Add extensive PCKS7 and CMS consistency test script.

# test/cms-test.pl

# Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL

# project.

#

# ====================================================================

# Copyright (c) 2008 The OpenSSL Project.  All rights reserved.

#

# Redistribution and use in source and binary forms, with or without

# modification, are permitted provided that the following conditions

# are met:

#

# 1. Redistributions of source code must retain the above copyright

#    notice, this list of conditions and the following disclaimer.

#

# 2. Redistributions in binary form must reproduce the above copyright

#    notice, this list of conditions and the following disclaimer in

#    the documentation and/or other materials provided with the

#    distribution.

#

# 3. All advertising materials mentioning features or use of this

#    software must display the following acknowledgment:

#    "This product includes software developed by the OpenSSL Project

#    for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)"

#

# 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to

#    endorse or promote products derived from this software without

#    prior written permission. For written permission, please contact

#    licensing@OpenSSL.org.

#

# 5. Products derived from this software may not be called "OpenSSL"

#    nor may "OpenSSL" appear in their names without prior written

#    permission of the OpenSSL Project.

#

# 6. Redistributions of any form whatsoever must retain the following

#    acknowledgment:

#    "This product includes software developed by the OpenSSL Project

#    for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)"

#

# THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY

# EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE

# IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR

# PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR

# ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

# SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT

# NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;

# LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

# HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

# STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

# ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED

# OF THE POSSIBILITY OF SUCH DAMAGE.

# ====================================================================

# CMS, PKCS7 consistency test script. Run extensive tests on

# OpenSSL PKCS#7 and CMS implementations.

my $ossl_path = "../apps/openssl";

my $cmd       = "$ossl_path cms ";

my $cmd2      = "$ossl_path smime ";

my $smdir     = "smime-certs";

my $badcmd = 0;

my @smime_pkcs7_tests = (

    [

        "signed content DER format, RSA key",

        "-sign -in smcont.txt -outform DER -nodetach"

          . " -signer $smdir/smrsa1.pem -out test.cms",

        "-verify -in test.cms -inform DER "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

        "signed detached content DER format, RSA key",

        "-sign -in smcont.txt -outform DER"

          . " -signer $smdir/smrsa1.pem -out test.cms",

        "-verify -in test.cms -inform DER "

          . " -CAfile $smdir/smroot.pem -out smtst.txt -content smcont.txt"

    ],

    [

        "signed content test streaming BER format, RSA",

        "-sign -in smcont.txt -outform DER -nodetach"

          . " -stream -signer $smdir/smrsa1.pem -out test.cms",

        "-verify -in test.cms -inform DER "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

        "signed content DER format, DSA key",

        "-sign -in smcont.txt -outform DER -nodetach"

          . " -signer $smdir/smdsa1.pem -out test.cms",

        "-verify -in test.cms -inform DER "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

        "signed detached content DER format, DSA key",

        "-sign -in smcont.txt -outform DER"

          . " -signer $smdir/smdsa1.pem -out test.cms",

        "-verify -in test.cms -inform DER "

          . " -CAfile $smdir/smroot.pem -out smtst.txt -content smcont.txt"

    ],

    [

        "signed detached content DER format, add RSA signer",

        "-resign -inform DER -in test.cms -outform DER"

          . " -signer $smdir/smrsa1.pem -out test2.cms",

        "-verify -in test2.cms -inform DER "

          . " -CAfile $smdir/smroot.pem -out smtst.txt -content smcont.txt"

    ],

    [

        "signed content test streaming BER format, DSA key",

        "-sign -in smcont.txt -outform DER -nodetach"

          . " -stream -signer $smdir/smdsa1.pem -out test.cms",

        "-verify -in test.cms -inform DER "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

        "signed content test streaming BER format, 2 DSA and 2 RSA keys",

        "-sign -in smcont.txt -outform DER -nodetach"

          . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem"

          . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem"

          . " -stream -out test.cms",

        "-verify -in test.cms -inform DER "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

