AzStackHciArcIntegration/AzStackHci.ArcIntegration.Helpers.psm1
|
Import-LocalizedData -BindingVariable lanTxt -FileName AzStackHci.ArcIntegration.Strings.psd1 function Test-ExistingArcResources { [CmdletBinding()] param ( [string] $SubscriptionId, [string] $ArcResourceGroupName, [string[]] $NodeNames ) try { $severity = 'CRITICAL' #TODO:check if the cmdlet is there, if it is not there, it means it is a different machine, we will fail the test $hciRegCmdlet = Get-Command Get-AzureStackHCI -Type Cmdlet -ErrorAction Ignore if($null -eq $hciRegCmdlet) { # If Get-AzureStackHCI, is not found, fail validation, indicating, validation can only run on HCI OS $detail = $lanTxt.ArcValidationNotSupported $status = 'FAILURE' Log-Info $detail -Type $severity } elseif ($(Get-AzureStackHCI).RegistrationStatus -ne "NotYet") { # Validation can only be done on un-registred cluster, when run on any other registration state, we will skip the validation $detail = $lanTxt.ClusterAlreadyRegistered $status = 'SUCCESS' Log-Info $detail } elseif (!$(Get-AzContext)) { $detail = $lanTxt.AzureContextRequired $status = 'FAILURE' Log-Info $detail -Type $severity } else { $HCApiVersion = "2022-03-10" $sameNodeNames = [System.Collections.ArrayList]::new() $msg = "Verifying subscription ID : {0}, Resource Group: {1}, Node Names {2}" -f $SubscriptionId, $ArcResourceGroupName, ($NodeNames -join ',') Log-Info $msg forEach ($clusNode in $NodeNames) { $machineResourceId = "/Subscriptions/" + $SubscriptionId + "/resourceGroups/" + $ArcResourceGroupName + "/providers/Microsoft.HybridCompute/machines/" + $clusNode $arcMachineResource = Get-AzResource -ResourceId $machineResourceId -ApiVersion $HCApiVersion -ErrorAction Ignore if ($Null -ne $arcMachineResource) { $sameNodeNames.Add($clusNode) | Out-Null } } if ($sameNodeNames.Count -gt 0) { $sameNodeNamesAsList = $sameNodeNames -join "," $detail = $lanTxt.ArcMachineAlreadyExistsInResourceGroupError -f $sameNodeNamesAsList, $ArcResourceGroupName $status = 'FAILURE' Log-Info $detail -Type $severity } else { $detail = $lanTxt.ArcMachineNotFound -f $ArcResourceGroupName $status = 'SUCCESS' Log-Info $detail } } $params = @{ Name = 'AzStackHci_ArcIntegration_ResourceGroup_Check' Title = 'Test ARC ResourceGroup' DisplayName = "Test ARC ResourceGroup $ArcResourceGroupName" Severity = $severity Description = 'Checking ARC ResourceGroup clean' Tags = @{} Remediation = 'https://aka.ms/hci-envch' TargetResourceID = "$SubscriptionId/$ArcResourceGroupName/$($NodeNames -join ',')" TargetResourceName = $ArcResourceGroupName TargetResourceType = 'ResourceGroup' Timestamp = [datetime]::UtcNow Status = $Status AdditionalData = @{ Source = $ENV:COMPUTERNAME Resource = 'ARC ResourceGroup' Detail = $detail Status = $status TimeStamp = [datetime]::UtcNow } HealthCheckSource = $ENV:EnvChkrId } New-AzStackHciResultObject @params } catch { throw ("Error validating ARC Resource Group : {0}" -f $_.Exception) } } function Test-ArcAgentNotConnectedToDifferentResource { param ( [string] $SubscriptionId, [string] $ArcResourceGroupName, [string[]] $NodeNames, [System.Management.Automation.Runspaces.PSSession[]] $PSSession ) try { $severity = 'CRITICAL' #TODO:check if the cmdlet is there, if it is not there, it means it is a different machine, we will fail the test $hciRegCmdlet = Get-Command Get-AzureStackHCI -Type Cmdlet -ErrorAction Ignore if($null -eq $hciRegCmdlet) { # If Get-AzureStackHCI, is not found, fail validation, indicating, validation can only run on HCI OS $detail = $lanTxt.ArcValidationNotSupported $status = 'FAILURE' Log-Info $detail -Type $severity } elseif ($(Get-AzureStackHCI).RegistrationStatus -ne "NotYet") { # Validation can only be done on un-registred cluster, when run on any other registration state, we will skip the validation $detail = $lanTxt.ClusterAlreadyRegistered $status = 'SUCCESS' Log-Info $detail } elseif ($null -eq $PSSession) { $detail = $lanTxt.SessionNotProvided $status = 'SUCCESS' Log-Info $detail } else { $NodesAlreadyArcEnabledDifferentResource = [System.Collections.ArrayList]::new() foreach ($nodeSession in $PSSession) { try { Microsoft.PowerShell.Core\Invoke-Command -Session $nodeSession -ErrorAction Stop -ArgumentList $lanTxt.ArcAgentExePath -ScriptBlock { if(Test-Path -Path $args[0]) { $arcAgentStatus = Invoke-Expression -Command "& 'C:\Program Files\AzureConnectedMachineAgent\azcmagent.exe' show -j" # Parsing the status received from Arc agent $arcAgentStatusParsed = $arcAgentStatus | ConvertFrom-Json # Throw an error if the node is Arc enabled to a different resource group or subscription id # Agent can be is "Connected" or disconnected state. If the resource name property on the agent is empty, that means, it is cleanly disconnected , and just the exe exists # If the resourceName exists and agent is in "Disconnected" state, indicates agent has temporary connectivity issues to the cloud if(-not ([string]::IsNullOrEmpty($arcAgentStatusParsed.resourceName)) -And (($arcAgentStatusParsed.subscriptionId -ne $Using:SubscriptionId) -or ($arcAgentStatusParsed.resourceGroup -ne $Using:ArcResourceGroupName))) { $differentResourceExceptionMessage = ("{0}: Subscription Id: {1}, Resource Group: {2} are the current parameters to which the arc agent is connected. Expected Subscription : {3} and Expected Resource Group : {4}" -f $Using:nodeSession.ComputerName, $arcAgentStatusParsed.subscriptionId, $arcAgentStatusParsed.resourceGroup, $SubscriptionId, $ArcResourceGroupName) throw $differentResourceExceptionMessage } } } } catch { if(($null -ne $_.Exception.Message) -and $_.Exception.Message.Contains($nodeSession.ComputerName) -and $_.Exception.Message.Contains("Subscription Id") -and $_.Exception.Message.Contains("Resource Group")) { $NodesAlreadyArcEnabledDifferentResource.Add($_.Exception.Message) | Out-Null } else { throw ("Error verifying Arc registration state for node: {0} with exception: {1}" -f $nodeSession.ComputerName, $_.Exception.Message) } } } if($NodesAlreadyArcEnabledDifferentResource.Length -gt 0) { $NodesAlreadyArcEnabledDifferentResource = $NodesAlreadyArcEnabledDifferentResource -join "`n" $detail = $lanTxt.ArcAlreadyEnabledInADifferentResourceError -f $NodesAlreadyArcEnabledDifferentResource $status = 'FAILURE' Log-Info $detail -Type $severity } else { $detail = $lanTxt.ArcNotEnabledInADifferentResource $status = 'SUCCESS' Log-Info $detail } } $params = @{ Name = 'AzStackHci_ArcIntegration_ArcMachinesState_Check' Title = 'Test Arc for servers machines state' DisplayName = "Test Arc for servers machines state $($NodeNames -join ',')" Severity = $severity Description = 'Check if Arc for servers machines are already connected to a different subscription id or resource group' Tags = @{} Remediation = 'https://aka.ms/hci-envch' TargetResourceID = "$SubscriptionId/$ArcResourceGroupName/$($NodeNames -join ',')" TargetResourceName = $($NodeNames -join ',') TargetResourceType = 'Arc for Servers' Timestamp = [datetime]::UtcNow Status = $Status AdditionalData = @{ Source = $ENV:COMPUTERNAME Resource = 'Arc for Servers' Detail = $detail Status = $status TimeStamp = [datetime]::UtcNow } HealthCheckSource = $ENV:EnvChkrId } New-AzStackHciResultObject @params } catch { throw ("Exception while checking Nodes Arc connection state: {0}" -f $_.Exception.Message) } } function Test-IsRegionValid { [CmdletBinding()] param ( [string] $Region ) try { $severity = 'CRITICAL' if(!$(Get-AzContext)) { $detail = $lanTxt.AzureContextRequired $status = 'FAILURE' Log-Info $detail -Type $severity } elseif ([string]::IsNullOrEmpty($Region)) { $detail = $lanTxt.RegionRequired $status = 'SUCCESS' Log-Info $detail } else { $Region = Normalize-RegionName -Region $Region $locations = Retry-Command -ScriptBlock { (Get-AzResourceProvider -ProviderNamespace Microsoft.AzureStackHCI).Where{($_.ResourceTypes.ResourceTypeName -eq 'clusters' -and $_.RegistrationState -eq 'Registered')}.Locations } -RetryIfNullOutput $true Log-Info ("RP supported regions : $locations") $locations | foreach { $regionName = Normalize-RegionName -Region $_ if ($regionName -eq $Region) { # Supported region $detail = $lanTxt.RegionVerified $status = 'SUCCESS' Log-Info $detail } } if($status -ne 'SUCCESS') { $detail = $lanTxt.RegionNotVerified -f $Region $status = 'FAILURE' Log-Info $detail -Type $severity } $params = @{ Name = 'AzStackHci_ArcIntegration_Region_Check' Title = 'Verify Azure Region' DisplayName = "Test Arc for servers machines state $($NodeNames -join ',')" Severity = $severity Description = 'Checking Azure Region' Tags = @{} Remediation = 'https://aka.ms/hci-envch' TargetResourceID = $Region TargetResourceName = $Region TargetResourceType = 'Azure Region' Timestamp = [datetime]::UtcNow Status = $Status AdditionalData = @{ Source = $ENV:COMPUTERNAME Resource = 'Azure Region' Detail = $detail Status = $status TimeStamp = [datetime]::UtcNow } HealthCheckSource = $ENV:EnvChkrId } New-AzStackHciResultObject @params } } catch { throw ("Exception while validating Region : {0}" -f $_.Exception) } } function Test-ResourceGroupLimit { [CmdletBinding()] param ( [string] $SubscriptionId, [string] $ArcResourceGroupName, [string] $RegistrationResourceGroupName ) try { $severity = 'CRITICAL' $azureContext = Get-AzContext if(!$azureContext) { $detail = $lanTxt.AzureContextRequired $status = 'FAILURE' Log-Info $detail -Type $severity } else { $newRGCount = 0 $hciRG = Get-AzResourceGroup -Name $RegistrationResourceGroupName -ErrorAction SilentlyContinue if([string]::IsNullOrEmpty($hciRG)) { $newRGCount++ } if($ArcResourceGroupName -ne $RegistrationResourceGroupName) { $arcRG = Get-AzResourceGroup -Name $ArcResourceGroupName -ErrorAction SilentlyContinue if([string]::IsNullOrEmpty($arcRG)) { $newRGCount++ } } $totalRGCount = (Get-AzResourceGroup -ErrorAction SilentlyContinue).Count if(($totalRGCount + $newRGCount) -gt 980) { $detail = $lanTxt.ResourceGroupLimitReached -f $SubscriptionId, ($totalRGCount + $newRGCount - 980) $status = 'FAILURE' Log-Info $detail -Type $severity } else { $detail = $lanTxt.ResourceGroupLimitCheckSucceeded -f $SubscriptionId $status = 'SUCCESS' Log-Info $detail } $params = @{ Name = 'AzStackHci_ArcIntegration_ResourceGroupLimit_Check' Title = 'Verify Resource group limit' DisplayName = 'Verify Resource group limit' Severity = $severity Description = 'Checking Azure Resource group limit' Tags = @{} Remediation = 'https://aka.ms/hci-envch' TargetResourceID = "$SubscriptionId/$ArcResourceGroupName" TargetResourceName = $ArcResourceGroupName TargetResourceType = 'ResourceGroup' Timestamp = [datetime]::UtcNow Status = $Status AdditionalData = @{ Source = $SubscriptionId Resource = ($totalRGCount + $newRGCount) Detail = $detail Status = $status TimeStamp = [datetime]::UtcNow } HealthCheckSource = $ENV:EnvChkrId } New-AzStackHciResultObject @params } } catch { throw ("Exception while verifying resource group limit : {0}" -f $_.Exception) } } function Test-ResourceCountLimit { [CmdletBinding()] param ( [string] $SubscriptionId, [string] $RegistrationResourceGroupName ) try { $severity = 'CRITICAL' $azureContext = Get-AzContext if(!$azureContext) { $detail = $lanTxt.AzureContextRequired $status = 'FAILURE' Log-Info $detail -Type $severity } else { try { $resourcesInHCIRg = Get-AzResource -ResourceGroupName $RegistrationResourceGroupName -ResourceType "Microsoft.AzureStackHCI/clusters" -ErrorAction Stop if($resourcesInHCIRg.Count -ge 800) { $detail = $lanTxt.ResourceLimitReached -f $RegistrationResourceGroupName, $SubscriptionId $status = 'FAILURE' Log-Info $detail -Type $severity } else { $detail = $lanTxt.ResourceLimitCheckSucceeded -f $RegistrationResourceGroupName $status = 'SUCCESS' Log-Info $detail } } catch { $detail = $lanTxt.MissingPermissions -f "Verify Resource count limit in Registration resource group" $status = 'SUCCESS' Log-Info $detail } $params = @{ Name = 'AzStackHci_ArcIntegration_ResourceLimit_Check' Title = 'Verify Resource limit' DisplayName = "Verify Resource limit in $RegistrationResourceGroupName" Severity = $severity Description = 'Checking Azure Stack HCI Cluster Resource limit in Registration resource group' Tags = @{} Remediation = 'https://aka.ms/hci-envch' TargetResourceID = "$SubscriptionId/$RegistrationResourceGroupName" TargetResourceName = $RegistrationResourceGroupName TargetResourceType = 'Cluster' Timestamp = [datetime]::UtcNow Status = $Status AdditionalData = @{ Source = $RegistrationResourceGroupName Resource = $resourcesInHCIRg.Count Detail = $detail Status = $status TimeStamp = [datetime]::UtcNow } HealthCheckSource = $ENV:EnvChkrId } New-AzStackHciResultObject @params } } catch { throw ("Exception while verifying azure stack hci resource count limit : {0}" -f $_.Exception) } } function Test-RoleAssignmentCountLimit { [CmdletBinding()] param ( [string] $SubscriptionId ) try { $severity = 'CRITICAL' $azureContext = Get-AzContext if(!