From ff738bf5580e174d29be942809818131ebed8611 Mon Sep 17 00:00:00 2001 From: Paulus Schoutsen Date: Sat, 12 Dec 2015 16:07:18 -0800 Subject: [PATCH 1/2] Add Let's Encrypt blogpost --- ...tup-encryption-using-lets-encrypt.markdown | 70 ++++++++++++++++++ source/images/supported_brands/duckdns.png | Bin 0 -> 8964 bytes .../images/supported_brands/letsencrypt.png | Bin 0 -> 86406 bytes 3 files changed, 70 insertions(+) create mode 100644 source/_posts/2015-12-13-setup-encryption-using-lets-encrypt.markdown create mode 100644 source/images/supported_brands/duckdns.png create mode 100644 source/images/supported_brands/letsencrypt.png diff --git a/source/_posts/2015-12-13-setup-encryption-using-lets-encrypt.markdown b/source/_posts/2015-12-13-setup-encryption-using-lets-encrypt.markdown new file mode 100644 index 00000000000..e43943c5fb7 --- /dev/null +++ b/source/_posts/2015-12-13-setup-encryption-using-lets-encrypt.markdown @@ -0,0 +1,70 @@ +--- +layout: post +title: "Set up encryption using Let's Encrypt" +description: "Tutorial how to encrypt your connection with Home Assistant." +date: 2015-12-12 16:06:00 -0800 +date_formatted: "December 13, 2015" +author: Paulus Schoutsen +comments: true +categories: how-to +og_image: /images/supported_brands/letsencrypt.png +--- + + Exposing your Home Assistant instance outside of your network always has been tricky. You have to set up port forwarding on your router and most likely add a dynamic DNS service to work around your ISP changing your IP. After this you would be able to use Home Assistant from anywhere but there is one big red flag: no encryption. This tutorial will take you through the steps to setup a dynamic DNS for your IP and allow trusted encrypted connection to it - for free using [Let's Encrypt]. + + + + + +### DuckDNS + +The first step is to set up [DuckDNS]. This is a free dynamic DNS service that you can use to get a DuckDNS.org subdomain to point at your house. A dynamic DNS service works by having your home computer tell DuckDNS.org every 5 minutes what its IP is so that DuckDNS can make sure your domain name is set up correctly. + +For this example we will assume our domain is `hass.duckdns.org`. + +First step is to acquire and set up our domain name. For this, go to [DuckDNS], log in with any of the supported login providers and add a domain. After this check out their [installation instructions][duckdns-install] to finish your installation of DuckDNS. If you're on a Raspberry Pi, see 'Pi' in the category 'Operating Systems'. + + + +### Let's Encrypt + +[Let's Encrypt] is a free, automated, and open certificate authority (CA). We will use this to acquire a certificate that can be used to encrypted our connection with Home Assistant. + +Let's Encrypt will give you a free 90-day certificate if you pass their domain validation challenge. Domains are validated by having certain data be accessible on your domain for Let's Encrypt ([they describe it better themselves][letsencrypt-technology]). + +Assuming that your home is behind a router, the first thing to do is to set up port forwarding from your router to your computer that will run Let's Encrypt. For the Let's Encrypt set up we need to forward ports `80` (http connections) and `443` (https connections). This can be set up by accessing your router admin interface ([Site with port forwarding instructions per router][port-forward]). + +Now you're ready to run Let's Encrypt using their [instructions][letsencrypt-run]. If you're using Docker, this is all you need to generate the required keys: + +```bash +sudo mkdir /etc/letsencrypt /var/lib/letsencrypt +sudo docker run -it --rm -p 443:443 -p 80:80 --name letsencrypt \ + -v "/etc/letsencrypt:/etc/letsencrypt" \ + -v "/var/lib/letsencrypt:/var/lib/letsencrypt" \ + quay.io/letsencrypt/letsencrypt:latest auth +``` + +This will generate your certificate in the directory `/etc/letsencrypt/live/hass.duckdns.org`. As the lifetime is only 90 days, you will have to repeat this every 90 days. + + + +### Home Assistant + +Before updating the Home Assistant configuration, we have to update the port forwarding at your router config. We can drop the port forwarding for port `80` as we no longer care about unecrypted messages. Update port `443` to forward to port `8123` on the computer that will run Home Assistant. + +The final step is to point Home Assistant at the generated certificates. + +```yaml +http: + ssl_certificate: /etc/letsencrypt/live/hass.example.com/fullchain.pem + ssl_key: /etc/letsencrypt/live/hass.example.com/privkey.pem +``` + +You can now navigate to https://hass.duckdns.org! + +[DuckDNS]: https://duckdns.org +[duckdns-install]: https://www.duckdns.org/install.jsp +[Let's Encrypt]: https://letsencrypt.org +[letsencrypt-technology]: https://letsencrypt.org/howitworks/technology/ +[port-forward]: http://portforward.com +[letsencrypt-run]: https://letsencrypt.org/howitworks/ diff --git a/source/images/supported_brands/duckdns.png b/source/images/supported_brands/duckdns.png new file mode 100644 index 0000000000000000000000000000000000000000..67aaf350a9a09c9731ab65bb848ff81146a0dc05 GIT binary patch literal 8964 zcmb_iWmg=xRYAPULT*PhP%#G8c&qyaL{}wU8Rf?A>*D5qY$!erL~# z;UV{7A#yk!#{Z$Yu_AU-(%BH5gSZDV-x*}A3 zGY>lK1sS}C*sWlCmKeNU7k4=thnh%~VGn~ngH)E;8iyn(C77jy?_oeo8OyKDoais; zqT9c<*f5MI*ap)FX%;vxq9c}MJp$&`1q{VGZmaicZE&LHDCte+q!GlJYswRymhzdt*^2(Ot6Qo-{;j%|t z65kywqmCAs-a{K?HAU&inn%$v1^;AZW|G$#r|%{3q}5q~ZT2Tn03?j7t)p(Gxy75# zmq;O(OQ^lE7*Y~PQ6@g(6Eo=~#Hi%bl2foD`Wa~n^#qbzNzHLaPV+p=+cT8QK2rOc z0@1igu1e{YN|33}w^=`hqg<`f45rQ>=7NM_liUez(?SGjI9PA6*WFh}*7~l}za{kyOFy`RlD%!_5t_S>(7&q}V){a2i< z1j}&+gTSBgWO5X}^iuq9R*96Zi4^%FJuFudY79CK>UkOVUKgM9VLONmb0Y4^DH}NW zR3#F;0OGwN{z@>3^?F-SLl3uVtKByFJ}S~&nR4v!-LlBxtDiA(dZSk?NUzZpzib#8 zZl=npucYVJPcX3n$dZ5FbI(eqkIpLxLg%7}dEG2?;4U?J*rsXZ>rxC9#h)MsTWX#5 zMqx;`j-el<$+<;`Jj+exrq7BUMpBxSTocxtpppqN%S~n>ZU^#cEijeG)gl^j>%)g!%l6xUkSXt$=Qba*5 zCU*aqtoPw^8181PVFQKWzP4fYWH{jXL`{cp~lyLTT2 z$xBlc@9~Y*rLU?ok!b@tvy1*QdO}WdQj2IUPnLqd$ZRi^Z3BpbD|fMT&(r4bQZHnE zw{wSiLI}Kz#kRkCpCSm@?JYvu%TrH~t3C_#D~%kzlp{A$Ok;M*Mtqyf%hX~8R9e|j z$9rCM6O%n&dxj#qvXD}M^kHniD_#rLA5#8!L?|Y-Wp4$P zv@D)=4Co)zOI&unijilQjtPb#^j>R9lUf`Vjdv;_Z3NN?3C#_JiWLQwa@~r6IL?3? zk12c*nTPTVM3Eh;zrAB3F6th$Qp-f7*^3p^oeB))dwUrR{lVnJF@{&rffa3wLX*8* z2O^7Lp=2ZVjgh49qy9TzPcLNRwRJQ!2EJ~zVe)-u2pn#;RhO<(y#t$?ps4QwI?;v@+!6ZmBd6MKZLBT+?y8X;mOY?3zM!nTb zC;RsSn3Q5y1!gaf{_ot?Kau)$y1Y$fr*1#bxu%WFyVFIMS!<@!)7}}paN=|{UzX^7 z+7|Sy7PJeZ&f-2{Sn$3h?H(ipBSX9a9)Fj&i5@c8+?A4Q+Low4wzH2nSrMOY1M4}8 z(ve@Ecf=qu`$)T-=5w~+OP>JeNgO==Iip?f+ixD@iB)Dq%L-armPR&%pK5^Z4-b#Y z9+J3ViR|NxPp?$%>+@)tf7rm)`FDtv^;E2Kcchoasn%7&Pjsiy(b#|~5$05obnt|6 zfA4QT4?6ro-sYp{{GC0wo#6Eqa*)h(b+oB#{en~-*4?iuE<_jfgHtL-xjQ^AZMF>c z$=l{pkM3umT_g}UWd^l9KXYB;+eBDGE=F_0j;YRCE2)?PGcN3M9Sp(!2_wAL`zWh;mcb&)bJ z=;62}1=nG7>0lb!%&$Zw>SbDFCNb*nLgT#GBA8ED*0+^d@#w{}SaTo1jgkHdNVx89 z(&-|4T$)RM8||>j+-@~7mfBDBIBv%gu<>AARhg{0ABNl)XzJ-v>Q^s-f?-c_2iqwI{Y`bgWCVOccR&Dc7KaSP85I9)dkc# zdwWX~T_QhRXX5PuS`MHWVZ2p%du$YqtMRNuBg#9)(J0u<;KtjDY+oL<9BnM0F4mxd z{yn9kM}`-?*bC1%wM4*E#}|raHxaSa_xQ=9eAv4^Y3j@aPa8iScBJ3GzElrvqTwz{ zjGkmPu8K|rt4ptL-_U~~xfR!Wcc+IyXIyPFs$ZirE~`kC(Xx^>uMLcZaZ00?cRNL& zCj0*i%*>q<*Qq_HC3)B^>MI7hJD%_y{UAr(1)Ezs%g(J5uJN*>>pZ z+#gntS*T+#_aDZ-?LEF-$7d-dvpHTM3w=;)s8;z-FaK?-=;NRo&%W_`-a65Ae!h%7 zm$p+Npx-`pQC}Tko(1jIQm<_>0J`GG4Qho_>_48CO@S%x52i#ZMJUczQyE!U-feUs zLVWQ&<`oGbKHe+B)b5cM&#vw+@{cPOwV(L{xd|Y5^Jxu5@?tS^ynb#uLlIknoZb;i zdBW8synN_QBWK;coHvM7R}kfr1t>R4h2@E2wvGciHeg;O3i&E+PJ_`w1U$TzASZ)G z%sKEX8#;h>FTmcj&j=&7bPdQqz%p5!Sj!3fq3IPPojD_j4EmvA_%H?URhS%#dmkyU z7((}~ovPhgg0f?@rT$K0Ce;$GJG~}US)ou9rkG^77O!-hX1LK?ZJ!K!Uqd#7@ocP@164A@ z3o7x{?2NLIX+9vTM4&BI*qInQ6^(PO!~oTs){knwnNywLQyBR{0gJ1s?W+j15Q*Bx z@_UnnKf=aK(H?wXBWO11(q>izZ6Gc&Er;{DQQT`O29`)^#QU0Kr^b^)C|3!(j@qa5 z1;1$nZ)idM$cqbJaXY2Q53EzG?g0RuO%SL#wPdWa9E7bkBQrbnC`k!XOBbyB0L*+Q3+!_sJa3j!z)Xsv20$HFd7 zbN_CqGpmp_UxnG~r`$D(6iR{3VtZ|vPL4-dFQDm$M5}X-R^jcOmDKq<>RK1y$lmw^ zHo5hagf+rM>r73nrue-=HaV#6d@0J)ZEjKQDJIdX*Ll&W3CCb=-nA2<1-6?o zRzQuSAeQR@c+`Cqwfp`T?`41fY#I}4A{l`rF98U3y;L%(q3t~J*4jFB_--nXm=sS; z!y6|a%GO12M=Go8CcIjpjt>i(##n~3z)P0iqPn|?chBUwv^3-<3C z*m~7nWt;HYavCYzf|_L8apIK2uUH2$CdBmHO}YU*TP@YKVP437s$Bp1K6~z!8eo2_ zQ^xS`%pQlQwa7y?_IU9+S4v`MhSC2Ox%Yj*%AI#k*@uT*dt8kaI;ui3&tGTjw*BZt zbbq@=tUr zpy${P;%Euc+(!iv))~>aUfTIR*h)EvP|Pj-YG>EpHXRT$3?{vL!>Kt){a!rsMKmvb zd^`;LaTXeXOMp9E->GEW-2(bK3_PB}L$&*5_MX@LC7Id0ICSiTR-C?TJeO(O`mSf~ zMdoRkfVPDxa}}bJ)n6V+903q%H+z|qSNJQBa}*gw8I`O0@!9dy6hDdW$k9UVf|0KGt>Hs6mNT^ z?1~}|Zolt5H<&mFi{{^77df|O(>Dt1RAS##)<}qA?0+p8k~hj(bi%5X!#qF=RbIrB z{^!Ph2)1vOSLemB2NPGg?%)g9eXnk#nQp{5LhKEz9@ibkKsd~=H#4s8?Vk}F<(P@x zhMhLzG<21wQ6xDgmW3UP^*RWb&?LryOiw~YngQpQAxX#n;!*|iIR7pkd^Q6AV*Ng@ zME#<~x7Efrj!LTMaH%UEJAfdvw#3LGs4OL4@rh>d;M-x*=+V;n`4#fE)l`luv-;d= z2OeT{34hy}a@31)!in{{X1y5kpjKF1HMqj606&2KiitvH9U0N6s|mEImeljk6%N6(!R!e9+#T{$TV9p@A;ah#uG%{ zH$uPI{p*}Bd%Njl8u0IfhbOX`yJ93U2VwQuABx0yo`IqMEXUtG8K`4?frBgcXeB8W zBQ^pbLxFDF{>0VTKhGHA0<4l11maVO&pM8DECncfhCDoA2|U(bM=9GbwvxEJBl`S~ zY5T^`BK9*Bs#(s?-XK?&UPO#$9%`n8w?AeStV6JevGYdW^Lrr|Hbg9vi?0roPq5zC7laq zRO~3rU*9FUd*@oL`YG>jTLu!NR0`m~zF8oUNhyo$Hd#iKHzY_OB6G>S6bZCnvJ>HI zRO)H|VC#yUomWql^bO+87a!l-y!S!Jiq}CKl{WM<+rc{NJJ-$e^cC97EY*C8%c-A3 z=o+(!4`~a!5iVO3s~yv66T3N-dCSFxVfs~pziGIQFQS{AgVxZdb8k5s6aAF-5FQ>7 zxBXd)K4@`u5>oa7Ci0J=Y{GBjO<0mkE;OD^{Bz{N$rIXmtI~Q@%>XZ++d27VGBnA1 z%P(MANy#5lcY3D84;FfDRdgp0+zMOya!U|jNAtC?yp+E;2C_Xam*6U1oda$PZConh z3;NC^Vve+%Q$tO~sM}$ki1kjl;sht|6MDzMcVZP6u3RUo*U0f4+#S0kihj3ilHbTX z{umfzMn#o>ub&<;N9(n9P1qdfE@_l~`*>a~Yh^dcLoqI%MXVOCt z%A&6Lx`$!XF-5ib(iqAl`ge)hBaNnTpu{KH7TYIhDSaN>J$M)=E4yvsTa^x**p=BA zEXQ+>RAjG93%hcbU1QzYeBWB|`4y56#xoXpqTUp}>qgfVK)r;PUnte;@Qk_IJPhj` zm@Ys$WdYk9zhssk$naxHM22*0?l*sWtI$W1bk3_#=CsDe(#lef_cM;g>HdU6YnCIo z0xoC!0-Y23@Bwe~Em-tRe3b>Do2$*z+WypAJ?Pzsg=e|}-tF=3g>0L_o#lt;xIG&` zg{!g5Pp6^vrYRR&eIkq7WWJlJ^4Z)kPM$S3x=JeqZy9b*%7M%1NPTCnNr7JPSeL`H$8C|4ElDyfukwYSHNX@mRlG91BuGt26Ql8{Zy^$((q_n zJcHP0EI_*p9(%A>*>dN_>n z{~0A|(mp{o+ZEw|yGAjR4BhtiB5}&EZfp)P^wjzNTfN@=yEUS!