 2017 12:37:32 -0500 From: "Derek Atkins" To: "Panos Kampanakis (pkampana)" User-Agent: SquirrelMail/1.4.22-14.fc20 MIME-Version: 1.0 Content-Type: text/plain;charset=utf-8 Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) Importance: Normal X-Virus-Scanned: Maia Mailguard 1.0.2a Archived-At: Cc: Derek Atkins , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 17:37:52 -0000 Hi, On Thu, February 9, 2017 12:20 pm, Panos Kampanakis (pkampana) wrote: > > About factoring 1024-bits, > https://hal.inria.fr/hal-01376934/file/paper.pdf shows that a special > 1024-bit p was factored in 2 months. Also it explains that it is possible > to factor some primes used on the internet today. Going to 1024 gives a > false sense of security. Endorsing it in a standard to be used for some > years down the road makes me uncomfortable. 256-bit ECDSA or EdDSA are > more sufficient with good performance compared to RSA1024. Please do not mix up 1024-bit Diffie-Hellman and 1024-bit RSA. They are different mechanisms and depend on different underlying math. Everything you say above is about DH, which just does not apply when we're discussing RSA. You cannot "Factor a Prime"; by definition a prime's factors are 1 and itself (e.g. 11). Yes, it is possible to create a DH-prime that allows easy solutions to the discrete-log problem. And yes, it's easy to create an RSA key that's easily factored. However, factoring a "good" 1024-bit RSA key is not "2 months" of effort. c.f. https://en.wikipedia.org/wiki/RSA_numbers for a list of numbers and references to their factoring efforts over the years. Yes, 256-bit ECC is more secure than 1024-bit RSA (128-bit security vs 80-bit security). I cannot comment on the performance difference; I've been focusing on WalnutDSA which verifies orders of magnitude faster than either RSA or ECDSA. -derek -- Derek Atkins 617-623-3745 derek@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant From nobody Thu Feb 9 10:21:21 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B37CC12896F for ; Thu, 9 Feb 2017 10:21:19 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.699 X-Spam-Level: X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id MVwEr8c8beXU for ; Thu, 9 Feb 2017 10:21:18 -0800 (PST) Received: from mail-io0-x235.google.com (mail-io0-x235.google.com [IPv6:2607:f8b0:4001:c06::235]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 14268129439 for ; Thu, 9 Feb 2017 10:21:18 -0800 (PST) Received: by mail-io0-x235.google.com with SMTP id l66so24222002ioi.1 for ; Thu, 09 Feb 2017 10:21:18 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:cc:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding; bh=pTtiRCzvFfp7OfaXN3rugvuKZVeSlyB0q/kIDZzsndU=; b=sIx5K9XnVTKTS5xQEY2K9qBYuQ9g3W9BTz4r6k6+nxQaUv2pfUezas3b5K0famb7mt mpEr9XD5tLTVRgzRncJfYCrO/n6sQgMIRwYJc7yCkVx/Y4YyIAtImmdO+m03yNgiYBnd c9VgLii+0F+6UPCRT7wx8RxKdloGere5w4Dva0QIva06zDgM05hvoRlw6f6NV/wPpEgg j7l/wL5zynmItyVE4X7rcJsk+t/qZoz20GugQVa9I8FjmPoz1e56A1Y9yZ+KPq2AHm/q 1tlJUlQNg4douT30dVIdLyxcgcNdxc8ckdbWtrgvnFv6zcxTWFS83fUlLfL0WJIMJt6V y4yg== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:cc:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding; bh=pTtiRCzvFfp7OfaXN3rugvuKZVeSlyB0q/kIDZzsndU=; b=A9hY8UKjMzmS1dyF7j73PuNLfoBR0Z7EfMlEHl3kMPBADQbW55mv4k7PsoTstj7n8/ cj2SsVmJpN8nb2KmdPz/TQ9sjx39iA0GrOMneREFC4/ybunbz8jTBDxULyUTT9Q3WgAs d203LaQFs31hl6mOxAwunTURCDdWpvS15X0ITF4LtAhFJBee7Qy5ofeGWLJlr5edrh0x eHY/dwvGNonE5zhr/AVMvflLoP8EdpLQ1nT2A/OzSTRzRlGE/p9pi51Iwye6oay6dr/O cVpOlHARKugR38vEcw2Q1JR7RIRGVmrjfeWil/02EWGyU/T/vPtzWPTiF0PLBI1xU89h 1Low== X-Gm-Message-State: AIkVDXJfsbOXPeUNIvtFAJ6Cm/wPfpvJRXdNRHYRGAp3uAyLp2WvM/2DaxtPZ69hucfM1w== X-Received: by 10.36.28.85 with SMTP id c82mr22528304itc.49.1486664477197; Thu, 09 Feb 2017 10:21:17 -0800 (PST) Received: from [192.168.0.14] (CPE7cb21b2cb904-CM7cb21b2cb901.cpe.net.cable.rogers.com. [174.112.186.144]) by smtp.gmail.com with ESMTPSA id p124sm13540972ioe.37.2017.02.09.10.21.16 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 09 Feb 2017 10:21:16 -0800 (PST) To: Derek Atkins , "Panos Kampanakis (pkampana)" References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> <8f6fda03-f3ee-2966-be9a-a9b05826a8f4@cisco.com> <42ffccfc40fc0822dae821784cfb6fac.squirrel@mail2.ihtfp.org> <74f18ad88c694c529a21dffc968c8f66@XCH-ALN-010.cisco.com> <455b40790f94d31f7e718a7faf3ce77f.squirrel@mail2.ihtfp.org> From: Rene Struik Message-ID: <2cab1c4c-1aab-e100-8a82-d275e0ff96f3@gmail.com> Date: Thu, 9 Feb 2017 13:21:13 -0500 User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.7.1 MIME-Version: 1.0 In-Reply-To: <455b40790f94d31f7e718a7faf3ce77f.squirrel@mail2.ihtfp.org> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit Archived-At: Cc: "ace@ietf.org" Subject: [Ace] (confusing GNFS and SNFS) Re: Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 18:21:19 -0000 Hi Panos: There seems to be some misunderstanding regarding computational complexities here (here: Special Number field Sieve (SNFS) vs. General Number Field Sieve (NFS)). With the General Number Field Sieve, the complexity is conjectured to be LN[c,a], where a= 1/3 and c = (64/9)^{1/3}+o(1) and where LN[c,a]:=exp(c (log N)^a (log(log(N))^{1-a}). With the Special Number Field Sieve, the conjectured complexity is LN[c,a], where a= 1/3 and c = (32/9)^{1/3}+o(1). Note that if one ignores the o(1) term, then the asymptotic running time using the GNFS with N is about the same time required with the SNFS and N^2. The paper you quoted exploits some potentially hidden structure in the method for producing N that results in being able to use the SNFS rather than the GNFS (thereby, explaining the relatively low running time). The paper's premises were already known in the '90s, where the only thing the paper added was using the best sieving methods known to the authors in 2016. The paper does not apply to parameters that were not concocted in a special way: to my knowledge, there are no results that would show otherwise. (There are some other complexity results, with a=1/3 and c somewhere in between [(32/9)^{1/3}, (64/9)^{1/3}] as well, see, e.g., [1], which results in some scaling along [N,N^2] interval.) Conclusion: your reference to the paper is misleading regarding state-of-the-art. {I do concur that elliptic curves outperform RSA, but that is another matter entirely.} Rene [1] DLP - the Number Field Sieve for Integers of Low Weight (Oliver Schirokauer, Math.Comp., 2010) On 2/9/2017 12:37 PM, Derek Atkins wrote: > Hi, > > On Thu, February 9, 2017 12:20 pm, Panos Kampanakis (pkampana) wrote: >> About factoring 1024-bits, >> https://hal.inria.fr/hal-01376934/file/paper.pdf shows that a special >> 1024-bit p was factored in 2 months. Also it explains that it is possible >> to factor some primes used on the internet today. Going to 1024 gives a >> false sense of security. Endorsing it in a standard to be used for some >> years down the road makes me uncomfortable. 256-bit ECDSA or EdDSA are >> more sufficient with good performance compared to RSA1024. > Please do not mix up 1024-bit Diffie-Hellman and 1024-bit RSA. They are > different mechanisms and depend on different underlying math. Everything > you say above is about DH, which just does not apply when we're discussing > RSA. You cannot "Factor a Prime"; by definition a prime's factors are 1 > and itself (e.g. 11). > > Yes, it is possible to create a DH-prime that allows easy solutions to the > discrete-log problem. And yes, it's easy to create an RSA key that's > easily factored. However, factoring a "good" 1024-bit RSA key is not "2 > months" of effort. c.f. https://en.wikipedia.org/wiki/RSA_numbers for a > list of numbers and references to their factoring efforts over the years. > > Yes, 256-bit ECC is more secure than 1024-bit RSA (128-bit security vs > 80-bit security). I cannot comment on the performance difference; I've > been focusing on WalnutDSA which verifies orders of magnitude faster than > either RSA or ECDSA. > > -derek > -- email: rstruik.ext@gmail.com | Skype: rstruik cell: +1 (647) 867-5658 | US: +1 (415) 690-7363 From nobody Thu Feb 9 13:02:42 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 21F92129452 for ; Thu, 9 Feb 2017 13:02:41 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -14.522 X-Spam-Level: X-Spam-Status: No, score=-14.522 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cisco.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id w9cAF-YYZyE6 for ; Thu, 9 Feb 2017 13:02:39 -0800 (PST) Received: from rcdn-iport-2.cisco.com (rcdn-iport-2.cisco.com [173.37.86.73]) (using TLSv1.2 with cipher DHE-RSA-SEED-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B11BF129430 for ; Thu, 9 Feb 2017 13:02:39 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cisco.com; i=@cisco.com; l=3930; q=dns/txt; s=iport; t=1486674159; x=1487883759; h=from:to:cc:subject:date:message-id:references: in-reply-to:content-transfer-encoding:mime-version; bh=SuY7zWDDQyXtP32jw4vt9nt9pW5bECzQAU5OeP+mSmE=; b=h2tpCYE6DZ0mPonvjKYQwd9k+5kArhPLEHLEk6/eI4YA5FxDTpXPLZ69 lFwM58HUCWLz026ZR4gk7w1AuuSFcCkOdkvXNyo0/+zq1UyUzVOu+GqOB 1yacwO3wJgAYrEBDpvxf2XQdTEfw3fzlgCobikCwSpOYkJc3hvDOi8u2o w=; X-IronPort-Anti-Spam-Filtered: true X-IronPort-Anti-Spam-Result: =?us-ascii?q?A0CdAQCM2JxY/40NJK1aAxkBAQEBAQEBA?= =?us-ascii?q?QEBAQcBAQEBAYMnKmGBCQeDUooIkgqVNoINKoV4AhqCUj8YAQIBAQEBAQEBYii?= =?us-ascii?q?EaQEBAQICIxEVMAwEAgEIEQQBAQECAiMDAgICMBQBCAgCBA4FCBOJWQ6wFIIli?= =?us-ascii?q?1UBAQEBAQEBAQEBAQEBAQEBAQEBAQEdgQuFQYRvhGsKJoI/gl8Fm3IBhm6LHII?= =?us-ascii?q?EhReJc5MUAR84OkRPFTyGQnUBiG6BDAEBAQ?= X-IronPort-AV: E=Sophos;i="5.35,137,1484006400"; d="scan'208";a="209909209" Received: from alln-core-8.cisco.com ([173.36.13.141]) by rcdn-iport-2.cisco.com with ESMTP/TLS/DHE-RSA-AES256-SHA; 09 Feb 2017 21:02:38 +0000 Received: from XCH-RCD-006.cisco.com (xch-rcd-006.cisco.com [173.37.102.16]) by alln-core-8.cisco.com (8.14.5/8.14.5) with ESMTP id v19L2ces013918 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=FAIL); Thu, 9 Feb 2017 21:02:38 GMT Received: from xch-aln-010.cisco.com (173.36.7.20) by XCH-RCD-006.cisco.com (173.37.102.16) with Microsoft SMTP Server (TLS) id 15.0.1210.3; Thu, 9 Feb 2017 15:02:37 -0600 Received: from xch-aln-010.cisco.com ([173.36.7.20]) by XCH-ALN-010.cisco.com ([173.36.7.20]) with mapi id 15.00.1210.000; Thu, 9 Feb 2017 15:02:38 -0600 From: "Panos Kampanakis (pkampana)" To: Derek Atkins Thread-Topic: [Ace] Asymmetric signature performance Thread-Index: AQHSgut4rOsc7yrakUCD09wRZ9MojKFhNt2AgAABgwD//5/yAIAAfM4A///FxcA= Date: Thu, 9 Feb 2017 21:02:38 +0000 Message-ID: References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <328a4df8dfdf4ce1a371fcc1eb251854@XCH-ALN-010.cisco.com> <8d327f8e-fac5-cf2e-7364-4d291d44053f@comcast.net> <8af1e2c5dd76471892bfa3c777a90f15@XCH-ALN-010.cisco.com> <8f6fda03-f3ee-2966-be9a-a9b05826a8f4@cisco.com> <42ffccfc40fc0822dae821784cfb6fac.squirrel@mail2.ihtfp.org> <74f18ad88c694c529a21dffc968c8f66@XCH-ALN-010.cisco.com> <455b40790f94d31f7e718a7faf3ce77f.squirrel@mail2.ihtfp.org> In-Reply-To: <455b40790f94d31f7e718a7faf3ce77f.squirrel@mail2.ihtfp.org> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-ms-exchange-transport-fromentityheader: Hosted x-originating-ip: [10.116.108.6] Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 MIME-Version: 1.0 Archived-At: Cc: "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 09 Feb 2017 21:02:41 -0000 Tm90IHN1cmUgd2h5IHlvdSBtZW50aW9uZWQgdGhhdCBmYWN0b3Jpbmcgb25seSBhcHBsaWVzIHRv IERILiBBcyB5b3Uga25vdyBpbiBSU0Egbj1wKnEgYW5kIHB1YmsqcHJrPTEgbW9kICh0b3RpZW50 KG4pKT0xIG1vZCAocC0xKShxLTEpLiBUaHVzLCBpZiBhbiBhdHRhY2tlciBjb3VsZCBmYWN0b3Ig biAoZmluZCBwIGFuZCBxIGluIHRoaXMgY2FzZSkgYW5kIHNvbHZlIGZvciBwcmsuIFNvLCBmYWN0 b3JpbmcgYmlnIG51bWJlcnMgKG4gaW4gdGhpcyBjYXNlKSBlcXVhbHMgdG8gYnJlYWtpbmcgUlNB LiANCg0KSXQgaXMgcmlnaHQgdGhhdCB0aGUgcHJpbWVzIGluIHRoZSBwYXBlciB3ZXJlIHNwZWNp YWwgYW5kIGdvb2QgU0ZOUyB0YXJnZXRzLiBNeSBhcmd1bWVudCB3YXMgbm90IHRoYXQgYWxsIDEw MjQtYml0IFJTQSBjYW4gYmUgYnJva2VuIGluIDIgbW9udGhzLiBXaGF0IEkgd2FzIHNheWluZyB3 YXMgd2hhdCB0aGUgcGFwZXIgcG9pbnRzIG91dCB3aGljaCBpcyB0aGF0IHRoZXJlIGFyZSB3ZWFr IDEwMjQtYml0IG4gaGF2ZSBiZWVuIGRlcGxveWVkIGFuZCBzdGlsbCBleGlzdCB3aGljaCBtYWtl cyB0aGVtIGdvb2QgU05GUyB0YXJnZXRzLiBJZiBzb21lb25lIGNob3NlIHRvIGtlZXAgZGVwbG95 aW5nIDEwMjQgUlNBLCBoZSBpcyBvcGVuaW5nIGhpbXNlbGYgdXAgZm9yIHRyb3VibGUuIA0KDQpJ IGFtIHNvcnJ5LCBpZiBzZWN1cml0eSBpcyB0aGUgZ29hbCBoZXJlLCBJIGNvdWxkIG5ldmVyIGFn cmVlIHRoYXQgd2VhayBzZWN1cml0eSB3aXRoIDEwMjQtYml0IFJTQSBjYW4gYmUgY29uc2lkZXJl ZCBzZWN1cml0eS4gSW5zdGVhZCBFQ0RTQSBhbmQgRWREU0EgYXJlIHRoZSBzZWN1cmUgYW5kIGVm ZmljaWVudCBvcHRpb25zLg0KDQorMSBvbiBXYWxudXREU0EuIE5lZWRzIGZ1cnRoZXIgYW5hbHlz aXMgYXMgaXQgaXMgcHJldHR5IG5ldy4gDQoNCg0KDQotLS0tLU9yaWdpbmFsIE1lc3NhZ2UtLS0t LQ0KRnJvbTogRGVyZWsgQXRraW5zIFttYWlsdG86ZGVyZWtAaWh0ZnAuY29tXSANClNlbnQ6IFRo dXJzZGF5LCBGZWJydWFyeSAwOSwgMjAxNyAxMjozOCBQTQ0KVG86IFBhbm9zIEthbXBhbmFraXMg KHBrYW1wYW5hKSA8cGthbXBhbmFAY2lzY28uY29tPg0KQ2M6IERlcmVrIEF0a2lucyA8ZGVyZWtA aWh0ZnAuY29tPjsgYWNlQGlldGYub3JnDQpTdWJqZWN0OiBSRTogW0FjZV0gQXN5bW1ldHJpYyBz aWduYXR1cmUgcGVyZm9ybWFuY2UNCg0KSGksDQoNCk9uIFRodSwgRmVicnVhcnkgOSwgMjAxNyAx MjoyMCBwbSwgUGFub3MgS2FtcGFuYWtpcyAocGthbXBhbmEpIHdyb3RlOg0KPg0KPiBBYm91dCBm YWN0b3JpbmcgMTAyNC1iaXRzLA0KPiBodHRwczovL2hhbC5pbnJpYS5mci9oYWwtMDEzNzY5MzQv ZmlsZS9wYXBlci5wZGYgc2hvd3MgdGhhdCBhIHNwZWNpYWwgDQo+IDEwMjQtYml0IHAgd2FzIGZh Y3RvcmVkIGluIDIgbW9udGhzLiBBbHNvIGl0IGV4cGxhaW5zIHRoYXQgaXQgaXMgDQo+IHBvc3Np YmxlIHRvIGZhY3RvciBzb21lIHByaW1lcyB1c2VkIG9uIHRoZSBpbnRlcm5ldCB0b2RheS4gR29p bmcgdG8gDQo+IDEwMjQgZ2l2ZXMgYSBmYWxzZSBzZW5zZSBvZiBzZWN1cml0eS4gRW5kb3JzaW5n IGl0IGluIGEgc3RhbmRhcmQgdG8gYmUgDQo+IHVzZWQgZm9yIHNvbWUgeWVhcnMgZG93biB0aGUg cm9hZCBtYWtlcyBtZSB1bmNvbWZvcnRhYmxlLiAyNTYtYml0IA0KPiBFQ0RTQSBvciBFZERTQSBh cmUgbW9yZSBzdWZmaWNpZW50IHdpdGggZ29vZCBwZXJmb3JtYW5jZSBjb21wYXJlZCB0byBSU0Ex MDI0Lg0KDQpQbGVhc2UgZG8gbm90IG1peCB1cCAxMDI0LWJpdCBEaWZmaWUtSGVsbG1hbiBhbmQg MTAyNC1iaXQgUlNBLiBUaGV5IGFyZSBkaWZmZXJlbnQgbWVjaGFuaXNtcyBhbmQgZGVwZW5kIG9u IGRpZmZlcmVudCB1bmRlcmx5aW5nIG1hdGguICBFdmVyeXRoaW5nIHlvdSBzYXkgYWJvdmUgaXMg YWJvdXQgREgsIHdoaWNoIGp1c3QgZG9lcyBub3QgYXBwbHkgd2hlbiB3ZSdyZSBkaXNjdXNzaW5n IFJTQS4gIFlvdSBjYW5ub3QgIkZhY3RvciBhIFByaW1lIjsgYnkgZGVmaW5pdGlvbiBhIHByaW1l J3MgZmFjdG9ycyBhcmUgMSBhbmQgaXRzZWxmIChlLmcuIDExKS4NCg0KWWVzLCBpdCBpcyBwb3Nz aWJsZSB0byBjcmVhdGUgYSBESC1wcmltZSB0aGF0IGFsbG93cyBlYXN5IHNvbHV0aW9ucyB0byB0 aGUgZGlzY3JldGUtbG9nIHByb2JsZW0uICBBbmQgeWVzLCBpdCdzIGVhc3kgdG8gY3JlYXRlIGFu IFJTQSBrZXkgdGhhdCdzIGVhc2lseSBmYWN0b3JlZC4gIEhvd2V2ZXIsIGZhY3RvcmluZyBhICJn b29kIiAxMDI0LWJpdCBSU0Ega2V5IGlzIG5vdCAiMiBtb250aHMiIG9mIGVmZm9ydC4gIGMuZi4g aHR0cHM6Ly9lbi53aWtpcGVkaWEub3JnL3dpa2kvUlNBX251bWJlcnMgZm9yIGEgbGlzdCBvZiBu dW1iZXJzIGFuZCByZWZlcmVuY2VzIHRvIHRoZWlyIGZhY3RvcmluZyBlZmZvcnRzIG92ZXIgdGhl IHllYXJzLg0KDQpZZXMsIDI1Ni1iaXQgRUNDIGlzIG1vcmUgc2VjdXJlIHRoYW4gMTAyNC1iaXQg UlNBICgxMjgtYml0IHNlY3VyaXR5IHZzIDgwLWJpdCBzZWN1cml0eSkuICBJIGNhbm5vdCBjb21t ZW50IG9uIHRoZSBwZXJmb3JtYW5jZSBkaWZmZXJlbmNlOyBJJ3ZlIGJlZW4gZm9jdXNpbmcgb24g V2FsbnV0RFNBIHdoaWNoIHZlcmlmaWVzIG9yZGVycyBvZiBtYWduaXR1ZGUgZmFzdGVyIHRoYW4g ZWl0aGVyIFJTQSBvciBFQ0RTQS4NCg0KLWRlcmVrDQoNCi0tIA0KICAgICAgIERlcmVrIEF0a2lu cyAgICAgICAgICAgICAgICAgNjE3LTYyMy0zNzQ1DQogICAgICAgZGVyZWtAaWh0ZnAuY29tICAg ICAgICAgICAgIHd3dy5paHRmcC5jb20NCiAgICAgICBDb21wdXRlciBhbmQgSW50ZXJuZXQgU2Vj dXJpdHkgQ29uc3VsdGFudA0KDQo= From nobody Fri Feb 10 00:39:34 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 54082129493 for ; Fri, 10 Feb 2017 00:39:31 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.221 X-Spam-Level: X-Spam-Status: No, score=-4.221 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BjpjCJe_iqpW for ; Fri, 10 Feb 2017 00:39:25 -0800 (PST) Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6F3811298CE for ; Fri, 10 Feb 2017 00:39:25 -0800 (PST) X-AuditID: c1b4fb30-f7ac898000007389-20-589d7c3b99b0 Received: from ESESSHC001.ericsson.se (Unknown_Domain [153.88.183.21]) by (Symantec Mail Security) with SMTP id A8.8B.29577.B3C7D985; Fri, 10 Feb 2017 09:39:23 +0100 (CET) Received: from nomadiclab.lmf.ericsson.se (153.88.183.153) by smtp.internal.ericsson.com (153.88.183.23) with Microsoft SMTP Server id 14.3.319.2; Fri, 10 Feb 2017 09:38:50 +0100 Received: from nomadiclab.lmf.ericsson.se (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id C3B5D50545; Fri, 10 Feb 2017 10:40:02 +0200 (EET) Received: from [127.0.0.1] (localhost [127.0.0.1]) by nomadiclab.lmf.ericsson.se (Postfix) with ESMTP id 560FB4E94F; Fri, 10 Feb 2017 10:40:02 +0200 (EET) To: Derek Atkins , Michael StJohns References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <3fbffd36-f846-3f21-74b8-811e54715847@ericsson.com> <1fd13717-96d6-a7d3-6fec-86ff428967bc@comcast.net> From: Mohit Sethi Message-ID: <0e8f7861-669b-b563-c4b1-fe83cef3a440@ericsson.com> Date: Fri, 10 Feb 2017 10:38:49 +0200 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: Content-Type: text/plain; charset="windows-1252"; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV using ClamSMTP X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFnrMLMWRmVeSWpSXmKPExsUyM2K7qK51zdwIgzNbdSy+f+thtlg5aQe7 xZR1WQ7MHpMfz2H0WLLkJ5PH8q8PWAKYo7hsUlJzMstSi/TtErgyJn37yFxwW6Ti0/F2tgbG qwJdjJwcEgImEp0T+li6GLk4hATWMUr8utbFDOFsY5S41/uYHcJZyygx9ccVqMw8Ronfy7aw g/QLCxhLNE9fxghiiwh4Sdy7eR5q1gVGiRfbjrOBJJgFFCXWzeljArHZBPQkOs8dZwaxeQXs Jb7sWs0CYrMIqEp8OLoNrF5UIEJi/tNVTBA1ghInZz4Bq+EUMJSY0fcVaBkH0Ex7iQdbyyDG y0tsfzuHGeIfNYmr5zaB2UIC6hJbOw4wTmAUnoVk0iyE7llIuhcwMq9iFC1OLU7KTTcy0kst ykwuLs7P08tLLdnECAz6g1t+G+xgfPnc8RCjAAejEg/vh+Y5EUKsiWXFlbmHGCU4mJVEeDcU zo0Q4k1JrKxKLcqPLyrNSS0+xCjNwaIkzmu28n64kEB6YklqdmpqQWoRTJaJg1OqgVGpd3tQ V/fvyR/iNLWeifF0rbU5e91gtsVHsQ3e12rTZp0VS1Z86mn2Wev7EvHciQXZDI0+T3zvBrd+ y0xffMjM+APfwvcapf5uXndjFD88r9utf3WaYGUzq/MV3pL8HzvSjxo0lX+evmdXFZNUys2K 2+fKkuNqw8s9WVXDfETvi2z9KDszWYmlOCPRUIu5qDgRAPbwpRZ2AgAA Archived-At: Cc: "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2017 08:39:31 -0000 Hi Derek A small comment on ECC performance inline. On 02/09/2017 05:10 PM, Derek Atkins wrote: > Mike, > > Michael StJohns writes: > >> On 2/8/2017 8:19 AM, Mohit Sethi wrote: >>> Hi Mike >>> >>> At least with our measurements on an 8-bit microprocessor platform, >>> 1024-bit RSA exponentiation was extremely slow. Please have a look >>> at Table 1: >>> >>> https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-01 >> I look at Table 1 the first thing I see is that you're using the wrong >> abbreviation for time - (ms is milli second), what you want is micro >> seconds or (us). Or are you actually trying to claim that a 1024 bit >> operation takes 199 seconds? Or all of 3+ minutes? Or are you >> using an abacus and a monkey to do the math? > From my personal experience working with tiny microcontrollers I would > guess that there is NOT a typo in those numbers and it really does take > 3 minutes to compute an RSA operation. I've had similar (although > somewhat better) results with ECC on similar platforms (166-bit ECC was > taking around 30s). Note that this is computation in software. A > hardware implementation would certainly be faster, but then you actually > need to implement the hardware. Regarding the performance of 160-bit ECDSA on our 8-bit platform. We experimented with a couple of different libraries and found that the signature operation took anywhere between 800 ms - 2000 ms. The exact numbers can be found in Tables 2,3,4,5 and 6 of the draft: https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-01. Perhaps you could try some of those libraries on your platform and see if you get better performance results on your chosen platform. Any other comments on the draft are also welcome. Thanks Mohit > >> (And by the way - using "3" as the RSA exponent is just wrong). > It's done frequently in "lopsided" constrained environments in order to > limit the computation required by the more-constrained device. > >> Table 1 doesn't actually indicate whether this is a signing operation >> or a verification operation, or whether or not the summary function >> (SHA1 or SHA256) is included. >> >> If Table 2 and table 3 have the same mistakes in time abbreviation >> (and I'm not sure why they wouldn't), you're saying that you can do an >> ECDSA function in 2-6 milliseconds. Which more than meets the >> requirements. > I don't think it's a mistake. > >> _______________________________________________ >> Ace mailing list >> Ace@ietf.org >> https://www.ietf.org/mailman/listinfo/ace > -derek > From nobody Fri Feb 10 01:30:55 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3E0C6129446 for ; Fri, 10 Feb 2017 01:30:54 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id AD19NM5NryPF for ; Fri, 10 Feb 2017 01:30:52 -0800 (PST) Received: from mail-qt0-x22b.google.com (mail-qt0-x22b.google.com [IPv6:2607:f8b0:400d:c0d::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 95AE2129410 for ; Fri, 10 Feb 2017 01:30:52 -0800 (PST) Received: by mail-qt0-x22b.google.com with SMTP id k15so29230884qtg.3 for ; Fri, 10 Feb 2017 01:30:52 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=z0JHQyKqLIPArFaSS5GJhyzw4aF/vin6nIAzh2wIWiY=; b=TV26yFxlEPz6VT9Qa+RcbdfG6v95cOcrZlkQdD/cBcRbCRNNzpIPa8Gkp3fYb//9pf 3y2AsUX3cwA9sow5JG7YdU8+YKiffsizms4/ayurHh5zbbE6aurhgO1tkt4dyRMTZbUn lC3WG9lz3FOpqTqP2D5Y3mqAtwexp5vo3avh0mSpceXEcqZACKJfIBkLzoYyTA0Kz/HO N397/91tGpgyf0kcXMrR0KfJ3IKX/YC8AoEEC6IpcblguXiM/UCx/kqYKYoWh1QXzLdG 6N021/QMw/X1d3rUPM99f7Gqo/e/JW1vn9iJ63DaYfb4r2pv0xFNDMuOzV1jUeC37W4V iEVw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=z0JHQyKqLIPArFaSS5GJhyzw4aF/vin6nIAzh2wIWiY=; b=F2hrGsnx2gVy2zs8k/95E/ZLEA86dzDBjtd4AQY0PHAMVR/H8a+HQSRoDDlbfbeVVm 3VgQAkP570olK2duLGlQs8J4SjoUuvw4jq8gPKy7YzzBqIiO0XGcOWg+vWM7KscZCADG 0pB6510u0HqcJxUVEKeGAFa8EQ5GQgqPP6aFRx6HxUtZMt4x67e+ytusd2/+qHllTG7y 7Ttpl+uD1a8rp1JJf9Vpz5B0jVMIh1iueOf1KKOM7UPqDwB+uZ9Sft7LJBtYL7etlHD7 2spbM8DvEBPOJhpHZcyDCd2EnFgVw6l6e0yPH4VXsLKkz9FlfO/Q9JRPxbnker8rgcks fgEg== X-Gm-Message-State: AMke39ksUgJ4t1VerlwxAQY4F9IyNO6DUFMfsM+K9c+RMn9KSKtO3RBSX4PdP3nHruDTTBgkWLoJnKSk6dZaqA== X-Received: by 10.200.2.66 with SMTP id o2mr7672917qtg.244.1486719051709; Fri, 10 Feb 2017 01:30:51 -0800 (PST) MIME-Version: 1.0 Received: by 10.200.36.212 with HTTP; Fri, 10 Feb 2017 01:30:31 -0800 (PST) In-Reply-To: References: <148636979879.18909.5062709426532254112.idtracker@ietfa.amsl.com> From: Renzo Navas Date: Fri, 10 Feb 2017 10:30:31 +0100 Message-ID: To: Ludwig Seitz Content-Type: text/plain; charset=UTF-8 Archived-At: Cc: "ace@ietf.org" Subject: Re: [Ace] Fwd: New Version Notification for draft-ietf-ace-oauth-authz-05.txt X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2017 09:30:54 -0000 Hi Ludwig and ACE ML, Thank you very much Ludwig for your effort, I have not yet read the new version of the draft, but I already had some thoughts about the "Client Token" (CT) concept, so I give a partial response to your questions (also in the hope to trigger the discussion on the ML): a) I think the Use Case the CT is trying to solve is VERY relevant. b) I think is a reasonable solution; I need to study it more to give a full answer, but as a starting point seems to be the tool to solve the problem. Another concern I have is to analyze how this will impact interaction will vanilla OAuth 2.0 entities (as you mentioned). c) - Thank you very much for the Java implementation! Lots lots lots of work I imagine. I will try to test it and give feedback. Regards, and have a good weekend Renzo On Mon, Feb 6, 2017 at 9:37 AM, Ludwig Seitz wrote: > Hello ACE, > > I have posted an update of our draft, please see the changelog for what has > been updated. > > I am in the middle of implementing this, and I'd encourage others to do so > as well (https://bitbucket.org/lseitz/ace-java). > > I would also welcome review comments, especially on the Client Token (CT) > concept which is probably the most radical change wrt vanilla OAuth 2.0. I > would like you to specially consider the following questions: > > a.) Do you think the usecase for CT is valid? > > b.) Do you think CT is a reasonable solution for the usecase? > (alternative solutions or suggestions for improvement are welcome) > > c.) Should the CT (or an alternative solution) be part of this draft or > should it be a separate draft (or none at all)? > > Regards, > > Ludwig > > > -------- Forwarded Message -------- > > A new version of I-D, draft-ietf-ace-oauth-authz-05.txt > has been successfully submitted by Ludwig Seitz and posted to the > IETF repository. > > Name: draft-ietf-ace-oauth-authz > Revision: 05 > Title: Authentication and Authorization for Constrained > Environments (ACE) > Document date: 2017-02-03 > Group: ace > Pages: 62 > URL: https://www.ietf.org/internet-drafts/draft-ietf-ace-oauth-authz-05.txt > Status: https://datatracker.ietf.org/doc/draft-ietf-ace-oauth-authz/ > Htmlized: https://tools.ietf.org/html/draft-ietf-ace-oauth-authz-05 > Diff: https://www.ietf.org/rfcdiff?url2=draft-ietf-ace-oauth-authz-05 > > Abstract: > This specification defines a framework for authentication and > authorization in Internet of Things (IoT) environments. The > framework is based on a set of building blocks including OAuth 2.0 > and CoAP, thus making a well-known and widely used authorization > solution suitable for IoT devices. Existing specifications are used > where possible, but where the constraints of IoT devices require it, > extensions are added and profiles are defined. > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > > > > _______________________________________________ > Ace mailing list > Ace@ietf.org > https://www.ietf.org/mailman/listinfo/ace > From nobody Fri Feb 10 01:59:44 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 95AE71293D6 for ; Fri, 10 Feb 2017 01:59:42 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.201 X-Spam-Level: X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-0.001] autolearn=unavailable autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id TaQNQFSuKxe2 for ; Fri, 10 Feb 2017 01:59:41 -0800 (PST) Received: from mail-gw-out2.cc.tut.fi (mail-gw-out2.cc.tut.fi [130.230.160.33]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2CACA12941D for ; Fri, 10 Feb 2017 01:51:49 -0800 (PST) X-AuditID: 82e6a021-4d9ff70000000927-79-589d8d23babc Received: from mail2.tut.fi (mail2.tut.fi [130.230.162.20]) by mail-gw-out2.cc.tut.fi (Symantec Messaging Gateway) with SMTP id 1A.03.02343.32D8D985; Fri, 10 Feb 2017 11:51:34 +0200 (EET) Received: from webmail.intra.tut.fi (mail.intra.tut.fi [130.230.76.51]) by mail2.tut.fi (Postfix) with ESMTPS id D7EC22107E; Fri, 10 Feb 2017 11:51:30 +0200 (EET) Received: from MB2010-1.intra.tut.fi ([169.254.1.127]) by cas01.intra.tut.fi ([2002:82e6:4c33::82e6:4c33]) with mapi id 14.03.0319.002; Fri, 10 Feb 2017 11:51:30 +0200 From: Joona Kannisto To: Mohit Sethi Thread-Topic: [Ace] Asymmetric signature performance Thread-Index: AQHSgbbOV8HmeCDIT0moJ7XnvvU4RqFe9v4AgABAbYCAAZKVFYABAz6AgAAUTwA= Date: Fri, 10 Feb 2017 09:51:30 +0000 Message-ID: <5A6BEBAF-081A-4034-A300-3D3DA1468D74@tut.fi> References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <3fbffd36-f846-3f21-74b8-811e54715847@ericsson.com> <1fd13717-96d6-a7d3-6fec-86ff428967bc@comcast.net> <0e8f7861-669b-b563-c4b1-fe83cef3a440@ericsson.com> In-Reply-To: <0e8f7861-669b-b563-c4b1-fe83cef3a440@ericsson.com> Accept-Language: fi-FI, en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [130.230.76.200] Content-Type: text/plain; charset="utf-8" Content-ID: <4BC91F64A7CDF84483C23E8ADAFC130E@intra.tut.fi> Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFrrPKsWRmVeSWpSXmKPExsXS9GyRiK5679wIg5atXBbfv/UwW6yctIPd YsvHjcwWU9ZlObB4TH48h9Hj19erbB5Llvxk8lj+9QFLAEsUl01Kak5mWWqRvl0CV8aF/ytZ CmZoVJyZPJ2xgXGKehcjJ4eEgIlEb9t31i5GLg4hgb2MEn/XbmaEcJYxSrz98JUJwlnNKNG5 7jQTSAubgI7EzQl/mUFsESD72KH1rCA2s0C2xNKeLrC4sICxRPP0ZUCTOIBqTCS+vMuDMP0k Tv3wAjFZBFQlvrUKghTzClhKLFvSCHVDG5PE/Z52RpAEp4CDxJHuL2BbGQVkJVZu/scMsUlc 4taT+UwQDwhILNlznhnCFpV4+fgfK4StJHHk/jx2kF3MApoS63fpQ5jWErd3F0BMUZSY0v2Q HeIEQYmTM5+wTGAUn4VkwSyE5lkIzbOQNM9C0ryAkXUVo1huYmaObnq5bn5piZFecrJeSWmJ XlrmJkZwPC5Q3MF4aob+IUYBDkYlHt4JVXMihFgTy4orcw8xSnIwKYnyyhYAhfiS8lMqMxKL M+KLSnNSiw8xSnAwK4nwvsqZGyHEm5JYWZValA+TkuZgURLnLfXXDBESSE8sSc1OTS1ILYLJ ynBwKEnwHg0FahQsSk1PrUjLzClBSDNxcIIM5wEaLgE2vLggMbc4Mx0if4pRUUqcNzMMKCEA ksgozYPrhaRLH+NXjOJArwjz3gRp5wGmWrjuV0CDmYAGXz89C2RwSSJCSqqBkefYkVZlbsUf b++aRTnd3+tY/qZMV3tlmddJplrfnSYxIt8y5hSWG/dNiLomb63Qbrxqk87J/Ufi9K8tVvWu 4L52Yt6nbzaivcH3VH9LbCyes+VO8Qx2Hob75zZeK3rnOemc73OFrKts+d9d2Vbl9ujXZU2t 3nc050p+88ofTcKK5Yra81lmK7EUZyQaajEXFScCANzK8g9yAwAA Archived-At: Cc: Michael StJohns , Derek Atkins , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2017 09:59:42 -0000 TW9pIE1vaGl0LCANCk9uZSBub3RlIG9uIHRoZSB0aW1pbmcgY29uc3RyYWludHMsIGlmIHlvdSB1 c2UsIGZvciBleGFtcGxlLCB0aGUgU2Nobm9yciBzaWduYXR1cmUgc3lzdGVtIHlvdSBjYW4gcHJl Y29tcHV0ZSB0aGUgZ3JvdXAgb3BlcmF0aW9uIGFuZCBkbyBvbmx5IG9uZSBoYXNoIGFuZCBvbmUg ZmllbGQgb3BlcmF0aW9uIHdpdGggdGhlIGZyZXNoIGRhdGEuIFNpbWlsYXIgb3B0aW1pemF0aW9u IGNvdWxkIGJlIGRvbmUgZm9yIERTQSwgYnV0IGl0IGlzIG1vcmUgY29tbW9ubHkgbWVudGlvbmVk IGluIHRoZSBTY2hub3JyIGNhc2UuIFJTQSBkb2VzIG5vdCBhbGxvdyB0aGlzLCBhcyBmYXIgYXMg SSBrbm93LiANCg0KU28gaWYgdGhlIHNsZWVwIGN5Y2xlIGlzIGxvbmdlciB0aGFuIHRoZSBwcmUt Y29tcHV0YXRpb24gdGltZSB0aGUgbGF0ZW5jeSB3b3VsZCBub3QgYmUgYW4gaXNzdWUuIE1vc3Rs eSB0aGUgcG93ZXIgYnVkZ2V0IGlzc3VlcyByZW1haW4uIA0KDQpQZXJmb3JtYW5jZSBmaWd1cmVz IChvbiB4ODYgYW5kIFAtMjU2KSAgd291bGQgc2hvdyBzb21ldGhpbmcgaW4gdGhlIGJhbGxwYXJr IG9mICAzNcK1c2VjIGZvciB0aGluZ3MgeW91IGNhbiBwcmVjb21wdXRlLCBhbmQgNSDCtXNlYyBm b3IgdGhpbmdzIHlvdSBjYW5ub3QuIA0KDQpUaGlzIG9mIGNvdXJzZSBwcmV2ZW50cyB1c2luZyBk ZXRlcm1pbmlzdGljIERTQSB2YXJpYW50cyAoZGVyaXZlIGsgbGlrZSBpbiBlZGRzYSkuIEFsc28s IHRoZXJlIGFyZSBtb3JlIGNvbmZpZGVudGlhbCBieXRlcyBpbiBtZW1vcnkgb24gYXZlcmFnZS4g DQoNCkJSLA0KSm9vbmEgS2FubmlzdG8NCg0KPiBNb2hpdCBTZXRoaSA8bW9oaXQubS5zZXRoaUBl cmljc3Nvbi5jb20+IGtpcmpvaXR0aSAxMC4yLjIwMTcga2VsbG8gMTAuMzg6DQo+IA0KPiBIaSBE ZXJlaw0KPiANCj4gQSBzbWFsbCBjb21tZW50IG9uIEVDQyBwZXJmb3JtYW5jZSBpbmxpbmUuDQo+ IA0KPiANCj4gT24gMDIvMDkvMjAxNyAwNToxMCBQTSwgRGVyZWsgQXRraW5zIHdyb3RlOg0KPj4g TWlrZSwNCj4+IA0KPj4gTWljaGFlbCBTdEpvaG5zIDxtc3Rqb2huc0Bjb21jYXN0Lm5ldD4gd3Jp dGVzOg0KPj4gDQo+Pj4gT24gMi84LzIwMTcgODoxOSBBTSwgTW9oaXQgU2V0aGkgd3JvdGU6DQo+ Pj4+IEhpIE1pa2UNCj4+Pj4gDQo+Pj4+IEF0IGxlYXN0IHdpdGggb3VyIG1lYXN1cmVtZW50cyBv biBhbiA4LWJpdCBtaWNyb3Byb2Nlc3NvciBwbGF0Zm9ybSwNCj4+Pj4gMTAyNC1iaXQgUlNBIGV4 cG9uZW50aWF0aW9uIHdhcyBleHRyZW1lbHkgc2xvdy4gUGxlYXNlIGhhdmUgYSBsb29rDQo+Pj4+ IGF0IFRhYmxlIDE6DQo+Pj4+IA0KPj4+PiBodHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJh ZnQtaWV0Zi1sd2lnLWNyeXB0by1zZW5zb3JzLTAxDQo+Pj4gSSBsb29rIGF0IFRhYmxlIDEgdGhl IGZpcnN0IHRoaW5nIEkgc2VlIGlzIHRoYXQgeW91J3JlIHVzaW5nIHRoZSB3cm9uZw0KPj4+IGFi YnJldmlhdGlvbiBmb3IgdGltZSAtIChtcyBpcyBtaWxsaSBzZWNvbmQpLCB3aGF0IHlvdSB3YW50 IGlzIG1pY3JvDQo+Pj4gc2Vjb25kcyBvciAodXMpLiAgIE9yIGFyZSB5b3UgYWN0dWFsbHkgdHJ5 aW5nIHRvIGNsYWltIHRoYXQgYSAxMDI0IGJpdA0KPj4+IG9wZXJhdGlvbiB0YWtlcyAxOTkgc2Vj b25kcz8gICBPciBhbGwgb2YgMysgbWludXRlcz8gICAgIE9yIGFyZSB5b3UNCj4+PiB1c2luZyBh biBhYmFjdXMgYW5kIGEgbW9ua2V5IHRvIGRvIHRoZSBtYXRoPw0KPj4gRnJvbSBteSBwZXJzb25h bCBleHBlcmllbmNlIHdvcmtpbmcgd2l0aCB0aW55IG1pY3JvY29udHJvbGxlcnMgSSB3b3VsZA0K Pj4gZ3Vlc3MgdGhhdCB0aGVyZSBpcyBOT1QgYSB0eXBvIGluIHRob3NlIG51bWJlcnMgYW5kIGl0 IHJlYWxseSBkb2VzIHRha2UNCj4+IDMgbWludXRlcyB0byBjb21wdXRlIGFuIFJTQSBvcGVyYXRp b24uICBJJ3ZlIGhhZCBzaW1pbGFyIChhbHRob3VnaA0KPj4gc29tZXdoYXQgYmV0dGVyKSByZXN1 bHRzIHdpdGggRUNDIG9uIHNpbWlsYXIgcGxhdGZvcm1zICgxNjYtYml0IEVDQyB3YXMNCj4+IHRh a2luZyBhcm91bmQgMzBzKS4gIE5vdGUgdGhhdCB0aGlzIGlzIGNvbXB1dGF0aW9uIGluIHNvZnR3 YXJlLiAgQQ0KPj4gaGFyZHdhcmUgaW1wbGVtZW50YXRpb24gd291bGQgY2VydGFpbmx5IGJlIGZh c3RlciwgYnV0IHRoZW4geW91IGFjdHVhbGx5DQo+PiBuZWVkIHRvIGltcGxlbWVudCB0aGUgaGFy ZHdhcmUuDQo+IFJlZ2FyZGluZyB0aGUgcGVyZm9ybWFuY2Ugb2YgMTYwLWJpdCBFQ0RTQSBvbiBv dXIgOC1iaXQgcGxhdGZvcm0uIFdlIGV4cGVyaW1lbnRlZCB3aXRoIGEgY291cGxlIG9mIGRpZmZl cmVudCBsaWJyYXJpZXMgYW5kIGZvdW5kIHRoYXQgdGhlIHNpZ25hdHVyZSBvcGVyYXRpb24gdG9v ayBhbnl3aGVyZSBiZXR3ZWVuIDgwMCBtcyAtIDIwMDAgbXMuIFRoZSBleGFjdCBudW1iZXJzIGNh biBiZSBmb3VuZCBpbiBUYWJsZXMgMiwzLDQsNSBhbmQgNiBvZiB0aGUgZHJhZnQ6IGh0dHBzOi8v dG9vbHMuaWV0Zi5vcmcvaHRtbC9kcmFmdC1pZXRmLWx3aWctY3J5cHRvLXNlbnNvcnMtMDEuIFBl cmhhcHMgeW91IGNvdWxkIHRyeSBzb21lIG9mIHRob3NlIGxpYnJhcmllcyBvbiB5b3VyIHBsYXRm b3JtIGFuZCBzZWUgaWYgeW91IGdldCBiZXR0ZXIgcGVyZm9ybWFuY2UgcmVzdWx0cyBvbiB5b3Vy IGNob3NlbiBwbGF0Zm9ybS4NCj4gDQo+IEFueSBvdGhlciBjb21tZW50cyBvbiB0aGUgZHJhZnQg YXJlIGFsc28gd2VsY29tZS4NCj4gDQo+IFRoYW5rcw0KPiBNb2hpdA0KPj4gDQo+Pj4gKEFuZCBi eSB0aGUgd2F5IC0gdXNpbmcgIjMiIGFzIHRoZSBSU0EgZXhwb25lbnQgaXMganVzdCB3cm9uZyku DQo+PiBJdCdzIGRvbmUgZnJlcXVlbnRseSBpbiAibG9wc2lkZWQiIGNvbnN0cmFpbmVkIGVudmly b25tZW50cyBpbiBvcmRlciB0bw0KPj4gbGltaXQgdGhlIGNvbXB1dGF0aW9uIHJlcXVpcmVkIGJ5 IHRoZSBtb3JlLWNvbnN0cmFpbmVkIGRldmljZS4NCj4+IA0KPj4+IFRhYmxlIDEgZG9lc24ndCBh Y3R1YWxseSBpbmRpY2F0ZSB3aGV0aGVyIHRoaXMgaXMgYSBzaWduaW5nIG9wZXJhdGlvbg0KPj4+ IG9yIGEgdmVyaWZpY2F0aW9uIG9wZXJhdGlvbiwgb3Igd2hldGhlciBvciBub3QgdGhlIHN1bW1h cnkgZnVuY3Rpb24NCj4+PiAoU0hBMSBvciBTSEEyNTYpIGlzIGluY2x1ZGVkLg0KPj4+IA0KPj4+ IElmIFRhYmxlIDIgYW5kIHRhYmxlIDMgaGF2ZSB0aGUgc2FtZSBtaXN0YWtlcyBpbiB0aW1lIGFi YnJldmlhdGlvbg0KPj4+IChhbmQgSSdtIG5vdCBzdXJlIHdoeSB0aGV5IHdvdWxkbid0KSwgeW91 J3JlIHNheWluZyB0aGF0IHlvdSBjYW4gZG8gYW4NCj4+PiBFQ0RTQSBmdW5jdGlvbiBpbiAyLTYg bWlsbGlzZWNvbmRzLiAgIFdoaWNoIG1vcmUgdGhhbiBtZWV0cyB0aGUNCj4+PiByZXF1aXJlbWVu dHMuDQo+PiBJIGRvbid0IHRoaW5rIGl0J3MgYSBtaXN0YWtlLg0KPj4gDQo+Pj4gX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18NCj4+PiBBY2UgbWFpbGluZyBs aXN0DQo+Pj4gQWNlQGlldGYub3JnDQo+Pj4gaHR0cHM6Ly93d3cuaWV0Zi5vcmcvbWFpbG1hbi9s aXN0aW5mby9hY2UNCj4+IC1kZXJlaw0KPj4gDQo+IA0KPiBfX19fX19fX19fX19fX19fX19fX19f X19fX19fX19fX19fX19fX19fX19fX19fXw0KPiBBY2UgbWFpbGluZyBsaXN0DQo+IEFjZUBpZXRm Lm9yZw0KPiBodHRwczovL3d3dy5pZXRmLm9yZy9tYWlsbWFuL2xpc3RpbmZvL2FjZQ0KDQo= From nobody Fri Feb 10 11:48:29 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 34F4D1295A2 for ; Fri, 10 Feb 2017 11:48:28 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2 X-Spam-Level: X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ihtfp.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SQSaAeSqIAoU for ; Fri, 10 Feb 2017 11:48:26 -0800 (PST) Received: from mail2.ihtfp.org (mail2.ihtfp.org [IPv6:2001:470:e448:1::3a11]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9993F129540 for ; Fri, 10 Feb 2017 11:48:26 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id 8F6CFE2044; Fri, 10 Feb 2017 14:48:25 -0500 (EST) Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 23538-10; Fri, 10 Feb 2017 14:48:24 -0500 (EST) Received: from securerf.ihtfp.org (unknown [IPv6:2001:470:e448:2:ea2a:eaff:fe7d:235]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "mocana.ihtfp.org", Issuer "IHTFP Consulting Certification Authority" (verified OK)) by mail2.ihtfp.org (Postfix) with ESMTPS id 0889EE2039; Fri, 10 Feb 2017 14:48:24 -0500 (EST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ihtfp.com; s=default; t=1486756104; bh=zerrGqs50A1OL9DuqQm3n9f5CMJ9Z0P0mDUzvtkK0+s=; h=From:To:Cc:Subject:References:Date:In-Reply-To; b=OGKngj4MZh90S/FtrDyWevtIR49VGhIGkBHloLekwW5o2LLnIakGUAPwCjMGVcM/5 XdJ82sNTosiG0KrElFgs/1cGi+iQd7mZZah/+JOihf5OxtM4koAy52y336CZA9noYs 9lvjjAVgOMxobohsi7sC2WJ2vMnuf/qcR+PHmUkQ= Received: (from warlord@localhost) by securerf.ihtfp.org (8.15.2/8.14.8/Submit) id v1AJmM2x004197; Fri, 10 Feb 2017 14:48:22 -0500 From: Derek Atkins To: Mohit Sethi References: <3c4e0f21-e2ad-85af-4761-e158e7fc45e8@comcast.net> <3fbffd36-f846-3f21-74b8-811e54715847@ericsson.com> <1fd13717-96d6-a7d3-6fec-86ff428967bc@comcast.net> <0e8f7861-669b-b563-c4b1-fe83cef3a440@ericsson.com> Date: Fri, 10 Feb 2017 14:48:22 -0500 In-Reply-To: <0e8f7861-669b-b563-c4b1-fe83cef3a440@ericsson.com> (Mohit Sethi's message of "Fri, 10 Feb 2017 10:38:49 +0200") Message-ID: User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux) MIME-Version: 1.0 Content-Type: text/plain X-Virus-Scanned: Maia Mailguard 1.0.2a Archived-At: Cc: Michael StJohns , "ace@ietf.org" Subject: Re: [Ace] Asymmetric signature performance X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2017 19:48:28 -0000 Hi, Mohit Sethi writes: > Regarding the performance of 160-bit ECDSA on our 8-bit platform. We > experimented with a couple of different libraries and found that the > signature operation took anywhere between 800 ms - 2000 ms. The exact > numbers can be found in Tables 2,3,4,5 and 6 of the draft: > https://tools.ietf.org/html/draft-ietf-lwig-crypto-sensors-01. Perhaps > you could try some of those libraries on your platform and see if you > get better performance results on your chosen platform. We've been testing performance of signature validation, not signature creation, since we believe that is the more common operation. > Any other comments on the draft are also welcome. -derek -- Derek Atkins 617-623-3745 derek@ihtfp.com www.ihtfp.com Computer and Internet Security Consultant From nobody Fri Feb 10 13:54:21 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 12DF2129CA2 for ; Fri, 10 Feb 2017 13:54:19 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.001 X-Spam-Level: X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=augustcellars.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OsG5XzQ3KnnH for ; Fri, 10 Feb 2017 13:54:15 -0800 (PST) Received: from mail4.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8BC00129C74 for ; Fri, 10 Feb 2017 13:54:14 -0800 (PST) Content-Type: multipart/alternative; boundary="----=_NextPart_000_0D78_01D283A5.255B7940" Content-Language: en-us DKIM-Signature: v=1; a=rsa-sha256; d=augustcellars.com; s=winery; c=simple/simple; t=1486763648; h=from:subject:to:date:message-id; bh=/nqAkb8UX8yxgQdH0k05tDEUfKPtVDkmn8NuMPvQSRM=; b=jywMdITwNcc0F7KBqF6EfNUClK7AJB+4WQoZvCO/yLxQ9WgfUAI2I4LEMo7QUP8/e6b03l6uKzM 4fcsgmIbdnNwMuHDez/529Y1qqh06qMcNFsCgyYscUXjm2/WMM6QwenjK9ZIXjzjt+Xq5W9jAhBUj oboB3IdtPGZdpufod2NFIeUIvDyPFAai5Q6f0vPRDoJIsxkXpB7jTJfLyljIhjxhIsrwCrwNe6AiH ZBU8/ZL9xapF+5/5pFcxH5zVwzFu+Hyq8nvPblmtU6Z64KVI70QjXa3or9o2BAnReHBDUUM6oGcPH 9mqTt8dPLq+JVtI9EzmjcCpudy3c59hZc8IQ== Received: from mail2.augustcellars.com (192.168.1.201) by mail4.augustcellars.com (192.168.1.153) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Fri, 10 Feb 2017 13:54:07 -0800 Received: from hebrews (192.168.0.98) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Fri, 10 Feb 2017 13:51:57 -0800 From: Jim Schaad To: 'Somaraju Abhinav' , References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> , <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> , <0a8001d281b7$ec518750$c4f495f0$@augustcellars.com> In-Reply-To: Date: Fri, 10 Feb 2017 13:54:03 -0800 Message-ID: <0d7701d283e8$337bfa20$9a73ee60$@augustcellars.com> MIME-Version: 1.0 X-Mailer: Microsoft Outlook 16.0 Thread-Index: AQDlYgNaFJuUoYTAmdgrcl0KzneQLAH92LGxAt1tul8CN9x3JwH017oFAUKEdHii6qf5wA== X-Originating-IP: [192.168.0.98] Archived-At: Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 10 Feb 2017 21:54:19 -0000 ------=_NextPart_000_0D78_01D283A5.255B7940 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit See inline From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju Abhinav Sent: Thursday, February 9, 2017 2:47 AM To: Jim Schaad ; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast Comment inline From: Somaraju Abhinav [mailto:abhinav.somaraju@tridonic.com] Sent: Monday, February 6, 2017 12:01 PM To: Jim Schaad >; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' > Subject: Re: [Ace] draft-somaraju-ace-multicast Jim, All, please see a proposal for the Applicability statement that can be used as a starting point for the Webex. Abhinav [JLS] Did you actually change anything from the current document. At first glance it looks like a cut and paste with absolutely no response to any of the issues that have been raised on the list. [AS] We have changes from the current document. I have highlighted in red below the changes. 5.1 Applicability statement [JLS] This should have a description of the criteria which should be used to determine if any of the solutions here are needed. Without this information, it seems that the solution could be applied to anything. Is this really just a lighting solution or is it a more general solution? [AS] We are mainly interested in the lighting application. The only other field I am aware of is blinds but I do not know enough about their requirements. It will be interesting to hear from others if they have applications where this is interesting. This document describes two architectures based on symmetric group keys in Section 3 and asymmetric keys in Section 4. [JLS] Based on the mails we have exchanged; this statement is either wrong or insufficiently qualified. You have stated that even the messages in section 4 need to be encrypted and thus might have a group key. [AS] Fair point. This is the current status. Will have to fix this part. The symmetric key solution is based on a group key that is shared between all group members including senders and receivers. As all members of the group posses the same key, it is only possible to authenticate group membership for the source of a message. In particular, it is not possible to authenticate the unique source of a message and consequently it is not possible to authorize a single node to control a group. This implies in particular that any hacked receiver in a group could then be used to control all the receivers in the group. Moreover, because the group key is shared across multiple nodes, it may be easier for an attacker to determine the group key by attacking any member of the group (note that this group key is dynamically generated and is usually stored in volatile memory which offers some additional protection). The probability of a stolen key increases with the number of nodes that are in possession of the key. Moreover, subsequent to such an attack, it is also difficult to determine which of the group members was compromised and this makes it difficult to return the system to normal operation after an attack. [JLS] I have no idea why storing a key in volatile memory would offer additional protections. [AS] This prevents the case of removing a device from the physical location and figuring out the group key. Not sure if it helps too much. We can remove it if the group consensus is that it does not help. [JLS] I have my doubts about this helping much for a lot of devices. Starting with those which are not on an external power supply, for instance my phone. Does this keep it in volatile memory or run the protocol to get the group key each time it needs it? This just does not seem to be a reasonable answer. [JLS] Losing power is going to lead to potentially very long delays at power and missed processing of messages if every recipient needs to individually generate a new dynamic key and distribute it, not to mention the potential problems with the question of who has good randomness for the generation of new keys. [AS] Agree. See comment above. We can remove it if the group consensus is that it does not help. [JLS] Which group members are/were compromised. You don't know that it has gone away. [JLS] This text does not address the questions of size and homogeneity of groups. One of the issues that has been brought up is about using the same key for multiple types of devices such as lights and doors. [AS] The specification does not allow the same key to be given out for multiple types of devices. All tokens are linked to a scope and an application group. You can not use the same key for two different applications. But you make a good point. We can add this to the applicability statement. [JLS] I do not remember ever seeing this. It is not part of the definition of an application group. Where is it? The asymmetric key solution distinguishes between a sender in the group and the receivers. In particular, the sender is in possession of a private key and the receivers are in possession of the corresponding public key. This allows the unique source of any group message to be authenticated. Moreover, an attacker cannot compromise the system by breaking into any of the receiving nodes. However, for constrained devices, the asymmetric key solution comes at a processing cost with cryptographic computations taking rather long. [JLS] The last sentence does not belong here. The term "rather long" is extremely vague and is even worse than the term "low-latency" in terms of what has been defined. [AS] Will discuss this point during the call today. [JLS] Should also know that the sender that was compromised is immediately known and can be dealt with. [AS] Okay. Will add this point. Therefore, it is recommended that whenever possible, the architecture with source authentication SHOULD be used to secure all multicast communication. However, in less sensitive applications where low-latency group communication is important (e.g. controlling luminaires in non-emergency applications), the architecture without source authentication MAY be used. In sensitive applications such as health and safety, building security and emergency applications the symmetric key based solution SHOULD not be used. [JLS] Personally, I would not know how to test this, so I don't believe that RFC 2119 language is appropriate. [AS] I agree that this is not testable. But I not sure how we should proceed here. Any suggestions would be great. One of the big objections has been "what if this solution is used for something else" and that guidance should be provided as to where this specification should be used and more importantly not used. [JLS] Part of this is going to be the question of if you believe that case matters, if it does then changing SHOULD to should is fine. I note that you do not have a reference to 2119 in the document currently so I guess in that respect it is academic. If you believe that case matters, then you can play games with English do things like use 'ought' rather than 'should'. [JLS] Why should emergency applications be different? Does this mean that all devices need to implement both solutions and need to figure out which of the solutions should be used at any given time? What defines a sensitive application? The ability to monitor a sensor even if the state of the lights is not? [AS] See comment above. [JLS] which see above are you referring to. It is not obvious to me. When using the symmetric key solution two mitigating factors could improve system security. It is possible to achieve source authentication of messages at lower layers by requiring unique MAC layer keys for all devices within the network. The symmetric group keys are dynamically generated and therefore SHOULD be stored in volatile memory. [JLS] Given the fact that it is "easy" to impersonate MAC addresses I am not sure how this will mitigate the problem. This would be killed by either MAC impersonation or having a message re-transmitted by a proxy agent. [AS] This was an idea for Eliot Leer. The idea is to have pairwise MAC layer keys and this has nothing to do with MAC addresses. It is to do with traceability of messages after an attack is detected so that the source of the multicast message can be determined. Maybe Eliot can comment more about this. [JLS] Ok - How does this help? Since I assume that you are not planning to make this a pairwise MAC key, then it just means that I have to steal one more key from the device as well. Oh look, the device has all of the MAC keys as well as the group key so it is not a real problem. [JLS] As stated above, I am not sure how keeping keys in volatile memory will be a mitigating factor. The only think that I see is that I cannot physically steal the device and work on it later rather than having to do it "in place". [AS] Yes, this is about physically stealing devices not helping. _____ From: Jim Schaad > Sent: Friday, February 3, 2017 7:02:42 PM To: Somaraju Abhinav; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' Subject: RE: [Ace] draft-somaraju-ace-multicast See comments inline From: Ace [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju Abhinav Sent: 02 February 2017 03:48 To: Jim Schaad >; draft-somaraju-ace-multicast@tools.ietf.org Cc: 'ace' > Subject: Re: [Ace] draft-somaraju-ace-multicast Hi Jim, thank you for the review and I apologise for the delayed response - I was on sick leave due to a surgery. Please see comments inline from the authors. Why restriction on reading messages? It is not like an external observer is not going to be able to see the lights go on or off. [AS] There are several situations where lights are not visible but (multicast) network data is accessible. Moreover, sensors (e.g. presence detectors) are continuously talking to actuators and controllers without necessarily having a visible effect on the lights. For several customers privacy is a very important concern and is almost a given. The statement "anybody can listen to the traffic and tell when sensors detect presence in a building without even being in the building" is a very difficult sell. Having said that, it is true that simply encrypting the multicast traffic at the application layer is only a prerequisite to provide the privacy needed and additional work is required (e.g. generating random messages at different times). In that sense the symmetric solution is probably not much better than the asymmetric solution. But the demand for privacy from customers is very clear and the perception among them is that unencrypted data implies poor security. [JLS] I am sensing a problem here. You have stated that there is a requirement that encryption is a requirement that people are going to say must be me. However, below you have stated that if authentication is a requirement then encryption suddenly becomes a non-requirement? You appear to be stating that there are circumstances where it is fine not to have the data encrypted if one needs to know where it came from. Consider the following case I have a sensor in a room. When the sensor sees movement, it broadcasts a lights one command. The command is picked up by both the lightbulbs and by the security system. The security system must know which sensor provided the command and therefore no encryption is going be needed here? That just seems wrong. Additionally, the situation where things are "continuously" talking would seem to be a good place where one would want to install a controller and not have the sensor directly talking to the actuator. You don't want to flood the actuators with trying to constantly turn on the lights. Also the use of actuators in this sense makes one think that this is a solution for things other than lighting systems which is what people are complaining about. The solution in section 4 does not seem to meet the following requirement "Only authorized members of the application group must be able to read and process messages." [AS] You are right, we cannot satisfy the privacy requirement in Section 4. We could extend the current solution to include a group wide encryption key to meet this requirement. However, this will add additional latency to the asymmetric solution. This document needs to have a solution for dealing with nonce space allocation for the cases where more than one sender is going be able to use the same key. This is going to be part of the problems with replay detection as well as security considerations. [AS] Okay. Will add some text in the next version of the draft for better clarification. The idea as written in 4.3 (Nonce value) is to use the Client ID along with the sender's sequence number to create the complete nonce for replay and CCM processing. Should the algorithms be using high water detection of sequence numbers rather than the case of not yet used? Or is that an application specific type thing? [SK] This is tricky since it can create all kind of new issues. One way to handle if the sequence number of a sender is about to roll over is that the sender requests a new key issued for the group by the KDC. Tricky part is if there are multiple senders who are not reaching the roll over of their sequence number then have to be forced to use a new key or there needs to be some overlap between the old key and new key before every sender in the group starts using the new key. [JLS] Lots of spinning in graves from the idea of having a sequence number roll over given the harsh requirements that a nonce (built from the sequence number) must never be re-used twice for many of the algorithms that are going to be used here. I do not think that the current security requirements is sufficiently strident to reflect both the threat of breakage, cross-breakage and restrictions on where it should be used to pass muster. [AS] I thing this will be the main discussion item in the webex. We will make a proposal for the security guidelines section after the interim webex. [JLS] A proposal before the call is better because then we have a starting point for discussions as well as allowing people who will not make the call be able to have some initial input on where discussions points should be directed. _______________________________________________ Ace mailing list Ace@ietf.org https://www.ietf.org/mailman/listinfo/ace ________________________________________________________ The contents of this e-mail and any attachments are confidential to the intended recipient. They may not be disclosed to or used by or copied in any way by anyone other than the intended recipient. If this e-mail is received in error, please immediately notify the sender and delete the e-mail and attached documents. Please note that neither the sender nor the sender's company accept any responsibility for viruses and it is your responsibility to scan or otherwise check this e-mail and any attachments. ________________________________________________________ The contents of this e-mail and any attachments are confidential to the intended recipient. They may not be disclosed to or used by or copied in any way by anyone other than the intended recipient. If this e-mail is received in error, please immediately notify the sender and delete the e-mail and attached documents. Please note that neither the sender nor the sender's company accept any responsibility for viruses and it is your responsibility to scan or otherwise check this e-mail and any attachments. ________________________________________________________ The contents of this e-mail and any attachments are confidential to the intended recipient. They may not be disclosed to or used by or copied in any way by anyone other than the intended recipient. If this e-mail is received in error, please immediately notify the sender and delete the e-mail and attached documents. Please note that neither the sender nor the sender's company accept any responsibility for viruses and it is your responsibility to scan or otherwise check this e-mail and any attachments. ------=_NextPart_000_0D78_01D283A5.255B7940 Content-Type: text/html; charset="us-ascii" Content-Transfer-Encoding: quoted-printable

See inline

 

From:<= /b> Ace = [mailto:ace-bounces@ietf.org] On Behalf Of Somaraju = Abhinav
Sent: Thursday, February 9, 2017 2:47 AM
To: = Jim Schaad <ietf@augustcellars.com>; = draft-somaraju-ace-multicast@tools.ietf.org
Cc: 'ace' = <ace@ietf.org>
Subject: Re: [Ace] = draft-somaraju-ace-multicast

 

Comment = inline

&= nbsp;

F= rom: = Somaraju Abhinav [mailto:abhinav.somaraju@tri= donic.com]
Sent: Monday, February 6, 2017 12:01 = PM
To: Jim Schaad <ietf@augustcellars.com>; = draft-somaraj= u-ace-multicast@tools.ietf.org
Cc: 'ace' <ace@ietf.org>
Subject: Re: = [Ace] draft-somaraju-ace-multicast

 

Jim, = All,

 <= /span>

please see a = proposal for the Applicability statement that can be used as a starting = point for the Webex.

 <= /span>

Abhinav=

&= nbsp;=

[JLS] Did you actually change anything from the current document.  = At first glance it looks like a cut and paste with absolutely no = response to any of the issues that have been raised on the = list.=

[AS] We have changes from the current document. I have highlighted in = red below the changes.=

 <= /span>

5.1 Applicability = statement

&= nbsp;=

[JLS] This should have a description of the criteria which should be = used to determine if any of the solutions here are needed.  Without = this information, it seems that the solution could be applied to = anything.  Is this really just a lighting solution or is it a more = general solution?=

[AS] We are = mainly interested in the lighting application. The only other field I am = aware of is blinds but I do not know enough about their requirements. It = will be interesting to hear from others if they have applications where = this is interesting. 

 =

T= his document describes two architectures based on symmetric group keys = in Section 3 and asymmetric keys in Section 4. =

[JLS] Based on the mails we have exchanged; this statement is either = wrong or insufficiently qualified.  You have stated that even the = messages in section 4 need to be encrypted and thus might have a group = key.=

[AS] Fair point. This is the current status. Will have to fix this = part.=

 <= /span>

T= he symmetric key solution is based on a group key that is shared between = all group members including senders and receivers.  As all members = of the group posses the same key, it is only possible to   = authenticate group membership for the source of a message. = In   particular, it is not possible to authenticate the unique = source of a   message and consequently it is not possible to = authorize a single node to control a group. Thi= s implies in particular that any hacked receiver in a group could then = be used to control all the receivers in the group. = =

 <= /span>

M= oreover, because the group key is shared across multiple nodes, it = may be easier for an attacker to determine the group key by attacking = any member of the group (note that this group key is dynamically = generated and is usually stored in volatile memory which offers some = additional protection). The= probability of a stolen key increases with the number of nodes that are = in possession of the key. = Moreover, subsequent to such an attack, it is also difficult to = determine which of the group members was compromised and this makes it = difficult to return the system to normal operation after an = attack.   =

[JLS] I have no idea why storing a key in volatile memory would offer = additional protections.=

[AS] This prevents the case of removing a device from the physical = location and figuring out the group key. Not sure if it helps too much. = We can remove it if the group consensus is that it does not = help. <= o:p>

[JLS] I have my doubts about this helping much for a lot of = devices.  Starting with those which are not on an external power = supply, for instance my phone.  Does this keep it in volatile = memory or run the protocol to get the group key each time it needs = it?  This just does not seem to be a reasonable = answer.

 

[JLS] Losing power is going to lead to potentially very long delays at = power and missed processing of messages if every recipient needs to = individually generate a new dynamic key and distribute it, not to = mention the potential problems with the question of who has good = randomness for the generation of new keys.=

[AS] Agree. See = comment above. We can remove it if the group consensus is that it does not = help.  =

 

[JLS] Which group members are/were compromised.  You don’t = know that it has gone away.=

[JLS] This text does not address the questions of size and homogeneity = of groups.  One of the issues that has been brought up is about = using the same key for multiple types of devices such as lights and = doors.=

[AS] The specification does not allow the same key to be given out for = multiple types of devices. All tokens are linked to a scope and an = application group. You can not use the same key for two different = applications. But you make a good point. We can add this to the = applicability statement.  <= o:p>

[JLS] I do not remember ever seeing this.  It is not part of the = definition of an application group.  Where is = it?

 <= /span>

T= he asymmetric key solution distinguishes between a sender in the group = and the receivers. In particular, the sender is in possession of a = private key and the receivers are in possession of = the corresponding public key.  This allows the unique source = of any group message to be authenticated. Moreover, an attacker = cannot compromise   the system by breaking into any of the = receiving nodes. However, for constrained devices, the asymmetric key = solution comes at a processing cost with cryptographic computations = taking rather long.   =

[JLS] The last sentence does not belong here.  The term = “rather long” is extremely vague and is even worse than the = term “low-latency” in terms of what has been = defined.=

[AS] Will = discuss this point during the call today.=

[JLS] Should also know that the sender that was compromised is = immediately known and can be dealt with.=

[AS] Okay. Will = add this point. =

 <= /span>

T= herefore, it is recommended that whe= never possible,= the architecture with source authentication SHOULD be used to secure = all multicast communication. However, in less sensitive applications = whe= re low-latency group communication is important = (e.g. controlling luminaires in non-emergency applications), = the   architecture without source authentication MAY be used. = In = sensitive applications such as health and safety, building security and = emergency applications the symmetric key based solution SHOULD not = be used. = =

[JLS] Personally, I would not know how to test this, so I don’t = believe that RFC 2119 language is appropriate.=

[AS] I agree = that this is not testable. But I not sure how we should proceed here. = Any suggestions would be great. One of the big objections has been = "what if this solution is used for something else" and that = guidance should be provided as to where this specification should be = used and more importantly not used.=

[JLS] Part of this is going to be the question of if you believe that = case matters, if it does then changing SHOULD to should is fine.  I = note that you do not have a reference to 2119 in the document currently = so I guess in that respect it is academic.  If you believe that = case matters, then you can play games with English do things like use = ‘ought’ rather than = ‘should’.

 

[JLS] Why should emergency applications be different?  Does this = mean that all devices need to implement both solutions and need to = figure out which of the solutions should be used at any given = time?  What defines a sensitive application?  The ability to = monitor a sensor even if the state of the lights is not?=

[AS] See comment above. 

[JLS] which see above are you referring to.  It is not obvious to = me.

 <= /span>

W= hen using the symmetric key solution two mitigating factors could = improve system security. It is possible to achieve source authentication = of messages at lower layers by requiring unique MAC layer keys for = all   devices within the network. The symmetric group keys are = dynamically generated and therefore SHOULD be stored in volatile = memory.=

[JLS] Given the fact that it is “easy” to impersonate MAC = addresses I am not sure how this will mitigate the problem.  This = would be killed by either MAC impersonation or having a message = re-transmitted by a proxy agent.=

[AS] This was an idea for Eliot Leer. The idea is to have pairwise MAC = layer keys and this has nothing to do with MAC addresses. It is to do = with traceability of messages after an attack is detected so that = the source of the multicast message can be determined. Maybe Eliot can = comment more about this. 

[JLS] Ok – How does this help?  Since I assume that you are = not planning to make this a pairwise MAC key, then it just means that I = have to steal one more key from the device as well.  Oh look, the = device has all of the MAC keys as well as the group key so it is not a = real problem.

 

[JLS] As stated above, I am not sure how keeping keys in volatile = memory will be a mitigating factor.  The only think that I see is = that I cannot physically steal the device and work on it later rather = than having to do it “in place”.=

[AS] Yes, this is about physically = stealing devices not helping. 

F= rom: = Jim Schaad <ietf@augustcellars.com>
= Sent: Friday, February 3, 2017 7:02:42 PM
To: Somaraju = Abhinav; draft-somaraj= u-ace-multicast@tools.ietf.org
Cc: = 'ace'
Subject: RE: [Ace] = draft-somaraju-ace-multicast =

 

S= ee comments inline

&= nbsp;

&= nbsp;

F= rom: = Ace [mailto:ace-bounces@ietf.org] = On Behalf Of Somaraju Abhinav
Sent: 02 February 2017 = 03:48
To: Jim Schaad <ietf@augustcellars.com>; = draft-somaraj= u-ace-multicast@tools.ietf.org
Cc: 'ace' <ace@ietf.org>
Subject: Re: = [Ace] draft-somaraju-ace-multicast

 

H= i Jim,=

t= hank you for the review and I apologise for the delayed response - I was = on sick leave due to a surgery. Please see comments inline from the = authors. =

 <= /span>

W= hy restriction on reading messages?  It is not like an external = observer is<= br>n= ot going to be able to see the lights go on or off.<= br>[AS] There are several situations where lights are not visible but = (multicast) network data is accessible. Moreover, sensors (e.g. presence = detectors) are continuously talking to actuators and controllers = without necessarily having a visible effect on the lights. For several = customers privacy is a very important concern and is almost a = given. The statement "anybody can listen to the traffic and = tell when sensors detect presence in a building without even being = in the building" is a very difficult sell. Having said that, it is = true that simply encrypting the multicast traffic at the application = layer is only a prerequisite to provide the privacy needed and = additional work is required (e.g. generating random messages at = different times). In that sense the symmetric solution is probably not = much better than the asymmetric solution. But the demand for = privacy from customers is very clear and the perception among them = is that unencrypted data implies poor security.

[JLS] I am sensing a problem here.  You have stated that there is = a requirement that encryption is a requirement that people are going to = say must be me.  However, below you have stated that if = authentication is a requirement then encryption suddenly becomes a = non-requirement?  You appear to be stating that there are = circumstances where it is fine not to have the data encrypted if one = needs to know where it came from.

 

Consider the following case   I have a sensor in a = room.  When the sensor sees movement, it broadcasts a lights one = command.  The command is picked up by both the lightbulbs and by = the security system.  The security system must know which sensor = provided the command and therefore no encryption is going be needed = here?  That just seems wrong.

 

Additionally, the situation where things are “continuously” = talking would seem to be a good place where one would want to install a = controller and not have the sensor directly talking to the = actuator.  You don’t want to flood the actuators with trying = to constantly turn on the lights.  Also the use of actuators in = this sense makes one think that this is a solution for things other than = lighting systems which is what people are complaining about.

 

<= br>T= he solution in section 4 does not seem to meet the following = requirement
&= quot;Only authorized members of the application group must be able to = read and
p= rocess messages."
[AS] You are right, we cannot satisfy the privacy requirement in = Section 4. We could extend the current solution to include a group = wide encryption key to meet this requirement. However, this will add = additional latency to the asymmetric solution.

T= his document needs to have a solution for dealing with nonce = space
a= llocation for the cases where more than one sender is going be able to = use
t= he same key.  This is going to be part of the problems with = replay
d= etection as well as security considerations.

[AS] Okay. Will add some text in the next version of the = draft for better = clarification. The idea as written in 4.3 (Nonce = value) is to use the Client ID along with the sender’s sequence = number to create the complete nonce for replay and CCM = processing.


S= hould the algorithms be using high water detection of sequence = numbers
r= ather than the case of not yet used?  Or is that an application = specific
t= ype thing?

[SK] This is tricky since it can create all kind of new issues. = One way to handle if the sequence number of a sender is about to roll = over is that the sender requests a new key issued for the group by the = KDC. Tricky part is if there are multiple senders who are not reaching = the roll over of their sequence number then have to be forced to use a = new key or there needs to be some overlap between the old key and new = key before every sender in the group starts using the new = key.

[JLS] Lots of spinning in graves from the idea of having a sequence = number roll over given the harsh requirements that a nonce (built from = the sequence number) must never be re-used twice for many of the = algorithms that are going to be used here.

 

I= do not think that the current security requirements is = sufficiently
s= trident to reflect both the threat of breakage, cross-breakage = and
r= estrictions on where it should be used to pass muster.

[AS] I thing this will be the main discussion item in the webex. We = will make a proposal for the security guidelines section after the = interim webex.

[JLS] A proposal before the = call is better because then we have a starting point for discussions as = well as allowing people who will not make the call be able to have some = initial input on where discussions points should be = directed.







_= ______________________________________________
A= ce mailing list
<= a href=3D"mailto:Ace@ietf.org">Ace@ietf.org
h= ttps://www.ietf.org/mailman/listinfo/ace

=

___________________________________________________= _____ The contents of this e-mail and any attachments are confidential = to the intended recipient. They may not be disclosed to or used by or = copied in any way by anyone other than the intended recipient. If this = e-mail is received in error, please immediately notify the sender and = delete the e-mail and attached documents. Please note that neither the = sender nor the sender's company accept any responsibility for viruses = and it is your responsibility to scan or otherwise check this e-mail and = any attachments.

___________________________________________________= _____ The contents of this e-mail and any attachments are confidential = to the intended recipient. They may not be disclosed to or used by or = copied in any way by anyone other than the intended recipient. If this = e-mail is received in error, please immediately notify the sender and = delete the e-mail and attached documents. Please note that neither the = sender nor the sender's company accept any responsibility for viruses = and it is your responsibility to scan or otherwise check this e-mail and = any attachments.

_______________________________________________________= _ The contents of this e-mail and any attachments are confidential to = the intended recipient. They may not be disclosed to or used by or = copied in any way by anyone other than the intended recipient. If this = e-mail is received in error, please immediately notify the sender and = delete the e-mail and attached documents. Please note that neither the = sender nor the sender's company accept any responsibility for viruses = and it is your responsibility to scan or otherwise check this e-mail and = any attachments.

------=_NextPart_000_0D78_01D283A5.255B7940-- From nobody Tue Feb 14 00:40:09 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0438D129546 for ; Tue, 14 Feb 2017 00:40:08 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.911 X-Spam-Level: X-Spam-Status: No, score=-2.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H5=-1, RCVD_IN_MSPIKE_WL=-0.01, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=zgrp.onmicrosoft.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YQDPtAa16Chk for ; Tue, 14 Feb 2017 00:40:04 -0800 (PST) Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on0097.outbound.protection.outlook.com [104.47.0.97]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0A9FE12952F for ; Tue, 14 Feb 2017 00:40:03 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zgrp.onmicrosoft.com; s=selector1-tridonic-com; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=BjPQVVCppZUNRzjV9CHYyP6nGU5CwMwOX6EQWO6ihEM=; b=MpEFXimXXtnLg7TQFRi9LIy4WPRf2CenFmtBHYfaims6LwrRQOz+evgElIRMRdpIpBEmhfd9+vstKLar36rUUZg5EoKwhQFxHJurvQIBj1EbmWjvLN/+dx64Esk2dZK+yVmHL/fhKjyYhPKPCs20ClFvDA2Ku5+rh9WSWR9cAjU= Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com (10.168.57.139) by DB6PR0601MB2200.eurprd06.prod.outlook.com (10.168.57.141) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.888.16; Tue, 14 Feb 2017 08:40:00 +0000 Received: from DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) by DB6PR0601MB2198.eurprd06.prod.outlook.com ([10.168.57.139]) with mapi id 15.01.0888.030; Tue, 14 Feb 2017 08:40:00 +0000 From: Somaraju Abhinav To: Jim Schaad , "draft-somaraju-ace-multicast@tools.ietf.org" Thread-Topic: [Ace] draft-somaraju-ace-multicast Thread-Index: AdJqFjktU/bHwE2RRn6LNdkksHiqaQTMexNgAD/kTgAAmt6R3ABBLmEAAEFcVLYASrVhgACsxLrc Date: Tue, 14 Feb 2017 08:40:00 +0000 Message-ID: References: <013a01d26afb$233ef5f0$69bce1d0$@augustcellars.com> , <056601d27e47$b8c769e0$2a563da0$@augustcellars.com> , <0a8001d281b7$ec518750$c4f495f0$@augustcellars.com> , <0d7701d283e8$337bfa20$9a73ee60$@augustcellars.com> In-Reply-To: <0d7701d283e8$337bfa20$9a73ee60$@augustcellars.com> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: authentication-results: spf=none (sender IP is ) smtp.mailfrom=abhinav.somaraju@tridonic.com; x-originating-ip: [146.108.200.98] x-ms-office365-filtering-correlation-id: 4bf13f3b-2078-46ff-023d-08d454b51034 x-ms-office365-filtering-ht: Tenant x-microsoft-antispam: UriScan:; BCL:0; PCL:0; RULEID:(22001)(48565401081); SRVR:DB6PR0601MB2200; x-microsoft-exchange-diagnostics: 1; DB6PR0601MB2200; 7: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 x-microsoft-antispam-prvs: x-exchange-antispam-report-test: UriScan:(278428928389397)(192374486261705)(100405760836317); x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(8121501046)(5005006)(3002001)(10201501046)(6055026)(6041248)(20161123555025)(20161123558025)(20161123562025)(20161123560025)(20161123564025)(6072148); SRVR:DB6PR0601MB2200; BCL:0; PCL:0; RULEID:; SRVR:DB6PR0601MB2200; x-forefront-prvs: 0218A015FA x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(6009001)(7916002)(39850400002)(39450400003)(39840400002)(39860400002)(39410400002)(199003)(189002)(106356001)(19627405001)(2501003)(105586002)(33656002)(5890100001)(229853002)(81003)(74316002)(7736002)(8676002)(81156014)(8936002)(68736007)(81166006)(53936002)(6246003)(54896002)(9686003)(5660300001)(3660700001)(77096006)(6436002)(6506006)(55016002)(76176999)(66066001)(3280700002)(54356999)(25786008)(50986999)(101416001)(6116002)(97736004)(102836003)(3846002)(99286003)(2906002)(122556002)(4326007)(189998001)(7696004)(92566002)(230783001)(93886004)(2950100002)(2900100001)(6606003)(86362001)(38730400002); DIR:OUT; SFP:1102; SCL:1; SRVR:DB6PR0601MB2200; H:DB6PR0601MB2198.eurprd06.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en; received-spf: None (protection.outlook.com: tridonic.com does not designate permitted sender hosts) spamdiagnosticoutput: 1:99 spamdiagnosticmetadata: NSPM Content-Type: multipart/alternative; boundary="_000_DB6PR0601MB2198B90C505E4F7C603B2D2CFC580DB6PR0601MB2198_" MIME-Version: 1.0 X-OriginatorOrg: tridonic.com X-MS-Exchange-CrossTenant-originalarrivaltime: 14 Feb 2017 08:40:00.2769 (UTC) X-MS-Exchange-CrossTenant-fromentityheader: Hosted X-MS-Exchange-CrossTenant-id: 8b206608-a593-4ace-a4b6-ef1fc83c9169 X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0601MB2200 Archived-At: Cc: 'ace' Subject: Re: [Ace] draft-somaraju-ace-multicast X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Feb 2017 08:40:08 -0000 --_000_DB6PR0601MB2198B90C505E4F7C603B2D2CFC580DB6PR0601MB2198_ Content-Type: text/plain; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable Moreover, because the group key is shared across multiple nodes, it may be = easier for an attacker to determine the group key by attacking any member o= f the group (note that this group key is dynamically generated and is usual= ly stored in volatile memory which offers some additional protection). The = probability of a stolen key increases with the number of nodes that are in = possession of the key. Moreover, subsequent to such an attack, it is also d= ifficult to determine which of the group members was compromised and this m= akes it difficult to return the system to normal operation after an attack. [JLS] I have no idea why storing a key in volatile memory would offer addit= ional protections. [AS] This prevents the case of removing a device from the physical location= and figuring out the group key. Not sure if it helps too much. We can remo= ve it if the group consensus is that it does not help. [JLS] I have my doubts about this helping much for a lot of devices. Start= ing with those which are not on an external power supply, for instance my p= hone. Does this keep it in volatile memory or run the protocol to get the = group key each time it needs it? This just does not seem to be a reasonabl= e answer. [AS] I tend to agree with you. Will discuss this with the authors and mayb= e we can remove this for the next version of the draft. [JLS] Which group members are/were compromised. You don=92t know that it h= as gone away. [JLS] This text does not address the questions of size and homogeneity of g= roups. One of the issues that has been brought up is about using the same = key for multiple types of devices such as lights and doors. [AS] The specification does not allow the same key to be given out for mult= iple types of devices. All tokens are linked to a scope and an application = group. You can not use the same key for two different applications. But you= make a good point. We can add this to the applicability statement. [JLS] I do not remember ever seeing this. It is not part of the definition= of an application group. Where is it? [AS] The key is always provided within the AT-R token. In Section 3.2 and 3= .3 we have the text " 3. Scope: Permissions of the entity holding the toke= n. This includes information about the resources that may be accessed with= the token (e.g., access level) and application layer group IDs for the gro= ups for which the tokens may be used.". I agree that these two sections nee= d a bit more text but we were waiting for the ACE-OAuth and CWT draft to be= further along and reference those drafts about how to specify the scope. Therefore, it is recommended that whenever possible, the architecture with = source authentication SHOULD be used to secure all multicast communication.= However, in less sensitive applications where low-latency group communicat= ion is important (e.g. controlling luminaires in non-emergency applications= ), the architecture without source authentication MAY be used. In sensiti= ve applications such as health and safety, building security and emergency = applications the symmetric key based solution SHOULD not be used. [JLS] Personally, I would not know how to test this, so I don=92t believe t= hat RFC 2119 language is appropriate. [AS] I agree that this is not testable. But I not sure how we should procee= d here. Any suggestions would be great. One of the big objections has been = "what if this solution is used for something else" and that guidance should= be provided as to where this specification should be used and more importa= ntly not used. [JLS] Part of this is going to be the question of if you believe that case = matters, if it does then changing SHOULD to should is fine. I note that yo= u do not have a reference to 2119 in the document currently so I guess in t= hat respect it is academic. If you believe that case matters, then you can= play games with English do things like use =91ought=92 rather than =91shou= ld=92. [AS] Okay. Will try to play English games! [JLS] Why should emergency applications be different? Does this mean that = all devices need to implement both solutions and need to figure out which o= f the solutions should be used at any given time? What defines a sensitive= application? The ability to monitor a sensor even if the state of the lig= hts is not? [AS] See comment above. [JLS] which see above are you referring to. It is not obvious to me. [AS] I was referring to the comments about sensitive applications and the R= FC2119 language. One of the applications that people objected to using grou= p symmetric key is emergency and therefore we mention the symmetric archite= cture should not be used. With regards to implementing both solutions, we d= o need all devices to implement both symmetric and asymmetric crypto suites= . Having said that, I do not think any luminaiers will implement both the a= rchitectures in Sections 3 and 4. Emergency applications generally do not n= eed low latency multicast - usually emergency applications have little to n= o communication - the lights just turn on when loss of power is detected. M= ost of the communication after the lights go on probably use unicast serial= communication. When using the symmetric key solution two mitigating factors could improve = system security. It is possible to achieve source authentication of message= s at lower layers by requiring unique MAC layer keys for all devices with= in the network. The symmetric group keys are dynamically generated and ther= efore SHOULD be stored in volatile memory. [JLS] Given the fact that it is =93easy=94 to impersonate MAC addresses I a= m not sure how this will mitigate the problem. This would be killed by eit= her MAC impersonation or having a message re-transmitted by a proxy agent. [AS] This was an idea for Eliot Leer. The idea is to have pairwise MAC laye= r keys and this has nothing to do with MAC addresses. It is to do with trac= eability of messages after an attack is detected so that the source of the = multicast message can be determined. Maybe Eliot can comment more about thi= s. [JLS] Ok =96 How does this help? Since I assume that you are not planning = to make this a pairwise MAC key, then it just means that I have to steal on= e more key from the device as well. Oh look, the device has all of the MAC= keys as well as the group key so it is not a real problem. [AS] No, Eliot was referring to networks that have pairwise MAC layer keys = and not shared MAC layer keys across the network. ________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please i= mmediately notify the sender and delete the e-mail and attached documents. = Please note that neither the sender nor the sender's company accept any res= ponsibility for viruses and it is your responsibility to scan or otherwise = check this e-mail and any attachments. --_000_DB6PR0601MB2198B90C505E4F7C603B2D2CFC580DB6PR0601MB2198_ Content-Type: text/html; charset="Windows-1252" Content-Transfer-Encoding: quoted-printable

Moreo= ver, because the group key is shared across multiple nodes, it may be = easier for an attacker to determine the group key by attacking any member o= f the group (note that this group key is dynamically generated and is usually stored in volatile memory which offer= s some additional protection). The probability of a stolen key increases with the number of nod= es that are in possession of the key. Moreover, subsequent to such an attack, it is also difficult to determine = which of the group members was compromised and this makes it difficult to r= eturn the system to normal operation after an attack.  

=

[JLS] I have no idea why storing a key in volatile memo= ry would offer additional protections.

[AS] This prevents the case of removing a device from t= he physical location and figuring out the group key. Not sure if it helps t= oo much. We can remove it if the group consensus is that it does not help. 

[JLS] I have my doubts about this helping much for a lo= t of devices.  Starting with those which are not on an external power = supply, for instance my phone.  Does this keep it in volatile memory or run the protocol to get the group key each time it n= eeds it?  This just does not seem to be a reasonable answer.

 [AS] I tend to agree wi= th you. Will discuss this with the authors and maybe we can remove this for= the next version of the draft.

 = ;

[JLS] Which group members are/were compromised.  Y= ou don=92t know that it has gone away.

[JLS] This text does not address the questions of size = and homogeneity of groups.  One of the issues that has been brought up= is about using the same key for multiple types of devices such as lights and doors.

[AS] The specification does not allow the same key to b= e given out for multiple types of devices. All tokens are linked to a scope= and an application group. You can not use the same key for two different applications. But you make a good point. We can= add this to the applicability statement. &nbs= p;

[JLS] I do not remember ever seeing this.  It is n= ot part of the definition of an application group.  Where is it?

[AS] The key is always provided= within the AT-R token. In Section 3.2 and 3.3 we have the text "=  3. &= nbsp;Scope: Permissions of the entity holding the token.  This includes information= about the resources that may be accessed with the token (e.g., access level) and application layer group IDs for the groups f= or which the tokens may be used.". I agree that these two sections nee= d a bit more text but we were waiting for the ACE-OAuth and CWT draft to be further along and reference those drafts abo= ut how to specify the scope. 

=

Therefore, it is recommended that whenever possible, the architectu= re with source authentication SHOULD be used to secure all multicast communication. However, in less sensitive applications where low-latency group communication is important (e.g. controlling luminaires in non-emergency applications), the = ;  architecture without source authentication MAY be used. In sensitive applications such as health and safety, bu= ilding security and emergency applications the symmetric key based sol= ution SHOULD not be used.

[JLS] Personally, I would not know how to test this, so= I don=92t believe that RFC 2119 language is appropriate.

[JLS] Part of this is going to be the question of if yo= u believe that case matters, if it does then changing SHOULD to should is f= ine.  I note that you do not have a reference to 2119 in the document currently so I guess in that respect it is academi= c.  If you believe that case matters, then you can play games with Eng= lish do things like use =91ought=92 rather than =91should=92.

[AS] Okay. Will try to play Eng= lish games!


[JLS] Why should emergency applications be different?&n= bsp; Does this mean that all devices need to implement both solutions and n= eed to figure out which of the solutions should be used at any given time?  What defines a sensitive application?  = The ability to monitor a sensor even if the state of the lights is not?=

[AS] See comment above. 

[JLS] which see above are you referring to.  It is= not obvious to me.

[AS] I was referring to the com= ments about sensitive applications and the RFC2119 language. One of the app= lications that people objected to using group symmetric key is emergency an= d therefore we mention the symmetric architecture should not be used. With regards to implementing both solutio= ns, we do need all devices to implement both symmetric and asymmetric crypt= o suites. Having said that, I do not think any luminaiers will impleme= nt both the architectures in Sections 3 and 4. Emergency applications generally do not need low latency multicas= t - usually emergency applications have little to no communication - the li= ghts just turn on when loss of power is detected. Most of the communication= after the lights go on probably use unicast serial communication.  


When using the symmetric key solution two mitigating fact= ors could improve system security. It is possible to achieve source authent= ication of messages at lower layers by requiring unique MAC layer keys for all   devices within the network. The = symmetric group keys are dynamically generated and therefore SHOULD be= stored in volatile memory.

[JLS] Given the fact that it is =93easy=94 to impersona= te MAC addresses I am not sure how this will mitigate the problem.  Th= is would be killed by either MAC impersonation or having a message re-transmitted by a proxy agent.

[AS] This was an idea for Eliot Leer. The idea is to ha= ve pairwise MAC layer keys and this has nothing to do with MAC addresses. I= t is to do with traceability of messages after an attack is detected so that the source of the multicast message can be d= etermined. Maybe Eliot can comment more about this. 

[JLS] Ok =96 How does this help?  Since I assume t= hat you are not planning to make this a pairwise MAC key, then it just mean= s that I have to steal one more key from the device as well.  Oh look, the device has all of the MAC keys as well as the = group key so it is not a real problem.

[AS] No, Eliot was referring to= networks that have pairwise MAC layer keys and not shared MAC layer keys a= cross the network. 

 