"signed content test streaming BER format, 2 DSA and 2 RSA keys, no attributes",

        "-sign -in smcont.txt -outform DER -noattr -nodetach"

          . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem"

          . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem"

          . " -stream -out test.cms",

        "-verify -in test.cms -inform DER "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

        "signed content test streaming S/MIME format, 2 DSA and 2 RSA keys",

        "-sign -in smcont.txt -nodetach"

          . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem"

          . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem"

          . " -stream -out test.cms",

        "-verify -in test.cms "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

"signed content test streaming multipart S/MIME format, 2 DSA and 2 RSA keys",

        "-sign -in smcont.txt"

          . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem"

          . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem"

          . " -stream -out test.cms",

        "-verify -in test.cms "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

        "enveloped content test streaming S/MIME format, 3 recipients",

        "-encrypt -in smcont.txt"

          . " -stream -out test.cms"

          . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ",

        "-decrypt -recip $smdir/smrsa1.pem -in test.cms -out smtst.txt"

    ],

    [

"enveloped content test streaming S/MIME format, 3 recipients, 3rd used",

        "-encrypt -in smcont.txt"

          . " -stream -out test.cms"

          . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ",

        "-decrypt -recip $smdir/smrsa3.pem -in test.cms -out smtst.txt"

    ],

    [

"enveloped content test streaming S/MIME format, 3 recipients, key only used",

        "-encrypt -in smcont.txt"

          . " -stream -out test.cms"

          . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ",

        "-decrypt -inkey $smdir/smrsa3.pem -in test.cms -out smtst.txt"

    ],

    [

"enveloped content test streaming S/MIME format, AES-256 cipher, 3 recipients",

        "-encrypt -in smcont.txt"

          . " -aes256 -stream -out test.cms"

          . " $smdir/smrsa1.pem $smdir/smrsa2.pem $smdir/smrsa3.pem ",

        "-decrypt -recip $smdir/smrsa1.pem -in test.cms -out smtst.txt"

    ],

);

my @smime_cms_tests = (

    [

        "signed content test streaming BER format, 2 DSA and 2 RSA keys, keyid",

        "-sign -in smcont.txt -outform DER -nodetach -keyid"

          . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem"

          . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem"

          . " -stream -out test.cms",

        "-verify -in test.cms -inform DER "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

        "signed content test streaming PEM format, 2 DSA and 2 RSA keys",

        "-sign -in smcont.txt -outform PEM -nodetach"

          . " -signer $smdir/smrsa1.pem -signer $smdir/smrsa2.pem"

          . " -signer $smdir/smdsa1.pem -signer $smdir/smdsa2.pem"

          . " -stream -out test.cms",

        "-verify -in test.cms -inform PEM "

	  . " -CAfile $smdir/smroot.pem -out smtst.txt"

    ],

    [

        "data content test streaming PEM format",

        "-data_create -in smcont.txt -outform PEM -nodetach"

          . " -stream -out test.cms",

        "-data_out -in test.cms -inform PEM -out smtst.txt"

    ],

    [

        "encrypted content test streaming PEM format, 128 bit RC2 key",

        "-EncryptedData_encrypt -in smcont.txt -outform PEM"

          . " -rc2 -secretkey 000102030405060708090A0B0C0D0E0F"

          . " -stream -out test.cms",

        "-EncryptedData_decrypt -in test.cms -inform PEM "

          . " -secretkey 000102030405060708090A0B0C0D0E0F -out smtst.txt"

    ],

    [

        "encrypted content test streaming PEM format, 40 bit RC2 key",

        "-EncryptedData_encrypt -in smcont.txt -outform PEM"

          . " -rc2 -secretkey 0001020304"

          . " -stream -out test.cms",

        "-EncryptedData_decrypt -in test.cms -inform PEM "

          . " -secretkey 0001020304 -out smtst.txt"

    ],

    [

        "encrypted content test streaming PEM format, triple DES key",

        "-EncryptedData_encrypt -in smcont.txt -outform PEM"