>X)%tp<`+ZY^B61 z2M^2|;06L%9QAmPer#SD-C;xc{YJ-${qun5qTr}K*}r!;fwyF5+u*M?s$2Q+vPc^+ zzZ)FzZm49;W?Fu;@-QAB; zyk^4hx?dhKUY`b*#bsHsbWEFe-0E~32TyFww7?V3PfvlLxovRaw%11zLp3@N#OkoN z+MwEkSe0PrEUhbC!;kfS0sKUF;h^(3^*jkmqm@;ezJc*ghaE?UGYdOuuUa;@ z>=q-#mY85_G|!yAHHW&34Wj7d(bNtr{XONhdjS63pR@AFhB*yWPdW}C1;Q0|29S*bQJR7~*5;ebj<0J;Sr_U{=Gg?h9Y2O(Jh(cbN5Lr-U+@|=} z`R7dRZjoB%xNM~S{pad(S9m{6x=#U)u%s%yJ^Yg}q)Rm5s?xq!5n2=aoq(U5|@p2_=LkKnsYi7?=rJv8|HS!Gll+`Vusfmxm_%ngn3Y!mpI#IaB?k6_Rw`jq8@U8 zEO%HSeiRYUoSgXn74Skwl{MalyjH32UxZA$dwxm_DSD79tnT715+3OtqQ zc^nG;EeDnwN6ym*n?2B!T;Czmpud?}I{d)1UO32Im#TZMB80W7+_GtJX?vOjau;>budTiC-q4(eZ>3%$2dly*t(AM#tNasq z`QW5nl%mLKR`vXu+ZztkPx?pB^KQsyy`uCq9^ovxG9P<7t8Mps<=EY~G(uqtNC#5{ zwcLKm-Jb1*lZ;K@ODaTF+2vl}SN^Fp=GP?c{gEf6(%}j{acuZu|1@{1qIh(9qE{&P z0gieuPRaCy0taRB_sgaEAw9tD0-I@yoqAOa@~Nfjb-AKL1&IY&cDZC^PjB2DA+Fa8Wj@z6TOfp;5dZUFCtf97oze`vVXR@-~OAlzGwXASTKhat1=X$_414YScn2UK(}qs=O2?y!{nGI)Uz z9%_ltt0^|OpU+*MPBq(@z^n8(j92k9h>g9v&P=FZ=)O*Q&MsRY0eh+tD#RA^Zs6Y{ zG9T-0_iw>2LrH77zh>uA`2AKqr@6PuSPf1xm-~oTw;%??3%&ZAqI^Z)*k>>~177c8 zWf7gv^7@oLCwmQeI4VP-4Q5RDkbAt}rEO1|Bnj#du}B8Xg`!U5OIR;QdGYzW6qKvA z<4m^R^L}3XiLn~g?+Z$pGQf?o8jdDYRP^b0Mfs^6jav`f@@=;R?G83OG_d*;_YmJ! zY3}<`(fBLCMWYU4 zNgIv${FL45kb29w=>{vp6&x2T&^Dm*(>(+!AcZ_T_nD)G&k?!y={qa#6{T4*pxbkb zzoTd0wE=)5r0*kWFZGfxE441NuS~BLt(KssblH7bt z`QmkK_(#8&2NN2EDdUdTR7d6b|_(apAILd<@@0|0!quvUYD8x08Ng zly!IS&XnJM=L+)-G~Lr!=#JLM+O!^xOH=W?o;HDp;_$4MBS%__yYO1%_AQfStRPa-D*X=rnp&7lwc5_A5cY# zUbqKq-|Y)t){dzhow+doPW5I68`r^=bl|`VjQoKGf#et`4TKhwokz6Mx~({~k6p z7{tQ!%eME{W)wuJvs=}MNuzfcGKj!*e?0?OEKfKqY|Y=Fe50OEVn2}~S`?J_{xI!m zHjHJ#M+oniPziK54|dANj>Yfg5ZgM7D`5F9*5_Q|UYraq=*2(H|N7TdezxUMcvq&^ zd!H+Q-jyUkAZ8<0Ut!Qv;qAv#g3k+>UnIE4K#274`iJ^XKRv_?laS~;+r%{UKEDf|Tr%=xLx^8ys)Vl=w22H7yvv;@k#*UQ}d#+L|_SY}`A3tQ_+-AP{ zQwr!~|2$Dubr@W(a~h{vuC*{uW-;BLwKCe;HUN4GlR+^$Dr6}C-rgXS$F9e^VIF(` z1g05r4yv%wvD76YARrC=cNPFu>|qaIDgfnpfoTkr1;ue^yJ%$qLLm%P{SQh)&S{(< z8zTFh^uHxEKi7anvHLI_$IU? zlzWhG6a^l#g$fN&3P3Z+))uYDm-1}W5x#;D-i#!v2!G~X?cy6>sUO$tn_CznfjPp& zmbN{9^4=RC{Z-KEzlI_l{^H|s&4R^YEI2Rt}H*B0Y3XSn}?$+938)nHJRa%)A-kpybgV?*Eg?zl{(O-Ok;I6 z`{=WrNoXm;zNy>SBp|J!BTO%M$K1`@OuCZ!58?r9qMN$Y@#4_#>4XJ_t-Nx@sTMZl m-W(qRKHW+{^WW zw{R8b?yWv6Ih*cs?9g1IxkS<@JaI_^$F1vsW^lExJr`#6V3zysV~c?gvv&V5e=Csp zaWq)#Zzb%{zK?wW^g}qlTV4F~B)$u8*!cfH^#36m%h1J9Q=*kyRHL>2th(3nTjT8MB30XI-AXyG=fkShgIV)FA}h51 z^sp>=uhTc6^4w6Hq{Vc1%l?--GOVTR*ek>ZAEvG2|6ytSpxad9#D(hNh^r)V0@WM{)qV?&A{gU?zc>?|RY%`HQ$-9v!`MyTI_k{kQG+|MxNcI`(8-HC>i&lx*~XDu7IwIJ$;Z zr=6waov*9%_k=aCG|ITDdVBAwycSj2_m0_lmZK}304Hnf}H@(wUz*JsM+QhFXt}P(lwEn#P>`_2FJEG56pha znwWI<5+i4)%E%pQ@e?0R{|4etp^m=VbCWNs>i;}JrDGjGW63Aif;J>JY4j&jgl)?4 zUn3f-!VXJyTv@Sf1@gLGl{UMO)HuJ?9LPRm@j%j@;((f^CWvcME5!nMaABm#Ffyz; z(E#)Dkbv$GeAJnMeE zuo#B@8Ab@f9u=vjodyL4Veeb?H$1S7|2n-->C0Sy`Ch-JS?7_9E5DWhBFi>m4Lnv+NUf!_{=>SXww zJKnjk__xP#Qbyb>B7;Swkyq602dY#?<0|C1O59B2zxqZA^=A;?{b6){Ro2o|xh(@X zL`2tT<@M~|v-t2*FmFaorQ+?qzpwI9bDYtN1DD>e#SW}UJZbmY<*w^u%- zJg>mOyP(bDzt*pjcHm&ExUrXarN9dQV3C5^`7FkO&h9<3%yA3%8a9O6A>D+dEb)3l znXdM^Ks(91BX7 zav)st&(MEt|9M-;*w@T+)`nflG0W0H`yd*Qvb|lu<+WIpvxhadr0wSUrfo}aTi9sa>#2bKA-D(ogHBR zm#W!}->`2inA&Ag60*a!T8H1J(&lH@SZo4gKbg$K38D=8v3-ioxFc5x1e>DvqgGtV z0tTHo{7EoK>)e~zbSU<44Pak7d8Y9z(a+U?qg)nrWR(9t3%qYLu`q5uNI~h6wcu{g zoW74Q`v#o9T?S_r%_>~7B{FypFd*8oQXqKA(K6NZUgvU;kL{r{DIkln&2m!LVksunpC)eJoy>D^I9I`r1lMgQ(>kMC~K{ZvNU4_ z>XQPy&BL@-X`3IMvTl@Io@nVCfYT`d#)*H_xZqMtb0GBFIeN1(*JSbs;eSW=MbUjBMq%%_1^1jj;S9@`peidorFF-rp+lkb?)P zvR;^Uo7>D<4pTAgJ&eS$0?hB7v%Ul0vJ&Co3EYJx`E$~GWGx2O+(1OO(`iLNC#mVv z_&GpqDpEwVK_vZK^Ma2~jGyutu5&BsYNt*ryQmemy=&cbu8JZaHz+J@1gomHWFDuI z&c%9=Ire+%jTF@TdIY4E2mo^NYsItg$YW`f&20iF8=B9^uPFD-xk|3bp92RcEwJ<( zdvLL?me}7}ZHj}Uu%!uO^XC}F9|u%}&+4b7?+B~QP2-|fHOxFxuRm#+@`M*r zT&73X0*i5P~vOXtp@hVS3Fn=v+ek1mqs`b0NWUL*{5(#Yg&#MPFj$iWzDCsDM9C30q9uqvXr)>b z+^&jPjX91JPX6Jo$hw67KLtY8hX@RBH!ptnjA+VMmJLp5`A!lDQ)YukZ}S~!xc`=L z+y)L%>BR%g3u>OZZ&sfWbB8A-X05Pw;u$I4d0!OxntwD+S%#TgI($|0?-;>E(Ih5& z!y9_PR$nh*4e^?zpD>)^^el?KqkP0mAp4*SF~~WlJ+d9C)HQg>HA1ma?C9FehO>Tp ze#DdWFdruud1FpA|GLT_)o<&b32ye=+_2Q>qpalBp-ulHEM_xa$#F~ucu&o zoVZng7E$5pWfyVru#=aH>n-paILw17q|YQNgdB^ENH2y2i&ljO$C@7kIZ3DMTYElg zQ#&L5BqKJw^HJlOf(wTh3z3EEq^Hga5536&JBLzd%BMBCc`fg$N3~>bhK;m zZC+!Gp>VMdsBc5MP|sW2F9GH&uc~$>!`9;~1_n|}K=~vu>@QjOuV2Aqs+5c?cgBsX zmT#Nvo&Q2Fu({|5frYR1c5~E7#ETg4t%%!FmDDYpUPL`vB9kPUQ zHXxb8!IQqjvW%Fo9xis08_LL;W-0{#2u~0KAtp{3mtLWTSwPG(4z|Uw3Pl`?v}sYn zu@r@p#hO|y27d7*61RsO>?%c~@>KX8Am{7&l{@B49N?T<3A}hWqE|(?N`(c}1af*< zCLH>WgNy6AT-8(5DuIqlZzVIML>cHM2t>eR57S61%E5+(BzZQvEM@CBj9CWpl&w$& zP`e9hm(dZ!e{oZR>NYhXJNgr(`l2e7(4jdYY*aiUW^`xYES9Mh+$(&-oF`+N=?&M0Xk|?}8RC8=3ry{O!*7GMlji z+mc`-Z}93s+xL|)XP9>+iN#^StQ+?Tf=?L0$pz2x_il44B|8bs6e#J)AC>vUiMDeQ zNFtPrI}0O*ZS6g4xs7bxp$xjj|HDH}n{d794SpR0FwX?J4{itzQ7Rxnq(3PolU6(x zGY{dEDYkdC8l()s0 zj5s8arhuL;NTy`Pl`aDe+sK6jQ49Dp!)QhfvP|-`7)h$ciQ~W!;iMsDJ;e7QHV28o z@qQbD&Fi60d|qEe*${F*BO8IKO5(7LYET@~Z15Ckll016GEl|T`H8*_>UB}=o!@=G!paql{lc}{rQ!sCqd%d3GI+^ z9YJHhvHY6AqT_uqW(kd*@wMa3P0d(SL56sC=uPE~#cuy>5}1#ZXZk{80dWY-WyFbf zp7=-8(`PR)#<0`(K|4D$pAh%}M5PW>U3nvxcxq28eDiL~@W+q(x$&)>;U={37oK-} zuORx3Z6?yi`loVFOuar<((YA9`-fNpbU&hMCNwsTnF770fUS^)P(%WWH~n+{EO>V5Lpy z?>REo0nE4ys)w(@F1FA++K-uAjNdbZxQdFbg_SK=IdwF4-p9hNT5JI!j7mcC^^z%(8~pmsY`S?k9I&bE-AyL725@I z;@lLr4~kKnfIm=#he`>=EK|HK3eok2WY2|d$SO`JZ!cgTOq>}tFym(@E_@X=QU@vE zN(CR^rZNVGrr9x}x}zgg60Sw07b}waUAxf6M*iUAs;s1u0^;hKt4Pyu+khnC$k|PT zn4^&`5s5Z(%Rfft;75xD!}?dBFGhJ-wqCO%trK)Pndlahe3ZDLSNFr9;Ow8uXU4T= zi>c-VtDs<7(+N%~wI6*B^mN7@ly}eX`$%Rcv^VWaZv*bn?;nKS19y?3C5Vi8AJovy zWS7H29XgAWO1$-Pwu>+%5KrLxJnnN41|r~n=Df^h5|QAMvJ!i-JiUaH#wqhCSr<+-Sl{gN(*V z)vx1B<7a|KujTid(}R}2lEm$dNP`Eqnb;5w_z{%n$owQTbIl^5Wa{Xom^+*WnUO8} z0r^Ala@)XpjbuuPk$c7Zwf>*fr(0&m8}uY6i7Aja!H5|a68WZ}Spz6i0VOSwydCv^ zV2_U5$V-=%JYa7xIWB6V3bKi zz4#W*4DYv5f;@C+8IczP1|y7;NE=B4MJzY}RQdY8d?HDOKYI@``ZexX;w*cKwNoZ) zI?7@Muopy2`g`_F&9vQF^;mI*8OL&tzk7cus#Ma-Ub-qI-OcA$+20oz44aiZ;_JeKV8t!zfiJAPV?#G3ULnkcTd*F6qY17GY?N)$oP6~Uy#kUpOeCB zjheSemTTuX)rbX%1*n*)&2;BM>D@*uEn5P_k`C=qs#1!wAEeVN8X6jg z{Oa4hr=z-3dlM5P8TMEfPmQ$qijoURh-{?SbsIHzkChrV4-BksV|KqBno;zeWIliS zaojv-?dU;jMJ_7~A^$=XI?TtdU5(?--t)cAV@aaB z|NUM7YlY5R^F26gCE0l>Yn=JKfPP7i_*QmduX(tXc56-Q>+tI1Azoh`^_Di3+i=O|ay zdrvp4ib6<)rCU00HE{`ubVb=qD>)BMUTB~BJf+6WwS3E(!Z}@ciDtEBcsxUTxvbLZ z5!ZujjdEf&PQ}+}(hoIv-$O1323QMW#WN$8-MziNQ&sie!@~u=vfWp&W1~0C5gbJC zzL;beor*(C=WT1}f`#!5H|D9mwEt~8MDu7pP#;jGq*5a`eb&>VE0^ ze11N_^5Z&brED&%iXOzV1@UtZu63A7%xj;UZt?ojdye@$K-tyn(9p%(=JXv^N>&xR z2v18PUw269Ivh`~^H%@lB)g;c*ypK)PO`^3a>@QXQzHVBDqC9sv7EI|2M6i?!L?d| zG9odm(nZh9qfO7ue~YaDx5#G2_p~G&R&$K6QnHP*FEz?%sE9}>O)YNKWAb_S4#{#G zg4~3|xhk0n_G@q)+k9ooyt%p-MBct6g&C@Swi9Brg;#l;{g*Uq#91=dZwLN{7^}M!rRbHOM+0TFU z{qgyakob5Jp}f30hxHDBgotF%RMyXA(maPgC(Y{20}dgMKQ$ zwAmLruFt>knZr5TDMv-5lm{EmHlcTSUT7yZS27^_l`$piwJdBT>R9U&m%j7L%E}Io zjtj??4ICU=v6GQEwV{lbmSf6K%0u1ro_s1N=PYf%mWf~O)M=mOIoxQG5{hT2;EW=t z;^hM5aLVeU#SM`BCPt8lNF>T_xLq^o&PST>Je;X(X`dd+Tlk?0_0TZ%YB6U$22Ka* z{#DIN*_~~L_pQg`tjBcPr==WYl32r;A}A}B%%;MfQ>9m*qsHi{$nQX5F6lz*dtJVe zb>?r!-!R>w1dcI}w680@8u769sD*TkNnNh%oQP=GsvQ|2q z9ue{IK#aS}RweI7@K^u8E0(qgXn8ujezqAT$zsIcSREA-il=H=D1%4EBoX<-h0w53 z|Ct%@c~j?y2T;V-LaU(Y{v3m zs3bYxd{e-ve{oB;wE5n`NNfiz;)~;V)oC|xfdWicw+t07w7qPfWS26)tbK1gENKTmH&thV@5XCeI~(rtcsF0o4VQm2Nqk8Dc9SB+;TITJle?fNZJ#f za%%xw3XdNVy0)Dr^&%pL{@R!seC=s|u~1V=}cx9tNdK z!L>3`Yn{_}+MY16+0o78U&z0uSv$v=+gToLCS_|CAA+r=)5r9>=r4G>Ptx)iZqr!t zB~0eaHlxLhPLqp%sy(K9-6dQl{-l3Xg+BI-Fv*?Z?y^1<%h1iuk7$%o@Rt*UqyxcL z;S76e{L?o@&VTf&ysrvBR=)W#be~ONs9dLbvvy2Kl~QSXjj&VrbBUIU9$$IilvZZP zWKqdX-w^9>kwq}3u->vJ+P%7xSYxuDzAm}Obg$b9W!hek^G##it-|dsGHTXYJEzI{ zmtGACHJ4DZt!(DW<*mG&;%m?U;%Z~9)~W7oD)G8_-HsIi7+tz0@Z^higmFrFv`=-{ z748VP=Z_z_Zm6~}Oe-ArCwkuC_~lt@TD@cMNR3@LPo@lZL+3+3e7U{QwoZ zI0;9Ax`mw{CV7me4zctdW2ll@UOaEx?l%4Yx`Ue2!_Y$h7wep^)d;W9pd(aJ?ob>$ z1_$6y-KnudN$6TatuW}nR2bxCP>S;~ z{`e}M+-o5xEn-^+5aNI4Xv51F5BtwY9mA545+eczphgNwNw9am7Lnk$R>Qz4C!a$j z$GEgcOvyzrMji_ybb2xQ3YHMWP6_O!23Rwxv*F6e2AuffL)LX)jc79G@3uCvXx28c zc9yI`WOQ?5nZ0jU7f=*(?x*iSK zi>uFh{GEhRJr%mb8WPSA^CKdfq=ZCNxHi)_2~}Q(wcyKjy}dI62-p;^;=9(_I9AtR z?!;geLr#OPxf4IAFjSj)&G7!ZDx6Zdzc1++CYgq`3@%+4o*FgEk}H-VZ^^THZA zyf8wgcnDwVHI>@Pbob4jwh=Xz-Qu!-^4T&$;T#r92;4g_hHq1moWQy`lpIXqhjq zwlsH(hsSnCsWi7%>Xs(Zcc4CsPjjQfP|%xe3d3ufg-eZ`V#KU0K2+#Z4;uh}3AL5l zR)Ggj!8|2w)`$^<8>qA4a1N~1;!Xu*d}nUT326u?c?@rJyt=_-pk1w7f7;J-0Nm$KHP1Q*X&lmknNHiL{vr?~&uPHm3}fMh}iwc|H8d?2;6n zpDS^i5OE)VoK{~j(xfGIC=!#*;q_0DsA;XX;<{F|uGE~%FJD+3MbI53 zZ)xJxq%C0!cyU`v?caGqN=ZniCObL;bsK|R7?obeDuJOM2EwUMxn$#=I`yN=zkbZ7 zB^t-($7mS9JjhMy3127>O7fcS56aAB>9u)|)8_3Q+6W;v&mWJ9J^5ntQqn>{ZK2DM z#(ZXYeBr}}-EOmmZv7I-rR(Mz9uW$xt(+R13f&eKdNB+!5TBf{>+wN}7IS`oxiW1l zu%~ankUxq?MZ{Uk%0Ov_vu)r>5vvL-6XZNrBj#kcV(P=%Y?BywoOZM_toXX}z9BWY zUtk>hv3@hEA@F2(RBebM?c!uvLxcA+OD4n7b1X~tVGvJ$b{A?^IoxPOuzFJ723 zUoazq-MwLD>Q2e{U8I|Af*_9S7p@;@Flm&Uq^!DmNIJMr?2raWz(`1n?yeTOX-xMOyUip&W`MRAat7$CCh1_SV13csTZvECZP}#^`=+0zZ80| zTUVM8D#ld~)gtBVEGcQlos&UNT}LE|PsECQCZQ?euuTmFng@ambT$Q^G(heN6+@;` z1U14@tj5Ix^IB-H)s4~ZrgPzC2)lE14c)?H_8CJGzCHxh_I1o*_l0njxC*DUeB|>O zaCzm0xl4v>(@b~lcoDBMU>Qz@N-n}r&8;EOR6x_kzZ4FF7h?elD-qX^>2&97&#y+1 zs<85h+{8n(A!}9pABGZVBi({h5`vcR@>416jza4myUUq~QV=-TIndB+98}x3Fk2E| zdlXG{)qYe+h+OAwZ2Et=tNkW>*bTL?mrjzg@|rs%=t!(J0@IlW&^IRm1+K$izK&h& z9}9-CxdFWz!%fa~!XjU5Du{PDX~D$BJka6D98zH&qj$P66QBE`jt_@c80*Kug% zD@!055aj=%tSI|BX$2S1^A3MPG17T??u%@I#v4@8zJ7JBSWTj}mmiFC7;WaCX3JU0 z$$wB%4JZ74?O_4wzA3(IHLSQcx3)1mD$_)n0Ydkg7OOX?dRh>g08&$%;0{R4;I5+V zeN{jhd~lRCgmtYsG^_yf+82uW+`s9~c(nvyLv0)`KfXG4j zd9*ad)}X-wCY6NXFVMv$_`*0E#q1&*%*PXIkDd~_M&DG^2a6Z}+`J~G$;75Y#_9zs z+ZY}%e@*3ncteP|7A64hu3Nt=O=D7Bj|9BB4HqFaxa{ECiz8pzAvFNkKX!&mE^kkW zs1WT+PpBo-{bKRqX~{{-=1H;wXiUpDyILyr(Iu!!3W?+^3mqekg}bczLJ^^$`8ylx zE4vL0Nyv}3So#-+q#*L~am z_UX}7)+bp9x4r^&icxDph6JA0WU%Ap-iIRb8lsXxITUP>Y?Bmtt9}#kl!