________________________________________________________ The contents of th= is e-mail and any attachments are confidential to the intended recipient. T= hey may not be disclosed to or used by or copied in any way by anyone other= than the intended recipient. If this e-mail is received in error, please immediately notify the sender and= delete the e-mail and attached documents. Please note that neither the sen= der nor the sender's company accept any responsibility for viruses and it i= s your responsibility to scan or otherwise check this e-mail and any attachments. --_000_DB6PR0601MB2198B90C505E4F7C603B2D2CFC580DB6PR0601MB2198_-- From nobody Tue Feb 14 14:36:06 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 15E7E1297C3 for ; Tue, 14 Feb 2017 14:36:05 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.002 X-Spam-Level: X-Spam-Status: No, score=-2.002 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=augustcellars.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id bcj-__csH8fF for ; Tue, 14 Feb 2017 14:36:03 -0800 (PST) Received: from mail4.augustcellars.com (augustcellars.com [50.45.239.150]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B489E129446 for ; Tue, 14 Feb 2017 14:36:03 -0800 (PST) Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Content-Language: en-us DKIM-Signature: v=1; a=rsa-sha256; d=augustcellars.com; s=winery; c=simple/simple; t=1487111759; h=from:subject:to:date:message-id; bh=F3Zh/86Y6nlv1sTa43/KHv9Shlu52O79aW4Wqsw4NpM=; b=Yj46pbC8nVtB7SGmrhSKhNEYk7T9GEgJNQFoBocSBPuvnyxvIx2zWFSZQou8GRm2ClUKM3mw+a6 FnM+EQZQ6szulwLCJaudLYcZvsswpFUPt+aZrE1kNGYYMInalk2pfCkddr7Uw0xKUb6vMCNnpdT5/ PF9z4bYYnMlBNIAIsZBT47yqXtHhPQKrRrrValtLi2RIQWnv5M7Ywx4GJEzESeGkixrSBg3l7K0eq oSPI8cfYIcBgARJ8gPe4wPXysSW3U1ZLe0rhcG3cnM1qwr0HcvP8d2erO2eCsZH4HIb3Mu2Cp50lU PC5W2M3zvoaqlZlwk1i9SXqF1tI3KP6sW5jw== Received: from mail2.augustcellars.com (192.168.1.201) by mail4.augustcellars.com (192.168.1.153) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Tue, 14 Feb 2017 14:35:59 -0800 Received: from hebrews (24.21.96.37) by mail2.augustcellars.com (192.168.0.56) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Tue, 14 Feb 2017 14:33:48 -0800 From: Jim Schaad To: Date: Tue, 14 Feb 2017 14:35:35 -0800 Message-ID: <101001d28712$aaaab140$000013c0$@augustcellars.com> MIME-Version: 1.0 X-Mailer: Microsoft Outlook 16.0 Thread-Index: AdKHAOHAlVRpBTQ7TFqE78wZg7OjLQ== X-Originating-IP: [24.21.96.37] Archived-At: Cc: 'ace' Subject: [Ace] Questions on draft-ietf-ace-oauth-authz X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 14 Feb 2017 22:36:05 -0000 In going through and starting to map out how an implementation would work, I have started getting some questions. 1. What is the difference between scope and audience, and is there an expected way that these values would relate to a CoAP URI? From OAuth, I would have generally expected scope to identify one or more resources to be accessed. However, this document requires that an audience either be explicit or implicit and thus identifying things just by scope would not work. My basic expectation is that the scope and audience would normally be copied into the access token after doing grant evaluation. This means that we are looking at three different entities that need to be able to understand how things fields interact. >From my reading an audience could be anything from a host name to a full URI or even a group name depending on the application being processed. Is this correct? 2. When a cnf is sent as part of a request, are there any plans for the ability to do a POP as part of this being thought about? If not, is the expectation that one would only offer an asymmetric key in a cnf if it had already be provided to the AS? Jim From nobody Wed Feb 15 00:41:34 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0CB1D1294CD for ; Wed, 15 Feb 2017 00:41:33 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.7 X-Spam-Level: X-Spam-Status: No, score=-2.7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=sics.se Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Pbg8AhqkIXG8 for ; Wed, 15 Feb 2017 00:41:30 -0800 (PST) Received: from mail-lf0-x22e.google.com (mail-lf0-x22e.google.com [IPv6:2a00:1450:4010:c07::22e]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6330B128AC9 for ; Wed, 15 Feb 2017 00:41:30 -0800 (PST) Received: by mail-lf0-x22e.google.com with SMTP id n124so77532061lfd.2 for ; Wed, 15 Feb 2017 00:41:30 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sics.se; s=google; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to; bh=zVWtMUsGIVSLxttPYmz8rG4aYAluXVM2Mr5VxEVRc7Q=; b=cJzPz2yxJU17Jp7DfIQPgmxJ17EScFlhTgo2E0mFsQ3hlVV4vJh9wBDkPa/0ljRkjE KRb9hEljI+KGcNpbyYPxvdkDrUfD9xmvT863DxvRIKVtneSRroQLI3PLiCsYH4Jol08N Dkvi3Wy6Xy6iUqPREd2/cpFgU6ZQMioBathiqLR9VO8vAy80OBJFlGtb6xEn3oeIUra5 /ksMaAGRWKmiI7GGNSZO9NMvBTcg4fx4EKPX0uozFo9GVe/lKK3femzB675FBqwUDsaO 9zTVvgWrD0RXJ6J2TQDnLlR6YKDy8h69G4vENLpZ1y0jH4kWj1qtNueBFGHBB8gSVAWy kosA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to; bh=zVWtMUsGIVSLxttPYmz8rG4aYAluXVM2Mr5VxEVRc7Q=; b=gt7PEwsAGyQRlVKLPwhDlEWjCVUDXKgU7AWXfvGXkrkwVhT5SgGjA0ABi7k76DWdtE VJYiDK2O3omIv+tAsSIC9RZ/boZmZsl1hAgkRv6TSN7XE9gItITPm3IHciVHUHYuq4gz 87uCRxYheZfpBnk1Z2eZbI97bMjtuhbliY+ablesfj57EtO3tGyV8eAmNgNBfh+t+ESG CC2HGno4sKPNcYaAtaj+MX3YeLM+/CUIRvOBvd0qQ2t7T5AWcfBschlvze9O/fXLIkSx IpOHaFULsQHMi8vYv2aS+vxTHlC6HynFYJQZP6y4FQuxq7JvRLLCo6t8MR93GqNPw+G1 xh4Q== X-Gm-Message-State: AMke39kd9esFsC3GYlyLTGgLSEzltXtIp8SchViKkfXgLUlZAyhvFRoDY8W4uzHyJ5AhOYXt X-Received: by 10.25.208.20 with SMTP id h20mr11543822lfg.150.1487148088085; Wed, 15 Feb 2017 00:41:28 -0800 (PST) Received: from [192.168.0.166] ([85.235.12.155]) by smtp.gmail.com with ESMTPSA id 9sm762349ljp.45.2017.02.15.00.41.27 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 15 Feb 2017 00:41:27 -0800 (PST) To: ace@ietf.org References: <101001d28712$aaaab140$000013c0$@augustcellars.com> From: Ludwig Seitz Message-ID: <62bf6f54-bd0e-0371-0431-845d49d2c394@sics.se> Date: Wed, 15 Feb 2017 09:41:20 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 In-Reply-To: <101001d28712$aaaab140$000013c0$@augustcellars.com> Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg=sha-256; boundary="------------ms020202050701000908060402" Archived-At: Subject: Re: [Ace] Questions on draft-ietf-ace-oauth-authz X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 15 Feb 2017 08:41:33 -0000 This is a cryptographically signed message in MIME format. --------------ms020202050701000908060402 Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: quoted-printable On 2017-02-14 23:35, Jim Schaad wrote: > In going through and starting to map out how an implementation would wo= rk, I > have started getting some questions. > > 1. What is the difference between scope and audience, and is there an > expected way that these values would relate to a CoAP URI? From OAuth,= I > would have generally expected scope to identify one or more resources t= o be > accessed. However, this document requires that an audience either be > explicit or implicit and thus identifying things just by scope would no= t > work. Scope and audience are (intentionally) defined very vaguely by OAuth 2.0.= The intention is that audience should identify the recipients of the=20 access token. It is originally defined in RFC 7519 section 4.1.3. Scope is "defined" in section 3.3. of RFC 6749. It is used in a variety=20 of ways as nicely demonstrated here: https://www.brandur.org/oauth-scope. I mostly interpret it as identifying a set of resources and actions that = can be performed on these resources, i.e. as a sort of capability list=20 (a bit like LinkedIn uses it). I was thinking of using some variant of the format Carsten suggested=20 here: https://tools.ietf.org/html/draft-bormann-core-ace-aif-03 for=20 scopes, but I've not fully evaluated the pros and cons of that idea. I have no strong opinion on the requirement of having an explicit or=20 implicit audience, I just thought it made sense the way audience and=20 scope were defined (i.e. I got the impression that scope was not=20 intended to cover audience). > > My basic expectation is that the scope and audience would normally be c= opied > into the access token after doing grant evaluation. This means that we= are > looking at three different entities that need to be able to understand = how > things fields interact. Indeed the client and the RS need to know the meaning of the scopes and=20 audiences relevant for them. The AS just needs to know which audiences=20 and scopes it is allowed to grant to a client, it doesn't need to=20 understand the semantics behind those values. > >>From my reading an audience could be anything from a host name to a ful= l URI > or even a group name depending on the application being processed. Is = this > correct? That is also my interpretation. > > 2. When a cnf is sent as part of a request, are there any plans for th= e > ability to do a POP as part of this being thought about? If not, is th= e > expectation that one would only offer an asymmetric key in a cnf if it = had > already be provided to the AS? > The use of cnf in a request by the client (to the /token endpoint) is to = indicate a key, the client whishes to use as proof-of-possession key=20 towards the RS. The AS is expected to use this cnf for the access token. For example: C -----{cnf=3D"myPublicKey" ...}-----> AS <---CWT=3D{cnf=3D"myPublicKey" ...}--- /Ludwig --=20 Ludwig Seitz, PhD Security Lab, RISE ICT/SICS Phone +46(0)70-349 92 51 --------------ms020202050701000908060402 Content-Type: application/pkcs7-signature; name="smime.p7s" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="smime.p7s" Content-Description: S/MIME Cryptographic Signature MIAGCSqGSIb3DQEHAqCAMIACAQExDzANBglghkgBZQMEAgEFADCABgkqhkiG9w0BBwEAAKCC CtQwggTqMIID0qADAgECAhAU4QcxMULaotNy8Yzm2pESMA0GCSqGSIb3DQEBCwUAMHUxCzAJ BgNVBAYTAklMMRYwFAYDVQQKEw1TdGFydENvbSBMdGQuMSkwJwYDVQQLEyBTdGFydENvbSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTEjMCEGA1UEAxMaU3RhcnRDb20gQ2xhc3MgMSBDbGll bnQgQ0EwHhcNMTYwMzE0MDkzNDMyWhcNMTcwMzE0MDkzNDMyWjA4MRcwFQYDVQQDDA5sdWR3 aWdAc2ljcy5zZTEdMBsGCSqGSIb3DQEJARYObHVkd2lnQHNpY3Muc2UwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC9kgmm82Op78D9DXYNJrQW5bUdSxElnOC/CzAK/enHn+uF B/RLo8alI6Ukd35qsAtcje0I3e/RtbkRnkEuhKneH+aDRofy7YaWQO61CjIlcdndTx8FEmXK /swcafYX5PbyzQFGgApwtWFkVXcq3R87CDB3VbkHzTHIBmfwZ4hhDeEyuJoSuWEVWQppfTji /GpVLiDx6s+Zqm3qI5EkjvhQ+jX3tJxXqUf4w1BY6/sBLfvr7TOPGPoAmi6B2UOgyDSfX3c0 +jzlYFLNb6Eqc7uGvaQi7VN39kAJXz9f+qL/wokaNjboK3/JyTG/ikxsWymzO9E0/U9apn2Y z5SVUGSDAgMBAAGjggGxMIIBrTAOBgNVHQ8BAf8EBAMCBLAwHQYDVR0lBBYwFAYIKwYBBQUH AwIGCCsGAQUFBwMEMAkGA1UdEwQCMAAwHQYDVR0OBBYEFN37NX1Db3Xp23cbQI1MpYPUMw84 MB8GA1UdIwQYMBaAFCSBbDlhvkkPj7cbRivJKLUnSG1oMG8GCCsGAQUFBwEBBGMwYTAkBggr BgEFBQcwAYYYaHR0cDovL29jc3Auc3RhcnRzc2wuY29tMDkGCCsGAQUFBzAChi1odHRwOi8v YWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9zY2EuY2xpZW50MS5jcnQwOAYDVR0fBDEwLzAtoCug KYYnaHR0cDovL2NybC5zdGFydHNzbC5jb20vc2NhLWNsaWVudDEuY3JsMBkGA1UdEQQSMBCB Dmx1ZHdpZ0BzaWNzLnNlMCMGA1UdEgQcMBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzBG BgNVHSAEPzA9MDsGCysGAQQBgbU3AQIEMCwwKgYIKwYBBQUHAgEWHmh0dHA6Ly93d3cuc3Rh cnRzc2wuY29tL3BvbGljeTANBgkqhkiG9w0BAQsFAAOCAQEAUy78MN+soYHwIz+6m9mMkzPF KfgIq7sLupWnis7K5U66U9zfKOVDReyfUvPmar7P7Tb9uNNrUlkk3lSISplqU30TMnVbtK5D I0mxdpa1hZxIAa8uWQnAh/oYJJYaMziKxpZgsUjel6/ZnD0z/QsuHo763I1boi2ghe4Knj0f qFO79ErRr9aJJBfQlFVwQ4gRoYtMz18/usC3eqGxFz8a/LCeRMWeZJagGJ/St1WW1HUBmMFd vRFweeUdCvDbzK+WjqbxhXyi7b0sH65lWIjINCBVQ0AvqOwm/aXEWcIQlAIJjr2kEC6c0VY6 V1aP16BAKooEgGGOTrmcDGeteXZRyjCCBeIwggPKoAMCAQICEGunin0K14jWUQr5WeTntOEw DQYJKoZIhvcNAQELBQAwfTELMAkGA1UEBhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4x KzApBgNVBAsTIlNlY3VyZSBEaWdpdGFsIENlcnRpZmljYXRlIFNpZ25pbmcxKTAnBgNVBAMT IFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTE1MTIxNjAxMDAwNVoXDTMw MTIxNjAxMDAwNVowdTELMAkGA1UEBhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKTAn BgNVBAsTIFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MSMwIQYDVQQDExpTdGFy dENvbSBDbGFzcyAxIENsaWVudCBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AL192vfDon2D9luC/dtbX64eG3XAtRmvmCSsu1d52DXsCR58zJQbCtB2/A5uFqNxWacpXGGt TCRk9dEDBlmixEd8QiLkUfvHpJX/xKnmVkS6Iye8wUbYzMsDzgnpazlPg19dnSqfhM+Cevdf a89VLnUztRr2cgmCfyO9Otrh7LJDPG+4D8ZnAqDtVB8MKYJL6QgKyVhhaBc4y3bGWxKyXEtx 7QIZZGxPwSkzK3WIN+VKNdkiwTubW5PIdopmykwvIjLPqbJK7yPwFZYekKE015OsW6FV+s4D IM8UlVS8pkIsoGGJtMuWjLL4tq2hYQuuN0jhrxK1ljz50hH23gA9cbMCAwEAAaOCAWQwggFg MA4GA1UdDwEB/wQEAwIBBjAdBgNVHSUEFjAUBggrBgEFBQcDAgYIKwYBBQUHAwQwEgYDVR0T AQH/BAgwBgEB/wIBADAyBgNVHR8EKzApMCegJaAjhiFodHRwOi8vY3JsLnN0YXJ0c3NsLmNv bS9zZnNjYS5jcmwwZgYIKwYBBQUHAQEEWjBYMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5z dGFydHNzbC5jb20wMAYIKwYBBQUHMAKGJGh0dHA6Ly9haWEuc3RhcnRzc2wuY29tL2NlcnRz L2NhLmNydDAdBgNVHQ4EFgQUJIFsOWG+SQ+PtxtGK8kotSdIbWgwHwYDVR0jBBgwFoAUTgvv GqRAW6UXaYcwyjRoQ9BBrvIwPwYDVR0gBDgwNjA0BgRVHSAAMCwwKgYIKwYBBQUHAgEWHmh0 dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeTANBgkqhkiG9w0BAQsFAAOCAgEAi+P3h+wB i4StDwECW5zhIycjBL008HACblIf26HY0JdOruKbrWDsXUsiI0j/7Crft9S5oxvPiDtVqspB OB/y5uzSns1lZwh7sG96bYBZpcGzGxpFNjDmQbcM3yl3WFIRS4WhNrsOY14V7y2IrUGsvets D+bjyOngCIVeC/GmsmtbuLOzJ606tEc9uRbhjTu/b0x2Fo+/e7UkQvKzNeo7OMhijixaULyI NBfCBJb+e29bLafgu6JqjOUJ9eXXj20p6q/CW+uVrZiSW57+q5an2P2i7hP85jQJcy5j4HzA 0rSiF3YPhKGAWUxKPMAVGgcYoXzWydOvZ3UDsTDTagXpRDIKQLZo02wrlxY6iMFqvlzsemVf 1odhQJmi7Eh5TbxI40kDGcBOBHhwnaOumZhLP+SWJQnjpLpSlUOj95uf1zo9oz9e0NgIJoz/ tdfrBzez76xtDsK0KfUDHt1/q59BvDI7RX6gVr0fQoCyMczNzCTcRXYHY0tq2J0oT+bsb6sH 2b4WVWAiJKnSYaWDjdA70qHX4mq9MIjO/ZskmSY8wtAk24orAc0vwXgYanqNsBX5Yv4sN4Z9 VyrwMdLcusP7HJgRdAGKpkR2I9U4zEsNJQJewM7S4Jalo1DyPrLpL2nTET8ZrSl5Utp1UeGp /2deoprGevfnxWB+vHNQiu85o6MxggPMMIIDyAIBATCBiTB1MQswCQYDVQQGEwJJTDEWMBQG A1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMgU3RhcnRDb20gQ2VydGlmaWNhdGlvbiBB dXRob3JpdHkxIzAhBgNVBAMTGlN0YXJ0Q29tIENsYXNzIDEgQ2xpZW50IENBAhAU4QcxMULa otNy8Yzm2pESMA0GCWCGSAFlAwQCAQUAoIICEzAYBgkqhkiG9w0BCQMxCwYJKoZIhvcNAQcB MBwGCSqGSIb3DQEJBTEPFw0xNzAyMTUwODQxMjBaMC8GCSqGSIb3DQEJBDEiBCBvWn6oTyRV Z7E0s4YMYkzn116D4en8VyyFoc56yNFn1jBsBgkqhkiG9w0BCQ8xXzBdMAsGCWCGSAFlAwQB KjALBglghkgBZQMEAQIwCgYIKoZIhvcNAwcwDgYIKoZIhvcNAwICAgCAMA0GCCqGSIb3DQMC AgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMIGaBgkrBgEEAYI3EAQxgYwwgYkwdTELMAkG A1UEBhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKTAnBgNVBAsTIFN0YXJ0Q29tIENl cnRpZmljYXRpb24gQXV0aG9yaXR5MSMwIQYDVQQDExpTdGFydENvbSBDbGFzcyAxIENsaWVu dCBDQQIQFOEHMTFC2qLTcvGM5tqREjCBnAYLKoZIhvcNAQkQAgsxgYyggYkwdTELMAkGA1UE BhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKTAnBgNVBAsTIFN0YXJ0Q29tIENlcnRp ZmljYXRpb24gQXV0aG9yaXR5MSMwIQYDVQQDExpTdGFydENvbSBDbGFzcyAxIENsaWVudCBD QQIQFOEHMTFC2qLTcvGM5tqREjANBgkqhkiG9w0BAQEFAASCAQCFYqqqFpKiKfzuOzH+KB/t 4d9VPBoJ1agfR26z7WcnTmC3rgSn4jAcRoPvbtGpFCYRuJTO4OY+/rKHsgbRbl+LPzKmD9O3 Qa5Y5XvBPBGzHe8clraxIQlsOekNcqDyyVHvAeOkGwozLUVia9uHIaOid4N2jYB2qfiGC0KD yMyL5UqlfwjGRgFLjGHfft0kw/kT6sZan/+MOK41ZuSSSo5rK3lR44vxU8ke63ZgLmfqDv8t z9dcH6bmkWbrWkvs3jgEdLWMC4pL36ewdm1luXU0AvJKCLvY78VFlnIrqZVa5OwxZpFFpDMb huOG5Kbiu6WQkFD56f0bjKieUw0SFw2yAAAAAAAA --------------ms020202050701000908060402-- From nobody Thu Feb 23 01:22:53 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E01A3129444 for ; Thu, 23 Feb 2017 01:22:51 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.487 X-Spam-Level: X-Spam-Status: No, score=-4.487 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H2=-1.887, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vJwxtInjd8FD for ; Thu, 23 Feb 2017 01:22:50 -0800 (PST) Received: from mout.gmx.net (mout.gmx.net [212.227.15.19]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id C184112956A for ; Thu, 23 Feb 2017 01:22:45 -0800 (PST) Received: from [192.168.91.176] ([195.149.223.239]) by mail.gmx.com (mrgmx003 [212.227.17.190]) with ESMTPSA (Nemesis) id 0M7HGA-1cRw780jfq-00x64K for ; Thu, 23 Feb 2017 10:22:42 +0100 To: "Ace@ietf.org" From: Hannes Tschofenig Openpgp: id=071A97A9ECBADCA8E31E678554D9CEEF4D776BC9 Message-ID: Date: Thu, 23 Feb 2017 10:22:34 +0100 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:45.0) Gecko/20100101 Thunderbird/45.7.0 MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="HpuFpe1rWp7xjBclB0n8luukr8siQ0VQI" X-Provags-ID: V03:K0:e85m6ElMRu4hgZqJL5uupEF2E7dafvUsSrJviHKxry5sMUlitnw enjkq09DxVIHJGzL9GEAQKFWQtu9gcGT6/41aY+mbGSInES8nQjSu5H7jAe8jzFzUVsf6Rv oTsCh+Yz4nGSgQqNaa1j9gVCQcgCe5TBmGePrHfqqcgSLZaH0/0x+YF81UuPq6kKFEX0BtZ DSqIhi5RpxWNw2m568+AQ== X-UI-Out-Filterresults: notjunk:1;V01:K0:RfnxLjyM6rk=:0vmG0uuaIEcpjA+O6p3j0k 9Os/d6L51Qkq1/xyEgV3qpwhveygdmK/7+9/W2xsNx4O+/Dj8Qpc86x6B7rw9USyJ14lzkbIG whILjbmwTCHpO1e1JZWEa/7Skpb2DumtKuXHk+kdAqKP1c2NsfaCTrcqu5MFpqnXoojf8rMJZ s248JFBI94pto6vNxhDou2SFnrTc4VOH1M30nOv+K3Edaps6SDC3icyjbeBEMDIWNZ2Q5F5GZ tVhw975mideLI1OZ+RAYFhuDIWvtbCOXM/UEoZW0+HOsN3epSNKWcue/k8t088yBGV5Fdq21h LxOZ3liYTUimSlioWkVN8gpy6Sy4Bx7xfS/6pMvEABPuje5WjxbSyJTg4AMXWsQbiMhMsPx1Y PBBpH0OdGUnFsJxEXWSpCUTrwz6WRShL0DLPqSS7atZSjx1DUyH2ialciBihbMQf0OmZGpdcQ OU3VKsTJ72LpS+UE5ouHBfTz0lO7TVQIm//SYOvU39bLsHhNZnjNX0OHEE8OlZvla3jQcBzYZ HWYOhOGxV8sNNBR1r+LCdz/2EEJA98FeRbPi7Sd3GhHFMVcStAOSeUF6EWB8FJzkis3QxzFo/ imW2CzrevX3lCg5yJ29KptEmXlLGtTKUc0avvfTM8nF2TAXJJtQTUfMTc5yPMUulVl2kFQ7iy DtCXszWnT88wAI3ZOx62YMIPRPQwA/wfeDIrqbWj+70XqrFIv/nhY46UQ7yJR7ffQdAZFhIkI FxWSZ8gwyf1gPbdOMtNYk2ufQNgtZLrVL8XcunvURzor2UoqwhN+9Aq3llc= Archived-At: Subject: [Ace] Meeting Minutes of the ACE Virtual Interim Meeting on 9th February X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Feb 2017 09:22:52 -0000 This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --HpuFpe1rWp7xjBclB0n8luukr8siQ0VQI Content-Type: multipart/mixed; boundary="x9v7AiVJhH9f06CvjM02BfiOC79dVIm1F"; protected-headers="v1" From: Hannes Tschofenig To: "Ace@ietf.org" Message-ID: Subject: Meeting Minutes of the ACE Virtual Interim Meeting on 9th February --x9v7AiVJhH9f06CvjM02BfiOC79dVIm1F Content-Type: multipart/mixed; boundary="------------40CDF46736872F8AACF7C3E9" This is a multi-part message in MIME format. --------------40CDF46736872F8AACF7C3E9 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable Hi all, apologies for the delay in distributing the meeting minutes. We ran into a few problems. The proceeding webpage unfortunately does not list the interim meeting and hence we cannot upload the minutes, and slides there. We are working on it; in the meanwhile we are distributing them via email instead. We only recently managed to download the Webex meeting recording due to login problems. In any case, here is the recording now: http://www.tschofenig.priv.at/ACE_Interim_Meeting_2017Feb09.arf (We hope to be able to make the recording available on the same webpage as the minutes/slides.) To view the recording created by Webex you have to unfortunately use a dedicated player since Cisco uses a dedicated format. Here is the link to the ARF viewer: https://ietf.webex.com/client/T31L/nbr2player.msi In any case, let us know if something is missing or incorrect. Ciao Hannes & Kepeng ACE Virtual Interim Meeting on 9th February =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D Participants: * Abhinav * Hannes * Mike StJohns * Mohammed * Kepeng * Kathleen * Mohit * Piotr * Renzo Navas * Rashid Sangi * Eliot Lear * Francesca * Goeran Selander * Sandeep * Michael Richardson Minutes ------- Kepeng started the meeting and shared the short agenda. Abhinav goes through the presentation. Goeran asked whether the solution will be using CWTs. Abhinav says that this is the intention. However, at the time of writing the CWT document wasn't ready yet. Goeran: How is the access token provisioned? There is no need for the sender to provision to the receivers? Abhinav: Yes, that's correct Kathleen: What is the scope of each of these scenarios? By scope I mean which are Internet scale vs. local, or is there a mix? Eliot: I think we need to handle this in the traditional way. What are the threats we are trying we are address? What are the vulnerabilities in the system? We have to capture, absent other mitigation, it may not be possible to determine the source of the compromise. You stated the best mitigation: the key is scoped and cannot be used to work across different environments (lights and refrigerator). There has to be traceability as well from an enterprise administration point of vie= w. Sandeep: This is used within an enterprise domain -- not on an Internet scale. Eliot: I think the scope is even more narrow. It is not enterprise scope. It is a small number of luminaries, preferable of a site. If I as an administrator I don't have to turn off the entire building but only a single group. Mike: I have been hearing this argument for a while and have been wondering how we can make this property of the protocol. Eliot: I could come up with something. You use a random identifier when the group itself is provisioned. Mike: We know how tiny the scope of this particular application. It is weired that we don't know how to prevent the protocol from getting outside the scope. Eliot: This is a largely a multicast protocol. So, you can use multicast scoping. Abhinav: You are saying that we can put in the protocol to ensure that door locks can never use this stuff. Mike: I have seen various arguments on the mailing list like "we cannot do this over BLE". An example, is to limit the group size. Eliot: Are you looking for a hard-upper bound limit in the size of the group? Mike: I am worried that someone is using this protocol despite all the warnings and the discussions. The worry is that you are using this for control. It is difficult to differentiate to limit it to the lighting sector. I am looking for a way to severely constraining the protocol. Kathleen: Can we have the management key be asymmetric ? Mike: In IPv4 it is easier to keep things on the local network. For IPv6 it is a bit harder. Abhinav: Is it possible to restrict it in the IPv6 scope? Kathleen: There are lots of examples of IETF protocols where we cannot use encryption, for example DHCP. Mike: I am having the protocol with authentication and integrity. Abhinav continues the presentation and talks about crypto performance. Discussion between Mike, Hannes and Abhinav about the possibility of software updates for the lighting sector and the implications of hardware crypto. Mike argues that companies should spent more money on hardware. Eliot: Why are we talking about cost? Abhinav: Mike asked about those numbers before the meeting. Abhinav talks about the latency. Mike: Why hasn't this be done in the IEEE? Eliot: There may be multiple link layer technologies involved. Sandeep: The devices may be wireless and may be wired together as well. Mike: Fair enough. Kepeng: Besides the details do we have high level objections? Mike: Anything that talks about the way how the keys are stored is probably not useful since it is not a protocol aspect. So, take this out. The rest is OK. Mike: Attacking a single node should not give you more access than this single node has. Mike: This particular application has tight cost and latency requirements. I would prefer this not to be a working group item but if it becomes one then it heads into the right direction. Eliot: I like this to go forward. Mike: Could you give me an example from another industry? Eliot: I have seen similar requirements in the transportation function. Mike: I hope they never use this for control. Kepeng: I believe there is consensus in the group to adopt this document. Hannes, Kathleen? Hannes: This is also my understanding from the discussions so far. Kathleen: I agree. We can find out later what the status of document should be. Kepeng: I will initiate a call for adoption on the list. --------------40CDF46736872F8AACF7C3E9 Content-Type: application/vnd.openxmlformats-officedocument.presentationml.presentation; name="ACE_Interim_Slides.pptx" Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="ACE_Interim_Slides.pptx" UEsDBBQABgAIAAAAIQCdhBDdEgIAACsUAAATAAgCW0NvbnRlbnRfVHlwZXNdLnhtbCCiBAIo oAACAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADEmNFO2zAUhu+R9g6Rb6fGDQMGU1MutnEF Awn2ACY5bb05tmW7hb79TpzCMhS1Za7lmyqO8//nc9Ic/8rk8rkR2QqM5UqWpMjHJANZqZrL eUl+PlyNzklmHZM1E0pCSdZgyeX0w9HkYa3BZqiWtiQL5/QXSm21gIbZXGmQODNTpmEOh2ZO Nat+sznQ4/H4jFZKOpBu5FoPMp18gxlbCpd9f8bTHQnKSfa1u64tVRKmteAVczhN21k6qPul Yf5GyJu2sJ8Y1mg5LGnPDysMCLsFbyXrN/dgtFl/jkp/jV1wbT9u1nGLD8DwGrI7ZtwP1qAd 1dpRbcBiAS/It9+RgZJqNuMV1KpaNijJ+2aN+GeYN4zLXTBW4MkbZh3+WfqD4tBkPe+9mDY0 cTjeQ3CcnOBTcoKT5ASnyQnOkhN8Tk5wnpzgIjlBMU6PkL4rFunbYpGmL0rlwL7smL3BwZ9J z3ufSHFnlLYx8oQ33kWw4vAUheDVeBeBw5QK3W/4o/A2OyuyRwH3bi3g4KvuWe/1SlyztVq6 zYvRDeL0iM77f5niNI0wpjhdJIwpTt4KY4qTwMKY4mSyMKY4KS2MKU5uC2OKk+TCmCJlu0Co lJ28t6uGN++9dlUfe+67nPf3OE668tbbgFDtwwetlIH3I7x8H2rVI41GYBzfvqW/VkTr4DVD +3GrhnqgNvWf+qZ/AAAA//8DAFBLAwQUAAYACAAAACEAo+yCJgIBAADiAgAACwAIAl9yZWxz Ly5yZWxzIKIEAiigAAIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKySz0oDMRCH74LvEObe zbaKiDTbiwi9iawPMCazu6mbPyRTad/e2IO6sBTBHjPzm49vkqw3BzeKD0rZBq9gWdUgyOtg rO8VvLZPi3sQmdEbHIMnBUfKsGmur9YvNCKXoTzYmEWh+KxgYI4PUmY9kMNchUi+dLqQHHI5 pl5G1O/Yk1zV9Z1MvxnQTJhiaxSkrbkB0R4j/Y8tHTEaZJQ6JFrEVKYT27KLaDH1xApM0M+l nE+JqpBBzgvd/l0odJ3V9Bj03pHnOS86MHlD5rwSxnjOaHlJo2niRyZGljFRLsVT+pzQ6rJv xsPevXm048zVfPeqXaT+S0hOfmbzCQAA//8DAFBLAwQUAAYACAAAACEAW3wHpt4AAABFAgAA IAAAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGU1LnhtbC5yZWxzvJHNSgMxEIDvgu8Q5m6y3YKI NNuLCAVPUh9gSGazoZtJSFJx396ACF2o4EE8zt83HzO7/UeYxTvl4iNr2MgOBLGJ1rPT8HZ8 vnsAUSqyxTkyaViowH64vdm90oy1DZXJpyIahYuGqdb0qFQxEwUsMibiVhljDlhbmJ1KaE7o SPVdd6/yJQOGFVMcrIZ8sBsQxyXRb9hxHL2hp2jOgbheWaHK7C294BLPtWExO6oapLzMr5p6 2VaAum7W/6WZD+0qK6dA1uNXvpeJ3U8a23/T2H5rqNXzh08AAAD//wMAUEsDBBQABgAIAAAA IQBlms1e1wAAAL4BAAAgAAAAcHB0L3NsaWRlcy9fcmVscy9zbGlkZTQueG1sLnJlbHOskL1q AzEQhPtA3kFsH+nuihCCdW5CwOAqOA+wSHs64dMPWtnk3j4KaXzgIkXKnd39Zpjd/iss4kqF fYoaetmBoGiS9dFp+Dy9P72A4IrR4pIiaViJYT8+Puw+aMHannj2mUWjRNYw15pflWIzU0CW KVNsmymVgLWNxamM5oyO1NB1z6rcMmDcMMXBaigH24M4rZn+wk7T5A29JXMJFOsdC8WLt3TE NV1qw2JxVDVIeatvjgbZLEDdTzb8ZzIfWiubTIGsx1+9lzm6nxhq0/r4DQAA//8DAFBLAwQU AAYACAAAACEAS/U97L0AAAA3AQAAIAAAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGUyLnhtbC5y ZWxzjM+9CsIwEAfwXfAdwu0m1UFEmrqIIDiJPsCRXNtgm4RcFPv2ZrTg4Hhfvz9XH97jIF6U 2AWvYS0rEORNsM53Gu6302oHgjN6i0PwpGEihkOzXNRXGjCXI+5dZFEUzxr6nONeKTY9jcgy RPJl0oY0Yi5l6lRE88CO1Kaqtip9G9DMTHG2GtLZrkHcpkj/2KFtnaFjMM+RfP4RoXhwli44 hWcuLKaOsgYpv/uzpY0sEaCaWs3ebT4AAAD//wMAUEsDBBQABgAIAAAAIQBL9T3svQAAADcB AAAgAAAAcHB0L3NsaWRlcy9fcmVscy9zbGlkZTYueG1sLnJlbHOMz70KwjAQB/Bd8B3C7SbV QUSauoggOIk+wJFc22CbhFwU+/ZmtODgeF+/P1cf3uMgXpTYBa9hLSsQ5E2wznca7rfTageC M3qLQ/CkYSKGQ7Nc1FcaMJcj7l1kURTPGvqc414pNj2NyDJE8mXShjRiLmXqVETzwI7Upqq2 Kn0b0MxMcbYa0tmuQdymSP/YoW2doWMwz5F8/hGheHCWLjiFZy4spo6yBim/+7OljSwRoJpa zd5tPgAAAP//AwBQSwMEFAAGAAgAAAAhAGNcI7TAAAAANwEAACAAAABwcHQvc2xpZGVzL19y ZWxzL3NsaWRlMS54bWwucmVsc4zPvWrDMBAH8D3QdxC3V7I7hBAsZSkFQ6eQPsAhnW1RWxI6 ucRvH40xdMh4X78/113uyyz+KLOPQUMrGxAUbHQ+jBp+bl/vJxBcMDicYyANGzFczNuhu9KM pR7x5BOLqgTWMJWSzkqxnWhBljFRqJMh5gVLLfOoEtpfHEl9NM1R5WcDzM4UvdOQe9eCuG2J XrHjMHhLn9GuC4XyT4Ti2Tv6xi2upbKYRyoapHzu75ZaWSNAmU7t3jUPAAAA//8DAFBLAwQU AAYACAAAACEAS/U97L0AAAA3AQAAIAAAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGUzLnhtbC5y ZWxzjM+9CsIwEAfwXfAdwu0m1UFEmrqIIDiJPsCRXNtgm4RcFPv2ZrTg4Hhfvz9XH97jIF6U 2AWvYS0rEORNsM53Gu6302oHgjN6i0PwpGEihkOzXNRXGjCXI+5dZFEUzxr6nONeKTY9jcgy RPJl0oY0Yi5l6lRE88CO1Kaqtip9G9DMTHG2GtLZrkHcpkj/2KFtnaFjMM+RfP4RoXhwli44 hWcuLKaOsgYpv/uzpY0sEaCaWs3ebT4AAAD//wMAUEsDBBQABgAIAAAAIQA0FlYB6wAAAFUC AAAgAAAAcHB0L3NsaWRlcy9fcmVscy9zbGlkZTgueG1sLnJlbHOsks1KxDAURveC7xDu3qSt IiKTzkYGBlzp+ACX5jYNNj8kmcG+vRlc2MAgLmaZLzfnO3Cz2X7ZmZ0oJuOdhJY3wMgNXhmn JXwcdndPwFJGp3D2jiQslGDb395s3mjGXB6lyYTECsUlCVPO4VmINExkMXEfyJWb0UeLuRyj FgGHT9QkuqZ5FHHNgL5isr2SEPeqBXZYAv2H7cfRDPTih6Mlly9UiDQbRa+4+GMuWIyasgTO 13k11PFSAeKyWXdNM+czpfdzcyX2G69H2r+07q+pZWxZVmVkSRn8yR94cPqsIarP0H8DAAD/ /wMAUEsDBBQABgAIAAAAIQAVaakBaQEAALEKAAAfAAgBcHB0L19yZWxzL3ByZXNlbnRhdGlv bi54bWwucmVscyCiBAEooAABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAALzW3U6DMBQH8HsT34H0XgpsY8wMdmNMdmFidD5AhcNHhJa0dcrb20xFWPTEi6aXPbSH X9ryD9vde9d6R5CqETwloR8QD3guioZXKXk63F4lxFOa8YK1gkNKBlBkl11ebB+gZdosUnXT K8904Soltdb9NaUqr6Fjyhc9cPOkFLJj2gxlRXuWv7AKaBQEMZXTHiSb9fT2RUrkvghD4h2G Hv7TXJRlk8ONyF874PqXd1DVNgWYhkxWoFNyGn5Vw8A37Qj9gxG5YoQoY+GKEaGMpSvGAmWs bDK40KDumNIgfzCT4mwGfkqxTVcvQd1LYb6QUTWWUMXapuLYwNuZYiyhisSmQpu1k6tyGn4W 8QPZWEWw5xYe9dDCZDMmRVRi/cM5v7GT4mwGukHO0g1DuMo2NNpcJRsabFZzDUEsMYTVEEMQ KwxhNcMQRIwhrEYYglhjCKsRhiASNL4CR4rNt4LOfjSzDwAAAP//AwBQSwMEFAAGAAgAAAAh AEv1Pey9AAAANwEAACEAAABwcHQvc2xpZGVzL19yZWxzL3NsaWRlMTMueG1sLnJlbHOMz70K wjAQB/Bd8B3C7SbVQUSauoggOIk+wJFc22CbhFwU+/ZmtODgeF+/P1cf3uMgXpTYBa9hLSsQ 5E2wznca7rfTageCM3qLQ/CkYSKGQ7Nc1FcaMJcj7l1kURTPGvqc414pNj2NyDJE8mXShjRi LmXqVETzwI7Upqq2Kn0b0MxMcbYa0tmuQdymSP/YoW2doWMwz5F8/hGheHCWLjiFZy4spo6y Bim/+7OljSwRoJpazd5tPgAAAP//AwBQSwMEFAAGAAgAAAAhAEv1Pey9AAAANwEAACEAAABw cHQvc2xpZGVzL19yZWxzL3NsaWRlMTIueG1sLnJlbHOMz70KwjAQB/Bd8B3C7SbVQUSauogg OIk+wJFc22CbhFwU+/ZmtODgeF+/P1cf3uMgXpTYBa9hLSsQ5E2wznca7rfTageCM3qLQ/Ck YSKGQ7Nc1FcaMJcj7l1kURTPGvqc414pNj2NyDJE8mXShjRiLmXqVETzwI7Upqq2Kn0b0MxM cbYa0tmuQdymSP/YoW2doWMwz5F8/hGheHCWLjiFZy4spo6yBim/+7OljSwRoJpazd5tPgAA AP//AwBQSwMEFAAGAAgAAAAhAEv1Pey9AAAANwEAACEAAABwcHQvc2xpZGVzL19yZWxzL3Ns aWRlMTEueG1sLnJlbHOMz70KwjAQB/Bd8B3C7SbVQUSauoggOIk+wJFc22CbhFwU+/ZmtODg eF+/P1cf3uMgXpTYBa9hLSsQ5E2wznca7rfTageCM3qLQ/CkYSKGQ7Nc1FcaMJcj7l1kURTP Gvqc414pNj2NyDJE8mXShjRiLmXqVETzwI7Upqq2Kn0b0MxMcbYa0tmuQdymSP/YoW2doWMw z5F8/hGheHCWLjiFZy4spo6yBim/+7OljSwRoJpazd5tPgAAAP//AwBQSwMEFAAGAAgAAAAh AEv1Pey9AAAANwEAACEAAABwcHQvc2xpZGVzL19yZWxzL3NsaWRlMTAueG1sLnJlbHOMz70K wjAQB/Bd8B3C7SbVQUSauoggOIk+wJFc22CbhFwU+/ZmtODgeF+/P1cf3uMgXpTYBa9hLSsQ 5E2wznca7rfTageCM3qLQ/CkYSKGQ7Nc1FcaMJcj7l1kURTPGvqc414pNj2NyDJE8mXShjRi LmXqVETzwI7Upqq2Kn0b0MxMcbYa0tmuQdymSP/YoW2doWMwz5F8/hGheHCWLjiFZy4spo6y Bim/+7OljSwRoJpazd5tPgAAAP//AwBQSwMEFAAGAAgAAAAhAEv1Pey9AAAANwEAACAAAABw cHQvc2xpZGVzL19yZWxzL3NsaWRlOS54bWwucmVsc4zPvQrCMBAH8F3wHcLtJtVBRJq6iCA4 iT7AkVzbYJuEXBT79ma04OB4X78/Vx/e4yBelNgFr2EtKxDkTbDOdxrut9NqB4IzeotD8KRh IoZDs1zUVxowlyPuXWRRFM8a+pzjXik2PY3IMkTyZdKGNGIuZepURPPAjtSmqrYqfRvQzExx thrS2a5B3KZI/9ihbZ2hYzDPkXz+EaF4cJYuOIVnLiymjrIGKb/7s6WNLBGgmlrN3m0+AAAA //8DAFBLAwQUAAYACAAAACEAS/U97L0AAAA3AQAAIAAAAHBwdC9zbGlkZXMvX3JlbHMvc2xp ZGU3LnhtbC5yZWxzjM+9CsIwEAfwXfAdwu0m1UFEmrqIIDiJPsCRXNtgm4RcFPv2ZrTg4Hhf vz9XH97jIF6U2AWvYS0rEORNsM53Gu6302oHgjN6i0PwpGEihkOzXNRXGjCXI+5dZFEUzxr6 nONeKTY9jcgyRPJl0oY0Yi5l6lRE88CO1Kaqtip9G9DMTHG2GtLZrkHcpkj/2KFtnaFjMM+R fP4RoXhwli44hWcuLKaOsgYpv/uzpY0sEaCaWs3ebT4AAAD//wMAUEsDBBQABgAIAAAAIQA2 iIho8AIAAA4PAAAUAAAAcHB0L3ByZXNlbnRhdGlvbi54bWzsl91u2yAUx+8n7R0sbqfUxt+J 4lRNO0+TOilq2gegNmmsYmMBTtNNe/cdiJOQuJr6ALkK8D/ncPhhCGd6va2Zs6FCVrzJEL7y kEObgpdV85Khp8d8lCJHKtKUhPGGZuidSnQ9+/pl2k5aQSVtFFHg6kCYRk5IhtZKtRPXlcWa 1kRe8ZY2oK24qImCrnhxS0HeIHzNXN/zYrcmVYN6f/EZf75aVQW940VXw/S7IIIyk4dcV63c R2s/E81exWlKkmzosnuWVOW8URLoIId0it/yWjvJRVWoDhoZ8tAMeEhW/iJSUfGzvJfqbMSp ygz5OEzCNIhDgComegQUjNzZ1P3IveGKyv+NWUGiPspHPhD5tL1LJoqtLHztfyLHviUHAzlK LDkcyvYSTXKn8tiS4+Hc2JKToexZcjqUA0seD+XQpu8N9ZPdMdtzqke2/gE4mwwekott7tig 222/vUnL306xhU/Ox2P4JGG9xXuG4jRKdcdENDvdm+0FYzXGYXiwKumKdEw90q1aqndGZ1Oi xxYL0bceFsJhRJ922oyeliYb24RtGG7BpibiXn/pDmEvcFMw5IDNI3le/t7PCKtSzJhQct/M xas5MfpcNn0XpDVMBYd/0TWF0rqVhYRIONVxXqnQlxEs3OiSs6rMK8ZMRx9lesuEsyEwm9ru zs+ZlZnVUe8tLL+Aa+tb3YyY0pZkQsmZQMlOKOSZUMgjjgeNwz3w6NH4RzRhlOiEL3wMlJ5P cOSzh3Dho6H0fMIjHxwkOL4A2lPpAUUWoNRPTfYXQJpKDyg+AvL9NDb/AhdAmkoPKLEAJWFw uaMPVHpA6RGQpnO5pA9UekBjC1AcJZdL+kDFvFyHT8x2Au3+LQstpxNVhv58z2/yuR8EIy8O 8lHoz6NRCn96o/FdHuQRnt9g7+avrqRwpF/AP7qqpBBkX8zhaFDO1VUhuOQrdVXwuq8L3Za/ UdHyypSG2N8Vc7s3NuSy/zXZuadF7OwfAAAA//8DAFBLAwQUAAYACAAAACEAHg8HmrYDAABY CAAAFgAAAHBwdC9zbGlkZXMvc2xpZGUxMi54bWysVdtu2zgQfV9g/2Ggpy1QW3HipI5Rp4id pi2QNkHsPOwjTY0tohRJkCPHxmKBfkj7c/2SHVJSLtsEKLb7IlLkXM4czuX1m22lYYM+KGsm 2aC/lwEaaQtl1pPsZnHeG2UQSJhCaGtwku0wZG9Ofv/ttRsHXQBrmzAWk6wkcuM8D7LESoS+ dWj4bmV9JYh//TovvLhlq5XO9/f2jvJKKJO1+v5n9O1qpSSeWVlXaKgx4lELYuShVC501tzP WHMeA5tJ2o8gnXBkcq6LuAa38IhxZzbvvJu7K5+uP22uPKiC+crAiIppyfL2ohVLv2aTNvm/ 1NfdVoy3K1/FlWOD7SRj8nfxm8cz3BLI5lDen8ry8glZWb59QjrvHOQPnMaoGnA/hrPfhbNQ pBEGd1F1eIO7sPJzAGM5nhh+E96dRBNzXF0JtHNsiqKpVq65TJt7MC1ZtJ3aYhedLHlNh2Ks A81ppzH9uPhJMDzj1SJmKJrezTyDQnlKUUOoaKZRmDtq6OTUOa2kWCqtaBeTmTBmEPxxjdJW vC1SFryIfFFiLTnh8yvhxfWzvhqGXQqoQ5939D5P8kFH8swaijiutJBYWl2gh/1fo1wV23uR /4FtFodK+ItErd7otCpTMOy4Tfr1J24MLRcN5P/wRt+/fF2U6JFLFF+CIlABfPc8WACVguC2 RIPcq8DZENRSsySVCMLLUhFKqj0CwK2iEoKtveSrmgUM8evHF4b5+8ubizNYItQhGrUQUEYt oTVUtY6CgdhGdFybVq0P7+1t9MvADGgMgdVMUKQ2rNkkV2pCESAb0/a2x22J2+gO1t7W7rG5 GJqqnPXcVTkJsb/us4Ahb7Xm/gi6rpQRivtTdGes6XG6+nUy99Dbiyeij7Hbmp4J/+Ppn13s ffhgnosi1LIEEaBEoZlK7v0QxApp9xKWtdJxNDS8xXKKt/f4IqCw40cjryR8xh0sRWQ6WF0/ fAFj6Q7J9y/fHlVeU1Pt51eKMC1dA+duehGo3QFjn2R/TafHR/uz0bQ3HQzPe8Oz41e90/Oj w9754cFwOJuOTmcHb/+OA2EwHEuPiZ4P3czjwx/mTKWkt8GuqM8v3g6s3HHyeGdVmlmDvXbw bQQX02B0MDwevBodHrYly9i6NaGNhd7OIqn9R+EuN6m42Bmhn6Ujx+/R9oR7ESZDcRqt0860 kTvRtKKF6YZXUfPojfW8UoaTKOOa4/7oubhToXGnsgUumj5eXVtLLc5kKTLemI671l0knQH/ AwAA//8DAFBLAwQUAAYACAAAACEAUd8Otv8DAAC+DAAAFQAAAHBwdC9zbGlkZXMvc2xpZGU1 LnhtbOxX224jKRB9X2n/AfW70/ebNc7I7iSjkWY2UZz5AELjGG03IMCOrdX8+xY07cS5KTM7 2ofVvhgaiuLUqUOBP3zc9R3aUqWZ4LMgPokCRDkRLeN3s+DbzcWkCpA2mLe4E5zOgj3VwcfT 33/7IKe6axGs5nqKZ8HaGDkNQ03WtMf6REjKYW4lVI8NfKq7sFX4Hrz2XZhEURH2mPHAr1fv WS9WK0bomSCbnnIzOFG0wwaQ6zWTevQm3+NNKqrBjVt9BOkUIiPLrrWtljeKUtvj209KLuWV ctN/bK8UYi3wFSCOe6AlCP2EN3OffOs64ZPld2MXT3cr1dsWYkO7WQDk7+1vaMfoziAyDJKH UbK+fMGWrM9fsA7HDcJHm9qoBnDPw0nGcG6Y6SiKD1GNeLX8IsifGnEB8djwh/AOFkPMtpVr ZPYSXBnrytsNk67zAMaTZXYL0e7tJrfQukE87bRZmn1H3Ye0Pw6GArwdtgqlfPJtGaCWKeOi Rro3TUcxP1BjTpei29g0o0vQ+ZbR+ylaUrJRFH3ddIYRrI2lyjjCnH/K2yus8PWr2wzkShfL CDwcmZWMeCYYecpwNjIMc8ZCSA8ce2ts148sN2vYns61pMQc0X1w/Vhjh8HbjskL1nWOTegj NaX9LYX91ec2Cby6vmgz6myj2Cz4K6nmUVQni0mTR80ki8rzybzOykkZnZdZlFVxEzff7eo4 m240BZC4O5NsLAJx9uzg9YwoocXKnBDR+xM8FgI4c3Hky8AWdw+0AqCxdRDDIQinP6OoIWvb XUF810DLsOYwET6OfpDXCwctj6poOEBxUUdFVR0fuSLOCmdgj1KaF1UZHR8oSJLS5hMVPbId 4BWQOF7xFjB7eXgTLw0vfa+Ot0SSPxVJ9q+LJP1fJKCCuiy8TJIihdieyCSvKkDnZRIXVW0/ fq1MXq/VxaFWA5yF2KH8qFojW5Z2Xg7HCnhcel8IO4njCs6HCzvP6zJJy+OwISVxWmX+dBR1 mib/JGo85cJmYoA3gHp+HaB7heHG4fAICZAyXSOcGIZLab4x4MJ7Hux/5PZ46c7Y9z01ihE0 3h7vuyLevBheT2b5NJnFL0pmFZVZnKdvJDNOirpO/9PJnOufzOa7LnzXjO/EsRy5nq+Yi0Vd JE21mCzi7GKSndXlZH5R5JOLPM2yZlHNm/TcVkwJFZMo6p6kn8entXxvwZTiniopmHsaH9fM LI3rOItiJ6rQQRvboXY+vHhJp75iebl1rMBehqrGDUlbjAfTBxPggvUw4XrcBy7xIO4bPj6R 2w088Blv6YpxZmzKKfylUCAmTuFJBtoXLb0ZXov9tRDG43SeLOGDa9vz21nOAfDfAAAA//8D AFBLAwQUAAYACAAAACEAbRn/IjwDAAD4BgAAFQAAAHBwdC9zbGlkZXMvc2xpZGU0LnhtbIxV 227bOBB9L7D/QOhd0SWKLRt1CluJiwLtJojdD2CocUwsRRIk7dgo+u8dUpSdpFkgL+aInNs5 c/HnL4dOkD0Yy5WcJcVFnhCQTLVcPs2Sn+tlWifEOipbKpSEWXIEm3y5/ufTZz21oiVoLe2U zpKtc3qaZZZtoaP2QmmQ+LZRpqMOP81T1hr6jF47kZV5Pso6ymUS7c1H7NVmwxncKLbrQLre iQFBHWZut1zbwZv+iDdtwKKbYP0qpWtExlai9afVawPgJbn/avRK35vw/O/+3hDeIl8JkbRD WpIsPkS18Cn3QcjemD8NIp0eNqbzJ2Ijh1mC5B/9b+bv4OAI6y/Z+ZZt797RZdvbd7SzIUD2 IqhH1Sf3N5xygLPmTgApTqiGfK3+rth/lkiFeDz8Ht5Jo8fsT70l7qjRlfOuol7/GIRzMpEs d1io9uiDPOIZLulUWLdyRwHhQ/ufkIbBfAX1HQoy/blKSMuNC6iJ7VwjgMoTNe56pcTOl5nc YZ/vOTxPSaO6jlvf89iR5H5LLXi2XOAshADZ3lNDH/43Us+vDnCG3LOBXM1ZJIOztyRXA8n4 5nYGyOWJ5qhNvf1AdLPF8DC3Gph7xfjJ9cs2O10+Cq6XXIhAKMrETKF7BIxvvrVlEhvsu3VD q+0MnyW/ynqe55NykTZXeZNW+fg2nU+qcTrOb8dVXtVFUzS/vXVRTXcWMEkqbjQf9kBR/TV7 HWdGWbVxF0x1cYiHXYBjV+RxE+ypONOKCQ1nSDHrQYQWdAYc23pxg/gekJbe5vSQvUTfd9g7 s1aOJmWV91NU1KPRJH8zd6M6H5dewc9TlZdXUeM0VVgmY91XUB3xAjKLuQRm6R6zjg0SVWJz xP4P/REuhgUzIA1SLMZiMRmVTb1IF0W1TKubyTidL0dX6fLqsqqaRT1vLm99MTQWgxkIu+zb sJP1R2uh1TMYrXjYqa/LUeTVJJ+M6nEd266vyzlb34lxVzJhflB9tw9cYzAHpglX2he6Vz2r 4MzwDh+CJCNyTftRWcthubY7/GvgsoUNl9xBQnBrO2qQawk4zDhJqoV1v2e6B6VczDN48oPZ u/ZSDOdJx4T/AAAA//8DAFBLAwQUAAYACAAAACEA/kCqQ2EEAAC3DwAAFQAAAHBwdC9zbGlk ZXMvc2xpZGUzLnhtbNRXzW7jNhC+F+g7DHRqD47s/DUx1lnYzqZdILsJYufQI0OObSIUySUp x2pRoO/QN+yTdEhJdrxJ0GzbLJqLSFHU/Hz8Zjjz5u2qULBE56XRg6y3080ANTdC6vkgu56e dY4y8IFpwZTROMgq9Nnbk2+/eWP7Xgmgv7Xvs0G2CMH289zzBRbM7xiLmr7NjCtYoFc3z4Vj dyS1UPlut3uYF0zqrPnfPed/M5tJjqeGlwXqUAtxqFggy/1CWt9Ks8+RZh16EpP+3jLphDzj EyXi6O3UIcaZXv7o7MReuvT54/LSgRSEVwaaFQRLljcfmm3pVS/TJP/s93k7Zf3VzBVxJN9g NcgI/Co+87iGqwC8XuSbVb64eGQvX7x7ZHfeKsjvKY1e1cY9dGe3dWcqg0Lorb1q7fX23PBb D9qQP9H92r31jtrnONoFhMqSqBBFNfvqj2myMaYBK6xGRlRRyQ2NaZH1lQ+TUClMLzY+khmO 7FUsMhR153qSgZAuJK/BF2GskOk1NOFkXDpHRw2XzljjmYq4hIROEoZaXDLHrp6UWSNpk+Gt lXkL49Ng7rVgjo0OSb9iHBdGCXSw+++glWK12fIlqMaZpjAYlsHMZIAZ2TbhTJGZRwfdLgGo 9MTyKxQlj6FBnOjG5RqDjYz/5GDoQJZSIIQ7A8zxhQzIQ+mYAmNTVPe3jqo+hPYRNS1Vg8I/ Uj/0VVFgcJLDLVbgjSqjVvjuI959Dy+qevKo5uer/FvOfq50S9qXGJyoaZQUZ1Kp9BJzKo6V gyUjg8Kql/YwZResXur1NoxZ767fNoKikzWVCA3kpZOhgnlJdFBSowePiX/9FzqHr+HWU/ya /HRxfX4KNwilRwFSA1MKvAxlfZe9Ypffz0CZO7KGEh6vQHpw+KmUjtwMC9TxAU+g8mH48xqS lwqEF4RgY8j/PNiGQsgIOGXZgibzxDm6B9y9g2kP5TVH36XxXt5QFRPocqG7BZdEPVM6jsDK SMYgee27mUGB3rM5pR0WIoExelFRUQw3VcNgqlyh1PJTicTUcf05Evg1R+t0KxrnzpS2dok5 BFFR9UIQKUV5GTU6imkB1AjEIHZIhMF7mcwHE4OcctnSxJKccC+wMK56xfBsXdIEirpjNND1 dBvTGbEKPKfOIjod81owt5Th/vz9D+BMUxkX1ums1Ir4BbiySnIqh6vEQOPkL7UgYYiZO9tI PSO1fdVs9rD2TUPbH1Gzcu5DMwO6zQfZr6PR8eHu+GjUGfX2zzr7p8c/dIZnhweds4O9/f3x 6Gg43nv3W+y3evt97jAF4/u2paTFB20c0dEZb2Zhh5ui6QdzG8PVGplawl636Strb4+Pul2y 4XivqZTJtnZM1sb6umn1uHIfmL1YJuhJWUA3TkuWIr8pxTdbCAxZ0Ic0043nltUdwFS3vaEo qbOVWuBMaipuM8ol1Eu7MMg0pSNHDYIROK3bpOLKmNDYmSRFxGvRcdaoi6CTwX8BAAD//wMA UEsDBBQABgAIAAAAIQCOytC+ywMAAOMKAAAVAAAAcHB0L3NsaWRlcy9zbGlkZTIueG1szFbb bhs3EH0v0H8Y7FP7IK3WulgRIgeWEhcFnNqwlA+guSMt0V2SJbmytkX/vUMu14p8ycVJgOpB 5JIzwzmHw5l5/WZflbBDY4WS8yTrDxJAyVUu5HaefFhf9KYJWMdkzkolcZ40aJM3Zz//9FrP bJkDaUs7Y/OkcE7P0tTyAitm+0qjpL2NMhVz9Gm2aW7YHVmtyvRkMJikFRMyifrmS/TVZiM4 vlW8rlC61ojBkjny3BZC286a/hJr2qAlM0H7yKUzQsZXZe5Hq9cG0c/k7jejV/rahO0/dtcG RE58JSBZRbQkadyIYuFT7sIkfaC+7aZstt+Yyo+EDfbzhMhv/H/q13DvgLeL/LDKi6snZHnx 7gnptDsg/ehQj6p17jGckw7OWrgSIbtH1flr9aXif1qQivB4+C28e4kWsx91Aa7RZMp5U1Gu 3QyTgzORLLdfqLzxh9zSGBbZrLRu5ZoSw4f2f8ENQ/6WzEcoyt6HVQK5MC6gBlu5ZYlM3lPj zm7wr1oY9FFjPScuMBMMocyvmWE3z9prWdTB6c7DtKPweSKHHZFLJR2dC9cl41ioMkcDJ99G q8j3B5FnGH0itqbDKQV5CJpsMhgOTyfHYZYNxtl44iV8/IyG42w4nD6Motb248vyM0mv67x2 aiMclHKl+Q3mNffvyxunXzR20Pgut3slywZY7QplxN+YQ4XVLaUzUBtwBQLTuhQ8PHPYGlVr qGrr4JZ2binEnQKDLAdKcKCN4mgtWbCWbdH24Sha2jiIf58NnIeuHmm/KIg5Cp+nPbAIJPr5 CBGJiU0T4AsKv60RrvFqprXhOYqazJIeJWXYokTDHO3dCVcIGZTDMf8rFt63jgNXVVXL7l4/ ujyPJdBR0MWjDGiAQanu6BR6ibwJ0gTQNpIXRklVE4FMEvz+80C193JXxnf3ItfXokJYK7gU 28LBHOgxHjP7eatoTCg5T1ivvjqzffJqvhdeqrjATaMpKKkGm7ZWwy/MQaXokrIfy8ELvP71 G4L9E7UiDF0vQRn30ro4g9qIefLPYvFqcrKcLnqLbHTRG719ddo7v5iMexfj4Wi0XEzPl8N3 //reJBvNOGUsT+TvXftFi49ankpwo6zauD69ldg7pVrdodFKhPYpG8QebMf8RWenk2xwOpiM Y2Uh37oxeOvrUWyLeGneM321C/zSYQ7NMixpen6xdB1EiAxR0UaYyYhcs7ZirmXXR+U1XayQ OW6EFA4TylbUdxo3TyRSQqOCqnJcty1FdaOUi34GS57x1rSfxeM86eTwfwAAAP//AwBQSwME FAAGAAgAAAAhAIMdkrNwBAAA5g4AABUAAABwcHQvc2xpZGVzL3NsaWRlNi54bWy8V1tz4jYU fu9M/4PGT+0DMRCSEmbJDpBNZ2dvmcD+ACEfYw26rSQDbqf/vUeyHTbJJk0TsjxgWZbO5dOn T0dv3u6kIBuwjms1TnpH3YSAYjrjajVOvi4uO8OEOE9VRoVWME4qcMnb819/eWNGTmQEZys3 ouOk8N6M0tSxAiR1R9qAwm+5tpJ6fLWrNLN0i1alSPvd7mkqKVdJM98+Zb7Oc87gQrNSgvK1 EQuCeozcFdy41pp5ijVjwaGZOPt2SK7Q23HSTc4xRTYXWXg6s7AAoaU2f1ozN1c2fv68ubKE ZwhcQhSViE+SNh+aYfFVbWIjvTN91TbpaJdbGZ6YJNkF76QK/2nog50nrO5k+15WfPnBWFa8 +8HotHWQfuc0ZFUHdz+dfpvOgnsBpHeTVRuvMx81WzuiNOYT0q/TuxlR5xyepiC+MmjKB1PN uPpjbOyDacDyu6nOquBkic/YSUfC+bmvBMQXE/5iGBbjFTRQFVTn6zwhGbc+Zk2c9DMBVN1A 488veJ6DRXqDI0vwWwBFfAHEbzVxWpSRSQEsHyGLHkBlV9TS6wcd1fCamE0betpi+zDCxy3C M608EpFcCcqg0CIDS/ovw5tnu/2Q/wN1aCncJJPS65x7kmNsc0YFhnnWP+kiqkLNDbuGrGQB LPTSxV+Dwd7GQVZrXkkJ3nI2IrfWpEa7/QsmN6JJ93l+UJSQ4yurS9PZ8gzIGipUAWohu6EJ agUujCMohMQCAx4k83XjuoZvJUeVIpR8wIAy7hCMZSTpbcfPss6Qc8i0lxv67cPF7PeIC1WE lr7Qlv8VZRVBs5u7Pg6N0qfJjHhNjNUemCcSnKMrIByzW1nuqxhZXFv8Jpe4anhUxDgRAM7q QF81QsTnSSgv4ynyqCliwIZDzJFS8W8loGqVlsHddELKOJLjKY6bV1TEaiEcLgcrIyTI79sy d/CUka+HyrmM6+kYnuGEii2tHBFccg/Zy7lLltUdynq9hsf48AwnE/ezhCxqFG4FvqG+VjGt cPXXSm/DHqk1LLKDaYvKYrQKdR4x5VJw9r3sUamx/ycJ3Wd9X+AaearFxdZKmL32ObBS1JcW /ltPHtt9r76xHt4QD9D5gBVNfLSlMNalH51vWgSlZZz8PZ2enfZnw2ln2htcdgYXZ390Jpen J53Lk+PBYDYdTmbH7/4JpXVvMGIWYpTv22sEdt4r3SVnVjud+yOmZXMHSI3egjWax2tAr9sU 7hsasB0Oe4Pj47PuaVP/YGztM0YbqqamqmfCfqLmyybCgs6QcbPYZXBXNAXWfohko4nAIUgS aIu2Om7JnnLjkNSuscLANAymveQC2RTvHUm0PSs0pnYYJNrSYZygoXiR8ZYqx+tT2WD56YTe JiSsQlbi7avfVnE3gcSYLvH0WFK2ftBCM2U/LrzdRSnORoaqVWyphjSG1iXxQrU3qBgKR5HK uUI+J7jx8epp/ThRgDKEFbPOYFFfJuS11r5Z4mgpkLU2HVqNu8BXXOt/AQAA//8DAFBLAwQU AAYACAAAACEA+Ckog70EAADZEAAAFQAAAHBwdC9zbGlkZXMvc2xpZGU3LnhtbLxX224bNxB9 L9B/GOxTClSWZMuyLEQOZDlODPgGS37oI80dSYS5JENyZW2LAvmH/kM/LF/SIXfXd8dubOVl yeVlLmcOh5z3H5aZhAVaJ7QaJO21VgKouE6Fmg2S88l+o5eA80ylTGqFg6RAl3zY+fWX96bv ZAq0W7k+GyRz702/2XR8jhlza9qgormpthnz9GtnzdSyK5KayeZ6q9VtZkyopNpvX7JfT6eC 457meYbKl0IsSubJcjcXxtXSzEukGYuOxMTdd0zaIc/4WKahdWZiEUNPLT5ZMzanNk4fL04t iJTwSkCxjGBJmtVEtSz+qkXsNO9tn9Vd1l9ObRZa8g2Wg4TAL8K3GcZw6YGXg/xmlM9PHlnL 5x8fWd2sFTRvKQ1elcY9dGe9dmcivERoX3tV2+vMoeaXDpQmf4L7pXvXK0qfQ2vm4AtDonwQ Va0rJ2PnxpgKLL/c1WkRlFxQGwdZXzo/9oXE+GPCJ5phyV7JAkNRNc7HCaTC+ug1uMyPJDJ1 DY3fGeXWUqjh1GqjHZMBFx/RicJQpafMsrMnZZZImmh4bWWzhvFpMDdqMEda+ahfMo5zLVO0 sP46aEW6vFnyBKqP8Ku30SOiR+K0O9ut9sbGXaq1W73OZi+sCBzq9La64ecek0rZDwMWeopO 2DD3eio8TMntMWeSENja2gxCpRobfoZpzsOpI7q1Wtfib2S8Scwp1guRIvgrDczyufDIfW6Z BG1iwujfYUEZ3/oTNC1kBfAPqR+6IsvQW8HhEgtwWuZBK7w7xqvfYKWqx49qfrnKZ4/DfaV3 pP2IwchzK3wBs5wiJoVCBw4jRfqrheqpKN1LEI9LvojZ//uefT45P9x7kbTvyoELhNxhCkIB kxKc8Hl57a0Wn4Ppm0Eh9RXtoTTICxAOLH7JhSWPXg+On6MC+sCKg3k0/OMNI7nSuE1Wj0ZJ bTg+mbxBCG/Rm95kxG6xQGDGSMErmr/DtdkafEYm/RzoMQqOTdEXvz+jXLjGwXPKv3399/Ue /J+c/tMT7DBNRYCRLr+MOrOIKV3P9hZJaoKsOOOeaufEBT0tPV3LdCsjBdrp3HKKdx5Osq9C DnoKGTrHZnQbMA+UPzAoKqhSgYuiSiBUTkCuxJcc4Wg4KqcD31ecF++er5nVuSm1MouQFvTq Iy+kpBsNFVrKemnkLPlnkWBHqE4P8d55HdIgMX+hQylD0GSYaVv8xEcC2S2vGDV0916SMSE2 4DgVTcGukFq9vqQk++3rP8CZoheqv85juZIUJcBlOKz00i9iHLUVf5aCUk3xXVutM+clAx7n UeWaQRuqPzLqogzBnCIS6KNzfzdXujcsD2JTl5D0yD50vuoBPXkGyV+7u9vd9VFvt7Hb7uw3 OnvbW43hfnezsb+50emMdnvD0cbHv0NJ2u70ucXo0kFdddPgg0qXmGe101O/xnVWlcxNEw6P 0SJWze1WVXovGKHe7bbb3fVet1PVEmRa3UZjQwVSFcNc2iNmThYRFdLl0Y7ikCEcq2LlZglh ITKaiD1VOW5YWSNNVF09pznV/kKlOBWK3ugJHWznmfWDRFFusFRC6RQnZSGZnWntKzujpAB4 KTr0KnUBczL4PwAAAP//AwBQSwMEFAAGAAgAAAAhAKM0TPM1BAAAoAsAABUAAABwcHQvc2xp ZGVzL3NsaWRlOC54bWy0Vt2O4jYUvq/Ud7ByPSEJSSBBy6wgA+1I09nRwGqvTWLA2sR2bcPA Vn2z3vXFeuwkwLCMOtXSm9ixj4/P9/n8ffi4q0q0JVJRzoZO0PEdRFjOC8pWQ+fzfOomDlIa swKXnJGhsyfK+Xj7808fxECVBYLTTA3w0FlrLQaep/I1qbDqcEEY7C25rLCGX7nyColfQGtV el3f73kVpsxpzsv3nOfLJc3JHc83FWG6ViJJiTVYrtZUqFabeI82IYkCNfb0K5NuAVk+Kwsz KjGXhJgZ2/4ixUw8Sbv9uH2SiBbAl4MYroAWx2s2GjH7y7Z24p0dX7VTPNgtZWVGwIZ2QwfI 35uvZ9bITqO8XsyPq/n60wXZfD25IO21F3gnlxpUtXHfw+m2cOZUlwQFB1StvUo88PyrQowD HgO/hneQqDGbUayR3gtQpY2qRq7etJOjMQ1Zejfmxd5csoDRLuJBqfRM70tif4T5WDMk2Fti 46GEuZ9nDiqo1BY1UpXOSoLZgRp9+yuWxQuWBGVyLzRHQvKcKAW+iDStiDI8acuWVU5Y8YQl fn7zjppZYYG0VnstrYLmDQ00P6c3aunNONPgfOipxDlZ87IgEoUHspuT2Og6oxtm2RqMIiMl SK5fvcDhwpMnoMXuKHPC/kF2UVIxpWVpeYc5kgNSLQgYK++L0Gn88EHp1iM3kg6dP7rJyPfT 7tjNYj9zI78/cUdp1Hf7/qQf+VESZEH2pzkdRIONIoACl3eCtukiiL4L0Yrmkiu+1J2cV02s tykDojPwm4SxxeXxDcCgdrQmejUI66laEp2vzXQJ+J6BrfrMYcM7RV874oWQDMK07/t1sAVJ GKdR9Do80zBNrIAJuygMfRA/D75at3fwjrcjMG5dZMq5Bq849RB78Y+G41JLCJJvQ+f3DZZw g9P4yAUnOQ3RC8yEQRQEYdcy0wuDIK1xH5npRcBNGNXMdNMkit8g5v8M/hnfyJwMkDPqoLNA /zdtREobcxe0fsHlt/+o7YKWG3RVo2b0K5f4GmZBgqoEllRxhviyyZsricWa5ui+EiUxJbiu vAiqKpqYnFGQAs0fZs7NFTHN8WrDVmoBDciPA0Mmig6mfuESGhhIxUsioeUhN6gbdtxu3EFT suggyDm9ayJ5/PsvyRZErq7xQLMOSoKumwT9G3Q/Gz+m/cQN3V4Uu7EfxKnrO1csanZoG6E2 1dpZUw3G47TXzZKxOw6iqRvdpX13NO3F7jQOoygbJ6MsnJhqIKAa5JJYv7lve0fx3mIg+AuR glPb+72uB0EU99MkjOK4yWJ1YThaa5Ji09PlpfwNi09bSwtcBjkws0vCVJpa9CgCZNAKNuyM NcghNKymOWubwGID705ZQZaUUU0cBN2lhvw6dBjZmiTLeEHmdT9UPUNqb+y0mgzjtWoza64z pIPB/wAAAP//AwBQSwMEFAAGAAgAAAAhAG1+696aAwAAXQsAABUAAABwcHQvc2xpZGVzL3Ns aWRlOS54bWzMlv1uIzUQwP8GiXcY7R8IhJLdfJVcuLRqcldAHHdVkz6Aa0+yFl7b2E6aCCHx DrwhT8LYu9vQL+hdOcT+sf4ez/w89szLk12lYIvOS6OnWa9bZICaGyH1eppdLs864wx8YFow ZTROsz367OT4s09f2olXAmi19hM2zcoQ7CTPPS+xYr5rLGoaWxlXsUBNt86FY9cktVJ5vyiO 8opJnTXr3VPWm9VKcnxl+KZCHWohDhULpLkvpfWtNPsUadahJzFp9S2VjskyvlAilt4uHWKs 6e23zi7suUvDb7fnDqQgXhloVhGWLG8Gmmmpqbepkt9Zvm6rbLJbuSqWZBvsphnB38d/Hvtw F4DXnfzQy8t3D8zl5esHZuftBvlfNo1W1crdN6ffmrOUQSH0bqxq9fX2jeE/edCG7Inm1+bd zKhtjqUtIewtiQpRVDOvHkyVgzINrLCbGbGPm1xRmTrZRPmwCHuFqWHjL6nhSF/Fooei7lwu MhDShWQ1+CrMFTJ9gyYcz40PsPVgneHoPfkgfBLZhEQoCUQtzpljF4/KrWnapHyrad6ifBzo oAU6NzqQu8G5YhxLowQ66D8PrxS7w5T3IRtrmq7C6SaYlQyg9MLyCxQbHi8DySzoayw+rHj/ o0Dn0g154EgWcq2/oldHrvZ3TuIDzncCt2TU59T+oqStakB9kPjeoIA/fvsd6Im4vdGzCFT+ +YaD1FAyJ66Zw4/LINoeGQz+lwy8WYXE4Iu3JuAELvDnjaRmKBEEbilq+DgtNlcSKWpRIIBe 0emNYI/MeSjNNQQDG7t2TOCBqUe+cTLs4Wqz9idfPo746e/HM5+xxrQYAW/D+7dPvOj2oQNF dwSXCxBGqcgpcvt8Hb6hF+IHsMwFelTpIYsQ77rFPxK5u+l/znNRmg35whUCpQcuJQJM/a2f fFTg3z3ig9ztLfWjXkuNt9Q7eUCf++EpFW0aQznFGx+aGpBvT7NfZrMXR/35eNaZ9YZnneGr F193Ts+ORp2z0WA4nM/Gp/PB619jWtQbTrjDBOr7NvOjznvZViW5M/FOdrmpmrQtt+YanTUy ZW69okn/tiwyG4+Loj8aHDWxjFRry6RsjIBNQsaV+5HZd9vEl/YK6Oapy1JUb4LlYQqxkBUN pJpuDCe3TZKWus3gxIZeKKkFrqSWATOg1DCQc08zjRSjKIQbgcs6makujAmNnklSBF6LjrVm u8icFP4TAAD//wMAUEsDBBQABgAIAAAAIQA27M56eQMAAJ0NAAAWAAAAcHB0L3NsaWRlcy9z bGlkZTEwLnhtbNxXXW7jNhB+L9A7DPSUPsiy/NfEWGcRezdFgWwTNN4D0BRtEeUfSMqxsCjQ O/SGe5IOKSlpsk7X621atC8iRXKG33wzHA5fvd5JAVtmHddqluS9fgJMUV1wtZkl75eX6WkC zhNVEKEVmyU1c8nr82+/eWWmThSA0spNySwpvTfTLHO0ZJK4njZM4dxaW0k8/tpNVlhyh1ql yAb9/iSThKuklbeHyOv1mlP2RtNKMuUbJZYJ4hG5K7lxnTZziDZjmUM1UfoRpHO0jN6KIrTO LC1joae2P1hza25snP5pe2OBF8hXAopIpCXJ2ol2WfxV29jJnohvui6Z7tZWhhZtg90sQfLr 8M3CGNt5oM0gfRil5fWetbR8u2d11m2Q/WnTYFUD7lNzBp05S+4Fg/zeqg6vM1ea/uJAabQn mN+Yd7+isTm0pgRfG1Tlg6p2XTMZOw9gWrL8bq6LOmyywjYOkqlw/tbXgsUfEz4RhkW8goQI ZSp9f5tAwa2PVoOTfiEYUffU+PMr4jGka1gQQasmXiBw4yNDUSFTxQ2x5Odn9TZsmgi+Q5p1 VD5P6LAjdKEVgvBwIwhlpRYFszD4Onp5sXtY8u8wu+SSgdcg+Kb0sOabyrIp4Fl6yu/ndDNr 42Has4d0X+qrp1oax3WfILYVLXNHWX2hasBkuEEX8uArj2mJrPC8YH6BspJEOcCEGSYt2xBb uMd0PMJzeOQd76YQfJavqpgpo7+aE/E8qr+BpXnlPR60gqUrXSmKcYLBMoXx/zs2lha9L7kL 12lHM5xMhL4zRAGOnfYHvXzcG313APkxQRwFI+/LJ0H3WTWt5MfffodRkD4ZfKmj9uAotXEv a+nwaEtTyI9OVM/F32E7w8kQ0oN2bgXGh8F8KQfsy4FFcRzrUlsGfA21ruCO4I2I6WjDPDiN VwmWc5ysuOC+jsn06wNQVgLTM3H+RXPddeVNhfUXt7Ti3tahYra+Mv/BnPcPa/uLuio2Xf2N xfCV820PKstnyYf5/GwyWJzO03k+ukxHb86+Ty8uJ+P0cjwcjRbz04vF8O2voZ7PR1NqWSz8 fuyeLDj4yTNBcmq102vfo1q2743M6DtmjebxyZH323fLlgQjJ/38bHI2GbdFGELr2gg2lG7t S4IK+46Y6230GO7lmV3EIYNPorbKe1gSTEe5PwAAAP//AwBQSwMEFAAGAAgAAAAhABJ3U/pQ BQAAvg4AABYAAABwcHQvc2xpZGVzL3NsaWRlMTEueG1s7Ffbbhs3EH0v0H8g9ikBYt1sKYoR J7CcuAjgJEasfADFHWkJc8ktyZWtFgXyIe3P5Ut6hrtrSbENBO1LUNQPXooczuXMmSH58vVt acSafNDOnmTD3iATZJXLtV2dZJ/n5wfTTIQobS6Ns3SSbShkr1/9/NPL6jiYXGC3DcfyJCti rI77/aAKKmXouYos1pbOlzLip1/1cy9voLU0/dFgMOmXUtus3e+/Z79bLrWiN07VJdnYKPFk ZITnodBV6LRV36Ot8hSgJu3ec+kVIlNXJudvqOaeiEd2/YuvrqpLn5Y/rC+90DnwyoSVJWDJ +u1CK5Z+2nUa9L/ZvuqG8vh26Uv+IjZxe5IB/A3/7/Mc3Uahmkm1nVXFxwdkVfH2Ael+Z6C/ Y5Sjapy7H86oC2euoyExvIuq8zdUF05dB2Ed4uHwm/DuJJqY+VsVIm4qqIqsqpVrFtNg60wL VryduXzDRhb4pkl5bEK8ihtD6UfF/5IbHv4ayQwle/D5KhO59jFFLUIZzwxJewdNfHVaVUYr udBGxw2TORIzSDy59G5hqAziRsdChE1ZUvRaiWuCmDM1c+MpoxgTlsk02fxSevnpUQ8a3KsU ZhdTvwP9cegPO+jPnI3s3aWRigpncvJi9O8SofPbrcgjOXiAjdPDKcoi0Ww4HY0no/E+MYeD 8XA8YQlm3NFwMn3+PIns8q7RfT+9PLKox9M6uqWOYomwr5Q0QABaWKmxV5X6RHmtOA8g5wB/ rfqtjvsMgUFRSn+R6GDWJn21zQEqD9MmVt3AqC5VFGtpOJwdA7sSM1p2sjE0sp3YdnVRf0B/ bJPfuPYPqPr1y5/zgh6hotBBLGSgXGAsxcq7ukoCsZCRF0MhPVYXFG+IIGJMK1RSuUCLBwrK 1NzaBXpfzjNo7MKTIs1HQE+chrSrk3dL6KZWSeVCoJAmApjKlp8JnQw7azZpXaOeRHRC1hCz EVUXu+2tTjRq5No3alztFbEVieUQ5Ip64p0VQlTSY3NtpO9MWBcft8DKaqt/rR/UmYJUOCQI AjbC1cdVOq9/wwYRABJmrcvTEnZH70yHek/MCyjQJRoLMaw7DjfZkHYjCqmuaQsvi3VZU67G 4ckRIFui5pzuWkEKOKS7xPDWu0T0vn75a68pNe3mR2P/9zfK/0bdvneeHJL1DBlVEindKR0u 0m19SuXBOlHWJuqqJVlIPC/lhvlAMmjwhctEgjMxMpE8MySnSL7U9lvli00rxrXN3Guqbb+A n4DwvBH0jExfse9dvsEBhHoyKJAVWfKorDzVDhbrUKeFEB2HAD6uHV+94D5MOb8RN4VWBQwu ma/BoUHIPNfct6QRlYfp1Mefcu0QTyy6EznVKhQbVEPyxSoPCKg9lzkAW3fhJLDaGvOUSi/1 Jb6/duFCSU+c1x5jD9/omQj1oq1+RjHU8PQO2a7DSBMAsOZbJjKzj3YX3A6aXY+8kQGFWyKg UnMdM2AJ3lJec2+I+zo9xdo31Rw2ATcRnuSDECjhmurThVTIJSxvXexl4v+K/yE8v3+pS5/u mYCr0UWI7UjUXp9kv89mLyajs+nsYDY8Oj84evPi+cHp+WR8cD4+PDo6m01Pzw7f/sHPjuHR MROfCfCue1lh8t5rBkWKBuKWsQfetc+ifuVuyFdOp5fRcNA+rxq4ptPRZPBiMD5sr4Dwrfsm b/ni2L54lPHvZfVxnWCBMdDwLE1V6CztHXMrAjA06mOVRraNHEdh0jS33RMpr/HA47wutdWR MhQBbuEeSbaEjpmlop43r4Xyk3Ox9TNpYsQb1TxqzTHocPhvAAAA//8DAFBLAwQUAAYACAAA ACEAN/P9YKUHAACPGQAAFgAAAHBwdC9zbGlkZXMvc2xpZGUxMy54bWzsWd9v2zYQfh+w/4Hw 0wY0dpw4aRYsHZJ03Qq0a9CkGPZIU7RFlCI1krLjDfvf991RsuQmBoptD8HQl0gWyeP9+L67 I/P9D/eVFSsdovHuYjQdH46EdsoXxi0vRh/uXh2cjURM0hXSeqcvRhsdRz+8+Pqr7+vzaAuB 1S6ey4tRmVJ9PplEVepKxrGvtcPYwodKJvwMy0kR5BpSKzs5Ojw8nVTSuFG7PnzOer9YGKVf etVU2qUsJGgrEzSPpaljJ63+HGl10BFiePWOSi9gmbq1BT1jfRe0pje3+inUt/VN4OFfVjdB mAL+GgknK7hlNGkH2mn80634ZfLJ8mX3Ks/vF6GiJ2wT9xcjOH9Dfyf0Td8nofJH1X9V5btH 5qryx0dmT7oNJoNNyaqs3ENzjjpz7kyyWky3VnX6xvqNVx+jcB72kPnZvO2MbDM961KkTQ1R iUS18/Igv/TKtM5K91e+2NAmczz5ozy3Md2mjdX8o6Y/rEaAvlYSQrU7+HA7EoUJia0WsUrX Vku3dU16cVnX1ig5N9akDYE5aUIQuSexk1imdsWNDPL9XtHZoTXr3yk76by536fHnU+vvUvY VtxYqXTpbaGDOPp3HjbFfT9lj3MfgdnZ8RnwzviZnh2dnB6d7CJuengyPTmlGQSl2fT07Plz njIEVJb9MG705kC0yyb5hUliAbNvlbTwwOzwkIRad1ur97poFJEPqOPPWXwv42HosaGoZHjD cbYry0/jCjiVXnkRic5uVDcqiZW0ZM5gg+GMK73o5qaY53bT+tF58wsSXxv8rNo/wOBdaaIo 2twlCh1VMHMdRVp7IYMqTdIqNchJYi6jLoR3Im6qSqdglFgG39Tio95EmCtuNftNHAtkZSH7 aZ9OmI3FDsYzep+aMz+fd/8LGOhBXBEwEb1tOFpmEHrZh1ykUiYajKUMGBVirtNaa0yytp1W 6WqOCg4nKNtQ5RYobQV9IYQErbShCj8W4jLyMrFd4hfYQLdyah8jYZKURMqi7Z8Jw7t7Zzc8 buYoDMlDhGww0SVk1tQJaKWiGIP2IQvyTVCa9pEYjlEu9Vi8dlhfy4DFjZWh28T5tLPHzg4k rHHm92ZXJpnCUtlWhVZAY4pLUHe/UB/MH1ggInyFrwKTCh7E+hS87QIwFsxbU6GAaOZWr3QO jHQbUUr1Ufd+pmldAJVv0CSRFQibaCi8w10QCjJrGyFaug3HF/Y+Nfa+9UF7xOkZgqkkojng DlF1yFKpAkAnqsYmUwNjhLDIQK/khsCgZTQAC/FEAjApEYoCwaPQSYfKOALm7gbzTTuROE7Q y4TbZfE3QDxpBnQmQq/Y1bDYoB0BpSwYstROB5CrYPJgsIkND8TkyQzAceWpw2aSYDMfNmJd GlViywUBNnrkCVkUhnKYtKIOnioZfnxL5NH0Yd61XkxYiLagA2vjVIAbwKy1SSWb4JrOIHZY S7KgmXucnuig0hkMIWPRRyU285b95MbYQE1JmSb7rMsy0kb42NBpAsHZdXhn28CdXaYUYi0j qFvBosoQk8ln7OFKfqTskHalBo2CnvkcNxE9Z06b1BvBUTiSBD58CLnA7j0GkKW/EP8Jlu3d Rquv24WJCXRsTCype+uKc1uCu4zekTBjZpDyEe7Xw7LyLAOmXZxrTo97kTlUB7OimkiKPJC4 ny4C8A3oMWvvuEuom7nN5kALrnQgv1/nDuBhrUW+yUb0NReIRiob1ukConpGDjObko5qcc+g Nr215EBumyMbcGozjgq144zR20YjnBWwxc9+rXkHyp9kl4sp4PgOWhZ6ZRTlWlq5L2rQAtGi 3EKdSPCKPAX5yseUs5EKmzr5ZZA1cgJr3eTbArgnawn+lrDLerf8QtonSdqgAQ/dJX6gyAMM 0J4Yg9ivgVpC0bY/bDEzOI9R2ic0tDQYIJ1QdPvzuw9vXg5bu6gVraLOjku/ksAT4bOqQKi8 bAhf8NQCekT4iBq6wtJ8W5GRtiYbgLD1Aaqwdqpj4I48ThNV7UOSqHzf6DHDsW0yLSHVNqhu 0tDxEhs67w50pcOSBQ73+zY7QOy6gBzgm7THB28vf+scwI39HktyNY6i1NImqssFzhgLnXDC mDfGtqcWOI8aBRrtNcxJYkjjfFDakrkNA2WXrSZf2Pi02PgrnYEazrFd2n80MdOFSAX8LCVV VbGQCq0o9V10kDJUOlYE0LZodIihKsoc3znpAcNg2R7corRs6xhXArCMsrncUA1FNQpoJU0g JdpS+PbyOg/nmxbu3Pkw3VYcJkpb7x36AB+omds98g+ucqhMD5tx8Uk7TsWF89cgzTzSl+eu fPwf3mbyo7v41vfpTUztm4CzL0Z/Xl19d3p0fXZ1cDWdvTqYvfzu+cHlq9OTg1cnx7PZ9dXZ 5fXxj3/RRfp0dk4dPvn7dfe/Anx8cD8PF+C05BdpjMTWXvRPaopH7Q3f9U8P238YMEhnx7Pj s9OT59kMVq17srJ0Ydpe4Ssb3sr63Yq9gr3Qa1/zpxqRbe9W+ynwhUGqXPKbaw1Hc8aS7lx3 51804WJExFsYhzQ5AlZiQgt3MeJ6MuI25S5ff1fvvU+tniyJHJ5F01u7HfkcCv8NAAD//wMA UEsDBBQABgAIAAAAIQDaVP/n+QIAAKIHAAAVAAAAcHB0L3NsaWRlcy9zbGlkZTEueG1sxFXd TtswFL6ftHewck1J+kOhFQXRQrdpMBAt4tp1Tog3x7Zsp7SaJu0d9oZ7kh07CYxRNqYhLRfx 8d93zvfZ53j/cFUIsgRjuZKjqL2dRAQkUymXN6Poaj5t7UXEOipTKpSEUbQGGx0evH61r4dW pAR3Szukoyh3Tg/j2LIcCmq3lQaJc5kyBXXYNTdxaugtohYi7iRJPy4ol1G93zxnv8oyzuBY sbIA6SoQA4I6jNzmXNsGTT8HTRuwCBN2PwjpAJmxmUh9a/XcAHhLLt8YPdMXJkx/WF4YwlPU KyKSFihLFNcT9bLQlctgxL9sv2lMOlxlpvAtciOrUYTir/0/9mOwcoRVg+x+lOXnG9ay/GTD 6rhxEP/k1LOqgntMp9PQmXMngLTvWDXxWn2q2CdLpEI+nn5F725Fxdm3OidurRGKORPQ6qXV fDDu46n1cquxStfezwLbMEiHwrqZWwsIHe1/IRKDIQvqLynI1tUsIik3LhAntnATAVTeqeMO zkrhOKPWEQusNNytCV7HzHmJXBAqgIJML6ihl09iV6LqQKCJNm4UfVrXbqPrrFy4IG3nJaS1 5aKSFp2s7rf8H4mPJieESweGF6QAcJjq5PvXb2Twi8aboRfUguC+wHQT/P7gy+XPAv0tBpnC gnSS9u4DqOp0/0GFRc4lXZKZKvAifSy3yAxrJ4Am70sc2SLXVKBG5BqMBOy+pVKCJX9JB4wJ tWdDAHOseSoDifK/4OUOTVMLsTCdWldbBLNpFH0ejwf9zmRv3Bq3e9NW73iw2zqa9nda051u rzcZ7x1NuidffG1t94bMQCi775rnAwcfleyCM6Osytw2U0Vd+2OtbsFoxUP5byf1G7KkYhT1 u91kkCS9fp0EGFrThmB9KtVVnQlzRvX5MqiCvvA8JmFIo2h11t0vQS14gRPBkjVxTasMn8vm GUhLPBKOR51xyR2mJL4vjho3iiTg84oFQKUwD2nrikulXB1nQPKCV9Deqt15zTHgHwAAAP// AwBQSwMEFAAGAAgAAAAhANXRkvG8AAAANwEAACwAAABwcHQvc2xpZGVMYXlvdXRzL19yZWxz L3NsaWRlTGF5b3V0Mi54bWwucmVsc4zPvQrCMBAH8F3wHcLtJq2DiDR1EcHBRfQBjuTaBtsk 5KLo25vRgoPjff3+XLN/TaN4UmIXvIZaViDIm2Cd7zXcrsfVFgRn9BbH4EnDmxj27XLRXGjE XI54cJFFUTxrGHKOO6XYDDQhyxDJl0kX0oS5lKlXEc0de1Lrqtqo9G1AOzPFyWpIJ1uDuL4j /WOHrnOGDsE8JvL5R4Ti0Vk6I2dKhcXUU9Yg5Xd/tlTLEgGqbdTs3fYDAAD//wMAUEsDBBQA BgAIAAAAIQDV0ZLxvAAAADcBAAAsAAAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9zbGlkZUxh eW91dDkueG1sLnJlbHOMz70KwjAQB/Bd8B3C7Satg4g0dRHBwUX0AY7k2gbbJOSi6Nub0YKD 4339/lyzf02jeFJiF7yGWlYgyJtgne813K7H1RYEZ/QWx+BJw5sY9u1y0VxoxFyOeHCRRVE8 axhyjjul2Aw0IcsQyZdJF9KEuZSpVxHNHXtS66raqPRtQDszxclqSCdbg7i+I/1jh65zhg7B PCby+UeE4tFZOiNnSoXF1FPWIOV3f7ZUyxIBqm3U7N32AwAA//8DAFBLAwQUAAYACAAAACEA 1dGS8bwAAAA3AQAALQAAAHBwdC9zbGlkZUxheW91dHMvX3JlbHMvc2xpZGVMYXlvdXQxMC54 bWwucmVsc4zPvQrCMBAH8F3wHcLtJq2DiDR1EcHBRfQBjuTaBtsk5KLo25vRgoPjff3+XLN/ TaN4UmIXvIZaViDIm2Cd7zXcrsfVFgRn9BbH4EnDmxj27XLRXGjEXI54cJFFUTxrGHKOO6XY DDQhyxDJl0kX0oS5lKlXEc0de1Lrqtqo9G1AOzPFyWpIJ1uDuL4j/WOHrnOGDsE8JvL5R4Ti 0Vk6I2dKhcXUU9Yg5Xd/tlTLEgGqbdTs3fYDAAD//wMAUEsDBBQABgAIAAAAIQDV0ZLxvAAA ADcBAAAtAAAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDExLnhtbC5yZWxz jM+9CsIwEAfwXfAdwu0mrYOINHURwcFF9AGO5NoG2yTkoujbm9GCg+N9/f5cs39No3hSYhe8 hlpWIMibYJ3vNdyux9UWBGf0FsfgScObGPbtctFcaMRcjnhwkUVRPGsYco47pdgMNCHLEMmX SRfShLmUqVcRzR17Uuuq2qj0bUA7M8XJakgnW4O4viP9Y4euc4YOwTwm8vlHhOLRWTojZ0qF xdRT1iDld3+2VMsSAapt1Ozd9gMAAP//AwBQSwMEFAAGAAgAAAAhAOznoHjUAAAAvwEAACoA AABwcHQvbm90ZXNTbGlkZXMvX3JlbHMvbm90ZXNTbGlkZTEueG1sLnJlbHOskDFrAzEMhfdA /4PRXvsuQwkhviwlkKFLSH+AsXV3pneysZSS/Pua0kIOMnToqPek7z2021/nSX1i4ZjIQqsb UEg+hUiDhffz4XkDisVRcFMitHBDhn33tNqdcHJSj3iMmVWlEFsYRfLWGPYjzo51ykjV6VOZ ndSxDCY7/+EGNOumeTHlngHdgqmOwUI5hhbU+ZbxL+zU99Hja/KXGUkeRBhKgvzmWLBUrCsD igWt7/XFUqtrBJjHzdb/2YynGHDR6Vv5MTa/Pczi7d0XAAAA//8DAFBLAwQUAAYACAAAACEA 1dGS8bwAAAA3AQAALAAAAHBwdC9zbGlkZUxheW91dHMvX3JlbHMvc2xpZGVMYXlvdXQ4Lnht bC5yZWxzjM+9CsIwEAfwXfAdwu0mrYOINHURwcFF9AGO5NoG2yTkoujbm9GCg+N9/f5cs39N o3hSYhe8hlpWIMibYJ3vNdyux9UWBGf0FsfgScObGPbtctFcaMRcjnhwkUVRPGsYco47pdgM NCHLEMmXSRfShLmUqVcRzR17Uuuq2qj0bUA7M8XJakgnW4O4viP9Y4euc4YOwTwm8vlHhOLR WTojZ0qFxdRT1iDld3+2VMsSAapt1Ozd9gMAAP//AwBQSwMEFAAGAAgAAAAhANXRkvG8AAAA NwEAACwAAABwcHQvc2xpZGVMYXlvdXRzL19yZWxzL3NsaWRlTGF5b3V0Ny54bWwucmVsc4zP vQrCMBAH8F3wHcLtJq2DiDR1EcHBRfQBjuTaBtsk5KLo25vRgoPjff3+XLN/TaN4UmIXvIZa ViDIm2Cd7zXcrsfVFgRn9BbH4EnDmxj27XLRXGjEXI54cJFFUTxrGHKOO6XYDDQhyxDJl0kX 0oS5lKlXEc0de1Lrqtqo9G1AOzPFyWpIJ1uDuL4j/WOHrnOGDsE8JvL5R4Ti0Vk6I2dKhcXU U9Yg5Xd/tlTLEgGqbdTs3fYDAAD//wMAUEsDBBQABgAIAAAAIQDV0ZLxvAAAADcBAAAsAAAA cHB0L3NsaWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDYueG1sLnJlbHOMz70KwjAQB/Bd 8B3C7Satg4g0dRHBwUX0AY7k2gbbJOSi6Nub0YKD4339/lyzf02jeFJiF7yGWlYgyJtgne81 3K7H1RYEZ/QWx+BJw5sY9u1y0VxoxFyOeHCRRVE8axhyjjul2Aw0IcsQyZdJF9KEuZSpVxHN HXtS66raqPRtQDszxclqSCdbg7i+I/1jh65zhg7BPCby+UeE4tFZOiNnSoXF1FPWIOV3f7ZU yxIBqm3U7N32AwAA//8DAFBLAwQUAAYACAAAACEA1dGS8bwAAAA3AQAALAAAAHBwdC9zbGlk ZUxheW91dHMvX3JlbHMvc2xpZGVMYXlvdXQ1LnhtbC5yZWxzjM+9CsIwEAfwXfAdwu0mrYOI NHURwcFF9AGO5NoG2yTkoujbm9GCg+N9/f5cs39No3hSYhe8hlpWIMibYJ3vNdyux9UWBGf0 FsfgScObGPbtctFcaMRcjnhwkUVRPGsYco47pdgMNCHLEMmXSRfShLmUqVcRzR17Uuuq2qj0 bUA7M8XJakgnW4O4viP9Y4euc4YOwTwm8vlHhOLRWTojZ0qFxdRT1iDld3+2VMsSAapt1Ozd 9gMAAP//AwBQSwMEFAAGAAgAAAAhANXRkvG8AAAANwEAACwAAABwcHQvc2xpZGVMYXlvdXRz L19yZWxzL3NsaWRlTGF5b3V0NC54bWwucmVsc4zPvQrCMBAH8F3wHcLtJq2DiDR1EcHBRfQB juTaBtsk5KLo25vRgoPjff3+XLN/TaN4UmIXvIZaViDIm2Cd7zXcrsfVFgRn9BbH4EnDmxj2 7XLRXGjEXI54cJFFUTxrGHKOO6XYDDQhyxDJl0kX0oS5lKlXEc0de1Lrqtqo9G1AOzPFyWpI J1uDuL4j/WOHrnOGDsE8JvL5R4Ti0Vk6I2dKhcXUU9Yg5Xd/tlTLEgGqbdTs3fYDAAD//wMA UEsDBBQABgAIAAAAIQDV0ZLxvAAAADcBAAAsAAAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9z bGlkZUxheW91dDMueG1sLnJlbHOMz70KwjAQB/Bd8B3C7Satg4g0dRHBwUX0AY7k2gbbJOSi 6Nub0YKD4339/lyzf02jeFJiF7yGWlYgyJtgne813K7H1RYEZ/QWx+BJw5sY9u1y0VxoxFyO eHCRRVE8axhyjjul2Aw0IcsQyZdJF9KEuZSpVxHNHXtS66raqPRtQDszxclqSCdbg7i+I/1j h65zhg7BPCby+UeE4tFZOiNnSoXF1FPWIOV3f7ZUyxIBqm3U7N32AwAA//8DAFBLAwQUAAYA CAAAACEA1dGS8bwAAAA3AQAALAAAAHBwdC9zbGlkZUxheW91dHMvX3JlbHMvc2xpZGVMYXlv dXQxLnhtbC5yZWxzjM+9CsIwEAfwXfAdwu0mrYOINHURwcFF9AGO5NoG2yTkoujbm9GCg+N9 /f5cs39No3hSYhe8hlpWIMibYJ3vNdyux9UWBGf0FsfgScObGPbtctFcaMRcjnhwkUVRPGsY co47pdgMNCHLEMmXSRfShLmUqVcRzR17Uuuq2qj0bUA7M8XJakgnW4O4viP9Y4euc4YOwTwm 8vlHhOLRWTojZ0qFxdRT1iDld3+2VMsSAapt1Ozd9gMAAP//AwBQSwMEFAAGAAgAAAAhAPxj i5QRBwAAZjAAACEAAABwcHQvc2xpZGVNYXN0ZXJzL3NsaWRlTWFzdGVyMS54bWzsWu9uGkcQ /16p73C6fqwI958DBUeATWvJSazgPMByt8DVy951byE4VaQ8S9+ifZw8SWfnduGwjWPXjoQT vnDL7O9mZ+c3M/sHXr5azZm1pKLMct613ReObVGe5GnGp137/cWwEdtWKQlPCcs57dpXtLRf Hf3808uiU7L0NSklFRbo4GWHdO2ZlEWn2SyTGZ2T8kVeUA59k1zMiYSvYtpMBfkAuues6TlO 1JyTjNv6fXGf9/PJJEvocZ4s5pTLSomgjEiwv5xlRWm0FffRVghaghp8e8ukI5hfMmKpeo6n 1ec7OrGydAVechwXEKSDmumACWtJWNceT127efSyqcG6pV4uiwtBqWrx5W+iGBXnAkd4szwX oBNU2hYnc/CvUoAdGoZf+RIbzWuvT02TdFYTMVdPcI8FFgKLV+qzqWR0Ja2kEiYbaTJ7ews2 mZ3cgm6aAZq1QdWsKuNuTscz07nIJKPWOSMJneUshVhBFyHW2F4WZ3lyWVo8h7kpV1RTXSOq +atnMbPkVQFqpVKrcVUnNjaG3eqV2I+BYZyuH4WuF277x3VCN4wUQE3c9b0wjPyt6ZNOIUr5 G83nlmp0bUETiZFAlmelrKAGgjZVlhQduern6ZVCjuEJXoKUg/dnufhoW+yUl1277QYBjC3x SxC2PPgi6j3jrR7JBjlDmghPQE/XTqRAWzgEeG8h80mmLaqGVF2slCN5xSjOu1AfKBZgECMq 4ylvvB9Bxs/lgFHC13EhjwYsSy4tmVs0zaSlEx95gPoAKtVAEodDlZSn50SQd9c0axehb4xP 0E13x5O/jidFVj2cvKcIJ+UgW+f2Y6LKjb0wujusAj90fT/e/7B6cCQViuolvovCR0aWch8G VrkVWVX0XB8SWXvAkCOa5Dy1GF1Sdg/1GGQPUH8xy8T9tWONeYD2Yb4QcnZv9cFD1WeTW7U/ dU4HJqePidxeItAhj83pVMLsPkIuEDbRuY00/t/cjnxYDcJrS6rXCnwEqNTerCnPaMHA6Zhk xvaSuSp2CJtCVDA0NqUTRbpyp6umi5TkLEuHGWO3bITkqtofyYzLStIKHcdsJdbg6ttGT9OM hE1tSNWuGYjRPWEpBtFfUX940ht6TqPXDweN4XHgNnoDz2u0w5OgfdI+cftB+5NtYgIiTWZz OsymC0HfLioq7pMUXrPddFubfJioreFTZ0RoMmKY56oG1nMCs/ixOTEBwpHFPxdEwAg6L6pN zkPyInD8GJe0XYkRuG4Qf8+JYTZb+5caTxuTkYnJEdhCrTeL+fhaZCKxj41MOEuC6tuCEwP/ YUU7cp07g/O7r9r7Gprrqt32W07Q8weN0OkfN3q9AAq2M/AaQc877kVtd9BzB+uqXarI4xAd 9y3WXz7/88uXz/8+QbXGhzm6Q/gA+7plLUQGE+n325E3iPuNvhsMG8Fxu9XoDaOwMQz9IBj0 497AP/mkbhPcoJMIihcNp6m5onCDG5cU8ywReZlP5Iskn+vbjmaRf6CiyDO88HAdfWuCFKmj RehHLd9kGdhmnmitSjx9kZEw8ZoU1njqwsIuXfDvClrpJbTGU0/JPCXzlAxaJEkol4DQDSPx jGSN8Y3EN5LASAIjCY0kNJLISKDGzFjGL8EZ6mFbk5z9XglMq6oxUCXOyFW+kKepZqImqS4e 3KAVxH4UtCF3OkoiTlN95bALG6o8M1h9ntyJdWtYvU/difVqWL1+78T6NayuqDuxQQ0bfQUb 1rCtr2CjGhZPqHdgWzVs+yvYuM4FZukd4C3iTFDfJF6usLSU2Fa3EDs3sBZUpwsyHn3UFbaq qlhSKTnjfXGJ12/qCpHrr9A1gwKR8en5gidS9aNmPiqSaoFLzhNdI9vOpkbWAX11AbgNXZfS de948Sbn1Rm6Vq0rIy+pUDey963cWnUdhVPCIjqB5bpr/zr/o8GkXgvJtQ5K9A1gea0jKbXu W6v8tvcLXPduUDEn4gwo9qo9Y8ahnINTG0awP0zJUlfV2rpXI2uYw8q48U5PZIRVXhsvBjMi rAQ+uvaXz39X0hqnHu6GvwWnfBenfBen/G5OselteIviEI1/BryFT07bN0vFJ6RNcaVp8ze0 wQnMV477MXnDme85b4oszVtQ4w04wtPJj8ib+xzKpCJL8xbWljcnbCEXB972lDdFluYtqvEW usFz2Zf8mLwpsjRvrRpv7VZl/YG3PeVNkaV5ize8+YGnPHfgbW95U2Rp3to13uI4OuxL9pk3 RVb1p6PNIbzo5HJGxfpIDm+cV+zq2d28Cd1Ats/v34Tp5+bj24/IeFt/8M/Os6hxwsE/O858 fksd+w4O2nW4cmMvRusPDtpxisG1+OCg3ccF86PvwUE79uVg7qFI37UBjsLWoUhv7zTrm0v8 +dz8Klf9aFf9mfPoPwAAAP//AwBQSwMEFAAGAAgAAAAhADTNuc4WAQAAxwcAACwAAABwcHQv c2xpZGVNYXN0ZXJzL19yZWxzL3NsaWRlTWFzdGVyMS54bWwucmVsc8TV3WrDIBQH8PvB3kHO /WJM2zQdNb0Zg8KuRvcAEk8+WKKidixvP9kYNLDJBgVvBI/694cXx/3hfRrJG1o3aMWBZTkQ VI2Wg+o4vJwe7yogzgslxagVcpjRwaG+vdk/4yh8OOT6wTgSUpTj0Htv7il1TY+TcJk2qMJK q+0kfJjajhrRvIoOaZHnJbWXGVAvMslRcrBHyRiQ02zwL+G6bYcGH3RznlD5H+6gbhwkPolZ n32IFbZDzyHLLuuLTYxl4Q6gv9iKa9p8OIsL1Wfla4w7kj5RTHbVB/qvrIjJVillq5hsnVK2 jsk2KWWbmKxMKStjsm1K2TYmq1LKqphsl1K2i3baPGmrzb9tdPH91h8AAAD//wMAUEsDBBQA BgAIAAAAIQDIpFN7HgMAALkIAAAhAAAAcHB0L3NsaWRlTGF5b3V0cy9zbGlkZUxheW91dDYu eG1srFbdbtMwFL5H4h2scJ2lSdOfVHQoSRuEtLGJbg9gEneNcGxju6UFTeK14HH2JBw7cTvG kHaRm9ixzzk+3/cd5+Ttu31D0Y5IVXM298KzgYcIK3lVs7u5d3tT+FMPKY1ZhSlnZO4diPLe nb9+9VbMFK0u8IFvNYIYTM3w3NtoLWZBoMoNabA644Iw2Ftz2WANr/IuqCT+BrEbGkSDwTho cM28zl++xJ+v13VJFrzcNoTpNogkFGvIX21qoVw08ZJoQhIFYaz33ynpgwC0utaUXDF68JA1 lTtYDL1zQF+uaIUYbmDhxlgha2Z2lLiRhJgZ272XYiWupXX4uLuWqK5MgM7RC7qNzsy+sp2d BE/c79wUz/Zr2ZgRuED7uQeSHcwzMGtkr1HZLpan1XJz9YxtuVk+Yx24A4JHhxpUbXL/wokc nJaH8IjK5avEBS+/KMQ44DHwW3hHixazGcXmMfGdXbtpJ6dkOrL0PuPVwRzyGUa7iGdU6ZU+ UGJfhHnYNCTkS7Gpa8L82xXUdaNzSjA7EqLPc1qXX5DmiFS1RpdYaSKRTQZuAYQ07GjLkQ1J WHWNJf70JHLLorBJuwwDR+H/iRw6IhdYE3RNcUk2nFaQQdQHp5UGyN/hWmC69uBA0D1sFe+F 4zXcB4PixzgrlmkRDfw0G+V+sYhDP82jyE9GyzhZJsswi5N7d8MqgKrrhhT13VaSq632XipV FCRBODkJAuf3L0nsJCk4N6XwWJRhH6KstWxV+brFEk5wwjjfHoTpl5GRY2RF64qgj9vm8xNe 4j54geYCoZ+lxl6Gnms2GU4GcTrM/dEgW/hpGkO5DvLIj9NokY6TME/D/FizyiBnkN1LS/Xh 5683Dz9/91CrdnDtBb71F0p3M7SVNQDJsmQc5dPMz8K48ONFMvHTYjzyi9EwjvNsmubD5b1p U2E8KyWxne9D5XpmGP/TNZu6lFzxtT4redO130Dwb0QKXtsOHA66nrnDFOSZDkeTZDiaTjuZ IDc32myN8CuDH0YqL7G42tkiaezHNrdLAn4Ruho5mRjs7pfj/A8AAAD//wMAUEsDBBQABgAI AAAAIQA3oj0y7QIAAGcHAAAhAAAAcHB0L3NsaWRlTGF5b3V0cy9zbGlkZUxheW91dDcueG1s rFVLbtswEN0X6B0Eda3oY/kjI3YgyVZRIE2MOjkAI9GxEIpkSdq1WwTItdrj5CQdUqKTJimQ hTciNZoZzntvNDw92zXE2WIha0YnbngSuA6mJatqejtxr68Kb+Q6UiFaIcIonrh7LN2z6ccP p3wsSXWO9myjHMhB5RhN3LVSfOz7slzjBskTxjGFbysmGqTgVdz6lUA/IHdD/CgIBn6Daup2 8eI98Wy1qks8Y+WmwVS1SQQmSEH9cl1zabPx92TjAktIY6L/LUntOaC9IYjeuY5xE1swhO4U kJdLUjkUNWDIjIc2Sn4lMNY7uv0s+JIvhPG92C6EU1c6totx/e5D52Ze6dZs/Bfht3aLxruV aPQKFDi7iQtK7fXT1za8U07ZGssna7m+fMO3XM/f8PbtAf6zQzWqtrjXcCILZ4YUdhYElXjN SIWFEx4A2tIlP2flnXQoA2iaiRbpwaOFr1e+7qivFDTeTxARkZULB0K5YVuodTabpzo7HtUu Y9VeH3oDqzGiMZFqqfYEmxeuHytQUKP4NciKeVpEgZdm/dwrZnHopXkUeUl/HifzZB5mcXJv +6ECqKpucFHfbgS+3ChX5xLACLQB/DCYetdLqLtROcGIHihX08hP/HCoWVaGazjf6EarBRLo 24sMrR7cYLSAfCvG/yXpWUkKxhQI8VyU6BiirJRoVfm+QQJOsMLY2CMIc1xGYsvIktQVdi42 zc0LXnrH4AVGIaR+kxrD+5F7NukNgzjt5V4/yGZemsbQrkEeeXEazdJBEuZpmB96VmrkFKp7 b6s+Pvz+9Pjw5wi9ahY7FWFEnUvV7ZyNqAFIliWDKB9lXhbGhRfPkqGXFoO+V/R7cZxnozTv ze/1dA3jcSmwmdNfKjvhw/jVjG/qUjDJVuqkZE13Wfic/cCCs9rcF2HQTfgtIlqeUT8aDoPB sJMJarOrqVYLv9T4YSXiK+KXW9MkcBiInBsThwut65EnF43dXpDTvwAAAP//AwBQSwMEFAAG AAgAAAAhAFbhkqzGBAAAuBIAACEAAABwcHQvc2xpZGVMYXlvdXRzL3NsaWRlTGF5b3V0OC54 bWzMWN1yozYYve9M34Gh1wTEP55NdmxsdzqTTTJ19gEUkGO6gKiQvXY7O7Ov1T7OPkk/CeS/ ODG2c9Eb8wFHR/q+Ix1hffi4LHJtQVid0fJaR1eWrpEyoWlWPl/rnx/HRqhrNcdlinNakmt9 RWr9483PP32oenWe3uIVnXMNOMq6h6/1GedVzzTrZEYKXF/RipTwbkpZgTncsmczZfgrcBe5 aVuWbxY4K/W2PevSnk6nWUKGNJkXpOQNCSM55jD+epZVtWKrurBVjNRAI1vvDomvKsiWPv3x uNQ1CWMLeID0G8g8meSpVuICHsS05MCgfc34TItxJZgkpq4eGSEiKhe/smpSPTDZ9G7xwLQs FVQthW62L1qYvC0XMjD3mj+rEPeWU1aIK1REW17rINxK/JriGVlyLWkeJpunyez+ADaZjQ6g TdWBudWpyKoZ3Mt0bJXOY8ZzoqF1Vmq8dXVLky+1VlLIR6TfpLdGNDmLazVry88FVYtrXspg M5iDlQidKAhDmaLrBaDpbk2cyLFtJ2hyRb5ltYjtjBvmqseXA5quROsnuEKmuExmFCbqU8OZ 13zCVzmR8SJH7YBSMv0dwPVf0NuGfQ0Q8VbDSvzIdgwa5VisPFIanyew8goe5wSXa7H4TZxn yReNU42kGdc+4ZoTpslCwToFRsHOZR+SkpTpA2ZYDGebuRlRJZNVScq83xbZUSKraf+Q44TM aJ7CIOzLJM/S5QbSXW0PhQ5q5Y7CwLW9Xbl9FNhCAym3GwaO3yC6yH2BxjK0X2LtcBurABA6 B7DuNlYBIHQPYK1trAJA6B3DKgCE/jGsAkAYHMMqAIThMawCQBgdwzaAQ2uoEpN8ka8Xy4Vr SswguaTqnTXVrJv9LuXEPaHLCUlomWo5WZC8A71cWyfQP84y1p3dOZF9TOcMtruu9O6p9Nn0 IPt7u5m73rKE1NtWJgty6e4lPESXE3iG86neGJwU8tztzLa8oPWEV/YzJ0TIA/SFBqcVmN3K D4KsTMHnRShbze/gK1C22lqfYhN91f9aqnYn7sa343t7HtnyRcgVqG58O/6856MtH3ICmUY3 wrfMVhGGdii8/gzCPUduCW079AXsDMI921aEgSt3rjMI97y9JRRs3UV5awNQhL4XnCnK/2OX OM2PPOVHQ8zJjh9JB73Uj1L+wo1QU7FX7Uj2+qZpyBtZ1yn8JxJZ/O0PxqP+2LaM/sCLjfHQ RUY/tm0j8kZuNIpGaOBG39Q/rBRS5VlBxtnznJH7OZcKd5HDNiMTBZuiQ//vv0X4SpIxpULu bVHkZ+Slokw5a1T5c44Z9KCEOfIhfIow71uRQFVkkmcp0e7mxdNeXfz3qEudp0B9sDRHttCz 5mzkBJbbd2LDswZDo993YbpasW24fXvY9yMU91G8nrO1yLyE0XWdqj++//PLj+//vsNclRd1 sADWc1vzNtLmLINEBoPIt+NwYAyQOzbcYRQY/bHvGWPPcd14EPZjZ/RNHFAgt5cwIk8+fkvV mQlyX5yaFFnCaE2n/CqhRXv8Ylb0K2EVzeQJDLLaM5MFFh/CCFw7CiM5C0w5NHWVgxW6T0T6 cM3ZJ1zdL+QcKaSfxvJRlZXP7RTZQETq6sTp5j8AAAD//wMAUEsDBBQABgAIAAAAIQBthcX1 0QMAAKwMAAAiAAAAcHB0L3NsaWRlTGF5b3V0cy9zbGlkZUxheW91dDExLnhtbLRX247bNhB9 L9B/INRnraybLRnxBpJsFQU22UXt9J2R6LUQSmRJ2rFTBMhvtZ+TL+mQkuys10ltrPsiUtTw cOacGZJ69XpbU7QhQlasmVjuzcBCpClYWTWPE+vdIrcjC0mFmxJT1pCJtSPSen3780+v+FjS 8g7v2FohwGjkGE+slVJ87DiyWJEayxvGSQPflkzUWMGreHRKgT8Cdk0dbzAYOjWuGqubL86Z z5bLqiBTVqxr0qgWRBCKFfgvVxWXPRo/B40LIgHGzH7qktpxiBaIUYtKUZI05WJrIWMvNvDF tW6BgmJOS9TgGgb+ANOqwBQZewSMoQXZKmMm+UIQonvN5lfB5/xBmNlvNw8CVaVG61Asp/vQ mZnXZmM6ztH0x76Lx9ulqHUL7KDtxAIRd/rp6DFwAhXtYHEYLVb3J2yL1eyEtdMv4HyzqI6q de55OF4fzhEp7j683nHJ71jxQaKGQWCahzbOvUUbvG75qtNEaSgLMVGBcq1E3azW1HQOPp4k KBp5QTxoQ/eHoeuFT7nyhl5kvmsOwsh1Iz86ZqKF5mO1TVm507PfQwsMaI8mFsE6+BaWSjVX O0rMC9cP45QAY4p1oZHGfjeHQqtVRglu9nqo24xWxQekGCJlpdAbLBURyFAAZQmQ2iVlHDOQ pCkfsMC/HyG3rnPjd++vCeHHOvrPddQMPVBckBWjJbjiXUNSTdyRorD+9jD5AmX9yPuBsKOR H/j/p7BcM7+hewVfKLT22+gsnwjdinm8pGHrgiXnpGCwTVGyIfQMeCP1BfCLVSXOR/cvRM/Z WqjV2fDBpfDV8iT6tUss6EtsihV5UlmGkJdWVgmVJD/BUYjpsq+pdk//blGZVY9z/zvZvoTj T0fx1zDNZ0nuDewkDTM7nwaunWSeZ8fhLIhn8cxNg/hzf6qWEKqqapJXj2tB7tf6kDxPFc+J HXd0EATWv74kYS9Jzpguwm9FMWn0UlGWSrSq/LnGAlbohfmP3e4SYa7LyLBnZE6rkqC36/r9 ES9mm30pL3ChBOiT1Ji958o5G/ujQZD4mR0O0qmdJAGk6yDz7CDxpskwdrPEzfY5K3XkDXh3 bqp+/fL3L1+//HOFXDVNf4GEA+FOqq6H1qKCQNI0HnpZlNqpG+R2MI1HdpIPQzsP/SDI0ijJ /NlnfRF1g3EhiLnt/lb292Q3eHZTrqtCMMmW6qZgdXfldjj7SARnlbl1u4PunrzBsLmOvNAb Re7IVIdjXOtb46zWfa7Dh5aKN5jfb0yO1OaUy8wQh7+CLkUOJjr0/i/j9l8AAAD//wMAUEsD BBQABgAIAAAAIQBDvzPfmgMAAMwLAAAiAAAAcHB0L3NsaWRlTGF5b3V0cy9zbGlkZUxheW91 dDEwLnhtbKxW247bNhB9L9B/INRnrS6WvZYRbyDJVlFgk13UTt8ZiV4ToUSWpB27RYD8Vvs5 +ZIOKdHOXgLYXb+IFw0PZ84ZkvPm7a5haEukorydetFV6CHSVrym7cPU+7As/bGHlMZtjRlv ydTbE+W9vfn5pzdiolh9i/d8oxFgtGqCp95aazEJAlWtSYPVFRekhX8rLhusYSgfglriz4Dd sCAOw1HQYNp6/Xp5ynq+WtGKzHi1aUirOxBJGNbgv1pToRyaOAVNSKIAxq5+7JLeC4gWiNHL nYesndzCTOTdQOjVgtWoxQ1MLKlmBAFB6A8wphVmaEl22popsZSEmF67/VWKhbiXdvX77b1E tDZoPYoX9D96Mztst7YTPFn+4Lp4slvJxrTACtpNPRBvb76BmQMnUNVNVsfZan33gm21nr9g HbgNgu82NVF1zj0PJ3bhdKREh6icv0rc8uqTQi2HeEz4XXgHiy5m04p1L4E2UL1d99N2js70 ZOldzuu92eQjtHYST5jSC71nxA6E+Vg3JPjLsMlw0vofFpDhjS4Ywe2BEH1TMFp9QpojUlON 3mGliUTWGTgPAGnY0ZYjC0na+h5L/PsT5I5FYZ12HgaOwh8TOXBEPsopdM9wRdac1eBKfAly DVUe4pLCIeiy3YP9d8fF5zBurhFAIdg43dH4nH9hCNqyA9Gv1MOwYuVQj/ToOH+6pQ3qjC0X pOJwrhnZEnYCvFXkDPjlmsrT0Qdnopd8I/X6ZPjkXHi6ehH90ichcSdhhjV5dAAsIa89ADUk vPoLngrMVi71u7vvIrfNCp4JE8Xfo7ycZ2Uc+lk+LPxylkR+VsSxnw7nSTpP51GepF/cq1ND qJo2pKQPG0nuNuYxOU2VOEiD6PooCOx/eUmGTpKSc3MIvxfFptFrRVlp2any5wZL2MEJ838u pR8Ic1lGRo6RBaM1Qe83zccnvAwvwQsUXAD9IjX27rlwzqaD6zDJBoU/DPOZn2UJpGtYxH6S xbNslEZFFhWHnFUm8ha8OzVVv33955dvX/+9QK7axhVa8CDcKt330EZSCCTP01FcjHM/j5LS T2bptZ+Vo6FfDgdJUuTjrBjMv5iCLUomlSS2GvytdnVklDyrJBtaSa74Sl9VvOlL0kDwz0QK Tm1VGoV9HbnFcLmOxuMojEaj614lcM211lmj+8KEDy2T77C429ocaewrV9gpAVVznyJHExO6 q8Jv/gMAAP//AwBQSwMEFAAGAAgAAAAhAMtUX8aWBAAAJxIAACEAAABwcHQvc2xpZGVMYXlv dXRzL3NsaWRlTGF5b3V0OS54bWy8mO1uozgUhv+vtPeA2N8UzDfRtCNCktVKnbaadC7ABadB w9caJ012NdLc1u7lzJWMjzEBpuk0m6L9Eww5fuzj134xfvd+l2fKltA6LYtLFV0YqkKKuEzS 4vFS/XS/0HxVqRkuEpyVBblU96RW31/9+su7alJnyTXelxumcEZRT/Clumasmuh6Ha9JjuuL siIF/29V0hwzfksf9YTiJ87OM900DFfPcVqosj49pX65WqUxmZXxJicFayCUZJjx/tfrtKpb WnUKraKk5hhRe9gltq94tlUa3+9URYTRLX+A1CueebzMEqXAOX9wl8ZsQ4nylLK1EuEKSCKm ru4pIVAqtr/TalndUVH1ZntHlTQBlESouvxDhonbYisK+g/VH9sinuxWNIcrHxFld6ly4fbw q8MzsmNK3DyMu6fx+vZIbLyeH4nW2wb0XqOQVdO55+mYbTr3KcuIgg5Ztf2tq+sy/lwrRcnz gfSb9A4RTc5wrdZy+BmgZFzzpyh0nTk6Er4VeL4vUrQdj2s6HBMrsEzT8ppckWsYMqKfcUOu Jmw3LZM91H7gV54pLuJ1ySfqQ8PMarZk+4yI8jZDskMJWX3kwfVfvLWOfgiAcq9iBT+iHuWV MgwrjxTapyVfeTmLMoKLg1jsKsrS+LPCSoUkKVM+4JoRqoiB4uuUE4HORBsCSYrkDlMM3emT mx5VItk2SZH3z0W2WpHbaX+X4ZisyyzhnTDHkJyvOJU3teuiTxfeQb6FpPKB79mmM1TeRZ4J cgjlbd+z3CbiFOVfklvJMb0WSyctEm4lUBS1NjfcL0WtV2aDKJodSs7Zk3im3+cBRPKsjhcg 2z6ZB5EHHkAkz+54yPJg1ZwINPpAoEig0wP6pg95nAEEigS6HdA0fRfCzgACRQK9HtCzhXJn AIEigX4HBNrpogyAQJHAoAd0He9MUYBy3JPG9Q778IKA9dg3DmsM44Blqor01jhbSQ8RlnTu y8M0HE+uhxfeHpaPkMOj/1cPEYtvRA9BgzX/dg9BA48bwUPQ2B4yBI7gIUPgCB4yBI7gIUPg CB4yBL7sIYDnAYcNzBv3ObAMxTanHuxzzvEjp/WjGWbDjYw9hh8l7JkboWbEXrQj0epPTUPc iHFd8S8QyOJvd7qYhwvT0MKpE2mLmY20MDJNLXDmdjAP5mhqB1/a75mEp8rSnCzSR757u90w ofApcph6oCOvG3Te/vivCLeVZFGWIHdfFLFTe6soK0YbVf7cYMpbaIV5Za/5X4QZd0S8dkSW WZoQ5WaTP/wwLu4Y48I/5Tn66NC88go9a84GlmfYoRVpjjGdaWFo8+lqRKZmh+YsdAMUhSg6 zNkaMi94706dqt++/vPbt6//jjBXxaX9jOfWc10zWVI2NOWJTKeBa0b+VJsie6HZs8DTwoXr aAvHsu1o6oeRNf8CxwHInsSUiHOGP5L2hALZz84o8jSmZV2u2EVc5vKwQ6/KJ0KrMhXnHciQ JxRbnMHMdf3ACHw/kDLxvrVX0VsQfgn582tGP+DqdismSS4MNRKPqrR4lHOkC4Hc2wOeq+8A AAD//wMAUEsDBBQABgAIAAAAIQDwMrmr7AQAADIZAAAhAAAAcHB0L3NsaWRlTGF5b3V0cy9z bGlkZUxheW91dDUueG1s7Jndbts2FIDvB+wdBO1akah/GU0KW7aHAWkSzO4DMBIda5VIjaId e0OBvtb2OH2SkUeSfxKnVWyjN8uNSUnkx/PDc3jCvHu/KnJtSXiVMXqpowtL1whNWJrRh0v9 43RshLpWCUxTnDNKLvU1qfT3Vz//9K7sVXl6jddsITTJoFUPX+pzIcqeaVbJnBS4umAlofLb jPECC/nIH8yU40fJLnLTtizfLHBG9WY+7zKfzWZZQoYsWRSEihrCSY6FlL+aZ2XV0soutJKT SmJg9r5IYl1KbcUjm66mj+z2/g9dg8F8KV8j/Urqn0zyVKO4kC9iVpSYZxWj8KUqp5wQ1aPL X3k5Ke84TLhZ3nEtSxWgmaibzYdmGDzSJXTMJ9Mf2i7urWa8UK20hra61KXT1urXVO/ISmhJ /TLZvk3mtwfGJvPRgdFmu4C5s6jSqhbuuTp2q840EznR0EarVt6qvGbJp0qjTOqj1K/V24yo dVZtOW9Nr1DNuPojdLbCHLRE6ERBGIKKju8h29u3CbI85PlWoyxybM/znacq1+iyJ1YDlq7V 9HvZgktwL6/ERKxzAg+l+gExuLREjlXMEGp8nMiYKUScE0w3phZXcZ4lnzTBNJJmQvuAK0G4 BmrKCJNIJYQAUQBJaHqHOf79CbkWtgRJWwlB6G+7yNm4SNniLscJmbM8lRLY5/CWspAuF1I2 PsVpyA8Rql2y9Zr0WRCEQe200HYiBDJ38ZmGaTJnMrPc18jWfdBf5khO0wrMryEAMprKZKC6 AFjcyIwHs1IyU26o/pJb3VW7575Vc0NpgPYW6HqBrcZ2olrPqQrVUJ0tNUIuSNCFisLnVIVq qO6WipwAQVh0wsLIfaxiNVhvBxvaIchwLFaxGqy/xdp26IPBjsUqVoMNdrCB63T22CGsYjXY cItVzO4uO4BVrAYb7WB9LzjJZYpV93diAjKaWkQO2KSuEzOcCmNIcNVehjsmi7ltFosZFVLr vUQGWeP4RKbsNMf5rEljdYo5Mo3ZnuVZwZPDZy+NOX7oenL0aWfPj/TU0yXBmq9YckISRlMt J0uSd8CD/V+Bn84z3p3enDCd6WO24GLeGe++Fp/NDtLPXQV4L1YBIPF5qgAVSH8uMJdbqoml usR6TSz5KLAhF79cE4QOUtH2VhO81QRvNcH/uCbwv1UTwBF8Wk2wn8ogTx6dyl6oC3ZS2Vtd 8FYX/Pi6IGhjaIgF2Qsg/xx1QSrqqmCnvEb1TdOLgQSrdtztszwFLf72B+NRf2xbRn/gxcZ4 6CKjH9u2EXkjNxpFIzRwo8/t3V4qVRVZQcbZw4KT24WAXNnFK7YZmSjYOkSuf36XhK1Lxoyp INx1SnAOp8wEP1Sroe/c37zGMee1SNRaZJJnKdFuFsX9E7tA2jzVLlWeSvRB03znb8Kj9mzk BJbbd2LDswZDo9935Xa1Yttw+/aw70co7qN4s2crpTmV0nXdql+//PPL1y//nmGvQtNea8sD 4boSTU9b8EwqMhhEvh2HA2OA3LHhDqPA6I99zxh7juvGg7AfO6PP6nocub2EE7hz/y1tb+uR ++y+vsgSzio2ExcJK5qLf7Nkj4SXLIO7f2Q1t/VLrA4eWVpGkWtFjZekaG0Lwiq/T5T6ss35 B1zeLmGPFHDKxfCqzOhDs0W2Q5Tq7f86rv4DAAD//wMAUEsDBBQABgAIAAAAIQAKrdFixQMA ADgPAAAhAAAAcHB0L3NsaWRlTGF5b3V0cy9zbGlkZUxheW91dDQueG1s7Ffdbts2FL4fsHcg tGtF1q8lo04hydYwIG2C2n0ARqJjrRTJkbRjbyjQ19oep09SkpLsxnFXe/HFLnojUhT58Zzv O0fkefV602CwRlzUlIwt92pgAURKWtXkYWy9nxd2bAEhIakgpgSNrS0S1uvrn396xUYCVzdw S1cSKAwiRnBsLaVkI8cR5RI1UFxRhoj6tqC8gVK98gen4vBRYTfY8QaDyGlgTaxuPT9lPV0s 6hJNaLlqEJEtCEcYSmW/WNZM9GjsFDTGkVAwZvVTk+SWKW/lI729/90CZh5fqxHXulaulzNc AQIbNTB/pCCnRCoY80mwOUdI98j6V85m7I6bFW/XdxzUlUboVlpO96GbZl7J2nScg+UPfReO Ngve6FYxATZjSwm21U9Hj6GNBGU7WO5Hy+XtkbnlcnpkttNv4Hy1qfaqNe65O17vzryWGAF3 51Vvr2A3tPwgAKHKH+1+695uRuuzbtmyp11DdfPaj6azN6YjS24yWm31JveqNYNwhIWcyS1G 5oXphzGDK3sx1FGNiP1+pqK6kTlGkOwIkdc5rssPQFKAqlqCN1BIxIExRuWAgtTsSMORgUSk uoMcvjtAbllkxujeQqen8NtE+j2RXTSBOwxLtKS4UkZ4L6NV/KmyAeKFpXba7Cd/g9sjURb7 sUoOEz5u7IWRFz4NuNCN3UhP0IEU+KHr+/FhOLXQJ6vGNK1rvJPnhSpqS42I4omKrVKHWxqC zthyhkpKKoDRGuET4I2aZ8DPlzU/Hd0/E72gKy6XJ8MH58LXi6Pol86f4N/yx3Bysfwx+p2V P5E79H4k0I8E+j8nUNgn0ARK9CR7jMUvPdQraT07h9orx0UO+YW6kWkv/oqyYpoW3sBOszC3 i0ng2mnueXYSToNkmkzdLEg+9he8Srkq6wYV9cOKo9uVvsOdpornJI473Aui9r+8JFEvSUGp TsKvRTE/kJeKspC8VeWPFeRqh16Y79wQzhHmsowMe0ZmuK4QeLtq7g94iS7Bi6ptFPRRar7z 8/9PMZv4w0GQ+rkdDrKJnaaBCtdB7tlB6k3SKHHz1M13MSu050RZd2qofv709y+fP/1zgVg1 TV/fqAPhRsiuB1a8Vo5kWRJ5eZzZmRsUdjBJhnZaRKFdhH4Q5Fmc5v70o66T3GBUcmQKr9+q vmRzg2dFW1OXnAq6kFclbbrqz2H0EXFGa1MAuoOuZFtDffC4UeLHw8Ew6WRStvWtsVYLP9P+ qxbzN5Ddrk2QNOaYy80QUxVqFyP7Kdr3vuK9/gIAAP//AwBQSwMEFAAGAAgAAAAhANXBDFig AgAAXgYAAB8AAABwcHQvbm90ZXNTbGlkZXMvbm90ZXNTbGlkZTEueG1srFRdb9owFH2ftP9g 5T0NCYEGVKhCClOlrkWl/QGuY0g0x/ZsQ2FT//uunQT6qaKpL7Fzfb/OufY5O99WDG2o0qXg Iy886XiIciLykq9G3v3dzE88pA3mOWaC05G3o9o7H3//diaHXBiqEcRzPcQjrzBGDoNAk4JW WJ8ISTmcLYWqsIFftQpyhR8hb8WCqNPpBxUuudfEq2PixXJZEnohyLqi3NRJFGXYQO+6KKVu s8ljsklFNaRx0S9aGgM2smC5XbW8U5TaHd/8UHIh58odX2/mCpU5MOYhjisgxguag8bN/fKN 2wSvwlftFg+3S1XZFbCh7cgD+nf2G1gb3RpEaiM5WElx844vKabveAdtgeBZUYuqbu4tnKiF s2BlTtFlhVcUzRkmtBAspwqFe5wtAi2vBPmlEReAsCZE3ArT7LIC8xVNtaTEmWo29uE1RXaV BTI7CZU1yy+rVeNYn7rNofmW0xrGx2C6LZhrd1Ofw4g+h/F5pw8i33lQaXtw/7hfOTTbCQTY WjbQGfGQabMwO0bdj3RT5/kcK3wLIBi2r5By/37RTFO65G2mIziIXw70el09APznVHS/ggoY GqQGqfgz8n6vsTJUtczUF/FLqFmy3IH6288GaXg6SP3ptBf5nW6c+GlvEvmTQT+edqZRlqaD J2/fGyDn0J1NoV7RinRlMkYx378kM04s08bxvbQy8D8zcUurHfCQr7RpdmitSoAwgV6jLJn4 kzCe+fHF4NRPZ/2eP+t14zibJGnWnT5ZLQrjIVHUydRl3gpcGL+RuKokSmixNCdEVI1WBlI8 UiVF6eQy7DSau8EMBhP3k0EnjBP3FgLXW7u6bu3IGxkkTP3E8mbjrgcUg/FmziRBz5vbcXCx M7YvbvwPAAD//wMAUEsDBBQABgAIAAAAIQDCjB9TMAQAAFYOAAAhAAAAcHB0L3NsaWRlTGF5 b3V0cy9zbGlkZUxheW91dDEueG1stJfdjps4FMfvV9p3QOw1AzZfIWqmApKsVprOjJrpAzjg JKgGs7ZJk64q9bV2H6dPsraBfMxMp5kmvYkdY/98zvkfH/Cbt5uSGGvMeEGrkQmuHNPAVUbz olqOzA8PU2tgGlygKkeEVnhkbjE3317//tubeshJfoO2tBGGZFR8iEbmSoh6aNs8W+ES8Sta 40o+W1BWIiH/sqWdM/RJsktiQ8cJ7BIVldmtZ6esp4tFkeExzZoSV6KFMEyQkPbzVVHznlaf QqsZ5hKjVx+bJLa19FYUgmDT0NPYWg4A81p6ns1IblSolAMPaoYxI0WO9SNePzCMVa9a/8nq WX3P9Irb9T0zilwRupWm3T3opum/1Vp37EfLl30XDTcLVqpWBsLYjEyp11b92moMb4SRtYPZ fjRb3T0zN1tNnplt9xvYB5sqr1rjnroDe3faQICdV729vL6h2UduVFT6o9xv3dvNaH1Wbb3q op4Jpmnd1Pa57uzteTYYwIee47RuAgChG7jHgYmA105QDkN3EAbOE7dbdj0Um4TmW7V6Llvp LqqyFZVJOm+ZhIuZ2BKs+2sCajWFLCttv6lGc7x4Lwf555EZqF3bjbq5bf+AUasf7RWTiwhS BxBX1oeZPIClSAlG1U48cZ2SIvtoCGrgvBDGO8QFZoZOV3lcJVHRhd5DI3GV3yOGlDmH5Nai Wvvd+6tD8LLobi/6rJm3e8JL6M6beau73ESpeZb+buBAxx28oD8IfD8MtOWn6P9d0UvEbvQp KqpcFhPdPU6EeXMri6cGHOSEsvVxTugu3FM9P4TK3teij9JN8Tq0u0e3sXg1GgwO0YrXob09 GrghUCfr1ez9ceyAHds/YA/gQJlwHlsBO3awZ0M40Af1PLYCduzwgB167s9IecxWwI492LMV +Ke0PGIrYMeODtiBr6vkeWwF/BUVj/cF6NcXPa8vemMksHFPUIZXlOTSCP2SObf45cLUcVsh sugLYBvA71ZAveuLZUr/0WFeyC8W5cU/QTKdxFPoWHHip9Z07AErTiG0In/iRZNoAhIv+tJ/ /+TSVVGUeFosG4bvGqEFP0UtaEc2CPeCyP0vL4nfSzKlVGXDoSjeJURZyBTXqvzdICZ36IX5 wavpNcJcNiLB7s2svkiN26acP4qLf5E3Nckl+tnQtO/Ty+Zs5IaOF7up5TvJ2IpjT6ark0LL i+E4DiKQxiDd5SxXnlfSulNT9dvXf//49vW/C+Sqbvrvf/nNccNF1zMaVkhHkiQKYDpIrAR4 U8sbR6EVTwPfmvqu56XJIE7dyRd1jwDeMGNY30v+yvsbDfCe3GnKImOU04W4ymjZXY7smn7C rKaFvh8Bp7vRrBEZmSF0HT8ETtCpJE3rW22s0n2m3JctYe9QfbfWOVLqcpvqoVre37oU2U9R rvf3wev/AQAA//8DAFBLAwQUAAYACAAAACEARpNjjWwEAAA2EQAAIQAAAHBwdC9zbGlkZUxh eW91dHMvc2xpZGVMYXlvdXQzLnhtbMxY727bNhD/PmDvIGifFYkSZUlGncKW7W1AmgR1+gCM RMdCKVEjadfeUKCvtT1On2Q8SrKcNE29xQjyxfyju+Pvd3fkkX7zdlsya0OFLHg1stGZZ1u0 ynheVHcj+8PN3IltSypS5YTxio7sHZX22/Off3pTDyXLL8iOr5WlbVRySEb2Sql66LoyW9GS yDNe00p/W3JREqWH4s7NBfmkbZfM9T1v4JakqOxWXxyjz5fLIqNTnq1LWqnGiKCMKI1fropa dtbqY6zVgkptxmjfh6R2tWYrafYbJbltGUGx0VPIPtfcswXLrYqUemJBM1C3QJAK81XWN4JS 6FWbX0W9qK+FUbrcXAuryMFIq2y77YdWzAyrjem4D9Tvui4ZbpeihFZ7w9qObB20Hfy6MEe3 ysqayayfzVZXj8hmq9kj0m63gHuwKLBqwH1Lx+/o3BSKUQvtWXV4ZX3Bs4/SqrjmA/QbenuJ hjO09ap1vQJTrVzz0XR6MI96Ig5QHDYUUeQlURDfdwryQhQOvJatH4d+FEQPOTe266HaTni+ A/Vb3WqupMpWXKfpbWOUSbVQO0ZNf8NQCymny/daWP45svVKnUf3AtA/UKzhx+gJrcQI7Dta OR8Wet+VKmWUVPtwqfOUFdlHS3GL5oWy3hGpqLCMq/Qu1RbBujJrGJO0yq+JIADn0HKDqDZk O5KG99NhDvZhBndeM5LRFWc66S3/FBEHJ9t6IQjTcwKPwzjBg+CpwKPQ81B8dOC/F22rJOLC 7J2iyvU5Al2jtb7Uh6XROkgGH3vNZ8lZkc8LxswATieaMmFtCNNpv4UDRgexqFQzE4V9Eu2F m1Fvx+1Wup9rpuv3SHEY+eCDo+DCsi8FFzC2cIMeboIw+OwouCh+QbiAsYWLe7goiJBJsaPw guRL4QWQLd7wAG/sx+C114cXQLZ4Bz1e34/Ngfr68ALIFm90gDfCwdHb7UXxAsgWb9zjBbDH 77eXxAsgW7zJAd5BGL3O/QYgH6/0gF4L7Ev6Mys/lDdT+OW9yv9/qjvuqvuUKHqvuptS+tzq nivbxGFF2LKr8o1jv1vmzapP1mIzMH5d6vs4sPhrMJnPxnPfc8aTMHXmU4yccer7ThLOcDJL ZmiCk8/d/T7XVFVR0nlxtxb0aq1M9I8Jh+8mLop6p+v1T3/hCruQzDmHcB8GBZ8iKEslmqj8 sSZCr9AF5gf3r/8SmNN6ZNB5ZKE3H7Uu1+XtA7+Ep/CLftpq04+6xlx1T5yzSRB5eBykTuhN ps54jHW6eqnv4LE/HQ8SlI5Rus9ZCcwrje7YVP365e9fvn755wS5apruaauPngup2p61FoUm MpkkAz+NJ84E4bmDp0nkjOeD0JmHAcbpJB6nwewzPJERHmaCmnf373n3Ykf4mzd7WWSCS75U Zxkv28e/W/NPVNS8MO9/5LUvdnNcJwjhKAyT7mTR0LrWgIW4L4C+bpl4R+qrjcmR0pynqZmq i+quTZFeBKh3/3ec/wsAAP//AwBQSwMEFAAGAAgAAAAhAH2g5Zh7AwAAlgsAACEAAABwcHQv c2xpZGVMYXlvdXRzL3NsaWRlTGF5b3V0Mi54bWysVu1u2zYU/T9g70BovxV9WHIso04hydYw IG2COn0ARqIirZTIkbRqbyjQ19oep0/SS0qymzQDHER/RIoiD+8594i8b97uG4o6ImTN2pXl XbgWIm3Oirp9WFkf7zJ7YSGpcFtgylqysg5EWm+vfv3lDV9KWlzjA9spBBitXOKVVSnFl44j 84o0WF4wTlr4VjLRYAWv4sEpBP4M2A11fNedOw2uW2tYL85Zz8qyzsma5buGtKoHEYRiBfHL quZyROPnoHFBJMCY1Y9DUgcObNn9nxYyk0QHr551BbzzLS1QixsYuKsVJQjUQSlrFSCZCZLf CUJ0r+1+F3zLb4VZ9767FaguNM6w3nKGD8M089p2puM8Wf4wdvFyX4pGtyAG2q8syNlBPx09 RvYK5f1gfhrNq5tn5ubV5pnZzriB88OmmlUf3M90/JFOL4d3ZDXGK/k1yz9J1DLgo+n39I4z es665dWgvNJQw7z+o+mcghnEUvuEFQe9yT20ZhAvqVRbdaDEvHD9MGEIiJdibWzS2h+3YOxG pZTg9iiIukppnX9CiiFS1Aq9w1IRgUww8BsApFZHGY0MJGmLWyzwhyfIvYrcBD1G6IwS/r+Q s1HIwU3oluKcVIwWEIT/OlnrYn+aMoGiXFPu6FG6VyqsbWsElo8U7lV8uqWh8YIttyRn8I9S 0hF6BrxR+gXwd1UtzkefvRA9YzuhqrPhg5fC1+Wz6FN7Oxi9vcaKPDK2EeS150WhgN3fcOZj WlqD2fvTbBK3l3Dkaxb/zJNsE2e+a8dJmNrZOvDsOPV9Owo3QbSJNl4SRF/G66MAqqpuSFY/ 7AS52enr4bys+E7keJenhMD+06ckHFOSMaZ/wh+TYmz02qSUSvRZ+WuHBewwJmbCY2haReaj IltaFwS93zX3T3QJp9AFKieAflYac/ZM7NlodukG8Sy1QzdZ23EcgF3d1LeD2F/H88hLYy89 elZq5i1Ed65Vv33997dvX/+bwKumGUsnuBCupRp6aCdqIJIk0dxPF4mdeEFmB+vo0o6zeWhn 4SwI0mQRp7PNF12CecEyF8SUdX8UY0HoBT+VhE2dCyZZqS5y1gy1pcPZZyI4q0156blDQdhh ffFE4WLmhgtvPqQJYhtbE61O/Fbzh5aKd5jfdMYkjbnmUjPEof4dPHKaormP9fTVdwAAAP// AwBQSwMEFAAGAAgAAAAhAJZtvEsEBgAAjRoAABQAAABwcHQvdGhlbWUvdGhlbWUxLnhtbOxZ 3W7bNhS+H7B3IHTvWrYl/wR1Clu22y1JWzRpt17SEi2xpkSDpJIYRYE9wYAB3bCbAbvbxW4K bM/UYeseYhRl2aRNL+jqAAVWG7BI6juHH88hP1LW3XvXKQGXiHFMs77TuOM6AGUhjXAW952n F5Na1wFcwCyChGao7ywRd+4df/7ZXXgkEpQiIO0zfgT7TiLE4qhe56FshvwOXaBM3ptRlkIh qyyuRwxeSb8pqTddt11PIc4ckMFUun00m+EQgYvCpXNcOR8T+ZMJXjSEhJ0XrpFhobDRvFFc +JIHhIFLSPqO7CeiVxfoWjiAQC7kjb7jqo9TP75bXxsRscdWs5uoz8puZRDNm8qOxdO1oef5 Xnuw9q8AROzixp1xe9xe+1MAGIZypCUXHesPe8ORv8JqoLJo8T3qjFoNA6/5b+3gB37xNfAK VBa9HfxkEmxiqIHKom+JSacZeAZegcpiewffcQcjr2PgFSghOJvvoF2/3Qqq0a4hM0oeWOE9 35t0miv4BlXXZldpn4l9cy2FLyibSIBKLhQ4A2K5QDMYSlwACZ4yDE5xnMiJt4AZ5bLZbboT tyV/i6+nSioi8AhBzbpsCvlOU8EH8JDhheg7X0qvjgZ5noP7VCQ4XPW6a/EAZrFu8e6X7/7+ 6Rvw128/v3v9vR3PdfwIZfHXGGb/1oHQDd7+8OaP39+8/fHbP399bYEPGJzq8AucIg4eoivw hKZycJYO0JS9n8VFArFuMchiDjNY2FjQYxk/Hf1wCQm04IbIjOQzJqXCBryfvzAInycsF9gC PElSA3hGKRlSZh3TSdGXHoU8i+2ds1zHPYHw0tZ3sJXncb6Qcx7bXAYJMmg+JjLlMEYZEqC4 R+cIWcyeY2zE9QyHjHI6E+A5BkOIrSG5wFNjNm2MHuBU5mVpIyjzbcTm7BkYUmJzP0KXJlKu DkhsLhExwngf5gKmVsYwJTryFIrERvJ8yUIj4FzITMeIUDCOEOc2m0dsadA9kRJjT/sZWaYm kgk8tyFPIaXGAqfzIIHpwsoZZ4mO/YLP5RSF4DEVVhLUXCFFXeZBise+dD/DyEj3zWv7qZQh +wQp7uTMtiQQNdfjkswgUs7rW5qe4uxGgd+Sdv+2pf0WRf3wcj5g2LqetkV8H25bugPKIvzx K/cI5tljJBfLJ+H+JNz/R+Het54PL9cbhVbH+Oqwrtyke0/uM0zIuVgSdMqVtnM5vGgiG1VF Ga0fFBaJLK66M3Axg6oMGBVfYZGcJ3Ahu2moHmK+ch1zsKBc7g6q2epb7S55ekajsrXRqJ5N pQEUm3a5u1Ttci8SZWu7s3kIW7tXtVg9LFcECtv3IaF1ZpJoWUh0qsYbSKiRHYRFz8KiW7jf y0JdVlmR6w/A4m8N3ysZyfkGCYqKPJX2VXYPnul9wTSH3bQMr1dwPUymDRLadDNJaNMwgRHa bj5wrnublBr0ilDs0uh0byPXhYhsaQPJzBq4kmuu5Us3IVz0nZk8F8piupD+eKGbkMRZ3wnF KtD/RVkWjIsR5EkJU7fK8adYIAYITuVc19NAsg23RrNTjPEjJddzP77IqYueZDSboVDsadlU 5b3SifXuB4KLCs0l6fMkugJTkrMnUAbK7zSKAEaYi3U0I8y0yb2J4pZcrZai8Z/ZZolCskjg akfRxbyEq/KajjYOxXR7VGZ9NZhpXCTpg3fdm422RHPPBlLsmnb9uL1NXmO10X2DVSnd21rX q7Ru3y7x4RuCRm3TmUGtYGyhtm/vOOCBQOtuPTX37RGH3g22Z22xQVTnSlXbeTlBpy/kzB/J 42pOBC+f/6/lM0JQ/a1cKoFqrdTlWoCc4b7z0vUHXtD0g5rb9cc1r+W5ta4/aNUGvt9qjP2G Oxo2X8mgiCRt+GXfE/k8Q5ardy+qfef9S1ods++ENK1TdQ6uK2P1/qXR3P/+BWAZmZft5qTX 6g3btV5rMKl5o2G31gvaw9qoHXRGk1Hgd3uTVw64VGBv0Aq89rhbazeCoOa13YJ+t1freM3m wOsMumNv8GoVazny6lqFV/E6/gcAAP//AwBQSwMEFAAGAAgAAAAhAGIIiP2yBQAAyh0AACEA AABwcHQvbm90ZXNNYXN0ZXJzL25vdGVzTWFzdGVyMS54bWzsWNtu20YQfS/QfyDYx4Lh/SIh ciDJUmLASYzI+YAVuZIIL5fsciXbKQLkt9rPyZd09qab3VQ21KJB9CIOZ2dnd8+eGY7m5au7 ilgrzNqypj3bf+HZFqZ5XZR03rM/Xo+dzLZajmiBSE1xz77Hrf3q7OefXjZdWnPcvkUtx8wC L7Ttop694Lzpum6bL3CF2hd1gymMzWpWIQ6vbO4WDN2C94q4geclboVKauv57JD59WxW5vi8 zpcVplw5YZggDidoF2XTGm/NId4ahltwI2fvbOkMTphPSCGe07n6/YBnVlncAU6e54MF6krP eEiYtUKkZ0/nvu2evXS1sZbE5La5ZhgLia5es2bSXDG5wrvVFQOf4NK2KKoAYeFADmgz+UpX UnD3ps+NiLp3M1aJJ8BjwQ7hHu/Fryt0+I5buVLmG22+eP+Ibb4YPWLtmgXcrUXFqdTmHh4n MMd5g1EBBLkiKMeLmghZYiSNzebb5rLOb1qL1nA4gYU669pCASCezcLi9w34XRQMmPmpZ/+2 RAwoqKcoOylsNnk4QkEn9TNPnzyKszTLdo6Pug1r+WtcV5YQejbDOZdMQKvLlitTYyL3oVZv uvxuUBf3wnIKT0AJgg7mL2r2ybbIBW17dsePIliay5coTgN4Ydsj050RToY1WZ+AtHzC7wmW 8or4sKyFyByCmsj9FXj2AVQCMR9Yrk+lLZW85aGRoNDiCjEkphEk8gGmzseJntnI05lTyYN+ mxGhYcQ54niHD8Ex+FBwW8fmk5kQZlmU+OGPwgf2XD7MSCFv8vdkFPf74+Tc8frByIm8yHc6 /gCkQXQ+GoeDTuBnn21zMXDdvKzwuJwvGX6/VPCwPVJZbcWHBCO6PgA/C9yO66diK1xuaCay 8bFpGRlaTkhZYOuiQvNddob/zE6QPtRcS8MFbAr32waYcBh1W1JcVHNNXxkMT6JvksWSosBQ 349CT13mhsNxlCWR4XDoZYm/vu5nkRjBl39cEqJoRq1bwaAUfEpsaoBRjBq3m28jYHqj192y EkSj/1VkWIjm4Kdn51x+MDYkly//QtaLDb3eiWpph1jRMdKegGj3O6hoJFn7XBoBhF4cf5NG iedFyuI7yoWbSxbZEHLd2kICckhOGpIyv7F4beGi5JaufrnAqBUrtJtspZKoWm1nSXmtT1hy gvOaFhbBK0wOcC8TyBPcXy9Kdrh3yasneB/XS8YXB7uXMfEU9+XsUe/HDuPEhPG4rsWNb8dx fIw4nvG9claFscTjGWVtBtEc+Pqy/r6YSf//AbxO2dPvpM5NdwuKd8tqukeY5BiEgaIBXD/G GcnHZxfAPyJzjlARDzt9P+30ndEoDhwvjDKnHw8CZ9BJopE3Cob9fmddEbeCGBQu79As9/XL H798/fLnESph+TCdCLhduBwtWUtWwkEGsONgmA2cgR+Nnei8kzpQ6cfOOA6jaDjI+sNw9Fk0 R/yomzMs+yYXhem4+NGDnktV5qxu6xl/kdeVbt64TX2LWVOXsn/je7oJJMtEHyqLsJMFqWKY 3Jt5yt2KuNB9mZywt6ixpnMfop9D9c3vQCpuQJrOA6ELhC4QOpBQnmPKwUILRhMYzdomNJrQ aCKjiYwmNprYaBKjga/FgpT0BsAQD9ua1eSNUhhJpQDZQntAygqxS0VgndcsoOY1mk4+acor mksTjC7pgN3I/x6iB0b1KwyJ/yElnV8tqfoj8hjHrRvMRN9PyA/K973mFoD7sHyHXYtVJbNn kOJ69q8VdQjX+QPtDWCku0zt3kDeat9qh7uhJ8VgA40M9RM+GhSNT7jBx4BwwkeAovGJNvj4 YSrSzAkghYoGKN4CKAsy+b0/ASRQ0QAlG4CCIEtEo+UEkERFA5RuAZRG4SlHr1HRAGUbgAQ6 pyS9RkUD1NkCKInTU5Jeo6L+yW3Vi+ZV9aDO/gIAAP//AwBQSwMEFAAGAAgAAAAhALTPWBm5 AAAAJAEAACwAAABwcHQvbm90ZXNNYXN0ZXJzL19yZWxzL25vdGVzTWFzdGVyMS54bWwucmVs c4zPwQrCMAwG4LvgO5TcbbcdRGTtLiLsKvMBSpd1xa0tbRX39hZ2ceDBSyAJ/xdSN+95Ii8M 0TjLoaQFELTK9cZqDvfuejgBiUnaXk7OIocFIzRiv6tvOMmUQ3E0PpKs2MhhTMmfGYtqxFlG 6jzavBlcmGXKbdDMS/WQGllVFEcWvg0QG5O0PYfQ9iWQbvH4j+2GwSi8OPWc0aYfJ1jKWcyg DBoTB0rXyVormj1gomab38QHAAD//wMAUEsDBAoAAAAAAAAAIQCgaIQ/vP0AALz9AAAUAAAA cHB0L21lZGlhL2ltYWdlMS5wbmeJUE5HDQoaCgAAAA1JSERSAAAEMAAAAnoIBgAAAN6HsiYA AAwYaUNDUElDQyBQcm9maWxlAABIiZVXB1RTSReeV1IISSiBCEgJvQnSq/QuCEgHGyEJEEoM gaBiRxYVXLuIYEVXQGxrAWRREVEsiIC9LqiorKyLBRsq/yQBdN2/nP+eM2++d+feO9+9b+ad GQAU7NhCYQaqCECmIEcUEeDNiotPYJF6AALIgA7UgS2bky30Cg8PAVBG+7/Lu5vQGso1C0ms f47/V1Hi8rI5ACDhECdxszmZEB8DANfgCEU5ABA6oF5/To5Qgt9CrCKCBAEgkiU4RYY1JThJ hq2kNlERPhD7AkCmstmiFADokvisXE4KjEMXQmwl4PIFEO+E2J2TyuZC3A3xhMzM2RArUCE2 SfouTsrfYiaNxWSzU8awLBepkH352cIM9rz/sxz/WzIzxKNz6MFGTRUFRkhyhnWrSp8dLMGQ O9IoSAoNg1gZ4gt8rtRegu+migOjR+z7Odk+sGaACQAKuGzfYIhhLVGmOD3aawTbsEVSX2iP hvJzgqJGcJJodsRIfDRXkBEaMhJnRSovaBRv52X7RY7aJPP9gyCGKw09lpcaFSvjibbk8mNC IaZD3JGdHhk84vswL9UndNRGJI6QcDaA+G2yyD9CZoOpZWaP5oVZctjSudQg9sxJjQqU+WJx vOy4kFEOXJ6vn4wDxuUJoke4YXB1eUeM+BYKM8JH7LHtvIyACFmdscPZuZGjvl05cIHJ6oA9 SmNPDpfxx94Jc8KjZNxwHIQAH+ALWEAMWxKYDdIAv72/rh++yUb8ARuIQArgAYsRzahHrHRE AJ+RIA/8CREPZI/5eUtHeSAX6r+MaWVPC5AsHc2VeqSDpxBn4hq4O+6Kh8CnJ2w2uBPuPOrH UhidlehH9CUGEv2JpmM8OJB1BmwiwP83umDY82B2Ei6C0Ry+xSM8JXQSHhFuELoJd0AMeCKN MmI1i58v+oE5C0wB3TCa/0h2STBm36gNbgRZ2+PeuBvkD7njTFwDWOB2MBMv3APmZg+13zMU j3H7Vssf55Ow/j6fET3djG4/wiJp7Mv4jFn9GMXnuxpxYR/8oyW2AjuKtWJnsItYI1YHWNhp rB5rw05K8NhKeCJdCaOzRUi5pcM4/FEbqxqrPqvP/5idPcJAJP3eIIc3N0eyIXxmC+eJ+Cmp OSwv+EfmsYIEHMsJLBsra0cAJP932e/jDVP630aYl77pspoAcC6CypRvOrY+ACeeAsB4902n /xpur7UAnOzgiEW5Mh0ueRAABSjAnaEOtIE+MIE52QAH4Ao8gR+YDMJAFIgHM2HVU0EmZD0H LABLQSEoBmvBJlAGdoDdoAocAEdAHWgEZ8B5cBl0gBvgHlwbveAFGADvwBCCICSEhjAQdUQH MUTMERvECXFH/JAQJAKJRxKRFESAiJEFyDKkGFmPlCG7kGrkV+QEcga5iHQid5AepA95jXxC MZSKqqBaqBE6EXVCvdBgNAqdgaagWWgeWoCuRkvRCnQ/WoueQS+jN9Bu9AU6iAFMHmNiupgF 5oT5YGFYApaMibBFWBFWglVgB7EG+K2vYd1YP/YRJ+IMnIVbwPUZiEfjHDwLX4SvwsvwKrwW b8Gv4T34AP6VQCNoEswJLoQgQhwhhTCHUEgoIewlHCecg3unl/COSCQyicZER7g344lpxPnE VcRtxEPEJmIn8TFxkEQiqZPMSW6kMBKblEMqJG0h7SedJnWRekkfyPJkHbIN2Z+cQBaQ88kl 5H3kU+Qu8jPykJyinKGci1yYHFduntwauT1yDXJX5XrlhihKFGOKGyWKkkZZSimlHKSco9yn vJGXl9eTd5afKs+XXyJfKn9Y/oJ8j/xHqjLVjOpDnU4VU1dTK6lN1DvUNzQazYjmSUug5dBW 06ppZ2kPaR/oDLolPYjOpS+ml9Nr6V30lwpyCoYKXgozFfIUShSOKlxV6FeUUzRS9FFkKy5S LFc8oXhLcVCJoWStFKaUqbRKaZ/SRaXnyiRlI2U/Za5ygfJu5bPKjxkYQ5/hw+AwljH2MM4x elWIKsYqQSppKsUqB1TaVQZUlVXtVGNU56qWq55U7WZiTCNmEDODuYZ5hHmT+Wmc1jivcbxx K8cdHNc17r3aeDVPNZ5akdohtRtqn9RZ6n7q6err1OvUH2jgGmYaUzXmaGzXOKfRP15lvOt4 zvii8UfG39VENc00IzTna+7WbNMc1NLWCtASam3ROqvVr83U9tRO096ofUq7T4eh467D19mo c1rnD5Yqy4uVwSpltbAGdDV1A3XFurt023WH9Iz1ovXy9Q7pPdCn6DvpJ+tv1G/WHzDQMZhi sMCgxuCuoZyhk2Gq4WbDVsP3RsZGsUbLjeqMnhurGQcZ5xnXGN83oZl4mGSZVJhcNyWaOpmm m24z7TBDzezNUs3Kza6ao+YO5nzzbeadEwgTnCcIJlRMuGVBtfCyyLWoseixZFqGWOZb1lm+ nGgwMWHiuomtE79a2VtlWO2xumetbD3ZOt+6wfq1jZkNx6bc5rotzdbfdrFtve0rO3M7nt12 u9v2DPsp9svtm+2/ODg6iBwOOvQ5GjgmOm51vOWk4hTutMrpgjPB2dt5sXOj80cXB5cclyMu f7lauKa77nN9Psl4Em/SnkmP3fTc2G673LrdWe6J7jvduz10PdgeFR6PPPU9uZ57PZ95mXql ee33eult5S3yPu793sfFZ6FPky/mG+Bb5Nvup+wX7Vfm99Bfzz/Fv8Z/IMA+YH5AUyAhMDhw XeCtIK0gTlB10MBkx8kLJ7cEU4Mjg8uCH4WYhYhCGqagUyZP2TDlfqhhqCC0LgyEBYVtCHsQ bhyeFf7bVOLU8KnlU59GWEcsiGiNZETOitwX+S7KO2pN1L1ok2hxdHOMQsz0mOqY97G+setj u+Mmxi2MuxyvEc+Pr08gJcQk7E0YnOY3bdO03un20wun35xhPGPujIszNWZmzDw5S2EWe9bR REJibOK+xM/sMHYFezApKGlr0gDHh7OZ84Lryd3I7eO58dbzniW7Ja9Pfp7ilrIhpS/VI7Uk tZ/vwy/jv0oLTNuR9j49LL0yfTgjNuNQJjkzMfOEQFmQLmiZrT177uxOobmwUNid5ZK1KWtA FCzam41kz8iuz1GBR502sYn4J3FPrntuee6HOTFzjs5VmiuY2zbPbN7Kec/y/PN+mY/P58xv XqC7YOmCnoVeC3ctQhYlLWperL+4YHHvkoAlVUspS9OXXsm3yl+f/3ZZ7LKGAq2CJQWPfwr4 qaaQXigqvLXcdfmOFfgK/or2lbYrt6z8WsQtulRsVVxS/HkVZ9Wln61/Lv15eHXy6vY1Dmu2 ryWuFay9uc5jXdV6pfV56x9vmLKhdiNrY9HGt5tmbbpYYleyYzNls3hzd2lIaf0Wgy1rt3wu Sy27Ue5dfmir5taVW99v427r2u65/eAOrR3FOz7t5O+8vStgV22FUUXJbuLu3N1P98Tsaf3F 6ZfqvRp7i/d+qRRUdldFVLVUO1ZX79Pct6YGrRHX9O2fvr/jgO+B+oMWB3cdYh4qPgwOiw// 8WvirzePBB9pPup09OAxw2NbjzOOF9UitfNqB+pS67rr4+s7T0w+0dzg2nD8N8vfKht1G8tP qp5cc4pyquDU8Om804NNwqb+MylnHjfPar53Nu7s9ZapLe3ngs9dOO9//myrV+vpC24XGi+6 XDxxyelS3WWHy7Vt9m3Hr9hfOd7u0F571fFqfYdzR0PnpM5TXR5dZ675Xjt/Pej65RuhNzpv Rt+8fWv6re7b3NvP72TceXU39+7QvSX3CfeLHig+KHmo+bDid9PfD3U7dJ/s8e1pexT56N5j zuMXT7KffO4teEp7WvJM51n1c5vnjX3+fR1/TPuj94XwxVB/4Z9Kf259afLy2F+ef7UNxA30 vhK9Gn696o36m8q3dm+bB8MHH77LfDf0vuiD+oeqj04fWz/Ffno2NOcz6XPpF9MvDV+Dv94f zhweFrJFbOlRAIMNTU4G4HUlALR4eHaA9zgKXXb/kgoiuzNKEfhPWHZHk4oDAJWeAEQvASAE nlG2w2YIMRX2kuN3lCdAbW3H2ohkJ9vayGJR4S2G8GF4+I0WAKQGAL6IhoeHtg0Pf9kDyd4B oClLdu+TCBGe8XdKzzlX9JeDH+VfyFFsPcDlDFIAAAAJcEhZcwAAFiUAABYlAUlSJPAAAAGe aVRYdFhNTDpjb20uYWRvYmUueG1wAAAAAAA8eDp4bXBtZXRhIHhtbG5zOng9ImFkb2JlOm5z Om1ldGEvIiB4OnhtcHRrPSJYTVAgQ29yZSA1LjQuMCI+CiAgIDxyZGY6UkRGIHhtbG5zOnJk Zj0iaHR0cDovL3d3dy53My5vcmcvMTk5OS8wMi8yMi1yZGYtc3ludGF4LW5zIyI+CiAgICAg IDxyZGY6RGVzY3JpcHRpb24gcmRmOmFib3V0PSIiCiAgICAgICAgICAgIHhtbG5zOmV4aWY9 Imh0dHA6Ly9ucy5hZG9iZS5jb20vZXhpZi8xLjAvIj4KICAgICAgICAgPGV4aWY6UGl4ZWxY RGltZW5zaW9uPjEwNzI8L2V4aWY6UGl4ZWxYRGltZW5zaW9uPgogICAgICAgICA8ZXhpZjpQ aXhlbFlEaW1lbnNpb24+NjM0PC9leGlmOlBpeGVsWURpbWVuc2lvbj4KICAgICAgPC9yZGY6 RGVzY3JpcHRpb24+CiAgIDwvcmRmOlJERj4KPC94OnhtcG1ldGE+Crq6GZMAAAAcaURPVAAA AAIAAAAAAAABPQAAACgAAAE9AAABPQAAdqWCm2NfAABAAElEQVR4Aezda2hc573o/5/BAQmy QYIUJGihKi1UpgaNSaE2nBdR6AGNyYaMcaA23bAZK3B2LuAj74Ir777wlk/BW84GV+4BW/oX XEaBBimQIgVyGOXFBqngzUzAYSbgIBcSGIENMxDDDNjw/J+5rOusud/WzPoOcTSzZq3n8nnW bX7rWc86pvRLeCGAAAIIIIAAAggggAACCCCAAAI+FjhGAMPHrUPREEAAAQQQQAABBBBAAAEE EECgJEAAgxUBAQQQQAABBBBAAAEEEEAAAQR8L0AAw/dNRAERQAABBBBAAAEEEEAAAQQQQIAA BusAAggggAACCCCAAAIIIIAAAgj4XoAAhu+biAIigAACCCCAAAIIIIAAAggggAABDNYBBBBA AAEEEEAAAQQQQAABBBDwvQABDN83EQVEAAEEEEAAAQQQQAABBBBAAAECGKwDCCCAAAIIIIAA AggggAACCCDgewECGL5vIgqIAAIIIIAAAggggAACCCCAAAIEMFgHEEAAAQQQQAABBBBAAAEE EEDA9wIEMHzfRBQQAQQQQAABBBBAAAEEEEAAAQQIYLAOIIAAAggggAACCCCAAAIIIICA7wUI YPi+iSggAggggAACCCCAAAIIIIAAAggQwGAdQAABBBBAAAEEEEAAAQQQQAAB3wsQwPB9E1FA BBBAAAEEEEAAAQQQQAABBBAggME6gAACCCCAAAIIIIAAAggggAACvhcggOH7JqKACCCAAAII IIAAAggggAACCCBAAIN1AAEEEEAAAQQQQAABBBBAAAEEfC9AAMP3TUQBEUAAAQQQQAABBBBA AAEEEECAAAbrAAIIIIAAAggggAACCCCAAAII+F6AAIbvm4gCIoAAAggggAACCCCAAAIIIIAA AQzWAQQQQAABBBBAAAEEEEAAAQQQ8L0AAQzfNxEFRAABBBBAAAEEEEAAAQQQQAABAhisAwgg gAACCCCAAAIIIIAAAggg4HsBAhi+byIKiAACCCCAAAIIIIAAAggggAACBDBYBxBAAAEEEEAA AQQQQAABBBBAwPcCBDB830QUEAEEEEAAAQQQQAABBBBAAAEECGCwDiCAAAIIIIAAAggggAAC CCCAgO8FCGD4vokoIAIIIIAAAggggAACCCCAAAIIEMBgHUAAAQQQQAABBBBAAAEEEEAAAd8L EMDwfRNRQAQQQAABBBBAAAEEEEAAAQQQIIDBOoAAAggggAACCCCAAAIIIIAAAr4XIIDh+yai gAgggAACCCCAAAIIIIAAAgggQACDdQABBBBAAAEEEEAAAQQQQAABBHwvQADD901EARFAAAEE EEAAAQQQQAABBBBAgAAG6wACCCCAAAIIIIAAAggggAACCPhegACG75uIAiKAwEAFnh3J3kFC 5Pi0nPofIZk4PtDSkDkCCCCAAAJDIVD4Nin7yYzID2Zlfm5mKMpMIRFAwP8CBDD830aUEAEE OhUo5CR5sC+JLx9LoZjW2JhMvjwts/9jXkLfH6ubevreWTnx9m5pnrVkXt6Zqz9/3cT4EgEE EEAAgSESKDx9LPsHB5L+e7ZU6jF9/ByfmpH51+Zl6uV6FSnIRmhcLn1RnCcsifyOhDh81gPj OwQQaFKAAEaTUMyGQCAFXhTk6Ou0ZHK69rrnwdjYhEz/cEYm9ElL4WlOCvpz8b1/XwXZ+8M1 ef39WzWKGJHU8y2ZrdOrYu/fT8nrv0uWlo/cT8nWr2drpMVkBBBAAAEEKgLPcpL++rHkXuhj p540NjEtMz+ckjF9vMkd5WTslYnSe996FdJy5/2L8u698vGvqpwLMcnvXijVreq70oSCbL41 Lhc/Kn8be5iXCz8jguFtxVQEEGhFgABGK1rMi0BgBAqS/PiORCNXpMapS0UiqgMA63UDAIMk y/3thkyevmYVYS4s4emM7H5q1Kpx+Q90AONMJYBBDwyLsl/vCl/tyZ2PkhI6/47M/5ST3365 kw8CRQG2vzbWgxdHsv37a3Ludxv1Fz6/JeovkfrzDPBb+7GvWIzQQlimM7uyW+pRoSec1wGM v9QPYFg9MEKS+C4hIV9f8BggNlkjgEBLAgQwWuJiZgQCIKBPvu5cmJZ3K1dNyjUOSWguKUnj xMVkiOhuoVu+7Ra6/fYxOXevWNiQxB7syoVXp8ol11fECvrqmL4kVrybpP7raVr2ivfwyqSc eo0xMOpjdftb2xW8RX2yf9e/J/vdrjnpITB4Aba/ltvgaE/OTb8u2/YF5/Tx8wt9/LRPK75v 2IPBvUAfP794LFde+pGU+y4uSSKzIqGpysFS98zMPSvI2MuNe5DkvkpK4ht9/PyHGTnzi9k6 vTX6WDeyQgCBoRcggDH0TUgFEOimQE42wpNy6VMjzSWJp6/pK98TpQmFXFq2r1+Ui/9pnIrp WzB0AGO2URDASK7PfzffOlbuvno5LuqD+T7nTnadC9h+QPn5ZL/zipICAj4UYPtrqVFySTk7 eUrKIybpsPnldYn99qLMvlI+QOa+3pPV86/LDeNCQMMeDC3l3t2ZX6Tl0ksnpNiHZOmTjKy+ UQn+dzcXUkMAAQTaEiCA0RYbCyEwmgJHf70m0/94o1y5hTXJfPKOTFWND3EkN0LTcq10Ela7 B0buqwPZ+mhLdg/S5YEzdapj35+V8MI5ObdwWiaqgh7F21a2JfFMZFzyesyNExI5H5LHn2/L xr2Y7D0q9oLQTwKJXJTlyxdkplZX1FxOjopXh45nZGX6VOkKUvhmXDb++YTudmFrt+NjMjVV DszYppbePv7btuw9LMi4rYx5mZJzv5pv+ikkhaO07H+elPTTrO7lMSnTP56VM6d1Dw5Jy+af 9zXGuC5PXiZ+flbCc5wcutug/JkfUN4uTEWgHwJsf60o7/3vY/L6f5aXCN/cl51/PV29+NM9 OfW918u9MRbW9RgSUY9eCQVJ/21Xtv+yK/tfFY975df0T89I+K2IhL16MhSOZPejPckVZ9XH lbGT8xJ5dVL2/nRH7ny8L48zOp3pGX0Me0eWfj3vkWc5j8LRkU5DH/ie7sr0yYuliat7KYnO TkpB91w0X7r3xVT1QVx/XZADfRxPlY7jxtz6eD5xRi680fz4URw/DTv+IoCAp4DihQACCJQE MmpFROkdhf4XUvEntVkON6Pl+RbWVNY9W/5QrS+GKukY6bn/htTa3qFzyXxChcz83fO7P4dV PONcvPTpeUrpmwwa5G19v/4w75FIXq3PWfOUPcqf1zzndyeRV/GbkRplCHuUb015lcKdajA/ 51XsfKUtFmI4BXMloNYDE2D7a5r+Sdx2/FpRXocnIy1jnxa5vW9MMv/mH8VVtOExLKrij5xH jfzDtRrHHI9j2dyqyjw3s7TepGPNpyERlXIWoZxOzeN4WCW85rdyr7zj+FlFwgQEEKgSkKop TEAAgUAK5O0nL1fj9Q2+S5RPshZW1KH9ROj5oVpynXwt3Yyp+MG+in8SU0sLzpOppW1bEON5 VsWuL6nIQnXwI3J5SZ8chmwniDqdxa3qH7Qe+dsDEO73MddJoFHpxN1lFVmMqmjx33mrPN4B D2Op4l99wr/orKM7T/vn8PmoWvskZU+A9y4B42RfDxjn+oaPCCDQawG2v+aEU/crQX19/Fv+ pF74Qh8lkuVAQfjqjjPxR1uuAEJYrd7fUfv6+Llzf1WFXcfWLfvx60lCrVyOqnBV8D2kli7r gPpc2JF2dNPjuPONO/96x7KoStmP/UZNnmdU7GrUPH5GzPLUCHgYy5X+cvx0cPABAQRqCnAL if41wQsBBLTAV5tybLbcZTRyVz8udLH57p6G38F/nJUzv6ncATy3LInP9cBfrrs00h9fkxOR ym0qenDN+JOEzL9ipKD/fq3L8ZNyOUQiEn8Uk/kfV+7l0I91uzZ+QspL17h9pTTAmL5D43hO Ym9Nl8fzKN4O85eoTOjvzLtIjjf5CFhbeXQAQ6J1HgN39PkNmZ43nnoSlZ2HqxL+WRmgoAcD 3fiXE7bBURs/wtWmMvpv9fgqt65vSEZ3X7YGVtW3Ff3+lnlPeeTqsphrZaHYltNy8XdLVevY 6GNRQwS6LMD21xFo+s+X5MQ/lZ860ug44Z1RTm6FJuXKF+VvQ1e3ZO96xHnL4oucbP9uXs79 vjIG1dyqZJJL+uZG6/X4w0vyowuVp58srMrh9pLMGIfPr3flzE/O1r99Re9XS499fZaUi9Nn SoORhm/v6/OBkBT0d8armQE8i/Na5Wk8XhbHT0OXvwgg0FCgZmiDLxBAIFAC+kTHvEKzlqy6 MaSxheP2jbDar5NE4rZ1i0X4rvNKkL0nyMpBdSLZvZVKORtd0bF1f9ZX75vqvepRS3t56vfA sOUn+hYXz1twsmrNdkWquS61HoUawUmp+9Y6oQ9c5rpovA+Zbs7vIved688I0lAlBHouwPbX GfHWZWO/FFGJ79pIy94Dcs7j1kwzSX0MsfVkdB+TrJ4g+hhUffhU8euVHoWNjon6eG7cyqIv aJi5t/rGKk8Lx2uOn60yMz8CgROgB0bDEA8zIBAMgccfX5EfRcoPTVv+TA+A+Uv7dZ0mDGw9 FcK3E7Lznh7RotarkJRz46fKj5pzjcRe0D1Bxks9QWr0sDB7ijS6otOdAeis8ojUvbKmHz97 4yU9uKmuc736F77YkPHQJT1Xo/LXwhvR6XoE/1vXY5K1ul/oijp7YISv6h49xQFeK69CYVIu /lb3wKj04EneuyLXPn6sH+9nzFHnrx7odebNFVnVVxaNF8vjF9j1pwvbn7EdBfHvth7A81xp AM+Q7GQSEm7x8Pn4Q338vVA+/q4l8/LOnG0EaRdo4Ut9DDlZPIaI6FtBZP1XZr80MXuC1Hhq U6PvzaxsTyFpt0dmMS0zv0bHO46fJj1vEECgCYHAhWyoMAIIeAvYrgC1c8XF3lMhdD3hnYcx VY+hYQ7Yedl5H7CVjvcVm0bfG1mUxqPowgCQVn6i3Fe7rLz0Oz14mTGAaN1eAaazd/0cafLB GsSz4RgYugeM7cqkPvxV9eKomrawbuuZw/L4NbHO2NerkVp/vHc2jIHh7eKemjIGttbrR93j hHvBymerp4KolQceXSdsy+UfrJr7Nvex2kynRg8L8/tGgyL3uwcGx09bC/MWAQQaCTCIZyMh vkcgIAL2H+ri9XSRBg75h9YI5nV/wBfTsZ0cietEyiqH9w/8Rt9bxbTd0uHKw5qn8Tsrv0Yn phm1WrnNIVRnENTmb4FpXLbRn6O1NtwyAlb2H5n13ruCIizf4g94/Byb4LCvP47KlD60tv1V Lx+cKWZgQO9vdA+8liueumvdQhdLN7jh0QyC67xct3eY5ahxzGv0vVlw2zHaHSQx52nijZlf raeWmGlw/DQpeIMAAg0FuIWkiV4qzIJAIAR0F85r+hYIY3jNtQdZeedV1wicdgj9TPjic+HN Hv960K+z/3CqPOCiHjQzu/uO1Fo69993ZPLn75ZSC9/Ut5v8q9WN37plw/sWi0bfW0Xs8y0k +naHzbfG5eJH5RLEdDfgC+5uwM/ScukfTkh5iDXv+lnl513xFhLTtEaXaIdScQDXXE6vl3og 0OOOb6o+FPS8E69MOedjefyCvP5UbyWtbX9VywdowtGeHJt+vVLhsOxnd+R0rQNgca7SgNLW fspxTGxwC2byD+fk1PvbpbxW9XF6yXacNm/ZqLG/bPR9pQK6fPpY9VL5WNWXW0js+3pdCI6f ZkvwBgEEvAQahjiYAQEEAiOQ+cQayFP0Y0u3alwJyj7cMW+XsK4WZc0eCHpfo6J3a1yFylYe wVq5Mr7qHqjzkdGTo8Zj2hp9b2utrnR/NvMTFUvbEvd4m32wZnbtLRos399Xme/01bR8XqUO Yq7H4Hn3MPFINsCTuAIc4Man6gMXYPtrpQl2zIE8dU+muWWVqjGYZ+oT4xYQ2zEuu+84PqzX GEg7W3kEa/H4okdbqhos+9C4lcXVO8qoR6PvjfnsvSQb9qg0F6p+Y+YntrpWz1aawvGzBgyT EUCgSoBbSKpImIBAkAXsT8kodyeP3t5SqW+yKvsko3+E7yg96KHjR/raQ6u7q/12i+IJVujy ukroZfP6B3z+u6xKfLZmjX1RPAFz3aeb/Sal4rYnlKx8klCHennjlX2kv99cNvMvfZ+x8i/O l00nVPxgXyUexNWy+eSKsNo6SKh9Pb30L5lSh4+sdI30i+NmHCYTetnKP/3enl/o5o5K2b9/ kFLZ59bSxXfxq06f8olm2dL5ngCGU87rk+0H1OKW1wxMQwCBngmw/bVE6wpCFC8CrG3rIPaT rMp8c6j2P4mpqHlMKgcg7E+ism63KB8vlm7HVSarj53F42c2o4+N9gsMopyBhbzK6GPfmnkb XUjt6ONcxjjMPdfHtocJFbsarhw/9ff6+JVxBFl0oP1B8Ripj5Wf2QLucytqXx/3jONn4qFe znXcLTnl9THeOHYW/zryE7X6mZ5mP34+zFTxcvysImECAgh4CBDA8EBhEgKBFniecTymzfmj 2/lDPHp33zYIYlkt85lxdck5b1U6C6vq0B57yKccV6Cs+SsDLepBvsKlq07udHUgwAgi1JzH vUzxc1jZTx6Lpc8/XDeDI1b+Xsta0/SI8VWrS2LTeNSrNV8pPX1VLnbfCMAQwKiC85iQfxRX q9dXVbxGbyCPRZiEAAJdEmD7axHym7jZO7HRMWT9wP0DPq/iN62xMOotH74edxx7ax27QpXx OGp9bx+DquY8XsfdOfsAyGWj1F0jOOI67nktX5oWqjoGF1Pi+NniOsfsCARQgABGABudKiPQ jEBie9XZW8J2EhK+vKZ7VlT/cDfTfaKvBF2udTITVmu6Z0XV0s8PbT0mrBOg0OWt8ry1vl+M KeMik2oh+CL6qlLGCHwYBdcnn95BEqs8zpNKfZvNo6qalFPTV6OKV7Pie/FSj5DUo/LJambb uIpGAMNg5y8CCCAwMgL6OLR1M1ozGL50c8vV88FZ82xyRy05nqhk69W3sKR7VrgDH3r5b3Y8 j9dL24flxGt877jV80nzwRevgaozn9UI3NvOHZzHT32bjfsYbFBw/DQk+IsAAh4CDOKp96a8 EECghoAeaOzo748l+0x/XxwUcWxSpr8/JRO1H1HvTKiQk6NvMyKvzMjYs4xkj0/KzFS9kc2c i4/iJ2sAtogk8lsSatZyFDGoEwIIIDCqAvr49/jvGckVB7vWdRybmJZpffxrNMCwwVHIHUnm KC+TP5yWgk5HpqZlqumDr5HKaP3l+Dla7UltEGhXgABGu3IshwACCLQqkEvKpclT5aeQzK1K NrlU80ktrSbN/AgggAACCIysAMfPkW1aKoZAqwIEMFoVY34EEECgoUBBkn/dlkRO9BW3KSk8 04/sLKTlyoUrkqwsG9KPj03YHh/bMElmQAABBBBAYOQFOH6OfBNTQQQ6FCCA0SEgiyOAAAJu gcJXGzI+e8k92fo8tyKHD5ZlpnhbDi8EEEAAAQQQKAlw/GRFQACBRgIEMBoJ8T0CCCDQqkCx t8X4CbnlXm4uIqu/uSLR86dlguCFW4fPCCCAAAJBF+D4GfQ1gPoj0FCAAEZDImZAAAEE2hMo 3jpS0AOhFodwGxsr/msvHZZCAAEEEEAgSAIcP4PU2tQVgdYECGC05sXcCCCAAAIIIIAAAggg gAACCCAwAAECGANAJ0sEEEAAAQQQQAABBBBAAAEEEGhNgABGa17MjQACCCCAAAIIIIAAAggg gAACAxAggDEAdLJEAAEEEEAAAQQQQAABBBBAAIHWBAhgtObF3AgggAACCCCAAAIIIIAAAggg MAABAhgDQCdLBBBAAAEEgiBQ+DYp+8mMyA9mZX5uJghVdtQx6PV3YPABAQQQQACBLggQwOgC IkkggAACCCDQkcCztGx+uC/5SiLjPzwjF34521GSg1+4IBuhcbn0RbEkYUnkdyQUqEcJB73+ g18DKQECCCCAwOgJEMAYvTalRggggAACAxY4+jot+bFpmfn+RFMlKXx5R8ZPvmvNO7cu+WRU hvv3fkE23xqXix+VqxV7mJcLPxuOGrXaflbD2d8Nb/3tteA9AggggAACfhIggOGn1qAsCHgJ FK/M/t9tyc9FJDr0V2S9Ksg0BGoLFL7akzsfJSV0/h2Z/2mDH78vjuTGz6flWumKvzvNqCSy 6xJqLp7gXrilz4WvNmR89pJepoVeB0cHcu13q5J8sC27xfIvxCS/e2HoAxhWD4yQJL5LSOjl ligHMnNb7edZUnsPjOGpv70qLW1/9gV5jwACwvbDSoBAbwQIYPTGlVQR6JpA+sNLcuLChk4v KofP12XmeNeSJiEEfC5gu4K9uCXqbqR+eQtJOTt+SnZdc4XmRJI6KBC+nZCd90Kub7v/sfDV pg5gXNQJRySV35LZBnEXewke6+39R8XtfSQCGCK5r5KS+EaPgfEPM3LmF7NDEZDppP3sbVl8 P4z1t+rQ4vZnLcg7BBAQth9WAgR6JUAAo1eypItAlwTSf9YBjH8qBjAi+h7yrYDdQ94lRJIZ UgHbCWCTP+hz+taNdK4gY9mEnPqfxV4QlZcOYsgXSzoIuNrzIKD9B3Cr26y5vTdZX6N6/O2e QCft171S+CGl1rc/P5SaMiDgDwG2H3+0A6UYRQECGKPYqtRppATMHzRtXM0dKQgqE0CB9k8A C1/o2zhC5ds4lq9Oy43fF4OAIqsHWVn6xUSVZe6LPdl6cCTjurdEviBy6o0LEpqqzPbssWx/ uCeFsfHyhEJeJn5+VsJzxgyu5HQPjGNGD4znugdGC72mzO1d9zjJ//GM7P1pQzY+3pfHGd2L YXpGLv76mrzzq1CDngwFSf9tV7b/siv7X+nlKq/pn56R8FsRCdfoCVHs7hz7r7JBcRGHw7Mj 2fs4Jpt/3ZPEo3JZwm++I1f+eV4mHPUryMHH25J6JlLRKqYkMqEHJX2j8aCkxad2bH+erpS4 9p+J2dMSftX7qSaFp2nZ+3RP9v9rT5LfFiRTtNOv6Z+HJfr2uxJ5tUa7Gdl10H6ir7p2Uv9y Edpov8KR7H60J7liAnr9HDs5r+s5qdefO3LHtv6c+9U7svTr+QbrjwHR/vZnpMBfBIIrwPYT 3Lan5j0XULwQQMDXAqn7UaV3BPpfRCXyvi4qhUOgywJ5FTtfXPf1v4WYamX131qsLHdeL/c8 paKlbUhPK36uKmVerRnfV/7q203MufIP1yrbYCXN4jxz6450ssmYiiyEVbj4by5kzT9XmWZ8 V/o+orYeVpeimKG1vdvycpVNFtZV1iyd803+Udyqq3s583NUxR+588+r9bnqPCP3Uyqj61be B1V/v/RJxlWAhNI36XjMH25i/6Xbe8FrWe9pO66siwXJ7q165O1cPnQ97ixzcbkutZ/Kd1J/ pdptP8911LMdtMXcqso8ryLwmND+9ueRGJMQCJgA20/AGpzq9lFA+pgXWSGAQBsCh5tGACOq Uk2ddLaRCYsg4FMBM4ChAw9Nv7L7Klz58bZc+YG9fzNc+WEbUnGPH76pT9ZU9Lwxj6jI3ZSV XWZfLZ+PqOhlY1vUPwJdgZDUbVvQotYPR9v0kC1AYmXkFcAIqeWb62rtui1vnc7yZx6VeLTl +vEeVqv3d9T+wb7aub9qmhjBiC1XECOzt66ii1H9L+JKxwoAhLWDYVtMJ7J5aC++Us8zKnY1 qiKldPRfMygSUSl3zMS5pP5kO+Gf096VNIp/ly4vKz0CSrlclTS9Ahip21Ybimi72zEV34ur 2E2nXyztLEy32q+j+nfSfk8SakWvn2HT22izkLbT7akDaUa7F/9GN23rd1U7WBPa2v6sxXmH QKAF2H4C3fxUvocC3EKij+S8EPCHQE62/2NV9jP6/v0xa9S/oy9uyManlRKeX5LlH1vfFQoF OfVP1+TCXHWXeH/UiVIg0KRALi23rm9IRndut1b/giR/f8sclDNydVnMmxD0ul+Qabn4u6Wq J4s8/viK/ChyS2esx435To8bU3zyxbfbcuwH50qFqTmY54u0XHrphJRGnLmbkq1FMzezEjUH 2SzetnDwWJdpTAp/35Vz7xfzD8na5orM6vz1XSnmq/BiTEK/nJcZjydymLeQFOc+vy6ZzahM VW7RKHypBwc9WRwctPidfkrJX+xPKcnJrdCkXPmi/HXo6pbsXY84b+94ofcxv5uXc79Plmea W5VMckmqbqiwOZRnLOa3Jqk/viOzrxSn6FscPte3Z+TGJPyG+xYSc4nSG9OrqVvgrC7XOoDk 9NdluvHzE+YTZnQvCkn827wzs+In3Q6bHydlKnRa5l23mFi3FekBXXX6O/b27VL7uQvUfP27 035WfrokC6tyuL0kM5VDRuHrXTnzk7NSav0F/ZjeXdtjeru4/bkN+IzAyAuw/Yx8E1NBnwn0 MDhC0ggg0IpAunY3bb3b0FfQalzhbbFrfStFYl4E+iWQul/7qn9x/ddPEnFcQS5tE3p68RYH 5yur1ox5r9pvFbBd3ZcldejVmylv3Wri6IFhy8C8xaPedvfI2JZb7zVlpi9Rz1suzFtj3Pnb 9x9zazVvMdE3S6g1220a6163stgcis5hfcuFs7+CDaTBW6s+TfbAqJRNj1VipfxdSi0V94GV f6GrO43Lk8+q1IP9Uu+L+N6+SjzQt8J8kzB7cdRq31KmHbSfVejyu6br36X2s/ILq7iN0ChX /HrlOOLuQdS17c/Iib8IBEege8ev4JhRUwQ6EaAHhj4j4oWALwSKV0f/U/fAyIpjgDVHD4yF ZVmZKw2JVy6yvqx74p+umD0wcv+9KRcXYzL2E6uXRu266SvY378osQ8uiNF/g+U780veuyLX Pn4sYx5X1qva4VlBZt5ckdVF67GegV4+l9Q9MGKStbpfaDJnD4zw1RXdp0EPCFl5FQqTcvG3 ugdGqVdAZeLXegDNn5R7KUTuJ2TjjRkpvND9Io6PSfrevJz5Tbn3gedgnraeB1U9ACrJmz0k 6jwlxP4Ui1Yfo2qmX9XDolwA83tX/o8/1L1OLhR7fYisJfPyzlztfUDhSz3A6cniAKf64cyb KVn/launic1BLu+I+kDfNNLmyyxvUz0wdCaFnBw9FZn6fmWv9CwtV/7hhJRrpvu01Op5USlf 4esDuXNTDy56r9LLpEa5a7VvcfZO2s+dXbP171b7mfm51g+jXDW/78L2F+j9lwam/gE+/nVh +zG2Uf4igEATAp1EP1gWAQR6L9DKGBipu/WvYutdgnkVs/zeObAey3fip6/w265sV1u77fVn PRijdWU76Mt7b0ut3kOcMMe68PC2r/+uK9Cl3G2Dfda6Qm9e4Xb3gLAVP29eTW+m14FtQf22 Ufq1vjen6zquPPC49G7LJv/AGujSs552h6oeLraEmnhrlat1C+XqeVHsCVL39c2Oa/+me+4s RPQYEHosjgVnDzbPelcS76T93OVrtv7WfJ21n5mO1/qtC2d+X2f9tdeh+e0v6Psv6h/s4599 q7HeN7/9WMvwDgEEGgswiGdjI+ZAYKAC5glnE08hsYIdDX68mT/knF3cWd450F/jIITTb8t4 Yobp26Ad9I8M+yvoy9styu/1jwLDtJkfXLYf3o3bzmMwT9vytX7gJm5Xglx1ymP9AHauH9X1 q55ibu810q/1vT346B6gsioXM8Cibw+xD1ZqzNiEgzFro79mefX+q/EgnrbU3MGLmw2CF3rR ncvW9ha5uaMy39nSK759nlXrlSBjrfYtztZJ+xWXt7+arX+32s/Mr8X1x15m631r21/Q91/U 39r+Gu9/9bwjdvyzthvjXWvbj7EUfxFAoLEAt5DovSwvBPwsYHb5bbILdu5pzuwyX69epW71 L0/JhOt2B5bvwE/fqpDLFZfXA1FWBl6s1QZF/4lXppzzBX35KixrUEf9GFU96KB90MqqmSX3 t1syefpK6Qv9I14u/FTfRvHCNp9uE/tAmFWDeRbScm78hGzrRfTYGrL1a9etFfqWlo3wuFwq DqpbpzzWLQgiW98oiXzfVoYGb83tvUb6tb7P/fcdmfz5u6XUq+rlyjP5h3Ny6v1iLUVWH2Rl 6VXjJrLKjLZbSPQPfedgmpVZmv1jlrfJ/VcpXddtI5Hb+7L13ulyli+OZONfonLn2zMS+0QP 6mpsZ3r6jZem5Vpxrpq3veh5jpXnqVevTtqvXEjr/83Wv1vtZ+bX4vpjldj+rrXtT4K+/6L+ wT7+2Ted0vsWt5+q5ZmAAAI1BRrHOJgDAQQGKWBeUWuiB8Ygy0neCHRfoLUrWNYAl/Zbc9yl yptX4aVqMM+MWjUGAF2oHggzm1y3blGocYW7mFv+oTXfin0wSqMo32VUYm9LxfQjTjPWPUSl b81eUK6rk8aiNb+3PTpWH/DVetL7NpJs0hhgtHi1NKz2vWaz9cCIdngLiVlePShpU4+BNnte lG/5iN5PGFUv/9VlMx6n6hiA1FZm95Xd0oK698XOdetRotWDv1rZdNJ+Virld03Xv0vtZ+bX 6vrjLnjpc2vbn2cSTEQgsAJsP4FteirecwFuIek5MRkg0JmAeUKqfwB4Pjmhs+RZGgEfC9hO ABe3apczWwwIxJQeDrUSYFhViYcJlfrG+es8/+RQJZIJFbtq/ZBduh9Xh7YoghkE0WmFLq+r xDcZlc0cqvjdJSt4Uczn/LpKPTpUWVcAolTIJ3FbWSJqK6nT0GVMPYir9avO25RWk5UEnufV oS6zWba5ZRVP6idnGLdBuL+XkNopfm+rohXsLDss3Y7r7/Mqn9f/dP7x2846OH/E6/y1TeKB /ncQU3rYznJ958qWpen6SR7Feti9HI2in/xRnq+Sjr0+Or3Vz/R0I49iPg8zjsWLT0gxA0il /JfU/sOUM01b2RwBDD2ajHm7kV42cjWmEo8yKvMopeKba1Z9KvUKFb/XaR8+8WjAdtqvWJMO 699p+2XSCbVm3HLlXj+81p/ik1mM9cvVEuWPNtN625/nskxEIOgCbD9BXwOof+8ECGD0zpaU EeiOQP5QxW6uqPXP3I+L7E7ypIKAnwXyj+Jq9fqqiqc9fmiWCq5PEo1eE5Ufp8UeCOV/9kFq 6823Zg6mmk+uOQMVZlpGms6/oduuHgIVzPhV56CRVpnsy+tHpVYCEPar/vZ5jfQbfV/ONq/i N5sbiNb9aNRa6dvLYr6f8+7hkrprBYbMeev6hZyPis0nqgIN9dLRT1txrLrZA2tw0nrLOb6r UZdW269YkI7rr9fCbrdfo/VH3wplrvsOzMqHxtuf11JMQwCBogDbD+sBAr0RIIDRG1dSRQAB BBDok8C+MbCm+8eyvg0k89wqxI6t54X9R2zo8pbjR1zGdpXfmi+s1g90b4DtZUeAY+Uzdy8C Iz99y8JNZ48HI63I5RW1pdNy/Px+tGXrtWEFOZa2D8sJNvreyFb/zSZ31JLjiTi2YMrCku65 4VHmTLzp4EGtp4FkPltx2Bj1rf132XlbyfOM7kFgK6u7Pe2fdQ8Vr0FBD/fWPR3Di7onie5p k9lzBjnCV2sNDtpi+2n3jutfacO22k8/gcXqgeSx/tT4PnrXOwBnW514iwACCCCAgK8EGMRT n1nxQgABBBBAwC2QOzrSw3aKHmh1Qg+4qgcEbeelBxHNPcuVBxM9PqYHzdXpGANPtpNeC8sU ckeSOcrL5A+npfD3jMjUtExNtFmPFvId+Kx6MMWjo4xkdeONjY3LpB4st+1q034Db04KgAAC CCCAgF2AAIZdg/cIIIAAAggggAACCCCAAAIIIOBLAQIYvmwWCoUAAggggAACCCCAAAIIIIAA AnYBAhh2Dd4jgAACCCCAAAIIIIAAAggggIAvBQhg+LJZKBQCCCCAAAIIIIAAAggggAACCNgF CGDYNXiPAAIIIIAAAggggAACCCCAAAK+FCCA4ctmoVAIIIAAAggggAACCCCAAAIIIGAXIIBh 1+A9AggggAACCCCAAAIIIIAAAgj4UoAAhi+bhUIhYBN4UZDcs4JMvDwhctw2nbcIBEGgoNf/ gsjExFgQaksdEfCXANufv9qD0gyXANvPcLUXpR0aAQIYQ9NUFDSoAoUvN2T85CWRyzuiPggH lYF6B1Qgfe+snHh7V5a2D2X1zZmAKlBtBAYjwPY3GHdyHQ0Btp/RaEdq4T8BAhj+axNKhIBD oPDVpozPXhRZiEl+94JwHdrBw4cRF0j/+ZKc+KcNidxNydbi7IjXluoh4C8Btj9/tQelGS4B tp/hai9KOzwCBDCGp60oaUAFCGAEtOGpdkmAE0BWBAQGJ8D2Nzh7ch5+Abaf4W9DauBPAQIY /mwXSoWAKUAAw6TgTQAFOAEMYKNTZd8IsP35pikoyBAKsP0MYaNR5KEQIIAxFM1EIYMsQAAj yK1P3YN8Apj7Ni3pRxnJ69VgcnJapr8/I1MTBUl/lZGxV2ZkZoobythCeisQ5O2vt7KkHgQB tp8gtDJ1HIQAAYxBqJMnAi0IEMBoAYtZByfwQqSg/411+Td1EE8Ac1/uypVfn5WNL+o155Jk nq/KFE8mqofEdx0K9Gz700/XKrwY6/r+osPqsjgCXRXo2fbT1VKSGALDJ0AAY/jajBIHTIAA RsAafCirW5DNt8bl4kciofMrsvrbqMzPTXWlJkE7AXz88RX5UeSWzS4k4YVp2f101zat+DYi ifyWhLocMHJlwseAC3R7+ys8Tcv2n27Jxd9slNbhlF6HZ1mHA76WjW71u739jK4UNUOgNQEC GK15MTcCfRcggNF3cjJsWcAKYJiLzkUl9sGSRF6b7ejJOYE6AXyRlksvnZDiTzsdCpLYwZZc +EXl0bH6inX6r7fkRORahTgi/PirUPCnZwLd2v5yXycl9sdr8u5/2gNxrMM9azgS9oVAt7Yf X1SGQiDgIwECGD5qDIqCgJcAAQwvFab5TuBFTg4+2pCVC1fE/hNFJCxr2yty8Y2QTLRxu0OQ TgBz/31HJn/+bqlpV/aysvzaRFUzJ/9wVk69XxSu3wPj8d+2ZfP/i8nWg8flNPTtKNPn5+Xi 