          . " -des3 -secretkey 000102030405060708090A0B0C0D0E0F1011121314151617"

          . " -stream -out test.cms",

        "-EncryptedData_decrypt -in test.cms -inform PEM "

          . " -secretkey 000102030405060708090A0B0C0D0E0F1011121314151617"

          . " -out smtst.txt"

    ],

    [

        "encrypted content test streaming PEM format, 128 bit AES key",

        "-EncryptedData_encrypt -in smcont.txt -outform PEM"

          . " -aes128 -secretkey 000102030405060708090A0B0C0D0E0F"

          . " -stream -out test.cms",

        "-EncryptedData_decrypt -in test.cms -inform PEM "

          . " -secretkey 000102030405060708090A0B0C0D0E0F -out smtst.txt"

    ],

);

my @smime_cms_comp_tests = (

    [

        "compressed content test streaming PEM format",

        "-compress -in smcont.txt -outform PEM -nodetach"

          . " -stream -out test.cms",

        "-uncompress -in test.cms -inform PEM -out smtst.txt"

    ]

);

print "CMS => PKCS#7 compatibility tests\n";

run_smime_tests( \$badcmd, \@smime_pkcs7_tests, $cmd, $cmd2 );

print "CMS <= PKCS#7 compatibility tests\n";

run_smime_tests( \$badcmd, \@smime_pkcs7_tests, $cmd2, $cmd );

print "CMS <=> CMS consistency tests\n";

run_smime_tests( \$badcmd, \@smime_pkcs7_tests, $cmd, $cmd );

run_smime_tests( \$badcmd, \@smime_cms_tests,   $cmd, $cmd );

if ( `$ossl_path version -f` =~ /ZLIB/ ) {

    run_smime_tests( \$badcmd, \@smime_cms_comp_tests, $cmd, $cmd );

}

else {

    print "Zlib not supported: compression tests skipped\n";

}

if ($badcmd) {

    print "$badcmd TESTS FAILED!!\n";

}

else {

    print "ALL TESTS SUCCESSFUL.\n";

}

sub run_smime_tests {

    my ( $rv, $aref, $scmd, $vcmd ) = @_;

    foreach $smtst (@$aref) {

        my ( $tnam, $rscmd, $rvcmd ) = @$smtst;

        system( $scmd . $rscmd );

        if ($?) {

            print "$tnam: generation error\n";

            $$rv++;

            next;

        }

        system( $vcmd . $rvcmd );

        if ($?) {

            print "$tnam: verify error\n";

            $$rv++;

            next;

        }

        print "$tnam: OK\n";

    }

}

Some test content for OpenSSL CMS

 No newline at end of file

-----BEGIN DSA PRIVATE KEY-----

MIIBuwIBAAKBgQDFJfsIPOIawMO5biw+AoYUhNVxReBOLQosU3Qv4B8krac0BNr3

OjSGLh1wZxHqhlAE0QmasTaKojuk20nNWeFnczSz6vDl0IVJEhS8VYor5kt9gLqt

GcoAgsf4gRDIutJyQDaNn3IVY89uXUVIoexvQeLQDBCgQPC5O8rJdqBwtwIVAK2J

jt+dqk07eQUE59koYUEKyNorAoGBAI4IEpusf8G14kCHmRtnHXM2tG5EWJDmW6Qt

wjqvWp1GKUx5WFy1tVWR9nl5rL0Di+kNdENo+SkKj7h3uDulGOI6T0mQYbV2h1IK

+FMOGnOqvZ8eNTE2n4PGTo5puZ63LBm+QYrQsrNiUY4vakLFQ2rEK/SLwdsDFK4Z

SJCBQw5zAoGATQlPPF+OeU8nu3rsdXGDiZdJzOkuCce3KQfTABA9C+Dk4CVcvBdd

YRLGpnykumkNTO1sTO+4/Gphsuje1ujK9td4UEhdYqylCe5QjEMrszDlJtelDQF9

C0yhdjKGTP0kxofLhsGckcuQvcKEKffT2pDDKJIy4vWQO0UyJl1vjLcCFG2uiGGx

9fMUZq1v0ePD4Wo0Xkxo

-----END DSA PRIVATE KEY-----

-----BEGIN CERTIFICATE-----

MIIDpDCCAw2gAwIBAgIJAMtotfHYdEsWMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV

BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv

TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDlaFw0xNjA1MTAxMzUzMDlaMEUx

CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU

ZXN0IFMvTUlNRSBFRSBEU0EgIzEwggG3MIIBLAYHKoZIzjgEATCCAR8CgYEAxSX7

CDziGsDDuW4sPgKGFITVcUXgTi0KLFN0L+AfJK2nNATa9zo0hi4dcGcR6oZQBNEJ

mrE2iqI7pNtJzVnhZ3M0s+rw5dCFSRIUvFWKK+ZLfYC6rRnKAILH+IEQyLrSckA2

jZ9yFWPPbl1FSKHsb0Hi0AwQoEDwuTvKyXagcLcCFQCtiY7fnapNO3kFBOfZKGFB

CsjaKwKBgQCOCBKbrH/BteJAh5kbZx1zNrRuRFiQ5lukLcI6r1qdRilMeVhctbVV

kfZ5eay9A4vpDXRDaPkpCo+4d7g7pRjiOk9JkGG1dodSCvhTDhpzqr2fHjUxNp+D

xk6OabmetywZvkGK0LKzYlGOL2pCxUNqxCv0i8HbAxSuGUiQgUMOcwOBhAACgYBN

CU88X455Tye7eux1cYOJl0nM6S4Jx7cpB9MAED0L4OTgJVy8F11hEsamfKS6aQ1M

7WxM77j8amGy6N7W6Mr213hQSF1irKUJ7lCMQyuzMOUm16UNAX0LTKF2MoZM/STG

h8uGwZyRy5C9woQp99PakMMokjLi9ZA7RTImXW+Mt6OBgzCBgDAdBgNVHQ4EFgQU

4Qfbhpi5yqXaXuCLXj427mR25MkwHwYDVR0jBBgwFoAUE89Lp7uJLrM4Vxd2xput

aFvl7RcwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBsAwIAYDVR0RBBkwF4EV