*49@SzGP zdX?L9{&K7W^pwb$vlLejsuv@T6(>x(>EUZr(L%wna>IV-gAXA(AcNMRlP`?8PYiZR z1gOk?bA397X-yT0XjM-7`-;JQQ*P=TrYzlO3juMcN+YE>%@4i_?0od@i{n|W3($=Ar zafmJma`;*e&X$TIwC4nlrAERU!cl9TP>YNGOVQj!+Soy?$4%rL2fW#2Ue*n9*bS2a zwxU`odooABbOszZ*#Ca9@*SJ6v-*#<7rIun_E{R2^5hy@Ky(x6We(q*5K{52`77m8 zxh$3)A5xW2TfQzBJd1YDRs*d9ShgAN!{5VTkUrR{2xUXzL5I7oxy!ZD3L-h+*Km7H zI4>bMcYo_S7K7a-KWc-2Y;w|6q}!h(?Q$+ZockiRD|u+?U-!gJc}^`me%|ze;BW5B z4qN=SW>4D9UGg#y+?JgTUZ(ES&3#jT>mHZm>#J|5>v!yGU+rpO9DSXgb1IIr%Z*Hov;=%`6e!M~|ap9=+#F%}u**oB3n= z>PC3`C0z1c=9 z@U$IYqmOuc;Op!g#cO4+%?}SgKN2ebLGR}M$81{Gsr>5KVjiUleLutcM2X2wAL7bZ zTE7X8d1Mi(x$48)5F8=9(vtP@QX{k4JAcekTkPf;!FSv4tK~msJu5K0;@PKvbZ~v5 zucz3}?Lo=g@twp-cWQQ~Kue?dsQ(#U1#IdcSsIqmG^@wohF#2=BMsY^-%U=$QE3ciW_V-uzPJk^9TA zVsqOrkN8%FV0AWo^6THL7qhka(d!yr)DIzW*jKhVR4~tw(kRcPTcget5UYVIDulezb@zLhqzw?T7 zqTO{Qt=grQ=e*au*{j8SI5klEc7nx?EN+ig7M=@#*pBFV>FzhPlh4$hNUUZ^vi><{ z`N3)E%gJl~d7IN8OWfU}C2nK?ai8_O=;VF(9+z#@R_A?$%XCEJY~kr~@9e*U!${(h z#3MGXj_CIiQaWf53f5GcGHgbT?uiu+-?bY9F z$H$M8^4W8qiB7iQH*PdTgcXDA)VJ={jC%ThN`%#M=Irci9nnM@jppU>pw;t1yN#ra zAWN}d3LA@H(=zgXFCj0ZWyE+Q$giFeiXQ~CJw8%)?>)g6<3phOelu&Qk#hpF*XTp* z5Br$ObeNqEQa?=)qTBlAu%T=cBHt%s=RWj>ZBF;m`AtE0b!+*|eB#PCroaE%g`8Qw z%FGrW>=ba6-FD%wjrsvSzQe&6y++PWm=;gyEY?P9vX`mPK@lLu_q|k*@iA--3)r%0 z)#&No)V|FT%=7vPpYmO8-oxVynX}F8wuV<0eyIK!Fc+fbZPEPNEJWQXB3$#BZfm-_ zOi-@2F7Q>h9Zd6X8!#3szJ>QNPRVPcWfCfmMHZ7Z`n+KEG1=2WM{7wSlJ}j~HA=Nm zp-Q17rG#0)o?SE=-1uw1B=gQ_+%xf9vt2$14OaQ&vOY|@z8R~wbxd^Q+=gl@^}>1B zZgcP+=C#k-ETwgGVDZ!yneIBYqY`0XqMvSe2s)ivS-&Hxc%~`IDu3>`l6(f^AIGXI z#syI)UrOD`t6OF5bfeST;<%?1lErGD85{fDQ*0Gopd)#-$y8#?c6pB8F+U{g_n>;- z2$C=#aVaeyv&_)sEnqUuM~Xq}hh%Vjp?Ts&aMmnXmpek^ihb@W%Z&u%K3o&8jo zXe#Jv{=b}z7=qv)67pWU6>lfDGFh^oCv&1EAeR}8UB0V#?1 zYHOMBsy9dhb^B_hAveKTH%`I^bScDk+dLtwV{`aGQR+{qd`Jm$u4ROHzLKVtjuk|0 zyW@(eep?`Y?Yne-c^QC97yQz2Yag!Bd^o!;h*@3UOe^^;Ly9q}JaLWUNEf zK6iC>txZzhj5Uu%2x}S%ypG2A)Pr_i@5IfYgFxzdLpk(dCs*ZEAB{LH&_xbtx>HO=j7O4n| zBMzpMklNc9T^5?GcOd+AkuC{ayez!r~GiKvJzo${xSMpMg|OmTBALnOoF#J4_ARF9Tvj8x$c= zLAv_ZD4M-x>3YC5RXE;zt3R^OwYo<7d2S98Pd7dg9MiB}7fFFoK2p@Z>@(TxISbwO z_IgRx5-ntxq&B<(FGD>2=zj4tCcFTnEJ3+2!F8_0qq4^wAI>CNsDXf&R)2i{Qg?&y z=_0A1pB`!JUcL(rq*)|ndG)TQ0$3#K(IdGsMD#>;@|i4-;Idnr)ic_oUj4M$80p|K zzP((PIsG{^$#c5x*pPeBHkUAihYt)Pn6FVpW>9A9_wPfYF`KbE9_lHnsw3<5j~;*NY6 zF?e2M-4A@?WNB%|{GX4N>r1q_h(;gGBLeIbCt=K{c$!mBg_0S=&W6U-E)Of}84rfE zc|{aM)K79e%h!d)o%nPOURo&ch>FM!7e1^7Lg80$&<4jV zZUvJQVl~<7^8pNb`T(DL)IkH;`XlVce~%7+`s`PpiUJGN)vpQWIr|y!QYTj18Zw`W zQrO&J5j45sIpZ+A)Yti5H=l-CD+~Bdx(&h3wDB<%{ zR9yKzHA^mn+%wUy;>tEY3O_9qbkkIol9pxBE~`a#HpEh!-p;vQ3^T^w`P48k_hC|$ zvJZ+}#+~OSf^r>#;C8|LIN0nxi8HVGE(IP1EoHS|6W%@4&_Fw`=04igNY8ga7v5xe zQ}0@G;8Dtu!HqqF#Zn4xlCn-!vQD*;=OCsN-_`SHAJJz2`6$^_EPia)RBkcr(hzes z0QR1U^&>TzAZf@u@pb}uHYZH859A+74?4s#tRYWULCL;{qTmT55%_9eGduNKTtCN{5!0|OMUnH&o5}eI z!~4un&!^hl+8a+&;d9xPPS|t{=b3{M*kBy$4`mE=XzLPTWwR$XH6pHjrFi7T+u?~KkYV0Pi8Cgt zfw@2Rh%U@Ia^FZ2rA=){4EtpTvlE`Ye{Y6%NQy5qZnKp28)Ays6yXDp*~ydgd-8O# z36Oozs_K!TwP7nCKRPGttWidFnxop}vfK-U_MSuT?JAYlIVX5Xd$eEtE>1w|pQ=b? zMpqv#({=|L>+$*Chz%aYgAvY_m%7?s>xO$q9F&j(3**3%;>%MW3)+E(kxifkoNb+| zXD_h@ouSD@71fDkH%+#^t}i!yXCH)OB|Um!V^ zFCAawsU|b^?$Nz6L3oJrubM`;_kHu${%+@ohTFtL@*XpjNn^4__g%7LP`eCif)2pg zLyP$sD|%SWp%RsgUS9L9izL;m0?oY?4I3k1d^^w%G#nx98_lK&fsK&R#`a);SwMZ)caLc=v1w)y04fenVz*o>%HA3*~7aCx*>Qr7P` zSSG0E56R>fx=;UHn+n3?Ktm!3*_gTN^m0xAL2TTc8w!rH}i7%J`9cjbmIpAqY?*eBGZ(WuSH!XfwT>EhF zt6wOM`7yd+^`uaUsR0^dP_q&GD{V6DiaRsLwa>rzr97p>vuVJ{ztBJn@=D zjpee&pEXCEuq+)NeE#ya&K7mvNO38?cR0cUpIHyi?VMTlQ6Rk-0re~ab$5@mlbyxc z&qxoH;~1IDq4zO5rs0+n*20!k5M8}%cqW!e*{qJXakG*hU+QGw_tZmE!}m@K zK`Td3qg*rD=Iwr|T-IFwrrt+X2p&{NnTRM7yY=`8p&QM@^zDRwSQpRc&Ss$OVE0;8 zM?z!%l&?{2|)#lh4s=Y0fShQ6S_0e`zJYAz!Cpm1*Z?D#d~+K&9m#K~UEMVIF` zG4VXHTqeYFIob{MoxFCA92@uq+0y*v5!-Vq`%r0z93B;^l5Vm;B z&`UFY`nwP^Jv^F` z0QI8wz;1&!9+@tR(@)#s?gT^nO?l<*2uG=3gAF7!&zmZ(7=loOC`jX^RnwdML@*Nd z_qYe6FsK76biDfA6*$5`RDlHPB_JX#X9Quz>~Qdw;3tAanfM}|&gOpWx0EnVkw4Qn z6&(7_Uy1!EA!{H*eJ*HU7F!xJ+Myf|AOG3ykD%Y6BXAdti6v`R*?W#yiTdwBqdYn^ z?GZYm-so9#-OF$jjM?=N7ex76y1f_MX+Ox^Jqyg~v~PQv8Zm^yKSTo`2i|=wPRfh- zdvM}Na2{5u-9|-80CMt~WPEa(=mQ@ES=wsN2MU8cmaXg_IhX*iooWkTlRV`s;{ zIok9fYh$`D8R(tK+DC>E;0_e-7GPQajNNviYO@6o;~?e{L^v>m`{vxpTuem%ciq#v zW%q(#@tG}-7SPRbV{=0MWJM6M^f6!O?1A|bj&8va+Zz(s%UrtHS1V9n;loqxR}n&A zqO;$ORG+qe**z2%2O-4ARvrUvB^i=2eojJf##e-7#((qxRK53wc_dOXwL*MVF)FLF(o*5N8J&k zjBUotw77hN(~Y&>g}`%%YaY%{pn9I=zYeN384f1wL%YhLJn|;=b|^HH#|C}9C3F8u z6D^$UY_%;!%Y9{6v*CiLU~{9HJ{TPp51VBdS(bk0U8dn`ih&de?=zk_-$VzD#u9W5 zfqO50*9P&@0_kIpgliuovVZz9Wen$+(c4v}M`rYD!8<5<&_(3?-#ZEiSpV8L>K&C> z#+^%bNLicH19REVdz{UEIN*UV znVmN-U?@)2Q+noDb(*19=jMm4s=rj0786b6Wx$?UAL-4-m~tz+UNRt;UvW1u=I~bQ zBLFChME$bc`SV^g{gq+!vC;0Uy|0b0Qd~(!*-Dt8W7dd%^j+w|Jah_dT4;3AVQ(=h z#ZsLebTS=mSG_B)9xAR)Mv-LPf|{oISl_{YX!u5_y<$ix+6f~&6!fE8LsPxI%q~Wr z!9oxzC86=l-rF>>~oaDzT zM7nV?Ot?wRp1%w!?=U`GmcE_yjG%m`IMJ>z4I|~v5pzrqs_~h+G&C2h*~Uj(&TiiVxnhVDjyfGCTX&;%O7a7S z=f|96!57y2CPf$@X+fLu=0mcB?#*CQbQom9LT%CN&^A&GhUC2qUF=5Z2A?m-+)!KI zPM>S9-FCH2izBkaPE1Ic@!g7Nx5Hdvl47@kP_)jgJ1)=WT*vp#ArJ5tve+Mjy;)25$jvm(3vBuJ5&1Yn&yy+97;i zj%&<-=2%@RzBVo9_+7U2ei5mH$lyJ%Bm+Ht_U&5sTf@(i8_z90m16Tmp@;2t!jkn% zyGH8@)lDuPIeg*MwB5D9g?JYGs{?^mzHvd-55{&og-6));a=Y+9;-Rr?l&*%&8n7F zn|s4zXZ2goPfszQ(WVoV;%I;H<;--{v*xpRl+1T9WQ%M!cue<~@7T@TVp1cbAR(zD zq7W4!X6w8&qBY1~+P`UwtKA)I0~_2BQ*(5X9#P|)@8a%0H&!xVUBY~Q-O^+7c6;e_ z9YfZ|f@v%6VEKqV@hPQ~cw5%EG@+{v_pz{Rlqso5VI37t+{C@EMi;k;#_C?N@b*$1 zx~A$ezRg)KcqUHF#Yu@hl^#)e_`ais#c{VV&nb38?~5b5=1$}s5a-HQwvp}*6?42T z%N(s|&5kafj1BiJ1&GcM(q?qLUwGAvCILe6(Qp&=$spiv8F{)fO1`?Rmzy(GGX8GvqYu5Ho89 z6Wpb)(Zp4$OFqq%oInq3jd#HvVX^DFzD)F(j%{du{!;XILd~-TE#Xp|eQj~NHl=^K zw@lP#X6g^+;BJSarrl?EYLsisvuniQ10{6-@vedFr}$Wk$EY7G2#NkI+2Ud$TRCe5Zp9R!gn49+pU8<_omUpZ<+DQ+z zzal-<#M6C?9?@D^w92Yte^(Yh>_os3mm#bWl%BoA(ZbVh;MjEA=ddbu*O&ek&4u!s zO;YU-#1vGjUe_3N2ZuWCEIHbAHR6FW-5^*D$oP(=dE?HkSUCx<*o-E`$4RMk7XKd~ z{hW{ZA?($IU(3b#ZHilJ8nR ztF{;i$C4+m6P2{7V{XIKU&kJY<>5hpITBvqQ0t1<6MffBueTk-tvl}WH-3(D>7v*8 zrdV@~y_dy~CgzwzqyM~S2nn@B1h2Zr5W|OeH0TkyRix&b6h2rpb4NwEoCj~|XRqz5 z!)Jha@()=aZ!4S~|ByF4Ji@S%2C5=B;_)#FC#5RKN5%$9!7A0b&2U?dh=#A&RJTQ) zQZUv`ZIsRKR(%){cH{AZD^5xp;J-)wh7!|kbeE}{$ZwAs4ivA4l0 zD@95ZA|t4Us!OKFN@f>iOQ!qvy?-p8`_exD+Ak#O0}sj#g>LV^F4CSkU(Xs%@|r2P zwVd6)dwTfmn7yb-DRQ#z@@QXfhVV`E_QI!6$8Wd|e_{v~3~RVx{XYTWk1+I@xlFl#{;-i_^RBIqhWEunCW7 zx-*LZzg?lu>;9?To2*dr%wyK2L>@;>#n}tV z*{8pJ6?GJ%?Z?Lm7*tLlh&knc&9y6@t*p&7%wABPA~5(IBt{1ql7dr{#8 zbNDB$BGDFc{uj#ebb8a(*pqjh9;$>SyfeLy(khzVzT0E`o;@FK*G~YtOz44fwxH+A z!~`%7yMjs0v%=J-1pX6S*l{CfvrU~-WMh(Lt^3K#MTTS%`Z`B>@z_wnU_izE=vu2N$&Q3B{}HY9&ewWk6+-_Tlc%2f=Ztw(z!eN-3yFz1V*$ zzNO_q%0Y)0al>g*x!qE+x-nv4iMb} zwy`L$licJ6(?Km^g(xS_v0g;s%d-HQ*TayZ!mI8gUF+i`oNN_LF0&>rQ4g&7v?OL} zdon7j>okY+&O=a(&eL0BzhS7vk3B3&&2p}3-DS{_4M%EB_S!dDeetFg6Oc-K5W zq_P%OQWOe82ZcjVFUh_=KPl?jFd@t8jF6pI9bSaQDty+jTpLebS3^EYSJ@0L!JU6K zCR{nV?{b}=m_ns)-HZJs>Xmo?Cm=;HMWYhRlsGkn@ewMO<^+C?CaLcA3XYpEKRi(9 z-)YdqqXJ2BtVuX*(EVFQUp-+6lH5W8D-GWn#ngn$v4zGRv)x^whgVY@ROeEsGsJ2N zAi&PiyU3^dlsf7B$YR1O+{hgttP&&U+ITe!4iWKO-8$SBii*L9SB={~Y{^&lH6G-$(x8Yy03TxVmwUR)TOzAv7wj zU#>_aJGr55Z|#}}Q{U&nh8La57chKk7TB$(QNOqUSku!41FTv4n|GUlOH`8Vc-ey4 z3q;U~q+*mMIsKCPm>vg$r1eI*z9>WB0IoOcCIm}84I!8V_5#R?d53k`CH^$|LZm|z zZfatL>2q>(xYYZ4!LMr%@su z#Gt-KEiR_9`Nj$Hy+SAk+C2(Wc8d*;dW5>~h;Q=9du}xC4A_ z!{;*q)xa}ftqa2QzN6%=#BtKyi3E1E(%Jpiy>%cTn1>Ynezw5ab zYwwHQ?OD$ODe=6LPH`vkr&nU!JWX9MXAdP28la19uSrU`h(v$p8Q-x%r;f@yd{MM>flrQmTvNhRqXMg}$K1@H^uGWL}MK=(C2@CUVBt^~o# zRdk=q`H(OsoFydL6<=bx+OC9PjdOGC<^@bybHNOe?77j&O9?Yb-`7Ht=EBTG2q3eL zZP2LeoV{-5dO0K=|Yq&+XnXsTEB4f{}6$UDJK5YD&`!dOrRyMh1AzGg8MNJ_w zEBtJ)c=iyOj$*~Y0DLJNxli%* z(K@l7ZTN3oEJ!3qAShV4x)n1YdF+|ABrX=t3=)Fn({8Ne$=DB?;O23x_Lzb_KPBh03>DgvNV|{H`PeYPb_GVaY8PwC{gDlDb;4;ZW}QA z4h_sm>p(%&1p#(xqHn-X`h??ACol#_FgMVwb|8#{lNYoB~%>F1HhzMe9Fc#RUk-~ z>)65C@{dJ<<1gb8X!Q3~0Sy?qpz*Q}&7GR=)&nY2B~Zr)nevKK*s$Py6lIzPBjiSP%b?G(@Hc_6h>19yKP?E?$|Db0X3 z`x`1i9YV_2Z|ss`5yZ_5^c)+E89??(Y6nzC1T@I0kwTq?VWb3uUGwbBr^bi=Z9G(r z(J7gv9)cmU4fe5aqd;}!ChKjo9&p{GQO5I?Q@&l`=z7*gLJ-AG8V*(dA&9b!>Whs9 z-_uA8HUk;}W2C6wShuIp>{4Pl+Su$gM)_=?(3}v6+Lw&!^&SHDfI#qj4GB**M|2T! znq-g!Xn_tOOxbY-sm$o5W%6lN*QZ`!53U8fUG_93nW^SvPb#^7F*@MGhtCO--nhy! z3HZ)DvN%1t;ZQ;_o*SFAmG}hI?G=wsJWuwOaKkV+d4PhGuA{sgt%N=6)Er<0%%1TV zKA7^HCB3lWaBc05^|gz}`F>&x1rG7hGcs@Z;!;7$VFgVaaY`7UN`8_7YTr{i z1TWgyWhit88o5mtQ#1}W*nsg z^djy{p)J;}{6j=ytJip2zB_%K)ah;XmlVAn+XV!uuPaB|hlHaK2zgNk!QyFh!@oGrJ< z$4eopw#F<5D=R;mR6oBwNEpxUPWGrrRMs>|q}R+hIyb>yj|+w@MoSg;1|0?In>-(y zEwk?tpQq_1+iEbwaTzuv8*8sHTy@W1#nP}hlBfZLshoVEj<^SPvD=0@^<)dGPS35K zct5hcIfIuH@NZ+37t+i&UI}&(bbO(MFWqonifA3o6JbicF8W*>jn_<{`K&a%1r1VX zgquk;rk6>}0Zb%w|9t3r_YhXI3giY??Dt9&0teR)441?J%wIc=)7yP2-&M~1XHKC@ zs6qv$S^%R}7?MK4Cq0-G5CSTbG(v;?vmTWg(jeU@l`kRYdmpspWk{IYiU<2fB`#=y ztbA^t*Gg`J4u7hu;nT&|Zzi52!wqF9%%IfJRE#lv2NHt@+{^rd#>j$UVWO|LUqq#Vvtwto3_TNW1=g+Yl8-?F92tlXLXGU_T0*NK(2~Vx6^yL@na42hl(hSQKf4a19LhoiEp+QMB;nz8>c7 zH*y|sq&x}UEnOhI3+>2NG_d_^A!o5!*MnC9kTfn5juWy5W+OQXn%gca+imNEZe|}+ zU$=+g%zweJ7Q&%K4Dke*xsr~Ohjx?kvyk@eNX*w>yDsjLNgZfCm*qq56Zyfu3GhfH z#gxRp-0!@#N|tCT4}5#ougAdOMhbQgg#yxe2!%f# zjY1QlRUvQgLf!+R-bmUFP;-YQw1~=600P|v#^#1HbT;`kUgv^FfZn^7=yV|0G0MAQ z=bJe2IPwTjiAF=pVtpNWk@y5Fo7eS|nBu$NO1)YCQ~b{J)Ts~cEn5^HSM)#a%=LKu z`0+_Uzn8T?6&Kr_{O~l_+Pwt-WN4+>yB^O|Prhyu>+z1@51g>`pmC_A@Hb-k&9;mU z9@T9E>ufj#%5@C$ofTgx$)+l_k`tW4U|gWxpL^N(^KSdG%Md({!r!Al1%5z@kPJ_A zI)~!ZW?wL(NyUQbC(?x!Xxd7p(>x+H$ap#>rSEEjplOe`4m!hB$bC|^*dd8fX%~B4 zD?r9T9oQ`jNlYXBz7${%JlX3Ynq>%UKFG%eXj%lZ7vSc3GekOI%`p;#L}p#SpemrB zHc9i~yeU_36@dz{9MRbwIM1NyLJMrJ=X$WzG9UzLwA8xKP>ne6f9Ag_YdW}){zoeC zisVJ20RZ6;o=Fb>BY-_KmO~%(s0-c=G11jz4W8In!3mvyI?