4kWJ/DLkGVQqfLUnsf86kvHKFfF8QeTUGxckVOxM8+xI9j6OyeZf9yShx+WQ6RkJv/mOXPnn ed2uBTn4cFtS+haicXuJX56RyJunS3kVvj6Q7c91WRxX2/XoHsdPSORX5Xnsi/a3/PaceW8X 6HT7O/piV9b+z1m5oXtn2V+R6zFZ+V8XZPYV+1TeIzBaAp1uP6OlQW0Q6KKA4oUAAr4WyKdj Sm/yShZiKu/rklI4BIoCeZXai6nonF5ni+ut7d/y3R2V+a41pdT9aCmNyN1UawsO4dypu5GK V1glajl9l1CRkumyOnzuUcknCbXsYW9vB5Goin/j3pvk1brHcpH7KZVJVvZBtrY00lv6JKOU sY/y+D72qJxP6nbIsS4Yy+ueJiphL8ogyu/ByKSyQFvb3/Pu7gNoCwSGVaCt7WdYK0u5Eeij gPQxL7JCAIE2BAhgtIHGIr4QyCTjauV89Q/X6PWYSmXsv1prFzdIJ4D55Jr5Iz98Pd56wDKb UGFHECGsVu/vqEQyoeKfrFcCH0ZQKaziT5zumb11FV2M6n9GIMWY1/obPh9x5BHZPFTqeUbF rkZVyJ73XFhFr8ZUphJkyT6IqaXLS855FvQ8el3IGoGYQZXfycAnm0BL29/zrNrfXnWsH+VA VVitbSesdralz1sERlmgpe1nlCGoGwJdFiCA0WVQkkOg2wIEMLotSnr9Fsh+k1Brl8Pmj3Pj 6nv46pbKNihMoE4An8SdP/AlrFbuxtTOZ3GVeKh7QmSyKm/82K9yy6utRVug4fqOxw/GvIrf tAUnFmv06nqeUlF7MKL4/vyaSpkBj+IV9h0V24478sgerJptHNIBGK/X/k1jPXD3Mhl8+b3K G/RpzW5/mc+s4JuxfctcVMUOUq0H4oKOTv1HRqDZ7WdkKkxFEOiTAAGMPkGTDQLtChDAaFeO 5fwmkLH9wC3/yNG3D9S6VaJS+KCdAGY+s4IA5g9BVzBh+a4zcFCiytqCH3OrdQJDGbVsphdx 3r5hrDB5ZwCj+d4gGbVipu0OUOjEs/tmgKYqwOGL8hsA/DUEmtv+8mrNbPdKEO3yDoELA5G/ gRVobvsJLA8VR6BtAQbx1GeIvBDwswCDePq5dShbMwI5PTjkxgdX5Mq9pGP2yM24xP513jmu o2MOkUAOgqYfNbn5p5jENm/Irh580/M1tyqZB0syVRkYtfDlhoyfvGTOunxThxL0IJyOQTX1 mJlj44/lyu/KzzkpzqzHqJALP3aMrClifxrK5R1RH+gbU5p8Hf31ikz/Y/kxsNHtQ1l/s/IU Fb188t45OfX2dimlnYySsO1Ju34pf5PVDMxszW5/R3/bkPDpS+LawmX9s2ty8TU9aGxlPQ0M HBVFQAs0u/2AhQACLQq0HfpgQQQQ6IsAPTD6wkwmPRA4fLCllhas2xr04al0i8HS7S112Oje kUp5An8FK59X2UxGpfQ4Flt3l81bNIqWS9t6AM3Ky9xPuK+EN/gcS3uMRWK7haQ4iGdLL9uy IraeIPbpi1tVSfqm/FUlC/aElrY/PXhn4jP3WCvFbT6kVjd1ryGPVS3YutR+1AVa2n5GHYP6 IdBFAXpgtBjwYXYE+i1AD4x+i5NfRwIvCpL+fFuu/c+LUr7WbqQWkpX7qxLVj/Kccl3wN+bw +hukK1jJD2/Jnc8zEvnNioTdvSIMnK+35dRPzpWudIeuxiXxf+ZL35j7ieKn86uy8+sZKejH mtZ6FQoFmZgKyfxrs9U9YGw9MPTTX2RrcbZWMp7T7T0t1h/mJfqzMbH3zIjpaRf0NPvLT+W3 lyvo79vd/oqPwb1z/Zzc+tQpqIOX8s6vIzJT/YRg54x8QmAEBNrdfkag6lQBgd4KdDEYQlII INADAfPK5AAeo5p/FHdcQV/S9963chEt6Msf6qc6WE+FCKv1PeuKeTOrylAtX3wCweaqOcaB PnJVegvoen+SqDP4ZH2J4FzByquY0Vul7raeVavG404X1s3t0dxPaPfw7UR91Ebf2npLtPX4 Wj3WhbneXy4O5pm1xsbQZfbqfOOr8jfyCdD3nW5/mYfeTyKKXF1v+CSiodr/eawTlH+4j38e TdrypE63n5YzZAEEAiLAIJ4BaWiqObwC5ol93R81vaif/qFk/gg1foyKWn3g9fPDK/+AL28b sND6MR9S+03zWQMe+n95/eP7vLWOlMrbpScQBOcE0GnoeWtHcTOzPakkfNMWqNBBhyXb9lpz eZ1E9lFCxW6vqGX7I0ztm7AtgBFt9RaSSjrxq8bjc/WTKPSjNY11eOWgxgbgs/LbOYL8vlvb X3Gdq34SUUSlakXEA7X/9FjDqL9HMLyPx0+PJmlnUre2n3byZhkERlmAAMYoty51GwmBgQUw ntufVmD9OG366m7Ql/9mx/zRZvx4K/5dS9Y6Y3etrkO1vO3H9/llFU+21tPEVXPHx+CcANoM S4GIiNp6kHH0XClezbY/3lTfnuGwOtxecqxzy/fjKvNEz6PHJsg+yejxCWKOHlXFsQkSZhJ5 dajH2Ug80P8OYlYPCv1Ek8TDyvQHKZXNZtRhxlzIkb/jwzdbjrJIqdfIiqq3Zviq/I7KBPdD t7e//JOUil2PVtaNOgGModr/eawflN+5/VeCq0Nz/PNo0nYmdXv7aacMLIPAKAoQwBjFVqVO IyUwsACG/qmhn2NQdRKy/Fm9nyB2+oAvr6+U2wMXxnv99IXmXsO2vP6RnP+uiR+2zdXenCs4 J4A6gGHcQuLa7sIL4eqrkedj5u0jJpaeEr8e9lzvjPXP/jd0dcu8nSP/cL3p5WTOunXFytv9 Ttdn0bn/WNo+dM/k+uyn8ruKFtCPPdv+9OC0+r/ar2Hb/7lrQvk99ydDc/xzt2ebn3u2/bRZ HhZDYFQECGCMSktSj5EVGFwAQ3c1fxhz/HAKLa6rzPPmqYO+fGrT+dSI6N395vH0nMO+fEuV rTFzkE4A968bt13oH/7GOBeuYEbpiQ7bekyRGl7FyRn99JdozeXDavl2TCW+caWQiVu9Lqry dAYiwteL41o0fjmDIlGVanLf4ZfyN67h6M8xyO1v2Pd/lH+4j3/d2LoHuf10o/ykgYBfBXgK ib4cxQsBPwuYo/MvxCS/e6H6iQG9Lrx+kkHhWU7k+JiMvex8ckBTWQd9ef20h5z+NzY2of81 JeacadiXd9am5U+BGsX9KCmb/y8tE7PzEn51SnJHj+Xxtzn9NJGC5LXc5MSMzP54SsaON8dY eHokj5+KTH9/TAo5vQ5OTMhEO9twc9l5znX0ZVJSTwoyfTIks6+0tgH4ofyelQrQxIFvf8O+ /6P8w33863BbH/j202H5WRwBvwoQwPBry1AuBCoCAw9g0BIIDFCAE8AB4pN14AXY/gK/CgDQ gQDbTwd4LIpAHQECGHVw+AoBPwgQwPBDK1CGQQlwAjgoefJFQITtj7UAgfYF2H7at2NJBOoJ EMCop8N3CPhAgACGDxqBIgxMgBPAgdGTMQIEMFgHEOhAgONXB3gsikAdAQIYdXD4CgE/CBDA 8EMrUIZBCXACOCh58kWAHhisAwh0IsDxqxM9lkWgtgABjNo2fIOALwQKX27I+MlLoh9dKPlk tP+DePpCgUIEVSB976yceHtXwrdTsvPebFAZqDcCAxFg+xsIO5mOiADbz4g0JNXwnQABDN81 CQVCwCXwVD+Z4NO06EcTyIU3Qq4v+YjAaAvkvtiT3YdHMnUyLPNzE6NdWWqHgM8E2P581iAU Z6gE2H6Gqrko7BAJEMAYosaiqAgggAACCCCAAAIIIIAAAggEVYAARlBbnnoPj8CLguSeFWTi ZX31+fjwFJuSIoAAAggggAACgRUo6PO3gu5AOzEWWAIqjkAvBAhg9EKVNBHoooA5BsblHVEf hLuYMkkhgAACCCCAAAII9ELAGANjaftQVt+c6UUWpIlAIAUIYASy2an0MAnwFJJhai3KigAC CCCAAAII8BQf1gEEeiVAAKNXsqSLQJcECGB0CZJkEEAAAQQQQACBPgnwGNU+QZNN4AQIYASu yanwsAkQwBi2FqO8CCCAAAIIIBB0AQIYQV8DqH+vBAhg9EqWdBHokgABjC5BDmEyuW/Tkn6U kbwu++TktEx/f0amJgqS/iojY6/MyMwUA4MNYbNSZAQQQKDnAhw/ek7cMAMCGA2JmAGB9gQU LwQQ8LVAPh1TeutWshBTeV+XdMCF+y6hokWnev/mImp1M66yzz3K+vxQLdVbtsZ3S5spnVhW rS00yFsvv/4g65Fx9aTswx0VnWuU3pLKeNWjOrmhnpJPx9Xq9VUVT7P2D3VDUvihFAjK9pdP Vo6zNfbzxeNK6PySiu0V9/cer0db9Y89NdKNPSru1zh+eIiOxKTU/WhpvYjcrbHejEQtqQQC /ReQ/mdJjggg0IoAAYwmtVo6gQyrHfcP4uepxgEQj5PQ0omJXjbi8Z07mBJu4iTmcHvJdSIc UuGFsGtaMbgRUYmR/02fV7HzlUDO4laTKwKzIYBAdwSCs/0dbpd/aLr32Z6fF1ZU6junsHmc buI4YE9z/aHeiXP8cGKO0CcCGCPUmFTFVwIEMHzVHBQGgWoB88SIHhjVOK4pmXRCxa5WfuzP Lav9hyl1+CilUsl9Fbu9rEKuk8tY8eTReGX3lX5IbSlQsHw/rhIPEiqRtKWnv1ve3i9PfxBX y5UeEsaVlew3Kes7ozeGLkO8mE7pX8q754eRf/GvI4gSUrGDQ+vb53mV2l6xBTIiKmUrvjXj KL2z/YBi/R+lhqUuQyEQoO2vuH9NWvv10NWYSqXLx4/EwY5auxqx7XuLx4moY/+bfbBW+T6s e2kY+3ydnnEs0MePLeNYsBczjzXryfJOnOPHUGwQLReSAEbLZCyAQFMCBDCaYmImBAYnQACj NfvDzcqVtPOx6gWfZ1X8pv1EdFV33i2/8g/XzRPU2CNrUTO94gmr7ZaNrcVKzwCPH9ZmrwGv MlhJV72zToJFrewZJXPOlrht9MYIWA8MD2enDJ8QQKC7AgEKYFTgjH135L5Hl/8nKbVm9AjT AYnQ9X2TO3XXOK44jxNGemI/FujbFY3bHY0AuJmQfuO5jH2GGu85ftSAGeBkAhgDxCfrkRYg gDHSzUvlRkGAAEZrrWicMNQbMyR+NWQGK4xAgemsb82w92ww06s1veqHdfsn/dZJcFglXF2U TQU91kf5dpVldWgLqJjfj9Sb9i1HioHKIDAQgaBtf1Z9vQIL5SbIqJVKTz2RkIo/KU81jxM6 UGF1jLPScx6PrOnV+VjfOZdpvAJw/Ghs1O85jPWiup37XRLyQ2C0BAhgjFZ7UpsRFDB/WFf9 UB7BynahSsYJQ92Tv8yOGcAI306UcjWdawUqakwPXd1xlbr9E9B80uiGLCp8PW47EXZlEaCP 7V6NDBARVUWgZwLB2v6sfXe9H5yZz5bN48da5RYQ87jTYgBj+RPbbYKlVrTKUPcY5tHiHD88 UAY8yVgv6q1PAy4i2SMwlAI8RlWPpsQLAT8L8BjV1lrHeGyZPvmT/O4F8X7Q6JHcCE3LtS90 2pX55KtNGZ+9qCeEJZHfkVBlQTM9iUgqvyWzxvR7Z+XE27sil+OiPpi3FbIgm2+Ny8WPrLS9 y2BbxHj7dE9Ofe91SRqfdVlW7l6U0A+nZHpaP0b1lWmZeGVCxo6bM4zOm1xabl3fEP2AWBkz wQqS/P0t0cqlV+TqsswaNS4UpCDTcvF3SxKaMCbyFwEE2hJg+9Ns1r5b/+CUrUVzb+Mkte2n jfnSfz4nJ/5pW2RuXfLJaOW4Y6VnHGfKuzY9PayPEZ+KLH+SkZU3pmzp11rGNkutt7ZylWcJ 0PGjlsmApxvnD8Z6MuDikD0CoyMwlGEXCo1AgATMngH0wGiq1Y0rHvWvXtmuctmumGX1gJ+H 3zjHnjDTc/XAUPmsOtSDvGWqbvWwpd1Gm2U+WzWv7ukjjef75bs1HgXblJA/Z0rdN+4h965z qMZjZT3vVfdnFSkVAr4VYPsrNo217657xdw22LI5nx4EtHQ8yFo3kNjTcx+P8tmMHiQ0o/JV twFaZXAv08zKE9TjRzM2g5jHOH8w15NBFII8ERhBAXpgjE4sipqMqAA9MFprWOOKh/OKlzuN 5q9ymem5emC4U7Q+N5d24eljSX9bkJmfzcqEu0fF07Rs/ikmsc0bslvsJeL1mluVzIMlmXIv 6zXvMEzLJXUPjJhkre4XutTOHhjhqysSkrxZm0JhUi7+VvfAeKU8KXnvilz7+LGMvWzOUvvN M23/5oqsLupn01ReLI9fYNefLmx/xnY0vH+tfXfdK+Yv0nLppROyoStadz5bj476xyO7mFWG estw/LCb+fe9cf5Qfz3xb/kpGQK+FRjBoAxVQmCkBOiB0VpzGlc86l+90gOxGVf0bT0wvHIy 03P3wPCauTStmStoebVeyT/sNdq9Pe18XmUz+mqdfqTr1l3r3mt9UFFL2xn7nCP5vvl78LW7 7ZGFRZ+G/xbWbeOMsDx+Tawz9vVqpNYf791H89uf9/LDNdXad9e9Yv4kbj6SO1p3/22lV/94 ZFdqZhmOH3YxP783zh/qrk9+rgBlQ8CnAgzi6dOGoVgIGAIEMAyJ5v4aJwx1TxgzcfPHbfiu x+PybFmZ6XU5gGH8MLCf2CQ2V1V0cUntPLJ3Q7YVpvj20ZZ58hy6Gnd9OWofmzmZt+q8ZXvE YcPgRfGHqA5e2V8s3+IPePzsq48a9vXHUZnSh9a2v+rlh22KVV/7ftldC/sgnusP6+yrbbek 1D0eOTKwylB7GWseezk5fjggffHBOH+wt5MvCkYhEBhyAW4h0We5vBDws8AgbyEpfL0n195/ XW7pwcaKeoCjYwAANmVJREFUr6W7cVlZnK8xMGZ5nkH/3+iyqU/+ag7iuffbU/L678tDZa4l s/LOXO1RIM30unoLidVNWJ/YVAaL09MqA7vVK7tITm6FJuVKaQBSPWDcrjFg3KDle5G/5VTf pJL3i4LkcjkpvNADgTa4taag5514Zco5H8vjF+T1p2oTbnH7q1p+2CZY9bX2y+466AGgj+kB oEuTI5L4bktCNW9Zs9Jrav9VSrOZZax5rHLqaRw/HI31+PMNeXf+UmUQ6LCs721I9DX7gKmO 2XvywTh/sNqpJ9mQKALBExjyAAzFR2DkBQbXAyOrVu3dpSvvVx84B7n0WwMcbkbLvStcV4dL 5XyeVfHble+L9WlikE0zvWIPjKoB17xrb/SucF/ht89tzKNPbCqTratq+kikYukaV/Zs3ZfD N8uPgLWnO1rvbSZNtNVo1Z3aIDBogeBtf+Z+2evWkGxKrdl6eVn77trtZKRX71jgXrqZZYx5 rDLY2orjh1LZfbOnYvF4Wv4XUvt9Pn2hB4Z77eYzAt0R4BaS7jiSCgI9ExhYAON5Ri2bB37j BEBU+LZ/fzRn0gkVuxoun6zMLav99KE6fHSoUg+L40esVJ3Q7Hzj3WxZnU7igf6nlzPTk7CK 7elpeuT4bOZQZVzxhew3qfIyybhasY3FsJOsTC+mZ/yzzVPrBFQPD6e2HjhHqc88jKuorU3q d1/2rttwTbWdlC9uDVfRKS0CQy8QoO1PP0UkpffLy5V9d+hqTKX0saN0/HgQV+vXbYHv0j54 WWU8A9r6aSR6vKLSvt62nxd9PIrr/X9KP+Uq88i5Xy+uJhw/uryxfLNj3iZqBTBErSVdB+4u Z+tOjgCGW4TPCHRHgABGdxxJBYGeCQwsgKH0QJe2H8vGScDyZz4dODId8zxhMcrt/BtWW7V6 OOQTKuxRb+fyokL2QI5+rF4zy7jTKH62xuDQPxZsgQ/7vOGFcFXwpXhFr7+nYj1bxesmnH8U V6vXV1W8VnvVXZovEUCgE4GgbH+NHiNr3x/LwopKVT0+u6ycf7je1HHI8UOa40cnq6j3srqn oqPNKsf0nT6fvhDA8G4epiLQqQABjE4FWR6BHgsMLoChrwo9jDl+OIcW12tcdeoxQjPJ51OO 3gnVJy8hFVlcVuvb+yrreeWskonueWI+oaROIGPFEcjJqnVb1+LqvK0eLO7v1g6sPq3710PW SZfxlJSqMoTU6nYiEMGLZpqdeRBAAIFOBfL6WOfeNzs+z4VV9Oqq2jowbvmrkaMeILpxMDus nL3/OH7U0OxocmrT+dSu6N39jtJrZ2ECGO2osQwCjQUYxFMfoXgh4GeBQQ7iWXJ5IVJ4lhM5 rgdGfHnMz1TDX7ajpGz+v7RMzM5L+NUpyR09lsffFgelLEhe125yYkZmf+waeHL4a00NEEAA AQQ6FeD4US1Y0AM7639jYxP6X/XXvZ7CIJ69Fib9oAoQwAhqy1PvoREYeABjaKQoKAIIIIAA Aggg4A8BAhj+aAdKMXoCBDBGr02p0YgJEMAYsQalOggggAACCCAw8gIEMEa+ianggAQIYAwI nmwRaFaAAEazUsyHAAIIIIAAAgj4Q4AAhj/agVKMngABjNFrU2o0YgIEMEasQakOAggggAAC CIy8AAGMkW9iKjggAQIYA4InWwSaFSh8uSHjJy+JzK1LPhmVAYxD1WxRmQ8BBBBAAAEEEEBA C6TvnZUTb+9K+HZKdt6bxQQBBLokQACjS5Akg0DPBJ7qJ1N8mhb9aAq58EaoZ9mQMAIIIIAA AggggEB3BHJf7MnuwyOZOhmW+bmJ7iRKKgggIAQwWAkQQAABBBBAAAEEEEAAAQQQQMD3AgQw fN9EFDDwAi/0c8yfFWTiZR29Px54DQAQQAABBBBAAAH/CxT0+VtBd6Cd4OZf/zcWJRwmAQIY w9RalDWQAuYYGJd3RH0QDqQBlUYAAQQQQAABBIZJwBgDY2n7UFbfnBmmolNWBHwtQADD181D 4RAQ4SkkrAUIIIAAAggggMBwCfAUkuFqL0o7PAIEMIanrShpQAUIYAS04ak2AiMgkPtKD2L3 X3oQu9N6ELuftT6IXafLjwAhVUAAgSEVIIAxpA1HsX0vQADD901EAYMuQAAj6GsA9UdgSAWO 9uTY9Otm4bceKYn82PzY+E2nyzfOgTkQQACBngkQwOgZLQkHXIAARsBXAKrvfwECGP5vI0qI AAIugRdpufLSCbnlmLwkqfyqzDYznl2nyzvy5QMCCCDQfwECGP03J8dgCBDACEY7U8shFiCA McSNR9ERCKRAQTbfHpeL98qVD82FJPlFsvzhfEzyf7kg9WMYnS4fSHQqjQACPhMggOGzBqE4 IyNAAGNkmpKKjKoAAYxRbVnqhcBoCiTvnZNTb2+XKre0ndKj789K+uNrciJyozQtcjchW4uh mpXvdPmaCfMFAggg0EcBAhh9xCarQAkQwAhUc1PZYRQggDGMrUaZEQiowNebcuwnF0uVN4IX hoQ9iBF7lJcLP/boh9Hp8kZm/EUAAQQGLEAAY8ANQPYjK0AAY2SbloqNigABjFFpSeqBQAAE KgGIZd3zYkX3vHC/0h/f0D0xrkksrQMYP60dwGh7eXeGfEYAAQQGJEAAY0DwZDvyAgQwRr6J qeCwCxDAGPYWpPwIIIAAAgggEDQBAhhBa3Hq2y8BAhj9kiYfBNoUIIDRJhyLIYAAAggggAAC AxIggDEgeLIdeQECGCPfxFRw2AUIYAx7C1J+BBBAAAEEEAiaAAGMoLU49e2XAAGMfkmTDwJt ChDAaBOOxRBAAAEEEEAAgQEJEMAYEDzZjrwAAYyRb2IqOOwCBDCGvQUpPwIIIIAAAggETYAA RtBanPr2S4AARr+kyQeBNgUIYLQJx2IIIIAAAggggMCABAhgDAiebEdegADGyDcxFRx2AQIY w96ClB8BBBBAAAEEgiZAACNoLU59+yVAAKNf0uSDQJsCgwxgFL7ek2vvvy63Pi0XfuluXFYW 52WszbqwGAIIIIAAAggg0GuBx59vyLvzl2S3lFFY1vc2JPraVK+zdaRPAMPBwQcEuiZAAKNr lCSEQG8EBhfAyMmtY5NyxVWt1QdZWXp1wjWVjwgggAACCCCAgA8EcgdyavKMJB1FCcl+NiGn +3j6QgDD0QB8QKBrAgQwukZJQgj0RmBgAYwXR3LtpWm54apW+HZCdt4LuabyEQEEEEAAAQQQ 8IHAt7ty7AdnqwqylszLO3P960NKAKOqCZiAQFcECGB0hZFEEOidwMACGHIkN45NyzVX1ZY/ y8jKL/vbDdNVBD4igAACCCCAAALeAk/35Nj3Xq/6biejJNzH0xcCGFVNwAQEuiJAAKMrjCSC QO8EBhfAEMl9uSnzJy+a3TBDi+uy+8eoTB3vXX1JGQEEEEAAAQQQ6EQg/eE1OXHB6kMavbsv 64unO0my5WUJYLRMxgIINCVAAKMpJmZCYHACgwxglGr9QqTwLCdyfEzGXu5f18vBiZMzAggg gAACCAy9QKEgOf1vbGxC/+t/bQhg9N+cHIMhQAAjGO1MLYdYYOABjCG2o+gIIIAAAggggMAg BAhgDEKdPIMgQAAjCK1MHYdagADGUDcfhUcAAQQQQACBAAoQwAhgo1PlvggQwOgLM5kg0L4A AYz27VgSAQQQQAABBBAYhAABjEGok2cQBAhgBKGVqeNQCxDAGOrmo/AIIIAAAgggEEABAhgB bHSq3BcBAhh9YSYTBNoXKHy5IeMnL4nMrUs+GZUBjEPVfuFZEgEEEEAAAQQQCKBA+t5ZOfH2 roRvp2TnvdkAClBlBHojQACjN66kikD3BJ4mZfPTtMjErFx4I9S9dEkJAQQQQAABBBBAoCcC uS/2ZPfhkUydDMv83ERP8iBRBIIoQAAjiK1OnRFAAAEEEEAAAQQQQAABBBAYMgECGEPWYBQ3 gAIv9HPMnxVk4mUdvT8ewPpTZQQQGF6Bgt5/FXQHsglufhveRqTkCCDQlgD7v7bYWAiBRgIE MBoJ8T0CAxYwx8C4vCPqg/CAS0P2CCCAQPMCxj3gS9uHsvrmTPMLMicCCCAw5ALs/4a8ASm+ bwUIYPi2aSgYAmUBnkLCmoAAAsMqwCj8w9pylBsBBDoVYP/XqSDLI+AtQADD24WpCPhGgACG b5qCgiCAQIsCnMC3CMbsCCAwMgLs/0amKamIzwQIYPisQSgOAm4BAhhuET4jgMCwCHACPywt RTkRQKDbAuz/ui1KegiUBQhgsCYg4HMBAhg+byCKhwACNQU4ga9JwxcIIDDiAuz/RryBqd7A BAhgDIyejBFoToAARnNOzIUAAv4T4ATef21CiRBAoD8C7P/640wuwRMggBG8NqfGQyZAAGPI GoziIoCAKcAJvEnBGwQQCJgA+7+ANTjV7ZsAAYy+UZMRAu0JEMBoz42lEEBg8AKcwA++DSgB AggMRoD932DcyXX0BQhgjH4bU8MhFyCAMeQNSPERCLAAJ/ABbnyqjkDABdj/BXwFoPo9EyCA 0TNaEkagOwIEMLrjSCoIINB/AU7g+29Ojggg4A8B9n/+aAdKMXoCBDBGr02p0YgJEMAYsQal OggESIAT+AA1NlVFAAGHAPs/BwcfEOiaAAGMrlGSEAK9ESCA0RtXUkUAgd4LcALfe2NyQAAB fwqw//Nnu1Cq4RcggDH8bUgNRlyAAMaINzDVQ2CEBTiBH+HGpWoIIFBXgP1fXR6+RKBtAQIY bdOxIAL9ESCA0R9nckEAge4LcALffVNSRACB4RBg/zcc7UQph0+AAMbwtRklDpgAAYyANTjV RWCEBDiBH6HGpCoIINCSAPu/lriYGYGmBQhgNE3FjAgMRoAAxmDcyRUBBDoX4AS+c0NSQACB 4RRg/zec7Uap/S9AAMP/bUQJAy4wyABG4es9ufb+63Lr03IjLN2Ny8rivIwFvE2oPgIINCfQ yQn848835N35S7Jbyios63sbEn1tqrmMmQsBBAIt4If9Ryf7v0A3HpVHoIEAAYwGQHyNwKAF BhfAyMmtY5NyxQWw+iArS69OuKbyEQEEEKgWaPsEPncgpybPSNKRZEj2swk5ze7HocIHBBBw Cfhk/9H2/s9VHT4igIBTgACG04NPCPhOYGABjBdHcu2labnhEgnfTsjOeyHXVD4igAAC1QJt n8B/uyvHfnC2KsG1ZF7emaMPWBUMExBAwBLwyf6j7f2fVRPeIYCAhwABDA8UJiHgJ4GBBTDk SG4cm5ZrLozlzzKy8ku6cbtY+IgAAh4CbZ/AP92TY997vSrFnYySMLufKhcmIICATcAn+4+2 93+2qvAWAQSqBQhgVJswBQFfCQwugCGS+3JT5k9eNLtxhxbXZfePUZk67isiCoMAAj4V6OQE Pv3hNTlxweoDFr27L+uLp31aU4qFAAJ+EvDD/qOT/Z+fLCkLAn4TIIDhtxahPAi4BAYZwCgV 5YVI4VlO5PiYjL1M121X8/ARAQTqCHR8Al8oSE7/Gxub0P/qZMRXCCCAgFtgwPuPjvd/7vrw GQEESgIEMFgREPC5wMADGD73oXgIIOBfAU7g/ds2lAwBBHorwP6vt76kHlwBAhjBbXtqPiQC BDCGpKEoJgIIVAlwAl9FwgQEEAiIAPu/gDQ01ey7AAGMvpOTIQKtCRDAaM2LuRFAwD8CnMD7 py0oCQII9FeA/V9/vcktOAIEMILT1tR0SAUIYAxpw1FsBBAQTuBZCRBAIKgC7P+C2vLUu9cC BDB6LUz6CHQoUPhyQ8ZPXhKZW5d8MiqMY9chKIsjgEDfBNL3zsqJt3clfDslO+/N9i1fMkIA AQQGLcD+b9AtQP6jKkAAY1RblnqNjsDTpGx+mhaZmJULb4RGp17UBAEERl4g98We7D48kqmT YZmfmxj5+lJBBBBAwBBg/2dI8BeB7goQwOiuJ6khgAACCCCAAAIIIIAAAggggEAPBAhg9ACV JBHoqsCLguSeFWTiZX318nhXUyYxBBBAoLcCBb3/KugOZBPc/NZbaFJHAAHfCbD/812TUKDR ECCAMRrtSC1GWMAcA+PyjqgPwiNcU6qGAAKjJmDcA760fSirb86MWvWoDwIIIFBTgP1fTRq+ QKAjAQIYHfGxMAK9F+ApJL03JgcEEOiNAKPw98aVVBFAwP8C7P/830aUcDgFCGAMZ7tR6gAJ EMAIUGNTVQRGTIAT+BFrUKqDAAJNC7D/a5qKGRFoSYAARktczIxA/wUIYPTfnBwRQKA7ApzA d8eRVBBAYPgE2P8NX5tR4uEQIIAxHO1EKQMsQAAjwI1P1REYcgFO4Ie8ASk+Agi0LcD+r206 FkSgrgABjLo8fInA4AUIYAy+DSgBAgi0J8AJfHtuLIUAAsMvwP5v+NuQGvhTgACGP9uFUiFg ChDAMCl4gwACQybACfyQNRjFRQCBrgmw/+saJQkh4BAggOHg4AMC/hMggOG/NqFECCDQnAAn 8M05MRcCCIyeAPu/0WtTauQPAQIY/mgHSoFATQECGDVp+AIBBHwuwAm8zxuI4iGAQM8E2P/1 jJaEAy5AACPgKwDV978AAQz/txElRAABbwFO4L1dmIoAAqMvwP5v9NuYGg5GgADGYNzJFYGm BQhgNE3FjAgg4DMBTuB91iAUBwEE+ibA/q9v1GQUMAECGAFrcKo7fAIEMIavzSgxAgiUBTiB Z01AAIGgCrD/C2rLU+9eCxDA6LUw6SPQoQABjA4BWRwBBAYmwAn8wOjJGAEEBizA/m/ADUD2 IytAAGNkm5aKjYoAAYxRaUnqgUDwBDiBD16bU2MEECgLsP9jTUCgNwIEMHrjSqoIdE2AAEbX KEkIAQT6LMAJfJ/ByQ4BBHwjwP7PN01BQUZMgADGiDUo1Rk9AQIYo9em1AiBoAhwAh+Ulqae CCDgFmD/5xbhMwLdESCA0R1HUkGgZwKDDGAUvt6Ta++/Lrc+LVdv6W5cVhbnZaxntSVhBBAY JYFOTuAff74h785fkt0SSFjW9zYk+trUKPFQFwQQ6JGAH/Yfnez/esRCsgiMhAABjJFoRiox ygKDC2Dk5NaxSbniwl19kJWlVydcU/mIAAIIVAu0fQKfO5BTk2ck6UgyJPvZhJxm9+NQ4QMC CLgEfLL/aHv/56oOHxFAwClAAMPpwScEfCcwsADGiyO59tK03HCJhG8nZOe9kGsqHxFAAIFq gbZP4L/dlWM/OFuV4FoyL+/M0QesCoYJCCBgCfhk/9H2/s+qCe8QQMBDgACGBwqTEPCTwMAC GHIkN45NyzUXxvJnGVn5Jd24XSx8RAABD4G2T+Cf7smx771eleJORkmY3U+VCxMQQMAm4JP9 R9v7P1tVeIsAAtUCBDCqTZiCgK8EBhfAEMl9uSnzJy+a3bhDi+uy+8eoTB33FRGFQQABnwp0 cgKf/vCanLhg9QGL3t2X9cXTPq0pxUIAAT8J+GH/0cn+z0+WlAUBvwkQwPBbi1AeBFwCgwxg lIryQqTwLCdyfEzGXqbrtqt5+IgAAnUEOj6BLxQkp/+NjU3of3Uy4isEEEDALTDg/UfH+z93 ffiMAAIlAQIYrAgI+Fxg4AEMn/tQPAQQ8K8AJ/D+bRtKhgACvRVg/9dbX1IPrgABjOC2PTUf EgECGEPSUBQTAQSqBDiBryJhAgIIBESA/V9AGppq9l2AAEbfyckQgdYECGC05sXcCCDgHwFO 4P3TFpQEAQT6K8D+r7/e5BYcAQIYwWlrajqkAgQwhrThKDYCCAgn8KwECCAQVAH2f0Fteerd awECGL0WJn0EOhQofLkh4ycvicytSz4ZFcax6xCUxRFAoG8C6Xtn5cTbuxK+nZKd92b7li8Z IYAAAoMWYP836BYg/1EVIIAxqi1LvUZH4GlSNj9Ni0zMyoU3QqNTL2qCAAIjL5D7Yk92Hx7J 1MmwzM9NjHx9qSACCCBgCLD/MyT4i0B3BQhgdNeT1BBAAAEEEEAAAQQQQAABBBBAoAcCBDB6 gEqSCCCAAAIIIKAFCgXJFXQHsglufmN9QAABBBBAAIHOBQhgdG5ICggggAACCCDgIWDcA760 fSirb854zMEkBBBAAAEEEECgeQECGM1bMScCCCCAAAIItCDAKPwtYDErAggggAACCDQUIIDR kIgZEEAAAQQQQKAdAQIY7aixDAIIIIAAAgjUEiCAUUuG6QgggAACCCDQkQABjI74WBgBBBBA AAEEXAIEMFwgfEQAAQQQQACB7ggQwOiOI6kggAACCCCAQFmAAAZrAgIIIIAAAgj0RIAARk9Y SRQBBBBAAIHAChDACGzTU3EEEEAAAQR6K0AAo7e+pI4AAggggEDQBAhgBK3FqS8CCCCAAAJ9 EiCA0SdoskEAAQQQQCAgAgQwAtLQVNP/Ao8/35a9rwsyPmaVNS9jcubNiMy+rKc9eyzbHx9I wfq69M4xj+u7Vj4OOv9Wysq8CCAwHAIEMIajnSglAsMrUJCDD7cl9UJk3F6Jl2ck8uZpfRYl Uvj6QLY/fyylD+Y8eZHjJyTyq/I85uSW3ww6/5YLzAIIDL0AAYyhb0IqMBICL9Jy7qUTsu1R mchmSrZ+NSuFL+/I+Ml3PeYQWU3mZWnOFvnwnKvOxEHnX6dofIUAAsMrQABjeNuOkiMwFAJf bcqx2YueRY09ysuFH49J+g+n5MT7SY95QpLIJyTUwemTDDp/j1oxCYGRF1C8EEDAFwL7d5dV eE6U3ulU/oVVZHFFJZ5UivckoVYuL6mo1zzZzqsw6Pw7rwEpIICA3wRS96Ol/VnkbspvRaM8 CCAwCgLPMyp2NapC5rmTPoeaC6vo1ZjKPC9XMPsgppb0+ZNjngU9z/WYylbmaZti0Pm3XXAW RGB4BeiBMfIhKio4VAK5Azk1eUbK1wlWJKuWZcJVgdzfbsnk6SulqasPsrL0qnsO1wKtfBx0 /q2UlXkRQMD3AvTA8H0TUUAERkLAfm4Uuh6XxL/NV9Xr4D/Oypnf7OrpYUl8tyOh4u25XXoN Ov8uVYNkEBgKAQIYQ9FMFDJIAnu/PSWv/74cwljTAYp3HAGKnNwKTcqVL4oiqzrAsVQV4OjU atD5d1p+lkcAAf8IEMDwT1tQEgRGW+BIbhyblmulSnoEKGwXaGoFODrzGXT+nZWepREYJgEC GMPUWpQ1GALfbsuxH5wr13VxS9TdiFnvwhcbMh66VPq8/ElGVt6YMr/r2ptB59+1ipAQAggM WoAAxqBbgPwRCI7A0V+vyPQ/3ipVOLp9KOtvzpiVT947J6feLo80tpNREu7B6dOg8zcryxsE RlyAAMaINzDVG0aBgmy+NS4XPyqWPSTxJwmZf6X43j59SQ6fr8rM8eL0br/s+Qwi/27Xh/QQ QGBQAgQwBiVPvggEUEAPSH5JD4i+Uaq6rZeqfbrrwlBXlez52HvJ2qf3Mv+uVobEEPCvAAEM /7YNJQuwgL2nhR78TrYWZ0VsPSMi9/W0X+tpPXoNOv8eVYtkEUCgzwIEMPoMTnYIBFzA3tNi /WFeoj8bE3vPiJiedkFP69Vr0Pn3ql6ki4CfBAhg+Kk1KAsCpkBO7uixLt4tjXWxrMe6WJH0 v5+SM78rjo3hcW+nuVy33gw6/27Vg3QQQGCQAp0EMB5/viHvzl+S4pB7xf3e+t6GRF/rQb/v QQKRNwIIdFdAj3VxVg+GXtpvXI6L+uCUHhtjsjw2xsK6ZHejXR87zFGBQefvKAwfEBhNAQIY o9mu1GoEBHKf35DJ+fJwVKvbMUlHLpa6RYau7+vRtU/3vIaDzr/nFSQDBBDouUDbAQzbgHtW IUOyn03I6S4+eMlKm3cIIDAqAtZg5FGJbc/KxUj5yW0rB1lZ/kXvdyCDzn9U2pF6IFBLgABG LRmmIzBogReP5cpLP5Jbc7ogpZ4YxQLpMSkyekyMflyEHHT+g/YnfwQQ6Fig7QDGt7t6MOOz VfmvJfPyzlzvun9XZcgEBBAYPgHbLbelwpfOo1Ykox9N34/TJ/stvwPJf/hajBIj0JIAAYyW uJgZgf4KpD+8JCculIejKuW8uKOfShLuWyEGnX/fKkpGCCDQE4G2AxhP9+TY916vKlOvnh5Q lRETEEBgiAX0YORv68HQ71lVWNJPJVm1PZXE+qYX7wadfy/qRJoI+EeAAIZ/2oKSIFAtUEjL ufETUn7wl0gsrQef+mkfrz4OOv9qEaYggMAQCbQdwNB1TH94TQdwb5i1jd7dl/XF3t8+Z2bI GwQQGFqBwpf6sfMny4+dF4lK6vm6zPbkyW3eRIPO37tUTEVgNAQIYIxGO1KLERYoHKUlmc7I 2PQpCf209/duuikHnb+7PHxGAIHhEegkgFGqZaEgOf1vbGxC/xueelNSBBAYvMDRl0lJPSnI 9MmQzL7S/x3IoPMffAtQAgR6I0AAozeupIoAAggggEDgBToOYAReEAAEEEAAAQQQsAsQwLBr 8B4BBBBAAAEEuiZAAKNrlCSEAAIIIIAAAlqAAAarAQIIIIAAAgj0RIAARk9YSRQBBBBAAIHA ChDACGzTU3EEEEAAAQR6K0AAo7e+pI4AAggggEDQBAhgBK3FqS8CCCCAAAJ9EkjfOysn3t6V 8O2U7Lw326dcyQYBBBBAAAEERlWAAMaotiz1QgABBBBAYMACuS/2ZPfhkUydDMv8XP+fojTg 6pM9AggggAACCHRZgABGl0FJDgEEEEAAAQQQQAABBBBAAAEEui9AAKP7pqSIAAIIIIAAAkWB QkFyBZGJiTE8EEAAAQQQQACBjgUIYHRMSAIIIIAAAggg4CVgjIGxtH0oq2/OeM3CNAQQQAAB BBBAoGkBAhhNUzEjAggggAACCLQiwFNIWtFiXgQQQAABBBBoJEAAo5EQ3yOAAAIIIDCkAoVv k7KfzIj8YFYPotn/HhAEMIZ0xaHYCCCAAAII+FSAAIZPG4ZiIYAAAgggUBQoPH0s+wcHkv57 tgQyNjYm41MzMv/avEy9XM+oIBuhcbn0RXGesCTyOxLq81AUBDDqtQ/fIYAAAggggECrAgQw WhVjfgQQQACB4RB4lpP0148l90Kk+Lt9bGJaZn44JWPHRXJHORl7ZaL03reVKaTlzvsX5d17 Se8iLsQkv3uhVDfvGQqy+da4XPyo/G3sYV4u/Ky/EQwCGN4t08zU3LdpST/KSF7PPDk5LdPf n5GpiYKkv8rodXdGZqb625bNlJl5EEAAAQQQ6LUAAYxeC5P+4AWepWXz/25Lfi4i0V/ODr48 QSsB/kFr8cHX98WRbP/+mpz73Ub9spzfEvWXSP15Bvjtwb+fkjO/s4IXoYWwTGd2ZbfUo0IX 7LwOYPylfgDD6oERksR3CQnV7bHR/cr2K4BR+GJTxkMX61YgdH5JrvyvqFx4zeM48PW2HPvJ ubrLe30Ze6SDQj8uyJ3wpLz7qdcc1rT1B1mJvjphTajxLvflrlz59VnZMNrZc74lyTxflSkd jOOFgF8FCl/tyZ2PkhI6/47M/5SAW7/bCf9+i5Nf3wQULwRGXCC1GVV6g9L/ourw+YhX1ofV w9+HjTLKRcrElQ5JVLb5yt+5kAq5pxU/L8RU3q8Wzw/VklnmJZXI2Er6PK+y2azKN7E/y6YT Kv7ZjoofpAZS19T98v43cjfVU+nDbWM/72p709A2fWFFpb5zFiefjjnXGa/lPKatP9Tt8jxV vc55zBtuwuBwe8lVjpAKL4Rd04p1iaiEbZVw1oZPCPhBIK9i5yvb3eKWHwoUsDLgH7AGD1R1 JVC1pbKBFDBOoDnhG0zz4z8Y90Dmmk2osO2HY+jyuko9sX7lZR/F1fKc7YfseT8HMFIqWqnL 0ieZoW1OY/vvdQBD6aBOKmm1b+hqTKXSKXX4KKUSBztq7WrEFQSIqpS1aqjsg7XK92EV20uo xIPiP53egrW+bJWm6el7MXM9W0+WE8l+o/NxLzO3rOLGMg9SKtso4KQDIUabi4RU7ODQavdi /bZXbHWIOMpvzcg7BPwiYPsB7edgsV+4ul4O/LtOSoK+EeAWkr71dSGjQQkYXZh1AENS+S2Z pRdjX5sC/75yBzqzvf99TF7/zzJB+Oa+7Pzr6WqPp3ty6nuvS+nGjIV1PYZE1GMMCT3OwN92 Zfsvu7KvxxswXtM/PSPhtyIS/sVs9TKFI9n9aE9yxZkLeRk7OS+RVydl70935M7H+/I4o9OZ npFzv3pHln49X718JZPC0ZFOQ++knu7K9MnyLRGreymJzk5KQY/lYb5entDjIXjtzApy8PG2 pJ6JjJsz61EUJs7IhTc8bp0w53G+KRylZf/zpKSfZmVsbFKmfzwrZ06HZEL0LXl/3tcDiujU dT0nfn5WwnNTzoVtn4ztXwcwZGux+fxtSbT0dvOtY6UxPyL3dX6/duX3VI8p8i8n5N3KmCCh 6/uS+LfyOpK+d05OvL2t84pK6vm6zFZuzTDSK96uo/TtOqXXi8dy6aUfSfEGJa96eS5TXrLu /3P/fUcmf/5uaZ6Vvawsv1Z9u0nyD2fl1Pu7xZz1oKxbfR+UtW4F+BIBh4BtDJ6G4/U4FuRD VwTw7wojifhTwDehFAqCQI8EjCuA9MDoEXCDZPFvAMTX3RF4ErfdJrKi6vVZMLo1R27vV+Wd 1700rKvg1tV3fQS3Xf2Oqvgj2+V7nUr+oXEF3z5fjfdzqyrjdTW+pdsYalyBzydsDvb8w03e cpBX8Zvu3gpGOmGPWyXW6t6aYmz/Pe+BUWpJ64pj7fwyasVsy5CKPymvAkY5daDCVh8rPeft Rtb06nys75zLVK1q/z97ZxfixnXF8RNIYQ0prCEPu9CHOiTQNQlIJn1I3uLSh1XoQzY40F3w i+y+JCmYdQtbmTwsawKOnILrUNjsUnDRBhq0BRe54CLnTX7YIBk2aAMuuwUHtJCABDFowIbb M9LcmTuj+ZJGkkejv8CWNHM/zv2d0d25Z845t+dAfVNyZ105QlzMwj9WDR3kEBJpQsGHeBIY /LcQz/FMmlTgP2kag7zhCSCEJDwrlJxQAodKDoy626JhQsc1KWKD/6RoarLlNBegvDjNBYRc tGvdfAeZtZJ90A+LipFCX7RnRP5WSVTuV0TpVt4MG5DGjKJqxPi+KjYuZUVGDVHpLJTTYvUS L0xT9jwG2R2XnBCPnP1Lw4HbO4dAuM1nTxqisJYVSxezIsv/lkx5PAweNgJ8w3vRrS/3Y5lz WXHztss4lDalXnoX+kqhoX20btj9+mvczZl6vmmEgEg5+zVg5G4rYR6dcVgy9GvAaNcsI1hm vawYUoYGCA2BwFgJSGOx/rvCa/wEwH/8zNHjeAgghCSejjGQaiACLdr9JE+VhsYuz5Zr9fGD q7Qts8NzFvrcy9Y5TdPozPkrtJzqddUdSISprgT+U63+Zzx4Gaqgi8GJFSnb93ahLbqePkmX jZ0f0mtFure+RLPqLg9P+Rr/6Cy9+7GxM0gqT43aKqkBFEdfXKCXlo3dTxbzxEkZ6ZQx5Wj/ vUNvvvK2f/gKz0mdbV8f12hl/k3SgxoyNyocfpEmfb6SrxkOIdG3gw16WfIEh9Adf3WV5s9e MZrMUmk/T5lXu3OjxuEX20r4RSck7wmH5AXIIPXCBoUxhJBYLtO+/SlhRLLcwd85hOQ8005x WFFNhhVZ7bExQtmylo9neHta/rvCxjLa+I16BXjVCdIUn1fk6pbO0MbmCqV569/5ed5G9cV5 mo371r8hhokiCSTQOqDr69vEG/zy/Zccn0a1j6+THvCkv5bWcmQGdfFcptE8rXy0SmncfnUB Rfkf/KPQQ91JJDAeOwl6AYExEAhyv+adCPg32vsPyaWGoxzwHw5HtDIQgeIl+dvm3Rm83O/9 Wlav39RN0fQs2xQ3lcSOnV0olLLmk3z23ii7NFJeN+YhW6iC0oD8qCR09PMmkMW93i15gjww FM8BXXYjtMLeLo9d8egIswuG7D/KGOwy+H2zxuDbnxtbTpJ5yEk/G001NMhqz+lN0W42OElo w2UnGO86fpLLc427+d6/UY6/W7nNcnBCUNkg3kFgDATqt2T4k5yH7e9pc96wH+dcNWOQLvld gH/ydYwR2gnAA2MSrU6Q2Z2A/nT0z+yB0eT8ckoJmwfGYo42UkSc0q774geap89fNj0wWl/v 0MrFAs28orYgCzvf+QnCz1ao8OkyJ7brvqa6/hD4OwnjOwiEJbDLCTzf7STwTFOpUaWM+lA8 RCNHX1xmz4nrnZIcVkDvp7znAO2bbTrx2oVOWQ4Foa3fms8VSXoc2J/YWwIEnTdLPj3gRJGn PRNFmuUCPpj9BSUxfnpMV38yT7r/ReZGlUof8sazLi/tAY89rY892KNDry77l54OLk0O8ZDl /eDbX2i2Vnte+uwVPlwd7YcjOvhOo1OvLti9fPQG2dtl528FKuxcpTsPenvoHNG9f/bY+yfA A8ajNg6DwHAJtGrsgVGgpuV+we3bPTAyaxuUtu6+2KPsJK38iT0wXuyKUvv8Ml355xHNvBBC tMf823lng/LsmSZfU11/CPwlR7yDwEQQsNsz8A0EkkegnxwMVhI1+1MC/jF7PBWzJ8ab9vpu V08//N3q4xgIhCFQN3PdkHB6RYSqfytr/sY39lxcJ5RG2nvWU3Lnk37pcWDPpWBVNs8HeX65 eQlYzYT+ZPZHAR4YnPxzyZjnfJ+Kmp4qAe0ZEsr+nZxCD6Cvgpb3g29/SsLXrO8TYKs9pweG t1hh6rTFlvFEOuPbP/fSbotmg709alVR3LRyd+h/k1Z3/VLVekuIMyAwLgLhczDw70bxbPO+ 51LuxRa3lDwx017fXaPh+bvXx1EQiCsBJPGMq2Yg19AIyBvoMLuQWItt5Y+kp/FCL2NPpDft 9d2U1g9/t/o4BgJhCFjXGQn2IAhTxVZGNT4WDtQwAlux7hdzEc99bdpdoE05PAwUQefN3sZt wOB9W/LGojq9VjbFcH5o3tswDD2Ta8BQk3j6G7vCGCOchMLUscqohpbqTp4Tr66Kkpoc1tk8 J5rlZ84dHfjpyVkN30Fg/ASs6zyMAbB4Lux9l1HOkRh02uv36rc//r31cQQE4ksAISQT4ScD IaMQkC7MYV2eWz+0SHvKiUCf93Yh1+XplHlhjmYd7o7TXt+pq375O+vjOwiEInB8j56b/5VR NMOhZCV6Q8Z2uTXAv3H+lZuJMFtff0Ynf/lBp6RfCIVeoPaXd+nM7/X0mkT5vSatvm51ZF7v tqSPnaKd/4LOmyVDhzmYNVw/mP0FhnwooQ/cUoHDaJadYTSPOazlp92wlrDzqeyfF+p9J/E8 +mqbPjh7wUgCmKGte9uUfcsvNsgag3d/HCrzXDdURh9D9ccipR1zuAXSam+4ISRWu5acfMxI DOrfl5JsdpETjt6RCUctqfEJBOJBwLrO/a9pQ1qek1st/f7Lmpe9xqHff82+OGfO351y016/ B1af/Hvq4wAIxJhAfG0rkAwEhkPAfOLJLtRhks4Np1e0IgmAvySB91ETKJmJPPkJXSon6h7J POu3ZQiI4kHVrNi2Sd2quYeRNI0tWPnPOj8Fz4iKo5jpheV4OijHHnRelhOqB0ZQmIFZqfeD 2Z/DW6y3pBDNPWsbT318uVsV0fiRvVE4jKF+v2Djo3u01QMcVfQ+5O9f9TRw67vnGOtDehp0 Weu80z28nfWky7RrGEyzLm4qT3nDyCTb62cbyDB1ZBlLBuVpKbP39AJSwl8y1/r3NHLywncQ GB0B5Zr28EgbXd9omSduIeeZMB4wIAYCk0QAISSTpC3IOhAB9Qb+8MlATaBSBALgHwEeqvZH wGGE0Be8N3d5Ef59UzQeHYrK7YLI2rLhO3LYKHkw9EXz6o1yZ1eKNi/g9V0nyjdWjfCJrguz fZHcFo2DqrJATotSTd/VwhiCvsvFflUU1jJGG3x+j8/bjCxsKNiriMr9qqjcVQwGqQ1R4RwI lfv6uYqo7nO9hov1oN0U1b2q9c/WH4n8XT7H7Zhl9ntzKJTXPHZr6hhsuuPuGhRGbMB4VLKx lkYMTrDqfk0w33qtLHJGHH16rSDqDw/FIf+r75XF1rqV46TbVk40XP8esJ4kI25vQ8bls0Gs zGzrj/haeti7+0jzUb3LVa3DzPRrwOQtdaOU8TJg6Aai4p69n8Z+WWQVPfiHv7hjwlEQGB8B ZQF9sTi+btGTQQD8cSkklwAMGMnVLUYmCbQPReHahti6a49Vl6fxPmIC4D9iwGjeRuBR2UxG KRe9Xu9b950L+LYoX/PfDlC2lVkvKwnk+FnX/pbrgjtt5OPwOq8+GfMsoyxaZf+UUhPYdQnU N6VxRDU0+H1Ou3qlVXdkngtHXV7EF27JRJIjNmCwp4E5VmX8JafKDOUHbSNoa2txw9M7J6wO bIYU9pbJKDLa+go4buVQ4cWGNJY46mQWM73eKEHb8Np+FPgCAs+GQPthWeTX86IclFfo2YiX +F7BP/EqntoBwoAxtarHwEEABEAgoQSeNETxmvOJu7UYX71WdHg+2Dk0ayWxaltMKl4Ji5xk seayimaPgd6QB32niMNu4x7ns5tKGAAv2uVOIEGLYLcEjo27HoYHx4LYapvDbFy9EFhk9ubQ vUHK98qizF4fdfY60F+NXemFMmIDBvdV35HGkq7uspuVjgxu/7X3C64GD3OsqYzIruVF8X6A IbtRDmGMyIjSI1WKpthSQlPMPj25W9fizfvSRUeIyrpyndk8hazyuldRfrdqM56pkuAzCIAA CIAACCSdAJJ48p0GXiAAAiAAAgkkoLXo6H8Naj0lTtfJ/2bnaX5u1p74zWfYWuuYGsdtOvnz edK4HZqbp7lZ/+S+Ps0l4pSVwJQTYLY5AWYAjihJPDvANE7sx/9mZlhvAX1NPODjGu3854Bm F85S5vU5ah0f0dF33aTSbR7cydlTtPCyI3HhxA8aAwABEAABEACB/gjAgNEfL5QGARAAARAA gekk0KrRhZNnaFsffSpPzdoqWfuvuCOJbMBwbxZHQQAEQAAEQAAEppQADBhTqngMGwRAAARA AATcCWhU+9cuVVvEHitzpD3mLQu1A7q8fJlqRoX0tSpV/8BBMwEvGDACAOE0CIAACIAACIBA XwRgwOgLFwqDAAiAAAiAQLIJaN9u04mFC96DTG3Q4V6OTj3vXUSegQFDksA7CIAACIAACIDA MAjAgDEMimgDBEAABEAABJJCQPe2OHGarjvHk1qi/B8vU/bcGzQbwnihV4cBwwkR30EABEAA BEAABKIQgAEjCj3UBQEQAAEQAIGEEtBDR7SnGo9uhhNo6v/6H+jB52/T6d/docyNOpU+XOi/ AdQAARAAARAAARAAAYUADBgKDHwEARAAARAAARAYHoHWg3t0Z/+Y5l7L0NlUUMrP4fWLlkAA BEAABEAABJJJAAaMZOoVowIBEAABEAABEAABEAABEAABEACBRBGAASNR6sRgQCCGBNgFvaXv YvACP30NGTcfw1FAJBAAgUEIaPz75yiU2dkB4k8G6Q91QAAEQAAEugQw/+JKSCgBGDASqlgM CwTiQkD7hnc0eI13NLhUIvFpJi5iQQ4QAIExEJA5MFZ3Dyn/zqkx9IguQAAEQAAEdAKYf3Ed JJUADBhJ1SzGBQIxIaB9u8NbMq4QLRaofWeZ0wHiBQIgMC0EsAvJtGga4wQBEIgbAcy/cdMI 5BkWARgwhkUS7YAACLgSgAHDFQsOgsBUEMAN9FSoGYMEARCIIQHMvzFUCkQaCgEYMIaCEY2A AAh4EYABw4sMjoNA8gngBjr5OsYIQQAE4kkA82889QKpohOAASM6Q7QAAiDgQwAGDB84OAUC CSeAG+iEKxjDAwEQiC0BzL+xVQ0Ei0gABoyIAFF9DAQeH9DOX3epnVqi7K8XxtAhurARiMgf BgwbTXwBgakigBvoqVI3BpswAtq39+izL2uUPvc+nf0FMliNW71R+WP+HbfG0N+4CMCAMS7S 6GdgAgdfXKDTy9tcP0uHT7boFLbiHJjlIBWj8ocBYxDqqAMCySCAG+hk6BGjmEYCGu28d4JW vuSxXyyS2FyaRgjPcMzR+WP+fYbqQ9cjJQADxkjxovFhEJATMNESVdtFSuMhwDCwhm4jKn8Y MEKjRkEQSBwBOX8sbdapeBEedIlTMAaUYALKAhq7iD0DPUfnj/n3GagNXY6FAAwYY8GMTqIQ kBOwbsCoswFjAQaMKDj7rhuVPwwYfSNHBRBIDAE5f8CAkRiVYiBTQyD6AnpqUI1koNH5Y/4d iWLQaAwIwIARAyVABH8CcgKGB4Y/p1GdjcofBoxRaQbtgkD8Ccj5AwaM+OsKEoKAnUD0BbS9 PXzrj0B0/ph/+yOO0pNDAAaMydHV1Ep6xDkwXjJyYNQ5B8YCcmCM9VqIyh8GjLGqC52BQKwI 4AY6VuqAMCDQF4Gd957r5sA4VyDxj+W+6qJwdAJR+WP+ja4DtBBPAjBgxFMvUypVi3Y/yVOl odHMjBUncvzgKm3/20BybpVyL1vnNE2jM+ev0HJqdkqZDXPYo+EPA8YwdYS2QGCyCOAGerL0 BWmnlEDrgK6vb1ODZvj+SzLQqPbxdbpjfF1ay5GZxYbvvTSap5WPVimN2y8JbPD3EfHH/Du4 SlAz3gT+DwAA//8uJmVfAABAAElEQVTs3X9oG3ee+P9XoAs2ZMGGLNiwC+fShTpswQpXuAT2 j3XYD1ihC1VwYW22cKe4cJ+0B1nnCqnz6R85ZwtdZwtZ5w4c+76QIgda7EIWu9DD7h8HzkEW KZBFKqTYBynI0IAEDWgggfm+R9JoRtLol0c/RjNPgSNpfrx/PN7K6D0vvec9x3T1EB4IeEHg m3U5Nj5buyQTIZGHier1UzHJbc/IQPUalrQi0CF/TaU7aLQr7dRKa7AtAr4QSH16QU6+vSaR laRszI37ok5UAgG/CaQ+Pa/+n27WrFZoQiTxsHp15I76f/07/l9Xy7S2pFP+HH9bawe27h+B YwQw+qexfF/SF1nZ/GRJ9jJSFow4fHhd1r4s1n5qQRbVF2nOxNBEfelelpmJofyS7F/XZXYu JgM/byacoYn201mJ/WlGCnuLBHr/NvibzWJ/JoBh1+A1AsESoAMdrPamtn0qkE3IjWsxyQzY +06aJD66IdvFKoWvLErI6n2Jpg3L7AfzEjpR2CBx+7Jc/eJABo43YfBMk7E3F2VpTv0wVXwE ev82+JuO9meOv3YNXvtKwAhg8EDAywL761FjlJD6i+rJ5/VLmlyJFLc1tm/mL6zHc1aaQd/f krBeteJv7WW9yqVihbaYiuk2amsDXiGAgG8FkncKx281AsO3daRiCPhVIDZd7EdNxxpUMafH pprpc9m2mVq19QmCvr8zb/P+zvtz/HV2YWn/C0j/V4Ea+F3APACLRMqCDU71tk62bV+SdQMZ 5UGRoO/vZNqKv9P+BDCcVFiGQDAEzOMHAYxgtDe19JOACiqYAYwmfoDYMLet2+ey9c0qgiJB 37/6k9Oaf/X+us7x10mFZX4Q4BISX42n8WdlzCFwKoAhydyGjNtHODpUOfs0K9oLTQZeqr9h fpvjIzJUMdwx6PtXkrbqX7k/l5BUivAegeAImMePo8yBcfD1mrw7eaE4hD0sq7trEv3VSHDw qCkCPRXQZP2tQZn9XBWimTmsVL8rmzX6XwOq/1W/4Eb/a+jESPl2Qd+/iqxF/6r9Rdwcfx2S YxECnhEggOGZpqAgtQTMA7ARwIirAEaoflyiVjIsP6KAW38CGEeEZzcEfCBgHj9aDmBk78up 4TNSPm1zSM2RFJfT5qRFPvChCgh4V8D9CbR369YPJXPvf+Tjbz/wUMZACxDACHTz90flD+5e kJdn1lRho7L/fFXGGkT2+6NW/VNKt/4EMPqnrSkpAu0WOHIH+rttOfazc1XFWU7k5OIEUewq GBYg0HYB2wn03IboK5G250CC9QTc+x/5+FuvWKxDwAMCBDA80AgUoYGAdiDrf16X3EREor/m dl0NtNq/2qU/AYz2NwkpItAvAkfuQD/dlWM/OVtVza20LmGuIqlyYQECnRDQvt2VW3cTEpq+ KJOvEjjshHG9NN36H/n4W69QrEPAAwIEMDzQCBQBAT8LEMDwc+tSNwTqC7jpQKfuXpWTM9dL GURX9mR17nTpPS8QQAABBGoLuDn+1k6VNQj0XoAARu/bgBIg4GsBAhi+bl4qh0BdAdcdaE1N DKj+BgaG1F/drFiJAAIIIGATcH38taXFSwS8JEAAw0utQVkQ8KEAAQwfNipVQqBJATrQTUKx GQIIINBmAY6/bQYlOc8IEMDwTFNQEAT8KUAAw5/tSq0QaEaADnQzSmyDAAIItF+A42/7TUnR GwIEMLzRDpQCAd8KEMDwbdNSMQQaCtCBbkjEBggggEBHBDj+doSVRD0gQADDA41AERDwswAB DD+3LnVDoL4AHej6PqxFAAEEOiXA8bdTsqTbawECGL1uAfJHwOcC2t/WZPC1CyITq5JLRIV5 +Hze4FQPAZtA6vY5OfnOtoRvJmXrPW6DbaPhJQIIINBRAY6/HeUl8R4KEMDoIT5ZIxAIgacJ Wf8yJTI0LjNvhAJRZSqJAAIFgezDXdl+dCgjr4VlcmIIFgQQQACBLglw/O0SNNl0XYAARtfJ yRABBBBAAAEEEEAAAQQQQAABBFoVIIDRqhjbIxA0gReaZJ9pMnRc/Xr6UtAqT30RQMCVgKaO H5oagDXExWOuHNkZAQSCJ8DxM3htTo2bEiCA0RQTGyEQXIHSHBaXtkT/Uzi4ENQcAQRaFjCv wZ7f3JelN8da3p8dEEAAgaAKcPwMastT70YCBDAaCbEegYALcBeRgH8AqD4CLgSYBd8FHrsi gECgBTh+Brr5qXwdAQIYdXBYhQACIgQw+BQggMBRBeiAH1WO/RBAIOgCHD+D/gmg/rUECGDU kmE5AgjkBQhg8EFAAIGjCtABP6oc+yGAQNAFOH4G/RNA/WsJEMCoJcNyBBDICxDA4IOAAAJH FaADflQ59kMAgaALcPwM+ieA+tcSIIBRS4bl7RN4lpL1/9iU3EREor8eb1+6pNScgEt/1wEM l/k3V0m2QgABLwrQAfdiq1CmoAho3+zKrc8TEpq+KJOvciegbre7W3+3x0+3+Xfbi/wQaFaA AEazUmx3ZIHU3QtycmZN7R+V/eerMsatOI9seZQd3fq7DWC4zf8odWYfBBDwhoDbDrg3akEp EOhHAU3W3xqU2c9V2ec2RF+J9GMl+rjM7v3dHT/d59/H+BTd5wIEMHzewF6onnkAFolIPLch IX4E6GqzuPV3HcD4VAWw3jYCWLR/VxuezBDwgIB5/ImsJGVjjhF4HmgSihAYAdsJ7FRMctsz Qverm43v3t/d8dN9/t3UIi8EWhEggNGKFtseScA8ABsnsEkVwBjnG/RIjkfdya1/OwMYtP9R W5H9EOhPAfP4QwCjP9uPUvezACewvW099/7ujp/u8++tH7kjUFuAAEZtG9a0ScA8APMLfJtA W0zGrX87AxiMwGmx8dgcgT4XMI8/BDD6vCEpfh8KcALb20Zz7+/u+Ok+/976kTsCtQUIYNS2 YU2bBA7UHBgvF+fASKo5MMaZA6NNss0l49bfbQDDbf7N1ZKtEEDAiwLuOuBerBFlQqB/BNbf OlaYA2M6JvpnM/1TcJ+U1K2/2+On2/x90gxUw4cCBDB82Ki9q1JWNv+4JHtpTQYGrOtEDh9e l7Uvi6WanpeFV6x1mqbJqbevyszEUO+K7ZucO+PffACjM/n7pnmoCAIBFHDbAQ8gGVVGoHWB bEpuXFuTtJrlwup+aZL46IZsF1OLXFmQ0iw0qu+lyajMfjgvIbpfrXtX7tEh/6aPnx3Kv7Ka vEfAMwI6DwTaJZCK6eqDXftvIuS8biqm59pVhiCn0yH/nJluo3Yyt6v1GaD9g/zppO4BFUje ieaP++oSkoAKUG0EOi+QvBNx7l8Vv49DE859s8gd/l+2o3U65d/s8bNT+bfDhjQQ6IQAIzA8 E0ryQUFeqF/gP1EjMDJSNtN12QiMqQVZnBDJmdXVRN2h4nJpBEb2r+syOxeTgZ9bozTMTauf 1S8IP52V2J9mxPwBIdD7t8G/2lik6REYHcrfqUwsQwCB/hBo+hfE/qgOpUTAmwLZhBqBEZOM NfxClbN8BEb4yqKErN6XaNqwzH6gRmCcKFQpcfuyXP3iQAaON1HFZ5qMvbkoS3Oh0saB3r8N /iVI24umj58dyt9WFF4i4C2BTkRFSBMBu8D+euEXOJGonnxuX1P9OrlS/1cE9b+n4leGsB63 Dd8I+v7Vorreir/T/k2PwHDaWS1zm3+NZFmMAAJ9INDsL4h9UBWKiEDfCcSmi32m6ViDsuf0 2FRl/6rB+6lV2+jZoO/vzNu8v/P+bo+fbvN3LhVLEei9gPS+CJTA7wLmAVjdhaQs2OBUb+tk t8EXZymQUR4UCfr+Tqat+Dvt7zaA4TZ/pzKxDAEE+kPA/P/PJST90V6U0k8CKqhgBjAaXQKq qr1hblvqXzXoh1UERYK+f/UnpzX/6v113d3x033+TmViGQJeEOASEm8NiPFlacwhcMZtVJO5 DRlvcHVI9mlWtBdqItCX6m+Y3+b4iAxVDHcM+v6VH6JW/Sv3b/oSksodi+/d5l8jWRYjgEAf CJj//49yG9WDr9fk3ckLxUkIw7K6uybRX430Qa0pIgJeEGjxNpqq35XNGv0vNRFog7vFGf2v oRMj5dsFff+qJm/Rv2p/ETfHT+MSovW3Bgt3oZmKSW57puzybofsWIRA3wgQwOibpurfgpoH YCOAEVcBjFD9uET/VtSjJXfr384ABu3v0Q8JxUKgQwLm8aflAEb2vpwaPiOJsnKF1BxLcTlt TnpUto43CCBQLsAJbLlHt9+59z/y8TNfVff5d1uM/BBoVoAARrNSbHdkgYO7F+TlmTW1f1T2 n6/KWIPI/pEzYkdHAbf+bgMYbvN3rBQLEUCgLwSO3AH/bluO/excVR2XEzm5OEEUvAqGBQhU CdhOYOc2RF+JVG3Bgk4KuPc/8vEzXy33+XdSh7QRcCNAAMONHvs2J6AdyPqf1yU3EZHor0t3 IW9uX7ZyL+DS320AQ1zm7x6AFBBAoFcCR+6AP92VYz85W1XsrbQuYa4iqXJhAQJOAtq3u3Lr bkJC0xdl8lUCf05GnVzm1v/Ix89ipdzm30kb0kbAjQABDDd67ItAAARcBzACYEQVEUDAWcBN Bzx196qcnLleSji6sierc6dL73mBAAII+FnAzfHTzy7UDQECGHwGEECgrgABjLo8rEQAgToC rjvgmppYUP0NDAypvzoZsQoBBBDwmYDr46fPPKgOAqYAAQxTgmcEEHAUIIDhyMJCBBBoQoAO eBNIbIIAAgg4CHD8dEBhEQJKgAAGHwMEEKgrQACjLg8rEUCgjgAd8Do4rEIAAQTqCHD8rIPD qkALEMAIdPNTeQQaCxDAaGzEFggg4CxAB9zZhaUIIIBAIwGOn42EWB9UAQIYQW156o1AkwIE MJqEYjMEEKgSoANeRcICBBBAoCkBjp9NMbFRAAUIYASw0akyAq0IaH9bk8HXLohMrEouERXm 0WtFj20RCLZA6vY5OfnOtoRvJmXrPW6jHexPA7VHAIFWBDh+tqLFtkESIIARpNamrggcReBp Qta/TIkMjcvMG6GjpMA+CCAQUIHsw13ZfnQoI6+FZXJiKKAKVBsBBBBoXYDjZ+tm7BEMAQIY wWhnaokAAggggAACCCCAAAIIIIBAXwsQwOjr5uuTwr/QJPtMk6Hj6te3l/qkzH4qJv5+ak3q ggACCCCAQHMCmup/aWoA5RAXfzYH1uat8G8zKMkhUBAggMEnoeMCpTkULm2J/qdwx/Mjg3IB /Ms9eIcAAggggEAQBMw5FOY392XpzbEgVNlTdcTfU81BYXwkQADDR43p1apwF4vetgz+vfUn dwQQQAABBHohwF0seqFu5Ym/ZcErBNopQACjnZqk5SjACbQjS9cW4t81ajJCAAEEEEDAMwKc QPe2KfDvrT+5+1eAAIZ/29YzNeMEurdNgX9v/ckdAQQQQACBXghwAt0LdStP/C0LXiHQTgEC GO3UJC1HAU6gHVm6thD/rlGTEQIIIIAAAp4R6OsT6GdZSX17INkXIsYUpANDozL2dyMyoCaD zx5mZeDEUP61Z7AdCtLX/g71YRECXhEggOGVlvBxOfrtBHr3387J2Q+3HVtk+UFGLv69uptK Hz1c+z9Lyfp/bEpuIiLRX4/3Uc0pKgIIIIAAAsEV6MsT6BeHsvnRVTn/4Vr9hpveEP2zSP1t erzWrb/2za7c+jwhoemLMvkqd5LpcXOSvYcECGB4qDH8WhTXJ9BdhdFkLTQoFx5WZDoREnmY EJlaldx2NP9rQMUWnn3r1j9194KcnDE6ElHZf74qY9wK17NtTcEQQAABBBAwBdyeQJvpdO35 cFfOj56VTXuGqv8VUv0v1QMrf0zFVH9sxtP9MXf+mqy/NSizn6tqz6lgzYq3gzXljcM7BDor QACjs76krgTcnkB3G1F7eqCGLWZFXspI7PWzcmNClcAW0Nh4okvkp90u1dHzc+tvfgGLRCSe 25AQPwIcvTHYEwEEEEAAgS4JmN/fkZWkbMx5fARlNiHnhk+JOf41dGlVYh/MyviJQqcj++2u LE2fletmf2xaBTA+C0gAow+CNV36SJMNAnkBAhh8EDou4PYEuuMFrJWBlpDzg6fyvwREryxI +qPr+S/W0Md7Ev/X07X28txyt/5mB8gIYCRVAGOcAIbn2pgCIdBbAU3u392UpLpWfdBekONj EnnzdP4XUu3b+7L59UHhYvbSNjkVKD4pkd+GJOFq/0IepWR5gQACeQHz+7sfAhi7vz8mZz8p NFxY9bO2nPpZT3fl1E/OFkZj9MGIWHf+thEYBDD4H41AuYDOA4EOC+RSMV196nSZium5DufV zuT3N+cL5Zaonnye0zemVR2MeuTftzOnzqbl1j95J1qsd0SP91MDdpaV1BFAwBQwj/H546N5 nCw8xx4XDhrJm6HicaR8vUhIjz8sfkccdX+OS2ZL8IxAmYD5/a0CGGXLPffm+x1dXahbPEYs 6uk6BYwV+2KRm3t1tvLGKnf+Od2sa7/1n72hTyn8LCB+rhx184aA2xPo3tQioy9PFL9ML+3k i5C5v1TqgC98Ve/rtTclrpWrW//9dTOAYQRyauXCcgQQCKzA87QeuxK1nYCoY+dEWI9eienp 4jEj8yCmz1+aL99mSm1zLaZnci7357gU2I8eFa8v4O4Eun7a7VxrltP4kWjhXv3+VS5RCHiG r2y1swgdScus11EDSKUAxnSsI+UjUQT6VYBLSMoHpPCuAwJuL2HoQJEaJ/ntphz7+fn8dsuJ nFycUNdNvDiQyz96WW4YS/tg6KJZyeb9s7L5xyXZS2syMGBdJ3L48LqsfVlMbXpeFl6x1mma JqfeviozE0NmdjwjgEBABbL/c0OGT1/O1z50bUfi/2+ySuL+H8/JmfeNq9zDEv9hS0LHrU3c 7m+lxCsEEDAE3F3C0D1Ds5xGjquPchL9hdXP6F4p2p+TWa+Gl/BkU3Lj2pqk1QV3VvdLk8RH N0pzgkTUpcylWUxU30uTUZn9cF5CdL/a33Ck6H2Bfo28UO7+EXA7AqAXNY1/HC6OtlgoG8qY XImURmGoyTz74tG0f51h4OpIpn5RrTEEvM8uDeqLRqOQCPSlQFpfLA0DD+vxHyoqkdkrjcBQ AY6KlcZbt/s7JMkiBAIs4HYEQLfoNi6Zl4+oS1UrjxvdKkQH8mnWP3nH6lvm+1ul42jBJWSO CK5YHrnj8UuDOmBKkggYAozA8H6Mqe9L2PwIAI9U9UVKjbQ4WRhpoWa5Tv9nWAaeqbKp24dq 367JqPkLY59M5tm0/ws1AuMTNQIjUz7PXtkIjKkFWZwQUVPvFR6ayMm3LzMCw/TgGYGACxz+ 5bKM/iY/Tk2im/uy+uZYSSRx+7yceqdwg8SttC7hkdKq0gu3+5cS4gUCCPTNCIxNNYHn+fwE niHZSscdjw392JzNj8BIqBEYMclYwy9UdctHYISvLErI6n2Jpg3L7AdqBMaJfpShzAi4FCCO g0CnBZoeAdDpgjSZvn2uC/XfqzTiovp1f8wJ4dafOTCa/OCwGQII6PrzpB4tHTeX9IxpYl8+ t2EurX62bydH2L86RZYgEFiBZkcA9BooWZprS3R1CUmvi9O2/N36MwdG25qChHwmwCSePmtQ L1bH7Ql0d+uk7jYyVy9oUb6uHybzdOtvfgGr26hyF5LufhjJDYG+FIjbLrUzT0bS98y7Ooke a3CC4nb/vkSj0Ah0QMD8/j7qJJIdKJJjkmY5jR+Kwjfjjtv040KzXkfz5y4k/djmlLk7AgQw uuMc6FzcnkB3Fc92jXZ0vXhtoTHDvf3vB9svjFOrnr81rFt/8wvYCGAk/fPDSFc/VmSGQKAE 1HE0bI7CyN/FKWPNjaGOmaVRGbVQ3O5fK12WIxAwAfP7+2gn0F3ESu/YRruG9b1GBwl1a/tc H9x9yJ0/AYwufgLJqs8ECGD0WYP1Y3HdnkB3s87W5RL1Rxv002Sebv3NL2BGYHTzk0heCPS3 wM4Vc9LfqB7btG5BvXi/0ZlJod5u9+9vPUqPQHsEzO9vzwcwVHW3ShN5qpGuEwt6ssZknsl7 5vHE+5fxuvMngNGe/wWk4kcBAhh+bFWP1cntCXRXqvM8oycTO/qCbabnnURSjz+quB95ztgu ru+sL5R+LQhdienxxxXbdaXQzWXi1t8K6kT1/T74xaM5FbZCAIGOCjzZKB0j8/MH5Y+ti2V3 daqbv9v96ybOSgSCIeDuBLrLRvaRV/kRXCF9eXNPT3+f0dNP9vW9ezE9auujqVsxe/6yVnf+ tgBGvXmDutxMZIeAFwS4C4nqWfHorEDTd8HobDHqpp66fU5OvrPtuM2yuif5xeI9yWtvF5J4 Li4hD9663LW/diDrf16X3EREor8u3YXc0YqFCCCAQEFAk/V3BmX2tuUxr+5KsmS7K4m1xumV 2/2d0mQZAsESaPouGF5h+W5Xzv/srBTuVVS/UKv30xL9B4dbGdXfratr3fpr3+7KrbsJCU1f lMlXPdjB7KommSFgCRDAsCx41SEB1yfQHSqXPdns/9yS4dPv2hcVX0dkJ70hk8XvyIO/XJWX f3PdYbsFST5flHF1q1WvPfrB32tmlAcBBNwLaH9bk8HXLhQTiqpj5GpLx0i3+7uvASkg0N8C bk+ge1L7F4fqlu5X5fz7a47Zz3+8IZf/OSIjxx1Xe2phX/p7SpDCIOAsQADD2YWlbRTgBLqN mEdICv8joLELAgi0ReDwbwlJfq/J6GshGT/R+i+IbvdvSyVIBIE+FejrE2gtKwf/m5bsCxHj yDEwNCqjI0My4MEfimp9PPrav1alWI6ABwQIYHigEfxeBE6ge9vC+PfWn9wRQAABBBDohQAn 0L1Qt/LE37LgFQLtFCCA0U5N0nIU4ATakaVrC/HvGjUZIYAAAggg4BkBTqB72xT499af3P0r QADDv23rmZpxAt3bpsC/t/7kjgACCCCAQC8EOIHuhbqVJ/6WBa8QaKcAAYx2apKWowAn0I4s XVuIf9eoyQgBBBBAAAHPCHAC3dumwL+3/uTuXwECGP5tW8/UrDST/MSq5BLR/GRMnilcAAqC fwAamSoigAACCCBQIWDe+j18Mylb73Eb9Aqejr/Fv+PEZBBQAQIYAW34rlb7aULWv0yJDI3L zBuhrmZNZkoAfz4GCCCAAAIIBE4g+3BXth8dyshrYZmcGApc/XtdYfx73QLk71cBAhh+bVnq hQACCCCAAAIIIIAAAggggICPBAhg+KgxqQoCCCCAAAIIIIAAAggggAACfhUggOHXlqVeCCCA AAIIIIAAAggggAACCPhIgACGjxqTqiCAAAIIIIAAAggggAACCCDgVwECGH5tWeqFAAIIIIAA AggggAACCCCAgI8ECGD4qDGpCgIIIIAAAggggAACCCCAAAJ+FSCA4deWpV4IIIAAAggggAAC CCCAAAII+EiAAIaPGtOzVXmWkvX/2JTcRESivx73bDF9WzD8fdu0VAyBRgLaN7ty6/OEhKYv yuSrA402Z32bBfBvMyjJtSTA568lrrZvjH/bSUkQgbwAAQw+CB0XSN29ICdn1lQ+Udl/vipj L3U8SzKwCeBvw+AlAoES0GT9rUGZ/VxVem5D9JVIoGrf+8ri3/s2CHIJ+Pz1tvXx760/uftZ gACGn1vXI3VLfaoCGG8bAYyIxHMbEuJHwK62DP5d5SYzBDwkYOtAT8Uktz0jHH672Tz4d1Ob vCoF+PxVinT3Pf7d9Sa3IAkQwAhSa/eorvYT6KQKYIzTg+5qS+DfVW4yQ8BDAnSge9sY+PfW P+i58/nr7ScA/976k7ufBQhg+Ll1PVI3+wk0IzC63yj4d9+cHBHwhgAd6N62A/699Q967nz+ evsJwL+3/uTuZwECGH5uXY/U7UDNgfFycQ6MpJoDY5w5MLraMvh3lZvMEPCUwPpbxwpzYEzH RP9sxlNlC0Jh8A9CK3u3jnz+ets2+PfWn9z9K0AAw79t24OaZWXzj0uyl9ZkYMC6TuTw4XVZ +7JYnOl5WXjFWqdpmpx6+6rMTAz1oLx+yxJ/v7Uo9UGgaYFsSm5cW5O0muXCOvxqkvjohmwX E4lcWZDSfaDUsVeTUZn9cF5CHH6bZq65If41aVjRBQE+f11ArpMF/nVwWIVA+wUIYLTfNLgp frMux8Zna9d/IiTyMFG9nsnlqk2OsgT/o6ixDwK+EEh9el5NlrxZsy6hCZHEw+rVkTtJ2fhd KaxRvQFLmhLAvykmNuqQAJ+/DsE2mSz+TUKxGQJtEiCA0SZIklECL9QIgE/UCIyMlM10XzYC Y2pBFlVHOmeCaaI63ZdLIzCyf12X2bmYDPzcGqVhblr9rH5B/OmsxP40I+YPiIHevw3+1cYs QQCBvhDIJtQIjJhkrOEXqtjlIzDCVxYlZB19RdOGZfYDNQLjRKGGiduX5eoXBzJwvIkaP9Nk 7M1FWZpTgeniI9D7t8HfdOQZgZYF2vD5C/T/XwXuqv5t8G+5zdkBgSAL6DwQ6LDA/npUV//H 1F9UTz6vn1lyJVLc1ti+mb+wHs9ZaQZ9f0vCetWKv7UXrxBAwA8CsenicXQ61qA6OT021cwx 17bN1KpuHX6Dvr8zb/P+zvuzFAE3As1//oL+/9dt/Z1bqXl/5/1ZigACzgLivJilCLRPIHnH DGBEyoINTjlYJ9u2TnLdQEZ5UCTo+zuZtuLvtD/LEECgXwVUp9wMYEzFbMEG5/psmNvWPeba js0VQZGg71+t2pp/9f4sQcCNQGufv6D//3Vb/+qWas2/en+WIIBALQEuIQny8Jsu1d1+G89k bkPGG1wdkn2aFe2Fmgj0pfob5rc5PiJDFcOdg75/ZbO26l+5P+8RQKBfBVq8jZ867mazxvFX TQTa4G5RxvF36MRI+XZB37/qY9Kif9X+LEDAjUCLn7+g//91W/+qpmrRv2p/FiCAQC0BAhi1 ZFjeNgH7CXRcBTBC9eMSbcuXhAoC+PNJQCCoAnSge9vy+PfWP+i58/nr7ScA/976k7ufBQhg +Ll1PVK3g7sX5OWZNVWaqOw/X5WxBr/seaTYvikG/r5pSiqCQIsCtg703IboK5EW92dzdwL4 u/Njb3cCfP7c+bndG3+3guyPQC0BAhi1ZFjePgHtQNb/vC65iYhEf83t+toH22RK+DcJxWYI +E9A+3ZXbt1NSGj6oky+yvC3brcw/t0WJz+7AJ8/u0b3X+PffXNyDIYAAYxgtDO1RAABBBBA AAEEEEAAAQQQQKCvBQhg9HXzUXgEEEAAAQQQQAABBBBAAAEEgiFAACMY7UwtEUAAAQQQQAAB BBBAAAEEEOhrAQIYfd18FB4BBBBAAAEEEEAAAQQQQACBYAgQwAhGO1NLBBBAAAEEEEAAAQQQ QAABBPpagABGXzcfhUcAAQQQQAABBBBAAAEEEEAgGAIEMILRztQSAQQQQAABBBBAAAEEEEAA gb4WIIDR181H4RFAAAEEEEAAAQQQQAABBBAIhgABjGC0M7VEAAEEEEAAAQQQQAABBBBAoK8F CGD0dfNReAQQQAABBBDwrICmSVYTGRoa8GwRKRgCCCCAAAL9JEAAo59ai7IigAACCCCAQN8I pG6fk5PvbMv85r4svTnWN+WmoAgggAACCHhVgACGV1uGciGAAAIIIIBAXwukPr0gJ99ek8hK Ujbmxvu6LhQeAQQQQAABLwgQwPBCK1AGBBBAAAEEEPCdAAEM3zUpFUIAAQQQ6LEAAYweNwDZ I4AAAggggIA/BQhg+LNdqRUCCCCAQO8ECGD0zp6cEUAAAQQQQMDHAgQwfNy4VA0BBBBAoCcC BDB6wk6mTgIHX1yWlyM3nFbVWbYo+88XZOylOpuwCgEEEOhTAe2bXbn1eUJC0xdl8lXuZNHt ZnTrTwCj2y1Gfr0Q2Pz9KTn/SaKlrENXtiT+h3BL+7AxAgggYAgQwOBz4BkBc7b21goUkXhu Q0L061tjY2sEEOgDAU3W3xqU2c9VUec2RF+J9EGZ/VRE9/4EMPz0eaAuzgKarIUG5cJD57U1 l07FJLc9I3TfagqxAgEEaggQwKgBw+IeCDw7lMQ3ack83pCzM9cLBbi2IfE31K3nXpSXx9om IkkVwBjnG7AciHcIIOADAdsJNJ39HrSne38CGD1oNrLsuoB2mJLUoSapz67K7Efb+fwX7u3J +dGKzpkaLVvahmNa19uJDBHwiwABDL+0pJ/q8e26HPv5bL5Gsce6zLziULnSNh0MYGiHcv+/ dyX5TUZkYEAGT4xJ6JdnZPyEyO6nMTmUQVWwnMjQKYm8EeJXBIdmYhECCLgRcH8C7SZ39nXv TwCDT1GQBA7uXpCXZ9ZUlaOSfL4q4w6X95a26WAAwwio7H2dkNTTjOq+DcvoK+Ny5nRIhiQl 65/uqT6d6r9pORl6/ZyEJ0aC1ETUFQFfCBDA8EUz+qsS2jfrMjheCGCsPspJ9BeFCP7h/6zL 8r2MzH5wUca/U0GO/DaduYQk9ZcbcvI3lx1hI9Mim8aQ7tIjpC5jiXMZS8mDFwgg0B4B9yfQ 7SlHUFNx708AI6ifnWDW2/y8i9j7Zprc//SGbB2G5Oq/huXg9nk5+c6myNSquoQk2uYffzTZ /eOsnH1fpV/1CKtSbUv5mmXJ6RfbXIaqjFmAAAJtFiCA0WZQknMvYA9gxFJqBMarhTTXw8dk 9kuRZRXUuPhqWq7/5rxs/DQq2/9+UUYcovxHLUlK/YJwMv8LQuMUQlMRmfxVVBbVl3LFQMnG O7MFAggg0EBg/S113DMCptMx0T+babA1q9st4NbfPKGLrCRlY2683cUjPQQ8JWB+3stGYLxI yfkfnVSBg7DEn29J6H+35fz0ORn+px1ZfW+yjeVXAcd31JxBt5tLMjwdlfDv5uXiG/y/bE6M rRDwjgABDO+0BSUpCtgDGOHpeQm9YoQGNEl8dEPFzkXsozLajna4K6dGz4o5l/bSvWT+yy0f nNCysv3nqJyzRfbtAZa2l4UEEUAgOALZlNy4tiZpFQpVV6wVH9Zxz1gQubIgpa62pqmj4qjM fqiOkUPm9jwfWaBD/uYJHQGMI7cMO/aRgPl5N4ocuaSOV/nuW0quf2KMe7CPymh/pQ6/vi6j k1eLCUdl69GShH9RODhqT1Oy9n9Pyrul0bPq8uPnav60Nv741f4akSICCNQSIIBRS4blPROw BzCcCtHJAEbqUzW08e3CAMOl+xmZ/4fqM4P7fzwnZ94vTFLVybI41Z1lCCDgTwH7scephqEJ kcTD6jWRO+qX/d+VwhrVG7CkKYFO+ZsndAQwmmoGNupzAfPz7lyNDs5ZpsK5pTs2qZEeO99v yaSar6z8kZVboWF5N38c7WwwpTxf3iGAQLsFCGC0W5T0XAvYAxgL63sy+5oRRMjK5vtn5Kq6 hKSTQYPdD07J2Y/U+IupZclsX1QTPjk8tIScGzzV+dEgDlmzCAEEfCqQTagRGDHJWMMvVEXL R2CEryxKyJg4uPjQtGE1J5AagVHsqCduX5arXxzIwHFzizrPzzQZe3NRluZCpY0CvX8b/EuQ thfmCR0BDBsKL30rYH7eRQURYveXJGQci1Sf6fLrs6rP1MEAxotDuf6jUTHGX4RvxmXrPeu4 ZsfWHq7JYOiCWtTBstgz5DUCCHRGQOeBgMcEcqmYrj7t+T91iUbpsTFdWLacyBWWPVfPz0ur 2/Aip8emCnmo6831Yi7V6T5P6tFi+VQwpXo9SxBAAIE2CcSKxz3jmFT/YTt+FY9P5nG05vPU qu04F/T9nXWb93feP3knmv8uUwEM5w1YioCPBMzPuwoQ6Emzf/Z8X4/kj0lhPW52mXLmizZV Phcv5iG6GpVWO9FS/1KVr81FqJ0paxBAoN0C0u4ESQ8BtwL2AEZZgCCT1uOJpJ4zvhQze3o4 /4UYtb4k3Was9t+5Fi4GTxb1dK30vt/RVWw/v11Z+Wptz3IEEEDgSAIqqGAGMKbqBFWLaZtB 3poBi8rARkVQJOj7VzdRa/7V++u6eUJHAMNJh2V+EzA/7/kAhi1AkHmS1OOpQq8q82C50M+a a3xMa94nrS9NFPploSs7NXfL7C4W+3gEMGoisQKBPhAggNEHjeSmiLnHO/q8OapAdV7nV3Zs v7i5Sblz+9YMYNiyzD1aLX0JlSL6tvXmy1brn7wTKaYrevRO3EzG9qw6tHPFURrKs1EAo9X8 bRnxEgEEAi/Q4gm0GpWW+T6tp9MZ9Vz/L51OF4LBduOg72+3yL9u0b9qfwIYDiQs8rFArQCG vcrJlWI/q0FQdn93tfhDldHnCuuruzV/VlLJ2/6vqr5ZzBypa8/4B2v0bGWAxb6Z+bq1/M29 eEYAgW4IEMDohnLP8sjoS5W/uKn3Sw8yPStRUxk/dr6EpGzf0jb1ouhHqH9pZEchSBG+EtOT afUzgurYp1N7+qItGGT8ylk/gHGE/MsqyRsEEAi2gK1T3qCzH2ynTtXevb95QscIjE61Eel6 SWB/vXDJVNklJBUFLG1T75im+mLmSFdrRFlI36vTfS2N7Cj2exfu7OnpH1T/TV2ukrwfswVD jP5dvb6jKvAR8q+oJm8RQKCDAkziqY6Mvn2oSY2uqkmNrldUsN4ERxWbdvetuk1p6psDSac2 5OxModQL6ztyfnxY5IWtKOq2V5nSNnUmYjpi/Q//S92K6/+Yt+Ky5evwUgUwJPqL0j0Py7c4 Yv7lifAOAQSCK2CbWX9uQ/QVdSU5jy4KuPc3JzVkEs8uNhtZdV1Ae3ogqe9UH+6zqzL7kXGX NjWJ5+6ijP+4oiiqu5RaL24zFZPc9oy6cbTD47ttOfazc1Ur1BxocnHCcY/8tqWJ2Kv2rFxQ p+9obHrE/Ctz4T0CCHRIoIPBEZLuuUBaX3QYgbHwVb1heL0rdHLFnH/CukRDfexLl3Q4v45Y k0JVFf3o9c8kYqUJocrzVcMY161hjfVHYBw9/6qqsAABBAIpYFyGtnRtSd9J2S4oD6REbyrt 1p8RGL1pN3LtpkBOXy3OP1HeX2rQf6s3AkPNNeaU1lYT3df4ujnPRUX+Ewt67M5CMd0GIzBc 5N9NefJCIKgCjMBQR0g/P7J/W5fJ12ZF3Rg0/wjNrcr2v0dlRI1i8Nrj4Iur8nKkcrxIg1JO LEr6wULN+rirvyaHf0tJ8vuMKsSgDP9kRMZfHZOBp5tybPR8vmB1R2CoLdzl36DurEYAAQQQ 8LQAIzA83TwUrk0C278/Jec+MXuazSWqJtuU+B8ma26cuntVThZH4xobRVf2ZHXudM3ty1YY I3pV/01dQqK6b4MyemJMxl8ZkcMvLsto5IbatMEIDLWFq/zLCsMbBBBotwABjHaLejE9dfmF 9iwr8tKADByvPfTOi0VvS5naXH/rPuIiq2o4Y7TOcMZ8+ducf1tMSAQBBBBAoOMCBDA6TkwG fhbQNMmqv4GBIfXnvqKJP5+XU/+yqRKKSDy3IaFGabY5f/c1IAUEEDAECGDwOUCgJYGsrL81 LLOfGzuFZef7LZk80VICbIwAAgggEBABAhgBaWiq6X2BbEIuDJ+SNaOkE0uSSczLkPdLTQkR QMBBgACGAwqLEDAEDv+6LVuJrAz/3YgMqBEsA8fVhG7vz8raw6LPxLL6ArzIFyAfFwQQQAAB RwECGI4sLESggwKaJP6yKXE18Hh0ZESNQNZkSEvJ5ZnL1uXUH8cl/q/qPic8EECgLwUIYPRl s1Hojgu8SMm5H50UYy5t50dItp7sSfinjcYfOu/NUgQQQAAB/wsQwPB/G1NDbwlo36zJ4PiF 2oVSc6ftq7nTxjw4F1ztQrMGAQTsAgQw7Bq8RqAkoMnm78/I+apJqUIy//FlufjPMzJ2vLQx LxBAAAEEEKgSIIBRRcICBDorYIy2GDwpxlSdZY+JiCy9f1mi06dliOBFGQ1vEOg3AQIY/dZi lLe7AmoCJ+2F8SdqAik1CWo7ZpHqbg3IDQEEEECgRwKp2+fk5DvbEr6ZlK33xntUCrJFIHgC xqUjRv9N9d6K/bfgGVBjBPwqQADDry1LvRBAAAEEEECgpwLZh7uy/ehQRl4Ly+QEUwb2tDHI HAEEEEDAFwIEMHzRjFQCAQQQQAABBBBAAAEEEEAAAX8LEMDwd/tSOwQQQAABBBA4qoC6jDCr RqEPDTFh81EJ2Q8BBBBAAIF2ChDAaKcmaSGAAAIIIICAbwTMOSzmN/dl6c0x39SLiiCAAAII INCvAgQw+rXlKDcCCCCAAAIIdFSAu4h0lJfEEUAAAQQQaFmAAEbLZOzQdwLPDmX3flzkpVE5 9csQt8/quwakwAgggEBvBAhg9MadXP0hoH2XkL1EWuRn42oS2/4bwdTv5ffHp4haIFAtQACj 2oQlPhMwhwAb1VpO5OTiRKeuZdZk925MDp4VAY+PyfnpSQImPvs8UR0EEAiOAAGM4LQ1NW23 gCZroUG58NBINyzx3JaEOtX9anfR8+n1e/k7gkKiCHhCgACGJ5qBQnRSYPffTsnZDxP5LCJ3 krLxu/HOZKcl5NTgKSnkZGTh7gtbOzxQwZBBGXtlRN3FnAcCCCCAQLcFCGB0W5z8/COgyfpb gzL7eaFGsUc5mflFP/Vm+r38/vkkURMEKgUIYFSK8L5nAok/n5dT/7JZN//ISlw25kJ1t6lc eV8FMM4UAxgdHYHx4lDWPrwq2w/jsvmlEcaISDK3IeNH+b5+kZJzPzop2yqVZfWlf7GvvvQr W4D3CARXQPtmV259npDQ9EWZfPUoB4Pg2rWj5m793QYw3ObfDgPS8LpAVm6Fh+XdL+uXc/VB RqJ/P1R/I0+ttY9gCEn8h7iEjnuqgA0K0+/lb1A9ViPQxwIEMPq48fxVdBXpDqtIfYMvcJmK SW57prURCU9TsmtcgynDcupXXZgD49t1OfbzWZWfuwDGBRXAWFOprKoARpQAhr8+7tQmIAK2 X/DmNkRfiQSk3l6ppnt/dwEM9/l7RZJydFBA/WBxXn3f1//5Ro3pXEnK1lyHRpB2qHrZbxIS f6L6Xz8ekzP/MN5a361DZWol2X4vfyt1ZVsE+kmAAEY/tZbfy5o9lMS36ovuJZHUZ1dl9iNj /EFYYruLMv5jEe2FyNirIRnx+A8Q2jfrMjheCGDE1QiMI13zqTo0BDD8/oGnfv4XsJ3AHiX4 6n+gDtfQvX/bAhi0f4fbur+Tz36XkoNDTVUiIxsfnpXrxo85Ewuyc/u8+unFeAzI2MQ4c2rl LfgHAQSCLkAAI+ifAI/W/+DuBXl5xhh/oEYxPFeXYaigRiuPg//ZlN1HmgzaRmznZETO/7aF STW1Q7n/37uS/Caj+g4DMnhiTEK/PCPjJ0R2P43JoQyqIuVEhk5J5I1Q6ZcFK4AxL8kfFkW+ jsnap6o8j41RIKMyOTMrl9+bkRFb2arqRgCjioQFCPSfgPsT6P6rs5dK7N6fAIaX2jMYZVl/ 61hh3ojpmOifzTRV6ezDXdl4oHolql+RU3GQU2/MSGikuOuzA9m8uyvagNFnUQ8tJ0Ovn5Pw RGGDrLrMbeO/C/vm1x8fkPSXaxJ7UOizzH64JPNTw7L+x6uytBmXxMOEhOeWZelPF2W86pIQ Te5/sSlJNZl5MTeVpNFPOiMzb9QZPaL6W9uf70q2WL6B1yYl8vfDsvv/3ZJbX+zJQVqVZVRN jP7bizL/u8lSfytf3op/NGPU7Ze7sqf6b4nvNEkb+6rH6Othib7zrkrXhKnYMf/2iOVX+xqX i8VsjmXtYNwN74uYrP9lV+JGX1DVJfzmRbn8j859UqMPu/6fMdWmB4VCqolQR9Wk8LNzsxL5 tdXfdKzBYUo2P9+UjS+LbqrfOfa6uguM6r8OZ+MS+89tCf9pWy7+qp6DU8osQ8BDAjoPBDwo kLwT1dV/E/UX0ZO5VguY01cnjH2r/9R8Ek0llry35Li/kWZkujLdkB63JZtLxWrua5Upou9l KoqSiesL02E9PGX8hWxphIrLzHXqeSKsL24mKxLgLQIIeEsgp8fM48VUTLcdJrxVTN+Wxr2/ +V0UWTnK8dZ9/r5tGipWQ+Aon5mcvlzR3wnfjJfSzz1atvUniv2XidXi8ah2f8nqr1T2ecz3 i3r6eSmbwotcXFezlFXnJ+GyflLFXrpjGR3TUWlPLFXnW0wws1u772bWJ3RtpzJ76/0Ry68r Tad+p5o4Xk8navcJ5++lrbyNV9+rfmCN/qtZfpGovvPE+dvEPF5Z2zq1hejqcqTyfHmHQJ8J SJ+Vl+IGRMA6CB8lgKHr8ZUFPTIX1aPG37QVDFDzSTQUTK6bwRPnA7/9iyE0FdHnP94qOzFx CmBErizpqzcXy7/YL5V/ieYSDp2MWl/g+eXLZfk2rBgbIIBA1wVKAYzpWNfzJkPdCiAd0d/8 LjpaAMN9/rRh0ASOEsDQ9eS9ZdXXCZcCB2Wf1/Se+nEkokcv2fo26v+D2Rva/2q1bN98H2d6 QV+6EimlZ/Z7IteW9Pkpq28US5mpFNvpeVqPXYmW+l+R0sl4g76cOnFfVOULl7Y38wjp85dU OdSPNmYZjOfouvMJePKmfbuQvnAzpu/s7uixj211V/tXldv8mB21/Gr/9K5yzPc7q93MsodV O4Rt/brI+r6Zs66rH7Hs69Ql1PrSnS09nojrO/dWdTWDks0grO98b+2af/X9jq2PGdFX78X1 /SdpPZnY01cr2rLs81GRDG8R6AcBLiFRRxUe3hMwh+26mgjTrFZpUs0mJsQ83JVTo2dLt0Jd upeUi2rYY/5qDy0r23+Oyrn3ram2YildZl41Myo8W5eQGO+jspdeltPm9SLPUnL5xyflRn7T qLpLyap1l5IXWbmvhvxljNzUJSRXI+/myxG9GVN5DImmFdLP/6vmAxl9fVJCP82XzLaClwgg 0BOBbEpuXFuTtPr/q644Kz40SXx0I383IWNB5MqClAZRq//QmhraO/vhvIQ8Pq+PWRtPP3fI 3/wuUh1+dQesUutVU3Qo/+qMWOJvAReXPdkuPa31eS1dnls5J4ttX5lTk6WvFCZLv/9v59Rd 3Iz5yETmN5Oy9Kb6P6BuGX9e3TLe6AnNb+6rZWP59U7/lPJrclJza3uV2tSS7G/Oy1jxeKp9 uy1nfn6u0D+bWlUTukerLyVRl4+sf5GQkdBpmfz78nJpD9dkMHQhX8xmJ0S1ytPCpOx2SxNl elmS/64uuVGXICtASX2tLm/JDkj4DfMSEk023xmU87cLO4SvbUnsSrhizhNNdv84K2fNPqit nfKp/k3Nv/aaMf+aSOyx6pu+kn9Z+if71zUZfr21+pd25gUCXhPohygLZQyegPmr19EuISn3 so+IaDQCI3nHipwv3a+8xqOQ7t7HVoTfKb1G+e2XRnhEag+pfJ7Uo8VouwqS8EAAAY8L2I8d 6nve9ktZ4XWo6pfFwnJjiDEP9wKd8je/ixr9Ytmp/N3LkEJ/CRxtBEa+jjmr31Dr82p+ntUd 3UojMKr2tR2T0vcWiseysHXZq8rHHA1QKx/TvJRfk5cDW9urEQYOXbCda8URtbYRJGZeZc+5 jJ58sJcffbGzu6fHH6hLOZ7Emy63mZZVngYjSMwdjGdbOxjfBWF1yUrFOBX71oXXGdvoCXWJ jEPVi/uk9YXS90t5HzL3yLpUZfGe+l6pvLzHKNqjDT2qLlNevl9x6Up1iViCgKcFGIHhtYgS 5ckLmL961R2BoSZ9Sn2TluG/q39nEvuIiEa3JN394JSc/SihIv/Lktm+KI4/jKpfH86pXx+M 3ySc0rPyUyMsnqsRFi+VN6q1vk5E3xbBd8qjPEXeIYBAzwWyCTUCIyYZa/iFKlL5CIzwlUUJ GRPaFR+aNiyzH6gRGPlf5UQSty/L1S8OZKBqYjxzD9vzM03G3lyUpTl1xXnxEej92+BvOtqf ze+iWr9ol7btUP6l9HkREIHmRmBoTw8kpSaoHPuF7c4ktn5Drc+r+XmuuiV9rX3VXdWOFe+q llR3VRvPj4bIyq3QsLyrJpaslY/ZWKX8mhyBUdq+coRIMcFG67Vv78utj9XkmLdVP67Oo1G5 zV1L+TVZ/vx+Nku5tCX6n9SFIQ0e2t/U6JDXCqMjjE0XPl40vj5sE6GqheqrY2DwQC5/aExw X3jEHufUSIviEJXvtuXYz86Zq/LP6jJnOfVTdR+b40MyMjwqJyfOyOSvTstIM98xZSnxBgGP CXg6vELhAivQTNQ7uVIcCVH5S0KFWqMREdbm6pcP89rOetF92+iI+iMwnCP2Vnmc1+fL0yAP q8y8QgABLws0PweG7fhT+oWteiSH6kJYozumzIn4DIGg7+/8KWje33l/87tInfA4b9Bgqdv8 GyTPat8JNDMCw5owMmwbLaHb+g21Pq/m57lqBEaNfZ37K1YZa+VjNkspv1ZHYNTog5XSc+r3 Pdmyjo3F42R+njI1t0akbGJ0NRl7k/+fS/k1Wf58ve2W9vYxURyeLWfb8d1+rK/xunIuj+Sm OWKmfjrqciCHUrAIgf4RYBLP/mmrQJW0mS+N0jZOX2Q2LfsXg1PAwbapvnPNvDxEza5tX2F/ bZsoySk9Kz/nAEWj9fmsbF+AlV9Q9qLwGgEEvCxgdfSrThgcir1h3rGkRme1LHhhbKM6+fZH 0Pe3WxRet+Zfvb+aHLF4R6xmT3jK03Cff3l6vPO/QDOfGWubss+lrd9QttyGFr9ZvEy2st9U Y1/n/kqN/G35mC/N/z/NXg5c2r6yfMUE663fumSdtEfU5OrpH8xSFJ+fZ/TV4o9UtXwq9ij9 /2+2/Pn9a1hWpm1/bzkbx/Ulfevehr6xWfsvth7Tt3aTzpemZPb1rRU12aqaUDTieGe7gtNO zU6uvWS8RsCbAgQwvNkugS9V6UuqTtS7tE2NLzoT0f7F4BRwMLcznu3XMUfvWLchs7ZRX9xz 1pekU3pWfu0JYFTdZssqDK8QQMDTAlZHv5kAhv48p2e+T+vpdEY91/9Lp9N6rvIa56DvX/VZ aNG/an8CGA4kLOqoQDOfWWubshNx+9wUjr/8q5Eb5ijTyn5TjZNu5/5MjfwdXEr9tDp9Oftu pe0ry1fcqOZ6dfcQddFFYQTGpS17krbX1jZlbrYtKl+W8muy/Pn9a1hWpm1/bzmrOTNst8C1 b9Pw9ZOd/F1M5h3bXu2tAjg7H1vzvDn1XxvmwQYIeESAAIZHGoJilAtYE11G9WRlJ724aWmb Gl90pRQfWxMbNZwQM7NXdhur8JWYnkyr6ZfUiUE6tacvml/+xS9Kxy+AUn4qgOFU9tL62nUz JoEyJ8kKXdsrVaX0QpVn/4G6NdidmB43yscDAQQ8KGB19JsKYHiwBv1dJPf+5glMsyc85V7u 8y9Pj3dBEGjmsiNzm/LPZVpfMicLnlqumggyk1i1LrGo7DfZTrrttyi1Tqzt/RXrc23f1qlt Sv00se/vtGVhWWn7itFl5h4119vKXzkyLb+vOnnfKo2wVZeQ1DrJNzMqPpfya7L8hbysyVSj TeZjXP4zbwZg1HO9kbeZx3E9dnNRX7gW0zO2PqZ9Es+NxzX6hSmrP+zYf62oP28R8KoAAQyv tkwQy5VJq5mi4/l7XqvbR5W+aBfUvayT6j7Y+XXGeuPvkTqAm9uUfRGrE3v7tsb9s9etawJD alhheVrJsi8Agz391WIp76oh27YvGGNd5RdA5nHSll9Yj+2q+3DbAgzpsvWiLxr36batt5o9 oy/Z8lrajOuZTEYFUeL6xsqi7V7fooc+dhopYqXEKwQQ6JWA1dGXuY1eFSLA+br3b1sAg/YP 8OewcdUzT5LF/s9O2Q8lW4nicrPvk+8jWduUBzB0fcM2QjR0aVWPP0nrmfS+vrMyX96vmV7V k4/39YxxnvtDRo/vxmw/3izq8cfF6wtsJ7xGXyy/vTHfTulyt0U9+aR4zwx1gZXtKQAAOO9J REFU54+a/TTVn1n6qtC/K23zyH4Ng/EjUVxfLqUb0o26q8FohYfxo4293ydqvXFnkdJlIvYy qQCF+vHJqEOhz7Vsq1thlEbIWP8oqe9/bzvRd1n+Ut/zvs1S3VHE6K8W6qz6m6qf69zn03V1 y9iyNlq4s6OnjfKpuhsj8+JfxfT5sh/RQmV3srOCTYU6Gv3G9A/F+qlARya1U7q7ndF/3bLz N/6IsgUCnhIggOGp5ghyYdSXT9mB2bpMo1EQQWwT2eUe2X5hsAUA6qWxnLB9gRWbIJOIlUZA lO8b1lfXV0tfhmUBjFy8tLxsn4niRHu11ot9Ij7rM9BsIGX1gfkNb+3LKwQQ8IZA7vGOvnRt Sd9JVR9nvFFCf5fCrb+7AIaaWpX29/cHrB21U7++q/tUlJ28lvUh6qwLV0xGmUsst5ROSF2u UGvunOWUqlxpxGjxxP9mYfJHK4BhLC+cSJcmVq9T3vJ6WSfgtfpuRvmMR6319pFtmftLLdU9 Xxazf6by6ET5y+tbbGNbnvnKlf7J2eZha/x5CF3ZKB9lU9FWjnmbbVPzMptSYXiBgKcFCGB4 unmCVbj4inVtXt0Dr3kALj5HbtousSheA9j8/iG95lA79StDWkXOd3Z31J+6j/ij/cI15+mN 0pdkWQDj+b7t/ty2L59LG4WJlmqsD5nrHZo7ea/6lwOjbqHpeX11c093HLzhkA6LEEAAAQRa F3AbwGg9R/YInoCaXLI08sDWd6jo6zj1a5bvV/+AkbaPACiloX58ua9Gc1TcpWLxq7Rtokp7 3mE9P8njE6u/Y+S/cK/ws/3OlVCpH6Ru+qnvq1/4m/3RxarHgnWZrbqDiLohtC3Nwuv5zf3C x6HG+uhK+QjU/d1Vx3TCc2okhOowpXfLgxzhKzulj5ur8qcL809Ydauui7kufM3Ks5S57UX6 wYYeNS8FqjIJ6ws31eiRJ9UBcfsIjNCUNYrZzLfwHNKNkRnVe9sKwEsE+kDgmFFG9aHmgQAC TQpoD9X9ukOF+3WvJnISnSjeg7vJ/Y+ymZbNivaisOfA0JAMvHSUVNgHAQQQQKAVgdSnF+Tk 22uihurLxtx4K7uyLQI9FcgeHoqmSjDw0pAMneh8P6WnlbVn/kKTw8O0ZFTlBwYGZfjEiAz1 YfW1p4dy8FRk9KcDomU1Mfp+Q8frVyT73aHIkKrvcQWi+oxZo++oKQgtJ3J8WEZGhuxSvEag bwUIYPRt01Hw3ghkZf2tYZn93Mg9LDvfb8nkid6UhFwRQAABBDorQACjs76kjgACCCCAQKsC BDBaFWP7wAgc/nVbthJZGf67ERl4lpWB45qsvz8raw+LBBPLkklcFOLZgflIUFEEEAiYAAGM gDU41UUAAQQQ8LwAAQzPNxEF7InAi5Sc+9FJ2a6ZeUi2nuxJWA3t44EAAggg4E8BAhj+bFdq hQACCCDQvwIEMPq37Sh5RwU02fz9GTn/SaIil5DMf3xZLv7zjIwZ1xjyQAABBBDwrQABDN82 LRVDAAEEEOhTAQIYfdpwFLtLAmryI01NCGVMoDkwMJD/61LOZIMAAggg0GOB1O1zcvKdbQnf TMrWe0zi2ePmIHsEEEAAAQSEAAYfAgQQQAABBBBAwEEg+3BXth8dyshrYZmcYMYjByIWIYAA Aggg0FUBAhhd5SYzBBBAAAEEEEAAAQQQQAABBBA4igABjKOosQ8CCCCAAALNCKjL0LKayNAQ E/42w9X2bfBvOykJIoAAAggg0EsBAhi91CdvBBBAAAFfC5hzKMxv7svSm2O+rqsXK4e/F1uF MiGAAAIIIHB0AQIYR7djTwQQQAABBOoKcBeLujwdX4l/x4nJAAEEEEAAga4KEMDoKjeZ9UTg 2aHs3o+LvDQqp34ZkqGXelIKMkUAgQAKcALd20bHv7f+5I4AAggggEC7BQhgtFuU9DwnYA4h Ngq2nMjJxQmvXouuye7dmBw8KxIeH5Pz05MEXDz3iaJACDQvwAl081ad2BL/TqiSJgIIIIAA Ar0TIIDRO/tA5Kw9PZTUt0nJ5EQGfzwsIyNjMjYyIIffHkjmpWEZf2Wk4w67/3ZKzn6YyOcT uZOUjd+NN5WndnigggmDMqbK2JWQh5aQU4OnpFBSo4hhiee2JNSVzJsiYSMEEGhRgBPoFsHa vDn+bQYlOQQQQAABBHosQACjxw3g2+yfpuTWB7Py7m3rdNyprltPdAn/1GlN+5bdVwGMM8UA RtMjMF6k5NyPTsq2KsbyIzVq4xddiCK8OJS1D6/K9sO4bH5puEUkmduQ8S5k3T5tUkIAAbtA v5xAH/7lqoz+5rq96NWvJ8ISnVJ//zQrp18Zql7vwSVu/bVvduXW5wkJTV+UyVc5GHuwiSkS AggggEDABAhgBKzBu1Ldbzfl2M/Pl2UVVp3e9JfbttEFhdWrKjgQ7XRwQAVTdhNpleGwnPpV k3NgqADGBRXAWFN7daWMdq1v15XfrFpCAMPOwmsE+lHA7Ql0t+psv9SumTyjK3FZnQs1s2lP t3Hnr8n6W4My+7mqwtyG6CuRntaFzBFAAAEEEEBAhAAGn4I2C9g6fCrl+Tt7cvW3p0vzOBz+ bVOir53Pj2wwMu56cKDZ2vYwgKF9sy6D44UARlyNwOASkmYbje0Q8J6AuxPoLtZHy6rL/Q4k sX5VZj8yxp6JLN6LS3i0WIYf0rL7l1ty+ZPCOmPphhpBF+nwCLpi7kd+cudv+z6biklue6Y7 lxMeubbsiAACCCCAgP8FCGD4v427W8NnCTn341P5AEXo2o7E/99kVf7aX2/J4Ovv5pebAYys Gqa78d+HMlg2QndAQm9EZLxipPLB15uy+61m21ZNsHH8lETeDJU6lwf/o7Z5ZN9GJCcjcv63 TU6K2YYAxuHfVJ3W12X7y7gY4z9GR0dldGJSIpGwjElKNjfjMvT6rFx8s3xODiuAMS/JHxZF vo7J2qeqPo/zqcjkzKxcfm9G1FQidR/Zb+/Lxt0Nlc9uPv/8xqOnZPa3MzKrJgetu79x55a/ bMj2F9ulfEd/Pipnfjkp4ycysv2pGpsydUtW3ztdtwysRCDoAu5OoLuvd3D3grw8Y4w9i0ry +aqMV9y1KfXpZTn59o18waJqTqHVJucU6n5NCjm68yeA0at2I18EEEAAAQRqCug8EGijQO7R qq4+bPm/pQe5Giln9NXpwjYbj41tcvrqROG9ua/5vJSoTKPWtiE9Xtq01jaiq/ksapRJLc7E 9YXpsK4ud1F/oVI9RELFZeY69TwR1hc3k85pPU/rsUv2/Z3rlq/jxKqqffkjl4rZ8q61b0Tf y5TvV3r3PKPHroQbprG6my7tYn+Re9RM/qpcU9Vlt6fDawQQ0PXknWj+/2JkpcbxwmNIZnnV JWx6svLgZJTVdnwK90GdzPoczT+nx4rfVTIVqzpWe6zpKA4CCCCAAAKBEJBA1JJKdk/gh7ge LgYwZGJJ33fqADuUZv+rZV1dTW2ddE9E9ejcoh7/vnrj+J1FPXqpcFJgBjoi1zZ0+/l8fGVB j8wZaai/aSuYoEZ8VCdYXJJLLFv528tS8/WyQ4c2rS9VBmOmovrizWV98VKkOn2HTrFTACNy ZUlfvblYbnRpx6EuGX15yuaoyj7/cUzfeRDX47sb+qLZGS/Waem+Xc1ILq2rMR+lci6sbOnJ J2l9PxXXt5Sp6Z1/dii7Q4FYhECgBdydQHefzixvPoDxvDr/5OZ86Tgwv+kcBK3eq3dLzPoc LYChWwGM6VjvKkHOCCCAAAIIIFAS4BISdSbGo50Ch3Lj2KhctiU5f21Vzkyo26f+bFSGTgzL 6Al1W1KHyx+0v95Ql5YU9iy7ttq4nOHrPZGfnZHJCeu2q+tvHStMrnZpR/Q/VV+qUipCaVLM BnNuvMjK/S/3JGNciKIuIbkaeTc/6Wj0ZkxmXh0STSulqNarS0Jen5TQT8srYg5XLmwZllhi TWZsZZZnKbnx1km5/GUxLYfrqq1LSIxtorKXXpbT5vUeav/LPz4pxQHc6i4laoi3rQgHX1yW lyOFtTK1KMnPFmT8eDGv4tPBf92Ql/+P2UJqmLg9DS0l5wdPyqaR8/q+rP52rHznp/flwk/O 5Cc3VSMw1DXh0dJlO+Ub8g4BBAwB85igTqBlY678cjEvCpnlNW7jvPFgSULq+JHNqoPfSxnZ W78h75bmwIjIzvcbMnnCi7WwymTWp6F/Vh2br62py+0GbN9PmiQ+ulGasylyRR1PzaTVF4Im ozL74byEKi5zNDfhGQEEEEAAAQQ6IFAKZfACgXYJPNmxRmHYfs1XH9/SL3fhK6t6svLH/1xS V3O857ex/1q2c83ab8cckWEb6bG4W5lQeUXsIxrqjcAo2+t5Uo8WyxJLla2p/ca2j1HXjcc1 NlX1NNN2ugyjUXn3183RJxHbZTNGXhnb6I+wvlOHZct2iUuZia0Nwte29IzDL7D6D0l9aS6s z9/cq1FBFiOAgCngdgSAmU63ns3y2o/Xjq+ntrpVJFf5mPWxf6c4JZi84zBCzvadFaocWWd+ V93pj0uDnOrMMgQQQAABBPpRgBEYqmfGowMCajTD7t01uXU3JptfJmpkEJKddFwmrUEVsvnO MTl/W22uft3PqF/3h14cytUfjcr1CXWBycOEqCHLsvTmiGTVRKDD+YlAwxL/YSv/K2GNTMQ+ osGcNLTWtqXlR5nEU01gel5NYGqMXghdUROY/qH2qJDsw3WJ/uOSjP3TLVmqmAjTKq/zJHrW +orbrNpGTxj1iFxblFNqflMZNN7ZHmrExtX3r5YWlI20ML1La9WLibBEXh9VN6EdkhE1gmbs tVBhMs+K0Sf2XXiNAAIFgaZHAHgEzCxvvjhTUYmW7jKSkfjtzbJbYYeubMneH8KeHoVl1qfx CIyEGoERk0zZ8MDyERjhK4sSUtNBmw9NG5bZD9QIDI+PQjHLyzMCCCCAAAK+EOjHqAtl7jOB 5zk9872aR+FRXN/ZXC4fnTFX/ite+qvF4iiNsL73g6rnk43SqA31H06X4nXI8Y+Lk1Q2MQ9D oxENjpq20RRlIxQcNy4stE9gGnHxq5xVXudJ9Gqut5U5b2X79bDe+8qy5lIV5jXSCV3acJgD pA4QqxAIoECzIwC8QmOWt9YcGJnHe/qCbTTC8oM6Q708UCmzPo1GYNQqamkST+bAqEXEcgQQ QAABBLoqwAgMX4ShvFOJ7MNNWfz3bRl7Y0EuvlExf4JZzBcHalTFy3I9/35R0s8XZMS8Vd+z ++o2rGfy1xwvPchI5Ikxp4NxSz/zoUYlqFuL7v5yVN59WGOeBnPT4rM1YqHBHBj2/WwjMGKp nJoDwzbRhH07++vDXTk1ejb/C2XDX/vs+1W8tspbMcKiuF3N9bYyG3NnxO5FZOCFfeKOyozU uuNjcmbqtOVvbqJG0CS+3JaNr3cl9V1GtGda/lfWA7XMPp5m4au0LP7aNoTG3J9nBBDICzQ9 AsAjXmZ5VQBD4rkNCTkc+rSH6lbYocKtsNWdSGTLw3N7mPU52jGZ26h65GNJMRBAAAEEELAE uhouITPfCyRXzOuI1egBp/kTigJ75ggKCVfM42Ddti58ZVnNtVCY/yKm7qJh3t1jccUaxbH1 pDGpNWJB9GZHU+i20Qzz95qcaV/tY87hIbKgp+vU3yh1OpXU099X3xXFKm+LIzBs81fIlNMd Uhpb6eoWsEvqLiahudq3DNz/aqk0KqYfbqPYRK3ZBIGOCbgdAdCxgtVI2CxvfgRG9eEpv5f9 jk1ePwaY9TnaCAzr+4jbqNb4wLAYAQQQQACBLgtwG9Uug/s9O7OzqEJk+vx6rcnN1K06zSHI E8tltz81fNK22/QZ6ajRBPlgSPyadTvUwvKlqn0dfR/HSifcTU/IaQsGhK45TFapLovZf7Cj x+7E9Hja7OXn9I1iwMUoX/jajvMlFpmkvmje6nRitXqbUnlrBIFK6wsu9jrb85/frOWv67nv 9/WdO8v6/KWl8lvV2uo9v7lvT9p6bQvUeP3kxSo0rxDojYB5TDzaCXT3y2xNElx9fDFLs/Ox GagWffGrJgO85s5dfnbnTwCjy81FdggggAACCDQUIIDRkIgNWhEwO4uFAIPq3G7Gy+5kkfs+ qS/bTvIdO/Xf7+hqys5S0MGc9yL3YNlaZgQIbsYdiqYCC4m4HlcjNvJ/6vXO+kJpv9DHW3rS vv5Bsqx8VoLqjh62MiwZ9chk1KiJuL6xslhWvtDHtnKkd0p55Q2mFvSdxH5h38dJta9VlsL6 8pEOGbWNVd6wHtuN6/ulAIkK7pStV773ytfrj8vnrwhfUQGWJxk9p0aD5FT5kyrosnypOH9I sX5LCTMAo2pvC2AY5Yt+vKEnjfyLo0kK7WcFktQlJBYZrxBAoErAPCY6Huuqtu7hgpw6Pqh5 imJXrOPD0lfqOGocL/PHzD19QwU9I2bwOX/8UHMVmXeG6mHR62Xtzt8WwJjbqJcN6xBAAAEE EECgSwIEMLoEHZRsrEtIbAEI1dENTYX1cFnHtziywnbubBll9GXbtuouGYVV6tap1iUazpeD 2CfSNIMojZ6X7SfwViF0a0LR8rpUprdaMYld5oE14qNy2/L383rcPv9dLl4+wWkxwCDmKI1a 66V8FMf+PXMi1PrlzpdlYkFPGpOlmg81umLezLfhc+PLZMxkeUYgqALuTqC7p5ZcsQIX5cep 2seRymNf90rbfE5u/XOPd/Sla0v6Tsrxy6r5grAlAggggAACCLRFgABGWxhJxBTI3G/u5Nn4 Zd82sMDcvfScXLeGKG+U5rmw/RqmLivZd5pj4smOcxCg5sl4SN94XLtjmrxnzbdh79SHpuf1 1c292nVQl4msVox0KO0/EdVX1S+bVbk+39cXnMpp3u2jxnqnu4Hknqg5Q+askRKlvIvpR9X8 IjuPHEZPqABGKUg0ES4baWJPo1H7lRqSFwgEXMDtCXS3+PY3K0aHOR2L1DIjGD3/cUxPenzk henWL/5meXlGAAEEEEAAgfoC3IVEnZXxaKPAi0PZ/XxXDo+PS+QNdSFI9lAO/jctWU3d8SIn MjA8JGOvjsuQw8z2ZaVQd89I/HVPtIGTcnrCdpeLZ4dy/0FSBn5+RkI/bZRIWYqu3mjZrGgv CkkMDA3JgHnXlEapPsvKobqLh4wMixh38lD7Dh3vXrlF5X/wXVoGR0bz+cvxIRkx8q9Tfu3w ULIvqe1OFMpp1D2ryp5vQBmUoZGR5uvfyIf1CPhcwN1dMHyO04Xq4d8FZLJAAAEEEECgiwIE MLqITVYIIIAAAsES4AS6t+2Nf2/9yR0BBBBAAIF2CxDAaLco6SGAAAIIIFAU4AS6tx8F/Hvr T+4IIIAAAgi0W4AARrtFSQ8BBBBAAIGiACfQvf0o4N9bf3JHAAEEEECg3QIEMNotSnoIIIAA AggUBTiB7u1HAf/e+pM7AggggAAC7RYggNFuUdJDAAEEEECgKJC6fU5OvrMt4ZtJ2XpvHJcu C+DfZXCyQwABBBBAoMMCBDA6DEzyCCCAAALBFcg+3JXtR4cy8lpYJieGggvRo5rj3yN4skUA AQQQQKBDAgQwOgRLsggggAACCCCAAAIIIIAAAggg0D4BAhjtsyQlBBBAAAEEEEAAAQQQQAAB BBDokAABjA7BkiwCCCCAAAIIIIAAAggggAACCLRPgABG+yxJCQEEEEAAAQQQQAABBBBAAAEE OiRAAKNDsCSLAAIIIIAAAggggAACCCCAAALtEyCA0T5LUkIAAQQQQAABBBBAAAEEEEAAgQ4J EMDoECzJIoAAAggggAACCCCAAAIIIIBA+wQIYLTPkpQQQAABBBAoE9C+2ZVbnyckNH1RJl8d KFvHm84L4N95Y3JAAAEEEECgmwIEMLqpTV4IIIAAAgES0GT9rUGZ/VxVeW5D9JVIgOruhari 74VWoAwIIIAAAgi0U4AARjs1SQsBBBBAAIGSgO0Eeiomue0ZYQxGCacLL/DvAjJZIIAAAggg 0FUBAhhd5SYzBBBAAIHgCHAC3du2xr+3/uSOAAIIIIBA+wUIYLTflBQRQAABBBBQApxA9/Zj gH9v/ckdAQQQQACB9gsQwGi/KSkigAACCCCQF1h/61hhDozpmOifzaDSZQH8uwxOdggggAAC CHRYgABGh4FJHgEEEEAgAALZlNy4tiZpNcvFQGmiC00SH92Q7WL1I1cWZNyk0DQ1PmNUZj+c l9CQuZDnIwvgf2Q6dkQAAQQQQKCfBAhg9FNrUVYEEEAAAU8KpD49Lyff3qxZttCESOJh9erI naRs/K4U1qjegCVNCeDfFBMbIYAAAggg0PcCBDD6vgmpAAIIIIBAzwWyCTUCIyYZa/iFKlL5 CIzwlUUJSa5UVE0bltkP1AiME4VFiduX5eoXBzJwvLRJ7RfPNBl7c1GW5kKlbQK9fxv8S5C8 QAABBBBAAAHPChDA8GzTUDAEEEAAgX4XaH4OBjXhZHhQZr9socZTq+rWrNHirVmDvr+zW/P+ zvuzFAEEEEAAAQS8JUAAw1vtQWkQQAABBHwj0NpdMDbVhJ/nP2+h8hUTgwZ9/2q51vyr92cJ AggggAACCHhNgACG11qE8iCAAAII+ESgxRPoF5pks1nRXqiJQF+qT6CpbYdOjJRvF/T9q8ha 9K/anwUIIIAAAggg4DUBAhheaxHKgwACCCDgEwFOoHvbkPj31p/cEUAAAQQQaL8AAYz2m5Ii AggggAACSsB2Aj23IfpKBJWuCuDfVW4yQwABBBBAoAsCBDC6gEwWCCCAAALBFNC+3ZVbdxMS mr4ok68OBBOhh7XGv4f4ZI0AAggggEAHBAhgdACVJBFAAAEEEEAAAQQQQAABBBBAoL0CBDDa 60lqCCCAAAIIIIAAAggggAACCCDQAQECGB1AJUkEEEAAAQQQQAABBBBAAAEEEGivAAGM9nqS GgIIIIAAAggggAACCCCAAAIIdECAAEYHUEkSAQQQQAABBBBAAAEEEEAAAQTaK0AAo72epIYA AggggAACCCCAAAIIIIAAAh0QIIDRAVSSRAABBBBAAAEEEEAAAQQQQACB9goQwGivJ6khgAAC CCCAAAIIIIAAAggggEAHBAhgdACVJBFAAAEEEEAAAQQQQAABBBBAoL0CBDDa60lqCCCAAAII IIAAAggggAACCCDQAQECGB1AJUkEEEAAAQQQQAABBBBAAAEEEGivAAGM9nqSGgIIIIAAAggg gAACCCCAAAIIdECAAEYHUEkSAQQQQAABBBBAAAEEEEAAAQTaK0AAo72epIYAAggggAACCCCA AAIIIIAAAh0QIIDRAVSSRAABBBBAAAEEEEAAAQQQQACB9goQwGivJ6khgAACCCDQdYHN35+S 858kWso3dGVL4n8It7QPGyOAAAIIIIAAAr0UIIDRS33yRgABBBBAwLWAJmuhQbnwsMWEpmKS 256RgRZ3Y3MEEEAAAQQQQKBXAgQweiVPvggggAACCLRJQDtMSepQk9RnV2X2o+18qgv39uT8 aEV44iWxtiGA0SZ9kkEAAQQQQACBbgkQwOiWNPkggAACCCDQYYGDuxfk5Zk1lUtUks9XZVwF LCofpW06GMAwAip7Xyck9TQjAwPDMvrKuJw5HZIhScn6p3siA4MiWk6GXj8n4YmRyiLyHgEE EEAAAQQQcBQggOHIwkIEEEAAAQT6TyD16QU5+bYRwIhIPLchofwADE3uf3pDtg5DcvVfw3Jw +7ycfGdTZGpVXUISbfMlJJrs/nFWzr6v0q96hFWptqV8zbLk9IttLkNVxixAAAEEEEAAAZ8I EMDwSUNSDQQQQAABBKwAhm0ExouUnP/RSRU4CEv8+ZaE/ndbzk+fk+F/2pHV9ybbiKbJ+juD Mnu7uSTD01EJ/25eLr4x3twObIUAAggggAACgRcggBH4jwAACCCAAAJ+EbACGGoMxqUFGTdG YGgpuf6JMe7BPiqj/TU+/Pq6jE5eLSYcla1HSxL+xVD+vfY0JWv/96S8+7mZb0Rd4rLheImL uQXPCCCAAAIIIIBApQABjEoR3iOAAAIIINCnAvYARnUVVNBAXVaSD2pUr3S5RI2+eEuNvsgH KMKy8/2WTJ6oTDIrt0LD8m7+bimdDaZU5sx7BBBAAAEEEPCHAAEMf7QjtUAAAQQQQECsAEZY YveXJHRcoWgJufz6rJp9ooMBjBeHcv1Ho2KMvwjfjMvWeyHH1tAerslg6IJa18GyOObMQgQQ QAABBBDwgwABDD+0InVAAAEEEEBACVgBDNslGi8O1BwYLxfmwMipOTDyl5Vo6k4gFbdYdSOo giTnB0/lJ+iM3EnKxu9qzGvxzbocG59VORHAcMPNvggggAACCARVgABGUFueeiOAAAII+E6g LIBhu1wk+11KDp4NS+jVEcn+9ZYMv/6uyFxMciszbboDyKHcCI3KZXV5SOjKjsT/4Dw5aFbN kzGcnyeDAIbvPnxUCAEEEEAAgS4IEMDoAjJZIIAAAggg0A2BWgEMe96p0m1UVQBju3YA4+Dr NXl38oK69MR4hGV1d02ivxqxJ2V7bZ8DQySWyMnMRMUIj2cpufDjk2Lc5LWZERit5W8rCi8R QAABBBBAwLcCBDB827RUDAEEEEAgaAIHdy/IyzNGiMB2CUkFQmmbqToBjOx9OTV8RhJl+4Zk LxOX04Ubi5StMd6URnYU1yzc2ZN33wzJyEvq0paHm3L5tDEPh/loMALjCPmbKfOMAAIIIIAA Av4VIIDh37alZggggAACARHQnh5I6ruspD67KrMfGWECNYnn7qKM/7gCQA2KSK0Xt6kXwPhu W4797FzFziLLamTFxcqRFbatdj84JWc/Kg972FbbXjYIYBwxf1sGvEQAAQQQQAABHwoQwPBh o1IlBBBAAIEgCWiyFhqUC/nbk7ZQ73oBjKe7cuwnZ6sS20rrEq51FUlx68Td63JqxrgfScVj YkFivxeZffu6WtEggOEi/4pceYsAAggggAACPhIggOGjxqQqCCCAAALBFNj+/Sk590kzIx8s n3qTbRpbpe5elZMzRrCh8Iiu7Mnq3Gnzbf1nTY0G+VtK0j/kRAYHZfTEmIy/MiKHX1yW0cgN tW+DAIbawlX+9UvHWgQQQAABBBDoUwECGH3acBQbAQQQQACBjgtommTV38DAUFvuupr483k5 9S+bqtgRiau7pORv6VqvEm3Ov15WrEMAAQQQQAAB7wsQwPB+G1FCBBBAAAEE+l8gm5ALw6cK dyGZWJJMYl5qzAfa/3WlBggggAACCCDQEQECGB1hJVEEEEAAAQSCKqBJ4i+bEs+KjI6MiPZM kyEtJZdnLpfuahL6OC7xfw0FFYh6I4AAAggggMARBQhgHBGO3RBAAAEEEECgWkD7Zk0Gxy9U rzCXTCzK/oMFGVO3V+WBAAIIIIAAAgi0IkAAoxUttkUAAQQQQACB+gLGaIvBk2JM1Vn2mIjI 0vuXJTp9WoYIXpTR8AYBBBBAAAEEmhMggNGcE1shgAACCCCAQAsCxqUj2gtN7TGgJgA1/lrY mU0RQAABBBBAAAEHAQIYDigsQgABBBBAAAEEEEAAAQQQQAABbwkQwPBWe1AaBBBAAAEEEEAA AQQQQAABBBBwECCA4YDCIgQQQAABBBBAAAEEEEAAAQQQ8JYAAQxvtQelQQABBBBAAAEEEEAA AQQQQAABBwECGA4oLEIAAQQQQAABBBBAAAEEEEAAAW8JEMDwVntQGgQQQAABBBBAAAEEEEAA AQQQcBAggOGAwiIEEEAAAQQQQAABBBBAAAEEEPCWAAEMb7UHpUEAAQQQQAABBBBAAAEEEEAA AQcBAhgOKCxCAAEEEECgFYHDv1yV0d9cr7/LREgivzov0ZkZCf/9WP1tWYsAAggggAACCCBQ JUAAo4qEBQgggAACCLQmkLp9Tk6+s938ThOLsn9/QcYGmt+FLRFAAAEEEEAAgaALEMAI+ieA +iOAAAIIuBd4diiJb9IiP6Tk6uSs5EMZU0sS/8OkyAuV/IuMxP9rXS58uGblNbchuZWIEMOw SHiFAAIIIIAAAgjUEyCAUU+HdQgggAACCLQi8CIlF350UowwReROUjZ+N16+99P7cv4nZ2Qz vzQs8dyWhIoRDO2bXYn996EMFt/nNJFTb8xIaERtrAIku1/EZP0vuxJ/rAIlo2MSfvOiXP7H SRl6qTwL493B/2zK+n/GZOPBQWHlQ7XL9KTMzs1K5NehukET7TAlm59vysaXe3KQVnnJqIy9 Pi6Tvzwjw9n4/9/e/YW2ce0JHP8VbsGGLNjQBRtSWF9aaEIDlumF28A+1KEPVuhCFXyhCSks cvqSdiHYWwjO7UOu04Ws0gWv/ZI6LeQiB1qkQC5yIYvch4Xkgi9SwUEqJNgLCYwhAQlamIEU zp7Rn5mj0chxbPlGqr4Cx6OZOb/zOx8VEv165hxJfrUi0S9W5Ow7bmLhr+fu39mSlW9XpeyG c2zpOzIusbcGZfXrRVm8WctDj/nEB2dl+vT4tvnrAFL8Pi3JGylZqY1/WLeN6Md3TryvC0rr Ke1SlrGTZyX25kDoAJ47/9AonEQAAQQQQACBdgtQwGi3KPEQQAABBHpXwCxgXNUFjDOBAoaW KX55Qj9uUi1hJNdtOfmmW7Fw5FqkX6Z0ocF8uUWQxSN5GY6cMk97x9O3LEm8ZxQSnuTlwrtj cikQx2tQOYhL9uGCjB9snvtR/POUHP7QmCXS2NB7F9Vjy4SMTXbZv3NvUfqPfOzF3/ZgNCHW 2rQMhRRuZOuuzEwclSvbjr8aPTqfk8wnkcaudpl/YxDeIYAAAggggMC+CSheCCCAAAIIINAe gacFFRdR+i9tFbtaCI1ZmI9Wrrv3LK3b3j3W6pKKn4nrn5h33b3H/IlOxlTUOBdb3vDaq1Ku 4ZpIVCWuZ1Qun1PZW0sqZrRzr2Uf+00rR4+zSn+dr/UXU0u3cmrjoaUK+Ttq6XxjTqFj20v/ j3Nq7lxcRUfr/dd/R9T0Od33qG/mesSXQ2wb8q+2j56ZVYn5hJqejDQ4ujGaxrCX/AOUvEUA AQQQQACB/RGQ/QlLVAQQQAABBHpQ4JkFjJJamqx/OY+qO6UQIyOGV7yYXFAFr+Bgq8JqRiXT WVV6Wm9vq9SZelxR0YsZ45p/T/ayUYg4k1R++UQpez3pfclP3q+38X+X1pa863oGhn+hcrT3 /t0wG8txrw+ZSKgNI0H7fsYvsEwsNeSus1dJz1U7jM6pnGU01rHtYqahwNNYwGhP/hUK/kAA AQQQQACBfROggLFvtARGAAEEEOg5AaP4EJvPKeUWGNwf21bWelbNmV+yJxsLCJ6V7c/icAsY 0YvZwJd1707/oGTMnhhNqLC6SPVmS80asyxyxnd8s4Axd0sXKLziiN+NvZ5S8YmoWrhr+Sfd ozb074YpXK8XMPQMkZBBZC/WZlIE7e77xReRaVUIyd2Nbxf9+xqKMG3K3+2DFwIIIIAAAgjs nwBrYOh/HfJCAAEEEECgLQLGGhjbx4tI5mFOogdD7jJjnMuI+kI/NPKMl3Pvml5DYsq7a/by nLushvR7Z/SBLdLXvykzxk4oyft6DY7XamthPFqRl149braQyERMxg4OihwYkKHBYTk8elTG 33lbhg403CZt6V+H9NbgmEiKvXKyabHOVtedH/T4I9Xxz962ZO5dY12QxlQlf+OCxC/nJf7F NW8h0nblH+iKtwgggAACCCDQZgEKGG0GJRwCCCCAQA8LmMWHMIbRmCQ+PStxvSNI2O4hlSZG jNCdTELiOj8uS/+h8IU+Q273TiWLuoDxhr+YZ/HmBTkcu+Rdb3UwnS5I4n1/gdK29V9fRHRS FzC+2XkBo2Fh1MCYWo3BPN+u/M2YHCOAAAIIIIBA+wUoYLTflIgIIIAAAr0qYBQfRM+esC+P i/Ozngrxi579oGcx9Pm1gtZCRgy9TkPoTibBxg1fwCcTkjk9Io7us9XLcRwZGIro2RSHmmY5 SHlTb2maltW1omyWLZ2/G8WSle/yDeGylpLx2kSHdvXfaoZFveNW17e+vyTD4xcqt+mFUSVe 2dml3urZv9uV/7N74g4EEEAAAQQQ2IsABYy96NEWAQQQQAABU8AsPugtUFOn/VkK5m3bHpsx dlHACN0edNsOaxcfrcrxV4/JIZ13IizvX8qy+l9xOfZpdQtYs1BgFgB23b9Oo1WBop5+q+tm /27haNvHbvQ4ij9aMvzaIRmoFZTM9nvJv54nvxFAAAEEEEBgfwQoYOyPK1ERQAABBHpRwCw+ tKGAEdcxlsKKCUFb3e/My4flSu188NEQ8/byg7yeTbEihfKIzJw/6T3K4tzTj6EcqT6GktJr Y8Tqa2OYjfWjKi/VHlUxCxjShv7dbjZvTMlvT14T0Y+QKP0ISfDV8nqg/7nbGzL77kiwuZTv peXUkROyoq9E5guS+6RWYAq0341fU2ecQAABBBBAAIH2C+zf+qBERgABBBBAoEcEfrJUbi2n cneT3lad0fNJlVvX59zzawVlt9gZoypkq4187V4jhugdRcwYpZKlNgLbg9aFN9LT/hakeqeR 2etZZT3W24w8tVXpsc7vdlJNT/hbreqv8KphFxJjhw79rw2VSOeU9VNtmxKde6mYVXFvBxNR mcBGJHvrX+/SUsypBW+XlojK5AvKqu9EosewoS2T56O1Merr2tT6qT56pazbcw3jr/jft1Sp VNJt76glr23VoGEXEh1mb/n7eXCEAAIIIIAAAvsnwAyM9teEiIgAAggg0GMCxS+Py+GP3P+v 3/q13YKcwV0wWkfRV0aXxM7Hm9eu0NuOrP7phBz7bPs86rEj51Oy+nlMBuonHujZFa/vcCHQ 0Mc0dt9/q/FH5nN6lkSkaZeTesoS2K0k/+WUjH2kZ3A84xU5l5TVy/7sk+rtu8//Gd1xGQEE EEAAAQTaJbB/tREiI4AAAggg0BsC1q3Zhv/7r/+Obnq/tFafThBiYmW9mRthbc1z0YvZkAD+ KWstpeKjzf1XY0TV7LyeGfKwNrPCb6ZsYwZGZKI+0yEYJ1KZmdHc2g+0q/4fZlQkxGw6vVEN 3OJ6/GrO77h25M4UmW2YaeKPIXpmTmXzgakjgQi7yj8Qg7cIIIAAAgggsD8CzMDQ/6LjhQAC CCCAwK9NwHmyJZtPRIYP9olTdqRvYEAGDmy/DUr50Zbo7Un0fVpD72JSLpfF3bFEHFvkwKAM DXnzNZ7JtZv+nxn0OW5wylti6eEM1sY/8MrQznaBqfXxovN/jqFyKwIIIIAAAj0jQAGjZz5q BooAAggggAACCCCAAAIIIIBA9wpQwOjez47MEUAAAQQQQAABBBBAAAEEEOgZAQoYPfNRM1AE EEAAAQQQQAABBBBAAAEEuleAAkb3fnZkjgACCCCAAAIIIIAAAggggEDPCFDA6JmPmoEigAAC CCCAAAIIIIAAAggg0L0CFDC697MjcwQQQAABBBBAAAEEEEAAAQR6RoACRs981AwUAQQQQAAB BBBAAAEEEEAAge4VoIDRvZ8dmSOAAAIIIIAAAggggAACCCDQMwIUMHrmo2agCCCAAAIIIIAA AggggAACCHSvAAWM7v3syBwBBBBAAAEEEEAAAQQQQACBnhGggNEzHzUDRQABBBBAAAEEEEAA AQQQQKB7BShgdO9nR+YIIIAAAggggAACCCCAAAII9IwABYye+agZKAIIIIDA31Og/KgoxfuW 2LrTwcFhGT44IkMDjhR/tKTvlREZGer7e6ZDXwgggAACCCCAQNcLUMDo+o+QASCAAAIIdJJA +d6KzJw+Ltd+2C6rabGeJmToN9vdwzUEEEAAAQQQQAABU4AChqnBMQIIIIAAAnsQ2Lw5I7+N XTEiRCQ6MSwr360Y59zDmOTslESYhBFw4S0CCCCAAAIIINBagAJGaxuuIIAAAgggsHOBX4oy 9fJhuVZpEZHk3ZSc/P1Itf0v+tGRv1yRw7ELtXgxKegCxiEKGDv35U4EEEAAAQQQ6HkBChg9 /58AAAgggAAC7RAo/21RBn/3cSXU3GpJZt8ZaAqb/+/jMvZv7myM7WdgbP41LctfJSW1tlmN oR9HGZ4cl1NnTkns3Yg01T2cLVn5dlXK7t2OLX1HxiX21qCsfr0oizfvyKZl6QAjcuKDszJ9 ery5fbWXyp/OVlHS36Yl9V2tnQzLyO8Oyfg/H5XBck6SX61I9IsVOfvOkNHKPNTFmr+uSPqb Fbmj1/uov4bfOCrRP8Qk+vtDof07P65K8n+3pL82ONsRGXvvpETcbn7ektWbSVn+y6rk9Loi 7lii75+VmX8dl4HAYzh7z7+eMb8RQAABBBBAoNMEKGB02idCPggggAACXSlQ/PKEHP4orXOP Su6njEQOhAzj57yc+IcxScusbDydk5HAl295kpcL747JpW3Xz4hL9uGCjB/0yxjOvUXpP1It noT02nhqNCHW2nTo+hvFP0/J4Q+rc0gaGzW+i14tSObMocaT+p3zYFU+fv1YbRZK0+XaCZ3/ fZ3/a37+uqVci/TLVGDcsesFWTySl+HIqdBg07csSbznF1L2mn9oJ5xEAAEEEEAAgY4RoIDR MR8FiSCAAAIIdLOA84MuIkSqRYToxayk/rj9TIemsZbzcnxwTPzVMqKSuH5Wxo8MS+lhThb/ ZUoXPuqvqGQfZ2T8ldp7Xfi49Pmi3Pn+mqw0FAEiMn1uRK58r6cz/OBHji8XZOmDQAHiyaqM /eMxyVdCxmTp1gUZjwyL82RT7nyTkKn/8HuP6QJGKljAeJCWl14/UU9Q/67mf/T1QSndvyOL H84YYxNJ3bclZhQxtnTuF27c1e1Kcu1Lvy8joEQnYyJ6dkh9JLHlDUl9UHtMZ6/5mx1xjAAC CCCAAAKdKaB4IYAAAggggMDeBR5nVURE6b/taz9RNXc1qTK3syq3XlCWVVL201bd2Cp1pt5O VPRiRpWa7rVV9nLMj38mqexAuI3luH99IqE2jBvs+xk/v4mlprb2etJrm7wfCKzfltaWvOt6 BkbghpJKjPr5R86nmvN/WlKp8xEvhowmlBWIUnn7tKDinmEt5uSCKjyu32yrwmpGJdPZhj72 ln89Nr8RQAABBBBAoJMFpJOTIzcEEEAAAQS6ScC6nfC/oAe/hNfez15t/OJdGV/JKH7oL/al loO21KwXN6ZyRoHCbVK4Xi9gRFU2JEj2Yq2AMNlc/DALAHO3dIGiqYCilL2eUvGJqFq4Gyg9 FP3ih4wubJN/SS1M+IWOpfXAANxB2I0FDD2bpanY4t4WfO0p/2Aw3iOAAAIIIIBARwrwCEln TowhKwQQQACBbhV4UpTlr5OSXL4UeJzDGFBgHQrn3jW9hsWUd8Ps5Tl3WQjp987oA1ukr39T Zj7z16hI6scwThqPYXhrQEwkxV452bRY5rbXH63IS68eN3uUyERMxg4OihwYkKHBYTk8elTG 33lbhgLre2ze0NvHnqxuH7uQt+XsqLm+RUNIMcca+iiLuZvLuYyoL6KNAVq920P+rUJyHgEE EEAAAQQ6S4ACRmd9HmSDAAIIIPBrEnAcKZfLYm1ZUlxLyYmPLnmjm07rBSjfry5A6fy4LP2H wheq9BqEHCSLuoDxhl8s8AoUk7qA8c1zFjB0/OLNC3qrVz/HkC4rp6bTBZ27v4aG16++Orem d2B5a6BVU3H+dkX6fzdTuR66loZRwHAX8Uyd9vtpGbR2Ybf5Pysu1xFAAAEEEECgMwQoYHTG 50AWCCCAAAJdLpC/cUUWv7ck9umcRI1ZEQ3D0gtdjumFLt2FMiPns5L7fLxyuaGAMZmQzOkR cX5paNnwxtGFkYGhiJ4N0bglqVdI2M0MjHoP5U29JWtaVteKslm2xPnZvWDJynfV5T3rt2Ut JeO1DUD8HVhEgkWV+v3eb12sealWrAndzcQsYIQtFuoFanGwi/xbROI0AggggAACCHSaQEc+ 2EJSCCCAAAIIdJWArZL1tR0mmteX8IdiLHZpLKRpG2tIROdz/u3PeeStgdEih22vP8wq/bCG mr4eXKCzloRehNNcRNRcv6K0tuCt/fGs/HPz/kKkibWQhTqMRTz1DI2dC+wh/513wp0IIIAA Aggg8CIFmIHRaRUl8kEAAQQQ6EIBR5b/0C+nvq2m3nIWgrHVZ/RyTjL/rvctcV961sHMy4el uorE9rMYyg/yejbEihTKIzJz/qQM/KYawv1z88aUXotCr5GhHyFR+hGS4Gu76849/RjLkepj LMEtTr04xuwJXcCQ+Ju1x1fKd/UWsEe97U2X8iWJjzY/RlL+YVkGI/VHZaJyp5SRt4O3GTMw 4voRkqUdPkKyp/y9AXKAAAIIIIAAAh0t8CKrJ/SNAAIIIIDAr0NAz8CY9HfXEImp1JrVsG2q tZ5t2B7UnMHgGmykp71ZDPofDmr2elZZj/UuHU9tVXpsqdztpJquz/Ko7EQSMXYhsZVVzKkF L4eIyuT11q31CQ46xsZ6TiXPR2t96Otr+vpPvr45C8TtP5HO6eu1XUL0jiSlYmP+mcBGJN7s jkpueibHvM6/ZCvb1j8lS2XnG8en17fwO9f7jGzkcyq3pn/uJiszQdwc3K1Wczrvynmdb0nH 2bBCdi7Rkfaav5EMhwgggAACCCDQoQLMwOjo8hLJIYAAAgh0h4CegRHVMzC+a842OhEVS8+Y aFhBInSRTUdW/3RCjn220hwk5EzkfEpWP4+JO4HB3NnDvDUyn5PcJ5GW18VcK+OBXpvi9frs CDNKyHHo7iA6//88Jcc+TYc0aDylt0aV1B/HvV1SWuXf2Kr2bnRJ7Hzca+vds+f8vUgcIIAA AggggECnCnRoYYW0EEAAAQQQ6CqBOxcj/gyKUXM2hnkcqcxsCJ9DUB2utZZS8Zbto2p2Pqly DwMRHmaUfhjF778+CyK9UQ3a4nr8qr/ehjmDITJRn6kRjPns/Ev5TNNMEf1voGpuE9N6Zkhg 6oaboVVdf8O7r35/yG9d/KiOKfBnu/IPhOUtAggggAACCHSQADMwOrWyRF4IIIAAAt0lsJWX 5f8pysChcYm+NSTlrU3ZfFTWu4k4YuuRDA6MyKHXhqTPWLNiuwE6T7Zk84nI8ME+ccqO9A0M yMABf8vU7dru9lr50Zbo7U10PzqC3gXF3QLW3fFEHD2CA4MyNBRcsKJ1T055S28fa8vgPw2L 83+WyNCwDA10T/6tR8YVBBBAAAEEEHhRAhQwXpQ8/SKAAAIIIIAAAggggAACCCCAwI4FKGDs mIobEUAAAQQQQAABBBBAAAEEEEDgRQlQwHhR8vSLAAIIIIAAAggggAACCCCAAAI7FqCAsWMq bkQAAQQQQAABBBBAAAEEEEAAgRclQAHjRcnTLwIIIIAAAggggAACCCCAAAII7FiAAsaOqbgR AQQQQAABBBBAAAEEEEAAAQRelAAFjBclT78IIIAAAggggAACCCCAAAIIILBjgf8Hfs0kSCBg eBQAAAAASUVORK5CYIJQSwMECgAAAAAAAAAhAInvrhzvFAAA7xQAABcAAABkb2NQcm9wcy90 aHVtYm5haWwuanBlZ//Y/+AAEEpGSUYAAQEAAEgASAAA/+EAgEV4aWYAAE1NACoAAAAIAAQB GgAFAAAAAQAAAD4BGwAFAAAAAQAAAEYBKAADAAAAAQACAACHaQAEAAAAAQAAAE4AAAAAAAAA SAAAAAEAAABIAAAAAQADoAEAAwAAAAEAAQAAoAIABAAAAAEAAAEAoAMABAAAAAEAAACQAAAA AP/tADhQaG90b3Nob3AgMy4wADhCSU0EBAAAAAAAADhCSU0EJQAAAAAAENQdjNmPALIE6YAJ mOz4Qn7/wAARCACQAQADASIAAhEBAxEB/8QAHwAAAQUBAQEBAQEAAAAAAAAAAAECAwQFBgcI CQoL/8QAtRAAAgEDAwIEAwUFBAQAAAF9AQIDAAQRBRIhMUEGE1FhByJxFDKBkaEII0KxwRVS 0fAkM2JyggkKFhcYGRolJicoKSo0NTY3ODk6Q0RFRkdISUpTVFVWV1hZWmNkZWZnaGlqc3R1 dnd4eXqDhIWGh4iJipKTlJWWl5iZmqKjpKWmp6ipqrKztLW2t7i5usLDxMXGx8jJytLT1NXW 19jZ2uHi4+Tl5ufo6erx8vP09fb3+Pn6/8QAHwEAAwEBAQEBAQEBAQAAAAAAAAECAwQFBgcI CQoL/8QAtREAAgECBAQDBAcFBAQAAQJ3AAECAxEEBSExBhJBUQdhcRMiMoEIFEKRobHBCSMz UvAVYnLRChYkNOEl8RcYGRomJygpKjU2Nzg5OkNERUZHSElKU1RVVldYWVpjZGVmZ2hpanN0 dXZ3eHl6goOEhYaHiImKkpOUlZaXmJmaoqOkpaanqKmqsrO0tba3uLm6wsPExcbHyMnK0tPU 1dbX2Nna4uPk5ebn6Onq8vP09fb3+Pn6/9sAQwACAgICAgIDAgIDBQMDAwUGBQUFBQYIBgYG BgYICggICAgICAoKCgoKCgoKDAwMDAwMDg4ODg4PDw8PDw8PDw8P/9sAQwECAgIEBAQHBAQH EAsJCxAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQEBAQ /90ABAAQ/9oADAMBAAIRAxEAPwD9/KKKKACiiigAooooAKKKKACiiigAooooAKKKKACiiigA ooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKAP/0P38ooooAKKKKACiiigAooooAKKK KACiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooA//R/fyiiigA ooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooAKKK KACiiigD/9L9/KKKKACiiigAooooAKK4P4p+ItQ8IfDHxf4t0koL7RNH1C+t/MXcnm21u8qb lyMjcoyM814p4G+Ousj4D6n4y8dW8Vx4y8Ks2m6haWqGNLvVW8sWSwISxUX4nt3iGTjzgM8U AfU9FfNHwU+Luuap4O8Gad8UZY7nxh4j1DXtNaWwg8qzabRbq6jkIUuxRTHB8vJyeuM1Prnx bl1Txt4LsvCT3Is/+El1rRdTtzHGGuZNM0u8mMaFz93zo0ZW3LnHOBmgD6Qor5O8F/HzWvG3 gbQfFOuaTfeDJb/xNHpA8y3trmO8Bv57URJtuXaMERASyHBRiSgdea9S0b4x6Z4i16fTND8P 6ze6XBdXdj/bMVqjac11Y71njUiTzyFkjeLzPJ8ppFKBycZAPX6K8Kh+P3hu1bW08X6Jq/hJ 9E0efX3XU7eIGfTbY4nmi+zSz8xEqHjfbINy/LzXM+Ofj/4i8NeHfDuu6f8AD3Wmk1rXbHSm tbkWSzCC7K4ljKXhjJcNtjG/hwQ4UckA+m6K4bxf4+0vwP4PHjHXrS6RHa0hSzRUe6a5vpY7 eC3A3+X5jTSqmTIEBOS4X5q5jVfjDa6PZaJHdeGNZbxB4ge5S10NIrdtQK2n+vldvtH2ZIkB UmQzhTvRQSzBSAewUV4Qv7QPha907RZvDuj6trer621+iaRa28aX8DaVKIL77StxLFFF9nmK xMWlwzsoTfuBrsdI+J2havf3+lC1vbK80zSLLWriG6g8mSO3vjcLGjKTkSqbaQOhHHHJzQB6 NRXgtv8AtCeF9S1fwtoPh/RdY1m/8WaPaa/bx2ttHtg027YKJriSSVEj8ssNy7ixz8gcggcI vx/1zT9Q8BaVpeiah4yt/Fmqa9ZT3sNva2rx/wBmS3SiNInuUGYzBgsfvxrv++dlAH1rRXkk Hxp8HXGjWerxrdb77X38NJa+UPtK6jFcvbSIybsBUEbzFs/6kbxngVqeOviXpvgjUNJ0JNLv 9f1vXBcPaadpkcb3Dw2gUzzMZpIYkjj3opLyDLOqqCzAUAej0V8e+Av2kYl8J6Vea/p2ta7r HizxF4nsdJsbaxVLzytMv7gJBNHK0KwmG3QAtKygbDubOCfYNQ+Mllo3iPTtD13wzrWm2eqX sOmw6pPbwiy+23C5iiYrM0w3N+7EnleUXwofkEgHsVFfn7Y/H74j6VYeN/iTe+HPEOoi08Vw eHrTTJRpiWFvbSajBZZQRziY3ABbczSFTJIo+4CU+8tJvptT0y11C4sptOkuI1dra52edCWG dknlPIm4dDtdh6E0AaFFFFABRRRQAUUUUAf/0/38ooooAKKKKACiiigDi/iT4YuvG3w68U+D LGZLe517Sr7T4pZASkb3UDxKzAc4BbJxzivE/wDhny7b4qeHPGp1WNdCsrOxk1XTBGcXusaR G8OnXYboFjSZy4PJaK3P8FfUFFAHytb/AAU8b+HNI8IX3hm+06617wlr+v6osV2ZorS5tdcn vHaIyRo8kckaXKEMEYFkK4w24SeCfgf400XVfD2u+JtXsLu907xXrniO7+yxSxROmrWdzbpD ErliDG065LMcqpPU4r6looA+VtI+Cfje08N6V4Mvr3Tjp3hzxbHr9jcRmYzT2h1Ce+eKaMoF SVRKEUq7K2Cx252jS8L/AA1+LvhHS9V+Heh6xpVn4WuJ9Yns9TVZ21e2GqST3EaCE4g3288+ RKZDvRADGGJYeseJPib4R8K6z/wj2r3Eg1FrQXaQxwvI0ivMtvGiFQQZZJXComdx5PQEivpn xS8LamNXYNNajQp7a2vPtCCIxTXWzYjBmyCPMXORjn5SaAPnH4cfs8eOvBniKbxbNB4bjv18 MXOhlEN7eDUbuaW3l+1X81xiR1k8lgyYZl3H55M8WtP/AGfvHth4Vu7fTrnStKuLfxDpWvaT ocE11Lo1iNNaMy28csiCWNLkhmIjhWOJiNsZ+Yt77B8Z/hXcybIfE1mRshcOXxGRcPIkeJCA pJMT8A5AUsQF5psvxp+FsA8y58SWcMbEhHaUBZNuMlPUAsoz0JIAzkZAL3jjRPEHiXwHNoi6 Xo2q317HEl3Y6p5kmmzqSPOjLBGfHXYxjbBwStfMNx+y/wCJJtJ8J6hqv9j+J9U8M3GsCPSd Xa5uNMi07V5IpFtILqRZbgG1MEYileNsrvTYildn1PffE34faZq0ehah4hsre/lVHWJ5lBKy AFG64w25cH/aHqKy3+M3wsVLdk8TWcxujEI1ifzXYzTi2T5EBbmVgp446nABNAHktn8H/G3h G88LeL/h1p3hvR9Y0iz1TTr3SIhPb6VJb6ncRXRkhmjjaRZkkgQszQ4l3PkIdpGh4g+HPxif xHe+KvDupaH/AGj4m8PWmi6s1zDcrDbT2clzIlzaRKzmVf8AS5FMMkifdQ+Z94V6fb/F74aX IiCeIrMSyvbxCMyqX8y6/wBUmBnlunGRnjNanib4g+FPCek3WsanepJFZSRwypARLIskr7FU qp+UluPmxQB5l8MPg/rHgTWvDep32oQXUeieC9L8MyLGrAvcWDlnmXPGxs8A8+tczafBXxv4 c0vwRc+Hr3TrvV/CGu67qTR3Rmitp7bW5L0lA6I7rJEtyh+4VYqV4BDD0iD43+CZ9F1DxCPt SWGn+QfNeEqsy3MqwxNGScYZ2UfMVwCCcCtRPi/8OpNatPD663bm+vHeFUDqwSeNo08pyCQr lpQqjoWBUHIxQB4roHw/u7j9qrxHrcLP/wAIvo9tbawIGiZI/wDhJNSt2sZZY3PyvssLdNwH 3XnJJyxx6b8QfBXjS68ceHPiT8PZtPbVdFs9Q0ye01NpY7e4tNQa3lLLLCsjpJFLaxkDYQyl lO04Ya918X/B9l4gm8L3f2uLUILlLZ0NtIQvmtEkcmVBHlu88SKeuXHAHNaOhfEnQPEV/pFh p0N3/wATyxfULWSS3ZIzDEUVw5blHUyKCrAckDrQB494B+B/i/w5qfg/WPEes2V/eaFqvijU 717aGSFJj4gnlmRYkZnKCPzMEMx6cE1xes/s4eN9a+JEXinULzSb+G18VW3iCHU7pruXVEso JkkXTYoj+4gSJQUV0Yh1HzRh2Z6+1aKAPmjU/gn4jm+HPi/wtYajaDU9Z8Tt4ksnlWTyFaPU odRhhm2/MAxhCOyg4BJAOMH6G0htXfS7V9fjgh1ExqbhLZ2kgWTHzCN3VGZQehKqT6CtGigA ooooAKKKKACiiigD/9T9/KKKKACiiigDM1DWtH0khdUvoLNmjlmAmkVCYoAGlcBiCVQEFj0U EZqUanpxmltxdRebBIkUi7xlJJAGRWGeGYMCB1IIryf4k/BbSfiZqK6pqWrXtlPDZzWUIgKe XHHdJLFc5R1bd50cgVs8fIpHI55L/hmjw39nuFTWLyC5vFkSaaARwlkcxsI1VRhYoyn7pBwg YgUAfSdULfVdLvLy6060vIZ7ux2C4hSRWkh3jK+YoJK7hyMgZHSvn66/Zv0a41FruDxBqNnb rE8EEFuY4lhhluvPkjUquShjLwKDkojttIO3G14i+Blh4h8SXfiBtaurJLu4huGtbdUWHzIk 8szbTnFztwFnGGUKo5xmgD3aopZ4YSgmkVDK2xNxA3MQTgepwDxXza37M3h2G1W20nWr3Tyz wPM8YjLSmBIlUklcht0ZkDAgh3c8hiDDffs3WxvraXSfEF1aWotvsc0ahVYoYnDShkA3ytKR JmTOCz+oAAPT/GHgL4V394fEfjKxs47yeWFFvZ5TBMJFUpCkc4ZWUjcSiow+f5wN4DVqQfDb wdb2moWAs5JbfVZYZ7lJrm4mEktuUKSHzJGw+UUswwWIBbNcrP8ACq9v/Cn/AAi2p6/LKYb/ AO3W96kKx3cDuzSO0bg4R/MkfYygBUIQhl3BuNh/Zp0ZYJftHiC+nu5JJJFmZYhtEolDxiNV CeXIZMyoAFfHQDigD0KD4V/C3VhbatZ6bFcIjRSQyxTylN1uHRGG18Eqruuf7rMp4JFT33w/ +F+kol5qVlbWaJEkCyTTNGojt1R1XLOB8iwK30TJ4zXllp+y94fs4khj12/KI1owTeyJtto/ L8vZEyKI/wCNFUAxyfMp7VpaZ+zxYJ4UttB1rWp7i6t9Vh1lZoUSNFu7eExRHy2DBwDh3358 xh8/BIoA9RvPhh4C1BDHe6PFOjRxxFWZypjj8kKpG7BA8iLr12jPfObafBn4bWBV7LR/JdY4 Yg6Tzh9ttMJ4Tu8zO5JACrZ3AfLnbxXnsv7NmgagpGua1e6kUDJCZRH+5Tyo4VC4HULEuWPL Eknrit3wt8FF8J+Jj4qttdnv7yS5uJm+1xI6pHdeSJRGqbQsjLAq+Z1wzEgk0AV7z4SfCHXL /wAPyaPcpY3Wg3ENxaCxu13E4eRFIYuSGVZGGMEgMQcA49MutA8G+KNO1LS/Jgnt71mivRbP 5TyNHIyukjwlXyHVlYE9QwPevFtQ/Zi8NXd3rF9a6ze2susfaQwCwukYnlDoFUp0hjMsUfOQ kz852kPj/Zn8PQXtvfQ6zeCSOeG4lY7VknkhkncGSSPY7Eef8uSdpGcHcRQB7dq1v4QksoPD OrtapbI1qYrWR1jAaKTfbBUyD9+HKDodhHIBFcza/Cn4azXMOu2Omoxe5bUI3hnl8p5ZpEuC +1X2MjSoku0gpuAYDPNcX4m/Z28K+I9J0DSUv7rTh4esfscElt5YdnXaYrh9ynMsbB2U9Myu SDmorT9nDwhbzXJnu7m6hmnmlSKVt6os08MxTDEjAWHyQQF/csUOeDQB6GPhT4F/tFtWNhI1 013JfF2urhv9IldJGbBkIxvijYJjarRoQAUXF3wv4Z8EeGporPw4sa3FrbtZoGuHuJkghk8x o8yu74V5gW7/ADKDwFA8u0b9nyw8PalFrGna3c3N5ay2s0DXubhEa2t2tlym4K21XLR8Ao2O SOKl8V/s8aB4mu9V1GHV77TrzWXuGnkiYONty1uxCI+VQqbZSrIFbPJJxigD6DqjqWp6bo1j NqmsXcVjZ267pZ55FiijXplnYhQPcmvBp/2cfDM7Suur6hBJIZZBJFIqSRzTyRPJMjAZWVlj 8sv12sRWt4c+B+meHtN1fSo9UuJbfWdKOlyrjgBjJmVfMMhDDzSFUEIB/CeMAHr66zpD6dDq 6XsLWNx5flziRTE/nMFj2uDg72YBcHkkYqS91LT9N+z/ANoXMdubqVYId7BTJK+dqLnqxweB zgH0rweX9njQrq+uJtQ1OW8s7q4aZ7WaGJ41BminKoWBZd7RYkOTuU7QFVVAy5/2YfDd3C0N 3rl/KUjCQy/uxPGwtZLUP5m3czIrnyzwUGVHBNAH0rJPDCY1lkVDK2xAxA3NgnA9TgE49qlr 5xb9m3w21v5I1e9haSNopjE2PMRreO3CHfvbYgRmRSx2l2xwa2Ph58HrrwH4/wBb8TR6it3p l9brb2kDqfNto1KERKQQojUqcLg8bcbcNvAPdqKKKACiiigD/9X9/KKKKACiiigAooooAKKK KACiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKAP/1v38 ooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooAKKK KACiiigAooooA//X/fyiiigAooooAKKKKACiiigAooooAKKKKACiiigAooooAKKKKACiiigA ooooAKKKKACiiigAooooAKKKKACiiigD/9lQSwMECgAAAAAAAAAhAMZ4jd6gAwMAoAMDABQA AABwcHQvbWVkaWEvaW1hZ2U0LnBuZ4lQTkcNChoKAAAADUlIRFIAAAXIAAACqggGAAAADqy9 pAAADBhpQ0NQSUNDIFByb2ZpbGUAAEiJlVcHVFNJF55XUghJKIEISAm9CdKr9C4ISAcbIQkQ SgyBoGJHFhVcu4hgRVdAbGsBZFERUSyIgL0uqKisrIsFGyr/JAF03b+c/54zb7535947371v 5p0ZABTs2EJhBqoIQKYgRxQR4M2Ki09gkXoAAsiADtSBLZuTLfQKDw8BUEb7v8u7m9AayjUL Sax/jv9XUeLysjkAIOEQJ3GzOZkQHwMA1+AIRTkAEDqgXn9OjlCC30KsIoIEASCSJThFhjUl OEmGraQ2URE+EPsCQKay2aIUAOiS+KxcTgqMQxdCbCXg8gUQ74TYnZPK5kLcDfGEzMzZECtQ ITZJ+i5Oyt9iJo3FZLNTxrAsF6mQffnZwgz2vP+zHP9bMjPEo3PowUZNFQVGSHKGdatKnx0s wZA70ihICg2DWBniC3yu1F6C76aKA6NH7Ps52T6wZoAJAAq4bN9giGEtUaY4PdprBNuwRVJf aI+G8nOCokZwkmh2xEh8NFeQERoyEmdFKi9oFG/nZftFjtok8/2DIIYrDT2WlxoVK+OJtuTy Y0IhpkPckZ0eGTzi+zAv1Sd01EYkjpBwNoD4bbLIP0Jmg6llZo/mhVly2NK51CD2zEmNCpT5 YnG87LiQUQ5cnq+fjAPG5QmiR7hhcHV5R4z4Fgozwkfsse28jIAIWZ2xw9m5kaO+XTlwgcnq gD1KY08Ol/HH3glzwqNk3HAchAAf4AtYQAxbEpgN0gC/vb+uH77JRvwBG4hACuABixHNqEes dEQAn5EgD/wJEQ9kj/l5S0d5IBfqv4xpZU8LkCwdzZV6pIOnEGfiGrg77oqHwKcnbDa4E+48 6sdSGJ2V6Ef0JQYS/YmmYzw4kHUGbCLA/ze6YNjzYHYSLoLRHL7FIzwldBIeEW4Qugl3QAx4 Io0yYjWLny/6gTkLTAHdMJr/SHZJMGbfqA1uBFnb4964G+QPueNMXANY4HYwEy/cA+ZmD7Xf MxSPcftWyx/nk7D+Pp8RPd2Mbj/CImnsy/iMWf0Yxee7GnFhH/yjJbYCO4q1Ymewi1gjVgdY 2GmsHmvDTkrw2Ep4Il0Jo7NFSLmlwzj8URurGqs+q8//mJ09wkAk/d4ghzc3R7IhfGYL54n4 Kak5LC/4R+axggQcywksGytrRwAk/3fZ7+MNU/rfRpiXvumymgBwLoLKlG86tj4AJ54CwHj3 Taf/Gm6vtQCc7OCIRbkyHS55EAAFKMCdoQ60gT4wgTnZAAfgCjyBH5gMwkAUiAczYdVTQSZk PQcsAEtBISgGa8EmUAZ2gN2gChwAR0AdaARnwHlwGXSAG+AeXBu94AUYAO/AEIIgJISGMBB1 RAcxRMwRG8QJcUf8kBAkAolHEpEURICIkQXIMqQYWY+UIbuQauRX5ARyBrmIdCJ3kB6kD3mN fEIxlIqqoFqoEToRdUK90GA0Cp2BpqBZaB5agK5GS9EKdD9ai55BL6M30G70BTqIAUweY2K6 mAXmhPlgYVgCloyJsEVYEVaCVWAHsQb4ra9h3Vg/9hEn4gychVvA9RmIR+McPAtfhK/Cy/Aq vBZvwa/hPfgA/pVAI2gSzAkuhCBCHCGFMIdQSCgh7CUcJ5yDe6eX8I5IJDKJxkRHuDfjiWnE +cRVxG3EQ8QmYifxMXGQRCKpk8xJbqQwEpuUQyokbSHtJ50mdZF6SR/I8mQdsg3Zn5xAFpDz ySXkfeRT5C7yM/KQnKKcoZyLXJgcV26e3Bq5PXINclfleuWGKEoUY4obJYqSRllKKaUcpJyj 3Ke8kZeX15N3lp8qz5dfIl8qf1j+gnyP/EeqMtWM6kOdThVTV1MrqU3UO9Q3NBrNiOZJS6Dl 0FbTqmlnaQ9pH+gMuiU9iM6lL6aX02vpXfSXCnIKhgpeCjMV8hRKFI4qXFXoV5RTNFL0UWQr LlIsVzyheEtxUImhZK0UppSptEppn9JFpefKJGUjZT9lrnKB8m7ls8qPGRhDn+HD4DCWMfYw zjF6VYgqxipBKmkqxSoHVNpVBlSVVe1UY1TnqparnlTtZmJMI2YQM4O5hnmEeZP5aZzWOK9x vHErxx0c1zXuvdp4NU81nlqR2iG1G2qf1Fnqfurp6uvU69QfaOAaZhpTNeZobNc4p9E/XmW8 63jO+KLxR8bf1UQ1zTQjNOdr7tZs0xzU0tYK0BJqbdE6q9WvzdT21E7T3qh9SrtPh6HjrsPX 2ahzWucPlirLi5XBKmW1sAZ0NXUDdcW6u3TbdYf0jPWi9fL1Duk90KfoO+kn62/Ub9YfMNAx mGKwwKDG4K6hnKGTYarhZsNWw/dGxkaxRsuN6oyeG6sZBxnnGdcY3zehmXiYZJlUmFw3JZo6 maabbjPtMEPN7M1SzcrNrpqj5g7mfPNt5p0TCBOcJwgmVEy4ZUG18LLItaix6LFkWoZY5lvW Wb6caDAxYeK6ia0Tv1rZW2VY7bG6Z61sPdk637rB+rWNmQ3Hptzmui3N1t92sW297Ss7czue 3Xa72/YM+yn2y+2b7b84ODqIHA469DkaOCY6bnW85aTiFO60yumCM8HZ23mxc6PzRxcHlxyX Iy5/uVq4prvuc30+yXgSb9KeSY/d9NzYbrvcut1Z7onuO927PXQ92B4VHo889T25nns9n3mZ eqV57fd66W3lLfI+7v3ex8VnoU+TL+Yb4Fvk2+6n7BftV+b30F/PP8W/xn8gwD5gfkBTICEw OHBd4K0grSBOUHXQwGTHyQsntwRTgyODy4IfhZiFiEIapqBTJk/ZMOV+qGGoILQuDIQFhW0I exBuHJ4V/ttU4tTwqeVTn0ZYRyyIaI1kRM6K3Bf5Lso7ak3UvWiTaHF0c4xCzPSY6pj3sb6x 62O74ybGLYy7HK8Rz4+vTyAlxCTsTRic5jdt07Te6fbTC6ffnGE8Y+6MizM1ZmbMPDlLYRZ7 1tFEQmJs4r7Ez+wwdgV7MCkoaWvSAMeHs5nzguvJ3cjt47nx1vOeJbslr09+nuKWsiGlL9Uj tSS1n+/DL+O/SgtM25H2Pj0svTJ9OCM241AmOTMx84RAWZAuaJmtPXvu7E6hubBQ2J3lkrUp a0AULNqbjWTPyK7PUYFHnTaxifgncU+ue2557oc5MXOOzlWaK5jbNs9s3sp5z/L8836Zj8/n zG9eoLtg6YKehV4Ldy1CFiUtal6sv7hgce+SgCVVSylL05deybfKX5//dlnssoYCrYIlBY9/ CvipppBeKCq8tdx1+Y4V+Ar+ivaVtiu3rPxaxC26VGxVXFL8eRVn1aWfrX8u/Xl4dfLq9jUO a7avJa4VrL25zmNd1Xql9XnrH2+YsqF2I2tj0ca3m2ZtulhiV7JjM2WzeHN3aUhp/RaDLWu3 fC5LLbtR7l1+aKvm1pVb32/jbuva7rn94A6tHcU7Pu3k77y9K2BXbYVRRclu4u7c3U/3xOxp /cXpl+q9GnuL936pFFR2V0VUtVQ7Vlfv09y3pgatEdf07Z++v+OA74H6gxYHdx1iHio+DA6L D//xa+KvN48EH2k+6nT04DHDY1uPM44X1SK182oH6lLruuvj6ztPTD7R3ODacPw3y98qG3Ub y0+qnlxzinKq4NTw6bzTg03Cpv4zKWceN89qvnc27uz1lqkt7eeCz10473/+bKtX6+kLbhca L7pcPHHJ6VLdZYfLtW32bcev2F853u7QXnvV8Wp9h3NHQ+ekzlNdHl1nrvleO3896PrlG6E3 Om9G37x9a/qt7tvc28/vZNx5dTf37tC9JfcJ94seKD4oeaj5sOJ3098PdTt0n+zx7Wl7FPno 3mPO4xdPsp987i14Snta8kznWfVzm+eNff59HX9M+6P3hfDFUH/hn0p/bn1p8vLYX55/tQ3E DfS+Er0afr3qjfqbyrd2b5sHwwcfvst8N/S+6IP6h6qPTh9bP8V+ejY05zPpc+kX0y8NX4O/ 3h/OHB4WskVs6VEAgw1NTgbgdSUAtHh4doD3OApddv+SCiK7M0oR+E9YdkeTigMAlZ4ARC8B IASeUbbDZggxFfaS43eUJ0BtbcfaiGQn29rIYlHhLYbwYXj4jRYApAYAvoiGh4e2DQ9/2QPJ 3gGgKUt275MIEZ7xd0rPOVf0l4Mf5V/IUWw9wOUMUgAAAAlwSFlzAAAWJQAAFiUBSVIk8AAA AZ5pVFh0WE1MOmNvbS5hZG9iZS54bXAAAAAAADx4OnhtcG1ldGEgeG1sbnM6eD0iYWRvYmU6 bnM6bWV0YS8iIHg6eG1wdGs9IlhNUCBDb3JlIDUuNC4wIj4KICAgPHJkZjpSREYgeG1sbnM6 cmRmPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5LzAyLzIyLXJkZi1zeW50YXgtbnMjIj4KICAg ICAgPHJkZjpEZXNjcmlwdGlvbiByZGY6YWJvdXQ9IiIKICAgICAgICAgICAgeG1sbnM6ZXhp Zj0iaHR0cDovL25zLmFkb2JlLmNvbS9leGlmLzEuMC8iPgogICAgICAgICA8ZXhpZjpQaXhl bFhEaW1lbnNpb24+MTQ4MDwvZXhpZjpQaXhlbFhEaW1lbnNpb24+CiAgICAgICAgIDxleGlm OlBpeGVsWURpbWVuc2lvbj42ODI8L2V4aWY6UGl4ZWxZRGltZW5zaW9uPgogICAgICA8L3Jk ZjpEZXNjcmlwdGlvbj4KICAgPC9yZGY6UkRGPgo8L3g6eG1wbWV0YT4KDr3+HwAAABxpRE9U AAAAAgAAAAAAAAFVAAAAKAAAAVUAAAFVAAG01Iab+q4AAEAASURBVHgB7L19sGNXdSe6XGXT 7oTulNvTbdIuY5Pmww62cOznsScvJFGHokyRQf3ABmIEsZlXckK9AvHHg9LUwLwSr6CUyosR k6Jkz4D4aDnxXJPyNeXI8cttJjIZ1FACo06QB65BnYx6HnKiLnQT1I3ue/utfc5ee+9zzj7S Oefe23b7rutq6+hof6z922uvtfbae699icA/4D9GgBFgBBgBRoARYAQYAUaAEWAEGAFGgBFg BBgBRoARYAQYAUZglyFwCTvId1mPc3MZAUaAEWAEGAFGgBFgBBgBRoARYAQYAUaAEWAEGAFG gBFgBDwE2EHOjMAIMAKMACPACDACjAAjwAgwAowAI8AIMAKMACPACDACjAAjsCsRYAf5rux2 bjQjwAgwAowAI8AIMAKMACPACDACjAAjwAgwAowAI8AIMAKMADvImQcYAUaAEWAEGAFGgBFg BBgBRoARYAQYAUaAEWAEGAFGgBFgBHYlAuwg35Xdzo1mBBgBRoARYAQYAUaAEWAEGAFGgBFg BBgBRoARYAQYAUaAEWAHOfMAI8AIMAKMACPACDACjAAjwAgwAowAI8AIMAKMACPACDACjMCu RIAd5Luy27nRjAAjwAgwAowAI8AIMAKMACPACDACjAAjwAgwAowAI8AIMALsIGceYAQYAUaA EWAEGAFGgBFgBBgBRoARYAQYAUaAEWAEGAFGgBHYlQiwg3xXdjs3mhFgBBgBRoARYAQYAUaA EWAEGAFGgBFgBBgBRoARYAQYAUaAHeTMA4wAI8AIMAKMACPACDACjAAjwAgwAowAI8AIMAKM ACPACDACuxIBdpDvym7nRjMCjAAjwAgwAowAI8AIMAKMACPACDACjAAjwAgwAowAI8AIsIOc eYARYAQYAUaAEWAEGAFGgBFgBBgBRoARYAQYAUaAEWAEGAFGYFciwA7yXdnt3GhGgBFgBBgB RoARYAQYAUaAEWAEGAFGgBFgBBgBRoARYAQYAXaQMw8wAowAI8AIMAKMACPACDACjAAjwAgw AowAI8AIMAKMACPACOxKBNhBviu7nRvNCDACjAAjwAgwAowAI8AIMAKMACPACDACjAAjwAgw AowAI8AOcuYBRoARYAQYAUaAEWAEGAFGgBFgBBgBRoARYAQYAUaAEWAEGIFdiQA7yHdlt3Oj GQFGgBFgBBgBRoARYAQYAUaAEWAEGAFGgBFgBBgBRoARYATYQc48wAgwAowAI8AIMAKMACPA CDACjAAjwAgwAowAI8AIMAKMACOwKxFgB/mu7HZudASBs8/C42tDeP1vvQmOXHFp5OesLzae Pw3fO/Vd+Pt/ejlc9bJ/gh/DFXBj7ma4/vC+rEVyPkaAEWAEGAFGgBFgBBgBRoARYAQYAUaA EWAEGAFGgBHYJgTYQb5NQL6Yi9n49mdg/60fSkdirg6T734Q3bm74e8sPHjsAPzeKkC+3oMT H7xly43efP4UfPbffQg+9NDXnGXlSnU4/n9+AG46uH3OeGdF/JIRYAQYAUaAEWAEGAFGgBFg BBgBRoARYAQYAUaAEWAEYhFgB3ksNC+dHzZOPQj7c78HuWINaqXfgEM//3MA4zbc+paPeo3M l5vwh+/PAfx0Dv/9mVUo/N6nAAoNmD52P+yGfc7PfuF+uOG+hzwsCuggf2yLDvIzTz8IV//6 7/kMVKzD4I9KcP3By73vG6dPwqfvuwM+7vnNc9Dq/Re455bdsQzhA8L/ZwQYAUaAEWAEGAFG gBFgBBgBRoARYAQYAUaAEWAEXjwIsIP8xdMXO0bJqc8chdxj74LJifvNjvDNU/Dey3JwHGst NPrw2P036frPnvwDOHDHf4Xe9DG45SXuId987nG49dUF6KvWb9VBvvHsw7D/hvd4peXKK/D1 B+5yLDI8jzvWD3k71mXClfUZ3HXEd6ArMviDEWAEGAFGgBFgBBgBRoARYAQYAUaAEWAEGAFG gBFgBC4AAuwgvwAgv9BVnH78w/DvJvfDl++93pBy7tvw3r23+g7yyK7pZ+G9l7wL/rfpd+F2 h4P89OOfgE//7B544K4jpjz1dO700/DQI9+B/Yf2qzfn4fx5/3Hflb8I11zzWrjx1uvBDvP9 3ImH4St/swGH9u/xEp4/P4WfnL8O7vvA2yAQgeTcc/DwQ0/Axv79oFLqsv0a/Lc3/+t3w+2H kzicT8MnLrkOPg55yMHXPCf51hzkZ+ATb7gaPu552wvQxQUGF34erWcehzdcrRzz+Ya3eLEX sfvi6vdgj8IBYIr//QqU7n0jUGs2njsBzSd+APtlGsQJrr0ZXvb9ZxJh8ob5t0J9g0Vg5+zZ sw8OvPIaeP1Nt8ERtdPdx/McnHz4i/DMz/YovDH9eAqveVcJjl6rKYITX2gCUuSlmU4vgav2 /gRO/3974NAe05/n92A73n0Y/ixh/92693vwuS9/S2Nxfnoebv6d34Vf+vun4E++NQGCaIr0 3Ej0bDwLX2g+BQiOj81rCnDv0Wv9psT8/8ypE3D8801onejDlVdioqvfCv9r6X3wzjdeD3bw m2ef/AI8dRqL9pvk4aaLxHbuQR6/4U7kO42L/+uZk4/DV5+ZIMaEtSoAf5bYyx/2AH4euA3u esM/w+dDY2c83Qfv+sA9cO2lGx7Of3N+v6ZBtv1Xjr0J/v7Jv0zU/64xER2vki6AffsOwDXX vxZuzl0P+yQQKcZeej4DyITvuTNw4s+OQ/M/tXDsYuf9I8Bb/80H4H3vPQbXWwLG3cZ4vg+k RzBe8atvhztvOqi7O/wg03/xyef8Pp6OYc+N74rhO5Q3xx6Eux/9JFxvMxcWuPn8Sfhs86Qv N7HOV/7GPXD0+qDwPXfmJDx0XKVBnhmP98A7Pngv6LW1zbNw8s9X4U9XHoMT/R9hqVfC0fe8 D95ffDOMjh+HQ7//Ebjlsu2WoRKN7W/Xbx87An/5mK1H1HjB0bLvSuTNa14FR177Gjh8Bckh SYfjLwXfXvZfvwhf/8c93vg6/7JXwj33HA0tbqI8fPSLcJLSqL5+I/x1SH/hALL+PDH48pvh 3XfdDkOUI49//7zWdXKwISf6bfql18NttxzRst4qQj1uwKkTX4U/eeQ/wxNdv39zd+ShULwb XvfPT0Hv0Hvh3lv2ejQ+80+WzA7x5NlTT8KXv3ba1yFY+3R6Jdz1gbvgcIgnA/Un4a0gu0IS 2frtRx/MhLkn1zefhxPHG/CZBx6FHyGv544eg9L7fw2+98ePwm1/+El4zRh15Vf+xtgiiPX4 J/twzNyjxoyv305uqD73cDoGR/7uSfiOkrM4+uHt994J8aN/A55++Cvw3M8QLdTHYzgMN1x6 Bn60aeS0Eqhw4MA18Fr7/pHNM/D48a8CagdP6Eo+8HhFAu/xhVQPqB2QnW5721H4IY7rf7Rs n+n4vNF91FkJZOK2yBqqz/5MULdMnknWY76AXFb1ejqUxo9TJpyDp7/wEHzjfNQe+Y1XPAd/ lUCn/8LgT5Pp/qtGie3TX+j/aWo5ELWT3XLmrt8A+HwGXfLGOw5Af5DMVim+7ZaAfaS6Q3+c fe4krH7lT+Gx1gkcm6iJckfhffe9H958+Efwue6r4GP33uTxQXJZ6MvedHJtH1zz8/8Af7/d Y/HtRbjFmpgkkXMaGPWwceYUfPXRP4H//NgT8CO0W668Mgf5YwW4u/A6+KsvnYJ3fuwebzOT HCvJMQrXYr6nm7N54idqA2Jx/tg9jzrSt2PPo8zc9yvvgnveeC14c5OAvMX5y57Xw+vhb6Hn GH/2vAYy6BfTOvWUSP748oDku5dTCth9OAcKyeek423ret1uSbwtJVMln0/k4LrJt+Cby3BP hBnATupp1ya8KC8l0d3K7l5iF9yyz60TZjjP/X9n5+FK6btAnshkg0MSG819Yjwy1tE2k6zp zc9fcQ286roj8JrrD1v2obsdcq6dVLfdvv8H8OB//BrsIX8NVmhrFW27/va/SDx3zzL/SzrW suq2d3zgzfC3jya0tULy3R6d/LzLEBD8tzsRmPVEEUAguwt0CkcwmM/nYh55K1+MRS0n81XF yPX7bCwG3RVRUGXnCmXRaLZEs1HT7zDSt2j1xzr3eDgQ7UbJo0XSU6yviMFoqn+nh/kUy+6t iYpXv6QhJ2qNuqjX/X/VcsEro9abUJaFn51a3kvfGgzFSikeC4Ft6vd6oj9wtljXMWpXdBty 5XYMfpR8KpoFv07Z5lp3jNUMxErVb4N8B7mK6KwbnGROmaahaIV8Vfz193+YHJNQ30C+KKq1 mihZdJRbfSJQ1iYGnZbVbyAqrY4Yz6wkXpqGbne19dfih15/lvW7cqMtBkNsX5r+m41Eu17U ZUB1zcNzst4VNYveeruH9ChOxfb1Vqt+HsSmNwoQahONz2PRKvv9D8W66GD/9nod0Sjn/Pz4 bt3KPh72Raui0iPfVRXP1es1US76eTB+fagOIXp1P0+uUBKVSkUUiXdzBVHG7+WiKjNXFxPJ Zzbe2P9r/ZHio6kYDrDtReKZvGjItp/d4pgI80SuiHSVBAZcUtgXxdpwJlKNvXCZS/kMeyMl vuNeS+QVjbWVDvZdT3RWG5ru2tq66Yu09GD63popC6CG3BL3NxMt3Sc50VzrieE4Krtk7nGn 5mFaWXPIEeT3XrtpjbWi6IbE2Gw8FD3kD6/dyJ9dlFtTxfrTwYrGo1hrim5/gHKhI+rE44hV a5CyH+OaHHq/I+3aCOoRyOWRL6uiVquaMYRtwvBgYuRWVB6Vafh2vN4TTUv+FurdUEvlGEQ5 UPXHbH216/W11F9rTSPvcuWaaJB8QHo9XSjHN5Ym09oyvljGNlWN7pMyvzeJNmg+6mh9na80 RQ/7frjeF+2m0TmV9hBrQJm9FpTZJZS/6xZPzsbrFg1FsYoyZtFfUt4yZSSXrVkxF/N1UVHj v9pqi26njbJRyW4oiB4OwSmOl267ruQYiBzySn/djBlMofrT17nl5hr250xImrQewDqqnQWj f9Cyym+g3TJRfUy6Au2ZUlmUNG3SvlnDXsK/aU+N2ZwolSuiouwXzybDPJVyWcuD2l99H8dz W5S1/iiLdm8gxiQAsLjEMnGLssb0s3lKXLekM6Ws17WE5XgimTD3+qPdMOOT7JEzCelISm8q WZNBDiSWMxn7t/NACltFd0r4YSpWKsqGzZVEs90Vg8EAdXNd6ycorXj8n04WZpFrp3dmLGrF nFzOGZTmolMneV9AfNBeGA5Fv9sWVW3XVoWU5PIvHUZ+nuj/083ZMBan0wb06ZH6z8xRpMwc KRnkydtV38aRMixfboge2v2yDa7xR1ouvX5xtDCxPejLgxWlwyWdcfI58XhDcrann7CcRTYi 1pN8PvGA+P4S3FPJ7Iy2URI9He3N7Lo7WX0xOuG/9cU3t2CDJ7fRXC2O8lC+WPbm5+TX8HwC 6Dtpdslei2kHjrmkug2NJG/OSXOpXKmq/Sm1alnNpwrim2dSzDPDejrR/C+hDZ1Rt03PprC1 tHx39xO/3T0IwO5pKrc0gMASB3kgrfVl2jfO0PoCR3Sv7htRjb7lZURXX0c7PUtiQBaSLH/e Vw6Agujb76266XHQ9B2nxeaAXunPXq0gKmvxE1pKOOn57fAXB2baWe1aLOg3jEHYRCdT3F/H MroWYUP5+w3jADbOVeNwy9fCDho/56QjncBFYUObBhNX3/QsWlZDHqe5dgLkRcfp+5uIKhqa hablXNf9iXSG+jM5rWTYo5PC7tNpVzkOciJMq5h1PaW+SjYEgR34nGqnZqHeCfwiv/SbagKT rwUXgbBsz9lVaPoODitnr47OmWq0v3q4CFNsGT6ltmNYI53bH1M1z4Hm1a/6ouZQ1PNB03fI hGigcrOOCVosMuN1JOrWhI1GVJp60vKZ7Lsk+E41PxZFZxxiLnQ6lZAXpTFZCzm20tKzVqFF ArmAFfJWq96bD1e1gwxCfaI72HuwFsTyDd3XwTT4bbxmHAm5EP95iWeigU6ymj34rTytfnSA jjq+k9CWSWn6MUJj4MUOtgvrcfWZrH7UbRqcCgvwVLSmae+aJcerjsWM+UDi2QjKgAXyzuPr XNUsspD8svll0tUOcAgvrs76mqerbWvhR7VNjP28RodIgNp6sai0Es3j6zTUwfHqzC89NW9l k61pMZ90fZ4O6AWkuOfZBr6D3G+A0e1Gtvm/0P/nA2kLGPnrvcd2+xNSlAF5f3GD0pvPuVil xWqUN4HyJx2fP60+Hq0Z55FHN/JBHiw7yMlDOL7yqP+U/CE+tvWHpCeTTLT6FpLKGtN4/ZSp 7oSyXldiPWSSCU5ssdCkdCRNh0VSHy3VxWnlgMQgrh3yN0mjLWdS9m8WW0VWa//pcVxq4fJT +E/ZFLb+S4tBFrm2I2Mxm5wztmU1sAGDkOp6tl9edG3w0mJEhanPpHO2pDag5kGnXIyRt3F8 a/FoUtsl1Lxssi8JT8iK4uiWv4XH2xb7SS7YNsnmtseIrEv9pR6jMfRnktlIgx7fqO+S2EbJ 9TS10P6M4SUrSVh3p6ovBptMNngWG81qh37UPBSyL2dDs6ELsa/b85G4dqTQWXE6VSA9eL5e z/sT6zZskKvMRX6GVGPNkhuJbBevHelsLd0n/LBrEWAH+W7t+kwO8plYLRunEe0EcUFIzl/b KeOlm5iJp9zRqP80PfbkVv8aeKCyXc5suYrbsnePBnKqL6TMcFLoO/6MYeIqk1bt5YQ50h5d /kQ0cCJLk+qG3MK25G+qnPReHrWrRmYx711Y+BPmXGi3chpMKG2gLYg/7foPKF+vDdg2Zbi5 8Jl5iyYho35Bf1L9rrLC/TdoKWc1OhoMouiYUDu9w2UMVzG92q0ZB/94Te0yh7KIuo5krpGo qp16AecStQkdcoYWVctkIHrrkbei38JdNNZrd9vHor3S1Q43SlO3M6pq9GQHDWirWEF5wnjI bGFMVVGBD8pv84Tfr5KnC3rCRumS1ENp7TLFIj5LhO9InWABEegbqzV2/9qLcGnpGTTNLlC8 qCGAt1/dXLQrtGsVcXKmUSnXV7RskOO9ZR9PsGgXKJtoHMp0ufKq5gs/2VTUpYNcL06iPFA7 2KM7nqnguWjh+CUnm3xLWCTpRyrF9TnfsXb5tRGdAR5ShMzWze7dOF4gmqmcJO3tN82CqDyl hHdEUDHe57QvnbP1ID8Q76rdy4EMuDDcba0YhwilDTn2icagQ3aGp5vUCZVqdDGP6hm3cYds JbhAt75Cu2Zzom0tes6HPi8u11Hpecsee2lka1rMafJVWQ3XMsTFBDOhs50OLh6S+Ln7c+A7 uHEMynHoxMpy1sk0gfKdfTzVetRbzMDFvIZ9YovyWPJW0jfprYoOnuKRf8QjQT7OKBNTyxqP hND/statTjC6ZGaMLqWKCYMA3urHWJlgYRtQq/R+GR1J0yEdRF+wj3wCA7rYKtNefqX8QTlA DaSTny7bMCxn0umSLLaKosr7mPXV4r3kX7tBVqK5J7OtxagMGKSWa846tjYWs8i5mdaVeWHv 97DgwceRKAfkF75y0m/4zMknutCtzdlcNqBNj22D+lWauVRgfFIbAvoxvX7RzdIPW5c/hlVD PCHrcNJNlYfHm5Fppsyk/YR2uuYPX+e4bMTUY9RJf0bMsNk7p6cJU/szhpesJGHdndwuwEKc 2Mj36eQmZshso1lN8R+JppBtqH7U9YCcu9LeIMoTGFuyHYYfI+M0pGNJ5wTGrCJuvdvTti6l W6rbMC+lDZSJNNH8JuJnIHrD7fDoCI+1lH2UwdZSzeePXYwAO8h3a+drYeQOseKEZdz2JovN Nh3hlhNvZ0pLOIZEMzrI/fANuPt3SBIey9D0uAz/YB0keMNCeoI7JZ0T2UB2Mhhtp4FRxOEy ZdbZEENbVPC4Ex5Vtw2fQLGoQvTqP06WFx3Lpnza2Skn4YEdA2bndMnafSzzzUerXh/YDg/5 Pg0mlDaguKZqx1uMM2Ds7VqXhpu1CisrRudPWy6a4K7HwN+C/qT6w1g7+w9Xin1+CU4quio8 DkBFH0f1nCG4SFFshZ0mNmVmV0K+Fu9wGtAuctvZTm0KTKbnYgWPx/eCPjS7wsBzXNvtRJQm 0D8qgeaZhA5yJ6Z2ZerZVadrckTpkvQdpQ20YxGfJcB3Rjvo8ahhJ24w0gIY8rK98zstPX08 BZPDUAdk0DUHIVmmeLNar/o8GuoTG2ZvN3qpqcNz5Cpr9s/mGTEoyGOULVrEQX62T2agnLEd 5FIe+OPDLGKYwszTpL8q1ixHL2GRpB9NKdGnnWoX1UR0BniIfvRkj1qgcO6A1QnTyUfZ7xjG xIRyKgl7Y354UubVQrwbMe7HGObGXtzD1JQ2NAnq4ukn6Wi1F1pI3ktHfUBfmqb5T3M8AjsM 8SdqK71oq+tCeuTiXyUkr8Pl4ff0vJVdtnpjLQXmQyucWanRsRaRZnicv2Wd/DF62c1DcQ5y fxyWKexJsWXV4YPVqSLvFaqiqsKnBMq3+tj0iqElPO68EilPhIdM59B4sPNnlolYXxpZY6gw T1up2wvxl0GXEgYBvDVJ0h5xyIQ4bOn9MjqSpkM6iD67jyR5EV1slWmrMpcc0M2jPBEeccuZ rfRvXDs0LYEHg3vcyUc/+USsYpg+bS5Re7R88lMtxCCtXLPq2J6xmEXOGXwiJ4QCOOIhsvV1 7ZDyfrLoT8wnVGamOZupxWUD2vrL4EkVGhkXGJ/UBotv0+sXqsN8bq/8MbTrseug26/dPd5I phkEhVjMy6YtiW0pkyVW1ugkDvozY4aF7pye1hRbD6Y/ArxkpwhtVkhuF2AhDmy8ovF9Grm5 NRvNaox8JJoC+shKo+19awc/5bHGlpeD3gfKcs9XSdbbm7LkYma5EQwbSun0+FCkRXQbvqe0 gb5LMv8LtwO3Mbps6DR9ZCHoPxI2kboiKfnFLkaAHeS7tfO1gEjuIPd2Uufk0R8UsnrXYlCA EpwkHGsd34M+n8/EZNjDOHuOyYvMpOlJ7iDP19YwbvNUTCb4D2Nz19E5ajvEiBb7c9T2HU+V 1aH12hi84aPLVqIlj0aZR3aTxeTUzk7PQR48xj1cpdiytgNYGltyUh6drBPeSTChtPpIOB7f aqpdip4DXM9ebMKHOuarH+tW/YZHFaWDLhJ6ZkF/Uv1JaPWc3mr3utkliju8JWbqn3ZcosNS vovfnYM027FrHeETqMULJwYYemVd8txkIoYY+xCvV9I7rCl/3Ce1PWxg2OkpTWSFHRPp0wUh ZyzlSYapXZv/TPk1T+DrDjnsrN0KlC5JPZRWl7mMz4hnFuCrx8VCh6gZizbOaemR8i7f6GJY KOW4tE55SNS6Mr58volxjNVO5lCf+Mji/73jfbjDVIZFGdKu5xiHNmKQR36SYYloN4wnT/CO Av8v6CCnmJVyl39gZ6Su3P1AWCTpR3cJ+HYH20V1Ep0BI5t+lCToUzgxeKq0VE6S9sp+z9UH qJMolJPvtNY9EJqUeVUQ72I/rA0nYoqyYTKdYDxwDKthL7LJxJTWCr8x7JiY93ZIpmnPDyUS XAhUjZIfqFen06mYzVAr4z/5bC07W05uvD+ijXHLV+Wu8mB4Lqu0wGNq3tqCbE2N+WyAOy2N DgCMd7zStXU6NcXIglgeiunPPOLUHazpBbLAjj7F+40exnNXtlCgfEcfy6PbtNhmdBnRiZ+U Z8FYJj625VpmmYj1pZE1FqX6cSt1e86kBbJeVxJ6IAwCeFtpnDIhDlt6v4yOpOmQDqJvqayh MhPIAd08ypNQzmylf6kdNq9pOiIPZldqsvSqAGpPGgwwq3GuJpBrjjq2NBYzyTmzWBmcexgg Zyi7p9OZmOH9T96zvluHdoI29cJCnL4wpflPWeZs2l7DIlw2oJZTzhAr5rRpYHxSH1iyLbV+ CTcOv29Z/lh85+QJi+7t1OuRpqSxpazMS8eoRT/Zh5kxw3p3Tk9bjdKPGXR3YrsAK3Fg41WN 79PIza3aaLq58oFoCji17RQpTjlQWct0GxZPfCTvbpqi3TqZ4L1suNCcrwX9O5RuqW6zytTy JOn87wLoNo2zJY9slPmZEZAIsIN8t/IBCU+cZCYyaOcDL0Yq7Yw2k5DwjmIfUBKk5MQMf67Y u8dlFk3PckfPorIbOvSAo2PHHTVBxYkvXtYlLw+S/9bx4scqhUcpNsVgHd85Lgl1lGi9Mgaw bOvynezYZCueex4voQz82btgKZay6gPXIkAaTChtrlAUpZIJJ5Av1UQvHNPZIkqHO9GhaTDe ZkvGUbeOzFL6Bf1J9Yd5wsfN3nvhF6YvP1UGub8DAi/tK/khMPIq9MD6CtIS56QkuvCoFTkp FvWRWbyw+FG3yXLMeE4aKw3VE/NJbV805iiNCx/9LtTORXkWjglFJ+XP4yUtzVZT74r0+kQ7 Z40hpemwnFTheqjMxHyWAF/tNI41IGWDjGFt45yWHn8y0Metf/7JmcAuXqRV8lEVg4XquPCh PiEWoDHiO1jNBDJ8OsRLj+VK49yPQWrinMqLjf3TOkEHeTI8iBLzSVgk6UeTK/i0k+2imojO wGSbfsRP5zi1fqdHKidJe71+VxODqQ4bgJeOKRk985zWcSFWwrLBd64HdtppPs+j/C2JAuke 7OPaSi/g4NZ040Q+UIbXsLFoWpewem3LVyJxxXXcWzVWXbFDCSf7MzVvbUG2ZsJ80rcutlO4 F8I6zMiCeB5yh8zxJ8lzsUY7kjHcES0++DHcpd4zi+uB8q0+rtSbeEm5OmUi+6DYNPHobcB1 nnh9Qvxgy7Vk/WRw0HlTyhqbVHreSt10SXxwTMa3neokDAJ404/46ZQJcdjq9+FxG6IjaTqs n+gLtssvP6AjdZnL5YBuns4Tphe/h3Uipk2jS3Qd6oHaofklnMD+bo39uH6xk+tn3Z4UGKjM ieWaVce2jEWrrYltyDGFxpF3FTgkec+6U0PJ6coKLtLKP4v+ZfrCz6D+n3HOtswGNPQ4eFDR Lnk/wAe6DWZcJZMdgRZFviQrwy37fPmTFwt5QtPtaKtjvFGZqfoJW5XKlrJQWDpGNf1pcXdg hvXunJ62GqUfDQ0BXtK/S1nv0N2J7AIsxIGNVzS+TyM3qQ/kHUSOkZ3IRtNNIprCvKUTGEy0 XKY8YWevfh/mXcMLVKxugzV+5RguxOwgX6rbsGAqc+vzv+3XbbF9T4DwJyOACLCDfLeygSU8 taBdgMVIxjjFY95r8lbykbyZ3ITkqDjirJBwrK0Nhdw9PsXbktd7bVHWzoBQbFdNT1R4h8mi sgMxd/GIeRN3Grucx5TfrPSGFUb0ey7mgkwqy/VpX9LpwiScZ53ia6MiClywphIa46/p7RwZ e8fKy1ZIEVNiGkwobRFDxrT1pamIO83+TbHBJ9zloJ3LcjcsHmSvIO2lwG58lWVBf1L9iftP 14thcSZz0ZO76CsdMdUxiCUmuLKOoQOctNitwIUHmpi7dmhTUnuSrS9Mojaho16uI8xxp88U Y97Lo146DRUQ82naHlyZt5NTmsrqAHei4lgbq3+4a32dLnoLOWMpT2JM7QrxWeevNkSr2fBu Mm+22rhTPsgUOl3dinccM/YobWI+S4CvDn3j3L1EjTJGpD2u0tJjJgN4YkZdxkehUda9haGK F8pBL3SF+sSnRp28wNMuY9mXuLO4I3eeS0MUL1SLRKhCDIxxjiVYu9X8XcTokLNikFOb3BfV EB7RT8qXlV9w75Z/omSH2kUUE51xE6RA3Nvo7ISKMfydgG9Nv/vZ1/VpHhBlvP13vi4vdYxz kAfj747lDve4HeS5iljrrmp5lLcu7iXCqf2Ldn3Tqaj4WLR4RFWdwgHn5XlUW/BT173wtIaV ZwuyNRPmXtVzMWg3cMzYOlyG4yK5ZWRBHA85J9k0DqWaUzHbpf3TlqtcyvFU9uwes6MrUD7J Mpy0NlZanjytN5qi3UN7yIIs8Gjlod1+gd/xC/WJbbNllonURho3S2RNmBb5fSt1e3o4gy4l DAJ4W8Q5ZUIctvR+GR1J0yEdRN9S2UplJpADunmUB/nKjvMdJ2fS6BJdh3ow7Yi3VXQeTZd1 9F//uOCB8qXBQBeXUK5RHds1FrPIOXSQk+1cdMh5v0lDffdNYB5D9KfEKOucrbDEBtTOJW9n 6sTYp2inTibroqbmeIHxSW2wnHjEX2ltF939+LBl+bOMJyy6k4w3T6al7KfUtpQFAGFo6wPr Z6cTODNmWPDO6ekA1epLRt3t5V5mF2Aiq28D+hbfp5Gb1Adbs9FUk4mmBA5yPbehPNbY8kqj 98t0GyamNtS9zVBznNtOvXlK2A9C6ZbqNqvM1PM/bEeSsZamjxS65oOwCWNmUvATI8AO8l3L A1pAJNlBjjGxtWPbnoiqZ4ezigSpHdPKwxonl/potB3XU9OTxkEeNNynGO6itWAH+Wx9VRRy eGwoj6ETrH9mB59sD/6OaUqBuL/JuMQcGcRyYhUclTUTLXU0W9a5oi7hol+9Tx1/GzD+7Ei0 sA9cThSZlvAOG0ouTCitf/TJ7GgF7A+aKwfosL7oW8wx5vjYiwddEJ6v3ErjPS7oT6o/Ca1+ sXgpp3JQlupNvIRN7k6RlPoOeulsrOFlmDLUSWxcak2fcWiE69dJ8MEsplghbqhNgb7F2JI1 3LW4DDhVeFzb7bopjWt3UpwzlvKE2+Tqf7sueqb8+jgc/RD6pHRJ6qG0ifksAb72wkU85oan 7ePMaemxJwMmbiMab6N1f2FoxY91r2lyOMgnHQyxEXDeBeVnZJEGMQgYfhL/0Zp2AObwlEfZ cpAbPkW5KZ15Cf8IiyT96Cpyp9tFdRKdgck2/Yif5sI269Ii63d6pHKStNfud8qv5R7KmGod F4tR5wWGPPFuxOCeiFZtJXh3BaVFOSK7bNqlMCoYqiq0u9D0b7xsI5mQw7jicc7XQVOe9JE7 gvrUpKWfpu6kvJVdtqbGfDYWI3vxDhfp2jV1oTO2U2Lh/2WcZAfGodHVeVxgGa7J8GfEbzHl 6z72F7eXgi0TUJ4ID5ncLj7W8mdBPjwGoy8I1TIx0EZVxwJZY6gwT1up23MmZdClhEEqmRCH Lb1fRkfSdAgN0bdU1lhlLpMDGnHKE+lrt5xJo0t0Heohrh3hdP53HPtqjhButzu9ekvtSSAL XeUkkmu6ju0ai1nk3MQLASllcHyMdpIlofsmNP3L9YXBKPucbZkNqOVUYMxQzdSG5TvI0+sX qsN8bl3+LOEJwj7heCOZlng8Y1NS21Km+bGyRidx0J8ZMyx05/S0pth6iOElO0V4B3liuwAL cWDjFY3v08hNw8dbs9GobuKhgH1JbcZFbPKflOmC8gXtiJblnq+SrLf9NfNhG+fVQXuR0oVl vGueSWlTz/8SjrU0fUTw6c84zHQCfmAEeAf57uUBLSCWO8j9CXgu6nzE+NO0c6s1kCaB+SPh 6JrE6J3RtmNd0xPnIB+JRrXlORqo7LCQptong64Y2JNn+iH20xyTTuNAiBZnjGBpCLf0NdPR lBg8z4vd7TnP0NnsdmygY5iOd2N5MsxCnAM4DSaUVvcN9iPtbnGGfbDIn+vddL6jL/aiywX9 SfWn6b+gEUnOCTTYGiZEDBRXdIxGi+TIY4cu+ESHZjSgi598reLHyqcdw95bapNzYhCpxvli WdtlJkqj+8cqSRu3IWcs5UmDqVXswjpd6ZLUQzTpdizjsyT44qIRyZyIc5kIHbXV2LIv4nXg uoSevoxFrWPwGQeTN2aty2rj+gRdn6KJToOc4zJYzYP2IqGkHzGIGH74eqJjbfvjTh/TtmSw v/uDQAh9ztZxt7KJ0Ux9k6QfQyXh1wvQLlUp0al5KECMmSzEOx38DFROkva6JoG2g9Hv/0ZC BzkRPBHdjro82MHn+iIvdLwGVKk+PRO+rJXKxd5QobrCx2FNCsP7ce230+rnDLyl+TqlbE2L +aRbEyXHZcyDFXnSDceIti2MMytOXkx7chErFCYsNA5NSDl//Bk9GTOJd/SxxjXugfJEJogm g5OPs8rEUBupllhZQwnszy3UHZ282wXHPxMGqWRCHLb0fplOT5oOySb64saatk8dZcbKAYKD 8sTySFDOpNIlVIf6XNaOUHLrMkI8YRf+0fo+7KwJvR+E2mPhvxQDq6xENDrqsIpwP1KeGJyz yDk978G7DdyL+yRLQnMgoiUFRts9ZwuA5KDH/E5tWO4gR8+wZcst4JiQ7WLqwqedlj/U1hg+ kHZBJr2uG5HBltJ5l8sapxM4K2ZY787paatR+jG97k5uF2AlcX2L71PJzW2y0bxmE03WWNdw 4IN/h4y0QSxfAOUJ8yi9jynLLpfkqFunmpSUbqluwyyUVpe5ZL4V2x+6+uBYS9VHugz1QNiE MQun4++7GgEOsbJbu39iHE2LncLqQs5KKEa2hxuuRpIjEZ289h/t7NCOHP2jOUbodD7GXCC2 voK7w0p+HSR4nXTjCqvcYRy4UEvXHfdgFLFL8E/6KxjvuiTKlaYYuT3ZuuC57fjGEArrwXUD Px1eJFLBXaDkaAttGtRlyQezcxXTl0wM1EAi/JIGE+ob22EwptAdiN2Kk2iq0Y6LjGnDseQp ma2AQhikoZWKk8faZb9KzGxnmO2wTxLWxivPMmi08tYV4QM6WH0nrGWEyN+xTd5CgjPWnF1A /PPCtqtsfbXbMzp2kASKWx8yehaWm2BMUJ1OPKzmpKknNZ8lxFdPNBED1wIH7fYNL96kpSc8 GZDGtz9mgztxyUEZPjUyX1/x0rd1uAcDpLlkDHeL2XFWEANp+Ll2g+s7AHAM2P1kQjuVhFuW +JPWguVQTNOPhmr/6UK1S9ZGfRYdCxOxUlGhahIYuWnaG1wYsVpv3Qsh+zrAe/rYvXu3tae/ Cit+YZRWO3Hla3PJHYQug6Wx6Z00cshm0hEu3UXU6/bXg6eu6Pe4z9S8lVG2psXcD4tSizri xmpxzJLRJC8C9oZuMC58yZ2vYfsG2xGcgGE4B7VDVh6lNuPTdghZe750H4f4RNfreFigMym1 7sfQSQBqY4QvVUanTMwga4gO+zNr3Vl1aSaZEIctvk9ER9J0CExcH3mY2bpY84h9QXu8HPDy Ux4p80J2lfw9KGfS6xKvDvW/he2wE9IzOt7khe1SRxZjTmD6dzoUhd47Qu1JKAupKvrUNC6S a7qObRyLWeSc5kFcNLfuM6C2oHXnhYmMXLit6U/KJ9nmbKRnbNvC0GY9ET0hG9RPYeRh4ASk bnuQb1PrF4sMeswmf1SoxQULuV751NZE443KTNpPMoJeBhuRGo6fmv9D+kAnicE9E2ayvsCm EV2LnJjo+Zmtg9Loaas0/Uh0JtXdqeqLwUbO89La4DR2tmKjeY0mfnOMrelgRc1L5fzDsuMW tCORbsOKiY+idrbuCu+B0iXxvZCeTuxnoLYnGmvp+yjQkjjMAon4y25HgB3ku5IDMI5z0xxH hkJdrE/dnt9xV8ZbjY/tPbGPh+vwJhPRVOFDyq2uGHmx6SZi2G+Lip5k4qVzehsJGgraKZkT 9XYPL85c9/4N+j2xKo+0a6fQTKwqx0iusiJG8sblsfw3FkPcOV6VsVbDMV+X9vEiB/lMxx9e hINdxXSwqhUZ4E7TVYw7Ki+kl3G91jstvVsbMFadhswuIPBsdqUHDM5AmjSYoAGr+oYut/SL wsvIqsbhtNKP39Gh+9yhxDVZepcCOgADTp00tOrSvAeiL3hagRwXoV03wayRb+Nu0+MpadC0 usZDOe5jGB41yWtYl1PKAoyDtBSzAyhSTeQF7TxyT5C8WvRR+IJj57G5gd6OX50dU59Aszs6 7FQONiBNPen5LDm+eN+A4uFcuSVG5CjAMAurNXWioBi+CC8tPXhEGRexcuoCWB+HkYoRGoqR R2FUcJJvRs3Y78dYWWTGNZSaxtmqnAyrzoUnsyAZnMRiXTpcU1G0On0xQYEj734Yr3f8xbiA 0zVNPwY5ALdsXcB2hfTIaOTpkvXeqhdmRspjyJVFRzNAmFb6nq69nSqeHnE6MFCG0wJoSPbN 6D0ubqz0R3h3AMZmlf/GQ9Fdqfr6SwVWNBd/yljZRCN+6pMPuAhYXRVj4mt0nKzV/BApcudQ E3eim58wpn3T14/heJFWyYLkzuLxbeeg57S8hRySQbamxVwvSpUaYjD2HdPz6VC01KWlNbrY WjYDL+emUyflZgfHxswbG5NhT9S90F14t0po5ds/sYTvrf4Zr/n9KMOsmD90aCqbxq7T7MIO LbKajNGnWJ1pklI/Sv2hecD7OYNMzCRrDC3mKX3dyWW9qcV/yigTYrBNSkfSdNLJmdQ+TS8H sPQUckburpUO63S6xOBt85p7dmDS0hPNF6RsLuKJz8FogmNtLmZ4B1GnJUMT4eYV64hMFgyo LvlJNC6Sazs1FrPIudlwTduXedxwsz4xo3iC9zrJ8GlSxtt32qTFiPogEMfcAk3b79gXTT0B SWoD4oklfZqtIGwx61WBC0C0+ae6Zuxqs9M7PB9Ir1+spqjHDPJHt2GxfE4z3tL2U2ZbygKA +D92PhEj92Td6W1oHG8pbaNUetpql35MqbtT1ReHTSa5uXUbTbZZ8xD6BroYVnWENu8YQzqS D0TKz1KjE9T9Me1IrrNoDo1lNy3Hu+4Eekiu27xTpin9DGnG2lZ1W7w8orbyJyPAIVZ2HQ/M cMWadnl4DgYUuPozNOkfepdCmt/LdKu6Qm1k7TqmMn6n9n/pySi9C3zmCqKMl8D0LKdGt2E5 6216As8lMfi7jvCO5QbeG/qonvKKOsqeuHcxlInaCR9YmVX5aRVblu+MFe6qZ4aT9Wpcu3Ki ghN1a7+ZqwT9zr9sx78QUL+kBzQgkmLixWAPY5evmBjic7O738MSlbTe6UP1eZ9+7O+ybQDr 3+d4uUe03QW8zG+eglZdnPUw8+LNlSMXG6430SmKuzOTTuKoyNkIF1SKfigV4h3vs1jFONNm 4iLTGweV4bdyKD4blev8RGxrdFGe7oMCTl5NPbJ/yJGj6cE+8GO8Y4ihUphWdO7/9ZOJ+99F l5QH0TrLhicoU4q+y8JnX/4UOQCT4jsT3VbVIctyooqLcgZVdCrIuwc05qr8RXx//f8i7rDT oxOW4uzLI45mN8tI1B38U/4SOnDt/OGwGXK3sF4opPaWxCMPqfAQKm+h2g60w+8KdNLj71X7 FhvvB7xUpxHMTzxUtg3qFP1IXa8/7fsjPBpD4UC2sV3OPrMwzeVLorHaWy5D07R30rMukZb9 EhyfhMO4Ix2lJiRHtxHlXcLefPphoTr6UmTqd7z4szWgosWw7TthKV+F4kxiilF3RZT0ySOT X6YtlKpibT2qUTyZG8mTFy33UQNNR/AhIW9ZmRLL1oyY+2FR0AkXkam4mI+XG4f/Jrjw6cQu hwvYffssgJwEWmG7EFvTP0Mc12ZRY9SpR+RPrvgfRDOUX/bPMl0xbJvTKdT3gfE/7VubC6jv C7jJwNZ6yWViTy2qOOvS4MXJGp3Aekhed1Zdmk0mxNsjT+lFJ8LT3U+J6U0ha7LIgTRyZkv9 m8BWsTo+8iidwOWIfkOM82WxZtk7WTCgypLJtehY3paxSETgZ2I5Z+XBVQ6xEjc3wPlR1Zob pMXoA//+9818TsqdrHM2y+axSe84x4wvb6VjPjy3zJW+JJ6Mmw/ogtPrF51VPySVP8l5Is14 S9tPlT/7i0w2ItmhuFK/ZD4RL/eMxkiKGYJ8gfS07k7rIbnulos3vh5dbBfEY/PNLerFLDYa NdXFQ6Sf5UaukvSbDG0bL74dSXXbHO8cifgPXGM/hW5z6ulF8y2c4z762eQ29JZ0G4K91Nai DuHPXY/AJRIBHIT8xwgwArEInIPTz/4ANvdfB0cO74tN5fzh3Fl4bvjf4Sc/lb/O4ed+4RVw 9bWHYd+lztQxLzfgzPMAhw+mrDumtO14vfH8GYCD2I7tKCxxGecQh3kUh3PPw+mNfXDtwcsT l2QnPHf2DPx4MoNNuBT2HrgKDl+RrRy7TH6+QAhsIk+MfgyzTey9S/fCVVcfhstTja0LRGeC aja9NiQgfnMDNjb3wT4Xm6K8OT2aIC8DXLp3P1x1+CC4kiUgZ9uSbEu7to2aRQVtwubmpchH i9L4v22c3YB9V1xY6UdUnT1zGn483YTLLkNa9/4cHDhw0M0LlGG7PjPw1nLZmg3zzY3nYWPv QbgC++ocPk8mU5jBXjiE43+RbpV6a/LTOfbzJuzdfyiqS7YLqxeynAQyccfGZIK6X0hodkvd O9a/KQCUcmoyQ02EAnX//qvg4EvYrlou5xzAKXk6w5/2IkY/t/8AYvTC6BQHdRf+VQb9EiGS 5U8EkqUvEmF2YfW0i+YkujurXUD1bZfcfMFsNGrIS/hzu/roJQwRN22bEGAH+TYBycUwAowA I8AIMAKMACPACDACjAAjwAgwAowAI8AIMAKMACPACFxcCLCD/OLqL6aWEWAEGAFGgBFgBBgB RoARYAQYAUaAEWAEGAFGgBFgBBgBRmCbEGAH+TYBycUwAowAI8AIMAKMACPACDACjAAjwAgw AowAI8AIMAKMACPACFxcCLCD/OLqL6aWEWAEGAFGgBFgBBgBRoARYAQYAUaAEWAEGAFGgBFg BBgBRmCbEGAH+TYBycUwAowAI8AIMAKMACPACDACjAAjwAgwAowAI8AIMAKMACPACFxcCLCD /OLqL6aWEWAEGAFGgBFgBBgBRoARYAQYAUaAEWAEGAFGgBFgBBgBRmCbEGAH+TYBycUwAowA I8AIMAKMACPACDACjAAjwAgwAowAI8AIMAKMACPACFxcCLCD/OLqL6aWEWAEGAFGgBFgBBgB RoARYAQYAUaAEWAEGAFGgBFgBBgBRmCbEGAH+TYBycUwAowAI8AIMAKMACPACDACjAAjwAgw AowAI8AIMAKMACPACFxcCLCD/OLqL6aWEbgACJyDs2dnieu5dO8+2Hf5pYnTv1gTnts4Cxub AIlagm2+4iXQ5hdrXzBdjAAjwAgwAowAI8AIMAKMACPACDACL20ETn/7JGy+6lY4coU1C984 Dd8eXga56/bC2dD8fN8VV8TM18/B889vwKWXWuUgdJuY+uAV+0IgbsKJT7wZfmtShtkDb4PL Q7/S1zMnn4Rn/8X/DEePhPNTCv9z8/ln4c//6tsAB26CNx+9SZV3Dp59+in4mx8DvO5X3ww3 HY6rJVgWf3thEWAH+QuLP9fOCLzoEDj9+IfhusKnU9BVhZH4GBxOkePFmPTMiT+Aq3/rowlJ K0J/9mW4ifVcQrw4GSPACDACjAAjwAgwAowAI8AIMAKMACMgETgLj374N+HuT/ehtjaCjxz1 vQlnTz0Kv5m7G/r5OnzzIz+Bf/mWjwfgylVWoffJtzmc5Gfh4Q+/A97z6a8F05da8PUH74GA i/vcKXjv3hxsNHrw2P23BNKbL6fh315yHXyq0ITpY/cG85tE+PQ8/MEbDsFH++plpQ3ik3fC 2af/AA78OvkWctAe9eDOw0HnfaAY/vKiQIAd5C+KbmAiGIEXCwKb8PiHb4UCKqpcsQofe8+b 4car/x5uQCXl/RUb0P8/3gTwkzPQe+IhuO/jxyGHSqCHSuAlIe43vg3H9t8Kq7KxhToM/uPv wP75HObzGUz/8TS0H/wwfPQh1H75BkxO3A9X+Kjw/xkBRoARYAQYAUaAEWAEGAFGgBFgBBgB RiABAt/+zFG49UMA7eFTcOe1ypOwcRKO7r8DoLoGT33sqPIvbMKzT/4R3PAWcjYDlFoDePCe 6921bJyCD+/PwaehAoPZJ+F6x4a2syfReX3HR2F1OIe3Ud2h0iiNfL2C6e6KSQebz8GHL3s1 1kd/ZVgXD8Be3HR4tbXpsLyyDg/cdYQS8eeLFAF2kL9IO4bJYgReEARQwN+PAv6nzR58+V61 mvr8k/CGQ28BuShaaY/gk3eqveKbp+DYZTm4tTOGj73x4AtC7rZXevZpOHbg1z0HeQmV2IMR JYYrxJccgifrPTjxQYXPthPBBTICjAAjwAgwAowAI8AIMAKMACPACDACL0UEzsKDRw/A793R hmn1N+GySy/3wpJsfPszsP/Wz8Ha6Ovwq/sug8v3Ge/2tz9zDB3q3jY2D5BGdwL33+7arrYB Xzi2H+6DFsweu8cRPkVuCLwMCidqMP7uR8DtxVBlqOrytQ6c+MgbYzvizMnH4dFn/gf8P1// LHzq+B140vxBuOnSM/D48a/C/5iehs9+6FOQa/bRv3JTbBn8w4sDAXaQvzj6galgBF4cCMQ4 yI+ig1weVnrpO8hPooP8joUO8k+gg/xr7CB/cfArU8EIMAKMACPACDACjAAjwAgwAowAI3AR IbDYQb46/Dq8+aq9cLl159fJPzgGd3zUcpD30EF+i8tBfg4d5Hu37iB/LzrZj/uQJnWQ/wQd 5B+3HeSfQwf5eXaQX0SMCewgT9hbpx5/EI9/ABzav8fLcX46hn03/jZc83d/Cd85vx/k6/Pw Cnj7vXfGrELJbBvw9MNfged+ho/nz8P4J/ugcPcR+IuVk7D/0H6vXPk//An2XXkArvml18PN