$azureContext) { $detail = $lanTxt.AzureContextRequired $status = 'FAILURE' Log-Info $detail -Type $severity } else { try { $roleAssignments = Get-AzRoleAssignment -Scope "/subscriptions/$SubscriptionId" -ErrorAction Stop if($roleAssignments.Count -ge 4000) { $detail = $lanTxt.RoleAssignmentLimitReached -f $SubscriptionId $status = 'FAILURE' Log-Info $detail -Type $severity } else { $detail = $lanTxt.RoleAssignmentLimitSuccessfullyVerified -f $SubscriptionId $status = 'SUCCESS' Log-Info $detail } } catch { $detail = $lanTxt.MissingPermissions -f "Verify Role Assignment count" $status = 'SUCCESS' Log-Info $detail } $params = @{ Name = 'AzStackHci_ArcIntegration_RoleAssignmentLimit_Check' Title = 'Verify Role Assignment Limit' DisplayName = "Verify Role Assignment Limit in $SubscriptionId" Severity = $severity Description = 'Checking Role Assignment limit in Subscription' Tags = @{} Remediation = 'https://aka.ms/hci-envch' TargetResourceID = $azureContext.Subscription.Id TargetResourceName = $azureContext.Subscription.Name TargetResourceType = 'Azure Subscription' Timestamp = [datetime]::UtcNow Status = $Status AdditionalData = @{ Source = $azureContext.Subscription.Name Resource = $roleAssignments.Count Detail = $detail Status = $status TimeStamp = [datetime]::UtcNow } HealthCheckSource = $ENV:EnvChkrId } New-AzStackHciResultObject @params } } catch { throw ("Exception while verifying azure stack hci role assignment count limit : {0}" -f $_.Exception) } } function Test-ExistingHCIResource { [CmdletBinding()] param ( [string] $SubscriptionId, [string] $RegistrationResourceGroupName, [string] $RegistrationResourceName ) try { $severity = 'CRITICAL' #TODO:check if the cmdlet is there, if it is not there, it means it is a different machine, we will fail the test $hciRegCmdlet = Get-Command Get-AzureStackHCI -Type Cmdlet -ErrorAction Ignore if($null -eq $hciRegCmdlet) { # If Get-AzureStackHCI, is not found, fail validation, indicating, validation can only run on HCI OS $detail = $lanTxt.ArcValidationNotSupported $status = 'FAILURE' Log-Info $detail -Type $severity } elseif ($(Get-AzureStackHCI).RegistrationStatus -ne "NotYet") { # Validation can only be done on un-registred cluster, when run on any other registration state, we will skip the validation $detail = $lanTxt.ClusterAlreadyRegistered $status = 'SUCCESS' Log-Info $detail } elseif (!$(Get-AzContext)) { $detail = $lanTxt.AzureContextRequired $status = 'FAILURE' Log-Info $detail -Type $severity } elseif ([string]::IsNullOrEmpty($RegistrationResourceName)) { $detail = $lanTxt.ResourceNameEmpty $status = 'SUCCESS' Log-Info $detail } else { $RPAPIVersion = "2022-12-01" Log-Info ($lanTxt.VerifyingIfHCIResourceExistsInHCIRG -f $RegistrationResourceName, $SubscriptionId, $RegistrationResourceGroupName) $hciClusterResourceId = "/Subscriptions/" + $SubscriptionId + "/resourceGroups/" + $RegistrationResourceGroupName + "/providers/Microsoft.AzureStackHCI/clusters/" + $RegistrationResourceName $hciClusterResource = Get-AzResource -ResourceId $hciClusterResourceId -ApiVersion $RPAPIVersion -ErrorAction Ignore if ($null -ne $hciClusterResource) { $detail = $lanTxt.HCIClusterResourceAlreadyExistsError -f $RegistrationResourceName, $RegistrationResourceGroupName $status = 'FAILURE' Log-Info $detail -Type $severity } else { $detail = $lanTxt.HCIClusterNotFound -f $RegistrationResourceName, $RegistrationResourceGroupName $status = 'SUCCESS' Log-Info $detail } } $params = @{ Name = 'AzStackHci_HCI_ResourceGroup_Check' Title = 'Test HCI Resource Group' DisplayName = 'Test HCI Resource Group' Severity = $severity Description = 'Checking HCI Resource Group clean' Tags = @{} Remediation = 