#4aLxq3qy9hL@U<*zV zi^#WK44K)#dM_G-7oDWRZz9YVO{mvOf>Z!iAn2Odbi|^X7x6MFS2;#xTKQ++o1oO= zB%F|hiCLhLeYfXTu5~j|iMZc-eI}oS1VmyI4}c9!x?a)`6_NL)1p9`fG|={(c_aiJ z5xB6C_11hIJC&I8urOQ3`y|BdwR7Vh$waj)*~W(&M7r|ppC=cZrQ-MCiAvvU0Fn@b z(IB2z@ruPRY=m6+2ErwpJxc39O;`qIKq!OSF7hb8mUvpCwu>S)0Ez6o=xusP=i?zl zBx<{D;ZjaX1?8$S=>$jqVXKn;g!yhHTsZlH@6p%=WoNvZTN_1ZNzPWYW;bq37YB_4 z8uL_yW&B}W%-s(II z`rGO9iC-p{ZqEHh@fQ{Cn9`uz3Rm?17T1V4v%KThpU7(Zn(d<;*4R7sI?GEjiT-aM z-2LiZF+S13_+-rRR?Wc3Pxiw|n;Lz00b$x~3!ew?Po7X2XEeCXZl+r)fFnpR{hH^w z8lyvrV%Tw~zCmVdlE>^cUsTV8#J9iaLRqyrac+XL4arZ%;c2j>Yq3|RO=I~HxeOId zEn@^5Rt^|amTTB#|7?p5zq z*M@m#%%f^7(~!aazFhyyr&)0xjd}?Njt#jsefP~0j=@eQX-bklJ?WyIG2Bg`w(HN! zx%uYB0sF;A7kky~B_x?lMN0DCx0G@1m{WG_c8LPkb(jI^x(i%wsJ)B1x=<5se@!0E z$1d>Xlu;E&lXWLvK(--4EUr~NPO4$sHovhEe93SBe96RPOcACsOh+<2F>tudS6(d+ zlUNo-S2N&_qEbvod2{O3LLCm2yw!J)thb3Y!{hgFKaWSwQf3}pqHDbEyaCf;eQ2L^ z5@y$6Q(|g-^hNGXjH5nahr+kSMEk5}+WPJ?-bqj4Bn&?#Rwvhc;s0u>-o=Tc`Eyj$ z4onSKagDoumB;pO^#bXQP;Q3EACorQ-OPPo_nf6Y;^H~g&*xJ$+t2&fUB%G>`rctH~Bj&EL_+b;?$CxNaKrdaHEJjBy^*=28hF=N| zbB9@hpFJFX);?XsG|zjg=6U^qU|nNlV-i~G@esy;;)iMe`Q^^Grk(nVPiO6U+aYD2W(UNwrA`q^1bU>7zy_x3*)2ac|}*P)3?IS zg{+<-3^16~Y_Rrv`y{blo`sG4fj~UVDBy(g7HO(lEpC% z2a*QR4C%u5*D@0pK6)Tlkte^@#kE=Q&h~3msO3~p6jf2pByov z&y01X`p*vkT=hRx+=?>_;d=voD1o;SybKD|CF$dz1gicuh4?eE^;Q*mmK+}WRK{!R zHn_D!C*}~(hlHFGQL@KfYmiU%dq*1@EXaS5`WYCAgdu@)Xh~c|GP6V~1Hh4s$$9w< zc#JHEe?VB|Q}I#rr)riE8n?MbW=~I?B_pnhIsi z4vNt^O?J2ABQXal>^R9Z;SCQk{6#Hz~)NiLFfS7)4^ZJAFY}-ALZ5@)8 zmbMnIw!o6}Dj8a$m{*0>&*G!0IW~>UlXO$-bEWLDwvAH72q@}b9a51fz(8icKLTeZN zKK=kqAHWpu9zZ(wG)*|f=0c)VbW&2%{O0n`GdR^AffL1nL;UoQi7T+Gq)?#!kGp&{Z9ma)f}GvTvSE|`^{m8G9FS2La_lkr@6%Wa{E5GQ#rRm-~NOy|7loWub*6nI`$hLcIXJxUBpPiv;l z+^68;QH{SVI6{^%REk?QcFSQs661mf8~~(C-ZCLYhpxdawx_Czn@C79`I#P4*DF3$ zA&)y4Eh&5?tf7x?hs8qJF|w(aah*Sp4L2%H(n(?0o@9)~V7D7Nk8wF zssOC5PJr_ceRRx2i#^@FG4LnbnHhDvT&41jCjIw?L$uX{BE!U;*_bxh=fu(`znuFM zsp*32%=2J6(%=OP1GHsDW@kPYKF3={D*q`wa>ZD>ZI*Q)8vgCbnVH*JpOLN{5VY4 zay9z5BQ~{49f4qV`R1K>%ah;MEO0?%8T+^{3d-o-H~Ojd z_UjuqiNWc@9Hpn>=EKM}(QdJ=SCnBS;rrz7RxFe~d=|2|9<_~)u(`0xVXQ9HW5DY+ zgWhjF_F7GvfJUEW9M~a&PF>@!7YE3H*@m4YvNN2bqkQvlR6n&W?2h{yRllf2LstW*0q_a*ct zuRk$~+cE0t?ZYh5xIn7VRU6{Y_VMF$$@00h*^u(_iBMLYrNXw1HK@!R5+foV4&cEA zk%LF&E@@mqwe?($--;)rsswRr0}&Dday~)yhJwqiPA5?)hSGqiBNSJDnLWIu`1Sjp zlLnq9!@Wg{Fsy&bFt>V>TBzrBcuif>z$fOQz5^@v5IOb5AI7o`GTUnOQNds?H^Pk4 zK0749Tc#8+H&Hd*loIcj%I{V0gsNuIsV}oF)C@3!-w!yJSMzi+wzoBZdI>BdlECn{ zPXatc5@CWnzU{@3f16sUGU#r}b=cZi;w;r=*$7C*0ON^KzW-3%vA2%-q((j0(PSmek}Fvi$CPl z!XuMIl#8Vk+4qhySebz|h1rt5oTWW55yo?(MH(U@Z?woxAy84)kW%0Q zdS|@Gm>;9oReVVMpkU`W*RSM1(qz|6%%R%f$zRgwm(DN%&Xp_$T{BFGXq19)0r}0? zcKEa@n|uu=MT6H$@kl#BE{(muo6Xq zTpNn->9rL316Mj&9-Idu*$!k=A{(>ROF^xk!DFOxpD?&>Q}j>jeRnuQj0j7GE($W> z(rBz9z&<_}L_JMTpY!4_EiqDa9K#|}AT;_*h{>6rs|fMII7G^0|8_Jo0HuC;Kv_Qu zIjVhlq_TXo>sXK$6~%C+Tv)ygWUwxnO`anv`)WK-XflQO$bQm^VMmach`f6h?CId$ z9@9=U^&PhKlLPz}uq8%CLhz5-h*R)fZy}EOdIMsMB-d4Zns5L?-*DxA|Z~RNYhVyPu_15UCYc%^ZvoVl)lxnX>i$6-a=cHFrcj!w?kc2OBa`puJa}TC?8P zqk?gX2MA9n5-#hU@2u#5k|jv=@4|C6!)K&q>9!gsm=EC(z=7H55(_vTts%e3{@G+C zsi=AMbn-K+D!*ofdqpQ&!=A{Cm}xxl)o~YikYrarIi1d`Vs*S%n6jgv+|829kP1cT zk6&8?K!Q(CC?NxF%N}UND(gO74!4?yZAbG`XZtqNIKk9{d%Pkf$0x%!MFoB-Fv>E_ zb4-;WUu>DLA{snmB?OA%2C{;*M=(`w76TW=z7UoH1HaU_<-ZV9kHSVNlm6|Y8gbR6 z`XX?`u&kk4qD*i~*s)l8!S{!hx8|$E6{9Da=Ek~$@WVk0N;mM6%qR{?#=p?9pgTe* zrpgb>38SbzE_-DzU z!V>n#L^!o&HNe%T!QL1sk#GRMiLgs7gzYJMJ!3EV46J%HoD3}-!46juZ&0riWL^o> znfgDdWd#D2_?p?n;N|OrWP&adTYM$M!HdN8(sURNFNPD5pzac|ojz$xdt|R5(r^tr zbjJziN5WpJo>p-3tI{=v#J$3g!C3~FAQgC?toFhI|0n zmN@wFfIESW12t$7c*_{qn!_5UmdVa*UO@i_@uymrkfAUb_i@Vm4zfs&5a7QfaAO(=3ne3>}dHGy&$IQ`rAI3YvztA5Auzkqn{|GM&H9D+^UmsPAPr?LdFP&dyPW6&oZ1Cv2oNl5h4S z^Pmg@-b*#(jg3}k;K*}|(+2JfWC>NV+ZZ!nm1b4D1-w*c5TRh@Hs@9Pw#T-@CAToi z76$;f7Rl`JLdrxU^MuC5_lz3+Dc%$bn=kfL5oz2uv5@d4Epl2$4-8BbN>$q82K zgcdaUS#o`@fuo>T4q}b?kA~KhmN42)(B8Nf`!yCsa#Jv=IeWJEA88e&#d2Mflm?&_ zjUAO#T0b+fIHVf~&$}A&#+)ev9DwwS@|a;mNpfe$L+I)M2r;bQE@HV)q#OvB#D_2) z9d`8Zf+f8sLDeab+lCuou|dco=|XBL2@R1Pb%~n9z#Q*7Wyf%kH(D!9D=(F_LoHNVLD^U zeC3y+33@=HaL2jo{1--cy!M>8J|8VENNF@)xer){%oJMbYp(tNO9FSvBsBqo_j)+QQM8}jr+IP*+kwvpCmz6DR*j4vt(XI|C{As zrs>0t?Vhkn$RYFrIY=n7Weh>qr_hsK6ayb8RgO>ysWI`r_f9Q!A=)``3dxC*kTigm z0VDy!^O&Tj4xr!HHwLFfT~mg-&_W#-Fulc@w*q@i4DVn4RpXt{qP>d-m&IyU?>2uS z{Cbs6zowqZt7AW&(ZBMe@~ZAbYoAQ6``4kX&tDua*=>6B)_>l)r7-#U%KkprT-<(Z zPs^E^qZ)3T?+sw=2ewT2Fp7C9D{pCd*dYrt4mGiVh1)(%V%*5vgE5i<44Pi_(rN77 z|M}a;jnAvNuk8|CyDRN5&f9APhbq`P6t-j9@EQgaZ{!)0fyDw0`H7M_b}M-P!1`(f zjpjE#vb)kTsd#u;rbAmqvuVM(L5|ECW4bT)dac!o!@@2)l0wa#v5d5}TH|&n#@Z{Q z9@aCW1u)rqF`*EnK{^4`?#f3l%V#gz_%v9sbQP4${D?`NVx9ET!eka&IU4UX(8r} zQE+oS8RfDBV=6_M@+{5H!*30ec2wmb%qCV+@C1sHzB!Ri{qelBSj?|t7+AsVv&a(6 z&J0=z=Q|q(g=2`XC1RkO&xEFV_LGunQPGsV4o0;xXADa+m^AG-E%==ut}UNEo65&}Dw1+s*b=99yJ3p$cYf#nGVlVy%+`v6bDLlcRdZXr zzm~B>gFBJI-RVje1I|oit#PyahC+6kimGIXW302}1_qM!UTLqhogQgz7Brp{J2z0_ zr*7FXs{Z%XQSWq2my%&p470+X<3gA`rqu4-3Tf4z%Aw7U;L?X?z;uK93r$vcS>llP z#kPIa1T4mq9d!cCY_bhjq|4*SuKnnJ6SJcWfw0GvxIBep$`a%37?CyX3DX)ja=^TWQ=$ zb)j{fkgm7fI!<4Hoxm4Nvtsf;e%@%t@c}jpqmmm)VBWx_l>)3jqIcyMZdif=DvYEK zhGWF`4n|j{^TNanWiyRn6hY?1F;%4+p_H9N4ccR#?#apPdFzBicnSZOs4q;?Ewz6U_2cov`o_VK)jJe2!j~H-%~pjB>~2o;o9$v~o&6%=`jMFuS==+@ zp`NRnBatQ1elRCaOvzTuC@;mzk2}l$$lx-c9A*65qsnjU*~F0h{kI0A^g{Qgh6mjp z*53+wzIOEYSK0+ubNOe^e!0+!oJ+RaywdK_=9Lk(4kH30`0In;{eK{T-Mo_VZ}QiO zT6NR^e}CNhu1E8H7mh47Q3T%<6z4p$Cy;dGeu2AoEVAjJ(a23BQ4a71hHSB%J*4=Ql7di>Qy4 z2^VbkX*OQBhFZ&ouYoCG;_!ztRMYucc49XK=M_9tjn$8sc3lx~xT28wh`>4L^_^Xz z17%Jdg)Woj?v1=E`L2?I;a$wVV|W!K#S~NsKk}AR2|q-Bfhi0GPZ;={0iE0qUquAw zPSye;gV&Q?JbU!m(4?&>auAc`wipPvtho&vIZRVxxE8<$$NvAJI>R@cIhWTllDYD*Xih{JLQ#58a* zg*lkxc3Xmh*~g`Xb1;t zSz@R<9O%7LC&h*OzrcTmn2_MhQ=^uq1sE&;|2(^^J8NyoTBX{O#jqv}gY5u}a|Cz% zrrF7uxc<=FFCUZ4#1l~(-YspL9q+(j1LbEQyo)G9y;#clQdUI)1HAAju?Q9W-*{3W z>9|Z2)5+eOY>BM^EKJ&4I!Cy9)MA8FTN3YZP>c+AqcWybQ{k{Y5qYrEd>0H2tT3Mq zTOBwx91bh|^v!?jOW%{L6kfp7WLNUwD()Yu6tHuh`%r&=FmykO9_kV?gU0wTRkJOpy6GKK9 z!ip40=AIY4++;jS)){;x9ko!ESmbRXh8{2xfDzih-u=R`SL6o*{QPtc753zE|UE5|QY>CG_aafcTYyhG;AyL92H~$+KEgzOt_$0hBs}U838${(V zu-y_5S(lRXg)DJtMMoG+dq^IU6yFkr!Q=36eJz3WK=RPng{AypeR~l6FNx_9%##N1 z{Im64Q!e{4Pkc%dQ`U&rgt(2*ITY@z*E1)3>>ZxVJW?dFv?~%cWJ9j!=`-b3L#oF~ zl1sscp;8XEXNWl2i}Z8jrxretJnOMg5CPbB6iDy71fL!QhZ9i?`O)2zBTart2TLn0 z*9&vC-2eJaewnx5!>Kf&iV!{gF=fP~KjACP8~^l?DpV53 zz5MV^)5AzWWEvnX3SqtS-;WIPicQSVh5;;|Dr{qv_T}0R_p$cwwRuT9rv7HpdAt;g z`AGDB^9&iYhM09Btr(W$YfXVxAS-Z2A@-6!9T z4Xoo4{$TBYl%l8Y*1WHG`8yg@{kZSui!xn@#D-;^vGvYfZ5LoBGjE*p=sRqXWg%8E zTXYUD9n3zfr{#n?r-~z?){{?DL1`lQ#FG|*k7eoQ4xJqJ4dq6 zeZ!fWd&HoFfO5<8waGz66WIW?)UAWdgcU3n}Qv zQoU%_CJN6tQW4Fv4h5YXJwfYPPSKCzs(`u6g-=c#IZ|k~N?_3<%UtEh&c{6`KfPbi z3om9=_l`^ynpTTrrevgULhtf?#W;O5mitKeo|k5WV`Z_TKvsT z{P#pH9<92XVn=okghXMlbJKb~y4?4`a|3Mk;ylcHQ_+w!q#5$3=%RZEm;I0q=_l24m(8lNol@vz}d4qh&di)&F{c2D_8;nTm46j|Bdf4Fto z4+_hEfADat_@jWy@#&7L@%b-2Q*7z8%u(Us!A0rh@swBHe@Z>;pZ`+WACcSAEi`(nPQM|0gZCzQFl<0uqnbQfg4@th^x5&w&(%(qi{?q5hh5cCw+r^- z zUV`kP6O$$Ie8PyBx0=B%&NOum>$!vjawFwl-dg=fXi*R(8-&xXTrMi4YQ2q88X*hd zKV+RFRJWEil_*POXNccVTH#z^2toOm>KozH3k`{1g=364~MsC-X1nJ3O+yZk5z{K?nf}J}w+0!ouTzg8Z3aln# z+6BNa#8$jE61K=qFZeijc!1*hZ4@o+NHcRLJAQOZropYC>gEU1V`Qr zyI!G9%06T|xF1F=Uc`a99R^yds@N>jdGZnJ0{aW}nsGHogj>n2So!Fn^pG95zt(P!Af_J{o^*Y>Y4Ipc7x}4%%ZmE#+5;(H(`HW}pRkXPgxxSj z6NJ-O!#e~16@;6^S4*q)1MGH%*3E>gd31Nz4bIq`x`1AZ;LGJ2*vR*WhoKR`%9H;D zNy9!2!EIScaftcIzqc49jreFOtk8*c78x-?QBbd0cqZact*%O#u8F(VGw}$xL*{t0y{Nald>Xd7{f(qUPSyd3K1yVE=JlC?*r_ z#vSaEj&;5vS$g76vjlccz1jO+0^a3m|4Krb3{&R?O4RqReX_zt z#s_FM;sNKykcB-MX_~CiRABEi6(b1-gElye>_;TstghbpoKJFk+u4QAUkEl};Bqsq zy`nHBQC^new2_ZCu0a%IHl=1N8a}%bcA1)sMHw{df4kT%A`0_``vQGhgb`=Xk@-M~Ji)?JtKfM|{wvh*rUW zvE`fp^!v|Fd_n5jCSZPQOCdrTy%;3q`ctD+M?jKNxc9|DYk9aIvMsHQRwYL9kT z@wz1gX9-P~*pwGZLU zqKjzX&O?k6qhA7#Fw*g!9*OyAM;~;V4DRyd{oB0=wqdVIm!rEudnOCJ#MHTA5D&{{ zV@d6??w&P82Dde;TqS$Z~h1INb9~N`)oM2ms7f~VZ!F~(gU~nNr69E|zLIo;Q zOwEZ;-=4I73=ZX{5L`0ITN_?Tddb4a_)r&0LWB=hg*gdDN&tidtn>n?Qrkhq3)EcF zwWEze*A@A{1-b9-O|#?(;wDR+o5PIsdh61o3JNQx`0Grv42V;mj2vhKw8>M7SeqJn zEjn!3kXz_f9WhLSa>of5PS3_@ObI7Q-Bw2%IQDJAo=Rnx+P+)I^x9K#I~8prjlQGs1U3 zgQsVDCt$j7`uz`f=@bX-VpMXYEW{u$4Ba6+3IdGOnE6&W@`SIFg5g7lX^&Q-GY4hI zpCXD~R{Zws;H$LUyn*Esl!vW_w?!Cga)IJ;~7Y&i5<&SS}N?eFNnBL&6~lUx=9h^1u&wTGk6m9X2XSX%SF;D{8JP_77vj| z>h)$t(Iwf?P44AMIzs~`N^QYe_@a{Lx@G`enIA%LLG-V48M|>^S@q3hU#E|`#g!b| z!JIFUT|t*93Ir^Sr!v?AgontC&=?`l7JOiTt0v0W%+E#c3?-OkAIdu9e-S3GcN*Qd z`b(F5*l8M5dWGuE%dtvB8 zh8GDKkqRSX=Cb9K1?jXP9CBGg(D4CyFREk0S zo9}q2;tM}|(nv?bFbf*=>bSor2W+kE|EfQB{5T=1Ay1ASSG#YOyKGU+zX-Fp7q|I6 zm;AvpFld+Rzv@fk26zMP1zO)i02IOU8nlZDI?mWDPCr&RPcMi-6r;I5ob^nHp> zII2d}EmRkJZTnZwoel8*B9c~w5!mCMH5b+{A@WymL^zQ>%)CF%W7ERgO2N5I1cxVk zY>3$=T!nwUQw{phn>kaE@`mV%P-fFb=@p)K!<^(Z0MExW(Eb7uBAXHFgkMcgT8u7%a9jCJ zmNDi&Cp?@lV8km!_+nycG@4ND^V@L9D^dGt+?OP{$x;#jsS$zM$ zcPrd44?6qH-`5Xm$}vQ*Y}u;s=$QZ4&OQH1yl}raLSH(-gFdi^8^$#lkGZ{nLhJ2n znNv53t+ttq2;sVm?rcyA&kPqA(b4dmnUG{?Y6hNV@@>xV>D*JAR)fQqSF3Ap{O=u&l14{!3Y$w+1nKDF0RI*5)1igE)Gx;3y zdV|##W1$;E{UpyVp&hPjT}?tOyw5k#E`ra{tqukXlU0wl^KZ7oe}EX48!XZ`oP06mAgDtE** z%WUx8Ck(WbUFooYm+8d#kVlX9!lJsn9XoTBQ382Z_;nmH1>dk_@VYeW$bOs(nnPGe zR*UOB0t1(As?Ah2B(ZMcrcK*X&ihmHe)&14^##K?0nIYlT$2fb@-SMvbw4#EGCd`Ik%WMFUBF$hSEJKKXP08ceD`KQ|1hC@bg)%{< zP-xSy*WBK7+I?*N6Zg-KN9Co3DoNdM^6>@*Iq$=J$w5KP4aGJYVxXU?C~M}OwP#t- zY7x*8i(Pa7xhAfq?fZz6YDs?XYUkgTW~Lply~zm{c*F*n#7^9r-~S))Y=GPBiu#ey z>D^Nmx8o*Kpbr?Drk8HGI8Uaq=_Ew(-Xmw?)$ANw<3ImMRY#7y4G2Bn1a7;MxQPC! zYKTxgaj~U*?pxi59$k+U$K5#F61xS%Z{TC|P$N;P#dc_EyqkMvx3F>&A`kHX6={SM zOnFxmTjt;!w&sJHST{YJ%+eLHrNnA~5jt%0+7mYw-uu39t<3>Z{cX9ConM{>q65F_ zy-8nKHFL;ezcVr7XW%!0b%et}H>1IBWpiOz^=W{romy^W_Yhb zTjm~9l=A2VB8g-fIPC9uoq1~Zd45%=7KuvP+iyEE~csr1kv0F%R_NSLQ))IAplQ+xU2s79Rn`@9i6r=cFa;UrObqP6Gmqr4g zZ@&ZS9Et*#2nV!_E%O}G7LP#7Hd}$SLGnJSDdMO+lrxH8*lm<@pU> z?{s;k&CuF$?&N#bE#F~qrBymSk#|utIXQUvQ4blY8ZP!D-kyfajwq_;O5ghLK6f;W;}G#k3U%TyI#L(eoA|E?}qfrH)3 za03AlYJ5cd1!Nx1E;CH3d^umHKO}ZMdN}#g?!^~In+!Gucq5_$psu+c;P3f(Dz(bN zccMw(aq=((EUY1-bLO(l+tLm2JU6%`9iBj1s9$akY9dJDq*a^^_JSfpmsd_}rfKhZ zTQ*?55V`!M=h8Dje9_D$_J(4d%p$kQ6)~Xxm$2&maA}7;koDwA-G|}3UWX2KW&Ms2 zCU4;oy(x>7%r-N)r5G!1yWA=mjja5w#o1U^w3Vcc81CCS(5!9}wQkMXee)4iiA7(8 z-fD69;u*T_(JV4rF39RcB+}CmDPT7Cv30i}%Wnyd-PvB|F;{#i zAID)nAd%?cPwm^)mbn3;Pc%$yg*=K?jkoHrNi-HSMrrbL#jUsr&9)U-&u~C2lo&)M z4n1)1!8Dz^$r5$}dQx}-Evbr1MtW`i+a{;STU4Bv2nXZb6D>4;4jNDoJJdvQYTdbg zK;^2HRni+sq`*2EM1w@oqq*tv6D+bB-Y)A8y%mF4gIX!