uSOwzztxcg6e/sJDWNcerMunAc5PYXz+OrjvA2+Dg4H4Fn7ab2DaQyrteVmo9ee9fvnN8O67 3gDf8srN3obfPnYN/OVj34E92AaFjtcGU53/9uZ/fQx+9tSXDF4veyXcc8/RYDynzdPw8B89 Av/wC4c8TKfjKdxYuBP+6Rtfg4ksHdtxHj8JAv874Pc9Xp23vb0ItwTBUGSchk8cexDufhSP 2QSw8n+Wq35ffQZr8KrAGnQFskrEDr9jDXjxwm1wM3wLnhqGeeEdcM/R4JGZM6dOwKOfb8Ln ThyHfj8HheJb4Z2l98E733i9Oi5EfaqwT4rHO+7zL4rYfB5OHG/AZx54FH4EV0Lurceg9Du/ Bt/740fhtj/8JNwSCLRlemPR07lnH4S9N5yGsfik5uPnHr0fXn33Q5gtD2vjE3CUllnxCNQl +0vQm353SV3x2J87/TQ89Mh3fP5HnF/5pnsil2CcfvpheOQb/wCH5BhBnp/ueS28Dr4P/02N O789yBeym/ZdCa94xVVw9bVH4DVHDjtWjBe1HuDMk/8Wrn7LpzBRDo9c9RxHrs7Bw6hwn6tM 4GOBFetgX3q1KF698hdfAde86jXwhpuOBOihti8fN++GN8y/ZXCShXtle7V4//PY1RrPWca+ V9ASmk2N5inN2Cm+7RYTiufcGTjxZ49C8z99Do5/DUP65Avw1mNFeN97j8H19iUtpir9lLzO HFw3+Rb0LV6RsnvPje+Ce49eCx5vfWdDy3Wfv14Pr4e/hV4i+Xl7oE8lgZtnTsJnj4dlui9D 9r0ceeGaq+HIa18Dh68wOyJAyb2NQ4eUDAWYjs/D7cXfhdvVhS6BcYCyaHr+F+HVe4awbrXN 54s9EMdzGsDQw+nHPwGf/tk97mN/m/7uhyTyN/cvr4Nv/d/9gC6YTvfBW++7B+y7bZbLRgAa H55uRL5MJhtuhPvuDemUUFvN1xerXEquv4/d9jP4Umr5eSP8Tv4y+BPMl0T23ArfdfKzL2uv gdfc9AY4ctDiZQOw97Rx5hT8xaOPwfHHUE/9I8CVV+Yg/6674e47XwV/9aVT8M6P3QNXnEO9 /9AqbOwnG0KK+vPwy4XfhTde65cdHKtoP433wTs+iHwVXzUOxrNw8s9XYXXlMXii/yOk51Vw 9D3vhPcXfxNGx4/Dod//SFB3JZJJQVl/fpv19pXPoL4Ly6R9t0PpHiVrQjbS+ekUfvH6V8Pw mXWtR1/xq2+HO28iRR3qEPwqx9YXn3zOs3d8OfMugP/yJTi54dsiXg4cc7BvHxx4xTXw+utv hiOHlUHxgsiw67IzAABAAElEQVSDLWIehUC/SSKLEDFlfxt8Aja1tA8RrhvufDfcrvhVV5AC r9vefhf88xOf1zayLGOn9ZWmUz2cfe4krH5lFR578glvvL4qdxTeed/98JuHvw+f674KPhbe +ZZhzHhVLbE14vRonNwhfZFEppFOhSU2dA5t3Kgud83PQigmwIToTavf3vvmn4cvp7QvqC4b m+n0crjqZT+BH1+Scf6hm7wBp078BeqT4/BEV8pYnIvckYfC+++G1519CnqH3gv3Op1XugDv Iek4PPnwQwnkVHIdGp4De8Qs4c0g5ebbdtlRch572Tc+5/A5hOaZO8hnye2oqGxcbIem6Rtj X5999gT88QOfgUeRx6581R1wrFiE/IHvwOd/8GvwAMaOdsuL6Fh1jQWp6swf+StQlocuU0wi G5PPTWJ8Ca/9VwD978CG9qfgXGD6ciiU7gKjWjbgxBea8APw7aXp9GXwpjuT+mHeDbdehjZd 86Rl/8n5xhgOv+k+uOuWoN0QtLskSjjXftnN8Ltkj0jb7TNouyl6bX1lMF3wdO5ZuH/vDSA9 DN5foYFxvu+H8cPod3iPfgv17hg+eLtP26kv3A+5+/zfcpipH/ZNqKKkz+3Bo/vhkWMxJ74p /jju6H4srNdUGZunH4dbryt4J+j9V8nuH3vyw5fAW77bhNmJe80c8fSjcMl1d0NjMIP7Q/Fe XHwZmDst0VVZ/D0aJn5wIyD4LxEC8+lIrDVKAlH0/pUbbTEYjsV4vSca5Zx+X+2MY8ubDVo6 Xa7UEL31oZjOZ2K9uyLyqlzIFUS5XBI46FXaolgbzrDMuRgPB6Jt0VCsrYjBaOKoz0+71iyb +so10ajXRV3+q1VFQZafqwuZe8tt2BiLQa8tyjmiOSdqDVUX1lctFzw6ar2JV1ez4n+XWBYa 3RD9UzEc9ESrkvfzrHbF8IcdhU9OlMplUVHleflL8ntZ41fruvDANnZqXnnVtVGoPv9rr+7X lyuURLlSEUVqi+wP/F4u+r9LzMYxvGAKHotWWaUv1sRaryd6vY7hk2JdrMsuxT+JfWo8xlNk h3VRUTRWmm3R7bRFtUh8WBA9TJLpbzYUne7QyjoVraLq17zPL+bHqeiu9YRqinkdelqI/Wws eu2mz48ezxdFuAun46HodVp+HyN23cG6+OFzA7FSNXyUL5ZFtVbTvOaP07xodt39HSJRfZ2L VRrLuaqwc06wnwbjuU5HT6Ycf8zZNBXLVVGtGJmBwdpFb2LlxLYnHTcC0/Y7Tc3nuVLVH8s4 vmrVspIXst/TjP0MNJsG66c0Y4dG57in+hP7vLayJnr9vuis1rXcq6/ZPKir0g9p6vz+sC9a Fq/I8bIuxxD+zZC3Oiu+bJA8ky83kL9Oe7I2qfzUROmHsEzPowypilqtIgokV7y6mmKk2UHK va6o01iDnGjg2BoqOmXRNA582V0Wa/1nI+NgKc9pGu2Hsah5dAV5XqeY9pLL3xPfD/J0riza vQHKTGpoctkoeT69bJA6VVO+8OHFK5dSjOGsGKXQ2ThKgjZKvoiytipKedL3IMqtvgPruejU Sf6hLG73xPpwKPrdtqgUKG9V+CN9Kvprth4AUUIbi8apLHw2XrdkflGsdAZikZqbDoxdVaw2 Rbc/QN5cE3XSzTgGWwOjvdLIpJ3U21ImdVeNTMqVm6I3QL7WCJON5Ou/cnNNDP/uhzhWGlp+ Qq4mFliiRqdbcsbHV9ktiE0BbatSgWwKEMX6mq/rXyB5kBlzjVv4IYUswqxjqUeUXYqbBURV 2tLev5ooK5zy9V64EhTcKeQnGj9ePRdUXxHJU7GqbfMijteuGAz6Ym2lru0OKK0E7L3kYyaL rZFS7qSxp2STE9nQIRpi52eEIfJJUtsmq+yOzBkT2BfTkK2p9PL3nvlmtvmHau581BEllBWe 7VSRcmpdDNf7ot2seO/k+0p7sS2HiCWeL8lqk8mpFDpUza1T2e6mu62nbbSjUA7E+Ryowp3n M6pp2WfasZ2mb/y6h23FT4WqaHe6yF9VresKWuYmHKtp5YRHQnLZmGZu4vYl/J0YdFasOTGO oVZHjI2pghTNxGCtYcZYqyumqdo1E0P02dDYxUjeaE/1hT09pV6fjaTeM3NtmbbdW7fsEYl7 S9Pr+aWCxFJRMZ8z0dT2oJQlOI/Fts4Hqn1qzmTr1n6jqNvuz/VlvopYj9j+U9FAO9XOaxNB c4BVMxGzf/aeO1VpE+VEsWBso/LqApk2H4tVLw+IRtdYYeP+is+zpabnd4tUFCOjvblTIl0V KZFfbBEB2GL+3ZV93hdFzxgoir49EMdrZrBGnIgEETrfSjQpxIHTD0g70an5g0+/nw9FTQuN qpnsaBoKQRqoGvtTpw3RK9PMuuisscrdhjYMmr7QKjYHNhXec69WEJU1IyzWlACRws3ltJ4P 6ohpQ03Iumigl8SAMHe2ayqaKAirYe+qVzv+RljmG07h1EP8iy1DN7Wl0DAT/2lfCuyan99J g6zMOJQL9Y5Xu/2/XlM5DPK1gAM2FR5Y4KQr8Yli1/MUxxYc5Dax8hknd55DDusyhkg40aLv y7H3ciP/mUWiIDZ+6TPRQEVZs8fNpO2Pu4LiEyIDnfxNywlSd/IEJbY+5wNtMORr9sLNSJQl 1knK0TQ1zURy0lVyA8d/uY3mePCPeC3JuOnVfUNFywkqairHSE50yIsSy5+YITz2M9BM1crP tGNnqhcKi6ITNkwmPd0HtQWLjWnrFISHUz4bAy2AK+WBBPLTBkQ9x/XVsNvUxj0g79Kigcw2 I6OwYPFPoGx/HAR4cYv958s1XzfVcREz8ufxVjr5Szxty8+sslFkkQ2RRoRfXARyKQ3/ZcSI +imr7OlaE5XwJKOvdV1VLwjbveDnzYsuySz546itxwZeZGQn9577DSn/kBeD5lMknc0zrb5d gZ90tOY7oInfs8qkndPbMTLJaqk/gVT2iHq/VjE2Ztxmgflw1debqNMgLGcmajOC9Z6w8u0N tOFeYHmQFnMLMusxm50mZsoesvChQns1XEyo2naD+iUDXi+EvvIdAcgTpZbl/FBtmI9EXS6I WfZzpjGTQVe59OgiuZNUpqWxoZPOzzJhklF2u3CRvbXIviBsgnpZiExjatbXtlp1NSqrxdi3 e+OcUz5nZRyHSeSUrCCNDs3Am34bVEu8+aEvf0mv2L9nkZtx9F9IPgu0YdGXtPgl7puJL3tC m5ZwEuzNq8L8lXSs0lhIYvukkY2Z5yahecZ80FR6Om/mdQH8J6Iq5+WWj0L+nKZdlDZcRqAa 9WVNLw6Xo45olAXST4AXZrqyLn03G67pDRdF9Jv4c+SpaNeUvyRXEh29QU0I3w7Eedl4ICrS jqF/Ed21yEGufHJqo6iTSPJ/lNpi5ulxVdeCDQgzr9+Koj2w51I438ANjKXGWlS3hip29Uka XRUqjr9uAQF2kKcBD41j30EeckCiY00793CgNlzbd62JnxzMYQVKK2L2+5lWuAUziYyjwdWO hWnnottaMRPXbWyDy5Eqdxq01owR1W/aK5I5sUJbqlU7pn3pAK77wgSFVMPeoWa1y55cT3qr ouPttg+CMR+uGAGK2LdCdcnU/Rbu6Lfm0dQfwbaMRXul6zs+LRrsfONOVdWFSiRIhvo2ElW1 IoqXQOoUqfDAXGQcVyKG6RCNVstRqmvI9jDpmp1sTYejYVmpSbD3ylAKlhRdrrxqHMxegqmo Swe57cDDPvCc9yEno0/TTKyUaPebQ6E7CLcdhZX2upjNJrirtyNq3s78oreq7cgWfBVDE/ET OBy09FuQ1/xiI+NGOaRsOUEErHd7RvnG8KcqNTj2M9BMdcrPdGNnpHYrozFl8b9d3njNjCG9 KGYnSF0nZiA8kFesYa5KNc7SAK6UR+5oiGQKyc8QffIr9WugTJXOPk1k46B5EB0RkSq9vMnH AdXv4jlFBn7M8NSEbWAGdwj6VaaXv1S3zdNZZaPIIhtMA51PF4VcSsN/GTFy9RMBlkj2kOyQ No21gDhbJ52bF9a6OBWtPuXCY1RXrbdo13lOtK0FNOozp30VKNl2ujgcll7auWjhorm/0JRd Ju2c3o6RSVY7AzaSej9oml1OcvEtKkPmAWdYJA3xXECn4iRTbTDwnBEZ7DEXn2WVB2kxtyDT j1nrXqhHJgM8FRpFXG4ySG2/Wv0QLTGGNyhPBn3lT+qlHsC5hj2v14jJDdfyBCwtyGQcMyQv AvxldKVLVxHvBPQolROSO5JcSm/rHmqGLdPS2NBUpk1DdH6WFRPfuZTK9rXaadNE7YyzL6gd YWzSjym0r9Vpy3w1uhGI6Bi38RRzJU4G497xjPMlexwadg3JKUlEmjFBPJWCN6mdO2VHuem/ sHxm2rjkKS1+SfsGHZP+qcnoDuHhCm7KCy1KEo/b4yI6VpPLibSyMd18aBGPTrTeLTSiJ5N8 ukIbDLA4an94jMves+Wf/L4orfw98GdtIMtV2tZPytEcO2exkm7To+8g93eay00Vtv+tULfl zQIHueJXe2NkmDyyRRue7yO8yTWqmcP5s3x39UkaXZWlTs7jRoAd5G5c3G/jBLo30PCYG4X+ KLZCzj0hOlV01uHxIAqDYQtvWRkNCvu9S6i7Faab3Pi0Yzxm3AxOnraxDWHBPOnUI4sGfdwJ m8MjeWaXfEnYm4Ndkz/dyrh+0AmCD96uKjzW0lK71nOVtWACxzfqj3BbdFInDWbXF17koJOG Hwa0s85auUyLhz5yhhOEUqNj8dsMw/C0xDC8TTlMRMLvZmeJtYM0YV6ZLDH2iv+aLXKOYrua fasmt2PQW7ByOgIw62hV70Z0nVKwCvceSQnRRCXw6RjT4fzed+KLkJHdxRMUXnkOWuN4zTlu tIPcKGc5cS2HDSiiIzJZdo99wtFMNoRYRLOz7eplXHvkz8bYxF0RdmV2gejs8xcicUEkbrZu p8fnRXV6SQkPB/5yZ3NTOYBs+ZtKfobokV+JpkCZOt1ctHU4H3NiIquDPHP/jf1TGI1VCm+B Tklz0EdTG3ggLCO8ZVJR2438zC4bZT8UMKRBKtlgSHE+XRRyKRZn9xjOglG0n3y4Fssea+BO KfyZvTHA4m1c6Fykisbr9lFd6iq1Ywx1mzlhgW2WC8t4AmfZ31zLfWtjgSOTXFBv42L5VmTS zuntGJlktcNlI3n0YGgUOvXVHBg94WXF3aoyfF+1ro6ohye1xHMBOWloMePZIoTyXCB5kBZz i1L1uDVZRLLWIDtHZyGGT1t2qoEISYCX1j2BfqACTH8EdEtsuQ55QUV5n2a8Bk/OBRLhl4lY bflhdjKPGaIR22VJkYW2BsmoQFudcsenl9KHeTUs09LY0FSmTUN4frYVTLYiu22aTI+ZPpXh lihcILUjjE3aMSVlrG8f58TqoskGhhsYDM1IMfTJp+0eh2Zc6PYRv0Vkk2NMUNoUvKnbs0N2 lJYDFv0Xms90G5c9pMWP0ltt86sI983Q7BLG0ED2JrjZ+qpohsKmEo/b4yI8VmU9lE7zimpf UE6YcZRUNqpi9EdcPTpBLA72AlJ4/i3pcttDcfUF2+XXHpdW0xZ6oJ3McuwTvrSJzt7MEMq2 7V+1g1yJlrE6UU9zdjPfj3eQ00aseLpxM6O0Qa3d4np+Jt8vsW2zNtrVJ2l0VdZ6OV8UAXaQ RzGJfxMnyPB9Ho/HdAdremIS2KWsjmY0MG7TiooxS8KFKqNBYR/x75BTDawdsHE0UEH2p5V2 bTQV06n8N8HYVbgr2HLOelm2sQ0ytMh0NhUTrG+CR2Dk0cywo0vG6crV8TiODPcghY38h4YJ +WZckz/dNKtd0Z2dOpX/oLCvS++7twNG1rV44iwzUn+Elacu3UWDjBOl2mIEtM6hH1zKOjUe s4EX9oMUAuARpJXuUNexPQ+WYZJFGaTB3uO/vBc2yHZU48UcqikZHOTo+AzsfFsICsUPlHyI MeLHYzEaYSzYFd9hb+/yXVgM8YV1BNs+8uo6zmd4bfm4obQ1PI0hx/JkMvR28uRroR0GRAfy epKx70/6m3qhZRnNizAgGl1jZ7iq7kUIH5cMFOiY6AR+j35ZVKeXmvCwjoibUsxOjYBcpjxJ MDSF6SeiKVCm/hXd8j2KIWjkkTbAwo4rnW/ROEjff168xJwMUYQ7apVucvWbrl4+WLjEyV9q uy5rC7JR1pdHB7kMa5ZYNgQIDn25WOSShXOSMZwFI9NPyWWPtlFkKCt9Ssde4MbxJMMxoC6s OGI1ztE2kLbIbIrO6fnc+ww70Y2TG8toD4UvN/BIbQInJMWV9GJZxvlmLJbYikzaOb1tZGCs /LBP2an2SHryeK9LR4XiCseM7sq7VvJNPBml7sMJyxniOUt/yXA1ZKM59SDliTg6DMiGz5Se 2oI8SI25IcN/2kLdWvZhiLz1Cdq3Ezxl1pOxRaM7+cLV6u8J8DL1BB3Jfhnbra/MjlQtrzWx 7ofMY4babvHXMluDeGe53PFppfRL5yEpbGgqU9OAVYXnZ1vBZCuyO1Y+OOwLake4n9OOqWnP D/Eo4/5GZx1zf66Jcn42Q8sC/81mYQmPAG7HOLT4yCmniN+S2HCU1ipzGW/S6JD4wQ7YUVoO WLL1QvMZtXHpZ1r8KH2CvllfMfepSbuihPevxa27EI8vGquyLZRusZxILxvDOJl6QnM0Smjh ELWnjU9B2kH6D0MMyYXupiPWnKkvuU0Xlge6nsgDOuYrdDIbd/RP1z0/RCGwmS2SadtfhB3k sgId0s/zwcioBFLmxDnI5QlztFEdJ7qJWFoMCIb6ND4FeQ9J/OlIKiX9p+k/i19S6Kr0NXKO OATYQR6HjOt9nCDD976Bg8dXaVeg5VD0B7M8mmhWzMNGDQ2KPF6+12y19E5zqQzsQP8uheki 1Xun6fUnq9qZKgVIeGfKNrYhUI8nrOTuMnu/iHR0oINcOfWmfYq1hZcpVP3d3TPPAFMhVsIN 1O1yhT4IJh60ZFx0urDKTCyWxcqi/ohVHC4aKF6V7LOoptOEaSeYZfRkwmPSF1W181VjjpeC 9qxYXbrSDA/+kVrl6GjTHpTkBaXCXvGfHzIHnQP6ssI8HrOXdS5yDLqOkvt5mgqf2H6k5lgh kEotE/oGV1W83cwri3bJUBnyU/NFHi+ULYmCchRJZVpb6Tl3UxKv6T5UY0Z+D4+buLSRI3ia jmRj39+xnZxmu8nhZ6LRhfmwrU4IhOVPoBDjHHKVEUiqviyq00uyCA8L74BcXpRnIf0+UURT oEyLeJcc0O/Cjiudb8E4QB5LynNecXhkUvY7XSxtJr3h3Sq6cv9B4xIvf6ntuv+2IBvlmJL6 NZVsCJFsf71o5JLGOdkYzoIR9VMa2SMvsi6VTIi0fCmkcyy6/aOpNvooUdWio11nPbQLTObo N4MXMS1adLZr0IsoCcaozLcVmbRzetvIwHj5YYWhUwB49NT7uPVM3c+BIWz0Dk/sF+noruJA 0vFNw3JG9528hBJP3TXMZWhQbOoNDKo6/0PnuTDyIBPmNsFblEW+rgyPyfi221V7zwnwMnZE uJ7g9wBv6HKDabxxtmgsWHgEyosQbl5kHjOaxuS6imTUUrmjyKP0tnyh57A9JRLa0FTmovnZ VjDZiuyO6zNtS1jzDGqH1ssKs7RjisqRdxhE1iDRmVO1Lvf1+a9uXUiuKrX4Lu18yYyPJXJK 81uCMaHTJudNryU7aEeZdhr5cqH5TPXW8o+0+On0CfoGa+9H7Iacc05FvLlorMrGUDqSDfan lhMWj8aNs2XAUD3hMafzaRxMH+vf8GFAIeesncxkwwa9Kn4uqs9uDz3rdqkKKG0sbTYh9Gyd 8PXKXbjZiTJt76fLQY6TbwwXSc57yVMljJWO4fbQB5DTF7kqOlS/xodXMWH6oFwT9VpN1OS/ eg3nIoZfk8RuT9vy2D5JqKvS1sfp4xFgB3k8NtFf4gQZvvcMHLm7ScfeVEfVlfIse14+s/oU FrZ6UFQaOCmpi3q9jo7yNu5SCa28x9EQpTbgrLPDGYzlzgLnDnJ0QmxDG3L2BYd4xE46KZ07 yK1dr+ur5tbz8uoINxfI3ZVbdZD7O6BzGO5kMhmLMe726dLOqiVCXfdHWLASzq5+sBSHHY+V stCnbbhSDHXbQJXpkuMxF4N2IyC0/ZXNEN9Q5Sk+6bKIbCulKbGnMUTWtrW7xN+lgotLjhjk /s7n5Q7y8EUuYRj0rgzboeAlGokGjsnEywPEF7mKWOuu6lAh+dBFKnb9xGtJxg2l9XfWz8Uc DYCOt9hkx13D0okOdCwmGfsejilotukPPxONLqNLG3sLVu7lYggtbCzrN6p7UZ1eGsLD2/k3 EWM8IUD/JpN1UVMLGQG5THmSYEiEWJ9EU6BM6/eZXhjcph3kKftvJOODyhjQQx+PCd4TQTtF K4sWxDQuboNeNpHarnlgC7JR8rJxIGDhSWSDhXPw8SKSSxrnZGM4C0bUT2lkT7HRFu06Oa8d l4Uj3cRHxVi5N9R3cYRtA9NfeNSaFhgjly+ZVOEnapMdWiCcxv6+FZm0c3rbyMA4+eE6ZWfo wbAf6lJ4Cim37m0WqHi6TJ9ii3WQFzBudsuzQ+uNpmj3hs7FXQ9HzacXRh6YNvq9mNxWUr2+ RVnk6UrUX3IfwhxPQEw9uUkLeDZnxTwnwEvr7wuhrzQ9uHjiWKhytSLzmKG6UugqGs9L5Y4i lNInkWl+luU2NJVZWDA/2womW5HdcfLBZV/odoTmNWnHFJUD8mLBmFM9OixAnK23HeMQnf8L 5RTxWxIbjtKm4E3JPztpR2k5YC1yXGg+U8Nq+Uda/Ch9kr5Rtc/xnodG2bpnA52V4XCmxJuL xqosjtItlBOaxuSyMQwU1aNt4XACXUeM/sQTj2RP+bviR95J9ZLjdF7idikaltIWplV9H2PY XHK6R8K4xeTZztduB7msAXf8k82IvJErVkQJ/QbheeRoTfqb4sNJ0kXmuUIRN4MURbFo/snv cve+334rusM2NXBxnyzXVdtEBheDCLCDPA0bxAkyfG8MnJk+qp7HywKG3kCkQRQ/6aFBYR8L cpIWR4MrcWzaiWjVWoEYgEEnxNbaEFYE015LNBfsICfSTbxruSsAnTdoWJG/lNJ4n7HtCqQS k465YJKEuf25yIlN/RFui67BSYNZAInNhwWYnZrmeGLYQJX1LMRjhiFA7MUTXIjQNz5LxRC4 RENTneLB7LZfdAwprsDU2COeZgypUkdr2vGfw12K5bQOcnSklZUiK8dcCOnXpI5bybQLF07Q qVMox04IvLKIL3DHlpw3TK3YaHGXnMbxmmvcUNq6dUJhPmyLmn2JrSSE6LAMa48+HPWusU8L DUlp9sty/59odI0Be3HIakKoIMN7rhANocTe10V1egkID+dOuhi5THmSYOggimiKm8CaY6Ok H5Bf6GJmJ52yEpQxC8ZB8v7DkEKWIWnLRe8ZHWeu3SkBLCO4GBCo7YYHssvGoG5SdSyTDYaU wNNFJZfS8B+mTS0/EZloP/lwLZI9vo1ixijg/QxBPW1iiMfH7aQxZ+1wDvSU/4UWadPs1DH6 FSecMc4buyo95hbws4y/TOG6bJm0c3qb8DGxPm2a5fNiBzmqgAGdzMMFuJF/VJtCpOg2xznI rTAD4Xoj32P51KSM8ll2eZAac0OGespet9arAfmMx85xd1m8PgsRkAAvdz1UTgxvxJbr0PlU lPeJeChdYOR1IEHki+aftGOGaMxgHy2XOz6ZUV7z30dkWgobmspcND/bCiZbkd1p7AtqR7if 044pI2ODi7c2o9AinJyLuLfrbMc4bHp2tl1v4Jn4LcKnjjFBaVPwJh7V2VE7SssBi/4LzWcB PBd9SYsfpbfa5hcf7ZvxEDfNWXWP+6uipJ2Uwcu8iccXjVVZFKULj4WgnEgvGy0yvce4enS6 WBx0CuMLKLfF2NPruDEhxraJqy/YLr/suLSm5pgnvbhVTGRjxZSS+XW8gxyLnHT1xjSa1wRP WON8X55QD9s+FjUd7766eAf6WsXsVKcTuFb2LT06+ySFrtpS5Zw5gAA7yANwLPkSJ8jwvW3g mNiy/iqTCecRY9hitTQo4owdTVkcDToB7nitKuf30rS4o7qjwklsYxvCCodImwy6YqCcui6D zJ6E+oItZmfw0nbJGhFrNPrl7vHwX6emVqAXXLxI/RHXFpfhIuvRZS9wMJFwpZ1dMl9aPOTF GMFQILIUeRxLxWqL27XhJ1v+f4xxRkeJ4ncBxhWTAfsQ/1HJky7FafbHUuDIPvFBYLJKOfHo PMW7Du1QMCnUk1b20d0IdtquxzflxRegOmiyY1U6QsbpsR/Ha/a4Ib7cupwIjn1ykJOjaxnN Ni7hZ6LR2R6MZ0t8FbtApcPdBA3fcD3294V1yoSOfjH5Y+Qy5YkY8JTTwpBeWZ9Ek7uvzOKN 7UTUuiN2/GKIFZwYVO3LS4lOaxws6z9/8oq7x8Ne8LEZ9y0Xs8r2UX2xuBh9ZvNAVtko67P1 K0G8UDZQosDnxSaXesrQj9lZhE7bOP1NzV6GEfGo3U+UV34ulD2WjjA2jp9bhznBHYZuxyGN ubi2+eUso89PFfq/RZe5wyKURn6dreMpnyH6OLLLpJ3T28Z5FCcnpz25AUCG7jN/fSt0XdSe MqGTtJMlPEmksW3JElN6zBPluUDyIC3mLqq3IovCutJV/sJ3CfDSMtbZDzR2QosnS8u15EWI QN+2QRsL71+hW19CSbyvw86aGErHTNYxQzRa7Vqmq0gGaD1qje+w3JFEUvplMi2NDU1laho8 NEL/2wImWfTbYprc9gXlCWOTekxZu1qLMfGHScYEnVNBzHZ8HBK/xcoma0xQ2hS8udN2lJYD Nv0XmM+CPbbgW1r8KL3dtkDx1DcTXIQoi0HgN/xixWW2T6ERjy8cq5id0oXHAlVDtk9q2UgF qM9l9Tj7OFTGfLiid2xL30i+GvVrUJZl9VG7ZPplacedRmRzo1fP0r4janbmc6GDHKuc0R0r ahEl0MfqDiLaLBChENvm7dgvrQQWZex0cx0pQurMZmiDiJ0y/bOrT9LoqvQ1co44BNhBHoeM 670tFOzVO2/A2UcsraPBcoKo09qGLbmi/Ioo3uYyoW6Eqfto2/pKSUCp7ReqHX/unVRe2sKK n3Y72tDwj107d3vhbl654kuXlwYnchbYSLNeGUZDxZ786VRx/aATyFP4vkJx3VBsLgCTDjgr k/WohVTcEfE4GizD0dmX6PzzHYTBnRdp8fB3cFBsdYtwjD3qHf/RMfDnotusinK5jPHa+lbC xY/GuYwXgfSDvLo4Z0bsEU85STBjxdSijxQi/wQwJf62DFrKNR2saEfsIgNdpqdbuKXhEXDA U2Go/joNHFf4ewFPhSz8I5oCDk5z0Uv40jRZ1kJeC48bNcbcdFqUER3S+NTyx/weGPuUNgXN pqTo08L2YHLtPIsZ33RyInx0MlqTebOsTkFtdPCKt5imYtUHYmFSniQYGlL0E+1+jfbVVKxU 6JhoyEGo5Yd79wI50Nv2PQNEZ+L+w/ALcgdFxb/vQRPsPZhLeGJPocTJPqsgZ3/otoXGMeWL kY1S56WWDVSm9ZlJJ2Spm/rDwWtp5JLm2ST8l4VOxMbZT4RZSPYQP9sO27G88BvlojyuurJu CRrNI7hIrXURFSw/6T6WEP/bSfBZ0xcKCRBKFvnq7wCSdOHloU715dtiBXXfRFaZtHN628hJ eyHdNBR3tMtdv6ExHHZ02brNtsvIeRW9i6bvL8osWOA3NKgn3dduXSNT6X607amM8iAt5hF6 5YuMdUtZ5E2etzIpToCXHvsOGbIj+gqdbnRsvBjr8JQnEooY19VHNNOYIdmYWFfhpo+mP69I JHeQNCev+SR74bloHpLchsYyiYbQSVgqlj6zYZJNvxEuaeyLOGyyjCnCJCL7FRh0giXgnCKg 6DPzOEwop4jfEulQKrNuzTsX2e47b0eZ+X5Qtl4oPhusYszlHF78XKwuv9uKsE46tin90r7B xWI8NenaqUsXRq54q3Y+UxFfBuaKxG/WZ9xY8JLYtk8G2WhVs1geyYRJ9AHOQVv6Xi4Qi+7E StwurDpJ2tWRvXdftcym2Wlf+enm466oou+hjHG8e/aJd1VM1g9f9gXHRLgsHeLJm7ebCy9H bT+8StwFm8Q/rgtQTR3Glyft32bcdn6TIfGTq0/S6KrEFXHCpQiwg3wpRFYCvXKLx4KtyaB/ bDsXuNF2vOZfRifDrJg/Ex8peDOuOb67zCk0106EnKi3e2K4vi7W8d+g3xOrMiwJDlZSDLPh qjJ682KlPxJTjMEt43CPx0PRVRdekNG59TbgBQnK6ZOrrIjRdCImY/lvLIa4c9y7TNKKe96p 4hEV58QZbVii2zk5QDRj+sHgPPaPQwcUtflV7qwysU2bljFk0tDOBvfkfjEN4y4dbc6JVtd4 4MeDVRNLrBvcp5MWDz3BLTXEYOxrqPl0KFoqPps2JtAApR27kbjzprmBJxlTUy9SID81rDYE Ejq/ZMReGSH6QrFA2cZpR7wtf9aXu2LMwO76COPMT8UEj5LTOJBjodToLDyCOZMXX1ihJsoY X7ff73v/et010apXDX5YXuyuWkWvpgmd/QEFrHdFy9X/VTHWvqQ048YsvJWaRuEHoFJf0oz9 9DS7ajTvlo4d3KPWVMZertwSI8ICwwSt1tTlf8Xmwp1spjb/aVmd5FgGNMY7waHnTZoraIBL frFjsKbBMEyPlDHUxnKrK0YoC6coE9cxLr0MFSTrglxZdHTjTQnUFkC+lvHBZ7MZ/puIXtuP +5dTFxlTjrT9N1anMuxdN1SW/KTb2yWN4dBYXrql8leepPH7UcpP6l6ZN4tslPJeOm/SyAaP zsD/Li65JElPxX+ZMEoje3BCoMZscPcSXkzuHUeVPF1AO8MMrtlwTeu7fKWJ96kYTpgMO2oc 2BsLAh3mfaGxsMwuiubE/tYTyqJodfpiMpN3NszEeL0jvPGOO4QMRdlk0o7pbdkg6zRHudkV kynKAaR/MuyJuhdfHG3OwOQVj/ujbMkFdpeNVKx3DLNi7TYYU/g5tJFMj+HYl/fTSNm07NSV DfgFlgdpMbdJtZ+zyCIjG0sxJyPsGmKeE+B14fWVlM3U9yCKeAp1MJp4MdZn07Hotvw7goL2 T/oxk1ZXeYsBqeROcpmW2IZGXU7hlZbLofSYZNNv2eyLOL2cbUzNxFqN7qLIiyaeRtbyFO2V TtOfjwZiPDuGRKZxmFBOpdGhaXmTxstO2lHxc90LwGfq/jRfH6BOWHDiWnZrWvyS9w05I3Oi sTYQU89fOxdDnGf7i3r2RrGkYzW5nJBto76WWCSTjTKX/0c2TBZfApUhP7XuifOLeInTtMvY brliXfSUL2l9fSB6nRVRlvPiOB+K1mGhea5NMD7LBXvin7hxEsqy/OtsKJolGeIkJ5rKN+Fw 4XvlkLwzi3QqfHC+6dj1bfMU+m56GNYnrmCcq7Y8GqStJP/hXA7nanHJlzfKpCCa7blTcl1l yuGnrSPADvKEGHbq/g5SGuzys1Bro1NYOXS8QQKi3BqoEocY/9gIjxFeakA7NKiMXLEhnsOd ztqBqcqQjpPoghTuBFa7WCm/+xOP0eJEsKt2mrrTmEG9jhOurbZhhBM579gp0R/z6cWBnvR8 wavTFNDxoc0q3RvjjlxgCB4flj8O27RjjdqA/VBtG8MMlTrFnfbbjkezAsWbRQqDDe4yozTz oaip3aTm9yCNbl4I7sacjXBRoEhxqnKm73Elvms7xTLiMcUQK5AviVKEVrzZe7VvBDWuhFcI 6/Bxao22eohgZzCWWCzdSR7Jnwz7Rx5SYWEUnYH+1DTiRB9/90NLzPFiSjLMgzT6fZYTpWpD 9IYLlraxXLPL0FWG4x3eIm6WOzRhBJ6TJiMPJO/6i2bEV5Uv/WnicWNOPVh0xcqJRdhQfhn3 2o3jQppXVUimcPPl9wRjx2Sb4aS7qsdFLmfGShUdyjQcTfqYp6V1Yhv1JI7abuT02LsjwryX fZMrfUmsJZafUbpm62YhjPra/szhuG2s9hwGGpU1wYWCqL6RZZRqq9aCXvr++8C//31l0Plt Lq8MqFLvc6R3BBtM7B2FS+XvtC8q1oKT3+6CaA+N6ZhYNiJFPTXJJvyWy4ZAc/wvF5lcwoGU Qn9nxCiFznbyc74S0JlVWvSRMhwXdmiXKXr5xUrV5mUa5zJdQVSbHfc4wAkY9bn5zIuWezu4 o9PlK3nyJ6hbqKyyc+E0hUzaab2tWjTBWKtFG1uJr4dxSaz2jcd7FrYjLd0gT4OZXegjUdd2 iRnj5da3InagrKccvtsihPQFlQcZMQ+RHPiaXBahM8GpR/qB8pZ9WYoXjv0Lra9smuWilucY IT6jTwxxsOaw0+VJkGR6PL2u+t8bD+oFNhq3sEju/HIxmp7otz7pPpokNnRkXMlyrLFlY2ee k2KSTXY75bHVPqd9EaeXv/vNUH8H5zrUprj5mPx91F3xLsKjPrLnuYVSVaytL7bDZRnJx2F0 vuqWU2l0aHre3HE7CjFZPs/cWT5Dt7Co27on9lRRevx+9/eDfhPineAn3c0jN7ThnK5i2xG+ 7soVa6KvTlMmHqspbB/Jm/SXWjYunZsk6WOqXX76l3OW4y5STtGuGd5bRRd/BjE3NoF87wph ZTu9KW++vOK04+yT6NGTLnbbkj33m1EekIv5rkgBfom4kCh9JFW1UVXZla7wKn7YlmD7XSe+ 9ekuS+YSDvYGq2QtslLFyWicOyXRVVZJ/LhNCFwiy8HO5T9G4AIhsAmbm5fCpZcur27j7Abs u2Lf8oQv4hTnzp6BH08BLoM5wP6r4PAVl4eozYbH5sbzsLH3IFyBOJ7DZ9w9DTPYC4euPgz7 QtjKtOPJT+Gyq66Fg+HqQ9S8EF83NzeRH0JEuwjZ3ICNzX2w70XYBhe5/C4BApvn4MzoxzhA cITgELkK+ffyBKyQoOSLP8m5DTjz44mUHLCJEuTQVTi2X0K8v1w2YrtfQNnwQtadhnkvCjrP nYXTcpzvvRIum6Mu2n8ADl4o3e7VPcExBHDp3v1w1eGDsHAYJZJJO6+3bR7YeP4MTH6KkgDH w2X7D8Hhgxe3XWS3jZ6Xy4NsmFP5iz6X170o90vvt7NnTsNkhiMG7bL9aLcejNitoTYnGjOh PC/w1zQ2dCZSE2Dywsvu7RtTkmfkXOfKKy+Dn84vgwMHDqa2V3gcZuC0HeSzzY0zcHoyg799 8O1QeOLfwOS7H4QrMpC4tSyb8PyZDTh4GGvGtj4/nsB0hrPdF0gPppaNW2t8ILe0AxAIuHi0 v+y7MaDFB9ei3fWC/G2ehTNn96LNdDlIfh78YAqv+OXrX5S+kDh8dlxXxVW8y9+zg3yXMwA3 nxFgBBgBRoARYAQYAUaAEWAEGAFGgBFgBBgBD4Fzz8L9e2+Abq0L3/3I7QwKI8AIMAK7AgF2 kO+KbuZGMgKMACPACDACjAAjwAgwAowAI8AIMAKMACMQh8AmnP72Y/ChW++G1XwN1v/8I3Bk 4dGruHL4PSPACDACFx8C7CC/+PqMKWYEGAFGgBFgBBgBRoARYAQYAUaAEWAEGAFGYPsQOHcK Pnz7h+DARz8F5Xtuv4jCemwfBFwSI8AI7F4E2EG+e/ueW84IMAKMACPACDACjAAjwAgwAowA I8AIMAKMACPACDACjMCuRoAd5Lu6+7nxjAAjwAgwAowAI8AIMAKMACPACDACjAAjwAgwAowA I8AI7F4E2EG+e/ueW84IMAKMACPACDACjAAjwAgwAowAI8AIMAKMACPACDACjMCuRoAd5Lu6 +7nxjAAjwAgwAowAI8AIMAKMACPACDACjAAjwAgwAowAI8AI7F4E2EG+e/ueW84IMAKMACPA CDACjAAjwAgwAowAI8AIMAKMACPACDACjMCuRoAd5Lu6+7nxjAAjwAgwAowAI8AIMAKMACPA CDACjAAjwAgwAowAI8AI7F4E2EG+e/ueW84IMAKMACPACDACjAAjwAgwAowAI8AIMAKMACPA CDACjMCuRoAd5Lu6+7nxjAAjwAgwAowAI8AIMAKMACPACDACjAAjwAgwAowAI8AI7F4E2EG+ e/ueW84IMAKMACPACDACjAAjwAgwAowAI8AIMAKMACPACDACjMCuRoAd5Lu6+7nxjAAjwAgw AowAI8AIMAKMACPACDACjAAjwAgwAowAI8AI7F4E2EG+e/ueW84IMAIXNQIbcOrEX8CfPHIc nuj+CFtyJeTuyEPh/XfD684+Bb1D74V7b7kCTj3+ILSHAIf27/Fae346hn2v/VcA/e/AxqH9 4L8FmE5fDoXSXXDt5QTKBpz4QhN+AH6a6fRl8KY7r4G/fOw7sEfnOw/nz1N6+emXdsMt18Az X/tb2I/pZIJXvukeOHpkn50QTj/9MDzyjX+AQ16aKUz33Aj33XsUgqnATf+N74C3HzkDDz3y Hb8OWTLWY5OyR5Ly8pvh3XfdDrpJioIzJx+Hrz4zAZnmPObb4yX2f5Tf5Q97ZGkHboN3/09z eOj4SVMPvh+P98A7PngvHPn/2Xv7YMeO67DzTNVwzBE5E7/hzlAZSkvSY3op2QPZw+VStqNQ oFgWuYoNrqyPjQTG4m4tKH8UBf0RaaEqyimoSgrklCUoLhWoKhtai9DGAZ0i6DhgpGBkgY6N MRdUBMYGS8JImE0wG2EkvASPFp4Gr6r39L333Nt9P4B78fEeHnBQNXMv8Pp2n/71Od19z+17 +ugV+PLv/hFyPONw7A/hp/7eT8O3/vyvp3L62V/+X+G+s27pLCGVw/blS1D54wo8+/yfwnd/ AHBn7AF4z2OPw1vPfgt+v3EnPPmB80pqgKsvX4Rn/qAIv3/xaWi1YpBIvgPek/pH8J633A1H rZR7Vy/B57V6WSxO3AKvfe3r4a7zb4Jzp1XZduGFL34BvvGjk2CpksX8x+CWv/taeP2dd8Gb zp9TWJvp//JHPwZnLL4GW0VS42dXG22/chF+7zOfg2dQp2+5883wSDIJ8VPfgD/49t+Dzzx+ AfzlBjhxyyl4/U/8NPxs7BycoEoqZU1notfvR8f+e3jf+1z6uGe29/f/zhmDwRDb+md+9R/C DS/83zoX1BFDjQyWt8Jtt5+Du86dVdgA7F55wdBf1ZaGwxvh1mP/Db53xGQcXobHNPvaufoy /NtnnoWnn33G0JdbbolB/L3vhnc/dCd8/Q9fhvc8+T7YUtgEnU5nBhHaI4o+vAlejKRrQTUA uPLcJ+Cz198Hn3nXOW+ivavw3NN/AtgT2LpsdwVWfyL7BtmWsf/pDnjxqy3NpofDE/COx94H atc2ndmseqa3sbcyy7J7b0mku9S/v/YX3gkPnT/tTWj9ItP/X89fNvrbYf9HcF/yvXD9K38I UfsGvYAr8IlHnoJ3P/NJuNvH3u20e9fg4tMF+Nxn0BbkGPmORyD1D/8e/M3vPQP3/rNPwi3/ Acehb+zY4yP8CMeiE/dB6n3WuOGy+R8Nh/C6n3kDXP5/2sqYEK7vDFPfR+69Dn9I4xoqXnS2 vwZvGr/o6VukDjsfc5z+2V9+xGgH6tOj9Dd3f/9rocfQ5K9csMcdKQPpj973KbY0pc0uuCYJ lB/p46zzjem2axKMMn9w191pA/1sYj8Fu3Dpy1+ASzv62AsnTsApHKt/+u6fhXNnJZTw6cyx /MdwHDN1Qep9/0d3wGO/8Stw2mVPvnNInIO97wGlT93bhkv/pgKV8rPwpy05H70THnj/e+B/ S74Vek8/DWd+/SPgbjciELXu9jzix07A38X6/9Qbfgbuvp1GNOpfw9QtypjknUeS/HxkAkyA CTCBNSMg+MMEmAATYAKHisC4VxcpAIHDkYhniqLZ7ohupyWqxYzxm/w9U+0adRoPe6JWSNm/ pwtV0e7+v6JdL4uElYeRvlQX/ZGKYSTatYJ9XabUEMNRX7SbVZGOmWWj20jkCnmRz5v/sumE kT73F98SzWpRyT8pGgM1byGG/a5o1ksiLmVI5kWj3RXDsZ5GfvOXvy8EytKqF83rMY9YKmvL kcumRcyoW0I0h948m/m4IWcskRLpTEYkqT6xhPE9nTT/DrG8GIiR6KCcNqt4RtSaHWFmOxTd Vl3kksQjLgrVhuj1Q3JquqB4RB2KSsZkCpAURcy73W6JWjlv1xtSZZSQPn1RSluyJ3MoZ1M0 m3VRSMfMdkTOHTsx1qtRdvKJJ0U2lxWpONUFRLrUoozxOBb9bluUsyQPiGQ6K7IZR7cglhHN ATWimb5WTNs6FEvnRMHSlTyWZTA1GJvFdKuW/iayolpvoD5nrXYEkcg3LVlccss2S6fsdJJT rWtXEq8Jz6TfaYqizRvLLDSsMumA7d1uilLGZJyrNES3P/BwiSfTyDInyB6kfQHERbHRo4yk Aei2FEuLarMt/uY//NUMMpCSj0U9T+2B5VWbotPtilajKjIJatesMHsGRxTvWXhmaIi6HgW2 RxR9iKpr3hqYv/RFzrDtrFDIO4mHTUv/YyKVTouM1X/J9kqk5Pe0bR+5i9/yba++3WmFZzab nlEbO+I7Z+HL9rTXVLt3SrHPsO9tVguOzcVyaGVBn5Eo2f1jTBRqTdtmovQN7tz79ZzRr2Rr vi1rJh93RMbq2zPFqmjUqyKbtPpCMMeGEY5DjYqZl2z3WFqOpzgW2QWSzZv9XrpYQ/n7us5P ZRhB9+dmi5KHHadx/JlVF6ONoTZM8ySg7zNsKUSbuXIz6jvffCOK/QgxV909wssfpvRTmGLU 7+DYa43tVv+USpAu41icrxnzgHDpTH2sKvPCZK4s2j3/+UjgHMyqy7DtzCOS2aJotNrYV9ZE nuYiKG+prY7J1oXGIWrdYyKdK4hiqaiNr/FM2eqDotQtgl2qIvM5E2ACTIAJrDUBWOvaceWY ABNgAutGYNSynePZSsdbu35DJPGGJG47FDHJuGX8Jp2HLfJfyp/bRct5GRd1xyOg5DkQWXkz VmgpvwnRLiaN65LFtva7/NLMJUSmZrlL+jXbwQToRPG6MkaigA6MXCvo5snKPkB+o7y86bgo uPMYNrDsmG+9mrm4SJYc2ak+aj2HLflwIIcOcvPTLph1zrk9/fhnm2OiqDirI3CyynAf6nRD nCopDhsr1bgn8tKZHS9YMg5tR1QiX3dnJZpFy3Ea19uh6cOvYdVVOowqPUVhZK6Dqqkzal0H ps4ZjuB0FV3pymdC24lRQyRiWevGdmDWB79remLlrekzZl/HNpTl2e0+7oqc4gQ2NXA2JjXi jvn7OeDG7TyWXdDa2uHi+n3UFUXFUZB36Y+f7kl6s8jQsts4qzwIcdrCbNe4aPjaOqWbjVm4 9sAyQusDpo2qa1QF62jasPlgIO/3MMroI1KiTQrrK9tQFNHOsla7+bfXbMxmaWNXFfHrbGVH tntvwaKWoYcu2Ie79JqSj7sVs79AWwK1z5AJfHlbV2p9A+VGR2wTsnW7/6O/OcdBQ9qp14ab Rv+mPjwd2fnZ/YmTjXE2buvjgfwxMsMI9Z2bLcpHujp1nMa0UXVxljFUMlM/JJ867oZvMzUn 63ym+UZ0+1lE3VXpp/ZTlHhQN+dTih31as7DnSzNu8Kms/Uxoc0LqTjtaKfV55BCYV5qeQcW ks+3/8UCQtcd+2rjgbpSdynfuFez5rb4kECZ0zl9yxx1kwVM7IdkAv4wASbABJjAuhFgB/m6 tSjXhwkwgTUmMBJlazVwPOt1glLF+1VctZtRVr+OmtZNhOoUkKkHomA5GhIFWqFLueC9geFA 9zrUWpYD1VnV61wjV7eXapbjHp359sprdFTE0hXdqYjOnbx0kPs5r5wsUZAg+YUgWfxuwDqN ptexjPm2SgVtZTnlodenL6rlhi0vpcn7LEm3b/LQWaPeItI1er5mxTROal2tc5O9dEAlPKvv Kfm4U8K/m078fj1rOaLSwuexCV7SE1lrNWWq7KQgGTV+yJvaze3QlW1h3qiSY96UhvKBuFx1 r3wmtB3e3opGqWw6c+kGGFehd8hhaWXTLePDiayiz/g7lafKPTIealjMsCFmZlJ0VsnLtyTK zrJ7Q6JhSzre8lpbB3Exq4B2m6LVftg+Sv2oHm4daUWUYdQpW+0fF+QnsfAph55IBzw0okQz M7P6hEntYZQRVh9k4qi6RpUwCxKVtOPA1d+0sBLiCvKC+paEIpv6EGHQrIi69VaCX3vNzCxi G2vVs77MXLZPe9m8sa/22L1P4e2is6IVEnrfZyYfa45XTxqFt7dbVfoGV9njLum62b4ll31S cnJgZzwPkrv4kFl9eOo43FX9pXzk0c/mSRe0a0hn/RhGqO/cbFFmks/dt8j6uMefqP3NLGOo LFf9+MkXvs3UnKzzGeYbs9jPIuruSD+a3k9RYtIftDVnjB3aczj7IXLUdNbbFFSM75Hy1NKq Dxf08dnJYyxKOMekB4zO7/Js3rqbudXpQV2yZM/XZF8mF4rI+ZO3b9GlmJw2uB9y5cJfmQAT YAJMYE0IsIN8TRqSq8EEmMD6Exj3aDVeTFS6ipfNXfUxhm/oKq7aCTcLzg2ispLSyG8sqtLB hCuC3R+/G1uZZlDPi4J6N4LlJmRoiRI5b0Gkii0lu0U6yJ36Ssdx2sfhrxSsnQbVR01EaTRn iJUgqoPcw0ktyDiX7E2HajwXdOMpEw5EpSRfrXZWQMZzwQ9O2rTCWAlr4luvobVSDW8wtfaU RZIuaTfpQjTwzQFjBbnbUUbpPTeqfXwFu6g4mbsiY9zQos5huBFySBpFdiqi6Aql4Ce37iCf gwmuqo9h6CJnRXpKqC8o+DnLVC6OJkrprQ/arhn2R1/RSvVwO7FakWRw9AXwIdSEngFDKlB4 IBJMPc7BzMfhqreHVU5ofcD0lDasrqlV6ZtvOhQqFOopJqrBcUDMK6k8j646GXvbaw5mkdrY kcE5m6Nsn/YSk+zeKdQ+M3QUQ9HQw7Ri26X5uLpU6nw2b4VKcj1AtNvXw9vdN9hFGifG6upU UZSsNz1imZqewPpmh2xCGVKFuuM8w7NqoSScIXSBDvJJDAP1y1vfudkiA6+ummD8xp9o/Y0X d1BZ3pTOL37XhG8zJx/7DPlGm2/Mbj92mXjiVw/17xPPo/RTpD/aGOvorj2GRE3nsT8fiSlP Ja2cj1IoO/WBovtq+YCx6vcQa+66myXZb9qpY5+PvG657O+Bab12aV/DJ0yACTABJrC2BNhB vrZNyxVjAkxg3QgMm+Yr4wAZnzjCYzEcDjFO+FCMRiMxxn+jkeUqC7wBkIQwTqvlmKS45QY3 fE1X3vwUfWJHOjeEdaO8AZY76LeNEBnaq/ZYbhwd5DKsC60Mk07UfIM8VYtzkOdw1fpwOBCD QddYZR/PeVfEB+mDU5/gayiNr4O8acVqdzmA6BoZ8kS2SyAnj2A9K3ayGnvbk8j5QcZttdrQ LyQIJfRzWJKMdmgBGRLEXu2sO4aNfEiXlFedu42i7fz1vM5P6fHGutZD/ZQ6iu3Ulq+GK456 mXen7MQrl3qSwrio6nMeqoc8euTG3+rkpAdcpT2anYmMMRvLYwge+Xq1xVWufrW1NmAFubFi TXNeqBL7rPRT6mE7N6xLosmAb4JYseMzla5aqHE+Rt2T3EdD7BPGY+Po60RfpB5hyVp7UIER 9MF2oIbVNaXmRpzgmAx3gysYrRjYbsZKcvNUkU19zqemI72z85qDWbQ2VqWwzucom+oR2u59 ipfyxzFOf90K0+Repd+Qez3Eixi3X77pgg++XP2j3b4h+ga7eCMsDo4h8omV8QaNuUrU10E3 auMbE/Lv1r9YSpQbXvuQYWqK1ptUfv27LNvvoVhkhop+TesL52aLMpN86ie8BQAAQABJREFU YcafeXXRKSt4DLXb0DrxvSZ0m7lzw+/IN9J8Yw77UUv3rYeaYMK55A5h+ynSH6U/lCFOaIyy 3wyLmk5xegeKSnkqaWkfgFCrtH0ynqnu+IaajPo2NsaxgWiWncUX2tzHR14fEcyflLTT7DIw D/4DE2ACTIAJrA0BdpCvTVNyRZgAE1h3AnQjJmO5utbq4c1hW2SVTZsMp0DCvJlQHRF+jp92 yYpPrWy21i7JmNtODG6VrS0HOR6UY0ENl4I3HvKG1XReoBPC3qwtLqpGoOnFOchtJ4gli1/I GLUO6jnVx3Z6qX+0zimNuxztu8sBNOkajZO7PAz9QDe9QQ4b7RIlvWfFt5LQXumu3OSSjHLD 0lTKCS0ST+VEs09eTSUT+2YyjhsbpkTC3tQzLnLlpnf1sp1ecVSRvvg4k1vKDa/JFjeC9cmX 5I7j5qzFUknZfA9XvcsHMHMwMZxF1gOWYYvi9GNc/6y5UnVkPKjyhliZ5iAnJ5yqZ1QP9TdJ O5IMCuNCy9Mz4IMHx4lA+pp3rcg3WngOZlSPwPYgFVJkJVnso1sf7LQhdY3KGLeN1+uzdfOR hvNg0f2WDF1gHe3ygl/Lp3ra7TUHs0ht7BLV+DpH2VSP0HbvU74hf76FsYysfQkwbIn9ZhOy lH1YFjt/e48GV//ojEvh+gYpAo1LZss6IcJSavxhVdZBC8dFV/64gbHet83nIA/N0NYvlzyy P3Tp/txskQG1sW1f1O/i0T3+zKuLVJZtF2obBJwHXhOqzXwyRb6R5htz2I9aemA91ER+51H7 KVt/4vhWBr5BUXA2sYZk0X6A69hV2HTB/Z0ttl22k9Ze9ODSXfuaSScz193Hdgz7KetzDx95 A8Wx0/rkPUvdAgviPzABJsAEmMBhIMAO8sPQSiwjE2ACTAAJ0I2YsdkmLqDz+9ivKKuxoO0b AOfmRruW4j/LG2cjlkTPWJGc8lmNKq8jOWJq+A8M6yIdgH4ryO3VfcqKLXMVPL7ivKgY5Maq 9DGuLBriikZcAazKplXW+4XqM+nmntJkKm0xHPRFv2/9GwxFhzbKcjmA6BpNFj9ObpHs9tLD cbiT2d8x9qoZb3Ny7GDVQU5tQjImC1VRzZsbkcoVYepmrnY58oRkw1jhtUbFLjfu2sjVvobS 44OSuhM4VfTlqnvXCnK6Zjxoi4KysaV08LhDx5DciUwBHQV5kc/n0VFeFZ2B5dSfg4nqLJIy dSoZexVqutIT4458Y2B2B7kdKxbztuuhbqqLv0eSARnTA5VkUDvgOycUg16zUVlB+szBzK5H UHvYZVBs2BD6QLoTVtesMnpyDwYZY7o7MOx0gPsiEJ+M+WSOpNGPVJ7yAElP4NNeczCL1MZu QeT3Ocqm9gpt9z7lO/KPMca+6VyicCcd4wFrxthw135zxdU/2n1J6L7BDMMUwzBSA9kHDwai QavX3Zv7avKORbtaQOep6gCTsfrpAeB8DvLQDG39mq77c7PF+lMbhxl/nPJMcKH6PIUxlTVp DFWSG6eTr5nWZu7c8DvydRzk+H3afGMO+1FLn1wPNaV+HrmfsvUngXsnlIwxL18oimqzG+gc DpvOb+GEJq1SNqWlevtvwK5d7fkyc91xk/Gu8XbkUPR7bVEpOG+daXvc+MjrEYJ+sNNOt0u6 hI9MgAkwASawvgTYQb6+bcs1YwJMYM0IOCsh9Ym8Wk1yRsQyVeemyb4BCHCQYwY1K56rjDne NzbnRCdpgBOebozcN8PDZkkUA1eQW1L2arajIoarlNOLcpDTXRsWM+5WRU7dfE8F5HMeVB81 KaXxW6FNzN0hBOiaqZzUgoxzDMdhrcx2X+tJSumtVZKT0jv644ToIRnNByPOikzADa+8a5Gx MNIlXFkl1WPYoLA/GI7HZ/Wynd7jdByIUq6kbDaGC1G76HxWKthvVXAzPXJqYQxp+W619dHl pl/VoxPSJCoTt7NI5mrbBzrzsnm8KccHUBofhYv2O4mEzhoK95D22STVLWM0GQZGeCPzQUJQ zHpyAiqrfEk2+zg7s+ntYRVCnELog607YXXNKKIvcvZbDaQ7yhGdtMpzGrvmxkmgbE4yqqfT XrMzi9bGjgzO2exlUz1C271TqH2myq9tKtwzwxtRyAf7wVygg9w9Lnn7BlnooI5hmez+QGlT 6zfPxqKjvujRAzOZAT6crOast6XwGjlGmh+yDXzAqI5f1l/lYXqIlQh9Zwjdn5stykxt7Oiq WSHPOI0/q+WZqUL0eZQQj0FlKUk8p77XhG4zT3ZeB7lMMnG+Mbv9qKX71kNN4Hs+Qz9F/ZMa YsUv76jpPProkynlqaR15hNovwFzRZ+c8Kd56u7dDFgNzWaHBPSR118W/DUwrX8/FJgP/4EJ MAEmwATWggA7yNeiGbkSTIAJbAQBZaV3Utvs0qk9OSO0ECOBNwDOdeNuWXM+xLPBmz1OuyEc tBuiLR0TWK62ossqbtCwYnZbjg2/sBCOZHg2QX6SJcixoeUT8IXycDsS1OSUxq8cYh7WQU75 2pzoB+XYyGFsUskHw+RQ7Gvlz/Zpt17DFVUy3rOVfoIDsJYxN/6kVZ4yE0+9MPY8rbT0DVtA baG8eqzGmvaErKf0yo21LbxxgqtA6x08G6BjMy3a+h+x7Z04wurKZ4/c7uvw+6xM/JxFUr6C FqrBdaNO9VS4qCJ1K7TSTX+4RfVw615UGezX3SEplGdFigjkBHQ7I5UkczCjevjZh1YCcZqq D3gVpVWYTtQ1eUlL9i24etztBe87el3yKKklIZUXKJtjL2p77aueaTBn13FPe02ze1e58mvL eFOHYk677cMJZxPUP9rtG8ib+gZZGuovPviQq8fdH5s/PtRT/XSDRk6kSrJv0T/tkmWL9ltW jqPU42S3Lh02pXNeDzkWmeFU/XLqOzdblJvkU3VVJaGOP1H7GzUfeT6tLHf6oGvCt5lPjsg3 6nzD1p2I46Za+ix1n6mfIv1R+kNVDvs8arpA++uJQtZ6iE15qmmVPsPZV8aWwjnB/UBqja79 feF1R9noDSF7juAnry2BPJlSNy2tY5faz/yFCTABJsAE1pIAO8jXslm5UkyACawrgVaRwmDE RLmjugPMGtNKPu2mWL1Z8F5ioRram9lJx2y566zWdbO0bwj9wjngSlm56rckZcNy5Q2r3+oi O+45po3kVHPJT7JMdbK7K6F8pzwSfvWx0hF3v3LsFeSuG9eJ+aqcFFnsU9x8S26SKtsiGfgw RMbHToqObCrl4Ykvz17VcnzrDtq2pU+qY6hPIWPQ0ejRMXot3XYuSYmdTUXdG/U5YSD8V5l1 yriiM1GWFRAFfJuA4kbLXOlTtRz7ZfkkwPpQe/jWlRLNyER3TlFmeMS62yvasa01HyxxcemA vHrYLlvscdPVAjkUzXyDdCSyDLaNoxMxXdFW4pslYTgjw8E/2UE+qx6Fag8pCHGSjhanOU0R 8X9HH5S0YXUNa12W+xxkzFjxdqbGyViQHjkrh/UUmsPWRzaZ2re99lPPXCLP2l6R7d5dLn53 O1Wlc5NWeKt9qe0gd9tGBF0Yd8wHuOpbJCTSuFex+kr5lgn9inZn7BWQ8z5gxJjpRt+q2Ak9 YFIfHjo5ofNfvpXg0qvIDCPUd262KLyvrlKlXONP5P6G8rGOE8typaWvftdEaTPKxz7OMt+Y 0XbtMvHErx7q373nM/ZTpD8TnPlGWaHTUbirpO/bgkZfnKqa4tvji95v1+nNQ8ANvX1fnTIf zCbsB1Vz1t3dh6B0vSrtsYH2T6sJbHnD1I1C1Ol1o3ZTx6RxvyGy6bRIp3EfA/XtFErMRybA BJgAEzj0BNhBfuibkCvABJjAZhEYiVqOnORxUcTVt7YvZzQQ9aK5Ok6LO4rOVnNVMIZX8HGq E78BhcvwuQmhNOjhEpWMuVo5limL3nAgBn35ry+6uHLc2BCNYktbTl574zYnEzxzHFYTnZzy mkD5+3ZoiVRRdzxqRU35QqvI/B2L8mJndWTCZwVjl2JUa3FwI3AKkK+vrLRP4kqudm+AMdbH YjTsi0bJjIutrobtN2hDyZgoNRxPUb9dsVdYGRtY2uXhzau1car+xsBYCSmSEOUW3XWi08ne tFLG8LUzkneptkM/nq2IvqWUoy45r+KYTw/jt2NcaPmv3xUNa/NI0zlPK5xjolDDOO/G85mx 6GKdzAcFqqPLaQ93bHJFIuM0OhNclZvFlfaK80zNc0z1cdmIzQXjZTc6PYyRPBQDDDVRkeFY rAcdqULdsVUrU1oRrcVPxb/NIsOoW7PbOZ4pYjx2u2cQg27dCGcE+MCK4s+r9VLPozML3x7h 9SG6rpG92KsI1Urhud2/YXtooaAoXWA/Qwnkim1zI1t3e0VnNlsbO5I4Z9HLjm73Tml0hmES 8IFWTHvTqGfFuU+IhvL0qE+hUfBBh9plhNeFvvn2hvaghOSQRyfEEKSK9oMr2zGfKoh23/Te jYddUbL2N9AexilvGKSLDTEYjsRoPEK7aYq8EV89JmpKiCfUzsh9Z5T6zss20jiNBGfpb9QW mD6GqqnNcz9bitRm7ixnnG9Etx+94Kh1n7WfGsh9O4yxRH/IrUuD1hAy3dh+aB4T+WpTdDsd 0cF/7VbTHrfsuVlg34i2aW++nhSleksMRnIvmJHod+oig32E+tB81roPqU7W+CrnEAOcQ9SK zv4gsWzVHl+j1C28XZoPBWk8Dxpn3O3B35kAE2ACTOBwEWAH+eFqL5aWCTABJmAQ6DXKIiVv PiznG602lt8TqayodUyHQD3vxFyltImc3wpLma25OWe65jhXNdzoRKDNICkvv6OMsdy0HPX0 94Ry8+LkiQ4VlDerelOcPxpnQfI7qwYdBhBL+66EcmXpfB13RU4LmyHzSoiKslJ51KnYq3+p LoA3aWZ89r6xman9u9EW6Jz+98+H5uQI438mnZ5pv5jKGI6kpshJV496+JAiaYZSkaEmbL1I ZkWj5zhMZb3otWRb/jjVC3NDNrSpo/H32EfFv/gMPZhxmKdLbSpadO2VXObff+3XTWeinb+l q/r3tLkC3nByxUQq49XXWDInWtaGeiNcSUohYOx8prR7WCboWXCx1nWBKtqvyxVrFG5hjJvC ernYsmEbpLIF0ey6ltcNWyLjadeEqH7zr2aQgSTD46grylmVIekCtkksIbLFuh47XblUPQ3L LHx7jEWjMIkT6ZTUB3+mk3TtN3771+2+ULJPlx29lPXq2W9FUDn6mxndqrP6mdpO67OC2kt5 0yYss9n0TG0d73nYsqPbfcayT6dMT5sr9idDCTmrsHsib/dFDvd06RvhdUEJsWS2C4Zhcrox 2bI+MedxNSumGcoV7fGUSHn6+JjIVVqetywGuOdBUhlTSQ8glhKVluPxj87wo+KZz4fT/b9+ xdW/RWbbwgfK4cfpuXUxxBjqaI51NsGWorYZ5T3vfCOs/VB5xnGGutubqFtjYbh+6kVclOAd S9OefVbkQ/kw6WRfrI4Rjm3aOm/Ih2GS0I6C5mAOC9wYXdksU80jrTwUXmTd1TISybQoVJqW czxK3aKMSWZtnVBpckN715juAOEzJsAEmAATOMQEjkjZcaDhDxNgAkyACRxCAttXr8D3hgC3 3HID/HB8A5w6dRpO3Dh7RXauXQU4fRZOzJ6FceXe3h4cPXp0ei57O7Czd2IumacXcvhTyHYe jPYAocLJk7fC6a3Jjby7fdXQixtgDIDpz05Jf/CE9uDa1R1UvS2AvV241h/AcDSC4yfPwNnT 82qjWbvpTPZgb++oRDz1s7O9Aye2FiOXXtiCZNjdhiu97wEcvwVuGP8Qbjh5CnUmurzTmenS 8zeA6cwW1MY+sKeX7XPRmv60t3MNdo6fhi205108x7c6AHsUOHMbjm8TbFyOgYMfYr+JY9gN C+x/VhPz8nRxlvrO2maLmm+w/czSatY1xpgzAJylwNHjJ+HWs6dh8ixljrIO7FI5T+kDjqhw O9aPP0yACTABJrB+BNhBvn5tyjViAkyACTABJsAEmAATYAJMgAkwASbABJgAE2ACTIAJMIEQ BNhBHgISJ2ECTIAJMAEmwASYABNgAkyACTABJsAEmAATYAJMgAkwgfUjwA7y9WtTrhETYAJM gAkwASbABJgAE2ACTIAJMAEmwASYABNgAkyACYQgwA7yEJA4CRNgAkyACTABJsAEmAATYAJM gAkwASbABJgAE2ACTIAJrB8BdpCvX5tyjZgAE2ACTIAJMAEmwASYABNgAkyACTABJsAEmAAT YAJMIAQBdpCHgMRJmAATYAJMgAkwASbABJgAE2ACTIAJMAEmwASYABNgAkxg/Qiwg3z92pRr xASYABNgAkyACTABJsAEmAATYAJMgAkwASbABJgAE2ACIQiwgzwEJE7CBJgAE2ACTIAJMAEm wASYABNgAkyACTABJsAEmAATYALrR4Ad5OvXplwjJsAEmAATYAJMgAkwASbABJgAE2ACTIAJ MAEmwASYABMIQYAd5CEgcRImwASYABNgAkyACTABJsAEmAATYAJMgAkwASbABJgAE1g/Auwg X7825RoxASbABJgAE2ACTIAJMAEmwASYABNgAkyACTABJsAEmEAIAuwgDwGJkzABJsAEmAAT YAJMgAkwASbABJgAE2ACTIAJMAEmwASYwPoRYAf5+rUp14gJMAEmwASYABNgAkyACTABJsAE mAATYAJMgAkwASbABEIQYAd5CEichAkwASbABJgAE2ACTIAJMAEmwASYABNgAkyACTABJsAE 1o8AO8jXr025RkyACTABJsAEmAATYAJMgAkwASbABJgAE2ACTIAJMAEmEIIAO8hDQOIkTIAJ MAEmwASYABNgAkyACTABJsAEmAATYAJMgAkwASawfgTYQb5+bco1YgJMgAkwASbABJgAE2AC TIAJMAEmwASYABNgAkyACTCBEATYQR4CEidhAkyACTABJsAEmAATYAJMgAkwASbABJgAE2AC TIAJMIH1I8AO8vVrU64RE2ACTIAJMAEmwASYABNgAkyACTABJsAEmAATYAJMgAmEILB2DvIj R46EqDYnYQJMgAkwASbABJgAE2ACTIAJMAEmwASYABNgAkyACTABlYAQQv26EefsIN+IZuZK MgEmwASYABNgAkyACTABJsAEmAATYAJMgAkwASbABCYTYAf5ZD6H4q+0gnwTG/NQNBALuS8E yA6oMLYHIsFHJsAEmMDmEaAxgceCzWt7rjETYAJMwI8Ajwt+VPg3JsAEmAAT2OTxYW1XkPNN IBv2JhOgTo0YsD0QCT4yASbABDaPAI0JPBZsXttzjZkAE2ACfgR4XPCjwr8xASbABJjAJo8P 7CBn/WcCa0iAOjWqGjtFiAQfmQATYAKbR4DGBB4LNq/tucZMgAkwAT8CPC74UeHfmAATYAJM YJPHB3aQs/4zgTUkQJ0aVY2dIkSCj0yACTCBzSNAYwKPBZvX9lxjJsAEmIAfAR4X/Kjwb0yA CTABJrDJ4wM7yFn/mcAaEqBOjarGThEiwUcmwASYwOYRoDGBx4LNa3uuMRNgAkzAjwCPC35U +DcmwASYABPY5PGBHeSs/0xgDQlQp0ZVY6cIkeAjE2ACTGDzCNCYwGPB5rU915gJMAEm4EeA xwU/KvwbE2ACTIAJbPL4wA5y1n8msIYEqFOjqrFThEjwkQkwASaweQRoTOCxYPPanmvMBJgA E/AjwOOCHxX+jQkwASbABDZ5fGAHOes/E1hDAtSpUdXYKUIk+HgwBHbhpef+Fbxy/Wa4+VgI Ca4D3Hn/L8H50zf6Jr72yiX46le+Al//62/BD7+3A3DrnXD+wi/Cgw/eDxfOnYYXPv1huPzw xyD23a8Glnns2M1w09aPw9nX3wnnzm75lmP+uA0vPPMleLpyEb6NRd115z1w/9vfAb/80F3w tU98Fl6XfhIunJhwOezCMx/7HXj9P34S7ptUzKQs+G9MYE4CNCbwWDAnSL58SQQWO0bA7lW4 9JU/g680XoRv/afvww723Xe+8Tz84oMPwv2/cAFOj16Ax//P/wT/9LfvhupXXoGbT93sU69j cPPNN8GPnz4Ld951DrZcw9He1ZfgXwZc++qr1+Hu+34O/uulSzC4+WZwD3vXX30Vjt39VviV C2d9yuWfmMD+EOBxYX84cynLJ7B3DfvjPw3qy7H8Y9if37QFp0+/Fl53x+2e/pwk3L78Anzp 95+Gi3/zbYATd8E9994P73jXO+GNo6/A77xwJzz5gfOU1Pe4+8ozkP36T8AnH7/g+3f+kQkc FgIbPT7gzdJafVDphPzHHyawyQTIDui4ySy47qtAYCxatYrIZxJG/0x6aR5jIhYz+23191xj 4BF81KuLTFxPm0ilRSaTEjGr74dYzCgj3+xjmWWRS5nf1bw957GEKFTbnvLEsCUyJFs8LYql EuYXV+qQEI2h9zL1l3G3YqRPFlvqz3zOBPaVAOn8vhbKhTGB0AQWM0YIMRL1Ykbpo3G8wP49 ncmIVMIZC4zxIl4Q/X5LlAtZEafxY8IxkS6ItjIsjfHaSqkgkp5rYiJbrIreoCfqlZLIJvUx S9piMlsUzd4oNB1OyASWQYDHhWVQ5TwPhsBA1Es5b18ei4t43On7SeezZe+cvF1O22NHKlcU pYKeXzzfnFK1saikZX+fFC3u3qew4j+vOgGylVWXcxnyrZ0neZMbcxkKwnkeTgJkB3Q8nLVg qdePwFAUVAc3OihU//Ko3xRZ6+/5puKJQBCjTsVxgkuHRDKPzoqxgmgoGiXHMWJfP27pDoyE VeZoIGqFlD0ZlraSyDeU/GiiK8sqanIO2hWRMJwiCdFUK6BcTae1LDnU06KjiksJ+MgE9oEA jwX7AJmLWACB2ccI6RyvZFRHSEzk8cGn2u0Oew3nISuNBSh1u5DUxoJCy+zYB52aSBl9PTm5 k6Le16s5ahW0az1OlFHTGi+sPHDcY9+JzpC/HQwBHhcOhjuXujwCg0ZO648L5Kke9UQpTfNx sy/ONZzOnBazSJsoWv2/KeVAVLLm4p7ENAd5v2bfp6TLneVVknNmAvtAYJPHB3aQ74OCcRFM YL8JUKdGx/0un8tjAv4EhqKYIEcDHtFRQG7wYa8jjAV1ljPBdnDLjEYt3UkRy4qefwGiY60A sa/H/LQVfkqZAl0nlbTqUAGRrVk5K06NWLbmKW3YzOMkPD7ZQT6oa6tZ7Lw9ufEPTGC5BHgs WC5fzn1RBGYcI7D4dkl/4JmpBowS445IS6e38oC25XKQ2+MH5isdJ/YbSvK6WE4bf4YuB3mm 2tVh+IxBU56r6tfzNyawJAI8LiwJLGd7YATc/bHal4thQ5uTg/KQtFWgN1zjour4za164INb fJvU8/DTVctGjvKQ40TwfYrrMv7KBFaSwCaPD+wgX0mVZKGYwHwEqFOj43y58dVMYFEEvM4P chRUUyAyddNdXsFX0jNKiJVGTl/1UWzTVX5ydQxnuh2iZZpzol/VnR+QEYZ7Q3GQSztKFWra KnKBLpI0xER9gihupwvE8/YDAT/J+TcmsCwCPBYsiyznu1gCs40RwvUwElIlV3+tS9ktyxXj Obs/dvfVmlMFL61pK9NxfFKc726HTMH9WtG0MUgXjb8xgX0jwOPCvqHmgvaJgLs/1vvygci7 3mKlRTr6GJAStY4+ue9V8AFsph5cC3c/j/cN9n1I8FX8FyawsgQ2eXxgB/nKqiULxgRmJ0Cd Gh1nz4mvZAKLJBDk/OiJjJxMWmFVxsOBGNA76O7V45CaGtuvUy2JWtfKwD1pVVYNmjXr6xNm lKPYxmuxXG3lOf4OkBDFWtt+Pb7Xbom++v6+imrcNlcpGtfJa81/+qub6gV8zgSWR4D0b3kl cM5MYBEEZhgjsFj36vFksT1ZmFFblIp1uy/XnSMgdKeKEO7X9iFZsq91O2TYQT4ZPf91dQjw uLA6bcGSLIaAuz/W+nJ3yEVl0UqrqIfZkraRyBRFu0/3Ej3RanuWlttC09urZFPGMaGHZ7QT 8wkTOAQESJcPgagLF5Ed5AtHyhkygYMnQJ0aHQ9eIpaACUgCLucHvt44GA9E1Yrvp01kLWDu ya76SmQoplMd5N4wKzkjyOxYVF2rBsmeIJYS5UbA6/uWUN2K3OwnKYoFZ9Mf4/pURYuJG6oO nIgJzEmAdHfObPhyJrBkAtHHCDmuFNTQXejYoBjiYYWd5iD3hFmJ5wS5StxjVKbaESP5kHcg /w3FsFvzxCDX1yaGlZLTMYHFEuBxYbE8ObeDJ+Duj+0Y5DjzbhT1MFzJYssWeNxzv03qLGxJ 5cpmCEg7tfukayzySeQKzh4X1qKYcjdoFY07D/7OBFaLwCaPD+wgXy1dZGmYwEIIUKdGx4Vk ypkwgbkJuJwf1gSS9DSUg9yzAnyKUFMd5EK4V47Ec9ZmnRirNotxB0k+9zGRq9mrCHUpeiKL dYtlZT5myBfn2phQ3s7XL+NvTGBJBEj/lpQ9Z8sEFkQg+hjhefCKfa/fWDJJwGkOcu8bRQnR sLzcbocM2VrgMeoYNklw/hsTmIMA6egcWfClTGClCLj740QqK3LZjEiooVVwjEhkK54wXN1q NnC+L98grdKbqa4a92vyOjPkYresO+FjGe8eRq7L+SsTWEkCmzw+sIN8JVWShWIC8xGgTo2O 8+XGVzOBRRFwOT/iWVFvVEXamrj6OTXck93FryBHB7lrgzZ993lc4Z7XJ7xkV/KYLHlf5R80 5Aae6Ai3lhgGOuAXhZXzYQJTCJDOTknGf2YCB0wg+hjh7yCPtkbbPQZ4xqJhU18FDmnRsRYG useoTLkpup2OaLfboo3HTrOsbwzHDvID1jEungjwuEAk+LguBNz9cSKpbJyJc3ap86lK8Bug g3ZVpAIXxqSEjMCof6y45uQIdy/KQce6tb2Sfhl/YwIrTmCTxwd2kK+4crJ4TGAWAtSp0XGW PPgaJrB4Ai7nB4ZYMeaaA3NneY9TAgVwT3blRpf0anso+dyTVY9zwiUTTp7zcpO1cU/Uai07 HMq43xbFrDdGIchNPbU3KCm/tGj1uqLT6YlOLedalZKcGkc9VN04ERMISYDHgpCgONkBE6D+ 03pzJ8QY4RdiJdeINEp4HpK6x6JRq6j34co44h6jPOFd3PtZKNceMGwufsMJ8Liw4QqwhtV3 98dF3GyzVXA7ydOirc3bheg1a6Jlbyo0Eu1aUSR9HOXpSlejNmqbY0MaH4z2uh3R7bVFznWd GspFu5i/MIEVJrDJ4wM7yFdYMVk0JjArAerU6DhrPnwdE1gsAZfzw3YUjEU5CSLboP3khaim YuYO8J5NOuOiFsX3MdVBjuFQtMlsTFSkx3vYEDFc+eGeRI+6dZHW0juv2ktW405Zd6RYK1bI FumYKncWi5ZzYwITCJDeTUjCf2ICK0BghjECpXZv0hnLRnutfdoK8p7xCr0TbiuWqdoPT90O GbdzXUwdg1YAO4uwkQR4XNjIZl/rSnv7Y/k2Uc/jtI6l9f2AmtmYiHs2dx5i3HJ9H6F4vqnw G4lyyhkXyJ68R+eNI+ViPmUCK02A9HilhVyScOwgXxJYzpYJHCQB6tToeJCycNlMwCHgcn7g 6kB6Eb6HoVbqFN+vX0MnM8bzs/zljVxcczonCi0nS8/ZSFRzOSEXgRufKc6JUbuk5Q1py/GB 1yXQuZ01Nux0FTJqi7Tt+E46ZaHLpJrGyXLMXOU+Ho+F8Q8vH7rLgSxO2fnDBPaHAI8F+8OZ S5mXwGxjhBjU9TAmuEFy0/MqvCPbuFMRuZIzjkx2kI9ECR/gkg3Jo/EQ1crO3yHjlMUOcoUF n64UAdLplRKKhWECcxDw9sfmjYRno2U5v685s3Bzlbmz+bIqQrvkOMm1+49exRgXzDeWrPk+ zvvlW03uMSPDmw+pSPn8EBDY5PGBHeSHQEFZRCYQlQB1anSMej2nZwLLITASxYTqaMBVFe6C Rh2RN9IoDg7cLNNxSMvr47hZjuv9SCOfgahkpTM9Zm+g5tlcLVFUNtbsWWWRTElhL2K3HesY KoWc7basI1Ggeqj59arGZDmjTLrtS8TAucZyrmcjLYV3cuIzJhCVAI8FUYlx+oMhMOMYgcJ2 yo4TQ+p7POus8lbrMmxXTGc6bcaMf3Q7yAstx7veq+shshIFaxNnK1N6xZ5sTHOgyDTuECvK g2ErCz4wgQMhQDp7IIVzoUxgCQTc/bEa8so9Rsh7CZqG0xiQVh6cknijVsGY20t7KbadG4Jq Rt47+C92GTadaww7i/k736kMPjKBVSOwyeMDO8hXTRtZHiawAALUqdFxAVlyFkxgbgKjfkOk LOcw6WamVDM2M2s166Kcz2BYE8tZbYdfsYrt10WS/mYdM8WqaHd7otfriHoF4wVav2crbVvW IYY8sfM0/p4QxWpDNOplfSOeWFo07PiDeLntIDcd8qV6R4ykT36Mr1yWMtZkWYZjMR0p42Fb ZK3NRjMVj9vfkMcdBgAgpZdpS80nTGCxBMjeFpsr58YEFktgrjEC3+Cp5137RCQyotpoi14f 94Jo1Z19JHCDaMfPMRSVjOstpWxRNJoNHJP0DZrTxYYdWsWs+Vg0i3qaWLpsvxkl0wyarvjl sYxS9mL5cW5MIAoBHhei0OK0q09gJGo5Pd54qthU+mzvym6wxgJykEubiGdKojMw5/bDXkNk rLl9LFOxFtiMRaeaNe8DsD/vOM9THUSe8JC4Oagmi5OUz5jAKhLY5PHhiGwQBLA2nyNHjhh1 CazW3jW4+OxXYXDsZjjmqvWrg1fh3C+9E+47e6PrL8v9unf1JXj2z74Dx242JboOW3D///wW OH10ueWuQ+67Vy5C9pN/AiM4Dm//SAYeOndiHao1dx3IDiijQHugBHxkAkslsAfPPXoDJJ6O UEiqDKOn3gVabyz7739ZhM/lPgqVljevWDILn/knaXjA6Ad24MuPnoT3TyozloD0ux6Gt7/j QXjwwjnQutydS/Cmk2+Gd+TzABd/Hz7lLjCegXrx4/CW21HC3Zfh0eMx0IqKZaHbfBJuNzK9 Bk89egY+qCUg+ZPQGn0JzmsVpb/xkQkshgCNCTwWLIYn57JoAgsaI1Csa69chOJnPgcf/ULF R8gYZIu/B+kPvAXkbHHnlS/CyTc85pPO+SmRTMPDD78dHnz4QTi35YwSe1efgxtuw0Bcvp8Y lJpF+H72HviQnxh4DW7cBl/6wHnfq/lHJrAfBHhc2A/KXMZ+ENi9/Bzc95MJ8Lk1wOLjUO19 BR46i/33zkvw6Ml79Pk6JKCU/S68/2vvgMJDI/j8Rz/rySdTrMPHcdyQU/Urz30Y7kh8VqtW ptqFTz50u/HbtUtPwZk3f1D7O33BN4zg2ce53ycefFxdAps8Pmycg3zv2ivwb776FfiD938I 9DlrHHLF34CH3/EP4Pzp/fVU7G2/DL/7RAw+ajtP4tAYXoT71snXe+0SPPX118Dj75pvULj0 xS/Ca371A3DeYLMLzzx+HN79BatzSRRh+OwHjJue1e1u9kcy6tSoNHaKEAk+rguBnWtXof+D IYyxQjfccBxOnbkNtk44zov567kDly/vwrlzp42sdravwWDwAxj+EOA1t9wK585uzV8E58AE 9okAjQk8FuwTcC7m4Ans7sDV7/VhODJGCTh+8hTchv32IkeJg68kS8AEZifA48Ls7PjK9SKw c/Uy7J46B4YLaG8HrvUH8IPhECv5Grj1jnOwtb+uofWCy7U5lAQ2eXzYOAc5aejuy0/B8Zjz dO/An+jtvgSPHL/HctonoDl8Fi6sjYN8F1dyHof3t/Iw+OYTuD5+ts/uK1+G4294P+SaA/jI BZmLlS89WIgXYHjxcXaQIxnq1Ig0O0WIBB+ZABNgAptHgMYEHgs2r+25xkyACTABPwI8LvhR 4d+YABNgAkxgk8eHjXWQ76CD/KTiIM83h/DEQXqk0UH+KDrITV/vejnIX3rqUbhHxhZIoAP7 2Rkd2NvI55TJR22rnVeeg9/4jSeh9QNcgV/8XXjfBXO156Z3a9SpEQd2ihAJPjIBJsAENo8A jQk8Fmxe23ONmQATYAJ+BHhc8KPCvzEBJsAEmMAmjw/sILf0P4+rkp8wViVjeKrtbdhT7GJr awv2tq9A81tDeM0N+H79LW+E87eby7uvXX4JvvN9gOvXx3Du3vuAwpe78zh6YgtOjK7ApRfb sH39GNwRuxfuPqssEZ/qIN+Fyy+9CN/u/y0cu+kM/NzPXwA7FCK+CrS9o0h8fAtfBdqDKy83 od3bhmNbt8G995wHI/rA7jV46Zvfwdpdh/HfOQf33X1Wqak8nVTOLpYzctIfPYEhDfZsuW46 8wb4+Qu3K6+v7sGlL/4mvPkxKwZKPAfdyq/Dyb09OIFMjddc97bhcvu7cOVaHxkegzN33A0X 3DJheJbHz7wZKJJKrtaBJ+49Bdf+6x7c/OM3GvnI2p84fgKOGpk6Iu5cfRlebPXg+rFjsHX6 dnjT+XOumMZR6+Tkvcpn1KmRjOwUIRJ8ZAJMgAlsHgEaE3gs2Ly25xozASbABPwI8LjgR4V/ YwJMgAkwgY0eH/Bmaa0+qM7GrsLTKjVsFczdh6306CC3LhmKYsLMg/KKpVIiZqWj37KVhqhk 9Z2SAVKiOZTZ4C7JKT0PeZ07D7mbsf0ZNUXSLiNh5WP+ddxviHTMnV9S1HrmtsmjdlGrC0BM pJMx/bd4TjQaZYHbCWm/4yZBtgjTyunRjs1KHkkXq3i2Zu8WXc3oZRE7eawjp1bZ2gFayc9I kyyIviXVuFfV5FXzgP9Rzz+eV3jiPtP1fNLn2oQot6mthYhaJxvWip9onNx8+buPXui6xPyY B+sA6wDrAOsA6wDrAOsA6wDrAOsA6wDrAOsA68Am6sCKu7yWIh4sJdcDzJQUd5oIwQ5yvHLc EWmXEzGVK4is2+kMcZEv5ERcSZsokJN2JIpJvSOJ5yqiVspozrlS23RyiyAH+agtUpR/qiKF E5UUOb+zomdVtFtOa/lKZ32hkPE45ePpvMin40payxkfspxm3vVQIJ4WuYzqiMb8qEr9lsiS 7PIYS4tqoyHq9ab4zl/lbRnyDemw7oqs8hAgWWxbNRuJVkVnli5W0dlfF81OX1TSxAJEQnGQ t4qOTLizNObVF7k4tUdCGEVaJUSpk3XJyh/IDvhIbc5H1gXWAdYB1gHWAdYB1gHWAdYB1gHW AdYB1gHWAdYB1oFpOrDyTq8lCMgOcsuB66wgl5T1VeTJQsNAP9JWncdwJbLpCa5nHYez5qQt OE5awFXR5rpll+M8Wca1zvgJcJC3SynbkVxoGcvTheoML7bN30YtdRV50nIAj0RBWeEdS1tl DWqK4xydxZhF2HJ6VdVZnRItKfy4paxMj4lK1+Qiq9VWHNWQKJp1xd81p3SyJJOKkiKrylHm 76yuB1EwCjUuEaoj3L5m2FTkSYi6tWC8pbRHDFe60ydqnei6VT66O7tVlpVlYwLLJEC2sMwy OG8msOoE2A5WvYVYvv0iwLawX6S5nFUnwLaw6i3E8u0nAbaH/aTNZa06gU22B3aQh3CQk2Na X3WetFdKq45X20mLWq/9XmjZdqA6dSFeQHc8fnwd5ENRsFc94wppXIHebDZFteA4zZOltpGv Jhs6ok23ue7oT5AMnrLCl6M9JKBy0CGtOrDVhw0qA7uuKHG/4awgT5WaYtCra2FkVI46GxBB +dM1w6aTN+4MaoerCZIlap0M4Cv+H3VqdFxxcVk8JrA0AmwDS0PLGR8iAmwHh6ixWNSlEmBb WCpezvwQEWBbOESNxaIunQDbw9IRcwGHiMAm2wM7yEM4yMkhqzmhAxyv5KSV+q86ZNXfGzln xbkMhWIsiPY4rWUOuoNbKmo8HhOxeFwkEgk8T4hiw4zWrclGTnfX9bYMnrLmLEfLL9iBrTrI Ze3EaCDajYrIplQe5qsutqxGunAOeLpGYxHQTgAZ0RkbUggtPbGbUCfzqtX+nzo1Oq62tCwd E1geAbaB5bHlnA8PAbaDw9NWLOlyCbAtLJcv5354CLAtHJ62YkmXT4DtYfmMuYTDQ2CT7YEd 5AfgIK9nnbjZEMuIrnTUag5ZWvWsO66zddq60mtcvk7eGR3kkcvRZA/rIB+JRtGJm54t10Q+ KMRKyPwjOchjWYx6bn582U0o00t/9X6hTo2OqychS8QE9ocA28D+cOZSVpsA28Fqtw9Lt38E 2Bb2jzWXtNoE2BZWu31Yuv0lwPawv7y5tNUmsMn2wA5yy0FeaJpBSUxV1R3TC1lBTuFNsAAt LrfvimXHQa6GWJExvFUpx/02blRpBtj2dfJGcJCHLUeLde4r+2QHuRUOXPRqTizzeLZuYC8p m5qSs9v4wwRntd8q/WGzYMdtDxdiRYnfHqJOpo6s9v/UqdFxtaVl6ZjA8giwDSyPLed8eAiw HRyetmJJl0uAbWG5fDn3w0OAbeHwtBVLunwCbA/LZ8wlHB4Cm2wPG+sgH7UVpyg6ybO1nqKx uoOcYpBrsaoDQnfYcb4xN9V5a2+QKcaiknZWkMcyVfwFPyN1I0rcONPyJDcLCcXZCyJdbJpy Dtsig3InrBjkWn0SVlxzt4O8YF2LDueE9WAAwIylHracTtlZ9Q1Ujia7dJA7bnwtX3Twj3Gb zkr+iyL/PmfXYMmm26lo9UzkGyYXWVtt003cpLM9FuN2RRRrXe1hg+1UH7VFyq6fuQmpzEbd GFRtp6h1knmt+oc6NTquurwsHxNYFgG2gWWR5XwPEwG2g8PUWizrMgmwLSyTLud9mAiwLRym 1mJZl02A7WHZhDn/w0Rgk+1hQx3kY9EsOhtdSgWQTlrbrYsOWcfBKjfHNFc4dyvOqmeAuKgY sVF6IqdspAnJoqBV0qqDXJYRz5REvZIXMdt5GxNVyy8/bJeU3xWH/bChOLMdp7KhtLGcoKAr en0SwojGMu6ITMy5hpzx/XpOc0YXmyhxqHLGop5V4oVjmBIZx3vcrYq4XScpOwUvEaJbURzq lCb+z8UXU45cZIDOkR4g5K026RoPA5y/m9fmm98RpRSlxd/iOUGPOdS2ShVbYjxsiTSVD2nR HlEXFb1OdOUqH92sVllWlo0JLJMA2cIyy+C8mcCqE2A7WPUWYvn2iwDbwn6R5nJWnQDbwqq3 EMu3nwTYHvaTNpe16gQ22R6OyMZBAGvzOXLkiFGXoGrtXXsBHjvz9+HpgBoXW1cBnjwLj1X0 BLlSAZ5//wfha9rPcUjEvgaVlvYj4EpmePaJC/DyU49C7INUUgzi0FKuj0Oh/jQ8/pazsHf1 ebjntofxr/oHV67D4+dPwO6Vi/ChO94GX1D+HEvm4I8+/xG4+wTA7stPwfHYB5W/4in+vfD6 5+GDn3JJnIjD1yr6bxiGBJrDZ+GNg8nlvPxFrM9jVB+zuFgqCw98++PwWVeW5e4I3nX7jZho G778sV+F95McsQy0/vyT8Lrul+GtsfdbdY5DvpqHxJkm3HHPY5Qx1J7LwwNGHpjLy1+GX8X0 VEy69A14+4u/Bg9/1kUtUYThsx8AxAKvPP9peO/DH9W5JnLQ+tJHALEan9nqZF67yv+THZCM QfZAf+djWALb8MIzX4KnKxfh2zsAd915D9z/9nfALz90F3ztE5+F16WfhAuGbu3CC0/9Djz9 yn+GW+78XyDzxEOGToYthdMtjgDZAttAENMduPT8v4XvXT/mSnAdXn31GLz1Pb8CZ4+af7ry wnPw778HcLOV9Pr1m+H+Rx6A09bfXRnM9FWOd9lP/gmM4Di8/SMZeOic1Vkbue3Cy8//C/iD 0rPw3Z0TcOLW/w7e9t7fgg88cG6msjbpon2zg50rcPFPnoc/+fqfw3e/twPDIcBtd90J5y/8 Ijz40Nvgwu3H4blP/I7SV25SK0Ss695VeP7Zv4Drx8jgAO68/5fg/Gk5t1q/z2TbX1x9980W Ioh87ZVL8NWvfAW+/tffgh+i3cCtls08eD9cOHcaXvj0h+Hyw1n4AE1eI+TNSZlAEIFVtIUg WfXfD8FcHP0Nj7/3t+HsP0rDXfAq3HzqZr0KxrdjcPPNN8GPnz4Ld951DrbWs2v3qfdq/rQ6 9rBK8/Jp97OLmpfvwQuf+034rdqt8I/feTfcuHUzuO9KfLXm5jvhlx44D2w6vnTm+nF17GGu asx2MToN1uqDFIT8twofdQV5sthGkUai1+2ITrcnhkZclShSjjAMSUf0+33R69Ea9SjXh027 nHLGo6EYDAZIQPmMR2IwHDqhVOSf5G8D12/2JWMxxDwGUeCNBga3DrLrdJfJzRZyJU7IDui4 EkIddiHwLQT7jYx4WhRLJZFLKW9UYNilhvUayrhTNvoh4k9hmg47gsMoP7XBYZR9X2Qe90U5 l9T01WCWyIgSbp7cs8eqsWjVSiKTVN7aSRaUvy9C2pEoq28XqftujLvO21ooW1axvXJHG1kW Icja5bF8OxiLRkl9yw7fvktnRbFYFLmMol/GW21OX7l2oGWF+g1RKLfmr5q0zaweZi9H8ffm z33Fcphg+wuWdPm2EF7gUa8uMupbqHj/kkilRSaTct4qjZl9Lu2HFD73Q5RyUTZziKocKOo+ slglWwjk4f7DIZmLd0rmm+r/5I9rolzIam9aE3f3MZEuiPYG3Ko2cF7Qsl/bdzfwwX2n9jg4 CaySV2hePvF+dpHz8rEVHvennxDZTNo3ekLMGgupnYxjLG9HbjjwdlumAPs4LlA1iDN936Tj aniSF0h8lRpTdZDb8bEXWFfOigkEESA7oGNQOv49LAG5d4AVFiipb5Y7wHj4Zkx/2lwXH4Vh yCRiL49qXP6wJXK6xRCgdlhMbuubi7pHg2QWOGZZe1jIkF2L/4yEulkz0KbJWFC/lrVtKol7 b7RLjuOwxA7yqU2xXDsY6OHOICXqXdfd76grShl6oOj0lVMFP3QJLB1e1E3bWN2fRt8E/dCh mShwsO1PvGyGPy7XFsILNMK9d5yQizi/SObROWY/kcSMhtpDp/V1kC/YZsI3wQqm3F8Wq2IL 4RvisMzFh6KQkPcMuM+XNRS2C8qDYpxj0cKZQaemhXWV1xhhUsNDOVQp6f4oJ8O7rthn1exh Febl1F7ERr2fXeS8fNgqGHP8hLVf3qiZt+f8smy1XLngtFm27gloP7wV06XFirO/4wLJTm1O 3zfpyA7yJbZ2TYnXHehsWGL5nPXmEqBOjY6bS2JBNVc2to1la55Mh8ZAHrcnwvLGtpJNCvm0 O5kp23sFeC7kH5ZOgG0gJOJBw7XCydzA2X11rypXCcfttyXcf5/3+xAfOCXjMbSdpCg1aZcN uem14xA3NlnGFTaNek00206aecte5+uXaQeNvNM2shy68ffyxE26jU3K19dB3iQnyKJu2nDs SSJTar/1dZLiqBlg+149mu8XYjlfLnNejZvbp5R2BdzTh/bQcedMG8mva9sv3GbcAA/R9/1m sRK2EKV9DstcfFA351Opsv3mtLpoTnJX7XncdT0swz3GgvqDKLhWLu3AGc90h+dqSLpy9rAS 8/Lg+9lFzsvrOXMBBS14IYc5tYljL0PR6ZjzfqP8WMHZQ3A11GjhUuz3uEAVIPb0fZOOGxeD HBt7Hz578PJzn4JY4uNKWTHIFnPwweRDC43XqhTAp0zAJkBxo+gH7NTolI+zENh9CR45fg/Q 1gSpQg3+2eMPKHHFr8KHjzwM7xx+E95yfAe2d/bg6HEMzDzaAziOsZJv1IM07167DN98+Qps Xwe4aes03P3Gu2BLprc+R2EP8xjRV4CjJ2DrxB5cfulF+Hb/b+GmM2+An79wOzhXOEn5TCdA tsA2oHPx+3bxY2+Ct33K2dchVe7AU+9S43tfg08fOQOlXAO++ZH7PFlIvX7x5W/D32I88zN3 /RzGzt2y0+xsb6NWO5/jW1sYM3AHLr/SBxj/N4DXxeAMft87etTQa5n2BNoOfsXPDlz89KPw to+aFhjP1eCPn/gFjNd5FHa28RonW5BfTpzewjzQhvBv9DmB5W2yvSzLDvauPAf33JFw9vpI FGDw7OPgtDy1gHXcfgGOnPotaGBfeZ8aXh7/PEl/dlF/lB4RZHvC9mX4y29IfbsJ3nDfz8Pt W94WnpRnGJ08R3nubcPl9nfhyrU+XJf6fcfdcOHus0rl9uDSF38T3vyYtVtMPAfdyq/Dyb09 Q1aSbJI8SmbOKY49j+LY87T1C94kwhMXtmBvdwd25Phif47C1hYB3bXHimM3nYGf+/kLYFfD cx3mcXQLxxe0mJ1twKHL/BhjDkltF4L2ptvx0RNbcGJ0BS692Mbx7BjcEbsX7j5LcjjXwRR+ Rr5+tr+36xoLj6OsN6KuvAJ/0ezCDTOMhcuyBaW2U08vffoBePNHv2anK7aH8AG5qZDv5zI8 fuQn4VxjAB+5z7Gsnasvw4utnhGjfuv07fCm8+e0OKzuttpCm9nbvgLNbw3hNTf8EOCWN8L5 280yr11+Cb7zfUDdHsO5e++Ds1ZAV93upI4dhysvN6Hd24ZjW3fAvffdrcyD9D4XJz+YHnt5 l844fXEYmwnWZV9U9OPuNbj0F6/ADT+OUWxf83q48/h/gf84fD285fxpSoHHcHmTruF0Dedr d8DPKnV2181vXLP7EFli4BgZhoUi+oJOV8EWIlXlkMzFrzz3Mbgj8SnIVHvwyYfMcULflwyA +nKqv3v+pV5rpplTX0P1pbfBKOScSu74pt5ZTh0Lrl2Cx8+82d5PLVfrwBP3nsJxXd7feMca 4rKfx1W0B7de7Ou8/LU/AaeOioD7Wf95+QkYu+YmYeYYV+BjR+4AtBjoik/C7djoO7i/3kll fz3bXq49B0fOfBMG4knYuvoMHLmtbZ7jNfp4hfcCoeeJ5nxitj7+jXjvMgp9H7KnzWWnj6lh 5pXLspFVtIdl1dWT77o9DcAKyv76wKvVb9dFuVwRlYrzr1Sqih6HSj3wttkEAcgO6LgJdV5q HXG1V9LqW4gpbm4rirW2vTqk126JPr4d7X4dTV9tOxDVnBmX0MnHWR1o/Iav5v9N1QknQemS xuuaTto4rmRXX8Zeav0PcebE7xBXYd9Ed8cadK9qNN+UAFH1LNrG+NPFtDH2Em95TOZJR4ei 6NLfQrONYTkcfYbs8/p3vD6eb+K+FG0f2zOvK/8rb5mA4T3aaBjmSnfKPylaGz72UrssWpnU FURGmxenx95u4P4NbS0CyzT96YqsEbuc2hOPcX3Vuuxna07AfKzmtDzD6GTdwNWiV3ndYwDG 4CdTqGYU2Vzp6kZdp8kT0DKeFeQys77Iu+wJUiVjFdUY41Sm3azwlf2aMfnsioxLNtlmKQxZ JAT+Tbku4duOQ4+Nyuu1MCEyvyLarfKZzs+br2H7mMeoXdT7FdyXoN1Uf4v+NsKybEGp8uRT 9+px7LOm9U+daknUutSJjUQ9r4drMOuUEGU7gLFXv2MpJa65pQfZSgPfdnPbUsp4G27cq7re KkIdV3TELDMtKFJC13i7SLEDubJv3NFXyitvH02zmcm6HIx41K36x6/NNeyLwubdcu2rQJyr Rlt4GXvHNbMPmdYfTWNhC77gkwO3haj1ORRzcSscAup6XYkiMmkFucQwaOT0vi5Zsu8vFqGv YfrSfx16TvVe8U//d8XWrf4kaCyQfQnpmueYdewyqjosOj3Jtuh858nvQOflT3zc1W7W26MT 5uXee+Xpcwy6b47nqL/EN8qskCvUJrSCvF/DeT/eJ5tTyLEY9GkyOcs8Ed9OnbePf/TdLkbS LvzvQ77xnWhj6kGNC6SvxJ6+b9Lx4D3JC6a9yY25YJSc3SEmQHZAx0NclRURfSyqGWVzQmsy aPCNpUS54XoZUntd0rmB75QV5zi+elPSO6oAAEAASURBVCkd3PqkOS7KTTMvd+w5wI1Btc3u 0EHfpPvlFaG0imKwDURpFe8NP01KZcy/knTKpSqeBzNtazMqgJgod7G8rrNJbbZGttHzOjlV OzJeRZbxRR07M0KTjQei1WyIoh2/Gh3n6aJoNFtChut1h/cod53HRqbz1okBGoXEuqVdjh2Q I8C5US5QwNUIAEPpz7DhcXqlczmRVBx2FLtSFh0qT3yJ3eN4d+nk/6fEwcwbG2TqN2HmBuxo Hf2WyKrXxtKi2miIer1p6Gk4eXygeRzklsfFDjWAzm+K9z6yNrmScqCdSqdcJUX2ZIXwwFf/ zT0zrDYz0lnlovNJ/i3p6xwn2UaimHTaW+pVPFcRNddNZqltDk6DkPwMWd22bxWpxjklPXaO uOGr4oQiKScd6dpJaZb5N/eNP0QMx9MqOs7xTFV2uH1nA2O5WTjxQOd0WtVJPE/lCiKrbrRs /D0u8oWc5gwnW/I41TD/cr2qbyyqOPKaSigsu14UbsIoy5kPTbSZnRC67NtI6lwtazzA6tet 2Lbygav8hLETTNatOJsOl9EhTpsuSv2JZSjU3vQ+RFrCNPufyMIZ0qT0C/0ctC1Er4zavno/ BKsyFx82zT5W3WQcK6rP9fUQK5KDJ8xKPGc+gF2gvobpS8PPqaKMBSPRUuxJ6l26WBWNRl00 O9RhRdeGRV+xmvZwwPNyv/vZSfPyfvQ5Bo0bang+9zgp70WGuG+HMX9R9ifSdCDiPHFRffzX XWEGJ92HRBlTD2pcIKaraQ8k3XKP7CBfLl/OnQkcCAHq1Oh4IEKsW6F4sznJmZLI1ezVHkJb 5UI3hPokJ1sz1x6OWspqOOVGU18Ba60www3bHOdGTFTsFWXrBntx9WEbiMZyUPdfxTS2nN7k +LJzVVdDoqPHdIspjhm8STR/0/Vftku51cKNG+XqxZjIW4501fmj7t3RVpxCRgxyEkCzNXTW ZWkFCt68oUM/XmhRyo0+LscOaCMyx1HhPFAJiTu0/uiO6ZTlxFVXsMfS1sOb0HlO10ntQSX2 z/JjPCgynH36ZraqjoKt93hBaHmM7PX/3A5yY6lxT+SMFeTO6l15keOEc+LAd8vOWxYYxsPI W5NTrry3lsGbN27TH7xqjh5cRW+6N1zOkqQZezcKvyDbd98oQ6YiWo2SSODDkRhubKk8E9PZ BXxbji0EFObzs6c+QTf7PtcKcr4Z+pewV6iqbeLsk6Lrd7JgrtQcaSvz8KGm9TCj7rdvkqt/ LVjLxd03+RQ3VpXD3mRZ02GaD5mV03RRsZmwuuxFNBCFuNMfJXJV44FuO48PiqyVqqHyVh8u xPOGjmvcrN/kfjNynCGd8h3XQtp/EAtvHRf3C8m9uBz3IacVn4v36+YboKlSR4Oh2Qbar2es dNmafEu1gV32IvXV0/f49aUuOSbNqbQ6TRkLhGvD6cK012Y0evvzZVXt4UDn5Zo+BPff6rxc 68umzjHwAa+x0CFtvP1JLe3RVWvOZbRR4EPlCPPEBffx6sr5STaj+wdwrjZlTNVYKmMkcVrm cVXtYZl1przZQU4k+MgE1ogAdWp0XKOqHXBVMERKXlkFrg7YeJ40XlVHEX1vCHVnEj0p1yYB eKNMaym0mzEcFA3XBt4cq4OwZ4J9wHRWsXi2gait4g7DEBM1XKrdyKITwMeRM2yaq/NMzglR aTRFs1lTVhjiq4aGh1x3JDgTSF0+9YZLdZAH/S6v1pxw1k2l6Juv9FZpAbtezMZ9W44d6H2a LMPTJ+FKo2athiup665/NVGrt8X2jPpD/aeqF1I/Zf+5SJ3sN/K28ytVwtXgvboWwiRIR1Vb CS+Pj1pqYwneTOGK9ILlkCvIWEL2B9tCcwxW0A6bolpwxit7fHKtsqI61GSYmHTVzjHoRGWu 3hSrDm6q/6z8SCYpgzZGKjfbQfJN+305tjCtVOfven2QeeDNvnMNnVGYK+pv6YUNtU2Ivdt5 Szajl+9sxqzmYfPX9M9J677Jpw331DxsObQ8dAeLb3qc7YTWZQJjH/VxxuAUz4h6uyv6Q2kv 4fLWGNnt0xflbErEE0lRtN8a1MvzG9fC2r8/C7tiSzk5aFuYvVKrOhent+BioqqF/Jq+glx/ +CUfuqRFZ7xYfdX0ekJfGnZOperstLFAvy/ymSvMrgwLu3J17eEA5+Uh+297zJCtEWGOId+c kNxjGX3uoesqiEy5LqoUytHuk91Nr/fHNOapeirHJWOeqD4otvObrY+XUoS1Gd0OZhxT3dVe 0vfVtYclVVjJlh3kCgw+ZQLrQoA6NTquS70OrB7jnqjVWnZoiXG/LYpZ5zVn4gyQMVez+U4o 9HAE9Bq77gh3duPWJgfkmNTyXc0J5oG1UUDB1DYBf+affQioK5Ykvxg6BGRsyZz97r5zkaan mAZiMRHDf/FEQiQScZHAcCjmAlV94kr67+RknqkTWXXCHfS7cVW/poUHSFU6uOoKV6bHafW6 u5TN+74cO5Cvu8dtB7IswwxD4vAd95sin/HrK+MiW6yLa+pNSgT9IUe8qhfkkFu0TorRQLQb FZFN6XWV9Q3SUZJFkggvj8PNPnP1+dSOxhFXtJtrwo1SPCtZ43G0xTjaINpiHGO2FxsUMV0I dbWwdMS0B+Y+GwU9OLwthnqiMlfr38ipfJS42jPwU/PV+Sn5qkJFOCeGES5ZaFK9Pthn4mpk p2UmF6Vf6zib1TaR85CO8exE73PJZsLkYfPX9M8pTwzrWp9L/bkmh++8RckDq+qbHrXavSp7 ki67iXUrzlsT1NZG+C9Dt8PlrTGyV4u7S5Lf9fyIg5pSy2tCH+fPQs1p8efEZ/E5LynHVZ+L 09sCPjatta8cKyl4v4VKe5tU6olhP7p+yfbyswVNxyboq5Zu0t4HIedUap3sPgPr4zsWaH2J t/5L0phI2a6yPRzYvFxrt+D+W21/CT3sHIPqlVPmJ/J6XVflW3Hmu6iNPM4z5P4WMpHno9sL 2ZiqpzQ30/KfYDNh+nhDjJA2ozvIFZ5RxlRPvZfzwyrbw3Jq7OTKDnKHBZ8xgbUhQJ0aHdem YgdVEXwaHsOVqdqCPZRl1NVXE9IrkUED4EALp1IQ7V5HFO0YsdK55Nwm64O3NRnQJiqrOcE8 qCYKKpdtIIjMhN9dqz9MhlYMY9dlmp7GrJiZrjTmV33iSis73EnViaw64Q763byeVm3JVVfO Pwpj5C5jE78Tl0XXXXv9E9mrbaaW1XLFaKQVp7PqT+gbn7l1cqRtQJst17QNMtX6qjpKN2GS Qfg6qsSsc1efT+1Ix3SZXuPX7Stbd8YSn1wx3q2zTwDlBcgqzAsXaj3V+tezFO8cbTBmPSzG AEvqBr5h+an5avzslV5+tQr3G9U3XOolpCInmt1XOWFuppWmscA5ie8K8lgWt1yVH10nyGbC 5GHz1/TPKU8MatrmrJmKWaKqG7YNBOWBEvqmd8k9TZeNqrr+a5X8nORpXMCgMwnKW2ekb7ao F6Xn5zeuaXlN6I/8WeilLfrbgdtC1Aqt+Fyc9lxI+oR209oXbZ/skRD0amZoFmoTuaJ2HNIW NB3DleHq5qCUvzxq6Sb2peHmVGqd7D4Dy/EdC7R+wFt/Vc6DOif2B1X+xHIPal6utZsyBqCw Qe0v6xFujkEhsZSV1BYETVdVezHmLjn7bWvRq+CiHDMMVtCYp8pJ45Kef7DNuPP06+NNkcPZ TJB/INKYajFa9mGl7WHJlWcH+ZIBc/ZM4CAIUKdGx4OQYa3KxAmCjP3tezOFG+g4G2HhIC8f a0+YUIyarhjPmG88mRHVNgVXMclpq0l8V2Kt5gRz1dqdbWC2FtFXf+CGSpYDxJ2b/vq4E/vY TDfGlbcYlsL4ojsS3DeHlK86kVVvuIJ+p+vcMXFpF3n6+6Yfl2YH7k0f0Tnn52RV2w/kDbzl v51Xf7R8rX5y3jxVXenVnI36KHxCSdmkMkhH5U0Y9ejh5VFLts61sQTtq9FybZJJzlX9VXwZ A11dYSXfetI3QxsKtR5SP+wQLD5iqD+pzNXX6rWHJVZbzMpP5ardyNJYqAoU8XxpthBBDn2F JT5Y8nGoOdmNRBU3pJVzC12XHGeF2ibkAHDf2FOfq/EMcLLb/DX9U5wYWlxaORcxtU2TAx1w hg1osYcdmWX9tPS2zUTVZYeUkWe5aLJqWxu6oW6bbS5jOofLWw9lIzeubeuF2N+mj2t6mwWP kf4s7IKWcrIKthCpYis+F69ZcfwpJr9aN619USfJHs00+humsl0qxuYKi9VXzfan9KVh5lRq ndQ+zG8s0O+L3PVXSR3c+arbw4HMy7UxILj/tscMu/lCzDFw1bV8OxVSZfsNbbpc01VMYzum 8S2SSrlh7/klQ8PFcub+GkFjnqqnND4uso8nmcPYjG4HEcdUe4ykEpd7XHV7WGbt2UG+TLqc NxM4IALUqdHxgMRYn2LtCUJatFSvg1HDkR0T1t6YTbt5NDfaMZLS7t7oROqYb4sFMuoom6vZ MUq1fJ2b0sBM+A/2imJGEY2AvvoD44ir4Y7VrLRN46QjQm4caCZuG6+6J61rdUeCPdlV88Jz 9cZKnXCr8Y3VGzHn8oHIKzGY4znarNNJsclnyxwL+jX9oZ+zqtkhrrarfNOGVr76xV311R91 QyV5sxTgkDO654XppO60iKXLotsx42USz0S+Yd/YNQtyw1nLGYcO6jHewlXyJdHdNh+w2n8L tBGHl31mjz1mvoUW2pZr9S4547XyUY50sWlmM2yLDH5P0B4ZVuYDJb668dCCPPp24f4n6s2m ZGIOZfrqKXP1YzR+qo6otq/ddLoc//4STv6V2mFyqiX/1aXPkn/Vd7fRgagYTreYsWGfwAfy KdIxtCO5iZ/8qPFPnf7Rv8/Vwroptqi2q52Hpn+4oSdNXLQ3EJx4y+2iE/Ne6qXUjW5FXRlL D3QMsYWms4rN/OvPK7YUQpfN3OT/qHMyRn+mZv407ipvfJi8tDKD8vas8o+JUtN8qtdvltCp Yy2GcK3w9R3XQvZHmlwKC1+1cCo819lK2EKUGtj6uIJzcdumwzwklg4/5yag59ocPWFtqCvR aHoxp75G60unz6nUPmPyWIAVcdmB3ENjjA+xijXz7ZMoarCstKtuDwcyL9fuO50xR7bBtHn5 tDkGhcPK+GwWpOkq6n2q7NWTbs3cI8Z+Y8O2QWu+NGmeuMg+3lbI6TajO8inj6ma/e/TuEDV WXV7IDmXcWQH+TKocp5M4IAJUKdGxwMW5/AXb0/K5aAbF6V6R4ykDxBf122UaIVhDFd8mBNe LZQKDuzZmrmm0nEAxEQqkxXZXBFjm5dFNpsThWJZNDrkoRjr8dukQx3LG3erWtzP7ApNLFe1 kdkGZm0ZZ/WH7SwJyEqbwKG+E3N5zDlLhRXHDk52Sy2f3AaipIQcgjiFfBiIcloJ35BSYy87 2fSVV5T9VnA5KTfvjNpkWTWnGxUqJ5WviE5/KMZjfEl80BVlLVZ53HbsSXlC6Y8rvmOmKm+W MAa6tWLPKBfDF5AzKVSeeMPuOBv9dHIkyildn6l+5pF0Mm+s1qabPS2NteInlDw+jTPu6fH1 s0a95YMk3YGYyNdxOGoYbzpp5ZM9+oZ26IlszKofruBy3DU+gig/qU4RWVY8UxL1Sl4JuSEd pvKCKPyCbF/ehCtOV3y40KJhUpEpyinxiXLNUtLiA3N1020pV6ZYFe1uT/Qw/Fq9UrT/nq20 bRG6FZpzoM4WcW+UYUt5iw3jyVNDuvQ7YT00VK+X8xlzpWpP5JQHjJAsmqu/tbmPNf+p1UU+ SbovN1eznNEoodupQazVI82HZIUCbSayLsvczA85bVKFmhjgHM3uI2j1Xci8tUUKZEfWMY4P xoyPi7H/uBaujwtkYdVrGQdql2XkvZQ8NX1crbk46X7cXs2qEhiKijYG4gPLbFE0mg1Rzqv9 m3yw6Tx0NXJYoL5G7UunzanCjwWyJu6NJs2xR19JrzLb//PVt4f9n5cH3c/ik/oQ8/JJcwx8 gGu8jecX3mQsmtq4j7qCmy3XWi3Rxn/1allklDGI3mASEeeJi+zjSVun2YzuIJ8+ph7EuEB1 WX17IEkXf2QH+eKZco5M4MAJUKdGxwMX6LALgBNU+RpYJp8XmYRzY0h85cBdt5zjckdu45Ux 1w2VXFmkrvKyr3Wlk44fusFT08RSWZFWb2Ct68pWuYcd8bLkJ4bLyn+d8x005MrgWGA8S6fu I1F33eTJ6xynjr6Skdokic4d54POTtUJTnbxDz4h3kvn6hE31fGG8ugYK2Xlpndz+tAcsdbk jJgvszrjfksUfTfkNG+EpQwJ7MfK9bbLGTtFf7QVTJQXbvKZ1R0LRh3TFauKU/J0rfwkPrpO 4i1gS64WdcrMV1ui2yw6D4FiKVGz+2B08qpOEIzD7bxxNE0ev5bxdygU231Ry3jHoUShifti 1DSnv6xXLJkTQXtvkrPUbwNeP4nkb7pTBDfktfmYN3uFumOZ4fjt+Ns+rpa66t7E1SgrKZTF l0FiBv5ObR2YYD//MMa2LOVEgh5UaCxl22VFrWMtE1fkaldzil5a+pnIKfrm3+fmSgVXe5lt 5le+sYpfc0iiPLjpK/EzdCtVED3zhSFLuqHuNJHjQD7rKtNZcS6dLEE2E1WXCU/T2CzWbR8p DOvkCBo275a9AALrbrVNulC3+i9/xu4+xJQrjP0Hs6C6LfpIbbnofJeW3wrPxXO/fb9hG+63 CIZtZbxw2TfxTyTTolCqio719p2b3yL01R2ywix7Wl86eU4VZSyQdZLjgTpepH0XSrhrv3/f qT32r8ToJe3nvDzwfvbFv7Qf3hIz4+gzLw+cY6AtG7oQL7rCwXkfHGtleGwoJowFMTPNE3E+ s7A+ntpyss24HeTTx9T9HxeoJsSdvm/S8YisLAJYm8+RI0eMuqxZtdamfbgi+0OA7IBKY3sg ErMed+Dy5V04d+60kcHO9jUYDH4Awx8CvOaWW+Hc2a1wGV97Ho6ceXhy2ngeBhefgJA5Ts6L /wpkC2wDsyiDrvfTcti9dgV6P3wNnLxhDEdPnYWtG6ddsYi/78HuLsCNNx7FzLbhc0dOwYvl DnzpXecWkfna5LGvdrC3A9d6A/jBaGTyu+E4nDx5Ek5tbYHRTAFUl6E/C8lzbxe2R2M4ceIE SC0zPvK3HfxtS/nN/tMO7Iz24Lisr/UbHRYiD2UWeNyFK5d78BpkPh4fhbMTxqftS5+GU2++ DJ3xU3DOrlxgxsYfXn7qUYh98GnjHGMzw5c+cAdcvdKDERyHM7edhRPufCLym1z6/H/dV1uI IO7OtavQ/8EQxnjNDWgzp87cBlsemEqGu9twBe1sT/509BScu30Js4bdl+DR4/eA1drQGn8J 7tq+Cr0htvbJM3D29AlFIOd0++o12MNxAG48A6cn1cG6ZG83yGbC6zKVvovyjU6gHu5tQw/5 wNGTcOvtpz22CBAu772da3AFszlzEmDv+Om5xrUw9h/Mgmq4uOOq2kJwDfU5ySrNxXeuXYbu D47CXXff7qNrwTUK/5f90tfwc6rIY4FR2T3Y2d6BvaMnJvdv4cEsLOXhsAfdBqZVPkyfMy2P ef4ePMfAerzSBbjlLjh32j1TmqfE6NfO38eHtxmYcUzdz3GBCB4OeyBpF3tkB/lieXJuTGAl CFCnRsKwc5BIHORxF5772H2Q+FQL4uk8fOTtPwXHbroJbsDb4b/d/i/o1MvBx59u4RvPBXSQ P84O8gU1FdkC28CCgK5UNlfhc4/cBh+q4Jac5R48df9f4AOoz0NjeBHu8/fbrJT0+ykM28F+ 0l7dsq6+8Gm47e+XUMAHoCs+A9989Ag8eW8TvvnEhdBCq04RXGUMz0a4NnQhS0zIthAB7u7L 6CCPWQ7yBPatz3LfGgHfqifdTFvguXiwXkabUx32scDNYTPtwU1hvu+LmGPMJ8F+Xx3NZuAQ jambbA/sIN9vO+LymMA+EKBOjYpi5yCROMgjrm594BR86Gu4jWG5DZ95192aMC9/8XGIPfYF jA7RhIuHzOGgVWTFvpAtsA2sWMMsQpydS/DIyTcD+scBQxHAu+Dj8MxP1eGbT75lEbmvVR5s B2vVnDNX5qXPPQL3yCdKEINM/l3wqQ89A/XBN+EtERYfX/zEA/C2j+NAhh92kBsY1ve/axfh TWfeBvjoHj8JaI6ehQsHu9hvfVkfQM02c1zguXigqkWcUx32scDNYTPtwU1hvu+LmGPMJ8E+ Xx3RZuAQjambbA/sIN9nO+LimMB+EKBOjcpi5yCRONjjK898DN7w7k9ZQsQgmXwzwM634emK 6WzAzc7gjz75PjADuRysrOtSOtkC28C6tKhSj73L8OEbfhI+a/+UhObwS3CBV4/bROiE7YBI bPbxynMfhjsSjsVg3HJ49vGwq8f34OXnPgWxxMcViDHIFnPwweRDcNodWkVJtUqnbAvhWmPv 2kvwqf/jHvi4fJ5CH3wQWf3IB+Gh8zxLISSH+biptsBz8QCtDT2nWo+xwE1hU+3BzWGe7/PN MeYp+YCuDW0zGKLrkI2pm2wP7CA/IHviYpnAMglQp0ZlsHOQSBz8UcY663z7Fej+5+/B4NXr AMeOwWtf/z/A3T91F5zdn6DNBw9hHyUgW2Ab2Efo+1jU3vZl+He1SzCAU3Df2x6Ec1uHxEu3 j4xkUWwH+wx8ZYvbg8uX/h1cuowWc+4+eOi+aLH6r73yAnz9P27LYcv+vPrqMXjrOx+Cs4dk ZTHbgt10E0/2rr4Ez/7Zd+DYzUpjX38V4PVvhV+57+zEa/mPh4PAJtsCz8X9dTTsnGodxgI3 gU22BzeL2b/PN8eYvdyDuzKszRy2MXWT7WFtHeQHZyZcMhNgAkyACTABJsAEmAATYAJMgAkw ASbABJgAE2ACTODwEdjEBWbsID98esoSMwEmwASYABNgAkyACTABJsAEmAATYAJMgAkwASbA BBZOgB3kC0e6/xnS6wD7XzKXyASYABNgAkyACTABJsAEmAATYAJMgAkwASbABJgAEzi8BNhB fnjbzpacHeQ2Cj5hAkyACTABJsAEmAATYAJMgAkwASbABJgAE2ACTIAJhCbADvLQqFY3ITnI N7ExV7dVWLL9JkB2QOWyPRAJPjIBJsAEmAATYAJMgAkwgc0mQPcKfI+w2XrAtWcCTIAJuAls 8viwtjHIebB3qzl/3yQC1KlRndkeiAQfmQATYAJMgAkwASbABJjAZhOgewW+R9hsPeDaMwEm wATcBDZ5fGAHuVsb+DsTWAMC1KlRVXjySyT4yASYABNgAkyACTABJsAENpsA3SvwPcJm6wHX ngkwASbgJrDJ4wM7yN3awN+ZwBoQoE6NqsKTXyLBRybABJgAE2ACTIAJMAEmsNkE6F6B7xE2 Ww+49kyACTABN4FNHh/YQe7WBv7OBNaAAHVqVBWe/BIJPjIBJsAEmAATYAJMgAkwgc0mQPcK fI+w2XrAtWcCTIAJuAls8vjADnK3NvB3JrAGBKhTo6rw5JdI8JEJMAEmwASYABNgAkyACWw2 AbpX4HuEzdYDrj0TYAJMwE1gk8cHdpC7tYG/M4E1IECdGlWFJ79Ego9MgAkwASawOgT2YHt7 B05sbcHR1RGKJWECTIAJrD0Bulf4/9n7Ejg3iivv4vAAPgg2mMMm3FfMIghXsCEGYW4CCqyT JVgE2I+IbEJAEFgQrEkQhI3CEcSxESyL2CzCAYGNuEQAgS1zyIAgyAFBECDzIQzCaPjk8cq2 ZvK+V91d3dWHNNJ4ZM9Yb34/u0vddf6rXh3/evWK1ggbfVVTAQkBQoAQaAuBbh4fupog/+zN Z9jCj9ay8T3YXtYytvvRp7ADJjdbovWzpS88zT7u4+1rLevrG8+O+eFJbEqzIG01xXXw3P8l e+Hh51hl/HjGi9P4by3r2XkGO+ngKTYvq7/8kL2y6Hn2/HMvscwHJbb11lPZISd72PdPOox9 mbibffCdS9mF35k8bOFsEdGLYUNAdGoiQpr8CiToSQgQAgKBofb5Ijw9O4FAP3vvhYfZH59Y xL5awdi2h53KLvKdzqZs6ZTWapyTPKvNSbTvOJfZecYJ7GDnAIqn/t5lLLvkdbbozwn29WH/ ym48+wCnyFt6txLnDX95dTFLxlNsn0tvZ+cdPLGlcMLTl4uvZ9vPvJalK8C+awrKcXiMvVnp aTJHwznZM4+xpX2aH4y0r9LH9jvhTPbNzxey597rY+OVCZ6a2tq+PvbNY85k30Fset97gf3n Hx9ir7z7BWMTdmAzZp3K/tHjZmxJlD3VM5tdfCzOkVYvY888+TZbq0+qelhPz1q2FjG2/fXs zk446QBmraYvl77AnltaMeVDhO3pmch2cx3E9psyQbxq6dn/5Xvs4egf2aIPv0L/27LjL7yI zXaY0/HI+j9byp5+5WNmmhj27Ix5PdiWVyPxfrZsaZa9/soilnhpDbv09rmszWo1oiIXIUAI jFgExFqB1ggjtoooY4QAIUAIbBAEunp8wEFxo/rDFgT8Xyt/5VwSgj634p+H8URzTYOVU0Hd L3P7IRJLQqkOUMnFAJdV4A4kodY0hg5+rJchFY+Cz6WWX8HB7QY3/+dyGfnGfAaSJXNGKnmI Bjy6H18wDIlkChKxMHjQv8A0nK0MTzhzLPSrAwiIOhPPDiRBURIChMBoRWCoff5oLe+oyXcV 4n5jzBX9N2MBKOBcw/pXL8b18dnwyyDBJyZOf7UixIJePYwvFINsoezks4V3VYh6zHmN5Kot hJO9lCDI5xjBlPxSc9chl4xB0G/M0VzBtMUf+knFIegVcxwPhHFeVsSJWN3Sxjk+gXAMcuUa FBIBCYMIRMNBcElzHX+iqKRTSUtzPum7jLXu9sYc5398nhnyG/Mr1b/LlJ47EAfL7MpSTuNn NR/T866nzcuWKBiedFcdEj5zHSlh/Elo0EKglImBV8wjXT6IpbKAkNEfIUAIbIQIiD5kIywa FYkQIAQIAUJgHRDo5vGhNSZ5HcBd30Hbrsx6VieBPZFs4+yW07o/xnyQl1YX2ZC2gHOFWl7k NE5o3b7ko9ri1xOxLNZqkI7wb25ATS39r5aPK+Q+x83tjykLS/0jd9SLEHTzBZYHMtLad6jh THHTj44hIORAPDuWEEVMCBACowoB6rtHbnWVkn6F/AzGUpDLpiAoEdC+uJ0ATQU4MewGn8+n /fOCNxBznIdUcKzXN7y9YchXpEnMECGpYxRFLc+M+R1J/GZRq2FdpjmJk/9kQJDkOPdyIGvr +YiCm3XvHyAPXo3YDqa0jYBqRsPBBfGCFBnOdUIK3i5IFFVs0kGOrw9S2iZCNRNS0pHngPVS SplDBVIWxQNTQaR8pI0NiXLOqBOn+jVFofwoQoCXxxOEVDYHqZhM4DvgX04qRLzbK9qHD7xe L8Ssyg5K3BVIBA0iP5TMNyTR7fmiN4QAITAaEaA1wmisNcozIUAIEAKdR6Cbx4euJ8gr+oKH gcufaLAgqJg0pdwWLaZ6OQvhQAAiieYa6J1vyhWIaAtqbzRvT66WwcVSAPTlGZL+XPOdC4Ar 0KjsAIUYJ9Yl8n+o4ew5ojcdQkB0auLZoWQoWkKAEBhNCHR53821iiOSNq/HH4ZUKgY+f1zZ UC6lIuD1+SGA43nA7zeIZ3QHAn7whxIg7RNjzdehkElAwCsIXBxP3T6IxGPgx1NmOc6/1vIQ 8nnBz+PEf36/Slb6AyGIp/Kmjex8PATRjLSDjaN1SNPmdYctG/hI9HKt53BWInkbtMVSOqwR u7gRHnQ+6VZMhbG8ctn9EAxFIJlVtakbRA2lpKaN3XD+1CBkvQB+zL87lGngQbzWtMy1uYoT EZ0JIZHtsWtwV7Mqcc4JbaUuMMpqVsMCFRr0uZCWVDXLCXBBNBeV/MU1spx7SQW1epbLWufk d3OSv5qLavibFQ2wcUDMq87BmCdqaVtapuRHLQch3ACR813WtdytcQMouLjCpjYmR2e4SxDW N2PckJQ3DgxP5CIECIGNDAFaI2xkFUrFIQQIAUJgmBDo5vGh6wnylKIhpC1Q3BHHBUo24tMX l7yxhE0L2GFqhcMRTcUgvGPSAqdWKavlQjMs2ZzQcipDWNEM52UXC0LnTFSzqKXkE0eghxrO OW562xkERKcmnp1JhWIlBAiB0YNAt/fdmvYt80ICSd9KpQiJkHriyiWRtPm4Svi6fFHIZLOQ yaQhEQ2pJjEkYrRezoBfI6/9ETTrUalCrVaBPBLNSr/rDuua3DXcRA9ofoNoAiSTTkLYp5oF 4RvzzSjuTEjV6vVEzBvwOXFaDMlZfzihmHtzaov1YkKfv3AzcI3/qpDwizxh2dNx3WSbt6H5 uRrENRMeTsR147Rw4z3O51UeyJp3HGxB6iU1/263mjc7kawS6F4HDfu0ON3ni+vKD9WcIM0Z RCya1JU01r07pvktoekVeUNEtB80Z2JSVS9BLNzcREo2rGlm20jwmqF8gXls1g5swIgX+rzP C6a9EiTThfa8y+PHNi/mfiKgeKIZFq3eeX1o1mXER3oSAoTARowArRE24sqlohEChAAhsA4I dPP40OUEuarB5Av41MWvKwjWJUQ1r2r+eLzi6KlYhNShmMWFcywKoSAeW/VHTVo9antE7TJc ZAYwLNf0cnu8ENaOrVaLOUgm4hBB25deDx7h5SpBeMQ3GvCCCzXPjEVjFe1wRsHvUTWXXOg3 lnHW6NJtpJvKUVAWSSlZKQ2T0rW+MF/BpkeD0XOtDCXNCOVQw6l40P/rCwHRqYnn+kqX0iEE CIGRicCQ+27FbjWOkS43RDKy7moFkpEQhCIJKKNFiqZj2tEXQuyZJEQjON65kYSTNnC5iQov 3pPhC6d1ElNBsIoENvr38Ds0MG2PLwhpblxa+svHue1oF4SSzmOi5BUVudWx3BeTTZXUIILE dUAye5FTTJEheWqxp11EQtcX19KpCDMdblNZRHpZrtEsnzQTZKVEmuPtJdomtdtkvkzEoT6r +qkwedMbUGvZp2lUiz7e2U65vCmCm+Fe1BD389NuWUcyVhC5MWHwvJxS50amfEs5FOWymG6T fDg7tXBW0t/Js0KkuyJQ0ol+wwSK4r+UVDYA7HbXkTgXGxgy64ua9+LkHDdPk5Q0xOuVAuQK lsmSlql6Qdh7d6vzNafMOr4zTgH4YnmTD755IfLieOrP5Nv5h074e80Eu7oBoSl/aG3F72Cn XD5FyduScnoiGIFsySxrzqnTW0KAEBjNCIjxYzSXgfJOCBAChAAhMPwIdPP40NUEea3ALzvy QDqf0mxSWo6oaotQVzABybBm21u/iKmK7wK4eBfa54a2mNJEqznNdjfDhX8CimUkv5WjtOpi uJCM4FFrLU6ehyIewxZx4SKFL4brpbSuwRWIpaFYyOg2Se2kdh2SQgsIj9QWUWu8wG2Y8jRt R4kNUyys0cLXUc6GGs4xMnrZQQREpyaeHUyKoiYECIERj8AQ+240g6HYPNYINpM5DE2zV5xA GmxMO/msH6lkK8Yl3/ehm7zAcVDcc8HNfah9lw81XwuQ1bS6mT7+csCRYBZjpk0z114hejq+ mOmkWDaE2rX6pZaCtPbqJjnqVdQM59EhYV9U7HYbpHOgATFfSYdMWsYibY/JTIogv41y23KN BLVCoNq0i+tQq/IxHi8a1y+o5LiatcxL8sXiqDkfxjmLuIzSrrkuiFzpRFlNu6OlwTxBN2HS 4LutPNqLXIQrHBgYN/KnmCBB0x/uMC9XVT/15g4bZln4xgVjduUGQ3PeBUl5XwdjysfkU4Ee JMkHJ4P1+13aLCtqI+iYJyQNjGoR53eaXDEXXsI6eBYcYRJmX0wbKOizXq9BuVSAJNopF3XO MTeUL3h0xiYClzcPXtButCe+ETHETDnmlF4SAoTASEOA1ggjrUYoP4QAIUAIjAwEunl86GqC XFmk4XHaGhLh6lFUJKp15aEaHjvl5LcfL64s6eS1X9ZEwvarLvQYmI4go81RbluTN6yw0LgT C03UWBIkAFRU7SyXN6AQ3y5/SDuyjRdR9Wb147FBaRGuXxJlNQfjqFGm5sG8KMdM63nhC09j oTmoOA413KARk4fhRkB0auI53PFTfIQAITCKEBhi350Lu8EVjEFEMwcSksyLCZLRFRTmtxCP ZmMaapnrWux4ibRhWQPv+ODmvnAjl/OHZSSXlX7LG9FPZVUzGmHuT5q0zItptBmOJ7OiYpxt ViVV6ULuUEqPp15DAly9kxET18Zk3RQJJ41RY1ifF/D8aRcjIlFq4V2N1JGc1OPEt8LUR0y6 YbKi28cOgKP+u7454QUJdiMN3VWFmFY/DOcFRlalTRFpA0EntXF+EpXyA9qFji5d872ONrfV k3OyCRo9WXQ0Mv8i+7G5NQ1ur0Wb2uaPv9DabTSvtpZiQr3ElM/L1IvSNRveep6NWAqCBHfb bY1zXxmh9KDM1cya5EYswmVgad2EED4aPY088/mYeqGqRzdvh3Mwf8R+OXqjyCzviwnVHJC8 4WTxovys5mI6SR6WzMrIbSGiM+dVw+yLaUPKKWZ6RwgQAqMZAVojjObao7wTAoQAIdA5BLp5 fOhiglzVPvMox60N25Ji8VDULp6K8VVYWdjwRE0kXdOMN0hDk8zQ3jHsOZqI6XoJLwfDi7oi Kf1os76A4ws0JAyUhW21BKXKck3bHN9LNk95ijpBLi14+XtxfFzRiOfn3et1qOSTivaZ9ai4 cWEUA7+D3U4en9PfUMM5xUXvOouA6NTEs7OpUeyEACEwkhEYct+N4whIZjSSfGxR/gzNU5k0 bzymaZqoujatIDh5ZGjHGk86KSQskqcehbA0tKprxaT2TtpwVjPR9v9l6bJKj0SSi4h0Ah/N tgSCfvWEGJ7IMkhnw+Z2UDLLIsI7Pw2sIuk8mgrJQyqqXWyJhKlsbsYIz0lvTqiiFm8LqsW6 +Q9540FonyOe5rwa+RHzHZ6uIHI5YZtMomk47dJGl68RgWsoDpiIdqMQjq6MYhdc0lJ39KW+ rCgXaqLCgGh20iZHkGsz1HNK2whJpK8aEvFTTuyhVrRJa9+cWFqz766Ok03ypNv5tmwqmKNz +GW0F8WmPdqej0WjEI3GIJHK4MnCoWtoV/P8BKR6wfrgsdR1W/FynQvtc+spw1JSbALJGy4O xaNXhAAhMKoRoDXCqK4+yjwhQAgQAh1DoJvHh+4lyHHBw4+dxhX7k4bGTDiHSw1NC05o5eiL fqupEmGfU7rk0jjWi4utpk0W05SORuvKOximrph+4YtjkT8joorQpLMc880qR5ZVot3QzCvi EV68BMuyejJpDVnsrBop2V1DDWePid50GgHRqYlnp9Oj+AkBQmDkIrAufbcwDyJrJ5eSQpNX NtnQeEzTkdHJdoMAV0lp9bJGYQOboUmRUjkP8ZAwheFGLXHJPoUeYfuOUkrTUMfx1RvNShHg 5rZGSkeQvMykE8qJLreJYMXNdM2sS7wF4ppHrs8J3LhB7vOC24321NEWeCSehkZmnnWN81bH Z4GrNC/Q6435dHMxamENYtsgSwWR64JwLKJtSHDy3tgakIDSokloWslNiGVrIG3OZD2JZ/Um fqf5Jeq+hK7tz9+nAtplnfi+pNiVd7joUyLSDQWBKhSL1vIYRDofKxtptev3u0hzPZHHpk9R Lxi3vJHkHKYCMb8H24YXvPo//O2L2k8qiM0Pi7kg53jVt+JSV+OSedSK1zTZrfbP9fJaTyo2 S4C+EQKEwKhDgNYIo67KKMOEACFACKwXBLp5fOhaglxdlAe0SznxmK6yMMYFUjgOYa45pR9V NhZQHos5EnG81aUfx0aTK1GrrfIGbVjXlEMNIHHxl+ZV12ITWuV6FIYWkCsgHWuXNNnNC506 lIsldXFZL0M6lVO01/mCXdikNBbIeiINHUMN1zBC+tAxBESnJp4dS4giJgQIgRGPwLr03arG L46Nwr41mvMS/YoLCTp9/7XJmGYAJNnd5gE1wlTVcDY0m0X8Hl8AYsksKKa/jUjadlXKZRPJ mosaxLtu8gzJTMUmtLQRnkEyNiTvXutlFJd1D54VscEesBrCbhA0q80hojat6AYB+GvNFIls 7kZc3uiymKXBY2j6xZD6+C+IXDyZxpW1xUaFQS7b0y7G1U0SW/x2r/qbVIBv/DcwKaP7Eo6S Yv/enzRvjBin5Vzg5psVDmZAjIsnJe1zRfEhJJ0G0NKRTOI5a5tL97tYTvSJnDZ6GpsU8kZS A9+iDpBMF+1feVpOC0JFM7/njdrL0iBq/lq9fNYlXTAqFEMsl56i30xYu5SeCPImiNInQmD0 IyD6mtFfEioBIUAIEAKEwHAi0M3jQ5cS5JqmmEQyq4sHsTBBW+TCuKijJhJvfkLjCo8vp4Rn sQixX5alNti6vkg37Jjaj7CKxanQYNcbu2YjlDfYgLxo1DXZUeO8gVZbJoxaV964mr60EOMX dYnTy3o6kqOQCEMkrS1QhxpOio+c6wcB0amJ5/pJlVIhBAiBEYnAkPtuQ2NaMTeG457YTOZ9 i0/a3G02phmYCIKcQSSTVe720G1e6+Qztwet0+5G0CG70JyaRzbpwiPiJkxUTWSh2SsIZdO9 HNw+OfeOF2bHkvxMmNC+NjTg+efGf1yrns8r0I65MU1o6D2n2c2O5QxN51IuP+gGgbDbHtIn LljCXEQhWq02s3XtYOmSTHHCQGywqxeY4+a9bF/elGvN9je2AfuF4SaP+o+6dqlrIGUmvHUP FofqXyZ0hQdxmag6X/M5mIlLB90qySxpn1ez/ORAWLJ9L+IzymI+LaB9R1vw4k6ZVvMuYhab S04kvvAjP7k9/CpeCiv/k23ZY6Wqmzi4MaW3ELw8NtdM019JQMPMZDdfyKJVA9/YqDLdrSNn lNyEACGwUSBAa4SNohqpEIQAIUAIDDsC3Tw+dCdBrl3KKRbGvEXpmt+WBZ++6LcerUXCQdE2 w0VmppjFo9jqMWZBbnOtKtNfVb24M6xooxkaSU5HjUUc5oWtocnOF1uGGRXDdihzBTWNeFPK kE+o9iR1bTGkxJOoGScaflgQ4OZgUNSOoid0smKo4SwR08+OIyDqVjw7niAlQAgQAiMYgSH2 3WKDGMcWzu8qpj9cXvAp9qk9kMylIYAmICp8TPGrY4rTmGYAI41jONYyr6QFi5q86phq2QDG wPwyTn6/hjAXVinmIJPJgW4S3UjA7sKx2oO2vI0LuFUvKnmJ2rPavSJCa9auNY3kIuZVtXNt bIzbNrC1lDlGOgYCP/1Emj174k0mop4+i+U40riZjmRpXhmDPYaJFH4SLJmETF5i2zENBTeL JrUguc35NMhPeX6hY6GP9UUI8vqxzntEZvVLX+WLzcVHp6emlCBp5zv5kt8VYoiHyf678bWg aa8rNtoVM3nGN0DjdoLQlsl7oUEdL1hVAsoQ1Mzm6PUmRSc2GpT7XXRWWvLQ0ImbSwqGeNeL 5XL3hkGafShn1IvbkRxX2j3eD1BFM0RhNJPiFqc7MHw5n4YkmgiSZUOcmJAviTWUPAy54snL GyhC3ppli74RAoTA6EWA1gijt+4o54QAIUAIdBKBbh4fupAgr4G+EM0bqx2xCOLmUsTyqV4t QFCz0cjcIdDXjtgahX/mcivHld2htBKulBKXb+GiKJKEQqkIGdTC5o3MjZeCKdpoSNCrRIDz 4lK/UI2nqWSmBilxmRQSFfL6ro4aRcImKtdSSxaKaGezCIVCHhfSMfB7BBFu0aCr4wJYWxTy vHlDcciXyqi5VIEiLrAiflUDK2I95j3UcJ2UYIrbhoDo1MTT5oFeEAKEQHchMIS+W2gWM5cH fIomtA+yuCEsiGzevygE7CBjmgy0floLxzezLrGhycvjDUQSkEY74EHtsshoVpDCBvEok7xy GrJbEMVMEIv4Ub/4EwlbJQ+6mQ1+egwHXSQfa7UKFLJJCChzAD8URaTC/jPm0R9N69rdtUoB bUjjeCuZxBBErrPpDhFhBRJBzaQFxin6bPGUtZoLcWEaRh2z06moai7FMi9QYxY2pgOQVyYe NUgKzWqvZNcaCXavlm7SmBLpZjb8sbzIqPasGvMRriAgM7EWn+KnqANZKUF8c3rWkQxW2pgn bLe/zQOI0wY2pYA6ZHXzOfyEg8i73LY8EM8WlflaHbWvYwENe4zLyrXXa0WIaO2PE+SpFsqq lqcOubgxFwyl9NbjVNxB31XyCd0sjmgXxlM6zaDLIW9HPoin8eRDQJ3LBZUTEOakhHz7NZy4 XLi1thDR5c0chn4RAoTAxoOA6Ec2nhJRSQgBQoAQIASGA4FuHh+6iiCv5WO67W1R6cwfV0hr lfAWl03VISaIccuCVRw5NexgcrvlGvGttEZchIY0O+R6WDeEk2KhhmvvUlLNh83GuNGchda3 nk/UgAvyxbjhBfLSQtDwZ19g82/uYFoKqTlrJekSNEs4bxDS8o6AHHqo4eQ4yN1RBKztoaOJ UeSEACEwOhBot++WzHcxlx/JUCxmnWtkq+OFJ5RUxs9WxjQBUDbEN23NG73iGydG/dLGrTJ2 +SOQNxkhR5Mp2vgcSA5OPCo2wNHEik8L4xLxu4PALZmUUmH7vEAfu0U5MyKLyrNaSEmbz8bY 6Qsn1dNduBkRki7hVssRN538EhHWNFMo1j5b/Y2b3pqGO/dfy8dtefVHUqZ5gYhXeVbkDXQ1 n3oe0YM4JaanjXXM7ynnf3y+pL/3hJSNeXneo39DrCKynXY1uPR/DaIc+wba4JJHxZkSJL5e B072u4WZPGNeY8qvHhbT5Zr1yikC3NAIh7HejPoSZXD7wpCXj+VhTtKKvXS7X37qweLVXARp w0HErzyljRNzgMF+oSmUBvNRHq/bZAanCnHtJIeettsPKUkZxJqaTOQrYfA0ZLLQtITWKOg3 IUAIjFIERD8xSrNP2SYECAFCgBDoEALdPD5swjFFADaav0022UQpy/ooVu9ny1htqx3YlIlb 2vBb3fsl+6L6v2zM2K3Z9pMnss1tPlp4sbqXffZFDePYik3AOOyptBBHK176V7LPSmVWrdXR 9xi27dSpbPKEFlIbarhW8kR+1gkBIQcikvUhDyItehIChMAIR6CNvnt172fsi9pWbOoUYxxb +eVnbCWbwKZMntB2QXl8ta2mMIdhU4trNfts2ResPmYM23rS9ujPYfTE/H/Zy9jkFtLvX9nL +ieo4+dKHJcryrg8aUh5txaWj/M8vvqYsWzS9pPZBIesWsOs829lXlDFoVpN0wkecxqr2ZeI J85G2NY7NMDTHGCYf/Wzzz4ssPqkvdiuE4cPoH5sRyW2fYtxYh6W9bIpu05Wyqa0g0qV8SnP 1jtMdZzDDTMI6zW6XpRPbJZs7NaT2OTGgqbnqR/bcWld56t6bOQgBAiB0YKAWCvQGmG01Bjl kxAgBAiB9YNAN48PRJCvnzZGqRAC6xUB0amJRGnyK5CgJyFACBAChAAhQAgQAoQAIdDdCIi1 Aq0RursdUOkJAUKAELAi0M3jAxHk1tZAvwmBjQAB0amJotDkVyBBT0KAECAECAFCgBAgBAgB QqC7ERBrBVojdHc7oNITAoQAIWBFoJvHByLIra2BfhMCGwEColMTRaHJr0CCnoQAIUAIEAKE ACFACBAChEB3IyDWCrRG6O52QKUnBAgBQsCKQDePD0SQW1sD/SYENgIERKe2ERSFikAIEAKE ACFACBAChAAhQAgQAh1AgAjyDoBKURIChAAhMIoREFxSN44PRJCP4oZLWScEGiEgOrVG3+k9 IUAIEAKEACFACBAChAAhQAh0NwLdSIB0d41T6QkBQoAQaI6A4JK6cXwggrx526CvhMCoREB0 aiLz3di5ibLTs7sRELJAMtDd7aDbS09y0O0tgMovECBZEEjQs9sRIFno9hZA5ScECAFCwBmB bh4fiCB3bhP0lhAY1QiITk0UgshBgQQ9uw0BIQskA91W81ReGQGSAxkNcnczAiQL3Vz7VHYZ AZIFGQ1yEwKEACFACAgEunl8IIJctAJ6EgIbEQKiUxNFInJQIEHPbkNAyALJQLfVPJVXRoDk QEaD3N2MAMlCN9c+lV1GgGRBRoPchAAhQAgQAgKBbh4fiCAXrYCehMBGhIDo1ESRiBwUSNCz 2xAQskAy0G01T+WVESA5kNEgdzcjQLLQzbVPZZcRIFmQ0SA3IUAIEAKEgECgm8cHIshFK6An IbARISA6NVEkIgcFEvTsNgSELJAMdFvNU3llBEgOZDTI3c0IkCx0c+1T2WUESBZkNMhNCBAC hAAhIBDo5vGBCHLRCob9uZq9+fh89t7aHja+p6d57GsZ2/3oE9i32Lvs4ec+YuPHq/7Xrh3P Znz/WDZl8+bBV364mP35rV6mJLO2j/X17Mem71xmr360FtNuHpaN352dcuwBTCTx4eIH2X/N X8S+WvG/jH3zMPbPF/rYd3bd0hZJ/5dL2QPReezVpV8xNnYs2/Po09j5PzyWTRYR2ULQi/WJ gOjURJpEDgok6NltCAhZIBnotpqn8soIkBzIaJC7mxEgWejm2qeyywiQLMhokJsQcEagf2Uv q201kU0gjsMZIHq7USLQzeMDEeQda9L9bOkLT7NX3niK/fTKe/RU3G637mZffcVezOWU3+Fs lV3sWs2e+a/fs5N/+u+6H3+iyH5/+q76b7ujl91+7CR2yYvaF0+AJa+9iO329Svs8YeuZ1fe o8bPvxppY7ovivchVoZ/ZZNZP1v8u9ls5pUJWxLRXIWdd8BE/X3vkrvZpCN+qv82HH6Wq/6e HTDBeEOuDYOA6NRE6q2Sg8vefIG9/mkfE/sqPbjrsnYt7uBY//DVzjNOYAdPsW+eWL229vvv rO9vz7JEYT82+5Td2BYOgdZ8lmFPPLaIvdc7hk359gnsjBP/gU3czMGj6dXf2erP3map519m +RXj2RFzvOyoHaQZzsDX7N0/P8qSby1nsP1B7MTZJ7MDBo/UlAL9GNkICFloSQZWL2PPPPk2 w31N7a8HNx7XogyI39KzZ3d2wkkHsOGSAClm3fn3vr+xZxMFtt/sU9huTkKBPge+fpf9+dEk e2s5sO0POpHNPvkAm1z0f72Mfbj8f9nf9ZhlxyasZ+IubM8dx2ovB9jX7/6ZPZp8iy2H7dlB J85mJ2P/P6ioyVGSe8Qh0JYcYO433FjgAN3f+9jfnk2wwn6z2SmNBAFb98r3n2WPPP02+3ri oez0H7jZnuM2NUfW/zVb9uFy9r/OgsA26ZnIdtl9RzbWEoxH8vfVn7G3U8+zl/Mr2Pgj5jDv UTvoigXmROjXSEegLVkYhWMC+/tK9v6zj7Cn3/6aTTz0dPYD957MLgrtjAmMrS69yp5ILGbv 927Ktt/fzb7/vUPY9tJUaqTXOeXPGYG2ZME5CnpLCIwwBFayN5/5M/sIJ/LKVL7JevWzN59h C9/rMxQT+9C93zHspIOnSGXqZb/bZBJ7JpJjL1x4gPTecC57/Hp2W+X77PfnOX83fJKLEBg9 CHT1+ICkwUb1h80O+L+R81eDqEfNkyeSs2erXoSgi4E3lte/FeJ+pQxqWYJQ0r/YHdVcRPLr gWxN9lOBsLtR2jXIRLwY1g2ZKkA1q8YTiGWgXClDNhECl4alK5CUIi1DCPPLw4ViKchmUxDy uow8+JNQl3yTc8MgIORAPFvLhahbtc2IsI2e0bypsbWWhM3XAKx8/3G48eyD4RvY3iae/Rx8 bfOzBj6KnQd7b2rO17jDLoenl/fbfIsXq5c9BcHZh8B+x/wUbn/6r1BeI75oz1V/hTtOmQyb br4ljNHaOpt4Ity2dJXFI/0czQiI9ttKGSrpoNGXiTbR6OmNwXBIgFO+Bla+D4/feDYc/A1s 8xM3QcHiAABAAElEQVTPhufsQqEEW/XXO+CUyZvC5luO0fM98cTbwNSEB76ARz0T9O8CD/m5 04WLtWysgr/ecQpM3nRz2HKMkLeJcOJtS4GkwqmmRs87Ud+t5XhDjAUOORtYCe8/fiOcffA3 sP1OhLMbCcLA1/Ba6BSYNuMn8PuHHoeHbjkPDj3IC/cXVkuRDsAXj3oA9+8by8JOF8LilVIQ 7ly9DJ4KzoZD9jsGfnr70/BX20Bi8U8/RzwC7cjCaBsTBr5+DUKnTIMZP/k9PPT4Q3DLeYfC Qd77wSwK7YwJa+Dj2Lmw99a7wxnX/TckEvfDNSfsAFsf5Ienmsy/RnwjoAwqCLQjCwQZITA6 EKhBLhkFv8Z/qG3cBzmHCXs5l4JoyOBcfKE45CtmFqNeSihzhnjRIQIFkJLC4zDmh8LoAIhy SQi0hEA3jw8jiUluqbIG8zTyKrMKEUGQh7OO2S8l/OCN5vVvtXzUtIALpsv6N7OjBnGfRE4z JMiR7Db+qgY575h2EXzMBWkMk4v4IJAoGkHRlVMIdFxMusJQ0b7Ui3HMmxvMWapCTM9HAArm scUUJ/1YPwgIORDPllItp5RNEW8kBWVlHmBssPj0DZwapENubAPNN25aSo97qhXgif95CB68 djqggqwjQb7m/TAcNembcNwlYZj35NMQ/4/L4bjtVZJj3In3QdHW3vphRfp6OHa7CXDwL5Pg vIZbCZlfeeDHd7wKZR5+1QfwJ98+itz1uKPwSWPeveWikceRgUA7MpAO8v7UB6mC2udWMyGl TfB3ea2d1UspwHNAEEg127pcl7LXoPDE/8BDD14L07fAdt6IIF+ZgV95fgx3vFpWNiVXffAn 8O3D5aIH3NFPQDTh/uJ/wsxxY2Ef9w/g/At/Bj//+c/1f74z9oXNkHg862m1h1+Z+RV4fnwH vKoKBXzwJx/swwnFHjdESSjWpVI3eNh25AA2xFjggFCt8AT8z0MPwrXTt8B23Ygg74fPE16Y uuNseETv7OtQuPMomLT/VfCqILz7i/CfM8fB2H3c8IPzL4SfSXLwc98ZsO9mOP6c9bQ+1+HZ 6V+RhuuP3Q4mHPxLSOpxO2SUXo0qBNqRhVE1JvR/DgnvVNhx9iPGvKdegDuPmgT7X/UqGKLQ +pjQv+w+mLUlg73nvqVvCA98/hCcMpbBpLOfhq9GVc1TZq0ItCML1rD0mxAY2QjUIR3mioDq epF5Iqbx3cg7KjJyMj2YNl5JrnzUg3EEoRETU82G9TQa8zVShOQkBEYJAkJ2Rkl2hzWbXU+Q 16plKJfLUCqWoGoj2lSsa5USFFXGEAm9ChSLRShVGu0kWuunOUnN4y5b4lK1wj3gFbufboOg lmNXyWoGHi/vvPkA0DpBXq9VlfLWq9WGGt+i0/dEJGK/nIFo3CDzRX4MTXav4y6t8EfP9YOA 6NTEs5VUiwkfMF/C8KqRJAw3URISC12I4YSjwUTCCNyea807v4FvYRu2a5CvhrdvPA0uXLBc J/x4zPWP74OTJ/A2fxDc+oFZcFe+fj0cgcTilHPnw2eCJbRmp5aHRx95B/rk95Wn4ayJGOfU i+Bl0wfZE7lHGwKty0AR/NgG41JbTwX5ZhC2CX/C6CfrefDyjUWxa9gpQNa8A7/5FqbdgCCv 5R+FR94xN9TK02cBGsOCqRe9rLXtNZC/63y4/LFPjfzr+a3BX/5tb4z/R5Ds5S9rkH/0ETBH WYGnz5qIGEyFi0godORGo6N1OQDYkGOBHds18M5vvoVtsAFBXnsTrt57M5j6s5fM/fmK+XD6 1lvCUX/4SGn7a/J3wfmXPwafmocLJbnaX/4N9sb4f6QKgpqFla/D9UcgMT/lXJjfcCCx55be jHwEWpeFUTYmvHk17L3ZVPjZS+ZxYcX802HrLY+CP3zEG387YwLAivhxeMJuDLgfXmFUbO0t uGYvHJt2uRQydLTIwGUUulqXhVFYOMpy1yNgVTh0B1MOmKAiI/ItbkdFQjxNh3Nqt5MFACWm GsS82BfydQL/54mCSU/RITV6RQiMFgREux4t+R3OfHYvQY6aqxG/Rn6Ijg1Jj3BSHJCpQzGb hJBPJZ/d4TSaHTEfvw8mzRrXzhUjEeQOHWwctcsDGTPTUs3hbqQ7AtmkkV7ErBquJJUKcG3H AGQyQuO8CUFuSTuJHbo1XXP+uXY67/CdjyWZ/aKJFmHqBfNNg4MVnfX/W3Rq4tlKDkrpKMRz Ru0VEwF1wHeZtcXLmRjEcuY2y+PvX7EYbvYeCdP2PRBmnnkx3LLgbfjKRkZUYcm98+FDi7mT +ge3KNrrdoJ8FbyfTEPJFs/X8Pw522L+psLPJeJuoHch/GJ3bLfbzYHHvxhopdiGn9Vvw7V7 M5hwehw+byGodeOsxDfOygZ+POJqGTfX8L1lD0xPU3wvV2tQ55t1jXbp9BDkaBeB1mWgBNFw Quq/ihDQxoZAUtYWL0EsHLdrovSvgMU3e+HIafvCgTPPhItvWQBv2wUAqkvuhflWAXAqVP0D uIWbs2pAkDsFWf32tUj0TYDT45+D2oTr0PtJGWRDE3o4jeSYdPYzoPDj+gfZgRtU1yKJPuF0 iLciFBh0neWiXlVkplgqQ61eg3Kp4kDuy3kkdysItC4HAOs2FuAJnsU3g/fIabDvgTPhzItv gQVvf2Wvw+oSuHf+h0jXDfZXhw9u4XMdZ4K87+Wfw1S2FZy6wKLL2r8M7j4M5efbtwLfQ633 fgJlZ0GAt67ZC9iks+EZIQgDvbDwF7tjmtvBnMe/0GRpsHyav6+zHGB0ND6YMR2uX63Lwmga E/rg5Z9PBbbVqWAXhbvhMBzLvn3rByiH7Y0JK+KzFBN0k370BKwQ86Kvn4WzUZlgsxl3Q7GR EoJUWSQLEhgjzNm6LIywjFN2CIEWEKjmBD/C+Qz1nz8ueB4RQWOCvF4U5lVsi1AlMDe/IszR ivhlJRuRAj0JgdGIgGjTozHv65rnLiXIy7pt7ki6qEwYCynjiIzSedZy4FdsbRudKm8o/nAY /B5h1sQ4dt+4IgyCnPniqHmO2uqlkvIvl4ooHWs4ayYbFYLcFUF9PlV7RWmgVnu3lbRyzN8b K6CVCjEANCbI+a5mkZN1pSI0SlcvQ60MiZB2LMkdsy9sdY+Go5RUyVRvNGe8JNcGQ0B0auLZ fkbEBgnunLeiLY52jhecNxPm3DQfFi56Eu67/gI4bq9x0LPTdDgnOA+WLOfMBDd9ciN4r3jR Zme8Xri1AUHeKOeo/ToXiTvUIL9Nt+mzGt757bdhE5TTA278qzMp2Cg6nrvSH+GkPU6EO99z ZFG0kHUooc26kF/bOMPTFcWMfA8AnugIpVFmShDRzQ7xPsQFeNmtkTrePWD+rvYzIctmmRGA XENFYKgyUC9wc1K8XtyQanS2Us8U2jdecB7MnHMTzF+4CJ6873q44Li9YFzPTjD9nCDMW7Jc aY/cZMON3ivgxQY2xfXouAOPxt/aFkHeD6U/ngR7nHgnNG3CWiI11Dbck20L3mcFK2hKXf3R X4I/nrQHnHjne4PI0/DIRSmtjomizpSnZOLLIYf0qkUEBKYtepe8tTcWDHyxAM6bOQdumr8Q Fj15H1x/wXGw17ge2Gn6ORCctwTUoWAFpG/0whWtCQIUbm1EkAvt8t3gitetqqxVSP0YN1F7 joOHm8kv10Dfk8G23mf1jaLV7/wWvr0Jyv4BN8Jfmw0HEkqqc3jkAGh8sCE7nC+GKgsjekwQ J452uwLsopCCH2/LoOe4hxuaCeD4Oo0J9Y/vhpnKfRRT4dz4J8p66ZMHTodtNt8XLlvU22Tz iGRhONtsp+Iaqix0Kj8ULyEwnAioynteyBTSePJTXWfxNh+VlMFwK7qhBnlOMa8SathvZhST o37Il7N6/C2tmYezkBQXIdAhBLp5fOhKgjwfQ1MS2EG6AilTk8oKm9toqoRfXMn/DDvcfsgo dlnxZTUDHqWjNfwpnh3/kwhyqXMWjY4/HQlyFlbs/eWjhv2sWMEw65INc4IOCXF8VRfa201M rMjpCbc1XZ59gY3ww58uf1zSqnQqpNC0xAsqnDdZnQLRuw4iINcfd7f9hxtEYjIRboW07U3B 3BteMreTgT4oPHsnXHLa/rAN5qEH7SBve+glkLCrgyMX2C5BXoEnzvwGbP7t38G7QgVxVQYu 3YVPgA6CXz34B7h89lEwbdepsMu3joYf//Y5By10CZVV78F9c2bA+Y98ZjLlIvlQnWiaJeAW G2TGZCsQieJpE+t7L0SiEfCKjTY8XSEocnERb0QjzUvaKRAnmbTlgV60hYCQhbYCoWe9721g 4socXy+k5t4AL5kOEAxAX+FZuPOS02D/bbCt9KD9420PhUsSpZY2HdslyFe9dx/MmXE+PNKS OYgavBnYE9i25zS8ABQN88N7982BGec/0thUkQBhOOQCNwS4iRu+mavISQ21N/kpJjqVJFBe p+dQ5QDaHAt6U3PhBrMgwEBfAZ698xI4bf9tsH/ugXFjt4VDL0k075P10qI98YYEeS88Pfsb GOchEFlmVWVdBa9fsRt+2wd+vbQxy117M6BsFJ2jXwC6CjKX7oLhGBz0qwfhD5fPhqOm7QpT d/kWHP3j38JzDuOXntXhkAOMjMYHHdGOOIYqCyN6TOh9GmbzS50PiYBdFF6HK3bDb/v8GhqL QqMxYRW8HTpSuSOGsT3hx6GrwL3HdLjscSezXVJ1kSxIYIxc51BlYeSWiHJGCBgIqAS5G7LI TdRM2uTI34gFWUOCXDWv4mmk+KfNjYRpllRAWCXwKtyMkQtyEQKjE4FuHh+GwJyN7EoevDIN wtpG/Ok2lzlprTIdgiD3yCZK0AatspC3EdJO2BjpecIZRfuiVqsB/1fOJRQtcCsppmiQI0Gu 5EAn43FyK+zgap2yCzVV+Z9u3sSWHyntUAqqaHe8UqlAKZ9UCH5rukpkeKS9inbRM4mwkjeB ZzRvkPOKP+m/nEbi2/CU/JBz/SIg6k082029mhVa0TjQm0i/BjENrIJKn5WgkPyu6YXlnze2 d98uQT7wxXw4c7spcM6TK3QNptVLf61eKLjZHnDCv/wOHnw+A0uevx+uOJqTMgy+ef4CG9HX 3/s2PHrLRXDCbpspfhjbA+bc/8Eg2rISeeoKgHEABCdT2r0B7oBkggOP6KlH8IwNtWxE1UCX tRiSSAYGOm7YWqqTLnEOTQYqxuXKct/fELMBWFXpa7K5sgZ6l3/e8J4Lx2hb0iDvh963H4Vb LjoBdsNLBpWy7jEH7v+gMSGopFV7A67ag8F2P37edpoD+nvh7UdvgYtO2A0v8FTj3GPO/TBY lDxenUAailxUs+rGM56W0rucMj/eGtQ3lhxxopctITA0OcD5RZtjwcCqCjQfCpbD522ZkmpG kK+Ah47eFNim34V5Ni1xbmMfTaewneHiV802mQ3AavDGVXugSa4fw/PiVMfqpfBr5bLbzWCP E/4Ffvfg85BZ8jzcf8XRykYv++b5sGCQTah1kgPMHI0PRg11wjU0WRjhY8KKh+DoTRls+t15 dm3H2l/g37jN8J0vhsai0GxM+AKeu/wgxdQKY5vDIb/OwNfC3MogFUSyMAhAG/jz0GRhA2ea kicEWkRAJ8i1SaXYfFbaPZoPLSrxOGuQi3venJS6eLBi3I/zC5d+wtQ4YYTWBmxmXFrMMHkj BEYQAt08PnQfQY6kg7Ara7frbRBcghDXCXLT5Q2CeLaaNHFq1cIvml4wxaH6dSLFTAQ5elOP 8HCiAjti3PEsxbkGvAuS2oKwJYLcknYWL58blIwrpXSSPJiSbfAa5axkVNM0nkjGeEmuDY6A 6NTEs90MZUIqgcuspn3ajahF/+0R5H3w+r8dCLv/08NQkjj5SuJ7MBYJvSk/XQwrpXQHel+A n+3M5WcX8GcsRMnqFfDhX9LwyG2/gOMVP+hvs8Pg5rxQS5cikpzqCQ6UaRN5ash6JCdtKOka mEZ/IcLz+vFHklDk3isFKFboCIYE87A4hyQDmgkrHrbZ5uCwZLBRJC0R5ACrV3wIf0k/Arf9 4njYWSO0NzvsZmjWhFe9cSXszibDuSnBCsqZWA0rPvwLpB+5DX5x/M4oN1x2NoPDbs4Pai9a tOshyYW8Gez2QyLLxxwkR/PcDBr9rSsCQ5IDTHR9jwX2cg5GkOPm5phZ8IjFBDk/AaFqkO8K v1xiNb+ipbLqDbgS76yYfG7K2CiqJOB7Y7HNT/kpLDYPJPDCz1R52MWfMV8Iasn0OskBxiXC 8zqj8cEC7jD8HJIsjPQxgRPkuEk6ZtYjYBcFTYN8119CY1FoMib0/RXuOWc6uM84EiYp48EY OPjyZ+ELaf7VqFpEWx7SmECy0AjWYXs/JFkYttQpIkKgswhYCXI+p0wh/yHaPVc85O+iqNwk NMFFjnJckckVaqCgUYIg7wvRdK6x2qvo5nt5ONuevYiYnoTAKEFAyMkoye6wZrP7CPKapqWG HZud9DUIrqB2KVunCfI6anULZapaXaUBrAQ5lJP6JRBufwh83GSD0CbH5jAUgrzOtdhbYB3E 5NYXz9saHr+8gmvGuvBW6BaisoWnF51DQHRq4tleSjjwa2ZBfG3sgtc/fQKuPnlf2GG7qTDt mDlwzb0vwserrGpGvbD4jj/BBxb+uXWCfAC+fuVqOOJQPzyv3xillq487yjF/vjh/1XStcrV L2vgvd+p5k++9Zt3GpJ8A5VFcLmiOchg/9/a27uMYTkdUiZY5k0vo/8wnc7APkc1V2MQ5LWC 0Crn5KP6zx9NSxMtOTVyrwsCAt924iinxAXJbZiNqn8KT1x9Muy7w3YwddoxMOeae+HFj1dZ 2iJA7+I74E9WAXDKXIsEuRF0ACqLLldPUbD94bcNGXIkDv8VLyCcfD6kdFVtIxaTa6ACiy7f R22j+/+2KenOw62bXNQgoR9R1eTCHYC0sntkyhX9GAICQ5ED3I4fwlhQh0+fuBpO3ncH2G7q NDhmzjVw74sfg30oWAx3/OmDhv2xUcRmBLkwsTIDHvjCCKG6VsKiC3bAtvsPcNP7zjOUVa// q7JRdL4sCOV5cBS3P374f0HJMnytee936lzsW7+BdyxjmJz6uskBHgWn8UGGc9jdQ5GFET8m CBMrMx4Auygsggt2wDb9DzeBsyg0GRNWvw+RU7eHqXMS8Hn/avjgv8/CS3F5/7wFHHnzO4Oe tiNZGPbmO6wRDkUWhjUDFBkh0EEE7AQ5TwzvofNoc0zsy/yxFES9VoJcJcA9Uee1oHGyzohH yJJ4Rkx2zjtYSIqaEOgQAqItdyj6ER1t9xHkmq0ppdIlklmtJTxmo3WaomPrNEEuWkc27AaX puWtXtKpmVhRPNQh6TfbN45L9siHQpCLdAd7iuORwuSM7r+i2WFHDI3dU/4VTceUB2Nd9FjI 0SEERKcmnu0kY9zK7YJE0ZlYsMXX/ynEzpoFF93/Erybfw2ejATgrMN3hJ7x+8DJF98OT73b C/1ohuXDBVfCD69+2aThzeNqlSCvL5sH507/IdzrYO+h8vhpqEG+ObgfWmHL3spFP4EdcSK0 62VLUK+w0d8ALJ93AmyJ/na++NVGnpT3QuaGSpCrkeQhol32KeqJb3yZ5alpNuhjCwgIbFvw qnmR+lvbGNEoln74NHYWzLrofnjp3Ty89mQEAmcdDjv2jId9Tr4Ybn/qXejtRzMsHy6AK394 Nbwsa6Y2irJtghwjGlgO807YEsmLJmYlVqnahNv/84uGKZNGeVCinAcnbImLgGbH87XwwyEX eby8Wr3jQyw8XBAv0JjSpIpa+tS+HGC/XBIbea2PBf2fxuCsWRfB/S+9C/nXnoRI4Cw4fMce GL/PyXDx7U/Bu739MLDqQ1hw5Q/h6tYEoYkN8jWQ/+00bO/7wfW22zS/gvknoSxsfSY85XgP raZhvv0/w4ty86o8DqehBvnm7ofANpKsXAQ/2RHb5a6XNdTE5ZUxHHIAVRofWmrYQ/DUviyM gjFhTR5+Ow3b5n7X2y+W/Wo+nIR9+NZnPqVfRGuCreGY0A/L7puFc6I94Ko3xMykBvm7ToAJ nCTf+gx4zCYkpphJFsxwjLhf7cvCiCsCZYgQaIiAOhajDXJ5jOe+8WSvj/dh0j/5lEu9EFO+ JR3vHMGLy5FQZ2iiJVMoQC6X0/7lIZ9L6vd3ce3yFlfQDfNPHwiBDYmAkI8NmYcNlXYXEuTS xZvMDZqiuIq/foTSB3mtV9MJcpMphRpEFSLdrduealyBwq/VHIMRoppXO+K4RkZWs9xsic90 4aXorJXG6o2aiI1KRtVmFZd2SjHrhL/c8RvfJRdqspcr1hGkqGmPIR5ibsyDCHKchaCI6u+1 KmrB479KuQAJfnTJHSWST4J2QzhFpyae7eShoJjwUQd/Z8M6DrH1Pg9zb3rNcuy8DuU35sF1 5xwFu4/jE5EemHr8dbCwbD+X2wpB3v/Fs3C5+2T4zWtVm1Yuz9Ga925StPv2nvsXW/vjF7Ht wTaBw+9e1sRONM6Z3roGL2xjcMidHzkU0nglLnsZKkFeSsVAWC2qFtPg12yXM+yTxAXBRmrk WhcE2pYBJKbVOybQJryopEEz0AvPz70JXrNY8KmX34B5150DR+0+Tpls90w9Hq5bWG7aBvWk hkKQY8t/6xq8fBMvLbzzI7uc8bhXvXY57Mp2gP9jYgX1VO2O2ltwzZ4ov4fcCQ2i1MOsk1zU ixDDUxTqXxXSUW7fkfcbqNkTIhNeOshDdAgs2wk+lLGg9/m5cJNdEOCNedfBOUftDuN4nfZM heOvWwgOQ4FD9pppkGN7XnIZtudxcPpjFsMSaEs8uC+anDjmfvjUSRRWvQaX78pgh/9j2Sha 8x7cxE9Q7T0X/iLPe3jOam9CAG33b3L43faLEKWcr5McYDw0PkhgdsDZtiyMijFhFSy5bFdg 404HuygEYV82Bo65/1PHsafxmLAC4rPG2E0Y1T+GyHfxPdsVLmtks0WrN5KFDjTgYYyybVkY xrQpKkKg0wg0JMgxYXEKXsiAJ5LVs8OVFpkr7GxepZRU5qV+E4GkB5VMpLXCERnhyEUIjDQE hGyMtHytj/x0JUEOeLu6IECYcpkYsuG1IkT4jiAu3kJpYTkKbVVptphdfunSvUpW33kMJIpN 66lWzuh+mTsI6RzuMObzkM2kIZ3JQDIaVI/s6vaq+DFzri1u1ZpD8w1a/kzmG5AqT+ja5W5I SJp2/JiuWyMYmC8G5YZbmeoFFbzsLk8Akpks7oamIaylFzVuIUSYUsbuqIjb8mydVGoKHX1c BwREpyaerUdlnKJoj5TqhzVOJISeMH5fYzmvrn/DicoHtypyMPHs5wxbsNL3/vILcLV7Jvzy 2S8sC7xVkH/wNnhmOSaOi9g7pm8ObNoNNg2qylOzYZstpsOdHzYUAiW1FQvOgG/0HAG3D2IC Q1z0Yt54MkysiBMoSqS6DXLjZvNsyAWukDEZw+teIKCYtTEu8pSKT851QKBdGRDan3zDsZ07 U/ubCwD0r1njuLHTsGj1D+BW3iYmng3POZkKdwy4Ahac8Q3oOeJ2mxkj1TuSKL9EEmXHC2BR K1rsPNCKBXDGN3rgiNsHN4exTnKBNshduEGUlUjJYiKgjMlW25CORaeXTRFoVw5QD1rfYG9r LOhfY+mjLdnC702GAotn/rMOH9zK50QT4WwnQUAi/IYDxsD2579gUhzoL94DM3q2gTMe+dxR 7lYt+SUS6zvCBTZBQEL+jumwOZsGN1i10itPwexttoDpd37YVDNsneQAS0zjg0MzGMZX7crC aBkTVi+9AQ4Ysz2c/4Ks7NIPxXtmQM82Z8AjnzvNwZqNCb3w5BnjUfa+A/d+KoetwZsBvNyW HQA3vdfE1hDWGcnCMDbcDkTVrix0IAsUJSHQMQRq+Qj2U2jeUppXyomVU0LBUL4nrqTcVeeN 5WWvujsd5PORJuYXy8b9be4wKXfowJFj1CHQzeNDdxLkvIni8dWQZINKbQRuCCcLWgOuQkwj iEUDYQztoWZiKqEtkcI+x060DgmfSrgb4Rv/5nHUCnFb3MxraIurmuXGxQ913MXUCXApPzzM E0HtkkX5PbqdCX08PipfWiHCePH4UEkeVQwinRP4zuXygXw/oQYmPdYzAta6aTX5Ulq9dJWH d4fSTUmAVuNsxd+ad26A/TDNCWc8aTsC3L/8abjU1QOb7zwDTjr1VDhV/Dv5eDhq2kQYe/DN INZoK5fMBVfPRPD8UbrYD21o3jVrJzjo6oxu2mWg7yNY+NhT8GqxTydPVn/8MFyw9ySY/pu3 LJrw1hLUIClsJbvDoJ/AQ4Je2G73x3J6IEOucdMrry5cxcmUcKqgYFzXN9KCaPWX/oYTASEL rcRZ5xul+rjgwRNCzTdUWolzyH7WvAM37IdjxoQz4EmbiYgB6PtoITz21KtQ7BPExWr4+OEL YO9J0+E3b1lU2UUmVi2By3ZhsONPFumyID7BQB98tPAxeOrVIhhRfgwPX7A3TJr+G2gUpR4e tdfXSS7E/SDeMBSUiznqkI3yC6nb0eQ3ckMuMwLtyAEPuaHGAnOu+a818M4N+2E7mABn2AUB v6Pt/Rd+BntMPhX++InYpa3Cq1d9C7ad+XvIr7bHyC/wXHLZLrhR9BPnjaKVS2AujjkTPX8E w8rYanj/rlmw00FXQ6bp5tI6ygFml8YHpzobvnftyMLoGRMQH7wz4oWf7QGTT/0jGKLwKlz1 rW1h5u/zzvbCm40JXLae/wnaHB8D029737gvYA0qI8zYAsa6/wCFpvw4ycLwtdrOxNSOLHQm BxQrIdA5BPJx9SRiJCMUH+1pZSNeZZ4pTgTXhHkVhyClDCfccV6O5lWMuYElzmrOUMJEriSa oVWdBSH6OUoQ6ObxoXsJcq1xVkoFKKANqWKxbDPLMEra77Bls1opQ6lURCyKaG5FJsaHLQmK aD0hIDo18Rw0WTSbo14kad/EMWlDDxpRux764P3EH+BX/7SXOumYMBMuvuUBeOlzjZhc+TJc ql2cKcpifm4Ch4RVkllNuQ6fLPgFHDJ5Fzj2X66H398yF86fuT8cfekC+ERayH39nBe25ZMc tilsP+0ImDnDBbvvdhicd9dr0Cv4RseiOG2c+SGVjto3t/DUSV7acBD59qK5JnH5rXinPF1e SEonQByTp5dtIyAwHixgOmBv+0pYr7FJOVgcw/W97/0E/OFX/wR7KW10Asy8+BZ44KXPpei/ hue826oys+n2MO2ImTDDtTvsdth5cNdrvfqmjxRAca7KXAq7sJ3Al3Zg+L5+Drzbqhhsuv00 OGLmDHDtvhscdt5d8FpzocC4h0EubnvAccPXG0qaNIOtZaLfrSHQqhxwE2obZixwKEff+5D4 w6/gn/ZS2+WEmRfDLQ+8BGJ4MEL0Qe6ufwTXIWjX/JZb4drzj4FDvvcreP5zQZgbPhXXqgxc ihtFO/nS9o0izWv9kwXwi0Mmwy7H/gtc//tbYO75M2H/oy+FBfJAYol2WOSAxgcbqsP9olVZ GF1jgoZSXw7u+kcXHIJ3Xdxy67Vw/jGHwPd+9TxesOmMYtMxgQcZqMJbt58Je0yYCsf94rdw 110huOSUfWC3o6+Cpz9rtoE8DGMCyYJzpQ3j21ZlYRiTpKgIgc4jIJ30F22cWwwoOHZZmk3x oKrtnYtwBUD5Hjg1u8WEYfZPxGldH3PFRZcybzevJ7xRQ2mq84WnFAiB4UFAtPPhiW10xbIJ zy4CsNH8bbLJJkpZNrJibTT1QwVZPwgIORCpdZs8DPy/v7FXXsyy/9s/ke074xh2yBS8etP0 t5Z9uXQxW5wrsZWwFZu8x4Fs+uH7sImbmzx17Ef/6tWsf/PNWb23zCr/W8d0xrIddp3MrLns WAa6KGIhCxudDKz9ki1dvJjlSisZbDWZ7XHgdHb4PhNZsya86m9Psfmvb8mO/sEstkuPvRGs /XIpW7w4x0orgW01eQ924PTD2T7rSyhYP0OxwPzXWPmLClOkYusd2OSJJBX2mmr/zUYrBxIU qz97g734yjK26Z7T2dHfntK4P131N/bU/NfZlkf/gM1yEgQR58D/Y3975UWW/b/9bOK+M9gx hzSJU4QZhieND8MAYpMoNn5ZWM0+e+NF9sqyTdme049m37bNfwxwBhsThM/+3vfZq4vfYsv6 xrAd9z+SfffAHdkW4mMHnyQLHQQXo974ZaGz+FHsIxWBfpxRbt50PmzKef9K9uXKMep8c/WX bNnKCWzXyTT3NGFEP7oOgW4eH4gg77rmTgXuBgREpybKutGRg6Jg9CQEBkFAyALJwCBA0eeN GgGSg426eqlwbSBAstAGWOR1o0aAZGGjrl4qHCFACBACQ0agm8cHIsiH3GwoICEwchEQnZrI IZGDAgl6dhsCQhZIBrqt5qm8MgIkBzIa5O5mBEgWurn2qewyAiQLMhrkJgQIAUKAEBAIdPP4 QAS5aAX0JAQ2IgREpyaKROSgQIKe3YaAkAWSgW6reSqvjADJgYwGubsZAZKFbq59KruMAMmC jAa5CQFCgBAgBAQC3Tw+EEEuWgE9CYGNCAHRqYkiETkokKBntyEgZIFkoNtqnsorI0ByIKNB 7m5GgGShm2ufyi4jQLIgo0FuQoAQIAQIAYFAN48PRJCLVkBPQmAjQkB0aqJIRA4KJOjZbQgI WSAZ6Laap/LKCJAcyGiQu5sRIFno5tqnsssIkCzIaJCbECAECAFCQCDQzeMDEeSiFdCTENiI EBCdmigSkYMCCXp2GwJCFkgGuq3mqbwyAiQHMhrk7mYESBa6ufap7DICJAsyGuQmBAgBQoAQ EAh08/hABLloBfQkBDYiBESnJopE5KBAgp7dhoCQBZKBbqt5Kq+MAMmBjAa5uxkBkoVurn0q u4wAyYKMBrkJAUKAECAEBALdPD4QQS5aAT0JgY0IAdGpiSIROSiQoGe3ISBkgWSg22qeyisj QHIgo0HubkaAZKGba5/KLiNAsiCjQW5CgBAgBAgBgUA3jw9EkItWQE9CYCNCQHRqokhEDgok 6NltCAhZIBnotpqn8soIkBzIaJC7mxEgWejm2qeyywiQLMhokJsQIAQIAUJAINDN4wMR5KIV SM/+1avZylpNfbP5VmzihC2lr+QkBEY+AqJTEzklclAgQc9uQ0DIAslAt9U8lVdGgORARoPc 3YwAyUI31z6VXUaAZEFGg9yEACFACBACAoFuHh+IIBetYPWXbPGT89g911/CHsiJl8bTF4qx S88/k+03uX2yfOVnb7LoTXez7S68mZ293wQj0kau3iWYVoBN8v4Hmzt7v0a+2GdvPsMWfrSW je/hXvC5+9Hs2AMmN/SvfuhlSx5fzL7QfK3t62PfPOZMtsdXC9lz7/dhXEpkyte1fRXWs+cJ 7PTvTGFs9TL2+PyXGRs/3oh/bR/r69mPnXn6wax9VIxoyDX8CIhOTcRM5KBAgp7dhoCQBZKB bqt5Kq+MAMmBjAa5uxkBkoVurn0qu4wAyYKMBrkJAUKAECAEBALdPD4QQc762dJHbmWuH1yJ 7cHNwol/Z7O/eyCbMlGjfPtXsmX5v7CH7ryIXXlPjgWTBTb3pD1F22n67P1wMfvPX2M4jXEP Zyvs4oMnNg3DWC+7/5xJ7PwHMDfhLHvh4oMb+n/vhQfZH2+fw/49Ibz4WRF+z3YVPx2evUtu Z5OOuET/Eogk2YXnnsRqrzzCHn/iP9iVt71ofAtH2XHuUxXSvf/Lpeyx+Y+x6396LRP7By5v gF1/0YVIoDdLUY+OHOsRAdGpiSRbJQe/XPoCe25pBfdBjI0SEYf8XLt2PJvxvWPZlI7vjKxk bz4eZXdnprCbb5zNmm0vtb0RJRWIbza98ulaZpQa3Tscxk7qdNvu/4w98/BC1ocbT0bajPVV +th+p/6QHTx5cymX5BwKAkIWWpKB/i/ZCw8/xyqW+rCni+1j5xnspINx87Cjf4O3f943PxCd x15d+hVjY8eyPY8+jZ3/w2NZy00Hy/zMA1EWe+wVxnaYxjz/fCGb3el2LzCj9i+Q6PizLTnA 3IyosWDNZ2zJEwm26P0qG7fPMeyM07/DpmzROmSrS6+yJxKL2fu9m7Lt93ez73/vELb9+uha qX23Xknr0WdbsjCixoSVbPGDUXbPwy+wlTgbmjbjZPZ//uVstmeziVEDXFd+tpS9+OyL7MXU C+ztlYew//zTXLZnB+dzikLPe6iEI88tuZLN+APY2Scd0CCX9LrTCLQlC53ODMVPCBAChAAh MGIQ6OrxAUmDjeoPWxXwf6391SAZdCv+/dEMVAcJVEqHFb+RbGUQn/wzxh3yQzAcAo+WJyTI Bw1XiHuVNHgZPOHsoP4BCuDX4udhAslSkzBViHpUfNT4cxa/VYi41e+N0s5HRf48kK1ZgtPP EYMAr1/5X6sZK+dSEAn5pLAucLvdyj+XKc4ANGtprabX0F+9Apl4CPQ03RFoJD2VQhpCXpee 51bkzJRuLavLqIwZ8ydN3jrzowqZRBR8mtyp6Xshksg0LG9n8rHxxirqtKUS1suQimN9uCT5 0dq/22W0MR5n8762pdQae2qx/VcyEb3di3KqTz/kBhvQeOrVnD5+BCIxCPnUMnqjrYw9jbPf +hdq/61jtW4+RftoNZaRMhas+fABOP+g/eCUq+6G+Pz74bp/3Ae2PcAH8WX1FoqyBj6OnQt7 b707nHHdf0MicT9cc8IOsPVBfnhqeX8L4dfVC7XvdUWwE+HbkoURMyYUIaTN3/2ROMT0eZoH ksU2JuP1EsQCHm3ccEM4noJ8oYQrls7+VYsZiOp5VsdXbyACmUKjmV1n80Oxqwi0JQsEGiFA CBAChEDXINDN40OrTPKoaQztVGYuqhKBgUSh5fIV4jyMH4qtrM2UWOs6KT0YcVcvJgxCEAmY RiS1ObM1iMnkmisEZbMH/VctHzORKfb4DQLd/k2NppoThAwS5K0QMHrq5FifCAg5EM/20s6D VyPDIxaWrVZKK99cwXR7Ubbpu15Mgt8fhJBYyCFB7tzchrYRJWcnp236eLxe8Gr/PG4fpEot C7kc3dDcEkkfyXV6qTq0LI7WUEORAX0j0BOxEAc1SEf4JqEb0h1c17fW/ssQUoh8N4RiKchm U6aNIr7B07wF1yDhV4mKQKKoVW8Zwtp4Mth4Naztgdr/sMLpFNlQ5ABgA48Fq96Eaw+cCIff nIc1olD1j+Ce4yfAFofeCIN1lf3L7oNZWzLYe+5buhwPfP4QnDKWwaSzn4avRJydflL77jTC bcU/FFnY0GNCKqBuXgYlJZh8zK/N6YOtKSzghmhA2/x1B+IbZBM+G9bIedvY2lYVkudhQmAo sjBMSVM0hAAhQAgQAiMYgW4eH7qWIK8X4srE0hVw0BJF7b1cOoXaRqhZUa5BtVyAXK6okQ1l CCJ5GEw3oqGtLd0gnZsTDiUlXuaNQFIj7huR1OYUUOsbtUo8PqERwiCUcWJu6hoZ4gGvW51o 2+M38mr/pqZKBLkZ/ZH6S3Rq4tlOPqtZsQnicyQgskEX+FOttv92Urb7reej6gKwIUEuwrS+ ESVCKM9aTiH8fXFBEJq+rr8fSKCITYnm/cT6y9LGklL7MlBR+lQezhvN22GoZXAjM9BwI9Ie YOhvmrX/epGPYUjUm0SxCjFNC5xhHgtNGHIxBjLmNcl5KRlQZc4TbbApNfTyNAxJ7b8hNMP1 oX05wAMGG3QsGIDP46fB+E0Ohjs/Nmt7Vxf+BHZkE8DzyBcw0ASgFfHjYAwbA+6HVxi+am/B NXvhxtAul0JmlfG6oy5q3x2Ft93I25eFDTwmlFPgVpQW/OY+vZ4Hn6bMMPiJppK2ocrA5Y/r G0btYreu/nPKBjPKX5NTgeuaBoVvHYH2ZaH1uMknIUAIEAKEwOhFoJvHhy4lyJFE8HLNOTsB WMnFNXMLLvB45CP1hkmRQswLrlCrR9AN0rkZ8ZUJcVMvbsigmmxBaLS2ZGKlCmHUCAlnMhAU ZgFQM8OmbVtKKqSHH003xHyq1qCdBDfyav+mCrgjQS4t/oQwmZ8epVyjt4sYfTk349+emKtt EduIT15E1aBcUTWby/ksNDzR278CFt/shSOn7QsHzjwTLr5lAbz9lZ2lqy65F+Z/qOsENgRY b2+DEuRG220mZ9aE8tpmFCcJw9EkFG2CYw1h/V2DUtE4nlwpl6CIv6tyketV9FOEYslp40qL T5KhdvJvzQ39tiMgZMH+pcGbSlojIxjECoY2f61SVvtVPHKfzTUyMNQPKxbfDN4jp8G+B86E My++BRa8/ZVdk7u6BO6d/6GhFdsgK03bfxmPrMftBL4exkJ8W5PIRYQmn4UI18vvgsSgR6Wo /VtxHam/25YDLMi6jAX9KxbDzd4jYdq+B8LMMy+GWxa8DfahoApL7p0PzkPB1/DsjyYCGzML HrGqeleehDMmMBj7vQVNtcBXxGchQY7a4j96AlYIJv3rZ+HsiQw2m3E3FM28u2PV1SrYp6Oi hPJXqyh9ealsHiiqSr9fBG2ItMdD/bsdkw34pm1Z0PvEDTMmVLOqeUeGm5bGiMQBrENS0yx3 D3KqT5yU4+uevDw/abkehqevlwlysxS1nBHyOIwItC0Lw5g2RUUIEAKEACEwchHo5vGhPeZs 5NahnrOWKhO1MbhtY6t2oG7P1R3STaikNRvlzBvTJ6a1HE5WPcZvPXFHx+DEndDSCiRVLVYx gWxEUpuT0QjyPE5eE+K4JYNo3jz1TCsEvBcnxrg5oNkxtMdv5NUTzijJ1Ot10P/hm3ImpGoX MsnECi7+uJ31YDyNtgzzUCgUIZ8S/pBo9UY3yFFOM07d9UvIgXi2Xno8yaBttMgaSUVuGz8w mFmVAfhiwXkwc85NMH/hInjyvuvhguP2gnE9O8H0c4Iwb8lyWI0Z6V+Rhhu9V8CLXw+eK53s 6wRBXnW2PR5K2ElHa07r1RKkYni/gIIVbgCVChDRNXf5BpQHUuU6ykvEZDaJ+WLOskAEihXi YfvdrgyUU0G1j3PJx9YLioZ/qskeB8/wwBcL4LyZc+Cm+Qth0ZP3wfUXHAd7jeuBnaafA8F5 S2C5KgCQvtELV7QgAK23fwOu1sJIfX3EstnbQluk9m/gPVpc7coBoNGGIY8FA1/AgvNmwpyb 5sPCRU/CfddfAMftNQ56dpoO5wTnwRJVEGBF+kbwXvEiOA8FZZh31CYoi4fBvZ8KdltDu/YG XLUH9rN7z4W/mBlDU3XUP74bZo7h/fFUODf+CdKJdfjkgdNhm833hcsW9TbRPq9DCe/jCPnV TSQ3ykjRYu/fE0pjbCVLv++CaM6hk2hBpkwZpx8dRaBdWdjQY4Lep6N5R+upIJ34doed5xYc SV0DnYE/nsNTsUU0yZXFjd6ivq5pBPhw9/VifcM1yM2rlEY5oPedRKBdWehkXihuQoAQIAQI gZGDQDePD11JkOdj3I64CyRTfgCVjKY57pFsy3KzJKoWuV+30cqPHSNB7rZqcjRq0AYR4agZ iiYelCOS/gQuttQ/MYG0E9hOaagEeYjfmFlXzUUoDVrW/q2qZXMrGuk13Sa6PX4jr0IoGj9l ghzjd4Wlya5xHJVr5pKtcqd66+w7a721mppsBz+ULkIZid9UTCUMQ2ZbDg5R9kJq7g3wkmnV MwB9hWfhzktOg/23QaKiZxyM3fZQuCRR0tu7Q0T6K31hOOhiymi7jnKmx2g46uUsxGNRCIcC GtHNiRT1n9dKGhrBFFchrpmh0Pwr4TxBiEWli0VFXMEIRILicls87eF0WS8RKBaEh++nqNPW YkSNPK3PZ9inFVFrvIC2vYP8xFGT+x1E3L2puXCDWQBgoK8Az955CZy2/zbYvnpg3Nht4dBL EtCKifvW27/IAdKamokUbzRnvLS5DHmxjQNSW4w06Lyp/dsAHfEv2pMDnE5Id6K0PRb0pmDu DS9JcwKEZ6APCs/eCZectj9sg31jz7ixsO2hl0CioSD0wlNnTECZmQRnP9NrxndlGi7cCWXy m5fAq33mT+Zfq+Dt0JGwhdIX7wk/Dl0F7j2mw2WPf9p8/KnlIaCZohO48WcgEtUvsjXe46XK 0Qh4xQk+HKtsFLkkU479vznT9KvDCIi6ay2ZDT8m6Brk2AbjFoZct43eZI6k3p1kzG9E+ZWn yw9OUxKBzXD39WJ9QwS5QHjDPkVb2LC5oNQJAUKAECAERhoC3Tw+dCVBnougORMT2VGFuGZ2 xEwqiEvQOJku6GuAXNg9TCZWxCVpAVB1x1XREBNeT6QZwSHESBDk6pJMvwAHNwDE8XhVw0Rc KteEGMHlbFTTLncHElBAsxCFQsH4h79zCU27UtYgx6zUagY+mZBhDz1queRR5JqenUVAdGri 2WpqjRdSrZjJGYBVlT5ofGp9DfQu/9xsfmSQjLVOEBptd6gERCkb101rqBtoRpt2zKa0IeWP GbJaSYvTE26I69qExmabjZDkkROB4gjxcLxsSwYkm64inHg61pslgwOrKtDXWABgTe9y+Nxk f8cSgeVn6+1fBCxCQCED7ZqGwof6NOTFduGu1BabjkHU/s2QjvBfoh23ms11GgsGVkGluSDA 8s+rzUlqHElK/3MCbIXteatZ98BHUnfcX/wDHMrb+X7Xw1/5qYxmf/1fwHOXH6SYWmFsczjk 1xn42qKQ3ii4mIsxV0AiEXFeqF1ka7roUN9QcBgrJZka6vjUKI/0vn0E2pKFkTAmSCZe+IlM QwehYtw50eTOiKwwp4Uy44+moFSt4omIqHG6DbXPTVdZWCEdxr6eCHIruBv2d1uysGGzSqkT AoQAIUAIrEcEunl86EqCPI2XDDKXcbyvXkpomqOo7Swd163ltAsCTWQ6QBLJdG+80GITNYgI 68KoJi4gRLI5FApCIBCAQDAAPqG55PbiOz+EE83SMhPkIE2kXYpJjKKqoR5Iafk18mMnfKRv Dcj5Wk5c4ChpkEtIlDOarUSciJs3GyRP5Ow4AqJTE8/WEhS2+Rm4lePjqEWINleT3DxPE+2k 1uIemq/WCUKj7VrlrK2USyntJAlefNtABvT4dBMt5ksO9Txb7IWKo9B2ucMYiUDRYR1uRzsy IPfJaTSRg/aloJJPKhsnkQ2w2ae3pRblT7SxsONFzTKyhrwwfWzQvkttMZRpQptQ+5cBHfHu duQAz8lp97Rs4LFg1VK45Zhxyvxsl+/PhXseehju++0lMPvQrZV347//hF1b21oTfX+Fe86Z Du4zjoRJnFTHSzsPvvxZ+KLJRpaIQigcmMcCQ3YiOdOEUbto2WFuJMnUOo1PImP0XCcE2pGF kTImiL5dybsnAOFw0CC4sV07zisUlIz26g6pphMFeIW4YZax6fg2jH09EeQC/ZHxbEcWRkaO KReEACFACBAC6wOBbh4fupAgr6na4hIpIOwLuoOCRObNDieVykWefOIpTSq1yy7ly9uaN1Jj cmpdGOnkh7Joa3D8kX8LSunbErMQ5Pg9JeymK8Q7NyfDdG1ypVwt2SC32KXV0jXy7LAIRHKe 2yJXBAptthtaLrZM04sOIyA6NfFsKTl9EcRANq1QSvjAHTY0pJvGVf8Unrj6ZNh3h+1g6rRj YM4198KLH6+y2XrtXXwH/OmDDX9Jp1NZSgnVfErjBacIVYawoklolgVdRiykplgYOsZLBIoA ddif7ciArmlnuuiYbzJiHUtcWONM1uHTJ66Gk/fdAbabOg2OmXMN3Pvix7DKqrHauxju+NMH 63ZJpyUTFW1z0hNpNl6IQFWIiHHAuhHUcluk9i/QHA3PduQA7cjpY/lQx4L6p0/A1SfvCzts NxWmHTMHrrn3RfjYLgiw+I4/QbOhYKDvfXj01+fCiTMOhxknotLAvc/Bggum4DxjSzj+weW2 scVUF6vfh8ip28PUOQn4vH81fPDfZ8FUZY6yBRx58zvKnRgm/5YfZe00kLnPbjCn0+XGPB4o UerfGpjYsqRLPzuLQDuyMJLGhHwSTfmgAo0Lzfm4vQG0ka+agOTlaUxwS329YmZRwlaSc+v6 RPKFzuHr68U8iJnGWHNq9Gv9IdCOLKy/XFFKhAAhQAgQAhsagW4eH7qQIEcTKfy4oaRB7qQl lA0bhLUxcdQWRmjfWzrtO0j7bbCYUkLVoJjPQT6f1/8VinmISMd3lUsvS82oZkGQG3647VDR qJWnbI+cE/+CGLFOlpt+U4upa9VbTKwYE2iOmw8Mxaoa5DO5QS8CGgRE+twmAqb6x8VTK38V /QJWuf4wZLUMpYra4su5NGRLjZjCfvg0dhbMuuh+eOndPLz2ZAQCZx0OO/aMh31Ovhhuf+pd 6O1HMywfLoArf3g1vLxy8Fw1IpvtIY12bcir3Vcrb+qFuCI/qs3+ZiFEmmZCpFGexcLQTLZo 8csEyqDav83yRN+sCAhZsL63/xYkgPUCZ7xstajZzK+XIZ1q3J/1fxqDs2ZdBPe/9C7kX3sS IoGz4PAde2D8PifDxbc/Be/29sPAqg9hwZU/hKtbEIBGbcmad2Ev2oWbvK2NTTVDQ9i0MYwx Y1sUG53xQiNZ5zmg9m+th5H8u3U54FeyCDNRQxwL+j+F2Fmz4KL7X4J386/Bk5EAnHX4jtAz fh84+eLb4al3e6EfzbB8uOBK+OHVL0MLQ4EBbe9zcP72OM+YfC48azP2bXjD66Bh2X2zYEu2 B1z1hmjHOB+56wSYwEnyrc+Ax1bI/u1uIX/mPlu0ewvZrffh5vFAiVX/hmGof7cDvZ7ftC4L I29MkKFKC2UYyylX2Q8eg9LvUjK3Y+6rQVs2RyD5M7dtIR/WE4bN5jriG0OzLk3F15YHetEJ BFqXhU6kTnESAoQAIUAIjFQEunl8aI05G6k155CvViozF+U2sg2734Igd/mieClbCRJBw4Y2 v2QypzAOFXyPpiaYGzLIRdfLBSiLNZdDPoxXxgS0sYaH4Zu7hN1L87Fesx/jF2qHoDaJ2eSL piWvaEoxMNsBNyb8HttFhNIFnlatQi3BYkIcyTSbozHsjrvArF1fgSBiljb4eyPr5OoYAkIO xLOVhPSTB402gPCyVxe2qVixEQXXC8/PvQles1yaVi+/AfOuOweO2l09Kt8z9Xi4bmG5ia1y I7eNFmCGD+Ey5GxdCXJhRmjwS0lFmuu+aOQam15FXt2Qku47EKWj59ARaFkGyin9yHojYjgT Ro09b+MN0t7n58JNdgGAN+ZdB+cctTuM43XcMxWOv24hlFsw8dBS+xcXTONFz+YhqQblcuOO V1zmab6PAymTrDCjhXbMm8JO7b8pPCPsY8tygPle57Gg93mYe9NrYB4KcKPpjXlw3TlHwe7j +EZ6D0w9/jpY2Iog6Fiugfdvm4H2xMfBCf/18SCbQSsgPmsMsDGz4JGv9Ahw8vYxRL6L79mu cNmSVdIHu1MoBJiJRdHu2yDIqX+3g7sB37QsCyNwTBCwVYUJSD4na7qRqSkF8bHHRkrLbbnx WGEQ6es+1xEEufnErigVPdc3Ai3LwvrOGKVHCBAChAAhsEER6ObxoSsJ8npR1RCN5lU6oZwW F0/yRRv/h1pT1Yquae32ookJ5T1euqeEKSsXofmSpcEbbq0AQSSweby+aHaQBZ0anSDszYsy 56RqhYRC6riQHJGnt7rdRDTzIGtp1FA7lpOcPD/8Ik5TmGJS1xzkFwFxE7zmvwrE9SOdSIRr FxCW9EsJMV4kV0vlEhTxQs9isQCpKCfU1U0Fc1z0q5MIiE5NPAdPqwh+rV0EUw52h6t5tR1b 2pM13v41zVm//jVrmh+Jt0QoyGrW5AIqNYix0HPeiKpBLhmDSDQJQgG+Vs5DKpXBC6vkREua 2ZQgDCrdeHmXipl5s8jIs3HPAU9B2BAVG1+5GDfl4oKQgnfeMcCe7QAAQABJREFUsF9rZjnl zJF7CAi0KgP65p/Lue7z2gXFTTdg+tc03/jB72us5laalMloS1FTX60HEeQ4C0ERL/+s4eVr VfxXwQ1cZUPXHdVIc3v7h1pOa3PGhc48XkGODnqHBLV/vRpGg6NVOQC8Mnzdx4J+aD4U4Pd2 BEEDuPbXW+HosQym4ibVp7b5ibUWeuHJM8ZjH/sduPdTWehq8GZgD3x/ANz0XnMzX8JGs+iz 1RQajDW6PKnjAfXv1voYOb9blYWROCYoKJYNc4Z+231I/5+9b4F3o6j3n0J7gNJybbE8Wnm/ QQJSHlKwEHmDEEBUKKlQHwH/Ig1eFYO3CAHRSEHC4xq4SFRIEYItsYVwWwM0RUnRFEmFUAk0 9ZLShpLDJz01p82pv/9vdnd2Z5NNTnIePY/9BU53dndmduY785vHd37zm/q2voqmIcW4P5qT BAeVHtTdQobCkGUp9aetL2fAh7tiHa6gMqYyFICszThafp8eDhoCrcrCoCWAIiYECAFCgBAY lgjYuX+wJUGOG4ghyElrtJOtclFVyMTQHITPD6FoUieGi5kYBMNRiISCEImnQbMyAbkIt+vt xWlk818mrNr/FhVMveLkyUTI1cdRiKuEfW8ERcKk6a6S3gY5WFJMtfiTguysIvEha8ar/nma eJhEwPqdW9MkF4sK5rxwDB+Bxz2GHcS695x0RVuDMklfn2N6MtAI1JZDb/Fno6rdbR7OEUhA oaAucGTTSYgEvfrkyhNprlPa23fafZ/TZIEvWqXqV2yM6HpZiJLrr1vLQzog6q0TgtEEms6I 6CR1K1rcFTRlJCadgaRBp+dFmh1eXGgTk9Gyvrjk8EaR7MQ2SDOlxHezJFMRbFMQe3/SyBO5 BgQBIQvNIqvySby2kMkX9OI5Xv/zkMtlIYkLK16XqCteyIoibRbhAL1rVv8r+YRWX422XORV XH0JtV5a1X+exEJCM6WBbTTfuFBIaQdT8x1WveST6v8AFfIOikbUid4+N1z7gu61T8PXD5sI h83+DbxjtYhYycMrS1+DDXq93Q6lP34TbY6Pg1PvW2PY+9+agwdm7ALjnb+EXFN+vAJxH981 iPKFmrf6xp6qofTgjWR0OA3lAwcqUvyT2ncdmeHnaEUWhmefUIU8jhVUhR0GvqhR/wTKjdp6 sUDPnAFQFc6LEPaofUco3XyE3p+2fn06qMoQypEX51cRL/8m7pQTUxORcLoOCQKtyMKQJIw+ SggQAoQAITCkCNi5f7ApQY4bBrMqEeCNtUf48UkQrzAG8TykdZc+TghYIiAaNXG19MQfotab hxMALf3twElNg3SJBRs5Py0tROEBsmJSKWRXJwelvLt8Ycj1soClwJZVCW0ZN084gZM/QaQa mEYyGf1ARMO/G2KPC3NFql9u4kknYeQMkrtfCAjMG0WStVzINMpPhOdX545awOi1/qNpLX2B pb7OqWmW7Edb1H+BRzZq3kHlcAdA2xwkvNRdK1T/6zAZ7g9EPW6YzgZ1ToQzX3dQX9DTBRvW /Ameuutr4Jz+efjWo6ugU1YGlzLz0cLzYBc2Bea8KDXg28vw+v2Xw8ETp8HZ3/kZPPRQAOZe eDgceMYP4fn1OpMuxSKcZd1Gv5FvLySSYX1RVH+OC57ZpEECiucuj9vUr1L7LrAd+qsoo0Yp GXZ9Ai7KBD2GEovTG2x8FkzDtr4KKWVHp9y3OSGSbs5U97+tvxhmSWMsvmsulDIUChqVAT3f MQj0Jgs7JhX0FUKAECAECIHhhoCd+4cxvDAQgFHzGzNmjJKXVrK1+tezmWPOEyyQyLMffP6A XjH4cPUz7GzHl1jGF2fVu85nY3sNQR4IgaFBQMiB+Hor8iD8jtbr5s4P2eaesWyvKZN02e3Z 3MmKm8uY5fFs4uQpbOKuOzb3m9evY4VyhY3bY292yNRJO/bjNvmakAW7y4BV/RdVoGfzh6xQ +hcbv8dkNmUSHmG4g35U/3cQ0PiZkSgH3e+9wBa+2sUmHXYiO336gWzizk3w+tdatvylD9hh 58xgUzvM/no617BXV7zO1nWNY/sccxr73HH7sF3MXgbljur3oMDa70hHniz0sPXvrmOVsbux yXvvxSbt2nz20bytxzFPqcyqbBybfMBUtkNa+57NbF2uwHCkw/Y+8BBMf7+LkCIYIARGniwM UMYpGkKAECAECIGmCNi5f7A1Qc5YD1v58Bz22eufYA5PkD3yg6vY9EOm6OSZqDWd61ayx+/y sLmPZJg7GGf/feP5O2ZQKRJAV0KgTQREoyaC2Z0cFDjQ1X4ICFkgGbBf2VOODQRIDgwsyGVv BEgW7F3+lHsDAZIFAwtyEQKEACFACBgI2Ll/sDlBrlaCzndXsP+57QZ28xMZ5YHL7WFH77cn q3z0FrvvkZjyzIkE+vwfz2EnTN0h+hZG7SQXIdAHBESjJoISOSiQoKvdEBCyQDJgt5Kn/MoI kBzIaJDbzgiQLNi59CnvMgIkCzIa5CYECAFCgBAQCNi5fyCCXNQCvHZvXs/eeetdtvb//o91 beMvOtg+hxzBjj36KDZlYvMtjVI05CQEhhwB0aiJhBA5KJCgq90QELJAMmC3kqf8ygiQHMho kNvOCJAs2Ln0Ke8yAiQLMhrkJgQIAUKAEBAI2Ll/IIJc1AK6EgKjCAHRqIksETkokKCr3RAQ skAyYLeSp/zKCJAcyGiQ284IkCzYufQp7zICJAsyGuQmBAgBQoAQEAjYuX8YtQS5KFy6EgKE ACFACBAChAAhQAgQAoQAIUAIEAKEACFACBAChAAhQAj0joAdFcyIIO+9XpAPQoAQIAQIAUKA ECAECAFCgBAgBAgBQoAQIAQIAUKAECAERj0CRJCPgiK283aAUVB8lIUBQkDIgYjOjo2byDtd CQFCgBAgBAgBQoAQIAQIAULAQEDMFWiOYGBCLkKAECAECAHG7Nw/jFoNcursSbTtjIBo1AQG JA8CCboSAoQAIUAIEAKEACFACBAC9kZAzBVojmDvekC5JwQIAUKgFgE79w9EkNfWBronBEYB AqJRE1mhwa9Agq6EACFACBAChAAhQAgQAoSAvREQcwWaI9i7HlDuCQFCgBCoRcDO/QMR5LW1 ge4JgVGAgGjURFZo8CuQoCshQAgQAoQAIUAIEAKEACFgbwTEXIHmCPauB5R7QoAQIARqEbBz /0AEeW1toHtCYBQgIBo1kRUa/Aok6EoIEAKEACFACBAChAAhQAjYGwExV6A5gr3rAeWeECAE CIFaBOzcPxBBXlsb6J4QGAUIiEZNZIUGvwIJuhIChAAhQAgMHwR6WGfnZjZx0iQ2dvgkilJC CBAChMCoR0DMFWiOMOqLmjJICBAChEBbCNi5f7A1Qb5+1Qvs5fe2sQkdWF+2MXbQGReyY6c0 m6L1sNUvPs/WdvH6tY11dU1gZ375fDa1WZC2qmI/PPd8yF58ehkrTZjAeHYa/7axjk/NYOef MLXOS/eH77I/L/8j++OyV1jqnQLbY49pbPoFLnbp+SexD2MPs3dOuYldd8qUAQtXFxE9GDAE RKMmIqTBr0CCroQAISAQ6GubL8LTdTAQ6GFvv/g0++3i5eyjTYztedJF7AbPJWzqrlbf6sYx yVJtTKK9x7HMp2acy06wDqB46ulcx9Ir/8KW/2+MfXzSD9hds461irylZ5tx3PC3V1eweDTB Dr/pfnbtCZNaCic8fbjiDrbXzFtZsgTsc6agHIdn2apSR5MxGo7JXniWre7S/GCkXaUuduS5 l7P9NrzMlr3dxSYoAzz1a9u6uth+Z17OTkFsOt9+kf3Pb59if35rI2MT92YzzrqIfdHlZGxl mD3XcQW78fM4Rupex15Y8gbbpg+qOlhHxza2DTGu+3UcxM49/1hWW0wfrn6RLVtdMqVDhO3o mMQOdBzPjpw6UTxq6drz4dvs6fBv2fJ3P0L/e7JzrruBXWExpuOR9axfzZ7/81pmGhh2fArT ekJdWo2P97B1q9PsL39ezmKvbGU33T+PtVmsRlTkIgQIgWGLgJgr0Bxh2BYRJYwQIAQIgSFB wNb9A3aKo+qHNQj4Xyu/YiYOfo9T8c/DuMKZpsGKCb/ulzm9EIrEoVAFKGUigNMqcPriUGka wyC+rBYhEQ2Dx6HmX8HB6QQn/3M4jHRjOn3xgjkhpSyEfS7dj8cfhFg8AbFIEFzoX2AaTJcG Jpw5FrobBAREmYnrIHyCoiQECIGRikBf2/yRmt8Rk+4yRL1Gnyvab8Z8kMOxRu2vmo/q/bPh l0GMD0ysfpU8RPxuPYwnEIF0rmjls4VnZQi7zGkNZcothJO9FMDPxxj+hPxQc1chE4+A32uM 0Rz+ZI0/9JOIgt8txjguCOK4LI8DsWpNHef4+IIRyBQrkIv5JAxCEA76wSGNdbyxvPKdUlIa 80nvZax1tztiOf7j48yA1xhfqf4dpu85fVGoGV3V5NO4LWcjetr1b/O8xXKGJ91VhZjHXEZK GG8cGtQQKKQi4BbjSIcHIok0IGT0IwQIgVGIgGhDRmHWKEuEACFACBAC/UDAzv1Da0xyP8Dd 0UHbLsxqWieBXaF04+QWk7o/xjyQlWYX6YA2gXMEWp7kNP5Q/95kw9rk1xWqmaxVIBni75yA mlr6r5KNKuQ+x83pjSgTS/0ld1Tz4HfyCZYLUtLct6/hTHHTzaAhIORAXAftQxQxIUAIjCgE qO0evsVViHsV8tMfSUAmnQC/REB7ovUEaMLHiWEneDwe7c8Nbl/EchxSwr5eX/B2ByFbkgYx fYSkilHktTQz5rUk8ZtFrYZ1mMYkVv7jPkGS49jLgqytZkMKbrVr/wBZcGvEtj+hLQSUUxoO DojmpMhwrBNQ8HZALK9ik/RzfD2Q0BYRyqmA8h15DFgtJJQxlC9Ro3hgyoiUjqSxIFHMGGVi Vb6mKJSbPPh4flx+SKQzkIjIBL4F/sW4QsQ73aJ+eMDtdkOkVtlBibsEMb9B5Afi2YYken26 6AkhQAiMRARojjASS43STAgQAoTA4CNg5/7B9gR5SZ/wMHB4Yw0mBCWTppSzRoupWkxD0OeD UKy5BvrgV+UShLQJtTucrf9cJYWTJR/o0zMk/bnmOxcAh69R3gFyEU6sS+R/X8PVp4ieDBIC olET10H6DEVLCBACIwkBm7fdXKs4JGnzurxBSCQi4PFGlQXlQiIEbo8XfNif+7xeg3hGt8/n BW8gBtI6MZZ8FXKpGPjcgsDF/tTpgVA0Al7cZZbh/GslCwGPG7w8TvzzelWy0usLQDSRNS1k Z6MBCKekFWzsrQOaNq8zWLOAj0Qv13oOpiWSt0FdLCSDGrGLC+F+651u+UQQ8yvn3Qv+QAji aVWbukHUUIhr2tgNx08NQlZz4MX0OwOpBh7EY03LXBurWBHRqQAS2a56De5yWiXOOaGtlAVG WU5rWKBCgz4W0j5VTnMCXBDNeSV9UY0s514Sfq2c5bxWOfndnOQvZ8Ia/mZFA6wcEHGrYzDm CtfULS1R8qWSgQAugMjpLupa7rVxAyi4OIKmOiZHZ7gLENQXY5wQlxcODE/kIgQIgVGGAM0R RlmBUnYIAUKAEBggBOzcP9ieIE8oGkLaBMUZspygpEMefXLJK0vQNIEdoFo4ENGUDMI7Ik1w KqWimi80w5LOCC2nIgQVzXCedzEhtE5EOY1aSh6xBbqv4azjpqeDg4Bo1MR1cL5CsRIChMDI QcDubbemfcvcEEPSt1TKQyyg7rhySCRtNqoSvg5PGFLpNKRSSYiFA6pJDIkYrRZT4NXIa28I zXqUylCplCCLRLPS7jqDuiZ3BRfRfZpfP5oASSXjEPSoZkH4wnwzijsVULV6XSHzAnxG7BZD ctYbjCnm3qzqYjUf08cv3Axc418ZYl6RJsx7MqqbbHM3ND9XgahmwsOKuG78LVx4j/JxlQvS 5hWHuiDVgpp+p1NNWz2RrBLobgsN+6TY3eeJ6soP5YwgzRmEajSpS0kse2dE81tA0yvygoio P2jOxKSqXoBIsLmJlHRQ08yuI8ErhvIFprFZPagDRjzQx31uMK2VIJkutOcdLi/WeTH2EwHF Fc2waOXOy0OzLiNe0pUQIARGMQI0RxjFhUtZIwQIAUKgHwjYuX+wOUGuajB5fB518uvwQ+0U opxVNX9cbrH1VExCqpBP48Q5EoaAH7etesMmrR61PqJ2GU4yfRiWa3o5XW4IattWy/kMxGNR CKHtS7cLt/BylSDc4hv2ucGBmmfGpLGMdjjD4HWpmksO9BtJWWt06TbSTfnIKZOkhKyUhp/S tb4wXf6mW4PRc6UIBc0IZV/DqXjQvzsKAdGoieuO+i59hxAgBIYnAn1uuxW71dhHOpwQSsm6 qyWIhwIQCMWgiBYpmvZpZ1wHkRfiEA5hf+dEEk5awOUmKtx4ToYnmNRJTAXBMhLY6N/Fz9DA b7s8fkhy49LSLxvltqMdEIhb94mSV1TkVvtyT0Q2VVKBEBLXPsnsRUYxRYbkaY097TwSup6o 9p2SMNPhNOVFfC/NNZrlnWaCrJRIczy9RFukdprMl4k41GtZ3xUmL3oDai17NI1q0cZb2ymX F0VwMdyNGuJevtstbUnGCiI3IgyeFxPq2MiUbimFIl81ptskH9ZOLVwt6W/lWSHSHSEo6ES/ YQJF8V+IKwsA9XbXkTgXCxgy64ua92LnHDdPE5c0xKulHGRyNYMlLVHVnLD37lTHa1aJtXxm 7ALwRLImH3zxQqTFctefybf1jU74u80Eu7oAoSl/aHXFa2GnXN5FyeuSsnvCH4J0wSxr1l+n p4QAITCSERD9x0jOA6WdECAECAFCYOARsHP/YGuCvJLjhx25IJlNaDYpa7aoapNQhz8G8aBm 21s/iKmMz3w4eRfa54a2mFJFyxnNdjfDiX8M8kUkv5WttOpkOBcP4VZrLU6ehjxuwxZx4SSF T4arhaSuweWLJCGfS+k2SetJ7SrEhRYQbqnNo9Z4jtsw5d+s20psmGJhjSa+lnLW13CWkdHD QURANGriOoifoqgJAUJg2CPQx7YbzWAoNo81gs1kDkPT7BU7kHrr0y648iqVbMW45PM+dJMX 2A+Kcy64uQ+17fKg5msO0ppWN9P7Xw44Esyiz6zTzK0vEP07nohpp1g6gNq1+qGWgrR26yY5 qmXUDOfRIWGfV+x2G6SzrwExX0oGTFrG4tsuk5kUQX4b+a5LNRLUCoFap11chUqZ9/F40Lh+ QCXH1axlXpAPFkfN+SCOWcRhlPWa64LIlXaUVbQzWhqME3QTJg3e1+VHe5AJcYUDA+NG/hQT JGj6wxnk+Srru96cQcMsC1+4YKxeucHQnHdAXF7XwZiyEXlXoAtJ8t7JYP18lzbzitoIOuYx SQOjnMfxnSZXzIGHsPaeBEuYhNkX0wIK+qxWK1As5CCOdspFmXPMDeULHp2xiMDlzYUHtBv1 iS9E9DFRlimlh4QAITDcEKA5wnArEUoPIUAIEALDAwE79w+2JsiVSRpup60gEa5uRUWiWlce quC2U05+e/HgyoJOXntlTSSsv+pEj4FpCzLaHOW2NXnFCgqNOzHRRI0lQQJASdXOcrh9CvHt 8Aa0Ldt4EFVnWt8e65cm4fohUbXmYCw1ytQ0mCflmGg9LXziaUw0exXHvobrNWLyMNAIiEZN XAc6foqPECAERhACfWy7M0EnOPwRCGnmQAKSeTFBMjr8wvwW4tGsT0Mtc12LHQ+RNixr4Bkf 3NwXLuRy/rCI5LLSbrlD+q6sckojzL1xk5Z5Pok2w3FnVlj0s82KpCwdyB1I6PFUK0iAq2cy 4se1Plk3RcJJY9QY1scFPH3awYhIlNbwrsbXkZzU48SnwtRHRDphsqTbx/aBpf67vjjhBgl2 4xu6qwwRrXwYjguMpEqLItICgk5q4/gkLKUHtAMdHbrmexVtbqs752QTNPpn0dHI/Ivsp86t aXC7a7Sp6/zxB1q9DWfV2pKPqYeY8nGZelC6ZsNbT7MRS06Q4M56W+PcV0ooPShjNbMmuRGL cBlY1i5CCB+Nrkaa+XhMPVDVpZu3wzGYN1R/OHqjyGqe52OqOSB5wanGi3JbzkR0kjwomZWR 60JIZ87LhtkX04KUVcz0jBAgBEYyAjRHGMmlR2knBAgBQmDwELBz/2BjglzVPnMp260N25Ji 8pDXDp6K8FlYUdjwRE0kXdOMV0hDk8zQ3jHsOZqI6WoBDwfDg7pCCX1rsz6B4xM0JAyUiW25 AIXSB5q2OT6XbJ7yL+oEuTTh5c/F9nFFI57vd69WoZSNK9pntVvFjQOjGHgt7Hby+Kx+fQ1n FRc9G1wERKMmroP7NYqdECAEhjMCfW67sR8ByYxGnPctys/QPJVJ88Z9mqaJqmvTCoKTR4Z2 rHGnk0LCInnqUghLQ6u6ko9rz6QFZzURbf9blA6rdEkkuYhIJ/DRbIvP71V3iOGOLIN0Nmxu +yWzLCK89dXAKpTMoqmQLCTC2sGWSJjK5maM8Jz05oQqavG2oFqsm/+QFx6E9jniaU6rkR4x 3uHfFUQuJ2zjcTQNpx3a6PA0InANxQET0W5kwtKVUuyCS1rqlr7UhyXlQE1UGBDVTlrk8HNt hmpGqRsBifRVQyJ+yo491Io2ae2bP5bU7Lur/WSTNOl2vmsWFczRWdwZ9UWxaY+25yPhMITD EYglUrizsO8a2uUs3wGpHrDeeyxV3Va8XOZC+7x2l2EhLhaB5AUXi+zRI0KAEBjRCNAcYUQX HyWeECAECIFBQ8DO/YN9CXKc8PBtp1HF/qShMRPM4FRD04ITWjn6pL/WVImwzykdcmls68XJ VtMqi9+UtkbryjsYpqqYfuGTY5E+I6KS0KSr2eabVrYsq0S7oZmXxy28eAhWzezJpDVUY2fV +FK9q6/h6mOiJ4ONgGjUxHWwv0fxEwKEwPBFoD9ttzAPImsnF+JCk1c22dC4T9OR0cl2gwBX SWn1sEZhA5uhSZFCMQvRgDCF4UQtcck+hR5h+45CQtNQx/7VHU5LEeDitkZKh5C8TCVjyo4u p4lgxcV0zaxLtAXimkeujwmcuEDucYPTifbU0RZ4KJqERmaedY3zVvtngas0LtDLjXl0czFq Zg1i2yBLBZHrgGAkpC1IcPLeWBqQgNKiiWlayU2I5dpA2pipdiderTdxn+SHqHtiurY/f57w aYd14vOCYlfe4qBPiUg3FATKkM/X5scg0nlf2UirXT/fRRrriTQ2vYpywbjlhSTrMCWIeF1Y N9zg1v/w3hOu36kgFj9qzAVZx6s+FYe6GofMo1a8pslea/9cz2/tTsVmH6B3hAAhMOIQoDnC iCsySjAhQAgQAjsEATv3D7YlyNVJuU87lBO36SoTY5wgBaMQ5JpT+lZlYwLlqjFHIra3OvTt 2GhyJVxrq7xBHdY15VADSBz8pXnVtdiEVrkehaEF5PBJ29olTXbzRKcKxXxBnVxWi5BMZBTt dT5hFzYpjQmy/pGGjr6GaxghvRg0BESjJq6D9iGKmBAgBIY9Av1pu1WNX+wbhX1rNOcl2hUH EnT6+muTPs0ASLK7zQNqhKmq4WxoNov4XR4fROJpUEx/G5G07SoViyaSNRM2iHfd5BmSmYpN aGkhPIVkbEBevdbzKA7r7j0pYoHdV2sIu0HQtDaGCNdpRTcIwB9rpkhkczfi8EZHjVka3Iam Hwyp9/+CyMWdaVxZWyxUGORy/bfzUXWRpC7+eq/6k4SPL/w3MCmj+xKOgmL/3hs3L4wYu+Uc 4OSLFRZmQIyDJyXtc0XxISDtBtC+I5nEs9Y2l853qdnRJ1La6GosUsgLSQ18izJAMl3Uf+Va s1sQSpr5PXe4Pi8NouaP1cNnHdIBo0IxpObQU/SbCmqH0hNB3gRRekUIjHwERFsz8nNCOSAE CAFCgBAYSATs3D/YlCDXNMUkklmdPIiJCdoiF8ZFLTWRePUTGle4fTkhPItJSP1hWWqFreqT dMOOaf0WVjE5FRrsemXXbITyCuuTJ426JjtqnDfQaksFUevKHVW/L03E+EFdYvey/h3JkYsF IZTUJqh9DSfFR84dg4Bo1MR1x3yVvkIIEALDEoE+t92GxrRibgz7PbGYzNsWj7S426xPMzAR BDmDUCqtnO2h27zWyWduD1qn3Y2gfXahOTWXbNKFR8RNmKiayEKzVxDKpnM5uH1y7h0PzI7E +Z4woX1taMDz141/XKuejyvQjrkxTGjoPaPZzY5kDE3nQibb6wKBsNse0AcumMNMSCFaa21m 69rB0iGZYoeBWGBXDzDHxXvZvrwp1Zrtb6wD9QeGmzzqN1XtUFdfwkx46x5qHKp/mdAVHsRh oup4zWNhJi7pd6oks6R9Xk7znQNByfa9iM/Ii3m3gPYebcGLM2VaTbuIWSwuWZH4wo985fbw y3gorPwn27LHQlUXcXBhSq8heHhsppmmv/IBDTOT3Xwhi7Ua+MZClelsHTmh5CYECIFRgQDN EUZFMVImCAFCgBAYcATs3D/YkyDXDuUUE2Neo3TN75oJnz7pr91ai4SDom2Gk8xUPo1bsdVt zILc5lpVpl9ZPbgzqGijGRpJVluNRRzmia2hyc4nW4YZFcN2KHP4NY1405chG1PtSeraYkiJ x1EzTlT8oCDAzcEgr21Fj+lkRV/D1URMt4OOgChbcR30D9IHCAFCYBgj0Me2WywQY9/C+V3F 9IfDDR7FPrUL4pkk+NAERIn3KV61T7Hq0wxgpH4M+1rmlrRgUZNX7VNrFoAxMD+Mk5+vIcyF