c21pbWVkc2ExQG9wZW5zc2wub3JnMA0GCSqGSIb3DQEBBQUAA4GBAFrdUzKK1pWO

kd02S423KUBc4GWWyiGlVoEO7WxVhHLJ8sm67X7OtJOwe0UGt+Nc5qLtyJYSirw8

phjiTdNpQCTJ8+Kc56tWkJ6H7NAI4vTJtPL5BM/EmeYrVSU9JI9xhqpyKw9IBD+n

hRJ79W9FaiJRvaAOX+TkyTukJrxAWRyv

-----END CERTIFICATE-----

-----BEGIN DSA PRIVATE KEY-----

MIIBvAIBAAKBgQDFJfsIPOIawMO5biw+AoYUhNVxReBOLQosU3Qv4B8krac0BNr3

OjSGLh1wZxHqhlAE0QmasTaKojuk20nNWeFnczSz6vDl0IVJEhS8VYor5kt9gLqt

GcoAgsf4gRDIutJyQDaNn3IVY89uXUVIoexvQeLQDBCgQPC5O8rJdqBwtwIVAK2J

jt+dqk07eQUE59koYUEKyNorAoGBAI4IEpusf8G14kCHmRtnHXM2tG5EWJDmW6Qt

wjqvWp1GKUx5WFy1tVWR9nl5rL0Di+kNdENo+SkKj7h3uDulGOI6T0mQYbV2h1IK

+FMOGnOqvZ8eNTE2n4PGTo5puZ63LBm+QYrQsrNiUY4vakLFQ2rEK/SLwdsDFK4Z

SJCBQw5zAoGBAIPmO8BtJ+Yac58trrPwq9b/6VW3jQTWzTLWSH84/QQdqQa+Pz3v

It/+hHM0daNF5uls8ICsPL1aLXmRx0pHvIyb0aAzYae4T4Jv/COPDMTdKbA1uitJ

VbkGZrm+LIrs7I9lOkb4T0vI6kL/XdOCXY1469zsqCgJ/O2ibn6mq0nWAhR716o2

Nf8SimTZYB0/CKje6M5ufA==

-----END DSA PRIVATE KEY-----

-----BEGIN CERTIFICATE-----

MIIDpTCCAw6gAwIBAgIJAMtotfHYdEsXMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV

BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv

TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDlaFw0xNjA1MTAxMzUzMDlaMEUx

CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU

ZXN0IFMvTUlNRSBFRSBEU0EgIzIwggG4MIIBLAYHKoZIzjgEATCCAR8CgYEAxSX7

CDziGsDDuW4sPgKGFITVcUXgTi0KLFN0L+AfJK2nNATa9zo0hi4dcGcR6oZQBNEJ

mrE2iqI7pNtJzVnhZ3M0s+rw5dCFSRIUvFWKK+ZLfYC6rRnKAILH+IEQyLrSckA2

jZ9yFWPPbl1FSKHsb0Hi0AwQoEDwuTvKyXagcLcCFQCtiY7fnapNO3kFBOfZKGFB

CsjaKwKBgQCOCBKbrH/BteJAh5kbZx1zNrRuRFiQ5lukLcI6r1qdRilMeVhctbVV

kfZ5eay9A4vpDXRDaPkpCo+4d7g7pRjiOk9JkGG1dodSCvhTDhpzqr2fHjUxNp+D

xk6OabmetywZvkGK0LKzYlGOL2pCxUNqxCv0i8HbAxSuGUiQgUMOcwOBhQACgYEA

g+Y7wG0n5hpzny2us/Cr1v/pVbeNBNbNMtZIfzj9BB2pBr4/Pe8i3/6EczR1o0Xm

6WzwgKw8vVoteZHHSke8jJvRoDNhp7hPgm/8I48MxN0psDW6K0lVuQZmub4siuzs

j2U6RvhPS8jqQv9d04JdjXjr3OyoKAn87aJufqarSdajgYMwgYAwHQYDVR0OBBYE

FHsAGNfVltSYUq4hC+YVYwsYtA+dMB8GA1UdIwQYMBaAFBPPS6e7iS6zOFcXdsab

rWhb5e0XMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgbAMCAGA1UdEQQZMBeB