|NFU`HFo4g4)A?Z>ahoAk zqcfpyT0yqK;@X<4B8JheGR{nne^zIukiry1K&#=}q`;tI?|v7N*KxZ{gK>z4;1=P( zDZ8?F=PS^}1bBZhe!DJt%`nN4!j#o8yWgKKorlW{W}A_MplW#e2hQ{GvWi|qJ#60vdv5d%1zq|mq5P;WaX9oQU;)k;zHNeS!%I8OO_12o z-0<*p&I~=;E-VQ^a^dlEExH=-Tb-DnP(=v&9zd~3yp;n#2DO69e7sXYA3H{Fg`kvM zZ450NSwX_qu|R@jF<6>_uS^)9K1eSXWZkekwrQx#uJ%he$N~{a(^0G+ERT`q&Sp5V z=D5YU@uBb?vBNWUB8lE}5hQ|CCUj6+NU51rVV5`Z&P{&l{K()fa5&B+i-C zxy6%BB;rP}3`r8_bFSKDFSjwge`vPx`Jwr=wx-``ZO;SbSk(bkrdq583YY3qDt+NoXN!#JR{ZutcTo`L2eqkQIIm9V~Jb7N{C!E$T9$*lg@O(4@5sU9XmS4?k3cY zyAWU62Utr1*1v!|^;%1lcPNU){Ow4Qh^qG+X@q#1I+gh8h$EIOI!Cf;JqxNzAx@^P}pQZHVDVUoAq!t zN&J!b&Cd_mv%`cLDt(|T?l^Lpy6doH0s;m2|n0;b15^KhwU_FIF|W8b04 zM#;HPc9Yv)ZV8qK3xqiAf^0I4xsffIrVZ>?`u$KBcduh{mf2xkIS~MCB7m2GciqUn zV3Mjm$NX6EG1SSnMU#gDvSrJbxzb!SQy~*UAKLh$gYB$X!anC0aHq?aU2WbvS$HQD z?npK_)40@vt4}t)o&0)eG|?jme?q)~gyXvtZ2RJAq zkU=O9&Pu=&Iz&+r7U8vj`}Sh#bIr)Yg%wq9xwu-Sg?LDD1i%n zTblXx$!AnK%kie>Vvk1mK7jMy@S4oHT>{_&X5;r`(TDj(JrTwg*HF@#~n$uq4}DKr}*0Z!c7cK`eEE3*e^!v*b4re z3tbj|z0a^74Z&fA#=qvaJ}@!c`y|Owf#b*BG92~;{2?--qT&?--iMK2s9(5=KvCXD zib$fYFfWzG*|^Da@%uhf1exHq9>^`O+W?Yq=&;BQ36i=aV5ZTJu)}iT|JUZ|&aXvy zkEwM!`Z|PVoHRJpJUvHC2e>gx3^*u;&j;qOmJPx?WAuVbSG-{(D{#K8C!&bt}B!lJqrq@{CT9Jqr9JNm`SRUdu(~g%qGr;2r3W(`zo!c%M7{ z=K0*;CV@p0!`2>K0*+r1FGOGg>P)GtWfvx6Vye5#=9e8+6qO_a)MSy4H54$kfz0Mo zHsSd6^+3e5i(U8>0>}oYF=#p*_KRw8y3;uxWJ9~A{`SXrc97D~H9{Pf0&;Jxp-P$V zp+k%;vme2V@xDk^2s|KKI>M-Ev0c* z=m2-fn@sk{?An`3OQKKXsX}dAHEE1WRqOirm84DC;EmrDgiwCF!ip~=v@9v`FG7Y4 z+>6oDQpB97Qy_lk=Ler>L`@E}Hx|yfO8{ej!gs)mQM&PH0cSx?Z_=;)li>9wRDlN9 zTZThAXLBY>(Z(wF_|Hn8Q|O%j{A<^)1s=YW2Xc;ogBY301W8Y~rlnR)aTwZXzsPRM zcXw-WRG-X2I-?21W}4#)U##?}1*B0gDzBV7-gnK+#`&VbzMUXhL;=hE-ecv@w?1sV zs>~&bdRj0B=M@bDXtm#VkB5-9?{yq92_dPP39bf=)t}dV&>29%Ag~4GMcWpJSN?7K zzl^q^Gjgt|<~BfNI**8R%ds&{#_PK2T@qG@7;M9eA)6J!@`Rk-lqEgY9xZM+TIkvT zq~$T#x)U4l;zT3Txrp$qWSI%`>%>uM&e>S>u;>6|rKR%eyio3B&IJ-f=Z@U~?=J}@or5KbLA$4oekYFt?>&q3l#c8T1GTV&8MFcxJ( zus~?Ebs{C-ignIx=TJVnc()WzU*E~8ysF*>%*M;>i2R1OFdo(Be-~&WCXG0x?XS5F zkrLK<~b6R*W4Q_??I(TF;~!u#Qzy@%N+a|gM#P_Wuj}!v7mD| z4ubKb#W=(kHeth^e*m;A3&~4&_h{l(!=m})G0+jenn<7eie(iiVvFn0QMSc z+d?uOB`FgsKsIC;c|8;fxu)7Q-uRaas-dAfVcF~)uURi5r=1;+?s3~AC$)ny;m#Feg43Ny;( z9~%hZp)-9>E$1`WGe@fog*)2fZh*4mKHrVTfsD{8+Bc#5<)r~0YDoddZsrkHvjfysU1uU*CI zQ%3=jTtLnESJ1Cr4!2kat5jvRsEHCrdv5)w5dLHcQDb3)Ezq=oSc zPAo*Mr{`k{#?j*e144ZpAO-Gvg+fR~S`@}0wm)|S0KJ2(6C(?ES+a3RL0$)m%UW3h zmA>c3-~UCw{|~=0#3c(95t&DXxW@ne9GA6v#;{aHG$Y629BlaOI7l6@O0oHD|G=p_ z5AC@c7wVC}JgYpoA~@TK6ugU2>w0Y#bbR`MC=p>KiZ>wyS&W>X43_>X7V|fokJRB| za3T+e(HPa2K`(*4OmKCcx%HSHZ1>4Vr${I|844mdl8J0$R|8m};&>5xIe2>MihTHGn0s={2d)0J$&up$ z8RQ*F(BCp4j|QV1hU^%#d+K9a&FI^vz&DVU%z_}h0)U{*hl_isq66dbRX#WA@TqjJ zNFp-P5MCBXI;Sf&9d^8tuTJ)Jk!cj*5qSmwl6zxl;_ z{=TKD6+uN#m-gKFD7xp6&fotroNO2rt#QJY1{bP&xI| z=lG;1K^$-~+{F=5*%Tx{aiqd3@IB3UNUYeS`>fk!D5M!tD+h&4BWyd4uLADdZlQf! z`}NDZ;f?CX=ZP9f?g&F@LWQ}nZT*ba;(zKLIZLFju>rmZ4R_{z&TnoWW=tfXSy{|_ z_C*jf2vN%MuXqSn!Hst_2881IY)zRFA6K{if+fjPz=u-jcjQ@xYMO>W1bTklb%`7w zyjhA-D@?F}qN^pPrqXQIoi)G@I!E@dQrVo{IZgG9r{Sjp*Rw@Iy7FWcaeznUmhQgyvmYuBFj|_1N4T!c+k^Yb`{$rTU`~Tj zTJk6xud}+jdq)MyQ4h|bf^jDj^Kkp$a%W~g%$23KHuX++zgUZZ7_=I%l-D_IfHrf8 z+W4TYc5C8G%}Hy9Lo;%&vN{*P@Xt4$JKi;ad3I4cb!n~{&V7DT%{KZcRCcREt%9nC zrh}Z4J`fF_=&YDt@5^oFv&{nnYR927fj$6tCmt}PCT7_D?=F9}!P~{b!#mL5rXM`M}x9cbWa!5NtNzx3x4vC!A)m|9u$0$64u{WSO6x*Kx=o6yt-6z z;(gg&qZt@EY&;H~h?ad;%<%i!IsU~wd-Fq>^KiAoWLd*%rCi+UJJ)n|UDTwC72i}^ zevI+gq){-*rOKTr@qo*o`{yGw4f&8`FBbjo(pKQrrIiO&lLELfwA*3Q&@$0z zI!`oR7C3WT_GXTM0k8S=a^z)dfa2LvfXw!ljP@m)&n_Q8z}fH9Whfn0$Z-UZl9-8j zCvcHOx$j%-|Jq^Zzl&NW9_K-3;ElYCBMh~4b%P6ZUNKh)hie9igobNHktAdO4&HW;1Dm%Z2ax6cvBl(S{(Q?-}-R=(8&d=B__p#Lsc zaLV&$j_*;3R^y5^71@yv(v)#Z;D;prz!^> za~fYSWY`1CKqnw}M}uYC1{bfFLK>o*A`H-jLWl~bY$i7_&?a)~b_!2KH3%$=*E_3(Y=j_@ zC+e!c7r7QxeZ0mQIl@^?{=hx<`s9jxVBRUa+6QtBML6_S$WU*QM0~`RP4Aus%E_56&We*^NOnoad}AUG%$ra zfcz+g{Ahf?*6Z+!tE6d2REGV)Ki`Sk5FGSom*w6 z>loqCO{#Irx=gJa!nybtQ?(v2t*!R&Z`j3~T3GllzWx0J6G(SB5ESF#Lelo@IP>rs zY6Ao9rSbMJRXDOZRtp!|6c=y`ux>5ae#j1wz;kc%V z#J<8+0_NUu;TDnOTfg67wxd689=ffh6+(rdWV4$xhxnh`MfpQ+G1@rz<7i9&i1Y~B zBvi;;a>pk7*3$UryCI=5v8ai_G%*_NR?H7-sJyB4`UL%EMt=WeSPSZ?(;??703}X+PUKAa-K6iTU*bAXCfz|ZZ^f>7D=+mzeypddJT#rY65`yHm=|5AOR{Am+gqD zYKpL&YY-edE<{w754+sfHQRh27YcM8*_1;KJtK?0qa_YNdq5reP%Z#oV|Ha73KGQc zS_kAh-}|!p`j3jcb^ry!y=94xl1%4AZ01fhuQG@r4q#_;p*s9eAUWD9;8EtrBaEVD9s#|g%y|Wz zR_z~u)vd|)I?sx%Q+ROTWI#+6@Q0PrbJ*#vWe8~!F%*Zgex9Zub4Nq|#vCIYh9=!5 zEC{$|AQnnl40M2$#~1(#E%dWsLl@6k=K0Cww5%oWB=I4c6~&5~HE&8D^L`x&1b^ko zx73kI7UocVEVPyqraxNCn8Ln2&-KS}}m%9nesC3>)r1clB76_k7gMe+*L&w7DlI`ER z0niujm#IowMl-xFN`H1zk`UAe0BLp(eT2)5H{R2mq!mz7vFu0;Q$W^ z8HNDmdO4A_3o;?*<2aGLncf=xz?q&qUu(c+C^vZ}Wirx;D+%r>%8mCP=)bYBzv1=! z8h0Ga3IaXGS_Xb>&z12?T9ESjUi9S-{(P7aHquj#E%=8DWkFYgDiuMfGl$*0u|`Z{0an{ZsS(rE+#|O^2X~xLEC0e&`ps zuDge}9x26mCPr11*keeA4Pd^R~7UxImk6)t4jFQ_hXI(|* z6qH3&!|<7kmN7Chefz;|LmPQ^53lW{_$~|>X?%p61_>&d6JWKgVSJ`zB1Ose1e0vF znJgoo`lT$06DS+0~rExrvwj2aa1N}4rt zVhU49f67AQ)K}h?9ver!4FGfywW5Fkmnkd|*zoj@y_T2P2^x8lJ#>JI;ERDF@sMi3 z!JNWX3Hq$a?zNK-x;@pCUz$S2$XRW5uxBLBg6crprthw2WBRib&i}-1+etfOpiq*o zPoewI5EnkqiU_iqoQi9_KCVRGbR?nb{r%0n-e~uk}X@tTr?u@sYl1)d2qki^pWl} zriieRtro7ZL%XJKY#3lh)Z4WSYMe6&h-t{{@%bzK1ofb9V%EHScXU2oQ4?@`Yz}uSR-mt zu21-Yw1g2ywn;uD_R#)uKmFeDifEK~=nPyZ-VE0sGUe4u+07%l@gkRCR8@LRcnQ8| z9uze3pg*f)0wAXYXAW2aS}#=sLadU2Tc!Xyx_-e+ z$a-1wLYw%hBY&B1bV^|X4ji&sYd~;d;T?p;L4`mCg6be36w#kFMi@ENoTEQ#4obdn zV%T*BWw1U`&{;G*k>u;={=2ZB#66r3f^(63I_cmw@pXpFHg^=whTm_`m$7yV17$)I z3gULapDnhF;=i( zh!X))luLfnHn4%+ogmah(MPo}bx9G%8d7)0S3fV;5D%foS9%N{1*E~}7FfE1;U>fq zv?GaZC2{KFsnqHhgU`j;(cNW&Bi{&pf7PaJz1SqsN#|o!P%H5M@}pf6`sdDDOyJo0 z7e+cAO|?f_|CMc#4@F#Znc#a88Y`H-yza+fV?5H;s1(HnsyiYNC_JrnRYsPDO9|C+ z*ha{+L7(+oh4d*ed?7V-`CZt^mH`}c`2szqY#9R^2~|YZm{O++Fc|1AiaHIc#67t{ zDTMc`qD>hj9J^*f+#{M=CTAfN$KI86YS7YP7ktbZ`_hp?oaBHBR{%71VeQ13x5&3qZwYjDjPg@5 zrvN=^-t`4aNnTsMO+%>k{L4iuEKz=WCt+U)%xvQZ9Bv!BB8g%Wb2LK#j+|1ctDp%5FPob2u z9Pm?pqPooRDQI#az+)1CQr*hS#wc0ZU5*pYFuOh&zV}u2aO0LTo?)Gq<7< zcMOvU>yRH!h-_a3_um_l8dtGS`7mNC-x8JhA1DSOvexbBgF|CSBpnn{n7jJ}VW0`V z7>St3-v~fb42_}g2Q{&M>a)HW16M2HF(T~Mq5K7g!7*@9ACr$DI{@0?X+rPCXK`OW z8yeDoeTj0gHIl6+l0gW@92S{yTrR;$!zuJ%-5}ZaA z7%Aq4Qf4?FnvTE$OZgal1lu-&UNE1ZvLI4C)tD7DHY6S!e&Jl}=)bEhZdfkd0Bvh! zIOWDpdmD&U@a%b{`?bK0(fOF6EhUP-JUVA&2OJJi?FpibDGy>vmTN79(#qgKS1?@~#|uMkK`w4QG$A4q zQS~h*45mW3lID>plOo$XQM5st{uHd-!i4ewFKZ)(R6YV4Zc!-U5)uvLp=a~Qj+E(} z>RCcd1jHV-I$9BPMZ`_xJ6XoN@OW)y{qpR)PN*b>V`7<2Zuy?lMI}GqBK!eBh_(i*2Q`H6xSAA32gtu+Cn-si)2(`h{4oH zN;o^&S%BW1gUj+2TcGQQr|g70-?cUdEu|228KCD!`2~MPhl$3kEYFF{bhrOj{YG!V zaCSy-%bhQOSyo^4C*}9|&rfch|6a;^yUo2H>@59S?axse>jpnK_vb4+eT5l`?eCSv z{rI%#TicJ4uD;h{v%%-P58Wfm-UJS*p0#qlo*>+2)+N?Sl8He;VXF(h?u@Aoy~zu1dQ*f>()S^IqyrXa=o!Gr|@Z zAa+_!(QtKlTasOR07KY^z06()tvdzC(tP9 zsArj~vq`6oz*gGBM%n|=Kq-5yW=Q{3@Ckm=P_gRCX>6(Rh77`ll+T}ZS^*t`%4IaX z#`Pv191VK#vjshskLB0sayvDe3a1ls?+qM1fc(NqNarkL={+SfXx;4SD?jsTl?KA! z>_u#W3o|zT7y1KO_p!&L#Fsnr$}`|JHYE9+b37r$CqxMqrRz;hGcc@;K;psl_zn0* zxuY0&6{2zg3x$w?76WAE9909O+Nch(NUEr2cY@9vnRkzj@Z$t_4ALn2%d~tB8y_(6 ztdTI3utwjRyWVkpZ9V2=G5ucePy&y?Vayqg5T;aI9o_HBn35T1B;_`CYG8-p0n?t! zH}KedjK{X`UMY7%IVCK5k$Va*8K(8I(%@Nd-JQ&=Uxg(LL6~E*6@$+q3bufDog=d+ zhKF*!$1nRvRnEd|BA8>uHa0BlL3Pl8y{rddGpdSy6nb#Ze>YsLKiLzyYeVVJ!nTDn zs>I9#qho(-Se_8bnLf~~eCE}4f6qYiv|L#_z9Ffx=%!a-uL*#%qOHOKp18WVPRy-o zJn+50=Z2G~Kf{8Q7LG=R2hJ8sxf}LjsRFDC!hm_AS~l2lTSZqP*e*j_j+(^pwH{>i&<4t!G+_(@lxOZ{LVbu_(2_Zj8EBB z0Cqx#f*|7MHFuGZA8PZrFbc@VLIS?&dRM+JcJ}}S*&xKw3~E?3HUnVdJ_lT2<`a}yj;>0Gl8~k2=MMV+=gBl)CHqhF5u{X% zGi+|y7ejG`h@j*(B`PoYfv)+jrtKJB4NEh|qDZR55`_r)?}9X$c4%MSXC5Sz#;4d~ z`iY~OB(RO)1-(8|cC2fmcyjZ1C$Ldt3Bg;MrMK`P7zSPPJR{PtT{s_Qj)k#p`!|>; zOvaTQ8^1iAf6Ff)4(>suKlUA?}0Eu$~A+hV(PjQvtn=_M^{d^tp@E7*1EoH zVcCc$MOs_RJentEnLT^X($^8V<=p$*Lpz?TVGeyydPJ&KmhlyLwJWqXbwA!JK9{_j zDS18ojDj8lo(H}nsWh-fDv$DQ+hgCC9YI~E#Q_((&j|J`?(+sCV2bcyOjj3o1f^`h z3GdQcUG8J8p6a5ZR+oLlnK2h+h9%0uOt|69#hBWYSZ8`KGS(TPaMlV~NMK7YO*xWp zIy_1L8|Z{uWVWuh?&m5@DN#Ed#BjE2>VXM1(w0 zq@(?5)2K{y;dmm#76K0z!qJh1SM^RW9G2m}d8s`vTb1>zBXnywurf#k>8nndQec&X zkeGrmF>+92C5@`>o#IfS5*S*fxZ&H=7f{_{x;;?5?ntWEklsXPhzk~YB6rYe1*DOf za;@_@=5zFBzue8+CHYaUpRNd2z?Pnp^Ee^Yg)#egEi7`z(L8DFl*N+3}#9w@fMJ!Q!G);@$Vs*Ch3@*~xhvVFdJrqjn z0%zPo=&yx+nwqBnaxl&iU_Veu9Doed?WSvjg(BFrj9c*0yQsmWfBQ|_KI9`^pSyre zZh?Sn6XCbMMO^{{@?PquVrYmopNsn5%zrl0v#!)Nf2g%=_7|!438NPACr8q;D8UXAi&p-!ezXwx+7$7R_S=qJ`8}sA)G4b;f?|sNOySU0 zb`*Mm672e{h^$bX>W(rOP5e%m{q{~z(ZFSGdq3aoJ+0YRSP1HhCL4z94-y=qT0Q(p zXD8N|P7FU>(u_-lKgL!HV`;rsk+2XPaZGNQ|vV1BkP4>WtbpBgq}sy|1RITT0MUBW-Q%>5D{4bc!25Hk3ZVq6 zuWUS|NAdeH2f#pUUKewJD{xnw(;A^6I!Vh%!OY~E>rD@I4(W?t4S&(0;MpGdLd5U3 zVB%nX22(3m!N%Z`Rg&yjgp^aGBkM>>s|*di?Wk zjXdT*|FP}+OP(?a})K@iC1zD+;h7N+kGid{xtQ}e7t?C zecW^Q4AvxU0@hk#V3g6YM9pBjd!(oCap`*O!_>BK{nR?gZ#`f)%22Gtk~XmMU}6HH z-+cZ3!yT11RfqYe*v7JAOS-XHT*AmP@i+v;LtRqx`lD)j6gf7D7Wyc9O4mC8&sRhf zOysAG@VGBa@QSaaoibaNHuj7mWp(&<>9=L?8R+ROGwE>n^>Ug3yGO8vEn?(g{PmOF zyp|Umcmc1)>QpAUP5gGaE%22`l?Hm{v@Z|)(1%gG8kngkjBk(+eAQE-wT~d+ZEqFi zC1b1&R3JbccELu#1g_GnWSk}1++mlh!HV68%qnK)4|P1I&5hv=85;E!T2G zL<_!i7{hZKwyqE3Dx%~5uKN#vah-WU=sQnE=@e!U4oYo!$2^;on>yNhO`3a8uKMY# z2`wgQp6qtQLd1ErnhoWW)PuLR!Xm?fL9MA*G0a8rUyg0WPICrk%lFOw-s^ou$RXs7a$axT6(A;I70~3xU zpHudPOwsS(Q8rpcM2?cP9bs>X)B}MaU*&l=VTJDQ@A@r>Y|0^=i=A3HZWD|DdZZ;t zL4I0QfvVUDj?M#4j>1)XSlsB{m(9cFDfBU@jXyLqfkRP6gZ2A1hTnQgg3D6}?A$7s z^?S2_sMY?^rl52|3}J|R2Q$QYAYZVUdb)w)x=5!`obKhyyGhY$rbfjdIdodl9pu(Vy;74R#uh<<)`Et=N$V2 zu03|ttyB;)b)KP(#-^GxQa;QVn|ScJFkh^}9d4g5KChmD0&wrta(WtLvG(lkZZ*x5 zjfNQlz+>$BSBFsVAdjg>3YD2lf9S97*b!KQH5G8Wtc^_cWZaXw6xQI%8TA^_f}Nh|{uOM7!YgO85%gww~BMUB*=4DcY4EijN7reKvMxn1(q zyZzt1>=3!0t;{l`wk1_uSbqgCv4Jl-W4#>KLvf;FMtXavBZCH*qGl7yS`3#1(}2`7 zv@W@Z@A%)}FzCh5xfv61!vX*hW%`cx)!=0~u{1J+_fC`sa_Q?ap{|l&9tJTu5hR8d zkikeFj(*mR8kzCjj)U=!r9RBLnY>7P^g4tF*wY2@3slPh0K8jbH%gIE-o(l|0FYDz zMx8GMD!