lfIZSKUyoJtENz5Q78K+2oW2vI0DuFUvKnmJ2rPauSJCa7ZeaxrJRUyraufaWBivW8DWvswx 0jEQ+Ok70uqTJ56kQurus0iGI42L6UiWZpU+2GWYSOE7weJxSGUlth2/oeBWo0ktSG5zOg3y Ux5f6FjofX0e/Lx8asc9IrH6oa/ywebipdVVU0qQtPOtfMnPchHEw2T/3Xib07TXFRvtipk8 4x2gcTtBaMvkvdCgjuZqVQKK4NfM5ujlJkUnFhqU8110Vlry0NCJi0sKhnjWS83h7g2DNHtR TKkHtyM5rtR7PB+gjGaIgmgmxSl2d2D4YjYJcTQRJMuG2DEhHxJrKHkYcsU/Ly+gCHlrlix6 RwgQAiMXAZojjNyyo5QTAoQAITCYCNi5f7AhQV4BfSKaNWY7YhLEzaWI6VO1nAO/ZqOROQOg zx2xNgr/zOFUtis7A0klXCEhDt/CSVEoDrlCHlKohc0rmRMPBVO00ZCgV4kA68mlfqAa/6aS mAokxGFSSFTI87sqahQJm6hcSy2ey6OdzTzkclmcSEfA6xJEeI0GXRUnwNqkkKfNHYhCtlBE zaUS5HGCFfKqGlih2m3efQ03mBJMcdchIBo1ca3zQA8IAULAXgj0oe0WmsXM4QKPogntgTQu CAsim7cvCgHbS58mA63v1sL+zaxLbGjy8nh9oRgk0Q64XzssMpwWpLBBPMokr/wN2S2IYiaI RXypH/yJhK2SBt3MBt89hp0uko+VSgly6Tj4lDGAF/IiUmH/GdPoDSd17e5KKYc2pLG/lUxi CCLX2nSHiLAEMb9m0gLjFG22uMpazbmoMA2j9tnJRFg1l1IzLlBjFjamfZBVBh4ViAvNardk 1xoJdrf23bgxJNLNbHgjWZFQ7Vo2xiNcQUBmYmt8iltRBrJSgnhnda0iGazUMVew3v42DyB2 G9QpBVQhrZvP4TscRNrluuWCaDqvjNeqqH0d8WnYY1y1XHu1koeQVv84QZ5oIa9qfqqQiRpj wUBCrz1W2e31WSkb083iiHphXKXdDLoc8nrkgWgSdz741LGcX9kBYf6UkG+vhhOXC6dWF0K6 vJnD0B0hQAiMHgREOzJ6ckQ5IQQIAUKAEBgIBOzcP9iKIK9kI7rtbVHozBtVSGuV8BaHTVUh Iojxmgmr2HJq2MHkdss14lupjTgJDWh2yPWwTgjGxUQN596FuJqOOhvjRnUWWt96OlEDzs8n 44YXyEoTQcNf/QSbv3P6k1JIzVkpSIeg1YRz+yEprwjIofsaTo6D3IOKQG19GNSPUeSEACEw MhBot+2WzHcxhxfJUMxmlWtkq/2FKxBX+s9W+jQBUDrAF23NC73iHSdGvdLCrdJ3eUOQNRkh R5MpWv/si/dOPCo2wNHEikcL4xDxO/3ALZkUEsH6cYHed4t8pkQSlWs5l5AWn42+0xOMq7u7 cDEiIB3CreYjatr5JSKsaKZQatts9R4XvTUNd+6/ko3WpdUbSpjGBSJe5VqSF9DVdOppRA9i l5j+bSxjfk45//Hxkv7cFVAW5uVxj/4OsQrJdtrV4NK/FQhz7Btog0seFWdCkPh6GVjZ7xZm 8oxxjSm9elj8LtesV3YR4IJGMIjlZpSXyIPTE4SsvC0PU5JU7KXX++W7Hmq8mrMgLTiI+JWr tHBiDtDbHZpCaTAe5fE6TWZwyhDVdnLo33Z6ISEpg9R+TSbylTC4GzKea5rD2ijonhAgBEYo AqKdGKHJp2QTAoQAIUAIDBICdu4fxnBMEYBR8xszZoySlx2Rrc7161hlt73Z1Em71uHX3fkh 21j+Fxs3fg+215RJbGydjxYedHey9RsrGMdubCLGUf+VFuJoxUvPZra+UGTlShV9j2N7TpvG pkxs4Wt9DddKmshPvxAQciAi2RHyIL5FV0KAEBjmCLTRdnd3rmcbK7uxaVONfmzzh+vZZjaR TZ0yse2M8vgqu01lFt2mFlc3W79uI6uOG8f2mLwX+rPoPTH9H3YyNqWF7/ds7mQ9E9X+czP2 yyWlX57cp7TXZpb38zy+6rjxbPJeU9hEi6TWhun3vTIuKGNXrX7TCh7zN7rZh4gnjkbYHns3 wNMcYIDvetj6d3OsOvlQdsCkgQOoB+tRge3VYpyYhnWdbOoBU5S8KfWgVGZ8yLPH3tMsx3AD DMIOja4T5ROrJRu/x2Q2pbGg6WnqwXpc6O94VY+NHIQAITBSEBBzBZojjJQSo3QSAoQAIbBj ELBz/0AE+Y6pY/QVQmCHIiAaNfFRGvwKJOhKCBAChAAhQAgQAoQAIUAI2BsBMVegOYK96wHl nhAgBAiBWgTs3D8QQV5bG+ieEBgFCIhGTWSFBr8CCboSAoQAIUAIEAKEACFACBAC9kZAzBVo jmDvekC5JwQIAUKgFgE79w9EkNfWBronBEYBAqJRE1mhwa9Agq6EACFACBAChAAhQAgQAoSA vREQcwWaI9i7HlDuCQFCgBCoRcDO/QMR5LW1ge4JgVGAgGjURkFWKAuEACFACBAChAAhQAgQ AoQAITAICBBBPgigUpSEACFACIxgBASXZMf+gQjyEVxxKemEQCMERKPW6D09JwQIAUKAECAE CAFCgBAgBAgBeyNgRwLE3iVOuScECAFCoDkCgkuyY/9ABHnzukFvCYERiYBo1ETi7di4ibzT 1d4ICFkgGbB3PbB77kkO7F4DKP8CAZIFgQRd7Y4AyYLdawDlnxAgBAgBawTs3D8QQW5dJ+gp ITCiERCNmsgEkYMCCbraDQEhCyQDdit5yq+MAMmBjAa57YwAyYKdS5/yLiNAsiCjQW5CgBAg BAgBgYCd+wciyEUtoCshMIoQEI2ayBKRgwIJutoNASELJAN2K3nKr4wAyYGMBrntjADJgp1L n/IuI0CyIKNBbkKAECAECAGBgJ37ByLIRS2gKyEwihAQjZrIEpGDAgm62g0BIQskA3Yrecqv jADJgYwGue2MAMmCnUuf8i4jQLIgo0FuQoAQIAQIAYGAnfsHIshFLaArITCKEBCNmsgSkYMC CbraDQEhCyQDdit5yq+MAMmBjAa57YwAyYKdS5/yLiNAsiCjQW5CgBAgBAgBgYCd+wciyEUt oCshMIoQEI2ayBKRgwIJutoNASELJAN2K3nKr4wAyYGMBrntjADJgp1Ln/IuI0CyIKNBbkKA ECAECAGBgJ37ByLIRS0Y1OtmtvKZBeyxWJxt3MzY3gdNZ2dcfCk758iPWehXnez78y5hu7Ie 9vaLz7O/dzHW0UpaJhzEjv1Egb363jY2QQmA14POYJ8/dkovoTvZyj+sYBs1X9u6uth+Z17O Tpm6q/Lk3RUL2K8WLmcfbfoXY/udxL52nYedcoD6To6458PV7Inwk+zV1R8xNn48O+SMi9mc L3+eTRkr+yL3UCEgGjXx/ZFJDv6bdf1jKYvljmRXXHgg20Vkxur67y72j6UxljvyCnbhgU19 Yuh/s81/+y178KU92axvX8wOaEngrD5Kz0YCAkIWRqIM/LvrH2xpLMeOvOJCZl2tt7L1qcXs 2eVvs85xU9lnzr2MnffpSWxny4LpZoVXF7PYijWsc6e92DHOS9kXpu/FqMm2BGvUPRypcrB1 /Uq2OLacrSnvzg4/8zJ2ySlT6/qCno/XsXc/+Be27Fa/Maxj0v7skH3GW72kZzZEYGTKArb1 K7H9Xr6GlXc/nJ152SU4bm8w1tm6nq1cHGPL15TZ7oefyS675BTWyKsNi5+yLCEwMmVBygA5 CYE6BDazVS/8L3tvW4fKp2xj7FMzzmUnaDyH7H39qhfYy293sQkqkcI4JzLhyDPZ+SdMlbx1 sp+PmcxeCGXYi9cdKz03nOv+cAe7r3Qp+8W11u8Nn+QiBEYOAnbuH4ggH+x62vMuu+PcQ9mt L+GHXF4WuuAgtio+lz0S0z7sDLLSizeySejvpnGHsvtaTY8jyP76i0+y399/NfupiIt5WR5+ wQ5oEkfnyvvZ5M/O1X34QnF23TXnswN27WErfn4Fm3mzHpnuJ5wpsWuPnaTfd658GOO4Xr83 HF6WKf+CHTvReEKuoUFANGri662Sg+tWvcj+8n6XvkjT0dHBtm3D0UXtr8mAo9Zr+/ecGH+O PXD7bSywYBXbadYytjZyNvsPq4g4Mf7cA+z22wJswaqd2Kxla1nkbEufRujNr7LvT5/B5n88 h7307mPsTKqvBjaj0CVkoSUZ6F7HXljyBsNxtfbDAXbHNpQBcS9dOw5i555/LC5uDvyPE+PP PXA7uy2wgK3aaRZbtjbC6qr1trVswXXnsdm/fkciBndnJ30vyv7wswvYPjJLvi3PFnjOZd9K fpr9523XsuPhNfbQzQ+w4lVPsvj8C81+Bz47FOMwQKAtOcD0Dn1fsI29F7meffHOjez8m+aw k3d5i0Xuup/948wQW/LQFWx/sbLz7yJbePmh7Isx1D5o8Nv3uhVsfej0Bm/psd0QaEsWhkOf sO09Frn+i+zOjeezm+aczHZ5K8Luuv8f7MzQEvbQFfubFjm3vRdh13/xTrbx/JvYnJN3YW9F 7mL3/+NMFlryELtCFxq7lTjltxECbclCo0joOSEwrBDoZqtf+B177Odz2H2ce1F+HpapPMyO rRmwf7j6RfZcfDGbc7PKvngCUXbTNy9lR04SAwzGetb/gY2b5mLRfIVdYaEwyNh6dsdx09it GS/LIQdziPgkXQmBEY6ArfsHJA1G1Q/rIvC/4fJLBpxKetyhlClJ+WRQec5cISjzN+U0ODHd nkgaKprPciak+mEuSCue8EW1DMmQG597IFvlHnPg1fLM8+2LF7TQVpcyhF0qPtyvK5jRPZXT 6rd8kRQUS0VIxwLg0OJ1+OK6P4AiBBw8DicEIglIpxMQcDu0dOJzbxyUZEkhyLnjERByIK6t pUCUrVFHRHirazgramprsbfsq5KDxY8/BQtuPRVQPwomzVoGHzcIXMkthsefWgC3nroL1sFJ MGtZI58igi74y49PAlzuATZlDrwk5Eq8puuoQ0DU3VYyVkr6jbZMa/9E+LqrO6K31a3E3bqf CuQWPw5PLbgVTt0F6+mkWVBfrbfCmuDpMHm/s2Fu8ElY8nwU/vt7Z8NeSpp3h/Mey0vtcA+s e+ws2JUdBvNeFzK7HTY8dSGMZ5Nh1vMftZ408jliERD1t7UMDH1fsGXVrXDcpJNhfnarnuTq e4/AORN3gRPvyuiy15P/H5i5+3g43PklmHPd/4Nvf/vb+p/nsiNgZ+wXrny+pMdBDkKgHVkY +j5hC6y69TiYdPJ8MEShCu89cg5M3OVEuCsj2nQs1y2r4NbjJsHJ87OgS031PXjknImwy4l3 geyVagEhwBFoRxYIMUJgZCFQhWSQ8yXanBb5FuuRQAXCTvTjT1pmLxt2YRx+ZD+sf+W0xufg d/zJRr6sw9JTQmA4IyBkZzincbDSNnyY5AHK4fAqzBKEeKOLjWbQYmSa4Y2uI6gS5JUUEuQ+ UwNsSZArOOXBg3EmlJa+AhHtG0reHQFTHDKslWzE6CgwvCuY1l9nQh7wxfL6PXdkFCIe049p FJ1KNR/FOJxg7gPKEPEIktwHOWLITTgOxY2QA3FtKQ3FhLIo4g4loKjMuUoQ1OqWJ5LVoqiA uujjh2ZLMS19rxdPW9/8CRyF9bQZQa5GsRXe/MlRWC97J8grb/wMLrr8VrjxCKzXRJD3UgKj 43U7MpD083bMA4mcOsgtpwJamykWJHGNspBQFjN9iUGWgK1vwk+OwnpqRZB3vwF3XXwdLPqg RyqkKqx97ALADRHAjr8X3tHb4U0QPXscsHFOeHqT4b3y+o/gUPS7/00p2GI8JtcoRaAdOYCh 7gu2b4DoxRNgzAkPwlq5iuNo6eVv7gNsogue2bgdS2orZB+aA9979n1pQUgUYAX+9l+Hofxc BfFO8YyuhEB7pOBQ9wnbN0Th4glj4IQH14JZFF6Gb+7DYKLrGVBEAXDRM3oxTBhzAjxoFhoo v/xN2IdNBNczG9EX/QgBA4G2+gUjGLkIgRGBQCUb1sbwOC7G8a7Tn7BId1nhapwSJ2J4QmUB Hi5kKBQa77gLORi3GrciS66wyumYPdEdITAiEbBz/2B7grxSLkKxWIRCvgBlnVAw1+NKqQB5 lTHEtrAE+XweCiVJa8PsXbrDRlfT2HZ4wvWEYjGGDXZAJ59LhaJpkteYIAcoZLNQUtKrfsPl 4SucaiMdSAk6W0oKxhzz8vcucDtVMlsmyGWfwi1WRV0hg0iHYgrCUUGWCp+oAK9ru7tJS8WA Zchcoi6IaysJycc8wDwxw6tGkjDmgFjeEI5cBFfkLVbaezatgPnu0+DoI46DmZffCPcsegM+ MoJp8ZZh5aML4V1dvcn4XK2r+s49CmHfO0FehXfu4XW6F4K8Owv3XXwJ3L86Az89GmWBCPJa yEflfesykFd240Slup7wqzuAmDdmtM3VLLhRJpK1zWzPJlgx3w2nHX0EHDfzcrjxnkXwRr0A QHnlo7CwNQGAe/huHSuCfMsaiCcLRppEyX38R5i9J4aZ9m34U5d4iAT5WUiQo7b4VYs36QTJ x0tn4U6KnWHGw3kz8SKC0XVUIdC6HAD0ry/ogU0r5oP7tKPhiONmwuU33gOL3viovq6WV8Kj C981NF1ltD9eCldNYjDurGegdn9DaclluAg0Hr6wiL+pQuc/i9AthxXuyuvwo0MZTJ71AhA/ LkChK0egdVkY+j7h46VXYTs9Ds56pk4SYMllE4GN/wIoooD77JZeNQkXQs+Ceq9L4LKJDMZ/ YVGdPFGNsDcCrcuCvXGi3I9MBMoZM0HO67s3mqvJTGOCvJrnPA0DeV4gB64WYvpueyFLjfzK 4chNCIwEBESdHglpHeg02pcgRzMOIa9GfmjEMicCg3HRcFYhn45DQCOencEkmh0xb7/3x80a 1/WFU4Goh5PS2p+DayZKNh2qeYhGkvpW4drwBuksmVip9YRrlUEkUYKpFPgV0yf4LWG2RfZb iCvp8MZSqO2tpqc5QS7S7mmJ8NbT6tRMxsjfJvcOR0Cvc1rdayUBhWQYohmjfuZjPrXuOsza 4sVUBCKZGnZw+0ZYdO1MuPruhfDy8iXw2B3fgLMP3R069j0VZvufhJUfcAoDiZPkXeD+/ksN TabI6azm7m2ZIM/d2xtBvhVyv7wUzrnzb7Bla7YNgrwC7//pcfjxNU44/foEfNydhyX+K2Hm pw+HY2bOgftxMWo75uuj1H/DdeccB4ceejxcdPMiyMsLANs/hjfCXrjU6YSzznbCmWdfBld/ 5cvw41c3y9kl9yAhIGSh9+gLEA7GJO2PPPg0+TGbripAJBjVFzbVeLfDxkXXwsyr74aFLy+H JY/dAd84+1DYvWNfOHW2H55c+YFC4vVsSsJd7u/DS71ZAuKRVnNwbyOCvFFmKn+DeYdh+378 fdJOHtQsf3gmjON5mXYNRP+Jq1bVf8ITl3wCxh7xXVje2YpOYUVZRBbLwqUiLhrXLiqj+a8C Lh7nCzVtg5bWshImD8VyBS2F4cJ0oxXpRnmj5/1CoHU5wAX4fvQF2zcugmtnXg13L3wZli95 DO74xtlw6O4dsO+ps8H/5EpQu4JNkLzLDd9vJAjFJ+H0MVhfT3oU3q+pnpW//hAOxrp82Ly/ NRw7caAqq26BQ9ie4F7aOz1eqwTB63GhaPSFPD5RfxvpRoj3VL85WsP717osDH2fUHzydBiD 9f2kR9/XFzdVdCvw1x8ejGM0NJ31N94yF+HJ08fg/UnwaL3QwA8PRnk6bB4oXpsUD8lCE3BG 4avWZWEUZp6yNOoRULkJN6RySVRswTZQ+wtLc13s3RtqkCs7/VGRsZHhlJRiRtcL2WJaj99p oUA26oGmDI5KBIS8jMrM9ZIpmxLkRd10RCjJbbVWIZcwbEgpq4uVDHgF4Sw1qt5gELwuVQPb sAPeBGVtO76oZPzq8oYgU6xTra2LRCedZRvk9b5UghztQRdiXqPxz5ond6pZDDfaLUdzKJpW e0OCvFKEWECz2+WM1Gt+1aUBJ9RxlUx1hzMWb+nRjkZArm/c3f5PLJDwLWnWdtlMcXYmYN6d r0jkIr7d3gW5pQ/C3IuPgU9gGjrQTuyeJ86FWKH3us/jHkiCvLo2DF8844fwZ85Jt0GQb82/ AI/8YAbshunf7ex74O7ZZ8EXrr0BvvWlz8Du+IztfQ08Hf0uzDz5Ivjad74Flx+7K8rgODjt oZwmNz3w/gIX7H3QdfDcBp7v7dCZ+imcvsfe8NWEWUZ5nuk38AgIWWg35mqOm5PiA2onJBqN jvVIOyEx7054xVSk26ErtxQenHsxHPMJjKdjdxi/54kwN2ah+a3HIzn6QpCXFsPl/zEWPvPz t8yauVvegMBp3E4/puOQr0Lgh044+NTvwh/eby6L1XIBEpEAuJS+0AWpAi4s6+a0ODYuxKaK G4tCZi0aT8RYQMCFYHMYHo6B9U4nKf/kHFAE+ioHfAuxWOhvpS/oTMyDO82CgF1BDpY+OBcu PuYTWPYdsPv4PeHEuTFo2BV0PqdovLLJs+CFGn57c/I62Bfrz35zXwV9k0QdUhVY5TsE2J6z Lez3C89VKGTwDBWvuvvOiTvl8liPBU786goksR0v1NRfB+DB5SIS7KiofhtgjAyXKON2UzsU fULnc3zHhNVOiM2QvG5frK/7wdxXuSR0wnNcoxx3Cs2qFxq4bl9sd/ebC4rXuoyTLNRBYpMH fZUFm8BD2RzhCKg8ihPSONStmLTJcTyrd+ONCHLVvIqrEa+BPBEn3YVploRPKF26IS20SUY4 fpR8eyNg5/6hL8zZsK4trRRmNoKmJLBRc/jMtqjSwuY2TvpTGtFh2OH2QkqQ2uUUuDA8JweE v2agVPJJa7IdbT2b+JSaSNohyAO8Na6qjbWCgSdqaFdp6VUbcTyMoglBLrAROCo4eaNN04kb sjVNS6+ktViTGbrdoQjI5cfdbf+0jp+HDRqjiMbRbN8CpS6ThUyz362d8MGGckuLLSLggBHk Pe/Dk1fNgBv+yLW98dcGQc6997z3AHyGy/sh18PCvLaZf/sH8OR5u2EbMA6O+85CXWO8Z+0v 4RTUfNz59N/CB8rHNPMWJzwA7+nwdMPqn30BvkUEOYd30H9CFtr9UDYsFgmNMxgax7EdtpS6 mpgq2QqdH2xoaMbLMt62CXLUYl94OXxy6mxYsqlG7RY/0LNxGXzveG5qBevy2OlwW+rjGo3E +lTkotouEh5G/Ln8EAkbhziL525/CEJ+40CkYFqdfeSi6sJtSCMVCyl1y6t4X/9VejIYCIhy ajvuNvuC7VtK0Lwr+AA29LZ7oKcAj5/L29fd4KxH3pP6jR7I//JEpS4eecffrU2r8AxW/qpo zH7yq39svFupkgWfZm5OYMOvvlAYdw4KJQhR790QCofALZQmcKecmFtT/W67Rg15AFHe7SZk KPqEnsLjcO5uWA93OwseeU9a0OzJwy9P5PXzSLjj7+oOvcLj56qL+Wc9Amavv4QTeft95B2g eK3NOMlCLSK2ue+rLNgGIMroiEZAJ8g1skX010q9x93ReSV31gS5euYaa6jUlVfGtg5dgcZY QLUy4zKiYaTE2xQBO/cPfWDOhnct6b0wyzpBXEf86TaXkRRMq62pIMhd8gENaIPWq5AFzUyf 1OJUhlTEbKJFSSuaQ2mknNgeQa5O19JBYYvcsBudUYgePFhT8WLk31KDvFqBMtpcT8WCykF0 As8waqg3+qnxt0ikNoqEng8oAqLcxLXdyMtpoUmHK+HNVnHajbgN/wNDkPfABwuvgZOvfRY2 CIK6TYJ8e+FXcBLK+24XxXRShGtVrvLx7c37wnUrJFMpZc0G9DEBeFsxs1KGxFf3RH8T4fSb fw9rulTisvrBa/Dq+7IdljaAIa9tIdA3GcADlsVCotz2t/XlfnpulyDv+gv813EHwVeeLlgS 9V1/fwRmn+qEy06brBCMbNwJ8L2lGy39mlIuLbx6Ixn9VSkpDjB1omkmQRfysy5UclH0L+mQ 2ifJW1rjaObLV2fEXY+aHIOAQN/kADcfD1FfsGX1PXDm7pwA3B8unfcIPPX0Y/CzuVfAiXvw ZxPg0sWiztWDteWvN8NBbApck+jdlpFOejp8oK3pYISoOaYdUO30SeaU0B6pQxv7CeUIqt/1 +A/3J32ThaHqE7bA6nvOVHes7X8pzHvkKXj6sZ/B3CtOhD14XZxwKeiisGU13HPm7kr7vv+l 8+CRp56Gx342F644cQ/l2YRLF0tjmPpSIlmox2S0P+mbLIx2VCh/owWBWoIcNQlBP1uIt594 vhB/Fsb+XmiCi7xn+NjVYZwTJ56r1wL4eXhZGRFb16A2buDhGnE75njojhAYvgjYuX+wH0GO pIOwKxuqY/6MSZEgxHWC3HS6sSCZWyDIq5LGB5eBch4ifkFi84keA08kZykdfSHIoZTUiW2H j5vGyIOHN+K6trxIO24fNuXJIgmSeRh/omDhAaCUUk3TuEIpy/f0cGgQEI2auLabilRAq6Pu iLEToZdIqu8vhlsuOAL2/uQ0OPrMq+FHj74Ea7fUarJ2wooHfgfvtMANDwRBvn3T8/DNE6+A J7jdZfFrlyBf/xicjDJkJshRC/y2w1F+awjyzcvhG3ujvB15J7ypKZtX318E/8/Rocg6+4/P wJX+hZDdXIuLSBxdBxqBPsmA1I42Wxw0pbX6Piy+5QI4Yu9PwrSjz4Srf/QovLR2S52WdueK B+B3rQlA6zbI0c79n2/5LJzo/SNYKI9D95oQXLTXNLg6tgF6ut+B31w5Ta2Pu5wG80VFNWVG uimntR1T5gOY9f7JFTa1EWLBVPQvxqItatWE4pDna62lHOTVU6alD5FzMBHokxxggtrvC6rw /uJb4IIj9oZPTjsazrz6R/DoS2uhvitYAQ/87h2zKSATAGiiaM3v4bZrzoMZJ8+A89w+eHTZ IvjGVGxfdz0HFqhbdEwh1Jst8JcfHKQcwtzKJh1RP8WYT43DGCeFMpJygK5Nb4z9RHiOL9Vv i+IYho/6JAtD2Segubo1v78NrjlvBpw84zxw+x6FZYu+AVOxzu16zgJtt5oK9PauNfD7266B 82acDDPOc4Pv0WWw6BtTsRdJH/4AADRYSURBVL3fFc5Z8EFdfyQXj6jLJAsyKqPb3SdZGN2Q UO5GEQL1BDnPHJrZ1RRglH47koCwu5YgVwlwVzhriYahOKDyOEKO5GvIZOfcMhp6SAgMawRE fR7WiRykxNmPIK+IyT6DetLXmBT54yoh3D+CHFcTHU6IWywjcputouKZVyCNktYJiBZskAcM 1SdpddQFgYBqTiaWFwShkUdBYBhfrHeJAbMnWt9J8NOduTaVw5/A9Vf6DScE9LqF5cPd7f1w YKBtJffUnfbdICY0YxK58iy44devwFvZ12BJyAdXnrwPdEw4HC648X547q1O6EEzLO8uuhm+ fMufQNK5bhAhrunn+n9IZ/F3M2Es5n/suHEwTvyN3UmXvTFjx8H4o78PqcbGbGF7PwlyJYPd 78OL930dPvtJbTC1/1fgV2s0Br0hAvRiIBAQstBOXMWE2O3TqtkotDUfuRLOuuHX8MpbWXht SQh8V54M+3RMgMMvuBHuf+4t6OxBMyzvLoKbv3wL/Kk1AWiRIK/CuievgVO//Ci8Y1WletbB Y2ehbfyDfwh/FVwfbql/6Fxur5bBHpc9C5uagiPO7DBIQe5d759qDmau7TMrOaF1a0wkvOHG h1M3TQq97DMCfZEDPF2k7b6g5/0IXHnWDfDrV96C7GtLIOS7Ek7epwMmHH4B3Hj/c/BWZw9s 3/IuLLr5y3BLS4JgZLlz2RzYC+vslGuWNtaE3fIX+P6BDPb62ku9mIZT4y1qOyHM4yFjnGQy BYTjR/WgL0MWqH4b5TNSXH2RhWHRJ+gAd8KyOXth+427JJY23kmheO9cBnP2wrZ3yjXQm1eS BR1g2zj6Igu2AYcyOuIRsCbIMVu42K0oD+J4QsiAvDBYzUWU53HLg1LwXBYk1BmaaEnlcpDJ ZLS/LGQzcf2wTs7tEDcy4quQrTMgZMOOILTLnA17jHovTNXWlOIPt9aYGy98p60qipW/2sm+ CoCYPBmTJGtgMD4kGr0a2V7rR5DPTLJnKfvRCYiWCHLDDgYnrgUOytW0BUikvQUNckyM2HIp TM7o6StpdtgRQ8G5qO8qUCwaadH9k2OHImAqfxwAtPOrFgShZZjp6TV85x9h3t2v1Ryahof3 /fVJuH326XCQslW+A6adczu8XBS2TprHOhAEeWVNFO6fPx/my38/98EXOFG9y4nw7bvmwy8e Ww4fmBsCU8IGhCDXYty++U14/OuHwxgskw7nr2Bda1CY0kM37SEgZKH1UFWIa2ZC+PbLJlVD irIT/jjvbnitZqGlWvwrPHn7bDj9IHXbe8e0c+D2l4u9mzXhMbdkYqUHNi79Hjgv+Am8Vm6w K2FTFM4ax2DcWc/AR1KKq2tD8Dl8zg74LqzcIr2oc4o+w9zf6f1TLwS5El05CyHtMERRHhxb c99R92F6MIAICNzbibIvfUHnH+fB3fWCAH998naYffpBqqmIjmlwzu0vQ4tdgZrkrWvgvhlo Q3/3c+FXaxtL5ZbXvgcHsL3h6y+1Ng4R9bivBLmSOKrf7VSrIffbviwMkz5BQ27rmvtgBrbd u5/7K2giCuh7K6y5bwaMY7vDub9a22tfRrIw5FVzhyegfVnY4UmkDxICfUZAbdPwkE6L4YBQ 8hMy4MKDusUvHcQDNx0Nzh8qxBWOpVduhzl1++QiXroSAiMJASEbIynNA5XW9pizgfrqIMbT SmEK0pth42XirvUtlB7IavMv4VdeWeT2h9WDLntr/ASx4AUrE97CDlat3SsBj3HispmYEO/V q0rCu02avri6iTZeBRay7Vdla5FmI0vuDKBShmKptgfJa9pjiIfMZAhynAUgj4dtVcplKONf qZiDmB87Fad5y705vXS3IxAQZS+u7XwzF1V3HfDVcWvDOlax9cDWpmQvvt/agMCzig6fVd9p XYP8nXu53eNJMGtZ7zZn2z2ks38E+UZY9N1fwBuy/KAZlm/ug/I59XqQzZc3gIEe9xOBtmUA iWn1jAm0k93AtJRVknqaCwD0bN3adHt7XZzVd3rRIO+B4ou3gHPmf8LSjTXCtyULC+57AT7g jzuXwGUTsL6d8ii8L4tgZRX4Dsbnx96t2cuvS4H2QPRj5n5IkCl8gVfuOfQ+UzPhVUhEQMBY 5gdWCxuN2P8KO86NvkzPBw6BtuUAP92nvqBna/MFIHzfZleAKanA3+89A8azaeCOvt+E6NsC K//zAGD7fAOWt7JLg8ecUQ+N7StBTvV74OrojoqpbVkYLn0CB6jyd7j3jPHAprkh+n7jhSLV 671wxngG09xR6MWrAj3JggKDrf5pWxZshQ5ldqQjUMny3fo4dpXnYFKmiglxlo6sNFhQTPG6 I1nJp+FM+vl8s8nuUjzPzqlppjuDZH7WQI5cIw0BO/cPtiTIAbeXCwKEKQcz4SCzkocQ3zKD jVogKWyi4GEOmi1mh1c6qKmU1rfm+GL5JvVdEAs8XhzMprJQqlSgWilCMuxTvsUbbv1zppiq kI0KP0jUxHKmt+JGbO91oDaeTFJUsuqkr1Y7vZKLaodMob0tnwhjaNU7XD6Ip9K4XSgJQQ2P sGS+pZJPGNuHtA5ACJC4tkMqiXzQdWAREGUhrq3HbuyicAaGtmPf+uadcCTWsYmXLYHOphnY Cm/eeSTK00S4bElzn0o0bdog71n7IJyA6Rh3tqyBW4G/zTsMv7kXfE3WVCy/BHOmoLwf+l/w ujIg2wC//dx+cEn4PcPWbtercOOnGIw/fwGslwnLpnmkl31FoF0Z0Ilf3jb3snu9r2lqKdzW N+HOI7EuTbwM6qs1Hj77/E3g6BgLn5pxPlx00UX63wXnnA5HTxoPJ8x/W61z20vwx2+izfFx p8J9awzj/1tzD8CMXcaD85c5o25aJUw/lBoP7JUmGZWMZiYMD5qW+x7dBrl2uGk64ABHwNDM 4edi+BQTTi4iyK3wHqRn7coBGtHRd9QNbV/QDWuf/jocNvEwmP2bd5rvOtiyEr67P4N9vrm8 JTNeHOpc1KuMxcxKEMbYTewmVIpFt0FuyALV70GqsIMYbbuyMGz6hO618PTXD4OJh82G37wj NcYWWHWvfRq+fthEOGz2b6AXr3pokgUdCts42pUF2wBDGR0VCGS1/j2UErxOfbbSIbc6BtCU OirCvIpFkIIwj4sKZLrl2tooyxmDY2IOCKdaVzWrjYruCYGhRMDO/YM9CXJe23BLbEA6pEGt BE4IxgURXYaIRhCLCsKYD5KpiE4wi+eeBquMeBIZ2iDHVUmfH7wuvuKoEvD61YnxFSwGudr2 Hd2fHg4nZRITkag57JP7NyZzJQihpp5fZ9/5yc3mw0FF/KFMCeJc81v/jpZON9rXMqXPINIZ Nvp1/pXwHpDPtBpKwbbzt2vLplUsCkn10FUe3hlINtHUazXGvvjDA6liv4Qff+VQtY5NnAk3 3vMEvLLBQlsKD6SK/fLH8JVD1To7ceaNcM8Tr4CVVz0lbRDk3e/9AebPOQp25nV7wufguw+/ CO93fwyrn/4JfPkA9Zt7feFWeHxlEbqLr8JvfnQBTFHkYD+43P8UrC6vh99+lvubAMd/+fvw 0/vmww8vOwo+dcoN8Mw6g6zU00aOAUdAyEIrEVf5QqneL7hwe6RFnWslon766VoTg1/++Ctw qFKXJsLMG++BJ17ZoMe6+U83weHKO7UOijzq1zHTIZgz0r69/Drcf/nBMHHa2fCdnz0EDwXm woWHHwhn/PB5WG940+OXHRXtrAkedyBpDPTzcc1Ou8MLGdxJpP7KENXM0/BFZd5dCY3yYCKn tCfVYkpbYG5nh4qcInL3BQFRN1oNO9R9QU/XBljzp6fgrq85YfrnvwWPrursdQfGltRNsD8e nOxJtqg+jnR73KeNfZxB0M2NosawOIfDG8nokBkKBg6IZtXBGNVvHZ4R42hHFoa+T+iBrg1r 4E9P3QVfc06Hz3/rUVjV2WBlvacLNqz5Ezx119fAOf3z8K1HV0Ejr/WFRbJQj8nof9KOLIx+ NCiHowYBSZFR1HGuECkNi6WsajbF/apSWCbE+Y2gSfGDe87H1MV0PT4cExucixpdFfkbfjab 7Ie73WFjHCF9mJyEwLBGQNTjYZ3IQUrcGB4vAjBqfmPGoHVf/LWarc7177JShbGxY/dgex8w he06oEj0sPXvFtjkQw5Q4u3u/JBtLJVZpVpl4/bYmx0yddKAfq2/kW3G9G2u/Ith8th4TN+U SQOLRn/TR+FbR0DIgQjRqzx0rmSzJ3+WPSECSFccALDrjp0oPSFn6whsZf/31/dYx6d2YvnV b7H3ij3sE4eeyD530kFswk6tx0I++46AkIXeZGDFLWPYzJ9afMcdZuXHr2UjXwJ6WOeaV9mK 19exrnH7sGNO+xw7bp9dLDJsPOp+ewHb7airjQfo8oQT7Iw3bmJX35cxPY9kMmzzPAe7PiY/ drNIYDO7+mbTQ1xfdbP4wv9m5x8y8lGVczuc3a3KARsWfUE3e++FhezVrknssBNPZ9MPnMhw kbLX35Z/PMcW/mVXdsaXzmL7d/TmfTNbMHsPdrWp0/OyRPI4dtPMOcxUu71Rlr18PTtq5lxT pO5Qht20dR6bPpfqtwmYYX7TqiwMiz6h+z32wsJXWdekw9iJp09nB05sLAnd773AFr7axSYd diI7ffqBrInXmhIiWagBxDa3rcqCbQChjI4SBHpYDxuL/7X469nMPtw8TuU9uj9k6zZPZAdM IQ6kRfTI2yhFwM79g+0J8lFapylbNkdANGoCht7IQeGProTAaENAyALJwNCUbE93N+sZO5ZV O4us9C9cfWXjB2ExemjyNpK+SnIwOKVF9XtwcB3MWEkWBgddkoXBwXUwYyVZGEx0KW5CgBAg BEYuAnbuH4ggH7n1llJOCDREQDRqwgORgwIJutoNASELJAN2K3nKr4wAyYGMBrntjADJgp1L n/IuI0CyIKNBbkKAECAECAGBgJ37ByLIRS2gKyEwihAQjZrIEpGDAgm62g0BIQskA3Yrecqv jADJgYwGue2MAMmCnUuf8i4jQLIgo0FuQoAQIAQIAYGAnfsHIshFLaArITCKEBCNmsgSkYMC CbraDQEhCyQDdit5yq+MAMmBjAa57YwAyYKdS5/yLiNAsiCjQW5CgBAgBAgBgYCd+wciyEUt oCshMIoQEI2ayBKRgwIJutoNASELJAN2K3nKr4wAyYGMBrntjADJgp1Ln/IuI0CyIKNBbkKA ECAECAGBgJ37ByLIRS2gKyEwihAQjZrIEpGDAgm62g0BIQskA3YrecqvjADJgYwGue2MAMmC nUuf8i4jQLIgo0FuQoAQIAQIAYGAnfsHIshFLaArITCKEBCNmsgSkYMCCbraDQEhCyQDdit5 yq+MAMmBjAa57YwAyYKdS5/yLiNAsiCjQW5CgBAgBAgBgYCd+wciyEUtoCshMIoQEI2ayBKR gwIJutoNASELJAN2K3nKr4wAyYGMBrntjADJgp1Ln/IuI0CyIKNBbkKAECAECAGBgJ37ByLI RS2gKyEwihAQjZrIEpGDAgm62g0BIQskA3YrecqvjADJgYwGue2MAMmCnUuf8i4jQLIgo0Fu QoAQIAQIAYGAnfsHIshFLZCuPd3dbHOloj4ZuxubNHFX6S05CYHhj4Bo1ERKiRwUSNDVbggI WSAZsFvJU35lBEgOZDTIbWcESBbsXPqUdxkBkgUZDXITAoQAIUAICATs3D8QQS5qQfeHbMWS J9kjd8xlT2TEQ+PqCUTYTXMuZ0dOaZ8s37x+FQvf/TD75HXz2awjJxqRNnBtXr+avbT0JfZS 4kX2xubp7H9+N48dIj7b08lWPP04e+LpF9lGDL/3QTPYV66bwz5/5JQGsTHW8+Eq9vSy99iE CR2Kn23bJrAZl36eTR3bMIjyYvO7K9j/vt7JOniwbV2sq+NIdvmF+7CXn30Z3ROYGhv3uo11 dXWwM798iRLnupUvsD/93zamfU6Ja1tXF9vvzMvZKVNFRpTH9M8gISAaNRE9kYMCCbraDQEh CyQDdit5yq+MAMmBjAa57YwAyYKdS5/yLiNAsiCjQW5CgBAgBAgBgYCd+wciyFkPW/3Mvczx pZuxPjhZMPZTdsXnjmNTJ2lEbs9mti77N/bUgzewmx/JMH88x+adf4ioO02vnUgw/89tGE5j 3IPpErvxhEmNw/SsZwtu/X/s6p/G1LRE/4ud+5kj2YGHTGVKarrfZrfsdhT7Kb71hWLMdXwH i/30Asa9eyIZ9vCsY63j7vmQvfCrX7ALruch1Z83lme/uOQAcWtx7WT3f34ym/uS9srlY/Fb b2Bn7/cRe/a5OPvvOTcz8Yrhu4j7bHamQrojni8+y5596g52K+Kl/hyY3jvYdddcwg4gftwC 64F/JBo1ETORgwIJutoNASELI1UG/t31D7Y0lmNHXnEhO3CXJqX37y72j6UxljvyCnZhU49N 4qBXoxaBES0H3QX26uIYW7Gmk+201zHMeekX2PS9elnh10tyO/v4rf9lv4+/zj6Avdjx513B Ljh2EttZf08OuyEwkmWhu/AqWxxbwdZ07sT2OsbJLv3CdNayKGBB/7t7I8vnS2wrGKW+066f ZAceNIU1614M3+QaTQiMZFkYTeVAeSEECAFCYLghYOf+weYEeTd74Y4L2QW3vsS84RTzX3sK a6bfvX7F/WzazLkshET3dc2IbqWGY9w/97G/7LovS8+9mXHKuylBvnk1u+V0B/spcspOX5T9 /q4rWC2VvurhS9n062MskCyyH3xOaIyvZz8/bhq7OeNi6fKz7IQmGXj3mZvYoV+6T5M/PyvA PDa1gTRuXv0w28NxvfYW465g3BK53b3qfrbb9Ln43sVS+O4U6Z0SqGc1mz3OwZ7gPoIZ9uyN Dch77Qt0GVgERKMmYm2VHPxw9Yts2eqSvttAhK+9KrsQvoC7EGrLvdZjP+75DoZfPvgE+/Pa jWzi3kezC9xfZ7M+19riFOvDTot+JNUcFBe6Xngad1lMkHdZMNZV6mJHXvRldsKUVokdc7R0 1zcEhCy0JAO4mPji08tYqabs6r+8jXV8agY7/4RGLWh9iHafcGL8uQduZ7cFFrBVO81iy9ZG 2Nn/YRELJ8afe4DdfluALVi1E5u1bC2LWHq0CDsAj9aveoG9/HaXuc3gO44mHMtmnU/t/gBA PCBRtCUH+MXh0hdsyy9gnnO/xZKf/k9227XHM3jtIXbzA0V21ZNxNh93tDUnuv/F3nzwS8w5 dynbvHMP665yKCex8+5LsoVzP83GDwiyTSKhvqAJOEP3qi1ZGDZ9wjaWX+Bh534ryT79n7ex a48H9tpDN7MHilexJ+Pz2YX7NJcEFe1/sb/c7GAn//xdE/j7fvNFln3Eyay6F5PHftxQP9EP 8AYxaFuyMIjpoKgJAUKAECAEhhcCtu4fkDQYVT+sWlwvoqU8ZcIexa8vlmvJP/eUi/IwXshX Ww1ShbBLTRMS5A0CFSDgUP04vFGoWPoqQcip+onkZB8lCCphXZAqWwbUH1ayYSW/AiN/sqi/ MzsqEPU4JL8uSNfEXc6EtPf179S4ynq+XcG0OXq6G3QERBmLa6sfLGYSEAqocqGGdYDT6VT+ HJpsqc99UGg10j74KyQCav1yeiEaC4NHkw+nP95APqSPVLLg09KKOy0glYqDT5NB3GkheRws ZxlSPM2avKp4uSEUS0GjFmCwUkLxgt6OtYRFtQiJqFHflLLT6r/TIbeJDHzxwZSACuQWPw5P LbgVTt0F2/1Js2DZx9Y5qOQWw+NPLYBbT90F8zoJZjXyaB2830/L+RSETW0GA7cvBKkc1fZ+ gzuAEajtUGtjI/7ZYdEX9KyDx87aFdhh8+B1MezZvgGeunA8sMmz4PmPmgO0OfVjcH31AXi1 yAdsW+Cd33ngcN43dDgh/M+e5oEH5C31BQMC4wBH0pYsDJM+oWfdY3DWrgwOm/e6PgbavuEp uHA8g8mznodeREFBcPsHUbj6tMvgm9/+Nnxb/HnvhMX/bHlC0+eSoH6iz9ANasC2ZGFQU0KR EwKEACFACAwnBOzcP7Q+WxpOJdYkLa0WZjUXVYgThy9eH1u1BJlkAmKxBGSLFSgXc5DJ5EEd QhbBjxOsxuRybXQGUdyIIM+E3RqJ44Fsw3GqRFq7wxLRlge/RpDXkth1KVFIbRe4BXHnDErx GL6reRUbl9ulpaueBCeC3MBrOLqEHIhre2nMglsjmEMZ88pIpZBU3jn8yfaibMd3IQ4KGe/w Q16EQ9LbK0jvXojJdEitt7jTQoTGq1iEqq/LkqeBdVbS4NJxFOzOwH6CYusdgb7IQFa0ya6Q TkaoX6pAMsTbayckdwT/u/VN+MlRzQlyNV1b4c2fHIXp2vEEuSiBdFDrL+owEz7oOpQI9EUO AIa4L9gUhbPHMRjnfBo26eBV4PUfHYp1fX+4KbVFf1rvqED298/Am13ymxI8f+UkDDsNbviT 6YXsaeDd1BcMPKb9iLEvsjDUfcKm6Nkwjo0D59OGJEDldfjRodg/7H8TNBUFBatuyNx1MVyH q0rb+4Fdf4NSP9FfBAc2fF9kYWBTQLERAoQAIUAIDEcE7Nw/2JQgL0PEjYNK5oFMDW9VykQ1 UssBLpesMYjEmuY3F3GDI9CqVnQvBHkxAU6NRPNGM0jG5yGdTkMaCfmapEE+6sU083TjnzsE hUoZ4j41jZ5w7+kpZ4LAnCFIx/16PCELVj2hxOlDzVuhcV5PKvaVIM8o5JKWB5EX6Ura5gPT ROr1RMO2nVjLabE7oF4+eDxpvwO8CZl8lmLv2QQr5rvhtKOPgONmXg433rMI3vioftWnvPJR WPjuVimg4Uz6nUr99EZ1elx5mYtomu1InDfW3e3/TgsjJf10ISkiFhoaLY718wsUvAUEhCy0 4FXzgnVI23HgDmfrg1VSuIDjA2sJ6IFNK+aD+7Sj4YjjZsLlN94Di974SFtclaIqr4RHF74L 1hIg+au+A/fwBdAmGuSq7yq8cw/vC4aOINfbduxjdsTagYQSOVtAoH05AOhPX9CzaQXMd58G Rx9xHMy8/Ea4Z9EbUN8VlGHlowuhQVcAgAT5WUiQs8lXweJNgtb7GJbOQpJ75xnwcL5dLfBu eOPWw4BNvASiG0R8LYDXXy/UF/QXwQEN374sDH2fsCl6FhLkqC1+1WIwRGEpzJrEYOcZD0Nv orB902K49nPfgWUb68djAwpuL5FRP9ELQDv4dfuysIMTSJ8jBAgBQoAQGBIE7Nw/2JMgR1Ka a6jWkh+llEYMOgO6CRVB1jF3RCesK5xodhn3zWttc4JcNdnSgDB2eMFslaWMpk/q/fpjFiSO RaIUgtzBNSLzujaunC8lSCmpEPbuSA4qudYI8lQJB9zVKv5v/OEGbQhqmuoy6Z3h2r2uACQz Wchlc5AvZHXzMlwQ0b67RcrpUbsIiEZNXNsJnwqoBDXzyOZ+KlAsqUs2xWwa8rWrN8oHtsPG RdfCzKvvhoUvL4clj90B3zj7UNi9Y184dbYfnlz5AXSjv55NSbjL/X14ydJkhEFw12qvVwsx VbMctXcb8fOAtVs3D+Tu204LnpVKqQB53D2i/ColKOTzUCiatenLRfSDzzVYVL/yv0SKyGgM mbttGdDaQB5ONmdVKRVBqQG45T6dsV6i2b5xEVw782q4e+HLsHzJY3DHN86GQ3fvgH1PnQ3+ J1fCB6oAQPIuN3zfWgDMOFVzcG+LBHnu3r4R5ANS1zHVMvFhlhRzluhuaBBoWw4wmX3uC7Zv hEXXzoSr714ILy9fAo/d8Q04+9DdoWPfU2G2/0lYqQoCbEreBe7vvwSWXQGHqboWHp45Tlkw nXZNFLgliOo/n4BLPjEWjvjucuhsl+PuKcBvzz8YznvwbaUvaqUkBkQ+qC9oBeod5qdtWRgG fUJ17cMwky8W4e6Ha6L/xEXXKvzziUvgE2OPgO8u7+xFK3wrZOdPh52wT2NsJ5hy3MXgffgV 2NAWV17BcVBBnweVlPFPAcpyHNWyMlbKFxqP46mf2GHVvKUPtS0LLcVKnggBQoAQIARGOgJ2 7h9sSZBnFU1UB5gsNZRSmua4S9o6X4WYV9XQ9sYMbdZymmtih/WBYnMBaE6QC3MQvBJ6wwko lMuQR81t3d4zmkExayqWFRMvotLyayTTeDAqp00hyFlQSbe+XbSGBFK3P6ra8tUmdsYNDfJ6 wl5OG3fLBHk64IKApLWuL0qgP3c4IyeX3P1AoLYMWo+qoJnsMdtYzkfRrISvN7MqnZCYdye8 YmLHtkNXbik8OPdiOOYTWFc6dofxe54Ic2OFeq1aJZGGvHijNWcDVDItaWT3fadFFQpogz3g VU1FOEO4ECAWzbB+KnU5kMR0FyBkstHvgLCVDBIp0nq1G0SfQhZa/UQxoe2wMe1UyCl1L9FL U9uZmAd3mgUAtnflYOmDc+HiYz6BdagDdh+/J5w4NwYFmVholLhBI8gHuK5j+on4aFSIw+N5 u3LAzVKp5tv60Bd0JmDena+oC0oi+9u7ILf0QZh78THwCWxPO3YfD3ueOBdivQjCljcCcBq3 w49hDvlqAH7oPBhO/e4f4P1W5Ed8W7lugbcfuxpmzHkG1veqeD7A8kF9gakkhvqmXVkYHn3C FngjcBrsooxFDoGvBn4IzoNPhe/+4f0GYykJZdzZl7zXC1+/8iKYcdh/KLLEMZhwqg81ypsL Q7VcgEQkAC7NlGOqkKsZ/7hQYaEKRRwr6fMWnkZPxHInEfUTUrkMA2e7sjAMkkxJIAQIAUKA ENgBCNi5f7AlQZ4JoYasIyARz4ZmtpmkLWrazZxMN2ZjmaBzgEysGGSgM5AyVfWcZE5F1qTN Rn3a4FYl7kXlDSatNRrlSAVBrvCXZbEggANZb0wdYGsEpANJQP4zSPBmJlacEE2jJnguBznp L59PQ8BCgxyqFWMwj1o5wkYzc4fNk2klBfRPXxEQ9UJcW42nmhda2gwCyTwUcTKUiKiEodmm t1WM22FLqQsaT7e2QucHG8waR3XRGBrkXIPdkDr02CJBjjW3bzst+OGeTrNccfx8oTAETIQ4 J2vw0M1wCNzKpBHvrcxKEClSV7pD8aA9GahCXFsUZY4g5FFrPJdOgJ+b5DL1GdY52b6lBF2N BQC2dn4AG0wqd9bx6E8HiyAf6LqOCSbiQy+1YeloTw5QU7s/fcH2LVBqLgjwwYayuX1viFoP bFz2PThe0Z5lMHb6bZD6uA3V8Z5OeOP398AN5x4IOyvkIoODr/41vMN3czT6DbR8UF/QCOkh ed6eLAyjPqFnIyz73vGKqRXGxsL021LQjiioYFdhwysPwlePGqvMJXY9IwhvN5GFnD7n4OMe 7c/lh0g4YCbE8Z3bH4KQX5ypxMDKtBz1E0NS5Rt+VJRpQw/0ghAgBAgBQsCWCNi5f7AlQZ5E G8oMTY0IRVduukGtBG7dzjiXhEpGMzFSQ4zE0cyJu1a7taHoGCR4/WCxrNu6lbWslajKxgF/ IlwxGVDTiYQ2/3GNDVF5lUPjzKrmih/5HxNBji/07dPMAVwzshDlNp5xMUCLpzWC3LDNLn8L 0YOwZse3Lm+KR8MEi2ILXhSGORK66yMCRr1QJzStRtPY5I8LUjuojIx6yUya2aVMRJ+QWdnO N+ex7zst9N0VDp9k4ggXy7QFH6cvamhG6SSSBT5EipiLZIjuhCy09PlqFjyCBKi5WrdjLcXa d0+DRZBrKRqwuo7xEfHR92LeESHbkgNM0HDoC1RcuuDvj8yGU52XwWmT1f5s3Anfg6W9aL4a mHbDpnf/Bsln7oPvnPMpbcy0M5w0P9vrGQADJh/UFxjFMQxcbcnCcOoTuv4Oj8w+FZyXnQaT lf5pHJzwvaXQsihI2G8vLYcfHDMG5WFPcC/tlN5YOKvG7j1vJKN7KIk5CZq9i+q76Iydt1Z9 JvUTOnzDwtGWLAyLFFMiCAFCgBAgBHYEAnbuH2xIkHMbxTjJ8iX0uiW2Tzr9xjOuhRpWDvLk JkIk7e5CXJlgybZp9YgsHc0I8mYDydpwxn00Z+jVFpNo7kUjcnrT8K0lyKEY1wlHpzcAHq4N K7TJMS8tE+SWxKmRXqtBcgpNrYh0hzOWEViiSQ9bQ0BgK66thRKH1zJwKqZEUIsQ7W/HuU1y 1JBuqZSq78PiWy6AI/b+JEw7+ky4+kePwktrt9TZx+xc8QD87p0GRxTi4pA43JKn3xsIgt+k wV2/o6E2f/3ZaaGaGUK5DxkTQaU90BZ8QvLJvrpWu0WaiBSpLZYhuW9HBipZ49yFJG4b52cr lLJx5VwGeSfP/2fv3GOjqvI4ftkI+KCuqDzW7ioPt7psnBiNii+0qY9Fs2nwD+1KTZbN2vUP hFmzWRiMYWncjQ1qGFiky7IWAxNYy4oTgSZCFQcIpUtFJ6EDYZBhZZBMoDUtZOjONN89d+6c +5h3Wzqd7f02ae6de++555zPOb/7u/d3fud3slckhjOfLMPcO6bg5vJZeHz+69jw+SlcSnV4 7d6HNVtP5DXQYZgN5FesrwsgNHxk7xWlcGYgcqA+77SFzAevC2JnPsGyuXdgys3lmPX4fLy+ 4XOcShcE7FuzFdlUAUSk8OONz2Jy+Xx4z8Vx+cQHqCnXjOTjH34bR3N4vmZk3t+FL/5Qob17 /PwtBLKoIJn2iskHdYFEWhLbgchCyeiEy8fR+OxklM/34lz8Mk58UIPyxLv/eDz89tGCY+qb G6D3wGLcKu4xY+nh3CEjdYedWphff/RvhGpryEl/k+ZFnundn3rC3AIjvz8QWRj50rIEJEAC JEACxSJgZ/1gQwO5+iEvjLMmD/JMH0Edbu0jTO0c0oNbN5Klhn7I2VMNQ7FxHyNBoizqS66I NW4Nb2tOp5ompbe59QVVvVOHW3sZTQ3TYuSi7SUM5CJsgGHoNE0dTbxoK2gOGqsv6i+/Srrx L9e5ZG5ZPcgjbYZRv9YUdzwWCcAfNvJPLT9/F05APtTktqCU+keQuliq0UvC3jpUus3G4mx3 i+OMpwZVCzdif2cA7Tsa4aq5H1PHTUDF3EVYvbMT3XERhuXkdix5fhkO9Ga7jzjeFUCjsxYO hzrboxKuBtN0XvExZpQu/R5DnWkh01s/7szyaJJU3fCRLiPQz5mfIenl5ZHhJTAQGdDXhKg2 DwiFhFe5aN8CHk3xMx7UVC3Exv2dCLTvQKOrBvdPHYcJFXOxaPVOdHbH0X/pJLYveR7LcgpA kskwG8ivWF8XxdUNHxZ2w9u2vHvhBAYiBxiqLoifgaemCgs37kdnoB07Gl2ouX8qxk2owNxF q7GzsxtxEYbl5PYleH7ZAWRTBfHT76PqaqsBLxpYi6fK1Pez6zHv4/OFA0he2f/dFjwl7qn8 eBEOXsyd/IrJB3VBbtBFPjsQWSgNnRDH6fercLUyA0sPS0UURWDtUyhT392vn4dBiALQuw+/ +5GCW3/fhks520DO+LS+5+jfASkOFFIXWN+htAzkOYV6IifxYp0ciCwUq0zMhwRIgARIYOQJ 2Fk/2NNA3qR6L7sQSvY9aSB31DWJmLNheOsN72Y11rA/4bDdJY4LT1oxlVANNRGLBBGR76k5 +7BhWMvkgRgTHulyYRuzZzj0GOGynNJALhblDFgzDnu1uOT1vtwxVhKLiyp1MDmgCwdFj+ZN pb5k11oNj11tyZAuGYxDhleNNSyNjkIYdpxJo7vFE9cUd9whBhrMNenxueBwmbz19ZtxZ6AE 5ENNbgtJb7R3ncVLCD0RhLu0WQsRvw8dWQcxurHnjZVoTzE6xCKHsWXFS3hk+nWJvjau/Ems 2BvJEas8Q2m7WhNevGp9cs+UMOTNLE8Dm2mhhS6yftwZ97UMdOmGD+uHY6IG+jlhIG8zGdUz VI+Hho9A4TIgjQDqgsEBU4HEAmSh5KKysQh8rX7Lc8t0Ibr3vIGV6QKAw1tW4KVHpuM69Zk4 rhxPrtiLSI5Y5fo9h9lALg0cQ+7rosC64SNtsFevDXdGkEDhciDGJ3XdP0hd0L0Hb6xsh1UV CDk6vAUrXnoE068TciAWrC1/cgX25hCE881VIt7yWFRtu2AiF8OpxkcTcZhve+1QHsOeKZnc jR7B6zNF/vf+Fd/kkcErJh/UBZJ+SWwLl4VS0Qnn0Vw1FsrYKlhF4RQaHxXHldvw2qHcJu6M 4C8dwmvTb8DTW8+lzfKzXi/ff6zvOVI+UmcYSl1g1SvaHeW5dKcga478VRwChctCccrDXEiA BEiABEqDgJ31gy0N5LFQc8JQ15Q0NEd82iKEsiNoMbG7dA/oylrhQZsw9oo4e4k0EbjE77qW /AtjIhpEfXIhv7qmjoyLUsnpiEplAzQH7gia1DAwIo/GDsOwFm5NllONjaxO/xd/0XAbnIn7 Oy2G73TRisLrUhcgdAgvcbP/rXjxTYaSsRj+hI+uVy5WJwYFvJY0UbSaQ6R0pBvmuwLNuuHf 4ZQxm8NwJ+M4q3Xz+MPC8BRCSPwH/S0Jg3qluyO96DwyYAJGX9b6USE3aE0MAInrs82QEIM2 6mCOJ6T1vUz3jPfltjjE+/ryfIhluqvRR9WymQdV0q+WA0mDn2kh1x6wftzJD8QUb3Dd8GH9 cEyUSw8VU4lW0yK/6WXmkeEkIGUhbx6RVv2ZZZ5JY07X5hbP0NqUxWPNF8T7cg/8iPN9qeFW zOlT92Mn8K76fJ/4InZ/n3rS/DuGE++qz/eJeDH3heZE+jobQ+7r4q7S8GENVWbJjj9GkEDB ciDKOHRdEEduVSDOFyAI3TvmYYLQOQ9sOGPRG9EvXZghjt+18lj+MEWpzM9vx7wfjsPs1flD HFEXpMIbHb8LloWS0Qnd2DFvgni+P4ANZ8wKJIovXTPE8buw8lieeEEZmi769XLcXfEKPssT glyfPZsym3QoBnLqiQwNMgKHCpaFESgbsyQBEiABEhg5AnbWD7Y0kAv/KLhVo0OtJ2lsi8Hv FeEgXPVobPYhaXtGxO+Fu6kZnkY3PC0dSDrRIuhRF7N06h7o2bquv0m9TjNQGlvhcW22TycS x9DW5Ey5thKeDIbnYItbN+Lo96xtgL4+TobCRIOGsdpIY3iLa57lDZBmbtWrXRsQSCl7bRO6 wq2oTquTep2sVwzNyVjNel7J61f9c1VKHVPuL66zGukzVIaHCiKQyj5/opDu8V/fKnuCKVVP QBvoEVNpjSEb0/lh3PW55YwOF1ImT4iZHH4hn41o6ZCDVdJAPviZFsFmTRYtMx/EgJFcdNYy E0SPQa7NpPB71NkcDjQkGAaSsdSF8Ty3VX8Y6fHWUhbykQh5k89gRz1kbzKnCXi1AcqiPqP6 juLNO8VzsmweduQ0YvTh6Jt3ir5Xhnm5LzRXSSzEOPi+LhapgEsMeDqq3QleckHD6kYOclog l8iPQuUA4s1Gzv4aaV3Q37UHL4uY42MfXIXjuv2vD8E1D2H8tZVYF9QPCm+BEPZ/2o5zcvy2 /yK+2fsxdh4M4aK0KV4+hQ9/+1Pc+OCfccTq3p6xlYYiH9QFGZGWxMFCZaF0dEI/uva8LGKO j8WDq44bg0J9Qax5aDyurVwHqyjsx6ft53SHnN6DLjx2bzVW7Aolv3n68f3X/8Bv7psD1xdd lsGnjA0kFirVngnWGaNRvzbbLjVcinT6SbxDUU9kRFoqBwuVhVIpL8tBAiRAAiRQHAJ21g82 NZALf4iAthib0xscUC9Tjc1qh8kXzmRAN01eHOvpQjjhUR3OGWMZsZ7kdSER+iLN2j6YrJlm lBGQDzW5zVc9Y1FLYfBqaEU4rHr2BxHo8MHjduqDMnWegclLvnxznY/1hOBxqWGNhIGwsh6Z 1nJNLLirnhehgwJJw8hQZ1q06HkKw580tohQF3ImiNPj14ttDD6JmRmB/5hmSLjga9PCFznq ffr13Ck+gUJkIKZ+xCdn+qhhtFqCyZktwQB8LR44q1XvbLWfOfV+Ntw1uXjci3XLX8DtiXzL MGfRO9i8/1x6thePw7tuOV64XS2fgrI5i/DO5v2GoTA9RfJIFIPv6z0iTLWxloRTDCx7nGr+ YrZEhvG1rEXgiaIRKEQO1MKUli7oR8+R1XhuRhnKn3gVb61di4bFz6Bi2mNYuuusbgBUy33h o6cxXpmEBZ8l34m+343amzSZ+MHkWZg95yE4pk/Dfb9ei/ZuaTFXU2b7G4p8UBdko1oKxwuR hZLTCf09OLL6OcwoK8cTr76FtWsbsPiZCkx7bCl2nZUvKirdC/jo6fFQJi2AFIVLR5bjnqs0 Wbih4j7MvnsWHJV1WP9ld37juLhjNOTV3wEbfMbwcahFzmp1ivczWYYeNCdnn6qzR89ST5RC l89ahkJkIWtiniABEiABEhi1BOysH2xrIFd7s/RyaGgNFdS5I/6kJ7arxfJhVlBiXkQCRSQg H2pymzVr4QFdlzDAaR9P8vrM2+IYv0JilkSlyVjp9nZkDavS1pA0oDuMGRBqXQcz00KdRuxJ hhsy6u9Eq69J/zjUj4sPv4DPMBDK49V12oK58re6roFuZM/aCDwxnARkW2TLI5Bxpk9meagc NYMdQ+/rte95dU9jjbEDjW2G8SQbbx4fGQL55EDE2yk5XaCTinXhmM+LLZs82Lb7K3x3WT9j 7Fz6Bnt3HEDY5FTeJ2YY7fnXZnywcRM+3HkAx+U0QCNVlr2hywd1QRa0JXA4nyyUsk6IdR2D z7sFmzzbsPur75BZFPZix4Gw4WkumEfD/8aurZvg2daCgyd7cocCM7VRNGBapyj5rljX1CoG ROWgsaErPX4/GtNmkP4SL1reMaknTHhHfDefLIx4AVkAEiABEiCBESFgZ/0wRiUuAIyavzFj xiTqUli14sqhvy1QZr+yWXHUuZX1f/yVcu/MScpVKTS6Tx9SNv2lTlm83q/UuluU9xb9QhEr x/OPBEqWgJQDWcDC5EFePbLbeO9Z5XQ4qlxz043K5EkT0+TRUrp4r3I20qtcUzZZmViWIrnq uXCXEhMJxl5/o3LLxOJIbe/Z00q4JyrynKLMvGWipbj8UXwCUhb+n2Sg+JQGmaOQsdPBsCJ6 uzJl2kxl4tWDvA+TDTsBysGwI07LgLogDUlJHKAsFLkZqCeKDLzw7CgLhbPilSRAAiRgJwJ2 1g82N5Br3bz75D7l739aqCzZ7E8cqK6tU2b95CYleqFTWbXemzhWKQzoby9foNxzS3GMbHYS QNb1yhOQDzV5ZxoHJQlu7UZAygJlwG4tz/qaCVAOzDS4b2cClAU7tz7rbiZAWTDT4D4JkAAJ kIAkYGf9QAO57AVie1l4rp7oPKmc+vZb5eJ/1RPjlKkz71DumvUzZVKqd6opHXdJoNQIyIea LBeNg5IEt3YjIGWBMmC3lmd9zQQoB2Ya3LczAcqCnVufdTcToCyYaXCfBEiABEhAErCzfqCB XPYCbklgFBGQDzVZJRoHJQlu7UZAygJlwG4tz/qaCVAOzDS4b2cClAU7tz7rbiZAWTDT4D4J kAAJkIAkYGf9MGoN5LJxuSUBEiABEiABEiABEiABEiABEiABEiABEiABEiABEshPwI4OZjSQ 5+8XvIIESIAESIAESIAESIAESIAESIAESIAESIAESIAERj0BGshHQRPL6QCjoCqsAgmQAAmQ AAmQAAmQAAmQAAmQAAmQAAmQAAmQAAkUjQAN5EVDPXwZ0UA+fGx5ZxIgARIgARIgARIgARIg ARIgARIgARIgARIggdFLgAbyUdC20kBux8YcBc3HKlwhAlIO5O0oD5IEtyRAAiRgPwJSJ1AX 2K/tWWMSIAESyESAeiETFR4jARIgARKws34YtTHI+RFIwbYzAflQkwwoD5IEtyRAAiRgPwJS J1AX2K/tWWMSIAESyESAeiETFR4jARIgARKws374HwAAAP//YHH0ewAAQABJREFU7J0NfBTV uf8flCCo0IICLXiLCrW+lAWhilqlLqDC1cuiFbUSFLQNaFVib5XGVtouVhtrrwRfutjqetVg bSiy1jbcaqCGWqM2VJK/XayLbloCurGJ3QC7skuf/5mXMzO7O5tsQgi7O7/9fGBmz5w55zzf M2ee7G/OPGcAiw8V0WfAgAGqNUVmVhH1EEzpDwJyHMi6MB4kCWxBAARAwHkEpE+AL3Be38Ni EAABELAjAL9gRwVpIAACIAACTvYPA8SPJQjkGAMgUGQE5E1NmlVkw1yahS0IgAAIgEAOBKRP gC/IARaygAAIgIADCMAvOKCTYSIIgAAI9IKAk/0DBPJeXDA4BQTynYC8qcl2QhSRJLAFARAA AecRkD4BvsB5fQ+LQQAEQMCOAPyCHRWkgQAIgAAIONk/QCDH9Q8CRUhA3tSkaRBFJAlsQQAE QMB5BKRPgC9wXt/DYhAAARCwIwC/YEcFaSAAAiAAAk72DxDI8+H6j3dSfOBQGjywl42Jd1BH YigNH9rbAnpZL07LgUCSOto6acjI4TQ4h9x9lUXe1GR5EEUkCWxBAARAwHkEpE+AL3Be38Ni EAABELAjAL9gRwVpIOA8AvF4nAYP7k+lwnmMC81iJ/sHxwnkybat9KuX3qNjjx2kXqf79x9L 582bQWO60ZY7d2yh//tLBw1STtu/h/YMOpWumDvloETPjl3NVPvME7Rg+Spy+5po05KJPRo7 HTu2UmDtGlq84jFyVTbQtjun9eh8ZD70BLaunkdTlwWIygOUeHAudXOZ9VmD5E1NFghRRJLA FgRAAAScR0D6BPgC5/U9LAYBEAABOwLwC3ZUnJPW1ryRXmreY2giiuV79gyiC6+aLXSRTnp9 42b6cL/JQz12hTgGHdWEYt1LdtKO4Fu0ZXMt1b3/RVr94LU03Hpc7nfuoHX+x+mZTX8lGno6 Lf3uHTT71PScSdq+6Vf01G9eoX9+RHTcWZfSLWVzc2av6lbvfprmzZ6YVXto2Xg/LfP9iaLv B2hzk4tqWxtpdneCmLQB26In4Gj/IH4sFdVHXK3KoqPZbUpEuNZXoeaRecsD4ez51SPtXOXW ylXP8VRwbWNrN+d0czgR5HKXWaanqrGbE9IOx5q4TLdVaVOPz08rDl8PBYEEB8r1Pnb7OHoo qshSpry25TZLNiSDAAiAAAg4gAB8gQM6GSaCAAiAQA8IwC/0AFYRZo001bGvotSiibjY66/l SEIxtp39HlOnIHKz11crUvPh087V5W7Rbg8HQrF8aBBHm/wWjoKbx2/7uz8WCrBb1W88XF1f z/4KxQ5iX6OVbJRrpH5g0XqIKjik9k3XJifCtVodrirbNsizE9FWrq306O3uruz8Yy7twPbQ EHCyf+hCST40sA91qbl2Zqim3HIj83JXcne0yWfJ6+HGPrwXt9ZqYn1vBe4mn3Zj6+35h7o/ nFN+hL2uUm5MU8ET7SGurQlwU2sfXjQ5QJXjQG5zOAVZQAAEQAAEipQAfEGRdizMAgEQAIFe EoBf6CW4Yjot1sgeXYStarCItIkw+0o1gdwbaOIcdNn+oxJt0EVm4kprm/uvBZk1JRKcEMzK dZZlNaHMPNFGLlWPuzjQqhNNNGlpQlCXSkFrraZReavruKmxjr2WBxW25VprijTodRCX+oPW I7b7kTqvqnG5KmptjxuJXTJPcKixidvz6iIxWo6dXhJwsn9wXIgV0dnqJ779SRpy2mL5lbz1 Ebr7gpHGd3MnTuuWTKP5jzXpSR5qjG6gKUPNHAezF29eQ0NcS0kI3LThtik9Lqp5zUJyLX2m 1+f3uEKcYEugbctKGjV9MzVEN9G0Pro2bCvKMVG+FiOzi3uj3MUWBEAABEDAYQSkT4AvcFjH w1wQAAEQyEIAfiELGAclt20Sv19nrhAWl1Mo8SCNF7FAO3dspJsnzKFnqJTqwo/SjHF58MM2 pU+StHXdo/T01qPohjtupInD+yuAaUojbL600MpJJ9IKEa4kEG6kueNS27Vp5QyauWIzuSvr adOdF+jnd9KaecNoacDUl7avu58a/uMbtGiaDLvSRvdPGkXLhRTlFnrRpmx6UWcz3T7MRavU kl1UE3qdrhzfVTwcReMaIjQu6kIHk2ZmZ94ptKxhrkeFBrItLzQQ2WJsD46Ak/2DYwVybTDX Uqk7QM9sFheQu4raN92WESsq2bKOSk6cT55SDwWeEbGkybyBpV52cWrb1UlUkqB9NJTGjczu TDrbdlEkmqCBw0bQsA9+TSNci3stcGcXyMXikLtaSVQj2nQ0jR4z0iZeepx2tXTSmHEjKdnZ Ri3tCRo7boxNvlRLSSwK2vJhlJJJomGjxtLIXi8OqjEbLto2UMTt2tXaTgnR1rHK97Qqta+5 MFZsaqcRuh0du1oEgxIanc2ubmyJd+yiD5MjRH8KB6PnLRk2msYMNx1OfMcL9J8TPLRZXBsN 4uFJukAeF/39IellWOxKdnZQa3tUTTl6xGjB0SzTkq1Xu/KmJk+GKCJJYAsCIAACziMgfQJ8 gfP6HhaDAAiAgB0B+AU7Kk5KS9LG26fSnFVN5Kqoo233zqDmdSvJNV8I5mV+an1kUbdrtDmJ Vne2xnespSETFhC5vNS67W4aYz2hbRNNGjWTBOlU8Ty+lRYOmSoeRmTTl7RCXr9/Hp2zPEAe sWbdBrs16+I76K5pE+g+OZ/TVUHhbffSOGsb0vfjzbRkiIseU/SLmNAveiFDxFs20jUnzqFA WQ3xmivTa8D3AibgaP8gfiwV1Udch+qrIt0ZFW2qYrEyJjfWaq+WKOf50uNjiELqKlyivApu aJCxpUSIlbQwGqE6n/Gqj6zfVVrFmWGx2rmmQsZ6ssb10mOIJ0LGqzlKOR6fFpe8yW+ND1bG TfIdHNG+Jp92zBpiJRqq5TJLfHOtTR6uCWoNT0TDXOuv1F+pEvG76vzs0rlRWY3xio8dw2Cg UuUr7VS25f4G8epVjKv1V7GMY+rrQq0i9Ihpq2JTrD3MddVm/TV11cbrXeq5nkoOWmxU2tEd 44Qo02pTfbCRvda48S5vRtyu7LYkONxYy5VlWl+5q+q5MWBeJ0obvbVa3PpwIDWevbS9siGS UoZYRNWCM8q1VWUZHN0VgS5jhVkK6HZXtkNuuz0BGUAABEAABIqWAHxB0XYtDAMBEACBXhGA X+gVtuI5yaI7VNY2cMCrxcOuqM5hXTShJQR8Xva4hE7icrOnzMv14RhHW0NcX1vDlSK2uUf8 rjV/zse41it+V7vLuUELcp6FY5Qbqr3sVrQDUa7XX81VZaVco4gqos762gD7fZVcXlrKPvFb W/0kWrm6qpKrqqrMfz4f+3xVXFnpT9VjsrTb2phgjVfoIi6u1H/rW491tR/U9RoxQzwjW2OV rv+4q1LjuIsQN1rYFQ83pOlLZiFR9ulhVqozxSWRrZUrVc2jgmsEO2Vcu7x15ulZ9mQIYUWz qhdaTJnHzW63m0sr/Cy6UvtkY94eZL/Xqk952FtZnco6S71ILgwCTvYPjo1BrgrkLp+4cZvx oqi02nIjFxdve70qfJdWhzgWshfII/W6YFzq43BUxJ+KhrjKiBVVYRF6o1xdpgnF5cLxKGGa Io3VhjBtCtzKIgiKKJ+68GZMLrggFqSw3kAzBfIwV4hzxeNLrm5SYolFDYenPBBQ7r1Nfmv8 dVO8VgeCWNDBEoFM5DY/wWpN1K2oESJ3IsZWgVlb6DTKdcZiD8RlNZqIXKML57565XuMA8ZD As1OrV5xU7YI6dbFLXJhHKy2sUksplpVaaaXVQcNY7q0pWZjygKq8gZRLhxvuUe2uYyDohOj rWEONtboD0jcXNMY4lAwyK2Rv6Q8pDD7lzmsx513lVWrrM0FO4ir0p++GC3u2Y5ss9z27Gzk BgEQAAEQKCYC8AXF1JuwBQRAAAQOngD8wsEzLOQSYkGpbZhaQCCUVaU1TA3XiUmGqtZQxgHx u7exRp8sVvo4P1nmNrQNZRFN82dtO1fpv/O7ihseqtZE1/LqBg4H67hM1zRqRczumJgAWKFP XlPqlzHTpdArr+eUbXmNMfkse7ut+o/ZTqsWYRifdafdELFlu8ys5mRBMQPcTBZ7Zh+kToBM yRSp03QG20mMET1WvKIPxbhendipxGbXHx6kFJT6pcGi2SjMysrLzL4TmphyJWRjHgvXi4cg crKfi8srxcMJX53BOrUmfCtEAnIcFWLbD7bNzhbIqUoVxOUTP+VCsD6Z0572aYtyJoyFOi03 +1jQuHHXWe9DYhEGueCFFEYj9foMZHFzs65hIG9OMp/SobI91jS2PGE0nY3NDHJjEQW3KaSH dAcoBHJD/LYsyqHNbo5xk1hNuak1i2OUC0uU6u1XjYiyX84aN8oWacYDgjKuCWhOtCL9Kaxo p2REFXU6kwj79YcIRl/0gDGLhS5kmeV+7SGEwlM+tTV45miLfPhALsvTbqPdlgcVMX2BDeUP AfnEValYfGQZRt0irbFSe0Iv4oipeVhYL2ffV6WsYq0f7sVG3tTkthdF4BQQAAEQAIEiIQBf UCQdCTNAAARAoI8IwC/0EcgCLUb+RpXXgYirkvKWup1Z1klrUvqINuiCeXmt/nteiMz6W9z+ JlNXCNdrb6xnF8ilhuDiWr3wWKNSdpn5FrjxW7/UaGttuRD4xSzohqCYpBYKc7ipRhPwheYi a8+t3ZrF4Xofl3pK2Z+DyGww0idVEpVaHgroR1trDeHZqjMpR+WEPRE7xWirUaayI2b5axMf SzlzPdIo16i6iVj0M6wIMyFdl7JoVSmFWb+IWefGxESvMWM82ujTH35YdA4b5mpJEWlXhZjD jk+xEZD3hWKzKxd7HC+QqzdOQ/QUN9jygHZz10VPl/6ajPl00rzpxKRonv66jCBfp7+mpM3a NsOPpD9VbFdv/KmzxaXDsoqqOQvkQgKvFa88VYonr8qtsjVYb65+rM8gVy8Mi+BunZGe7aKJ 6u2UgyVja515bjgJ7Ym0W7zmY30okFq/cHDWg/IpqXhYUVkf4dwZi1Kl8C2ckzUMTahGm0Uu eeZqi9EP1qe9iaAeBse8DrL1jWKnUYYhhosXE4K17K2o5AZlBetYK9frr0MpTE2BXDwpj8VS /4kVsnP9pPdPruchHwiAAAiAQPERkD6h+CyDRSAAAiAAAr0hAL/QG2rFco4pYnsqvFwqxVKp g9iZaeglpniqvOEuJ6dVWQRlOQHQ/F0rtN7WgBBfXVxvzNZLr0S8ZS4nyrkqNFE81sBlZX5D PG5v0N/ct8ymbm2st4T2iGjivJgBbVTTg3antyjX75E6fSJkejQCUYCpO5SbQr9asKkPZUQx UI/L6ANCAM8IraKErFEm3LlECF1tdp4xG120oVvFQPSFFl7X7Eu1SiGGp4d8sWOu5A3pkQVy Ceeilo3/CoqAk/0DBHL9Um3QZ/UqN5o6cUdtrVFeGzGfYNoJ5Eb8aZunfsaTSuVJooiPrT39 swqgWsWyXCneKql2omo2EdY2ryijVYT9yIhDbm2nRSC3zkjXWpX5v2ynInZHRXiVaDSa+i+W eiturTVDm5SnTK/Xy85av3x6TOwWcbtzZqw86chSZqxJm0EvGedqiz1b2b7eC+QqAREvLVCp v5ok/yixCOTmE1zztTflRpX+5Dmzp7QUeVOT22z5kA4CIAACIFD8BOALir+PYSEIgAAI9IQA /EJPaBVZXjEhTa4/Vi0ioLZLgVeZoGYRuq1WyzeylfXKWiNBrpG/Y8ktZlunziGWv6HNiYER rhRlu/X11azlWvej+m929doUuoUhcuuZ5ATE8pqQ9TR9X4QbUWauiwmBcna7cqAn7bYpNIek BNdWaCFYy2zaZfymt05UVEo13kAX67kFRCekfep1baraMgtfZmnSxWkScd5DoSAHxb8aJca7 wriihoPhSJcieVifPCgWZ5VFqttEuEa/Lsy3CeyZCz1EjyKQ/Y2AlKLxpcAIONk/QCCXF6vx moi4sZRXauKy5SmqFFWt8bTkzZ9clRmvlhj5xeKQrcaTy8wY0zKfNSaVLFcKumoTs4i/mXlF zPEKLYSHq1xbZCERqlZvmDIGeVflSRzpW9lOl/H6VGqOmBDMrZ/0hUXTQ49kE7PFc1YjREuF cBbSvm4ZK5VnYSTbLnnK793ZIuuW52n2yfb1XiCPhuRTWxf71bjsmSFWZBvlzUlurU/irbzT 92V+uU0/ju8gAAIgAALOIQBf4Jy+hqUgAAIgkAsB+IVcKBVnnlZ9PSwiOatZzFaWYVNFSBNl na3UjxlHW143nrIKrq5t5PaMvGboEPkbOqjGFs8tFEejz1z8sdTfZGmGnHAoZlQrb2GnfNo1 wVa80Z4q1fes3SlF5vrFWOzUrl1iprUUoy26klJ0u1zHLu3Nd+VYo77gp9829Kpl/TwhiMv+ SN1WZjxcUMrVPubMdeVtfevHmC1utDULc0PbsgkpYy0Q+wVLQF5PBWvAQTTc2QK5uImasq54 +qcvjikvCHXFZB2uKViawqj5ygxxjRr7yewJI786a9u8Obu9qSsbG/nE6zCyLYYwa33Kannl xTrj28irh/AwyiOv8fTUDFNiiW+VRUw2LUjdM20Vr/KE0pxSu/IU2mvciGUbKvx+PRaWuHlb XoVSS85avxSgtYcJZr3dMRalZilTtsej8zTL7NqWdLYaEdk+8zrIVq+SP7MMsRK1HpetwphZ L8tMfYCSECFVUv6JWfpp5LUm2fwvr2G5tcmCJBAAARAAAYcQgC9wSEfDTBAAARDIkQD8Qo6g ii5bTI9dTZwyg9gS5jQjbIYhiLq5Npy24JYNH+PtbX9QD60ifsdnhAkxT1RCtfhq5axws31k CWObCOmxxcXkw1RZV4YiEbG05Q/lRETMqhbzz3vYbrNFue/F5EREZVKkzWlSh7FOhhSihfFA wl3VkHKWnB1e3WTOn29tCloeRCQ4WB/gmpoABwLKv1qu9moz2MlVxv5ADdc22rVEr8ail6SG 2TUXGvUHNVUqG3ND3Bf6VfdXQ4p5+FIgBJzsH5wrkKcv+iAuVmOmtfI0rtSMd6Vcx8YTNetC jEbM6zQHI/LLkC1l1UHxLcEBZQEJ9SmfGStKKdeIWSVeu5E3mEaf9oqMq6JWyaJ+QrV6zC3x GpP1ZmYIsHqcbBkPiizOIxTQ42IprxzFItyqPOo1XusRT/5kxbIyu21KXHEP1zRpN95Ye5Ar FcFXvqKjM5GOtV0u3CFsT1mo03JzTqk/Wq+t1Kw8TVXuzTkzFnmNMlNtkjG5lPAw6idHW9LZ aifH9Bnubjb1bbkoq+gbhaV47SwY0aBmlGHEMCf2ygJiIfbqonlVY4TbW1tzFsK1NmX+L29q cpuZAykgAAIgAAJOIQBf4JSehp0gAAIgkBsB+IXcOBVdLkMDUMKpmCKsYqec7axcGz7r7OVY 0Jj0VlGbKr4qi1qqb9hb9AQZVsRVWqHGtLYLPWLlGqoW2kdZwEySv9UtAnnQr4UmLfU1cJOY lV2qah8ibrmqsYiY5Ub9MbEWnBCMvUJ47kG728NN3NDQxBEpsput6XJPhnBRQsPafaQOYRXI DeE5bfZ4gz57vrpJeQQgJsbFohysUzQgT8r6aun1SD0pWxus+Q1txjI5Uzke1t8qsE7mtGdu rrXnrQurC41abbPWhf3CJeBk/+BQgVzcTNVYUcoMYjlvW7mAxUxe/fWi1FAWImyJMbvcLRZK MM+xOpLy6iZV2NQchRCN3ZXGE04lppO80JTY5t7qWg74K1LS3G4hPIsnduGAGb/bU1omVlLW QqaY54tYVeorR9IOIdCXaYtRyKeUSl63ePWpoizzXI94mqs8qXWrgr0Qao0ntl0PYusrT9a2 KPvq6snREFd6tAcBqlCsFqc8Bdafagq7jaehhphNXFol4poreUVcbr+e1xpbLGfGrXW6TZZ6 RLGNPhnru8J4stytLaIn6yr1BxXlNcbseG5vNP9AMOKFydePRD+I/lK4lqnHMvtHucbkDHIS DzsqvBVGP5hMUxcZVTH28D+zLK0/eng6soMACIAACBQRAekTisgkmAICIAACIHAQBOAXDgJe wZ6a4Ab5u1j8LverQqxpTDRYbcQmV36nVhszkc0Zz8p1U+ELcL2YxezVf/f7xQQv68eMZS1+ hxrhOqw5rPviN7c6A9rDdfrs9FhYD0dqnGu+be32KLqCm+sjHWKhSu23utImt2VNL+W7Ngs6 13abv+V7IvZGw3XGIqWKcG+vretll8rJl2FtcqFoY7U+U1tMxeSAxRY5NuXWrUcKsFIz980Z 9z5rmAEzQ8peox7b3GPMXBcz0uVEzDK/qXkoupjevyZzxUIx01yf2OcuVfgrkwbtLU+pGF8K ioC89gqq0X3UWMcJ5DHxeo5clEJ2vHW2uBZ+wyJst5pCspFf3NCs5wQDcna3JkYq+dxlPrbo 6Gp3RRqr08RQIZCW6wK2W7wSUyvjeIkVmPUbklZnGdc1ylWiXVxeWS1mKLcZYr7ZLrGgQmcr +0qlIC3a4/ZyY6jeEHXd3gC/pz6JNNuqnK/MVu/+1iacqt8U77V6ldnkytNnq/BLLMOZxISj Ndun1ak6HotArh13GWy8NU0Zl3d3jOXTWWtd5TX1XG082JD2ykUnurbFjMMmz6vg+gbrHw1a uvaGgAilUm1yURiLJUxt+keL09UqnrRbr0FvoFFwlfHWPBwwnGUGhpwTrByUfXxAAARAAASc S0D6BOcSgOUgAAIgAAJWAvALVhoO2Dcmksnftvq21K++xW7MLFZ0jpR/5RwUs7MTkQYuTxOh 3eU+DtoFIRdvTJcqZYjJguFu0bZzlVKuXrbLresYnko2o4xYhe5SVUg3Z2G7Un5Xq213iUlx er25tVu0QYZArZVndtVwa8x2Cy81tG7mecrERI/Cw+XW21qa8nvfOsExlb1StghrkxFz3VKH 0FTUstNmo1typOzGIo1cmTGB0sWVQo8wJuGrZ2Qy1woS6YZOJXQLc+p+Sj34UtgE5HVY2Fb0 rvUDlNMEgKL5DBgwQLWl382Kd9CO1nZR90AaNmI0jRw+2J5pspNaWuM0YhhRcshIGj44Ti0t nTRu3Mi0/Ena1dJCMRpCY8eNocEk8u34kIaNHSfOSctq87WzrY3iAweLdgxVjyY7O6gjOSR7 u2zKyJaU7GyjlkhUHB5Io8aNo6EDs+XsIj2+lRYOmUrPUCk1RFbTyQmiwUNios1jaKTW5MyT c2WceWbWlD6xRS9dYdwp+mv40Bw6KN5JbZ1xGjx0JGnZk9TR1kEDh4vvveGZZqEcBzK538eD rBhbEAABEACBw05A+gT4gsPeFWgACIAACOQFAfiFvOiGAmtEXOgTH1KipEToHaOEJmH/o3XX xpU0dk4j1bdvoAuGd29ip/gNPGSkyCg0hkj7PqKjh9EY5bv1I3SAlg9jNFrVRawHctnPod1C oxHNoJFZhYhc6ukqT6dg1y7YHU1jx4wUKkpffYSGsKuVojSMxo1JY9ZFFYpuEWkXeo5gPUqw tm1PNuZJ0RetMRoxdkyf6BZdNBOHDhMBJ/sHCOSH6aJzfLWGQO6hxugGmpJNFHc8qN4BkDc1 eTZEEUkCWxAAARBwHgHpE+ALnNf3sBgEQAAE7AjAL9hRQdrBEmh7fTWNOmcZiUU56crxOUwa O9gKcT4IgECfE3Cyf4BA3ueXEwrMiYAQyOeJGeQBEgJ5Qgjkto8tcyoJmWwIyJuaPARRRJLA FgRAAAScR0D6BPgC5/U9LAYBEAABOwLwC3ZUkNZzAkl6fc0ddM6j+8h3+wm0dPEKqmqI0G3T 0t+O73nJOAMEQODwEHCyf4BAfniuOQfXmqTmTRvo2dXz6b6AhsFdVkl33rKYZk+EI+2rC0Pe 1GR5EEUkCWxBAARAwHkEpE+AL3Be38NiEAABELAjAL9gRwVpPSfQQasnjaBlTdqZPiGOL4E4 3nOMOAME8oiAk/0DBPI8uhCd0ZQ4bX1hPW3ffywdO0i3eP8eov+4kOZOG+MMBP1gpbypyaog ikgS2IIACICA8whInwBf4Ly+h8UgAAIgYEcAfsGOCtJ6Q6Dl9Y306j+Ips2cReOH47Xw3jDE OSCQTwSc7B8gkOfTlYi2gEAfEZA3NVkcRBFJAlsQAAEQcB4B6RPgC5zX97AYBEAABOwISL9g dwxpIAACIAACIODE3w0QyHHdg0AREkj/o9eJN7ci7FaYBAIgAAK9IiB9AnxBr/DhJBAAARAo OgLSLxSdYTAIBEAABECgTwg48XcDBPI+uXRQCAjkF4H0P3qdeHPLrx5Ba0AABEDg8BGQPgG+ 4PD1AWoGARAAgXwiAL+QT72BthxuAhgPh7sHUH8+EXDyeIBAnk9XItoCAn1EQN7UZHEQRSQJ bEEABEDAeQSkT4AvcF7fw2IQAAEQsCMAv2BHBWlOJYDx4NSeh912BJw8HiCQp10RW1fPo6nL AkTlAUo8OJewzEQaIHwtCALypiYbC1FEksAWBEAABJxHQPoE+ALn9T0sBgEQAAE7AvALdlSQ 5lQCGA9O7XnYbUfAyeMBAnnKFZGkF24vIc8qkej2UXTTEhqachxfQKAwCMibmmwtRBFJAlsQ AAEQcB4B6RPgC5zX97AYBEAABOwIwC/YUUGaUwlgPDi152G3HQEnjwcHC+RttHLSt+jSPz5N UywqeLJjB71c9zaNPe9imjhmsN31gjQQyHsC8qYmGwpRRJLAFgRAAAScR0D6BPgC5/U9LAYB EAABOwLwC3ZUkOZUAhgPTu152G1HwMnjwbECeduWlTRq+mZqiG6iaRaB3O4CQRoIFBoBeVOT 7YYoIklgCwIgAALOIyB9AnyB8/oeFoMACICAHQH4BTsqSHMqAYwHp/Y87LYj4OTx4EiBPL7j BfrPCR7aTB4hkG/IEMjjbbvoQxpB40ZmziCPd7ZRZ5wosS9BQ8eOoaEZQcrjtKulnUaMG0PK 2R27WiiaKKHR+ne7C9AuLd4h2hBNEJUcTWPHjMwSCz1Obbs6RZ4E7RPBYMaNzFT6FVs6B4+h kUOT1NbSSolho2nMcItd8Q5q+TBKySTRsFFjRb4Mg+yah7Q8JyBvarKZEEUkCWxBAARAwHkE pE+AL3Be38NiEAABELAjAL9gRwVpTiWA8eDUnofddgScPB4cJ5C3vHAXnei5L+M6qGyI0NUl jfTcGh8tfyxArsoG2nbnNDNffAetqfgGLV212UwjF1XVrqfbZo+nZEcLvRx4jnyLl1NACO/1 wRX0h5un0gqZ3eWlUOPdNL47/VmpZ9kVtPSxJrMeVykFnltNc08dbqTt2LSGvjFzqRD5zY+r tIrW//w2Gj84SS1bXzZs8VQF6KoPVtGC+7TcNaEYXTl+MG1/4X46zbPcLEDslfsb6CeLpmUR 5FOy4kseE5A3NdlEiCKSBLYgAAIg4DwC0ifAFziv72ExCIAACNgRgF+wo4I0pxLAeHBqz8Nu OwJOHg+OE8g7xYzu1g/epJunzhfisptqGn9OZx6doCHHxemHs84kqUt7qhppw21T9OuljVbP GEXLhL7sqw/TjReMpZZNj9KEmcvU4+U1IVqy/2E6bYGyuqfl46mgqvNitGy5ll5WHaQ1155q yZC2m9xBd5VMoPuUdjU9R1dOHCwWDT1fLBqqiOUVFOZ7aZzYa9tyvwgPI4TtUh+FH72RRGvo 0YUTaFlAKa+Cgh1fowe/4jJsUVKtn8rGdpq7/TuivY9RRU0jrZh3OoV/t9oQy8sDYXpwrlIT PoVKQN7UZPshikgS2IIACICA8whInwBf4Ly+h8UgAAIgYEegIP3CgY/pr//3a6r9y27iUZPp kivn0MThR9qZRwc+/iv9369r6S+7mUZNvoSunDORsmS1PR+JziJQkONB76J/7/kb/T4QolOv /E868ahc+i1JH7fsoN37/m2fecAgGv65k+gzRx9hfxypRU+gkMfDwXaO4wRyFVi8mRYOcdEz YqZ3Y2wDTbFEHGles5BcS8URi0C+fe0SVUx2VdTRtntnGMy3irxTRV6SoVqGNNO8EpeYQa7M xG4UM7GnqDOxt66eR1OFem0t0yjEsrN1jci3NECK4P7glePVI51b76dhU5VZ3i4RDmYbTSvZ TkuGnEaPie91kW00Y6ReQOdWmjdsqlq3rEfaQkJwV2KtT+pspjf/UUKTT99HN4u8z5TWUOLp K2mgCK9CAzvpyYXDaLFijttH7ZuWkDlfXa8Dm4IhIG9qssEQRSQJbEEABEDAeQSkT4AvcF7f w2IQAAEQsCPQI78Qb6GNL26j/YNkSYNo0KD9tH+//G7ZDjqJLp49UQ01akk9+N19b9PD8920 7PeddGQyTiIQKdHwS2hV/Xpa9sWjU8rf9/bDNN+9jH7feSQl42pOkXUV1a9fRmlZU87DF+cS KLjxILpKEcZ/+9AP6QeVa2nrEdfSS+9X06xPdd+H/46spysmfJUCIlKv/eeztGTL38h3/rH2 h5Fa9AR6NB6KjYb4sVRUH9E/rPzr8hNr5FI1n4cbo6k5m3yl6vlCZNYPRNnv0cqsamhPzRyp Y5deX5VSUFSWW8pNMTNrqKY8rUzzmLkXZZ9aj4frU6qJclN9Ldc1hjkhMseafGpZ5K7ilGzi WJ3XrR/zsWJWpi1abdHGKi2f3nbJzNi6MsvWzsT/hULA6Eu9jwul3WgnCIAACIBA3xOQPqHv S0aJIAACIAAChUigJ36hvd7b9W9H62/K0mq2/AzuIzSd3PB9D1/30GscUX4Q732Xf1l2itqm QW4//z1pqaazgb/vuY4fei2i/nbe++4vuewU5bf8IHb7/87WrJazsOtwAoU1HpTOinHoN0/z c2tX8LlHiet7+LX80se5dGKSwz+fzsccfQq75y/mJTd/k7/5TfmvjC//wpGirGv4d+lCUy5F I0/REOjJeCgao3VDulGSC8/cnDqzJwJ5IsQVutP3pavpHOFKtyaee3xN4j4lBfJU4T3W5Fcd uCm623BNBLlMraeUG7v4qyIcqND+QPFoIri1pEh9pXaMRBlCIc8qkOsiu9tbx9FEjKPRaOq/ mPKXBz6FTECOA7ktZFvQdhAAARAAgYMjAF9wcPxwNgiAAAgUG4Ge+IV6r0v8xizjulBExRBt kL85yzio/2xMtNaxW/yWrahr7XtUsSD/et3bvMdacvvv+Jrh4nf42Fv4VcuBWPDXvO5tS4I4 p/1317B4M5rH3vJqahnW8rDvaAIFNR6sPfXJ2/yj03ogkH8S5EcWf5s37LTRe2Jv8fc+Tzz8 a7XcYa0D+44j0JPxUGxwIJArU60tnwxRWYjeHl0g92Y4fHN2ubdW/DGQRSCP6oJ0lwJ5rEkX yIkzhXjmRDTCkWjCEL3FKqKc/ueHrIdcXvVYhi26nTKfq7xWfbJuMV/djQnBHJ/CJiBvanJb 2Nag9SAAAiAAAgdDAL7gYOjhXBAAARAoPgK5+4Uwl4vfwjVhU1Az3louD5i/JcVkr1Jypb0J LbglP+ItD5Tyl0//Ak+afgXf9tPneds/zbIk2ejrv+D1Oz6RX7vfxrfxCiHmDZ1bwx8c6Dp7 fNsK/jwN5bk1H3A3WbsuCEeLlkDBjofEu/xTVw8E8kQH/z0St+3H2F++yxNoBF+7EfK4LSAH JeY+HooPCgTyNC04U1QWoU/0WeJk/SNAvRZkWBQhajeJgroTyH0ybIvdhWSWRWU15h8batYY +0UbvCLEizU8ivUPFSWbFL5Jn12eaYtWr1mGi2tCaX+gtCthY7wZ4Vu0M/F/oRCQNzW5LZR2 o50gAAIgAAJ9TwC+oO+ZokQQAAEQKGQCufuFVvZXBdTwnZq9YePt6gplgpjxaeXqqpq035AH +MPnF/H0BT/h9X94hV98YiV/fdYEPmbQZ/nchV5+9vXdrEh1yY/q+d7SO3hzTiEitAqTrU/x 7JMv4Ye324t9RrNEUJXWp2bzyZc8zN1mje3kV5/+Pl/vPp+X1n3M8fCL7L1mOn/xlDN4+uLV 3NAu5PXkP7nh0SV80aQJPGHypbz8+TCnyPoHPuZt/nKe53bzzFluvnDW5bzg6qv4+691mk3C Xt4RKNjxIKId/E9PBPKs5GO89a7xTMeV8u+71MdjvPPVp/n717v5/KV1/HE8zC96r+HpXzyF z5i+mFcLveqAGHP/bHiUl1w0iSdMmMyXLn+ew6mDhD/e5ufyeW52z5zF7gtn8eULruarvv8a Y5Rk7aB+PZD7eOjXZvVLZc4UyEWscG1WuJsblHAmkSAHI1pcE0NUVkKm6B+ZJlav5JS/A9rr 1VfJlFfO1NfLDIE8NUxKLKiFWFFCmnT1qZcxxMVT+jJ/gy6SR7lejYuu12HEOScWi4amFNdQ qcUgL6sOqumy3Wr4F2tOo91KeBgP1zRpf9zE2oNayJi0cq2nYr8wCMibmtwWRqvRShAAARAA gUNBAL7gUFBFmSAAAiBQuAR66xcSoRo9pKeb67SIK11A6OC6u+/hP6ZMSDvAe0K/54eX/Ref 8WnxW3TQMXz0cV/iZYHWtAliXRS7dzs/seA8XrxuV7cxxfduf4IXnLeY1+3qLvr4Jxze+Bjf ed4QYd8QnvXTn/DCmZfxoltu4vlnHqPaPPr6X3HNt6bz2ZfewLfedAVPHCzaX/JlfsSYcJbk nWs9PPqkJfzbD5RJaAe4o+E+Pn/YaL6uLgVCF8bh0OEgULDjoa8E8thWrhhPfNzCl7ir51Sf hDfyY3eex0OEXjVk1k/5Jwtn8mWLbuGb5p/JxyhRF0Zfz7+q+RZPP/tSvuHWm/iKiYPF2Cnh Lz8SMsZ3cuda9ow+iZf89gM17UBHA993/jAefZ0I/3s4Oh91ZhDo7XjIKKgAE5wpkLP55NtV WqaK3GWBsOi+GAcqlBhrQnwuqzafgIu4Z8qrZeqF4qrgxnbh8GJh9pVqaZX12l8HMvYaidfL qpvMlQ0afWXGuZa30zIvlxThWpTtchmLgHr8TUZ+uein0p7y6ib1xhKul4t3VorI6MonxrVS cHd7OZQW17xRX4xUXvzWbaDLRhrNwE4eE7D2p7KPDwiAAAiAgHMJSJ/gXAKwHARAAARAwEqg t34h6C/Vfte6q8zfytaCU/YP8N72PV2I2J9wx+4PxJpYKSdl/ZLs2Ma//uktfPGJYiFB9bf5 ybzgyXfVWeipJyW5Y9uv+ae3XMwnHqn/hj95AT/5bvezzd976Ey17PFL13NYz35g97N8yRBR TskkvnW9nDGe5Pd/No0H0JF8/lO79dAtH3HNzBKmKQ/xe4YeH+fmH1/GN0EgT+2iPPtWiONB RdhHAnnsz9/hk+l4vu7lruRxrdOS7z3EZyrjb/xSXm8OEn72EuXhUglPulWMHX3GePL9n/G0 AcRHnv8U79bjG31UM5NLaAo/ZA4Sjjf/mC+7CQJ5vgyL3o6HfGn/wbSj6JSzXDuzqbpcd6zE bq/y2piIJ64L3rIM0he7VAFHxexqj+5gVYes7Lu5qjakHpazxM1zhXhdU8/V5ZrgbqaXcVOa WG3twFioVsRvS62n3F+fsRp4MCAXRzHzust8HFIeu1nimZv1urg2RfhOcIN4/cs8rpSjzCY3 hX1ru7BfWARS+7XohnlhdQZaCwIgAAKHmYD0CYe5GageBEAABEAgTwj0zi+0s0//PZzxhnJ/ 2BX/iHe8Vc/rVt3KF52g/wY+8ix+IJgSv0FtSfyjHfxW/TpedetFfIL+2/rIsx5gm6yWlh/g 1sfPEr+Jh/ClActvYmV27cmivs8u4S2WGBDRlxfycaLsMyq362FWolx33XHi/KF8/vJf8zt7 NEUwsfsNfm1nZhstFWP3MBMoyPGgMOsTgXwv/3n5SUwjr2cRWajbz4HWx/kscd0PuTRgeUgm QrRUnCyu/c/yktRBwguPE2PnjErerg+BaN116rgZev5y/vU7e7SHS4nd/MZrO1PDFXXbEmQ4 VAR6Nx4OVWv6t9yiU8560pmJaDu3R7tQq236or01xKFQiMPhSIZobZO9l0kxbg23ciQi/nX1 SD3WrrYlFApzpL1ndsiGKYt/KvYoZXRVlcyPbWEQkONAbguj1WglCIAACIDAoSAAX3AoqKJM EAABEChcAr3yC5a3nf3BHH97Jnbyb+6aw18YfTyPPf1CXvDdX/Dm9/fqM65Nfh1bHuJfvpu7 iHyg/RX+9imaSH7Gj4NmQRl7B7j9lW/zKapIfgb/uEuF/ADveuLsTIE83sw/UOpKE8g7X/k6 jxblnnrP28Ys9sTO5/lm1yBRhsj/qTP5Gu96DnbqU2cz2oaEfCFQsOOhLwTyvW/ynScRj1yc 2wzuA7ue4LMzBHLxpsQPTskUyDtf4a+PFmPh1Hv4bfkCh7gnPH+ziwepY/JTfOY1Xl4f7My4 J+TLteHEdvRqPBQJKEcL5EXShzADBDIIyJua3GZkQAIIgAAIgIBjCMAXOKarYSgIgAAI5ESg N34hUufVhF8qZyPsdpe1iZjc1dfwzFue5D/+NchvvOjjimvO5s8MOpZPmXMbr/7tX7kjKcKw 7Hiel191F79qmZ3dZbHqwQO8+9mLebAQ2U647bWusx/Yzc9erMRCPoFve21PF3kPXiBXC4/v 5E2rbuRzjtcEfPrc1fz4O1Id7KJ6HDpsBAp2PPSBQL73zTv4RBrFN2zOLQL4QQvk2iDhnZtW 8Y3nHK/fUz7HVz/+jvGg6bBdCKhYJdCb8VAs6CCQF0tPwg4QsBCQNzW5tRzCLgiAAAiAgMMI wBc4rMNhLgiAAAh0Q6DnfiHBtTJ0aHnAWHCv62o6+OW7f8JvpGnSicif+dkfLuTzT9IWvxw0 9iL+4R8iXcQqt68l9pfv8nghkE99+D37DEZqjP/y3fFCiJvKD1viHhuHjZ0+Esj18g50vs1P 33iKiFNOPMj9OLcYccmNCrGTJwQKdjwctEC+l9/49jixuOaNnKM+zn0jkBuDhN9++kY+RcQp p0FufhyDJC9GRM/HQ140u08aMUApRQAoms+AAcIFiU+RmVU0/QND+oeAHAeyNowHSQJbEAAB EHAeAekT4Auc1/ewGARAAATsCPTYLyR30O0lE2iVKKyirpXunTHGrtiMtAP7D9CRg47MSJcJ B/bvpwGDBtERMqEH239uuILGX72bVr79Ct06QQRsyPr5J224YjxdvXslvf3KrZQ9679pt/9c GnNDM10aaKUX5w7XSvzk/9EPXRPpB51LaMvffHT+sVrynvpv0ISv/IKG3/M2vfXd0+koitCG /15LJ/+onFxiarv62VNPZZ//Cv38iKW05Z2fGefqR7HJEwIFOx6SIXpw6ufpW/+4ll56v5pm faqHQPe9Qd8+fRpVX/QKvfvz6aRf2l0W8u/dfjp3zA3UfGmAWl+cS9oo+YT+3w9dNPEHnbRk y9/IZw4S+saEr9Avht9Db7/1XTr9KKLIhv+mtSf/iMrNQUL1ZZ+nr/z8CFq65R36mTy3y1bg 4KEk0OPxcCgb089lQyDvZ+CoDgT6g4C8qcm6IIpIEtiCAAiAgPMISJ8AX+C8vofFIAACIGBH oKd+obN5DQ1zLRVFeai+fQNdoGvHdmX3ddq/975PW14O0lGTv0JnjztGFdM/CdfQLRcvpbcX 1dFLd02mY9RK/017399CLwePoslfOZvGHaPI7p9QuOYWunjp27So7iW6a7KW076NByj8yNl0 0i3NNGvdB/TSV0do2eLbaIVrMq381w20OfQ4XThUS+78ww003u2nT33vL9S8cjINpg/p6eln 0bobXqGaRSeRKtnvbaBlp55Lv/jiWgr99mv02d48CbBvLFL7kEAhjYcUs/f/lX406Qz6Xuvl 9OLf19Oln045Kr7EqeXVLRSZ4KazRg9MP0j73vhvOm3aWrrklXfpsem5yONEB8KP0Nkn3ULN s9bRBy99lbRREqdtK1w0eeW/6IbNIXrcHCR0w3g3+T/1PfpL80qaLB4cffj0dDpr3Q30Ss0i OkkbJNSw7FQ69xdfpLWh39LXMEgy+qm/E3o6Hvq7fYe0PvFjqag+ApYax6iojIIxINBDAnIc yG0PT0d2EAABEACBIiIAX1BEnQlTQAAEQKAPCPTELyRiYfZ59Hja5OG6SKIPWpB7ER+/VMrH qb/xj+BRp5/D089z8UknnsWLHnmDO1LWv/yYXyo9TotpfMQoPv2c6Xye6yQ+8axF/MgbHd0s Ahjn9154gBefdqR6/rEXfIvXbNrJ8Y+b+Vc/uorHqfWP4stWPM2vR+Icee1/+btzRmp1/ccV 7H2umaMHPuCnzlE4HcuTr7qD71v1AH/n8tP4hGm38LqW3BcgzZ0McvYVgUIaD9LmPe8E+Gff v5onqNfmUJ5+20/5mT9+IA9r23+u50uOUhbg3MSZEcb3csPtnxOLz5ZxfY7x/+PvvcAPLD6N xTshTMdewN9as4l3xj/m5l/9iK8ap90jRl22gp9+PcLxyGv8v9+dwyPV9v0HX+F9jpujB/iD p87Rxtjkq/iO+1bxA9+5nE87YRrfsq6FMUpSu+9wfevJeDhcbTxU9WIGueh9fECg2AjIp37S LnEDkbvYggAI6ASSnR0UGzKchmZOqAAjECgqAtInwBcUVbfCmD4kAH/QhzBRVEEQyNUvbLlr AE2/z8akUj9Fn15E+mRqmwx9mbSf2pq30JamVurkITTy5El07tmn0HC7v9/2t1Hzli3U1NpJ PGQknTzpXDr7lOFkl7UvW6iV9Qn948/v0aATjqBw81/pvUiSPj3hS3TBWSfRsZg53ve4+7DE whoPPTF8H73/ymba/fmL6Lwx6WGI9tLffrue3hz8FZo/83PaGw89KbqXeT/5x5/pvUEn0BHh ZvrrexFKfnoCfemCs+gkDJJeEu3703IdD31f8+EvEQL54e8DtAAE+pyAvKnJgiGKSBLYFi6B Ttq68f/ovf2DtD/g9hOdcN7FNGWMDPJoWrZr60b6w/Y9dOyx2h+C+/eI/VMvpNlTrPEyO+j+ ASNoo6+JNi2ZaJ5s2Wt5YSWtap9HDy6yP27Jil0QyGsC0ifAF+R1N6FxOROAP8gZFTKCQBYC 8AtZwCDZkQQwHhzZ7TA6CwEnjwcI5FkuCiSDQCETkDc1aQNEEUkC28IlEKfmjb+kJ+5fTKs2 SyvKqCm2hiamaeRtzZvot7W/ocXLlaWkiMoqa+j2b8yjUy1TjZK7XqCSsR6qCcfoynFpBahn 7aKVk8bSiqZyCvGDNF5Nw38gUJgEpE+ALyjM/kOr0wnAH6QTwXcQ6CkB+IWeEkP+YiaA8VDM vQvbekrAyeMBAnlPrxbkB4ECICBvarKpEEUkCWwLn0CStqxeTNOXPaOZ4vFR+4Yl+grqVuvi 9OSMIbTYXU989wXWA+r+9ifn0WmLp1KE7yYRGy/j07l1NQ2bukxN99ZH6O4L7HJlnIYEEMhL AtInwBfkZfegUb0mAH/Qa3Q40fEE4BccfwkAgIUAxoMFBnYdT8DJ4wECueMvfwAoRgLypiZt gygiSWBbDATi25+kIactNkxxe+to090zjO/aTietmTGMnpvXSJtum5J2rE2EVxnVRXiVOK1d OIQW6Bo8eUSczQ39FWczran4CgJ9QED6BPiCPoCJIvKKAPxBXnUHGlNABOAXCqiz0NRDTgDj 4ZAjRgUFRMDJ4wECeQFdqGgqCORKQN7UZH6IIpIEtsVAoLP5SRrmMgVyxabymhA9eKU1EEp2 gTzZIsKrnKiEV0mI8CqZyzYp4VemivArTRZY2fJasmAXBPKWgPQJ8AV520VoWC8JwB/0EhxO czwB6RccDwIAQAAEQAAEbAk48XcDBHLbSwGJIFDYBNL/6HXiza2wexCt74pAZ/MaIZD/kRpC ZfTwhOkkJ3r7m6K0aOJQ/dTsAnmzCK/iWnyeCK9yp214ldfvn0HnLJ9EwchC+tGoqWr5bm+9 mKWeGaqlq3biGAjkCwHpE+AL8qVH0I6+IgB/0FckUY7TCEi/4DS7YS8IgAAIgEBuBJz4uwEC eW7XBnKBQEERSP+j14k3t4LqMDS2RwQ0QeQ5akxsotODItyKMZvcQw3tG2jacKW4bAK5Fl7l T/4m2rBoYma98WZaOMRFrVVaaJZNd82gmfcpq4KWUmPsaZpit55nZilIAYG8IiB9AnxBXnUL GtMHBOAP+gAiinAkAfgFR3Y7jAYBEACBbgk42T9AIO/28kAGECg8AvKmJlsOUUSSwLYYCBiC SHQTTRETxnesu50mzF+lmebyUnjb3TQui0CebFknwqvMp0BrguaOyQyv0iLKOnH+JqqLbKMZ Yl3O5A6Rf8J8tezMMC7FQBM2OIGA9AnwBU7obWfZCH/grP6GtX1HAH6h71iiJBAAARAoJgJO 9g8QyIvpSoYtIKATkDc1CQSiiCSBbTEQSBdEhIxNm1ZeTDNXKDO9xac8QPzgf9KTM0roqbRF OpvXiPAqj55H7dvuJHWiuXaG/v8uWjlgLK0oq6HYmitJmyzeQatnjKBlStGuSoqI84Rujg8I FBQB6RPgCwqq29DYHAjAH+QACVlAwIYA/IINFCSBAAiAAAiQk/0DBHIMABAoQgLypiZNgygi SWBbDAQyBRHFqjZaPW8ULQtoFpZX19Gk2pn01FlaqBQtVRPAG/1BEV7lVC3J8n/nVhHbfOpS S0rmrk/EOV9ixDnPPI4UEMhHAtInwBfkY++gTQdDAP7gYOjhXCcTgF9wcu/DdhAAARDITsDJ /gECefbrAkdAoGAJyJuaNACiiCSBbTEQsBdEhGUifvgSET/8MYuRHp+INb5EizWe3LFWhEtZ QLUivMrsjPAqcVq3cAjNb/JSw/pr6eh9+/RSSqiEwvQj1xxtMVAxuzwhZpdnBmexVIpdEMgz AtInwBfkWcegOQdNAP7goBGiAIcSgF9waMfDbBAAARDohoCT/QME8m4uDhwGgUIkIG9qsu0Q RSQJbIuBQFZBRBiXbHmBpp7ooSbdUI+vUQjkU9RvW1fPoKmPzxPhVW7LDK+yayMNGDuHymtb 6cHZYzIwbV09j6aq09PdIj75JjU+eUYmJIBAnhKQPgG+IE87CM3qNQH4g16jw4kOJwC/4PAL AOaDAAiAQBYCTvYPEMizXBRIBoFCJiBvatIGiCKSBLbFQCC+fQ0NOa2WGmMbaIoWKDzFrLZN 99OomcvVNE+VEMhvUwTyXXSXiC/+j+ogPX1tZniVLSsn0fQVMyiUeJDG200PbxOi+KiZpIQi d1c10KbbpqXUiS8gkM8EpE+AL8jnXkLbekMA/qA31HAOCJCjY8yi/0EABEAABLITcPLvBgjk 2a8LHAGBgiUgb2rSAIgikgS2xUBg+7rb6bT5q8jXEKEl0+yXzNy6ZiFNXfoMSYE8LsKrDFHC q0SYZqedsuv1NTT2HBF73OWlcOPdNM5OIO9sptuHuWiVCtBF/oZaWjQtc6Z5MfCFDcVHQPoE +ILi61unWwR/4PQrAPb3lgD8Qm/J4TwQAAEQKG4CTvYPEMiL+9qGdQ4lIG9q0nyIIpIEtgVN oGMrLRkxNSXGOLkqKNR4r82sbz2m+CkNxHdPo+Y1k8i19EaK8m001AKh5YXb6USPJnvL5PSF OJMi/MpUEX5Fhm2R+Ur9TfT0Ii2+uUzDFgTykYD0CfAF+dg7aFOvCMAf9AobTgIBSQB+QZLA FgScTSAej9PgwTav5Dobi6Otd7J/gEDu6EsfxhcrAXlTk/ZBFJEksC1sAklKiuUx7SZ429qV 7KS2zhIaOVz80Rdvo5bOoTRuJP4AtGWFxKImIH0CfEFRd7PDjIM/cFiHw9w+JgC/0MdAC6y4 tuaN9FLzHjr22EFGy/fsGUQXXjWbxgzspNc3bqYP9xuHSD12hTiGP6NNKNY98ZtjR/At2rK5 lure/yKtfvDazPWORP7kro2BDc8AAEAASURBVGb63Z/eJzKxi/0T6OLZU8iKtmP7Jvr5mudo x0dER0/8Ct1y07U03jrDx1q3ZT/Z0UKNr79Jr/xfgD4+606691r7iTwtG++nZb4/UfT9AG1u clFtayPNHpPzLyxLjdgtRgJO9g8QyIvxioZNjicgb2oSBEQRSQJbEAABEHAeAekT4Auc1/ew GARAAATsCMAv2FFxTlpb8yZa/6yflt73jG60i7z+SlpaOptGDuygJ+eNoMUBycNNXt+ddMuS 2bair8zVP9sOWnv7V2nBqmEUCP2S5o63ysr904L0Wjqbn6RhrsVmssdP0Q2LUt5Y1Q4m6YUl JeR5zMyq7pXXUuLB2cYEoLYtYi2l6dpaSkZOEQayddvdlDW4Y7yF1v7ke7RghdafZZXVtOSr F9GU8WlxJfUCk5276OWf3UxzliudLN7GTdi9jStrzz/msmXYHhoCTvYPEMgPzTWFUkHgsBKQ NzXZCIgikgS2IAACIOA8AtInwBc4r+9hMQiAAAjYEYBfsKPisLT4Vpo3ZCopEmlVQzvdNm24 BiDZQmsWn0hiKR/yBpqoYu5EQ7w97IQ6X6cZw86hzaIhlaLNd8o2H86GJZU3mlrpjpIT1bWK ympCtObK8ZktattIk0bNoeNKy+jzR2uH9+3bR3NuX03XTpHsm2leiYum1obo7tnjadcWsU7S 9KVq5upQjK61eSDQsX0dLT5tvtqPVFpFwdU306nDB2bWn5bStmkljZq5QkSrrKVt985OO2r5 2iXzJO3YGqQRromUQ5WWQrGbzwSc7B8gkOfzlYm2gUAvCcibmjwdoogkgS0IgAAIOI+A9Anw Bc7re1gMAiAAAnYE4BfsqDgrTQqkROViBvGD6no+nTs20s0T5tAzVEp14Udpxrgc4nr0K7Yk bV33KD299Si64Y4baWLeqLIttHLSibRChCsJhBtp7rhMgfr1+yfROdU3UmzbbSnhVFLxiVAt Ozpp/Hh9rnhyOy0sOU30B1GNEMivTBPId21ZLQT0ZWoRbm8t/e7u2V2Uba1JrNW0ZAjNF7PZ vfURuvsC+5nm2hnZmXc2rxGz5x+lhug2mpZvl4rVXOz3iICT/QME8h5dKsgMAoVBQN7UZGsh ikgS2IIACICA8whInwBf4Ly+h8UgAAIgYEcAfsGOipPSkrTx9qk0Z1WTmEFcJ2YQz6DmdSvJ NX8FUZmfWh9ZJGKRO4nHwdka37GWhkxYQJQtFEq8mRYOcalCt8tTTitX3EFzp2QNmGI0pmPr GhoxVZlBLh5isHiIYRwR8cxbXqCSEz1qilvMAt/U1Sxwy3nqrmjPEtGex8hDDbENNK0XkWri LRvpmhPnUKCshnjNlek14HsBE3Cyf4BAXsAXLpoOAtkIyJuaPA5RRJLAFgRAAAScR0D6BPgC 5/U9LAYBEAABOwLwC3ZUHJSW3EG3l0xQQ4JU1jbQqW9WkGfFZqqobhQLO07pGkRnC72w9il6 4tF1IqzHceQ5x03/fdcdNLmkld5q+gu9Vh+gP9F8+uW9c/XZzHHauPIamrP5JGp47ic0bWQ2 5V0sDrp2FVVUrhAhVETc89u/Tp96rZbG3PlzunLUh7Tl1W20o2U7bftjM516y//Qkmli1nNy F6199Bn6yDpv+qij6Cj6hP71r2H01dsWkTHpOku7LxhnqsPbxUOCq+evowW1L9Cds8d1zcFy dPuTC+m0xc+Qu7KeNt15geWItrtj3RKaoEzXtnzKAyF6cK5V8rYcpE4xU/5ntHj+cmoSInYg 9LSIt26dot1Gq2eMomVKrBnlU1pOFccPoXHuK+n6uakLfmoZUv/XZn4vJZcIyfLw4uPpmdW/ oHejRGPPuY7uWbGIVCSCly3zju305MM/osV6vHMS7fNWXkXX3iYWEjVRplaIbwVFwNH+QfxY KqqPuPJY+YcPCDiZgBwHcutkFrAdBEAABJxOAL7A6VcA7AcBEACBVALwC6k8nPYtFvSrmom8 DpRtIBTtFkO4rko/r4wDjSFurKnQvpc+zk+WudmlazFCNOVGo7h2rnJpGo2IG561jlB1qVpW eXUDh4N1XKaW5eLa1gTHQrVcUeYx2ixipqvlRJt8RprVFnW/vIZlE7K3u5pjRovMdpLHb5xr HM66084+j2afbFd61kQixpHWENdWey2MSi2MtDMijQGurChnt8GRuF4aYSm0tc5rsbuUq6oq jHJd5QGLTZaTLLsNlSZLhVVZeZlxPpVWq7ZnYx4L14s2lun1u7i8soqrfHU94GVpCHbzkoAc S3nZuEPcqKJTkp3cmYf4WkHxBURAjgO5LaCmo6kgAAIgAAJ9TAC+oI+BojgQAAEQKHAC8AsF 3oEH2fwmnyZGy+tAxFXhJlMpti09Ul+piaKlPo7oOaINumBeXssJNU2IzG5NLPY3mcpuuN6v CrDZBfIo+1WRWQjieuGxRqXsMg5pBTMnmlgEFBFppUZba8vF99IqbgiGOBQKc7ipRmtjmSmO 59ZuzaBwvY9LPaXsb5AW2qJITWyv1wXtTME7NaP2LdpUbYjRVY2pDwzaQw1c7fOmCORU6ue0 XIYgbxXyo43mwwJ/sKvObOVK/YGFiEDOYT2reb6HG2TX2TBXrYjU6jZUcKudkUgraALyvlDQ RvSy8RDIewkOp4FAPhOQNzW5zee2om0gAAIgAAKHlgB8waHli9JBAARAoNAIwC8UWo/1ZXtN EdtT4eVSKZaKmcdSi86oLdqgi9OmeBoL1+ppxFUWQVnOTraKv4nWgBCuXVyfqvRaqolxoEwT 1kVQdE0UjzVwWZk5k7u9QRfohfgt5d/WxnoOyS9CtlfFeTED2qimB+22NKZHuxE5m1vUazSl yxISXKPbamWUekor+0p1HuRO5RapMwR0scCm5bRW9up9mb1ckV30hTbT3+xLtRAhhpeqDyDM dDvmSt5QtTaD3OWtU0/Ff8VFwMn+AQJ5cV3LsAYEVALypia3wAICIAACIOBcAvAFzu17WA4C IAACdgTgF+yoOCRNCKwyFEp1mLldCrxCHK20CN1WGo1VekgOIU63RoJcUylDbLjFbOvUOcRy droZbiTClaJst6/RWmTGfrTJEvbF4zNFbj1nndetzg4vrwllnMtCHPcpM9fd5ux2JVNP2m1T aA5JCa6tcKntKrNtl30RTX5tBr/JyCafMTNd6RdD8ueoOrNeEc/TZ/2bM8O7EsjDNeVqe8Xi rCmVJsI1+nVhlmvPXMz218V7a7tSCsOXgibgZP8AgbygL100HgTsCcibmtza50IqCIAACICA EwjAFzihl2EjCIAACOROAH4hd1bFlrO1Vo8bTuV6+JIoVxuzlcs4mDGN3JyZLK8bT1kFV9c2 cntGXuagPrvYU6UJ4kE1tnhuoTgaLaFfSv1NFvRhrlBnN7s4IGKSp37aNcHWVZUW7qNn7U4t M8dviRCXZ21X9jK0hwgurrNOAE/PHgsacdgDYdNmGXfdZYS10U8Us+Vl7PLsAnnM6OvKlNnn 4kGJnKFvvEmQhbkxKz+3kDLpZuF7/hOQ4zz/W9r3LYRA3vdMUSIIHHYC8qYmt4e9QWgACIAA CIDAYSMAX3DY0KNiEAABEMhLAvALedkt/dComBHeI2UGsSVsR0bYDEMQdXOtDFjdRUtj+kxw jz/IWmgV4hozDkrGmUqoFl+tnBVuto/cVcYs8kRIjy3u8hrxz7WChLivhisRsbSlhpyIcDAk Zlz3sN0ZDcshIRaqVmdjk2hX6jz6rk4WM+qVUCjCvq70cY7JkCdmzHWlVCmQe3zWBwhiDr3x JkBq/pSWxBozwqhox82FRv1BLQB5NubtRiz6XEPKpLQAXwqAgJP9AwTyArhA0UQQ6CkBeVOT 256ej/wgAAIgAALFQwC+oHj6EpaAAAiAQF8QgF/oC4oFWIYhuqaG7VAsCemhN5Rrw2ddPNKY yUxcUZsqAyuLWhJ5uNESfFsu9ugqrVDF2O5Cj4SqRfiWsoAJU4YWsQjkQb8W0qXU18BNop2l qjgs4pYri3SSiFlu1B/jOq8IeeJtYO5Bu9vDTdzQ0MQRKbKbrelyT4ZwcVeK+mw+kWA919Y1 pJTbpNtSbVlIU6m/sTHEUUv9cnFRT1Vq2VKU96SErDFny6cL59ZmtctFVUW8dLkOp3I8rL9V 4PbWG9ntmbPgq4W68daF1bcFuqrPKAw7BUXAyf4BAnlBXapoLAjkRkDe1OQ2t7OQCwRAAARA oBgJwBcUY6/CJhAAARDoPQH4hd6zK9wzE9zgk7HDXexvSp2/HA1WG7HJSSwMWd0oxXAzLIdy 3VT4AlxfH2CvRxGnif2NqeWYsazFcSNcRzZqCU3QFiJ7nT47PRbWF5E0zhUxr/W63B4l3rdY tDLSwbVePS66aINbLjQq9tU2qbOgc223DCVC3BOxNxquMxYpVYR7i7atGZuQIVKUNpVxTX09 V1fo4rIxY15kFQ8tPHq7lYcNvlrxEKDer/VFqd+YRW8SFLO9lXjr4sGAprHHBAutXBL5U3vD PEvZa6zU8pmie4KDtXLxU2tddswVC2Xdgnmpwt8twsRkWJ5aKb4VHAEn+wcI5AV3uaLBINA9 AXlTk9vuz0AOEAABEACBYiUAX1CsPQu7QAAEQKB3BOAXesetYM9qrTPiU8u+V7elflYmXxsz iw2hVhOaScQpV0TYRKSBy9NEaHe5j4N2QciFMFyqlOOu5HC3wNq5SilXL9vl1ha8JE8lNxnr UlqF7lJVSDfCf5DLIurrbXZVGPXm1m7RBlVwVmbId99iEeTEiOOdwlIsLGqdla3kqynX7ZFc 3eVcFzQM0+mIGOplaflE/gp/fVp5FpjtTVyR1h9lVbXZ8+unxiKNXFmmi+myTYJhZaBRvQ7M GjKZa8dEuv6wQhHzA+bUffNU7BU8AXldF7whvTBggHKOAFA0nwEDBqi2FJlZRdM/MKR/CMhx IGvDeJAksAUBEAAB5xGQPgG+wHl9D4tBAARAwI4A/IIdFaR1TSBOu1o+pERJCQ0bMYqGDx5o m33XxpU0dk4j1bdvoAuG22ZJSexs66AhI0XGzjaKtO8jOnoYjVG+Wz/xDmr5MEajx42hwdb0 nPZzaHeyk0QzaOTIoTmV2JNMHW27KKqaNYJGDs/e+s62Nurcp9k/SthvT9dac5zaRH/sI9Ef o7P3h/UMuZ/s7BCsoyrrrHVlY54UfdEaoxFjx9DQ7hspq8S2gAg42T9AIC+gCxVNBYFcCcib mswPUUSSwBYEQAAEnEdA+gT4Auf1PSwGARAAATsC8At2VJB2sATaXl9No85ZRmJRTrpyfHYx +GDrwfkgAAKHjoCT/QME8kN3XaFkEDhsBORNTTYAoogkgS0IgAAIOI+A9AnwBc7re1gMAiAA AnYE4BfsqCCt5wSS9PqaO+icR/eR7/YTaOniFVTVEKHbpo3seVE4AwRAIC8IONk/QCDPi0sQ jQCBviUgb2qyVIgikgS2IAACIOA8AtInwBc4r+9hMQiAAAjYEYBfsKOCtJ4T6KDVk0bQsibt TJ8Qx5dAHO85RpwBAnlEwMn+AQJ5Hl2IaAoI9BUBeVOT5UEUkSSwBQEQAAHnEZA+Ab7AeX0P i0EABEDAjgD8gh0VpPWGQMvrG+nVfxBNmzmLxg9HUOreMMQ5IJBPBJzsHyCQ59OViLaAQB8R kDc1WRxEEUkCWxAAARBwHgHpE+ALnNf3sBgEQAAE7AhIv2B3DGkgAAIgAAIg4MTfDRDIcd2D QBESSP+j14k3tyLsVpgEAiAAAr0iIH0CfEGv8OEkEAABECg6AtIvFJ1hMAgEQAAEQKBPCDjx dwME8j65dFAICOQXgfQ/ep14c8uvHkFrQAAEQODwEZA+Ab7g8PUBagYBEACBfCIAv5BPvYG2 HG4CGA+HuwdQfz4RcPJ4gECeT1ci2gICfURA3tRkcRBFJAlsQQAEQMB5BKRPgC9wXt/DYhAA ARCwIwC/YEcFaU4lgPHg1J6H3XYEnDweIJDbXRFIA4ECJyBvatIMiCKSBLYgAAIg4DwC0ifA Fziv72ExCIAACNgRgF+wo4I0pxLAeHBqz8NuOwJOHg8QyO2uCKSBQIETkDc1aQZEEUkCWxAA ARBwHgHpE+ALnNf3sBgEQAAE7AjAL9hRQZpTCWA8OLXnYbcdASePBwjkdlcE0kCgwAnIm5o0 A6KIJIEtCIAACDiPgPQJ8AXO63tYDAIgAAJ2BOAX7KggzakEMB6c2vOw246Ak8cDBHK7KwJp IFDgBORNTZoBUUSSwBYEQAAEnEdA+gT4Auf1PSwGARAAATsC8At2VJDmVAIYD07tedhtR8DJ 4wECud0VgTQQKHAC8qYmzYAoIklgCwIgAALOIyB9AnyB8/oeFoMACICAHQH4BTsqSHMqAYwH p/Y87LYj4OTxAIHc7opAGggUOAF5U5NmQBSRJLAFARAAAecRkD4BvsB5fQ+LQQAEQMCOAPyC HRWkOZUAxoNTex522xFw8niAQG53RSANBAqcgLypSTMgikgS2IIACICA8whInwBf4Ly+h8Ug AAIgYEeg0PxC8uMW2rF7H/3bzhgaQIOGf47Gf+Zom6P/ps63nqKHNx9H137zv2jcIJssSHI8 gUIbD0qHfbKrgX6z4RXa3lFCY868mC6/5Is0/MgedGW8lV77TYC2vNNBR4w6g9zzLqOpowb2 oABkLVYChTge+qovIJD3FUmUAwJ5REDe1GSTIIpIEtiCAAiAgPMISJ8AX+C8vofFIAACIGBH oEd+Id5CG1/cRvsNcXkQDRq0n/bvtyl50El08eyJNNjmUK+T/h2h9VdMoK8GOrMW8dklW2iX 7/zM452v0R1Tz6MHPl5Mm3c8QRcOzcyCFBAoqPFA++n9tUvokoVP0ruWJ0bHnPVtqnnhxzTn M92r5PvDa6ns4puo/ov/TT9YNJn4jUdo+UMR+tqztfTAf36Gui8B10wxE+jReCgyEBDIi6xD YQ4IKATkTU3SgCgiSWALAiAAAs4jIH0CfIHz+h4WgwAIgIAdgZ74hY4tK2nE9BV2xWSmlVZT 7Olr+1QgP9DyC5pxxjL64OxL6cunjKSjBw4w6k3sepkefz5C83+3g56dM9xI13b20p9/4KaL f/gmdYyEQJ4GB18tBAppPOz/22qaee4DNHjht+nGiz5PA/++idb84AF6OUJ0zCVP0NsvLqZx XU0EP/B38l/yBbrh73fQX5q8NFl5mvXvD+lX/3UyXd0wj373bjXNGWGBg13HEejJeCg2OBDI i61HYQ8ICALypiZhQBSRJLAFARAAAecRkD4BvsB5fQ+LQQAEQMCOQE/8wpaVk2j6inOoLnQP zRg/kjpfv5+GnbNcFFtGwcQaOlWIccldm+jisTPpnLpWunfGGLsqe5m2n7Y/upQeH7uS7vOM pVTdL07b7nbR5Ee+RLXvraXZn06tIt5USVf+cB+Nf9tLq9shkKfSwTcrgcIZD59Q033z6dHT HqNH5pkzvZNhP8113UC1nZPpf959k26fkDpSrLbSP9fRRZ+dT6+c/yvavWk+HacejNNb35tI Z/5oP93eEKT/mWYXriilFHwpYgI9GQ/FhgECebH1KOwBAUFA3tQkDIgikgS2IAACIOA8AtIn wBc4r+9hMQiAAAjYEcjdL7TQ7QNOpC+HE3SlPi1108oZNHPFZqLyACUenKuJ1snttLDkaipr 30YXWCdyH/gn/XFVOX3niTdpz/Fn0Fc8C+nGRZeRa0SqgNf5xuP08vEL6fKTjTguerOT9PE/ OmjIf4yko9INib9F35t4Jv3s7I20o/oSStHHP9lOVfOX0xH33kN7r3ZRRRsE8nR8+G4SKJzx sI/+trGRjp11AY1JGUL/orrrxtOspwfTN199hx4+7xjTuPQ9IZDPEgJ53dCv0W/+9gxddtwR Ise/6KUFIjzSc6fRmh31VDYOQVbSsTnpe+7joQipiB9LRfURXcTKP3xAwMkE5DiQWyezgO0g AAIg4HQC8AVOvwJgPwiAAAikEsjdL7SyvyrAUeP0MFfov7craluNVOZWrq6q4XZLCvMB/vD5 RTx9wU94/R9e4RefWMlfnzWBjxn0WT53oZeffX03x0X+5Ef1fG/pHbz545STu/0S23oXj6fj uPT3HWl5P+HQz+bxRfe8xXs/CfJ9pwt9YORi3mwakZZf/xrbya8+/X2+3n0+L637mOPhF9l7 zXT+4iln8PTFq7mh/YBo7D+54dElfNGkCTxh8qW8/Pkwf2It7cDHvM1fzvPcbp45y80Xzrqc F1x9FX//tU5rLuznGYHCHw8xfuvuzwsdbDKvCiW6ppt4n9dML1E1s7HX1/DfRfbE35/huZ8e yF/41ivcIS7z7J8Y73z1af7+9W4+f2kdfxwP84vea3j6F0/hM6Yv5tUN7WLUJ/mfDY/ykosm 8YQJk/nS5c9zOHWQ8Mfb/Fw+z83umbPYfeEsvnzB1XzV919jjJLs5PvzSO7joT9b1T91FZ2S 7OTO7J9LBrUUAgE5DuS2ENqMNoIACIAACBwaAvAFh4YrSgUBEACBQiXQW7+QCNWowhqRm+si 3VnfwXV338N/TBGmD/Ce0O/54WX/xWd8WgjXg47ho4/7Ei8LtHI3sl5aZTHeWjGe6biF/FKa sJ54389f/cp3+E+K2pazQP4Jhzc+xneeN0TYN4Rn/fQnvHDmZbzolpt4/pnHqDaPvv5XXPOt 6Xz2pTfwrTddwRMHi/aXfJkfMQTJJO9c6+HRJy3h336gWHOAOxru4/OHjebr6lIgpNmCr4eb QOGPh3b+zRWf4oFn3s9/TRGj7cnu3VbJXz5Km1g6/rpK/o77ZD73Wy/wzm4G4SfhjfzYnefx EPGQbMisn/JPFs7kyxbdwjfNP5PFnHWm0dfzr2q+xdPPvpRvuPUmvmLiYDF2SvjLj4SM8Z3c uZY9o0/iJb/9QE070NHA950/jEdfV2d5EGffbqT2D4Hejof+ad2hrQUC+aHli9JB4LAQkDc1 uT0sjUClIAACIAACeUEAviAvugGNAAEQAIG8IdBbvxD0l2oCubsqbba4nWkHeG/7HjGfNNvn E+7Y/QFHuxHlbM+O/Zm/czLx8de9zCn6eHInP/u18/iWl5WZrOKTs0CuZE7yew+dqdo3ful6 DivT28XnwO5n+ZIhihg+iW9dL2eMJ/n9n03jAXQkn//Ubq0u/ohrZoqZuVMe4vcMo+Pc/OPL +CYI5BrMPP2/0MfDgQ/X8xXHj+GFL36kX4vdgU7yhy99myeXaCL5wKk/4IaPu5w6bhSYfO8h PlMRw8cv5fXmIOFnL1EeLpXwpFvF2NFF+uT7P+NpA4iPPP8p3q0X/1HNTC6hKfyQOUg43vxj vuwmCOQG5MO809vxcJib3SfVQyDvE4woBATyi4C8qcltfrUOrQEBEAABEOhPAvAF/UkbdYEA CIBA/hPonV9oZ59HE9Q8vqbDauTePy/nk2gkXy9CoZifJO9efz2fvWgDfyAF6h4J5Ae49fGz hMg3hC8NWILFxLZyhRDj6bNLeIslBkT05YUsFjjkMyq362FWolx33XHi/KF8/vJf8zt7NEUw sfsNfm1nDtN6TUOw188ECns87OE3vzeJT7r6V9wqr/tu+e3h//fYQj7XfTl/eYQ2pkumfJt/ /2H3BRxofZzPUmaQXxqwPCRT3ug4WVz7n+UlqYOEFx4nyj+jkrfrQyBad506boaev5x//c4e TdBP7OY3XtuZGq6oWxuQ4VAR6N14OFSt6d9yIZD3L2/UBgL9QkDe1OS2XypFJSAAAiAAAnlJ AL4gL7sFjQIBEACBw0agV36hvZ7dysxR8c8fjOXW9sRO/s1dc/gLo4/nsadfyAu++wve/P7e jFmuHVse4l++m6uIvJffvPMkNa64dWL2gY9+x9/40pX8jBJUWX56KJDveuLsTIE83sw/OCVT IO985es8WrA49Z631VjqSpWJnc/zza5BKiP61Jl8jXc9Bztzm5krm4xt/xMo3PFwgD/+0118 zpfK+eWPcr3O4vyO71IeNXYBB8STpPi7/8vXjNXG9VFffoDf1t+cyNYLB3Y9wWdnCOTiTYkf nJIpkHe+wl8fLco+9R6zXHFPeP5mF4vleEX+T/GZ13h5fbAz456QrX6kH3oCvRoPh75Z/VID BPJ+wYxKQKB/Ccibmtz2b+2oDQRAAARAIJ8IwBfkU2+gLSAAAiBw+An0xi9E6rya8EvlbITd 7tIUEZO7+hqeecuT/Me/BvmNF31ccc3Z/JlBx/Ipc27j1b/9K3ckRRiWHc/z8qvu4lcts7O7 LHbvm3zHicSjbticErM48svpPFCIbgNLSrhE/ht4hN5m4gEDS/jo0+/ghj3ZSj/AByuQqyXH d/KmVTfyOcdroiN97mp+/J1uVMdsTUJ6vxAo1PGQaHmWrz/3Kv7Fu7lfX8mWJ3imiJ9/8nf+ zPIxVyz4CF88VLleh/HlGz7qkvlBC+Rq6XHeuWkV33jO8fr4/Bxf/fg7xoOmLhuAg4ecQG/G wyFvVD9VAIG8n0CjGhDoTwLypia3/Vk36gIBEAABEMgvAvAF+dUfaA0IgAAIHG4CPfcLCa4t d2liVnnAWHCvazs6+OW7f8JvpAnSicif+dkfLuTzT9IWvxw09iL+4R8iXcQqT61l7xvf5nE0 mm/cnLrwZeydGl79wAP8gPXf/RV8mSJUH/Ul/ua9D/CDT7zCuy0TzFNL7iOBXC/0QOfb/PSN p4g45cSD3I9zS/fRK1Kbg2/9RqAQx0Pyw9/zt91z+EdvRHs0+1qLAV7CM9f908I3we/7LhCx wYnHfet13ms5kr7bNwK5XuqBTv7/7H0LvFtFtf4U2vJq0RYL2CLvNxKQNwiFUOShQgC5Xh5B qX8NqEiDwpWgoKaKBlAJwjVwkaAQuBAuJbxSgbQ0FUjFwyNVUiSFlEtamtYcbk5LTpuU9V+z 9569Zyc7OclpTs9J9srvd85+zfObWfP4Zs2af9z//2B/tFPOJjrhDyQktXCPynP78jAqyRyR SIkgHxFYKVBCYHQREI2auI5uaih2QoAQIAQIgdFEgPqC0USf4iYECAFCYOwh0Ha/UMmCF8kz 7s+XyLecoeqG5qxwdcOGtsg9QOpuyQ/2ALbrN2FRKxrnW9TEymqY9/3fwhtCLZejhCYmvrUr 4jb9CpP98pYBJIdbBIFuk4dqYQFc75wJP3h2dc3C0nrIPHgbzF/VWO76nzoPJqEcH3vP+ybZ K7/qg73x/aG3CJv61tBvLkG+et734bdmIYFF39oV25bpcIVsv9w6enq7BRBoWx62QJq2VBTj eEQIQM/8xo3DNVr89Vi2eqZ8KCNbBgEhByI2kgeBBF0JAUKAELAfAqJPoL7AfmVPOSYECAFC wAqBdvuFgaV3sR0dV2BQLpYsPs5OmmIV6hZ499Ff2Q8OOpY9eMYi9vbdMxkSfc1/G5exX33u IOZbM5stXH4vO2VyM+ebWO7OY9heVy5lpz36AXvuK1NVx4NvsBsdh7O5//cNtjD7Bz2MgRe+ wfZxhtknfvwaWzr3cLYtW83un3k0e/Qbi1j0sr0Y2lhmbH2KzTnweHbPZx9k2acvYp/eqln8 9G20EOgmedj0QZxde8a57HfFo9hph01hWwvQPt7I/m/F39ir2/6IvfryD9gBSgUcZCteXMwK +zrZ0bugASL8fdyfYFccehq7b/fb2N9fmMP2V9xtZMvvcLJDfrgNuy09n12xj/JShGy6bsrd yY7Z60q29LRH2QfPfYWpUjLI3rjRwQ6f+3/sGwuz7A9C0AZeYN/Yx8nCn/gxe23pXHb4toyt vn8mO/rRb7BF0cvYXqqQsNScA9nx93yWPZh9ml1EQmLCezQe2pWH0UjjiMWJk6We+iFQysp2 T2WKMkMItImAkANxbdM7OScECAFCgBDoIQSoL+ihwqSsEAKEACHQAQTa6Rcq5RyEXOocGwly SBQa2ijpQMqaB7E+dTXszj4NnmQr6uMYVssa5IPwzhO3wuyDtla4hEknfR/uWvA+DH64FB75 xVfRpAvP/87w5RvvhyWFQSi8/Ef40VnTFLfsM+eD/+GlUNr0AfzpOO5uEhz+1Wvhl7fdCted dxDsduyV8OiKVg8gbZ5/+joyCHSNPAy8CFfzA2M1zqv+Og6ODGYNE0j/egzO2IbBtNkLJHv9 m6D02u1w/t6TYcZp34Nf3XknBOZ8Efbf82S47pmVhl8LqAffeQJunX0QICkPbNJJ8P27FsD7 gx/C0kd+AV/dQ03Xzl++Ee5fUoDBwsvwxx+dBdOUtH4Gzvc/DEtLm+CDPx2npH/S4V+Fa395 G9x63Xlw0G7HwpWPrgCSEgvQR+GVqFejEPWoR0ka5Fj69CMEeg0Bseon8oUtjbilKyFACBAC hIDNEBB9AvUFNit4yi4hQAgQAg0QaLVfWHz9ODbzlxaBuMOsdP9lrKlCtoW3zX21/p9Ps8de 2Zad/G+z2O6NlVw3N5ph+t/A/vdv77CJu23FckvfZO8UquyT+x7FTjp6LzaJNMeHiemW8dat 8jA0Oh+xdxctZKv2+wI7YXqNwFT72VsvL2avrVjHJux6CPv8SYexXbcZOsTNdbHhf//G3pm4 G9sqt5S9+U6BVT+5LzvqpKPZXiQkmwttx/y3Kg8di3AMBUQE+RgqDEoKIdApBESjJsIjUkQg QVdCgBAgBOyHgOgTqC+wX9lTjgkBQoAQsEKA+gUrVOidXREgebBryVO+rRCwszwQQW5VI+gd IdDlCIhGTWSDSBGBBF0JAUKAELAfAqJPoL7AfmVPOSYECAFCwAoB6hesUKF3dkWA5MGuJU/5 tkLAzvJABLlVjaB3hECXIyAaNZENIkUEEnQlBAgBQsB+CIg+gfoC+5U95ZgQIAQIASsEqF+w QoXe2RUBkge7ljzl2woBO8sDEeRWNYLeEQJdjoBo1EQ2iBQRSNCVECAECAH7ISD6BOoL7Ff2 lGNCgBAgBKwQoH7BChV6Z1cESB7sWvKUbysE7CwPRJBb1Qh6Rwh0OQKiURPZIFJEIEFXQoAQ IATsh4DoE6gvsF/ZU44JAUKAELBCgPoFK1TonV0RIHmwa8lTvq0QsLM89CxBblXQ9I4QIAQI AUKAECAECAFCgBAgBAgBQoAQIAQIAUKAECAECAFCwBoBOyrWEEFuXRfoLSFACBAChAAhQAgQ AoQAIUAIEAKEACFACBAChAAhQAgQArZCgAjyHihusR2gB7JCWSAECAFCgBAgBAgBQoAQIAQI AUKAECAECAFCgBAgBAgBQmCLIUAE+RaDeuQiIoJ85LClkAkBQoAQIAQIAUKAECAECAFCgBAg BAgBQoAQIAQIAUKgdxEggrwHylYQ5HYszB4oPspChxAQciCCI3kQSNCVECAECAH7ISD6BOoL 7Ff2lGNCgBAgBKwQoH7BChV6RwgQAoQAIWDn/qFnbZDTJJAE284IiEZNYEDyIJCgKyFACBAC 9kNA9AnUF9iv7CnHhAAhQAhYIUD9ghUq9I4QIAQIAULAzv0DEeRU/wmBHkRANGoia0SKCCTo SggQAoSA/RAQfQL1BfYre8oxIUAIEAJWCFC/YIUKvSMECAFCgBCwc/9ABDnVf0KgBxEQjZrI GpEiAgm6EgKEACFgPwREn0B9gf3KnnJMCBAChIAVAtQvWKFC7wgBQoAQIATs3D8QQU71nxDo QQREoyayRqSIQIKuhAAhQAjYDwHRJ1BfYL+ypxwTAoQAIWCFAPULVqjQO0KAECAECAE79w9E kI/R+l8dHGRs223Z+DGaPkrW2EZANGoilUSKCCToSgiMBQSqrL9/gE2eMoXa+LFQHDZIg+gT qC+wQWFTFgkBQoAQaAEB6hdaAImcEAI2QGAQeadtkXeiHyEgELBz/2BrgnzNq/PZc8vWsUmT Joq6wDauW8c+c8r57NjpW76RGFwxn82ZE2Jvl95lCxemmSeSZXddvI+etuHe9C9bwP7rTw+z l95czdjkXdgJs77EvuJyMrYkzJ6eeAG76tTpww2a/I1RBESjJpJHpIhAgrHBNcvZS4ueZ88/ 9xeWejvPdtxxBjvyLBc798yj2ZrYXeztY69mlx87zfBAd1sAgSpbtuAR9qcnF7F/rWVsp6O/ xK70nMOsm+FBtnTBs+zddVKyNjK22wmnsyOsPSgOq/0rWN+SV9iiP8fYh0f/B7vp4kOlANq7 HcA69PrLi1k8mmD7X307u+yIKW0FsGbxXLbzzBtZsgjsJJNXjsPj7NXiRKZ0S5ivvU7+Ijt0 mrxUWmVL5z/Olq7T3GDM64rr2IGnn88+88ELTfu0lvqCwRVs/lNvsI16tziRTZy4kW3EtNT9 Ju7FTj/zUFbbW65ZuoA9t7Ro6luF34kTp7A9HYezA6dPFq9aulbXLGOPhP/EFi3/F7rfiX3h 8ivZBUdY913VlUvZMy+9y5ieB/QycTdM6xF1aTUir7IVS/vYKy8tYrG/bGBX334Da7NYjaDG 4J3oE6gvGIOFQ0kiBAgBQmAUEKB+YRRAH0NRrlmKPMhSMw+yDseWp3z1TDZ9/ABbMn8hWy2N /ZRv5+O32kHfGMrTqCalOsCWZ15nixfGWeLdz7Lbf3sxMw3xReIGlrNHw39gDyx4E3mZg9kV P7qWnXlgrct25kUiYOM6sHwx+/Pbn8S57aENFXFWzL+ZzQm9xErvxtjCtIPF833szOnyfMMI j+7sh4Ct+wecLPXUD6sv8L9WfpViBsI+l+Je+PMFI5AulFvx3rKbYjoCSEeD0xeHZiFXijno S4QVtzw9kUwz161Fn4359Px5AiEIB/3g0DDicXhjudYCIlddhYCoz+LaVYkfqcTWyLvHH4RY PAGxSBBckkwE+4ojlQIK1xKBEkS9arst6qt69UG2Uu+hkovqbZrsPpa3cMy9l3MQ8bt1P55A BPqyhfqAW3pTgrDLnNZQutSST8NRHvy8vvkTxiv9rgLpeAT8XqeeXoc/qX9Vb9BNIgp+t0Nz 44JgJA457C6a9Wmt9gXFpF+PW8bX8t4dsezTCuk4BLzmvpUxh6nvcfqi0KqklTIRyzT5Ytka bPhjBWIecxkpaffG8Yv1L5+KgNuh+XF4IJLogw4PA6wj3oJvRfltwSgpKkKAECAECIExjAD1 C2O4cLZA0grpBIR8xviYj9P84TgUlMFSsWa86wR/KN7yuG1kk1+EiDJOdkEsu/lcSSfSWkqH zeNUVxisZgflbEzjeVwQSSaRh1LH+yHT3LO9eVFt+iu5uBqHI2iZBuG+UspDPCDG6tZzLuEW sOTHGuZG2uhuJBCwc//QGpM8EqiPUJjtF2YG3Bo55k8MlzRpnpm+gEZ2OAJDdyzFpNZwei3J oeYx1XwtpTTizwFRuQOp5CCgkDwOiOUaUQY1YdFjVyEg5EBcuyrxI5DYciaqLzw5vRGFTDRF gzLhd3KCzAUpqxGNyTE9dBKBfNyrDCr9kQSk+xLglwhoT7SeAE34ODHsBI/Ho/25we2LWLat RSx3ffHDHYRMcfPbuwoGkdPSzFj77bTq1wGoPd70F9cGzYx5wGqttJIJKbjF87XBWPRpbfQF ST/H1wMJbRGhlAoo8Sjp0OCr5BOKPPkSdZFLiZHSkTT61kLaKBOr8pUC0G5z4ON9tMsPib40 JCIygW+BfyGuEPFOt6gfHnC73RAxTT5ELEWI+cXkgEEgnmlIogsf3XqlvqBbS47STQgQAoTA yCBA/cLI4NpVoZb79HFyMCUNTHFeFHKrigP+WHpsjY1wTMsVD3n9DchpHk3gcXJQQcy8Wros x7elPo1zQv5FKPVU0uo7JNQF1d/uvMiU7UJK57Xc4Yzpk9VDIaGOqR2oxNn01xTzCmRxfN6B KVbTJNDHLYuAnfsH2xPkpT6VZOCT/7RomTpc/yqFPgj6fBDCDmaoX07T+Hb4rLQLh/Jt/l7q C6rEBhLzBj2huin1cdLDglwwB0FPXYqAaNTEtUuz0ZlkF8SiEwOHL9ZwkJeNcC2KFhaxOpOq LRYK1yoOSdq8Lm8QEokIeLxRZTCWT4TA7fGCD9son9drEM947/N5wRuI1Wgg4EAoFQOf29By Zk4PhKIR8Dq9ajtazkDA4wYvDxP/vF6VrPT6AhBNZPRBIAchEw1A2DTALUBA0+Z1BvvMOOEA je+ACfYN3Vjnk1r7h+6dfuvdO7lEEPMr590LftxpE+9rvrMmH9d25ngb1ydzwrWnSlYZPDsD KcvPxktNy1wbaFsR0akAEtmueg1uqz6t9b5AHdxHpYXThF8rZzmvFU5+Nyf5DW2a2kWnMkS0 SRdroGFj4IB35TQEcAFE7sMKupZ7bdgACi6oNdNCDYGgvhjjhLi8iGxKQG88UF/QG+VIuSAE CAFCoFMIUL/QKSS7NxxBkMqcQCkb10hWNyRyY1FrqAJ90SDOMUKQHlOsLCpbKfMXawVEMZ52 BuSdoSUIKWNRF/RpULc1L5KrXimtE/R8N4BJOVJ2p9+XIartuPRLiiz6Z9NNY8xLac6lOUjB zIRX9z/YuX+wPUGeFNrdnmhD4mxLVnGxNTwwZEM1dKrUBktdYTVv3cGNMkkkeJyRMZHnoXNC LtpFQDRq4tqu/95xX4CgohnO5aD5glCpD1fRPZu/MDW2sNO0b5kbYkj6FtGMUyygbqd0SCRt JqoSvg5PGFJ9fZBKJSEWDqgmMSRitIKaCV6NvPbiVstcsQTlchEySDQrdc0Z1DW5y7gw6NPc +tEESCoZh6BHNQviwDCbEZgpbcufK2ReVEyHxVZQB3iDMRAKGLWYV3IxNT2cHG+qFVGCmFek CfOejIJHS7M7bI7biMMYUFoR14a7+rts1IPpMgbB9S7UN5W8mn6nU01bPZGsEuhuCw17qz6t 9b4gj2a45AURUX8Y+Eyq6nmIBJubSOkLaprZdSR42di2i/1us3rQCB/swDTtITeY1kqQTBc7 whwuL9b5RhruaIZFK3deHnawNEZ9QcPaRB8IAUKAELAlAtQv2LLYpUxXIC7GwJpiXjqq7dLD +UCjMbYUAN1KCJSzmjlAhx/qRp+FhGZmsIY8Rw1+ddzafG7QaF6kR1/O6nMuRa4dPmiu6oM+ cczsURRxUNlkWINxbsUyru5AwPE8/XoLATv3DzYnyJFkEGSPNkMuF7KQTMSQJAiAByfY6g7y AsSCXnAhWeFGTUR5LbWUS4LfoxIBTrcfIpEAbvfn5E8Fcn1IMkXCEPDjFm9v2KQBp4oQtzcb xng4CeIEX8CvTfrrteKghMRWyA8uB7p1OMHl8UOSG51t9pO2w/Dw45JWYKWYhXRW2krFw2kh Du4vGvTp6XB7jdXbXBK1UjEvTuxUZW2/Ygbt0foDSFaob0u5NMRjUQihPXS3C7fy89e4LSmM dtAcqIEqVlCVrLWQJsUd/TMhIBo1cTV9tNGDrumLAwB/U3MQCEq5AHlheFixW+0BB8paKGWq zRAPBSAQiik2+prW5ZMvh8j8OIRRbt1Os508bqLCjbLsCSbNi1Qt1PcMDl4duFIfiA859IFy RrWJhwf+SqVehhC2ez5pES4dUonnWnvaOSR0PVEtnqIw2eS0tPnXxzWaZXvZgqyUSHNuw05d sHA20TQQ2hR4DoOs1Ytay+pATl30U+u2lc08eVEE3bpRQ9zLd/D0WZKxgsiNCIPnYhBrSrcM nyBhnUOaSZF8KQNRPgiuJf1NbrQHhUh3hCCvE/01A+p8XFkA0Ldo6oHU92nKp3b7Ai28SlbY e3eq7bQez1A3xi4ATyRjcswXL8TW2Fa2f5o8aw864e82E+zqAoRcP/g5G3LdVwMo6mZjVLfK 7gl/CPryQ/SpVonpknd27wu6pJgomYQAIUAIbDEEqF/YYlCPzYi0XY28HgTiKTQ5p+4Y9EVq dm9apb7BfKWURx4lHsWdf25wKXyI8FyGODdph/P8lGrkXHyouZYghab0nJyfwTmYPxxB5Rq3 qg2NcSbjyNHgPMyLpvP0+VmFK20EIBgMGn+hEIRCQQgEwiBPJVrhOtqZZ8mJz2hKPGYNcdWF mGuw2rmFRJA3NvHZYF6kR56HgKIM5oOoZobQYXnOke5BuRFjaQeaoEzyncUuJzidTuSxwoYp 0kaY83O9pPOduLKJH894MmFtjo6eugwBO/cPtibIDS1DB8Q1DiwbCyhEuFopXJDEhj6okejq O4nYEYQNrtIlszlIhLh2IDfjwA8DK0FcIZK1yXpdg5jV7IAjURVJQjYd022A1WoLcjMAatwe JJmzuK1I297f4IA0Wf4yETVNIj/xBqR6K3Hoq8pojoZro+b7VPKNm0GQD4DjZLzRyPPVaRUD YY8rGw+hyQWhCYoY59Acg4SxIMVaSZOcV7o3EFDLW6t7WCft+Stq29YQh1r5awYIDhgVm8eI G8fRZA5D0+wV2uhD1eWzLrxI0xjgxKgx4NRNXkg2z1ur70gwC1mp08ytz5QejydiWtjrC6B2 ra4aIkhrt25mqlJCzXAeHA6Mcsr2RYN09jUg5ovJgEnLWMTtMplJEYM8i0VAkXwkqBUCtU67 uALlUgHt3MWlAyrrCee8Zk9PlQE3DpZ9ehnUa64LIlfaXSDsMTaoM7oJkwbfRTZqr+kQX0g1 MK79bjyjCRLcbukMcg32kr4Dwhk0zLLwhQvG6jVUrPo0EW6rfYFwz69isN+W/HCPSOCLw6Bj khoNX1DWFzmw3xzuQFpsUxV9BY+S/yqVMhSwz47jBEHEzzE3LbqiXo9YGOd1xIWH9RoHnvKF iN4kyUWfoCJF/wkBQoAQIATsjgD1C/auAUKJRtQDfo1lZTVAa3waz1f+APd5nNL4S9aKNuYv zeyGq+YuUbkhkoJcJqGNGZGnwTlLGU2/+DSlRJ5WYTNdEL1yPvR7NCcpctQ43bK5QiOdtXyM NRrirTHnFOkSX3BQrI87a5VkjDJoYuq34byIx1DQbMXzeVUZkso5Tdw2u6zcZaREvhNa6QIr D5rD1MfOyDFx3BphXsbxfMAnOCbc1RvAxYlQQsdajofuuxMBUS+6M/Wbl+qeY87aKcysII+d ZhvdlaxK/DpQIzzAbaViI5HXDz0wCA7RIBv2wpHMQPJK3vaukiL4zrRdX6z0YQOWFOxBRbfL KmvcFZB0UvLkDula2aWURph7ORE/9C8VFGQ0J/zMmuTcdytxZKPqQXrMZaRD5M358z8ioeWE SCyoNqwycaRv36nRQCyqW40cbp9yKJ/Di6vBCvGHB9JhplpJ09A5t68LIQfiakskBNHJSW6J XBwKi3QQB3f+CIQ0cyDyQE6QjKaV+SHqsq7FjrIjBmlckzrMV/vxfADeArRT33NJtBnucqPd 7qEHP4AHwohDKl2BhN5eVMpIgIvGQ9OYNg5o4aQxyqu0wUS3+Yyy3TBWJCf1MDFPwtRHRDph sqif+dBg65++OOEGk1nyukIrQUQrH+YM6WZdOK6qLT/EVlpA0EltrAthKT2gHejo0DXfK5DQ Dm2UTdDI0YsBZe0gV3ZTd69pcLtrtKnr3PEXWr0NZ9TakotpbS+aCOJtIzpQ+wo9zfyd+mvU p4nvQ/UFwp16NbBsK6/o2Uiz2ufwA1VduqkjlEfceTRcHlqc0yEvOJnTrT6V0hF9oB+UDuiU 60JIZ85LhtmXFhaereIb6+9s3ReM9cKh9BEChAAhMAoIUL8wCqCPoSjF7lFRD1o5j621+YpQ vMExd9qY+eSSYWVcJs+rzHCIsZihuFhWzlPzgNjkCXiopTqvMfgYRREPtaBTmSxkUWExh4fB K3lCRRsRe2vpVlPT1jxLZEA2/SciFd8kpZFaxQ4xr+T8Sq03xXvTeVFJsyEudplmdZMp+vBW pKHuilyUULhChRsxJjfGyJIikwXmSnDaHIoxnzKXrYuCXnQ1AqJd6OpMDDPxNibIkWDRDgoz azgC9GnmBpSKgQ0W54nUBhon+9LkuZIT289RC1zbxt2HplgMMwWG1qXcICY1+7pO0/YXg4zQ D0hDUkXtBIxGSrf1pKycNqSq6qqDiFOt7JK2ZAtxGFqJSFpJrXeeE3VIcCdyRYV4E9qGMnmo H/4hk+aYOp3IwXzwTkHh4kp5yBdRe6+FNNVlkF6YEBCNmriaPtrkwTgkEDURLGw1N4QBTyLn dtlUm3C4oKRvBTQ0AOTBXdO6zCPRB0aC4OQv0Y41tj8KCTvC9b0gHVYpk+Q8FfynE/hotsXn R1NSfMCEhxwa/Lhhc3voQ1zUMGVtiVAyg6ZCMpAIaztfcDEtZqk6zElvTqjiQM/yuwhbverm P+RBpdCywHbFnFaj7GSyVBC5nLCN45ZQn3Zoo8PTiMA1BpQmot2ctLqnlHLWhdTu1rkwXhS1 yYBKhuN7aZHDn8RS0QaqAYn0VX037tOM0PnChWYbnLe9zezy64P9mkUFOTDLe6O+KDbtk3GI hMMQxm2ysQRqBAkzRpZ+m78sZVT7jvyw3aH1vCv64UNymQvtc744Jfeg+bhmd9O04NI8Pd30 1c59QTeVE6WVECAECIEthQD1C1sK6bEYj0Fiu3xoClKQpdK5Q3WpbmO+IpRJ5PGXer5OswPe yyDOYmN8lyFXCimnwIOmWwX9oJvIk3aZ5tGkrTFt0LgX5Gv0eUwb6a7Lc4svdL5D4omEV7Gj tn7MLR1ab+GP7yJtPC/iJmu4SRw8jFNT/NG10TEsoQMl0lB3xR3Rqra4wTEpbnCOIWyiC87H CnPuVsx/Zd6nLh560bUI2Ll/sC9BLpEOBqHN6zA2rIpNcE4eMH1rdlKzy2W25YsrnRrJzt3W banRNDPlBlEndSTTCjxWvVGTts3r9qqwE8gXMhANiK0sTtQeFZrn3HftrwQ5JK3NP4M84WkV moxDx2Ec4NGcZESCX9MQNDrDvH6aslnbj+OmHT4nYSzSO3SahEu6NkJANGri2shdL783VsGZ tGjVWo71wYxEluXjQpNXNtnQvC4rselkuzEIUUlpdevhlqjv+YS2E4XLftgw9YJsqzYYdUAI yctUMqbs5OBmk4xfTj/4ZegT0VVf+qKa0w1etB3Ibdq50BZ4KJqERmaedY1zSdvESIPFncBV WnzTyw3NQKVNDKpBbBvtkyByHRCMhLTFSE7e17adUtz6gLI1slvxqfUD3hZPgkz6sW30xEyD 24RPay/xfV6xKy9vW9XSZ9mntd4XSLnUkq0Rxs1I9FpP/FmUC9Y1eSHJyinX+I94XVg33LjY Kv7wGSdDMnmt+BWLHzXmgqzDVd+KQ12Nvtnop2rtn+uTG5R5MRFrFna3fbNzX9BtZUXpJQQI AUJgSyBA/cKWQHmMxqFzFHjeTw5HY5J5wkbmOdqZrwjtdGP8hbtTcVzolMxNWiEjKzfpCnSS Q6HkYM1JoLkRzkXgOE4eQ7aTbimqNm6RK9HG6cKcrOxZn4/Wji+l8bLVHKHZvCgtrCCgwkg2 m4EM/kW1HbBOXxQyuYJpHiGnh9/nNMsAhhUE1QVX/lSJc2MeZY25wYENPdavjZ2euwEBO/cP tiXI9dUwJFJ0TT1eW6UOwxURh3sJgkhsYZGqNZIS6kobJ9Q9OqHOXYit4IbpArTpqjVo8ju+ QiiIdqe+bd7QeBQV1OXxQSTeB4pJYCkJdbeKyYeAsXIqHJQzBmGtEGAtxCE13rKpBBGkftW1 DZE81IipbFhdZOCrmyZtS30lFzVoxQGAekAtpEl3SzeNEBB1Rlwbuevl95ykFbbUDFK0tRyr Gr9IJofSqgc8b0Bg6UCCTudem9ZlEZdkd5t71NoYVcN55Op7sWAeHKXDxgKb0ArQTzCXtGlT OMgLyHvz9Dwasi1y1ugqtAp84nCHRg61933awTbhOq3oJh41UySy5oJu9qrW/BTmQRwMqdcF 0bahKRauaSEG0OYFU3P8+oCyNnyzM9NTwsfbwQYmZUwu+UNesX/vjZsXQI0FVDwEmWsXq36U AABAAElEQVT5WGiaWPZpLfcFtQkxFkZZM22iWm/4bCxSyAtJFg75K1EGOGkS8qVcJfM4is+i 1s+6w/X9muLA+p86QXNIB4xiX6vsEqjvy1NBTbO+dgJjHXTXvRX4dl3CKcGEACFACBACI4IA 9QsjAmtXBGrsHhUKH7IiXQ03ouSovfmK4DvELv1MhJt7bc0Uh7yT32yiFvkYZbyIYzj9HCUB N5qu5EqLuAPWPIJuL90itLauaAbF2zBdqGktyOia8TQ/u0mVQcNcjIi3+bwop/M5QobrrxY8 kAhcmGrENAeS8lICLpSIQ+z1tDbAXJ4b9qJWiY6VfW9EnbIjArYlyIVGeK2mnt5haLaBeaXQ Tak4/NqKZBkP5DRORS5r2755RTJW0YR2Im71T4jGB7U1vaomoNwg5WLqqdHcf1AQU3rDw22G 63RcS3W01Mcb3KCFFpyxlUfREG0lDt2Oc33jrWCj7eHRcdO29ciYcA16XJzWf4Y9Y9l2sPa5 lTTpIdFNIwREoyaujdz19HuJfOOHMzbbbpaNBSGknwcgFsRQq0JZPUO5UUx/qCSeR1rUaVqX dXAFQY6a7Kk+xeabbvN6xOo7bp10ySZdeGL4Vj2t/dEMfAtC2WSjndsn587zSVyQ44uEQvva 0IDnnxv/xIJfzbkDDTwILYhI2tDczqczQy4ECnuCclsq8lNrM1vXDpYOyRQaHUKTuJzVzHeY TF/JiTbaT3/CPPyWXcn36nZSBr623MuErghNHCYq6qBYvBXf0XSKtstJ7tNa7guMYNQ7fbDf etpFEGJxyYrEF27kK7eHX8JDYeW/siyspbRqUxEXpvQagofHpptp+isRaJiZ7OYLWazVwDcm UObJmJzS7r63dV/Q3UVHqScECAFCYEQQoH5hRGDtgkANjsKkQSx26iEfISufKBlqc75STqvn ubnCGRBj4Wa7ULkJ2ZAy5+CxGemTD4nXd+HrfIyAWpgiQVvaYvxYKaBWNY4a20y3CLGdq5g/ MEyX1eygnA4pRLh5bmLMKUxzMIx46HlRBTK44zcajUEsxv/iEOG7T7HcmMMD4VgU4n1WKdFy hdxOrRkV9Yth7lecg9QIc53ct1DYaQc7cjt2EbBz/2BTglys9HHyWm5AjAZZ3uoiVkHdwQTE 0cxJ6K9/U7bjxySvghSQtRM9vKFCQiaV60OzBXyrimHvS9jHLaTUDkRt1HyQSsdUW1uo7a36 R4KiRpuQHx7B0ESL0NSuFS2hNRfVT7QQLgr6KcpK/lqJY4045I+v1opw1GsmihqpuFLLFw6F 9qWPLwZo2uRur3o4KLd7nEL7wyFFO9TQTJQx1kNuJU3trRfoQdvpRjRq4mqnvBt5Nba8cRyC OgFuuOB3Oc38SEwsRAlTFdoATNni5nCDR9E8dUE8ncRT1Lkm6xB1WY9G1srANsEtacG2Ud+L uTSkUmnQTaLr4Vvc4OKAC3ducJPV8k9tpwzNC6E1W681rW6FVO1cG+2i2VSSETLHSJdngR9q 4tZEb3jQ7lLaeQ+RNF9ErAAnSzNKebgMEyk4yE3G43j4jlhoRKcYh9I+1gzMxCDVnE6D/JQH pzoWotxxGc+vtNlCm6YmufpioasO1xqX2qNmvkbSzrd2Z7zNcg0bk/136Zs4KJnbaNdnAOK7 dZ/Wcl8ggtGuYqGB9zO1dajGac0jLi4pGKLd/xZNytQEYH4Uh2MjOa7UezwfoITmxoK4hdYp dnegj0ImCXE0ESTLhtgxYd75JOqyuf+UF1Aa9avmhHXfk737gu4rL0oxIUAIEAIjjQD1CyON 8BgNX1IgMhT71LQKbWdeN9R5u5aHNuYr3IdQQnHgWWWcjLUyPaKFrFyyEdzFh2YE9Z/YmS6Z UcxoO2HdoRSkcUys7vJFu+VezregzXKdH0BFRk4Y+1Pchm3LfEpb8yw9oQYH4gxgfBY/sQtU noPoxLOkuMO9tjQvsohDjGMbpUH2UkwFVTId51Cy8ncurp4VZVgzQMsHlpgD4qsqd/oTOcU6 gpw3OS66714E7Nw/2JAgr0CfbmqAN9gZo+bqHQZqSurMDm94tVU5ZeKPq5MrE4rpBhcS5mpb jAcl+FQ3grjQCQaHU9na7wwkFQ1W3ZYsEg9+n0og+wI+bfu/GoZXOfDTWFnkFdQXikESVwv9 2iFy4T6JLDJygHeyPxdE+3JKvBXUuIv4tC3kSPyp/IrstlEcSC4p+cbOx+nFFcks5DIpCCoa taghqhgUFlp5DG3HqmYc3JG0vgKqCpi23R5NVajEfyPipZU0mTJMDxYIiEZNXC2c2ONVBUlP cfAM1mN3AO2y5QuorVrEepyEkFft4OVBoBjUMYcLPMoZA2g6CRe5xIIVx1QhYIesywbEwhYf cwZqtAtare8G8djKIEQQxUwQi5gU/YBfsTsGB43qlkCURc4sIvlYxkW8bF8cfMp5AtLOD0mr xBtO6trd5WIWbUhjuyWZxBCDa7Gt0kBBvitCTLOVJ+qofJVtoGf5QpzWBvHySybCanuJ7Vjd GiBS8upZCD5Qz6wRh9ioCxN6qymZxorrbT0OTDUzG96I1C8oyS5BQj/cEhc9ZSZWzpZ0L8qg dvIhOTHdVpAMVuqYK2iynag7ElowdRoqjfo0uW4N1RfoseAiRQ5CWj/DCfJEC3lVfVdwwiIO YsXdVDho3pxfMRPTzeKI8jeu0m4GXQ75BMkD0STufPBpA3ddG8lIiZBvr9b3c7kQ5ndCDftV w3+33gnsujX9lG5CgBAgBAiBziJA/UJn8eyO0CpIwopxNZpAVRRUjJTzw9CFeUrGnBDRNZHl MWUjzsAIx7BljWOzIXbxcgUZhdDmY05NaaUszGTqfoWJPFSQUM6Kc+LcpR8PqjQOnldMEArO Aq+qFnSr6W5vniVyWsoltDOMuFnOlMK5iG/GVQvbHdYI6RwEtHPbIhlBUbc+LzLCFXdC+YMv aojwxLf6ax8qNXHZdwUFoY8a6XHN3IuiACb8WGHOVfTFXAvLws3x5zuGheq+8EvXbkfAzv2D rQhys9kPPpnW/jQtRL0xd4sGjFdtqWF1+oG3Y+q2ddx+pPh36B1JIGaQKmK1kMfBNc9VIh2b lLTc8WDHxLWq8eA3kRafRNhzwsQrkXvcjdMbgkwzI+SK5ihq7wWD4NVJDiOvTk9QyYMQ2lbi KGfj2lYcIxyHB9MhtcH69n5MozesNrjpkOi0UOtW6/Aq+biKl6uxdmkraRLpp6s1AqI+iau1 K5u8LeelA26NOqxg4/ZDUtcg1vCQziFgDi+SofgeT/V2KfKOA4pAXJHnVuqyQLgvwBe/rAhd DLolOTd2n/jiQxOPig1wNLHi0QZgDtGOYBvGLZnkE0G93RJ1pPbqqtGEKGUT2Kaoi3iyW08w rg74cDEiIB2+y904vVGTdoLAQ2w3lMMx7tGslGRbsJwRB8YYZecNJRprpxfT+qGiIkw9jZgA sWNAfONlLA70NPURroBCwMttue4H89Z8EFqGMMe+gTa4wEFchSaGEb6V/W5NI92XFN5QMUY1 C2P40zDifVqbfQEPNKnYSzdw1sN1y32iHr1xIy046H64vEgLJ4bjVu5w0VWru6bwNBl0mszg lCBqWsTGeHExN5GRVj5qopSJfCV83OEVz0odWo37XngUOPZCXigPhAAhQAgQApuPAPULm49h V4WQT+gKAaLslas7rMxrdM1ibaxluEGTjUhktDZf0RBB5QXFjAcqBg09a8E5Dp+naHMVh1Ob a+A43LC+KPExqHXNiXRDC9vgYvQ0O4yzf1pLd3vzLGSDIKIoUdWMmZHfsBpNGkpKTm3+5YaY RKS0My+qq3P6Dldrc7i17ssFNPfpUUlyHS/cnRqI9el8leqnHnP9vc4xuSBmqO7XRkXPXYyA qBtdnIVhJ30c94kA9Mxv3LhxSl46mq3BfrZidZXN2GMaG89Drw6w/vJ2bMrkKluzssg+qjC2 4y7T2ZRtzTD2r1zBytvtwqbXfKgOrGH5YoVNnTGdTVYCZIy7rW43g02bor3QgxpkK1esZpUJ E9iOU3fGOGq/6w61myq672fTMa38N9C/hhWLJVZW0jijLi2qp1biGMS8rsa8aukQCVcDwP9q GBOmYh7EN8RpZX6ATZbyqTsf8qaVNA0ZiG0dCDkQAHRUHkSg3XZV6mOBlbgwsAlspxm8rtYI rZanwf6VbDXK+IzpU1SZx/cDa1YyrM1s+rTJbeech1ferr6NMAJqob5j+tf0MzathfirA/2s OnkK47lT2oDSR2zC9lOHlXYjjerdIG9TMLzKhO3Z1J2n6W1YrbuOPmMbvHJ1CYtNjXPIZhDb ozXYbmKusW1upd3saGoxMGyHl2dZZeq+bI+6Nn34cVWxHuXZzi2GOZy+YPhpG22f/SifWC3Z 9jtOxX7UWq7lNFaxHucVudiR7TzNkHPZTS/diz6B+oJeKlXKCyFACBACw0eA+oXhY2dfny3M VxCclfPnshln9bFk8XF20pSh0RrACc52OBbDyRYrFJXBHM5ZajwqfEyZ7bLHdGV+M3SososW 0t3GPEsOufV75EVWFJX504zpGqfUuucmLqvII+VZie3I9sB5a6s/PlcsIEeEA+fG4+BGmFeR G8uXTVxWq/GSu+5AwM79AxHk3VFHKZWEQFsIiEZNeCJSRCBBV0KAECAE7IeA6BOoL7Bf2VOO CQFCgBCwQoD6BStU6N3mIrBmye1s5+PmMDyUk12wz9AKC5sbH/knBAiBziNg5/6BCPLO1ycK kRAYdQREoyYSQqSIQIKuhAAhQAjYDwHRJ1BfYL+ypxwTAoQAIWCFAPULVqjQu/YRqLIld13L jvvPj1jo6t3YFbNvZMFUgV11rLqbvf3wyAchQAiMNgJ27h+IIB/t2kfxEwIjgIBo1ETQRIoI JOhKCBAChID9EBB9AvUF9it7yjEhQAgQAlYIUL9ghQq9ax+Bfnb7YVPZnLTqM4Tk+OVEjrcP I/kgBMYQAnbuH4ggH0MVkZJCCHQKAdGoifCIFBFI0JUQIAQIAfshIPoE6gvsV/aUY0KAECAE rBCgfsEKFXo3HARWLJnPXvxfxo6ddRrbp4Nn7wwnLeSHECAENh8BO/cPRJBvfv2hEAiBMYeA aNTGXMIoQYQAIUAIEAKjhgAR5KMGPUVMCBAChMCYQoDmCmOqOCgxhAAhQAiMOQTsOG8ggnzM VUNKECGw+QjQoHfzMaQQCAFCgBDoNQTsONDttTKk/BAChAAh0AkEaK7QCRQpDEKAECAEehcB O84biCDv3fpMObMxArWDXjs2bjYufsq6hICQBZIBCRS6tR0CJAe2K3LKMCFACBACTRGgfqEp PPTRZgiQPNiswCm7TRGwszwQQd60atBHQqA7ERCNmkg9kYMCCbraDQEhCyQDdit5yq+MAMmB jAbdEwKEACFACFC/QHWAEDAQIHkwsKA7QsDO8kAEOdV/QqAHERCNmsgakYMCCbraDQEhCyQD dit5yq+MAMmBjAbdEwKEACFACFC/QHWAEDAQIHkwsKA7QsDO8kAEOdV/QqAHERCNmsgakYMC CbraDQEhCyQDdit5yq+MAMmBjAbdEwKEACFACFC/QHWAEDAQIHkwsKA7QsDO8kAE+Viq/9VB Nlgdz7bddvxYShWlpQsREI2aSDqRgwIJutoNASELJAN2K3nKr4wAyYGMBt0TAoQAIUAIUL9A dYAQMBAgeTCwoDtCwM7yYF+CvLqSzX/kBbZu0iQ2UcjAxnVs3cQD2fnnHMG2ZYPs1flPsXc2 TtS+b2Qb2d7sy8o34aED1+oKdte1P2bxd/Ps3dhClnYGWXHBVWxKo6CHTLfscZAtf/Ul9vzz z7O/vPQmy5cYm3HYkcx1/rnshOlr2C13vMeu/+1lbJrsZcj7Abb4iYXsk8d/kR06rTGRX+1f wfqWvMIW/TnGPjz6P9hNFx9qCnn54kfZHx6IsTdXD7CDz7qCXXv5mY3zbPJJD60gIBo14ZbI QYEEXe2GgJAFkgG7lTzlV0aA5EBGg+4JAUKAECAEqF+gOkAIGAiQPBhY0B0hYGd5sDFBvoYt ePxp9vDc2ezutCYEbh+LXHIR++qZh7LxrMqWPvGfzO2aw9TPThaI3sq+f8ER+K2Dv2o/W5b5 J4u6j2M3YkROf4ItuOHUJhFU2bIFD7DrZs1mMeHKhem+CtN9Kk+3+lu24D7DjdPDgt/8Evvs VMb+/ud72ZzbNJ9DkfEifP1aZfPnns7OunEhC/aV2FVHTNa/6DeDK9iDt/yYXXLjA8orTyDC Lv/KF9gR+wgafoA9cb2LuX65kLn8EfaDz29kP8G8LHSFWfHxy4gk14HcvBvRqIlQiBwUSNDV bggIWSAZsFvJU35lBEgOZDTonhCoR6A60M/K201hk8VAut4JvSEEegoB6hd6qjgpM5uJAMnD ZgJI3nsKATvLg30Jcq0KV5fdxSYcdAU+eVimchc7UB4YV5exyyccxO52BVn+8avY9BGs9vOv PoyddVuaBVJF9h/HSvrj/cvZq8WpSDBL7zAdy+67lB00G0loh58V3rhB0gI3CGik21k4FWaX HbuHKeUr5s9le551I3MF+9jjVx1h+tbsYcldl7PjrrgbnXhYunwXO3Rbs+v+ZY+y2Qf9m0rc u4Msc/t32IFTZEAZW4rpdmC6Hb44e+OmM5UARF7C6RK77FAL0t0cDT21gIBo1IRTIgcFEnS1 GwJCFkgG7FbylF8ZAZIDGQ26734EBnCX55+NXZ4bGdvthNPZEdNrBqaY0ZWvzmcvLFvHJk1S 94tuXIf3B57CzjxCHtX3s5vHTWXzQ2m24HLzjkeB1Yon5rLbiuey315m/V24oysh0C0IUL/Q LSVF6dwSCJA8bAmUKY5uQcDO8mB7gnxg6V1sRwcS5K4QKz1+OTPo2Sp74uoJzHWbl2XKv2UH 1o+5O1e/B5eyy7dzsLuZm/WV7meGYvYAu+/UHdnsM1MM/uNYKb5+dte5U9kVqAjuDmfY/Zcd qH9bfPOpbOYPF+Kzg8WyS9g5+1gkHIn/S5H4PzRVQDJeaHbrQVjeLH3waua45Dblm8MTZX13 XaBrq/OXKxffzmbMnKN8d/rj7JkbzkQzNTW/NQvYYTvPQo18J0sWF7CTNM5/4FUsgyOvwCJA wv7y1gn7mtDpUUJANGriFZGDAgm62g0BIQskA3YrecqvjADJgYwG3Xc/AoNs6fz/ZvfePJvd xoe8ys9aeWPN0gXs6fiTbPYP1TGsJxBlV3/rXJMCR3XlE2zCDBeL5srsgj3qRq8Y+ko297AZ uNPTy7LwW7aPFiNdCIFuRoD6hW4uPUp7pxEgeeg0ohReNyNgZ3mwPUG+9C7UaL4CNbFrCPIV 869HLetfsmgWB8tWJHMHa7xO0rsjrHz/xRqxPMgW3Hwhm/XDGA7YAQfsUoT9i9mpU2cyPieQ 09e/5HY29TiVpPZGs+y3FzQawg+gpsyJzFF4g53ZAj++/Inr2b6uX+oJ8MVy7KZzjARVV+DE Yk+X8t2JmuELNM1w3YN2s2DuqWwWmmdh3hir/PYcnWAXZdCuRntt+PRsICAaNfGmVXJwxasL 2Cvvr9Pt8k+cOJFt3IiqWbW/JtpatU7bfsZdEw/+1x/YouX/Yh99xNjRrm8wzwXH1i+4aAGv WTqfhe+dx1569yN28KkudrnnAlY/v0Xb+Q+G2d2PLGADuAx28Alnsf/37YvZPsaKWNvJJA/d gYCQhZZkAE1EzX/qDYZHT2g/PINiIp4/YSECbOJe7HQ0x2VFpQjfnbh+PPA6+9MdC9lOF3+X nb2HnjAt6A1sZepJ9viiZax/wnT2udPPY2d8dgrb2jLiQZZ/+UkWW/wW699qZ3aI81z25SN3 1tthSy/0smcQaEsOeibXlJHeR6DKFt8+m82cg+N4/sOxfBGVXcx7LvmHQVQ42Y7NdiYZ3HAS f2H6LbvvXNyVeSQrgLwj03Ay8OrtqMihjq/9yQK74aQWBs+Gd7ojBMYkAm31C2NlfLTpQ/bm n/+HxV9bxWDnw9kZF5zFDp1iPepRQf+Yrfvns6g0diC74It7sm0sSwLHUktwfLToLVbaYX92 ynnnsGOnW7u09E4vewKBrpQHDfmP1/2TPRvLsgMv+CLbs2nVbUUepOL8eJCtfCPBnn8xw9ZO Oo5d4j6R7WI2DiA5ptteQqAteeiljPO8IGnQUz+epXaylQ65FfdIzho45OPgwHA80YzxTrqr FNIQ8nkUf05PEGLREHhcLggl84qrXDKCzw5wesJQkPwVM3EI+AMQ65PfAqSCLiUsTySLriuQ SYTB7VDzwfPi8vohnMjpIeUTfsU9Yz6Q3oJfyzuaXQE1JbqXmpsKFPJ5KNW8tXrMJwJKXN5w FPwuniYnJEzJL0DQaaSVub3g8/ogFOuDshxgKQVIoSthoRkZ+QtYloHJBT20i4CQA3FtzX8B AlK9E34bXcMZUwm3FsVQrgoJcIp6LF/dEcv6mol4VVlw+iASCShyiyaAoE+uYpUcBJS6y8Ab ikIkoMouzqQhnhuBPAyVR/q+RREQ9beVSItJ0bZKbZpcD+V7rJMjX3tK8NI1+2EdnwazF9a0 2Bvegchl+8FWcprYDnD0Nc/AqmpNbje8C5Gv7wc77nUe/OyPMYjd9yM4fZcd4XDv0/Vua7zS Y28g0I4c9EaOKRd2QaCcCavjAK0txLN8LLJeghCOVZ3yWF93hWMf9OsMpfU35psyRNxSn+AK W45HzH7oiRAY+wi00y+MifHR+r/D7744DbYavy1MEGOfKWfAbUvXW4C9CQbeegJuuvgI+AS6 nXLxc/ChhSvYsBwemH04HPjF6+Cu6GNw38++AvvvdChyACtwRk4/OyHQdfKAhbNp4C144qaL 4YhPYB815WJ4zrKS81JsUR70Ah+EFU/74YIjD4RTrrgdnvl7ATbo3+jGDgi0Iw+9hofNCfIK xH1OZWBtDJrzKtHcgPzIJ4PqQNzhg0RfH0R9xqA5kCxANuaTBupOSOmcBsblVd16opwIFz9B SjogluNdcRmS4SAS7Fq4Lh8Eg0GIZ0VAFYh5HUocDp8xCSj1hfR4awloEVO716IWJl88qBQT KvnoDILMPRpkPU+vG9Pq00hKBg5vTCeQDHdu6DOxSiUIaxMPd7jR5KTdlJN70aiJa0uIIDnN F4bcoQQUlDIq6osfnkhGCwLrZ4DLzFCLMC3FWOOoqExgGZLdqWwBCrkUBNxqXUeTQRDPm4eq lVxUrfMoi2KhqJhUF3SYM6TX04RPDcMfN5aNdGJ9RPJRky16HFUE2pGBpJ/XFQ8ksP7xXyml 1Sd8l9GqXyWvLuL4EkZ9GqkMrnvlJ3D0FN621hLkG+Ct4Ikw9TOnwZzgQ/DUM1H4z2tOg52V CeMOcMa9OWliV4UV986Cbdl+cMNrovHdBB88/EXYnk2Fi5/510gln8IdQwi0IwdjKNmUFEJg SARKaTNBzus67qKs8deYIK/kYspYIqqMwWu84WMlH9PHtUKOGrmt901vCIGxi4Coz62kcPTH RwOQ+okLvva7l6HAx2Pr34b/9uyvyO5EZxjeq1UMKGfhyfsfhgdvPB5QobYBQb4eXr3xMJhy zK2Q0dm/Crxz9xdg8jZHwU1pMWZqBSFy0+0IdJc8cLTLkH3yfnj4wRvh+G1wrtCMIG9JHrQS rK6F5NxT4VOTj4AfxFdBrWh1ezlT+ltDoB15aC3E7nFlc4IcB8waEY1mQ5RSSwY4QeIGqz5R H4Q7A7qGdkXXXEHit78PtV+dEIkF68nkcho8CnlRo4GtaavXan0LUs8nkXpKAisZLRwGnJAX v3RI1ULnWrEGKS++tn8tZSLKoAMP01SIllxU1bo1adojBSnwY5JGjUzWq1rGFUhoCxHME9VJ cyVVOi4Mgn1iEaD99JIPMwKiURNX81frp1wMy9gTMz5qhDknp9XFG/VTNoK7LvxJw12n7sp9 4HH6ISvz4Fg/3IrcYH037TwoQ9SjLiK5TVpfOfBp7kNprE+6RrrXHK4kR3Uy1qn8UDhjAoHW ZSAHXqw7MvGR8KsLqGgWyiCcse64USaS8krhSOS0/Ab86kvnw41XHYBtcQ1BPvgG3HT25TDP pCpegXfvPQvQahCww38Db+tytBaip00ANsEJj6w1Elp+7UewL7rd/eoUWOleGS7prhcQaF0O eiG3lAc7IVBKcwURNy6sJ/XxAq/vePC7BENjgjwd5uPngGnHp+QRUopSgBcyhT49fOdIjIHk SOmeENgCCLTeL4yB8VE5A//z6D9gnYxL8Rm4kCsRzLgSXjR9MBxt+Mcv4CBsD6w0yDd9EIWz J42DI+5410wCll6Ab+3KYLLrUVi9yQiL7nobga6SB7koNvwDfnHQEAS55r6ZPKhOBuCVucfh otJ0+PpjK81yIcdJ9z2PQOvy0HtQ2J4gD2sEeQjVA0t9qrageVCtFTqSIpw8qdVkVQfm+F7R OK8oJEomrJptcUjbPAvCLEqNBnYuppqIMA22dfKuhkzHpBhbSWUi3NDCRgPfZiJwGHW2nIur Zi68gsw2tpdGstJquk4+MkCbjFJMqIWvmeoIKrYuNM1gxK9Wq6esEfHKZCYjT2ak4Oi2bQRE oyaurQSQT4YhKk0oc2I3RI3JnkIqApF0PTtYXbsYbnV/Hg4+4DCYef5V8Ot5b8C/dJJOpKAE S+55DJbrmhrifaOr0GLHBSi5eiCZLkz2KES45F3VcFd3MPT3aTs+cAFHqrnomu8eUTXLTbIn hSPflot5yKlq9SiERcjncpAvyAlCbeMCusH3RXNEajCVkvItly9AuVJGE0dFg3CVI6L7jiPQ ugzkIRyMSVvnjcUW8yJKHiLBqL5DQU8walwsvtUNnz/4ADhs5vlw1a/nwRv1AgClJffAY0MK wCBkbjsbzrl9KaR/eXA9Qb7+LYijSa868frwebh0Jz5Z/K40WUSCfBYS5KgtftGTa3GTpfr7 8NmLAa2Vwwl35VoYAJexzud1GSoqdR3NdMkJwDrO5SKHddvqJ+SjUCpDpYQ7REyerXzQu04i 0LocdDJWCosQGHkE1HG4E/qwPSqbtMlxnKw3R40IctW8iqvRDkZtkV7sMtWVPZCQN++GHPl8 UgyEQKcRaL1fGEvjIwkFVBa4cT8kss+JwgdicCN95reVt3+tKK1ZEeQfPnsRjoMmwKxHa3fS FeGp8yYD2/7LMK/2U0342OrQ+KgOk+580bXyUHkbfs15l2Ya5FqRNJMHboal/4XvwV7I13zq kieGuThE8tCdtb8+1a3LQ73fbn9jb4IcSTZVO9UBoXhMuXeZtFGN4hWktyuYMl7inSDjDOLX IINVcpg7z2vkOtoTD0m2zrFTFVqwQWMUbwzwa8h0HlKf0BSXNLaRmrPU5Obu2/5JGt2xdBay mQxkUlGNjETt+FRaJzZKgnxE8wNmjfu8bstaxcBIX62WeFpbTDDbU2871eShBgHRqIlrzecW Ho262QqBDJtWw7zLZsIltzwGLyx6Cu6d+004bd8dYOKnj4dL/Q/BklWDGGcV1iZvAve1C63t AFqkqpJVdzJ4aiav+sIU7pgwEecYhrBpz1B+3lM0y/jCVv3CkV73LORMTUoF8ukEBLzq7gwn ym4uZZgy4ti6AkkkKfMQ8qhku4q3AzXX9Fk55JOhuu3ZzGE2VWSRdXrVIQSGKwOVrGbCp+7c BauEbYLV8y6DmZfcAo+9sAieuncufPO0fWGHiZ+G4y/1w0NLVoEiAWuTcJP7WljY0EagGvaG 7O/h3C/8HF5fvwEyVgS5VRL4u/LrcANOFtnht0kLpahZftdM1V7njK9D9D1kkSrvwQPnfBLG H/B9WNTfYFaJwVVKeUigbX+XsuCJZFM+W1PXXXgmBZ5pgXLBzTMJrJknYiwg4BkAZvlQ3Zl3 hDTKEL3vFAKibDoVHoVDCIwVBHSCXFuzzka1s0l4m4QL/Or+UGuCXJhqi9WYcBN5yylhOfSz d4x+oV7hQ/ihKyHQLQgMt18w5KBekas+750dH8nhV/N/gjP3PgPuWMZHWNa/SvY3DQnywkMn wjhsJ46+531deUANpQx/u25vHNOgabrXrbReaHxkjXZ3v+1aeahk4TetEuRN5AEG/wG/+tw4 rPeHwk1/byxTVqVM8wUrVLr73XDlobtzraaeCHJ5Uu8y7BabC1doRNfYQdYPnkQTFGJwXUxq hwwa2iXZsCAOkDiTDzbUzUeYtWP7tEM7zWQ6T5FxIKZhE5q/N7RhZdvL/Eu7v3xcmljI2Ej3 fo3MFySlw6uaYdHjQlzEQYsKQS5p38dMhyKi5o52wCfZH9fR68iNaNTEte1A9bqJpm+kxZuG 4fQn4Iaf/0XSvkWXm9ZB9tk7YM7Zh8Ansf5M3GF72OmoOYasNAxM/VBIq4tWPA+RGtugou5x k0INCXKU55X6Ig6azjDZbgEQi15cZsy64FrCcDunzykT36oc+0JhCJgIcf7eDaFwyDhcV9hA x0GLsvMEF7QUyryMWjjcNEyjOIfAhD63j8BwZcCoH60sZvRD4oafw19MFWkTrMs+C3fMORsO +SSW+cQdYPudjoI5MQvNbzlblXch/JWT4bqXBvBtmwR58Uk4/xPj4XM3v2k+TGf9GxD4/DYq gb3P1yBwnRP2Pv778MT7sgq4nAj1PhuVz9RQ6z9z+SESFgfiau9QRt3+EIT86u4pjrlYIBZk VUhbNMqnVHvB4nt9rPRmJBAYrhyMRFooTEKgkwjUEuR8TKybx8K2iJvI4u/CFod0KuYJHQFj Qc+UMO1MIpNpQLGrDcNFf/LeSZNXeiAEugCB4fYLozY+kjFdvwzuveQEmP1oczMQzQjy/qfP U8zSTb14PvTLYcMAJC//NI6ZPgNzXra23ULjIxNgPfHQtfLQIYJ8fepq2J33mYf/BB78/TVw wYkHwx4zdoeDTv4a/Oq55nMXkoeeEAFTJoYrD6ZAuvTB1gR5Be1/CyLXimjTy1Q354AHtekL yYaGrTxIzsc1QgFNrnDqQTYhwrVYVU0WNWRdA1tzq741SGMTmc4/SiZNoiaiGbVmdU1ss71o NUzpPzaiQV9Yt6EufVFuK8UMxKJRiMViyl88HtE1A92BML5LQF7DQJCUtVr3ujkZJA1VzXI0 AaOYskEyU8dPxkbeBlubInoeDgKiURPXdsMw7MibF28ahrNpPRTXNTnGY0M/rPqgpMhEwzDE B2kXg0g/N20UlUzwiLrHULu31ha0rkGO9a/vPbFghR2+OywR4UWICJLbtBtDJMK46hMBPAxU sRikfDLk1OmTzG3kxGFemgmkkmYKBmVc504L/EAwf4MJuREv3XUGAVGH2gvNOF+htn2zDmcT rC+ua2KqZAP0r/rAbJLEMqAqvP/QRXDClc9DUVHsbocgRy2tx86HT02/FJ5aW68VXl39HFxz ODe1grIw/kj4aerDGo0pywQhr2ScA+CNpHVH+oG4KINRfceEcYi0OK9C7HqSTZfFcZHIVyu4 esh0MxIIDE8ORiIlFCYh0FkE6glyHj4qlIjD7rHN80YSyoHwwlSKmgKVAHeFM5YJMsZB2Gby dtPir9bEm2VA9JIQGKMIiDrdXvJGa3ykprLa/wb8z6+vhNP33FqTyb3hkvveVnbpWeWjGUFe zd8Pp2+Hsr3dLLj7HUlhoJqD3x/FZf5AmNtMk5bGR1aQd+27bpQHBeyOEOSDsPSn6qG3W+99 Onz75gfh+dQSeP6+a+FkruSDi0Wz5zVfjKL5QtdWfcuED08eLIPqupe2Jsh1ghoHvaEmWrK6 3W9dW6QCKZ2QRs25UAr6ogGIIIEntL99CdQr0bTJ3V5Vq84VSKA/H4Q0li2pHQDnT2RQ28UF Af5ekOB8W2iRH+wpSGYAYa+cE/L5mqrGyX59i7srWPddcY5b3RWNbdSmkXjqmpBqH4X2vEb4 SZ/LmvkLs6a7cM/NyQgyRdhIN7TquTZPVCMoSXtcArVDt6JRE9d2g00FtENfkdhtva60G0tj 9+VyCQrZFAQ92iGJfGIqpcUgyBnEa1S4dIIcTafwT8biEYbh8kEw6DdkBcMVRF6j1AiZNuoz dykWfbDtkO0L6Zr3mma7vssE43Z6IdbHJbeCpotyrS0WNEoUvW8ZgWHJgL4TCA96M1ZFW45z uA6rqx6Drx9zGTz+gVhsaoMgX/cK/PiwveDfH8lbEvXr/n43XHq8E877/FR1UjnhCLjm2dWW bk3pF4s8Ul/Ev+syWGPfX8ibkCshP7wcvKE4KGu7xSz2b9Jk1BQhPYwEAsOSg5FICIVJCHQY AWuCHCOxWGyX+3Fhwi0udoCa0oVKMG7st3EsnspmIZ1Oa39odjAd1w/r5AfPU0tmAo4eugiB YfULozQ+0mEdXAvLX0/Co7d9D76wG8oonx9sfTTcmrE+3KgZQQ54RPnSX58CO/Awdj8Xbrj7 YXjk3l/BnAuOgh35u0nnwpOGxUQ9CfoNjY90KHrhpivlgQPfEYK8CLEvb4/yNB2uWMx3sIof 2iVf8B3YTZERL6SsN1SojkkeBGg9cR2WPPREzgHsTZBr9olr7YrXla1kMsTlC4CfD5pRo1UQ 0k4XN8PAtaANW9suj0fptN2ocZeOqPdqRRMauYatcvW9D/j5lwZp71TsfjsUG8fY9hX6dDvm DG1+W3E2ubhfiVMJz+GBaCoDxVIJioUcJGNBVVtemHqoy6T1C0GCMzRXoWvA6k5FHnxaesoQ 10h/rq0r85ZCs15oEebFoaU4uagPV4+AboaJgGjUxLW9YIxFDk8027LXyvtPwvVnHQC7fGoG HHzKJfCjexbCu+trNVn7YfHv/hveth7HWsalb5XGiapYGNLJOa4lXlOBDILcMJmUiaP5EzSX 4kAbbU63D+2KG6ZThtIAKyTVw3sF4acm0iDITaYi9HMNhOmXMsR8EsnPBxhOHyRrdoBYZpxe dgSB4ciAsQum3nZ9w0RV3ocnrz8LDtjlUzDj4FPgkh/dAwvfXV+npd2/+Hfw31YCsGktPPOt o+CCB96TCJcWCfJNH8JL1x8HR3mfBwvlcRh8KwRf2nkGXBL7AKqDb8MfL5yh9hXbfB5u/cdQ dgaFaS9Rp1UEdBmsMRck5E/ISzkrdlXwflP984aTo7Lw1rDsbPBBYG+DrFIWbYZAQ4Iccajo u7rUtkdW6OgLYt/c6DwQVDrhMuONi1GHGVRj4a8VG8xmv/RECIwVBIbTL4zK+KgBYJuKi+Ca /VXZPuRX1jtBmhPkGDCag3zrf34KXz/jBDjmhDPA7bsHnpv3TZiO8r/tFx6EVbXTGFNaaHxk gqPLH7pWHjpCkBfgoRO5/fFj4A/5mkq/YRncrJxFdBD84h/NJvAkD10uAqbkD0ceTAF08YOt CfJMiBNXrdgQLEJUItSYK4BkNhJf3JawMuF3Q0IjvIRWOH/vDasHeio2DhV3LojrxJh6YJDi HwkzYbpB11ZH905/HEkEbsrFIPNEZeVXrrFe+8vjgZoeza637JYT+v5Iqm1SQqS90RZUQC13 n9JoCiwYeIJxC9K7DAlNK1ldUEDN+4CVu9oc0fNwEDCXfXtiXskLQmsIcz1ywqrvQ+TCWXDl fX+BNzN/hadCPrjwmF1h4qT94ayrboen3+yHKpphWT7vh/DV619E635t/HQtbC9kNFUtw3RR /eRUEHRcs6uR9rsup/qukMbpEUSgIPxUl60S5KrrTCKkHXQr5ARNxmTr5bdxKujLcBEQstC6 fzzTQbT3uNumNe1ANI0SuRBmXXkf/OXNDPz1qRD4LjwGdp04CfY/6yq4/ek3ob+KZliWz4Mf fvV6eNFKAAr/DTPHY/0YPwEmTBB/42Erpe/A9+PGw4TtD4Zr69Q3KrDioa/D8V+9B9624rqr K+DeWdsC2/s6+JsQCLSvf+fpk5X+a8fzHoe1TcERdX14BLkSdCkDIe2wW1Ee3C6wSE7T6Olj RxAQuHckMAqEEBhDCJQz/PBsbJ8aNCiFhLrIzWXA6Mfz4MNndyRjmZOkn4+7myyQit2eGIYz qI71LQOil4TAGEag/X5hlMZHDTHcBKseOh22RTnc7aqXLV0NSZDX+eqH52bvjPI/Db7+bDP1 ce6Rxkd18HXxi66Vh44Q5EV44mzUIB/vhIfrJgUDsOhbu6JM7AHfX7K+SQmTPDQBp+s+tS8P XZfFhglujzlrGMzY+dBOYVZKBciXWqM/uFmEQj4H+YJEapWLkMvlayb5ZcjnclCQw62U8F2+ zv4sjz+XK9QRMMXaeIYBb6mQRzMOuBUU/7L5Qk0aWw+wouQxB813w5ehgHnmWBTLzfEsY7py tfi0nhxy2SICQg7EtUVvirNsVNvxIGlsD+m//3m44Za/gnnnFcrM3x6Cn116Iuy1AyeGJ8KM L/wMXigI8xFDhqo6EDb+TJqqqu1Qnr9AUt6rYOzi8MZylhGU0uohgdxvhG/bGOJX1twbE2vu QQwCjMMIlWBqNcjRrFEEtWXVXwmSYeMQXGeAJtUaMCN6aVsGcKCpHKyK9cOXsNYerE9wPzx/ wy3wV7MA4M6fv8FDP7sUTtxrB6z/eFDtjC/Az14oWJs1Kb8F0dtvhVtvlf9uBt+XP4V+t4Gj vnsT3Prbe2HRKrmNrcLqZ68B51m/gL+WajQ+RCLXRmHWBAYTZj0K/xLv8Fp5NwQn4Xu2x/eh 6XhXr+vDI8jziQgIGEu5JHj1BVwnpKTuVEoa3Y4AAm3LwQikgYIkBEYCgUxU7VdDKXksYI6p L6SZOgz2KR/E7shaE238Yz7FCXdsG7mpQ7m5lYMspfV+giughFOt9hVyIHRPCIwuAm33C6M1 PmoCU/m1H8E+KK9H3vGOpat2CfINb90GJ+DYaIfT/wDvNpJ/PSYxF6DxkQ5JF990rTx0hCDf AMtu4QvD+8ENr9fOjcvwqm9vVNQ5Bu5a0WwOT/LQxdW/Lulty0NdCN37wtYEefcWG6WcEGiO gGjUxLW5a/mrQTC3R+BWYUOzPhMpwQ0bGhB4UvSlYgFKNf1yXjMd5KnR9BKHZzpkLV/U6lJN Hxm2+6Xg0cZ/Utfk9rZoPiarTb5l26UyQW4y0aLbINfs7aP2uwMPMZQ123Ix9SBf82FhplTS QwcRaFcGxI4BrpHYzjmS1eYCANUNG+rMrQydzWYmVqpQWHA9OGf+AJ5dXSN86zPw4G3zYRV/ 3f8UnDcJyZ5j74H3ZREsvwq+vfH9obfAsmY7JisZjQiSz5Dg5n01EqnG/JZug1w7g6IvgKaN AioppeY3p+06qj/XYmg8yMVwEWhXDoYbD/kjBLYYAsU+PKcH2zD5Dw/TzlqSWppNcb/Y2cmJ gGDdbkf9rB8pTFMfj5kznfkjuaPzdLZYyVNEHUJAyE6rwY2t8ZGa6rXzzoNPTDwObrcyXYdO Km//RpkXTLn4OfhwqIyW/w6/ORm1aGe4Ifq+ZUNiDoHGR2Y8uvypa+Wh8jb8hu/mn3IxPDdE JW8mD5Xs7+B43Ml68M//XnPobRGevuCTsM3xd8DyZmJB8tDlEmBOfrvyYPbd3U9EkHd3+VHq CQFLBESjJq6Wjixe5pNBfbLp1OzfWzgbkVfGwNsBvnAc+vBQrGRM2xrtDkP9Rsc8BDTzPkGu vVXJQ1gzR1SvPV6BXCqi2uHHCa0vmm4xD2hXX9gQx0M/9bO8cLXer8XtxXMGxK+cjWoEPZpQ 4SaQUKPcxSfQ7iBklV0lFegLqxr6rWsni9DpOhwE2pGBSjkHIZcgXFyQKDQbCQ4nNe36aUSQ V2HVM1eDY+J42O2EM+FLX/qS/nfWF06Eg6dsD0fcugwU3ntTEZ7/Ftocn3A83PaWwYRvwIHw CdtsD87fZ1V3DZJWlmz4BpKGlqR+5oXDC2l9x1RJN0fm8KrnSwiTR8FEVtktVSmkNFLLOFOg QdT0uoMItCMHHYyWgiIERhCBSt0OzKaR4W7OQlFbgS/jDs5CzWp8U8/0kRDoPQTa6RdGe3y0 ad078MLjT8PLuXW6ssHgu4/AN/ebCsf/4rWaHaxGWW34x8/hQByHTz7vKeg3XtffDb4Lj/y/ /WDyfpfCH99urW2g8VE9jN38ppvkwYTzhn/Azw/Eucvk8+CpppUcoLk8DMCSGxwwcYoL/iRt nxp8606Y9enD4fqUlX1IIyUkDwYWvXDXjjz0Qn7lPBBBLqNB94RAjyAgGjVxHTJbxRS4JU0o 4Y9fa7WnhgxrmA4qubhOYMvx+6NNbOfjNme/brKBE5sOCMQyRgqQyA56XAbp7w1CX761gS/X Eo8oB/IKwpRfvZBIhjUSXHqPZGBGWlwQ6Xff9oBlnsj+vlFEI30nymKoeJI+qTxlWXCH67QM hwqrc9+tCfKBF6+G/eU01t6POxKCkhrlptJrcPv5e8PkGafB9351J9wZmANf3H9POPm6Z2Bl kzUAw9a/gY0nnICIsNEuxRvBBS1jcUG4d0NEO3tClINydbghTjb4O1dNWghJ4N+CU3JCCBAC hAAhYAMEWu0XxsL46MPn3LCTMubYCnY++DiYeYID9trzaLjszr9Cv7w7Ti83PHwz9nv4yb/v q84BJs+Eq379APzlA3nQU4V1H7wFLz58E3zDeSSc+u174FXrwPRQxQ2NjwQSvXPtJnkQqK97 Kwa//8m/w76KbEyGmVf9Gh74ywfis3RtRR7QeeU9mPe9I2Ha7qfCt+f+Fn59w2yYecjJcPW8 95or02Qi+lxb4EjzBQn+LrwV5diFSd/sJI/jISAAPfMbN26ckpcey1bPlA9lZMsgIORAxNY1 8lAdYGsKA+yjSoWxCduzXXaexrYdL3LR6Fpla1bm2UdsezYV3U82ua+ylctXsPL47djUXXZm U4YOrFEkw3xfZYODjI1nZVZYXWSYK7b9jruwaVPwSCH6bREEhCx0jQyMGCpV1v/Wy2zxayvY ugm7skM+fxI7bNdtRiw2EXAVBaA6fjyr9BdY8SNFAtgue6BcCwd03SIIkBxsEZgpEkKAECAE ugaB7uoXNrI1Sxezxek8G4Dt2LS9D2PHH7M/m2Ia87cJ/eA7bP5jL7N1U/ZjR514JNtz8tZt BrB5zml8tHn4ddp3d8lDp3Mvh7eJ/d8/X2IL+/6XVaccwE445Ug2fQsM2kke5DIY/Xs7ywMR 5KNf/ygFhEDHERCNmgiYyEGBBF3thoCQBZIBu5U85VdGgORARoPuCQFCgBAgBKhfoDpACBgI kDwYWNAdIWBneSCCnOo/IdCDCIhGTWSNyEGBBF3thoCQBZIBu5U85VdGgORARoPuCQFCgBAg BKhfoDpACBgIkDwYWNAdIWBneSCCnOo/IdCDCIhGTWSNyEGBBF3thoCQBZIBu5U85VdGgORA RoPuCQFCgBAgBKhfoDpACBgIkDwYWNAdIWBneSCCnOo/IdCDCIhGTWSNyEGBBF3thoCQBZIB u5U85VdGgORARoPuCQFCgBAgBKhfoDpACBgIkDwYWNAdIWBneSCCnOo/IdCDCIhGTWSNyEGB BF3thoCQBZIBu5U85VdGgORARoPuCQFCgBAgBKhfoDpACBgIkDwYWNAdIWBneSCCnOo/IdCD CIhGTWSNyEGBBF3thoCQBZIBu5U85VdGgORARoPuCQFCgBAgBKhfoDpACBgIkDwYWNAdIWBn eSCCnOo/IdCDCIhGTWSNyEGBBF3thoCQBZIBu5U85VdGgORARoPuCQFCgBAgBKhfoDpACBgI kDwYWNAdIWBneSCCnOo/IdCDCIhGTWSNyEGBBF3thoCQBZIBu5U85VdGgORARoPuCQFCgBAg BKhfoDpACBgIkDwYWNAdIWBneSCCnOo/IdCDCIhGTWSNyEGBBF3thoCQBZIBu5U85VdGgORA RoPuCQFCgBAgBKhfoDpACBgIkDwYWNAdIWBneSCCnOo/IdCDCIhGTWSNyEGBBF3thoCQBZIB u5U85VdGgORARoPuCQFCgBAgBKhfoDpACBgIkDwYWNAdIWBneSCCnOo/IdCDCIhGTWSt28jB 6ocr2PJVH7GPRQZM13Fs4pTd2T67bm96W/fw8QB769lH2TNvfMimHHUO+zfnPmyHrepc0Yse R0DIQrfJAGMb2MolT7LYordYaYf92SnnncOOnb5N66U1mGcvPxlji9/qZ1vtfAhznvtlduTO 41v3Ty57CoHulYOeKgbKDCFACBACYwaBruwXqh+yFctXsY+sJwhs3MQpbPe9dmXbNx3vb+b4 asyUICWkkwh0pTxwADasZKknH2eLlvWzCdM/x04/7wz22SlbDw+ajwfZyjcS7PkXM2ztpOPY Je4T2S40dRgell3uq2vloQO4E0HeARApCEJgrCEgGjWRrlbJwTVLF7DnlhbZpEkThVfL68aN k9gJXz6VTd/W8vPmvfy4wB47f1/2ldhAw3A+fflitjJ0YsPvH//fK+zWiy9jsRnfYnPOns7e f+wWdn/1SvboPV9n+7TBMTaMoNmH6ko2/5EX2LpJk5iM4rriOnbgl77KjphGI41m8HX6m5CF lmSguoYteOQ5Vqwpu/o0bWQTdzuBnXnE9PpPnXiz8R0WueIr7Oerz2RXzz6GbfNmhN10+z/Z KaGn2J0X7M6GqkEbcw8yz+nfZsnP/oD99LLDGfz1TvbD3xXYRQ/F2a1f3JUNc9jccs5Wvjqf vbBsnbkd2bgOZeJQdvGZh7YcDjnsHAJtyUHnoqWQCAFCgBAgBMYoAm31C2NifPQxKzx2Ptv3 KzHWcIbw6cvZ4n+G2ImTGoC+meOrBqG2/JrGRy1DtcUddp88MLbx3QfZ5Wdcyu57W1ox2uFo dk30Cfars9oZ729g7z1zM/vBjQ+ytUd/h/3HlReyWYdMM81jR6JASB5GAtXOhNmWPHQmyrET CpIGPfVDZIH/0Y8QsDMCQg7EtVUsCukEhAIeRYZUvw5wOp3Kn0OTLfW9D/KtBtqmu2ruv2Dm DtvD/s5/g9mXfwe++93v6n+e8w6ArdkUuPCZYuNQqx9AzD0Ddr3gUVhV1ZxVsnDHiVPhkOte hoHGPjv0pQSpWBg8TrUtUvFyQyiWgiap7lDcFEwtAm3JQKUAiSiWnUMqO63+Ox0OSS4Y+OIj JQHr4dUbD4Mpx9wKmQ0iNxV45+4vwORtjoKb0mXx0vpaXQH3ztoW2H43wGvC6aYP4OEvbg9s 6sXwzL+svXXybSmXgrCpHWHg9oUglSUJ6CTO7YTVlhy0EzC5JQQIAUKAEOhKBNrqF8bC+Kia g/+auQNsv78T/m325fAdaX7wXc95cMDWDKZc+EyTsfZmjq86UMo0PuoAiCMURNfJw4a3IIhz 28+cNgeCDz0Fz0T/E645bWd1rrLDGXBvrtIaUtW1kJx7Knxq8hHwg/gqEFPn1jxvniuSh83D byR9tyUPI5mQUQi755hkOxfmKNQfinKMIiDkQFzbS2YG3BoZHkqXTF7L+aTyzeFPmt537mED ZO6cDdc8/j7Ud+tleP3H+wGbchHE+xvHWH71ethv6xnwnb+sMzla+9g5sOO2J8Lv36kP2eSw Uw/lPnDpOAqmslOBUzitIjAcGciE3eoA0xUCc8mVIRni35yQHCGud9MHUTh70jg44o53zYPU 0gvwrV0ZTHY9Cqs3Ncn92iicNoHBBOcjsFZ3VobXfrQvpnt3uDq1Xn870jd9QVcDHEc6Zgq/ FoHhyEFtGPRMCBAChAAh0DsIDKdfGM3x0YbMnTD7msfhfYthfPn1H8N+qEBzUZMJwmaPrzpY 9DQ+6iCYHQqq2+Rh8I2b4OzL5xnKYByHyrtw71mTlbH34b9522IuXQvWALwy9zjYhk2Hrz+2 0jzvqHU6gs8kDyMI7jCDHo48DDOqMeeNCPIxVySUIEJg8xEQjZq4thNiqS+kklrMA1bKqn1+ B3gTBesgcRV68a1u+PzBB8BhM8+Hq349D974V/1ItL7QJwAAQABJREFUtrTkHnhsua4eK4VV gf73CjAovdFvy6/Bj/ZlMPXi+dCYH18HL353BrDtvgTzajRlqyvugqORsP5cSwMGPdbh3yBB LhYagn0jxKYOP3W28dm+DBQh5FI1yN3hTD1O5RQ4mA+sJaAKaxffCu7PHwwHHDYTzr/q1zDv jX/VD1BLS+Cex5aDlQR8+OxFMIVNgFmP1lRg1Il66jwc9G7/5bq6bUokEuSzkCBnUy+CJ9cK Jv1DePbiKcC2PgHuym053ZC0spiAaXGGmmh0mVJPDyOEQPtyMEIJoWAJAUKAECAExgQC7fcL ozs+qvS/BwXrCYKqBIC75OY3niDAZo+vOlhqND7qIJgdCqrb5GH9W3FI5uvn2B8+fynshPPd Gd99EcyqYrVAbYL+F74He6HbT13yRHPlm1qvHX4meegwoB0Irn156ECkYyQIIsjHSEFQMgiB TiIgGjVxbSfsVMCpEuSeqKQ9W4ZCUdWlLWT6IGdWq9WC3wSr510GMy+5BR57YRE8de9c+OZp +8IOEz8Nx1/qh4eWrFKI7+raJNzkvhYWfthOqgC4Zvg+bCdwP9tk9LvhH/CLg5CQ2/NaeKVW UbaUgK/txGDiaY80IDeN9JSLecgVtEyWi5DP5SBfMGvTlwroBt9rsBiexR0R5AKJUb22LQPF JDg1zf9I1qjo5WIBlBqA24z70tbmVTatngeXzbwEbnnsBVj01L0w95unwb47TIRPH38p+B9a Aqv4xI5vZbzJDdc2EIDCQyfCOIz/6HveB0FvqwCW4W/X7Y2yuR/c8LqRrjpwUXvkrpkTFBme 8fUovIdj58p7D8A5nxwPB3x/EfSbA63zLuLK5/K6/BeVup6HkjwOr5QUucjlGy/+yANes/Q0 iJZejxgCbcvBiKWEAiYECAFCgBAYCwi03S+M8vioIWblV+H6fRjs5H62iQINwGaPr5QElHHs Q+OjhmXRxR96RR7Kr9+AuykYHH5btl5BRy6fwX/Arz43DucLh8JNf7dceZJdN7gneWgATNe/ blseuj7HRgaIIDewoDtCoGcQEI2auLaesTz4NfvLso3lXBTNSviGMqvSD4kbfg5/MTFhm2Bd 9lm4Y87ZcMgnkbieiLYDdzoK5sTyzTvtugSX4VXfPsB2uhSea0as9z8DF3wC4zkyBCtqFWXX vwLX7onf9v8pLLUcB1QgjzbYA17VLIQzhAsBKaFNj/5wsOEKJDHdeQh5ZHvUDginLUhCIsjr SnE0XrQrA4WEXylr5vBLdvazym6AhEUxy3nqT9wAPzcLAGxal4Vn75gDZx/ySQx3Iuyw/U5w 1JwYWCh9KEH1P30eTMa6Vr9TYgCSl38aw/gMzHm5uU7I+jcC8Plt1Dq7z9cCcJ1zbzj++09Y bkuW018p5SERCYBLaQNckMpna+q6CxKFChRQLkxnEngilhriRJDL6I7ufbtyMLqppdgJAUKA ECAERhqBdvuF0R4fNcKj/KpPUaC5tOkEAWBzxlc0PmqEfu+87xV5KD55Pnxi/Ofg5jet9qka 5bU+dTXsjvMNdvhP4MHfXwMXnHgw7DFjdzjo5K/Br55rPk8neTBw7NW7duWhl3AggryXSpPy QghoCIhGTVxbBaaSi+nEVyCZgwISZImIShgGktZGJYywN8H64rom9ss2QP+qD8xaqIbn5nfl v8F1e+MWsK89D834cVj7MJy8FYOtTnqoXku8/Dr8GE20sN2uAkt+sZwBn1MmvlWC0RcKQ8BE iPP3eOhmOARucZijlQkJIsibl+kW+tqeDFQg7tXqgCMIOdQaz/YlwO/GMncE6utUTR42rS/C utqFGcnNhv5V8IFJDVv6qN1W8/fD6dthfNvNgrtle/l4ONXvj+J170CYO6SmRxVWP3cNHM5N reDgd/yRP4XUh0OrjmejPsW9wEy5uvwQCQf0dkF8c/tDEPJrttoxDiszQkSQ15fvaL0R5TZa 8VO8hAAhQAgQAmMLgfb6hdEfH1mjp+2u+9TX4PmmEwTcwLcZ4ysaH1mj30tve0IeNq2Gx87/ FEy/9CnQrSxaFtIgLP3p/sqYf+u9T4dv3/wgPJ9aAs/fdy2czBXaUBln9rzGNslJHixB7amX 7clDT2UdiCDvrfKk3BACCgKiURPXVmHJRj31BBlfXWaoTWrSDG81xM64W/+3H6KNtGnw9cQQ o19OkOMp9hNmPQq1Fpzh/7P3LuBuVdW++ERhi5Si5W2LAqKg9RCUhwhiJYBCDwejHI5yIVXw aOo9emhQEVOtR4Ki4aEG9ZzgHwlXiajhUAKFcIG0kAKmYLiSKoFLalM/UmgK2dy0JS3ZdfzH eoy15lpZee13ssb+vnbNrDWfvznHfPzmmGOSBvnhX4N1dvMrUjaNC4g8ITBNh1ch4tXIRm8o aWrLGhsKDvgwQS6hOnPOvmSgWYSA2t61uqawytMXzU9TIXbA+htOhzlKPt7xSVjxi9/B72/5 ISy74ETYT3m37yfhni6a7IBWB//8iyVwivdT8OH9tbLsdfzX4YEtHdh7Kl2zYNjODyYK9BZq 2YjeN3ghaZyYaEJK31BwwocJcgO+GXdQW57xjHAGGAFGgBFgBGYFAn2NC7NifuQA244/wpVH Cjjoc5nOCjRq0AnOr3h+5FABw/NqGORh+5PfhuOO/Az8vtJtvl+D1D/tg/P6+fCltdukSkS7 5Kv/DQ5T1yBByHU6sMryIOE2fM6+5GHIis8E+ZBVKBeHEVAQoE6Nnr2hUoeEoimLg6JXNSWC tovR/nZasUmOGtI98ePNF+Ce5YvhmEMOhAULT4eLv3UzrNm4w2ZLGY85rv0p/Pb5zke/zDzv gCe/cSSIgy6FTLdMkImVU2+DLWYEmmvbI/CFQ7B8/3AdPCfbUrb5o5u0fTGTHAQsfVy/uDEm 31zaIDLRB3l73pggtyE7Mz/7kYFGMa7Ljg+yaEoEmk2oFdOqTfJYwV7BTuVpwgv3LIfFxxwC By5YCKdf/C24ec1G2GFX3h5dCz/97fOOl3Sqse7eDs/993fhc2efCh889Wzwh26GB1d+Aeaj bO79sd/Ai/b4LFnZCc/FzoWDF1wMqZfGYOfz/wsuXKDJ9Zs+fD38xdG8kBRBPQ8+ZWKMpyTk pl4v6OaGfHHDNrkSqhDXtMiZIJcwnIXOfuRgFmafs8QIMAKMACMwyQj0My7MmvmRDYMdT35D VaC5tOsCQQ84kfkVz49s6A/Xz0GXh92vPg7LP3QiBB96uWXd3VpTVbj9NMX++AfhlxXbomLX s3CtekL6vfD9v3RYq7M8tMI6RG/6kYchKrZaFCbIh61GuTyMACJAnRo9ewLFGOgExCS2t5IK gDcqk8XtYhuDFxIXwplfuRUefaYIT6yKQejCD8KhI/vC0YsvgxvvfQZGx9AMy4aVcOWnl8Nj 8oZ1uyiV97rm98GfX9OdpN9VhB8uRHLvPVdDixWKV+6Ec/YWsN/593a+xEfXlLUSfiZBbjEl YZDgTJB3qsKZ/NaPDORjmv154ZM3hMqoVY712+FeTCrf2AsJuPDMr8Ctjz4DxSdWQSx0IXzw 0BHY9+jFcNmN98Izo2Owe8cGWHnlp2F5zwKgxD4KD156MMo1nqJ4oLP6+NimW+BMbOfv/OYf DSK7Ufw5fHyuQnrvB5+662XKbptnFaLqaQlrmzYIcttmGWmJW+VFi5q+WfFskyy/nlIE+pGD Kc0IR84IMAKMACMwKxDoZ1yYnfMjVKC54ggQB38e1vSiw+CIeu/zK7zmk+dHjhgOx8uBlofm Jrj9c6fAp29+HrrpwWi1VYO7z0MN8j298LuWZcE2eOSLh+Ka4XD4aqcj1ywPw9Hw25SiH3lo E8XAvmaCfGCrjjPOCLRHgDo1erb3aX6p5ciEQsCiOQr1KlRqmsp1tZCFfKUdUzgKD624Dp6w HcdqVv8It1+1BE47co5K3I8s+Bhc9XC1g61yM0+Ka8cTX4fDxSHwrz3NfnfAuq8eDmLOJ+Au m42VnevDcIzYC06/9YWOaRMRaCX8JkiQ5zqTmtYS86/JRKB3GaCFjwB/vChlAS+lLOuX1TSr kM0UDOJZ8qQ6Rx9aAde1CgD88farYMlpR2pmU0YWwMeuehiq3U4/SpHveu4ncCraE5/z8V/C xg6nH5QgLyfPhL2wnZ95hywATdgY+wi+F3D4V9dBBwtDGAO19UkkyL1R0yyRVC52Th8CvcvB 9OWJU2IEGAFGgBGYOQR6Hxdm6fxoxxPw9cMFHPKvPSjQtIG5n/kVz4/agDgkrwdWHsa2wANf 98Li7z8BdZsyePuq2QXPXqfcufRuWPEn+7q+AU+F3glijw/CTZs6LVZ4vdAe38H/0rs8DH5Z 7SVggtyOCP9mBIYAAerU6NlLkTJhNKWimFYIJMGRg6vn1Iv6EmXHr2oSY7s6DaR4Qc6uXT0c +5Jzi4T315DwPvQL8EiPGuc7138Pjt3rYLh0taxOMgblX5wKI2/9FNzxUufZQ6OgmdmYMEGO Gvl+1VSFFzKV9pjJpWX35CPQswxUM8ZFlMmSfbKo5SsXxcmkv418KF7GdnXcfFG+7+rc/FoB aPwZfvRR1PJY4IfkC93b0eiqT8G+2O5OvvkFi6w1ngrBO/H9sdc92960i5r65E94veFMa7n4 zbQi0LMcTGuuODFGgBFgBBiBmUKg53Fhls6Pdqz7GirQHApf6HWBYAe6z/nVVBDkPD+yV8rM /R5IeRirwurlXlj0tQfAfs3QjuJv4Cf3v9h2XdIs/RRO2VPAwu/92aZ1XoN7L3grvOmUn8GG jssOXi/MXGud+pR7loepz8q0p8AE+bRDzgkyAlOPAHVq9OyeYhmCKpkrIJyptnqvFyGs2CND 8wrTqgu9Yx189R0CDv3iI+DMjzeg/OgD8MRL0gi+uwar/+2dcNC5v4K/EV9f/wN8870HwKIf