FXNtaW1lZHNhMkBvcGVuc3NsLm9yZzANBgkqhkiG9w0BAQUFAAOBgQCx9BtCbaYF

FXjLClkuKXbESaDZA1biPgY25i00FsUzARuhCpqD2v+0tu5c33ZzIhL6xlvBRU5l

6Atw/xpZhae+hdBEtxPJoGekLLrHOau7Md3XwDjV4lFgcEJkWZoaSOOIK+4D5jF0

jZWtHjnwEzuLYlo7ScHSsbcQfjH0M1TP5A==

-----END CERTIFICATE-----

-----BEGIN DSA PRIVATE KEY-----

MIIBvAIBAAKBgQDFJfsIPOIawMO5biw+AoYUhNVxReBOLQosU3Qv4B8krac0BNr3

OjSGLh1wZxHqhlAE0QmasTaKojuk20nNWeFnczSz6vDl0IVJEhS8VYor5kt9gLqt

GcoAgsf4gRDIutJyQDaNn3IVY89uXUVIoexvQeLQDBCgQPC5O8rJdqBwtwIVAK2J

jt+dqk07eQUE59koYUEKyNorAoGBAI4IEpusf8G14kCHmRtnHXM2tG5EWJDmW6Qt

wjqvWp1GKUx5WFy1tVWR9nl5rL0Di+kNdENo+SkKj7h3uDulGOI6T0mQYbV2h1IK

+FMOGnOqvZ8eNTE2n4PGTo5puZ63LBm+QYrQsrNiUY4vakLFQ2rEK/SLwdsDFK4Z

SJCBQw5zAoGAYzOpPmh8Je1IDauEXhgaLz14wqYUHHcrj2VWVJ6fRm8GhdQFJSI7

GUk08pgKZSKic2lNqxuzW7/vFxKQ/nvzfytY16b+2i+BR4Q6yvMzCebE1hHVg0Ju

TwfUMwoFEOhYP6ZwHSUiQl9IBMH9TNJCMwYMxfY+VOrURFsjGTRUgpwCFQCIGt5g

Y+XZd0Sv69CatDIRYWvaIA==

-----END DSA PRIVATE KEY-----

-----BEGIN CERTIFICATE-----

MIIDpDCCAw2gAwIBAgIJAMtotfHYdEsYMA0GCSqGSIb3DQEBBQUAMEQxCzAJBgNV

BAYTAlVLMRYwFAYDVQQKEw1PcGVuU1NMIEdyb3VwMR0wGwYDVQQDExRUZXN0IFMv

TUlNRSBSU0EgUm9vdDAeFw0wODAyMjIxMzUzMDlaFw0xNjA1MTAxMzUzMDlaMEUx

CzAJBgNVBAYTAlVLMRYwFAYDVQQKDA1PcGVuU1NMIEdyb3VwMR4wHAYDVQQDDBVU

ZXN0IFMvTUlNRSBFRSBEU0EgIzMwggG3MIIBLAYHKoZIzjgEATCCAR8CgYEAxSX7

CDziGsDDuW4sPgKGFITVcUXgTi0KLFN0L+AfJK2nNATa9zo0hi4dcGcR6oZQBNEJ

mrE2iqI7pNtJzVnhZ3M0s+rw5dCFSRIUvFWKK+ZLfYC6rRnKAILH+IEQyLrSckA2

jZ9yFWPPbl1FSKHsb0Hi0AwQoEDwuTvKyXagcLcCFQCtiY7fnapNO3kFBOfZKGFB

CsjaKwKBgQCOCBKbrH/BteJAh5kbZx1zNrRuRFiQ5lukLcI6r1qdRilMeVhctbVV

kfZ5eay9A4vpDXRDaPkpCo+4d7g7pRjiOk9JkGG1dodSCvhTDhpzqr2fHjUxNp+D

xk6OabmetywZvkGK0LKzYlGOL2pCxUNqxCv0i8HbAxSuGUiQgUMOcwOBhAACgYBj

M6k+aHwl7UgNq4ReGBovPXjCphQcdyuPZVZUnp9GbwaF1AUlIjsZSTTymAplIqJz

aU2rG7Nbv+8XEpD+e/N/K1jXpv7aL4FHhDrK8zMJ5sTWEdWDQm5PB9QzCgUQ6Fg/

pnAdJSJCX0gEwf1M0kIzBgzF9j5U6tREWyMZNFSCnKOBgzCBgDAdBgNVHQ4EFgQU

VhpVXqQ/EzUMdxLvP7o9EhJ8h70wHwYDVR0jBBgwFoAUE89Lp7uJLrM4Vxd2xput

aFvl7RcwDAYDVR0TAQH/BAIwADAOBgNVHQ8BAf8EBAMCBsAwIAYDVR0RBBkwF4EV

c21pbWVkc2EzQG9wZW5zc2wub3JnMA0GCSqGSIb3DQEBBQUAA4GBACM9e75EQa8m

k/AZkH/tROqf3yeqijULl9x8FjFatqoY+29OM6oMGM425IqSkKd2ipz7OxO0SShu

rE0O3edS7DvYBwvhWPviRaYBMyZ4iFJVup+fOzoYK/j/bASxS3BHQBwb2r4rhe25

OlTyyFEk7DJyW18YFOG97S1P52oQ5f5x

-----END CERTIFICATE-----