{thl`jimEkCe2(`ae=tIJ4*Prl9m^-MI9Ipo$Gu_6&mp!ax~VxAZae;f=Q z4@qm8C z5(KW6O}00Z!ix<+ydW7^8WmqtlE6ccf|XmAmixAV1UQYG#M$D3&JKn-874zIiU;4p3|Rk9I0!S~=D7P(t75&0(%>GI71`>7gI)WyJ08vcNAmz5nS2UGe~ zK!rJ|jt+Dl^ToT>>%u*eEoU!p;-)T&m{?A)6~QB93r_;+y}JV~l%rxR^&Ozhpbc%r zkfAB$^no;L9Tj68{W8DlWT~~f!)iGaggX)o4&a78nhW++#mpId6!l$j+ z6`?z}%{xM5K`V0|Ktj+0@m%i|Padj`PDgi!!Eii*z4w4X2y)d}ISVk=;P8JwYrRhf z3Ma6ESce7@4|J0%_&6|F&6RIWl?`BVxze@kCfE>MF0Aq-8U&TV=aO=5?m-2|hAwwp zyZtdX{lsCg6R(zG7$+(^qQ0%T$2x&1!lRbV>euKO?ZKOnyRIL(NhazRensa%8zND1s1Wkr!QdUq z=WSl9WwEpzDQMXW`uA_&uf)G^Zv7|xpZ%l%cWcy&r5N{0BZr(0;~mC3$PYoEx=lUwE$}Y)&i^rSPQTgU@gE}fVBW?0oDSn z1y~EP7GN#FT7b0xYXQ~*tOZyLuohq~z*>N{0BZr(0;~mC3$PYoEx=lUwE$}Y)&i^r zSPQTgU@gE}fVBW?0oDSn1y~EP7GN#FT7b0xYXQ~*tOZyLuohq~z*>N{0BZr(0;~mC z3$PYoEx=lUwE$}Y)&i^rSPQTgU@gE}fVBW?0oDSn1y~EP7GN#FT7b0xYXQ~*tOZyL Nuohq~@c)$s{uj4XI8Fcn literal 0 HcmV?d00001 From 2dd61290f9f9383160bfecd67938a09936ffc592 Mon Sep 17 00:00:00 2001 From: Paulus Schoutsen Date: Sun, 13 Dec 2015 10:44:07 -0800 Subject: [PATCH 2/2] Update lets encrypt blog post --- ...tup-encryption-using-lets-encrypt.markdown | 64 ++++++++++++++---- .../letsencrypt-secured-fb.png | Bin 0 -> 17137 bytes .../letsencrypt-secured.png | Bin 0 -> 8369 bytes 3 files changed, 50 insertions(+), 14 deletions(-) create mode 100644 source/images/blog/2015-12-lets-encrypt/letsencrypt-secured-fb.png create mode 100644 source/images/blog/2015-12-lets-encrypt/letsencrypt-secured.png diff --git a/source/_posts/2015-12-13-setup-encryption-using-lets-encrypt.markdown b/source/_posts/2015-12-13-setup-encryption-using-lets-encrypt.markdown index e43943c5fb7..8b3384ba56c 100644 --- a/source/_posts/2015-12-13-setup-encryption-using-lets-encrypt.markdown +++ b/source/_posts/2015-12-13-setup-encryption-using-lets-encrypt.markdown @@ -2,57 +2,92 @@ layout: post title: "Set up encryption using Let's Encrypt" description: "Tutorial how to encrypt your connection with Home Assistant." -date: 2015-12-12 16:06:00 -0800 +date: 2015-12-13 10:05:00 -0800 date_formatted: "December 13, 2015" author: Paulus Schoutsen comments: true categories: how-to -og_image: /images/supported_brands/letsencrypt.png +og_image: /images/blog/2015-12-lets-encrypt/letsencrypt-secured-fb.png --- - Exposing your Home Assistant instance outside of your network always has been tricky. You have to set up port forwarding on your router and most likely add a dynamic DNS service to work around your ISP changing your IP. After this you would be able to use Home Assistant from anywhere but there is one big red flag: no encryption. This tutorial will take you through the steps to setup a dynamic DNS for your IP and allow trusted encrypted connection to it - for free using [Let's Encrypt]. +Exposing your Home Assistant instance outside of your network always has been tricky. You have to set up port forwarding on your router and most likely add a dynamic DNS service to work around your ISP changing your IP. After this you would be able to use Home Assistant from anywhere but there is one big red flag: no encryption. + +This tutorial will take you through the steps to setup a dynamic DNS for your IP and allow trusted encrypted connection to it - for free using [DuckDNS] and [Let's Encrypt]. + +

+ +

+### {% linkable_title Requirements %} + +The DuckDNS part of this tutorial has no requirements but there are a few requirements as of now to run the Let's Encrypt client. + + - Direct connection to the internet or admin access to your router to set up port forwarding + - A machine running a Unix-ish OS that include Python 2.6 or 2.7 (Docker can be used) + -### DuckDNS +### {% linkable_title DuckDNS %} The first step is to set up [DuckDNS]. This is a free dynamic DNS service that you can use to get a DuckDNS.org subdomain to point at your house. A dynamic DNS service works by having your home computer tell DuckDNS.org every 5 minutes what its IP is so that DuckDNS can make sure your domain name is set up correctly. -For this example we will assume our domain is `hass.duckdns.org`. +For this example we will assume our domain is hass-example.duckdns.org. First step is to acquire and set up our domain name. For this, go to [DuckDNS], log in with any of the supported login providers and add a domain. After this check out their [installation instructions][duckdns-install] to finish your installation of DuckDNS. If you're on a Raspberry Pi, see 'Pi' in the category 'Operating Systems'. -### Let's Encrypt +### {% linkable_title Let's Encrypt %} [Let's Encrypt] is a free, automated, and open certificate authority (CA). We will use this to acquire a certificate that can be used to encrypted our connection with Home Assistant. Let's Encrypt will give you a free 90-day certificate if you pass their domain validation challenge. Domains are validated by having certain data be accessible on your domain for Let's Encrypt ([they describe it better themselves][letsencrypt-technology]). -Assuming that your home is behind a router, the first thing to do is to set up port forwarding from your router to your computer that will run Let's Encrypt. For the Let's Encrypt set up we need to forward ports `80` (http connections) and `443` (https connections). This can be set up by accessing your router admin interface ([Site with port forwarding instructions per router][port-forward]). +Assuming that your home is behind a router, the first thing to do is to set up port forwarding from your router to your computer that will run Let's Encrypt. For the Let's Encrypt set up we need to temporary forward ports `80` (http connections) and `443` (https connections). This can be set up by accessing your router admin interface ([Site with port forwarding instructions per router][port-forward]). -Now you're ready to run Let's Encrypt using their [instructions][letsencrypt-run]. If you're using Docker, this is all you need to generate the required keys: +Now you're ready to run Let's Encrypt: + +```bash +$ git clone https://github.com/letsencrypt/letsencrypt +[…] +$ cd letsencrypt +$ ./letsencrypt-auto certonly --email $ ./letsencrypt-auto certonly --email your@email.address -d hass-example.duckdns.org +Updating letsencrypt and virtual environment dependencies....... +Running with virtualenv: sudo /path/letsencrypt/bin/letsencrypt certonly --email your@e-mail.address -d hass-example.duckdns.org + +IMPORTANT NOTES: + - Congratulations! Your certificate and chain have been saved at + /etc/letsencrypt/live/hass-example.duckdns.org/fullchain.pem. Your cert + will expire on 2016-03-12. To obtain a new version of the + certificate in the future, simply run Let's Encrypt again. + - If like Let's Encrypt, please consider supporting our work by: + + Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate + Donating to EFF: https://eff.org/donate-le +``` + +If you're using Docker, run the following command to generate the required keys: ```bash sudo mkdir /etc/letsencrypt /var/lib/letsencrypt sudo docker run -it --rm -p 443:443 -p 80:80 --name letsencrypt \ -v "/etc/letsencrypt:/etc/letsencrypt" \ -v "/var/lib/letsencrypt:/var/lib/letsencrypt" \ - quay.io/letsencrypt/letsencrypt:latest auth + quay.io/letsencrypt/letsencrypt:latest certonly \ + --email your@e-mail.address -d hass-example.duckdns.org ``` -This will generate your certificate in the directory `/etc/letsencrypt/live/hass.duckdns.org`. As the lifetime is only 90 days, you will have to repeat this every 90 days. +With either method your certificate will be generated and put in the directory `/etc/letsencrypt/live/hass-example.duckdns.org`. As the lifetime is only 90 days, you will have to repeat this every 90 days. -### Home Assistant +### {% linkable_title Home Assistant %} Before updating the Home Assistant configuration, we have to update the port forwarding at your router config. We can drop the port forwarding for port `80` as we no longer care about unecrypted messages. Update port `443` to forward to port `8123` on the computer that will run Home Assistant. -The final step is to point Home Assistant at the generated certificates. +The final step is to point Home Assistant at the generated certificates. Before you do this, make sure that the user running Home Assistant has read access to the folder that holds the certificates. ```yaml http: @@ -60,11 +95,12 @@ http: ssl_key: /etc/letsencrypt/live/hass.example.com/privkey.pem ``` -You can now navigate to https://hass.duckdns.org! +You can now navigate to https://hass-example.duckdns.org and enjoy encryption! + +_Big thanks to Fabian Affolter for his help and feedback on this article._ [DuckDNS]: https://duckdns.org [duckdns-install]: https://www.duckdns.org/install.jsp [Let's Encrypt]: https://letsencrypt.org [letsencrypt-technology]: https://letsencrypt.org/howitworks/technology/ [port-forward]: http://portforward.com -[letsencrypt-run]: https://letsencrypt.org/howitworks/ diff --git a/source/images/blog/2015-12-lets-encrypt/letsencrypt-secured-fb.png b/source/images/blog/2015-12-lets-encrypt/letsencrypt-secured-fb.png new file mode 100644 index 0000000000000000000000000000000000000000..6957c96f8c0b78802c8ae28c76e5412282348a0d GIT binary patch literal 17137 zcmV)sK$yRYP)0008|P)t-s>FMd^ z<>mkX{{pG>@9*#H>+I*|=I-w9?d|R1;o|Y}@xj5t^78UcnkMJx=c1yb=;-P6^Yi!j z_xASoq@<+e&ZmD_Kp;dQIxVV>Sxo84BJ+-9NQRhHUvsNrg);BBSgcdX;z-```P-vFxp#KgpD zqu<=z++LmC`S|$2z`*+Y`uzO-ez4@x(b2cJx3sjhpP!$Tl$EBYrc9C8&b_tA$H!Zo zx@>N5GdMagG&b?=@@HymI6Xh@>+V5CM?FD9N0%SIzQ3rcsmaR9et>~RNlKTQnU0W< zb$EE!*VjXp833a8WM^lBgoRL4RqyQZR9IQ=?CI3i)vTbJVPj-WP*F%tPH4pL{_Nv3 zr`szqF>Z2mxw^WVo1A%keN&Ruij0gUDl1!EUU71Aa;f5Zs^5l)iSzIFU0`8jo7QQc z*H~LyOpVc9nb}&F)EOQhaHid{xxts8r`g}t)ZNd6v*x$H#axm=&e_PI#E;0UF z(z#utI=jNiz{bpYq+(%~M|Y>$H&=Gj*4lT5l|_Xm)zZ&9Vu{Mm)2_v$a-dqp%Fw01 zmx-=+b)e3Sx^z5joIrvf0H^i9!NOa6o0hhP;NswckDZ3Q^nkSMPH&JtRB2|G$*9Md zkFtK<Nm%oGQ_WppgWfQOVp1Y52s!n2|-bKW z<5`QojhUt^xAx5K{Y#YIl(E)7h}7cc=Z>SQI(``Q`u>Qd#Xo<-fz;@R^4vCr?hvaFch`ZIbEJCpHlo3O@61Xln6Ke9{grJ2Mj0819bLRv}N3CxUdI5jwoQH zMT=zp=7TFQ?ms;~j(zVeGs;0&U@0s-v8p1Z^kc>OQ_rT?uid%w^lV;w>La8w?I?