F22TgNailpJBdaOgvQ1yiXg3bJD7VRMchUQIw3ogomJY1Any3sxztOaE30wGAr3KQDml1bvw hKHikHAxFVbbhcXEjoO/SX21cyP8/l/fDXPfvQT+1/NOpH1r+99dewi+iDbH9zrlJ/CcYTpw F5R+eiq8aR8v/FfJeOmcVbyIS+sLtDZNnhqGDXLZ/Ixkg1yx2V8vQAjNs3h8URVDuvDWF5uu C04pt/y0I9CrHNjD8W9GgBFgBBiB4USg13FhVs6P8Czcuq++AxVovthWgaZRfhQeeOIlZ6Wf rvMrhzrn+ZEDKMPzauDkYexFuO9yD4zseRices65cO659G8xfOy0hTBvn+Ph+mfNOX+rPGyD dSsw/Dwf/EpSftv53M/hzLe9H5bnnFfeRo2zPBhQDKOjV3kYyrIPW6HcXJnDVpdcnvEjQHJA z24xFZMKsavYKEZyK5KBSqUM5XIJivksJKJBQ7M2kCh1i2pSv+/IXQ7vEG+DQLbNII12xc9+ E95ef+lqq33y7QX4+T974AS0dX7Dj74Dl55+AvzTfzwEeGdhl78GpEO6Jj2ahTAUv5slbYMA 8QkmkAjU/xqlpI6NB5LFv+m2CRUcQ5DNJTQ8w1nyzs8ZQIDadaekmwqxq15Io9SdF9Ilpf2X oVQqQjadgKBPOYaofAtCUdqL6RTn+L+NwfaXnoPHfncNfN57ApzxP2+Gp0bbqJ07tv/dUP8/ N8L575wLC876d/jhz38OkWX/CEcf8VH45n2bnReKUmYb5ZQh75GsuVVQTmsbBMIThEKdQKhD Mqhh4wkmYXM+quOEcpLEviOo4em05yYlyc5pQKAXOZiGbHASjAAjwAgwArMEgV7Ghdk1P5KA 25GDy1GB5m2BbBsFmlfgzrPfBOKgS8E8UNrH/EpKipw8PyIkhvM5WPKwDR67/Ghjzk15l597 nBCFEk3XwUkesB6bf4OV/34CHPSOM+B/Xv1juGHFpbDofR+Fy1f+rctpUwCWh+GUAyoVtSX6 7aYna5C7qba5rK5BgDo1erYtOGpAB3RinPy2f6KpEAfl8rZxT8KH7c+tgl/d9hBsMjfAbbHu gL8+vAoeqzh5aEDlyfsgecf98FRbu+lydHVI+BVCT/4XhEw2bhCGxjckA4tZkwyk976A3xLe E4ibJLucFLunDQGqm3YJFuMBS52Rf6endzo2OxobIJ24DZL3rYON9W47Oh3af7MGz2ZTcPuv E3DHg3+CF3u4tadR1DZ15LIH4hkkummDwJSNRKEAMZ/5WwtzHlxkkR8PxHImyd6uDvj91CNA dTr1KXEKjAAjwAgwAoOAQLdxYdbNj2RQtz8Hq351GzzUfoEAO/76MKx6rGISfX3Nr+TEkAzk +ZEVkCH8NdDy0EN9tMiDEWYMXn0uCyt/k4Bk+o/Qy5KZ5cEAb2gd3eRhaAuOBdtDKRwCMDR/ e+yxh1qWISvW0NQPF2R6ECA5oNRYHgiJqX9u27xJVOoNsdd+h4ij5s+b+gQ5hY4IkCywDHSE afI+jm0Tm0oVgRIgDjniKDFv78mLmmMaPwIsB+PHjkMyAowAIzCMCPC4MM21yvOjaQa8v+RY HvrDa8K+WR4mDOFURuBmeWCCfCpbFsfNCMwQAtSpUfJMDhIS/HQbAiQLLANuq3kur4wAy4GM BrsZAUaAEWAEeFzgNsAImAiwPJhYsIsRcLM8MEHO7Z8RGEIEqFOjojE5SEjw020IkCywDLit 5rm8MgIsBzIa7GYEGAFGgBHgcYHbACNgIsDyYGLBLkbAzfLABDm3f0ZgCBGgTo2KxuQgIcFP tyFAssAy4Laa5/LKCLAcyGiwmxFgBBgBRoDHBW4DjICJAMuDiQW7GAE3y8PQEuTcrBkBRoAR YAQYAUaAEWAEGAFGgBFgBBgBRoARYAQYAUaAEWAEekfAjQpmTJD33j7YJyPACDACjAAjwAgw AowAI8AIMAKMACPACDACjAAjwAgwAkOLABPkQ1C1dBxgCIrCRWAEGAFGgBFgBBgBRoARYAQY AUaAEWAEGAFGgBFgBBgBRmDaEGCCfNqgnrqEmCCfOmw5ZkaAEWAEGAFGgBFgBBgBRoARYAQY AUaAEWAEGAFGgBEYXgSYIB+CuiWC3I2VOQTVx0WYJARIDig6lgdCgp+MACPACDACjAAjwAgw AoyAuxGgtQKvEdzdDrj0jAAjwAjYEXDz+DC0Nsh5sLc3c/7tJgSoU6MyszwQEvxkBBgBRoAR YAQYAUaAEWAE3I0ArRV4jeDudsClZwQYAUbAjoCbxwcmyO2tgX8zAkOAAHVqVBSe/BIS/GQE GAFGgBFgBBgBRoARYATcjQCtFXiN4O52wKVnBBgBRsCOgJvHBybI7a2BfzMCQ4AAdWpUFJ78 EhL8ZAQYAUaAEWAEGAFGgBFgBNyNAK0VeI3g7nbApWcEGAFGwI6Am8cHJsjtrYF/MwJDgAB1 alQUnvwSEvxkBBgBRoARYAQYAUaAEWAE3I0ArRV4jeDudsClZwQYAUbAjoCbxwcmyO2tgX8z AkOAAHVqVBSe/BIS/GQEGAFGgBFgBBgBRoARYATcjQCtFXiN4O52wKVnBBgBRsCOgJvHBybI 7a1htv8e2yl2ju0p9t57z9me0+HOn1IPYm8xW6uBOjWqBJ78EhL8ZAQYAUaAEZg9CIyJ0dFt Yu68eYJnNbOnVjgnjAAjMPwI0FqB1wjDX9dcQkaAEWAE+kHAzeMDE+RtWsqGu68W/z3yWfGN cw5v42MaX49tEjdd8W2R3lgRG1NrRMEbFbXVl4l5PWZh59YN4vFHHhIPPfioyD1fEfvtt0Cc sNgnPnnOSWJr6ibx/MmXi6UnH9RjbIPhbUrqb2yDuPHL3xWrEcPUmjVC+OKiftclYu4shIQ6 NcoaT34JCX4yAowAIeDGsYHKPnufY+LZ1b8Xv7rnEfHKy0IccNK54iuBT4j5ezvleKdYv/oB sXG79O11IQ479ePieOcAqsex0U0iv+5J8cj/TolXT/qGuOaiY6UI+nNuw/nFn/6wVqSTGXH0 5TeKS47vdWaipbN17dXi4EXfEdkaiI9Ygio43CWeqo2IfUfQL5bryI/+ozj2IJlGHxPr779L rN+u+0Fv22vbxXs+fr54+0sPiwef3S72VQNrab2+fbt4++nni5MRm9FnV4v/71e/E48/s0WI uYeIU888V/yzzyvEuri4d+QCcdkZ84XYuUncv+pp8bqSvvo3IkZGXhevY15a/kaOFB8/51jc Nrf+bV2/Wjy4vmbJB/kYGZknjvC8X7xnfn+ziLGtz4rfx38lHtnwCkZ1gPjY0q+IC47H/Dr8 jW1eL+57fKMQRhnQ08hhmNfjW/JqBh8Tm9bnxZOPPyJSj+4Sl9+4QvRZrWZU7GIEGIFZiwCt FXiNMGuriDPGCDACjMCMIODq8QEHxaH6wxYEyr+J/DXLKTUOf6I4kWgmL2yzBsVCDsIerWze cKa3uGtFiId8alkUTALhKKTSGUglouDTcVLeR/O13uIbEF9TVn9YD4VcFqIBj4qpL5aftYiQ HNBz1maUM8YIMALTj4BLx4bpB7rfFOuQDGrjPPXd2jMEpWZrXM1y0hjfZf+pioNnJXijDImw 3wgTiCQgX6q2RtzTmzrEfda8xgr1nkKanioQVuYijnOaJhTSCQgHvUZ+PeGsGVR1oZ9MEsJ+ bUzGXWuIJtJQbgA0bW1cwScUTUCh2oBSKmTEGYjEIB4Ng0eaEwVTZTX2WjZs+JPxdXT7E4DJ tvxVC2mIBM15mBbWY0nPG0pCr7OwejHhmKdQqtSSNqIAqYC1jtT0g2n84vxXySXAr881hScA iUweEDL+YwQYgSFEgPqyISwaF4kRYAQYAUZgAgi4eXyYGJM8AdCnKujEK7NsENHtF3tNKOUL UGu3wpiiwqWD2iIwkuu+lGoUk4C6UOpCyhtMqAtGS7aaWE6v8t0HuX7XtJaIJvpjsrHspf76 yHOthASCjHcdYjopEC/O3lUjyQE9+ygxe2UEGIEhRmBwxoYhroQ2Raukg+qYHU5koJDPQFgi oAPJVgI0E1LmBF4IBAL6Pz/4QwlHsrWGcwJjY9wfheIkTGCaOAcq63kWIuhI4rcpqvpaC+sB 1B7v+JcOEUkeAKdht1mMqbilK/ZoiuDX50HhjL4RUM/pOHggWZLGcJwTRVS8PZAqa5O7bFjB NwAZfROhnouo6Sjvivr8r1nJqHOtUKYlcSkzUj6y5oZEtWDWiVP9ShHozjKElPL4wpDBOWgm IRP4DvhX0yoR7/VT+wiA3++HhKNSRA1SYZPIj6SLbUn01nzxG0aAERhEBHiNMIi1xnlmBBgB RmDqEXDz+MAEua19aQtOjViOtiGi6wVlMeaZXmK5UYCAutDzQ74boV3NGuS4J5Rqu8gpJRRN sojjYtoGy5T9nGwse6m/3guDGnLKJkIkZwapaYvh8ZABZiRT76JOjZ5TnyKnwAgwArMegQEa G6YCS0WrOCZp8/qCUchkEhAIJlXt30omBv5AEEKhEISCQZN4RncoFIRgJAXW4Rc3eHMpCPmJ wMXxwhuAWDIBQW8QCgr/2ihCJOCHoBIn/gsGNbIyGIpAMlO0aB0XkxGIW+YdVYjQybGo7cQS Er2K1nM0L5G8bUCrZKM6sSvAG05b0qQg5UwUyyuXPQhh1K5O5zVtavJnf1bSujZ2sP1cwx5G /d0sQRDz75XHV0ePupa5Ov9BLXAHIjoXQSLb16rBXc9rxLlCaKt1gfHX8zoWngiYVLWWcD2v EOBENJfV/CV1slzxkQnr9SyXtamQ351J/nohruNvV0hoQMKvzTfRZJutbWl5svyP88AIboDI +a4aWu72uAFUXDxRx/q2xAsViBqbMV5IyxsHVo/8ixFgBIYIAV4jDFFlclEYAUaAEZhEBNw8 PjBBLjWkSoa0g5QFCy4SHI4pN8ppTfsokJRCTr1TI5IxX22O8Zo5qEJU1QxXykALPfOr7Krn Ufso0KO5FjngJLknG8te6q/3rDcgE9G0qZISP1DJaBpbng5HlHtPY+p8UqdGz6lLiWNmBBiB wUBgcMaGqcFT174Vfkgh6VurlSEV0cyNeCSStpjUCF9PIA65fB5yaFYrFY9oJjEkYrRZzUFQ J6+DMTTrUatDo4Hm0JBoVvtdb9TYfG5U8xDS/YbRBEgumzZMdXkwzk4Ud04fh3yxggWWQpxM pXggGE2Bw3RF9U8mx5Q8eUNpSxzWH3VI6afUPEEsezYJAT3P/rg1bTNcA5K6CQ8n4tr01+oq JQOIk6/rhn+zopm883q1E3StRLJGoPsdNOyzEZ3QxvkaHfgz5lKIR8ymSV3LYt17E7rfCppe kTdEqP0gSW9RVa9AItrZREo+qmtmt5DgDdNMDeaxUztoRVB/UyOFCFSekCNAMp205z2+ILb5 dhruaIZFr3elPnTrMm2T4w+MACMwPAjwGmF46pJLwggwAozAZCLg5vGBCXJqSdWMugAORFGL Sl0U2hZuij1LyXanspAIo/3Ov/ytBNl0SrVh6feHVC2lZjmLNjF94PX4IJbVFiXNCtoQD/jA g+8SeVn/R89AHRfrsTD4PLgI9HjBFwhDVjGkqf/l9AVWINF6zJr8KE9DmwsXf2EHTSvZLzSq UFGNS9ahgAv2ZDyG9j79EIhqdj4r2Tj4j/0HuOS7t+K3CPi9PjySbOrPNdXNAlycx3K4oKxB DnFIxKNqHMq7eq2A2np+8HqxPP4w5Cp6edpgaSotYX7ScQj6tMWtx4d2MHMSS20phP6jW/2h t3IWNQV9HvAi8SHXQK2INkLDEVxAKm+bSHBguXViQOkcfMEwxDNK+uZCMqyeCa9CKhoCHy7c /RFnrTw9d9P+oE6NntOeAU6QEWAEZhUC4xsbsAiq3eoAjl1eiOUsPSekYxGIxFJQRfaxXi5A OpWEGNpz9mOfrVq0QLMV8ZAfPB9dCon70xDHMU4ZR1JmZw+KiQo/jnvKuEMkpgpclzFR8VNM KrajPRBJdxkflGIUNS1e6xjagBj29SHJ7EUhphHPdhNrZSR0A7RbWiMzHV5LWdR84395RaNZ tpdNZKVEmgOOmdpmtrfDaTTTpFdCwgxQa1k7UaZrH+M4JYSTnXJ5U0TZYEcN8WAIYqm8IxlL RG6CDJ7r46qw5JtKqYBKJKy3q5kUKZQRzk76W/zoP1Qi3RODin43jHJ6j0ygqF4qaXVDotXu OhLn+jhONsVV/6h5T+bnVEUISUO8iSbVChaTamaOmiWy9+7V2rb5qYvLPAUQsN1ro2xeUF78 8WKXeJw/G4S/30qwaxsQcvsQEHSwU14zzMZoftXTE+EY5Gm+5pwsv2UEGIEhQIDXCENQiVwE RoARYASmAAE3jw9MkKsNSl/AoHZ2zTiCbj2u2kDSOxJSNJ6URQSSwpEoRGMZ+CMeifZJGtsZ JGHly568qPXV1O1AUkOzHylWjjZr3wJI0qLNa12DzdQWpwWWbWHYIgw1wz522wVtSxh8gUfA o3j026+XwxfNQUnXlFbztf/hev6QLJaOeWvHkREPZfHcKOEGApLFKj7WRRmVW4gwHuTF5Npg qVDvzUrW0FoLJbJQLuHGgn70tz3h373+5Eu5lEWxaXe9CWn9UjTNBmgDskjyB+i4sS8EUdw0 SSsbAwYpgZpa1TJEJRLdGqcTyNP7zsRcq4vpTZ1TYwQYgdmFwDjHBjSDodo81vt1y9ila/bS SaVSOobmQ0ir2YcbvGhaROojF1/4P4yxUb7g2DB5Id2H0X1MVNBFgpnib9HMbUXfSCeQsJiy yEdQu9ZQvybS2m+Y5GjWUTNciQ4J+7Jqt9sknUNtiPlaNmLRMqa05fETI9THa+tcw5JzJKhV ArVFu7gJjXoV70JJSxdU4vhs0zKnE0/aeODHsSxk1EGr5jrNM6STZ428Nqa3IcgNEyZtvlvK Iv0oxBSNahNj6ZPNiSZIcCz2RhUN9rpxOs6LcxT6UzYuaG5B75SnqTnvgbS8r4Pfigmayynj ow/SkjKCHIfsLpLGfp9lRa0FA/OUpMRdx3mQscnhwc0NUx9CTrarm8y+WDZQMFSz2YBqpQRp tFNuzkntJvrMTQSljfjwInfzwlNlvjnOTHXNNXtgBBiB2YAArRVmQ144D4wAI8AIMAKzBwE3 jw9MkGM7zEUVTWXUGMe1QFO1L66TvvY2ahDdIZXopc8Nw6aldgQ4hJcbkca3suBQFkGBZN6w Xykvkqu4kFYboD9maDXXczphTmY8aIHl0QhmSrflSYtZTE9eQLb4a/NCs9/tgVBEOWLuhUhE W0T6UevJ0DLCTQRDhxw1C+PK0Vy0candsdWEREDDQClToqCvSo0jwBIR4IRlPW8cCQ5LxINx MZY3ZqYtlaFr/SEuXixPIhXVForyAhc14LRFqlUrjGyZy0epSQPRg9rwYcVuKJIyFTxmrx1j 7mWxL2V6ip3UqdFzipPj6BkBRmA2IzDOsaGAY6MnnICY3q/LF0QTyegJS2a68I4GhYzz4Gkq ZWPTE4zoZki0Sw0NLXaf3JfXtLse0Ca0wh/2NCbqWJezaDPc50e73TYG1KkucHyhDVxfJGNo qzcbSICT6rquMe0xTJEopDGODdIlkobNZxxH2qaK5KQRJ+aFTH0kpBsma4Z97BA46r8bmxN+ sJglbylb3Rx3cYw0syptikgbCAapjfVkuWhaH5M9huZ7E+csmmkQ2QSNnHw78y+ynxa3rsGt zCu6/untNl7UZh3llHaJqbIpo12SqdvwNvJsxlgiEtzbamtc8ZWL0maOQpKjST1Jk9yMhVwm lvZNCPLR7mnmWUtHuVDVVKrAuVow1nqJervIbO/LKc0ckLzhZPOi/qwXTMWNqGRWRm4LMeNy G7x7hRQEupr0c0qN3zECjMCgIMBrhEGpKc4nI8AIMALTi4CbxwfXE+Q1nYymxUHDIMjlBbzW IGnBZSEE8FOWLm7CBSctVJISUeyNaCZLkvplTMYCBReK2oLdJI4Nu9wYV1Rf9NMCy+uwCJRF xbwICo/SOtjjlP22uA3taGURp6StLLObeKy5omnPEcltIakVkyPon/IlERAWzTrjGLZZzlYs kSShy6rQJivxFUo+DYJcWuRT/nurv6YaH2mAyfVXJU15mTQ3sLCS5nn96L3aYeiLbmNzxB93 PLJO+ZzuJ3Vq9Jzu9Dk9RoARmD0IjHtsaGJPbPTfSCIqtlTUP1PzVCbNqV9X+x0kwVWytl6B Sk3XRKXNXoPgVCJDO9bY96skbI9jopaH/v+vSpdVyiQ5xWQQ+HhKLBQOoskzHN+MDWDFl2lz OyyZZaHwzk8Tq1i2iGNqETJxjdhUiFnZ3IwZXiG9lbEYtXh7UC02zH/IGw+kfY7juTWvZn6M uQgmbMwzkLBNp5MQ0klST6AdgVsxTghYiHazEI6unGoXXNJSd/Slvaypygfa5or6RppjqGbO mgV1DhWRSF8tJOKnzydkhQR7Ulndvrs2TnbIE81/EMt+yiq3F9WmPZqyS8TjEI8nIJXJQVk1 cWfPVW+/68WEOldTLmLvrufdNGzFy3VO2ufCdmFpJa3dtSIsGy695Yt9MQKMwOAgwGuEwakr zikjwAgwAtOJgJvHB3cT5MZiXFuIUkNQn/64TVsZtWr0BZdMCOCyEsKGiZWwFga1nuhyJMUu qKplZmjwmbbNyd6nwOPTlWoRkrrGtrJojufoLK65INdI6/aiYdEGKhh63u0DSF9kAkVIZlQM L5R/iUjWtMrN8hha5romIIVtlLSFnHmkuhXLpuFHQNKmyUUkeIvZmL7qDzXA9HoyF4gVCOKC V6lv2thQ8twoaLZqrenh0Xu0X05tRLWvi35JM9BuW5TKPlNPyic9ZyofnC4jwAjMPAITGhvo hJREllXSpMkrm2xQ+nWzjzQUUuXiG2S7uVmqkdLaONLbmChH2L9bvszZH89LEeCGr05Kx5C8 zGVTqva71zIe4kWNulmXZA/EtRK5YerD64dggO7kCEIsmYV2Zp5pXEn0Oo4TrtL4TGZdhAgY 5mK0wprEtjkW0jzDA9FETN+4V8h7Ux9dAkqPJqWb7uhALNsD6Rr6Fpvgdj/S72wY21PAumFO p7uU9xXVrrw5BzGCSkS6aUu+DuWyvTwmka6Mle202o2N9C4Xnxvpk4PqBeO2zhvJg/ysQSLo w/ta/OA3/uHvgPXOFDUEbX7YzAXJsdnddKmrOY8050R2++dGeS0KEfYY+TcjwAgMOgK8Rhj0 GuT8MwKMACMwNQi4eXxwMUGuH5n1hiGTz0E2m4VcLocmQ7SLIWXCVG12BhkrEwLK4pcubhIQ 049PmwtT1OTWWQKD5DW0oE0tLmqAvkAIEuk8qGZOqa0bCyxruvRZfioLcbI1aS58ZR/t3QYx geS843FvtFOumSLRiQ3UslY2AWQTJKSNpNnyNtOiY9jKRoCqf+iApaG5R1qHRnBT88kTko7y o25iTNFw67X+DA0wxFFXtyrFNXJc0dKTtcIIC0sboAUpllmxK6/9mXVoJ/WN7M+Qg9oUPWco G5wsI8AIzAIEJjI2aBq/SB5Sv4d9P/UrHiToDO1Vo19HbXC6zLKl7JLdbSWgTphqGs5mf0rx O46JLXF2f1GrVi2nkgpxskEt3UeBY606xknatLkQXgAqM/1GGc1xpFvqpFUfshvCbhMwr9u6 jrdoRbcJoLzWN7Dl01F0eaOHTLVRcCwDXQxpzBNonoHzE2WMpjHQJJcpsPksJ7VNkpb4TS8t rkxIGXPbmJRp8V1R7d8H06QsoHkgU2fKuO1VNisczIAYm/W4OaCZYsGwqvmfiGSCRk8Q5zbG RrllM4QypNxTom/82E63kY92T3Mu2H3+Zp7UoHmJ/jTmjHoqNV0Bwx9vLUu7jOB77fJZj3TB KJlSab3bhkwEKhrk/aladMgAf2IEGIFZhwCNtbMuY5whRoARYAQYgRlFwM3jg2sJck2bxgtZ m0IRkblWrTFcWxm2wiVCAJstLX7lRRoRCvI70ggLJEpaYzcW2ortS4NiaBEEY4GFi0A63N7i iV7QIhdJXOUCrk7+S2iPO5alhSddzkWmVShC+UmLKT8uOHHBqGjaWS4OQ806TFdZtKaNC88w vFFO1AzXNe6csKQFuYWUVpI3bJVbyfh+688g4HUcG/rxZE34g9KmAGKha5rLpLkRXlrcG5qB aBu+rS1aGcJpdFOnRs9pTJqTYgQYgdmGwLjHBlNjOqEyjWjzWdWy1si7gESEm7a5ZTvYdiCI IMcN5VxeNdFh2Lw2xorOY6I9xu6/ldM/ZLOafJt2u0mzlwhly/0din1yJQheHp1IK2M3aV+b GvAUo/OTTktZzXU5+0USU7ebnSiYE5NKAe8A6TSYY2Rktz0imX2h8thtZhvawdIlmXTCgDSJ 6dSXTLhb86zb/sYxv/3l2dYQTf1S11CG5h3W7/Zfmn+Z0CUf5nxFGd/sG/KKL8PsnaR9rl0q HnUgfM2y2Od9aopoC54I9F7zTjl1mgvSN6enYg+/jpfCyv9kW/ZQ1zdxcGPKaCF4eWyhk6a/ mpCOGZ4wMOcqJIt2DXxzo8ofJ2UAp9zyO0aAERh0BHiNMOg1yPlnBBgBRmBqEHDz+OBKgpwu x5IXk1rTIhLYSsYq30g7Opwpg3I5mbbopMWvskikZYe5uKCFt2qGRT2W7YVkLg0BDy7WR0kj uzUt5eIxujSUFnrhDNotxQuzWm1tykKBxDVqvFGDjhoEuOwHc5PRLgZN6cS8shDVNM87aXbR YsoLoZByuZWkmYXRG5r0lgWYSaaQHXYlJ05YmgS5vCCTjj8jsU2aTOOpP4o/pNSTrk3uD2qX dCm2aHNoEzamaOyRpjiS3uWashhVLt9UbK1ruMqmVGhzxB/NQDrix/CUQyveM/GL2gA9ZyIP nCYjwAjMFgTGNzYAmarQNwHVjV6PHwKqfWofpAtZCKEJiBpux5KWbWfzGVKfrmyo+iUtWOOU UucxUUG0Vi7gia8CGCbRO8GMmwM+3Lht3QxXTouh9qy+oUtas61a00guYl61sZdMkVjNcsnJ KxgZGBB+knka2a/szul3XGiXW+O9GUiWFtWx2meaSGlWIZtOQ65I8w2MAdNQNd9tmtREcls3 nc35iUyca0SuoklMm/VoOk6pn3YmRcjkGl5ubsdVLpPp1s3XSNr55jdnVymB47PF/rvpr6Rr r6v1ZzPJhmoLBqEtk/ekQZ0s2XcbqhDWzeYY9WYmhZy0Mh9TsOi1rBQYN5fUcHiSMOV4Lo88 9vakC8GRHFfbPSoq1NE0XxQ39M1TbTiFKWYhjSaCZNmgExPyJbGmfXQkyKnaMSfyBor8vrdM si9GgBEYJAR4jTBItcV5ZQQYAUZg+hBw8/jgOoK8kk9oZDAu+O16TPIFmQppatKdpq1Gr9+H CyVFGwwXWYbGm3l81iSbJY01WiTri6VAQiGBTa0lpQGGYik085KCsH4xVjyvLIDNdLVGGoKu Zk+buLDVF3tKGH8kCcVKFTWSalDGhVNMNyGjksG6jBHR643kOkhdwyCJlXhTtkWpsmmgvPcE k5pmU7MGKST06V03LA0b6Hj5pRZ1AzJ0gRbWFa1px1d/RO4jqRHQ8unHOiBtPSWPin10hd82 NPaxjpULVD14wWoTCRbNvAzWu6G2ZcVDKIS6fd3dAc2p/qSVSSmX9m+q0+P4GQFGYJYjMI6x gTSLhccHAfUOjgDkyzohq/ctKgFrXGzcnUTUiErsl7Cvt47BvYyJCsYm8SiTvO3QJ6JYELGI Ho2xnu7LMMxsYP6VsR3Jx0ajBqV8GkLqiSLplBFtomL5g/Gsod3dqJXQhjRupEomMYjI7XRR pDLO01hJ/bX8lLWaS0kyDaON7dlMXDOXIo2RJg40fwiBZv2tAWm6UNwfNzWJcX5Cd6akjfEN gDYMgomiGaXqqptjM46bOZmJtfmkn1QHptIAfXF+NpEMVsdcn6zxLPmluVfLPK4JecN8jqJd TnmX25YPkvmyesKuidrXiZA2T3Eaw5uNsmbKTW3rPm3eJ2WjvbMJhSRdxIqbK6hYMZG/WjFl mMWR24bmlk4zGHKojPsBSKLpwERIMxsYVk9AWHNB8h3UcVLkgszvxNQ5qNU//2IEGIHhQoD6 k+EqFZeGEWAEGAFGYKIIuHl8cBVBTgs+qnDTviKSnfoiwvimLoiI+MbFlU5cK1pEKZ2lJjMd sjkTWnB4w1mzXaK2FS06AnGThFYWgUGJzFbS9gZjUDTOUyOxq5v7EN4Q9GyStFGRLvw0SVK1 bP4wZA0tMS2Lab3shj1SM+cWV1G3jSprZWkeTM17K35I/Cdypo1a1bMzlsqnYipsELpaPB4I KwSEloixYDfSMOxjdqs/6ci1SmpodVCI6QtjrFMyc2PaN8W6CKfVvBv2e9E+ukn0oyahfmmr YgddNz+v53TmHwZGajseOjGfeYA5B4zAICLQ59hANsLV/gRPPuWUfdumopGtjSu+iN5HVtLa xnPLHRKtIOUjymkcc9NT9tF9TFR8o8kUfVwMpbsTj+oGMJpYCehhPDTmYr+tWDKpZKLG3R32 fpN++2ybx/VSBoLSpc3kLxBNa2MEbkZEpAtLle9e3Dw2xw+z1A1DQ9k2VqsYo7kZyWRZo5hs yWswljHGSDNW3YWnoOhS0ZY8ohc6TUbfBNZxQdcmpvmN+s0XUTep5fHRCIP57Hx6qgFxBfs2 2uD2PNMJMzN+mofJPnWN9JA5z7LkV2+fahyKZr16igA3NKJRrLdWnL2BKBRtlZNV7aW3+lVO Pdi8yhlTNfppw8EsA8YjbZxYA3T7Jc0D5XLpbm9YvpulDkmyl05+vUHIFGkW1ZqWTOSr+fUE IF3qWMLWSPgNI8AIDCQC1EcNZOY504wAI8AIMAJThoCbx4c9FFQRgKH522OPPdSyTHqxxkbF pkpD7L9gvpi7Z/9wbdu6WWwT+4v5B+1tC7xTbN60RTT32kvst//BYt7e1sjHtm0VlZoQCw4/ SFi/2KJx+jm2TWyuVEW90cSve4kDFiwQB821p+8U0OndJnH1HkeINdGcWH3ZyVYP29aJT+73 IZESAZGvRcWRjZpooI+5B7fBqhOWO0fF5i0Nsdc+bxZzD5onxptbawaVXxrOe+2vYKAjqeKz Tcy11eno5k2isZdSV3Nbo5HfYF43bRkbX93I8UyBm+SAop50eaCI+ckIMAKDh0AfY8PO0c1i S+PNYsH8ecYYpI1nc7v3kQ7IKPE13jwfxzqHj+qrzmOi6gXzv3VUiIO69dHoeWzbqBibq40l 20a3ilr9NRxfeujf22VPer9Tj6+51z5i/4MPGtfcQIquN6c6RtZxSNfStE0ZHOLYKbbiHANL LfY7pHWO4RBgkl+Nic0bSqK5/7vE4fP6nsW0zcsYtqOKOLjHODEPm0bFfJxHKX9qO6jVhTI1 2u+QBWJ++8bYNv3Z/GEU55vYzMU+++0vDuqhbGPYjiuqXOwnDsZ51+TV0mxGifPGCDACtFbg NQK3BUaAEWAEGAEZATePD0yQyy2B3W0Q2CpuOuNg8aV3J0XjpgtaSOuta68VBy+6Ek/0JkUT v/Piqg2M0/iaOjVKkie/hAQ/GQFGgBFgBBgBRoARYAQYAXcjQGsFXiO4ux1w6RkBRoARsCPg 5vGBCXJ7a+DfKgJjW9eJL58VEK9d/G/i2Me/JK6sR0V19WVC07+ygnT30uOE7xcFgReVihVn OPmw+udfU48AdWqUEk9+CQl+MgKMACPACDACjAAjwAgwAu5GgNYKvEZwdzvg0jMCjAAjYEfA zeMDE+T21sC/VQS2rbtW7Pch1ApX/vxxUf31JS3k+LYNa0X8lzeIZT9Iqd48/rBYceknxSfP OJa1yFVEZu4/6tQoBzz5JST4yQgwAowAI8AIMAKMACPACLgbAVor8BrB3e2AS88IMAKMgB0B N48PTJDbWwP/1hDYtkncf89jQhx1sjjr5KMcCe+x0WfFfek/C7HviBbm9e1i+8h7xPmfOL7F DAvDOr0IUKdGqfLkl5DgJyPACDACjAAjwAgwAowAI+BuBGitwGsEd7cDLj0jwAgwAnYE3Dw+ MEFubw38mxEYAgSoUxuConARGAFGgBFgBBgBRoARYAQYAUZgChBggnwKQOUoGQFGgBEYYASI S3Lj+MAE+QA3XM46I9AOAerU2n3n94wAI8AIMAKMACPACDACjAAj4G4E3EiAuLvGufSMACPA CHRGgLgkN44PTJB3bhv8lREYSASoU6PMu7Fzo7Lz090IkCywDLi7Hbi99CwHbm8BXH5CgGWB kOCn2xFgWXB7C+DyMwKMACPgjICbxwcmyJ3bBL9lBAYaAerUqBBMDhIS/HQbAiQLLANuq3ku r4wAy4GMBrvdjADLgptrn8suI8CyIKPBbkaAEWAEGAFCwM3jAxPk1Ar4yQgMEQLUqVGRmBwk JPjpNgRIFlgG3FbzXF4ZAZYDGQ12uxkBlgU31z6XXUaAZUFGg92MACPACDAChICbxwcmyKkV 8JMRGCIEqFOjIjE5SEjw020IkCywDLit5rm8MgIsBzIa7HYzAiwLbq59LruMAMuCjAa7GQFG gBFgBAgBN48PTJBTK+AnIzBECFCnRkVicpCQ4KfbECBZYBlwW81zeWUEWA5kNNjtZgRYFtxc +1x2GQGWBRkNdjMCjAAjwAgQAm4eH5ggp1Zge264+2rx3yOfFd8453DLl01PrRZPvrBdjOhv R0ZGxOuvv27xo/7AV4d98APi1UfXitq++xr+Wz0qb14XI4edKs45fn7L551bN4jHH3lIPPTg oyL3fEXst98CccJin/jkOSeJrambxPMnXy6WnnzQhMONbV4v7nt8o7BkdOQw8fFzjhd722Lf sPYO8cvbUuKZLdvEwsVfElcsPUfMs/lRfm5ad4e46ZbbMN91seC4c8SlSy8VZ7ynNa8OQYUY 2yCu/vK94rM/v0wcvqejD37ZAQHq1MgLk4OEBD/dhgDJAsuA22qeyysjwHIgo8FuNyPAsuDm 2ueyywiwLMhosJsRYAQYAUaAEHDz+MAEObUC6Tm26W6x1xE+4U8Uxa8veo/0Zau49riDxZUF 6VUHZ/zPfxPvKGbE766+VPyCwni9wquEeeUVsaZAL4UIpSvimnMkgnz0WXHrdd8Ul/4gpaYQ CEfFuSf9gxC1P4tbLl4mtLdCRPM1cdnxEj09rnBj4u6lewnfL2yFCaZF88fnCJOf3ibuXu4T vh+sEb5wQnztw6+L/zjzUrHGFxe1uy6xkOTrblwiPrTsNuGPpMQ3PnGYePymS8WXflIQ4XRZ rLBtOthSxZ9j4v7le4nFPwiIYuMm8R47Q98agN/YEKBOjV4zOUhI8NNtCJAssAy4rea5vDIC LAcyGux2MwIsC26ufS67jADLgowGuxkBZwTGto2KxpvnibkmIeLskd8yAkOEgJvHBybIWxry JnH1cUeI7yB3HSvUxdJj55o+tq4Wxx18pvDEMuJHnztDHLT3qLjxjP3FsjVCBJBMv0kl03eK tdf+o1h0pVdUYIVQKO9nb10i3nvpbUL4YqJx11JJIxv93vRFsehLFZGtrRYf0Xnunc/eIf7x vf8iMFrhDSZE/AcXicNlkngM8/hxzOMan8jV7xIn61kcbzix9X4s12JxgD8g3r2PVtzXXntN LL78RnGRRL6vx3J4sByeUFo8fc05qkcqWxyxukTHamzTHbjB8C8ISko0b/qETrDrmwsiIqpP f0N00iPffP/VYsHi7yBecVFH4l2qAS1z/H9XBKhTI49MDhIS/HQbAiQLLANuq3kur4wAy4GM BrvdjADLgptrn8suI8CyIKPB7uFAYJt46v7/Lf76+oh2KP51PNF/6sfF8fNlIkUr6ean7hcP P7td7LuvZhfg9e3ofs/pthP9o+LaPfYX98cKYvXSYx0h2oRWB35S+6T48SXO3x0D8UtGYJYj 4OrxAUmDofrDtgbKv/H+ZUIeNbwSRzRXs0RTTgUASV/zXTUDHjU9D6TKTeN9KeEHEc7qv2sQ 82l58seLhh/D0chhHCGo0otqFlDDXM2DJ5QCM1byoD3VNEQEjByONxxGl4tgmT1RaFiTsP4y yuqFrJEoQD0fU/Pqi+UN/8a7qPkOMKdhtVx+KHRKqJI28BfeqFk+I3Z29IIAyQE9ewnDfhiB YUSAZWAYa5XL1C8CAykHOyvwh+TP4YdXfw9u+OW9sL421rXYu7c9B+nb7oWNOzt43d2AlzYU 4ZlnnjH/PftXqHYK0yE6/jRYCAykLAwWxJzbAUGAZWFAKoqz2QcCDSik4xD0alyK1sYDjtxD tZCBeCRo8A6BSBKKNSvz0qyk1O/JcjvyogJhj5JWEEp95JK9MgKzHQE3jw+sQY61T3+bV18r Fpx5pf7TK9KVB8Q5883zNJvX3ioef+s/iwt0TelNdy8XR/h+IIQnLCpPa9riSuCt634jHtxn sbjoWFQJH10rzth/kaoNnig1xEVHaTuYO0e3iua8g8Tcsa3iqWJTHH+somu+FTXSD1Y10rGj FaXmj8VRZvJ6vrTHtqeuFvvd9GEBN50xgXAYdOd6seTNHoH67cLjC4qrv3OF+ISDLfTVV58h zvzOGswWaoX/mLTChVh/E2qVf+k24YvmxV2XHa9mbttTN4r9TliGbh9qxt+la8ZvEJfv8S7x k45a4ZvFtWcsEFdiMsqfN5wRq1co5eO/fhGgXT8Kh50wOTs++7Kx32ZHvmMCfXzctvkpEb/u JnHg0uvFRe9xPkcwtnW9uC1+u/jD+leE2GcfcdRHzxOXfhpPdzjIzdb194v4LSvF4xtfEwvP 8ImlgQusJzP6yBt7HRwESBZ6koGdm8T9q54WqHii/6EGysjreM8E/ZaeI0fiHQ3HSieCpG8T cCoaLY+/gPdSOMUha8K05NUWYIryZ0uFfw4IAn3JAZZppseC1zf+Riw9e4m49fm/mwjPOUl8 PXm3+OHiQ8UbzSi3G9AAAEAASURBVLeq6+/b/6+496dXie9GfiOeesNF4sGNCXHWW2ye9J+v PXml8HzwWrFB/vy2L4rVxV8Ib5swsld2DzYCfclCSz87/WOCYnZw/f23iVtW/kG8htDvc8BR 4rzPdrjTB9cV998WF4m7HhfikIXC9/ml4oKTD2+ptA1rfyN+eecj4pWXMda3nyQ+vzQgTrYc V20Jwi+GDIG+ZGHIys7FGXYExsTaGy8Vi9Dcq/qHp/hreIpfMkqrA7BT3HrGm8Wl3qyAFR9p AeXZWz+JVgBOEFW0CuB0+t3kPATqRlbFio84+WqJll8wArMeAVePD7N996Lf/GFrU5jAfoMB 6BrSgWgUAupOoA/y9U7RNCAZ0NLyGtrirf6rmbCaHyTRoWJ8LoEf85iRNLGVT5V0SPOL38IZ 07cRTHY0qlCparuZ4w2nRFdKola8jhk9gynbHmg9Bz7dT8SmVV+IobY8fkOC3Myd5F/441Br ViGhY9WpXFlFk10EIBbR45S00s3I2dULAlSX9OwlDAoBRNS2L++6t3fHi+1203tLrZ2vWikL Eb90kiNvExQ9YC2nnV6gMprPIBRssltM6BoC3hAkEhH95EcA2kTdLmv8fgARoHbRS9ZrWb2/ tvWJFIfl6U90PnXTS4J2P80SBLqkjaa/1FBOfbclf9442MTAnhr/dhEC1DZ6K/IMjwW7noPo afvD289aBtHbV8F9yf+Er591sDZXmXM23CKd2NPK04DSPb+G3/3mO3DKm3DMmncRPPhqm5Lu fhGSF38YPvXFL8OXv0z/gvC9e/7W9sRem5j49YAi0I8szPiYgPOymN95HhZIFFproF6AoD6G hGIJiAS0uZQ/Ls3RsaVnI76Wub+CS7zgPN9qTYjfDAMC/cjCMJSXy+AuBBrFuKWfQ8U7BwDq EENtc6/MYxi+cC6E/aI35tDXqn4akJD7Zx/Puw3o2DHwCLh5fBgHkzy763t8lakvBpHwqBmm SnyQ68QuNAoqya2kZzfFYiLUhHRQJ/rQhEm5VoVSPgNhpTP1REyzKmoA0xRLf6ZFxhtOy2Wz 2YBqpQTpRFgnDZWJuN+yOVAhkl95b+FE6xDXBwZ/3Dp4lFuIdz8k84YhGRMi3VXNRtRBLFGs oskXr+q2kO4tIfhFJwRIDujZya/xTd8k8scyoO291CCqH1FDG/u6twYurJT6kTd8jBgmwdGA NB53C0cjxqYMXkTrEC8ROF6IJDKQR7mSSXURTBtkR7OcVNsTGs+Hsh5TTW9vwhtjMz4O6A7T q35kIBvWNukyJa2vque0fknZuCvqpy6blYxqBivUbRNzHCBSP4jHeSAQDEKQ/gW0TUO8zllv w9T+cXPSHzD9oX+/LrOhNLX2cWSEgwwdAv3IASkMzNRYsPPpa+C8pSvhRdmiSnMj3LJ4rtqX v/9Hzxv9u6Widv0Fvv/ezgT5zoIS933wym5LSP7hIgT6kYWZHhNoruINRCCTy0PGMlcXFvOO gFu2qaBGpodS1P9XjXkczaXIDGIokYMqrkvyKVIaEIB3DLmoJXBR+5EFRosRGDQE6gUrQa60 92DSpgSIqiTtCPJmmcyrWM2uEA6K+RXN1K7W7yrxJ1s28Mk3PxmBwULAzeMDE+TYVnNRhfBD jXEkf5sFXSu1i/1rmmDayWRL028W22oDtpC/jbxBCHqjOUs0HX+MN5xDpPVCwujoaSKNiEAm pBHWIpC0akziJgFpO0YldftaMQMhi+0vJHGc7K9THmqa3XXNjnlDHagUoWy/8UAB+dkOAerU 6NnOn/x+fDb2zRjGXl4L1/s/DAuPOQ4WnX8Z3LDyaXilZU5Rh3U33wkbdpnhnF1NiOu2+822 aPrUSG+0h2/Zc6njSQXSPA9BSU3bPOnht2gAlCGEbUzBhzRyzdjZNUwI9C4DZVXzTp7cZsJ6 3xeU7oPAft0vPJa7GFS8xl6Gtdf74cMLj4HjFp0Pl92wEp5uFQCor7sZ7nQUAJyk4wkOXyzX Sv7VtPsuaGxoFKLYdv2Qq7YIGGiEDm7wOu0rDVPFcln6QqB3OQCY2FgwBi+vvR78H14Ixxy3 CM6/7AZY+fQrrW26vg5uvnMDOA0FO55LQ7bS2rZffWgJHIB99oIvPwbbnUrffB5uUE5BtdMg 3/0y3HPJR+DfH9zSmh+n+PjdUCLQuyzM9JjQhBQqoXgidKeRVh2NYkKduyjlCBpEOM7WS7oy AI4N8l0/xilTXbuxEAuASaBrcdJpUOU+Ih46hrLZOxaqd1lwDM4vGYFZjUBd5XRwrownk5WT +9Te45Zjxu0J8kJcOWljV2g0i6wp9AWhWM0b8XeyKmCGZBcjMPsRIHmZ/Tmd/By6niCv5RSi AUkyneBtGAR5rOPx9BwdT+xwzN482uNDIg8Xe80m1IppVfvQTsrJu5ytu5vtK3684ZxjbBpm Y0xSEjXUdbLbni95kh4vaur2BTJlEUhAtV4xLihFC+eQdljwKpd3qvEbx5JQK70DMeqcb35r R4A6NXravzv9rmTjkJQmDeWUbvLHYh4IDbHkEpCwH8PdvQVWXrIILr7uTnj4kVVwy9VfgLPe NQdG3nYKLAnfDuteVG4/Q+Ikew34r1gD7U6/m/nq0g6qOYgnSatdCkXySwtEaQPJLnOaJjwu PmXy04zK4mrUKlDWTRpBowaVchlNHFmPmNSr6Aff13CjreWvWVe/lStVaKinNmpM0LSANDUv epeBCsSjKanfNzdRQmnZ5FUFEtGkjUTYDVtWXgKLLr4O7nz4EVh1y9XwhbPeBXNG3ganLAnD 7eteBFUCXs7CNf4rYI2jAODFQtm8lL6JRzGumcIis0aNSgEn/Nb2p/qmTcsO45IZK+obcruW 4Rhqd+9ygObeJjAW7N6yEi5ZdDFcd+fD8MiqW+DqL5wF75ozAm87ZQmEb18H2lDwMmSv8cMV zoLQth4af1oB78b52vt/UnLuP9FE0Y86EOS7itfDCW/QFslvOOg4OC94Ezz6UisR3zYD+IFl phM6g/Gtd1mY6TGhCflEvMVkHCgaj/o8WT69WYjpZlOM+bReH7oSijIPT7XRbqzntbWQpqjS Sz02cB5UMZRmaur8pwJ1WZxw3qPMlcoVZ8qd5kzVegOa9SquGeTAveSB/UwUgd5lYaIpcXhG YPoR0AhyL+Sxa2lYtMllJZJ2BLlmXsVnOyFvlEK3JECmWQxlQlx/Wk/bGyHYwQgMFAJuHh/c TZDLtrJx4kgNQX36O9mRohuLBQRajuqYbT9vTFZlsr2MWteatrrpE6e7edOesp3Ik/3Z3eMN Z4+Hfhfi2lF+U3vbnIjLWuKKf/JLx/4NLRU/2h2nCI2Juc1Ouf49r9swVzC3H1PqBwdKjp8a Apa2jNj2/2dqXve0Gz6agRXfe9RK7u3eDqUHfgbLznsfvBXzMDJnHzjgxGWQctwoseewC0Fu 967/1iZDSICg6RSFPjR+KzJn4xMNjam2p0WaUMEbziNBbdHpRZv4ZZvdcx9qdqEviBma6wr5 4rHY8axkYy1tm7W02lTgFLwmWeg3alMbzwsZy0kFp5hGIbPie/CopY3thu2lB+Bny86D970V 28XIHNjngBNhWariTO45Rau+I1NH3c0a0YavldC3R8zt2o6IG36PVw4Usw293LdCGI5mVsD3 rIIAu7eX4IGfLYPz3vdW7B9HYM4+B8CJy1LQ01BAEeOzds/58JY9PwDXPuOkd44eOhLkygbt jyD4rxfCuae+G/AuTm3Ot+8pEEKNctmai5Sk7mSZacVkcN+MVxZmz5jgNC8350wtJDcqCpD2 pKn8ItcfyXjAonku+yB3ExVfMniPi0+9rwZJJjTRaJ3/+HC8bKIihW3eg0ozxrqgWbaF0WTR fscRpcnPqUNgvLIwdTnimBmByUPAIMj1uXkpqd9HpYz/qPxVVpNyJsjJPGe7NWtZjctjrA/M 8cHJjMvklYljYgSmCwE3jw/jYc6mq17GlU7vlanb7vaGIZPPQTabhVwOtVKD2pH6lgmmlBvT 5lR7bQzlwkOy3+y3mBfBiSNqXah6Enh5ZTZTUDUwFDtXRBA7T2ClDEjO8YaTorA4NdLQ7PAB zQloF/4oZZVVY3FnVdcs1zRYaIKN/myr3oKu/Wg3K0PkfjiJNqRzWayDHOQycVXDXjV5YyGb LNnkH10QIDmgZxfvrZ/1nXElvLlZ0urNeLN7B9S2d6AYdo3Ciy/V+yAGzcVeP/JAmzSkVdUT Qe6TN7CMEiEvVERTQbaNM8QjFIsbF18Rvoq5i1g8Bn510YgTL7JtjoSNKj+o0aUuDhuokaZc WKsT+FJq7JwiBKiO+o2+qG8W9nYnxG7YUdvegWTbBaMvvmTVrus1Q5W0SuSReZX2wfDOi5DS Xrvdn8Htuj2Gw/tlvHKAalcmudaD3Z7dO2rQeSh4EV4aj6YonlK68/wDYf6SVfByO/vhHQly a902X3oUfvbZ98KeykJ5749C9FnljEebPx4L2gAzmK/HKwuzZkxAWiekzjXk+4LMOZN9rg0S QU6nZY2aa1QhFdHvuPAmus7RSkn9ZKEiN/TPF4ZE3LRjTu/94RjEwnR/Bs4l9ftkiKSK6ScR KznNTjB9N/LGjilHgOpqyhPiBBiBGUDATpCrZmPJdKLSf+EJYuVdHPkM0gSnbKoncvC+OGNj jz6oT1SUVMJbTM+SMgu+b7lnzhKYfzACA4GAm8cH1xLkmvYz2jC29XxkOsXeUcotuUQXUNpM T8h+6JIrpXElSzKxbPrKRZHM8Ce1Cam0CO1m8qGUikIsqx/5H284MxuSS7/4DTVqTYVJmnRb td5N8yp0TIk0Wlo1UMjUjGXSrufba7OtCHXNHnlXkkfKNTtbEaBOjZ6tPjq/oc2Ljjb2O0cx wa/U7sxFVfcIySRGULc/LmuQt8q6oUGuHIfrsBljLIrxkk/zvlBzg8gbksxtGBtdOklZ1+8W QJMXRhJV5dKXcJtJV/dSso/+EBifDJiXH/sstuv7S3syfBcTmnmVRNF5HDHSoDsvejSvwu3a QM4VjvHJgXy6rXM/OdUgbn/y23DckZ+B31c6bMT2QZCr+d1dg0e+8T7YA+dpB/gfgNEuhWCZ 6QLQgHwenyzMnjGBFAGsZg/NOZMnbLVZLhPk8nhGYwvhoTw9waQ5V2lXn01z0yyYKBi+6EJR Ibxoro8WV2hHPagpGtAagE7XynaA06g4ELIvyIyY2TFVCFDdT1X8HC8jMJMItBLkSm5QgVE3 UaW0/2AiA3G868HK+2gEeLv708w1srRRiHGRPClPPgU/kzXPaU8GAtSeJyOuQYvDlQR5TTdn ErHe8Id1Z04w2x9RJyIYO9NI+8s0yyn9GE8bEr2YCqsdqakxQdp/WgcbJQLc1qLKmYgaztTm Hl+4ajEL6QzeYC+Z/CNNbysRg5jgwKESpQY/o9gq1ya8pKmrYKfZKrdeDqRkn2xZm5P5mmZn 3ELEawU1bMAbR59sAPDPnhCgTo2ePQWSPNFGkeiRbFOCNl+4B5YvPgYOOXABLDz9YvjWzWtg 4w67qt8orP3pb+H5NifkzSyYsmjKiPnVyUUmf2SNd1ODXEDa3PVRgxsEuUM7lOPPRzUTK/LC Uu4rYvJtWMaGlW7SRTbj5A1CKq9sbDWhVCx31dSS88Du8SMwLhmQTEOR3e+uOWi+APcsXwzH HHIgLFh4Olz8rZthzcYd0CIBa38Kv+0uAHpypJEyWeZVzFJwuzaxcINrXHKAwPQ/FjThhXuW w+JjDoEDFyyE0y/+Fty8ZiO0DgVr4ae/fd7xkk57fex+9XFY/qETIfjQyy3yZPHbL0GuBN72 GCx7B85x3vlN+KMxx7HEavxgmTGgGGjHuGRhtowJuOmumkvBeQtR0FplmHMmEcpY60fSII/k pIkQ3odSx3socqh045XIna5jHm38o3KBPP0x5lt4Yk4WJZqbGQS5PqdS6iEYS4N6OLVWgnJN WpBYS8C/pgiBccnCFOWFo2UEJhsBZ4IcU8G1WkDq8xQ5kNd4zZJ2EbLz3Wl4Yl7hRZCnyJVK UCgU9H9FKBbSxok7Rbuce7TJrlGObzoRcPP44DqCvJJPaKZMHIjrRjkNPr3D9EUyjloUlax2 kY3SaBTtZ6fOr1kv6McfFWLZC+kSXlKDF9WUSkXIphMQ9GnkshB487EcAdrlC5OJBozfH0lC ES/1q9drUEZCO6abf4mZaqyanPQbjjQN1bIGIInmZRIhzbRMOF1qkT3SViFtj0pGI/eVzt/Q isVQ5bR29FLBjibHtWJSm3gTCYkmJhK6Nkk4I198pyRbhwxdfopmAtJlOfaWbPGLDghQp0bP Dl4dPvVmY98ScOwFSFx4Jnzl1kfhmeITsCoWggs/eCiM7Hs0LL7sRrj3mVEYQzMsG1ZeCZ9e /hhsswR2+mEu9nohyMn2si9m3bQyFmwOWuImQR6zLTSt+almtU0pWtxpX9vkz1iIks3zBqR0 2aK6EN4QZC3miqzp8a/JRYBw7yfWKvVx2EeX5D66bSRj8ELiQjjzK7fCo88U4YlVMQhd+EE4 dGRfOHrxZXDjvc/A6BiaYdmwEq789HJ4rLsAaCmheRXF9Ja17TllgjZKu5hXkYJyu5bAcIFz PHKA13Uac5JO963I8I29kIALz/wK3ProM1B8YhXEQhfCBw8dgX2PXgyX3XgvPDM6Brt3bICV V34alvciCM1NcPvnToFP3/y8etGtnFaLezwEOY5Ga5e+DcQ7LofcjpYYLS9YZixwDOyP8cjC 7BgTqvrlnH5otXZkKu/IRI9aSca8pMOJvErGIMlb5+b2qiYTkjTP0b4b8y2bCTmaa9E41iiZ JiWpLoLxrLFusKfGv6cOAcJ/6lLgmBmBmUOgLUGOWZJN1CpyIJvWzUeRE/HYNyH1cuhmD4Np O4ehfaeNdIX/6X5/0cxhwykzAt0QcPP44CqCPCdpLaiVbkziHEgslTyWjhTXcuauoPpNIb+1 f/IxmqJub5u+dXo6Xn6IBHIyoh2pbwnrD7cn1voKV4ekTlIbaaB2a6Zo1UcxBadhENdendz3 R9IWcpz8FlIamajE69XJfl84qWmqI4a0AUHpkj1E+0BF31sm+pQQPzsiQPjRs6Nn28febOzb Ao0+BCuuewK2W16jvf0/3g5XLTkNjpyjyMoILPjYVfBwtcMReSN8GwLa+G46qO14wpmWDSvT FFDrRIUWbVYbcma85KJFHy3utPdt8mcsRK0Lx2ImZmv7HjS9xBtAhPFUPvuXASSbqX9E+4Q9 8eNonOGhFdfBE1YBgGb1j3D7VUvgtCPnqOPFyIKPwVUPVzvYKrciQUfgE23MdBm+adPTYg/R +Oro4HbtCMvQvuxfDnABWSEiq9N9K1bIRh9aAde1CgL88farYMlpR8IcZd40sgA+dtXD0HUo GNsCD3zdC4u//wTU7UcxrMlqv8ZFkO+AdV89Et569m/hpS5psMw4gT547/qXhdkwJtAmKCrd 2O750WqgAQn1tCfOvXEuZPnDeQnNvduZfFT8E7ETSBYtwVt/0PzHOs8h+bDfsUJzLcscql5E pR/tdB7Vh2IPmJRrWtPkN1OBAGE/FXFznIzATCPQKMZw7o39VJuOpaqfylfkwOyfKhDC3/6E cz+YDStKjh2UZ6rmZmP3u4NmGiFOnxFoj4CbxwdXEeTtm8As/NKsQ6VcgmIRj+wUS1Ctt+nd 7VnvI1ytWkHN9gpUa73F3VD9lzEvXSgjNQ+a1nxXv/b88+9JQYA6NXr2E2lPNvZbIhyDXR15 b/y+qwv7YImTFmAdNJ4U/7Tp0rKwakC1qhDQ+kUqONmxmlQyta2CqbIlZfuPRkG7QMqcPCk+ 2uTPTpDj6Y4EakZpf3XIxs0b1DuZaNID8GMSEOhbBpBk0y4mRpuoLadc2mdorLMAwNiuXZ3N Q7RE3b95le6af2Yi3K5NLNzg6lsOEJRxjQVjuzpvAOH3noaCsSqsXu6FRV97ALbYxpYdxd/A T+5/sTWd5vPwI2Vjft5F8OCrPdZq42n4j/cfDV9a3c0CuXIqm8eCHlGd1d76loVZMCaQgo+d 4G7W8JSpPiWn0572C+JMe7lI6nSoGbKxH+10KYsanuY/4yPIK5kE0NBaL2chiBfkaXXihRzr DXSoocn/1LcsTH4WOEZGYMoQKCa1NVdMNi1lSy0f0y4SpjVeg8yrSNaoKEglpxDu2F8pZmDb USFoRYDWEEJ4IJ5z1jSnOPnJCMxWBNw8PjBBPltbJeeLEZgAAtSp0bP3qEzieGYJXFqAdbjo hMhxEYEyrhAb9TqaI6pDrVqClHJLuVezg0mLPsvlt7jDr5iuUGzryzY0nXAq6RMs62mGNvkz bJDj6RNl3wltkHvwmJ2svUA2+a0XwjilzO8mA4F+ZcDQgkOtkxm9M6xn8yoAmZCi0dK7eRUF V27Xk9G6BieOfuVA2QSM6RdZTftYMPYi3He5B0b2PAxOPedcOPdc+rcYPnbaQpi3z/Fw/bMO F1ns+gt87z3Yr8/9FKyy893b/gChj54Avqvu02weY9XtfvVp+OXnT4JFoUeg1sP+LcvM4LT3 TjntVxZmekygSy3DGby7RLEbrs51alDKayYMjVOsxvzDeuIjo8yHFI3IeEGDpVFHxRg7E00m HgPQ7T5owBNLGgGkz3N0sI07hHwxywlTwwa5fuF1PuIBTyQvVRFesK6eOO1vDJMiYOc4EehX FsaZDAdjBKYXgVq+xca48ITamEzUbYqHNROdhZgyn45a+jAl88bdcuraUdvUM/pevXRNfd5O ckVPo++dXhQ4NUZgQghQ+51QJAMamAnyAa04zjYj0AkB6tTo2cmv/K0XG/uy/ylzN0qm7dt4 vsXMRaOcaWvyiMpsav9WIKKb+4kqO/nNCsT1S2a7aY+jziCkyYY42tE3TjajRhndFxBM6ItO BKNRSurEO5pQKeIClI42+6NQUtW8mpDXzTCZ+ZsyFDliRIDaQy9gNBtlgxRUCOeMfItxLxFM op+pNK/C7XoSK2pAoupHDpQizdxYsA0eu/xoQ24p3/JzjxOwP7Vpb21/LgX/9R+fgXepi9e5 sOiyG+C2R18ya2fH/4H/OH5PLd63Hg0nfej9sNDjhcAvnoLRHshxlhkTykF3UVvqpRwzOyag ecOopt1IeW552u5TqpDJACSplflKJaedehAipGs84saXrrHt8YUgncvjBXNZiOrmWeL2O44c QGqUyfSScjLP1I4sp/X7iTxBKJBaO9JMZNLRE9TuLSKTK9FMSZ3bNas5nczqfhm1Q3b41QQQ oPY0gSg4KCMwCxFotqwbO2YST74bp+kbVShXeztZ3zFO/sgIDDgCbh4fmCAf8MbL2WcEnBCg To2eTn4s73q0sW8JM0U/Co52/KX7ABTNRuNILl14q+3mU3mFCFg1w/HIW9gIo/j1QCRV7FKC umHT04wXbfVn4zoJLqWJC7+idIEv+ff/5Dbj4it6pzzb2fDvkiH+PA4ECPduQbMhqT4lDRHh j7doknSLa+LfqY2H0EhQ5z/S2ut9w4XbdWdEh/Nrr3KgmK3yy+1fctu1pQYOKbyr5cn7fgu/ TtwB6T9sgLrNdEv78rDMtMdm8L70KgszPSaYmusCPPomP+Wdnk6aicWkTlTrsuvxR6BgXDGE tsx1jXKKQ33iHUe5SndSyLzXxRwvA/EMJOjeDqm/SBQK0oYz+fdDImKzPa6E8fghzfeyTLsw URuY9oQ5QUaAEWAEGIFZjYCbx4c9lJpBAIbmb4899lDLMmTFGpr64YJMDwIkB5Qay4OCxJjY urkiXhP7iP0PPkjM3ZPQmcrnmNi5U4g9RUNUt9REE5PaZ79DxEHz9p7KRDluCQGShUGTgZ2j m8SWxv7i8PlzpdI4OXeKTRu2iP0PP3ya2rSSB27XTjUxm98NqhzMZkz7yxvLTH94TZ1vN8jC 2LatolLD2c5+++N8o3UM2Ta6VWxrvCaaOCmZ7jnJGE6KxvbcUzRHq6L2mjorEoccfpDgWdHU tfl2MbtBFtqVnd8zAowAI8AItEfAzeMDE+Tt2wV/YQQGFgHq1KgAg0YOUr75yQhMFAGSBZaB iSLJ4QcZAZaDQa49zvtkIsCyMJloclyDjADLwiDXHuedEWAEGIGpQ8DN4wMT5FPXrjhmRmDG EKBOjTLA5CAhwU+3IUCywDLgtprn8soIsBzIaLDbzQiwLLi59rnsMgIsCzIa7GYEGAFGgBEg BNw8PjBBTq2An4zAECFAnRoViclBQoKfbkOAZIFlwG01z+WVEWA5kNFgt5sRYFlwc+1z2WUE WBZkNNjNCDACjAAjQAi4eXxggpxaAT8ZgSFCgDo1KhKTg4QEP92GAMkCy4Dbap7LKyPAciCj wW43I8Cy4Oba57LLCLAsyGiwmxFgBBgBRoAQcPP4wAQ5tQJ+MgJDhAB1alQkJgcJCX66DQGS BZYBt9U8l1dGgOVARoPdbkaAZcHNtc9llxFgWZDRYDcjwAgwAowAIeDm8YEJcmoF/GQEhggB 6tSoSEwOEhL8dBsCJAssA26reS6vjADLgYwGu92MAMuCm2ufyy4jwLIgo8FuRoARYAQYAULA zeMDE+TUCvjJCAwRAtSpUZGYHCQk+Ok2BEgWWAbcVvNcXhkBlgMZDXa7GQGWBTfXPpddRoBl QUaD3YwAI8AIMAKEgJvHBybIqRXwkxEYIgSoU6MiMTlISPDTbQiQLLAMuK3mubwyAiwHMhrs djMCLAturn0uu4wAy4KMBrsZAUaAEWAECAE3jw9MkFMr4CcjMEQIUKdGRWJykJDgp9sQIFlg GXBbzXN5ZQRYDmQ02O1mBFgW3Fz7XHYZAZYFGQ12MwKMACPACBACbh4fmCCnVsBPRmCIEKBO jYrE5CAhwU+3IUCywDLgtprn8soIsBzIaLDbzQiwLLi59rnsMgIsCzIa7GYEGAFGgBEgBNw8 PjBBTq2An4zAECFAnRoViclBQoKfbkOAZIFlwG01z+WVERhcOdglNufuEXc98qwY3Wu++MDH PyXO/od54o1y4bq4/77tOfHAHfeJp1+dJ078xL8I71FzxBu6hOHPw4vAwMrCrs0id89d4pFn R8Ve8z8gPv6ps8U/zOtLEsS25x4Qd9z3tHh13oniE//iFUfNYUkY3pbevWQDKwvdi8Y+GAFG gBFgBCaAgJvHBybIJ9BwOCgjMFsRoE6N8tcrObh1/Wrx4Pqa2HffEQrq+Hz99X3Fqf90hpi/ t+PnSXy5TTx1d1zclJsvrr/mAjG3j5i3rr9fxG9ZKR7f+JpYeIZPLA1cIA6f8vxiBsc2i/t/ /7DYvu++QkZxe227eM+5nxbHH7RnH6VgrxNFgGShJxkY2ypW//5BUbPVXWseXhcjh50qzjl+ fuunyXqDebn/trhI3PW4EIcsFL7PLxUXnHx4z7GPPrtW/PpXt4nVz2zBMIeIUz/9GXHpp88Q 09H8Nj91v3j42e3WfuT17SgTx4qLzjm25zKwx8lDoC85wGRnxVjw+kbxm6VniyW3Pi/+bkAx R5z09aS4+4eLxaFducG/i//35PXioktSYsEXl4nz5r8g7rzu12LsK3eImz93lHiTEecUOXgs mCJgJxZtX7IwS8aE1zf+Riw9e4m49XlTEsSck8TXk3eLHy4+tPuG0d//n3jy+ovEJakF4ovL zhPzX7hTXPfrMfGVO24WnztqyiVB8JgwsTY7VaH7koWpygTHywgwAowAIzDrEHD1+ICkwVD9 YesC5R//MQJuRoDkgJ69YlEtZCAWCagypIX1gNfrVf95dNnS3oeg0muk4/HXrEEuGQEjTW8M an3EU0wEtTJ4Q5BIUDwByPcTSR/pWb3WIZeKQ8Cr9UUaXn6IpXJ9lcEaJ/8aLwJ9yUCzCpkk 1p1Hqju9/Xs9HkkuBITSUygB9QIEdXkLxRIQCWhp++P5nmAoJkNG+09lc5CO679FEAr1nqKY kKd6OQdxSz8iwB+KQa40LQI4obwPa+C+5ABBmPmxYBc8Fz0N9n/7WbAsejusui8J//n1s+Bg VS7mwNm3lKHZpbLGXkqBf8GhcMEdL8KY7rdZ+hmctv/74Jt/2NYl9GR85rFgMlCc7Dj6koXZ MCbseg6ip+0Pbz9rGURvXwX3Jf8Tvn7WwVofP+dsuKXcVRLgpZQfFhx6AdzxoiEJUPoZytf7 vgnTIQo8Jkx2K56c+PqShclJkmNhBBgBRoARGAAE3Dw+DB2T7ObKHABZ4yxOEwIkB/TsL9ki +HVyLmZj0xqVrPrNE872F2WfvpvlNASDYYiEfDrRF4Neeb1mOamF8YSgrKdby0aMeKaNomvk wWfg2OgTAfY+WQiMRwaKcb/WXnwxsNZcA7Ix5ZsXslPWkBqQCmoEfShFLbgKUX3DJdptl6eu tztvBKoSiNVMWC2TL9obyS4FHbczH9XltwXHcUfJAceJwHjkAGAGx4KdT8M15y2FlQahpxS8 CRtvWQx4kgjE+38Ez3fkBRvw1PJ3wxsX/Bs8ul0G7WW48xP7wd6n/Rf8tWN4OcwE3TwWTBDA yQ0+HlmYyTFh59PXwHlLV4JVFDbCLYvnqn36+3/0fOfNosZTsPzdb4QF//YoWEXhTvjEfnvD af/1187hJxF+HhMmEcxJiGo8sjAJyXIUjAAjwAgwArMcATePD0yQz/LGydljBMaDAHVq9Own jno+ppGDIgAFKzuoRpMPeyCYkak3Kfaxl2Ht9X748MJj4LhF58NlN6yEp19pZSHq626GOzfs kgI6O5vFuJYX1CDvjSBvQDKgkYv+WEGKtAwhg6zuLSYp8PicSIrQRkNXUnN8KXCoHhDoXwZq EPPpbShebE2hkcOTDSEL+Wx6GoOX114P/g8vhGOOWwTnX3YDrHz6lVbyob4Obr5zAzhJQLOk b/AIv0X+KmldC9wX7ygL9XxUk5lA0pIuvZ9OgrygbiYgln2eADHxZNdkIdC/HABMZCwYe3kt XO//MCw85jhYdP5lcMPKp6F1KKjDupvvBMehYMdzkM5WLG1YxeLVh2DJAdimFnwZHrOwfTak tj8GX14g4M3nroRXLJ/GYNNNJ6GMfAB+1Jlht4Sa0A8eCyYE32QH7l8WZnZM2PFcGrKV1nnU qw8tgQNwXrPgy49ZiW8bYNsf+zIsEG+Gc1daJQHGNsFNJ6EsfaDbZpMtwgn85DFhAuBNQdD+ ZWEKMsFRMgKMACPACMw6BNw8PjBBPuuaI2eIEZg4AtSp0bOfGHMRr0Gwmfx4A6o17Ve1mIey +UGKejdsWXkJLLr4Orjz4Udg1S1XwxfOehfMGXkbnLIkDLevexF2ou+xl7Nwjf8KWPOqFLSN s17QyfpeCXKLpp6VCM/q5fIEU62kiy39Rq0C5apeyEYNKuUyVKrW+OpV9IPvdVhsMeBPJkVa MZmBN33LQC0LXn0zJVEyG3qjVtWIaTxyny84m1fZvWUlXLLoYrjuzofhkVW3wNVfOAveNWcE 3nbKEgjfvg5e1AQAstf44Yo2AlCIkda1jQg38uWBVIcj9Q2DYBcQk7TNy+l+NMgb2OYrhvZ8 TW3rFajLHE2zrspFudJelV4mQ6zSMwMNweVJ9i0HiNe4x4LdW2DlJYvg4uvuhIcfWQW3XP0F OOtdc2DkbafAkvDtsE4TBHg5ew34r1gDPQwFZu01/gQr3o2k3vt/AiW5PZo+VNeuv3wf3oty fMQVT8IO27d65rNILI7AWb9vs9Er+eexQAJjSJx9y4LR9wqYiTGhHeyNP62Ad2Mbf/9PSh3m NLvgL99/L87pjoArnmyRBMh89gAQI2dBd1HgMaFdPQzy+75lYZALy3lnBBgBRoAR6BkBN48P TJD33EzYIyMwOAhQp0bP3nNegbBuf1m2sVxOolmJUDezKqOQWfE9eNTChO2G7aUH4GfLzoP3 vRVJjZE5sM8BJ8KylINmoEMm+yXIDf/CB3lLPgBMsi7axhZ4Eypogz0S1AhKbww3AnKkTY95 x4WoL5LFhWgFYrpNaA1fD8QLDiQhE+QONTr9r/qVATJFIjxhyc5+ST0NkHGoZrlEo5kV8D2r AMDu7SV44GfL4Lz3vRXb0AjM2ecAOHFZChwUAjGqOsR17XUftj/LX6/tqVky7JcrZY+iFm69 nNLt+Xe2w9+sVyCDNvt9ah/gg1ylZGvrPshUm1BFuTDuB8A0RCDhKFOmzPV6AsRSYv4xiQj0 KweArX/cY8FoBlZ871HrSYfd26H0wM9g2Xnvg7dimxmZsw8ccOIySDkLQvuS1+6B89+yJ3zg 2mccT2BQwNH7LoC3YDonxDYZ9sfp244nr4Aj8NvR312vbtrSe/PJY4GJxfC5+pWFmR0T2uNf u+d8eMueH4Brn3E6i0ThRuG+C96CY88JENtE9sfp2w548ooj8NvR8N31yu5t6x+PCa2YDNOb fmVhmMrOZWEEGAFGgBFoj4CbxwcmyNu3C/7CCAwsAtSp0bPXgjQNIk1AJFuGKhJkmYSmeRrJ dtO22w07attbyAgz7V0w+uJLVi1U86OjyyC8e9QgN/x3IsjRHrKNO9fSbhQh5LVexKjgF4rF jUsSCU+B5i9i8Rj46TJHJxMSvRKajiXnl5OFANVZb/E1IR3U24AnCmXUGi/lMxD2Iwnssdr0 dopv944abLdzEJLHXaMvwksWNWzpo+qUCHK7rXCpPcXsuz+2aOrFhLqhQ2VXn2iTvOjY8M3A JbrcE9u9EdYXhkScLro13/vDMYiFdVvt6N/JjBAT5Ca2M+2i+uw1HxMaC3bvgFpnQYAXX6p3 0Hptl0s8pXTn+XDg/CWw6uXd7Typ71/+3UfhDeIN8JHbW8etxp++De/CNnvYZX9wNk3BY0FH bAf9Y3+yMNNjQhu08ZTGnecfCPOXrILOovAy/O6jbwDxho9Aqyg04E/ffhf29YfBZX9wtlfE Y0Ib/IfkdX+yMCSF5mIwAowAI8AIdEXAzeMDE+Rdmwd7YAQGDwHq1OjZawlKyYBJjMkkGRLO uS7kWq9p9OPPILz7JshbL1E0yDoktzvxi8ZlXHjJp2mhogoR/ZJEbyhpassaGwoO+EiEphN5 2A8O7Hf8CPQlA80iBCzt3iSEp8d2t0mQt1yEK7Unn8W+vjM29Zxus5zK00bLuyV0s2DYzg8m CsZn46JbvKA0aZyYaOKFotqGghM+hsz1KL9GYuyYdAT6kgNMfbaNBSog25+Ebx93JHzm95UO G7EadApB/kaxF5x5h83uMn4mDfLDv7auxfyKFlr7n8cCGY3hcfclCzM+Jjjjvv3Jb8NxR34G fl/psCOrBlUI8jeC2OtMaBUF0iA/HL62zm5+RUqXxwQJjOFy9iULw1V0Lg0jwAgwAoxABwTc PD4wQd6hYfAnRmBQEaBOjZ69laMOCUVTFgk1r2pKBKCJ9rfTiu3uXgmu5gtwz/LFcMwhB8KC hafDxd+6GdZs3AF2Xb/RtT+F3z7f6ViwluPxE+QC0jbFQZOsi7a5YFFLMx/VTKxYSUiTuIzJ N5c2iExsNenCNsh7a3VT7asfGWjQpbC4IZRFUyLQbEKtmFZtkscKvewQNeGFe5bD4mMOgQMX LITTL/4W3LxmI+xoFQD46W+fdzARYbYzEcpYoZEI8kjO1ritPtH+vXIaQpNliykUX1QyG2MP pP+u58GnkurWS0INWcRLQk3L7Gi6KK5pkTNB3gbPWfK6HzlQTP1MdCxovnAPLF98DBxy4AJY ePrF8K2b18DGVkGAtT/9LfQwFADsfhUeX/4hODH4UBeNWQ1wMrFy6m1bWmpg2yNfgP+/vbsN jes6EwA8htjN5ou6xUloCt20kLah1Y96CdsQQkQIjXG3oS0EszgUw6IfJQSlLaQ2pMVqCzXu lwMFUQoOBTU/FJIakjgY22SFvfW6cX+oxWqpUpSQcRxlYy/SuqrxhHfvSHNn7oxmNFe1Ykt3 HoO5V3fOzL3nOeedI71z5txbkj7+mb1/XnIWu7FgEV0hDiwnFq7+mLCY/L3//a/Y9a//EoOH /2fR71aLS6dLrNwdi0NhNv7zP25Jfuf7TOz98xIL+hsTFrMW5MhyYqEgVVYNAgQIEMgh0Mvj gwR5jg6iCIG1JpC+qaXbXNdf/yOoenO/RjKwfGAg+vc1ZpJ2fq1KvDmyLe5/9Ok4dnoiTr4w HDu33RW3brgh7tjyWDz14uk4X0mWYXnt+Xji4V1xfLbzK6WP1JNyORP09fJtZok3EuTDjRng 6Yky2+mxPfMfEjQn/BqJy6bZ4PWkpQR5hnBV7S4nBk7Vb5CZXYZnKplVnrRvNivcoYaVN0di 2/2PxtPHTsfEyRdieOe2uOvWDXHDHVvisadejNPnK/Hehdfi+Scejl1tA2AmhutrkLfEXL2v tV/OpHFJ5fq3HUYnq0enY7j2wVfVYtHM9MYTa3vTsW8+ud7cp+ux1RKLaVw1x8vCS6WPlTot a7To3A68XwLLiYO43LGg8maMbLs/Hn36WJyeOBkvDO+MbXfdGhtuuCO2PPZUvHj6fFSSZVhe e/6JeHjX8eg+FFyK15/5Wnz+4V/GX9ovlbyI7eLED+POpL9/6nt/XLTO+LvPPRjXlm6Kr7x4 ftHzsgeMBVmN4uwvJxau/pjQ4n7p9Xjma5+Ph3/5l0X9uqVk7ceLMfHDO5PfaT4V3/tja/C8 G889eG2UbvpKLB0KxoT2tmv/6HJiYe3XVg0IECBAIK9AL48PEuR5e4lyBNaQQPqmlm7zXPq5 EwuJ4VJpILKTpGNmOsrnFmYXTY+Pxalyp0zh+Tj85N442bKU5aXpV+OZ3Y/EPbdfP5943nDb A7H7lemuX5GvXnOnpFyn+szV117uT24m2FyqnqwbGG2aAdtcqnHO5oTfZSbIT3S5u2PrRfh5 xQTyx0CaBCjF9v0TmfMnN6Wcqt1U9tJ0jB0Z79h/zh9+MvYuDoB49Znd8cg9t8f11ZnZG26L B3a/EtNtvxk/15i5O7R4BvnCzO5SjE52isFk8vh47cayST9vzAlM6lZLvHdfSz3t6yuYIO/v dGPcDLPd91UgfxxEXPZYcP5wPLn3ZMv63kkcvfpM7H7knrj9+uq3GzbEbQ/sjlfaB0LGohJv H/pW9G/5QZycaf0qRqZY6+6F/45vfKwU13/pN9G8yMrf4w9Dn0yWnLgvnn6zbRDWXykdf4wF dZJC7OSPhdUwJmTIK2/HoW/1x5YfnIzlhcI34mOl6+NLv2mOhPj7H2Lok6VYf9/TsXQoGBMy rVCo3fyxUKhqqwwBAgQIdBHo5fFBgrxL5/AwgbUokL6ppds8dTgylCylUk3gNSXWMs+cORHV 5RpGphppt8yj87uVi0snHCoXL+b4SnDjVdMERe4lXpIFJIaqdUj+N99UtDEzd/DAVOMEbfbm xvfPP/+ykyLJLMzt89eSJOvLnc3aXIJDKyiQOwamj8z372r5TgnoE/uS9ba3ZxPPLRdaubj0 Bz/J4xe75PjKB2trh7fcFHTmVC3xXRqM+YnhLadOf0xjpnmJoOTRJH4XEuxt1stPnzy/Xflk SH9rsr/pfH64EgK54yC5mMsfCyqx9FCQPN4tEOZRKjF9dFf03/vNOPR2y9hyYSJ+/bOX462W ww3LJBH+/c/G+pt3xNHGF6IiKlPxi7s3xAe//Gyc7RKLxoKGZpH2csfCKhkTFkJhOo7u6o97 v3koFofCr+NnL7/VeexJEuHf/+z6uHnH0aYblFemfhF3b/hgfPnZs11+LzMmFKn/Z+uSOxay T7JPgAABAoUX6OXxQYK88N1bBXtRIH1TS7fdDaZisJZYHmqdel198sxEDPUliedkeYUrORe6 Phs2Wfc4m+NI63NpejxGhofj4KlyeijSG6v1DR5ozKCt/6HbvK5y/UmZncnRwYUEedONENM/ EJPlZ7JrUdfXIE9u/JlM6h0fqSY3+2LPvOFELUGeb3mOzCXYXUGBvDEwdWCh3Ut9Q23X6Z44 MDTfL5qW2FnB66y/VL1P9cWBzIdRadJy+/7s0itzMX5wJIb3H4z0ix1pgrz6QVfzPPOp2FmN 8ZbEe/286U5yU7qF94KFPp0ebsRidvmZzBrk1XiZGZ9f+7yvttZ5GosPDZ9KX8b2KgnkjYOI 1TIWVOKtlx6Pvg3XxEfvfjC2bt1a/7/lgXvizo3Xxed+9KfGOv5zU3Hs0Mk4m/ks8r1zR+Pr H98UW3/1Rj15OPPbb8enP3xv/HSidbmJxQ1jLFhsUoQjeWNh1YwJlbfipcf7YsM1H427H2zE wdatW+KBe+6Mjdd9Ln70p8Y9XeamjsWhk2cbv/8k6e9zR78eH9+0NX71RvqJ0kz89tufjg/f +9PoGgrGhCJ0+7Z1yBsLbZ/sIAECBAgUVqCXxwcJ8sJ2axXrZYH0TS3ddrOYGK3NWk0SaH17 jkS5PBVTU5MxcWosRvYN1mfWDowsNXe121mW//jkwYWkZHXZlxPVmya2/BsdWJgtXn18ov5w sgZzNZmf1GXfiSRxfqkc+weSmb/Jz91mjycLVMTBnbWZ9MmyEPWJ35cmFz4gqL7GSCNBOTc5 WrPpi9GJN2prN1fPvTPGTozMn7P7ms8tlfLjigrkiYFL1cRurc+USv1xcLLa/6dicnIixpIE 9OBDC/2nlMzebvSzFb3MphcrH6ktd5Ss3V3tg+UTC99qqParTM48Lk2Nzvexah2312Mz+RZF rS6DI6dqSZK5ODGy8AHA4IGlY3hu6kA93veMNT54mkpjsW8wxmfSYJuJ0cEFm77B0Thzal/9 egZHk/eOwWosLF7uqKmyfrgiAnnioHohq2UsmD3+eNyR9Ov0uhdt122OfZNpP4x497kvxAdK m2JH03TxiP8b/3l8tW9zstb5j+Mn39kR923+Ynz38Nl6wrwzvrGgs83afiTtS0vVYvWMCbNx /PE7OsdBEiPrNu+LRigk64p/4QNR2tTyzYlkwaPxn381+jYn97/48U/iOzvui81f/G4cPpsm zDtrGBM626z1R/LEwlqvo+snQIAAgeUL9PL4IEG+/P7iGQRWvUD6ppZuO15wMlt1YKkkRNNj VzDR1eG6tjfN6o44saeWzG6dFZskPIfmbzSYJliSWd0HsutKtxOZqa//nLpVE6JHxvbXE4b1 40kycGKskQxMjz80sL3pD9m+gf2NJHu7Uzr2vgukbdPpRBP7B5raLC3fbts/NNbpZVb8+MRo +uHQQh/u274nxlu/vnFuLPprMTo0lll0P/nGx77ah0LZeuw50Phwp90FN9bwT+OmFAP7jySJ 7vQDgsbxkfHx+g1FG+f4t/j3pveMvhiufkjl31UXSNuo44V0eM9Nn9e8vYJjQccLbnngwl/j lReOR7kxkbZRYK4cv3tpNJ59+ff1b1o0Hmy3Zyxop1KUY2lf7lSf1TomdLre1uMX/vpKvHC8 3Ph2RabAXPl38dLos/Hy78st3zDKFMrsGhMyGAXc7RYLBayyKhEgQIBADoFeHh/WVX0SgML8 W7du3XxdClatwrSPilwZgTQO0rMVNh4qs6Uz07Olf7rx5tLGG69Jq1vbVkrvnCmX/la6rvSh mzeVFj3cUnqlfpw983qpPDNXWn/TLaVPfGTjSr2s1/kHBdJYWIsxUJl9p1Q+l/Tgmz5U2rTx xrYCs+ffKc1WrindvGljqTUCZt85Uzr3t0ul0vr1SQx85MrEQBKTr0+WS0kElG7550+UNl7b 9rIdvMICazkOrjDVip3OWLBilCv6QmJhRTm7v5gxobvRVSohFq4SvNMSIEBglQv08vggQb7K O6fLI/CPCKRvaulz12JyML12WwKXI5DGghi4HEXPXesC4mCtt6DrXykBsbBSkl5nrQuIhbXe gq6fAAEC749AL48PEuTvT5/yqgSuqkD6ppZehORgKmHbawJpLIiBXmt59c0KiIOshv1eFhAL vdz66p4VEAtZDfsECBAgkAr08vggQZ72AlsCBRJI39TSKkkOphK2vSaQxoIY6LWWV9+sgDjI atjvZQGx0Mutr+5ZAbGQ1bBPgAABAqlAL48PhU2Qp41rS4AAAQIECBAgQIAAAQIECBAgQIAA AQLdBXpxgpkEefd+oQQBAgQIECBAgAABAgQIECBAgAABAgQKLyBBXvgmVkECBAgQIECAAAEC BAgQIECAAAECBAgQILAgULgZ5BqWAAECBAgQIECAAAECBAgQIECAAAECBAjkEZAgz6OkDAEC BAgQIECAAAECBAgQIECAAAECBAgUTkCCvHBNqkIECBAgQIAAAQIECBAgQIAAAQIECBAgkEdA gjyPkjIECBAgQIAAAQIECBAgQIAAAQIECBAgUDgBCfLCNakKESBAgAABAgQIECBAgAABAgQI ECBAgEAeAQnyPErKECBAgAABAgQIECBAgAABAgQIECBAgEDhBCTIC9ekKkSAAAECBAgQIECA AAECBAgQIECAAAECeQQkyPMoKUOAAAECBAgQIECAAAECBAgQIECAAAEChROQIC9ck6oQAQIE CBAgQIAAAQIECBAgQIAAAQIECOQRkCDPo6QMAQIECBAgQIAAAQIECBAgQIAAAQIECBROQIK8 cE2qQgQIECBAgAABAgQIECBAgAABAgQIECCQR0CCPI+SMgQIECBAgAABAgQIECBAgAABAgQI ECBQOAEJ8sI1qQoRIECAAAECBAgQIECAAAECBAgQIECAQB4BCfI8SsoQIECAAAECBAgQIECA AAECBAgQIECAQOEEJMgL16QqRIAAAQIECBAgQIAAAQIECBAgQIAAAQJ5BCTI8ygpQ4AAAQIE CBAgQIAAAQIECBAgQIAAAQKFE5AgL1yTqhABAgQIECBAgAABAgQIECBAgAABAgQI5BGQIM+j pAwBAgQIECBAgAABAgQIECBAgAABAgQIFE5AgrxwTapCBAgQIECAAAECBAgQIECAAAECBAgQ IJBHQII8j5IyBAgQIECAAAECBAgQIECAAAECBAgQIFA4AQnywjWpChEgQIAAAQIECBAgQIAA AQIECBAgQIBAHgEJ8jxKyhAgQIAAAQIECBAgQIAAAQIECBAgQIBA4QQkyAvXpCpEgAABAgQI ECBAgAABAgQIECBAgAABAnkEJMjzKClDgAABAgQIECBAgAABAgQIECBAgAABAoUTkCAvXJOq EAECBAgQIECAAAECBAgQIECAAAECBAjkEZAgz6OkDAECBAgQIECAAAECBAgQIECAAAECBAgU TkCCvHBNqkLLEVi3bt1yiitLgAABAmtIICLW0NW6VAIECBAgQIAAAQIECBC4GgIS5FdD3TlX jYAE+appChdCgACBFReQIF9xUi9IgAABAgQIECBAgACBwglIkBeuSVWIAAECBAgQIECAAAEC BAgQIECAAAECBPIISJDnUVKGAAECBAgQIECAAAECBAgQIECAAAECBAonIEFeuCZVIQIECBAg QIAAAQIECBAgQIAAAQIECBDIIyBBnkdJGQIECBAgQIAAAQIECBAgQIAAAQIECBAonIAEeeGa VIUIECBAgAABAgQIECBAgAABAgQIECBAII+ABHkeJWUIECBAgAABAgQIECBAgAABAgQIECBA oHACEuSFa1IVIkCAAAECBAgQIECAAAECBAgQIECAAIE8AhLkeZSUIUCAAAECBAgQIECAAAEC BAgQIECAAIHCCUiQF65JVYgAAQIECBAgQIAAAQIECBAgQIAAAQIE8ghIkOdRUoYAAQIECBAg QIAAAQIECBAgQIAAAQIECicgQV64JlUhAgQIECBAgAABAgQIECBAgAABAgQIEMgjIEGeR0kZ AgQIECBAgAABAgQIECBAgAABAgQIECicgAR54ZpUhQgQIECAAAECBAgQIECAAAECBAgQIEAg j4AEeR4lZQgQIECAAAECBAgQIECAAAECBAgQIECgcAIS5IVrUhUiQIAAAQIHz5K2AAAAdElE QVQECBAgQIAAAQIECBAgQIAAgTwCEuR5lJQhQIAAAQIECBAgQIAAAQIECBAgQIAAgcIJSJAX rklViAABAgQIECBAgAABAgQIECBAgAABAgTyCEiQ51FShgABAgQIECBAgAABAgQIECBAgAAB AgQKJ/D/LradS/IcqPEAAAAASUVORK5CYIJQSwMEFAAGAAgAAAAhAJZtvEsEBgAAjRoAABQA AABwcHQvdGhlbWUvdGhlbWUyLnhtbOxZ3W7bNhS+H7B3IHTvWrYl/wR1Clu22y1JWzRpt17S Ei2xpkSDpJIYRYE9wYAB3bCbAbvbxW4KbM/UYeseYhRl2aRNL+jqAAVWG7BI6juHH88hP1LW 3XvXKQGXiHFMs77TuOM6AGUhjXAW952nF5Na1wFcwCyChGao7ywRd+4df/7ZXXgkEpQiIO0z fgT7TiLE4qhe56FshvwOXaBM3ptRlkIhqyyuRwxeSb8pqTddt11PIc4ckMFUun00m+EQgYvC pXNcOR8T+ZMJXjSEhJ0XrpFhobDRvFFc+JIHhIFLSPqO7CeiVxfoWjiAQC7kjb7jqo9TP75b XxsRscdWs5uoz8puZRDNm8qOxdO1oef5Xnuw9q8AROzixp1xe9xe+1MAGIZypCUXHesPe8OR v8JqoLJo8T3qjFoNA6/5b+3gB37xNfAKVBa9HfxkEmxiqIHKom+JSacZeAZegcpiewffcQcj r2PgFSghOJvvoF2/3Qqq0a4hM0oeWOE935t0miv4BlXXZldpn4l9cy2FLyibSIBKLhQ4A2K5 QDMYSlwACZ4yDE5xnMiJt4AZ5bLZbboTtyV/i6+nSioi8AhBzbpsCvlOU8EH8JDhheg7X0qv jgZ5noP7VCQ4XPW6a/EAZrFu8e6X7/7+6Rvw128/v3v9vR3PdfwIZfHXGGb/1oHQDd7+8OaP 39+8/fHbP399bYEPGJzq8AucIg4eoivwhKZycJYO0JS9n8VFArFuMchiDjNY2FjQYxk/Hf1w CQm04IbIjOQzJqXCBryfvzAInycsF9gCPElSA3hGKRlSZh3TSdGXHoU8i+2ds1zHPYHw0tZ3 sJXncb6Qcx7bXAYJMmg+JjLlMEYZEqC4R+cIWcyeY2zE9QyHjHI6E+A5BkOIrSG5wFNjNm2M HuBU5mVpIyjzbcTm7BkYUmJzP0KXJlKuDkhsLhExwngf5gKmVsYwJTryFIrERvJ8yUIj4FzI TMeIUDCOEOc2m0dsadA9kRJjT/sZWaYmkgk8tyFPIaXGAqfzIIHpwsoZZ4mO/YLP5RSF4DEV VhLUXCFFXeZBise+dD/DyEj3zWv7qZQh+wQp7uTMtiQQNdfjkswgUs7rW5qe4uxGgd+Sdv+2 pf0WRf3wcj5g2LqetkV8H25bugPKIvzxK/cI5tljJBfLJ+H+JNz/R+Het54PL9cbhVbH+Oqw rtyke0/uM0zIuVgSdMqVtnM5vGgiG1VFGa0fFBaJLK66M3Axg6oMGBVfYZGcJ3Ahu2moHmK+ ch1zsKBc7g6q2epb7S55ekajsrXRqJ5NpQEUm3a5u1Ttci8SZWu7s3kIW7tXtVg9LFcECtv3 IaF1ZpJoWUh0qsYbSKiRHYRFz8KiW7jfy0JdVlmR6w/A4m8N3ysZyfkGCYqKPJX2VXYPnul9 wTSH3bQMr1dwPUymDRLadDNJaNMwgRHabj5wrnublBr0ilDs0uh0byPXhYhsaQPJzBq4kmuu 5Us3IVz0nZk8F8piupD+eKGbkMRZ3wnFKtD/RVkWjIsR5EkJU7fK8adYIAYITuVc19NAsg23 RrNTjPEjJddzP77IqYueZDSboVDsadlU5b3SifXuB4KLCs0l6fMkugJTkrMnUAbK7zSKAEaY i3U0I8y0yb2J4pZcrZai8Z/ZZolCskjgakfRxbyEq/KajjYOxXR7VGZ9NZhpXCTpg3fdm422 RHPPBlLsmnb9uL1NXmO10X2DVSnd21rXq7Ru3y7x4RuCRm3TmUGtYGyhtm/vOOCBQOtuPTX3 7RGH3g22Z22xQVTnSlXbeTlBpy/kzB/J42pOBC+f/6/lM0JQ/a1cKoFqrdTlWoCc4b7z0vUH XtD0g5rb9cc1r+W5ta4/aNUGvt9qjP2GOxo2X8mgiCRt+GXfE/k8Q5ardy+qfef9S1ods++E NK1TdQ6uK2P1/qXR3P/+BWAZmZft5qTX6g3btV5rMKl5o2G31gvaw9qoHXRGk1Hgd3uTVw64 VGBv0Aq89rhbazeCoOa13YJ+t1freM3mwOsMumNv8GoVazny6lqFV/E6/gcAAP//AwBQSwME CgAAAAAAAAAhAJdLesmEJQEAhCUBABQAAABwcHQvbWVkaWEvaW1hZ2UyLnBuZ4lQTkcNChoK AAAADUlIRFIAAAPIAAACMggGAAAAFyzjyQAADBhpQ0NQSUNDIFByb2ZpbGUAAEiJlVcHVFNJ F55XUghJKIEISAm9CdKr9C4ISAcbIQkQSgyBoGJHFhVcu4hgRVdAbGsBZFERUSyIgL0uqKis rIsFGyr/JAF03b+c/54zb7535947371v5p0ZABTs2EJhBqoIQKYgRxQR4M2Ki09gkXoAAsiA DtSBLZuTLfQKDw8BUEb7v8u7m9AayjULSax/jv9XUeLysjkAIOEQJ3GzOZkQHwMA1+AIRTkA EDqgXn9OjlCC30KsIoIEASCSJThFhjUlOEmGraQ2URE+EPsCQKay2aIUAOiS+KxcTgqMQxdC bCXg8gUQ74TYnZPK5kLcDfGEzMzZECtQITZJ+i5Oyt9iJo3FZLNTxrAsF6mQffnZwgz2vP+z HP9bMjPEo3PowUZNFQVGSHKGdatKnx0swZA70ihICg2DWBniC3yu1F6C76aKA6NH7Ps52T6w ZoAJAAq4bN9giGEtUaY4PdprBNuwRVJfaI+G8nOCokZwkmh2xEh8NFeQERoyEmdFKi9oFG/n ZftFjtok8/2DIIYrDT2WlxoVK+OJtuTyY0IhpkPckZ0eGTzi+zAv1Sd01EYkjpBwNoD4bbLI P0Jmg6llZo/mhVly2NK51CD2zEmNCpT5YnG87LiQUQ5cnq+fjAPG5QmiR7hhcHV5R4z4Fgoz wkfsse28jIAIWZ2xw9m5kaO+XTlwgcnqgD1KY08Ol/HH3glzwqNk3HAchAAf4AtYQAxbEpgN 0gC/vb+uH77JRvwBG4hACuABixHNqEesdEQAn5EgD/wJEQ9kj/l5S0d5IBfqv4xpZU8LkCwd zZV6pIOnEGfiGrg77oqHwKcnbDa4E+486sdSGJ2V6Ef0JQYS/YmmYzw4kHUGbCLA/ze6YNjz YHYSLoLRHL7FIzwldBIeEW4Qugl3QAx4Io0yYjWLny/6gTkLTAHdMJr/SHZJMGbfqA1uBFnb 4964G+QPueNMXANY4HYwEy/cA+ZmD7XfMxSPcftWyx/nk7D+Pp8RPd2Mbj/CImnsy/iMWf0Y xee7GnFhH/yjJbYCO4q1Ymewi1gjVgdY2GmsHmvDTkrw2Ep4Il0Jo7NFSLmlwzj8URurGqs+ q8//mJ09wkAk/d4ghzc3R7IhfGYL54n4Kak5LC/4R+axggQcywksGytrRwAk/3fZ7+MNU/rf RpiXvumymgBwLoLKlG86tj4AJ54CwHj3Taf/Gm6vtQCc7OCIRbkyHS55EAAFKMCdoQ60gT4w gTnZAAfgCjyBH5gMwkAUiAczYdVTQSZkPQcsAEtBISgGa8EmUAZ2gN2gChwAR0AdaARnwHlw GXSAG+AeXBu94AUYAO/AEIIgJISGMBB1RAcxRMwRG8QJcUf8kBAkAolHEpEURICIkQXIMqQY WY+UIbuQauRX5ARyBrmIdCJ3kB6kD3mNfEIxlIqqoFqoEToRdUK90GA0Cp2BpqBZaB5agK5G S9EKdD9ai55BL6M30G70BTqIAUweY2K6mAXmhPlgYVgCloyJsEVYEVaCVWAHsQb4ra9h3Vg/ 9hEn4gychVvA9RmIR+McPAtfhK/Cy/AqvBZvwa/hPfgA/pVAI2gSzAkuhCBCHCGFMIdQSCgh 7CUcJ5yDe6eX8I5IJDKJxkRHuDfjiWnE+cRVxG3EQ8QmYifxMXGQRCKpk8xJbqQwEpuUQyok bSHtJ50mdZF6SR/I8mQdsg3Zn5xAFpDzySXkfeRT5C7yM/KQnKKcoZyLXJgcV26e3Bq5PXIN clfleuWGKEoUY4obJYqSRllKKaUcpJyj3Ke8kZeX15N3lp8qz5dfIl8qf1j+gnyP/EeqMtWM 6kOdThVTV1MrqU3UO9Q3NBrNiOZJS6Dl0FbTqmlnaQ9pH+gMuiU9iM6lL6aX02vpXfSXCnIK hgpeCjMV8hRKFI4qXFXoV5RTNFL0UWQrLlIsVzyheEtxUImhZK0UppSptEppn9JFpefKJGUj ZT9lrnKB8m7ls8qPGRhDn+HD4DCWMfYwzjF6VYgqxipBKmkqxSoHVNpVBlSVVe1UY1Tnqpar nlTtZmJMI2YQM4O5hnmEeZP5aZzWOK9xvHErxx0c1zXuvdp4NU81nlqR2iG1G2qf1Fnqfurp 6uvU69QfaOAaZhpTNeZobNc4p9E/XmW863jO+KLxR8bf1UQ1zTQjNOdr7tZs0xzU0tYK0BJq bdE6q9WvzdT21E7T3qh9SrtPh6HjrsPX2ahzWucPlirLi5XBKmW1sAZ0NXUDdcW6u3TbdYf0 jPWi9fL1Duk90KfoO+kn62/Ub9YfMNAxmGKwwKDG4K6hnKGTYarhZsNWw/dGxkaxRsuN6oye G6sZBxnnGdcY3zehmXiYZJlUmFw3JZo6maabbjPtMEPN7M1SzcrNrpqj5g7mfPNt5p0TCBOc JwgmVEy4ZUG18LLItaix6LFkWoZY5lvWWb6caDAxYeK6ia0Tv1rZW2VY7bG6Z61sPdk637rB +rWNmQ3Hptzmui3N1t92sW297Ss7czue3Xa72/YM+yn2y+2b7b84ODqIHA469DkaOCY6bnW8 5aTiFO60yumCM8HZ23mxc6PzRxcHlxyXIy5/uVq4prvuc30+yXgSb9KeSY/d9NzYbrvcut1Z 7onuO927PXQ92B4VHo889T25nns9n3mZeqV57fd66W3lLfI+7v3ex8VnoU+TL+Yb4Fvk2+6n 7BftV+b30F/PP8W/xn8gwD5gfkBTICEwOHBd4K0grSBOUHXQwGTHyQsntwRTgyODy4IfhZiF iEIapqBTJk/ZMOV+qGGoILQuDIQFhW0IexBuHJ4V/ttU4tTwqeVTn0ZYRyyIaI1kRM6K3Bf5 Lso7ak3UvWiTaHF0c4xCzPSY6pj3sb6x62O74ybGLYy7HK8Rz4+vTyAlxCTsTRic5jdt07Te 6fbTC6ffnGE8Y+6MizM1ZmbMPDlLYRZ71tFEQmJs4r7Ez+wwdgV7MCkoaWvSAMeHs5nzguvJ 3cjt47nx1vOeJbslr09+nuKWsiGlL9UjtSS1n+/DL+O/SgtM25H2Pj0svTJ9OCM241AmOTMx 84RAWZAuaJmtPXvu7E6hubBQ2J3lkrUpa0AULNqbjWTPyK7PUYFHnTaxifgncU+ue2557oc5 MXOOzlWaK5jbNs9s3sp5z/L8836Zj8/nzG9eoLtg6YKehV4Ldy1CFiUtal6sv7hgce+SgCVV SylL05deybfKX5//dlnssoYCrYIlBY9/CvipppBeKCq8tdx1+Y4V+Ar+ivaVtiu3rPxaxC26 VGxVXFL8eRVn1aWfrX8u/Xl4dfLq9jUOa7avJa4VrL25zmNd1Xql9XnrH2+YsqF2I2tj0ca3 m2ZtulhiV7JjM2WzeHN3aUhp/RaDLWu3fC5LLbtR7l1+aKvm1pVb32/jbuva7rn94A6tHcU7 Pu3k77y9K2BXbYVRRclu4u7c3U/3xOxp/cXpl+q9GnuL936pFFR2V0VUtVQ7Vlfv09y3pgat Edf07Z++v+OA74H6gxYHdx1iHio+DA6LD//xa+KvN48EH2k+6nT04DHDY1uPM44X1SK182oH 6lLruuvj6ztPTD7R3ODacPw3y98qG3Uby0+qnlxzinKq4NTw6bzTg03Cpv4zKWceN89qvnc2 7uz1lqkt7eeCz10473/+bKtX6+kLbhcaL7pcPHHJ6VLdZYfLtW32bcev2F853u7QXnvV8Wp9 h3NHQ+ekzlNdHl1nrvleO3896PrlG6E3Om9G37x9a/qt7tvc28/vZNx5dTf37tC9JfcJ94se KD4oeaj5sOJ3098PdTt0n+zx7Wl7FPno3mPO4xdPsp987i14Snta8kznWfVzm+eNff59HX9M +6P3hfDFUH/hn0p/bn1p8vLYX55/tQ3EDfS+Er0afr3qjfqbyrd2b5sHwwcfvst8N/S+6IP6 h6qPTh9bP8V+ejY05zPpc+kX0y8NX4O/3h/OHB4WskVs6VEAgw1NTgbgdSUAtHh4doD3OApd dv+SCiK7M0oR+E9YdkeTigMAlZ4ARC8BIASeUbbDZggxFfaS43eUJ0BtbcfaiGQn29rIYlHh LYbwYXj4jRYApAYAvoiGh4e2DQ9/2QPJ3gGgKUt275MIEZ7xd0rPOVf0l4Mf5V/IUWw9wOUM UgAAAAlwSFlzAAAWJQAAFiUBSVIk8AAAAZ1pVFh0WE1MOmNvbS5hZG9iZS54bXAAAAAAADx4 OnhtcG1ldGEgeG1sbnM6eD0iYWRvYmU6bnM6bWV0YS8iIHg6eG1wdGs9IlhNUCBDb3JlIDUu NC4wIj4KICAgPHJkZjpSREYgeG1sbnM6cmRmPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5LzAy LzIyLXJkZi1zeW50YXgtbnMjIj4KICAgICAgPHJkZjpEZXNjcmlwdGlvbiByZGY6YWJvdXQ9 IiIKICAgICAgICAgICAgeG1sbnM6ZXhpZj0iaHR0cDovL25zLmFkb2JlLmNvbS9leGlmLzEu MC8iPgogICAgICAgICA8ZXhpZjpQaXhlbFhEaW1lbnNpb24+OTY4PC9leGlmOlBpeGVsWERp bWVuc2lvbj4KICAgICAgICAgPGV4aWY6UGl4ZWxZRGltZW5zaW9uPjU2MjwvZXhpZjpQaXhl bFlEaW1lbnNpb24+CiAgICAgIDwvcmRmOkRlc2NyaXB0aW9uPgogICA8L3JkZjpSREY+Cjwv eDp4bXBtZXRhPgpJ6dBMAAAAHGlET1QAAAACAAAAAAAAARkAAAAoAAABGQAAARkAAJbFJ6C+ tQAAQABJREFUeAHsvX9oI9e5//8EErAhBS+kYEMK3ZJAd2nAMincLPSPbOgFa8kXosWF2DTw QevA95u24Ku9BVd784er3MJeJYWtcy9s5F7YIgca5MAWObAXuX98wC5skQIuUsCLfGEDMuyC BLswAi+c7zOSzsyZ0Yw00kjWr7fA1mjm/HjOa86Zc57znHnOc4I/hA8IgAAIgAAIgAAIgAAI gAAIgAAITDiB56AgT3gNQPFBAARAAARAAARAAARAAARAAARqBKAgoyKAAAiAAAiAAAiAAAiA AAiAAAiAABOAgoxqAAIgAAIgAAIgAAIgAAIgAAIgAAJMAAoyqgEIgAAIgAAIgAAIgAAIgAAI gAAIMAEoyKgGIAACIAACIAACIAACIAACIAACIMAEoCCjGoAACIAACIAACIAACIAACIAACIAA E4CCjGoAAiAAAiAAAiAAAiAAAiAAAiAAAkwACjKqAQiAAAiAAAiAAAiAAAiAAAiAAAgwASjI qAYgAAIgAAIgAAIgAAIgAAIgAAIgwASgIKMagAAIgAAIgAAIgAAIgAAIgAAIgAATgIKMagAC IAACIAACIAACIAACIAACIAACTAAKMqoBCIAACIAACIAACIAACIAACIAACDABKMioBiAAAiAA AiAAAiAAAiAAAiAAAiDABKAgoxqAAAiAAAiAAAiAAAiAAAiAAAiAABOAgoxqAAIgAAIgAAIg AAIgAAIgAAIgAAJMAAoyqgEIgAAIgAAIgAAIgAAIgAAIgAAIMAEoyKgGIAACIAACIAACIAAC IAACIAACIMAEoCCjGoAACIAACIAACIAACIAACIAACIAAE4CCjGoAAiAAAiAAAiAAAiAAAiAA AiAAAkwACjKqAQiAAAiAAAiAAAiAAAiAAAiAAAgwASjIqAYgAAIgAAIgAAIgAAIgAAIgAAIg wASgIKMagAAIgAAIgAAIgAAIgAAIgAAIgAATgIKMagACIAACIAACIAACIAACIAACIAACTAAK MqoBCIAACIAACIAACIAACIAACIAACDABKMioBiAAAiAAAiAAAiAAAiAAAiAAAiDABKAgoxqA AAiAAAiAAAiAAAiAAAiAAAiAABOAgoxqAAIgAAIgAAIgAAIgAAIgAAIgAAJMAAoyqgEIgAAI gAAIgAAIgAAIgAAIgAAIMAEoyKgGIAACIAACIAACIAACIAACIAACIMAEoCCjGoAACIAACIAA CIAACIAACIAACIAAE4CCjGoAAiAw0QSqJ8d0/HSazr8yS1MTTQKFBwEQAAEQmCQCJw8KpE3N 0fmXZyap2CgrCLQlAAW5LSIEAIHeEsh9dpUW3t9pmWhgPkgLb16i5ffCdHl+tmVYXPRB4FmB rrxwkXY5ic1DjT74EVRkHzQRFQRAAARaEKjQ1s/O0bUvWgThS4HFEF1+4yqtrIYoMItncmta 3V+tfrNF0xeucQJBymppCgB19zARc+wIQEEeu1uKAg07gZ33n6Orn3mXMnwnT4mfX/AeASG9 E2AF+RoryFscI8EKchgKsnd2CAkCIAACnRB4dkzXX/gBfdxBnCQ/l5fxXO6AmPeg1W+2WUFe 4QghymspugAF2Ts8hBx7AlCQx/4Wo4BDR+BZhU5OqlQuJOniP19n8YKUPtyihRmtJmq5ckL7 X8bp2oemlTl5xIOEV9B79fxeQkHuOVIkCAIgAAKuBCrc/1WrlP9TmN76Na/dWYxT/vYKnas2 +r/HBdr55Abd+CLXSCJC+dM4XXjeNUVc6JKAqiBnWUGGBblLkIg2lgSgII/lbUWhRoIAz94+ J2dvT3n21jYAOPmfj2jun2/UihK8naf0qrMVufLggFKfp2hnZ49KsuBzC7Ty7jKtLF2mdivU Kt/maP//Zun4MdHU1DSd+/4FuvRGgGZfrNLB5zuUf0Y0TTx4ef48BTm9mcc52v5LlgNPE/Gg ZubHVyhoLANX4+jCcLyZBVp+OyAla/r2Jf/TE9r7S4p2v9ylvSO99HM09+ocXfrJZbrwUpl2 /8S24cVPKfHLN5ryrZ2AguzMBWdBAARAoI8ECn+6Rhff4+fzUpK0Py83+X/Y++0VeutD/eWX 1qt7jv+2Q9t/TFLq/nFd2q+5F+B+amV1hUI/DTSlWw9k/j/5eo/2OG6ZT01xT3f+tQAtvH6B ZuiYtv97r97P6f3Yy/zK05sXqMLhU/dPaJrnq7Uq0cLby7wMvJHe02Pa+XyPqnrfqH+a+sf6 afW/H/mrJzyZ8MUOpb7ap+NSvf87/+MLdPknl+hcJUvJP+5S8JNd+uBNKaCaMx+3GYPYQuMn CEwWAYEPCIDAQAhohaTgpw3/hURecxDhNC/CteskQrfzzQFOyyK5Hmykoafj/JfYKzXH1c9o JZFYC7jGi2yEbdcCIstyZm/Z4swnhCG+lhWsCtviBWvxmoTwKb92KPnZ87P9XlTk04UoZ0V0 KSiCi/qfWpZA45y8xt/zQRHbcWDfVBicAAEQAAEQ8Eogf6fRvywmzf5DjXxkPt/59Rf1Sv34 ET/H523P+qa+JywyDx3icgraw4yIuMYPiWhT37jJcmpi05ZH8FbWkE073LT1fSyf2j8aIfnA p/wGP5s89nEAT66ruYpyLilCtb5P79+U/o/7unqfqHzPh0TKib0lRfwAgfEkQONZLJQKBIaf QFsF+ShldLb2To61PLG5aB0cRG4mReZ+VmT3UiK2ZL0WPyhbgWh5EWnqWAMi4DJgYKcpIryR FOVTHlgU0iKyGjIV4SVlgHOqK91hEV6LiKCRvtMEgE/5RUnEjPRJRG+nRf5hSRQLWZG+HTW4 1QYLtgGYlnMYxChp2QcY7L7LeQBnJYpfIAACIAACHgkYCp7t+SyjF3fM53iTgsyTnGb/ovd1 QRG/kxbZXFZk7iZEyPI8D4rMI5lq/dtxcpWVxebJ3Xo/GlwKidh2XRHO390UYZ5glf2EZfK6 tM+Tr9xXch8or7OFvLn/8Cm/eJRRZA2JxN2sKHL/l8/ti8R6yMybOVjk4+Ln7RPcFlbWcYNe hoAyAWCliF8gMN4EoCCP9/1F6YaYgKog65ZZ43OqieL9lKWTj+1ZFdziTsTsBBdjIv/EiG0c FO/FzTAUtlipM2tqR8izxDnTyqyV8mLTpmAnC0ayxkFShnEZ4AjDAtCsIPuVX7CCLwdB4e2i IZNx8GjfsL6T3YLMluv9u2mRvpsR6Z1NY6ARvsUTDPf088rfDg+6XCwQRl44AAEQAAEQ6IiA q4KslUV2R+27AjYFVxOpVbP/Cm6kaxO31sw1kbmpKIqripLKk7hRVSlciotsyeyAS4dps++o heP+iyeGLZ92q7s4cHHbzULuU35OW1Xwk0cWyWo/yvcTRt/fNLn+KM+TCPX+L3VLjiMCYnM7 3Thv9n+pnYwoOowtmnPEGRAYPwJQkMfvnqJEI0LAVJDNzt6YdVY7cLVzr5WtLOKGpZdnx626 s6X0aWWZmDEL/zBtdJ768u6sYweoiaQyCDHiGqnz9TYKslk+u4LsU35dBkVBdh4gcZgneRFf DYrIrX1D6qYDZaDjNAnQFB4nQAAEQAAEfBMwFGS1r3M4Dm9blwiLsmI9nY/zWiq3j6oIcz/X 0IFLd03LtD556hif+xf5elOtjzT153pmynW7hVZKY5TPPoHsU349fVVBjt1lPnYFvhYmJcK8 lHrzwJz8lrIZ38YkNk+gO6RhhMMBCEwgATjpYo0EHxAYBAHTg6R77rysiyLv2hyNVAt0dfoi SR/XoY0YLegOQBt+QYzU2InIjV/XnXzp59jSSol3z5Oab2SnSPF3zhtRLAcne7Qw9xbpvkRZ QbZtgVSl7Z9N04q+n+UiO1nZbXayYuZj20LCp/w1GZ+d0I0X5ugjVWDeOzr04zk6x+5VZl86 V3O2UnPW9XIL799w0qUSxDEIgAAInAkBw0mXa25BSt7fouXXrQ6mqv/gvXtf0/furX+iN/ll G3aWZen+uD+cmuYtpT7UN/Crf+ROEIU/XWXnYPXeM3UkKPSKDGH9Np1k2vovPZjSb7CCTCkH B5pG+Wz9o1/5a1J+u0vPfe+KRWB97+iFl88Rvcj937k5ujh/iS6/+QY727QEs/xw7aMtofAD BCaUwAROCqDIIDAUBEwLK4kkL3EuPSyKzB1ldpt4aZnT5K9i9eTHlmINbn0culOfic/LpV8c N3bfcf68zkfJp6cWZCXdbuSXN08rmO9ot0onsJZqfgdMJqLI0lxGGQjfIAACIAACvSRgWFgp wq+xcP93lBVJZcUTUYw9TTR/1H6z1XPffi1ZqJuBs7fk0uuA2HdcPdXIs5UTTaXf6NSC7Fd+ SSSvvKNtL6v6O9LCyaQpi32Vl8wF3yAwuQRgQeYnCT4gMAgC5uxtmPd5TBjbPBU+v04Xlz9u iBQjfaGYZQ5dmb1muzAl74Zo6hlPobt9eM9JevE8XVrk2eTnicyZcXY/ldPog3kXCyvnc/WF uqW6Kwvy1zzTH9Bn+m0z8D7ltxST95TOfbVLqb/uUeHbMlWfVmvbehzzObmLph4+eq9EsZ9a KNaTUWThARQt/9CFhSVT/AABEAABEPBDwLCwWrZ54pVJ7/PKpM/qKQc2MpT9t8uWbMx+k08v xSn9c14VxVsRun2q3P/NzAbYmnqh1jfkPrtGC+/rluUgZbW0696/Zj62/kvPSOk33CzIuT9c pYVfsaXabkHmrZWma9s7cjpdyK9nb3wqx7TL2zzt3S/QcaXE/Z9+pUS7X6m9HxFPtNNlh+7P LKN1DGKkjwMQmGQCkzs3gJKDwGAJuM/eaiKheKgO3Ta3kahJrLx/S4ude1g282WL82rKFUJJ cQTWbF1V3kF28tLJqeZvy5l62+y0T/lrArOjlTgzCjS9n20WR3VS1uSoRAZTLAGRu072ChkQ 3yAAAiAAAr0iYFiQ7e/oPskaDhh5bC4SOesLwGr/pW6x5FUus18i4ejgsZFQ2nBkaeu/9OtK HyZXZlnzV/pwW/n8yl/Lh7eo0r14Rxqrwqx58y92RKk6KWvuv+sxVFlSD5tSwQkQmGgCcNI1 0bcfhR8ogVYOMizbOJCwd16qF8+WS6ge6cu2N0VkjT11yq0ubAOQyB2bAs5Q9L0S1S0vnDrY /Q251YWDoy/exkJ1cmJ3AOJLfv2mKQMUfo/a+Tay8is9XbsqyEo6gQ0HZ141j+IZkbyTtHg6 dc4QZ0EABEAABLwQMLw88wSr/VPeiymvDkVFUXUgxc91dYtCuXTanob+u6wv274VE9HGFoX6 Oe3Q9PBM/BpTMtf8mlH2jvTurL+25KAg8+Jvw1EmT1LbUyjnlDxsCrLwKX+9DOYe0akj6wSC fr32MZaI8ySDy17GKouYfStIPZEnpdq2kUneQktx9F1PH/9BYMwJQEEe8xuM4g0hgTJ3Orxf cWbbfN94815W5A+LQlMGAvatkDK5vCjJnljZI1mfZQ+uswL3sFyLr5XLIn8/IzbXpAJbfzc5 rszEW9Lm+LQYEUne9mh/L90UrzaL79DBFneUvR7nIyKTK4ryIy7bvYRtj8qwyBSKovRI6ch9 yq8qyLp84Zspkdd78AY/jbey2FwNGIMsXmLtUhHYo7Ze/sZffCcrysyvxPspp27HLJMEgZvN EwkuieI0CIAACICAAwHtYb62X3FyXfZPIe47uP87kp2bHsm+FRL3b4d5Yzsne/8VvZOp9y88 oVnvg5IioqzC0hVh6cVaT12doK31n2ubIrWdFEn+i1riuSnI1jQCa4nae9TlEk9I31aVa46/ lOCycd+odH9+5Vctv7r8er9VetLIgPvAciGjTFCTSLt1f5aJ+Pp2j2Uen+jjh8S60r/reSjj B50hPiAw7gSgII/7HUb5howAL01u6oBNBY3fCVbkLVuWWusdYeCWqaQV76qz7GYaUtmzfM9H m/ZK3r9t7QAt4RsKozznOAPNlmh9mZcM0/47YXGW5Ut+2yx867yjoqRMPCiAa4ele944Jlo5 NLMnit8gAAIgAAJWAsqqnuZntlWJFQ79i9k/8j7Hxgqm9n1QYD1ltfLyKzoJZRvDZlnUNJ0s yKzC5zY76Pusfbc+AeBLfmP1mSqny/Fa2noPbL8y6+ZEsjuHsMiq8xe2NPATBMaRABTkcbyr KNNQEzDevWpSLoMibX8PiJcqq8vJ7MuJtYdZ3uvXvYMLr2+KzKHb9LG+BG1fxNfku8L1Djaw FBEJnpHWeB9hmbejgsyUtYf7DjPu/G7U7X1RPLQu0w5uZJruS9fyqwOt+aDF0qt28rpl2cvS sPzdTUdlv85i31MaTYXDCRAAARAAAYUATxC7KabzMetSao5lfdUnIOzLiUv3ea/feRfFkIIi ektfWaVOOiui8GHxgC3NS2r/GRCh1ZhI864SmrHKyVlB1lMqcfzmSeKgSBywldzmZTrmsIqp W/lVC3KA9zpW+zzzOFCzLLuXXrIoi/RNm9W7MTYJrcVEisvSPg2ZFr5BYHwIwIs1P03wAYGR J/C0Qsfflmh6do6IPTnX9kJ8kT0ys9dqzx/dE6gavqUXa2uq1ccnVKnFn6KZmRmaUtOxBnX+ 1YX81RPO83l9z+O65+lqpUIVvexU3xR6Zna2Yzn0NKRH1KluyuFcOpwFARAAARDoEwG9/zl+ TDTHe95XK7yTAT+7Z/T+z+tHesFW+i3Tw7ODF2tbuhXui/SeZ4r7o5lGf2QL0vJnN/JXvj0h ds/N5eSkWf6K3nfpO1ZUuf978RzNzs60zLPpop4G98N6WvQ89+Odjh+aEsQJEBhtAlCQR/v+ QXoQ6B8BZSuL5CFvgfSjDgYc/ZMKKYMACIAACIBAfwnwdkzP1bZjYgX5NGVsw9jfTJE6CIDA sBCAgjwsdwJygMAQEKhZYXkWeopnkKmSpfCrbxHv5Ejxe3n64Ce8jyR05CG4SxABBEAABECg 1wQqbInWVxDp/V/5MEk/uPwLziJImaMkXfp+Fyujei0g0gMBEDgzAlCQzww1MgKBISfAFuMr L1ykXVcxg5TV0hSAkuxKCBdAAARAAARGj4C5pNpF9vkEabkwoftz4YPTIDBmBKAgj9kNRXFA oGsCyjvHzmm0fxfLOR7OggAIgAAIgMDwEmirIC8mSdtdhoI8vLcQkoFATwlAQe4pTiQGAiNO gJdXV3RHHw6fqSleYobpcwcyOAUCIAACIDDqBKrspEo6abSXZepFLLG2M8FvEBhnAlCQx/nu omwgAAIgAAIgAAIgAAIgAAIgAAKeCUBB9owKAUEABEAABEAABEAABEAABEAABMaZABTkcb67 KBsIgAAIgAAIgAAIgAAIgAAIgIBnAlCQPaNCQBAAARAAARAAARAAARAAARAAgXEmAAV5nO8u ygYCIAACIAACIAACIAACIAACIOCZABRkz6gQEARAAARAAARAAARAAARAAARAYJwJQEEe57uL soEACIAACIAACIAACIAACIAACHgmAAXZMyoEBAEQGFsCz6p08qBApQqX8Hni/Z5naO7752nm RaLqY94bk3/rx/iAAAiAAAiAwFgR4P2fCw+OqfKM+z4u2NTMHJ3//ixNcV9YOanQ1EvYA3qs 7jcK442AwAcEQGA4CDzJi+TNmEjcy3uSJ7MRFNzKHf8275fd0zgtiohLPLf09PORbW9yuWdc v1K6F3OUWc8jerckRCnteD2wnqkn8CQrwu3knw+J+HZGlE/bSaOJ7E5cBNqlR2GRb5tWu7zG +7pWyIj4RlxkCtp4FxSlA4E+EJj09tNR+U9LIjbv3PcRP6uzLbo/cZRy7F9a9X36teRRb55r mfWAS/4Bkda7v7sRx+vRe3yRP1ou6XhdlT+wFBHJPQ/9NXNMbYTbpkdLqT7UeCQJAsNNgIZb PEgHApNDIL8tO6qwKLZVxjSRcBogzDc638WEcO3OT/PtFUwHhTF020OH6+F25W+7K/bBO0Uh jlwGAPPJepk6GuAERdpNYePBweaSfZAVEAEnrhQSWVegHgo99kE0kZQsVzGYGvvbjQL2mMCk t58Oy69lRdChj5LP7uCtrOv90Qou/YtDeqrSmTjsRQfg0m838taV8OKdkKPCGmz0v8UdOU6w 910OvxdjIv/EBUUpI0L2MvP4wXGyeLHR97okhdMgMI4EoCCP411FmUaSQP6O7Pi8KWPao6LI HmRF9n6mbhG2KXaphy4YyvvG4CJ6J8PxOY1cViTXTcU1urNfP89pRxvp9kpBFlpZ5Dm/7F7S Kkcu37D4aiK9qnb2IZHay4qSYhUoFRR556Ni/zAvikd5TndfJG9Fmzr5ZNPgpiwSi2oeEbZ8 mhloZbbmr6kz/SGR78X4yOWWjP5pZYCLwdTo306U4IwJTHr76bz8ZX7e7+t9172EVaGs9VcR 10nm8v3NRvggW1n1/lP/435O6Q9StXPWPiqR600HUOu3uf/LbEetchzWLcTCvsJriVflGH0j V8tTjfs5s18OrCdFvlDv/7IHabG5blewefWTXfSydYIhsJYQ+UdmoPKRmX5tkmAJCvIZPxCQ 3RAQgII8BDcBIoCATkBVkJs6tFaIeDZdzgSH16OG0hm4ue8YSzs0BxTJIzNIUbFgq8uJU1JZ 7bXio1iykwVTjtKBHMDoCmxI7D8yr6lHhrzceTd9Tssic1MdKMSFqf7qy9jk4ITzWNwUJUeL vbqMz9ukRZMcE3Oi8wHuxKBBQUGgLYFJbz/dl1/Lyf4sKKLrcpKZRPxAfeKbNyB/W/YL1tdm jBUwan/Cyqp8nadnE8RSFGOlFE++Kv3P/i0pH/dNSwnX14SkvKE7Diu7HuUtq6MCG9axQGbN nBwOuowTxKOMOdHcakWaLA++QWDMCEBBHrMbiuKMLgFVQe5kOW9xR76zpHf4mkjJpa4u782a S8ysVlE1f1VBN873UUGWy9dKe3HFGtD6XTIvcqnve8X25ICJFV9jaVlAZFwUcL0mGUo4K9Ey 9ujWsH5K3v0At59SIW0QGA0Ck95+ui+/MYGrWzmVSVdysXoa/Yblulv+5vleK8hqPyz7+8xN cxWXLr97n+NFLpd+TlV8KSYadmvHZmIo4besCrZjYJwEgTEjAAV5zG4oijO6BAxlzEWxdS5Z WWzKpdVrdSdW5QNTyZSOPdS4asfsqAiz1dbpfGA9rSbj/1gZzOjvXpUtynFEZN3enWrkbAx0 WinuisMv+V6aWX6eRZeOv9xKIx2C8btc7d8Ld0tkMs7LwZQ+sMMHBECgMwKT3n66Kr/6upDu 4JE/+4aSyZOfDtqf0W90qCBH77J/jB5+zH6o7nPE4nRztZVyrAvhRUHmlVL3zJVSm40l4kb5 eZK45hSzRZmkQ7Bgr/v+FnniEggMCwFs88QvWOADAmdLoEI7/xGn/VKVtxPSN1Wof06+/oi2 vmr8WIpQ9BXzWrVapYX3btDy/IwMXv9+sEPPvXq1dswdIH0wz3GeHdP1F35AH+tnFxOk7YZr WzfUI/C2Rd9s0/SFFf4ZpKyWpkAjm8KfrtHF97b4fIjyWoouyPOfXaGL7+8SrWVIfHJZJuP/ +1mBrr1wkfQcaZFdrnzFedQ+QcqfpukCbzHR6mPIu5jkMi5bymjGO6GPAnN042s+I8Nx+Z+r lZ9LejtPqdULZnActSdQKdDHG1tUYuJm9a1S7ncfk7yDofUoGVS57lZpjlY+jFDAVn3bZ4YQ IDBmBCa9/fSw/MdfXqcfhPSeLkTZJykK6Fvxfct94vfqfSJPilL6l+x2SvkU/nSV+7kdonnu G3Oyb6zS9s+maeULDij7iVocPh/k89wvszJJsbdnlZT8HZr9MPfES0Ha/aLx9OT8BfdnrT+m vC37sMd7tPDdtyjHiclwRr/J53jlFoV/ZI4zWueJqyAwYQSGRVOHHCAwMQTaedGUnqiNZcCN 94UcLKVZY7Y8alkqZb5nRcLJWZfu4KT40LqAy5xZtlqQdadaRXYCUmpj0e34/ikWZH7sKkur SYRvZ9y9cDcyMuR14GLKYs60yyV35pJ0Eps5KwMzHo7cCORdvKzKeyg9ycrf8tvxXTm3THAe BMaUwKS3n96VX1k9ZVkJpDzzycFZF7+GVOvPyqZTKtUiywqype/RyiV2glXi5du9rZCmBdna 9xEFRGLPwfRtyd4sY8ul30ofK8OljPeP2a9Gr/t0i4z4AQKjTQAWZB694QMCZ0rgGVuQf88W 5DJZrJ4WC/JilHifR9KkYFXiWe/rVgsyW2CvswW2ZileSlLpj0GaesoR2PJafbBFc29cr8Vm Z12U/dc3ZEqu3+bMstWC7BSh8vdtWllN0tSrXmaf2YL48golP1kmiwFRtSA7ZOI0+68GM+S1 zPirIfRjc6ZdWgZKhtWBrQL32Crw095ZBey5j+XvSo4tyEkqm+bjGmfVghxcj1HArL1UrZ6j ld+wBfmlOpHcZ9fpxpfHNKVbfNp9nlbp/Dsxiq+aliDEB7+RrT89aD/tmsxQX+9V+R/wSqBX 9ZVQbB29k6Wtt89T9Rmvynp+igqfXaZLv9btpkTsrIsi/2TpeWrnrf+a+4lWPZvf54+et2lB 1p9rdVlVmTbvl+mD193kNuWVlmE1rnGs9LEy3M6/PEdXf6+HCFC6lKUguj8DFw5AwEJgtPV7 SA8C40Og03eQ1XeNuVFbLLDW31ZvnW7EDIus7R1kp/Cqhdqal5scweZ9hJXZbVqM19/xLe0b XkP1dJu3ZzKlMeS1zfibIfQjxRO1fOdMseDLWXVrHPzqhoD3dwjZ+qFsqeKp/li8qCI++Lk9 Z1zOD1X9cW5d3tuPc/xRP9tp+c3VUy73XPaJ8rnfEpBpkbVbkJuj+X3+1FNULcjBm3X/IaUD 6ZFbL5PD9kyGMKa8LfswxSFXuOHtOm/sVkFCOsc0ksUBCICAQQBOugwUOACBwRIwFD5WUKVX S3eJ2Fu13H5JDgRafDs567KnreavOumyh9N/m8p8m8GJIZODkq4oyOo2T6KkbC/RwsumIW8r BZnTkgpY8HZ9Owx1YKJv8YRF1k53uNNz5oCt/QBTKJ7WPdYfm+Mv01M74sv63fIb/CwVetD1 xyJM7Udn7ac5/qif6bD8St/Rst7X+h9nZ11WYp3l77f+6Hmb/ZB1m6fSvZjRZwUsS8dViU15 WynIqpMuqQwb/SazkY4r1ZRxDAIgUCeAJdb8dMUHBIaBgLFk2OYky1G2ygEtnLtUW5gV3s5T 4l12ifTMFrLKTrC+I51gNTvrsoWmjvLnyJXHFWNJmz0t9Xdt2duLszRjX06rLP+yOwsxZeF5 dFk+NVE+NsK0WGK995sFeut39eVr/L4xOzHjJWvPTujGC3P0USO91kvZOBBzrfKfZUWxTRb8 NJf8yaXsrZYoEi+FrFT0+sOOvto4Y9Prz8xLs9ZwiA9+o1x/mh4YHbafpvijfqKz8lf+9jGd a7xClCxotPxDftqo/Z/+mtE/2Bnla/Ul2O1e13F6Faevzy++XeYSa/srTQoLDmeUz3KLzTBy 6bTlcu0HO6h8jh1U1o4VJ2Yne/Tc3FuN4EF+1StNb7it5NZD8bOWF65bn7+N2PgCgbEmgJkC EACB4SBgzuy2tyCbFtzWYdWl0E7OutSSq2nme+yQRM3HOFasABYLsh7gtCgihvXZuYyGvDbr WC3907LI3AobM/F2q2bprtw7WrdABkSqoDpsMSQU5cO0CDXk4IGKeQFHNgKmRcPO2hYQP0EA BJoITHr76az8xuopy9J5O1RNJIxXORycddmCd7rE2xa9859HyUb/5LC66iil9F0Ji9MwmZGU 19H5YTkvNpfM1TV2K3PacNTFYeajIu/irCt/V24Z6SCjFATfIDCmBLDEekxvLIo1egQMhY/f PXLdc5cVv3wuI6Jy72NW3jK5vMge2rxesufpfC4rMtvmPoiB9aTIHlnDlQtZkb3Pf4dZkVwP NjrloEju8Tn23FkuFUWp13ohy1bL8yApeHOnWp7BWxmRP8wL1bFo6a4pe3CDZWd55KfEchvy cge/XyiK4lGR08iK1O2YYLcn5gCDj9MPZUz5rXhAbYQN30qJPHv2Lj9ir6UHacFOoSxpbB72 GoSUZRy+lQHuamocCoQygMAZEpj09uOx/OxROruXVJ7v8VrfpT+31Y/2qCiy3P8ZfQQ/4yN3 MqJo6czYmzWHqfVF3KfGpDLN/UmG+0Q9zRL3lz33Xq3LxumrffPmPc7vsGjJS1Vio9vcP8oy shfu2higIa/er+e576v1f/czIrGhTAzX+jbe4cI+4a3sH80WQO7nAmJzZ1+UHnGZHxbF/t2k CCtjDN6IysNrX+odwDEIjD4BKMijfw9RgnEhoBVF8mZMJO7V35V1Klb+tlRirQqg3smpCpx7 uIDZ0WlZQ0Gtd5LNaernA7eyTqJ0fc5dNnte7GCr1nmbctWsuIqTrVZy168FXa3D4rQkNuWg yJaPPd3w7X3HWfyuIYxhRO0oI+IbcZGBpX0M7y6K1G8Ck95+2peflWiL0mb2C1YFrlW4TeM5 rh2qDrHUtKzHm7leToyyVdu1DPq2g0peioOten9Uf1e53TZZlr5rMeZqHRYPM8bqKEsch74w cWBOTve7HSB9EBgWAlCQh+VOQA4Q8ECgfLBpsWqaHVtIZJQ+rKhYX80wesfPy6nkbDIriLyV lEt65vnYPSVhDzK2C6I6IbHKRiJ215qXlpPL0HR5eKm1bijQ8hZP1/Y09Nnw0GpUJHhGvCzL 2kKo7E5csUiY5dbTDa5tiuxDZdDSIh1cAgEQAAEQ6B+B/Vsh5/6KnS2qVtK0sRrK+jwPrKUM BVl3BilXMDX3ITJe0GH1kb/yZTbcJrmb88reVqzBS4maQ0ntUO0TpZzK93xQhNfjInXgPtFu lIDHAKmbSh425ThyMyVKLsuvjTRwAAJjSgBOuvjJiA8IgMCEE2BHJCf/e0zlxj7SNHWO5l5m x2ItPbVMODMUHwRAAARAYPQJVCt0/L8lqujOKLk0UzNzNDc7A8dco39nUQIfBKAg+4CHqCAA AiAAAiAAAiAAAiAAAiAAAuNDAAry+NxLlAQEQAAEQAAEQAAEQAAEQAAEQMAHASjIPuAhKgiA AAiAAAiAAAiAAAiAAAiAwPgQgII8PvcSJQEBEAABEAABEAABEAABEAABEPBBAAqyD3iICgIg AAIgAAIgAAIgAAIgAAIgMD4EoCCPz71ESUAABEAABEAABEAABEAABEAABHwQgILsAx6iggAI gAAIgAAIgAAIgAAIgAAIjA8BKMjjcy9REhAAARAYHIFqlSpVohlsHj24e4CcR5cA2s/o3jtI DgIgMHYEoCCP3S1FgUAABEDg7AkUPrtCF9/fpchOkeLvnD97AZAjCIwwAbSfEb55EB0EQGDs CEBBHrtbigKBAAiAwNkTKPzpGl18b4tCt/OUWr1w9gIgRxAYYQJoPyN88yA6CIDA2BGAgjx2 txQFAgEQAIGzJ4AB/tkzR47jQwDtZ3zuJUoCAiAw+gSgII/+PUQJQAAEQGDgBDDAH/gtgAAj TADtZ4RvHkQHARAYOwJQkMfulqJAIAACIHD2BDDAP3vmyHF8CKD9jM+9RElAAARGnwAU5NG/ hyiBJPC0QNv/tUPafIjCP8U7kBILvkHAQuAZUZX/pqYsZ33/wADfG8K93yzQW7/LOQQOULqU pYX712nu//m46Xr0XoliP51tOo8T40Ggb+3nWZXb+1TP2/t4UEcphoVA9Zs9+vSLHAWWPqDL P+xx5zQshYQcI0UACvJI3S4I24pA4XN2ErS8xUHCVDxN0PnnW4XGNRCYRAJV2v7ZNK18QTwQ iVH8N2G6PN8bpatvA/yxuk1V2gpM07WvnQuVPNLojYMV+sF7O00Bguz8LA3nZ01cxuVEr9tP 9XGBdv77Y1r5td4nhiivpegC9I5xqS5jVg6zX6LVFInboTErH4ozigSgII/iXYPMjgTkAEMf DGR5MBDAYMCRE05OMgFlICIxzIcp+UmEQm9eID9NRrY/eLGWYJ2/q4+PqfBthcqFFL21/BEH ClJyL0YXvjtHgR/xZMWzY7r+wg/IsCEvxSnzmyAt/OgCzWDSzxnqGJztVfupPMhR8j9v0C9+ v6tQgYKswMDh0BFQ+qXFJGm7y776oqErHgQaSQJQkEfytkFoJwJygIHZcic6OAcCDQLPKnTw xRbFlq+TOoTWFbXNnRitvB3oShGT7Q8Kssea9mCbnnt1hQOz8nLK1r2G8nvwh6t06VcNC/JS gsrb4Zb34/hvO7T9xySl7h/XM2br9NzSZVpZXaHQTwNNA83CX7dp/wHRtGU2ZIoC74Towot6 ElXK/WWHshUOU0+RT2k09cplnkTB/tYSSa+//bafk693afPfr9BHvDpE/YQ2khT7f5fpwkvq WRyDwDARgII8THcDsjQICHxAYEwI5O+EBVdr/guJrDYmhUIxQKBvBDSR30uK8LzeZqx/0dtp UXrSWcay/bGC3FnECQ2tFZJNz6vMzaB5L5aSotyKzaOsiDrcO+u9DIvMQ+VhqGVFwHavZfh4 rhHONcymUFJqJRmudUGgq/Zz2ts23IXYiAICPSCgieRSow9aTOI50wOiSMI/AfKfBFIAgeEg UNyWCnJY5E+HQyZIAQKjQKCUy4jYUsBUzhpKVHgjKfIlb2pRVwP8UYDTJxlNBTksivy8ymwo yvFqG+W4nBVBi6IbFPE7aZHNZUXmbkLwG3zKvQyKzCNZCE1kbkdF0KZYh9biImto42WRvhWz pREQ0TtZmQi++0Cgo/ZzWhb7O3FbHdDveVBs7mRFGf1fH+4QkuwnAUNB5olBfEBgGAhgiTVP n+MzagQqtPMfcdovVdkzp7lO8OTrj2jrq0ZZliIUfcW8Vq1WaeG9G7Q8PzNqhYW8IHBmBCrf 8vuLn9jfX+Rh93qKkv8eolatx+8S0TMr5JBkVP1mm6Yv6Eusme9SkHa/aCx453fwBL+D5/6p 0s7703T1s3qI4EaakutB2zLsKu39xwq99evGUu1Vfq/vtvJeX+WAFs5dorov7SiVRIzsrtrk /dRzSR4JWn7FXSJc8U9A8m73isLJ/3xKc//8C2uGuh+B/2I/Av/kz4+ANVH8AoE+EKgU6OON LSrxyx/m8I1f6/jdx8YrP6H1KBn7kPDYrUpztPJhhAKtOqA+iIokJ5zAMGjpkAEEOiJgLE1U rSTK8XyzJYybuSAs3ekIMwJPLoHSQVyxQOptKyCybZZcd2QBm1y0RslNC7Ly7KpZfgMisVcy wjUdlDPmMun5eItl2CURNSzJza+dZJXl3JGdojWbJ4qFejVlvYZffSHgrf1oYtO4p416s5bG ktS+3BEk2g8C+TshW99iff4FbKtbamM3rvOhO3h1px/3A2m6E4AFecInSEay+OxkaOf3bEEu 816uSgEsFuTFKMXmiTR5vUp08b3rhgW58vdtdmKTpKlX1RRkYPs3z2C+vMKWtWXDgob44DfI +pP77Drd+PKYpmpOlez11fb7aZXOv8NbOq3y26dtPhXei3Lrk+t0/TPrPr2hmxlK/utlS3uz J+XVAmaPN6m/TQuyfl+svHUmm/fL9MHrzSaT6j+2aPq1awa26M2Y7lfLdKilX+EH39Q0e8P+ UN/ip/7Rt5BaVlbV0NMDuvKdSw2rTZS3xosZW+Pl/nCFFn5Vt2in2HocgvVYYuzbt9f2c/K3 LQq+cc1WY0KUuHeDVt5kp2zPtxfR7/MD8f09fyeaXyXHFuQklU3zMVdYqwU5uB6jgDl6o2r1 HK38hi3IcDTXvnEjRO8IuOvOuAICo0Wgk3eQ87dbz2JyC7PNcgYtjr8QH/ya64i9zqi/e1l/ 2KHJopq2h+PFREsrU/F+SkQc0ozcSomi8W5q6+eBNwtY6zQm6apqQQ7ezNSKXjpIKM8d9qXg 8Pq3Gq+TOpgsNCeWvWW+9xy527BaW6zH6Um6JQMta0fth51zZe/Z3zXXnwMBEd/OiHLzrVbK 5vf5gfj+nr+Tzk+pisoh3kFWYOBwKAjASddQ3AYI0QsCcoDhxYu1qUx7UC5qyrLV8RfiS4do 4OdNSelt/UlJj59NEzku98PJ8YnuAfde0uaMqT7Ijt3JCI++uYymK9sfvFgbSFoemIpuyOJU sHQvZijJgfW64qwmZMbje7UUF+m7KZHacf9LbidFei/vPEGiKsMUFbqKnFeU5tRDNWcc95NA t+2neND55Jbf5wfiuzxn3Z7HtufvpPNrbkc8aSD7NLwK14wHZwZCAEuseXSLz3gQkEvUvO6D XHlcoeozdvT1fOtl1rUwL87SjG05K+KD38DqD9fbSkXnz45O2iyp1GWceWnWDNfYB/kD3gfZ urA3SIm7vA/yordlmvanhmx/7ZwM2eNN6m9ziTXvg6zxPsjGY0jZE5ThsOWXln9oXCQzHjv3 upWl9C/bL51vxTj32VVaeL/uzCtyM07Hv75OtV9raRKfsK9sfM6EgN/2c/IPfj1ig5f+fmFt 1aH1BMV+tUIXZs06RH6eHzoNxO/++Qt+Du1Jeeaxk0KNnRQqtdUhPE6BQP8JQEHuP2PkcEYE 5ABDV5CzPOAM4Al7RuSRzegQUAYiUugeecCV7Q8KsgTb5vvBNj33qu7FOkz50wRdUCc6Huzw tav1BBYTPGAMmwPGZwW6/sJF+riRvF2BVnOtPMjR7le7lK+cp+vr7ENBzUMGrObo6vRCXSmW 5/g7/VBQ8GXlBA77SqBX7Ue/58n/tHuit0/C9LUoSBwEOiSg9EtQkDtkh+B9IzAQuzUyBYE+ EDCXPdf3Fe1DFkgSBEacgLKUbSkqMrkW3pI7LGm3S0Q7zGbkg2uPiiJ7n/cr3o4aS6k372VF /rAoNGX/2vSauYwzyu+V5h+aL4MXdyJGXB4c8B7FvCT+Eb94ysvmy49K/H5q0vZOOXshb/Fe apNPhbXmpd0jD37IC9Dr9qM9yovkhnwVhpfxt7j/Q44G4o09AaVfgtf8sb/bo1JAWJD7NvWA hM+cQPWYtv+wTdp8iMI/NXbRO3MxkCEIDDUBXh7JW0uyB+zeLrHolQVsqNn5Fq5KW4Fpuva1 c0KbOY0+mG/cl8d7tPDdt5Rl8GwFPOWl2DUrMO9z/Nur9NaHjb2TnZMzzgZ4H+u9VvtYs1X6 Glulpc/rdImtx/aNkY3UcNAPAn1rP7V9ZNU9Z/shPdIEAX8Eqg/26NPPcxRY+oAuK6+U+EsV sUGgewJQkLtnh5ggAAIgAAINAn0b4I8Z4b3fXnFRbIO8rDltWdac++wavx/cUFuXElT+c9jY ak7HcvL3HbqxepW2HBXuIEVvrdDVd0IUeLnNZMhj3vLpu40tn9YzJP798phRH/7ioP0M/z2C hCAAApNDAAry5NxrlBQEQAAE+kYAA/y+oW2bcPXxCR0/JppjRbhaYceDMzPsVLCNUqykuvfb BVbadedOAcqUsnQZ1mOFztkcov2cDWfkAgIgAAJeCEBB9kIJYUAABEAABFoSwAC/JZ7hvchL uZ/jpdz6J7CRoey/wXo8iJuF9jMI6sgTBEAABJwJQEF25oKzIAACIAACHRDAAL8DWIMMqm/R o29xx36xp6b4XeaNIF39fX1roPhBiSKvs/nYydv1IGWegLzRfibgJqOIIAACI0MACvLI3CoI CgIgAALDSwAD/OG9N6pkhT9dpYvv1fc9Vs+bx3Eqi4jlXWfzGo76RQDtp19kkS4IgAAIdE4A CnLnzBADBEAABEDARgADfBuQIf0JBXk4bwzaz3DeF0gFAiAwmQSgIE/mfUepQQAEQKCnBAqf XaGL7+9S8Fae0r/ENms9hdvLxJ4RVZ/qS6ydP1MvztAUllg7w+njWbSfPsJF0iAAAiDQIQEo yB0CQ3AQAAEQAIFmApWv92j38IRmXwvS5fmZ5gA4AwIg4EoA7ccVDS6AAAiAwJkTgIJ85siR IQiAAAiAAAiAAAiAAAiAAAiAwDASgII8jHcFMnVHQPfO+rTK+3+y9QpLBLtjiFgg0C2BKrc/ Xrc7M+N9/91us0I8EBg7Amg/Y3dLUaAOCKD+dwALQc+CABTks6CMPM6EQPUfWzT92jWitTSJ T4JnkicyAQEQqBOQ71BGdooUf+c8sIAACHRAAO2nA1gIOnYEUP/H7paOfIGgII/8LUQBJIHq N9s0fWGFaDFJ2u4y7/KJDwiAwFkRgBfesyKNfMaRANrPON5VlMkrAdR/r6QQ7qwIQEE+K9LI p+8EoCD3HTEyAAFXAoMe4FS/zdF+rkT0vQvsJGzyLNgo/2jf/0G3H9eGjQsgcAYEUP/PADKy 6IgAFOSOcCHwMBOAgjzMdweyjTuBwQ5wqrQVmKZrX+uUg5TV0hSYqCUk3st/8rcdSh+W69Wx Ok0L7y5T4KVRr53eyz+sJR1s+xlWKpBrUgig/k/KnR6dckJBHp17BUnbEICC3AYQLoNAHwkM doBTpe2fTdPKF/UCJg81Wv7R2WjIJw8KpE3N0fmXB7m1ldfyq4pkndVmTqMP5s+GlVP16w0/ r+V3kmA4zg22/QwHA0gxuQRQ/yf33g9tyQU+IDAmBLRCUnBDE/wOstC6KdOTvEjejInEvXw3 sREHBCaaQP5OuNb+Qrdbtx8t12inelt1+QssRURyr3U6VtiaSMzL9AIi+8R6tV+/tEKiUYag yHb10OmVZN7Ln92OidBS0GCfOByc4L3j5738vSLe63S8tp9e54v0QKAXBLRCRsQ34iJT6O55 gvrfi7uANHpJABbkoZ26gGCdEvBrQS58fo0uLm9xtmEqniboPLaK6vQWIPwEE/BqATj+8hr9 IKS3Mw+fxRjl/xylCy+2D1v5JkfZh/wO8nfO06V/unAmTvqMZw6FKK+l6MLgDLHUUfmfFeja CxdJvwusIFP4jKzt9rvYS34dld8uyBD89tp+hkBUiAACNgLKCo7VFInbIdv19j9R/9szQogz JtBLbRtpgcAgCfi1IMsZTKLQgK1Bg6SIvEGgOwKy/bSzIItTTeRzGRFtWHwD60mRL+RF8Sgv sgdpsbkeMqyb3B3ycVjkuzNKdFeQDmIZz5xRe2ZoeRFuWO8Ha0GWqwnwzPXcfjqonwgKAmdD QBPJpcYKni5X8KH+n82dQi7eCcCCfMYTEsiufwQMa0SX2zzJGUxWkAduDeofJaQMAv0hINsP K8iUWr3QNpPtnz1Xe2c4dIfD/9wW/nGBPv3/LtIvGu8UBzb2Kftvb9jSrNLBlzuUf0o0bVzR iGYu0fLbtvSM69aD6kmBdr7YodRX+3RcYusz8bvEP2Yv2D+5ROcqWUr+cZeCn+zSB2/OWiPK X7y13HP61nL6M+OULcgeV51Uv9mj5P89oemGxVmrEi28zc6y9GyentDel0na/sseZY9Yprnz FHznA7r+fy7TjCV9H+VXLMjJI0HLr1Sp8PU+FQonVH1GxBTp/Gtv0CX2Bm43ile+3qPU/brs Frl1Jk+PaefzPapONe5IVaOZH1+h4Hxv+elZEfkofz2BWhqFv+3Szp93af8b/f7XP3M/vETB n4Uo6LQSoXpCu1/sUUUPyuWbeu0yhV4/R3v//Sl9+mWjHvE9u/ruBxT5+eUmfo0smr46bT9N CeAECAyMgGJB9jn+8tp/DKyoyHhyCHjXpRESBIabgGHN8TmDCQvycN9nSDecBDqzAJgWB3eL c0nEjHeUAyLzyFZuLSsCxnX5/rH+7e19YCkv9/Y2i7X1d9D2TnWZ36EOLQZFUP+bD5hx5xvn 5LXa9ZBINb3jq74va+bFEwWi1OL97MjdkhWAn/KfmhbkEL83KK3JzSzCtncKNbFp4xW8lTXk 0g43TR4y3HzC4hPCP79Gdn7Kz0loR5kW5Zb3hct/ZF2+4FhGWVb793xclE4NPC0PZH10bw8t o+MiCAyQgPk879YHDOr/AG8fsnYkQI5ncRIERpCAXwW5uF13MlRb0ulxUDOCmCAyCPSFQGcD HHNA1UohKN2LGgoXe1u2yn1aEsn1sAithkWY/0KGk65Q+yXZjzKKch0SibtZUXxY4qXf+yJh W+Jtly9/S1GK7QqRw++AokDKApT2EjWZw6v25eRSMSMRXAqJoJJeaLsoo9e//ZRfUZAtSjEr +aoDL3ktcb9s5J2/uynCipMvC5/Svoiy3OE1+Szl8ixZnSb2gl9NGD/lP0oZ9apexqCI30mL /YN9kb4Tt3DXr6dUJflRVsS4fEGjvsl7FhCRNb6fzFBy07/D296czXXWfozbgQMQGAoCxhJr bu/dfFD/u6GGOP0kgCXW3IPhMx4EvC+xrtDOf8Rpv1SlqSlzAeHJ1x/R1lcNFksRir5iXqtW q7Tw3g1anh/kVi7jcZ9QivEk0NkSUXNJHitY7kuyH+/RwnffohwjaxmOrx+zk70f1JzstX9F ovqPbZp+TV8aTVRfYlw7NP5V/r5F5358rfabLciUVpeM8/LvvYNjXuA7RdX/3aWrv/qYwwVo cztWcybGq6WNT/XZFAV+epnOuzkZU5Y6G5GWNin/nx/QhdrexLz0+a97lKtMUfBt+xJrI0bt oJPyU1O+Yd4bOU7BHzWeb7yMeHsjTCu/221kEuYl5AlzCbkS3+2+GPLYl1z2kp+CwMiv7Ssy Ffo4cI6uf12PHFhP0d5GyLp8/Rn3ER9epqu/02sef+bjVMpFSF0obubH1xfjVNyJ0PlGl1F9 sEuXXr1Sq7e0mCBtN9x2qXVn7acmFf6BwNkTqBTo440tKnGNNodPVcr97mOST4vQOjtWlJLx 2KnKr66sfBihQIvhE+q/BIbvoSHQT+0baYPAWRLwbEGW20Ep1hlukOasv7psUj3f5dLts2SA vEBgUAQ6swB4syALxdJpsVQ6FFLmr78i0c6pl3YonUORiN1lC5/DihHtMCXCvEx688C2tFnN +0imw47EHNJQgzoeK86y9GdQcCNjWY7sGMflZCflV7nWXikxDcSW1DPrprXcYglV5Ha7L4Y8 rZ6bfvkp0hr5tbv/6vN/flO4FJ1TLovNRbNfsDszM/MLioxDIpmNBjubBV0R2XIo03PjaQmM HyAwIAL5O+6rXvRnWKBpZUW9DemvkLT6oP63ooNrgyAAC/LQTFVAEL8EPFuQdevA79mCXCbL rL7FgrwYpdh83VlNTS42C11877phQa78fZtWVpM09appZXaXn2dQX16h5CfLJCdQER/8/NSf 3GfX6caXxzTlZplUK+PTKp1/J0bxVX5jt/HxG1+mo353ZgHwaEH2YKmUMsj8WeFr72Tv2116 7ntXZNTad2AxRAsvnyN6cYZmz83RxflLdPnNN2i2BWPjmeMlT0tujR9K+WgtTeITXlTd5aej 8iv5ulmAa2I8PaAr37lUswwFbrKjtH9tOErzEN+Qx25BVsrnm5+SlpFfm3tx/Pl1XmmgW/2J eNk+fTDv/gyv/mOLVxrUVxLwBAEl3jXsYmTk51K+dtcV0WuHMnzL+9GI5Lf9Iv5gn58jzb+S Ywtyksqm+ZhrpdWCHFyP8Zoa3dVf/VOtnqOV37AFubYqRp61fndS/60x8QsE+kRgEFo58gSB fhDwbEF2ybyTd5Dzt1vPonJzNS3StWOr4yDEB7/mOmKvM+pvtf6w9VWxbHlKZ1F1lOQ3vnMD 6swC4NGCrLwrHPZogfBiQdZLkN8x329uxTCy4275MJ457ayWzsjYcq04y2pTPrck5HnJ31P5 lXyTBdu73TJB/Zstxbyjaf1ZptYhJb6bxdOQp4UF2Tc/RVYjvzb3wgzHqweUd6uVpIxD7X7c eI7by2mk42IhNq63KL+RER/I8PZ81DD1Y7/tF/EH+/wcdf7NNVI/g3eQnbng7OgSgJOu0b13 kNxGwBhseRyQ2KIbA5TaksMWY0Y9nqlMq0pMq2PrEkzEV5z4yAF4y2/wU5fwpuSeky2ZKfXR 5jjFb3x729F/ex/g66G9Kciqky77Elc9FfUj8/ekIP3W4MQAAEAASURBVMqI5aJI346LiO7k ix1P1TxTL5rLiqXinHFZZW08c/S9mrtZYu1B0ZSitvvuqPxKvrE9h/XBMjMlnMXZlnLeTaHL 3mpMgrV4HvvmJ+Xkb6/lVycnW04O6Gkry7Ht3syN/FzK1+66InrtUIZ346mG99t+EV95Nnp5 hvb4+Tnq/NW6WD82n+fwYt1MB2dGkwCWWPMICJ/xIGAs13NZ8taulHKJDw+w2y/R5MQqjyu8 Zyi76nnefYmenmctzIuzNGNbqon44Nd1/eF6V6no/NhRimVv3OZarucx89KsNZzf+M3ZGEtO eYDv7nTLiOdlifUJffTcHN2oxQlR9kmKArY2ZCTHBx2132/36Mr33qILvAdz3L4Hs54ov4ax 9/swvfXrnVoWrJxT+EfN7dx45nCo1ENBoZdrwb3/87BU2WtiHZVfyZcVX9L+vGx53UTmWfn7 p+ys7Be1n8HbWXZW1limXy3Q1emLpNNx3Meal1xuBafpmu70sMXz2Dc/KSh/ey2/pUy3uEy/ NF89UJKrHeb+cJUWflWvA/H7ZYq8Ll+SUfJzKZ8hj8t1e14yvKf247f9Iv5gn5+jzt9eebm9 b/9suravfav23hRNOdFR/Vfi4RAE+kZgNPV6SA0CzQQMa4TLjH5zDOsZOYPvxYJsjYlfIAAC sv14sYDptOSSPEfnLeW82FSs5F7SNFdltLfmqk66LFv4qLdRsR66Wa+1w4SxBDd24GCJfVIS 2b2USPIWQiWnVSmKJbbdEnJVNKfjTsqvLu3mwYUI3zH3MjbSLmXM5dUcZtOyHLkk4tIZz2Kz o6tyzuTSyqLkm58hrLqqp839L+9btnFK5BzuG6er79ess6n/BcW+LZjB22ZdlCK1uy7Dye9O 24+Mh28QGDwBWJAHfw8gQa8JYIl1r4kivYER8KsgGwMaXi5Z7Ga55MBKjoxBYPAEPA/wTzXe bzgjoo33qAPrSZE/Kooi/+XvZ0Riw778PipK9vaolUX2ftb8O8zynsjm/rPxe3wtp163rpE2 nhUNBSi+kxWlJw0NlvMqFzIibChHJNLW6CZs5R1pfWItlSuJcpn3U9bLwXs0mwoWibixj7Mm ilK2g6SprM3HRZbLUS9XvpZO0VGr5uz9lJ/ly+4p+cpyLkVFem+/thdw6lbEIjutpswyN45S q1J5ZM+1awmR5X2ky6WiyNy2xV1K1O5v2WmCoCt+PsvP0WVdlfcncisjSiygpvEf88nYym+d xNFEqZBVJnACIp3Lc/wGGK7fRUt95Ov3+fqTxnWXLymTl8kglyRwGgQGREBRkB2eFV6EQv33 QglhzpIAFOSzpI28+krAGPR2aUEWWlEkb8ZE4p67U56+FgCJg8AIE/A6wGm3TYhUWmrfizGR d1As8rdNZdgSXip7Td8BkVUVNGN7IVPJc01nLd3yrqhbIbmmwZNu2YYCpVpN3cM35JpXnauZ YnRffh7ISssvM+LFxVZF2Ok3W4ibJihYFC232T6ukl7gloOVmtPplJ9Oofvy67H1jyYyN705 CrRvveV2/2T53K63sqTrEnltP3pYfEBg2AhoRxkR34iLTCunfy2ERv1vAQeXBkIACvJAsCPT fhDwrSD3QyikCQITQsDrAEdd3uyoIM4HRXg9LlIH7hNVpXuxjpQzoqjFiZbxrNCVRN7r2FEO Cgjdsqzq1c63sizSN21W04ZiGFqL1cphSYOXLvNmTi55Ws/rypnTx0/5M4qlXS935A5bjbed eAbblr+kWsCNMgVFgu9d1uYlPHbPzQzfIT8G4qf8Ks9yLi0iFo/wioO2xQhbhh1kfph2nFiI 7BTrSbtcD992niCQ8nhtPzI8vkFgnAig/o/T3RyPssBJF48Q8BkPAobDF49OUcaj1CgFCAwH gVFzslL59oRopuE87xk73dOdnlV5w/Mq79/54jmanTUdMnkirKfxtMIOvjg0O+6beZGderVx oOYp3bMKpMrPLrtmXmp2SuYmSuXkhN308L7yz890FM+Snpr/GfOrVk6odKLRue/PUfV/S0Sz czQ74738lnJ0+WPU2k+XxUQ0EHAkgPrviAUnB0gACvIA4SPr3hKAgtxbnkgNBDohgAFOJ7QQ FgSsBNB+rDzwa7IIoP5P1v0ehdJCQR6FuwQZPRGAguwJEwKBQF8IYIDTF6xIdEIIoP1MyI1G MR0JoP47YsHJARKAgjxA+Mi6twSgIPeWJ1IDgU4IYIDTCS2EBQErAbQfKw/8miwCqP+Tdb9H obRQkEfhLkFGTwSgIHvChEAg0BcCGOD0BSsSnRACaD8TcqNRTEcCqP+OWHBygASgIA8QPrLu LYHqP7Zo+rVrRPMJ0nJhdjODDwiAwFkRKHx2hS6+v0vBW3lK//LCWWWLfEBgLAig/YzFbUQh uiSA+t8lOETrGwEoyH1Di4TPnMDjHG1/VWDPtBdo+W3e4RMfEACBMyNQ+XqPdg9PaPa1IF2e 79AD9JlJiYxAYDgJoP0M532BVGdDAPX/bDgjF+8EoCB7Z4WQIAACIAACIAACIAACIAACIAAC Y0wACvIY39yJK9qzKu9DWuX9R9l61c3+o37jTxxwFBgEFAK8h3CFN8OdOeP9YxUJcAgCo0sA 7Wd07x0k5/3jfT7//cbHPQCBHhOAgtxjoEhucASMd5DX0iQ+CXYsiN/4HWeICCAwRgTkO2SR nSLF3zk/RiVDUUCg/wTQfvrPGDn0j4Df+us3fv9KhpQnlQAU5Em982NYbr9erP3GH0OkKBII eCYAL6SeUSEgCDQRQPtpQoITI0TAb/31G3+EUEHUESEABXlEbhTEbE/Ar4LrN357CRECBMaX AAY443tvUbL+E0D76T9j5NA/An7rr9/4/SsZUp5UAlCQJ/XOj2G5/Sq4fuOPHNKnBdr+fJ80 u+BT5+nqu5dpppv3uO1p4ffEEMAAZ2JuNQraBwJoP32AOsRJVr/Zo+T/HJN9P8rp71+i5Z+O 3jZ5fuuv3/hDfKsh2ogSgII8ojcOYjcT8Kvg+o3fLNFwn5Hv/DRLGaSslqYANpJuRoMzrgQm eoDztEKFB8dUeVYf707NzNH578/SFE8yVU4qNPXSTO3YFd4AL5w8KJA2xfK+jK25BngbaKLb zyDBDyTvKm0Fpuna1w6ZzydIy4XterNDwOE65bf++o0/XDQgzTgQgII8DncRZagR8Kvgeo2f ++wqLby/05J6YD5IC2/yTPB7Yd4TdrZl2IFd/HaPrv/Lp1SZOVcTofxtlna+yvFxiPJaii5A QR7YrRnFjCdygPPshHZ+d4OufrjV+pYtpUj8OdQ6zACuVr/ZoukL1zhnTIoNAL8ly4lsPxYC Xn5UaOtn5+jaF63DBhZDdPmNq7SyGqLA7HB2ZCd/3aIb/7XLbv/r/W/p/hbt6grzYpK03WUo yK1vMa6CQP8JCHxAYEwIaIWk4BYjuIMRWhdl8ho/tcp56Pl4/AvfyXchzQCiHDX4UUjkuwE4 AJGR5fAQyN8J19pE6PaI1He/6EoZwSqv9TkwHxAB+zn9d5fPJL8itotvPPPQ5tuh6vv1iWs/ 3RA9LYqIU/tqcS55OBqdWXG7/vwc1mdFu9vlt/76jd9OPlwHgU4JUKcREB4EhpWAMdjrcjDq Of5pWZQelkT+XrwxOA6K9GGJzxVrf/nDfZHYCFkGzsmj4e+kjfJjsDysVXyo5ZqoAU45K3gj OaONB9YSIv/IbOPlo4yIzpvXaam7Sbt+33C1zWdN8fudLdJ3IDBR7ceh/J5Plbn/LZVE5maw 3v4W4yLP/XHpiPtf/ssfpEVsKWC0TaKIyJ96Tn1gAeX9h4I8IROsA6tpyNgrASyx7r+RHjmc EQGvS6TdxOk4/jfb9NyFFU6OlySf8pJkm1Ork//5iOb++UYtu+DtPKVXnR1vVB4cUOrzFO3s 7FFJCje3QCvvLtPK0mWyrxCrfpvjpdBZftlxmqiq0exPVujyD6fo5JscZXMFKj3VqFolmvvh Al3+SYBmPK4wM8rfZol1hZ2LpP7vCU2r6XJ+sz8Jshz19xhP/r5L6VxFCcOuwJ6/SMF33yC8 6Shv8nh9T9IS0b1/eY7e+n39/gVv7lP6X99ovpmP92jhu2+R/tICLfJ7hbvO7xUe/22Htv+Y pNT943oavMxyjtv9yuoKhX4aaF5qWT2h3S/2qKKH5vY/9dplCr1+jvb++1P69Mt9Oi7xU2RO d7T3AUV+frk5fj2X+v82zzA1qNtxx/JzQjUHRcozROPnx8Lby7wcli8+PaG9L5O0/Zc9yh7V yxJ85wO6/n/G23HgJLUft7rUyXnJiyefSPtz85Lkvd9eobc+5CXM/EkcahT+kdphmTl1Wn/V vk2vt5e4n77wYpUKf9+nXOGYNL3zpXN0PhCgS69faN3+TDGMd9BZQW65xLrw123af0BK36on MkWBd0Ish35cpdxfdijLDwgeIdQ/+nPiFX5OvNm//enl/eAVRJRyGetIcZy+/cZ3ShPnQMAX Aa+aNMKBwLATMKwh/bYgN0AY+blZXE/zItywMjkuO2VLdHK9MQuuWKO4QSuz3yQSeyUL+vwt dXZcX74ZFbFV2zkljfhdbzOybctTk0ITCdUypuRDN7OSjNhUzxvHAQErleVWjtUPaQFxrOvj VNJHGWUZdUxYW6e1oMmlelsO3dq3XtB/PcparcxGO1Hbf1hkHlpNu9rhpuX5YH9eWH7Px0XJ Zj0r55IitBgUQf2Pl4Qb4ecb5+S12vWQSLktUe1SfsEvwDg9Q0L8KkqJZTPksfGI3G1Fuhnv qJ2ZmPbToxsjeblaXI1XhrgPdarDXdXf5rob3Igb/Xxz3Q2JdMHaft2K37Y8ekQtqzx71OcE iXiukY9rmM2uXj1zk9d+Xsrf7fPfb3y7PPgNAn4JYIm1X4KIPzQEDAVvWBTko5Qx2GMLso1T WWwuWju4yM2kyNzPiuxeipeIWa/FD8pG/PL9pIishlw7yoA66G0MMkO3pPJqJNN0YPBzU/gb MUp7CR5gKwNrPY+liEjlTBnzO5siIsvQUKhD68mmwXqTEDgxsgQmZYAjy6kPhqNtlDatofAF 19PW+2pbos1OskT8Tlpkc1mRucvty6IcBkXmkRKdB/axtTArt9ZnBFFARNb41Q5WdNWBenjb +uxpmmCz5GVPk0TA6dnhR34uiv4MCa+G+c/6Kooqd3ApZFnGHtouKhDG71DWq24VjPEj0rpE kpebglzciRrtoElB9lF/s3diIrxkbWNqvQ00tUsSm/fNvtGtVO3KU4+nicztaFPbD63FRdbI oizSt2K2Z0hARO+0HwO4yeblvJS/2/rrN74XGREGBDohAAW5E1oIO9QEDAVvAAqyxTJ6qoni /ZSlg4rtGb1XjWFxJ2J03rQYE/knzWiLxjvO+qA13OQ4S1qnZOcc284KTVqLtLLI3Go4/WgM gJNtZrINfm0U5LqkZRE3BgIBkXYy7hya1qDwmA9um+/e5J2ZlAGOLKfe7poG3p5uuyZUR3/B jbQoy3ZrxOeB8E1FeVxtfofZcOqjt29+D7OoGKq0o7Q5gbaYsFqOHuVZCU+L9N2MSN2Sz6GA 2NxON87r1+p/qZ2MKDY9m3ojf62oyiob+RyjpU1+n1uC0ER+Ly2SLEczIxlmPL5lvepWwRgP Ct5LIXk1Kcjc92V3pH8Qve8MWCeYuDX4bn9N9TYokvfNTlDjNrZpWdXF/XdTG7eW1bU81mD1 X+V9s31T1HEVi5EePx+SR06J9PaczK/b+us3fm9Lg9RAQAgoyKgFY0PAUPDOXEFutroYgz19 8No0uFWVS7YOWXVny/1Ir5mWWutgXBOqgqxamNUE8qoizo6CWn0Mfp4UZCHK95VByKrNQiZU C3lEFNsMDlrJhWujQWBSBjipNdneQyLbpDx6uFdlZYk2L4F2b/4lEdWfH7U/zktRgPVcJG/d +uz0DMlsNJ4drRyEGctQ2w/gjZL1SP5aepr5GopezuBGxqrMG5mO/4G8n90qGONPyFpCycvS 1xrtRbYbEvYVFKIX9ddSb4Ni35jQUWVkRdx4VjjIoQblY6M8HscvWemkjMsc2bGtrniiOBFc Tdly6s9PKX+39ddv/P6UCqlOMgE46eKnKz7jQcBwMtXGyYVbaTuNb4R3S5DPs1WXIu/aHO1U C3R1+iLJnZRDGzFaYB9WpkeNRoLsU+TGr+tOvvQzbIWlxLvSyUaVtn82TSv6fpAtHAARu/L5 OHCOrrPjH5rfpHLuA1cnWWZ5vO6DXKFPOe1f6GnzJ/VQUOjl+nH175/S9I9/UfvBnTfF35Fy 16/j//gRmBQnKzvsoOtqzUFXgNKlLAV1x1IdfKr/4L2HX9P3Hq5/ojdjul8da/Pn58HU9DFd V/ZXZk/4tPyK6WhI8nZz6tPuup57522e4/RI/lrpnxXo2gsXqbaL9FqaxCfsG3xCP/J+sYLR lZOjScMmebmXO0hJ3lt4+XVrA+1J/VXqbeh2lu8Xb+7m9Kkc0JVzl0h3FebqzK8RzyiP1/HL U077O/W0iaJUPI3R+Yaj0NwfrtDCr+oOylJH3C+/4iRcb89J+butv37j97Y0SA0EmMAkzw6g 7ONFwLCAepyBtZe+0/hGeG5GyVx9m6fMHfO9p9rSLnPVlZld0/Isc7Zbb5Juf7oTG/NjWpCt 580Q9SMzHHvbbrJCqaHN8njfB1m7rzgMWpNWZFiPVa6TcjwpFoC83K+U26p1VYe3O222M/e2 7vQMsL8iIXm7bSFlXG/xPDRl6aDNy/3mWzyrvMhfo6U8C1s/x7yxHeVQ8n51a4Eb5bJ3I7vk pW/jlK1t85QVSWXFFU9POy49Nuu8j/an1Ft7u7SURQnHE9ktV0cY5WnRXi1p84/sLfNdaMOJ ncV6LPtke8ze/5byd1t//cbvfYmQ4qQTgAWZe3J8xoOAYQ3xOgNrK3an8Y3wFOZtnhLGNk+F z6/TxeWPG6nHSF8oaZnDVmaf2S5MybshmnrGJiS3j75txIvn6dLiGzTbmCHWTU7SghzY2Kfs vzlsM1NLzwynb0eV1VIUMI1QlhzN8ni1IOvRK7QVPEfXvqonlX4kKPjtp/RcQFqPS2w9tpTe kid+jA+BSbEAyHLqdy54K0vpX7pYj1xurdnOOMBSnNI/P0/VZy6B+XSV2//MbIAuv2ndMsaQ w+V51+66nqMpi/UZ5i6NGodD+ZC/lofyLOzW8tRK1lG6Ju/XpHPwes8kL+s2T9zfvc8rqz6r pxLYyHDfeNmSpFnn+XS39Vept+xfhKJvzljyMH4o4dxWesiwRnlc2rMMZ/l+mmMr8kLNQq1b kUsiRmW2Hl+U1mNlVZclXh9+SPm7rb9+4/ehSEhy0glM+gwByj8+BIyZ4Q5mYNXSdxrfCN/0 zi5vBaF4qOYlWGo2vFVD3nTgtdjt1gseLcPqljRtZrDdy2MV3/5LyyUMq3eAvWmaHrjZeQje PbbjGtvfE2MBKGWM+q6//7vv/hJx/V6z0z7DeR6fMdsZv3Pr5CHaYw2RvJucFDXit7uuB1Nl 4VckPH3UOH7kr2WmWNi6tTx5EnoEAsn7NekcvN4qyaup/rMFVfUCn5DbHzUS7kn9VeptU/5K Acp7MeNZ0a6tuJZHSc/pMHvbdOYXuRk3y26s6HKK1ftzUv5u66/f+L0vEVKcdAJYYj3pNWCM ym90fGekIItWDm5UxZSXItoHn6oXzciOunTaekO0R0WRucNbJunbOFgcgagKMi8VW0o0K6NP 8iJmeJrm7Vo2HPZiVbNrVR41XNOxdUKAJx1rgwJjyVdTeJwYRwKTNMBJK853aD7q6IVev8f5 u9KRneIEiwfXEWV5cqslmuUjXjbKW7ZEN5JNXpwNL9YuzvfaXdfl0w7Nya2YspWcfq32eVKq bTuX5C2oStJJWI/kr6WvKBphyyskjfwn6GuS2k8vbmur+q0qpmxZtTqJ7EX9Veqt3t857XNe LqQs25TFbTtZ2Bm0Ko89rOU373usTgjI/jftccLLkpaPH37rr9/4PkRHVBBwJAAF2RELTo4i gTNTkMs8aOT9ijPb5vvGm/eyIn9YtFiK7Fs5ZXJ5UZLWJmWPZL1DC/IewdmH5Vp8rVwW+fsZ sblmvl+kh4lbZsJtCnJtwF3fS3X/IMODalO2eofZ/P6xPvjWy1H70/dfVcoTu8vl4XPG9UOn l6nNWqIOtOv5wXps0pmMo4ka4PA2K+xOyrAO6f4GNnf2RelRWZQeFsX+3aQIK5NTuqVZ9UJt eTZwOtE7GY7LGihbm8uP+Plyj/c6V1ah6Omb8TVRKmTFptxnnK+l1WeLvs3cISvW6/L5wdfv 87PHyeO2ZSIvxHuZl0SZn2/68yexbt0mTn3++JW/KJ8tB0mTI3v0zrLc9WdOviZH0dDKx78N TVT78XE7tYf52n7hZv0OiQzXp/yR7Fz1xO1bOXH/esh1qrGiyV/95eRtCnKtz5uPiCRvnba/ x333umnVrV1rmrTnNirbgN4H29srt2ej7+Xr1rI1w8srVuRafmuZ5kB9PuO3/vqN3+fiIfkJ JAAFeQJv+rgW+WwUZFZMLQNXdZBMYtOixJYtS631jiugLKks3jWXX9U6NcuA25pus5XKSUG2 xTHS4wHEkTT/NO4+zzpbB/huceV5dYDuVINYnlUZlgf8d1sr1E4p4NxoE5i4Ac7DjKPlxqkt Jw7s7YH3Od6QCqzZbpzi1p4b6yljO6jmyah6fPlscbvuthQ0s25uJeeWv74Pe1bVP1gB6bX8 jnnPt3ZsNNotxir9xLUfa/G9/WLF1MlaWq87tj6Kl1rb+zizf+6+/tYEdVKQjf7W1p5te5Tr 8V3bqFsa7dqBTZ60/XHjja6vUH7rr9/4voRHZBBwIAAF2QEKTo0mgbNRkJX9Cps6s6BoWtZU zlqWU9r3K9QeZkV81X2AGl7fFBlH662pIOv7PGrlvEhuRERQtVrNB0WMLVNy1txyV0/ZnYca tqkstk6ePYXmW75PzJ6rjfRgPbawnpAfEznA4XaUumm1tKqKXuRmytly26gTpfspm6VZbXdB Eb2lryyxTW49TAt2C6ZYr+vHxrPF5XrY7gvBqJdlkb4ZaUpPL0doLSZSB/x8McJaD7qSn9/h tisuKjP1WN8XeVI+E9l+Or651olYta7QfMy6lJrTLueSSlsJiJRtorir+qvLrCik+isS5cOM iK+FlLx4MnwxLJL3XF6f6qAN1Mq4lnJtgzWEj5QVLeuDaTN+66/f+DUO+AcCPSQAL9b89MFn PAgY3ik78QKpFN1vfCWpzg+fVuj42xJNz84RPdW9Vs/Q7IvsbtrwWm1P0vRO3eQ1UnrEdY1r T8v/78pfP6Jzl+t7NkfvlSj2U3iu9k91tFKYaC+kVW6//1uiCrc93Un81Mwczc3O0JTHNlh9 fELHj4nmXp6iaqXK8WdoRm//Z/lh2Sv8HCL9+fH8VD3/UZL/LFn1Ia+Jbj994NlJkh23P8U7 NW/1RuEfKW1Vbz/6x2PbqQf293/vtwv01oc5TiRAGd6b/fIAul+/9ddvfH8EERsEHAj0UNlG UiAwUAJnZUEeaCGNzE0L8uD3D9U3l2hYtPg9wgGs7jKo4GBwBGABGBx75Dz6BNB+Ruge2izI A5Wc/Qjw0L72x9taDUwUv/XXb/yBFRwZjy0BWJAdJg1wajQJ+LUA+41/ltSqjwv08Xcv0g3O VN/rce+XC/W9VHn2euYl75arbmWusMVL37t1amqKjv8ap4XQR/Wkbu6TtvaGZ8tZt/kj3vAR gAVg+O4JJBodAmg/I3KvuN+rPNilyxeukG6zjd3L0wc/nuP+kFd+PZuiWV450tcP51N5XCFe Z8L9b5X2NoJ09fe6JETxgxJFXmfz8Rlar2VZ/dZfv/GlHPgGgZ4RGFvVHwWbOAKTYkHOb7u/ 88gPBkGr6b7ee4OztBo3fQdExrIlVV/FQeJDQgAWgCG5ERBjJAmg/YzCbTNXbtX62qa+j4Th C6BPxcnfsXnIbpIhbjj065MIjsn6rb9+4zsKhZMg4IMAnHT5gIeow0XAUNyatlTwJqff+N5y 8R+qbQe5BgXZP2Wk0CkBDHA6JYbwIGASQPsxWQzvERRkt3vjt/76je8mF86DQLcEsMS6Z7Z4 JDRoAtV/bNH0a9eI5hOk5cI1ZzmdyOQ3fid5+Q1brehLrJw/M+zgq99LrKrszEdfYu30mZri Jd6KzxKnMDg3fgQKn12hi+/vUvBWntK/vDB+BUSJQKCPBNB++gi3l0nrS5x1R5qOH3ZuN9Pn zo/73Vr/65g/v/bE/b9X54AuSXR12m/99Ru/K6ERCQRaEICC3AIOLo0Ygcc52v6qwC/hXqDl t3kjlE4/fuN3mh/Cg8AYEah8vUe7hyc0+1qQLs/3+T28MeKGooCATgDtB/VglAn4rb9+448y O8g+nASgIA/nfYFUIAACIAACIAACIAACIAACIAACZ0wACvIZA0d2fSTQWPrU9RJjv/H7WDQk DQIgAAIgAAIgAAJDSaDKS8955XnXS8z9xh9KKBBqlAlAQR7luwfZLQSMd4jX0iQ+CVquefnh N76XPBAGBEAABEAABEAABMaJgHyHmL14U/yd8x0XzW/8jjNEBBBoQwAKchtAuDw6BPzuY+w3 /uiQgqQgAAIgAAIgAAIg0BsCfvcx9hu/N6VAKiBgEoCCbLLA0YgT8Kvg+o0/4vggPgiAAAiA AAiAAAh0TMCvgus3fscCIwIItCEABbkNIFweHQJ+FVy/8UeHFCQFARAAARAAARAAgd4Q8Kvg +o3fm1IgFRAwCUBBNlngaMQJ+FVw/cYfcXwQHwRAAARAAARAAAQ6JuBXwfUbv2OBEQEE2hEQ +IDAmBDQCknB9V3QYlJoXZTJb3zxJC+SN2MicS/vKffMRrAury6z7W/zftk9jdOiiNjC2+M7 /Y5se5PLPeP6leztUJO89vwC80ERXouJTK7ULjlcHxMCWiEj4htxkSl00/rGBAKKAQJdEkD7 6RJcI1pH/E5LIjbf3O/W+7GwyLbofsVRqm3/Z+8P9d/Jo148F8siseQmt3k+sBgSkY2kyJZ6 kae3+5K/E65xCd3ubpzhN743KREKBLwTIO9BERIEhpuAXwXXb/z8dr2DIAqL4mk7VppIOHXQ 84F657uYcFfyT/Mi3IWC3G3HZS9JatXsiJ0GAvZz4TvddZj2fPF7mAloIikHbqupYRYUsoHA EBJA+/F3Uzrkp2UF73PRpOgGGn1y8FbWVRxjnOAQ3973qb8Thz1QVruYHE/2Il9XGuYFvwqu 3/imJDgCgd4QgILcG45IZQgIGB3XgCzI8gFPFBJZD32h9qgosgdZkb2fqVuEbQpz6qEL1PK+ 0blH72Q4PqeRy4rkummRju7s189z2tFGur1SkMVpWZQelkT+XrwxwAiK9GGJzxVrf/nDfZHY sFqZezN77sIDp4eAgDJA7bL9DUEhIAIIDIgA2o8/8J3zKx/lxb7ed95LWBXlWn8ZcZ3kLt/f NPq95J7ef9f78OiiqXCnauf4/F7S6KsTOQ+DAi8Qytz/lkoic7PR3y/GRZ7749IR97/8lz9I i9hSY6K9psRHRL7thL2XjFuHkeOfbscZfuO3lg5XQaBzAlCQO2eGGENKYJgU5HwnfSHPZoca s9Hh9ajRoQZu7juS1g7NDj15ZAYpKhZstUM0LL69VlzkknaeEFDzkxKV7sWMgUewy2VXMi18 DzuBzgeow14iyAcCZ0cA7ccf6+75aTnZnwZFdF2uAiMRP3BeZ503XjEKW/o9YwXNUtIsClt8 5WqvbhVHMzHrkVQoifNzGm6or3D1xHptzb7pl5Sn23L6jd8kEE6AgE8CUJB9AkT04SEwTAqy FwuyJFfciTQUSb3D1URKLlXlpdpOiqdRTl0xVXpG2cHoFmzH8z1WkN3kkOUSylLwbjtNIy0c DDmB7geoQ14wiAcCZ0AA7ccf5O75GRPIuqKp9FluiqfRz1oUU7f8zfO97gMNOdz69aOGTxae fIeC7K92IfZkEoCCPJn3fSxLbShsbh1Gm1L7je9mwW2dbVlsyqXVa5la0PKBXLpMInqv2cmV IaebIuxyPrCebi1Kh1fd5DCSUZyZwIJsUBnbA0cLytiWFgUDgd4SQPvxx7MrfurrSnfrfe2+ XLpMAZFp7n6FoZh2qCBH7xb9FdAW25DDZbxT3IkaK7igINvg4ScIeCCAbZ7YiwI+40HA7zZN 3uNXaOc/4rRfqtLU1JQB7+Trj2jrq8bPpQhFXzGvVatVWnjvBi3PzxjhawcPdui5V6/WDjdz Gn0wz3GeHdP1F35AH+tnFxOk7YbJTInIkJOClNXSFGhclNsksAWZ8lqKLsjzn12hi+/vEq1l SHxyuZZXL/6ZcoRYjpQhBz2r0vHXu3T9x1dpp5FRbK9M0TdtZe+FEEjj7AlUCvTxxhaVuFaa 1b9Kud99TFzLap/QepQuSMm47ldpjlY+jFAAVUBSwfekEkD78Xfne8jv+Mvr9IOQ3tNyH/aE +7AX+fBb7pO/V++T2VkXpX8ZsMhb+NNVuvge92zz3DfnZN9cpe2fTdPKFxx0Mcl99nKjz+bz QT7P44Lo3RLF3p61pOXnh9HfW/LjFKsVyn21RQuh643kA5R5lKXLL/nJrX1cKQ9byim1ajz9 20dshPAb33NGCAgCXgl4UKIRBARGgoBh0XSZUW1XCM/xjXdvTacc3N6M2VqSnqjVc/qxg1xZ Y7Y6KtTJavM9JxJOzrp0ByPFh9Z3pIwZZZsFWWhlUSzkRelJOwKdXTd42ctp/73q/I5UZ7kh 9LAQyN+xOmCz1H2+99ITrP18CN7Mh+UWQo4BEkD78Qe/d/yU1Vvr9dVbdcnMZdFEDs66+DWo Wn9aVt5v4reADQu2rZ/XyuzQslDi5dv+ym2Pbfb3ytjD3vfy73CPtne052//LeXpdim53/h2 efAbBPwSgAXZ60wCwg09AcOiaZ9R9Si55/jP2IL8e7Ygl8li2bVYkBejxPsskibzrhLPOl+3 WpCfFdhSfLFuKV5KUumPQZp6yhGe50ngB1s090Z9BpiddVH2X9+QKbl+yxlYuwXZKULl79u0 spqkqVdV27RTSP0cWwBfXqHkJ8ukGgANXm7R+HxsO0uRdwMWTi2C49IoEKjk2IKcpLJpPmap rRbk4HqMAmbtp2r1HK38hi3IDStG7rPrdOPLY5rSLTbtPk+rdP6dGMVXTUsO4oPfyNafHrSf dk1mrK/3it+DbV69tVJDFbqTpa23z1OVVz9NPT9Fhc8u06Vf52rX2FkXRf5J7fmc6LpZkJ3C Evl9fumpmv29cx7EK8yS97do+fXeWa3dclLlgQW5FSVcGykCfjVsxAeBYSFgWDRtM7he5fMb v9N3kNV3jfmhYVqgm46dnXXZyyVnYO1Ouuzh9N+qhbp13lKuYNPWVQYvljeZq2/zlLljvvdE Lu9wOcmDc6NPwLCg8Lt5rT9sbVG2RPFU/yz7giM++Mnnksfvoao/zq3De/txjj/pZzvlZ67e alOHLO8au1F2tyA3x/D7/KqnaPb3EZGtbfPEWz2uqds7xSyr0prl6O0ZKQ8syL3litQGRwBO ugbHHjn3mIChsA1IQZYdhK6gtvdizd6qV9t0zIqi7OSsy45PzV/1Ym0Pp/82lXmvMjQr6QZv m7ft/Lb0yq2nfbadtFNZce4sCHQyQBSKp3aP9c+mdJue3hHf0wQD+FkawaDrj0WY2o/O2k9z /Ek/0yE/1Vu10s86tyVnZ11W4p3l77f+6Xkb/b1FgWc5lHFFYENdOm6VuNe/pDxQkHtNFukN igCWWPMTEZ/xIGAs+e33EmsXXOaSJ6uTLMfglQNaOHeJ9EVc/I4QJd5lpxbPbCGrBbr2nYu0 pZ92cNZlC60sufKQP0euPK4YS8rsaam/a8vOXpylGdtyWIO3zSmYvtx2ix2TXGs4LAvdzrLT DnN5rJo2jseFQGdLDHVHbpWKXv/Y0Re/UtDqo9e/mZdmreEQH/xGuf40VfgO209T/Ek/0Rm/ yt8+pnP/P3vnH9pGluX709ADDvSAAxmwYf54GWahEzpghRl4aZg/Ns0sWKEftIIXOmEHFiXz z2wPGPVb8Kjf/uGnngWjngWP5h+P8/7wIDfsIi9kUBqyyPPHgj3gQWpwIzW4UQbSIIMDJUig BA7cd0pSVd0qlaQqXUlWSd8CW1LVPfee+ymVzj33x7ntJUzZik733ualRrL9NZY5fbVLl260 pmB7BetyEg9WvvLvHxdutTfc7Z1XJbr73ZtWgMxtDv4ZN4J/jvgw9cEU6xGDRvbjI3BRnjnK BYFhE7BGNEMwgmyP4PYebZanQnsF65IZynl67Z8spx3Ke2ufxc7RZXFWEOwSW9PG++k+FH2Q yQUSCDaCcoGKomgQmEACeH7UbkowftbsLcfUe7cGuti2loJ4BOtyJQ86xdslHvijZe9ds0OM jLT9lGV7OX62qA45QJiXshhB9qKCc2EmgCnWYb570N1B4KIdZMtg8ZTjrgbpXBPlUkEkzb2P 2YkslMqieCzHsOZqceTpcqkoCrv2mt7IWlYUT5zptEpRFI/475jXH61F20YxKrL7fI4jZ2q1 qqjJwTYdxAb8wFE5jTJl3TJPi6J8XHVE6qzuSVOtl1PNetacgbcHVABik0dAaqA+zE2eetAI BCaaAJ4ftdvjk59hu/azUudtumk7y64dIfSzqiiy/bVtKonETkFUHcaUo1lzmqb9ZZueMp3p paQosH008qyxvR529Gr9ObcXHLrF2LZyeSeycXUu4Yquc9vhuCy0ETrKcJDVvsGQnjwCcJAn 755AowEJXLSDLPSqyG6kxPbTctcalLdMJ9YeXeX5Ik3HNnNse7Ld00Xs9c16UUSlUVozH/dr ZLPYVZ/gF7ghYjYEPMrmvZylLDWpB75Vx+HqIhWFtxdOQD8piPR6WhQq8nfgwtWCAiAQCgJ4 ftRuU39+bLukjmmnnZSDUPZKl+ENnVqHfrwtjdJ22nMzf6dNVKuj4LXTMQ+72ypLahsYxbzs bB8MVRdXVeAgu4DgY+gJwEEO/S1EBUwCF+4gm4r0eNUOM12MKvcCS4PD1cf2yLFpaFuvSWFN nz6vCd5Kqkt+9vnUUynjHrr5vWQaQqdeRnlRkX/uykUrioRk0BN7VVcCfAQBEAABEACB0RM4 2Oyyh/tyRtSk0dW8NRvLtqOGvYus5iwHWdQKPjqoPWyiUjXZeZeCcDls8FKqY+aaVpJHyyMi d2K690pKeAqb7QIE6fLEg5MhJIAgXfwLg2M6CFhBo9xBK3xWT1XeZzFIBgIgAAIgAAIgAAJT QwBBuqbmVqIibQJwkPFVmBoCqg6uqvzUgERFQAAEQAAEQAAEQMAnATjIPkEhWWgIwEEOza2C ov0IqDq4qvL99MN1EAABEAABEAABEJg2AnCQp+2Ooj5wkPEdmBoCqg6uqvzUgERFQAAEQAAE QAAEQMAnATjIPkEhWWgIwEEOza2Cov0IqDq4qvL99MN1EAABEAABEAABEJg2AnCQp+2Ooj5w kPEdmBoCja8e0aUbD4iWtkkvxWkuYM1U5QMWh+QgAAIgAAIgAAIgEHoCld/foes/f0LRzTLl P7oWuD6q8oELhAAI9CEAB7kPIFwOEYEXJdr9okI0f43uvR8JrriqfPASIQECIAACIAACIAAC oSZQ/3Kfnhyf0sKNKN1emg9cF1X5wAVCAAT6EICD3AcQLoMACIAACIAACIAACIAACIAACMwG ATjIs3GfZ6OWrxtUf9Wg+be49/LNAaqsKj9AkRABARAAARAAARAAgVATaHD7q8ET+OaDLm5r 11pVPtTwoPwkEoCDPIl3BToNRMBaQ7yaJ/GbaOA8VOUDFwgBEAABEAABEAABEAg5AXMNcWKv SukPrgaujap84AIhAAJ9CMBB7gMIl8NDQDUKtap8eEhBUxAAARAAARAAARAYDgFEsR4OR+Qy OQTgIE/OvYAmigRUHVxVeUX1IQ4CoSZQ/5qDtPw3B2m5xUFa3gkepCXUlYfyM08A3/+Z/wrM NAA4yDN9+6ey8nCQp/K2zmalVB1cVfnZpI5agwATON2nNxbfs1DkTgTFfmh9xBsQmG4C+P5P 9/1F7foSgIPcFxEShIwAHOSQ3TCo252AqoOrKt9dMx9XGnWqfP2MalqDLn13jgNdLNLiwgIH HCOqf3vKkS9a733khCQgMF4Cryv08Xeu02eOUhNU1tN0bcB4LY6s8AEEJpkAvv8XfncaL06p 8tdnpL0mujw3T/NXLjft5xw16PS0zuZzgeYGCdx54TULjwJwkMNzr6CpTwICBwhMCQG9khX8 tRe0nBX6AHVSlRcvyyK7kRLbT8v+Sz/XRH4j3tLb0L3b39JgdfKvCFKCwCAEdJF9aH9vI0sR +zu8gu/sIEQhEyYC+P4P627plYJIr6dFoRLAemtlkXko/eZ0sZ/RrQA2eVgVmrF8yjutdkxs QNaq8jOGG9UdAwEaQxkoAgTGQkDVwVWVL++ajm5cVM99VFkrioTboC9FRXTJdjgshxnOhg+g SDJuAsWtmOUQJ/ZajdDyXtI6F9sqjlsllAcCYyOA7/+wUHNHw0rb7j3M+cpUK7U7xCUbGlmO ioj02bSfgzptvhRBoiYBVQdXVR63AQSGTQAO8rCJIr8LI6Dq4KrKmz/wRDFR7NcJfl52Oscr aVGs2UJ6rSjSy5KjPOCo+IXdDBQ8/QRO7Aaq6RyblZad5OyJ/b02r+MVBEJPAN//Id5CyUH2 Y+tOclYnnOEExzbyQjKfolbKiZjkKMNBHuKt6pKV2f4ZlLWqfBe1cBoEBiaANcj864pjOgio riFWlTfX4LCDzOsvcz3XX5Z+e4du/vJJE3xkLUcHv45Rx3JNeW3bSpb0f79np3lVod3PD4jm LrVuXkOn+cgdiv5ogeh1g0pf7FHujzkqHfG6Zlqkm8sxSvxznK55BBeuf31Iuf/I0ZPDCq/Y ah1z379G0eW7dHf5Fs27FTst0e4fi62yjXJ/zOUucbnNo0GHn+9RmdeCtTTTef30Tbr3Pvfr t4/GtyXa+8KWX/jJfbr99hydfl2iYqlCtVc6NViRxbdv0u2fRDrLNzPC68US+GaX3vib+5Tc K1Pqg2sdulT+81O6HvuEshWd7vH9xQECU0UA3/8h3s4G7f79Jbr/H5zlMtu6J5Kt6yilTo+i l+nBF60L3X5/6Js9/n2620zEThvlHtq/UQ2OuJ/liPuX2j9LOtubm+/fo4hhxl6d0v5/ZtnG 7VPxpMaG6CpFP/gFffyPt2m+Yx1zgyp/fkJ7//6EDr7mtO1j8e13Kfr3MYr+z2u2zW5fq3+5 T7mjVtmOco3rr57R3uf71JDtusO+cjzEvzyhfKne1N2Qf/fDe3TtLdbjLwdUqjwj3TCedJmu RiL07o86y2+rMfQXs/3jZu23IFV5v+UgHQj4JjCwaw1BEJgwAqojwKryZg9o3xFknlodtXq3 46LcYzp27Wl7uurStmNddXkr6uhB5wdeEE/D1s6KIm7lLY1AG+dW8847plfFdt/1WxGR2a86 5IqbrjVfsm560WOKW9Qxol52yy8nRaqHHunHWD/muAH4AAIgAAJTRcD/CLJ2lLFtX5+lR4W1 lg10rkHWxbbHMqbYTplHnu1ZMU2bKtnSxOOag7h+Uuhuay25uCg4ZtDoImNda+u2aS9D0Y+l upnpZPvKrQC37lFet93V5vNstnyQNd2OGgb7YLZ/MIIcjBtSTy4BTLGe3HsDzQISUHVwVeWr 0hrkXk6vfrxtGfioZBy7VVer1YT20nX1eUEkH8ZFnP+81lw1jftyTMTkadrcmLCO86pzijcb 48RGVhQOD0ThcVYkZDnj2p7tJOuVvEg8jNnlyo2U85rYXmW9VhNSJ0BMlKVZttoR5y/Lmw2B 9qsj0FP7XMwHJ6tueAMCIAACIBAqAtYaZNlOedSgLMU9yBxpHimkU+e6qD2vCd3VCV3b327a zjjbIbcjbH6OrsQkG8bTuHdtGyhcU7yJoiK9kxcHbD/zO2mHnJFfTnKSy48zIr5id3A7HMra gUhyuXG2oaYeRse3ZD5FcSflkLfSWfbT1THO5/tykpAN+hYO8qDkIDepBOAgT+qdgV6BCag6 uP7lNZHbSIoEO4HJtaT1F5edyhXnNSNtttQy5qYhMQzb9rFs+gJXuSlgNSzaBpIozr3GdsOh dlwQ2d2cKNunxMGGbaBpKSmK0jVTC3kdKVFEFM7MK61Xq9xua8asNXpOB9nMxZJv653aLdoN GV0ThU2pkcBpeKquKYpXEAABEACBMBLgyNNptoeJVdt2JtfkDlV2RiW7mmym5RgdTRsljTTz 6Kjc8ToQCo4F0jH6upIRZcvW6aK8nxfZvYLQLCdbE2lpBJqXSEnX2lrw7hS5NWmm1VJaOMaf pXIdDrJUCavD3cu+SvItBzkqskd2CfqZO7p375lqUrEDvzXbNd3q0y9jVfl++eM6CAQlAAc5 KDGkn1gC/h1c7yr4lje3k7IcUlePrbzVjZymbehMQzAcB1luMLAey+n+EbTZuNoBTKLiwMM5 NgkVN+0edvc0NcvB9TLgnIHF07Mh49Q7feitRHkv4ehJN/XCKwiAAAiAQPgIlHdsm+Ie/TQ+ RyTnU75uTIFmq2JHu/a0KwF56E4HObpecIzWeuYm2/+ljPC2XIakJjJSp7mjM1wqt5tDabUT vOyrJG+MXh9YDr2ssS5yq3bbJL472qVKpr7d6iNr5vVeVd4rT5wDARUCCNLFv8A4poOAapAt 3/Kv67T3b2k60DhOlYTu9MtP6VE7cAgtJym1RMQhqloHx824/rOP6d7SPJnBKIwL2WMOYPSO lEudg2/94YB06VQ7Bw6gdZnu/mOMFhyBQqTgJpSk6nmKrjqum9LSazu4jHGGp3hT/iM7gJaU qvW2UaK7l27SnvHJEShMKrdLUBWLp2fQMll+m4OyxB0sbT3q9FnkMn38JZ9ZypBW+gV5xBmz k+MdCIAACIDA5BKol+iz9Sxpc7KR48CS//oZtcJWsl1aS1HEtp4ctPEy3f9VgiJXJLvhYVfq X3EArD89cxpmk8SVmxT/wGXrOBDmg+9cp0dGmtU8id9wdJA+x7PPP6Yf3PusmSpT0ukXS3I9 nMKNrx7RpRsPmifZQaXtD9uBwqRy2aF0BBAzc7DaCV721SFfZHlXvcxM6od05/K7Ta7RjQPK /+9b5pWhv5r6dqtPvwJV5fvlj+sgEJiAincNWRCYJALWiKVXj6sPRVXlrSlRPMW51xpkuQfd PXLqGaRDGoVOl9zTjKUedddapW5Vtupp9Nav2wFCPNO/lIJuOYJ8SeV24W2X4zUVzpZvjQx4 ls4n7XR9g591ywLnQQAEQAAEJpqANSOp5xpk2R50zn7qCAAp2U5jmVDH9ovSVOXedshGZ450 cmNbpPqsgdaP0tYMKMfIqlzulvfIrlWOl32V5HsuPZLS0bIz0Kddo+G8M/V11DNA1qryAYpC UhDwRQBTrH1hQqIwELAcMi+D4qMCqvLmD3w/R04v2UG66GHOqRmvz9reSIvMZkZktrZFes2e jpbYyImatQ7KFJMaDD7rrR/bkTr7NgocBlYOFtK/XLuevR3kyPqBWRmPV6kcnlLX0cDxkMAp EAABEACBMBGQfuf72LGiFKQrLgWPNGqrHedFeoNtJ9vP7a0MB7wy1wFzEC2OcdFxSPbNr2Mn Bwnr6ZwahUnTsR1LlHyUay1v8uIhyaf2u0/yFlI63j6r//TxDkD+T5jtH78c3Tmryrvzw2cQ UCUAB1mVIOQnhoCqg6sqb/7AGw5yz+AhZwU7AjT3Quee90BoBbrqNirtv2FhlcKjwtY2U8u9 1lBxg0PaUiO6ITcwpHK7jFzbDQkvHpJ8L8dXZjXiHnCLTwjfVDkqq3VPeU3a9r4dsMVPdVTl /ZSBNCAAAt4EVJ8/VXlvrcZ5VrIHfRw5bT9ljcoSJXvG3LBmdXUblZYcSL+OncMm9tldwXJy 2c6n5dFmXkNsxgHx7qTm7ZzM9ctePCS9ezm+Mis/O2ao3HGz/eOXo7ssVXl3fvgMAqoE4CCr EoT8xBBQdXBV5c0f+H4jyAawohxFmhKeUaSbYC0H2cvJbKH3NzWtlbb13xmFM74lO75SOt6v WY7w6Z4OfrBuRsLmkV33NlQOWda918i3MQ1uZbtzdPxlWfA6bqsx1HukWdJ71t5qB44OF2Pq nzGdsFfwNQciVXlHZvgAAiAQiIDq86cqH0jZUSX27yA3g19JdoEeZrsGyrIcZC8n06iK5GjG m0HAfNSPedudkbwTRXt3Crek5thT2T0dvGZHwvbopNbkWWZeukt6G7/3sc3OWVhaJefQM91r pNmt/ACfzfYPHOQB4EFkIgnAQZ7I2wKlBiGg6uCqylvGmNcgVzscQleNHFEoWw5N5nHR2i5C 522OjO2ZUmYvsmtUWqsURfGI/0pymqjIl9rn+VpN00T1xHv6lVXXpjPFa5FXt0XxuSZ0XRf6 S00Un2acTpfHKHF1T9qGaSkhCqWq0M5qLCuPZhp1i4tCpSpqZ/L6aalB1NbB3kuSt6XaTFqO ccvhw/Rq1zfI/vg872LV6lTgADJ2ml7vVOV75Y1rIAACvQmoPn+q8r21G9NVyR64lx15aOC2 X82tDUvt/Y7Z9ho2rLyftR1Eh/3SRdW0k4dSGt6KqXhs2s+y0LSaqNa8f0NNZ7Blm0gkNgts b9l2GvaT5Qqb0u4LhgPr4XznHrZ+p408Wva3JrRaVRS2nLJG53H5hG2rrIrLQW7qwTY4+7gg DvYLIiMtzWpe83KyPbiqnDKZwEFWoQjZSSIAB3mS7gZ0USJgGc0BjYGqvNCrIruREttPvYNu dFSOR1mTck+45SjahtM0wIbzaK2/1aUp0j1ljHwkOZcCtad2ABG7HI+yja2jZONs5iNP1e6r h5GvHCREahD1lY2JwomXAqYiM/7K09C97l/e7yxrVfkZx4/qg4ASAdXnT1VeSfnhCesnBZFe T3Nnqr/femOElmM3e/72dfweLtm2Rz+WYoD0k5fknDXVRWHDjg/SUZ6Ub7eto/RSxp/u7bwi 8nRuLwdZKtOhTzf77ayQ8ic4yMoIkcGEEYCDPGE3BOoMTkDVwVWVH0xzXRzspHoa+shKQuQO q3b25zXH1GOHMXQbSe4V7wzsZWclzoois2pOlXY3NqLCGNXu1VzRnx+IpDXKbcsntg5ElYOB yQ0Yo6FgH7aDbOzPqHNwsux6QkTlDoOlqEjtFKxRdVsW79wEyrvOEfc48w9yqMoHKQtpQQAE nARUnz9Veac2Ifr0kjul13s7qrHVjDiQO1hrBXtk2W0vXZ+dNquTi1bKi4TD/plBwdgWLid4 RlfvXsqaPIJtlc0xJA7Lorjn/E1PPZXykhxkI1CYxrPN0qsxh72NLMdF1m9nfWfVAp+BgxwY GQQmnAD2QWbvAsd0ELD23fXaN9BHFVXlfRTRPcnrBp3+9RnV6rxhsrGP8ZtzND+/SIsL8zTX b1/j7rn6v9Ko0+m3NaIrV2nuVY20Ny/TVS7b79F4cUr115y6qbcfne39LHlKlnMfSCMf4xhH vVslTcf/RoPq/Dc3x/y7b83Zva6q8t1zxhUQAIF+BFSfP1X5fvpN8nW2X8++eca/f6wk2405 /gG8fGWRFubZho3BjjTqp1Q71eny/1ikxl/Zji4YZfv/Ea6fnpKh+tyb8zR/xYectA/y9rFO 8XckmQuyn6r7GKvKT/LXE7qFkwAc5HDeN2jtQUDVwVWV91AJp7oSkBzkHXaQ/+Fa15S4AAIg AAIgAAIg0CYgOcg8gkz33pYc5AuCpOrgqspfULVR7BQTgIM8xTd31qqm6uCqys8ab5X6Nl5U 6LPvXadPOJPIeoHiQcHYAAAWeUlEQVT2P7pJDaPnm//mr/gZgVYpHbIgAAIgAAIgEEICbCPr 3zyh29fuUInVTz0t0y9+zCPXPAuNXs/RQoCZX8OsvaqDqyo/zLogLxAwCMBBxvdgagioOriq 8lMDcsQVqXz+gK7fe9S9lId5Elu8kQYOEAABEAABEACBNgF75lU3JIm9KqU/uNrt8sjOqzq4 qvIjqxgynlkCcJBn9tZPX8VVHVxV+ekjOpoaVf5wl67/bK975qvsIP8GDnJ3QLgCAiAAAiAw ewTgIM/ePUeNL4oAHOSLIo9yh06g8dUjunTjAdHSNumlOAVdlaMqP/QKTXGGjXq9GZTEq4rz b40nsIpX2TgHAiAAAiAAAhNLgKdS118ZIb28DiO4Z9CWj1c+wc9Vfn+Hrv/8CUU3y5T/KHhM EVX54BpDAgR6E4CD3JsProaJwIsS7X5R4UWs1+je+7zBUNBDVT5oeUgPAiAAAiAAAiAAAiEn UP9yn54cn9LCjSjdXvK/A4ZZbVV5Mx+8gsCwCMBBHhZJ5AMCIAACIAACIAACIAACIAACIBBq AnCQQ337oLyDQHvq0cBTdFXlHcrgAwiAAAiAAAiAAAjMAIHmPtw8gW/QKd6q8jOAGFUcLwE4 yOPljdJGSMBaQzxgkCdV+RFWDVmDAAiAAAiAAAiAwEQSMNcQDxpFW1V+IqFAqVATgIMc6tsH 5WUCqlGoVeVlXfAeBEAABEAABEAABGaBgOo2Tarys8AYdRwvATjI4+WN0kZIQNXBVZUfYdWQ NQiAAAiAAAiAAAhMJAFVB1dVfiKhQKlQE4CDHOrbB+VlAqoOrqq8rAvegwAIgAAIgAAIgMAs EFB1cFXlZ4Ex6jheAnCQx8sbpY2QgKqDqyo/wqohaxAAARAAARAAARCYSAKqDq6q/ERCgVKh JgAHOdS3D8rLBFQdXFV5WZde70//61Na/LtPPJMkH9co9eMivbF4p+N6ZK1AxV/f7jiPEyAA AiAAAiAAAqMnsP+rm/Tev5Y8CopQvlakm0cf0+L/+qzjevIp2/afLnScn5YTqg6uqvy0cEQ9 JocAHOTJuRfQRJGAqoOrKu9XfTNao1f66E6V8rcO6Y2/ud95eSlLeukezXVewRkQAAEQAAEQ AIGREmjQo8glevCldyHZE51uHd6nH/xsryNBdKtM+YfXOs5PywlVB1dVflo4oh6TQwAO8uTc C2iiSEDVwVWV961+o06Vr59RQ6vQJ7fv0xMWTO4U6O6NRbr6zjWaf7NBT35+ie783swxRrn9 T+jdSIQW5s1zeAUBEAABEAABEBgngcaLZ1T5tk5aJUfv3fuUi45Sdj9F1763SJF3eIT49TP6 +Ds/IGsMeSVNhV9F6WbTto9T0/GWpergqsqPt7YobRYIwEGehbs8I3VUdXBV5QNjfl2hB9+5 To9YMFsRdO/tVg6nf/4dLd76p3Z2MTo4y9GtK91zr39zSLnPc7S3t081M9niTbr/4T26v3Kb FlxDzvWv9yn336d0ST7fIFr4SZRuv93ywE//8oTypbqURid68zpFP7xF8NFNyHgFARAAARCY SQLf7LZnesWofJ6ja2+2KBz+9i69+8v2CPLKNmm7ce707k7o2Z/3aPf/ZSl39KyViEenF9lu 3394n2I/jXTMGKv8aZcOviHJNhticxT5IEbX3jLeN6j0xz0q1jmN8dE4GjrN/fA2xf72auvz CP6rOriq8iOoErKcdQICBwhMCQG9khX8PAtazgp9gDqpygcu8rws4oa+/Ld93NK4tp9u1aF5 Pi6KWo9czzWRXYtK6Vt5NRm0823mvV+TMtHF9pJ3OtoottPpIiPJ2/lFRHEQsFLpeAsCIAAC IAACYSdgtRcoZtnFwoZkj1eyopf5FmdFkexmiy37GxeF55LR1YsiYl1z2vF0qZ2ua5rMQO0i v/epvBNvtkViW2W/Io50qvKOzPABBIZAgIaQB7IAgYkgYBmsEDrIvHZJaA7nOCGKL3th1URm 2WkgExtZUTgqiuJ+TqRWnNfSh7apru1vi9hyxOlYryRErmSnKe9lRMLMo23EY2tZUTvvpROu gQAIgAAIgMD0E7DaGxQXVbaLhXXJOX7YxznWiiLqcHSjIr2TF8VSURQes312XSucmTx1UdhK iqjLsY6tpqXOdE3kN1OuPCIiuWN2gJt5DfdV1cFVlR9ubZAbCAgBBxnfgqkhYBmsEDrItCwZ V4qKch9HtLqXsB3c5ZQoezjT1afO0eiy1BEtuG87bRnZiMjLg8zmN+K4PSLPxjq+WzXP4hUE QAAEQAAEZpqA1d5g+xhdkew3tz96H7rIPbQ7sKPreaF12Ht2hDdito1nh9tpvg+kkeSk8DLf psNpzADLnvTWaBhXzfIwgjwMmshjEgjAQZ6EuwAdhkLAMlhhdJAdPcbskG4VnAbRQUh2bqOi YA/8OlIZH/Kr9kixOY3bTKQdSQ70w7x5uv0qj1Anmj3krgT4CAIgAAIgAAIzScBqb7hsN1FE bDuWNbnwaAXbuV1K95iGXRNJK297GreZW1Gazp3Yc3Vgv5RGqB/mTJGRvsJBHileZH4BBBCk i7vXcEwHAdUgW6rygSlKQbq8ZKObRcp/xCuO3EejQncvXSdzI4nYeopucgwtOyJHW4CDcH3y z/Z+yzwKTNsfykE66vS7yGX6Jw4KYhy554Ji32+9b/zld3Tpx61AYWx8Kf2BLNdKg/8gAAIg AAIgMIsErPYCGTa6c1/kzJFGv/hRZ0jLxleP6NKNBxay5EbKiKvlNN9sz+cucTTsfzFCeLYO Ywupez+UImu+OqQ73323uQsG74NB1fMUXW0HAyv99g7d/KWxPwbb9RO26z9s5THK/6pBtlTl R1k35D2jBC7AKUeRIDASAlaPbhhHkJfTrVHa2oEVuIt/kkS2HbzLAUwK7mWk8fsX2+kMnqEf ZWz5VXMUGaPHDt74AAIgAAIgAAISAau9wTY4ulFoXqkdbtv2lNcmO5c1tYRlOb+2u9kWqDgm WTczK27aU7sTj9sTrR2jx6ZNlxQf0VuMII8ILLK9MAIYQeZfHhzTQcDq0V3Okv7kXsf2CP1q qSrfL/+O69IIsrzNE53u083F99p90ikyJlrx7or2IckRxSn7OEZzr7kLutvR4GtvXaV3l2/R QruH2U5ap0fRy/Tgi9aZ/Jmg6Le/ozci5uhxjUePHaXbongHAiAAAiAAAjNIwGovkHObp9P/ +pQW/641cyuyVqDir2876NhyfJr3SM7/w1VqvHYkcXxosP2eX4jQ7b+91tmmeVXiUeSb1ihy TaRI49Hj6+bosTQrzJHpCD6ojgCryo+gSshy1glcmGuOgkFgyASsntkQjiC71webvbH8+8QB slwjv3rZjlC5rL51g16ye70jHA3TjoDNwT86gocM+aZNSXb6SUEkpKjiiZ5ryDsrrSrfmSPO gAAIgIA/AlXe2cCOqhztvYbWI0tVeY8sJ/6U1d7gbZ6cI8W6yJo7QBizwFwjv7YcjzxvqkeW Lm7ZwbwSG2m7bWDNCBsPSrPNgiBd4+GNUkZPAEG6Rs8YJYyJgGV4Qugg8wiy8zivioQ1fboz QIccBTOx53KgpZz0s6oo7PCWTcY2ENZWEVKC5lveG1ly7gyn3Pizpmy5k+OziwAHTbPulT3l PX3UI3qaIwdVeUdm+AACIAAC/glockRk8/crIg58/3wpyvvXdLJSnpi7PPBUandH8knOnmq9 vO0MuMlLpGzb3ulAy5XUTooiy1s2Jdd52yh3GWZC3vfYuS1U6x7mn5sJxvMKB3k8nFHK+AjA QR4fa5Q0YgKhcZB1TRSN/YoPs1avfXSzIMrHZaFJy4xqj5OWkY2ygSxWpM0cZAPMzlmU9ygu PteEzkZU1zRRPiqIzKq9PslweNMlKXPXvdCP7VHkloOM0WMXou4fz+Voo2YDM8DogKp8d81w BQRAAAR6E3iet+yM2TlqvGZ62AtHhqryjswm/4PR6WzY78KubZ8zT4tsv6tN+2vWIL9q24Lk Ltt3ts/m4dimkVkndwqidsb2+VwX2llNFJ9mHTOSjMjYxe7mW5SlUeTmPVxtrYk2yxvHKxzk cVBGGeMkAAd5nLRR1kgJhMVBLm85HVe5URJxTLkyVhTZRtZIJ0/Xqj5OeTZs5Pys90tJz72S 7RvC08KkvRmTZsAPOwHedSXQeZ8M7smnUodGV1njgqp8z8xxEQRAAAS6EzgreNqRvN+fL1X5 7ppN4BWebbXktMmWjeXffEenAnPh+NYSW56KbY0C8z7H693bAXKexvvIWq7HdlCMyRW40/e9 GyJhOMhDhImsJoIAHOSJuA1QYhgEwuIg1552d2xTLsdUL5nTuAxDy1Ot7U7oJjL9eVGkH9p7 HbsNa3wtIwrHflo6HLnaMvwYPQ76fdSOs47GUOThdqD126ryQfVFehAAARAwCZSl0VDDhsS3 DsxLvl5V5X0VMiGJuju2UeGe1lzcitsO8sp2h5NbO8qJuGV3ZWfaeB8VyU1jZliPoWOTydmB NRuN1sY/emyoAQfZvBl4nRYCiGLN1gDHdBCwokOGJYr1MLG/qtOzb2t0aWGR6JURtXqeFt7i PRM7olZ7F1r/06d0+XYr8iaPfFLqp4hc7U2qx1mORNrg+0BvztGcwT7ooSoftDykBwEQAAGT AEdLrvPf3Nw8/5knA7yqygcoatqSNl6c0rMXRIvfn6NGne/B/DzNB7Ah+//3Jr33L8ZezBEq 1Ip0+wLMt2oUalX5aftOoD4XTwAO8sXfA2gwJAIz7SArMTylT99YpKZ7vJSmWinh3FZKKW8I gwAIgAAIgAAIjITAi31643vvNbOOrPO2Uv/Hua3USMr0yFTVwVWV91AJp0BAiQAcZCV8EJ4k AnCQ/d+NOvdYG3svzvFQwbM/pelm7NOW8MYB6au3aM7nyLP/EpESBEAABEAABEBAicBrHul/ USceZ2b73aD99Sjd/Tdj9JgofVijxI94+PgC7Leqg6sqr8QUwiDgQQAOsgcUnAonATjI/u6b xalrcp6mdcbTtK50TYALIAACIAACIAACYyZQ+cNduv6zvR6lpknjjaTme6QYxSVVB1dVfhR1 Qp6zTQAO8mzf/6mqveX4zeIa5AB30uLUVQYOclc0uAACIAACIAACF0QADvIFgUexM0cADvLM 3fLprXDjq0d06cYDoqVt0ktxnoAU7FCVD1baxaY2gkkZU6y9joGDtHhlhnMgAAIgAAIgAALD IdAO5sihOD2POQ7QeRFLpCq/v0PXf/6Eoptlyn90zVO3XidV5XvljWsgMAgBOMiDUIPMZBJ4 UaLdLypE89fo3vu8A2HQQ1U+aHlIDwIgAAIgAAIgAAIhJ1D/cp+eHJ/Swo0o3V4KPsFbVT7k +KD+BBKAgzyBNwUqgQAIgAAIgAAIgAAIgAAIgAAIjJ8AHOTxM0eJoyJgRHfkPYDneYrRQFEc VeVHVS/kCwIgAAIgAAIgAAKTSqC5DzZP4JsPuritXSFV+UnlAr1CSwAOcmhvHRR3E7DWEK/m Sfwm6r7c97OqfN8CkAAEQAAEQAAEQAAEpoyAuYY4sVel9AdXA9dOVT5wgRAAgT4E4CD3AYTL 4SFgRWdGFOvw3DRoCgIgAAIgAAIgEGoCqts0qcqHGh6Un0gCcJAn8rZAqUEIwEEehBpkQAAE QAAEQAAEQGBwAqoOrqr84JpDEgS8CcBB9uaCsyEkAAc5hDcNKoMACIAACIAACISagKqDqyof anhQfiIJwEGeyNsCpQYhAAd5EGqQAQGi+rcVqpzUSGcYly8v0uL3r9LCfIMqX9do7spVurow YOAVwAUBEBg5ATy/I0eMAvoQUHVwVeX7qIfLIBCcgMABAlNCQK9kBT8BgpazQh+gTqryAxQJ kTASeFkUceN71utvKSbSuwWhnXtU8LwqEr1ku1xL7JY5M01klvuUzfLbR5pHwZ2ntOO8iC/1 yy8hal716MwOZ0Bg4gnopbad6PKcGc91ZCUhsvvG8+ZxnOR6P/td8s2eGFYJz68HUZyaAgLl nXjzuYhtdXlu+tRRVb5P9rgMAoEJUGAJCIDAhBJQdXBV5ScUC9QaNoFADeSoyFdc3TXn5f4O tkcju9nwYNmYxzW3sx710Uip7iVcDf2IiC5HXecM5zkmiq4qDBsp8gOBcRGo7rUa8u5nxvPz ckqUXzo1s+yEj+dQznP7mB8iPL9OmPg0NQRUHVxV+akBiYpMDAE4yBNzK6CIKgGr4YIRZFWU kO9DoFYpiuxa25lcSoqD47KonpRFuXQgsptJEXE1nrNG49g8tAPBm5A1HdHkTkEUj4qiWJLy 42vJvYPW+aOCSLZHeM2eee152b5mjiazDgUjn+Zf2Xvk2izfeHU46RGRPazaV891Ud5LSY5y TJQl9e2EeAcCISRgfL9L9nMVWcuKcqX1/BYP8yKzFpO++8ZzGnd8/7WjTPt6lEeZzWeO8zOf RX5+c+azuJ+1nvXtUushwvMbwu8MVO5LQNXBVZXvqyASgEBAAnCQAwJD8sklAAd5cu/NNGpW 3W2PRK1kO6t3ronChtzQTvPkytahH29bDfDsiS1q5Wc0yKUpzbmH7SnQHh0/2ZX2NS8d7Kw7 3tmNfBKpfVMzZ7LipjmajBFkJxl8mgYC5rMT2/GYEnpWFhnz2WKHN7J+YFW5vGU+187n1MyP 5GeRl1OYyzHMDi4rI37jKSMn6PIez28XMDh9YQRUHVxV+QurOAqeWgJwkKf21s5exeAgz949 v8gamwa915r3wlrEcoZNR9T6nvLUZXlk1sqv2/kOB1m3G9gd13qTsRv5UVF0TSG1JHmtdWs6 d1JUJYfduo43IBBaAvaz4+W4tqpVE6n2TA+iiCictc5azyk7wvbECjs/5++Bfb6zHPuaU6Y/ VDy//RkhxXgJmM9F5/fcnx6q8v5KQSoQ8E8ADrJ/Vkg54QQsxyOgs2BWS1XezAevs0HANOg9 G7e1vOUgRzeLTTDW96ybI9zlfGQt7wI7eANbL5nTRElE1wtSQ99VBD6CwFQSsJ+dXg362tOk 9fxm2lOkrec+oIOcfCwtY2gytXXo+RviwR/PrwcUnLpQAuZz0et56qWgqnyvvHENBAYhAAd5 EGqQmUgCluMBB3ki78+0KWUa9N6NWx6FMqNEt7+X1veUePTWHoISVn5uB3mrPdV5teBCOHgD W5wVXOukoyK1lRX5p7wmmtdT12qa0DFq7OKNj9NDwH52ejbopefETFfeaU+xXtqWOpbs/Jy/ B3y+vTY5+bjmwtdNxpXM66OkVysQGJ5fL0w4Nz4Cpv0yn5OgJavKBy0P6UGgHwE4yP0I4Xpo CFiOBxzk0NyzMCtqGnRng9hdI6kRLI04aRzQq/rcufbXys/lIAtdE1UOIlTrmAot5T3Ad772 NG2NjsnRduX3ya0uW1W5q4nPIBAqAvaz07NBLwWzs9JxkK/m86hJvVvsKlvriV3Poq7VOAhY zaPDqbuMH5R4fv1QQppxETDtl/WcBCxYVT5gcUgOAn0JwEHuiwgJwkIADnJY7tR06GkadN8O sqvh7KZg5ed2kN0Jrc/+Gtj6WZWjZHeJbM3BiLIbSRE1R7mtNZft4F/G56U09kG2mOPNdBCw n52eDXovB9kTgJ1f798DWdifDJ5fmRneTyoB0371fJ56KK8q3yNrXAKBgQj8fwEAAAD//3m3 lKsAAEAASURBVOy9b2gbV77//wmkYEMWbMgFG7rwc+lCHRqwwi5sAvtgXfoFK/RCFVxYmy3c r+I++KZdyFXugte5fZCr7kLW6ULW3QuOfB+kyIEtUiGLXchF7oMLzkIWKeAiFRLsCynIkIAE CWgggfP7jKSZOTOakUca/ZmR3gJbo5nz53Ne58zMeZ+/JPABgQEhUCkkBREJmkuKShtp8uq/ jSjhJcAE8rejLspbUcRnuEyq5XK+ebnUw6OIyLsqwBWRnK+H7VjmKyJRjz98O9+cdqUiSsWi yOeyIrW+UrNZtZv/Yulic7+4CgKBImDcO5H1JvfF04wI1e+BaNP7xwjP/fvHjR/cv4EqVkNs rPb+ano/NeHj1X+ToHEJBNoiQG35gicQ8CEBrwLXq38fIoFJXSSgvdCbVoiLGV1ohptVxNlO PbwOC2RNRMsVl+zmqoguxcTWoyZK/FFKFweh5UwXSSJoEOg1AUOcyveF1YriPaOhKLHX5F7h JlntPmv6PDBF4MaP4Ua2E/evCSR++ICA9v6Sy2krZnn130pccAsCbghAILuhBDeBIOBV4Hr1 HwhIPjWy8igjYnP13lC1x3I909IogH74117ozSrEmeWQLpDXcqWm9PXwui6QudKtsXbseVZN LYlVrfd7LtFSfjRNKC6CQN8J2AtPs1k8+qPee0x8T2afm6+afxnhNXsetO7HCNcQHoN3/+7v JERYZx0WiZ3WRqx49W/OF/xqh4D2/jLKaWuhePXfWmxwDQJHE4BAPpoRXASEgFeB69V/QDD5 0EwWYnrlyBDJqw+aC0ojIf3xv79ZH2LNQ6cbPi9LInOzfl1NW1MhWvOth6cK5JcNIdqe0Hut 7Gyo+9DcGBUXo9KtDp9OFhx6xqThpeHrWdv4cRIEgkpAvy/shk6X8mJNm77A94hx7zinVgtP nUrh9uPGj+bGsGHA7t/Srj5SpToVpfouCIld149/j/7dZhbcNSXgVeB69d/UOFwEgTYIQCC3 AQ1e/EnAq8D16t+fVAJg1cuiWKlWigxxrFaUwjddirI++C8WsiK5HK71Ds+siN3Cvth/tC/y e+r83XhDhW/riX0+lDic7AP+Y396eBQWyR0+VyjynOB9UbTo19KTfM1PLiPiWk8w89rK1c+r 4Wl/khunCrbaO5Z6UBQVSZQX9zIiKuVJ8+Gl9mnDWRDwJYGXFZ5nnxEr9XsntJwUeb53q/fv g4xIXJMatqr3wIooSveGkaaK2Of5+tV7TbrPiJ8HGb7/8k9KovjIfF+pfnH/GgSrR0+29FE2 hkAmsZazPPgs3vSfXv3rAeHACwGvAterfy+2wy8I2BGAQLajgnOBJOBV4Hr1H0hovjBaHspo iOSVe26H2fXYv7YYnCQg5Yqd+TgsUk49tJWsNKzQSLfZP4mQ3FDwMu/KjzUM9bcxB1oaomlJ Q3gu3CDuj1pczBdFCEaAgEsC+dsRW0Fmd8/QXFzkHYZWV/YSrsIxCT3cv425xCNV7NhvuX38 e/XfaBHOtEHAq8D16r8Nk+EFBJoSgEBuigcXg0TAq8D16j9IrPxma2kvaRJmoaWEQ6+NveU9 9V/Jm3pXGyt3IRFZWhGJ9K4o2fY81dPAPd/6CtcWoSqHGTc1FJREQhr6Kbs76njtvjFmcfea MTeatHnGDTaExGo6i7nH9kUOZwNKoMLPmqb3ykxYRJdXRep+k9Wt1bTzAnzGvFmnBq6wMI8e wf1rV2zym8ZiaGreRNd37Zw5nvPq3zFgXHBNwKvA9erftaFwCAIuCRxT3fEDCR8QCDwB5ftN Gp1eJJ7vSZXtBRppMUVe/bcYHZxbCbwiUl6UiY6P0MiJVnOPA+u3f2t6/Pz7MEeb/12gselZ Cv90gsqHB3TwQ5mUVwpV2O7xsSmafnOCRo77ORGwDQSGlMAg3r+KQmX+GxkZ47828tWr/zai hBeDQOHLi3Tqww3iqTyUWpo2Lrg88urfZTRwBgKuCUAgu0YFh34n4FXgevXvdz6wDwRAAARA