'https://aka.ms/hci-envch' TargetResourceID = "$SubscriptionId/$RegistrationResourceGroupName" TargetResourceName = $RegistrationResourceGroupName TargetResourceType = 'ResourceGroup' Timestamp = [datetime]::UtcNow Status = $Status AdditionalData = @{ Source = $SubscriptionId Resource = $RegistrationResourceGroupName Detail = $detail Status = $status TimeStamp = [datetime]::UtcNow } HealthCheckSource = $ENV:EnvChkrId } New-AzStackHciResultObject @params } catch { throw ("Error validating HCI Resource Group : {0}" -f $_.Exception) } } function Normalize-RegionName{ param( [string] $Region ) $regionName = $Region -replace '\s','' $regionName = $regionName.ToLower() return $regionName } function Retry-Command { param ( [parameter(Mandatory=$true)] [ValidateNotNullOrEmpty()] [scriptblock] $ScriptBlock, [int] $Attempts = 8, [int] $MinWaitTimeInSeconds = 5, [int] $MaxWaitTimeInSeconds = 60, [int] $BaseBackoffTimeInSeconds = 2, [bool] $RetryIfNullOutput = $true ) $attempt = 0 $completed = $false $result = $null if($MaxWaitTimeInSeconds -lt $MinWaitTimeInSeconds) { throw "MaxWaitTimeInSeconds($MaxWaitTimeInSeconds) is less than MinWaitTimeInSeconds($MinWaitTimeInSeconds)" } while (-not $completed) { try { $attempt = $attempt + 1 $result = Invoke-Command -ScriptBlock $ScriptBlock if($RetryIfNullOutput) { if($result -ne $null) { $completed = $true } else { throw "Null result received." } } else { $completed = $true } } catch { $exception = $_.Exception if([int]$exception.ErrorCode -eq [int][system.net.httpstatuscode]::Forbidden) { throw } else { if ($attempt -ge $Attempts) { throw } else { $secondsDelay = $MinWaitTimeInSeconds + [int]([Math]::Pow($BaseBackoffTimeInSeconds,($attempt-1))) if($secondsDelay -gt $MaxWaitTimeInSeconds) { $secondsDelay = $MaxWaitTimeInSeconds } Start-Sleep $secondsDelay } } } } return $result } Export-ModuleMember -Function Test-* # SIG # Begin signature block # MIIoQwYJKoZIhvcNAQcCoIIoNDCCKDACAQExDzANBglghkgBZQMEAgEFADB5Bgor # BgEEAYI3AgEEoGswaTA0BgorBgEEAYI3AgEeMCYCAwEAAAQQH8w7YFlLCE63JNLG # KX7zUQIBAAIBAAIBAAIBAAIBADAxMA0GCWCGSAFlAwQCAQUABCAQRshwj/cwT4ry # PxYWV12L7n97hXsuL8M+nRT3VvP4WqCCDXYwggX0MIID3KADAgECAhMzAAAEBGx0 # Bv9XKydyAAAAAAQEMA0GCSqGSIb3DQEBCwUAMH4xCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNpZ25p # bmcgUENBIDIwMTEwHhcNMjQwOTEyMjAxMTE0WhcNMjUwOTExMjAxMTE0WjB0MQsw # CQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9u # ZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMR4wHAYDVQQDExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB # AQC0KDfaY50MDqsEGdlIzDHBd6CqIMRQWW9Af1LHDDTuFjfDsvna0nEuDSYJmNyz # NB10jpbg0lhvkT1AzfX2TLITSXwS8D+mBzGCWMM/wTpciWBV/pbjSazbzoKvRrNo # DV/u9omOM2Eawyo5JJJdNkM2d8qzkQ0bRuRd4HarmGunSouyb9NY7egWN5E5lUc3 # a2AROzAdHdYpObpCOdeAY2P5XqtJkk79aROpzw16wCjdSn8qMzCBzR7rvH2WVkvF # HLIxZQET1yhPb6lRmpgBQNnzidHV2Ocxjc8wNiIDzgbDkmlx54QPfw7RwQi8p1fy # 4byhBrTjv568x8NGv3gwb0RbAgMBAAGjggFzMIIBbzAfBgNVHSUEGDAWBgorBgEE # AYI3TAgBBggrBgEFBQcDAzAdBgNVHQ4EFgQU8huhNbETDU+ZWllL4DNMPCijEU4w # RQYDVR0RBD4wPKQ6MDgxHjAcBgNVBAsTFU1pY3Jvc29mdCBDb3Jwb3JhdGlvbjEW # MBQGA1UEBRMNMjMwMDEyKzUwMjkyMzAfBgNVHSMEGDAWgBRIbmTlUAXTgqoXNzci # tW2oynUClTBUBgNVHR8ETTBLMEmgR6BFhkNodHRwOi8vd3d3Lm1pY3Jvc29mdC5j # b20vcGtpb3BzL2NybC9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3JsMGEG # CCsGAQUFBwEBBFUwUzBRBggrBgEFBQcwAoZFaHR0cDovL3d3dy5taWNyb3NvZnQu # Y29tL3BraW9wcy9jZXJ0cy9NaWNDb2RTaWdQQ0EyMDExXzIwMTEtMDctMDguY3J0 # MAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQELBQADggIBAIjmD9IpQVvfB1QehvpC # Ge7QeTQkKQ7j3bmDMjwSqFL4ri6ae9IFTdpywn5smmtSIyKYDn3/nHtaEn0X1NBj # L5oP0BjAy1sqxD+uy35B+V8wv5GrxhMDJP8l2QjLtH/UglSTIhLqyt8bUAqVfyfp # h4COMRvwwjTvChtCnUXXACuCXYHWalOoc0OU2oGN+mPJIJJxaNQc1sjBsMbGIWv3 # cmgSHkCEmrMv7yaidpePt6V+yPMik+eXw3IfZ5eNOiNgL1rZzgSJfTnvUqiaEQ0X # dG1HbkDv9fv6CTq6m4Ty3IzLiwGSXYxRIXTxT4TYs5VxHy2uFjFXWVSL0J2ARTYL # E4Oyl1wXDF1PX4bxg1yDMfKPHcE1Ijic5lx1KdK1SkaEJdto4hd++05J9Bf9TAmi # u6EK6C9Oe5vRadroJCK26uCUI4zIjL/qG7mswW+qT0CW0gnR9JHkXCWNbo8ccMk1 # sJatmRoSAifbgzaYbUz8+lv+IXy5GFuAmLnNbGjacB3IMGpa+lbFgih57/fIhamq # 5VhxgaEmn/UjWyr+cPiAFWuTVIpfsOjbEAww75wURNM1Imp9NJKye1O24EspEHmb # DmqCUcq7NqkOKIG4PVm3hDDED/WQpzJDkvu4FrIbvyTGVU01vKsg4UfcdiZ0fQ+/ # V0hf8yrtq9CkB8iIuk5bBxuPMIIHejCCBWKgAwIBAgIKYQ6Q0gAAAAAAAzANBgkq # hkiG9w0BAQsFADCBiDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldhc2hpbmd0b24x # EDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBDb3Jwb3JhdGlv # bjEyMDAGA1UEAxMpTWljcm9zb2Z0IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5 # IDIwMTEwHhcNMTEwNzA4MjA1OTA5WhcNMjYwNzA4MjEwOTA5WjB+MQswCQYDVQQG # EwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwG # A1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSgwJgYDVQQDEx9NaWNyb3NvZnQg # Q29kZSBTaWduaW5nIFBDQSAyMDExMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC # CgKCAgEAq/D6chAcLq3YbqqCEE00uvK2WCGfQhsqa+laUKq4BjgaBEm6f8MMHt03 # a8YS2AvwOMKZBrDIOdUBFDFC04kNeWSHfpRgJGyvnkmc6Whe0t+bU7IKLMOv2akr # rnoJr9eWWcpgGgXpZnboMlImEi/nqwhQz7NEt13YxC4Ddato88tt8zpcoRb0Rrrg # OGSsbmQ1eKagYw8t00CT+OPeBw3VXHmlSSnnDb6gE3e+lD3v++MrWhAfTVYoonpy # 4BI6t0le2O3tQ5GD2Xuye4Yb2T6xjF3oiU+EGvKhL1nkkDstrjNYxbc+/jLTswM9 # sbKvkjh+0p2ALPVOVpEhNSXDOW5kf1O6nA+tGSOEy/S6A4aN91/w0FK/jJSHvMAh # dCVfGCi2zCcoOCWYOUo2z3yxkq4cI6epZuxhH2rhKEmdX4jiJV3TIUs+UsS1Vz8k # A/DRelsv1SPjcF0PUUZ3s/gA4bysAoJf28AVs70b1FVL5zmhD+kjSbwYuER8ReTB # w3J64HLnJN+/RpnF78IcV9uDjexNSTCnq47f7Fufr/zdsGbiwZeBe+3W7UvnSSmn # Eyimp31ngOaKYnhfsi+E11ecXL93KCjx7W3DKI8sj0A3T8HhhUSJxAlMxdSlQy90 # lfdu+HggWCwTXWCVmj5PM4TasIgX3p5O9JawvEagbJjS4NaIjAsCAwEAAaOCAe0w # ggHpMBAGCSsGAQQBgjcVAQQDAgEAMB0GA1UdDgQWBBRIbmTlUAXTgqoXNzcitW2o # ynUClTAZBgkrBgEEAYI3FAIEDB4KAFMAdQBiAEMAQTALBgNVHQ8EBAMCAYYwDwYD # VR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBRyLToCMZBDuRQFTuHqp8cx0SOJNDBa # BgNVHR8EUzBRME+gTaBLhklodHRwOi8vY3JsLm1pY3Jvc29mdC5jb20vcGtpL2Ny # bC9wcm9kdWN0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3JsMF4GCCsG # AQUFBwEBBFIwUDBOBggrBgEFBQcwAoZCaHR0cDovL3d3dy5taWNyb3NvZnQuY29t # L3BraS9jZXJ0cy9NaWNSb29DZXJBdXQyMDExXzIwMTFfMDNfMjIuY3J0MIGfBgNV # HSAEgZcwgZQwgZEGCSsGAQQBgjcuAzCBgzA/BggrBgEFBQcCARYzaHR0cDovL3d3 # dy5taWNyb3NvZnQuY29tL3BraW9wcy9kb2NzL3ByaW1hcnljcHMuaHRtMEAGCCsG # AQUFBwICMDQeMiAdAEwAZQBnAGEAbABfAHAAbwBsAGkAYwB5AF8AcwB0AGEAdABl # AG0AZQBuAHQALiAdMA0GCSqGSIb3DQEBCwUAA4ICAQBn8oalmOBUeRou09h0ZyKb # C5YR4WOSmUKWfdJ5DJDBZV8uLD74w3LRbYP+vj/oCso7v0epo/Np22O/IjWll11l # hJB9i0ZQVdgMknzSGksc8zxCi1LQsP1r4z4HLimb5j0bpdS1HXeUOeLpZMlEPXh6 # I/MTfaaQdION9MsmAkYqwooQu6SpBQyb7Wj6aC6VoCo/KmtYSWMfCWluWpiW5IP0 # wI/zRive/DvQvTXvbiWu5a8n7dDd8w6vmSiXmE0OPQvyCInWH8MyGOLwxS3OW560 # STkKxgrCxq2u5bLZ2xWIUUVYODJxJxp/sfQn+N4sOiBpmLJZiWhub6e3dMNABQam # ASooPoI/E01mC8CzTfXhj38cbxV9Rad25UAqZaPDXVJihsMdYzaXht/a8/jyFqGa # J+HNpZfQ7l1jQeNbB5yHPgZ3BtEGsXUfFL5hYbXw3MYbBL7fQccOKO7eZS/sl/ah # XJbYANahRr1Z85elCUtIEJmAH9AAKcWxm6U/RXceNcbSoqKfenoi+kiVH6v7RyOA # 9Z74v2u3S5fi63V4GuzqN5l5GEv/1rMjaHXmr/r8i+sLgOppO6/8MO0ETI7f33Vt # Y5E90Z1WTk+/gFcioXgRMiF670EKsT/7qMykXcGhiJtXcVZOSEXAQsmbdlsKgEhr # /Xmfwb1tbWrJUnMTDXpQzTGCGiMwghofAgEBMIGVMH4xCzAJBgNVBAYTAlVTMRMw # EQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVN # aWNyb3NvZnQgQ29ycG9yYXRpb24xKDAmBgNVBAMTH01pY3Jvc29mdCBDb2RlIFNp # Z25pbmcgUENBIDIwMTECEzMAAAQEbHQG/1crJ3IAAAAABAQwDQYJYIZIAWUDBAIB # BQCgga4wGQYJKoZIhvcNAQkDMQwGCisGAQQBgjcCAQQwHAYKKwYBBAGCNwIBCzEO # MAwGCisGAQQBgjcCARUwLwYJKoZIhvcNAQkEMSIEIIMYkB/9XNhtkO2NN9jmycnY # 9R2pREao+05Lb3s7eJ5iMEIGCisGAQQBgjcCAQwxNDAyoBSAEgBNAGkAYwByAG8A # cwBvAGYAdKEagBhodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20wDQYJKoZIhvcNAQEB # BQAEggEAanH5jRmxucNrYJ53C2bwiWEvGGxccK299Vx6U2eVWszojoip63fZMq3k # IWJ2yUBgeRMU2aNFjys8+fWWo3Dq4zbpZY7dOhh5Va56wB80T/J8qV6c3ydCIfnD # j7C6Yo4WHwNAbuVQV85uMVa3HtXp4beEtHo04s8rp2bcV5U3RJj/8TPfscn31o+0 # 2jEWytgCoG/LAKH48kBVZNKmR2RUy/MUKvr77uP2Qr6v/mLfSVPUonfh8yVXxWlH # fEMs0ZM9axv3MI5kM4PzXKbxHSLdhQk2KtBDRQckFH0fKMMiQ8eKE39sBCFi1l67 # KyJ7lSK028LfC+hQjnJpHmAs70NlTqGCF60wghepBgorBgEEAYI3AwMBMYIXmTCC # F5UGCSqGSIb3DQEHAqCCF4YwgheCAgEDMQ8wDQYJYIZIAWUDBAIBBQAwggFaBgsq # hkiG9w0BCRABBKCCAUkEggFFMIIBQQIBAQYKKwYBBAGEWQoDATAxMA0GCWCGSAFl # AwQCAQUABCDUGjU0Ep1NdQd28wXxppfo4ekKlA241DzAUi4IztU3ZAIGZ0pekNc4 # GBMyMDI0MTIwNDE1MDMzMy4yNjNaMASAAgH0oIHZpIHWMIHTMQswCQYDVQQGEwJV # UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE # ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMS0wKwYDVQQLEyRNaWNyb3NvZnQgSXJl # bGFuZCBPcGVyYXRpb25zIExpbWl0ZWQxJzAlBgNVBAsTHm5TaGllbGQgVFNTIEVT # Tjo2NTFBLTA1RTAtRDk0NzElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAg # U2VydmljZaCCEfswggcoMIIFEKADAgECAhMzAAAB9ZkJlLzxxlCMAAEAAAH1MA0G # CSqGSIb3DQEBCwUAMHwxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9u # MRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRp # b24xJjAkBgNVBAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwMB4XDTI0 # MDcyNTE4MzEwMVoXDTI1MTAyMjE4MzEwMVowgdMxCzAJBgNVBAYTAlVTMRMwEQYD # VQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRtb25kMR4wHAYDVQQKExVNaWNy # b3NvZnQgQ29ycG9yYXRpb24xLTArBgNVBAsTJE1pY3Jvc29mdCBJcmVsYW5kIE9w # ZXJhdGlvbnMgTGltaXRlZDEnMCUGA1UECxMeblNoaWVsZCBUU1MgRVNOOjY1MUEt # MDVFMC1EOTQ3MSUwIwYDVQQDExxNaWNyb3NvZnQgVGltZS1TdGFtcCBTZXJ2aWNl # MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzO90cFQTWd/WP84IT7JM # IW1fQL61sdfgmhlfT0nvYEb2kvkNF073ZwjveuSWot387LjE0TCiG93e6I0HzIFQ # BnbxGP/WPBUirFq7WE5RAsuhNfYUL+PIb9jJq3CwWxICfw5t/pTyIOHjKvo1lQOT # WZypir/psZwEE7y2uWAPbZJTFrKen5R73x2Hbxy4eW1DcmXjym2wFWv10sBH40aj # Jfe+OkwcTdoYrY3KkpN/RQSjeycK0bhjo0CGYIYa+ZMAao0SNR/R1J1Y6sLkiCJO # 3aQrbS1Sz7l+/qJgy8fyEZMND5Ms7C0sEaOvoBHiWSpTM4vc0xDLCmc6PGv03CtW # u2KiyqrL8BAB1EYyOShI3IT79arDIDrL+de91FfjmSbBY5j+HvS0l3dXkjP3Hon8 # b74lWwikF0rzErF0n3khVAusx7Sm1oGG+06hz9XAy3Wou+T6Se6oa5LDiQgPTfWR # /j9FNk8Ju06oSfTh6c03V0ulla0Iwy+HzUl+WmYxFLU0PiaXsmgudNwVqn51zr+B # i3XPJ85wWuy6GGT7nBDmXNzTNkzK98DBQjTOabQXUZ884Yb9DFNcigmeVTYkyUXZ # 6hscd8Nyq45A3D3bk+nXnsogK1Z7zZj6XbGft7xgOYvveU6p0+frthbF7MXv+i5q # cD9HfFmOq4VYHevVesYb6P0CAwEAAaOCAUkwggFFMB0GA1UdDgQWBBRV4Hxb9Uo0 # oHDwJZJe22ixe2B1ATAfBgNVHSMEGDAWgBSfpxVdAF5iXYP05dJlpxtTNRnpcjBf # BgNVHR8EWDBWMFSgUqBQhk5odHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20vcGtpb3Bz # L2NybC9NaWNyb3NvZnQlMjBUaW1lLVN0YW1wJTIwUENBJTIwMjAxMCgxKS5jcmww # bAYIKwYBBQUHAQEEYDBeMFwGCCsGAQUFBzAChlBodHRwOi8vd3d3Lm1pY3Jvc29m # dC5jb20vcGtpb3BzL2NlcnRzL01pY3Jvc29mdCUyMFRpbWUtU3RhbXAlMjBQQ0El # MjAyMDEwKDEpLmNydDAMBgNVHRMBAf8EAjAAMBYGA1UdJQEB/wQMMAoGCCsGAQUF # BwMIMA4GA1UdDwEB/wQEAwIHgDANBgkqhkiG9w0BAQsFAAOCAgEAcwxmVPaA9xHf # fuom0TOSp2hspuf1G0cHW/KXHAuhnpW8/Svlq5j9aKI/8/G6fGIQMr0zlpau8jy8 # 3I4zclGdJjl5S02SxDlUKawtWvgf7ida06PgjeQM1eX4Lut4bbPfT0FEp77G76hh # ysXxTJNHv5y+fwThUeiiclihZwqcZMpa46m+oV6igTU6I0EnneotMqFs0Q3zHgVV # r4WXjnG2Bcnkip42edyg/9iXczqTBrEkvTz0UlltpFGaQnLzq+No8VEgq0UG7W1E # LZGhmmxFmHABwTT6sPJFV68DfLoC0iB9Qbb9VZ8mvbTV5JtISBklTuVAlEkzXi9L # IjNmx+kndBfKP8dxG/xbRXptQDQDaCsS6ogLkwLgH6zSs+ul9WmzI0F8zImbhnZh # UziIHheFo4H+ZoojPYcgTK6/3bkSbOabmQFf95B8B6e5WqXbS5s9OdMdUlW1gTI1 # r5u+WAwH2KG7dxneoTbf/jYl3TUtP7AHpyck2c0nun/Q0Cycpa9QUH/Dy01k6tQo # mNXGjivg2/BGcgZJ0Hw8C6KVelEJ31xLoE21m9+NEgSKCRoFE1Lkma31SyIaynbd # YEb8sOlZynMdm8yPldDwuF54vJiEArjrcDNXe6BobZUiTWSKvv1DJadR1SUCO/Od # 21GgU+hZqu+dKgjKAYdeTIvi9R2rtLYwggdxMIIFWaADAgECAhMzAAAAFcXna54C # m0mZAAAAAAAVMA0GCSqGSIb3DQEBCwUAMIGIMQswCQYDVQQGEwJVUzETMBEGA1UE # CBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9z # b2Z0IENvcnBvcmF0aW9uMTIwMAYDVQQDEylNaWNyb3NvZnQgUm9vdCBDZXJ0aWZp # Y2F0ZSBBdXRob3JpdHkgMjAxMDAeFw0yMTA5MzAxODIyMjVaFw0zMDA5MzAxODMy # MjVaMHwxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQH # EwdSZWRtb25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNV # BAMTHU1pY3Jvc29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwMIICIjANBgkqhkiG9w0B # AQEFAAOCAg8AMIICCgKCAgEA5OGmTOe0ciELeaLL1yR5vQ7VgtP97pwHB9KpbE51 # yMo1V/YBf2xK4OK9uT4XYDP/XE/HZveVU3Fa4n5KWv64NmeFRiMMtY0Tz3cywBAY # 6GB9alKDRLemjkZrBxTzxXb1hlDcwUTIcVxRMTegCjhuje3XD9gmU3w5YQJ6xKr9 # cmmvHaus9ja+NSZk2pg7uhp7M62AW36MEBydUv626GIl3GoPz130/o5Tz9bshVZN # 7928jaTjkY+yOSxRnOlwaQ3KNi1wjjHINSi947SHJMPgyY9+tVSP3PoFVZhtaDua # Rr3tpK56KTesy+uDRedGbsoy1cCGMFxPLOJiss254o2I5JasAUq7vnGpF1tnYN74 # kpEeHT39IM9zfUGaRnXNxF803RKJ1v2lIH1+/NmeRd+2ci/bfV+AutuqfjbsNkz2 # K26oElHovwUDo9Fzpk03dJQcNIIP8BDyt0cY7afomXw/TNuvXsLz1dhzPUNOwTM5 # TI4CvEJoLhDqhFFG4tG9ahhaYQFzymeiXtcodgLiMxhy16cg8ML6EgrXY28MyTZk # i1ugpoMhXV8wdJGUlNi5UPkLiWHzNgY1GIRH29wb0f2y1BzFa/ZcUlFdEtsluq9Q # BXpsxREdcu+N+VLEhReTwDwV2xo3xwgVGD94q0W29R6HXtqPnhZyacaue7e3Pmri # Lq0CAwEAAaOCAd0wggHZMBIGCSsGAQQBgjcVAQQFAgMBAAEwIwYJKwYBBAGCNxUC # BBYEFCqnUv5kxJq+gpE8RjUpzxD/LwTuMB0GA1UdDgQWBBSfpxVdAF5iXYP05dJl # pxtTNRnpcjBcBgNVHSAEVTBTMFEGDCsGAQQBgjdMg30BATBBMD8GCCsGAQUFBwIB # FjNodHRwOi8vd3d3Lm1pY3Jvc29mdC5jb20vcGtpb3BzL0RvY3MvUmVwb3NpdG9y # eS5odG0wEwYDVR0lBAwwCgYIKwYBBQUHAwgwGQYJKwYBBAGCNxQCBAweCgBTAHUA # YgBDAEEwCwYDVR0PBAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAU # 1fZWy4/oolxiaNE9lJBb186aGMQwVgYDVR0fBE8wTTBLoEmgR4ZFaHR0cDovL2Ny # bC5taWNyb3NvZnQuY29tL3BraS9jcmwvcHJvZHVjdHMvTWljUm9vQ2VyQXV0XzIw # MTAtMDYtMjMuY3JsMFoGCCsGAQUFBwEBBE4wTDBKBggrBgEFBQcwAoY+aHR0cDov # L3d3dy5taWNyb3NvZnQuY29tL3BraS9jZXJ0cy9NaWNSb29DZXJBdXRfMjAxMC0w # Ni0yMy5jcnQwDQYJKoZIhvcNAQELBQADggIBAJ1VffwqreEsH2cBMSRb4Z5yS/yp # b+pcFLY+TkdkeLEGk5c9MTO1OdfCcTY/2mRsfNB1OW27DzHkwo/7bNGhlBgi7ulm # ZzpTTd2YurYeeNg2LpypglYAA7AFvonoaeC6Ce5732pvvinLbtg/SHUB2RjebYIM # 9W0jVOR4U3UkV7ndn/OOPcbzaN9l9qRWqveVtihVJ9AkvUCgvxm2EhIRXT0n4ECW # OKz3+SmJw7wXsFSFQrP8DJ6LGYnn8AtqgcKBGUIZUnWKNsIdw2FzLixre24/LAl4 # FOmRsqlb30mjdAy87JGA0j3mSj5mO0+7hvoyGtmW9I/2kQH2zsZ0/fZMcm8Qq3Uw # xTSwethQ/gpY3UA8x1RtnWN0SCyxTkctwRQEcb9k+SS+c23Kjgm9swFXSVRk2XPX # fx5bRAGOWhmRaw2fpCjcZxkoJLo4S5pu+yFUa2pFEUep8beuyOiJXk+d0tBMdrVX # VAmxaQFEfnyhYWxz/gq77EFmPWn9y8FBSX5+k77L+DvktxW/tM4+pTFRhLy/AsGC # onsXHRWJjXD+57XQKBqJC4822rpM+Zv/Cuk0+CQ1ZyvgDbjmjJnW4SLq8CdCPSWU # 5nR0W2rRnj7tfqAxM328y+l7vzhwRNGQ8cirOoo6CGJ/2XBjU02N7oJtpQUQwXEG # ahC0HVUzWLOhcGbyoYIDVjCCAj4CAQEwggEBoYHZpIHWMIHTMQswCQYDVQQGEwJV # UzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UEBxMHUmVkbW9uZDEeMBwGA1UE # ChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMS0wKwYDVQQLEyRNaWNyb3NvZnQgSXJl # bGFuZCBPcGVyYXRpb25zIExpbWl0ZWQxJzAlBgNVBAsTHm5TaGllbGQgVFNTIEVT # Tjo2NTFBLTA1RTAtRDk0NzElMCMGA1UEAxMcTWljcm9zb2Z0IFRpbWUtU3RhbXAg # U2VydmljZaIjCgEBMAcGBSsOAwIaAxUAJsAKu48NbR5YRg3WSBQCyjzdkvaggYMw # gYCkfjB8MQswCQYDVQQGEwJVUzETMBEGA1UECBMKV2FzaGluZ3RvbjEQMA4GA1UE # BxMHUmVkbW9uZDEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMSYwJAYD # VQQDEx1NaWNyb3NvZnQgVGltZS1TdGFtcCBQQ0EgMjAxMDANBgkqhkiG9w0BAQsF # AAIFAOr6y6EwIhgPMjAyNDEyMDQxMjM3NTNaGA8yMDI0MTIwNTEyMzc1M1owdDA6 # BgorBgEEAYRZCgQBMSwwKjAKAgUA6vrLoQIBADAHAgEAAgIi6jAHAgEAAgISjjAK # AgUA6vwdIQIBADA2BgorBgEEAYRZCgQCMSgwJjAMBgorBgEEAYRZCgMCoAowCAIB # AAIDB6EgoQowCAIBAAIDAYagMA0GCSqGSIb3DQEBCwUAA4IBAQBYhQMogIeFDUrR # IwRU4YMHsPiZCGElvUgmgHgddtSF1sr0JWg6uW+zVTBBOPVsl+IUHxqIx0c72OTL # MYEhF1tr9geRKbk1x7eJmLMBfbipeAwga/pJq6RPG2vnSilmuq/hrp4hqO2vPBYa # Pmiir3aQJKVLJwIjeM7GN/M9nWH0gIiWev64zrGtXt+AyMp6Q3wsJN3xTSZVrHWp # ZduSgBh32boIPCrc4IPPTBbzWEEaGJ0RoC95zkbUd0MF6vT0T9m/FlfiCK3X5l7/ # zSjz3taMFlfojh46I2eEn4MxHWnP/R3Goj+B5qycd5iyGoXYSIJpCodlpF4ISHe+ # QOPU9cJrMYIEDTCCBAkCAQEwgZMwfDELMAkGA1UEBhMCVVMxEzARBgNVBAgTCldh # c2hpbmd0b24xEDAOBgNVBAcTB1JlZG1vbmQxHjAcBgNVBAoTFU1pY3Jvc29mdCBD # b3Jwb3JhdGlvbjEmMCQGA1UEAxMdTWljcm9zb2Z0IFRpbWUtU3RhbXAgUENBIDIw # MTACEzMAAAH1mQmUvPHGUIwAAQAAAfUwDQYJYIZIAWUDBAIBBQCgggFKMBoGCSqG # SIb3DQEJAzENBgsqhkiG9w0BCRABBDAvBgkqhkiG9w0BCQQxIgQg+gYm6Tp/NOTc # /pBnHjkhPmcAX6eJEx2JB4IQIMoXlAYwgfoGCyqGSIb3DQEJEAIvMYHqMIHnMIHk # MIG9BCDB1vLSFwh09ISu4kdEv4/tg9eR1Yk8w5x7j5GThqaPNTCBmDCBgKR+MHwx # CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpXYXNoaW5ndG9uMRAwDgYDVQQHEwdSZWRt # b25kMR4wHAYDVQQKExVNaWNyb3NvZnQgQ29ycG9yYXRpb24xJjAkBgNVBAMTHU1p # Y3Jvc29mdCBUaW1lLVN0YW1wIFBDQSAyMDEwAhMzAAAB9ZkJlLzxxlCMAAEAAAH1 # MCIEIJsAF0QtKp+zWOqWDTyk72cE0rYTpB5dhe7Q+cQ+Uo6GMA0GCSqGSIb3DQEB # CwUABIICAKfLTXt5U/EOS190V+xdt6eCk/dNdgrRjy1OzdY1oWyRCqVpwKHu54C8 # a3S3WY6OZJRpbU6rMLh4mQc7kpOz7k6ayCd/++ewn21oZEeXviM/WEEYNIOg8ycA # ltDphFPYGC7jbCIixCMET6T2In7cjmVDvN4uvLfHJaIPDazd7njljTCGOJ26AJFA # 2Pkwp8AdT2qjqysWtiQpd8d9RVHH4Tfijw9K8FYo8gb8NaUxejMFxpxJpmBbef/A # OZADSgfQrE+h9GP6lmHPUmol964EVRqUKZ6NXY/V8P/a7/VoP+0MdNVYiGQLa47b # jWsLJLf2kny40T084i0nYHqo2uwaeGqmHWsvEP5kIuntcm2mKiXc2hS5pTgdLHRN # N5+NdiR0gU7W8oov5fkwapbAPFnoU0kd1txaOEhCti/okf7+uslea++kkMpLtypz # KX0dFsQYgoV7Mexvs9aw1ZNE4uFgVMXcJNCf6nI1nyR7vBpHhtxdO4sLKqYRkv70 # lHqcF4qmlg/fSGYqdPcFHwRKVEilcIOIs2dwewglBTellcKShQMAd8PExVSHZq6w # 2PlBymyrfA1OPmn3TDyIkQStdx6NPxBUNR4Kko48CVPASi86AVEflIBMVaFp/1uW # /JQSEEwVu2oU9ImrrHXcsxVKRTbWQHqncJb4A3//KGwVWIrDl9BP # SIG # End signature block |