$^ zz(QD=lQt!EpRCr_Z{FT`a_!EY?faJ|1@%oBilmH>^^0#;$p?3EzMEcH;BQ+pjNC4q<&~=WJdRxx+XWCmX*ASN}9@oh$fW`k%B62%v=f(Hp*!fwH?3x#eEZT6DO!XA3-t%ri`rN!g2 zu>U~+ivGs9-Ne}4Zo4TZo6o>AlZOdG{P6ufGiLl)n2EJQo}WIkFApqM7i<(dgF(Mk z>Q}q6Q)gc)mSBH!7Fgod4-fbER%h(}{OW?(|m}d3huv#jW z#$7eKj1~>Y_gW95daC^>Kia8rahlm&9I&6ZD2yp>ueVS4}zM zC1`dzlI!%DZc&?iKRw<@R=s-h@a5_r+FstjcVl8nq9|#*D?LdPB?R2@UxUp8Ywhf* zSzHoBxGnpr+1K(anH(3CNM(hyv&#|9&!3tW#rpK+K1!+=Uwr=cgKu7~BEG$6x*@TI z6^bHo!ba(F;dP59^m?7iWLsO)lPo9P`E}DQibaG@pU@n;h()BFik4T^WU|!lS>rZV z1ZjpS3JZpD^pi6TyQ+-t{;Qw&R=@xHvrmb8Uw!#%e|7&y8}=c^5?mD)Knzr9OEDXd z`*=Pc&xXAfpO1Ig%xhlWmqm@N)~tlrdERG;x(T>>Scg}DkDCjz(0s&R7mLQTa$-k<{O^NU) znfem3>N}Uja-~x5FBa=>8DS13doKTppd5#f0*oMt71OhmfUr2X2ePql=kQSTN+a3V z#M030%IACDg=t?1oL)^V)2F%@-|elw`r`frjn7}8;r-ROpJ8to%Tqp%GEvNK?UiN5 zooSWTn1?V#(@cifLI5|!Vi6tiOdJ4gR)qy1{4xe~MH6e8Sqr^j$O1ELxuc`)VM(%g z3pjv0J_c}C^ZgjPwWEV#t%-pcJJ{VFrW~+2U`nZK8o;dXqCE#QT!s8mj{+dN-Eykt zf?{H~R!#T;z|mj;EIuaYw`JvWONn{Kc$CSk14Pj4d6Xf5j4&Ao0IZ~Av19XXysEem z>-jaYI4rxFJJj+jk?1B6<7BDY@5~w0cFRTS?P8fs55Cu~1iyPZXZFLd->kh|tZ0+* zGd&NLY4v1(#I5$^OvJ3@He-q$7l8G|tkz5zHgZt_;8mvp;83G1kUa7S%~J0W3lXw| zMx{DR9oDBw2_KF000+|sC_DAkQ4ZVM)mL_hJsL09w+?ousSqS4gWA?K?^x+><&W|T z1{%J>Xm__=@=cX1E?lLh$bD_vH<`o+M^_pf;q1!QSrYi zR-6(5ArvMBFI^s$Bzk+x3{b5z-f7Ao;5VxZ-cw!B|{e374~B z@L>`lLa7njTkF-=Vr{n?6DJ^qo#DZNUZLZ2WSktzOA<6;$TL&zJ+RK zXC&!HH6ws;R0Du=8;P|hTLD&LYL*lMLbBTq2!W+yEe%o5Oe_JQqWVz-cX-qY4jLXcjB2`-g{5LG9pvXLA@JL6R5vfgA^?)x<=!L+ z2w{7tFs-eDEjjT56fcV<$InOf2W{0JOx)0WggaAlQIY_2ZQ6 z=Co-rQbcZPVg&&xrGc$cI#K|@y>8Wc8*gpB7VDg5jSHgSzD%nyPP~q+LbI8h(`=S| zZi>5lzVRH1rTcJV`PH~!gb13?aaw7RfHNu&1Z9M9xq*`v6Ihf63m{lk8~|Tm&?uOW zI_IrmFgQOjq=OY4V9g)o@cu+uBbvjKB<@VzbRgeuY)lT~cHCyKAMxeM*et~+TGcB(KEGuFZ3%(q48$X1fiDiCr`i!tIh{YOBp<}h1NY2a}Hx>5=KgZ|e zc^7&07wqJdvkxIwrf1Vq$O&Otj`+Zv@jdvePaVGuEhI-Vo#HgkmcS01nxT zs_0{oM`*}O&j+nzw^JxFd%2NLv#^>Ly- zirGt})VQD!?YfB_Ou8oOXqrmqhudCAPJ$xH(-OKJQR@aJ3EM0>d1 z4FEGr&;Y)}c6%HKFz3fOAPlv3YBXv=lyLz78Ie`RLjdSDWyU5M6gd)&SpdR{?7@NZ z%W{n80)F&zg12_YA_>>oX+SV8!rIN@h}`UIW{tarp5I5&oc#h6Xjc(_KRf&PGuCog znc?6XE*Fa`<)8r}t$2O$xG!8RhS5ID2WU}P2~@)2br->s4qq_NhX_`b;1U*i7lH`y zN1?8QgSwTbydQJ1sI%Xmi1am#>nw|#D6N5D9-B) ziNgsJ$7viV5Jo}LTE-P}#VCSg!7;5R!A;W{F(BT~`v>m{Mj%M+=`YVk`Z_F&q0A~I z&~ljUbjD34OOf<)xF;vi%%&R?%MO17={1)+^S4=oo5mFn5Y|ab2X`RmVv)~&JHuG| zIz}TILaSk7oEVp?gF(}pHKE8_0&9ML>ecISMl55i@&CUfkM<7^>UAsJF#{uJoTINE z<(3L#CyU2Qv#Z?|9USzV85h1(EbbhAC+zDl z#+QJafnzy`GAmK)9}LtAZd`U2clOIOQh%9y4_+=2Yya_&CiC6H6t^FYxZv3@zY(+% zr>|`|%@XU;MzgCehMjT4JL@fOG;#XdIkE6W;lsV_pl87JraQ52KXb8G&QE@OO0!E7 z%Se+{S}u&M{eGh7am`FxfHginc^bg33S+wej877{<2D~!jEm;zwNO=H@iOrLr!V^e5 z1J@xHPHeY;gaYyXowh@gw#z^N9J{ImxW@Qvp^Ggk+gO~`(yh_sN3UN$eR3l?;XpE# zrL%CSus97WZ{F_u03d=@27o^>D~eaFMKYxIK=tAMC-+{Bo@s1-+qM?vE7}RWzC(cr z8K{VVSSA4qi;xyBJGAP=?4cy#=X&?MO?}ID1iU?Mz0A7HB7rRz* zvShvBt?Tbtp*u5+gM;nvt46=}hy6kKoHs@+ig zCW>H{2;fhZr5i+`OXN35I!19+d|_K?w(YZ*?V5VlH$eoeJkr5py_p+$nofR$4qg!Y z#jk@(`@T9hWb?Rj))$RcB9Mlb69*0)(O*_aFK|~CEW*~gLV)J6s`fFLQj@L;hX!zK z=209(Uv3ljOUP|43f!n`cMEjJ_Sx6~1OW3~RmYuf4qNSZghK;c7|fj@2(7wIkzE0) zd}M?{JiYa>)-PZ`el;=>60~}L_E4;otyZYWRoc#0z(+$uhfwENi~I_&Vz` zIiD_B9d%?7_<>Z<8+M!3WuXjU3j(r%7cT;@N(iB>5aoAQyknaA(?ZC{dO{rK2IN!{=BEu5*%uwAXw4HuG3*^igzHDP&@X2!pA+;CPC#W#3Wom2=22QS-L$tQsqjvFs{ zg51bk`E$!KthvAPq9kuY9C`yv)(^~WEbY|Z?CsfPC1*;nv%No~#O$H5)`@wJ)maz^ zL9p1uZ-^tmiK()}Y+ohk+bQH>&E(h+goBsgSddV@oGcw4u2iht(DQp01u#`su=5iL z@2if1P@u^-_zB|PpHpJ?(^!CrjA_-u-1nCo{@m)Bz!+jdS#h{I9z-aBX0pKp1L2?* zHx`FTi6rY6WQh=lz@^HH$Wn^T_})G)?yJpTchrd@%aZW_lIb5e)+MErUay{=eoVV* zt1nOV=aFCv-3M{*~Gg{$=+@1pcn>w@>fx z@=1NU((X6hP3Aj$=klsV6vy#n`DijND4Xli3N&yvG?GZxXayN%540xCqsVJvUR-PcyjWeK#x&|xiEVIFm2cph&}!heEVpr^CDhmkFG>7X z*s4QSklTz>#mWKhy8{dyP`0WyPC4))JmYd$n3s8}KQGpsy37b%OU42#w>SaIEnZ-R zdL0%Xs>&9tR5_)}E7kr1Rz1M{cz~_)t=97}VZEhjX6%#1a%sfwQp6G;iQ*#$ejZ(h zMHIhZpajcs^`{3IQN)iJS+>M7Irg=wg|0CmQZvvB+ajY27+_gel%%dDmbtN~mPE-h zpmo}LBVt{g0@xlL$61MGa_oUUW2Hccwez9c5E-lsY!9(k!W@EKVwoGGhId*AA`yzBO5hc)wXMW5Iff+G8BPbQ*a*w2V*Rbe^4e@(G>QcPvM@HW zUP_pb=m14=B}J^r^e>QZ%iK^ow+(4x!3>%7hmxdE`TM6=@LFOSomg+HG_8kMkXSvj zD51(vBbFm`&UWQVr(7;~o?P*r%Q$}7rUhQF)9Zz>@&%WtV~Ip8os7?bL4!`&h#(m! zoR(U~ign?!9$v8#s-%ilX}z6Btb^#%wQ|$*RKe3M-@XKu$u5COXpY_C_014OG#HGN zK%6Z2K`XaAk#mQZN1bSn1KEfu;d6SOGek5_?n{Pth6;qkG2|S486Ol!F=wuQ_-?>Q z7*=AXX0V?&d05^*vZ4U*)(LelRK0Xx&_ z7+l<-l}aob2bGo;{2_lK9tGv#8nB;pr~S)(!#85zKHunDN-QI7Lu!+S|KN#<5n{bR zL+Q{5l}^|b3%GE8is5}*$1}+NZH@_E#r+`3(*0X@Eeg0}AW;k!2r5XcZ)T+*>^OC5 zQ9#)a`FAFAiCiwHY!>&PEG|YrvN*PNb8!_KfouNmLy5shBzoZVo;B!S$C%;0Mn}$Q zgaW>bbw;|!O%lstyYI<*egOV|^>F+QPb6cY$j$ZpuNM;uRV7s{^|w!8>5lN)oT3`Y z2VwzAxwz--gL&vj7CtzBaqa4nVx8D@G%)yx1h+riI}82m7&2qM5F#Lkc1nG*O2W%Y zGgju|eNVpM1M^S6cEoJ<)va@A48gQpaVV9_#oPk~Qh~l&kWlXawyIR0T)4Q*F(_7S z^XZ$T#k#)rNNz~1qZilzZep3Ig&HE(V>v?UCl(-onjlu@RtH?_sdV>sv)O!ow;x|m zJGU}uG+)>|qmVZ4Fo2(OXD(Tm=CmfcC8_K@oLiVKa&a;4(kX;o%r%+0L=#D32%3i^ zig6{2mMw#B&<>n9hGh@!(_Z$r4L0^rS6Ii&9twj}+6}rf3S%!5MqB9PzPn3|)?A`Y zO11rolHC7)7bHKv@4N5+j~ZoRJd_87*@3`VkGbVh7^=%qo-`pfFjQ+WvWlO;YMXA#b*bQOgdOA!$}H z?jwL5MzJ<~UOl*g1!65PFE9PrP^{^*UrotgoxdtkLenFQK`uD+=JsD&m5Q%Y!2U?#z5Hkc~4stmB)ckB^kRxuF&( znd38WhjS^eeALDIyQJCRVe%LhOU2P*RG#Kl;})9_kUnWOLbL8 zJL1a>L4Dpz?Gj5h;Y(6ZgBA*Nbd^u#tr>2?q(R!dgIoxAYFtQ0601-|TttT{SID)r z7RwphHQe4|K=fPPu3RBb4{M3xZl1H6ToAEFQ5Qkr?baZ_u4>n~RFNYu7WAtlE0l`paH})Na@Dyv+;jKFt-`RPqc=3*S z`1!9erBhqF80C_xa)bet)M8juC8S`B<#}g)v5?ftg0m`Cgq!uvj<<`3gv%wQzF4R( zG|Tx?6O^e|xl?@M*sx?+BI_qxx5OgC<+u)iI>dst!qXte{|8EU$*Z1?8x4#1vESa3 zGU2(gorlj!$KSes3TtpzsEo9%Be1a;NilhIy$MXZrK%{1)m~RDLY-V$aBW4b)JUX| zFhVFo=M}}m5nVcz3l<_p6OPE>0$(^@Pb|31%+n&)=F;~E<`swq+`ao_L$R(;NsWaM zrt38!rtW}Pjh1v8;-T1>#gZ;gnwi~VQG?YjHR#MQIfaOYohgU6#Nw0r6T$2VG&b84 zza;f41+j2kO%FwVk>hr}mI~)YZwN96sjw!Nvsg~HJSC~{kNcPRAy%Kw)>n4`@?a%m zIWAxRvawj#!U&h4-PI~AW}|5hf_Ajy zI@IDVc)MI0qV)vt3z=Lsv5s?m2y>!N{3#IY*3YN+?3JzO!NV5@>Zs-D2d(6Y)%Wuk z4aIt=xmZfHiDoe}N)4@XXtZ~S^30Y{%yW6OC>(SfFdZA37(x*=pDe`PBuh?+eXLk9 zo3a{N#ySfT3m;Dv{CO%ydSbZPdB^mLLL`qFJpMu|M6#4M_^4PKbI3!c)1%4kq)}_~ z9GhcNti_%2g(;fNmsb2SyrY&1>G?u(l#S8uqu*}W>|N^HE4KazzYag_aqJoZuYhHn z*mhs~{$_(zh@ILJYYf}YSXHd)24?97Paa=)=iP31-fSMKs51_1OOf!LVL+&ACq6$q zXQoKnXwo6LI^_E)3U8=pg3Cs{Vec%rvOcUgXR@h8*uTj8ph0R_4fry-Vl-;SR{4w> zA?O^0H-xYTv%&a$F3FcC#dgEIELJ(*(jN8sqv2@ASEBSgNbxyCxz zd0{)9=PF`>0LpYumKG-FCPqfy9JN9n1qO|q-6z-GVA-R9Y>Yrro>hO2MPN6nUJqhf z1HXtR6xJ4+^=0{ZBAz|z!aCi49=h$vb3qUb!M};7crK7zmzQ)9gZYflOB!_0k%vT)NgLCG9TQuxlt9w<7ztw_U1cjXVxdSiJny6h zx)VcMXit8K?urRUye%!nB>iIot;f`966Ujm2%s|x(iIVG`y#Z7rC^y`Mq2$&vw z83~g~-1@FInN0S;G2=Rq5twDq75e&{i2{;2L!4E_P?a&~4I1lD)D@P0+a76%vqlCDXM!te- z$9|m-OCbBE3)wS=QY^SD+*5sJlfC-q-fOS-)fLMo2P~WNUE%b_J5XOW<=UN#)5yNi zx9N2H7P}E*jmN_<9)XO($8wOyV2^*N9$0A5qG-ErmCKy$K=#aG6l?R{o8U!LY>s~` zUcK~k{rSrkv6htkSYzU9PIKP6bY*ORZ`am?PJ34@7V9#K|2*$W1RG>nqou1m=}W{= zWbYh8v7mVG*@IcOs#mY}D$S^rSbZBeK6wmcDWKN@`X~02&%}B%Ix-iHa3#us?1Mun z*5>caj^?~9do_ITw9QseDu`C_EqW!j8xBCMqX}mAW_T_zGnYp8#UT{yk6Rmk4qHPU zwim%Gk$W!j~$vM6Am< zerO_A#jC#{UMaI&70b4<@yRo>o@^dZ@osC(>n}ZQ75VjzfdNJL#IN3pS?|5~EMh(3 zJeG*{^^G3}8q!s${}}XA$d(=ke57_iatYvQ>Kx|FL%mEeV5R0LQy@ z_vm#*^}KT=2=YK5LGUy55ju_u+od4E=#n?-5`u`~AUbrgh;ByEL5Bn}0zZM}#AA=O z?O=;7!I#&1e>g5KYrCEz5Ck zH_|dJk#U(=&4+u4g>3Zvb*(V3Kr|CgVp+MHUP*=}HZBuuf0%=K4E(Fm)2s$j4DiFU z#$!3L1jl7!jXN$Rz*tz8`h8jf0{UT@ol6;(;JAb}sJoB^YMx(K9%0UBR(@F6t;?_k z$0Mva#lnO({olNg7|t{4F=G+uRfZ)vPK$RJ6H>g{3Vw=Fj9`fcy+^rt7aW&~r8$_C z0#w#C!!TlEv2bDympQTa^eRbw8;j_}_2Sz9#%GPyb&(~4sDkHhX)JR8pewW4TwYlE zLEEm`FK6ks1*8gkxph~o+3j*_(J-sJIRAYtU|3h7?;My1lI z9WL_r7Oqh@dW})vBmZ z#eX39(^t+VIcNHDa&G!~_df9C`L5f$e+x%<9^HHFJ4az+|I+C9IdJk4+CUA}u(qm9 zJ&FZ={N4}vE`->AoSx9P{~-8e&$O%J+*Bf|RD?b*L2RQb)A#3SUi=VYFAOpEanZCC z&#Uhf{z1|HlvwAkJ)7A-4)4E1s}CLP<;KH14)6YuSU18Ah9H4B{`(~d0K3-~^2TVp&GNi0A8Lb-wNb&c zmE*#w7At?@OjSQ7{B!&%u?{|aI`iuCu4BKh)lSRNoqNZQb?DH>*9`zCr>-3M9#>9X z!eAq@coAbb6(^BltPas=OwFW8+)5T6TDB}*)Oyf)M~O3N*%x;INZdBcn_>tS*r`gH zwM&S*tTIw|6u4zM^paI89}r;|JBk3rLP=IfiZ=~!I#2MH#S=MW@FmL*@th{9>OQl({+BPMte0B^F+VNiXvZO@Wy(;51TxvqtW7H-K3XQ_A_FSTsLPy~LPPh#a_p_(oVDNMKual*0yjk&a! zDS%)C69q@-@2w^1R1z@X&CzKF3Z2nBTumQm{YMbmmiUZ#Q2 zd9u>nCbUfn{x$yCjP>mC%#O=PUhLlaJ6hJop#5zi1RFz^g^>*#CS)EF)8bh}W&VB(1V_^to8RS2qbHamaO8bAe)Nc(h$-QA|Rn1Cf_W zny5D|Db^LRwf$HyZG|6)_psyqg^%8G@6i)Gy#Jn#WyRWi z$g=ao^~0lBe+EdlMjg*vn6P!;H2J#TUNzMyBm7h>o&bP?dY$J@p7Y2b*MZ5a_hR9| z@NfZ1*h^b2aS>IcSS-ab$aGloW~|**UfYOCbdoT=fN&H`=xhmqH7%o4LYV0Q{A2uu z3(_agAN&rh_Dl_H@3GOW+edEwIk7A*9&!x?FNGxuR#h{AuZe|eomXOH1%V~5*9!O_ z#ERUniWOS1id>~*ZMy6l0X7m#&tm=WSYL2%^Ar24$uCDUcJA5p(~muSckbP@*D`gi z)AR8D`++{OY$}?}52OwVgcxm4ntByu$(t0#dwRM$yF3YNrVE%yD&&;T&>H97X2(1K!UR>2t@L(V?lSwd7VUQ(WNNi z**v^|E>=dDn%A~s5|EV3Aqb)+N;95D6wJdr6`390v;Sgk_)h1<2eEek{Qt?TW20A- zSa<%ESZ<&jnK3Rq3Q^kg-jrn#gM!IYnFL2YFO89nSd{rB*0PnXG^L_w(vmFOjI&-d zUSYd5UN;y@OjB5~$~@i9q_CbaNnw&rwMD!dq^+$|U{6?G7F&upo%jB_p>wxLIf^CO z{~7DccRJHixaSwK2jRz~aL(hn( z0Tv$=#;(jamX*Uv{4(|5ds+CFoik=_8;An14XKkrX}uVGaOu$?Fxis9UQ6#M zbn4h2P&5}V9x`|B()pI#%uSsNvNS@u%$bn!~103 z@D6PsPfzzwHaF7wTJn1a+YR7F9m?B%Kd)H9+^|?JYhnQ?)@D2J^YHdK*JH!0!q3!V zzEW3558-Ud1IErsN7gJ@l~y@YqF9b&Oss!KI@u5!%xVIkWEIQfe2!wdjp>mNaDEf} zUK41o0LH@bJBsBt7B)!rtk7$Q+$--gc#mSajfIiUhZ`0)q!poBEOv{{yX)AfSTiM# zy}A&efL3sUS5ycT%W*7>bbibv&&;TQ`IPz$ASjme7_C^}iXk**9;ruGu;8Z)77(V` zygQDCk>nWOv%i)9ApLo|7%f&=IMrbVVYFI}?$7E_Ws9ZB z;%qfJ8%-zED^p)WcZcI4vOeREeX%}$-0Rlo3DE8h27|+s;rMy~_0gdTu^tUxy?lzS z&$~B!TM+B<+eT=$I-O2?@cCreAHOgm7SJ8{kxgiCrDC<}lNGH_yVol!7Kml4$3ixt zg<>K1v14zAf7zu25&!@g2txf^55C1Q&7fExiN%N|R)ScJSYjoJ#fT+Vf>?}LVkL;h zh$U8nSd3U=B^>)@x0*N*#qkNuWX2GZQFqj^+6D0i1St}cen3%CB5e~tKqUmtMWWJm zK?+{%6D)hzH}U;;61z}sd*MP^Eb{{;oWnVPhWto~5K9mv#1dki1VSu9j1WtRbrJ}% z1TjLaPb}7FI*|}-4+^R^MT;(Q)kGA$g;K4VW=i?DcnzEBclOFdBeB<^#H__+_{6Cp z#M*--*2`@=vd8G#S#sD;nHVUQhj3u`wy*M)ngVF#PRfMuil7$9zq9zQ4$fY+w+y{p z=#7^lr_u8uI5mV=d%(Q=^C1$;ybi3_xARQ*fYIpquG1T#!