AARAAAQ6TcCrwPXqv9PpQXggAIGMMjAwBLwKXK/+BwYkEgICIAACIAACIAACLgl4Fbhe/bs0 E85AwDUBCGTXqODQ7wS8Clyv/v3OB/aBAAiAAAiAAAiAQKcJeBW4Xv13Oj0IDwQgkFEGBoaA V4Hr1f/AgERCQAAEQAAEQAAEQMAlAa8C16t/l2bCGQi4JgCB7BoVHPqdgPLdBo2evkg0k6BK Ltr6Il0e/fudD+wDARAAARAAARAAgU4TKNw6T6c+2qbwzTxtfdLGIl0e/Xc6PQgPBCCQUQYG h8AzXpn3mwLx0ry08F6o9XR59d96jPABAiAAAiAAAiAAAoEmUH64Q9t7hzRxOkyzM2Mtp8Wr /5YjhAcQOIIABPIRgHAZBEAABEAABEAABEAABEAABEBgOAhAIA9HPg9HKnkP1/ILhcZOcOsl 9m8djjxHKkEABEAABEAABIJNoLqPNQ8AHGtnE+xgJx3W+5MABLI/8wVWtUFAn4N8eYvE5+E2 QoAXEAABEAABEAABEACBXhLQ5jDH0vu0+v5UL6NGXCBgSwAC2RYLTgaRAFahDmKuwWYQAAEQ AAEQAIFhJoBVrIc59/2Zdghkf+YLrGqDAARyG9DgBQRAAARAAARAAAT6SAACuY/wEbUtAQhk Wyw4GUQCEMhBzDXYDAIgAAIgAAIgMMwEIJCHOff9mXYIZH/mC6xqgwAEchvQ4AUEQAAEQAAE QAAE+kgAArmP8BG1LQEIZFssOBlEAhDIQcw12AwCIAACIAACIDDMBCCQhzn3/Zl2CGR/5gus aoMABHIb0OAFBEAABEAABEAABPpIAAK5j/ARtS0BCGRbLDgZRAIQyEHMNdgMAiAAAiAAAiAw zAQgkIc59/2Zdghkf+YLrGqDgFuBfPBtmnYeKzQq7UdfoRE6936Epk9wxC8OKP31fVIsNpjc WK7hJwiAAAiAAAiAAAgMLgGF7t9JU/4V0aicyBNTFHn/LNeiiJTH9yn97QFVf+huKkTHT1Hk VzU3+mnpAAJZgoFDXxCAQPZFNsCIThBwJZBfFejCa6cobRNhZDNPqV9Nk/LdFzR6+mMbF0Sr uQrFZiRlbesKJ0EABEAABEAABEBggAh8v0nHphdtE5R8VKGFN0eo8OczdOo3ORs3IcpWshRy qD5BINsgw6m+EoBA7it+RN5JAq4EMkd4/9ZViv/lM9p+qMUepsjSObr6+xUKneRzz3L02e+T dPDtDdqwurnObsY0f/gGARAAARAAARAAgSEg8OqQNj+9Sqt/2CBdAs+EKTq3SPFrCzRxnKj8 j02Kb2Zp5083DDdz7ObsIq0uL9AYu7H7QCDbUcG5fhKAQO4nfcTdUQJuBXI10vJ9OjN+rv4A j1NJrJBV95b/foPGz16pOl99UKLYT60uOmo+AgMBEAABEAABEAABXxOQ60ahaxnK/vtsg733 /3iezv12m8+HKft8i0Lq9LUmHwjkJnBwqS8EIJD7gh2RdoNASwKZDdj53Rl65w+1dtA1FsCX TAK4TDdC43Sl2oO8ygI61iCgu5EGhAkCIAACIAACIAAC/iVwSJ8dm6SrVQNtBLDUAeEkoK1p g0C2EsHvfhOAQO53DiD+jhFoVSDTD2k69uMLtfiXUiTWI7otysMNGg1drP5euVuk+HsT+jUc gAAIgAAIgAAIgMCwEjj82xWa/Ocb1eRH0/uUeH9KR5G7dYHOfFRb6WWrKCjsovoEgazjw4FP CEAg+yQjYIZ3Ai0LZF6nevODUVr8So07RJmnWZpV5yCbzsdo/+UqTTnMm1Fd4wMCIAACIAAC IAACQ0OAFzy9yAueblQTLI2yk89bOh6asYFAbkYH1/pBAAK5H9QRZ1cItC6QWQpLPcWRdV7F emma5J7lyG0+92s+hw8IgAAIgAAIgAAIgECVgNxTnNirUPTtEZJ7lpN8boHPuflAILuhBDc9 JSDwAYEBIVApJAXfPILmkqLiOk0lsTbDflR/tCJK7G/3Wqj+Oyyyz10HNNQOK48yIjancSQR W8+0kAdCePU/1PCReBAAARAAgbYJ7O8kRLhaB1DfYWGR2Cm2FJZX/y1F5ifHpV2D2+UMW1YS cY3jXKJan3Jrbv52tFrv4o4Kt17gDgS6SgA9yD1tjkBk3STQTg+yak/5289ofLa23MRqOkmF yGJ12FDo2i6vzni2myYPSNi8oNkxXtDMkhr3K3979W+JGD9BAARAAARAwA0BaUEpw3mIdktZ Outm4wqv/o1IA3lkLHYapWR6mhYjtZpA/H6JVn7uBmAt2ehBDmT2D7TREMgDnb3Dlbh2BTK9 OqArr71BN2aYV3XVapUbz0ku8pxkF4tLDBdlm9Ty3ohXX5ukzyyXwjeztPVJyHLW5qdX/zZB 4hQIgAAIgAAIHEngh21erPN8g7O1XIUuzbgYHuzVf0PMATshL3aqml6tR8WpyFtntlJ9gkAO WL4PgbkQyEOQycOSxLYFMgMq3LlIpxZqy01UeS1t8arWPOgKHxcE5C0fDOcr93j173fdvCK9 +jfixBEIgAAIgAAIuCbwbIeO/dM7Dc7drr5MXv03xBy0E7zY6Ue82Oktw+4Yr2q9Kq1qbVxx PoJAdmaDK/0hAIHcH+6ItQsEvAhkUgp0YfQU1TYmIEoWeHGJt1y0HnchHUEMsvzdJs2eXqTa rtLc/76UoO2/RGnC5erfXv0HkRlsBgEQAAEQ6D+Bwp2r3EBujIGKru9SYsn99Cqv/vtPwJsF yne8Lebp2raYRFHKv0zQtMt3vxYzBLJGAt9+IQCB7JecgB2eCXgSyBy7cligXKFII5NnKPSW +7kzng0flABeMcMXZaLjIzRyoo3GBa/+B4Uj0gECIAACINBbAopCZf4bGRnjvzai9uq/jSj9 5OXwuxzlnyo0eTpE0ydbBwiB7KfchC0qAQhklIOBIeBVIA8MCCQEBEAABEAABEAABAJCAAI5 IBk1RGZCIA9RZg96UiGQBz2HkT4QAAEQAAEQAIFBIwCBPGg5Gvz0QCAHPw+RgjoBCGQUBRAA ARAAARAAARAIFgEI5GDl1zBYC4E8DLk8JGmEQB6SjEYyQQAEQAAEQAAEBoYABPLAZOXAJAQC eWCyEgnRV1KcSVAlF6XWl4kAQxAAARAAARAAARAAgV4SKNw6T6c+2qbwzTxtfTLdy6gRFwjY EoBAtsWCk4Ek8CxHm98UiMamaeG9UCCTAKNBAARAAARAAARAYJgIlB/u0PbeIU2cDtPsDHYR Gaa892taIZD9mjOwCwRAAARAAARAAARAAARAAARAoKcEIJB7ihuRgQAIgAAIgAAIgAAIgAAI gAAI+JUABLJfcwZ2gQAIgAAIgAAIgAAIgAAIgAAI9JQABHJPcSMyEAABEAABEAABEAABEAAB EAABvxKAQPZrzsAuEAABEAABEAABEAABEAABEACBnhKAQO4pbkQGAiAAAiAAAiAAAiAAAiAA AiDgVwIQyH7NGdgFAiAAAiAAAiAAAiAAAiAAAiDQUwIQyD3FPeCRvSjQ5n+mqTIToei72Oi9 57ndRf6KotDIyEjPk4QIQQAEQAAEQAAE6gReESn81+nXsfL9Dn3xVY5C85do9i2863td3sC/ 18SPjg8C+WhGcOGSQOHORTq1sMGuo7T/MkFTx116hLOOEOg4f6VMO19v0I2FK7TNFib2KhR9 Gy/OjmQWAgEBEAABEACBlggotPnBKC1+RSxk47T6uyjNzky0FIK9YyNcWkqRWI/YO8PZLhEA /y6B9RQsBLInfPAsEyh8yQL5Q1UgRyhbSVEIWkrG0/XjjvEvH1D6yy/owm9umGxOFiq0gJZl ExP8AAEQAAEQAIHeEJCElBbhTJSSn8co8stpar/KJYU7l6TK9oKHsDTD8O2eAPi7Z9U7lxDI vWM98DHJAi3PAnm6/af1wLPqRgK98ld+yFHyL3G6+Ie0ybxqS/WnPOzq7THTefwAARAAARAA ARDoIYFXZbr/1QbF6yO7jJjDtJaO0+J7IRprefQeBJrBsR9H4N8P6kfFCYF8FCFcd01AFmjo QXaNrWMO2+V/+N0Obdy8Qldv5Uy2RJYTdPX/LVLodbR0mMDgBwiAAAiAAAj0lYBChW/TdONf F2njodmQlfUt+vhXYZo4YT7v/AsCzZlNL66Afy8otxoHBHKrxODekcABz0F+oz4HOc9zkKdb bsV0DBoXXBBolX/h72nauHaBbnxjDjx2M0WXfh2hKXQYm8HgFwiAAAiAAAj4jMDhQ27k/j03 cvMiW/Inei1JsaUITU8c3ci9+cGx6txmmk+S+OuCHAyOe0AA/HsAucUoIJBbBAbnKoEypf+4 SrtF88rGhw8/ow1NbM3HaOVN46GsroJ85sOrtDAD1eW9DHnjr/ywQ4s/fofMA6nDtLp5laLv n6UxI9u8m4oQQAAEQAAEQAAEuk6grE6T+vwqffwndVlN4xNeTlHy9xGq1r7KBbpxbYOKPMvY WAlbodwfblQX41R9RZZXSN+HhOtuCk3S4qcxCqH6ZkBt9wj82yXXc38QyD1HPgARfr9Jx6YX nRMyEyJ6aG7JrDrG4g/OzFq54pF/4c9n6Mxv5PyJ0X5llaYgjFvJBbgFARAAARAAAd8ROPz7 DZo8e0WyK0TZ51kK8ZDrwpcXeDFVc/O45JBCM0S5h/KZ2nHkdp5Sv9Zlc6MDnHFFAPxdYfKF IwhkX2RDwIzgRSLSf+Ie5BLvxSeZbupBnluhOD9oK9p1hfihfEXvQS7/Y5MWl5I08hM5BM2x 9ZtbMF9f5JbRhVoLKF8eav9e+R/epytz5+iG5SW4sp7heUuzLcxbsuYTfoMACIAACIAACPSD QJn3Mt74/Apdsa4ncj1DyX+brdXXyjnuQU5Syeg+ZlPNPcjh5TiFjNobKco4Lf6Oe5BP1lKV u8XDub8+oBE3c5xfKDT1Pm9JtcQdJ/XPUPvvAH+NI767TEDgAwIdIrC/GRVcXPkvKvIvmwea X4/U3aru3fyFRbZihDns/g0SxlEr/FVfxVxGrMw3so9eT4r8Uwm2EQWOQAAEQAAEQAAEfERg /0FKxOYa3+W8nojYL7kzNKnVBeaTR3ioiKRNXE3rcXMJYdQoht2/PV73/O3942znCVDng0SI w0ogf1sTyBGTmLXjYYi5xoe6/YPWLLqH3b8d01b4y/5Lj3bF2uVwQ0NF+PKayD5y+XaVA8Qx CIAACIAACIBA9wi8rIj8vaSINHQwhET8dkYUDUXqwgYWrZpAnktKYtbea0pz2xC3Q33OIrqH 3X8j1db4N/rHmW4QwBBrVmP4dIaAvM2Qm32Qy8/KpLzihb6ONx9mXXVzYoLGLMN5ht2/Ndda 5W/1rxwWKH3rKi/GYZmfNL9CmU8/5n2QJ6xe9N/K4x26+pt39BWxYzxcO75UH9Klu8IBCIAA CIAACICATODg2w36ePZifZGsMCV2Nij6S4f3bX0f5Eu8D7K8kggR+7vL+yDPhbhOJYfu5rjF bYa43lYuq/U3XujriLjU+tvYyQmzu2H335AlLfJv8I8T3SAAgdwNqkMapizQsA9y7wtBx/iX Dyj95Rd04Tc3TIlIFCoUfcuuMaNMN46Nk7wkiOpx9UGJYj8dM4WBHyAAAiAAAiAAAnUC5ft0 ZvycReyGeI2XLJ1teH1KQkoDOBOl5H/GKPLzadOaMNpld99SuFhM1R2yjroC/47i7FBgEMgd AolgiOR9ePd5H+SpI1oWwayzBDrOXynTztdf0JWFq9WXd2KPBfLbNgL51SFdfW2SPrMkJ3wz S1ufGAtzWC7jJwiAAAiAAAgMN4EftunYj883MFjLVejSjPV9KwkpdWTX73hk14xDT3NDiM1O SOEupUis88BtfHpIAPx7CNt1VBDIrlHB4ZEElAPa/PMmVWYiFH0X2wEcyavTDrrF/xWvccl7 IY6csL6stQQc0mfHJumq9rP+vXKvSPF3O/HytgSMnyAAAiAAAiAwCASe7dCxf3qnISVbRUFh u9cnD0/m13GT93FDUK5OqNOkvriTo9D8JZq1HSnmKhg4apMA+LcJroveIJC7CBdBg8CwECh/ t0mzpxf1YWKhpQRt/yVKExhFMCxFAOkEARAAARBog0DhzlU6tWCMwYqu71Ji6WwbIcELCIBA pwhAIHeKJMIBgWEnoPY0vygT8aJrzr3Nww4J6QcBEAABEAABCwHuFi6rI7VGxvjPcg0/QQAE ek4AArnnyBEhCIAACIAACIAACIAACIAACICAHwlAIPsxV2ATCIAACIAACIAACIAACIAACIBA zwlAIPccOSIEARAAARAAARAAARAAARAAARDwIwEIZD/mCmwCARAAARAAARAAARAAARAAARDo OQEI5J4jR4QgAAIgAAIgAAIgAAIgAAIgAAJ+JACB7MdcgU0gAAIgAAIgAAIgAAIgAAIgAAI9 JwCB3HPkiBAEQAAEQAAEQAAEQAAEQAAEQMCPBCCQ/ZgrsAkE2iHwivdRfKHQ2Ikx3ou4nQDg BwRAAARAAARAAARAoKcEqvtgE42NYRPsnnJvEhkEchM4uAQCQSKgfLdBo6cvEl3eIvF5OEim w1YQAAEQAAEQAAEQGEoChVvn6dRH2xRL79Pq+1NDycBviYZA9luOwB4QaJOA8v0mjU4vEs0l qbK9QGiHbBMkvIEACIAACIAACIBAjwgUvrxIpz7coMh6nlJL0z2KFdE0IwCB3IwOroFAgAhA IAcos2AqCIAACIAACIAACDABCGT/FQMIZP/lCSwCgbYIQCC3hQ2eQAAEQAAEQAAEQKBvBCCQ +4beMWIIZEc0uAACwSIAgRys/IK1IAACIAACIAACIACB7L8yAIHsvzzpn0UvCrT5n2mqzEQo +i7mQPQ8Izzyh0DueY4hQhAAARAAARDoOwHl+x364qscheYv0exbWIGk1xnilT8Ecq9z7Oj4 IJCPZjQ0Lgp3eJGAhQ1Ob5T2XyZoClsF9TTvvfKHQO5pdiEyEAABEAABEPABAYU2Pxilxa/Y lKUUifWID2waJhO884dA9l95gUD2X570zSLtBiWKULaSohAaIXuaF175QyD3NLsQGQiAAAiA AAj4gIAk0LCLRR/ywzt/rf6HVaz7kH0OUUIgO4AZxtPaDaoK5DwL5GkI5J4WA6/8IZB7ml2I DARAAARAAAR8QMC7QPNBIgJsgnf+Wv0PAtk/xQAC2T950XdLtBsUPcj9yQqv/CGQ+5NviBUE QAAEQAAE+kfAu0Drn+2DELN3/lr9DwLZP+UBAtk/edF3Sw54DvIb9TnIeZ6DPI05yD3NE6/8 IZB7ml2IDARAAARAAAR8QWDzg2O1OcjzSRJ/XfCFTcNkhFf+EMj+Ky0QyP7Lkx5YVKb0H1dp t6jQyIgxjvrw4We08U09+vkYrbxpXFMUhc58eJUWZsZ6YN+gR9Ed/hDIg15ukD4QAAEQAIGh JlAu0I1rG1SkEa6/aSQUyv3hBm3Xf0aWV0jfh4TrbgpN0uKnMQqh+qYBa/+7S/whkNvPkm75 hEDuFlk/h/v9Jh2bXnS2cCZE9DDXeB2LPzQyaedMl/hDILeTGfADAiAAAiAAAsEgUPjyAp36 MO1obGiGKPew8XLkdp5Sv9Zlc6MDnHFFoFv8IZBd4e+pIwjknuL2SWSvuAfzT9yDXCJugzQ+ ph7kuRWK84O2ol1WiB/KV/Qe5PI/NmlxKUkjP5FD0Bxbv7kF8/VFSn6+QFoD5lD77wB/K2H1 NwSyHRWcAwEQAAEQAIEBIVDOcQ9ykkpG9zEnzNyDHF6OU8iovZGijNPi77gH+WSNQe7WFbr6 9QGNnHDB5IVCU+/HaXWJO07qn6H23wH+Gkf5GwJZpuGTY4EPCNQJ7G9GBRdL/ouK/MvmWPLr kbpb1b2bv7DIVowwh92/QcI4aoW/4cs4qhSStbyYSwoJteEARyAAAiAAAiAAAgNHIDlfr4fN J49IW0Uk59zU2SQ3cwmpTjHs/u3xuudv7z9/u1b/5kW67B3gbM8JUM9jRIS+JaDdoLyKtUnM 2hlsiDnpIdpUKJtF97D7t2PaCn87/xDIdlRwDgRAAARAAAQGmQCLVk0gu2ggT2lum9bZpLqd RXQPu//GktQa/0b/Qmj1PwhkOzr9OYch1j7pyfeDGdoQD7f7IJeflUl5xQt9HW8+zLrq5sQE jVmG8wy7f2uet8rf6h9DrK1E8BsEQAAEQAAEBp1Ai9sMcb2tXFbrb7zQ1xG7laj1t7GTE2Z3 w+6/oTi1yL/BP5FW/8M2TzZw+nQKArlP4P0YrXaDYh/k/uSOV/4QyP3JN8QKAiAAAiAAAv0j 4F2g9c/2QYjZO3+t/geB7J/yAIHsn7zouyXyPrz7vA/y1BEti303eMAM8MofAnnACgSSAwIg AAIgAAJHEpAE2lKKxHrkSB9w0EkC3vlDIHcyPzoTFgRyZzgORijKAW3+eZMqMxGKvovtAHqe qR75QyD3PMcQIQiAAAiAAAj0nYDyeIe+uJOj0Pwlmn2r+bS3vhs7gAZ45Q+B7L9CAYHsvzyB RSDQFgEI5LawwRMIgAAIgAAIgAAI9I0ABHLf0DtGDIHsiAYXQCBYBCCQg5VfsBYEQAAEQAAE QAAEIJD9VwYgkP2XJ7AIBNoiAIHcFjZ4AgEQAAEQAAEQAIG+EYBA7ht6x4ghkB3R4AIIBIsA BHKw8gvWggAIgAAIgAAIgAAEsv/KAASy//IEFoFAWwQgkNvCBk8gAAIgAAIgAAIg0DcCEMh9 Q+8YMQSyIxpcAIFgEYBADlZ+wVoQAAEQAAEQAAEQgED2XxmAQPZfnsAiEGiLgPLdBo2evkg0 k6BKLkrY6KEtjPAEAiAAAiAAAiAAAj0jULh1nk59tE3hm3na+gTbrPYMfJOIIJCbwMElEAgU gWc52vymQDQ2TQvvhQJlOowFARAAARAAARAAgWEkUH64Q9t7hzRxOkyzM2PDiMB3aYZA9l2W wCAQAAEQAAEQAAEQAAEQAAEQAIF+EIBA7gd1xAkCdgReKVR+odDYCW49PG7nAOdAAARAAARA AARAAAR8RUDh+pvCA/jGMLnNV/niwRgIZA/w4BUEOklAn0N8eYvE5+FOBo2wQAAEQAAEQAAE QAAEukBAm0McS+/T6vtTXYgBQfaaAARyr4kjPhBwIIBVqB3A4DQIgAAIgAAIgAAI+JQAVqH2 acZ4MAsC2QM8eAWBThKAQO4kTYQFAsEioPyQo91ckejH07xIC3oggpV7sBYEQGCYCUAgD17u QyAPXp4iRQElAIEc0IyD2YEkoHy/Q8n/PiDrfmij/985Wni319tsKLQRGqWLD1WUYcpWtiiE qWyBLFcwGgRAYPgIQCAPXp5DIA9eniJFASUAgdx+xinPDqnwOE+lCtHoj8ZpYmKKpiZG6PDx AZWOj9P0mxPtBw6fA0hAFqSW5LW4j/jh4wJVRiZp6nUvW3MotPnBKC1+VbMluVehhbeHQyF3 hp8lD/ETBEAABHpIAAK5h7B7FZXAZ3AIPM+L5PW4SNzLD06agpQSj/wrhaTg+17QXFJU2km3 x/jbibLvfp7mxdpSqMZNZefwt/Wk75bCgCqBkkjMm/MpfD1jyyZzPWLOz/mEKNm6bO9kcSch ovMREV2KVv/CM3W7Wrj/KoVE3cawyLZ102q2V0RCi59CIvtcOz/Y353j55aTf8qfW4vhbjgI VAoZsXptVWQKnh4kwwGrC6n0yj9/O1p9F0TW26t/e42/C0iGPkgaegIDBCC/WbtBiaJi/+UA JSwgSfHK36tA9hp/QDAbZj5KmQUUi+PwXFiEbERyYg+VDgNcH49e7otoQ/6ExK5V+ZZ2bfIx KvJdfK7ta8/PlgRyvVGLIiLvsYiVClmRubclMvfz7TWQ9TFb241af+Z1gJ8rG3xc/lzZD0cD SqAiklrD4VJqQNPo52R55+9NIHuP3890g2obBHJQc87Gbu0GJa5seOvNsAkcp44k4JW/Xlls oYIuG+U1fjks/x9LLxQWXLHbu6IkiafiXkrwRlm6gIZA9lGOVkpi61pYzxu11z+WLpoMLN5d MV2nmYQoehSgpghsfuj3Twv3n37P4plrQ/ToU33h59PydzQtuBhcAtL7rIXnz+Dy6HXKvPPX 3h/t9SB7j7/XxIYhPsxB7tVY9h7Eo82BYIFM+UqKpodjClsPyLqLwit/r3OQvcbvLpU+cfUi R+d/dIa22ZzQtQxl/322wTDlH1/Q6M8+rp5ngUxRhzmd5cf3KXUnRen0DvEawrXP5Bla/NUC Lc7PEk9lbvo5/G6HUpubtP1Ntup/cnKSJmdmKRIJ0xQVONwsjf1skS69X1/46TBHm3/L8uJQ o0RKha+dp/CMNkdaoft30pR/xXOpq7HypOqxM7TwHveLS5/qAlP/c0ijddsqCtGZ9xYopAbz 4pB2vk5yHDuUfcQpmpyi8PuX6Mq/zNLYcSmQ+uHB39O0+V9JSj04qJ3hhaImOd2LS4sUeTdk XcOqMYA2zhhlte55LkGV7Wg9LvN8XNVF5HaeUr+u8Ss/ZN4Pamk3pVt1+OKA0nd2SFHZqp8G vrXTdv91m+aSbMuCu3R/v0nHphc5OH7mvuRnrg1fu7hq5zivv+a8fqHltXpWzW9eJOy9Wlqd /WpXFCp8m6Ykl9/tev5Ncn6HfnmBLrzP98ReilmV6czCJYq83ThHWnlWoJ1vdmj3f3Yo94NC xWLtDpj8WZiiH31MkZ9q5VKLz/ytHHL5/ipNqW926aDql+di/4xX4f7FORovZyn5X9sU/nyb Lv3SIRxP/My2tPJLz2vNUwvlT/OifntOfz2M3W9zVHhWopGRcZp8c5rOnQ3RGD87Nr/cdXhO yFbgOPgEpGdeK8+f4CfcJynwzl97prBAptSS2+e3lnzv8Wsh4buDBIahFWBY0qi1YKEHuT85 7pW/3pvSZguy1/j7Q629WCt72txPEqsPnLoWjfmGqUc2bl6WRHLZ3JPJj1ZzzyX/TuyYezd1 i18WRfLy0fOfq2FyD6hmQfamxY90TVSyNkOLrfNb5fmqhr0sIkUxpw35Nc5raYrdtaTjaVas 6PNeG93X/EVF5olmuZ5yzwdGWdXiDYnM03qwTzMNDIxW+YpYs+RR+GZWt6eyt9aQf2rvs5sU 6DYdcf+VmHGEh/Krw/nDM1JeztTPadeq1yMi5TS83zavVR7W/NaTZz4o7orYkflX4ysz0gIp 7aw2srKw5cYnzXnDt87L4kcrb9p32DInr2P8Gixyf6LRdrflz4ijMQytLJu/rek3QqiIhnn2 OsuwiOjHWnhrrsqxET6OgkMAPYj9zSvv/LXngfGuaiVF3uNvJTa4dUcAQ6zdcQqEK30OHc9B 7uZcvUDA6IORXvl7Fche4+8DsvajfJ41hlDPrIp9NwrIFFtJrM1pFc/ad+x6UmQeZEV2JyXi 2nyweiV19b51kmxRrFrFyVxUxG+uifhly+JSahiS6KoUtkRsKWKIwHlpUTYW3YnLvGjU5ZiR Ppv5mdUFpqqLS9nEVbc5zAtQycPMI5v7BoGSxK/qPixWb2+JbI7nwd5NWCrnYUO8GiF4OtIq E9H1LZFYqvGPssBXP/vpWFW4ha8lmUVNgMqVjvzdNV5cy2jYkK8JFo0r6sJbzFATaCTzbWK1 ZpOcV3bO89YGjjpvPT7L75Ak4E3hqQ0sy1ERqS8SFtHLk4v5zDaNCOGlFbF6c1XE5iXRXrfF xKhuRP6mwZDHYYiVm1z+dzK80KPEjv0n7RYNMsUfEYm7WbH/pCjyuV2RWDaXSWvcHeNngtna Dy2v2yl/1Zg8pL9mKVeI6+XeqdzI58PzUbF2t73Ff1ojA9f9IqDPQebnFT69J+CVv/ZMsT7v 3KbEa/xu44E79wQwxJrfQsH7lCn9x1XaLSo8JMsY/3n48DPa+KaemvkYrbxpXFMUhc58eJUW ZhqH2QUv/f22uDv83Q+x7k78/abaWvyHdOPYJF2RPMWuJejcDG/v9ONJGjvJQxVPTvD9ITmQ Dg++vkJvRG7UzszFKf/XFZo+ITngw4P/vkFv/B8thihPW0jo0xa04VQ1H2FK5jb43pKGkb4o 0I0PTtEV7X60GTa3+cGx2rY+Nteq4T7m4bs/qQ/fdZoy8apAF187RRuy6fNrlP/LJZo+qZ5U h+Dy8NnyCIXf04ZYK5T+aJQu3Kp5Cl/bIu5Jtwy/Vmjnj4v0zm/TNUdLPOx43eWw45qPpv81 ftHNPMVPJmny/3xGNLNGlVyU0mHe7oi5JXJFGv/LZNVOrnSYh61J6W64Vo/54M5FemOByTjx tVio2XSke3VY8v0DJjtCyv9u04XfqOUoRGub8WoZUqRwlVcjFHp3lqYsZUtyoh/q9h45RUYa jqf6nolT9psYD683CrvyPds1fb46BUF1YsuI07H5dY4mQmdp9qdTqjP9ozzcoNHQxepv7gGl LcuQQeW7TRo9rZZNouQjQQtvVg/1f+V/bND4zxz8d4mfHrmLAy2v2y1/ntLP9h1++xlNzl6t Wxqlrb1VCteHwKvD3jf+3yn6uL7lV3vD911AgJP+ECjzu+HaBk/HGZHeTwrl/nDDuF+X+X2k Wcd1N4UmafFTvsdRfdOotP/dJf7aM8X2WStb26X45Shw3CEC7rU0XPqGgLYdkKWngotErddE HvannVO/pV4s36QliIZ0ib/rHuQuxR+4rHiSMfWQ6uVfKvPh5YTIWzt/ebMgo/eXe0cbrhsk tqQh1PpCXy/zppWYU48M96ajiuRuzjrM9+ghVXp5sOlB1uOR4+B0h3lI7JGd6SVpCDP3vjsn vyhWdJadXfgvW++9jNzmXm19qHFYJLn3vtbrHRPFlxWRqvfkR9aNYdTVtEvp5gqJjkM+0Fr0 3T73WnVfjeuRNqTd+6gdPf5m+a1GqsepPu9jjqOFjPLD5cKBUTUNvGhV/sFutfc4s7Mrsg94 qP6TrD6KwI5vZU9LN4m42rMpLZBXDZP/VXihvCgPM1+7bxnarzlQv/W0eOcnB3vUsdfy5y39 0r3Pw+n1qQUmo3mEizSiAItumuAE+kf+tnmEhfW9FdLzvV6fqz+D1Sk0+Hgn0C3+2vPb7nkp W92t+OU4cNwZAuhB7lBDQ0+DecU9iH/iHuQSr98hRWzqQZ5bofhMdcmXmgvu1jj14RW9B7n8 j01ehCdJIz+RQ5ACMx1yC+bri5T8fIEXDql9htp/B/ib8NZ/uO5B7lL8djb5/hyz2LmzQV/c SVL6m5yDuSHKFLM0q3XwKgW6MHqK6n2jFLkWpzO8NlJ9VSwjDL41rv5W6+XhzdM29ynxK+5p 4wXCLvACYar/0DIvEPb7xgXCtEDKDzcp+i+rNPV/v6DVT85qp/lb6gV06OHUy0OzHkWpJ5Uu b5H4nOXlER/lO+4dPF3r3VOdrlyPq+aYk888RkYP6MqnRt908lGFewrdPC+OMEBNe72XWGtt 13vT615D13Z54bWzpJ+3MpLSrYVhjVVr0T+yR7jusVX3qjdXeWQ1zOG3Hn+z/FbjlHp3V+4V Kf6uVrAbA87duUrR6zmKfr7RsFCWwovTfXGdF2+75XTf1MKz5fvDNh378XlThKG5CJ15fZzo xBhNjE/SqZlzNPvLszTRpPe8k/xMxjT90YHy5yX9rw7ps9cmSX2y8Nxw2vrEvACfZrqRz1h0 U2MyEN/lHPcgJ6lkGt5k7kEOL8d5TIr6Uqp9FGWcFn/HPcjVUUFEuVtX6OrXBzTS5N7S/NIL habej9PqklHOhtp/B/jrbKUD7flt+7yU3FGX4pejwHGHCHRGZyMUPxBoZQ5qfr15KyYXL2MO X/XYvHDMsPu3y+9W+Nv513t82uzp9xq/nU2BOsc9jqWnRbG/x/No02vm3uWlLSMplh7gxrJu Lfu131oLvrxAmHbOCNztkdSL5JDfenlo1qMopcWtLUa49ul04mE7F9Vtck3ujLRzZaJ6pXjP vK1TrbfecNcwj1hOt0PvqNai380eZIOli3nDJgaNP3R7m+U3e5OfvW3nyZMty/OdBAtcEeO5 25E58xxmLY+sFufT5jxzKjextHPPVyf5We1z/m2UKy1tLZc/NR/aTT+PmNAW4Gp6z+ojhbyX LWcWuOIXAu7noHL5tayf4XTv6edNI5iG3b99jrvnb+9fe35rzxR7V85nvcbvHDKutEsAi3S1 S86H/rQb1M0q1oaYcltJNg+BG3b/dtnfCn87/3pl0UEw2fmRz3mNXw7L78elXIoXulIXrpEW nrIa/XJfGiIc5yG7dQeSuOJ+YZG8uyVS6ZTz32ZSpO7uGv6LxhDldl+GPABV6C9Eh/yu5LSV uptUkKW0uLVFL2dqw9f8qti62yTtzCXJ6d/ayR89dNvK3/G3kXbdZhYNxoJi6vBq1bPhrkHk ukh39ma9EdCBr9U8/f5x6b5qoS5izM9Ha9hufuvxHyGQiztxXdzqw/7dRCC52bpsPPcj17dE 8bl0UT3kFd4T9Uq4nkcWJ9WfpX2xtc4Lg/G9GOGF06ore1sEtlpJzziMsjbKond+dubZnzPK lZ62VsufFnBb6TcW+OMRKFpIDd8lPZ+b3P8NvnAimASMMtnwrLNJkDb1RBfADR0axv1ddWNZ +GvY/TcibY1/o39uMLtdW9xQf6bYOXI85z1+x6BxoW0CEMhto/OfR+0GVQVy/siJiIJ720qC 972sfqvHTn9VN9YKFCd/2P1bS0Cr/K3+9cpiCxV0OQyv8cth+f3Y6EXjsq4JXxujd69rK/VK IyB4/qrWg0NzbWydwuJM908rhnC2iV89VSzwnM6n1htSeiE6rLJsSqPVuxaXC6GoOdW+9XLG lSq77X80d937NtIuVyYqT/Iie59XQ9a2e1IFsrbSr/WekPLQvheOt8LSelmsfh0Spt8/Lt2r wcgsU08cAnZ5Wo//iOe3HCcPq28eOgvd/F5elOTyw6tn86D6msh29G+4kfNIj6w+/z/mNC+S 45W3MHIS8nJavPLTbTvyoAPlz1P6jfhV8ZLMyZlTN/65tH7BEeXhyOTCQQAISGXCzfOnPlqq WHSut2n1ObX+VrG+I4fdf0OJaJF/g38IZBskgT8FgRz4LDQSIFewsKiHwaVXR17565VFNy9I m0R5jd8mSN+eMtJKIrbpNISTK/nagicza6bFqFKa8OIKatMhoE/3Reb2Gg89XRVZSbjJ/h0X xirlRVwTaTZ78e5e08Q7L4BlbYDibZiimohRK8jWCo6WM5JA1rZJ0i45frOfmB62wzY+dc+l R1mRvBkXK7zlUsnJBseInC9ovee8irCzI76ij1Sx9IBws4Ox0Bo3clgXGivpve8sBF3eT85x OZsoD7ePN2wFxv6eF6vbhiV5C62ijQ6SQ9bjP2qbPkv+xe/Zj6Io8SJZWq986KbEWSoz6tD1 hg+L2y29bJKwa4CQF6my3WNcDVTvXee9xB32gu4kv4Z0NDnhtfx5TX/pgXm/7pXbPELlOReQ SkXk7yf1fKv1ELpr8G6SXFzyPQHvAs33SfS1gd75a3US2wbFI9PuPf4jo4CDlglAILeMzL8e 5ArWfgcrs/5Nsb8s88rfq0D2Gr+/aDa3RnsZaUPM4umsScBVnubFmiSCG15aj1L6MFU1jPBy UmSflKot7ZWSuqpvRqxd1gRsrbdtVe7p4WHWWtzV77kVkcntixL7LT7Ki9S6ZX6mjUjbT0v7 zc7Eav55DnX2XsJSQY6KTGFf6oWuiH3erzir7tksV6Z5Reosz7+unueViEslno/toMq0vYa1 NKzcztTCr/csZO8lRUwT91UxHRIdaXRTV0zOZcSKHnacbeYedqvCZWGZ5zTy9lM1zjMqX3Yn NSTIjRShywnOPx4NU+QGjfXaPspa2mieVzJ/xHljEqgSQ5Ujc9Pj4j2BtziuGscaz/wjq4H1 8mnZDzeVYxuYu1p+ErzHsW4DMzSVH+Ygh2+On93e43i1PK7aZx6jXLxnDLNW46iW30dq3CWe g6/uRWwuu+ZVrKXKGPuNqGWf/arlNrNpmbvP10Pqdc6jfWkUhP6s4utq/Kt8/1UFnoqF3z2l QkZq4CGxZTbfuLnb5WeE0NpRh8pfJ9KfWTbP9ZbLivkYArm1TA6ia+meXEoFMQEBt9k7f61O 0lDXcEXGe/yuooGjlghAILeEy+eOK/sieT0uEvek3gKfmzxQ5nnkr1e6bMSUK04e43cVh08c GcOP60NF6xX1EG8rE9Z6jevn1HnGdlMO9u+aRYa5UmoOl1ig5SVxpmIoPTC2umnql7fiydrp q+fyvFtLfLrt8vnaVlFyr1vzeNmvTc91LQsrIiP1Eh4VTmg51dBL205RyK+bhZse70xSmuPM lQVdQMvpZ7F209juqZIz98LpYdmys/jd0+Z3m8N3DMORoxDuhE7UVAYcOTjYzuulNzRQZNfN AtzJ9tDlxt7/0v1Vk3h38ms6LzPQt2dywc9xGHetBLXDr52yp/px5N5q+etQ+rObDs8gft4k b2uNbBDI7eZ3kPxVHmXE6rVVbgw1teQFKQmBttUrf28CmQePIP99V34gkH2XJTBoWAl4FshD BK5036FiaREY0euppkNbK7zfK29/4SgWostrIrPn1P3FwHkYdcLS06yLipkoN1ZlJeHXmEGV J7tSb6ohNmLru9wTmBS8MYdumzqUu/rh3mtt6Kwel+ROPqf7aYy6FtQD3qu2oUFBizMsVm6q Peudq7AV72qVfi2O2nfk+q7JQn2BLUu6ViyLshXlHnTdbVgk7nMPsGWV4fg9KR9bYFjleTnV JB95SPJ1S6913ZbI5bhIsS1WgtYeYDnP7I+5gcZmVJDaU2v0xpuZhpfi3OsupdlEmIev7yRM 5UuLN7zEIxF45EFxxyyiw9KCUvqzitOpNkppfs3foWrPsjXtFjP4Z+v8GsNwd6ZT5a+j6Zf3 ob6/y6MdanlWTGtlCgLZXe7CFQj0j4BXgdw/yxGzEwHsg8xvdHxAwA8E9D1BrXu++sE4v9nA e4nufLVDhyemKfIey8jyIR38b5HKCm/oq+7hOz5GU29N05jbbXtflOnghyKNTkzyPscchrqX 6wn2fNxlwtn/4Q+8MfnEeNX/yNgYjan+XX6UZ4dUfsWOj4/QGPsdcRuvy/CPcqbGf/CMaPL1 EVLKCrVq/1Hhd/t6+fBQ3cqZuTH3k+65d9Quzr8ylwPS8rGV8uPREIXLf/GQaLyef2MnJ8i0 zapT+K8UOjwsUonhjYyM0jj7c3vPlH/gCMfYvboXq5r2cpkU9f5T+AY8MU4TE2NOsdqf7yM/ e4Oan+14+i3R5f58gc78Rt1tPULZSopCfSrWFrPwEwRAwIaA632QbfzilD8JQCD7M19g1RAS gEAewkxHkkEABEDASqCco4vjZ2hDPT+zSqVcjFpsbrCGiN8gAAJdJACB3EW4fQoaArlP4BEt CFgJQCBbieA3CIAACAwyAYVyf0tTlgceTE5MkMKjV8aUAl1ZuEK5erJD17OU/TceJYMPCICA bwlAIPs2a9o2DAK5bXTwCAKdJQCB3FmeCA0EQAAE/ExA+X6DRqcvOps4E6f9Bys01eMpF84G 4QoIgIAdAQhkOyrBPgeBHOz8g/UDRAACeYAyE0kBARAAgaMIqL3Fo6fohtXdTIRWf3uFovNn aQzi2EoHv0HAdwQgkH2XJZ4NgkD2jBABgEBnCCjfcW/Cae5NmElQJRclrMnSGa4IBQRAAAT8 TEAdWq3wgmm8VBovlqb++dla2AYCIGAlULh1nk59tE3hm3na+mTaehm/A0gAAjmAmQaTB5TA sxxtflPglWGnaUFdmRkfEAABEAABEAABEAABXxMoP9yh7b1DmjgdptkZLKnn68xyaRwEsktQ cAYCIAACIAACIAACIAACIAACIDDYBCCQByl/eYhWWV0Fk/dwdb1/6yClv99pAf9+5wDiBwEQ AAEQAIHgEeA9xHkLehpzuxF58FLob4vB39/50wfrIJD7AL1bUepzWC9vkfg83K1oEK4DAfB3 AIPTIAACIAACIAACjgS0Oayx9D6tvj/l6A4XukMA/LvDNcihQiAHOfcstmMVZAuQHv8E/x4D R3QgAAIgAAIgMAAEsApyfzMR/PvL34+xQyD7MVfatAkCrU1wHfIG/h0CiWBAAARAAARAYIgI QKD1N7PBv7/8/Rg7BLIfc6VNmyDQ2gTXIW/g3yGQCAYEQAAEQAAEhogABFp/Mxv8+8vfj7FD IPsxV9q0CQKtTXAd8gb+HQKJYEAABEAABEBgiAhAoPU3s8G/v/x9GbvAZ2AIVApJwYVM0FxS VAKQqsy1cM1e1WbL39qDUgBSYDbRM//neZG8HheJe3lzwC5/5W9H6xyjIt9GAYD/IPOriOR8 /T6ab+f+h3/wQ/mpvodw/7RRfwjQ8+OlEJU23o8uX8NtO9Pev5H19t7/bUfcosfi3ZWG+pq1 /kYzYRFdXhO7j4JTj/PKv1LIiNVrqyJT8GHhajGP4bxGgABicAh4Fmg9RVERiZlGYUwzodrD dy7Rxku6pwloiMwr//ymIdD2+SXe6id/O1J/cUVEto1nNPwHmZ9UQW2rgQz+dYEMfm08e1F+ UH7q73Nf3z9GOQ3Nx0UmV2z1Nds1914FWtcMswScX3fu2GgQytzxEV3PWkLw509v/I1yRUsp fyYQVrVMAAK5ZWT+9eBVoPU6ZZWn+yJ7PyuyDzIipvYgWwRz6kmvLfIWn1f+2gOayKXAfVkR xSfGC95o2V0R+tnnJVF86qCW4T/Y/NS8LRot9FuX6xXUyxm9IFeKRVF6rv80H8A/+KH86PcE 7p9heH5IQkYbtTYTFcmdfBuNQnrR6ciB9v73ew+yqJREfi8rksuGUI7fVetx9b+dLbF62bim iuYg1OW88ZfKVVsNRB0pQgikwwQgkDsMtJ/BeRVofbO9khWR+ssqurwieAfnak9o6Ppu30xq J2Kv/LUHtCqQ3QyRLt7ThjpFqsOyiw8StR7k+QRX/Hm49rLWIy0JZilh8B9sfhlNEM+viMxe UWTXaz3gEW6xL/Jwr/h8fTSGJJil7BfwXxcE4Ifyg/tneJ4fL0tid3NVr2cYvZ5hsZbOilIb o7fk52q7x9r73/cCuZ7AfWnEW96GWf52rD6ijXuRb/t72LiaJG/8IZDbLfd+9geB7OfcadE2 rwKtxeg65nw/rT1Iee4s92qmtLmUpP7uWDRdD8grf+0B7a4HmR/Ic/UKvtYS3uQ70TAvBv4D ze9lXm9UMip4TuWBG1ys9xH8g1+T54W5TKH84P6xvD6D/vyoJqci8jtJEbWMXFPL/sr6lig6 jbyxoOjUT+39HxSBrNnr2KCvrYnDPMM+n1et5qGWnvb4QyB36j7wUzgQyH7KDY+2eBVoHqNv 03tJrGkvqHpPV+n+qt7yuHJPHyzcZvi98+aV/1EtstaUlAo8zGl9TcTmzcOZ9KHqvFBGbHlV JO/Zt4rDf7D55XlqQoIXdYvM1XuKqfYdqguf0FxErFxPiMx9++GD8A9+KD+4f4b1+SG/T4s5 acSN1HAUvZYU+aLDFCU5gA4cexNoHTCgxSA0e6sC2doAy2Hl9Y4PErG0/+txWnraE8jCtEhm iyjh3KcEIJB9mjHtmOVVoLUTp2c/j1K6GF7L1V9EL/drc5LVF1WAFutyz78kUtdXROxyTKzw kHLtLyr3CM+br6lukzljvqmVu9ELr/UixkQrC33BvzaKIZj8Ukua3fXvy1vWItL0N/yDn6nX GOWn6f1ivYj7J9j3j5afpSdZsWaZP6veF+HllHB++2q+vX17FWjeYm/dt2YvUVikHuTFfiGv ryljZhgRmaeth99rH1p6jhTIpTzPsY5x/c2ou60sx0xD9iNSvW6l6nZVZLtdgHoNbAjig0Ae oEx2L9D8k+jsda330zxPNl+fT6m+nIKwwINK1DV/aegs5Zm3AABAAElEQVSRqVKqtVxrK3lr v7Vvh8UfKnv17b00d9r3krvtfuA/2Py0F7u1LLmd9wX/2lx9cyUf/NzNG0T5QfmxPnvU30G5 f+xqQ0VpFFstbSGR7fKQa+0+OlKg2Rnch3OavXZ5bzo311pjbR+SUo1SS89R/I3dPszvCy3N IW1EpFYPq39HAjAPu1/s/RovBLJfc6YNu1wLtDbC7ooXnsdUXb1afYDw3pNFXlW3xKuqlp7y 6rzSCyooi3W55s+LhFR7kOVWRj429SDPrYi4fJ1bK217kJ/uSi2XIbHLL3Gj0YFbvo9a6Az+ A81Pno5AM2vcyyFNWeD7avV+82Zr+Demc4Afyg/un+F6fljrNSV1L9slbcqKIYAi1zNdX+Xa rUCz2tyv35q9VWE4FxXRJe0vIrRpPrpoXN7qOj+vHLT0HCWQRSlb7UHWRv7Vvs09yOHluD4y UL0eu8w9yAHoRffKcND8QyAPUI66Fmg+SbOpcm5pbdMerLXvYCzW5ZV/q3OQq9n4ZEsfoq4/ 2KVVwemooZLwH2h+xtZeJBJ7tSkK8oiA2N39pnc7/GsrmYMfyg/uH/VhMUzPD+3huP8gJWLy FKd6fSR2MyX2m7cxakF4/nYt0DzH1JkANHud5iCXHu2KFak3de1Bj0C2mTwtPXo9qsVw9H3Q ubMHn8EgAIE8GPlYTYVXgdZbFLxatXXeZBORHITFurzy1x7Q7laxNnKrwvOmdnP7oiItlFHi fQqze3zOcOZ4BP/B5lfM7YrsI3PlI897UuYt55wKAPyDH8oP7h/5+TAUzw/eMSN/L2mzmn1I xG9nRI/W5tKxa+//dgWaHlCPDjR7m9VXKrk1vQHa7ytZa+lpjz9Wse5RsetpNBDIPcXd3ci8 CrTuWmcJvbSrD8OJbtbnuqkCT/57nhdRTTQHYLEur/y1B3S1RdaNsrUgxU8QAAEQAAEQAIEm BOr7IFuHAauLTSXuZk0NzU1C6fgl7f3fnkDruDlHBqjZ26y+AoF8JEY48DEBCGQfZ06rpnkV aK3G58W9MZw4IrJNxGCQFuvyyl9+4TRj4oU7/IIACIAACIDAcBKQevq0xveZqEg6bIXXS0ba +z8oAtmowzlPgctcj+g9yHGfb9npjb9UrhwWU+1lWUJcnSFwTA2G53niMwAElO83aXR6kWgu SZXtBRrxY5pelanwXZaS//IOffawZmAml6fx4+MUenvCsFhhd98fULGQoncWPqueDy0naeP/ zlLoTcmd4aPvR175H9y5SG8sbHA6orT/MkFTx/ueJBgAAiAAAiAAAgNCQKHND0Zp8StOzvwK ZX73Mc3O+KM+UfjyIp36cINYIFNqadq/vNW62eMDym1epcU/bFftXL2Xpdl/qpv8SqGDAtfx Pv+Y0vU6HvfO0+7TLTp70r/J8sZfKldLKRLrEf8mFJa5JgCB7BqV/x16FWi9SGHh1nk69VHt oWqNb22vQpfersl6Z3chylayFPKh+vfMXzmgzT9vUmUmQtF3ffyCtGYcfoMACIAACIBAEAiw gFMUopET/qpEeBNovQPvXDdztiHxoETRn445O/DBFa/8lcc79MWdHIXmL9HsW/4qWz7AG0gT IJADmW32RnsWaPbBdvRs+e9f0PjZj23CjFCmmKLZemPuwd+u0hv/XOs5NjteofzLOE37sHc1 CPzNLPELBEAABEAABECg3wS8CrRe2X/wNdfNInZ1M7MFobkwzf5ykaL/skDTPu451qwOCn/N Xnx3nwAEcvcZ9ywGCLSeobaNCPxtseAkCIAACIAACIBAEwIQaE3g9OAS+PcAcsCigEAOWIY1 MxcCrRmd7l8D/+4zRgwgAAIgAAIgMGgEIND6m6Pg31/+fowdAtmPudKmTRBobYLrkDfw7xBI BAMCIAACIAACQ0QAAq2/mQ3+/eXvx9ghkP2YK23aBIHWJrgOeQP/DoFEMCAAAiAAAiAwRAQg 0Pqb2eDfX/5+jB0C2Y+50qZNEGhtguuQN/DvEEgEAwIgAAIgAAJDRAACrb+ZDf795e/H2CGQ /ZgrbdqkfLdBo6cvEs0kqJKL+nMf5DbTFgRv4B+EXIKNIAACIAACIOAvAtr2SeGbedr6BNs8 9jp3wL/XxP0fHwSy//PIvYXPcrT5TYFobJoW3gu59weXnSEA/p3hiFBAAARAAARAYIgIlB/u 0PbeIU2c5u2RZvy9Z/AgZgv4D2KueksTBLI3fvANAiAAAiAAAiAAAiAAAiAAAiAwIAQgkAck I5EMEAABEAABEAABEAABEAABEAABbwQgkL3xg28QAAEQAAEQAAEQAAEQAAEQAIEBIQCBPCAZ iWSAAAiAAAiAAAiAAAiAAAiAAAh4IwCB7I0ffIMACIAACIAACIAACIAACIAACAwIAQjkAclI JAMEQAAEQAAEQAAEQAAEQAAEQMAbAQhkb/zgGwRAAARAAARAAARAAARAAARAYEAIQCAPSEZW k/GiQJv/mabKTISi72Kj+Z5nLfj3HDkiBAEQAAEQAIGgE1C+36EvvspRaP4Szb41EvTkBM5+ 8A9clnXdYAjkriPuXQSFOxfp1MIGRxil/ZcJmjreu7gRExH4oxSAAAiAAAiAAAi0RkChzQ9G afEr9rWUIrEeac07XHskAP4eAQ6kdwjkAcrWwpcskD9UBXKEspUUhdAI2dPcBf+e4kZkIAAC IAACIDAABCSBNpekyvYCofrWy2wF/17SDkpcEMhBySkXdsoCLc8CeRpPWBfUOucE/DvHEiGB AAiAAAiAwHAQgEDrbz6Df3/5+zN2CGR/5ktbVskCDT3IbSH05An8PeGDZxAAARAAARAYQgIQ aP3NdPDvL39/xg6B7M98acuqA56D/EZ9DnKe5yBPYw5yWxzb9QT+7ZKDPxAAARAAARAYXgKb HxyrzUGeT5L468LwguhTysG/T+B9HC0Eso8zx9m0MqX/uEq7RYVGRoxx1IcPP6ONb+q+5mO0 8qZxTVEUOvPhVVqYGXMOFldcEgB/l6DgDARAAARAAARAQCNQLtCNaxtU5FnGRvVNodwfbtB2 3U1keYX0fUi47qbQJC1+GqMQqm8axfa/wb99dkPmEwI5iBn+/SYdm150tnwmRPQw13gdiz80 MmnnDPi3Qw1+QAAEQAAEQGCoCRS+vMCLqaYdGYRmiHIPGy9Hbucp9WtdNjc6wBlXBMDfFSY4 YgIQyEEsBq+4B/NP3INcItNKh6Ye5LkVivODtqKlTyF+KF/Re5DL/9ikxaUkjfzE6GXWnDZ+ cwvm64uU/HyBtAbMofbfAf6NjHEGBEAABEAABEBgoAmUc9yDnKSS0X3MyTX3IIeX4xQyam+k KOO0+DvuQT5ZI5O7dYWufn1AIydckHqh0NT7cVpd4o6T+meo/XeAv8YR3wNOQOAzMAT2N6OC iyv/RUX+ZfNk5dcjdbeqezd/YZGtGGEOu3+DhHHUCn/DF45AAARAAARAAASGmUByvl4Pm08e gaEiknNu6mySm7mEMKpvw+7fHq97/vb+cXbwCNDgJWl4U5S/rQnkiEnM2hExxJz0EG0qlM2i e9j92zFthb+df5wDARAAARAAARAYNgIsWjWBPJeUxKw9h5TmtmmdTarbWUT3sPtvpNoa/0b/ ODOIBDDEeoBGCMjbDLnZB7n8rEzKK17o63jzYdZVNycmaMwynGfY/VuLTqv8rf7xGwRAAARA AARAYNgItLjNENfbymW1/sYLfR2xW4lafxs7OWF2N+z+G4pXi/wb/OPEIBKAQB6gXJUFGvZB 7n3Ggn/vmSNGEAABEAABEAg2AQi0/uYf+PeXvz9jh0D2Z760ZZW8D+8+74M8dUTLYluRwJMj AfB3RIMLIAACIAACIAACtgQkgbaUIrEesXWFk90iAP7dIhvkcCGQg5x7VtuVA9r88yZVZiIU fRfbAVjxdP03+HcdMSIAARAAARAAgUEjoDzeoS/u5Cg0f4lm32o+7W3Q0u6H9IC/H3LBXzZA IPsrP2ANCIAACIAACIAACIAACIAACIBAnwhAIPcJPKIFARAAARAAARAAARAAARAAARDwFwEI ZH/lB6wBARAAARAAARAAARAAARAAARDoEwEI5D6BR7QgAAIgAAIgAAIgAAIgAAIgAAL+IgCB 7K/8gDUgAAIgAAIgAAIgAAIgAAIgAAJ9IgCB3CfwiBYEQAAEQAAEQAAEQAAEQAAEQMBfBCCQ /ZUfsAYEQAAEQAAEQAAEQAAEQAAEQKBPBCCQ+wQe0YIACIAACIAACIAACIAACIAACPiLAASy v/ID1oAACIAACIAACIAACIAACIAACPSJAARyn8AjWhAAARAAARAAARAAARAAARAAAX8RgED2 V37AGhAAARAAARAAARAAARAAARAAgT4RgEDuE3hECwIgAAIgAAIgAAIgAAIgAAIg4C8CEMj+ yg9YAwIgAAIgAAIgAAIgAAI9I6D8kKPdXJHox9M0OzPVs3gREQj4lQAEsl9zZpjtenFA6Ts7 VNIYKERTv7xAs2+PaWfwDQIgAAIgAAIgAAIg4JmAQhuhUbr4UA0oTNnKFoVGPAeKAEAg0AQg kAOdfYbxyrNDKjzOU6lCNPqjcZqYmKKpiRE6fHxApePjNP3mhOHY50fKd1/Q6OmPTVaGb2Zp 65OQ6Zx/fyhU+PsuKa+fo9DrvXjLKJT7dpdGps/RNOc5PiAAAiAAAiAAAiDgjoBCmx+M0uJX NdfJvQotvD2kdYlXh3T/2zxNnJ2lqRPu6Hly9eKQdu4f0KlfnCVU3zyR7LhnCOSOI+1xgM8K 9MXvFunjW7mmEW89ERR+vakT/1w8vE9XP92gQ+5Dzt5Kk5qyyHqeUkvT/rHR0RKFtv91lM7/ iW2+zTb/ugc2Kzk6M3qmyin1qEKRN4f0xeaYJ7gAAiAAAiAAAmXa+GCcLtaFoBOP0FyEZs9e oMWlCIWGQrXIPcghyj7PUqgX4tApA/p1/lWBrr52ij7j+JMFbiR4q/t1KaNDaIX2X8Zp6ni/ Eo94rQQgkK1EgvT7cZqO/eSCyeLwXJiK32xXxZJ8IcEtgtEAtghufnCs2qoZFIF88PUVeiNy o4p+9X6JYj/vxbDwMn0RGqePq8OjYpR/uUrTeMjKxR/HIAACIAACw07g1QFdee0Nqr2h3cEY lt7U8vc5yj7hOcg/mqJzP5+m7ktDd/x76Sr9r8foAnduqMPMd0tbdLYn1bf7dH78HG2r0S6l qLIeGUr2avL99oFA9luOuLbHPCQmdnuXrv7qLI3VhdHhd2mKnr5Qu+k4zGAKZCONgRDIZelB N7NKpVyMevF8VYtM+e83aPzslWrpCV3bpey/n60e4x8IgAAIgAAIgECdQLlMh4pC+S+j9M5v WZbMrVJ+fZHGFZ6fxp8Sj8pLf36Vrn6ljcpDo3Od3EB/mepQ17kO9W+9q0Pd/48zdO7TWnnr XcfKQGdnRxIHgdwRjH0I5EWOzv/oTFUAh65lWBDNNhih/IPn8v6sNpe3mUAuP75PqTspSqd3 iNsPa5/JM7T4qwVanJ+1mRfBc16/TlP2Bc93Jn6pHD9FkfkQHXybpo1bSdp5pIYySWcii7Ry eeHIeRwKv5B2/ydHhR9KNDIyQqMnpyh0tjaf1k0Pcuv2s3kvCrR5Z5doZLSWXn45joXOU/in PFf7FafvmzSl/pai3IMDZsJp4SFXsd9GabqJ4r3/R37I/bb2kFu5V6T4uy7mfavzTzie7a+3 dW6TP5mkc7+YpemTJdr+coNf4F9Q4pMjHtY8b+bqa5PVoUFEIcqUsjTbxNZaovEfBEAABEAA BIaPQOHLi3TqQ36/ziep8teFhl67nf84T+98Wu3Xa9rBcPD3NG3+V5JSXFeofh5y7YfrTYtL ixR5N9QQrpk0r1fC9aYk17+26/4nJ7n+w4uSXnif63R7KQ63TGcWLlHEYZHS9uNX6D7X4/LV epxmFdfnxs7RwntOU8PYzx3280qt+0mfE1MUef9sNa0K1yfT3zILUxd0vZ7InTim0xxEO/Yr 3+9Q8n8OabQeWIUXcj3z3gIPh+cA1TrV10na/NsOZdW6KPMMv3+JrvzLrN6BJFlePyzTDR6F d4Xzrlp/KnL9yUX1TTnkxpSvuK74zS4dFGv13qmf8SrgvzhH4+UsJf9rm8Kfb9OlXx4R2OE2 HZs8X7Olx50rdQD4siMg8AkkgcpeQnB+Vv9WH1Qc0lASifmaG56b2ujmZUkkl8N6OFp41u/E TtHst5IVvFzWkf5q4YRFxuLdCKwktq5HHMOJXFsVsZlaPNyDbHjTjtq1n/3n123SPZ8UpadZ EXVK2+UtLebG70peRHR/UZF/2ejEeqayl3RMuykP5hLCJveswYn87ageni2vBh84AQIgAAIg AALDR0B/X84l7d+vj4z3M3cwNALiusJKvX5iel/r9QC17hIVmSc2ftXQirt6/cbZf63+w4uU dj5+x3pcWGQdTBYFg4nV5mS9jpm/GdLrIWY3IXO4bfOriIQNd17zRRRzzvbF7jpWRIWpLsb1 QKfky5mglx9TfjfWi8N2dVc5oOpxRSTrdXWVmW15a/CDE90mQN2OAOF3icDzrAhrN+bMqth3 c0ebTCmJtTnzzRy7nhSZB1mR3UmJuHSzqjcsD/swfKvC9FpMROYaH4SRyzEWzyGzgF5K2Txw GuM3P0zNtjUKvkb/ru1XU/IkI1aWoiLKf45ify7CaZTs4Aen06e4EzdeCpczTs6k80UR1/KP v1fWt0T+SVHsF7Jia33FCEt14/QCl0KrHhYzkr8VUXQh0q1B4DcIgAAIgAAIDDoBXeA4vF/3 08Z7uEGwlKT6V/U9Hhart7dENpcVmbsJqbFcrT9wJ8FTC82nmYZ6R3hpRaze5E6BeZt6lVVk eY1fNedlkTtIoiJSrwdFdNEZEXmn+mTdj6nONBMW0eWkXt8oPUiKWLUeKNWd5tjNNe6A0Ook Hu0v7iSqdbfoknMHS3g+YtSROY8im/uWTDB+Zq4ZzJsJad2HKf8iInE3K/a5/pbP7YrEstmm xrqrHorpoHjPKG/kqg5p8o4fXSAAgdwFqL0JsihWqw9m4yEUu5YQqbsZfkjnqzdrxekhxwbu p2OGmJqLi/zzRqv3760abrgltOGhKbWw8prNIiP3UnOP6opuX8TccshR5W/LD5GISOWk1r1K UaSuydf54WZ5QXTE/nqS5Za7mkiPiq2C0SBQ3MuI5GZK5I1TFljm1j8eXm25bvNT6nGO2j24 n+4aPdkue5C5Sdokuhte6jZm4BQIgAAIgAAIDBsBR4FcKYlsWq77hCwCtyJSS0a9K3xtyxB+ OsSKyMij45bkXklzfYFm4iJbNFfWKoUts7gz1X+8xq8baTrY39RGoDURyHUfpfsGH57iZwpH +7F7XRulxz3SpvplB+1/mTfqSVp9c35N5PUGiYrI72yJZDpjk0d1S01hWPNaS435W+5xTj4y X1N/lR4YIzzd9SCzJ4vobqhvN0aDM10mAIHcZcBdDZ57QfVeZO3hYPkOLydshF1JrOqthdy6 6Sj8hNi6bLSsWQVXRRpuE5d7mOuJLum9qpYHrumBZNO6WvdvPGCtArkz9teisbys5rg3Xmvl dJ15cm+29WXgEIgkkO1fsOzveV6sLoVF7OauQyCNp2VmiZz5pdvoGmdAAARAAARAYPgI6ALZ UmeyjmSLblqmd5Wk3l8evedcfSradxKYOhZijtOx5PqVSWR5jd8hqw0elvqarXu5Md6mzlPa 1XvIGwR0J+3nepQ8JS7MYr3lWo88GnNurUl+GiBkgRy/y+XDps5Y2UuJKPecr9130WFSDVqu 13KnkqlRwYgbR70jgEW6+GkY6M+rMu3c2aAv7iQp/Y226qI1Rbxok7zogFKgC6OnKF13FrkW pzPqAo6mVRf4Ny+AcPW3V/XAuKeTEr+a0n8r32/S6PQi/45QtpKikHX1Bb5+rH49z9enteuP +fxPVH+8HEKz1QJf8KrQP6otf889yMY+yB2yv2oAGStlE7W5D53JngiZ0lqLpPG/aVGt+uWZ MEV+NknjvPb1xMlxmjodqi3W9boGrjEY6xl94RG+YGJmdYjfIAACIAACIDCkBOR3pT2CMCUf bNCCunCn9FG+26DR0xf1MyvXebKUYqk+cX1qZJS3lPqUFwGrf3iOLi28OULKQ/Yfqvk/ajHP 3J2rFL2eo+jnG/pCT17j1+yxfhs83NVhDv92hSb/ubZhVjTNdcP3jbph7tYFOvNRrYa5VRQU lhB21H7et/gi71tcpXx5i8Tn3GXU4sdkj8OCbQ1B/sCLav24vqhW/aK6d/aZ18eJTnD9bXyS Ts2co9lfnqUJ1/tJy3XRoO4800Aq2Cd6p8URU9cJvKzwIlM8j3WP58Gk18y9y0vSAlOmHlxj qBCXZGlIdeOxugiC/DFaOO1bHJ2uG+d57m3T4cg8jLze020aYt0h+2tpkXqQXS7OIDOoHpvs sRmK3uChHnMh1ZS3lh+hy3ZzuO0DNVqBrb3u9u5xFgRAAARAAASGjYDxrowJ3v9XFB9lRVIa MUcU50lLjR+5/qK9o918Jwu1vs38ujF9TDvXGIvzGa/xO4Vs8LCvzzX4M9V7pJ50+TyvP2P9 dNR+KS5r/dQar9Nvkz0t1AHz0hz1ZvkfS5vrzU52CO77lqf7WUdsOvvDlW4RQA8yl+wgfsoP 0xT/yzZNvbdCl94zWu5MaXl1wFv/vFHf+idOxZcrNHGcXcitbhSl5F3emJy3NnL88J6BxMv4 n5vj1jDVf/0j9yDb9Zo6XTfO8xqPlpZHLezqt2SnqTdUOs8htG1/LS6p1W6Ot3vYbtzuwWST 3Q/ZnrkElbaj7vc/5hEAuW+2KfXtTnWbK+WFUt0G4YDPyeMBjmpp1swq89Ze4/WtvUzMNAf4 BgEQAAEQAIEhJ6D3mJp6Dbk+8NEoLd6qwbHbQlOuv9D8Km39eooU3vbI6aNw/WlsIsS9idPV d/vht5/R5GxtZB6LIIq+7X6EmBqH1/id7NR58IhAu/qcnT+5p1hLi9yznOT0LVjS11H7pbpX u/Ud2R5eLZy2PuElyNx+yge0zds87Two0EG5SApvmUW8Mei2ZTQn7+Tiatuo3J/P05nfHL21 mFvz4M4jgW4pb4TbXQJGKyS39tnMf9BiN+akSkv3S/NfiedctDxnox640fJm3+LoeP2R1HPa pMWukjMWOjD1IHfI/loypFY7h9UsNZaO39yKaWzx1Lggma0/Xg1ylVfIDpkW7zC7lBdJM81B Mjsz/TLKBXqQTWDwAwRAAARAAATqBPQeU+t7n+ekGu9z3nLHspaHUa8hYbv90hGEZf/UbOtI NRzeMSS/lxclqZIm+28nfifzdB684KrrBaJ4rrG+Dk515eWSsVAoLy5qNz+7o/bLPcimhcyc Utl4XraH3C6IWl//J2YZVamHzvkmL9LmrjeY66LSrinu/Ogx4qALBLBIVxeg9iJI42FGImZd REI3gBdS0BbjmjEvPiCvwthsCEjl6b7I3F7jZftXRVZfGbAegb7YhMO+v47X5cUrVPvt9/iT F18wCWSOviP215OhD2tpso2TjtTuQHpIq/seNmuw0L1LIj+Wdth+QBLergWyvhIlC2Snh7du BA5AAARAAARAYPgI6Ks227z3jQVG1almK+aFO/m9HJOmozUbJl1Sh23fjIsVeYsji//4Pfv3 f4kXedLEZ+imNEzX4r/l+B2yWufhtg5TDyezrC3kGuXVoo3Vre0Wbq166aT9HJZWT4y2W9/R 66mc1006bGRs8iJdKXn3FtmRtIitO7ErddZw+eLedzk0HPeBAARyH6B3IkpZIPMgAhFPZ03L 2Fee5sWatBWBVWAKuReX/Yd5H7vsk5KocG90pcStlg8yYu2ytkx/bT7yqtSSWnqSF5mbxlya eHUfOKO9sPSIr28a+7pVr0tbGRTvGtdU+2k+znsw8/ZUqr/b0p7C6jX+i6xn+Fqxal+Vn1f7 eb/hrLrncy4j4nqrXVhs8T6G1fN8rcgc9h8ZaXLON/ODbeuJs0v9iiSQ1fRFr/M2Uiqf+miA Wv5pL56j5mrroQp5Pz93D2XDL45AAARAAARAYJAJVLjuou5XnFzW6je8RSX/zpve9datiLh+ pPbk1t/Ppm0m+f29cjsjik/V93dtHZjsPd4LWK9XqHWYkGmry+I9cx2nWv/i+k1JrXPsqXvp arbV6j/WBnKv8XMlT6/nVOs7vG6NwYPE6j21bmTUhbJ7drOx66XkiTQiUK2vVTtl7Odva+XK m/0Vsa/Zdj+pNyIQryie5XTU6m+cVyVej0eqc2pxN3xLIlttDCk2GZGp+TX1OnOaV7n+XXxe F7Tsv1TI6MJdrd/xQmUuPvLK4C5HIroIFU7aJwCB3D67vvqUh9JWBab6YOK/EC8rH9Z6jevn qr2aNo1R+3fND2k5nIbjmRVjr2QWd1rLptldojZcu5J1uC4PB6+ILb3lsWa7OSzjnLwp/Zok 0tu338k+I07DFmloepMcN/dou3ga8kNZboU24rOzwd1DW7zcN4WZetTEYFwCARAAARAAgWEi wO9defi0+b1rFrGCh1pb6zlG/YP3Ob5mFrHmsMzv8dByqmG4cXZd23fY7NYaTuhyUhfmRlZ5 iz+/7t72mj0WNoYhfMQdBFJnjOrecVSc7q99+yt7xtQ7K6uG3zP1Oqker82Btd7kpoND7nXW 69kO+XjUMHrNJFOnT8w8akFzg++eEoBA7inuzkVWuu9O3Ko9k80a0SpPsrzXrtFTaX3ARJfX RMbaesgPlJUGEc7iXFtt2ek6z7e19sfm767p++XJcYcv8/7NbJs5npCw9s62Z7809Pyohxu3 SrpqUZTmSxOn88iP/KKeCdsyUHkclX9yPKZWTbdzaeQAcAwCIAACIAACA0ugUczp9Y6ZeIMo KeWS0rs5JKzDaYsPeK9bm7pQLcywWLmpjsyz6Z2o81V7GldMPc2GyAov8ai6XPPG9nbjt/Zg 6wwc60PcQdKkZ9UsWl1OM2MGbdlfzDQ0XDjZr+6L7OaTlVYWb9j32iYAua6ldkrZxx+q9iw7 5745YHlUqHXEgNklfvWKAFax5pIdyA/vo7vz1Q4dnpimyHvcx1o+pIP/LVJZXXFa3YNvfIym 3pqmMbcLJL4o08EPRRqdmCTilZSre7mdYM/SqtVd48QraB+y7TTGe8ix/SMnJ9zbrRnVT/ur NhzSZ8cmqbY2ZZh2S1t0dkwzzv5bOTyk8nF1z+NaJinlMpVV9moG8qbUYxMTNNIC/9wfeQXE 39ZWQFy5W6T4exP2EeMsCIAACIAACIBARwgoz7j+9Yxo8nXe57jMdZixMRpT608uPwrX34qH RON1/2NcBxpx7528xu/SzKbODr/LUf6pQpOnQzRdr9M09SBd7Lv9hzt0bPKdmkUzq1TKxY7c iaT8A2fYGNdV1X2OeRXzMtff1BXLSeH624lxmpg4ogIopZ990xehcfr4Ye2kde9ok1P86BkB COSeoUZEg07g4Osr9EbkRjWZvEAWpX493bskS9sdqFtf5V8maLoFcd07QxETCIAACIAACIAA CPiHQPqjY3Shvr2X3fZU3bRU3mqKFwqjyl/b2G60mwYOadgQyEOa8Uh2Fwhwr/7V1ybr+07H WKSu9kykHtxhcb5QE+cx7j1eRe9xFzIYQYIACIAACIAACAwcgR+26diPz9eStZQisc6z1Xvy USjNe29r4pynEVL49Z5EjEiOIACBfAQgXAaBVggo323S6OnFqpeeCdVXB3TltTeoKo/R+thK dsEtCIAACIAACIAACFDhy4t06sONKokUC9VIL4TqD2kW5heqcfZ85CHyvCkBCOSmeHARBFon cPC3z+iNf75KoZtZyn7C88O7/eHh1RdeO0VpWqF8JU7TLcxd6rZpCB8EQAAEQAAEQAAE/E9A oe3fnaPzf8gRr1hOl2Z6UJl6vEnHfrJIoeUt2v19mHoQo/+zwScWQiD7JCNgxmARUBfcUhc6 a2WRLS8ElGcc30mOz0sg8AsCIAACIAACIAACQ0ygWp/ihdZ6Un/jRWrV6uJYiwubDXH29Czp EMg9Q42IQAAEQAAEQAAEQAAEQAAEQAAE/EwAAtnPuQPbQAAEQAAEQAAEQAAEQAAEQAAEekYA ArlnqBERCIAACIAACIAACIAACIAACICAnwlAIPs5d2AbCIAACIAACIAACIAACIAACIBAzwhA IPcMNSICARAAARAAARAAARAAARAAARDwMwEIZD/nzrDZ9uKQdu5niY5P0plfhGjs+LABCHh6 kX8Bz0CYDwIgAAIgAAKtE1B+yNFurkj042manZlqPYA++wi6/X3GN5DRQyAPZLYGM1GFW+fp 1EfbVeO7uwedQjt3knTwos7pxBRdmJ+FIPdYbHqXfx4NJeS/V4LwDwIgAAIgAAI1AgpthEbp 4kP1V5iylS0KBWrPyaDbj3LYDQIQyN2gijDbIrDzH2fonU9zVb+R23lK/Xq6rXCO9KTk6Mzo GarFpLr29kBXDg9YbI/S1JsTfduHWHl2SIXHeSpViEZ/NE4TE1M0NTFCh48PqHR8nKbZtm5/ 2s2/nvPrcP53myvCBwEQAAEQAAH/ElBo84NRWvyqZmFyr0ILbwdJIQfdfv+WjEBbJvABgRYJ ZG9GBBf6pn+R9WyLoQqxey2kh8k9yC37d+3hZVEklqMiMqfFFxH5dqN7mRfhOou1vXYDcW15 o8OnebG2pKXDOU+2njR67fSZtvKvH/w6mf+dhojwQAAEQAAEBpRASazNOb+ntXpV4kEpYOmv iMSMlq6QyD4PmPki6PYHjXcw7EUPcqCbN/phPLe0hbml8Jsj4p5LUmV7obUe1WcF2lHnsNA4 nfllD+YgP96kYz9Z5PgilK+kaLqdBs9XBbr42ina4FAS3Goa7WWr6eM023/BlBHhuTAVv9mW esdrl3tiWzv511d+Hch/E338AAEQAAEQAAEHAvy+u8D1hbTDZe10eD1PW0tdGkGnRdLh7/L3 Oco+4frbj6bo3M+nW6v7ddiWdoILuv3tpBl+mhOAQG7OB1ftCJQPKfeYH4S8iFbhr1dp8Q/q vOEwJXfiNP0jIuUV0dRbIZoYs/Psn3PK95s0Ol0TyFkWyG3NmembwDMPCYrd3qWrvzqrz6M+ /C5N0dMXqDajuw/i3W02940fl9NO5L/bdMIdCIAACIDA0BMo/1Cgg0OFOZQo9ek79Jna2TCz QplbF7hrQP2M0NTMtP4ur57CPxAAgZ4TgEBm5OXH9yl1J0Xp9A6p/ZfVz+QZWvzVAi3y4k08 lbO7H+WQ7v/PDuW/L/GzcYRGT05R6BfnaPok0c6XSfr/2zu/0MaO/Y7PhVvwwhZsyIMNfWhK C91AwQrNQ/LWQB9WIQ9R8IW7Sx+KsoWyt4WttheMb/tg9LRVb2HrvBjnFnyRLzRIAV+0gQUp DwVtwUEKbJEvuHgLG5BhAzJsQIIEpr850sz8zp855+iPV4r9Fcg6Pn9mfvOZOTO/3/z5zZm4 RvHT4tLlN0Xu/cxC9cw9+81H4o9uqfFTGoX9jkZhx/Q8/ey/q6LxdCCuMcZ9sSo+/OkYTrMm 5GcNpILovCwK8UVZfPJrkudElYI18e6t2+L+392Kz/95GXjftsV7v/+mZwBntuui9U/vhsro 4MuPxbW3fuad1yPI579riMp/UYlivFWDnHk/J24EOjSefUEs/pfnDZXB61QGP7BlcOr8mwG/ s/+hNB0ciEeft7z3d21tTaytvytyuax4XRzTe90Sy2/dFnc/8PfIzyT/Q9RxAgRAAASuDgHV Bhz8qiwqR8+GiSZHTWukN92+c1vk/tK2FRdFZHB2LJpftMXxNz1Sn1bE2h/fEO+8TTPQqO4/ +HWTmjfSnwZ9agPeE9n1i/fFMU46D37yo+G63Y2ykP95K9Wj519Re3c0bMP7ZGe/+f4tkdHJ +vaZqP6mIQYqzeoTSHeo/b++RDPOPhHlo6HOc/ufS6Jwc0Uc/MsvRInazfZXbZG9syNKv7wr blwfBmn/DsSTz6qiQ85OR7HRJaWnviNuve9va+0zdET62qNPG+JcnST5lv6M2uo/XxGN//hY fPxZUzzrkixr5Dj1p3dF4a/ejdV3B2rW2ucN0ST9uf31QHTVs/RZeysr8n/zMwpXg/FOB/5M KD+FMiA9qsz0KF8+qN08PiuLg982REvpkpSW7Ad3xf2/jtZpp3l/VNmvfloVlc9H3Ehvff0t 8iJO9sPKeUuUf/VIZH/5SNz9izgOASz41xL4YcwEvyApv+vJ8mbWrHslKpHHe43uBQkgZeew FBmnkiW3EZSH1nbMYZlrXOI7+/mR/JOs4+XrPvxpTbuedxp+/eOyk70tCznZDC4H6rXk1kZW 0nRm+vL1v5nROX2NftezsljtxCGc6Fr/6Z6RvXTkKhQ9uTcqQ5UTdY+bdym05tt1Ly+DrnuE jM2/WfGjtcTle5y/vwzZPKTz63uUev9n4vz3B4P/QAAEQODqEXhB7aBZd+qqe/Oy/jxY884K VV/WH7j8oWRlLqTP7YTagFlJMlk4fVnWOt7NckrZ+nInkK7sQ+vvpf90x+gFpv0zbZ+7vTb3 BsK254uy+10glf2WzETen43VUyNljAxHtdulcLwjMXoNt+6s5abBg4DQ7N8J5XfpUeRYVnbb bp2ycBiwI6Z8f6zu7Xr3hudpuj5LNA7HISDGufly3Rt2llB4UJb1o5ZsNSqyqCuu0YtbehK0 kqan0TnQxmV8AVcve+ZmThYe1FJWotPLljYE+5JOYiBL2drdkrk7eZlX3w1r7NCIZ6II0/KL MpBymyW597Dor/jv+SvZfjuiEXJV8N75C2iYX7aMczDViJwm4/J4nj7e8adtXbEvytaLMO7W flHm7/nLaG67IvmbMEn+zYZfV5aCytnNvCw+3JHFexFKU4QCMmn+h0nhDAiAAAhcIQLUyamd Uw6Nkaws7ddkq92S9cO9gHGalfWI9mU6WmRc3knWm7ShlN3Iy53DRTMUJjGQ1aDKDulKdmAn xw2gbpM673P+dnvDGt+nj/d8z3p8NrZkaTPcZua2S7LAHIqVjwNKhuqgVs5OR/pbzrTHCbog GYZF0iuy5n6djxlZUG03DSrofFO/+YPofOs85Pdl5NZD0t8bdVl+4NdZQnLrgjep/PR8t0Ec vXSHuWnZs5QP/B3JHZzqmKWc9v15UWd6XE7uHbbk6fOu7LSb5IDWL5OvfFgJcJSCwJU1kE+r BfsS3izKToTXvdPHvIcqP7mn46iM6PICLmSJKm9T/fR7shboGS0fRwUy/3PTGsi+FJzY3rdE A3kG/PwGUl42uyYHpHzZkQVj9AbynmYeNA9rsnZYl7WqNTjzqoJ+rM6zb5WUhgvpQScD0cg3 bGAK23uyQjK12h2vsuyz5HDO/SNbrivcu/XLLik3FVlv+3s6TS93oKOAh+kdp82/GfCz5U6l PSvLAZlV/pVY4y4SDeQx8j+UcJwAARAAgatCoC8rzDjNbtdkLzi6SNqMb3T3jjXSZkGp2yha /U3kZe2p7bbtq50dfAMcZLCF5JuFFNOGMZmB7MVKuz/kR+2/ywA61QMwwbaPPStYvjS3rcFZ 0LPeaJRVj8QXqszAi0i6iU8kGMijZ+391Ibf9Hfy909q1gC8GZ795QVB+VzeVYNaYbn6bTvD Lu0IqpUnnfzBfNCGsdjYkR3TIdSXnUZNlqt19o5M//70n1pduXwSzoze0fjpD4eCM1fUQO6x 0Sfq3bR1a6hE1NgUzkSjLfS0+0Rn3/byuEanmw9shTXLuN1SjX/FGipjVCqOaLjBmpTeWfBL io9XmM6p7ayxeeWdGM/rvh5KU0Ezwzm7uSc7wfLd75hGjzeu9W3dkytsjz8bqS42ggH5MzKJ p//u0X+T8GPPqDRXIhoIL3RKp1YiREQjmyRvqvyPTBROggAIgMAlJdBjnfs0e8ndKnTllmmL crHTbscjxQxL6hyNHp2mGYJmhHKWcY8nafzdLB1BIzb+QZrla9s23obzx4xuFgybP0vTgvWn e7g16nTI2mVlDl1BP8N/TXwpDWR7f7QOXtfbfrIRcB6fOaYBpc5R0xs9rjeasnVEU52fW8Pe xcc8Pzqw8oyhyzKWShfJ0pRux7iEjW4G7w83kItqZkREB1D/aUXmaRngzhP/gIcVBEdJBK6m gcxeelWoc9tFWdykr/rl3we8l1JN9Qj3VCUBdl2vb46mE9/ccTcw1Hunp2gkGYyueC76fKpK pa+mfrRk192SemImGSw8LbPgZ+OjEeKoCsasUY6pMJmxNpc8otHY+n6J7elsjVxrMGdkPVBH mhEAMhy9bKHpRp4ysz4sl4Xq8IHekZ5OTuuKImZZ8DyxPIVMzWISfmS0617tzKZ/+juXRx33 aE1QjtJUeNgMXpJW3inyPxQqToAACIDA5SXA/V+oNmaL9KQtrjeN9KnSdmCqq+cHYwZcqK0i l5qeMcfX3wZDtqOIMe138KFX+n86A7n/4tSbFeYbpWftpssANLpZ0EB2PRup79iOBlc8GpmJ b1wDOSjfKEATnuN6/6QpS3fssjyr7/h1oCS5J5Xfe46xFPdqOqjY35m8P89rbAbFML1qGaY3 7ftegd7HkiwfNmU3QWeLFRQX5dU0kHmhHlW0rpeLn1eL8GfzoYpRT/+M6x1jcqY2OGYjYOpQ TCUWUyl2dkcj4Y6KTkdmDZYkA2s2/Gx80Q1o0nVP7kXKo+/6sveiK0+f0jowmvqtO1e8MnzH X3l3H+vOH+otVpXo84q/wqVyqT4tPYshIe/UvZZXUv6pu0efCfjxBmaad9LKO0X+63TgFwRA AASuAAFbb/oNEa4rRR0714KOy4xN+42t/yMNvnEju8j70xjI1rFWluufrN10GYBGNwu23Y5n bb7y9tDK6IpHEzLxxeiC+l71a+536MDmelB+9bDDQCzQ2uacz3EqDYDxNdrqWcfHxJdSfi8Y zpLnjyMOddpynu796VT1iH98OGa6fIxMuBRNAAYyrV8p05rRSrXi/h6UaW0n9cZEjDJGY00+ WzfrPcg7oOt2thD/B20ga0/XURUdSzuvOJLSOwt+Nj7eIFiBkq57d7IKcmYKgBXBedRrV2SB nETsHMbMavjulE1xC3ihfNk0BnTpqCdPq/7efkHvRYfWJOtpamlmT1hekxnIqfmx9edpG78o kFbeKfI/KmCcAwEQAIFLSsDWm6SYb5TI50aM7kR6VZn0p1qD+ViZmot10Bg3g6hn1ilH1+9T izF1ANb4jPKRMQze3uNr65je4TvPZGo9HC3jC+pdjmdtvnJejvhZPPpwXAPT3B+UbxRg3PXa PWsU5sh5bWiklGbW7Y0GoVx8tNz618Q3qYGc0hC3nGfw/vROZW2XnKmRLpiL3FllyCk4g1Cn Gb/xBK6mgcynWNMU58Q1A/EMvav9k7rP419hN34tAl9Dm9+3bvptVFQxMUcYSQbjuPHbeKY7 SlOpmHscFaGWgFccSemdBT8bH28QtDS8py/6uncna2xCbvxtUDM/6uzqNewkW0zHjV3HHtx6 wTZ82c0dmqo0rEjL5MVde4cu7tpR6Bp35uVIjeU5mYGcmh8x11OshdhK7LjqHtOapBfht9zK G52/SdcdGHAaBEAABC4tAVsv0ppLtsXQNAk+Ja/AdsZTVsZvrWnbLjVSXQ5tUUiSkJNG438i hcEzXvzTpJQ/y9Lh1I3sPT5Dj+mw0aPoNPKsZykGw2Y6Cw/T5itvDx3x82SMjo2el4K3esTc H5QvGF7wOpti757WbKfh8zSOgo78MfKklN8LxMEyMoLRSct5ivdn5H+m4Bq1VkvvmKPfJH06 Tt6rfO1qGsiU42YNJlWwcVMQ1PqP+v4OuZ8vRW6FMyw85PQrYqq2Gplzfnp2BE9V8tnNsuwo L8o0TbZ73JRFXbmNwo0v4BPE7xRsvAvWkVH0Ok4VmrknWNEFo2JekBMdXs2Cn4nPYWSa6+60 KWcZ2ljLbIfXuar8PD2irQf2y7LFvWQH0z7m/7Yyp/Lr2AaBNiOQRe2oZD281r3LPbl75WyY zpZ2jmHKdJwjFia44UVKyzE7H3c4Eb+gF0hHZ1SvY98jsxckE8bIO0X+s+BwCAIgAAKXngAZ BXaHB1XXhzsfNYPeSUuWadvEre0y8+Krr45+qS0P76ebsY6iArerf61vjGHH7ta+Wm9JctDW DZ0nZWZsq+vc4IsKbPz4I0KZ6JTZIWK0pCkqEH2P39Czo+giwo9Nj3lxDo1OM6OOb6FkDTeu 71gDmd8bJafR89Tss5hOe/2sud+Rdud1Jr+IepaMw5qZoUlTrF1GpBZk9GviSym/9xiTJZ8y HjmD94c76aq41vabJQZjDFgEmFz1f6+sgSxP/GsulYHaet6TfXqx+z3lFa8ud+5ZL9LKiC1F 9VSqEqQdHBmDYlhpJ/Wu2nWgw/uj1u3oc7EG8oTxT1z4e13yFEj7RZPjrfKmZbRFe7EpZ1ze NXVdfWk9rLnHZyCT4cjvpeP6gV1TkaFpM/6wOqEGdhp+vZMOi4+2CWrQPnLMgO36rgtZVPvM seuWnb9zolRtyR6Vn+5xS1Z2/fspZx5EzRSwIY1zxA1kVUaKKl7WKHlbXbAZCP7GdRQTm8Lv lbNRY9M3jrniyvH0+TeUYkJ+NM1avxve780t2p7qdMie8q5C+2v7r/u3GZld/o+Ta7gXBEAA BH74BHzbZFL7s7VfH87SGfnBaD0u+2bUCZFxe7GOWE+q6u4dl741wmccdQb0Ll+9711LMJAn jH/SXOw974z0p7rtwCU5a7Q9o0938nQse0+wDeeDPJl7e6S/dmWvSwM6u2wLU5X+DdrJ4oTa RtWP8bInWw3egVCUrZPRIj9mUCldzruf5ldqA10I2g6VdGTvQ56jfbJyPY/iLD0e6ofmnqd8 IaEaBGqxrbgyXtqNE1c1qOALj64rz9TG4RSXiQxgpbtTGoY6m531pstBRl1/Sltf8llkU8pv dFfeGUMe3ZW+O0wz6aukJ0frjDRoFBicGPf9sZ0ZQx1N6Z1eB5HKHNIDe8d1NoOCyhbHP8xB /E1B4OoayATn9FA7Kko2UMX6VuReyUPGdjqHfinV79bj5FLpedlVlVjoS9OMDuy0o1gDWY0U hp5PF3+KMhK4hSqnwOh2WPao9NA5ttUOd7SU9vmoBnMifsw7uC9uPcroui6i9+NLa6jvxc0o CFBO+tdOsfazzpBb/6weNTZlgnp0Izv5rYdKxcGsM35pvUSr81Flb1b5p9I5Kb/ekd0L0JeP Jt2aTUG2+GQOV/5OmP9JeYXrIAACIHC5CNA+x2yULr7+FTKzWXHv1kEdtVHPp1HqWwcOHY70 tfK+7iRNMJCniH/sPKXRQzuVXLdP6X6D+/n223qHiXTPZ2g6fMW3P7R9bueYUmJmVA3PZx4O ndJaA1mdH3Z0GMerobbWhunPU9tB4tIdlHzq47rOR8J7T0qRZcYfZ0AW3b5THBchf2TcLE4v cebPlO9PIK8i49Z5k9K7thENB4bAlTaQFYU+7ZcW5yo+T+sz677eL8POd9Cjjbv5NKHMnb3E tZE2AOpRo56neqNOX9rH7empN5Itu3aUO8pIsc9Tj9FU8fOQko9bZv1roALSL6TjN8e32kmx h6//pc/QfreRVh4JPCY/n/MqloZ7leF6dMf1jL4egahzGO65VPJnNgpyr0rTv1yiR4SV5lTv iUMxCLDPP6jExt050GuZaT9hs86Y99Dm5SkbmTayzTT/qMGalB9No94LzPQw5WY9L/eoJzuE 3pG/Quev43pc/hsuOAABEACBK0Kge0R7rYY6ZHWbmpVbD9XMvFANHKLTYbPHVP2d341YrhR6 anSC74P7pEmjpcOBCbuEKMFApmCmit8lV+R5ch7lMFJNuxVow/X5nSe8l3cYeJePYJrnaHDl CY1GB7wcF2nAJjjzbBg27UOskAV2stg6HHL0j9RvefpA2k5tLbvyFWKmXdOIPdeV9T2F6sjh qON6ftc/A0+tG48KJ3uHRnJJ4eo2/EZ0lm0JOZX8NHstbSeH2hc57jPp+8NHkNWgiGbo/81I NbKc/PbFSXi1r/1IJZ+g4vPtuXj2dVdcW10T4tuBENeXxer1JSF+PAaa74UYUDjix0tiST07 5Wfw1SfiWuYjL5S9dl/k1xPCnHH8U4o/98fH5jcDiQfn52JA+aA+S8vLYmmc8jN8LN3f789E 49OGOLt+Q+Tep2bi/Ew8+7+uOB9Q2e1T3CvL4vU/vSGWE4qM+H4g2l82xWDpDfH2+qqN+9sz 8eSoI5b+5B2R+YOkQOxj0x5NzI/eu7Ove0Ksrnjvr2K/PIN3cNr04HkQAAEQuOwEBt9Q+/ON EGvUVgzOB17bN3b9S22Xar+WlqjdnEGT0/73D8Wbf18l9DnR6ldEJinMGcf/KvP8/OxMUMtP +ga1e68lJfRVSnbBcZH+cnbWFT1K/NLSNbHy2mqyznPBIk0S/CTvz/nXZ0IsU3qvU4ykc54r 3VPpfwNSAK+viNXV5UlEwTOMAAxkBmOxDs/FwU9WxO1PlVRZUX9RE+++tlgSLrY04LfY+QPp QAAEQAAEQOACCJy3xUcrb4pPVNDrJdFrFwTMhQvgjCBB4BITgIG8AJl79uUjUWufi5U/XBVL NBK2dH0gDn5+W3zy1Ui49R2q4O+ignfkFfg5wOA0CIAACIAACFxaAjQD6rdV0aKJe2urqzSD byCWB8fi/q37oj1KMznHFK1/pFlW+IAACIDAGARgII8B60Ju/f5YvPd7b4hHzsAzova8KbKv cJqrU5RFvAB+i5grkAkEQAAEQAAELpTA4He0DO3GcBlaZETrRXF6tCVev6ilTpGR4iQIgMBl IAADee65OBDVf3hHfPhvur9TC5QRhQf3xd2/vSVeV2sM8HEQAD8HGJwGARAAARAAgctLQI0W X3tD/Gswhes5Ufr5fZHfeFsswzgO0sH/IAACKQjAQE4B6ZXcQovrB+RwQDl4WiIPFeqLzxgE wG8MWLgVBEAABEAABC4HATW1WulPpD2N9KfLkS6kAgRAYH4EYCDPjz1iBgEQAAEQAAEQAAEQ AAEQAAEQWCACMJAXKDMgCgiAAAiAAAiAAAiAAAiAAAiAwPwIwECeH3vEDAIgAAIgAAIgAAIg AAIgAAIgsEAEYCAvUGZAFBAAARAAARAAARAAARAAARAAgfkRgIE8P/aIGQRAAARAAARAAARA AARAAARAYIEIwEBeoMyAKCAAAiAAAiAAAiAAAiAAAiAAAvMjAAN5fuwRMwiAAAiAAAiAAAiA AAiAAAiAwAIRgIG8QJkBUUAABEAABEAABEAABEAABEAABOZHAAby/NgjZhAAARAAARAAARAA ARAAARAAgQUiAAN5gTIDooAACIAACIAACIAACIAACIAACMyPAAzk+bFHzCAAAiAAAiAAAiAA AiAAAiAAAgtEAAbyAmUGRAEBEAABEAABEAABEAABEAABEJgfARjI82OPmEEABEAABEAABEAA BEAABEAABBaIAAzkBcoMiAICIAACIAACIAACIAACIAACIDA/AjCQ58ceMYMACIAACIAACIAA CIAACIAACCwQARjIC5QZEAUEQAAEQAAEQAAEQAAEQAAEQGB+BGAgz489YgYBEAABEAABEAAB EAABEAABEFggAjCQFygzIAoIgAAIgAAIgAAIgAAIgAAIgMD8CMBAnh97xAwCIAACIAACIAAC IAACIAACILBABGAgL1BmQBQQAAEQAAEQAAEQAAEQAAEQAIH5EYCBPD/2iBkEQAAEQAAEQAAE QAAEQAAEQGCBCMBAXqDMgCggAAIgAAIgAAIgAAIgAAIgAALzIwADeX7sETMIgAAIgAAIgAAI gAAIgAAIgMACEYCBi5A5eAAAAIxJREFUvECZAVFAAARAAARAAARAAARAAARAAATmRwAG8vzY I2YQAAEQAAEQAAEQAAEQAAEQAIEFIgADeYEyA6KAAAiAAAiAAAiAAAiAAAiAAAjMjwAM5Pmx R8wgAAIgAAIgAAIgAAIgAAIgAAILRAAG8gJlBkQBARAAARAAARAAARAAARAAARCYH4H/B0Tg k6ScqDzjAAAAAElFTkSuQmCCUEsDBAoAAAAAAAAAIQCpUIHbiX4AAIl+AAAUAAAAcHB0L21l ZGlhL2ltYWdlMy5wbmeJUE5HDQoaCgAAAA1JSERSAAADngAAAQoIBgAAAHrnipsAAAwYaUND UElDQyBQcm9maWxlAABIiZVXB1RTSReeV1IISSiBCEgJvQnSq/QuCEgHGyEJEEoMgaBiRxYV XLuIYEVXQGxrAWRREVEsiIC9LqiorKyLBRsq/yQBdN2/nP+eM2++d+feO9+9b+adGQAU7NhC YQaqCECmIEcUEeDNiotPYJF6AALIgA7UgS2bky30Cg8PAVBG+7/Lu5vQGso1C0msf47/V1Hi 8rI5ACDhECdxszmZEB8DANfgCEU5ABA6oF5/To5Qgt9CrCKCBAEgkiU4RYY1JThJhq2kNlER PhD7AkCmstmiFADokvisXE4KjEMXQmwl4PIFEO+E2J2TyuZC3A3xhMzM2RArUCE2SfouTsrf YiaNxWSzU8awLBepkH352cIM9rz/sxz/WzIzxKNz6MFGTRUFRkhyhnWrSp8dLMGQO9IoSAoN g1gZ4gt8rtRegu+migOjR+z7Odk+sGaACQAKuGzfYIhhLVGmOD3aawTbsEVSX2iPhvJzgqJG cJJodsRIfDRXkBEaMhJnRSovaBRv52X7RY7aJPP9gyCGKw09lpcaFSvjibbk8mNCIaZD3JGd Hhk84vswL9UndNRGJI6QcDaA+G2yyD9CZoOpZWaP5oVZctjSudQg9sxJjQqU+WJxvOy4kFEO XJ6vn4wDxuUJoke4YXB1eUeM+BYKM8JH7LHtvIyACFmdscPZuZGjvl05cIHJ6oA9SmNPDpfx x94Jc8KjZNxwHIQAH+ALWEAMWxKYDdIAv72/rh++yUb8ARuIQArgAYsRzahHrHREAJ+RIA/8 CREPZI/5eUtHeSAX6r+MaWVPC5AsHc2VeqSDpxBn4hq4O+6Kh8CnJ2w2uBPuPOrHUhidlehH 9CUGEv2JpmM8OJB1BmwiwP83umDY82B2Ei6C0Ry+xSM8JXQSHhFuELoJd0AMeCKNMmI1i58v +oE5C0wB3TCa/0h2STBm36gNbgRZ2+PeuBvkD7njTFwDWOB2MBMv3APmZg+13zMUj3H7Vssf 55Ow/j6fET3djG4/wiJp7Mv4jFn9GMXnuxpxYR/8oyW2AjuKtWJnsItYI1YHWNhprB5rw05K 8NhKeCJdCaOzRUi5pcM4/FEbqxqrPqvP/5idPcJAJP3eIIc3N0eyIXxmC+eJ+CmpOSwv+Efm sYIEHMsJLBsra0cAJP932e/jDVP630aYl77pspoAcC6CypRvOrY+ACeeAsB4902n/xpur7UA nOzgiEW5Mh0ueRAABSjAnaEOtIE+MIE52QAH4Ao8gR+YDMJAFIgHM2HVU0EmZD0HLABLQSEo BmvBJlAGdoDdoAocAEdAHWgEZ8B5cBl0gBvgHlwbveAFGADvwBCCICSEhjAQdUQHMUTMERvE CXFH/JAQJAKJRxKRFESAiJEFyDKkGFmPlCG7kGrkV+QEcga5iHQid5AepA95jXxCMZSKqqBa qBE6EXVCvdBgNAqdgaagWWgeWoCuRkvRCnQ/WoueQS+jN9Bu9AU6iAFMHmNiupgF5oT5YGFY ApaMibBFWBFWglVgB7EG+K2vYd1YP/YRJ+IMnIVbwPUZiEfjHDwLX4SvwsvwKrwWb8Gv4T34 AP6VQCNoEswJLoQgQhwhhTCHUEgoIewlHCecg3unl/COSCQyicZER7g344lpxPnEVcRtxEPE JmIn8TFxkEQiqZPMSW6kMBKblEMqJG0h7SedJnWRekkfyPJkHbIN2Z+cQBaQ88kl5H3kU+Qu 8jPykJyinKGci1yYHFduntwauT1yDXJX5XrlhihKFGOKGyWKkkZZSimlHKSco9ynvJGXl9eT d5afKs+XXyJfKn9Y/oJ8j/xHqjLVjOpDnU4VU1dTK6lN1DvUNzQazYjmSUug5dBW06ppZ2kP aR/oDLolPYjOpS+ml9Nr6V30lwpyCoYKXgozFfIUShSOKlxV6FeUUzRS9FFkKy5SLFc8oXhL cVCJoWStFKaUqbRKaZ/SRaXnyiRlI2U/Za5ygfJu5bPKjxkYQ5/hw+AwljH2MM4xelWIKsYq QSppKsUqB1TaVQZUlVXtVGNU56qWq55U7WZiTCNmEDODuYZ5hHmT+Wmc1jivcbxxK8cdHNc1 7r3aeDVPNZ5akdohtRtqn9RZ6n7q6err1OvUH2jgGmYaUzXmaGzXOKfRP15lvOt4zvii8UfG 39VENc00IzTna+7WbNMc1NLWCtASam3ROqvVr83U9tRO096ofUq7T4eh467D19moc1rnD5Yq y4uVwSpltbAGdDV1A3XFurt023WH9Iz1ovXy9Q7pPdCn6DvpJ+tv1G/WHzDQMZhisMCgxuCu oZyhk2Gq4WbDVsP3RsZGsUbLjeqMnhurGQcZ5xnXGN83oZl4mGSZVJhcNyWaOpmmm24z7TBD zezNUs3Kza6ao+YO5nzzbeadEwgTnCcIJlRMuGVBtfCyyLWoseixZFqGWOZb1lm+nGgwMWHi uomtE79a2VtlWO2xumetbD3ZOt+6wfq1jZkNx6bc5rotzdbfdrFtve0rO3M7nt12u9v2DPsp 9svtm+2/ODg6iBwOOvQ5GjgmOm51vOWk4hTutMrpgjPB2dt5sXOj80cXB5cclyMuf7lauKa7 7nN9Psl4Em/SnkmP3fTc2G673LrdWe6J7jvduz10PdgeFR6PPPU9uZ57PZ95mXqlee33eult 5S3yPu793sfFZ6FPky/mG+Bb5Nvup+wX7Vfm99Bfzz/Fv8Z/IMA+YH5AUyAhMDhwXeCtIK0g TlB10MBkx8kLJ7cEU4Mjg8uCH4WYhYhCGqagUyZP2TDlfqhhqCC0LgyEBYVtCHsQbhyeFf7b VOLU8KnlU59GWEcsiGiNZETOitwX+S7KO2pN1L1ok2hxdHOMQsz0mOqY97G+setju+Mmxi2M uxyvEc+Pr08gJcQk7E0YnOY3bdO03un20wun35xhPGPujIszNWZmzDw5S2EWe9bRREJibOK+ xM/sMHYFezApKGlr0gDHh7OZ84Lryd3I7eO58dbzniW7Ja9Pfp7ilrIhpS/VI7UktZ/vwy/j v0oLTNuR9j49LL0yfTgjNuNQJjkzMfOEQFmQLmiZrT177uxOobmwUNid5ZK1KWtAFCzam41k z8iuz1GBR502sYn4J3FPrntuee6HOTFzjs5VmiuY2zbPbN7Kec/y/PN+mY/P58xvXqC7YOmC noVeC3ctQhYlLWperL+4YHHvkoAlVUspS9OXXsm3yl+f/3ZZ7LKGAq2CJQWPfwr4qaaQXigq vLXcdfmOFfgK/or2lbYrt6z8WsQtulRsVVxS/HkVZ9Wln61/Lv15eHXy6vY1Dmu2ryWuFay9 uc5jXdV6pfV56x9vmLKhdiNrY9HGt5tmbbpYYleyYzNls3hzd2lIaf0Wgy1rt3wuSy27Ue5d fmir5taVW99v427r2u65/eAOrR3FOz7t5O+8vStgV22FUUXJbuLu3N1P98Tsaf3F6ZfqvRp7 i/d+qRRUdldFVLVUO1ZX79Pct6YGrRHX9O2fvr/jgO+B+oMWB3cdYh4qPgwOiw//8WvirzeP BB9pPup09OAxw2NbjzOOF9UitfNqB+pS67rr4+s7T0w+0dzg2nD8N8vfKht1G8tPqp5cc4py quDU8Om804NNwqb+MylnHjfPar53Nu7s9ZapLe3ngs9dOO9//myrV+vpC24XGi+6XDxxyelS 3WWHy7Vt9m3Hr9hfOd7u0F571fFqfYdzR0PnpM5TXR5dZ675Xjt/Pej65RuhNzpvRt+8fWv6 re7b3NvP72TceXU39+7QvSX3CfeLHig+KHmo+bDid9PfD3U7dJ/s8e1pexT56N5jzuMXT7Kf fO4teEp7WvJM51n1c5vnjX3+fR1/TPuj94XwxVB/4Z9Kf259afLy2F+ef7UNxA30vhK9Gn69 6o36m8q3dm+bB8MHH77LfDf0vuiD+oeqj04fWz/Ffno2NOcz6XPpF9MvDV+Dv94fzhweFrJF bOlRAIMNTU4G4HUlALR4eHaA9zgKXXb/kgoiuzNKEfhPWHZHk4oDAJWeAEQvASAEnlG2w2YI MRX2kuN3lCdAbW3H2ohkJ9vayGJR4S2G8GF4+I0WAKQGAL6IhoeHtg0Pf9kDyd4BoClLdu+T CBGe8XdKzzlX9JeDH+VfyFFsPcDlDFIAAAAJcEhZcwAAFiUAABYlAUlSJPAAAAGdaVRYdFhN TDpjb20uYWRvYmUueG1wAAAAAAA8eDp4bXBtZXRhIHhtbG5zOng9ImFkb2JlOm5zOm1ldGEv IiB4OnhtcHRrPSJYTVAgQ29yZSA1LjQuMCI+CiAgIDxyZGY6UkRGIHhtbG5zOnJkZj0iaHR0 cDovL3d3dy53My5vcmcvMTk5OS8wMi8yMi1yZGYtc3ludGF4LW5zIyI+CiAgICAgIDxyZGY6 RGVzY3JpcHRpb24gcmRmOmFib3V0PSIiCiAgICAgICAgICAgIHhtbG5zOmV4aWY9Imh0dHA6 Ly9ucy5hZG9iZS5jb20vZXhpZi8xLjAvIj4KICAgICAgICAgPGV4aWY6UGl4ZWxYRGltZW5z aW9uPjkyNjwvZXhpZjpQaXhlbFhEaW1lbnNpb24+CiAgICAgICAgIDxleGlmOlBpeGVsWURp bWVuc2lvbj4yNjY8L2V4aWY6UGl4ZWxZRGltZW5zaW9uPgogICAgICA8L3JkZjpEZXNjcmlw dGlvbj4KICAgPC9yZGY6UkRGPgo8L3g6eG1wbWV0YT4KtOi8mwAAABxpRE9UAAAAAgAAAAAA AACFAAAAKAAAAIUAAACFAAAyZx5NShkAADIzSURBVHgB7J1faCNXnu9/gSzY0AtuyIMNGbg9 ZGDcbMBqdh4ycB+mL1mwQh6i4MDaTGCv4nm4mVlo1HfA49x5aJQ70ONkoMfZBUfehx6khgly oBd3oBd7HhbcF3qQGjrIgQ72Qgdk6IAE3aCCbjj3V1KdqlOlKqlKpZKqpK/AVqnq/P2cU1Xn e37nz0uCP4QPCIAACIAACIAACIAACIAACIAACERE4CUIz4jIIlgQAAEQAAEQAAEQAAEQAAEQ AIE2AQhPVAQQAAEQAAEQAAEQAAEQAAEQAIFICUB4RooXgYMACIAACIAACIAACIAACIAACEB4 og6AAAiAAAiAAAiAAAiAAAiAAAhESgDCM1K8CBwEQAAEQAAEQAAEQAAEQAAEQADCE3UABEAA BEAABEAABEAABEAABEAgUgIQnpHiReAgAAIgAAIgAAIgAAIgAAIgAAIQnqgDIAACIAACIAAC IAACIAACIAACkRKA8IwULwIHARAAARAAARAAARAAARAAARCA8EQdAAEQAAEQAAEQAAEQAAEQ AAEQiJQAhGekeBE4CIAACIAACIAACIAACIAACIAAhCfqAAiAAAiAAAiAAAiAAAiAAAiAQKQE IDwjxYvAQQAEQAAEQAAEQAAEQAAEQAAEIDxRB0AABEAABEAABEAABEAABEAABCIlAOEZKV4E DgIgAAIgAAIgAAIgAAIgAAIgAOGJOgACIAACIAACIAACIAACIAACIBApAQjPSPEicBAAARAA ARAAARAAARAAARAAAQhP1AEQAAEQAAEQAAEQAAEQAAEQAIFICUB4RooXgYMACIAACIAACIAA CIAACIAACEB4og6AAAiAAAiAAAiAAAiAAAiAAAhESgDCM1K8CBwEQAAEQAAEQAAEQAAEQAAE QADCE3UABEAABEAABEAABEAABEAABEAgUgIQnpHiReAgAAIgAAIgAAIgAAIgAAIgAAIQnqgD IAACIAACIAACIAACIAACIAACkRKA8IwULwIHARAAARAAARAAARAAARAAARCA8EQdAAEQAAEQ AAEQAAEQAAEQAAEQiJQAhGekeBE4CIAACIAACIAACIAACIAACIAAhCfqAAiAAAiAAAiAAAiA AAiAAAiAQKQEIDwjxYvAQQAEQAAEQAAEQAAEQAAEQAAEIDxRB0AABEAABEAABEAABEAABEAA BCIlAOEZKV4EDgIgAAIgAAIgAAIgAAIgAAIgAOGJOmAReHZMpX/do9ZShrJvLlrncTQaAuA/ Gs6IBQRAAARAAAQmiID2zSF99kWVUisf0uUfz0xQzpKRFfD3X04Qnv5ZTbzL41sf0MXVXc5n lk6eF+jCyxOf5VhlEPxjVRxIDAiAAAiAAAgkgIBGpfdmae0LTup6mcROJgFpnqQkgn+Q0oTw DEJrwt0e/4mF5/u68MxQpVWmFDrNRlri4D9S3IgMBEAABEAABCaAgCJ8lovUurNKaL6NsljB PwhtCM8gtCbcrSp8aiw8F/HkGmmJg/9IcSMyEAABEAABEJgAAhA+4y1E8A/CH8IzCK0Jd6sK H1g8R1/Y4D965ogRBEAABEAABJJNAMJnvOUH/kH4Q3gGoTXhbk95jucPjTmeNZ7juYg5niMt cfAfKW5EBgIgAAIgAAITQaD03kudOZ4rRRJ/Xp2IPCUpE+Dvv7QgPP2zmiCXTdr7/RYd1TWa mbHG0549+Jh2vzKyuZKjzdesa5qm0aX3P6LVpbkJ4jCurID/uMgjXhAAARAAARBILIHmMX1y bZfqPIvTar5pVP3dJ3THyFRmY5PMfQm47abRAq39NkcpNN/CFzv4h2YI4RkaYQID+KZELy2u eSd8KUX0oNp9HZPWu5kMcgb8B6EGPyAAAiAAAiAw1QSO//QuLwK558kgtURUfdB9OXOzRuWf m3K02wHO+CIA/r4w9XQE4dkTz4RefMEWtz+wxbNBtpXPbBbP5U3K8wOsJRFoxA+7q6bFs/nX Eq2tF2nmR5ZVVDrt/uYet1fXqPjpKskOt6n2PwT+3YxxBgRAAARAAARAYKIJNKts8SxSwzJ3 cnbtFs/0Rp5SVuuNNO08rf2GLZ6vdMhUP79KH315SjPnfJB6ptGFd/K0tc4GCeMz1f6HwF9y nNpvgQ8IGAROSlnBNwL/ZUXteW8stZ2M4VZ37+cvLSotK8xp92+RsI6C8Ld84QgEQAAEQAAE QGCaCRRXjHbYSrEPhpYoLvtpsylulgvCar5Nu393vP75u/ufprM0TZlFXnsTqN2UwjNjE4lu viyRpDycegpQu5iddv9uTIPwd/OPcyAAAiAAAiAAAtNGgMWgFJ7LRUUkunMoS7c922xK284h ZqfdfzfVYPy7/U/XGQy1nVpbd3fG1e08/Ozj2fy+SdoLXqDo5d7Dbdtuzs3TnGNYx7T7d5ZA UP5O//gNAiAAAiAAAiAwbQQCbufB7bZmU2+/8QJFfXYv0Ntvc6/M291Nu/+u6hWQf5f/6ToB 4Tld5d0zt6rwwT6ePVFFchH8I8GKQEEABEAABEBggglA+Iy3cME/CH8IzyC0Jtytuo/kCe/j eaFPT9iE4xh59sB/5MgRIQiAAAiAAAgknIAifNbLJHYyCc9P0pIP/kFKDMIzCK1Jd6udUumP JWotZSj7JpbdHnlxg//IkSNCEAABEAABEEg6Ae3bQ/rsVpVSKx/S5R/3nv6U9LzGMf3g779U IDz9s4JLEAABEAABEAABEAABEAABEACBAQhAeA4ADV5AAARAAARAAARAAARAAARAAAT8E4Dw 9M8KLkEABEAABEAABEAABEAABEAABAYgAOE5ADR4AQEQAAEQAAEQAAEQAAEQAAEQ8E8AwtM/ K7gEARAAARAAARAAARAAARAAARAYgACE5wDQ4AUEQAAEQAAEQAAEQAAEQAAEQMA/AQhP/6zg EgRAAARAAARAAARAAARAAARAYAACEJ4DQIMXEAABEAABEAABEAABEAABEAAB/wQgPP2zgksQ AAEQAAEQAAEQAAEQAAEQAIEBCEB4DgANXkAgEgIvNGo+02ju3BzRy5HEgEBBAARAAARAAARA AASGSUDj9ptGNDc3M8xQJzIsCM+JLFZkKokEtK93afb1D4iu7JP4NJ3ELCDNIAACIAACIAAC IDBVBI4/f4su/uIO5fZOaOudC1OV96CZhfAMSgzuQSAiAto3JZpdXCNaLlLrziqh3ywi0AgW BEAABEAABEAABIZE4PhPH9DF93cps1Oj8vrikEKdzGAgPCezXJGrBBKA8ExgoSHJIAACIAAC IAACU00AwtN/8UN4+mcFlyAQKQEIz0jxInAQAAEQAAEQAAEQGDoBCE//SCE8/bOCSxCIlACE Z6R4ETgIgAAIgAAIgAAIDJ0AhKd/pBCe/lnF3+WzYyr96x61ljKUfRNjzEdeYCH5Q3iOvMQQ IQiAAAiAAAiMnYD2zSF99kWVUisf0uUfY4WHURdIWP4Qnv5LDMLTP6vYuzy+xZObV3c5nVk6 eV6gC9iSY6RlFpY/hOdIiwuRgQAIgAAIgEAMCGhUem+W1r7gpKyXSexkYpCmaUpCeP4Qnv7r C4Snf1axdykrPlGGKq0ypdBpNtIyC8sfwnOkxYXIQAAEQAAEQCAGBBThg1Xtx1Ae4fnL9h9W te1ffBCe/RklxoWs+LrwrLHwXITwHGnZheUP4TnS4kJkIAACIAACIBADAuGFTwwykeAkhOcv 238Qnv2rAYRnf0aJcSErPiye4ymysPwhPMdTbogVBEAABEAABMZHILzwGV/aJyHm8Pxl+w/C s399gPDszygxLk55jucPjTmeNZ7juYg5niMtu7D8ITxHWlyIDARAAARAAARiQaD03kudOZ4r RRJ/Xo1FmqYpEWH5Q3j6ry0Qnv5Zxchlk/Z+v0VHdY1mZqzxtGcPPqbdr4xkruRo8zXrmqZp dOn9j2h1aS5G+UhqUqLhD+GZ1PqAdIMACIAACICADwLNY/rk2i7VaYbbb9K9RtXffUJ3jJ+Z jU0y9yXgtptGC7T22xyl0HyTwAb/jog/hKf/IoHw9M8qPi6/KdFLi2ve6VlKET2odl/HpPVu JoOciYg/hOcghQE/IAACIAACIJAMAsd/epcuvr/nmdjUElH1QfflzM0alX9uytFuBzjji0BU /CE8feFvO4Lw9M8qPi5fsMXtD2zxbBD3mVkfm8VzeZPy/ABrycsa8cPuqmnxbP61RGvrRZr5 kRqCdOz85h63V9eo+OkqyQ63qfY/BP5OwvpvCE83KjgHAiAAAiAAAhNCoFlli2eRGpa5kzNm t3imN/KUslpvpGnnae03bPF8pcOg+vlV+ujLU5o554PJM40uvJOnrXU2SBifqfY/BP6So/oN 4anS6HMs8JkYAielrODi5r+sqD3vna3aTsZwq7v385cWlZYV5rT7t0hYR0H4W76so9ZxsVMW y0WhoLYc4AgEQAAEQAAEQGDiCBRXjHbYSrFP3lqiuOynzaa4WS4obYpp9++O1z9/d/+1m532 Ny8u5O4AZ00CZB7hIPEEZMXnVW1tItEtY5ZIUh5OPQWoXcxOu383pkH4u/mH8HSjgnMgAAIg AAIgMMkEWAxK4emj47ks3fZssyltO4eYnXb/3TUpGP9u/0LI9h+Epxsd+zkMte1jEU7SZWnq 97uPZ/P7JmkveIGil3sPt227OTdPc45hHdPu31k3gvJ3+sdQWycR/AYBEAABEACBSScQcDsP brc1m3r7jRco6rN7gd5+m3tl3u5u2v13VaeA/Lv8E8n2H7ZTcYHjOAXh6QCS5J+y4mMfz/GU Ylj+EJ7jKTfECgIgAAIgAALjIxBe+Iwv7ZMQc3j+sv0H4dm/PkB49meUGBfqPpInvI/nhT49 YYnJWEISGpY/hGdCChrJBAEQAAEQAIGhEVCEz3qZxE5maCEjID8EwvOH8PTDueMGwtM/q/i7 1E6p9McStZYylH0Ty26PvMBC8ofwHHmJIUIQAAEQAAEQGDsB7dtD+uxWlVIrH9LlH/ee/jT2 xE5gAsLyh/D0XykgPP2zgksQiJQAhGekeBE4CIAACIAACIAACAydAISnf6QQnv5ZwSUIREoA wjNSvAgcBEAABEAABEAABIZOAMLTP1IIT/+s4BIEIiUA4RkpXgQOAiAAAiAAAiAAAkMnAOHp HymEp39WcAkCkRKA8IwULwIHARAAARAAARAAgaETgPD0jxTC0z8ruASBSAlAeEaKF4GDAAiA AAiAAAiAwNAJQHj6Rwrh6Z8VXIJApAQgPCPFi8BBAARAAARAAARAYOgEIDz9I4Xw9M8KLkEg UgLa17s0+/oHREsFalWzhAXVI8WNwEEABEAABEAABEAgNIHjz9+ii7+4Q+kbNdr/FbYz7AUU wrMXHVwDgVES+L5Kpa+OieYWafXt1ChjRlwgAAIgAAIgAAIgAAIDEGg+OKQ7D89o/vU0XV6a GyCE6fEC4Tk9ZY2cggAIgAAIgAAIgAAIgAAIgMBYCEB4jgU7Ip1IAi80aj7TaO4c93a9PJE5 RKZAAARAAARAAARAYLIIaNx+03jA2RwmOUVdsBCeURNG+FNDwJyjeWWfxKfpqck3MgoCIAAC IAACIAACSSUg52jm9k5o650LSc1GItIN4ZmIYkIik0AAq9ImoZSQRhAAARAAARAAARCwCGBV WotF1EcQnlETRvhTQwDCc2qKGhkFgS4C2ndVOqrWiX6wyItLoMe8CxBOgAAIgEBMCUB4jq5g IDxHxxoxTTgBCM8JL2BkL1YEtG8Oqfgfp+Tcd2j2v/2UVt8c9XL2Gu2mZumDBzqiNFVa+5TC VKFY1RckBgRAAAS8CEB4epEZ/nkIz+EzRYhTSgDCc/CC174/o+Nva9RoEc3+7Xman79AF+Zn 6OzbU2q8fJ4WX5sfPHD4nEACqtBzZC/gPrhn3x5Ta2aBLrwaZgl8jUrvzdLaF520FB+2aPXv pkN5DoefowzxEwRAAARGSADCc4SwBT7xIfC0JorX86JwtxafNE1TSkLybx0XBd+6gpaLojUI t5DxDxLl2P08qYnt9VSHm87O42//8dhTigS0CTREYcVeTunrB65sDq5n7OW5UhANV5eDnawf FkR2JSOy69n2X3rJSFeA+691XDDSmBaVgW5amfaWKMj4KSUqT+X5yf4eHj+/nOJT//ymGO6m g0Dr+EBsXdsSB8ehHiTTASuCXIblX7uZbb8LMjuDtb/Dxh8BktgGSbFN2RQmrFbqVHyirDh5 PoUAxpzlsPzDCs+w8Y8ZX/DoH5XtwoRFZ3o5LVIu4rPwEC/z4IAj8PH8RGS7yicljpyKsnHk Uo5ZUYvwuXYin5+BhKfRWUQZUQtZxRrHFXFwd18c3KsN1vEUQXFFHaT5zBsCP19pjXH985V+ OJpQAi1RlB1y6+UJzWOcsxWefzjhGT7+ONMddtogPIdNNER4suITv8TD9b6HSMQUew3L32yE BWj4qrjDxq+GFf9j5UHNQiZ380g0FFFSf1gWvCGNKUwhPGNUoq2G2L+WNstGt1Ln9uq2BNZv b9qu01JB1EMKO1sELj/M+yfA/Wfes3jmuhDtf2os/GJa//rTgovJJaC8zwI8fyaXx6hzFp6/ fH8MZvEMH/+oiY0zPszxHOGw5n5RyTHmLDyp1irT4nRMEeqHZWTXw/IPO8czbPwjAzWMiJ5V 6a2/vUR3OKzUtQOq/J/LXaFqf/2MZn/yy/Z5Fp6U9Zgz1/z2HpVvlWlv75B4TdHOZ+ESrf3j Kq2tXCaeKtrzc/b1IZVLJbrzVaXtf2FhgRaWLlMmk6YLdMzhVmjuJ2v04TvGgjVnVSr9e4UX tZkl0lp87S1KL8k5qBrdu7VHtRc8V7UdK09anbtEq2+zHVf5tBfG+c8zmjXS1uKNqy+9vUop PZhnZ3T4ZZHjOKTKI87RwgVKv/MhXf2nyzT3shKIcXj6//ao9G9FKt8/7ZzhBW4WON9r62uU eTPlXHunO4ABzlh11fC8XKDWnawRl32+o+4ic7NG5Z93+DUfMO/7nbzb8q07fHZKe7cOSdPZ 6p8uvp3Tbv/NNC0XOS2r/vL9TYleWlzj4PiZ+5yfuS583eLqnOOy/pLL+pksa/2sXt68uNHb nbx6+5VXNDr+yx4Vuf7eMcpvgcs79bN36d13+J54WGZWTbq0+iFl/q57Dqr2/TEdfnVIR/95 SNXvNKrXO3fAwk/SlP3FLynz97Jeyvjs39oZ1+8v9qj81RGdtv3yXNef8Kq8//2ndL5ZoeK/ 3aH0p3fow595hBOKnz0tQX6ZZS09Bah/0ov+HTr/RhhHf6nS8fcNmpk5TwuvLdJP30jRHD87 Sn868nhOqKnAcfIJKM+8IM+f5Gc8JjkIz18+U1h4Unnd7/NbZj98/DKkqfgep+pF3HYCsscF Fk87l1H9Csvf7P0fsMczbPyj4jSMeFoP5dw6Elv3vUxh1nyu8iMXN88borhht7zxQ9tuaePf hUO7Nc5M//O6KF7pP7+0HSZb7GQKKjccfpRrolVxGWLqnD+ozge00sviTNSrcuindV7mKXfb kY8nFbFpzivsdt/xlxUHj2XKzZyHPrDqqow3JQ6eGME+OehiYPUit8S2o4zSNypmeloPt7vK T7eW+smBmaY+91+DGWd4SLc+rDu9pJTlknFOXmtfz4iy1zBv17LWeTjL28ye/aB+JHJ9y6/D V2UkA2kcbnWzcrDlTh3pvOvb5OXwI+ub/E475jwNjV9Xivyf6E673/pnxdEdhqzL9m9n/q0Q WqJrHrPJMi0y5rEMb9tXPbbCx1FyCMDiNd6yCs9fPg+sd1WQHIWPP0hsSXeLobYxKkFzjhLP 8YxyLlSMshyrpITlH1Z4ho0/VjD7JeZpxRpKu7QlTvwoC1uYDbG9LBt0ne/c9aI4uF8RlcOy yMv5Nkbjb+uecxJiXWw5G/3LWZG/sS3yVxyL4uhhKGKmdbwvcusZS1ytKItJsZgtXOHFbq7k rPy5zH9rL4zTXhTHJS4jzWleOEcdbpwpnVgEGgq/tvu02Lq5LypVnmd4u+Bo9KYtUWiFEOpI vqSzO/uisN7hn2XhrH9O9nJtQZS+VmQWHWGnvsxrt7d5USCrw0C9JliMbeoLBjFDKXxI5dsj 1TJNalm5Oa85Ow4M3mZ8jt8pRRjbwtM7LjayImMsbpQx65OP+aIu4jy9vim2bmyJ3Ioiho20 2BgZiajdsBjyuAGxeYPr/+EBL1CnsGP/RbfFTmzxZ0ThdkWcPK6LWvVIFDbsddIZ99D42WAG +yHLepD6144pRP47KeWGplHvveqNej69khXbtwdbtCQYGbgeFwFzjic/r/AZPYGw/OUzxfm8 85uTsPH7jWcS3GGoLb8dRv9p0t7vt+iorvHQHGsc4NmDj2n3KyM1KznafM26pmkaXXr/I1pd 6h5uNfr0Jz3GaPj7H2obTfzJKpUz+uSlBbqqJDp3rUA/XeJtVH6wQHOv8JC1V+b5/lAcKIen X16lH2Y+6ZxZzlPtz5u0eE5xwIen//EJ/fAfZAxZHr5eMIevy2E1HR9pKlZ3+d5ShhM+O6ZP 3rtIV+X96DJ8qvTeS53tM1yutcP9lodx/sgYxuk1dP7FMX3wNxdpV036yjbV/uVDWnxFP6kP xeRhlM0ZSr8th9pqtPeLWXr3846n9LV9YsuvYxiuRoe/X6P/8eu9jqN1Hn6643P4acdHz/+S X7ZUo/wrRVr4h4+JlrapVc3SXpq3FWFuhWqdzv/LQjud/DK3D19S8t11zYj59NYH9MNVJuPF 15FCmaa+7vXhqfdOmewMaf91h979Z70epWi7lG/XIU0JV3sxQ6k3L9MFR91SnJiHZnr7TpVQ hmXpvpfyVPkqx8OsrcqufcPpWnyrPRRdd+LKiPNR+rJK86k36PLfX9CdmR/twS7Npj5o/2aL He07ho5pX5do9nW9bhIVHwlafa19aP5r/nWXzv/Ew39E/MzIfRzIsh60/oXKP6fv7C8f08Ll j4yUZmn/4RaljaHQ+vDn3f91kX5pbK0z2DBuHxDgZDwEmvxuuLbL0zJmlPeTRtXffWLdrxv8 PpKp47abRgu09lu+x9F8k1QG/46Iv3ymuD5r1dRGFL8axcQfT4J6Tlwe5LYbjp51rmydXn51 +Jc8p38rVpfE5TlOCY6Iv2+LZ0Txxwmxr7Q8PrBZ9Mz6r9T59EZB1JzGSt6Uw7JWsjWv67oV +74ylNZcoOh5zbYya/mR5d521FLcLTuHe/YfWmPWBxeLpxmPGgfnO81DI/safxvKUFa2Fntn vy42TZbDXbCsYljbMjfZCmsOOU2LIlubO1banKg/b4myYXnO7FjDadt5V/LNL3oTh3oge6D9 PveCum/H9UgObQ4/ysSMv1d565GacerP+5zn6Bar/nC98GDUzgMvtlO7f9S2dh4cHonKfR6y /bhiWr3d+LYeynyTyOuWOGVhr3aY/K/FC3xlebjx9j3HEG/pQP828xKenxpsv+Ow9S9c/pV7 n4dVm0PMbYnmERmKBRyLBdrgJPpH7aZ9RIDzvZUyy91ozxnPYH0qBT7hCUTFXz6/3Z6Xaqqj il+NY9KPYfEcR9fCC7Z4/YEtng1ed0CJ32bxXN6k/FJ7qYqOC+6Gv/j+VdPi2fxriRcPKdLM j9QQlMBsh9zj9uoaFT9d5QUPOp+p9j8E/ja8xg/fFs+I4ndLU+zPMYvDW7v02a0i7X1V9Uhu ig7qFbosDZLaMb07e5EMWx5lruXpEq/pYqzmY4XBt8ZHv5ZWCd6kqHRChX9kyxAvbPQuL2yk +09t8MJG/7d7YSMZSPNBibL/tEUX/udntPWrN+Rp/lasVh4WObM+9LKAKZY/urJP4lOWbX0+ 2tdszXq9Y43SnW5ez+vJsWefeczMntLV31q21OKjFlu2/Dwv+iRAz7th1ZS9w6b11/CaunbE C0a9QeZ5JyMl3zIMZ6yyB7qvBdPwGNS97s1XGTkT5vHbjL9XeetxKtbIzbt1yr8pK3Z3wNVb H1H2epWyn+52LfCj8aJan13nRac+97pvOuG58v3uDr30g7dsEaaWM3Tp1fNE5+Zo/vwCXVz6 KV3+2Rs038PaO0x+tsT0/DGE+hcm/y/O6OO/WSD9ycJzb2n/V/aFw2TSrXLGYoGSyUR8N6ts 8SxSwzYcx27xTG/keQyF/lLqfDTtPK39hi2e7VEsRNXPr9JHX57STI97S/qlZxpdeCdPW+tW PZtq/0Pgb7JVDuTz2/V5qbijiOJXo5j440lX1knKX5A5frWd3r1uXHGtOVLtY/uCF9Pu361e BOHv5t+0UAxomQ4bv1uaEnWOLWSNJ3Vx8pDnKe5t262h6/tWVhwWy+667qz7nd+yx1ld2Eie swL3e6RYPTzK26wPvSxgSl78psUK1z2fXjxc5/r5za7NnZV3fkm3r9Tv2rdP6ViXLXdd8zTV fHtY82QPdJQWT4ulj3mZNgbdP8z09ipv9qY+ewcuk8f7juc7CRaOIsdzYzPL9jmisoycKa7t 2cvMq97k9rwtNcPk50yf92+rXsm8Ba5/ejkMmn+28MuFg3res+bIlvB1y5sFrsSFgP85flx/ HesTeN175nnbiJtp9+9e4v75u/uXz2/5THF35X02bPzeIU/eFSwuFKMylRXfz6q2lkjx2/i0 D4Wadv9uxR6Ev5t/sxHmIUTc/KjnwsavhhX340a1zAv06AtuKAvmOBPNm8VbQ0XzPHTTcKCI FrZjiuLtfVHeK3v/lYqifPvI8l+3hqoO+pLhgYjWhuEe5d2qypV7ezQ8lbz4TYtZz/QOpZUt sX+7R96ZS5Hzv39Y6z+E18nf87eVdzPN3Bi3FkLSh9nqni13XeLRR74rN4zONQ++zuSZ949P 9+0UmuLA/nx0hu3ntxl/H+FZP8ybotEc/u0nAsXN/hXruZ+5vi/qT5WL+iGv+FwwGrdmGTmc tH82TsT+Di9oxPdihhd8aq/06xCueuP3wGO0rVUXw/NzS577OatemXkLWv9kwAPl31qYjEdM yJC6vhtmOfe4/7t84UQyCVh1sutZ55IhOQXBFJZdhgLr/m67cSxYNO3+u5EG49/tnzuibnYW ZTOfKW6OPM+Fj98z6Am8AOEZo0KVFV8XnrW+E70EW4cagvdta3/rx15/bTfOhgnne9r9O4s+ KH+nf7MRFqDhq4YRNn41rLgfW1YfrutSULok+ui6XLlTsdjz/EBpcaDlAbYoYNFj+qdNS5C6 xK+fqh/znLknzhtSedF4rLpqy6PTu4zLhwCTTuW3Wc+4seK2zYZ0F923lXf1Jd16XBOVe7w6 qtxWRReecuVP5z2hlKG71Yi3nJFWAadfj4yZ949P93owKsvyY4+AfZ424+/z/Fbj5OHVvUNn AVl7WBMNtf7waro8uLojXj39W27UMjIjM+ZX57zmnXG86lYhXgJZzUtYfmba+h4Mof6Fyr8V vy4KilW1cIzEP1Xmh/epD32zCwcJIKDUCT/PH2N0T73u3W6T7Tm9/dZyviOn3X9XjQjIv8s/ hKcLkshOQXhGhjZ4wGrDBYsRBOcX1kdY/mYjzM+LxyWxYeN3CTK2p6y8ksiVvIbyceNZLtSw tG1bRKcsBQ03/HoOBXxyIg5ubvMQxC1RUQSR6t9zQZ9GTeSl+HHZS/LomhTFvHCPs2OHtzvJ SnGgNzydDQdZMorwlNuRyEue3+wnZ4btsV2G4bnxqCKKN/Jik7c2aXilwTMi7wtyWBGvKurt iK+YIyscPfYs560ForjzwLlAUsO0FrPA8nk/ecflnUR12HW+a8sd9ve03t6ep8hb1dRd9IUa shl/v+2wHOWXv+tu9W/w4j7Sipy6oXBW6ow+hLnrw6Jx36ybJNyEvbq4juseuXqgpjWY98L1 2Mt0mPy68tHjRNj6Fzb/jfv2/WY3b/KIiqdcQVotUbtXNMutY9Hy15HcI7u4FHsC4YVP7LMY 6wSG5y/bJK4ddX3zHj7+vlFMkAMIzxgVptpwORliIzFGWYx1UsLyDys8w8Yfa7iOxMmHvBxq lN+r2IRR60lNbCvisutl8KhsDlfUw0hvFEXlcaPdM9xq6Kt8HojtK1IYdqxDW6plgofbyrjb 38ub4qB6Ihrst/6oJso7jvlvLuLnZE/ZL3Ep1/HPc1QrdwuOhmdWHByfKFbTljjh/TYr+p6j aiOVV6it8PzW9nlembTR4PmuHmpH7pUp87B586ATvtETXrlbFDkpmtsiNSWG0pmlr6BaPRCb Zth5TjNbhJ3KkQVbjfPI27x0OC/pfNmdItBV8Z+6UuDy49Ebde4o2OnsAyrzRiu8svEjLhub 8FMY6hyZmxkX72m5z3F1OHZ41h45E2hUSMd+juUqp4G56/WnwHt0mmlghrb6wxzU8O3xs9u7 HK8s43b67GNV63et4bZ6HO36+0iPu8FznPW9NO11176qrdLIYb8Zve6zX73eHpQcc6P5ekq/ zmV0oljtzWcVX9fj3+L7ry2cdCz87mkcHygdJyT27cm37uZB+VkhBDsaUv0bRv4PNuxzadW6 Yj+G8AxWyEl0rdyT6+UkZiDhaQ7PX7ZJutoavsiEj99XNBPiCMIzTgXZOuHNv/OicFfp3Y5T +iY9LSH5m40ZF5HiC13I+H3FERNH1jBUY8ig0QBO8fYNaWnlNM7p8zjdhp6f3LY33u2NPXu4 xMKnpogeHUPjvrWlRE+/vOVFxU23PFXnNTriM9Ounu9syaJaiXrHy35dLK2dImyJA8Wq1S+c 1Ea5y6o4SFWo7dgFkRnvUlGZQ8ovYVOYqvlnEXTD2lalVbVbjcywXNk5/D6U82ft4XuG4clR CH8CImurA54cPNLO6yd3Cf/Kjl3YeqU9daXbWt24t2UTxV5+bedVBuY2KD74eQ7n7dSgQfgN Uvd0P57cg9a/IeW/UvJ4BvHzpnhTdl5BeA5a3kny13p0ILaubXEno62HLElZSHRaw/IPJzx5 sAPK33f9gfD0jQoOQaA3gdDCs3fwE3W1cc+jweZouGevl3sOcWzxfoW8zLxnIzy7sS0OHnqZ axgpD6ctOCyjZmN9KcudQBVFUHUXQevxkWL9sxrxuZ0jtlwVBS+Ab6ZNH9Lb/rC1VQ6hNONS 3KnnTD/dUXeCus97LXYJdRlnWmze0C3Bw2sI1W/LxrSMo/OduX5kS6G5MJAjX5uOxaTqqsXX dJsWhXtssXSsOpq/q5RjAIZtnlfKPcqRh6Zed1hZjbRkruRFmdPiJOi0WKpl5n7MHR8uo1h0 y6JlPbYzTa/n2Uqs5NlGmIcxHxZs9UvGm15nyzlbyuuHdnGaVhbCMZ9VnE+9s0f6tX+n2pZQ Z94dyeCfwfl1h+HvzLDq31Dzr+6jeu+IrfOdMqvvyToF4emvdOEKBMZHIKzwHF/Kkxcz9vHk Ny0+IDAMAuaeds49C4cR+KSFwXvhHX5xSGfnFinzNsuz5hmd/ledmhpvSKnvQXl+ji78eJHm /G47+axJp9/VaXZ+gffp5DD0vQjPseeXfYJj/2ff8ca68+fb/mfm5mhO9+/zo31/Rs0X7Pjl GZpjvzN+4/UZfj9nevyn3xMtvDpDWlOjoOnvF37U15tnZ/pWpMyNub/in/tQ08Xl1+R6QLIc g9SfkAnRuP7Xz4jOG+U398o82bYJ9Ar/hUZnZ3VqMLyZmVk6z/783jPN7zjCOXav7yWo573Z JE2//zS+Ac+dp/l5ueuzV+SO82Pk50iJr59Dz78j1uof36VL/6zvFpyhSqtMqTFVa0ey8BME QMCFgO99PF384lQwAhCewXjBNQh4EoDw9ESDCyAAAiAwPQR4k/kPzl+iXT3HS1vUqOYooIyf HlbIKQjEgACE5+gKAcJzdKwR04QTgPCc8AJG9kAABEDARkCj6r/vUYUN5Qvz86TxaIs57Ziu rl6lquEudb1Clf/NozrwAQEQiC0BCM/RFQ2E5+hYI6YJJwDhOeEFjOyBAAiAgEJA+2aXZhc/ UM44DpfydHJ/ky6MeOi9IxX4CQIg0IcAhGcfQEO8DOE5RJgIaroJQHhOd/kj9yAAAlNGQLdu zl6kT5zZXsrQ1q+vUnblDZqD6HTSwW8QiB0BCM/RFQmE5+hYI6YJJ6B9zb3fr3Pv91KBWtUs YS2JCS9wZA8EQAAEmIA+xFbjhZ54iSde5En/AxYQAIEkETj+/C26+Is7lL5Ro/1fLSYp6YlL K4Rn4ooMCY4tge+rVPrqmFeKXKRVfaVWfEAABEAABEAABEAABGJNoPngkO48PKP519N0eQlL gUVZWBCeUdJF2CAAAiAAAiAAAiAAAiAAAiAAAgThGadKwEN1mvqqeLwHoe/9B+OU/qSnBfyT XoJIPwiAAAiAAAiMngDvgctbKPM+zhhnPXr4HCP4jwX7IJFCeA5CLSI/5hzBK/skPk1HFAuC 9SIA/l5kcB4EQAAEQAAEQMCLgJwjmNs7oa13Lng5w/mICIB/RGAjCBbCMwKogwaJVVEHJTcc f+A/HI4IBQRAAARAAASmiQBWRR1vaYP/ePkHiR3CMwitiN1C+EQMuE/w4N8HEC6DAAiAAAiA AAh0EYDw6UIy0hPgP1LcoSKD8AyFb7ieIXyGyzNoaOAflBjcgwAIgAAIgAAIQPiMtw6A/3j5 B4kdwjMIrYjdQvhEDLhP8ODfBxAugwAIgAAIgAAIdBGA8OlCMtIT4D9S3OEiE/jEhkDruCi4 NAUtF0UrNqnyTsjBtXQnvXqaHX/b9xveHmN6JTT/pzVRvJ4Xhbu1gXJYu5k1OGZFbYAKAP9J 5tcSxRXjPloZ5P6Hf/BD/Wm/h3D/DNB+SNDz47kQrQHejwO9lAN4ku/fzM5g7/8AUYVyWr+9 2dVec7bfaCktshvb4uhRctpxYfm3jg/E1rUtcXAcw8oVqsTj55nil6TpTVFo4TNSdC1RWOoW nLSU6jzUlgsDvPxGmoGuyMLyr5Us4XPCL8egn9rNjPFCyIjKAM8++E8yP6XhN1DHE/ybwhP8 Bnj2ov6g/hjv81jfP1Y9Ta3kxUG1HvQ1G5n7sMInsoQ5Aq7teBsMugQoGxSyOxVHCPH8GY6/ Va9ovRzPDE5QqiA8Y1SYYYXPqLPSenIiKvcqonL/QOR0i6dDiJYfjzpF4eILy18++Ih8Csfn LVF/bL04rZ7ITWGefdoQ9SceKhT+k81PL9u61aO8f8Vo+F05MCtyq14XjafmT/sB/IMf6o95 T+D+mYbnhyIQ5CirpawoHtYG6Gwxq85QDuT7P+4WT9FqiNrDiihuWAI0f1tvxxl/h/ti64p1 TRejSWjLheOv1KuBOl6GUoWmJhAIzxgVdVjhM7astCoiY7wEshubgncgbVvuUtePxpakQSIO y18++HTh6WeobP2uHPKSaQ/Prd8vdCyeKwVuUPOw3Q1pQVWEqJIx+E82vwMpNFc2xcHDuqjs dCy2Ge5hrvOwn/yKMXpAEaJK8Qv4Nxra4If6g/tnep4fzxviqLRltjMsK11abO9VRGOA0Ubq c3XQY/n+j73wNDJ4oozQqrkwq93MGSOw2Op5M97Dh/UsheMP4TlovR/EH4TnINQi8hNW+ESU rL7BnuzJBxTPTWQrXFnOVSP9d1/vsXEQlr988PmzePKDbtloOMue2x7fha55B/CfaH7Pa2Zn jdVw8qoP3JHhvI/gH/x6PC/sdQr1B/eP4zWb9OdHOzstUTssiqxjpJVe9zd39kXda6SIA8Ww fsr3f1KEp0yvZ0e5XHOEeaZjPm9VL0OZn8H4Q3gO6z7wEw6Epx9KI3ITVviMKJmOaBpiWz74 DctM496W2VO2edccNOrwF7+fYfn360F05rhxzMNddrZFbsU+rMUcsswT/HMbW6J4170XF/6T za/GQ9QLvBhVZtmwbFLnO2UIitRyRmxeL4iDe+7DyOAf/FB/cP9M6/NDfZ/Wq8oIEaVDJnut KGp1j6kqagBDOA4nfIaQgIBByPS2haezY5PDqpkGBRK5vfi342R+BhOewra4X0CUcB6QAIRn QGBROg8rfKJMm2fYj8qmyNyuGg/45yedOZ/6CyBBiwz5598Q5eubInclJzZ5aLH8y6oWzBX7 Nd1tsWrN53PytKzG0uqVE0EWKIJ/aXVPJr/yuky38X1l31lFev6Gf/CzWTlRf3reL86LuH+S ff/I8mw8rohtx/xE/b5Ib5SF99tX+g73HVb4hIs9uG+ZXqK0KN+viZPjmrlmh51hRhw8CR7+ qH3I/PQVno0az2HNcfvNarttbuRsQ7czSrtus+12S1SirkCjBjbG+CA8xwjfGbV/4eP0Ob7f levSWmefh1gz5qvpD/0kTEzXCfrmrwxBsTX2ZE+rXNlX/pbfHpPWWw+NbXSkO/m97m9bDfhP Nj/5wnTWJb/zauBfzoW2N57Bz9+8LNQf1B/ns0f/nZT7x631U1dGXXXylhKViIfeyvuor/Bx S/AYzsn0upW97dxysE7QMWSlHaXMTz/+1ur/9veFzHNKjuCT7TDjO5OAea7jYh80XgjPoMQi dO9b+ESYhkBB8zyR9mq2+o3Je6fVeZXNBq+y2HjCq3UqD/6kLDLkmz8vbtC2eKq9Ynxss3gu b4q8ep1711wtnk+OlJ62lDjil6Ml5rmntt8CTfCfaH7qsHRa2uZeeWXoOt9XW/d6d7PCvzWs H/xQf3D/TNfzw9leaeh7Ma7LqQuWsMhcP4h81Vu/wseZ5nH9lultC67lrMiuy7+MkNM9TDG2 sR85v7AcZH76CU/RqLQtnnKkWufbbvFMb+TNkWz69dwVtngmwOobluGo/EN4joq0j3h8Cx8f YY3Cia3R6+gdkg+szncyFhkKyz/oHM92GT3eN4cqmw9MZZVg6jdkDv4Tzc/aQodE4WFnqLpq wc7dPul5K8O/XNkY/FB/cP/oD4tpen7Ih+PJ/bLIqVNdjPZI7kZZnPTuu5NBhP72LXxCxzSc AGR6veZ4Nh4diU3F+rd9f0QgB8yezI/ZjgoYjrmPLxtR8ImWAIRntHwDhR5W+ASKLLRjXr3W OS+th/hMwiJDYfnLB5+/VW2tAmjxvJSj6oloKRP8G7zPVuUhn7OceR7Bf7L51atHovLI/lKv 8Z5qNcc5rwoA/+CH+oP7R30+TMXzg1fQr90tuqxunRL5mwdiRGsKmdjl+39Q4WMGNKIDmd5e 7ZVWddvs2I37yrYyP4Pxx6q2I6p27Wj+PwAAAP//s91S+QAAPgdJREFU7Z1taFtXuu+fQAs2 pGBDP9jQgesyhTpMwQpn4CQwHybDfLBCD1TBhdrMwEHxwCWdCznKKeQ4px9y3Hsg4+mBjHsv uM5cSJEDU6RCil0IyP0wYA94kAIuciHBPpCCDClIkIAECaz7rC3tvdZ+k7akrTfrv8GWtPd6 edZv7b3X86yXZ5HA0TcEygdJQUSCZpOi3DdS+QhS3BERKSv/xTfy1UAv+EP/e5YX8VoYml3v +zK1yz9/N16tP4qJfN9XoE+94jQIgAAIgAAI9CuBF0Wxs7Fi6R+GzmToGVGxfj8rylIH6cFh tv+xtZo+1AMZmsnSlJfq6Cvl3GpNpyER7fNymeVpjX9ZJOeq+uxA6N/NVHQfhqU+lGloRWrX 8OkmuMMNZWRl6xhZ+bWY9eJKPemmhM3n1S5/88UnX+T1mDQvGWKAAAiAAAiAwLAT0AwEs1N7 Ji6Su/med2yb7X9rhk/361XpcHGR9zHWM7eU/rb8oNB9IZvIsT3+2n01CAM/TXDpx6AwPPuo Vto1fLpSFO5tzOcyYmmm1jvEL/9MLi+y+46XUlmGy4rMxpJleEauJ0X2kSNcV4QOlkm7/PUX +aHPizyYJAgFAiAAAiAAAiBgJ6AZCHNLrHv0jz7RnuFjL2VHf0ndbD8rktejlm628iArsqyv GX97OyJ1d1XENB2PKCp2nnZUqrYTb4+/dl8tptqWBQnUJ3BKXuapCjj6gEDl+w0anV4gHuqn 8tY8jfSBTE4RDj6/SGd+t+U8bfxe3S/TlZ9VpfYPF6FsOUuRPixc2/wrR7Txpw0qz8Qo/utp T0Y4CQIgAAIgAAIg0CKBlxWqVIhGTveXEnHwxWU689s7xCOelFrs3/bfXzfzr4/1vSLF/2HM P0AfXGmXf+XxNn12L0eRuSt04e3+urf6AG+oIsDwDBVne4m1bfi0l32g2KW/fUbj5z70CBuj TCFFFyaql46+vkFv/tMnHuGWKP9imaZf8bjU41ODwL/HiJA9CIAACIAACICAg0C7ho8juY79 PPqKdbOYl25mzzIyG6ULv1yg+D/P0/Tr9mv9+GtQ+Pcju27LBMOz28Tr5AfDpw6cLlwC/y5A RhYgAAIgAAIgcMIIwPDpbYWCf2/5N5M7DM9maHU4LAyfDgNukDz4NwCEyyAAAiAAAiAAAi4C MHxcSLp6Avy7irutzGB4toUv3MgwfMLl2Wxq4N8sMYQHARAAARAAARCA4dPbewD8e8u/mdxh eDZDq8NhYfh0GHCD5MG/ASBcBgEQAAEQAAEQcBGA4eNC0tUT4N9V3G1lBsOzLXzhRobhEy7P ZlMD/2aJITwIgAAIgAAIgAAMn97eA+DfW/7N5A7DsxlaHQ5b+e4Ojb5zmWhmncq5eF9up9Jh BD1NHvx7ih+ZgwAIgAAIgMBAEjC3KYneztPm7/t3O5WBhBtAaPAPAKlPgsDw7JOKMMT4MUcb 3xwQjU3T/LuRfpJsOGQB/+GoZ5QSBEAABEAABEIkUHq4TVv7xzTxDm9DMtPfe16GWOy+SQr8 +6YqGgoCw7MhIgQAARAAARAAARAAARAAARAAARBohwAMz3boIS4IgAAIgAAIgAAIgAAIgAAI gEBDAjA8GyJCABAAARAAARAAARAAARAAARAAgXYIwPBshx7iggAIgAAIgAAIgAAIgAAIgAAI NCQAw7MhIgQAARAAARAAARAAARAAARAAARBohwAMz3boIS4IgAAIgAAIgAAIgAAIgAAIgEBD AjA8GyJCABAAARAAARAAARAAARAAARAAgXYIwPBsh17YcZ8f0Mb/TVN5JkbxX2MD4rDxNkwP /BsiQgAQAAEQAAEQAAE7gcr32/TZlzmKzF2hC2+P2C/iV8cJgH/HEYeWAQzP0FC2n9DBvct0 Zv4OJxSnwxfrNPVK+2kiheAEwD84K4QEARAAARAAARCQBCq08f4oLXzJXxdTJNZiwNJVAuDf VdxtZgbDs02AYUY/+IINz99KwzNG2XKKIug0CxNvw7TAvyEiBAABEAABEAABELAR0Ayf2SSV t+YJ6psNUId/gH+HAYeaPAzPUHG2l5hu+OTZ8JzGm6s9oE3GBv8mgSE4CIAACIAACAw9ARg+ vb0FwL+3/JvLHYZnc7w6Glo3fDDi2VHUnomDvycWnAQBEAABEAABEPAlAMPHF01XLoB/VzCH lAkMz5BAhpHMEa/xfLO2xjPPazynscYzDKyB0wD/wKgQEARAAARAAARAoEZg4/1T1TWec0kS f5kHly4TAP8uA28jOxiebcBrPWqJ0n9YoZ1ChUZG1Hza44ef0J1vaqnOJWjpp+papVKhs7+9 QfMzY61ni5g1AuCPWwEEQAAEQAAEQKBJAqUD+uPNO1TgVZxKfatQ7j//SFu1pGLXl8jal4B1 twpN0sLHCYpAfWsStkdw8PeAMlinYHj2or6+36BT0wv+Oc9EiB7m3NexaN3NpJUz4N8KNcQB ARAAARAAgaEmcPDFJXYCmfZlEJkhyj10X47dzVPqN5Y56g6AM4EIgH8gTH0dCIZnL6rnJY+4 /RePeBbJ5vnMNuI5u0TL/AIrm/JViF9216wRz9LfN2hhMUkjb6lRUTOo+5N73N5YoOSn82R2 uA11/BD4uxnjDAiAAAiAAAiAwIkmUMrxiGeSimq4k4trH/GMXl+miNLeqFIZp4V/4xHP16tk cp9foxtfHdHI6QCknldo6r1lWlnkAYnaMdTxQ+BvcsRnjwgIHH1D4HAjLvg24L+4yL+oL1Z+ LVYLK8MH+YuKbFmlOezxFQn1rRn+Kha+gQAIgAAIgAAIDDOB5FxND5tLNsBQFsnZIDqbFmZ2 XSj1bdjje+MNzt87Ps52jwB1Lyvk1IhA/q5peMZsRqJXPGUkaS+nugao3Zgd9vheTJvh7xUf 50AABEAABEAABIaNABuDpuE5m9SMRG8OKTNsXZ1N0+0cxuywx3dTbY6/Oz7OdJMAptr2aKTZ K1t9O48g+3iWfixR5SU7KHql/nRbI8zpCRpzTOsY9vjOOmiWvzM+foMACIAACIAACAwbgSa3 82C9rVSS+hs7KGqwe4HU38Zen7CHG/b4rturSf6u+DjRTQIwPLtJu0FeuuGDfTwbwOrAZfDv AFQkCQIgAAIgAAInmgAMn95WL/j3ln9zucPwbI5XR0Pr+0ge8j6eUw16wjoqzBAmDv5DWOko MgiAAAiAAAi0RUAzfBZTJNZibaWGyM0SAP9mifUyPAzPXtJ35l05oo0/bVB5JkbxX8PtthNP x3+Df8cRIwMQAAEQAAEQOGkEKo+36bN7OYrMXaELb9df/nTSyt4P5QH/fqiFYDLA8AzGCaFA AARAAARAAARAAARAAARAAARaJADDs0VwiAYCIAACIAACIAACIAACIAACIBCMAAzPYJwQCgRA AARAAARAAARAAARAAARAoEUCMDxbBIdoIAACIAACIAACIAACIAACIAACwQjA8AzGCaFAAARA AARAAARAAARAAARAAARaJADDs0VwiAYCIAACIAACIAACIAACIAACIBCMAAzPYJwQCgRAAARA AARAAARAAARAAARAoEUCMDxbBIdoIAACIAACIAACIAACIAACIAACwQjA8AzGCaFAAARAAARA AARAAARAAARAAARaJADDs0VwiAYCIAACIAACIAACIAACIAACIBCMAAzPYJwQCgRAAARAAARA AARAAARAAARAoEUCMDxbBIdoIAACIAACIAACIAACIAACIAACwQjA8AzGCaFAAARAAARAAARA AARAoO8IVH7I0U6uQPSTabowM9V38kEgEDAJwPA0SeAzPALPjyh9b5uKZooVoqlfXqILPxsz z+ATBEAABEAABEAABECgbQIVuhMZpcsPZUJRypY3KTLSdqJIAAQ6QgCGZ0ewNp9o5cdjOnic p2KZaPS1cZqYmKKpiRE6fnxExVfGafqnE80n2qMYle8+o9F3PrTlHr2dpc3fR2zn+vdHhQ7+ tkOVN85T5I1uvL0rlPt2h0amz9M01zkOEAABEAABEAABEAhGoEIb74/SwpfV0Mn9Ms3/bEh1 iZfHtPttnibOXaCp08HotRXq+TFt7x7RmV+cI6hvwUjC8AzGqXOhfjygz/5tgT78PFc3j80n gqJv1A3SPxePd+nGx3fomMc8s5+nSZYstpan1OJ0/8joK0mFtv5llC7+F8t8l2X+TRdkruTo 7OhZg1PqUZliPx3SBsO3TnABBEAABEAABEp05/1xulwzsPx4RGZjdOHcJVpYjFFkKKwBfcQz QtlnWYp0w+jyq4BenX95QDdePUOfcP7JAza+3+68LqUGWpbo8MUyTb3Sq8IPTr4wPHtZV4/T dOqtSzYJorNRKnyzZRgh+oV17sGKD2AP1sb7p4xeuEExPI++ukZvxv5ooF/ZLVLiH7sxPbhE n0XG6UNjmkyC8i9WaBovL/32x3cQAAEQAIFhJ/DyiK69+iZVW+hgMIZl9K/0fY6yT3iN52tT dP4fp6nzJlcw/t0Mlf6XU3SJBw3kdOOd4iad64r6tksXx8/Tlsx2MUXltdhQspfFD3rA8AxK KvRw9qkRibs7dOODczRWMziOv0tT/J1L1ZuZ8x5Mw1OVcSAMz5L2AplZoWIuQd14b8lbq/S3 P9L4uWvGXRa5uUPZfz9nfMc/EAABEAABEACBGoFSiY4rFcp/EadffcTq/uwK5dcWaLzC65T4 KPIssvSnN+jGl+YsMnTm1sid6A+bDnWLdah/7Z4OtfsfZ+n8x9X7rXsDFoNbnTA8e1V3z3N0 8bWzhmEZuZlhQ+OCS5LK33mt5M+rayXrGZ6lx7uUupeidHqbuL+rekyepYUP5mlh7oLHvHNe U/hVmrLPeT0p8cv6lTMUm4vQ0bdpuvN5krYfyVQm6WxsgZauzjecJ1/hF/3OX3N08EORRkZG aPT1KYqcq65XDDLi2bz8LN7zA9q4t0M0MlotLzc6Y5GLFP0HXgv7ksv3TZpSX6cot3fETLgs PPUm8VGcputYkrt/4JfHR9WXx9KDAi3/OsC6Wjm/n/PZ+mrL4jb51iSd/8UFmn69SFtf3OGG 8TNa/32DlyCvS7jx6qQxRYQoQplili7UkbVaaPwHARAAARAAgeEjcPDFZTrzW25f55JU/su8 a5Rp+z8u0q8+Nsah6nbcH/0tTRt/TlKKdQXjeMjaD+tNC4sLFPt1xJWunTT7g2C9Kcn611Yt /uQk6z/sTPHSe6zT7ac43RKdnb9CMR/niq3nX6Fd1uPyhh5nSsX63Nh5mn/Xb4kQx7nHcV5K 3U87Tk9R7L1zRlkrrE+mv2UWtiHTmp7IgyO205xEK/JXvt+m5F+PabSWWJkdUJ59d56nRXOC Uqf6KkkbX29TVuqizDP63hW69s8XrIEZTfLa1xL9kWeNXeO6M/SnAutPAdS3yjF3UnzJuuI3 O3RUqOq9Uz9nr8C/OE/jpSwl/7xF0U+36MovGyR2vEWnJi9WZenyoEUNwGB9CBw9IVDeXxd8 pxh/K3tlHxmKYn2uGobX/rnDvCiK5PWolY6ZnvNzfbtgj1vOCnbz0zBeNZ2oyDiiq8SKYvNW zDed2M0VkZip5sMjniqa+a1V+Tl+fs2j3HNJUXyaFXG/sl3dNHN2f5bzImbFi4v8C3cQ55ny ftK37LY6mF0XHrXnTE7k78at9Dx5uWLgBAiAAAiAAAgMHwGrvZxNerevj1T7zB33bkCsKyzV 9BNbe23pAVJ3iYvME4+4MrXCjqXf+Mev6j/sXDH8/H31uKjI+ogsDhQTp8zJmo6Zvx2x9BB7 mIg93Zb5lcW6B3f2qSEKOX/5Evd9FVFh08VYD/Qrvl4J1v1jq2+3Xhz10l31hIzvZZGs6eqS mef95oozvCdoeIve45I/y4qoecPPrIjDIE+KTeSiWJ21PySJW0mR2cuK7HZKLGsPgXwQePhf xZYG382EiM26XzCxqwk2SiN2w3Qx5fEgu/O3v6TssrkNKXf8wPLLkjzJiKXFuIjzn68RPRvj Mmpy8AvJ7yhsL6uX7dWMXzDtfEEsm/XHn0trmyL/pCAOD7Jic21JpSXD+DWMWmrG10JGi7ck CgGMX2cS+A0CIAACIAACJ52AZTj4tK+HadUOuwyBoqZ/Ge14VKzc3RTZXFZk7q9rndBSf+DO 96cOmk8zLr0jurgkVm5zZ/uch17lNF7azV+K86LAAw9xEavpQTHLmIuJvJ8+WYtj05lmoiJ+ PWnpG8W9pEgYeqCmO81ymJvcsW/qJG3KX9heN3S3+KL/wEV0LqZ0ZK6j2MahoxLUz8xNxbye gWrFsNVfTKzfz4pD1t/yuR2xft0uk1t3tVKxfSk8UPcbBdIhbdGH6gcMz55Vd0GsGC889XAn bq6L1P0Mv/zyxkNQ9nt5sMyH6YQyUmaXRf6ZuyCHD1ZUGO65c72MtB5B9uEqMvqoKo8ALlny xew9XZxV/q7+cMZEKqf1RpULInVTv84vDceLNxT5a0XWe5qqxm9cbB4oQ7uwnxHJjZTIq1MO WPbeKp5m67ju8VMbIY17vRCf7qiR14AjntyFajNmXY2lhxg4BQIgAAIgAALDRsDX8CwXRTat 6z4Rh+FYFqlFpXdFb24qg8qCWBYZfTbXoj6KZtcXaGZZZAt2Za18sGk3mmz6T7v5W0Lavhxu mDOm6hietRjFXcWHl3rZ0jF/7NwyZ5XxCKpNvwxR/hd5pSeZ+ubcqshbhn5Z5Lc3RTKd8aij mqS2NJx1bZbG/qmPkCYf2a/JX8U9NSMx2IgnR3IYsy59253N0J6B4dnLqudRO2vU03zoHJ/R 6+seBlNRrFi9W9wb52tQCbF5VfUEOQ2ZsjbtYlkfEa0xKVqjgI4Xme1B9+gNrMVXLy6n4RmO /NVsHI3ALI8em71ygetWH311vmR9EtEMT++Gi+M9y4uVxahI3N7xScR9Wme2nrM3Zu7QOAMC IAACIAACw0fAMjwdOpNz5lV8w7HMp6iNVvJsM3/1qeDd+W7rsE/4LsvR9Sub8dJu/j5VrXg4 9DXP8Hont4fOU9yxRnRdhmmY8rMepS+NirIR3LTWo88enF2tU58KhG54Lt/n+8NDZyzvp0Sc R3pXdwMMRBhJ63otD9bYjHWVN74JAedC/Jbq6fGyRNv37tBn95KU/sb0wuaUiJ3N6IulKwd0 afQMpWvBYjeX6ax06GZbLc6/eeH2jY9uWInxyBytfzBl/a58v0Gj0wv8O0bZcooizlXjfP1U 7Xqer0+b1x/z+bdkPF7GXc972HP2Evta1c00j3iqfTxDkt8QgJTnXKIW91GyyRMjW1mrmbj/ 25wB1S7PRCn280kaZ1+4E6+P09Q7kaqToTdMcO5knGcshwl8wcbMGRC/QQAEQAAEQGBICeht pTeCKCX37tC8dDioHZXv7tDoO5etM0u3eNFMxaE+sT41Mspbt/B+5ObBayBpnvfYrjzk+JFq /EZOCHP3blD8Vo7in96xHNS0m78pj/NT8Qimwxx/fY0m/6m6MU08zbrhe0o3zH1+ic7+rqph bhZ4D3kNYajy876bl3nfTYPy1U0Sn/JQTJOHTR4fR1OuJH9gZ0A/qTkDql2Ue7+efWOc6DTr b+OTdGbmPF345TmaCLwfqq6LDupOFC5SnTkB67uPCLwos3McXie4z+sM0qv20dBFzTGObcRR TRnhO0SbWuv+Lhdv64fqkfPuIfO7rs7z2sa601J5OnFtZNY21TYk+atl0UY8Ay4q1xkY323y eExJdkWo5XyQqsvbrI/IVa81st6Jql5L5yixd3icBQEQAAEQAIFhI6DayoTg/StF4VFWJLUZ XkTLvHjFfej6i9lGB/lMHlTH4vJrahmRec6di/+ZdvP3S1nx8NbnXPFseo828qufZ/8eziNU +bW8nPqpM1+/3zZ5mtAB89oa4Hr1n0jb9WY/OQSP1erLvpwzDP3jDd8VjHjyHdeLo/QwTcv/ Z4um3l2iK++qniabLLxZ8g3eLPkT4+QyFV4s0cQr/EPvJaI4Je/zhrW8hYjvwXteEbvLPj/L vTcyfu3QRzy9Rvn8rqvz7PPN0VNmpm18anLaRu+085xCy/JX89J6mWbZrfqW2626TSavH7o8 s+tU3IoH37+TR6xz32xR6tttYzuZyvOK4W78iM/p49eNekZNsUq8hc54bQsdGzMzAD5BAARA AARAYMgJWCN8tlEu1gd+N0oLn1fheG1Vp+svNLdCm7+ZogpvL+J3VFh/GpuI8OjXtNG2H3/7 CU1eqM4kY+OC4j8LPqNJ5tFu/n5yWjx4BpuXPucVTx/ZNMuij4QmuXzzjvKFKr+me7Wq7+jy sPdg2vw9u04KepSOaIu3U9neO6CjUoEqvDUN8QZ8W47Zh7yzQ6DtWXJ/ukhn/1fjLXyCindi ww2frd0fJVa9Ztw75TG/3JRSrfnTXGRr6wuJ57Q3PSe+lrjqKfLuIfO9/kgb6avTw1TOqQXa thHPkOSvFkPrZfLxbmey9P3kXje1lYrbkZJnPPYOt8IecyM2pwP2kLpzJ9saD3sw2y91X2DE 0wYGP0AABEAABECgRsAa4XO2+7zmT7XnvLWFw1eC0mtIeG5z0oCwHp/qbdEm0+EdBPL7eVHU lDQ9fiv5+4ln8WBHkYEd2/BaTsvPiOGJtagcHLJTRK/1r6HKr4942hww+ZXSfV6Xh4I6cqz5 V0k4ZgFaqXO96c6lgo1esi6q7aIQLI6V41B9gXOhHlW3ekmQSDgXv1sy8QJw04nQjH3RtO6V rd5UgPLTQ5G5u8rusVdE1vIUVsvAWiTvs2+l73V90b2U33uPKn3RuM3w5OxDkb9WDGt6Q53t UiykXl+0l5/ct6teR4AVXTOeE2kfN9+aQRvY8LQ807Hh6fdStITAFxAAARAAARAYPgKWF1eP dl85RpRLjpbsDge5XU5oy5LqTZctyum7t5fFkr6ViCP+8gPv9r/IzmlMoy5yW5uu6YjfdP4+ VW3xCKrD1NLJXDcdUMbZe6zyduvlcNKIEqb8nJapJ8Zb1XcsPZXrus5AiI5Ndy6U0ndz0ANp zjeDGZHaIAjfXzxarKeG7xoBGJ4ajG5+1Q1PHk4Xy+mszV10+WlerGouv52Gm9BHHTl+lPdh yj4pijKPnpaL3Mu2lxGrV0132NX1nitaz1/xSV5kbqu1CsvGPkaqf6v4iK9vqH2JjOuay/DC fXVNyk9zy7yHKG8DI+Pd1fbElNf4L7aW4WsFQz6Dc7vy836ZWblnaS4jlq1epqjY5H24jPN8 rcAcDh+pMvnXr/2FsfnEP6R1RTM8Zfnit3i7FsmnNnpdrT/zhd5oLayVqtD3owr2slNx8Q0E QAAEQAAETjKBMusucr/N5HVTv+Gt4Ph33tbWO7f8YP1IjjzW2mfbdm7cfi/dzYjCU9l+V/1s ZB/wXpaWXiF1mIhtS7nCA7uOY+hfrN8Upc6xL/eCNGWr6j/Ojud282clz9JzDH2H/YIoHrxv +wOpGyldKLvvtdq1dpc80WawSX3NGOzwXh9r3lftyV8Wh6Zsu0nLOCf2MJzlclT1N66rIvs7 0XROM2/Xp2a8yk6GIPuf20ZJucwrrH8XntUMRb5HigcZyyCW+h07WApw6J6CA86cC5DqSQwC w7NHtapPqTQMN/nA81+E3TdHzVHO2jljFM6j8+Twvv3lp6fj+j6zpPb6ZKPJ7Imzh1uvTtst OzdXrsom9/pUo4FlsWn1lJnXvT/1zYpXNeO3dfn95PPKX5uiXKeu7SOwAd4y/LLTe03tHJ1y BHsZiheHtjRTj+oIjEsgAAIgAAIgMEwEuN3Vp9Ha2127cSh4yq1Tz1H6B+/TedNuHNrTsrfh kesp17TT7Jq5b6Y9rDOdyNWkZfCqqmov//xacNmr8jjYKEH4G3e8a4McMrzvLC4rXuvyl/fV EiwnK9fvmZpOauXr8cWpNwUZONBHSS0926ceG02nNkWyDaYk7KPsZhh8GgRgePboRijuBjMa 5UhavU6f8pMs7xWpRtacD278+qrIOHu7+EFdchm3bPSa3lf9rvN6Ruf4Yf7+qrXfk5539Crv P8qy2fOJCOdoYmvya1OQG700uBctUA+Yth6VuJwND70BnIl6MpA8GtWfno+tFy7oWgU9AXwH ARAAARAAgRNLwG0kWXrHzLJL2S/mklrbHBHOaZWFPd6r0UMXqqYZFUu35Uwyj17/Gl85MrZk GxlVxkt0kWeB5ep3Yreav3PE1WLgqw/xwENttNfr1rAbgwGXG3FCLclfaLx/vVkeua9nkCOr eRp27dvqkYCua8nBHjM/+2fEGAn1r317wvosRucItz0kfsGrLd9pPTl4H8jtL7fp+PQ0xd7l McHSMR39d4FK0gOt3ENqfIym3p6msaAO056X6OiHAo1OTBKxZ1VjL6LTHFnzYtuxcrJH3WOW ncZ4DySWf+T1ieBym0L1Un5DhmP65NQkVX3VRWmnuEnnxkzhvD8rx8dUekXu2VmtpEqpRCXJ XlYgb6o6NjFBI03wz/2BPaJ9VPWItnS/QMvvTnhnjLMgAAIgAAIgAAKhEKj8yPrXj0STvOd2 pcQ6zNgYjUn9KeBRYf2tcEw0Xos/xjrQSPDo1G7+AcWsG+z4uxzln1Zokvcfn67pNHUjaBd7 Lv/xNp2a/FVVopkVKuYSDXcmKP3AFTbGuqrcp5O9GpdYf5MejKnC+tvpcZqYaKAAauXn2PRZ ZJw+fFg96dz71BYUPwiGJ24CEKgROPrqGr0Zq26ozI59KPWb6e6x0dyKyy1m8i/WaboJo7V7 giInEAABEAABEAABEOgfAunfnaJLtW10vLaB6aSk+pYu7OCIyn9pYVu/TgrYZ2nD8OyzCoE4 PSTAo9A3Xp2s7ZuaYONvpWvG39E9Nnrnq0Zvgkc7VzDa2cMbAVmDAAiAAAiAAAgMDIEftujU Ty5WxV1MkVjj1cBdOSqU5r1jTaOXl5NR9I2uZDywmcDwHNiqg+CdIFD5boNG31kwku6aAfjy iK69+iYZZid6yzpRrUgTBEAABEAABEDgBBM4+OIynfntHaOEKTYAY90wAH9Is8F7yciz6zPl BrQuYXgOaMVB7M4ROPr6E3rzn25Q5HaWsr/n9bedPnia7aVXz1CalihfXqbpJtaGdFo0pA8C IAACIAACIAAC/U+gQlv/dp4u/meO2IMxXZnpgjL1eINOvbVAkeubtPO/o9SFHPu/GhpICMOz ASBcHk4C0lGQdNDUjHOgdkhVfuT8Xuf82kkEcUEABEAABEAABEBgiAkY+hQ7iOqK/sbONaW6 ONakQ6Yhrh44FxrmykfZQQAEQAAEQAAEQAAEQAAEQKAbBDDi2Q3KyAMEQAAEQAAEQAAEQAAE QAAEhpgADM8hrnwUHQRAAARAAARAAARAAARAAAS6QQCGZzcoIw8QAAEQAAEQAAEQAAEQAAEQ GGICMDyHuPJRdBAAARAAARAAARAAARAAARDoBgEYnt2gPCx5PD+m7d0s0SuTdPYXERp7ZVgK fkLKifo7IRWJYoAACIAACIBAcAKVH3K0kysQ/WSaLsxMBY/YJyEHXf4+wdgVMWB4dgXzcGRy 8PlFOvO7LaOwnd1DqULb95J09LzG9fQUXZq7AEO3zduse/XXpqCE+m+XIOKDAAiAAAiAQJVA he5ERunyQ/krStnyJkUGam+3QZd/uO5DGJ7DVd8dLe32f5ylX32cM/KI3c1T6jfTncmvkqOz o2epmpPMor0XZeX4iI3YUZr66UTP9tGs/HhMB4/zVCwTjb42ThMTUzQ1MULHj4+o+Mo4TbNs nT5arb+u8wu5/jvNFemDAAiAAAiAQP8SqNDG+6O08GVVwuR+meZ/NkiW56DL3793RkckEziG jkD2dkzwzVT3L7aWbZrLzs2IlSaPeDYdP3CEFwWxfj0uYrNmfjGRbzW7F3kRrbFY3W81kcCS uwM+zYvVRbMc/nWy+cQdNewzLdVfL/iFWf9hQ0R6IAACIAACJ5RAUazO+rfTpl61vlccsPKX xfqMWa6IyD4bMPHFoMs/aLzbkxcjnh0x5/s5Ue4ZinLP1jcNZJxNUnlrvrkRwB8PaFuuEaBx OvvLLqzxfLxBp95a4PxilC+naLqVDrqXB3T51TN0h1NZ516+eDd7+R6nWf5LtoqIzkap8M2W NppbvdwV2Vqpv57yC6H+bfTxAwRAAARAAAR8CHB7d4n1hbTPZfN0dC1Pm4sdmvFlZhLyZ+n7 HGWfsP722hSd/8fp5nS/kGVpJblBl7+VMg9qHBieg1pz7chdOqbcY37BsPOfg7/coIX/lOsy o5TcXqbp14gqL4mm3o7QxFg7mXQ+buX7DRqdrhqeWTY8W1qT0DPDyT41JHF3h258cM5ap3r8 XZri71yi6orZHhjFQauvZ/z4Pg2j/oOWE+FAAARAAASGnkDphwM6Oq4whyKlPv4VfSI78WeW KPP5Je5yl8cITc1MW225cQr/QAAELAInwvAsPd6l1L0UpdPbJMfbjGPyLC18ME8L7HSGl8p1 9qgc0+5ftyn/fZHfOSM0+voURX5xnqZfJ9r+IknHNMr58+K9sbMUezfSVz1JR/cu05vzcryP Rw1f8Khhk55oj/6Wpu39Co1qjMs0QZc+aMLZT4v8lOGRoPyzZaJvk3TnC5bnkbwLJunC/AJd +/18/frvleH0PEcXXztrGJaRmxnK/vsF1z1a+ftnNPrzD43z5ohn6fttSv2V7yiNt2zoIu/G aNrRUXD0LbN4rNcN34On+R58T92DbddfCPyOv+MybWzQ1jdZ4/mdnJykyZkLFItFaYoO+LnO 0tjPF+jKe/Ye5FDq30UdJ0AABEBgeAjINmDjz0lK7R1VC80OZiZZb1pYXKDYr1Vb0SkileMD 2vk2Rwc/Fll9GqfJn07T+XM8Y4rf/Rtf7HDzxvpTpcxtwEWKznTe10Ez5dx4/1R1XeRcksRf 5gNFLT3k9m6v2oaX2X49++48RcxiPT+i9L1tqsgyy8NRblf7f3qEZ0jdoeReVedZ+HiFErPj tPGHG7TC7WbuYY6ii6u08ukVmj5dTVL9r9DuV2nKs5PGWm58Seqp52n+XXtbq+LwN9bXtr7c ppI8yfKNvMNt9T+M0/b/+4w++2qHjgosyyQ7fPzgCiV+c6GuvluRs6y+2aYd1p9zP1SoIOPy MfnzKMV/9yGna4IxTjv+tSg/p1JhPSqp6VG2epDe/b9K0sbX25SVuiSXJfreFbr2z946bTvP j7z301+mKfVNjRvrrVM/Z6/CbD+Ml7KU/PMWRT/doiu/rMfBgWUQfrY3U7fHsV8URfJ61FpX yLw9v69vFzomaP7+imeeUpbYnFMenjvfg2WE9Qqfvxuvyd/KOkl9Xr29rEHXS7bDr3yQ9GWv 7oWY2HEutyhmxdJcVPC0Vv7T11dGaufMa/w5ExXL6Xw9hC1dK++vW7Kv7PndFEWxXruHUo9k GH/eK641tX5h9XvQLwyJuvUXFj9eq5m8qvO330OqDvn8zDqX3n60XP/2ZPALBEAABIaPwFNu B611fX7v3rjIPHG+ecNCVRaZW37+JqIi5tLnVl1tQFiStJZOWSRNHW82GVC2slh1lCt6W/nT KO+vWnqB1f5ZbZ9/e22FdaStzi+LwgtHKctZEfEMH62rp3rK6JmObLdX3PnWxChu++vOptzc Ke8QWvvZovx+ehQ7xBSFnL9OmbjvsCPafH6U7u337FXP87RtrdAn4ysNbjHci7wTt5Iis5cV 2e2UWDZfCLUHYmXXaX20X/L8hmm01b9x5EMUmY2JxK3NgC+n9mULmoK6+VsxPIXIri2J2GJc xOXfnDIieISuoQjt8vMyPGLXV8T67WX7C/Wq/eVVznm83P1enMb5DjR4z7KWUyP5cj5sjMvg efhg1V62Gcl+WWSfunFn7y6L+FX7PRq7mRL6k9BK/YXDryBWnErPbFws314Vy1c9lBGPhr3V +neTwhkQAAEQGCIC3HloOtWrKvlRsXJ3U2RzWZG5v+4w+qIi49G+tEeLjbbFxnqTaYBE5+Ji 9X6/KeCtGJ5C5O+vsq6kBkxiumFR2OFO8Zi93Z5TRu3hg3VbXIPP3JJYue5uM2M3V0RCc4SU PHAoGbLjVzpprOlvMas9bqALssG1zHpF1Apv1mNEJGTbzZ31Zr3Jz/iGd73lb+vhImLpNuvv 2xmRvGXXWVxymzdeq/Jz/MI2czTK7eZmyh7letCfkdjGoZmzEO0+P08zmh4XE+v3s+LwSUHk czvsONMuk+3+UBIM9LeBNTwP0wl1c88ui7yHF67DB3qPSrx1z6deVVzQbxwSK/xStB7rclFs OnrykgdeifT+XLuGp60Ej1RvUUPDMwR+dsMjLnYKVg0I8SwvEpYx6ah7Hinfub8pNu9nxGZa GXJx+eJ7IM9rf2lujDvS48uGlyVf9cWduLkuUixTNpc3XkJlrTg65/Keuq9TurfbZwVWGlIi k7P3zFm9sg4DXE/T+B60/kLgp+47WfaoSDpklvW3ojWa1NDwbKL+XQXHCRAAARAYFgJlkdKM vujNTVF0joaxNmMbjVxUxk8YlArby0p/o7jY3FfdoWXp6d02cMCGkEu+MKRoN43WDE8jV/YG H6+1/36GxaE5sOFs+7S4pNXLzk1lyCXMWVo8KmiOHCfSmuHkUXQrP2pgeNbiqvDchs/aO8/L jzaVYTXrnq1kJMH1nFyTg0Vuuco5NSMs6IifkieY/M56MA1OmlsVeaujpSzy25simc5oz0j7 z095X+nKyUfuyijuNV9+dyr9e2ZADc+iNlrCvXHqneUivalN5WtoDLli+5/I31W9En6jqTu3 1IsgzLz9pWr+ijIAmnhYfbLRDcFG5Q2DX6P89BeR7xRn7SXe9c6BJxlbj5r14tMM0uj1dZF3 3t/lvNWY6I1W5qbZ80iqh1obWV3ediZkr8hGPO2ha79a4afFkWVOebx4jdS5nGbjTB6NVyN5 A9W/Z6FwEgRAAAROKIGi1mnOs238W4WCWLLaoljd6ZfNkdIMNu509B5N5Rlt1ohamHk3J2n9 0Fo5nMZh/Yg821O1bXobrkezdDNn2npcnh5qHoX7SzVjPqqWF/noCmYc/dPKL6DhqcJ76+AZ c3s9bcRWz8/6zgM1+b0dY7Qzs70jsns85fWJMpj9+Fjxa1+UPE3oshpLqYtEeWqvT3+/yi6E 50c3PJflSL5Hx0p5PyXivBxsddc+kKAEGdxvg2l4ag+TvFliN5fF8nX+k5/63y29V00O+bt7 Vlqtusz12rTS2VX/Fzf3NplD9Y0MsVblaDdeoIe1LKcAZEXBv4UyxGhkCOiyhsFP5ccjml4P rrUGtM6LSDOCelJHPHqYubui7UmqjEdliEZExvHusXqs2SAzqoWnnRhKwkz1vkykqxGKe+a0 Yl634TErQK8TxZNEYBat8GNj2OyFjVy3T4PW5ZHfi7zmIsZlStzecV4SSt426t+VKk6AAAiA wMkloPsXkG3MEutJS7reVNOnVm46pjwafgZC4MJtFbsCNIwkfX2jM2U16lWn/XZG6urvYIZn +emhMYvJNqqstZt+hpWlmzkNT7+4nvqOMuD98jGRWfk1a3g65aslaKXnc738aEesBNjDvJHc rcpvxNNY0tVNM6m6n6E8P082tRH/6rMgl+MZ03+vJvh5XBHJ+zui0EBnqytoH18cTMNTv1lq LzClpHsp7tVzcvFwOAe/cMxpgPV6czQ5Ayvy4QgYOBXr5VDnZZNfq43c+rxAzMyUIdDIcAmH n8rPu2FqdN2Qu5/q6EVZFJ8WxOE+r7PhKcBmp4Vxby/aX4qFB2anCvduypfTk5T9Rcb3pTyy 5qh7g7qTYRWvRvUnQ9eOFvjpL+52nkklbxv1b5YDnyAAAiAwBATUe9NfV/LSp3zX2jXLTJv+ Wff972lINZtZJ8MHMTyVQ6Corn9q7aafYWXpZs622yeuqle9PVQy+uVjErLyq6MLmmHlpxXe Rwe2rjvll5F9DK8Erx2N2Rw+8sCSvgZWxvU5rPwCym8ko7PU68cnD3lacW7v+cmnzRHq+ulY 06bryDRol06A4RnnnoFNkUqn/P82krx2jnsPPEbFWq2wjDWfnr2F+SWiLSAeaMPT9Hzr9QLR yq4/kI3KGwY/lZ/+olUCNbpuhNRePKE1rEoE32/FXEokeHH76v06o/AvDrWpTg6vdM92LMN0 Za8oDtP23mnidTN5XvNpTlcKMtqveLVmeAbmp63vDdqoeIFU8rZR/14J4xwIgAAInFAC6r3J Cu/cCvs0qKM7sV6VZP1pc1vzYdE2F+VYrt6Ml6K1DtT7/d62GG0noIw6Lx8E1eRVGFtbp+kd tvOaTNnbteVcTr3LJ66qV52XT/5aPubXZg03K7xTvlqC9a5vXlXGVoydbrpG9ngm2HptcMeP jym3+Wnl16rhGdDAVZxDeH6Kh2JzjZ1AsS4Y89xpocrJOePNLPOgfg6m4alPteWprg3nZAeo nfKjjM0DWGKt/lxvfY1i/K5yh62y4gdeW8DfyBBrNn+VT3vfgjysVhifF4wpgf5ANipvGPxU fvqL1pRG75nyvm6E1F7iLnfZKqnQv+XXzDXCLFudDhG1Ttjp4lw1KNHrqzxlpfqCSrJXZ9Nb 7PKaGjXd1J0Q+ZRG8WzN8AzMj5mbU22Jlhp2CBUOeM3HU/dTruT1rt9G130w4DQIgAAInFgC 6r3Ia9q0rTzaKfAhewlVM3Siov4WdqrtkiOrSddWYCwJO5ez1vcHMCSay7+dkupxtXL46kYq jM2A0nRY71FfHik1Z9U509Z0Fj1NVa96e+iTv16M2ndLzwvAW0axwjvlc6bnvK5Ntfaf3qqm Y+tlrCXt+WHJE1B+IxEflp4Z1E4qzm08PzX/Hgm/UVa5BEtzUNpIn64nbz9eG0zDk0laa9z4 xVVvKFrOr8/cXWU3zyueW05UK4WdFXlM2ZUjSb5HUY04yZdn9HpS5KVXVZ4uWTjYEcvmS6OW bv0bp4X8fQVr7oJywOK9Tk6mZoVxvkCcWWleURs66gmDn5Wfj/FmXfcvm1zkbxpBkZvudYSy Pg/32MX33aTI6l5znWVv8rd6SfL96+NunJ1+i2XTwcKMey1xQffsbNxn1XJmzUX91j1dz4GE JrjFi5WBA+18va8t8XN6hfPp5Cnm1XNk7WWmCWPJ20b9a8nhKwiAAAiceAKsbCuP7/Jd7+7U MxkUH2VFkrcnW7qZ1Lx6mldrn9yWu/eDjCgHN47g8qfyPVDtMF26K9ezsRzsyj2/m9SMWHld N6S8Ems+f49UWjpleYyvLW3xSsQMYzeg1KgvefgJKWpeXV2jqZqxpG9VogwiXd9Rhqce1ktO S8+Ts6XqdIabca3wPmX3va7JT15x2ejatGYU8lRbP+PMFKT2aeUXUH4jmiZLPGA+IoTnR3cu VN2j3VEY+dOaat7EQIBHMv14amANT/HIvqZNGn7ZJ0VR5gemXJResjJi9aryKiuNwxWvnjVZ K6ZjFktRr74MG/UGqnV21fBe6yLMc3UNzxbzb/mGKhbYcxjvd8oOg5LXFaMl3ktIOhEyrsnr 8o/XG1phbIYnG2R6WP6e2VBz1iM8fcKeVt7VcLXDr/gor+XH23Fs8z5ImmFYsF0nsSz3SdKu K3Z2o38lnRVFvn8KB1mRWrPvBxq55TWyrVJq5ptueMp7ZFnmq73sDZfy2oi5vdGq5aRN5Tbu s9pLvGw5FKp3H7dff1UpWuTH023NZ8P4nF3ibWAOq+y57lK8P6z9ut2df3j130ytISwIgAAI DD4B23Z03P4s3c1UZ5XU/AxkHyRtM8CIIv5ebT3W68l396qfvlXDZzkYdOhdtve+ca2B4dli /q3WYvFJvqY/ZVTHKMu5ydug2XQnQ8dSYZxtuD54Erm6zvprQRQLPFCypm0VKMs/x57tH3Hb KPsHnhV5n3rdMOc9vB/VFntphorU5YzwPB/QNHyJeNtB1pGNgz3J2mTV9TzOc+VBVT+0wuzr C8rk4EpW2/ImYpTdcj4pO+tt6fF16anWcpSjy8SGpdTduQxVnU3N0jLvg4i8vs9bzOmzntqU 39Jd9U4O9vAs9d1qmVlfZT3ZW2fkwRhHp3+zz4/qJKjqaFLvNDpeZOWwHlg8yGgj/nxv6fir NTjQ/wfX8GTsh/dNByuNDT+aWfLc67Nae2pY37zZ5efSg8a1bXjdlC8H1x9PN9lQ00/qGp5y ZMsVP1j+zd99/NA7RmPdsnuVh89pW1roDmKCxvdqiFrip3kLtuVtjor5XSfv/aSCGsDr9UbA m6wINdXWzjrC7rPdGzNzD6Rnp7TyWCc5WOs4nymvsfK8170XVv3JYrfKr7in9rKy1aPrWUiI rD75wK9+W6z/JqsOwUEABEBgwAnwPp3aqFL99y+JyPWUv/d+7gD1ih9EWc5u+OhwrK8l75qd jw0Mzzbyb7oSebRLTSm2t91eDPRzzv0oyznT43ywdCI8LTpl299UxVs94JJYM4Cq5yO3q840 leEpz1c7ECyHka62VqWpy27Gk7z8dAcpX73r+shtcVftRW7Pxy9/Pm+275xJJ+T3lEPL0yic 9a/N58dRV555m3UT0NuuJdoAfBlow1PyLfN+P/VcMsd5/VvG1lvjXStF3tBVny4SWVxvuPZM pcQ9QNxTktnO8B/vQ7R/aIy8ioIalfVS/lV87uFoK389pcbfs9b6wjoPuXnTa58xfUuLAHtQ 2h+mCO/X6Gk9scBN8rM53dHKcDVVXe/rcz1iXvdAlL/v7mmT8kfmEmI9zdOA/ET3SCvIqeKu T4Or8Zb5x2+l6uad3zDXivJ+mNY6Tr1HMS4OtZFUS7ZQ648bglb58XTadcfMBOu+mYmLde55 daH3qV8y69fner36t7jgCwiAAAgMCYHCHu8VaC7ncLQ9xHtsLt2WM8lcb2AXnbw228lot9Y8 lq24YtVO6Ps47u7w6F61w18tJWlgeHIybeXvJ5fneXZ642P8We2Wi2NVR1nd1XtPq4kX9BE3 Kx4PWuzy6KnD6+kyD4Q4Z0pV8+R9NCUyh2f7pftVjvaR5SVDHwjaWazKxAM3ph7BI8y6rmyG SaRrjhJ9rsfX7DPG5Lpcr3SiizzyyApXYdtunEa1rdfakp9nWwXtPJD7etY7Wn1+9BFPOdhg MrR/RoQcCW389NWTsD+vnZJicWEH/3heoqMfCjQ6MUn0vEJ0eowmTo8QvdJE0V4SVTgdemWE RmTcNo/Kwzs0GrlspLKeK1N8pkGaIeffpvg9j940vxAkrpRKVOF6kMfI2BiNNHP/VKMF+//y mLa/3Kbj09MUe5dfv6VjOvrvApUqfO+WOe/xMZp6e5rGGtwy9LJCub/vUGXkDJ2bmVB5Pz+m 3b08jbx1niJvNEpERWv3W8v8+Lk7/qFINDFuPL+S/VgIz2C75UF8EAABEDjpBCo/cvvzI9Ek txWVUsVo+5p+/3LbJduvkRFuN0NocnJ/ukRn/1ea0ccoW05RpFGaIeffzTovHR8Tt/ysb3C7 93qjgnZTsg7nxfrL8XGBilz4kZFRGn99orHO02GRWkm+leen9MMx0RiX9zTnyDpnSeqeUv+r sAJ4epwmJsZaEWUg4pwcw7PvcJdo4/1xWvhSChalzNNNuvB63wnZxwKBXx9XDkQDARAAARAA gc4QKOXo8vhZuiNTn1mhYi5BJ1cN7wxCpAoC/UoAhmcINXP89y3azJVo/H9M0AiP3IycrtDG Rwt052Et8ZlVfnFewYvThzX4+YDBaRAAARAAARA4sQR4xs7XacryRLPJiQmecVahscoBXZu/ RrlamdmpH2X/lWcF4QABEDgRBGB4tluNLw/o4qtnaMs3nQhtPtmhaBenO/qK0o8XwK8fawUy gQAIgAAIgEBHCVS+5+VI09XlSJ4ZzSzT4d4STXVqyYtnpjgJAiDQSQIwPNumW6H0v5ynS/9l 9s+ZCUYocesaXfmf8zQl53Dj8CEAfj5gcBoEQAAEQAAETi4BObo5eob+6CzhTIxWPrpG8blz NAaj00kHv0FgoAnA8Ayr+nhRcIUXSkvHNCO8sl7+4WiCAPg1AQtBQQAEQAAEQOBkEJBTbKX+ xNpTTX86GeVCKUAABNwEYHi6meAMCIAACIAACIAACIAACIAACIBAiARgeIYIE0mBAAiAAAiA AAiAAAiAAAiAAAi4CcDwdDPBGRAAARAAARAAARAAARAAARAAgRAJwPAMESaSAgEQAAEQAAEQ AAEQAAEQAAEQcBOA4elmgjMgAAIgAAIgAAIgAAIgAAIgAAIhEoDhGSJMJAUCIAACIAACIAAC IAACIAACIOAmAMPTzQRnQAAEQAAEQAAEQAAEQAAEQAAEQiQAwzNEmEgKBEAABEAABEAABEAA BEAABEDATQCGp5sJzoAACIAACIAACIAACIAACIAACIRIAIZniDCRFAiAAAiAAAiAAAiAAAiA AAiAgJsADE83E5wBARAAARAAARAAARAAARAAARAIkQAMzxBhIikQAAEQAAEQAAEQAAEQAAEQ AAE3ARiebiY4AwIgAAIgAAIgAAIgAAIgAAIgECIBGJ4hwkRSIAACIAACIAACIAACIAACIAAC bgIwPN1McAYEQAAEQAAEQAAEQAAEQAAEQCBEAjA8Q4SJpEAABEAABEAABEAABEAABEAABNwE YHi6meAMCIAACIAACIAACIAACIAACIBAiARgeIYIE0mBAAiAAAiAAAiAAAiAAAiAAAi4CcDw dDPBGRAAARAAARAAARAAARAAARAAgRAJwPAMESaSAgEQAAEQAAEQAAEQAAEQAAEQcBOA4elm gjMgAAIgAAIgAAIgAAIgAAIgAAIhEoDhGSJMJAUCIAACIAACIAACIAACIAACIOAmAMPTzQRn QAAEQAAEQAAEQAAEQAAEQAAEQiQAwzNEmEgKBEAABEAABEAABEAABEAABEDATQCGp5sJzoAA CIAACIAACIAACIAACIAACIRIAIZniDCRFAiAAAiAAAiAAAiAAAiAAAiAgJsADE83E5wBARAA ARAAARAAARAAARAAARAIkQAMzxBhIikQAAEQAAEQAAEQAAEQAAEQAAE3ARiebiY4AwIgAAIg AAIgAAIgAAIgAAIgECIBGJ4hwkRSIAACIAACIAACIAACIAACIAACbgIwPN1McAYEQAAEQAAE QAAEQAAEQAAEQCBEAjA8Q4SJpEAABEAABEAABEAABEAABEAABNwE/j8VOUOmJvQvMAAAAABJ RU5ErkJgglBLAwQUAAYACAAAACEA2P2Nj6wAAAC2AAAAEwAAAHBwdC90YWJsZVN0eWxlcy54 bWwMzEkOgjAYQOG9iXdo/n0tQ1EkFMIgK3fqASqUIelAaKMS491l+fKSL80/SqKXWOxkNAP/ 4AESujXdpAcGj3uDY0DWcd1xabRgsAoLebbfpTxxT3lzqxRX69CmaJtwBqNzc0KIbUehuD2Y Wejt9WZR3G25DKRb+HvTlSSB5x2J4pMG1ImewTeqgiCitMCny+WIaUgDXHo0xnFU1tW5qf0q LH5Asj8AAAD//wMAUEsDBBQABgAIAAAAIQBN4BrKiwEAADIDAAARAAAAcHB0L3ByZXNQcm9w cy54bWyskt9q2zAUxu8Heweje0WS/8ixiVPsyIHBLsboHkDIciJqS0JS2o7Sd5/mpGVdKZTS qyNx+D79vqOzubqfp+RWOq+MbgBZYZBILcyg9KEBv673cA0SH7ge+GS0bMBv6cHV9uuXja2t k17qwEOU/nBJNNK+5g04hmBrhLw4ypn7lbFSx95o3MxDvLoDGhy/iw/ME0oxpmjmSoOL3r1H b8ZRCcmMOM0R4Gzi5LSQ+KOy/snNvsft3xwvkLYxpLwP3324nJKTUw146Eu666u8hRRnO5iT PIVd1XeQMpKVGBPcpuXjXzXJ60F5wd3wbeYH2Q8qMB74ExzJX+HNSjjjzRhWwsyXnMiaO+ms UUtUgi/zuuVTAzBA2w1a4F4ysoy0mKYtLKt1C/MsrWDbMQa7rl0XlKa4IPiZUY78NIWFkVn1 iXhZWtLyLcQ9K/p92zKI+10P8yLrYbXOCMxpl2ZdH0uWnxGLWhy5C9eOi5u4Nz/l2HEvh2fQ 4iOg6ZtzPNfl29H/a779AwAA//8DAFBLAwQUAAYACAAAACEAecs1pXcBAAAVAwAAEQAAAHBw dC92aWV3UHJvcHMueG1sjFJNT8MwDL0j8R+i3KHdNPZRrd0FwWUSSBvcQ+p2QW0SxdnW8utx 23V0Gofd8uzn52c7y1VVFuwADpXRMR89hpyBliZVOo/5x/blYc4ZeqFTURgNMa8B+Sq5v1va 6KDg+O4YCWiMRMx33tsoCFDuoBT4aCxoymXGlcITdHmQOnEk4bIIxmE4DUqhND/Vu1vqTZYp Cc9G7kvQvhNxUAhP5nGnLPZq9hY16wBJpq2+sJTQcLohFp/tiA0mrjcO0jVknuEPreppGs55 MMxtjW1Ti8l0NmtSwbUOFiqFPyg3RdohhlrYrXl1Ko05XaGDb1/fID1Su9aVPHEPwm2kKKCP YwOSpYiwYnTGxZgzUhmFYeOCovV1NDhX2cg4lSvNqpjP5hPOaiIRuSOdWja0fE/e1+hPibP1 TuxyMG084BYqP5h1sIVLv6PO2NDsIPS/07D12Y9y1m5XftU6p61urJD0+ZhsxqRj08eWdf/s VLofnfwCAAD//wMAUEsDBBQABgAIAAAAIQDXz2FQ4AIAAHwHAAAQAAgBZG9jUHJvcHMvYXBw LnhtbCCiBAEooAABAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKRV wVLbMBC9d6b/oPGpPYAToIRmFDNMGIYDKRkS4KzI61iDLLnSJiH9+q5sYhIwnaa97WqfVk9v tSt+/lxotgTnlTWDqHvYiRgYaVNl5oPofnp1cBYxj8KkQlsDg2gNPjpPPn/iY2dLcKjAM0ph /CDKEct+HHuZQyH8IYUNRTLrCoHkunlss0xJuLRyUYDB+KjTOY3hGcGkkB6UTcKozthf4r8m Ta0M/PzDdF1SvoRPLQo9VQUkvd63Ex6/+vzRutQn3ePeGY9rm1+UpVZSIGmSjJR01tsM2UhI ZdD6nI3tCtzYksfjbSyJAp5IVN5VxTF5VCl46QAMj1vCfCycmDtR5j753iPIq8snOuwlajx+ MfkPi2GFx7XBr1WagtkAebzj89FoqFXpkw6PNyafSKFhSOIkmdAeKHWzwK9BhMKPhXKEXGJ/ CRKtY179otKfRmwmPARJB9FSOCUMRjWsdipblx5dcmUNenbvIeVxs1iZ29htW50kxxWAjD8C 61xTeg+wR+7uHrkr+dhUoQa/zxEf8K+cSkiydyWuz7jNqOrYoni3ty15xaIWvCY0FFrNnNqm +DbGbtQ8x1bEBdHTrZHbqqPYO4kba7TQSG/eI/MgF07hmqVOZO3n3MHPhXIQmnNHzVeqC+co yELHWv8Bp4nVi9A27JaG1VLBqs+GtiiUD4OLBGXjXITX/HdbJ4E2sOYerfsuVZYBMZM04maA K2phhjkwXFnmX3L+x42uhUtXglgM3bpEy2j+0Uk+3AVpMH2Q2ZLoS78NZq3AG0FjVa4ZvQO5 0NXEaQe+zK+Z0qGMNOqxKhX7QuRnGgrPVgpz5tdFAeiUZE+wbq7/db+UdyCpZjTuKz57bX7X h5uGetNC9ChKYdYUaKwbZZ78fTm1l5RrM/V2F/kkp0qk9Ik0U7FZ4NfUfU4H/DAXZg7pBvM+ EH6Oh/ozTbrfDjudo171Q2zWwhew+eWS3wAAAP//AwBQSwMEFAAGAAgAAAAhAB06XslrAQAA uwIAABEACAFkb2NQcm9wcy9jb3JlLnhtbCCiBAEooAABAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA AAAAAAAAAAAAAAAAAAAAAAAAAIySXW/CIBSG75fsPzTcV6C6zZFas494NZMldtmyOwZHZSu0 AerHvx+tWjXzYpfkfc7DOQfS8UYX0QqsU6UZIdojKAIjSqnMYoTe8kk8RJHz3EhelAZGaAsO jbPrq1RUTJQWXm1ZgfUKXBRMxjFRjdDS+4ph7MQSNHe9QJgQzkuruQ9Hu8AVFz98ATgh5BZr 8Fxyz3EjjKvOiPZKKTplVduiFUiBoQANxjtMexQfWQ9Wu4sFbXJCauW3FVxED2FHb5zqwPV6 3Vv3WzT0T/HH9GXWjhor0+xKAMpSKZhXvoBsWhdeCe585EDUNmgjafncp7hDGlhY4L602cPX Uhm+imal5pZ/1y12CJutF0E1DQ80VyAftxf4v0xTZmGlmkfOBqRFunO6X9nuEpBRGJXtFnNI 3vtPz/kEZQmhdzFJYkJzMmSDhA2Gn01/Z/VHod538B/jfU4JG9wwmpwYD4Ks7fj8u2W/AAAA //8DAFBLAQItABQABgAIAAAAIQCdhBDdEgIAACsUAAATAAAAAAAAAAAAAAAAAAAAAABbQ29u dGVudF9UeXBlc10ueG1sUEsBAi0AFAAGAAgAAAAhAKPsgiYCAQAA4gIAAAsAAAAAAAAAAAAA AAAASwQAAF9yZWxzLy5yZWxzUEsBAi0AFAAGAAgAAAAhAFt8B6beAAAARQIAACAAAAAAAAAA AAAAAAAAfgcAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGU1LnhtbC5yZWxzUEsBAi0AFAAGAAgA AAAhAGWazV7XAAAAvgEAACAAAAAAAAAAAAAAAAAAmggAAHBwdC9zbGlkZXMvX3JlbHMvc2xp ZGU0LnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhAEv1Pey9AAAANwEAACAAAAAAAAAAAAAAAAAA rwkAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGUyLnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhAEv1 Pey9AAAANwEAACAAAAAAAAAAAAAAAAAAqgoAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGU2Lnht bC5yZWxzUEsBAi0AFAAGAAgAAAAhAGNcI7TAAAAANwEAACAAAAAAAAAAAAAAAAAApQsAAHBw dC9zbGlkZXMvX3JlbHMvc2xpZGUxLnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhAEv1Pey9AAAA NwEAACAAAAAAAAAAAAAAAAAAowwAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGUzLnhtbC5yZWxz UEsBAi0AFAAGAAgAAAAhADQWVgHrAAAAVQIAACAAAAAAAAAAAAAAAAAAng0AAHBwdC9zbGlk ZXMvX3JlbHMvc2xpZGU4LnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhABVpqQFpAQAAsQoAAB8A AAAAAAAAAAAAAAAAxw4AAHBwdC9fcmVscy9wcmVzZW50YXRpb24ueG1sLnJlbHNQSwECLQAU AAYACAAAACEAS/U97L0AAAA3AQAAIQAAAAAAAAAAAAAAAAB1EQAAcHB0L3NsaWRlcy9fcmVs cy9zbGlkZTEzLnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhAEv1Pey9AAAANwEAACEAAAAAAAAA AAAAAAAAcRIAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGUxMi54bWwucmVsc1BLAQItABQABgAI AAAAIQBL9T3svQAAADcBAAAhAAAAAAAAAAAAAAAAAG0TAABwcHQvc2xpZGVzL19yZWxzL3Ns aWRlMTEueG1sLnJlbHNQSwECLQAUAAYACAAAACEAS/U97L0AAAA3AQAAIQAAAAAAAAAAAAAA AABpFAAAcHB0L3NsaWRlcy9fcmVscy9zbGlkZTEwLnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAh AEv1Pey9AAAANwEAACAAAAAAAAAAAAAAAAAAZRUAAHBwdC9zbGlkZXMvX3JlbHMvc2xpZGU5 LnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhAEv1Pey9AAAANwEAACAAAAAAAAAAAAAAAAAAYBYA AHBwdC9zbGlkZXMvX3JlbHMvc2xpZGU3LnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhADaIiGjw AgAADg8AABQAAAAAAAAAAAAAAAAAWxcAAHBwdC9wcmVzZW50YXRpb24ueG1sUEsBAi0AFAAG AAgAAAAhAB4PB5q2AwAAWAgAABYAAAAAAAAAAAAAAAAAfRoAAHBwdC9zbGlkZXMvc2xpZGUx Mi54bWxQSwECLQAUAAYACAAAACEAUd8Otv8DAAC+DAAAFQAAAAAAAAAAAAAAAABnHgAAcHB0 L3NsaWRlcy9zbGlkZTUueG1sUEsBAi0AFAAGAAgAAAAhAG0Z/yI8AwAA+AYAABUAAAAAAAAA AAAAAAAAmSIAAHBwdC9zbGlkZXMvc2xpZGU0LnhtbFBLAQItABQABgAIAAAAIQD+QKpDYQQA ALcPAAAVAAAAAAAAAAAAAAAAAAgmAABwcHQvc2xpZGVzL3NsaWRlMy54bWxQSwECLQAUAAYA CAAAACEAjsrQvssDAADjCgAAFQAAAAAAAAAAAAAAAACcKgAAcHB0L3NsaWRlcy9zbGlkZTIu eG1sUEsBAi0AFAAGAAgAAAAhAIMdkrNwBAAA5g4AABUAAAAAAAAAAAAAAAAAmi4AAHBwdC9z bGlkZXMvc2xpZGU2LnhtbFBLAQItABQABgAIAAAAIQD4KSiDvQQAANkQAAAVAAAAAAAAAAAA AAAAAD0zAABwcHQvc2xpZGVzL3NsaWRlNy54bWxQSwECLQAUAAYACAAAACEAozRM8zUEAACg CwAAFQAAAAAAAAAAAAAAAAAtOAAAcHB0L3NsaWRlcy9zbGlkZTgueG1sUEsBAi0AFAAGAAgA AAAhAG1+696aAwAAXQsAABUAAAAAAAAAAAAAAAAAlTwAAHBwdC9zbGlkZXMvc2xpZGU5Lnht bFBLAQItABQABgAIAAAAIQA27M56eQMAAJ0NAAAWAAAAAAAAAAAAAAAAAGJAAABwcHQvc2xp ZGVzL3NsaWRlMTAueG1sUEsBAi0AFAAGAAgAAAAhABJ3U/pQBQAAvg4AABYAAAAAAAAAAAAA AAAAD0QAAHBwdC9zbGlkZXMvc2xpZGUxMS54bWxQSwECLQAUAAYACAAAACEAN/P9YKUHAACP GQAAFgAAAAAAAAAAAAAAAACTSQAAcHB0L3NsaWRlcy9zbGlkZTEzLnhtbFBLAQItABQABgAI AAAAIQDaVP/n+QIAAKIHAAAVAAAAAAAAAAAAAAAAAGxRAABwcHQvc2xpZGVzL3NsaWRlMS54 bWxQSwECLQAUAAYACAAAACEA1dGS8bwAAAA3AQAALAAAAAAAAAAAAAAAAACYVAAAcHB0L3Ns aWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDIueG1sLnJlbHNQSwECLQAUAAYACAAAACEA 1dGS8bwAAAA3AQAALAAAAAAAAAAAAAAAAACeVQAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9z bGlkZUxheW91dDkueG1sLnJlbHNQSwECLQAUAAYACAAAACEA1dGS8bwAAAA3AQAALQAAAAAA AAAAAAAAAACkVgAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDEwLnhtbC5y ZWxzUEsBAi0AFAAGAAgAAAAhANXRkvG8AAAANwEAAC0AAAAAAAAAAAAAAAAAq1cAAHBwdC9z bGlkZUxheW91dHMvX3JlbHMvc2xpZGVMYXlvdXQxMS54bWwucmVsc1BLAQItABQABgAIAAAA IQDs56B41AAAAL8BAAAqAAAAAAAAAAAAAAAAALJYAABwcHQvbm90ZXNTbGlkZXMvX3JlbHMv bm90ZXNTbGlkZTEueG1sLnJlbHNQSwECLQAUAAYACAAAACEA1dGS8bwAAAA3AQAALAAAAAAA AAAAAAAAAADOWQAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDgueG1sLnJl bHNQSwECLQAUAAYACAAAACEA1dGS8bwAAAA3AQAALAAAAAAAAAAAAAAAAADUWgAAcHB0L3Ns aWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDcueG1sLnJlbHNQSwECLQAUAAYACAAAACEA 1dGS8bwAAAA3AQAALAAAAAAAAAAAAAAAAADaWwAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9z bGlkZUxheW91dDYueG1sLnJlbHNQSwECLQAUAAYACAAAACEA1dGS8bwAAAA3AQAALAAAAAAA AAAAAAAAAADgXAAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDUueG1sLnJl bHNQSwECLQAUAAYACAAAACEA1dGS8bwAAAA3AQAALAAAAAAAAAAAAAAAAADmXQAAcHB0L3Ns aWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDQueG1sLnJlbHNQSwECLQAUAAYACAAAACEA 1dGS8bwAAAA3AQAALAAAAAAAAAAAAAAAAADsXgAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9z bGlkZUxheW91dDMueG1sLnJlbHNQSwECLQAUAAYACAAAACEA1dGS8bwAAAA3AQAALAAAAAAA AAAAAAAAAADyXwAAcHB0L3NsaWRlTGF5b3V0cy9fcmVscy9zbGlkZUxheW91dDEueG1sLnJl bHNQSwECLQAUAAYACAAAACEA/GOLlBEHAABmMAAAIQAAAAAAAAAAAAAAAAD4YAAAcHB0L3Ns aWRlTWFzdGVycy9zbGlkZU1hc3RlcjEueG1sUEsBAi0AFAAGAAgAAAAhADTNuc4WAQAAxwcA ACwAAAAAAAAAAAAAAAAASGgAAHBwdC9zbGlkZU1hc3RlcnMvX3JlbHMvc2xpZGVNYXN0ZXIx LnhtbC5yZWxzUEsBAi0AFAAGAAgAAAAhAMikU3seAwAAuQgAACEAAAAAAAAAAAAAAAAAqGkA AHBwdC9zbGlkZUxheW91dHMvc2xpZGVMYXlvdXQ2LnhtbFBLAQItABQABgAIAAAAIQA3oj0y 7QIAAGcHAAAhAAAAAAAAAAAAAAAAAAVtAABwcHQvc2xpZGVMYXlvdXRzL3NsaWRlTGF5b3V0 Ny54bWxQSwECLQAUAAYACAAAACEAVuGSrMYEAAC4EgAAIQAAAAAAAAAAAAAAAAAxcAAAcHB0 L3NsaWRlTGF5b3V0cy9zbGlkZUxheW91dDgueG1sUEsBAi0AFAAGAAgAAAAhAG2FxfXRAwAA rAwAACIAAAAAAAAAAAAAAAAANnUAAHBwdC9zbGlkZUxheW91dHMvc2xpZGVMYXlvdXQxMS54 bWxQSwECLQAUAAYACAAAACEAQ78z35oDAADMCwAAIgAAAAAAAAAAAAAAAABHeQAAcHB0L3Ns aWRlTGF5b3V0cy9zbGlkZUxheW91dDEwLnhtbFBLAQItABQABgAIAAAAIQDLVF/GlgQAACcS AAAhAAAAAAAAAAAAAAAAACF9AABwcHQvc2xpZGVMYXlvdXRzL3NsaWRlTGF5b3V0OS54bWxQ SwECLQAUAAYACAAAACEA8DK5q+wEAAAyGQAAIQAAAAAAAAAAAAAAAAD2gQAAcHB0L3NsaWRl TGF5b3V0cy9zbGlkZUxheW91dDUueG1sUEsBAi0AFAAGAAgAAAAhAAqt0WLFAwAAOA8AACEA AAAAAAAAAAAAAAAAIYcAAHBwdC9zbGlkZUxheW91dHMvc2xpZGVMYXlvdXQ0LnhtbFBLAQIt ABQABgAIAAAAIQDVwQxYoAIAAF4GAAAfAAAAAAAAAAAAAAAAACWLAABwcHQvbm90ZXNTbGlk ZXMvbm90ZXNTbGlkZTEueG1sUEsBAi0AFAAGAAgAAAAhAMKMH1MwBAAAVg4AACEAAAAAAAAA AAAAAAAAAo4AAHBwdC9zbGlkZUxheW91dHMvc2xpZGVMYXlvdXQxLnhtbFBLAQItABQABgAI AAAAIQBGk2ONbAQAADYRAAAhAAAAAAAAAAAAAAAAAHGSAABwcHQvc2xpZGVMYXlvdXRzL3Ns aWRlTGF5b3V0My54bWxQSwECLQAUAAYACAAAACEAfaDlmHsDAACWCwAAIQAAAAAAAAAAAAAA AAAclwAAcHB0L3NsaWRlTGF5b3V0cy9zbGlkZUxheW91dDIueG1sUEsBAi0AFAAGAAgAAAAh AJZtvEsEBgAAjRoAABQAAAAAAAAAAAAAAAAA1poAAHBwdC90aGVtZS90aGVtZTEueG1sUEsB Ai0AFAAGAAgAAAAhAGIIiP2yBQAAyh0AACEAAAAAAAAAAAAAAAAADKEAAHBwdC9ub3Rlc01h c3RlcnMvbm90ZXNNYXN0ZXIxLnhtbFBLAQItABQABgAIAAAAIQC0z1gZuQAAACQBAAAsAAAA AAAAAAAAAAAAAP2mAABwcHQvbm90ZXNNYXN0ZXJzL19yZWxzL25vdGVzTWFzdGVyMS54bWwu cmVsc1BLAQItAAoAAAAAAAAAIQCgaIQ/vP0AALz9AAAUAAAAAAAAAAAAAAAAAACoAABwcHQv bWVkaWEvaW1hZ2UxLnBuZ1BLAQItAAoAAAAAAAAAIQCJ764c7xQAAO8UAAAXAAAAAAAAAAAA AAAAAO6lAQBkb2NQcm9wcy90aHVtYm5haWwuanBlZ1BLAQItAAoAAAAAAAAAIQDGeI3eoAMD AKADAwAUAAAAAAAAAAAAAAAAABK7AQBwcHQvbWVkaWEvaW1hZ2U0LnBuZ1BLAQItABQABgAI AAAAIQCWbbxLBAYAAI0aAAAUAAAAAAAAAAAAAAAAAOS+BABwcHQvdGhlbWUvdGhlbWUyLnht bFBLAQItAAoAAAAAAAAAIQCXS3rJhCUBAIQlAQAUAAAAAAAAAAAAAAAAABrFBABwcHQvbWVk aWEvaW1hZ2UyLnBuZ1BLAQItAAoAAAAAAAAAIQCpUIHbiX4AAIl+AAAUAAAAAAAAAAAAAAAA ANDqBQBwcHQvbWVkaWEvaW1hZ2UzLnBuZ1BLAQItABQABgAIAAAAIQDY/Y2PrAAAALYAAAAT AAAAAAAAAAAAAAAAAItpBgBwcHQvdGFibGVTdHlsZXMueG1sUEsBAi0AFAAGAAgAAAAhAE3g GsqLAQAAMgMAABEAAAAAAAAAAAAAAAAAaGoGAHBwdC9wcmVzUHJvcHMueG1sUEsBAi0AFAAG AAgAAAAhAHnLNaV3AQAAFQMAABEAAAAAAAAAAAAAAAAAImwGAHBwdC92aWV3UHJvcHMueG1s UEsBAi0AFAAGAAgAAAAhANfPYVDgAgAAfAcAABAAAAAAAAAAAAAAAAAAyG0GAGRvY1Byb3Bz L2FwcC54bWxQSwECLQAUAAYACAAAACEAHTpeyWsBAAC7AgAAEQAAAAAAAAAAAAAAAADecQYA ZG9jUHJvcHMvY29yZS54bWxQSwUGAAAAAEYARgC5FAAAgHQGAAAA --------------40CDF46736872F8AACF7C3E9-- --x9v7AiVJhH9f06CvjM02BfiOC79dVIm1F-- --HpuFpe1rWp7xjBclB0n8luukr8siQ0VQI Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 Comment: GPGTools - http://gpgtools.org iQEcBAEBCgAGBQJYrqnbAAoJEGhJURNOOiAtQtgH/21x5B2us7gNwe4G6QcjNWxR MiUFG9eYrCyXNNX3jMrmJWsyZCuYTnO5HYvZsIUkJpt32a01T4gwYLVCau4L/Yjh l8wsYXM/ZrkPtICVAaF9DJUb06hPolz0UVOOWUaX0/6pFNXwEYT/UTVeKMMaUiXf Pgbj2RVM3OwQ/Kx/zGiYogEfNHBaFMA5ZVNaeLrYXhqGWvtxrpWxNlMLFhqXqfOn 05MlFqAyaMTBnfOrzkRPYu3YzicA8C4pODJlvIs6KBsOzZ8D3w5dTEenCcJB6yPh cMe4rgyJ7O30XI+j2RE0ym2Aev7eDUx9sfeOJfoLgpJNl4LtuTmRfqZYMkRkpz0= =R6Lq -----END PGP SIGNATURE----- --HpuFpe1rWp7xjBclB0n8luukr8siQ0VQI-- From nobody Thu Feb 23 01:48:45 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id AD0C7129666 for ; Thu, 23 Feb 2017 01:48:44 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.997 X-Spam-Level: X-Spam-Status: No, score=-1.997 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, MIME_QP_LONG_LINE=0.001, SPF_PASS=-0.001, UNPARSEABLE_RELAY=0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=alibaba-inc.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Mr61Jy-VJ3wT for ; Thu, 23 Feb 2017 01:48:42 -0800 (PST) Received: from out0-142.mail.aliyun.com (out0-142.mail.aliyun.com [140.205.0.142]) by ietfa.amsl.com (Postfix) with ESMTP id 66332129636 for ; Thu, 23 Feb 2017 01:48:39 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=alibaba-inc.com; s=default; t=1487843308; h=Date:Subject:From:To:Message-ID:Mime-version:Content-type; bh=B3CueU2Wtahb69gs5Hl9BfpuGF/nlkXgsX1TA6so1Fs=; b=hCcrgGRsloqC4Pe1DjJoFjQKFRES4LQ4nutIIA4WE21ciqFvSBiEStwqbnWKVWKKsaJRhXC1QmRuNBzVLWZ+aGKXKCznVDkSUR2/irbilq46eHhBnVSv/gJUhtIA2QB++aY7Wz1t2QDZjFMlGWW5omttvikbeuqiEmEN2sTu2RU= X-Alimail-AntiSpam: AC=PASS; BC=-1|-1; BR=01201311R141e4; FP=0|-1|-1|-1|0|-1|-1|-1; HT=e02c03301; MF=kepeng.lkp@alibaba-inc.com; NM=1; PH=DS; RN=3; SC=85; SR=0; TI=SMTPD_---.7gqeM.m_1487843292; Received: from 30.6.241.94(mailfrom:kepeng.lkp@alibaba-inc.com ip:42.120.74.102) by smtp.aliyun-inc.com(127.0.0.1); Thu, 23 Feb 2017 17:48:17 +0800 User-Agent: Microsoft-MacOutlook/14.6.8.160830 Date: Thu, 23 Feb 2017 17:48:11 +0800 From: "Kepeng Li" To: Message-ID: Thread-Topic: Call for adoption for draft-somaraju-ace-multicast-02 Mime-version: 1.0 Content-type: multipart/alternative; boundary="B_3570716897_9780404" Archived-At: Cc: Kathleen Moriarty , Hannes Tschofenig Subject: [Ace] Call for adoption for draft-somaraju-ace-multicast-02 X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 23 Feb 2017 09:48:44 -0000 > ´ËÓʼþʹÓà MIME ¸ñʽ¡£ÓÉÓÚÓʼþÔĶÁ³ÌÐò²»ÄÜʶ±ð ´Ë¸ñʽ£¬Òò´Ë£¬¿ÉÄÜÎÞ·¨Ê¶±ð¸ÃÓʼþµÄ·Ö²¿»ò²¿·ÖÄÚÈÝ¡£ --B_3570716897_9780404 Content-type: text/plain; charset="GB2312" Content-transfer-encoding: 7bit Hello all, This note begins a Call For Adoption for draft-somaraju-ace-multicast-02 [1] to be adopted as an ACE working group item, and added in the charter. The call ends on Mar 7, 2017. Keep in mind that adoption of a document does not mean the document as-is is ready for publication. It is merely acceptance of the document as a starting point for what will be the final product of the ACE working group. The working group is free to make changes to the document according to the normal consensus process. Please reply on this thread with expressions of support or opposition, preferably with comments, regarding accepting this as a work item. Thanks, Kind Regards Kepeng (ACE co-chair) [1] https://datatracker.ietf.org/doc/draft-somaraju-ace-multicast/ --B_3570716897_9780404 Content-type: text/html; charset="GB2312" Content-transfer-encoding: quoted-printable

He= llo all,

 
This note begin=
s a Call For Adoption for =
draft-somaraju-ace-multicast-02 [1] to be adopted as an ACE working group item, and a=
dded in the charter. The call ends on Mar 7, 2017.

 

Keep in mind that adoption of a document does not mean =
the document as-=
is is ready for publication. It is merely acceptance of the document as a starting point for=
 what will be the final product of the ACE working group. The working group is free to make =
changes to the d=
ocument according to the normal consensus process.
 
Please reply on this thread with expres=
sions of support or opposition, preferably with comments, regarding accepting this as a work=
 item.

 

Thanks,<=
/o:p>
 
Kind Regards
K=
epeng (ACE co-chair)

 

--B_3570716897_9780404-- From nobody Thu Feb 23 18:08:28 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A7788129485; Thu, 23 Feb 2017 18:08:26 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.902 X-Spam-Level: X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id j3Hot1fWTXCO; Thu, 23 Feb 2017 18:08:25 -0800 (PST) Received: from tuna.sandelman.ca (tuna.sandelman.ca [209.87.249.19]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2A40F129408; Thu, 23 Feb 2017 18:08:25 -0800 (PST) Received: from sandelman.ca (obiwan.sandelman.ca [IPv6:2607:f0b0:f:2::247]) by tuna.sandelman.ca (Postfix) with ESMTP id DF9C0E19F; Thu, 23 Feb 2017 21:30:21 -0500 (EST) Received: from obiwan.sandelman.ca (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 207C96381A; Thu, 23 Feb 2017 21:08:23 -0500 (EST) From: Michael Richardson To: draft-selander-ace-cose-ecdhe@ietf.org X-Attribution: mcr X-Mailer: MH-E 8.6; nmh 1.6+dev; GNU Emacs 24.5.1 X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m Archived-At: Cc: ace@ietf.org Subject: [Ace] edhoc section 4.3.2 X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2017 02:08:26 -0000 --=-=-= Content-Type: text/plain It says: >4.3.2. message_1 -> V > > Party V processes the received message_1 as follows: > > o Party V SHALL verify that the nonce has not been received before. > If the verification fails, the message MUST be discarded. > Otherwise, Party V SHALL store a representation of the nonce > for future verifications. Please clarify "has not been received before". Ever? Or within some interval? In IKE, we care about the nonces not being reused during the time that the node continues to use the same keypair at its end. (In DH, this means the same y value for g^y). But, you specify a fresh keypair each time. Can two nodes U1 and U2 both use the same nonce (by random chance!) Or must it be unique among all peers? Storing such nonces is impossible for a constrained node... Even a non-constained node V won't be able to store many nonces received, once you count adding indexes to search for the list efficiently. -- Michael Richardson , Sandelman Software Works -= IPv6 IoT consulting =- --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEbsyLEzg/qUTA43uogItw+93Q3WUFAlivlZYACgkQgItw+93Q 3WWyWAgAkKbQiIcz7qfbg7YgnFgjIfZYmiuY9ZVueNrfXIY6Qkn3pCv8ncefcc/Z aSUNSIbXfi7hrLPrzsOCCzwsDqD1wkpZcg8a1de2ZmiDSvN5wJ4c2pZUArJctt7D N3EkIk3W9BU7RgtAltPLSBXnHydY4cOfd/HOKID70K4dM44KWrl0Si4bJT1rMYZf uUQoEZ1xlWwOExEAKcFyE1YGPXUNaX0cD5Z+0prVXyIHCXpEZzqOgKrtTq13hdc4 oEDd+jCYdDMgROgn59LmNylHw3VHgRqAPqd5X9o0uW//XSujlBdUpareEaSOqCLd gOIi06UCzeH2VBKBMY5WgJdW43InnA== =tRAK -----END PGP SIGNATURE----- --=-=-=-- From nobody Thu Feb 23 21:48:33 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 68F28129581; Thu, 23 Feb 2017 21:48:31 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -3.721 X-Spam-Level: X-Spam-Status: No, score=-3.721 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hngOomVO-n4e; Thu, 23 Feb 2017 21:48:29 -0800 (PST) Received: from sessmg23.ericsson.net (sessmg23.ericsson.net [193.180.251.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 74CB712957E; Thu, 23 Feb 2017 21:48:29 -0800 (PST) X-AuditID: c1b4fb2d-18e0e98000005112-6f-58afc92b319b Received: from ESESSHC023.ericsson.se (Unknown_Domain [153.88.183.87]) by (Symantec Mail Security) with SMTP id 73.91.20754.B29CFA85; Fri, 24 Feb 2017 06:48:27 +0100 (CET) Received: from ESESSMB303.ericsson.se ([169.254.3.200]) by ESESSHC023.ericsson.se ([153.88.183.87]) with mapi id 14.03.0319.002; Fri, 24 Feb 2017 06:48:25 +0100 From: =?utf-8?B?R8O2cmFuIFNlbGFuZGVy?= To: Michael Richardson , "draft-selander-ace-cose-ecdhe@ietf.org" Thread-Topic: edhoc section 4.3.2 Thread-Index: AQHSjkLjalh/O0HytESA1WLkn3hJJqF3prKA Date: Fri, 24 Feb 2017 05:48:24 +0000 Message-ID: References: <18776.1487902103@obiwan.sandelman.ca> In-Reply-To: <18776.1487902103@obiwan.sandelman.ca> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/14.7.1.161129 x-originating-ip: [153.88.183.154] Content-Type: text/plain; charset="utf-8" Content-ID: Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrMIsWRmVeSWpSXmKPExsUyM2J7uK72yfURBvs2SFl8/9bDbLHk5ysW i55D/ewOzB5Llvxk8miZs4c5gCmKyyYlNSezLLVI3y6BK2PZrr/sBUtEKj48u8LewPhAuIuR k0NCwERien8bWxcjF4eQwDpGiWOLF7NAOEsYJW7e2soCUsUm4CLxoOERE0hCRKCVUWLSxnlM IAlmAUWJdXP6gGwODmEBBYnua8ogYRGg8MMdJ5ggbCOJjofvwGwWAVWJ+YevMILYvAIWEot7 1zODtAoB1RzfxA8S5hQwlrhy8wxYCaOAmMT3U2ugNolL3HoynwniaAGJJXvOM0PYohIvH/9j BbFFBfQklj9fAxVXklh0+zPYZcwCmhLrd+lDjLGW2Nk5mRXm+CndD9khrhGUODnzCcsERvFZ SLbNQuiehaR7FpLuWUi6FzCyrmIULU4tLs5NNzLWSy3KTC4uzs/Ty0st2cQIjLqDW37r7mBc /drxEKMAB6MSD++HH+sihFgTy4orcw8xSnAwK4nwTti0PkKINyWxsiq1KD++qDQntfgQozQH i5I4r9nK++FCAumJJanZqakFqUUwWSYOTqkGRse5rHueZlZs4tOKVHdLauh+f8+j0Tr5Shh7 AcPn0mw3p2uPDkRPMPfZY6d2XPVIlYBs67xA45+7tPzm1L8+wRG5kdn9kUP77D27TR+lLspS XFO9qmJax8dF3xX8pl6ZduX7/XOuXx0Wxk4/u3DylvuRP+cV1/D//C3YJzn38sbss2e+TT6V VaLEUpyRaKjFXFScCABvU93ytgIAAA== Archived-At: Cc: "ace@ietf.org" Subject: Re: [Ace] edhoc section 4.3.2 X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2017 05:48:31 -0000 DQpIaSBNaWNoYWVsLA0KDQpQbGVhc2Ugc2VlIHRoZSBsYXRlc3QgdmVyc2lvbiBvZiBFREhPQzoN Cmh0dHBzOi8vZXJpY3Nzb25yZXNlYXJjaC5naXRodWIuaW8vRURIT0MvDQoNClRoZSBkcmFmdCBo YXMgZ29uZSB0aHJvdWdoIGEgbnVtYmVyIG9mIHJldmlld3MgYW5kIGlzIGluIG1hbnkgd2F5cw0K cmV3cml0dGVuLiBXZSB3aWxsIHN1Ym1pdCBhIG5ldyB2ZXJzaW9uIG5leHQgd2Vlay4gSW5saW5l Og0KDQpPbiAyMDE3LTAyLTI0IDAzOjA4LCAiTWljaGFlbCBSaWNoYXJkc29uIiA8bWNyK2lldGZA c2FuZGVsbWFuLmNhPiB3cm90ZToNCg0KPg0KPkl0IHNheXM6DQo+PjQuMy4yLiAgbWVzc2FnZV8x IC0+IFYNCj4+DQo+PiAgIFBhcnR5IFYgcHJvY2Vzc2VzIHRoZSByZWNlaXZlZCBtZXNzYWdlXzEg YXMgZm9sbG93czoNCj4+DQo+PiAgIG8gIFBhcnR5IFYgU0hBTEwgdmVyaWZ5IHRoYXQgdGhlIG5v bmNlIGhhcyBub3QgYmVlbiByZWNlaXZlZCBiZWZvcmUuDQo+PiAgICAgICAgIElmIHRoZSB2ZXJp ZmljYXRpb24gZmFpbHMsIHRoZSBtZXNzYWdlIE1VU1QgYmUgZGlzY2FyZGVkLg0KPj4gICAgICAg ICBPdGhlcndpc2UsIFBhcnR5IFYgU0hBTEwgc3RvcmUgYSByZXByZXNlbnRhdGlvbiBvZiB0aGUg bm9uY2UNCj4+ICAgICAgICAgZm9yIGZ1dHVyZSB2ZXJpZmljYXRpb25zLg0KPg0KPlBsZWFzZSBj bGFyaWZ5ICJoYXMgbm90IGJlZW4gcmVjZWl2ZWQgYmVmb3JlIi4gRXZlcj8gT3Igd2l0aGluIHNv bWUNCj5pbnRlcnZhbD8gIEluIElLRSwgd2UgY2FyZSBhYm91dCB0aGUgbm9uY2VzIG5vdCBiZWlu ZyByZXVzZWQgZHVyaW5nIHRoZQ0KPnRpbWUNCj50aGF0IHRoZSBub2RlIGNvbnRpbnVlcyB0byB1 c2UgdGhlIHNhbWUga2V5cGFpciBhdCBpdHMgZW5kLiAoSW4gREgsDQo+dGhpcyBtZWFucyB0aGUg c2FtZSB5IHZhbHVlIGZvciBnXnkpLiBCdXQsIHlvdSBzcGVjaWZ5IGEgZnJlc2gga2V5cGFpcg0K PmVhY2gNCj50aW1lLg0KDQpWZXJpZmljYXRpb24gb2Ygbm9uY2VzIGlzIG5vdyBvcHRpb25hbCAo ZS5nLiBzZWN0aW9uIDQuMi4zKS4gTm9uY2VzIGFyZQ0Kbm90IGFsbG93ZWQgdG8gYmUgcmV1c2Vk IGJ1dCBpdCBpcyBub3RlZCB0aGF0IHJlcGxheSBvZiBtZXNzYWdlXzEgY2Fubm90DQpiZSBkZXRl Y3RlZCB1bmxlc3MgdW5sZXNzIHByZXZpb3VzIG5vbmNlcyBhcmUgc3RvcmVkIChzZWUgc2VjdXJp dHkNCmNvbnNpZGVyYXRpb25zKS4NCg0KDQpJbiBpc3N1ZSAxNiBpdCB3YXMgcmVxdWVzdGVkIHRv IGFsbG93IG11bHRpcGxlIHVzZXMgb2YgZXBoZW1lcmFsIGtleXMgYW5kDQppdCB3YXMgYWRkZWQg aW4gdGhlIHNlY3VyaXR5IGNvbnNpZGVyYXRpb25zLiBJIHRoaW5rIGl0IG1ha2VzIHNlbnNlIHRv DQptYW5kYXRlIHRoZSB2ZXJpZmljYXRpb24gb2Ygbm9uY2UgdW5pcXVlbmVzcyBkdXJpbmcgcmV1 c2Ugb2YgZXBoZW1lcmFsDQprZXlzIGFuZCBoYXZlIHJlb3BlbmVkIGlzc3VlIDE2Og0KDQoNCmh0 dHBzOi8vZ2l0aHViLmNvbS9Fcmljc3NvblJlc2VhcmNoL0VESE9DL2lzc3Vlcy8xNg0KDQoNCj4N Cj5DYW4gdHdvIG5vZGVzIFUxIGFuZCBVMiBib3RoIHVzZSB0aGUgc2FtZSBub25jZSAoYnkgcmFu ZG9tIGNoYW5jZSEpDQo+T3IgbXVzdCBpdCBiZSB1bmlxdWUgYW1vbmcgYWxsIHBlZXJzPw0KPg0K PlN0b3Jpbmcgc3VjaCBub25jZXMgaXMgaW1wb3NzaWJsZSBmb3IgYSBjb25zdHJhaW5lZCBub2Rl Li4uDQo+RXZlbiBhIG5vbi1jb25zdGFpbmVkIG5vZGUgViB3b24ndCBiZSBhYmxlIHRvIHN0b3Jl IG1hbnkgbm9uY2VzIHJlY2VpdmVkLA0KPm9uY2UgeW91IGNvdW50IGFkZGluZyBpbmRleGVzIHRv IHNlYXJjaCBmb3IgdGhlIGxpc3QgZWZmaWNpZW50bHkuDQoNCkFncmVlLg0KDQpHw7ZyYW4NCg0K DQoNCg0KDQoNCg0KDQo= From nobody Thu Feb 23 23:34:49 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 70E62129567 for ; Thu, 23 Feb 2017 23:34:48 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.22 X-Spam-Level: X-Spam-Status: No, score=-4.22 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id RFhO0Unz4KmH for ; Thu, 23 Feb 2017 23:34:46 -0800 (PST) Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 37C901293F4 for ; Thu, 23 Feb 2017 23:34:46 -0800 (PST) X-AuditID: c1b4fb30-2868b98000002c77-5a-58afe214e0d9 Received: from ESESSHC006.ericsson.se (Unknown_Domain [153.88.183.36]) by (Symantec Mail Security) with SMTP id A0.E2.11383.412EFA85; Fri, 24 Feb 2017 08:34:44 +0100 (CET) Received: from ESESSMB303.ericsson.se ([169.254.3.200]) by ESESSHC006.ericsson.se ([153.88.183.36]) with mapi id 14.03.0319.002; Fri, 24 Feb 2017 08:34:01 +0100 From: =?utf-8?B?R8O2cmFuIFNlbGFuZGVy?= To: Kepeng Li , "Ace@ietf.org" , Hannes Tschofenig Thread-Topic: [Ace] Call for adoption for draft-somaraju-ace-multicast-02 Thread-Index: AQHSjnBd9XwxIOasr0qPenfr0zEwEA== Date: Fri, 24 Feb 2017 07:34:00 +0000 Message-ID: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/14.7.1.161129 x-originating-ip: [153.88.183.154] Content-Type: multipart/alternative; boundary="_000_D4D5970F76CABgoranselanderericssoncom_" MIME-Version: 1.0 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFlrCIsWRmVeSWpSXmKPExsUyM2K7iq7Io/URBsf3iVl8/9bDbLF05z1W i4ad+RaX5xc5sHhMfPuRxWPnrLvsHos37WfzWLLkJ1MASxSXTUpqTmZZapG+XQJXxv0H0QXX 8yp6p3xjb2C8kt3FyMkhIWAicW7SPiYQW0hgHaPEs5c5XYxcQPYSRomt15YzgyTYBFwkHjQ8 AisSEaiSWNi4BCzOLGAhcXHTVzYQW1jAQ+L7hg42iBpPiZftDSwQtp7E1rt/wXpZBFQlupef BqvhBeptm3AJbA6jgJjE91NrmCBmikvcejKfCeI4AYkle84zQ9iiEi8f/2MFsUWBZi5/vgYq riSx6PZnqN5YiTvH1zNCzBeUODnzCcsERuFZSMbOQlI2C0nZLEYOoLimxPpd+hAlihJTuh+y Q9gaEq1z5kLZ1hLdZ3exIatZwMixilG0OLU4KTfdyEgvtSgzubg4P08vL7VkEyMw7g5u+W2w g/Hlc8dDjAIcjEo8vB9+rIsQYk0sK67MPcQowcGsJMJ75dz6CCHelMTKqtSi/Pii0pzU4kOM 0hwsSuK8ZivvhwsJpCeWpGanphakFsFkmTg4pRoYHR+JfnzussOx0mj5c/9+e573RjXxJz+X LQmPuNjQpLf3+qLHE75vOmcZ03WmtP5kpKb0U5Wmp2t159ll+ri9Drz4TnTVs0+VCWFmb0L1 DI30v2980y0+9d6XswtUf9V2qV98oLRIq5n3b9KbvDo+PoH36/j6WrP+3Nq+45yKiJWxz+E5 83s5lViKMxINtZiLihMBlAEpHbcCAAA= Archived-At: Cc: Kathleen Moriarty Subject: Re: [Ace] Call for adoption for draft-somaraju-ace-multicast-02 X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2017 07:34:48 -0000 --_000_D4D5970F76CABgoranselanderericssoncom_ Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 DQpJ4oCZbSBpbiBmYXZvdXIgb2YgYWRvcHRpbmcgYSBwcm9maWxlIG9mIHRoZSBBQ0UgZnJhbWV3 b3JrIFsxXSBwcm92aWRpbmcgdGhlIGZ1bmN0aW9uYWxpdHkgb3V0bGluZWQgaW4gdGhpcyBkcmFm dC4NCg0KSXQgd2FzIGFja25vd2xlZGdlZCBpbiB0aGUgbGF0ZXN0IEFDRSBpbnRlcmltIHRoYXQg dGhpcyBkcmFmdCB3aWxsIGJlIHRyYW5zZm9ybWVkIGludG8gYW4gQUNFIHByb2ZpbGUsIGJ1dCBj dXJyZW50bHkgdGhlIG1hcHBpbmcgdG8gQUNFIGlzIG5vdCB2ZXJ5IGNsZWFyOg0KDQotIE1hbnkg b2YgdGhlICJSZXF1aXJlbWVudHMgb24gUHJvZmlsZXPigJ0gKEFwcGVuZGl4IEMgb2YgWzFdKSBh cmUgbm90IGZ1bGZpbGxlZCwgZS5nLiBob3cgaXMgdGhlICJyZXNvdXJjZSBzZXJ2ZXIiIG9mIHRo ZSBBQ0UgZnJhbWV3b3JrIG1hcHBlZD8gSXMgaXQgdGhlIEtEQz8NCi0gV2lsbCB0aGUgcHJvcG9z ZWQgQUNFLURUTFMgcHJvZmlsZSBbMl0gYmUgdXNlZCBvciB3aWxsIHdlIGhhdmUgZGlmZmVyZW50 IG1ldGhvZHMgZm9yIGF1dGhvcmlzaW5nIERUTFMgaW4gZGlmZmVyZW50IHByb2ZpbGVzPw0KDQpU aGVyZSBoYXMgYmVlbiBhIGxvdCBvZiBkaXNjdXNzaW9uIG9mIHRoaXMgZHJhZnQsIHdoZXJlYXMg Im5vbi1jb250cm92ZXJzaWFs4oCdIHByb2ZpbGVzIG9mIEFDRSAoWzJdLCBbM10sIFs0XSkgaGFz IGJlZW4gZGlzcmVnYXJkZWQgaW4gdGhlIHByb2Nlc3MuIElmIG9uZSBwcm9maWxlIGlzIGJlaW5n IGFkb3B0ZWQgd2l0aG91dCBjb25zaWRlcmF0aW9uIG9mIG90aGVyIHByb2ZpbGVzIGl0IG1heSBs ZWFkIHRvIGR1cGxpY2F0aW9uIG9mIHNwZWNpZmljYXRpb24sIG9yIGRpZmZlcmVudCBtZWNoYW5p c21zIGJlaW5nIGRlZmluZWQgZG9pbmcgdGhlIHNhbWUgdGhpbmcuDQoNCkNoYWlyczogV2hhdCBp cyB0aGUgcGxhbiBmb3IgY29vcmRpbmF0aW5nIHRoZSBmdW5jdGlvbmFsaXR5IGluIHRoZSBkaWZm ZXJlbnQgQUNFIHByb2ZpbGVzIGJlaW5nIGFkb3B0ZWQ/DQoNCg0KR8O2cmFuDQoNCg0KWzFdICBo dHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQtaWV0Zi1hY2Utb2F1dGgtYXV0aHoNClsy XSBodHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQtZ2VyZGVzLWFjZS1kdGxzLWF1dGhv cml6ZQ0KWzNdIGh0dHBzOi8vdG9vbHMuaWV0Zi5vcmcvaHRtbC9kcmFmdC1zZWl0ei1hY2Utb3Nj b2FwLXByb2ZpbGUNCls0XSBodHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQtc2VuZ3Vs LWtpcmJ5LWFjZS1tcXR0LXRscy1wcm9maWxlDQoNCg0KDQoNCkZyb206IEFjZSA8YWNlLWJvdW5j ZXNAaWV0Zi5vcmc8bWFpbHRvOmFjZS1ib3VuY2VzQGlldGYub3JnPj4gb24gYmVoYWxmIG9mIEtl cGVuZyBMaSA8a2VwZW5nLmxrcEBhbGliYWJhLWluYy5jb208bWFpbHRvOmtlcGVuZy5sa3BAYWxp YmFiYS1pbmMuY29tPj4NCkRhdGU6IFRodXJzZGF5IDIzIEZlYnJ1YXJ5IDIwMTcgYXQgMTA6NDgN ClRvOiAiQWNlQGlldGYub3JnPG1haWx0bzpBY2VAaWV0Zi5vcmc+IiA8QWNlQGlldGYub3JnPG1h aWx0bzpBY2VAaWV0Zi5vcmc+Pg0KQ2M6IEthdGhsZWVuIE1vcmlhcnR5IDxrYXRobGVlbi5tb3Jp YXJ0eS5pZXRmQGdtYWlsLmNvbTxtYWlsdG86a2F0aGxlZW4ubW9yaWFydHkuaWV0ZkBnbWFpbC5j b20+PiwgSGFubmVzIFRzY2hvZmVuaWcgPGhhbm5lcy50c2Nob2ZlbmlnQGdteC5uZXQ8bWFpbHRv Omhhbm5lcy50c2Nob2ZlbmlnQGdteC5uZXQ+Pg0KU3ViamVjdDogW0FjZV0gQ2FsbCBmb3IgYWRv cHRpb24gZm9yIGRyYWZ0LXNvbWFyYWp1LWFjZS1tdWx0aWNhc3QtMDINCg0KSGVsbG8gYWxsLA0K DQoNCg0KVGhpcyBub3RlIGJlZ2lucyBhIENhbGwgRm9yIEFkb3B0aW9uIGZvciBkcmFmdC1zb21h cmFqdS1hY2UtbXVsdGljYXN0LTAyIFsxXSB0byBiZSBhZG9wdGVkIGFzIGFuIEFDRSB3b3JraW5n IGdyb3VwIGl0ZW0sIGFuZCBhZGRlZCBpbiB0aGUgY2hhcnRlci4gVGhlIGNhbGwgZW5kcyBvbiBN YXIgNywgMjAxNy4NCg0KDQpLZWVwIGluIG1pbmQgdGhhdCBhZG9wdGlvbiBvZiBhIGRvY3VtZW50 IGRvZXMgbm90IG1lYW4gdGhlIGRvY3VtZW50IGFzLWlzIGlzIHJlYWR5IGZvciBwdWJsaWNhdGlv bi4gSXQgaXMgbWVyZWx5IGFjY2VwdGFuY2Ugb2YgdGhlIGRvY3VtZW50IGFzIGEgc3RhcnRpbmcg cG9pbnQgZm9yIHdoYXQgd2lsbCBiZSB0aGUgZmluYWwgcHJvZHVjdCBvZiB0aGUgQUNFIHdvcmtp bmcgZ3JvdXAuIFRoZSB3b3JraW5nIGdyb3VwIGlzIGZyZWUgdG8gbWFrZSBjaGFuZ2VzIHRvIHRo ZSBkb2N1bWVudCBhY2NvcmRpbmcgdG8gdGhlIG5vcm1hbCBjb25zZW5zdXMgcHJvY2Vzcy4NCg0K DQoNClBsZWFzZSByZXBseSBvbiB0aGlzIHRocmVhZCB3aXRoIGV4cHJlc3Npb25zIG9mIHN1cHBv cnQgb3Igb3Bwb3NpdGlvbiwgcHJlZmVyYWJseSB3aXRoIGNvbW1lbnRzLCByZWdhcmRpbmcgYWNj ZXB0aW5nIHRoaXMgYXMgYSB3b3JrIGl0ZW0uDQoNCg0KVGhhbmtzLA0KDQoNCg0KS2luZCBSZWdh cmRzDQoNCktlcGVuZyAoQUNFIGNvLWNoYWlyKQ0KDQpbMV0gaHR0cHM6Ly9kYXRhdHJhY2tlci5p ZXRmLm9yZy9kb2MvZHJhZnQtc29tYXJhanUtYWNlLW11bHRpY2FzdC8NCg== --_000_D4D5970F76CABgoranselanderericssoncom_ Content-Type: text/html; charset="utf-8" Content-ID: <9E07F49DD39B554E9609C5B286B8BEBC@ericsson.com> Content-Transfer-Encoding: base64 PGh0bWw+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIgY29udGVudD0i dGV4dC9odG1sOyBjaGFyc2V0PXV0Zi04Ij4NCjwvaGVhZD4NCjxib2R5IHN0eWxlPSJ3b3JkLXdy YXA6IGJyZWFrLXdvcmQ7IC13ZWJraXQtbmJzcC1tb2RlOiBzcGFjZTsgLXdlYmtpdC1saW5lLWJy ZWFrOiBhZnRlci13aGl0ZS1zcGFjZTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1zaXplOiAx NHB4OyBmb250LWZhbWlseTogQ2FsaWJyaSwgc2Fucy1zZXJpZjsiPg0KPGRpdj48YnI+DQo8L2Rp dj4NCjxkaXY+SeKAmW0gaW4gZmF2b3VyIG9mIGFkb3B0aW5nIGEgcHJvZmlsZSBvZiB0aGUgQUNF IGZyYW1ld29yayBbMV0mbmJzcDtwcm92aWRpbmcgdGhlIGZ1bmN0aW9uYWxpdHkgb3V0bGluZWQg aW4gdGhpcyBkcmFmdC48L2Rpdj4NCjxkaXY+PGJyPg0KPC9kaXY+DQo8ZGl2Pkl0IHdhcyBhY2tu b3dsZWRnZWQgaW4gdGhlIGxhdGVzdCBBQ0UgaW50ZXJpbSB0aGF0IHRoaXMgZHJhZnQgd2lsbCBi ZSB0cmFuc2Zvcm1lZCBpbnRvIGFuIEFDRSBwcm9maWxlLCBidXQgY3VycmVudGx5IHRoZSBtYXBw aW5nIHRvIEFDRSBpcyBub3QgdmVyeSBjbGVhcjo8L2Rpdj4NCjxkaXY+PGJyPg0KPC9kaXY+DQo8 ZGl2Pi0gTWFueSBvZiB0aGUgJnF1b3Q7UmVxdWlyZW1lbnRzIG9uIFByb2ZpbGVz4oCdIChBcHBl bmRpeCBDIG9mIFsxXSkgYXJlIG5vdCBmdWxmaWxsZWQsIGUuZy4gaG93IGlzIHRoZSAmcXVvdDty ZXNvdXJjZSBzZXJ2ZXImcXVvdDsgb2YgdGhlIEFDRSBmcmFtZXdvcmsgbWFwcGVkPyBJcyBpdCB0 aGUgS0RDPzwvZGl2Pg0KPGRpdj4tIFdpbGwgdGhlIHByb3Bvc2VkIEFDRS1EVExTIHByb2ZpbGUg WzJdIGJlIHVzZWQgb3Igd2lsbCB3ZSBoYXZlIGRpZmZlcmVudCBtZXRob2RzIGZvciBhdXRob3Jp c2luZyBEVExTIGluIGRpZmZlcmVudCBwcm9maWxlcz88L2Rpdj4NCjxkaXY+PGJyPg0KPC9kaXY+ DQo8ZGl2PlRoZXJlIGhhcyBiZWVuIGEgbG90IG9mIGRpc2N1c3Npb24gb2YgdGhpcyBkcmFmdCwg d2hlcmVhcyAmcXVvdDtub24tY29udHJvdmVyc2lhbOKAnSBwcm9maWxlcyBvZiBBQ0UgKFsyXSwg WzNdLCBbNF0pIGhhcyBiZWVuIGRpc3JlZ2FyZGVkIGluIHRoZSBwcm9jZXNzLiBJZiBvbmUgcHJv ZmlsZSBpcyBiZWluZyBhZG9wdGVkIHdpdGhvdXQgY29uc2lkZXJhdGlvbiBvZiBvdGhlciBwcm9m aWxlcyBpdCBtYXkgbGVhZCB0byBkdXBsaWNhdGlvbiBvZiBzcGVjaWZpY2F0aW9uLA0KIG9yIGRp ZmZlcmVudCBtZWNoYW5pc21zIGJlaW5nIGRlZmluZWQgZG9pbmcgdGhlIHNhbWUgdGhpbmcuPC9k aXY+DQo8ZGl2Pjxicj4NCjwvZGl2Pg0KPGRpdj5DaGFpcnM6IFdoYXQgaXMgdGhlIHBsYW4gZm9y IGNvb3JkaW5hdGluZyB0aGUgZnVuY3Rpb25hbGl0eSBpbiB0aGUgZGlmZmVyZW50IEFDRSBwcm9m aWxlcyBiZWluZyBhZG9wdGVkPzwvZGl2Pg0KPGRpdj48YnI+DQo8L2Rpdj4NCjxkaXY+PGJyPg0K PGRpdj5Hw7ZyYW48L2Rpdj4NCjxkaXY+PGJyPg0KPC9kaXY+DQo8ZGl2Pjxicj4NCjwvZGl2Pg0K PGRpdj5bMV0gJm5ic3A7PGEgaHJlZj0iaHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0 LWlldGYtYWNlLW9hdXRoLWF1dGh6Ij5odHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQt aWV0Zi1hY2Utb2F1dGgtYXV0aHo8L2E+Jm5ic3A7PC9kaXY+DQo8ZGl2PlsyXSA8YSBocmVmPSJo dHRwczovL3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQtZ2VyZGVzLWFjZS1kdGxzLWF1dGhvcml6 ZSI+aHR0cHM6Ly90b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LWdlcmRlcy1hY2UtZHRscy1hdXRo b3JpemU8L2E+PC9kaXY+DQo8ZGl2Pjx1PlszXSZuYnNwOzwvdT48YSBocmVmPSJodHRwczovL3Rv b2xzLmlldGYub3JnL2h0bWwvZHJhZnQtc2VpdHotYWNlLW9zY29hcC1wcm9maWxlIj5odHRwczov L3Rvb2xzLmlldGYub3JnL2h0bWwvZHJhZnQtc2VpdHotYWNlLW9zY29hcC1wcm9maWxlPC9hPjwv ZGl2Pg0KPGRpdj48dT5bNF0mbmJzcDs8L3U+PGEgaHJlZj0iaHR0cHM6Ly90b29scy5pZXRmLm9y Zy9odG1sL2RyYWZ0LXNlbmd1bC1raXJieS1hY2UtbXF0dC10bHMtcHJvZmlsZSI+aHR0cHM6Ly90 b29scy5pZXRmLm9yZy9odG1sL2RyYWZ0LXNlbmd1bC1raXJieS1hY2UtbXF0dC10bHMtcHJvZmls ZTwvYT48L2Rpdj4NCjxkaXY+PGJyPg0KPC9kaXY+DQo8ZGl2Pjxicj4NCjwvZGl2Pg0KPGRpdj48 YnI+DQo8L2Rpdj4NCjxkaXY+PGJyPg0KPC9kaXY+DQo8c3BhbiBpZD0iT0xLX1NSQ19CT0RZX1NF Q1RJT04iPg0KPGRpdiBzdHlsZT0iZm9udC1mYW1pbHk6Q2FsaWJyaTsgZm9udC1zaXplOjExcHQ7 IHRleHQtYWxpZ246bGVmdDsgY29sb3I6YmxhY2s7IEJPUkRFUi1CT1RUT006IG1lZGl1bSBub25l OyBCT1JERVItTEVGVDogbWVkaXVtIG5vbmU7IFBBRERJTkctQk9UVE9NOiAwaW47IFBBRERJTkct TEVGVDogMGluOyBQQURESU5HLVJJR0hUOiAwaW47IEJPUkRFUi1UT1A6ICNiNWM0ZGYgMXB0IHNv bGlkOyBCT1JERVItUklHSFQ6IG1lZGl1bSBub25lOyBQQURESU5HLVRPUDogM3B0Ij4NCjxzcGFu IHN0eWxlPSJmb250LXdlaWdodDpib2xkIj5Gcm9tOiA8L3NwYW4+QWNlICZsdDs8YSBocmVmPSJt YWlsdG86YWNlLWJvdW5jZXNAaWV0Zi5vcmciPmFjZS1ib3VuY2VzQGlldGYub3JnPC9hPiZndDsg b24gYmVoYWxmIG9mIEtlcGVuZyBMaSAmbHQ7PGEgaHJlZj0ibWFpbHRvOmtlcGVuZy5sa3BAYWxp YmFiYS1pbmMuY29tIj5rZXBlbmcubGtwQGFsaWJhYmEtaW5jLmNvbTwvYT4mZ3Q7PGJyPg0KPHNw YW4gc3R5bGU9ImZvbnQtd2VpZ2h0OmJvbGQiPkRhdGU6IDwvc3Bhbj5UaHVyc2RheSAyMyBGZWJy dWFyeSAyMDE3IGF0IDEwOjQ4PGJyPg0KPHNwYW4gc3R5bGU9ImZvbnQtd2VpZ2h0OmJvbGQiPlRv OiA8L3NwYW4+JnF1b3Q7PGEgaHJlZj0ibWFpbHRvOkFjZUBpZXRmLm9yZyI+QWNlQGlldGYub3Jn PC9hPiZxdW90OyAmbHQ7PGEgaHJlZj0ibWFpbHRvOkFjZUBpZXRmLm9yZyI+QWNlQGlldGYub3Jn PC9hPiZndDs8YnI+DQo8c3BhbiBzdHlsZT0iZm9udC13ZWlnaHQ6Ym9sZCI+Q2M6IDwvc3Bhbj5L YXRobGVlbiBNb3JpYXJ0eSAmbHQ7PGEgaHJlZj0ibWFpbHRvOmthdGhsZWVuLm1vcmlhcnR5Lmll dGZAZ21haWwuY29tIj5rYXRobGVlbi5tb3JpYXJ0eS5pZXRmQGdtYWlsLmNvbTwvYT4mZ3Q7LCBI YW5uZXMgVHNjaG9mZW5pZyAmbHQ7PGEgaHJlZj0ibWFpbHRvOmhhbm5lcy50c2Nob2ZlbmlnQGdt eC5uZXQiPmhhbm5lcy50c2Nob2ZlbmlnQGdteC5uZXQ8L2E+Jmd0Ozxicj4NCjxzcGFuIHN0eWxl PSJmb250LXdlaWdodDpib2xkIj5TdWJqZWN0OiA8L3NwYW4+W0FjZV0gQ2FsbCBmb3IgYWRvcHRp b24gZm9yIGRyYWZ0LXNvbWFyYWp1LWFjZS1tdWx0aWNhc3QtMDI8YnI+DQo8L2Rpdj4NCjxkaXY+ PGJyPg0KPC9kaXY+DQo8YmxvY2txdW90ZSBpZD0iTUFDX09VVExPT0tfQVRUUklCVVRJT05fQkxP Q0tRVU9URSIgc3R5bGU9IkJPUkRFUi1MRUZUOiAjYjVjNGRmIDUgc29saWQ7IFBBRERJTkc6MCAw IDAgNTsgTUFSR0lOOjAgMCAwIDU7Ij4NCjxkaXY+DQo8ZGl2IHN0eWxlPSJ3b3JkLXdyYXA6IGJy ZWFrLXdvcmQ7IC13ZWJraXQtbmJzcC1tb2RlOiBzcGFjZTsgLXdlYmtpdC1saW5lLWJyZWFrOiBh ZnRlci13aGl0ZS1zcGFjZTsgY29sb3I6IHJnYigwLCAwLCAwKTsgZm9udC1zaXplOiAxNHB4OyBm b250LWZhbWlseTog5a6L5L2TLCBzYW5zLXNlcmlmOyI+DQo8ZGl2Pg0KPGRpdj4NCjxwIGNsYXNz PSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7Ij48Zm9udCBmYWNl PSJDb3VyaWVyIiBzdHlsZT0iZm9udC1zaXplOiAxNnB4OyI+SGVsbG8gYWxsLDxvOnA+PC9vOnA+ PC9mb250PjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwcmUgc3R5bGU9Im1hcmdpbjogMGNtIDBjbSAw LjAwMDFwdDsgbGluZS1oZWlnaHQ6IDEzLjVwdDsgdmVydGljYWwtYWxpZ246IGJhc2VsaW5lOyI+ PG86cD48Zm9udCBmYWNlPSJDb3VyaWVyIiBzaXplPSI0Ij4mbmJzcDs8L2ZvbnQ+PC9vOnA+PC9w cmU+DQo8cHJlIHN0eWxlPSJtYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGxpbmUtaGVpZ2h0OiAx My41cHQ7IHZlcnRpY2FsLWFsaWduOiBiYXNlbGluZTsgd2hpdGUtc3BhY2U6IHByZS13cmFwOyB3 b3JkLXdyYXA6IGJyZWFrLXdvcmQ7Ij48Zm9udCBmYWNlPSJDb3VyaWVyIiBzdHlsZT0iZm9udC1z aXplOiAxNnB4OyI+VGhpcyBub3RlIGJlZ2lucyBhIENhbGwgRm9yIEFkb3B0aW9uIGZvciA8c3Bh biBzdHlsZT0iYmFja2dyb3VuZC1jb2xvcjogcmdiKDI1NSwgMjUzLCAyNDUpOyBiYWNrZ3JvdW5k LXBvc2l0aW9uOiBpbml0aWFsIGluaXRpYWw7IGJhY2tncm91bmQtcmVwZWF0OiBpbml0aWFsIGlu aXRpYWw7Ij5kcmFmdC1zb21hcmFqdS1hY2UtbXVsdGljYXN0LTAyIFsxXSA8L3NwYW4+PC9mb250 PjxzcGFuIHN0eWxlPSJmb250LXNpemU6IDE2cHg7IGZvbnQtZmFtaWx5OiBDb3VyaWVyOyI+dG8g YmUgYWRvcHRlZCBhcyBhbiBBQ0Ugd29ya2luZyBncm91cCBpdGVtLCBhbmQgYWRkZWQgaW4gdGhl IGNoYXJ0ZXIuIDwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxNnB4OyBmb250LWZhbWls eTogQ291cmllcjsiPlRoZSBjYWxsIGVuZHMgb24gTWFyIDcsIDIwMTcuPC9zcGFuPjwvcHJlPg0K PC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2lu OiAwY20gMGNtIDAuMDAwMXB0OyI+PGZvbnQgZmFjZT0iQ291cmllciIgc3R5bGU9ImZvbnQtc2l6 ZTogMTZweDsiPiZuYnNwOzwvZm9udD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cHJlIHN0eWxlPSJt YXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGxpbmUtaGVpZ2h0OiAxMy41cHQ7IHZlcnRpY2FsLWFs aWduOiBiYXNlbGluZTsiPjxmb250IGZhY2U9IkNvdXJpZXIiIHN0eWxlPSJmb250LXNpemU6IDE2 cHg7Ij5LZWVwIGluIG1pbmQgdGhhdCBhZG9wdGlvbiBvZiBhIGRvY3VtZW50IGRvZXMgbm90IG1l YW4gdGhlIGRvY3VtZW50IDwvZm9udD48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxNnB4OyBmb250 LWZhbWlseTogQ291cmllcjsiPmFzLWlzIGlzIHJlYWR5IGZvciBwdWJsaWNhdGlvbi4gSXQgaXMg bWVyZWx5IGFjY2VwdGFuY2Ugb2YgdGhlIDwvc3Bhbj48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAx NnB4OyBmb250LWZhbWlseTogQ291cmllcjsiPmRvY3VtZW50IGFzIGEgc3RhcnRpbmcgcG9pbnQg Zm9yIHdoYXQgd2lsbCBiZSB0aGUgZmluYWwgcHJvZHVjdCA8L3NwYW4+PHNwYW4gc3R5bGU9ImZv bnQtc2l6ZTogMTZweDsgZm9udC1mYW1pbHk6IENvdXJpZXI7Ij5vZiB0aGUgQUNFIHdvcmtpbmcg Z3JvdXAuIFRoZSB3b3JraW5nIGdyb3VwIGlzIGZyZWUgdG8gbWFrZSBjaGFuZ2VzIHRvIDwvc3Bh bj48c3BhbiBzdHlsZT0iZm9udC1zaXplOiAxNnB4OyBmb250LWZhbWlseTogQ291cmllcjsiPnRo ZSBkb2N1bWVudCBhY2NvcmRpbmcgdG8gdGhlIG5vcm1hbCBjb25zZW5zdXMgcHJvY2Vzcy48L3Nw YW4+PC9wcmU+DQo8cHJlIHN0eWxlPSJtYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7IGxpbmUtaGVp Z2h0OiAxMy41cHQ7IHZlcnRpY2FsLWFsaWduOiBiYXNlbGluZTsiPjxvOnA+PGZvbnQgZmFjZT0i Q291cmllciIgc2l6ZT0iNCI+Jm5ic3A7PC9mb250PjwvbzpwPjwvcHJlPg0KPHByZSBzdHlsZT0i bWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBsaW5lLWhlaWdodDogMTMuNXB0OyB2ZXJ0aWNhbC1h bGlnbjogYmFzZWxpbmU7Ij48Zm9udCBmYWNlPSJDb3VyaWVyIiBzdHlsZT0iZm9udC1zaXplOiAx NnB4OyI+UGxlYXNlIHJlcGx5IG9uIHRoaXMgdGhyZWFkIHdpdGggZXhwcmVzc2lvbnMgb2Ygc3Vw cG9ydCBvciBvcHBvc2l0aW9uLCA8L2ZvbnQ+PHNwYW4gc3R5bGU9ImZvbnQtc2l6ZTogMTZweDsg Zm9udC1mYW1pbHk6IENvdXJpZXI7Ij5wcmVmZXJhYmx5IHdpdGggY29tbWVudHMsIHJlZ2FyZGlu ZyBhY2NlcHRpbmcgdGhpcyBhcyBhIHdvcmsgaXRlbS48L3NwYW4+PC9wcmU+DQo8L2Rpdj4NCjxk aXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIiBzdHlsZT0ibWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0 OyI+PGZvbnQgZmFjZT0iQ291cmllciIgc3R5bGU9ImZvbnQtc2l6ZTogMTZweDsiPiZuYnNwOzwv Zm9udD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cHJlIHN0eWxlPSJtYXJnaW46IDBjbSAwY20gMC4w MDAxcHQ7IGxpbmUtaGVpZ2h0OiAxMy41cHQ7IHZlcnRpY2FsLWFsaWduOiBiYXNlbGluZTsiPjxm b250IGZhY2U9IkNvdXJpZXIiIHN0eWxlPSJmb250LXNpemU6IDE2cHg7Ij5UaGFua3MsPG86cD48 L286cD48L2ZvbnQ+PC9wcmU+DQo8cHJlIHN0eWxlPSJtYXJnaW46IDBjbSAwY20gMC4wMDAxcHQ7 IGxpbmUtaGVpZ2h0OiAxMy41cHQ7IHZlcnRpY2FsLWFsaWduOiBiYXNlbGluZTsgd2hpdGUtc3Bh Y2U6IHByZS13cmFwOyB3b3JkLXdyYXA6IGJyZWFrLXdvcmQ7Ij48Zm9udCBmYWNlPSJDb3VyaWVy IiBzdHlsZT0iZm9udC1zaXplOiAxNnB4OyI+Jm5ic3A7PC9mb250PjwvcHJlPg0KPHByZSBzdHls ZT0ibWFyZ2luOiAwY20gMGNtIDAuMDAwMXB0OyBsaW5lLWhlaWdodDogMTMuNXB0OyB2ZXJ0aWNh bC1hbGlnbjogYmFzZWxpbmU7IHdoaXRlLXNwYWNlOiBwcmUtd3JhcDsgd29yZC13cmFwOiBicmVh ay13b3JkOyI+PGZvbnQgZmFjZT0iQ291cmllciIgc3R5bGU9ImZvbnQtc2l6ZTogMTZweDsiPktp bmQgUmVnYXJkczxvOnA+PC9vOnA+PC9mb250PjwvcHJlPg0KPHByZSBzdHlsZT0ibWFyZ2luOiAw Y20gMGNtIDAuMDAwMXB0OyBsaW5lLWhlaWdodDogMTMuNXB0OyB2ZXJ0aWNhbC1hbGlnbjogYmFz ZWxpbmU7IHdoaXRlLXNwYWNlOiBwcmUtd3JhcDsgd29yZC13cmFwOiBicmVhay13b3JkOyI+PGZv bnQgZmFjZT0iQ291cmllciIgc3R5bGU9ImZvbnQtc2l6ZTogMTZweDsiPktlcGVuZyAoQUNFIGNv LWNoYWlyKTxvOnA+PC9vOnA+PC9mb250PjwvcHJlPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9 Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbjogMGNtIDBjbSAwLjAwMDFwdDsiPjxmb250IGZhY2U9 IkNvdXJpZXIiIHN0eWxlPSJmb250LXNpemU6IDE2cHg7Ij4mbmJzcDs8L2ZvbnQ+PC9wPg0KPC9k aXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCIgc3R5bGU9Im1hcmdpbjogMGNtIDBjbSAw LjAwMDFwdDsiPjxmb250IGZhY2U9IkNvdXJpZXIiIHN0eWxlPSJmb250LXNpemU6IDE2cHg7Ij5b MV0mbmJzcDs8YSBocmVmPSJodHRwczovL2RhdGF0cmFja2VyLmlldGYub3JnL2RvYy9kcmFmdC1z b21hcmFqdS1hY2UtbXVsdGljYXN0LyI+aHR0cHM6Ly9kYXRhdHJhY2tlci5pZXRmLm9yZy9kb2Mv ZHJhZnQtc29tYXJhanUtYWNlLW11bHRpY2FzdC88L2E+PC9mb250PjwvcD4NCjwvZGl2Pg0KPC9k aXY+DQo8L2Rpdj4NCjwvYmxvY2txdW90ZT4NCjwvc3Bhbj48L2Rpdj4NCjwvYm9keT4NCjwvaHRt bD4NCg== --_000_D4D5970F76CABgoranselanderericssoncom_-- From nobody Fri Feb 24 05:15:06 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4DA9B129739; Fri, 24 Feb 2017 05:15:04 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.052 X-Spam-Level: X-Spam-Status: No, score=0.052 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, GAPPY_SUBJECT=1.954, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id t-YZSRIn6igv; Fri, 24 Feb 2017 05:15:03 -0800 (PST) Received: from tuna.sandelman.ca (tuna.sandelman.ca [209.87.249.19]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 4643C1296F9; Fri, 24 Feb 2017 05:15:03 -0800 (PST) Received: from sandelman.ca (obiwan.sandelman.ca [IPv6:2607:f0b0:f:2::247]) by tuna.sandelman.ca (Postfix) with ESMTP id EF3E0E1E7; Fri, 24 Feb 2017 08:37:01 -0500 (EST) Received: from obiwan.sandelman.ca (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 947B36381A; Fri, 24 Feb 2017 08:15:01 -0500 (EST) From: Michael Richardson to: draft-selander-ace-cose-ecdhe@ietf.org, ace@ietf.org In-Reply-To: <18776.1487902103@obiwan.sandelman.ca> References: <18776.1487902103@obiwan.sandelman.ca> X-Mailer: MH-E 8.6; nmh 1.6+dev; GNU Emacs 24.5.1 X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m Archived-At: Subject: Re: [Ace] edhoc section 4: N_U/N_V question X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2017 13:15:04 -0000 --=-=-= Content-Type: text/plain N_U, N_V, E_V, Alg_V, Enc(K_VE; ID_V, Sig(V; Mac(K_VM; prot_2)))| | <---------------------------------------------------------------+ | message_2 | | | | | | N_U, N_V, Enc(K_UE; ID_U, Sig(U; Mac(K_UM; prot_3))) Why is N_U echoed back to U in message 2? Why are N_U and N_V included in message 3? If the nonce acts as a defense against off-path attacks, then at least N_U does not need to be in message 3. Including N_U in message 2 defends an off-path attacker racing V to reply to message_1, which seems unlikely. -- Michael Richardson , Sandelman Software Works -= IPv6 IoT consulting =- --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEbsyLEzg/qUTA43uogItw+93Q3WUFAliwMdUACgkQgItw+93Q 3WV6kQf/RjHwb/z+LbnzAkwCJAof+xWHM/uZU+ZrW+c3WNSsdKAs2GGXsR99LPLD dgYI2zRSWsTZKElpv0s07ypHgmy8cFbzzZi9mKC6ZIuOMnlNauElXVQn55kM2Aqs 49T13vINgddrzgyY4WYm+GMm0OgLdzTg2jxwYXVpkXPazo56pnAP7xttH3CPp3Fp dQbH+qSqfWTjOa4nm7oTu4wdsvbvuap087BFbP6W3N3G35im8n3OqJOQqjUH5tmo QF71/D6xJOLcApbYFZ+fMaEftZQuDfPOoj5Q6adPdxGnHwEejdfInMOfCyAbcsXj ciG7o1l8rXFxW+NMh0HUEnGPSCKhTQ== =/2sh -----END PGP SIGNATURE----- --=-=-=-- From nobody Fri Feb 24 06:07:08 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1A0E01297AC; Fri, 24 Feb 2017 06:07:07 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.767 X-Spam-Level: X-Spam-Status: No, score=-1.767 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, GAPPY_SUBJECT=1.954, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id BFpNMI2JIiXg; Fri, 24 Feb 2017 06:07:05 -0800 (PST) Received: from sessmg23.ericsson.net (sessmg23.ericsson.net [193.180.251.45]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 28C7F1296EF; Fri, 24 Feb 2017 06:07:04 -0800 (PST) X-AuditID: c1b4fb2d-18e0e98000005112-88-58b03e069a46 Received: from ESESSHC009.ericsson.se (Unknown_Domain [153.88.183.45]) by (Symantec Mail Security) with SMTP id B2.47.20754.60E30B85; Fri, 24 Feb 2017 15:07:02 +0100 (CET) Received: from ESESSMB303.ericsson.se ([169.254.3.200]) by ESESSHC009.ericsson.se ([153.88.183.45]) with mapi id 14.03.0319.002; Fri, 24 Feb 2017 15:06:38 +0100 From: =?utf-8?B?R8O2cmFuIFNlbGFuZGVy?= To: Michael Richardson , "draft-selander-ace-cose-ecdhe@ietf.org" , "ace@ietf.org" Thread-Topic: edhoc section 4: N_U/N_V question Thread-Index: AQHSjqAEAsdWgb8340iEKXqv4cuBcaF4MSyA Date: Fri, 24 Feb 2017 14:06:37 +0000 Message-ID: References: <18776.1487902103@obiwan.sandelman.ca> <32152.1487942101@obiwan.sandelman.ca> In-Reply-To: <32152.1487942101@obiwan.sandelman.ca> Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: user-agent: Microsoft-MacOutlook/14.7.1.161129 x-originating-ip: [153.88.183.19] Content-Type: text/plain; charset="utf-8" Content-ID: <18FD2C8920D6DA4BA783C17BEEA0755B@ericsson.com> Content-Transfer-Encoding: base64 MIME-Version: 1.0 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFprMIsWRmVeSWpSXmKPExsUyM2K7ri6b3YYIg+sXbSy+f+thtljy8xWL Rc+hfnYHZo8lS34yebTM2cMcwBTFZZOSmpNZllqkb5fAlXH/+n32gh6eik/HbjA1MD7h7mLk 5JAQMJH48O8AYxcjF4eQwDpGibuXHzGBJIQEljBKbH6rDWKzCbhIPGgAiXNxiIDE+5e8ZO5i 5OAQFtCT+HM4CcQUEdCXWDo7H6RcRMBIYkLLXhYQm0VAVeLGvzXsIDavgIXE4RVTWSDGR0s8 Xb2DDaSVU8BY4spkG5Awo4CYxPdTa8AuYBYQl7j1ZD4TxJkCEkv2nGeGsEUlXj7+xwpiiwId sPz5Gqi4okT70wZGkJHMApoS63fpQ5jWEg0bkyAmKkpM6X4IdYygxMmZT1gmMIrNQrJsFkLz LITmWUiaZyFpXsDIuopRtDi1uDg33chYL7UoM7m4OD9PLy+1ZBMjMKoObvmtu4Nx9WvHQ4wC HIxKPLwffqyLEGJNLCuuzD3EKMHBrCTCK2e9IUKINyWxsiq1KD++qDQntfgQozQHi5I4r9nK ++FCAumJJanZqakFqUUwWSYOTqkGxtU/J8aYicg1OTl0y9382N4jMufr5ZAvZWXmu/b/zfEX uPIkw1CnpeRL01OOqksHeqbqWipdu8vHtupb25GYriXxcn/+Lr2cMsn/ZNgX4bdJH/alZtnp yq7vTNZj2hDZrn5/2erTB9+cUMze+f7Jg+u5fTcSFQvT/KW4N/xpTHdu/1h0e3eokBJLcUai oRZzUXEiAJYC3JamAgAA Archived-At: Subject: Re: [Ace] edhoc section 4: N_U/N_V question X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2017 14:07:07 -0000 TWljaGFlbCwgDQoNClRoaXMgaGFzIGFscmVhZHkgYmVlbiB1cGRhdGVkIGluIHRoZSBsYXRlc3Qg dmVyc2lvbiBvbiB0aGUgR2l0aHViOg0KaHR0cHM6Ly9lcmljc3NvbnJlc2VhcmNoLmdpdGh1Yi5p by9FREhPQy8NCg0KDQpBcyBJIG1lbnRpb25lZCB3ZSB3aWxsIHN1Ym1pdCB0byB0aGUgSUVURiBh IG5ldyB2ZXJzaW9uIG5leHQgd2VlaywgcGVuZGluZw0Kc29tZSBleHBlY3RlZCByZXZpZXcgY29t bWVudHMuDQoNCkfDtnJhbg0KDQoNCk9uIDIwMTctMDItMjQgMTQ6MTUsICJNaWNoYWVsIFJpY2hh cmRzb24iIDxtY3IraWV0ZkBzYW5kZWxtYW4uY2E+IHdyb3RlOg0KDQo+DQo+Tl9VLCBOX1YsIEVf ViwgQWxnX1YsIEVuYyhLX1ZFOyBJRF9WLCBTaWcoVjsgTWFjKEtfVk07IHByb3RfMikpKXwNCj4g ICAgfCA8LS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0tLS0t LS0tLS0tLS0tLS0tKw0KPiAgICAgICAgfCAgICAgICAgICAgICAgICAgICAgICAgICAgICAgbWVz c2FnZV8yDQo+fA0KPiAgICAgICAgICAgIHwNCj58DQo+ICAgIHwgICAgICAgICAgICAgICAgICAg ICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgICAgIHwNCj4gICAgICAg IHwgICAgTl9VLCBOX1YsIEVuYyhLX1VFOyBJRF9VLCBTaWcoVTsgTWFjKEtfVU07IHByb3RfMykp KQ0KPg0KPldoeSBpcyBOX1UgZWNob2VkIGJhY2sgdG8gVSBpbiBtZXNzYWdlIDI/DQo+V2h5IGFy ZSBOX1UgYW5kIE5fViBpbmNsdWRlZCBpbiBtZXNzYWdlIDM/DQo+DQo+SWYgdGhlIG5vbmNlIGFj dHMgYXMgYSBkZWZlbnNlIGFnYWluc3Qgb2ZmLXBhdGggYXR0YWNrcywgdGhlbiBhdCBsZWFzdA0K Pk5fVSBkb2VzIG5vdCBuZWVkIHRvIGJlIGluIG1lc3NhZ2UgMy4gIEluY2x1ZGluZyBOX1UgaW4g bWVzc2FnZSAyIGRlZmVuZHMNCj5hbiBvZmYtcGF0aCBhdHRhY2tlciByYWNpbmcgViB0byByZXBs eSB0byBtZXNzYWdlXzEsIHdoaWNoIHNlZW1zIHVubGlrZWx5Lg0KPg0KPg0KPi0tDQo+TWljaGFl bCBSaWNoYXJkc29uIDxtY3IrSUVURkBzYW5kZWxtYW4uY2E+LCBTYW5kZWxtYW4gU29mdHdhcmUg V29ya3MNCj4gLT0gSVB2NiBJb1QgY29uc3VsdGluZyA9LQ0KPg0KPg0KPg0KDQo= From nobody Fri Feb 24 06:14:10 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB6061297BC; Fri, 24 Feb 2017 06:14:07 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.767 X-Spam-Level: X-Spam-Status: No, score=-1.767 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, GAPPY_SUBJECT=1.954, RCVD_IN_DNSWL_MED=-2.3, RCVD_IN_MSPIKE_H3=-0.01, RCVD_IN_MSPIKE_WL=-0.01, RCVD_IN_SORBS_SPAM=0.5, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cJHeOGO7X8J3; Fri, 24 Feb 2017 06:14:06 -0800 (PST) Received: from sesbmg22.ericsson.net (sesbmg22.ericsson.net [193.180.251.48]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA1341296C5; Fri, 24 Feb 2017 06:14:05 -0800 (PST) X-AuditID: c1b4fb30-eabff70000002c77-20-58b03faad4f1 Received: from ESESSHC018.ericsson.se (Unknown_Domain [153.88.183.72]) by (Symantec Mail Security) with SMTP id 19.A9.11383.AAF30B85; Fri, 24 Feb 2017 15:14:04 +0100 (CET) Received: from ESESSMB307.ericsson.se ([169.254.7.82]) by ESESSHC018.ericsson.se ([153.88.183.72]) with mapi id 14.03.0319.002; Fri, 24 Feb 2017 15:14:02 +0100 From: John Mattsson To: =?iso-8859-1?Q?G=F6ran_Selander?= Thread-Topic: edhoc section 4: N_U/N_V question Thread-Index: AQHSjqAEkFOgjGVEIUm32iCCu/P3w6F4IGmAgAAS1Nk= Date: Fri, 24 Feb 2017 14:14:00 +0000 Message-ID: <9BDF5333-8AC4-499E-91A6-95BC5920FBE2@ericsson.com> References: <18776.1487902103@obiwan.sandelman.ca> <32152.1487942101@obiwan.sandelman.ca>, In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFvrKLMWRmVeSWpSXmKPExsUyM2K7h+4a+w0RBivWslt8/9bDbLHk5ysW i55D/ewOzB5Llvxk8miZs4c5gCmKyyYlNSezLLVI3y6BK+PnyaUsBbt5KvZ8u83SwDiTs4uR k0NCwERixod7bCC2kMA6RokrrYVdjFxA9mJGib3fn4Ml2AQMJObuaQCzRQScJU637WcEKWIW WMIosWRqL5DDwSEsoCfx53ASiCkioC+xdHY+RLmVxMRNS1hBbBYBVYltpw6B2bwC9hI9fyYx QuzqYJSY++oOWIJTwFKiafEMFhCbUUBM4vupNUwgNrOAuMStJ/OZII4WkFiy5zwzhC0q8fLx P1aIGj2JG1OnsEHY2hLLFr5mhlgmKHFy5hOWCYwis5CMmoWkZRaSlllIWhYwsqxiFC1OLU7K TTcy0kstykwuLs7P08tLLdnECIyMg1t+G+xgfPnc8RCjAAejEg/vhx/rIoRYE8uKK3MPMUpw MCuJ8MpZb4gQ4k1JrKxKLcqPLyrNSS0+xCjNwaIkzmu28n64kEB6YklqdmpqQWoRTJaJg1Oq gXHSG7uHwZyx5j2xat4XZP/Nm5c4V0Ox8Y3CrIu3OuffyH9YxnaqkUHx0Noyz4/J+yalRyn7 Jso+l+DZ8WHh6h0zF6psb6hYGsLIJbnbMnfyiwdhVfYzlj7c1Rf5ovXI++dv5Xclpi95biju OG3uEf1nRnkdk5R9t99/zMtXb2PgKFdU8detIl+JpTgj0VCLuag4EQCN7ikyiAIAAA== Archived-At: Cc: Michael Richardson , "ace@ietf.org" , "draft-selander-ace-cose-ecdhe@ietf.org" Subject: Re: [Ace] edhoc section 4: N_U/N_V question X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2017 14:14:08 -0000 N_U serves as a session identifier. That is the reason it is bounced back i= n message_2. Both N_U and N_V is not needed in message_3. In the updated version on Git= hub only a single session identifier is used in message_3 Sent from my Cray-1 > On 24 Feb 2017, at 15:07, G=F6ran Selander = wrote: >=20 > Michael,=20 >=20 > This has already been updated in the latest version on the Github: > https://ericssonresearch.github.io/EDHOC/ >=20 >=20 > As I mentioned we will submit to the IETF a new version next week, pendin= g > some expected review comments. >=20 > G=F6ran >=20 >=20 >> On 2017-02-24 14:15, "Michael Richardson" wrote: >>=20 >>=20 >> N_U, N_V, E_V, Alg_V, Enc(K_VE; ID_V, Sig(V; Mac(K_VM; prot_2)))| >> | <---------------------------------------------------------------+ >> | message_2 >> | >> | >> | >> | | >> | N_U, N_V, Enc(K_UE; ID_U, Sig(U; Mac(K_UM; prot_3))) >>=20 >> Why is N_U echoed back to U in message 2? >> Why are N_U and N_V included in message 3? >>=20 >> If the nonce acts as a defense against off-path attacks, then at least >> N_U does not need to be in message 3. Including N_U in message 2 defend= s >> an off-path attacker racing V to reply to message_1, which seems unlikel= y. >>=20 >>=20 >> -- >> Michael Richardson , Sandelman Software Works >> -=3D IPv6 IoT consulting =3D- >>=20 >>=20 >>=20 >=20 From nobody Fri Feb 24 09:03:44 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3F1391293F4; Fri, 24 Feb 2017 09:03:43 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -1.902 X-Spam-Level: X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id CBLa1wmdyLaj; Fri, 24 Feb 2017 09:03:42 -0800 (PST) Received: from tuna.sandelman.ca (tuna.sandelman.ca [IPv6:2607:f0b0:f:3:216:3eff:fe7c:d1f3]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E35A81293EE; Fri, 24 Feb 2017 09:03:41 -0800 (PST) Received: from sandelman.ca (obiwan.sandelman.ca [IPv6:2607:f0b0:f:2::247]) by tuna.sandelman.ca (Postfix) with ESMTP id 79C8FE032; Fri, 24 Feb 2017 12:25:41 -0500 (EST) Received: from obiwan.sandelman.ca (localhost [IPv6:::1]) by sandelman.ca (Postfix) with ESMTP id 8DF1C6381A; Fri, 24 Feb 2017 12:03:40 -0500 (EST) From: Michael Richardson To: =?us-ascii?Q?=3D=3Futf-8=3FB=3FR8O2cmFuIFNlbGFuZGVy=3F=3D?= In-Reply-To: References: <18776.1487902103@obiwan.sandelman.ca> X-Mailer: MH-E 8.6; nmh 1.6+dev; GNU Emacs 24.5.1 X-Face: $\n1pF)h^`}$H>Hk{L"x@)JS7<%Az}5RyS@k9X%29-lHB$Ti.V>2bi.~ehC0; <'$9xN5Ub# z!G,p`nR&p7Fz@^UXIn156S8.~^@MJ*mMsD7=QFeq%AL4m Archived-At: Cc: "ace@ietf.org" , "draft-selander-ace-cose-ecdhe@ietf.org" Subject: Re: [Ace] edhoc section 4.3.2 X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 24 Feb 2017 17:03:43 -0000 --=-=-= Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable G=C3=B6ran Selander wrote: > In issue 16 it was requested to allow multiple uses of ephemeral keys > and it was added in the security considerations. I think it makes sen= se > to mandate the verification of nonce uniqueness during reuse of > ephemeral keys and have reopened issue 16: > https://github.com/EricssonResearch/EDHOC/issues/16 Good, this lets a node trade off storage and compute power. =2D- Michael Richardson , Sandelman Software Works -=3D IPv6 IoT consulting =3D- --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQEzBAEBCAAdFiEEbsyLEzg/qUTA43uogItw+93Q3WUFAliwZ2wACgkQgItw+93Q 3WUPpwgApQva0xNcEbqP4sbuIrxuV89zcct+cc4mEYHu0zafMmEwbuE6/vPmi3ty zgjpyLIIJFU1lsxUbD7jMwmDHOFvz84CfxW2vwD7uKXT0i1tb6WDpiC1yQg2/AjR d89+Q6vREijzQc9JWQubaVDS8r85tnhzslsDDxm9zHAJsD6oz1uZZaxLTVh69qQz 06lQ7fo0uFs0l59Q31gixTC0jVWwABo2FpL/c2+59rIy8myNyAXx6+diyLeAXyhL EGdW5g5kBzlfu70RtQt+TbsWQ1dGDJ5i1CNVy0bAnmrVNyKlwwzrj3p3X9uk0qkb JlaJbfKyvQ/FJqzVkWn4EHSkfIrDww== =4Rpp -----END PGP SIGNATURE----- --=-=-=-- From nobody Sun Feb 26 14:16:26 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4D5811294A0; Sun, 26 Feb 2017 14:16:03 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -4.2 X-Spam-Level: X-Spam-Status: No, score=-4.2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tBwbvLVoV5_w; Sun, 26 Feb 2017 14:15:53 -0800 (PST) Received: from mailhost.informatik.uni-bremen.de (mailhost.informatik.uni-bremen.de [IPv6:2001:638:708:30c9::12]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 40DDD1294AC; Sun, 26 Feb 2017 14:15:37 -0800 (PST) X-Virus-Scanned: amavisd-new at informatik.uni-bremen.de Received: from submithost.informatik.uni-bremen.de (submithost.informatik.uni-bremen.de [134.102.201.11]) by mailhost.informatik.uni-bremen.de (8.14.5/8.14.5) with ESMTP id v1QMFYuT029565; Sun, 26 Feb 2017 23:15:34 +0100 (CET) Received: from [192.168.217.113] (p5DCCCDC2.dip0.t-ipconnect.de [93.204.205.194]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by submithost.informatik.uni-bremen.de (Postfix) with ESMTPSA id 3vWfKy0nZDzDHRc; Sun, 26 Feb 2017 23:15:34 +0100 (CET) From: Carsten Bormann Content-Type: text/plain; charset=utf-8 X-Mao-Original-Outgoing-Id: 509840133.576226-ea67440cccb3d25d780de107b226edcf Content-Transfer-Encoding: quoted-printable Mime-Version: 1.0 (Mac OS X Mail 10.2 \(3259\)) Date: Sun, 26 Feb 2017 23:15:33 +0100 Message-Id: <880044A0-E3F0-436D-BB45-6751A01EDB6B@tzi.org> To: ace@ietf.org, "core@ietf.org WG" , cose@ietf.org, cbor@ietf.org, t2trg@irtf.org X-Mailer: Apple Mail (2.3259) Archived-At: Subject: [Ace] Constrained Node/Network Cluster @ IETF98: DRAFT AGENDA X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 26 Feb 2017 22:16:03 -0000 Here is my usual eclectic condensed agenda based on the DRAFT AGENDA for IETF98. Remember that there is still quite some potential for changes. ACE/HOMENET/DISPATCH is a bit of a triple whammy. WUGH on LWIG will pull many constrained networks people off the github discussion. I'm not seeing any other major issues, but please do alert the respective chairs when you see one. All times are CDT (UTC-0500) -- yes, the US will be on DST already for a couple of weeks, while Europe moves over right on Mar 26th. (The browser timezone function still is not yet reinstated on https://datatracker.ietf.org/meeting/agenda-utc, for those who want to listen from remote.) Gr=C3=BC=C3=9Fe, Carsten SUNDAY, March 26, 2017 0900-1700 IRTF*** icnrg, with some t2trg-related items on the = agenda MONDAY, March 27, 2017 0900-1130 Morning Session I Zurich A ART dispatch Dispatch WG Zurich D INT homenet Home Networking WG Zurich C SEC *** ace Authentication and Authorization for = Constrained Environments WG 1300-1500 Afternoon Session I Zurich E/F IRTF*** t2trg Thing-to-Thing Zurich A OPS anima Autonomic Networking Integrated Model = and Approach WG Zurich B RTG bier Bit Indexed Explicit Replication WG Zurich G RTG detnet Deterministic Networking WG Vevey 1/2 TSV tsvarea Transport Area Open Meeting 1520-1650 Afternoon Session II Zurich A SEC tokbind Token Binding WG 1710-1810 Afternoon Session III Vevey 1/2 GEN wugh WGs Using GitHub BOF Zurich E/F INT *** lwig Light-Weight Implementation Guidance WG Montreux 3 SEC curdle CURves, Deprecating and a Little more = Encryption WG Zurich C SEC oauth Web Authorization Protocol WG Zurich G TSV tsvwg Transport Area Working Group WG TUESDAY, March 28, 2017 0900-1130 Morning Session I Zurich C INT *** 6tisch IPv6 over the TSCH mode of IEEE = 802.15.4e WG Zurich D IRTF maprg Measurement and Analysis for Protocols Zurich E/F SEC tls Transport Layer Security WG 1300-1430 Afternoon Session I Zurich C ART *** core Constrained RESTful Environments WG Zurich D INT intarea Internet Area Working Group WG Zurich A RTG babel Babel routing protocol WG 1450-1620 Afternoon Session II Zurich G ART uta Using TLS in Applications WG Zurich E/F SEC *** teep A Protocol for Dynamic Trusted Execution = Environment Enablement BOF 1640-1840 Afternoon Session III Zurich C INT dnssd Extensions for Scalable DNS Service = Discovery WG Zurich E/F TSV taps Transport Services WG WEDNESDAY, March 29, 2017 0900-1130 Morning Session I Zurich A INT *** 6lo IPv6 over Networks of = Resource-constrained Nodes WG 1300-1500 Afternoon Session I Zurich A INT *** lpwan IPv6 over Low Power Wide-Area Networks = WG Montreux 3 TSV tcpinc TCP Increased Security WG THURSDAY, March 30, 2017 0900-1130 Morning Session I Zurich D INT 6man IPv6 Maintenance WG Zurich C IRTF icnrg Information-Centric Networking Zurich E/F RTG rtgarea Routing Area Open Meeting Vevey 1/2 TSV quic QUIC WG 1300-1500 Afternoon Session I Zurich B ART *** cbor Concise Binary Object Representation = Maintenance and Extensions WG Zurich G SEC acme Automated Certificate Management = Environment WG Zurich A TSV tsvwg Transport Area Working Group WG 1520-1720 Afternoon Session II Zurich A OPS v6ops IPv6 Operations WG Zurich D SEC saag Security Area Open Meeting 1740-1840 Afternoon Session III Zurich A RTG *** roll Routing Over Low power and Lossy = networks WG FRIDAY, March 31, 2017 0900-1130 Morning Session I Vevey 1/2 ART httpbis Hypertext Transfer Protocol WG Zurich E/F INT ipwave IP Wireless Access in Vehicular = Environments WG Zurich A OPS anima Autonomic Networking Integrated Model = and Approach WG Zurich C SEC oauth Web Authorization Protocol WG 1150-1320 Afternoon Session I Zurich C ART *** core Constrained RESTful Environments WG From nobody Mon Feb 27 07:20:15 2017 Return-Path: X-Original-To: ace@ietfa.amsl.com Delivered-To: ace@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DE4D212A0FB for ; Mon, 27 Feb 2017 07:20:13 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 0.112 X-Spam-Level: X-Spam-Status: No, score=0.112 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, FREEMAIL_REPLY=1, HTML_MESSAGE=0.001, MPART_ALT_DIFF_COUNT=1.112, RCVD_IN_MSPIKE_H2=-0.001, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=126.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NGgEZ-dtzBPo for ; Mon, 27 Feb 2017 07:20:13 -0800 (PST) Received: from m50-112.126.com (m50-112.126.com [123.125.50.112]) by ietfa.amsl.com (Postfix) with ESMTP id A733112A0F5 for ; Mon, 27 Feb 2017 07:20:12 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=126.com; s=s110527; h=Date:Subject:Message-ID:From:MIME-Version; bh=UIjb/ dmI2ikv4dmt0GhtBmZYXgHQJX1/qm96Arch/1g=; b=GpLr7TCuxPCH7gVVSz7Of a9qD2P/Ly3262VkBBQXXYCalD27eDpJVD7faBIAGlw6ZjXYXbXyLs3SKARUPkC5H f5/RzFjNZtzDqOeGHPELP4DcD/h9GJofCKNEGthdy0Ndpvrq5uVfEqM+PFX1EEKN /2ywq1MjZfCPn1ZASh/5ak= Received: from [10.33.146.137] (unknown [123.147.244.90]) by smtp6 (Coremail) with SMTP id j9KowAA3HqOmQ7RYOPzECA--.6046S2; Mon, 27 Feb 2017 23:20:07 +0800 (CST) Date: Mon, 27 Feb 2017 23:20:06 +0800 Message-ID: <6dfbtaheiab18arm81kuvkrk.1488208806683@email.android.com> From: "liyong_net@126.com" To: ace@ietfa.amsl.com MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="--_com.android.email_176060624620322" X-CM-TRANSID: j9KowAA3HqOmQ7RYOPzECA--.6046S2 X-Coremail-Antispam: 1Uf129KBjDUn29KB7ZKAUJUUUUU529EdanIXcx71UUUUU7v73 VFW2AGmfu7bjvjm3AaLaJ3UbIYCTnIWIevJa73UjIFyTuYvjxUhdcTUUUUU X-Originating-IP: [123.147.244.90] X-CM-SenderInfo: pol100pjbqv3a6rslhhfrp/1tbi4wqLyFUw6EhDWwAAs3 Archived-At: Subject: [Ace] =?utf-8?b?5Zue5aSNOiBDb25maXJtOiBhY2VAaWV0ZmEuYW1zbC5jb206?= =?utf-8?q?WLQ2OQouAYCF=3A9tS7ou75yit1JnXzdMr?= X-BeenThere: ace@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 27 Feb 2017 15:20:14 -0000 ----_com.android.email_176060624620322 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: base64 cmVwbHkKCmFjZUBpZXRmYS5hbXNsLmNvbee8luWGme+8mgoKPgo+Q29uZmlybWF0aW9uIG9mIGxp c3QgcG9zdGluZyAtLSBjb25maXJtYXRpb24gSUQ6IFdMUTJPUW91QVlDRgo+Cj5UaGUgaWV0Zi5v cmcgbWFpbGluZy1saXN0IHNlcnZlciBoYXMgcmVjZWl2ZWQgYSBsaXN0IHBvc3RpbmcgZnJvbSAK PjEzMTAxMjc5NzM3QDEyNi5jb20gdG8gYWNlQGlldGZhLmFtc2wuY29tIHdpdGggdGhlIHN1Ympl Y3QgCj4nU3VibGltaW5hbCBDaGFubmVsIEhpZGluZyBDb21tdW5pY2F0aW9uIGZvciBDb25zdHJh aW5lZC1Ob2RlCj4gTmV0d29ya3MnCj4KPkFzIHRoZSBzZW5kZXIgYWRkcmVzcyBpc24ndCBzdWJz Y3JpYmVkIHRvIHRoZSBsaXN0LCBhbmQgaGFzIG5vdCBiZWVuCj5jb25maXJtZWQgZWFybGllciwg d2UgaGF2ZSB0byByZXF1ZXN0IGEgY29uZmlybWF0aW9uIG9mIHRoZSBhZGRyZXNzLgo+VG8gY29u ZmlybSB0aGUgYWRkcmVzcywgc2VuZCBhIG1lc3NhZ2UgdG8gYWNlQGlldGZhLmFtc2wuY29tLAo+ d2l0aCB0aGUgc2FtZSBzdWJqZWN0IGxpbmUgYXMgdGhpcyBtZXNzYWdlLgo+Cj4oU2ltcGx5IHNl bmRpbmcgYSAncmVwbHknIHRvIHRoaXMgbWVzc2FnZSBzaG91bGQgd29yayBmcm9tIG1vc3QgZW1h aWwKPmludGVyZmFjZXMsIHNpbmNlIHRoYXQgdXN1YWxseSBsZWF2ZXMgdGhlIHN1YmplY3QgbGlu ZSBpbiB0aGUgcmlnaHQKPmZvcm0uICBUaGUgcmVwbHkncyBhZGRpdGlvbmFsICJSZToiIGlzIG9r LikKPgo+SWYgeW91IGRvIG5vdCB3aXNoIHlvdXIgcG9zdGluZyB0byB0aGUgbGlzdCB0byBnbyB0 aHJvdWdoLCBzaW1wbHkKPmRpc3JlZ2FyZCB0aGlzIG1lc3NhZ2UuICBRdWVzdGlvbnMgdG8gaWV0 Zi1hY3Rpb25AaWV0Zi5vcmcuCj4K ----_com.android.email_176060624620322 Content-Type: text/html; charset=utf-8 Content-Transfer-Encoding: base64 PHAgZGlyPSJsdHIiPnJlcGx5PC9wPgo8YnI+PGJyPmFjZUBpZXRmYS5hbXNsLmNvbee8luWGme+8 mjxicj48YnI+ ----_com.android.email_176060624620322--