(3kZ^|kGMBE2-CkPaMUKoElL3dyOk;~yFApPk+TA-KF%86j zoM?rV)4-uvG}_L~P`5^e5pU4F$RUlzkrA1SHN8)BpQ9vMdalzrl~N|j`Jv1kfFrS} zu-k`+gU**Equ^MCSReUSh}*4x3M31TtAW%u^e48F0i}sOcANqWHnhTx z&f}#_C`>G-jyq{Cc4CErJMl*sYTot>CYN&5_VT0Vop~TuayWLK#ym~KPSEN$d*|g+ z0?*W{E0k|iCIV!-^DjjZ$OaZ6tyXc2?>$<8kq(WlMQ3V zIuOA>b_K=%dMAZl!ER=-Ygpns_ewj@+O6Gw-vez-o?p)C;d2`G6n#rroFuCZs!X&V zE7s@s*N$%FxP;uEtHzQV>z#oq&({-UF)#QfYiG>u+spE3(%u=yFR<>Wt(M+Dpuu9o z)BdI0Vq??$i|TJ-MRP{KWmvl;y4uM7)z^)<$PspE?|R0*Q+~P>?(>OevsC2P_Z!ui zww*vIXSB!8e3v>JbW&-^+=`DS1T+*Zn3#8b&J6$|1&IepWvXQM~QrT(~j@g+@E~}4g6^@?TpYtm%@1qGiH-Pn~uqwBjDh#!4mC9Im zvZBa~9&eh;OD&&p!ZAB>b)#Y%ZxJNZPIcl|Y0*wwQSnWKGDuZ?p<=YNtk@wVmVt1lEd=P51S!)(D|L!lH9?J>!mNZuk={H1Z%z=B@&4gE6KY? zA@{KKp4+gy&6#)ot7Vqi?BPxgJi*#zM!7^TONKwgLOrFGoHY}|&#;2aeS0w(u_)U& zGl9f#;qb-nVp7Yc1aw{i>y2TROV&5?vLYb%X0Gj8>bMh1EaqL&g|*Y_ydz6hp`h(+ z{H<+|TdI@r)ePBE9aE7mu{S^dW~!>Xeaj*|GQQE81hJ#({h@k1`EsFc)bUtNli5mh z*NxW*7Yuo)rUMK@C1cuBr}h;_ZlRJa@7=X?DK@;jEsC+#T?RK>+Qv}_m(4r%_+LZ# za(#c7#sp<;dAxG^yJRK)VC%a{4xVm!XRz={GJD>410mF%?5+8>#LYIn8g^mz=8yb( z*9i)v`Krb-dB-xHK@8(j&+4~&<4%!w=cALo)3?VNhPd0(-8|(2i?#H8<)`~id$Zr~ z>-I&ed?}5s{VIcqm{hG@I^wR6NgLaqcfQ5QP0a1gzE`hsJxvGLlr+7eg0;!U+TF$y z({16nipwmlZVasd%?+HyO7e!BUzdHP76HX{75h8RRe z5IH)MDs?{rSRVn_s};)IbJxUM7EJD~5slE((+%$?fc2K)mLk3J<9>0wn8ZC; zBY9fl(7Op>y=7F-$r1FH5hRTt{lwi$IosMh`ax5G^`@~RL2n!u8FWl!-_zd+z=Dne zEP(YP0$9*7fCaEVL;wpq2Cx9uhX`On$Nq6xU;OO=*8edN)^jS*mw&tO0oMO8oc!Tg z73izK-E|jW{r|!b^=DNe>Tl+!u5$qE{}-+|2=z<=3j$cs`w3t{#{d?<`Vavu=or8P zSRW#Q^}Fa<{rVydJ<~M^_@EamCmJIfV4V?( zgehMTdZBVTpThv_yqDun0j!r{1v>!iY*^J0^g`w6HNZL_Rup=nAiz2w)@4P6UMM62 ztg~Uo0M?5|0oEtLDs#{ai5$TC1XwKeLLv*W&W4o@;@7U?^NHAv4f=c`{Cq)Qg~g}1 zs?VE!Z*dr4oewL7U%B#wx<;Jq3MbaL9R`4_7CLNw-lRTjT_ zEWmmXuzcI^lnfGSk(u0U`QMzL{=?d^X2gGn#ggT|JvFlQGXuZ$*qDhlb^URu&NsZ%7kMTa zoAejcjC*>-`*}ndhVY0g29CD{!W^r1tX`Z$ytjm~#r>u(qTde?UJ%^dPg6wj4l-D9 z%xjSkbm{_4&~cYH_q6rOVFqBm2Uy$oR#S7nQhPGpr$w60Z}jOfRzaVeJymmP?!wet zj|ekv9xMt?HquldH!r8MqUb#oJq}z}(2dno+fHI ztGSI4XZ@0?kHaX6t}JP+@2^?R0IdHatcf0;XkmUUcO5ew6$j>Sz3TTyTwR&2dRKV3 zakk@qDSCn>s7h~Qw4LUKZLhBC*c&kVlPuR*xC6IM&D^eRYuisCEFS-0%lI3C_Pla*zDj!v?O7vuHvj#GcwLlb~?Hmn&-UOC^Sovzuft!2hs*I7J@iDUp@Yifl*UJ7TnQ>-gSmtSuBkI|uWn}}@XVE~g?4Pbo= zER0?`-$cu>l6`08qK=h89YykS>|@(t>&h*uP+_?hz8c>B^qxzVj@=9R$7T%sw*7+# zt4ej0fltIYn!!CN2NEPDdClOAavemsiwwgBZt9XY=V)V^u98{*>%?$Ts)YFP-8DOu zON=k0_fq)u1$rT`mv@}{!yX1;eG)A4s=qu~X>{3=w`|#ibtMmc1a8+@(%LH9R!5|*1!K9t2)v0Je|84p^#&x zNk(3aG-|Ya(Fa8eaDi+2z(yjJUqEhU4;JOZ63Scq;CEpKBN=(<4rH`mwBZh54;JOY zVj=^jo-*2<+KsuRkz;nssL*$6gGHU?ii1U(b74_WuwFBO^(n9lwD8J#u>6FlkPvlY z;go52Ql(A5BYLoCKB1fW)NEPvdtYPFg;k7z!4Tz(k2lh ztsF>vpe%EncK33i%^B3wx3O-*ZUr9Yc{0$kr%iS(FC!Hf*5xaIO-KM(?*Nw1xV!dy z|ICHZynW3w8P(cs%-bT$+^>ra;=>zzvzs?4;;yY+X%`L?O;0+HK|x!LbBel)p%h*ZO}5yJrM zKL|_g^h$o@ZQ;YZL=e8|wN{;PMXI}M#EF1Nz1K3 z0pX-K5D=-R@en8e+A2>8C1Z)Gy3ypagO(FsOGx1Jj&U*D-UbNDuUgwB!Bl#cqr}H; zr$~fX3t)XJEQYIpsUv$vGd#(A$)}=&QCUa_V>@nG6S!=sDmvLjpEKH=5k%E zG4cBI=RLc}%%_#he12EPsMRS=YmV_K@jpGaS%<5WssBcTWmoItkB=qqo(<>y2r9)* zAGODMd|=jTc>0}r&3DG`rnrvf4A*XM5Mtm?Sh&5RRp|ovPi2PJ!U;zgiZ6P^@VX|# ziJ@v?1w#Vk8gmV~{R|Q5hq$f>0EIjl>T;gF5s&+ABfW6Jb8k~)DMC3^GndE2X11;oznvs`oVzU~@V z--yoB*Mbr&4+#lAIkbxFkkEtKQ{5uoiB0ppwn$bu>=aw*YSC*?xo^+fa4GDpoxrsW zn=|(m&VLqY5`A`h(VXM=^4nCNu3Pc?-mc#p{w+Ui?Yi0W7+Yso;r8zK(EIVFBG>9J zHNHL1k{Nw3_xR80t#EMi literal 0 HcmV?d00001 diff --git a/source/images/blog/2015-12-lets-encrypt/letsencrypt-secured.png b/source/images/blog/2015-12-lets-encrypt/letsencrypt-secured.png new file mode 100644 index 0000000000000000000000000000000000000000..7d276b0b5003626f01a62087a1650af295442209 GIT binary patch literal 8369 zcmaKSWmHsO^!6wMN{7-VN*HtuAs|S13?Zd745f5RhopqW5YkLA4B<#4-OUVALyEv4 z-AKIr{@>p9#)rGs+56o6?7hx9&vWA5&$`+wY@D2&?CNgw?cP?4_`}ePX;o|i4v_EpywRFiF zv0|QsGt8WKDqeh-hg1JDW0k*v!{O%U=BB2m3^NmPMh_Fueg;j`&O)efG%sM&e|3%T7O#zss0UoB|ADg>Wf%u{rU6a;vzIO^h5cw z83ZRNF45T3)X~{lRaF&GxjMV_tD&t&*U;$Bojd&l14`sNPocO(+&SUA@{-uNAjPEAV>2>#^g;+h44M8|%%v9pKd=JoXU zM*eWFYiJ0Kh;(svb8v7Fm6SI8I_>4_@8;pDprU4&IuR5SYGQ6_^wv~EL*w%DQYU4q zuC6{KGqY*9IxjCjE+N6g(-V{ge49Dl)6-j6TmlAz&8=)SboGLe%K>nlTL}(_Rn-Ar=+^&8`Rj)jGVTKwp@f&yDdutx05`FWgo+06L( zcxh>ALQ-KYa| zR$N+E-VOC?U&b9p5F3*DPa}~oU&cBUWioG59LyCnDuEC8&8q~*CHyt73@Zp(oM7CzX`le%M z20WgzMEsp-O)keh!Z4e}?qcHND5HHm!vBRkw=TSPx# z(mbtPiulR!1D2`TBKh}XFB;XAS%>9C<3{7H_1enjN|?mtc{A3H0=>Q~%U~rY?bW>g zfmYw=SggrU{w$~8Xnuo-i5r2-%*q?x*qgL3k%%dVV^GKjP5iW1CTP{1-lCGSTDB7h zsl31u7#h^SCABtM!WT(*F*S@d3J1W^-LCLj>#)_0rjCz7DtGZ&wJDE%+j#I+jSU#L4J^YqsB| zW8nDt5FA=%Ew6*lfWk&TKce`T2F!S863@m~8HBGL8&<01)K&<&XfS=D3P&vIxBHbs?+Pt964QGzpC%h0K@E2a$+TjdBJn6uru@~zJq>#)D_ z+dIP6HG2vwJEjX6Y$dyJUSK%qOX*^q-=BNt2!9V3_ z!wx$VZpo0MS2z1ucHX&=g&aIb?}Wma)o@@k;pPY{&pmmnjd^MXDZ@;N!7ycVrBX)b zIzd=faGQO!9haBd)8BJI(aT@IcyS@^XHpV5je};kBgkT1ae2LOZu3TRh-}yF2ca_Ut(RwR8!oCgP zm~`~cQp1);MY0%~Q64>`e@WsufeuY#&dJHil#TWQ?BhSHh>~}$gYoG@Yp1&2uJ=c$ z7JZGcrg^;iBx`ExX}JTN1g!{Z+)E)gIe#hzs%57HBOj%z?Il(*w^TnJ5w(3rrNyRN zGU>!K2u%G_dU5_u_gH{N_xRhWG*tWQH!GF3Pg5|RFE`4a{|Cj3AB?+j!XcTk&M-FE zR%O6YsPA6##D47=NmTmK5W6;9XGYIJn5H8(1gPAOn6*O>`&?to)x{m ze8{k*hnn=8oz>sNhhH1++T2|ddav(^UU2I8 zXddtCu=n|21O{RWBL2m1{lTV(b>;Q9ib?#CpcpzK?7XI$h5%mgC26oq6S^k(%y#`! zD}e+C*RM)681m%?eS9SdFl2A?Wd>8f8~AA=~aLw|a~xeZXT}Y^I7{ zYI#dynYUC&UO57IMKMC=BGK&PT6jx6u}OgYTyVO!^`zJwO^WSouLyac;m?4vAw&}M zSw(GYSkB)ofXndR_~3LxnkPPNzVe3w?({BXp)L*o045EF+rBw~*|v2YLJK|Fm-Wv; zq)h@R2oVB0cqSJXs{$$~{7jvm9c%q7%4lhjU}}NoY?rtky5oqj6enP*5D`{wCW_!Y~J;|ia(6zq@e)s_K5}7Xcoq^(| z8obczv#qeyw&SZL-~tMKLk1^DO5Rc2lTB}2QU+p4pS~`cC#vvVY>Dt<>x@xF??%wF zVQt~^W7NraV=3)IdbDh?&wS;K64x^_!i^oO=gwdd{4)XK*GM>$)T2TwlXqZZ;4tFb zXk>Yz^K@{-`58l+I=O_3Z44s~W)5~TOh&#uV*8HgbeYl*>g)03&%JB!dOhLS_@RTz z?>Zl^5*1kA67-x|ZJc=#3hqQyW8Q{JNt5vUS&CJ5Pjd%qc>%k{Yt{8$?2_Z*QtLMKn{ZMPP)OFLBw~q<==*x5 zB}JO!>?u{nMQ0athEq5&Mx33mJ-%k6=4x75KY_-m!gN>9J1|@{dC@w`fJFZCgm~0b zo}-HFC}{MQ;@xG2}#8fAAX z=qHx~S|9Ycv`XFeEs%LdV`90Wy)85lz^~V+gMI$~pZ6sxv7gRkRYk6kBl^RF%99sE zKDJH)vi^IHxq6rx-~&&3?1c&~D6(YsrR76L_3^A^Ww|+u&ZecqgAbn$4nd?03*t+p(}{H?!dY=))hcar3Uqt#US{&E|nM>hbT~^M#rXzC) z>Fg;B#KZ9PG?`PsF*9~oMfzow!pubf_Z?Ftl`U=XibnE!W0x+UV&>9rdwc>c%?XDF z>p_*Fq)b~N98n;c8^+l&Kv z3kK|J`L9Hlm7n8Jiu0VV*fyI&>)!=jTkQtfKqOWruDvvd`dgNq(%eMt98DtWj=#=@ zJG&N5Cw@`Tuz9nh7ztx|c&~=T^O61yq1QtVFD5aOFRIvBp-62Sx}fUNlzYpGk6Xj+ z?4eck{2$#Qe@72r`Sy;l&c0ZeMEQN=W_k7V9lK@Fne3=%X_(HtC@dnGBZ*CmfGMuH z8O(cH%_Ngl(5nZ9^*}9;!RH^cr}VXSe}Z`zkNzb%`57AUh1I|_`&X}wLx+zHwb0?J zq+gLt1L9YbM#xfAk~PDhFXHVEXk{{;_^_xbyXxG2Bl34|#hOttqSse&xy*jzSaOxo zT>0!)6igZV?wELwpuvR$js}T54Fgl0!*_2gU_=}bK!e)HDdY}ReWDo96AbFYCfnsT z$K>L>7XNn|V%!fvZ)V`5g11q$7*s$+P}SzH`$F^0p|hcuK{Tj1i4HL)YSO`589-?M zm|pqVSzRo#z37;LUnfmQLuE2ts#IhnqsF=0aFD*`?q}_nSj zWINBRMe^28B$%JSsC4&~Fv!(j$?DydwET1>B0BxsM^ezSqPCe%(PogK$R$RJl*usZ z0A8p$=^X1+(nv3xP#h4@zSzV}C^R;cBBOHn-r>6qu`jMA&@-;U>zoY<(*_+g%~Tcc zYzH%_c)t+l^TLsI3GF=Hlo{;KYVaG$)A-!~V=lc+$_lI7inn=++1J;)>E5{7+8nAA z(PoWW%nP;hpox5^Q@jBn5OeQTX zog&BqK@UiYa_Z>q3FvHO$i8DQ4&nfA2oe|AcLEE>zp@{yn7I-7!~;q0Y`hcAN_pt| zGsbK>xlmx~%ZxJX9m90}de#v8cq1H{^E0qMt2rqE6*)L3)_=v~aZUM9}I zcIgKW;0a*s8XeLw!m_s~|K`jCbNbX1?0JzL9uVrzrhmA4}_=17krKY5WX}aTP=jN{WKrgW&)+qX-X#S-_ zIVA%ejR4j!jn2w}F3nV?`92+7ykj!dzyk2X8hF=O<_Npz;m>`8=>th{%`^Mw(nVqfH88c z;fG{uL3697iKSLa>}Hiich)A+Y0MOVRu4Qh!kQ%0t@sa*ApX4cgQ zRpu&~1DtMSDhW1xn~Uc}p$0m|NDOITdhY?=H}rXZEvD8M+a7$O?S_3&8qnR_L7mp0 z{@Jju81$k9B2MPF!neFr>)Pv&rEo(`ZGNmlSn+9*rIKfe_^~B=z}x>cL%e?IK_O*X z#THx~lUBW7H;TI*4i5s4>FQ-*$#!LmCcf+Ky&Xc@Xnh!WCCb&4DqiTr-q&Fzip;qp zmAIrg&^H|}f*)G=04ef3-&tAaEt3u3J&Qbc&3rNQ4=-Sq7v`ReGTlYA%9=RWihZ2i zBz-@#)E@6Y9BLfACRiaMXp;9GXvWR!dXXl*+x)~U&uJiCT@0)K-RJg_Bt8MHzf#!} z#wXqSlJBZ~77WLjJ`tlYf7#JJ(!HVWj(-1&c^ZewN`>JCmUK&C&g5q&}aH zcg;sTjj(O&g6t$i<0i0(Xz$~+tX3PEXRc!IGGX;zn-7CDKpF*~uphN<+97mNLW%lU z#br!|pRl?UUeS`R;QyAdcit@5-DN*bc}xd~hq3ysx2m%yco*pHx^#;ZG&B@^tndqAgp}G}?oTs8 zXMn@;hNy7FO6p*J4>&3))-a^J6rywmFYUAYH1~Mr;;A0;f9%3^XOWLr$$}HSlMH-V z7P#?Mp=iR^&!|qtOi2^SyiKN@C`|2_P=;CzzqRAO((3meD&;I~xVZBgMD^c!ct}%{f z+p?+R?YZ(h&bqn_Wi18C`NdexaG$eu{7wD}1{+@<=g=6iG8N5?mR(*yO9#PuXed6( zD@;2o{c@n*dTQLITgdT#yyYk+;)=IQ=1HOI6W>SLkE%JD#v?mEVGHZ=r%Qnz?PaGs z>jr#JZ|0`ErcKK$p4fCPfB9MR^i`BFLx8yW+$bXHC_!dDF3af?7aPfOLSm${+Nf%M zL=#CFm@Jxy=kPzU0`YWXtuH8u7Ft1u`oC$*pR-F%r| z1JQ@e&s~Zh;Cy%#$JyeGCrvEjtO^-lchb?n~03@z75Z>DxW>B*L^T=2!o zlbc_=fTYr$)|tl8lib@2Xg+*hAExNdYra~Ys}z{hNO^vblNk;OWtR;)JK8jm#VRM2 zUZ0@T9A@o}QI>fSyzU`P+~XyB$nz0u_U|?3;WvB>#U1qU8R#bU5LW(Sz>Sj6>9Pw0 zhzY%os5DQ(uxFe8Ho@-<*1YiRb_;@^uHPCte4F+;7u~%&ntUFz$70R)z{gjAhU4i4 z&OpqpcftQ2IHf^!&?z>srknYXtf;xo*{qZA!avBZ z`dV_^^u7<}8QWP+^lPS~ye&H>Y}PV};D&46fN~$%Wl<^OaG5EfO(c*QH~U6f9m8T^ zkO1rN!q{4ag@wejvmlz9THIyav<7LP|6lGHzAQ-CoAHz~BN8D(#Zyqo;`CZGyys8w zhcDLt8>pnwfIkI#gt@;`%AzGT?}p0#Bh{nIEDU$f_MQ*B;u56bq~D>Cw^*R!YWHV# z#hd-v2d}zL|0?nD=O;rl^|=_7+oT4JMasQ*x(6Dy2!?Ir6^Xr6|A}`<;^Rs zEOPNQknS}=f`B+kOTU-oBIy1>BPmCu_ZX*4f`=Bl5+hX<0xW_P;fc-RLUR*Yb704^M9&)F)qva7`crRz zD`eqMO)HZ32COkbuo%6{e$cT`AQ6Bcj&xv_^e4D^$waFIn(;&avyyJA7s}jtg_;+P zEzLuR%RT`zP#Lh7H2Dz=XN5yQW?JZd<={67F%oe4LvBV9`JwQX==yoh7FhOf=?|Q* zXNEI}F+ha9^=8d(hIsW^TSWicqfqE!v&S1x!8qxj{~3l-%z!S&f=Z<}TNW&-+l#aW zLvggZ*S%Sr#Tm|x`jvDUz>%XNAu$66Hyg)fQ#VHn1(9LQlagqX5xO6D@FtY;7dmK` z*i(Z#j?ZBYe?H5C8|-z|os9K7uaYiAxKE%+axU*An2H)}_bdA@`YpOS6+YtB`UQ>P zXJ&Uwr=AbVv!l%k=A^vLdWLqPY4x?qv-4w2WXs|6?{zhU3q)O*dR=8}7^ZW#$}wuKx%QMm7~ zS8w&vO@J>iH{T)`4(sevnfU2#z+x_XX3Rv@1zV?<{p3X5m>YOC?bz_{uDL$Y3e-=I zTm*+aGPtQ*VPHCs*4$RbgPo3;h0(MyhyANQpeHw+k4;JM@%h4>chcHm^NXbexUXQz9I$&Q_Q*$t-f#Y?FpR~ z-k|H2bJS(B+Aqu4;Ho}7X9sM)#G}t#*)xNAVWxY#z7BY5y+9S+d+{s1B2qgP`3AEm z0|$vYK-_}duL1uSJkHBz%?Sy`DRpI5>;VzM3MDN`l|n;#P=*K zpakO_m3!LMXhel+4-BxOZytBibN7qjGYs5$lvZ9MEs^%t0(X zh3Pa6$>P4u)3~4xrT#>dZCK2CuWMS<5SoI<&Nxu2(uz{d*}e)AB0XbY!d82d7K= zB0K<5_NU9vnaLnI{Nmp23~7p0f?Py)vfUgRE9O9qB4MLc@q)(^w>|$pcVldeG+65; zl;Mnx-*#dbD3Yk3`$?;3TzG{~@d(kD_v?3V68GLeUJ}Jo;yg69g#Q0}{(q`}+AR~Z zW;ZqrX%iQbxw_k^_0bAC&zT)wH_O+Z3JMQfZ?GrgE z8kX*rh+ps=GAJ#)-=;Zc zJzRs;GP``C1IFh%iXl=1YwFviGNoa%N_w7(al?ev693<>Ng}WI=1$EUrT*Jr5ddmR L+KQD5@5BEWAI`lO literal 0 HcmV?d00001