pax_global_header00006660000000000000000000000064151027230510014506gustar00rootroot0000000000000052 comment=7900bec2e4f4916b0d8994e5e7f3b57ca10ddb68 excon-1.3.1/000077500000000000000000000000001510272305100126245ustar00rootroot00000000000000excon-1.3.1/.document000066400000000000000000000000741510272305100144440ustar00rootroot00000000000000README.rdoc lib/**/*.rb bin/* features/**/*.feature LICENSE excon-1.3.1/.github/000077500000000000000000000000001510272305100141645ustar00rootroot00000000000000excon-1.3.1/.github/FUNDING.yml000066400000000000000000000000501510272305100157740ustar00rootroot00000000000000github: geemus tidelift: rubygems/excon excon-1.3.1/.github/dependabot.yml000066400000000000000000000003211510272305100170100ustar00rootroot00000000000000version: 2 updates: - package-ecosystem: "bundler" directory: "/" schedule: interval: "weekly" - package-ecosystem: "github-actions" directory: "/" schedule: interval: "weekly" excon-1.3.1/.github/workflows/000077500000000000000000000000001510272305100162215ustar00rootroot00000000000000excon-1.3.1/.github/workflows/certs.yml000066400000000000000000000015431510272305100200670ustar00rootroot00000000000000# This workflow uses actions that are not certified by GitHub. # They are provided by a third-party and are governed by # separate terms of service, privacy policy, and support # documentation. # This workflow will download a prebuilt Ruby version, install dependencies and run tests with Rake # For more information see: https://github.com/marketplace/actions/setup-ruby-jruby-and-truffleruby name: Check for updated cert bundle on: schedule: - cron: "30 1 * * *" workflow_dispatch: permissions: contents: read jobs: certs: runs-on: ubuntu-latest steps: - uses: actions/checkout@v5 - name: Set up Ruby uses: ruby/setup-ruby@v1 with: ruby-version: '3.4' bundler-cache: true # runs 'bundle install' and caches installed gems automatically - name: Check certificates run: bundle exec rake test_certs excon-1.3.1/.github/workflows/ci.yml000066400000000000000000000021471510272305100173430ustar00rootroot00000000000000# This workflow uses actions that are not certified by GitHub. # They are provided by a third-party and are governed by # separate terms of service, privacy policy, and support # documentation. # This workflow will download a prebuilt Ruby version, install dependencies and run tests with Rake # For more information see: https://github.com/marketplace/actions/setup-ruby-jruby-and-truffleruby name: CI on: push: branches: [ master ] pull_request: branches: [ master ] schedule: - cron: '0 0 * * 1' # At 00:00 on Monday. permissions: contents: read jobs: test: continue-on-error: ${{ contains(fromJSON('["head", "jruby"]'), matrix.ruby-version) }} runs-on: ubuntu-latest strategy: matrix: ruby-version: ['3.1', '3.2', '3.3', '3.4', 'head', 'jruby'] timeout-minutes: 5 steps: - uses: actions/checkout@v5 - name: Set up Ruby uses: ruby/setup-ruby@v1 with: ruby-version: ${{ matrix.ruby-version }} bundler-cache: true # runs 'bundle install' and caches installed gems automatically - name: Run tests run: bundle exec rake excon-1.3.1/.gitignore000066400000000000000000000001531510272305100146130ustar00rootroot00000000000000*.rbc *.sw? .bundle .DS_Store .yardoc .rvmrc .ruby-version .ruby-gemset coverage doc rdoc pkg Gemfile.lock excon-1.3.1/.rspec000066400000000000000000000000511510272305100137350ustar00rootroot00000000000000--color --require spec_helper --format d excon-1.3.1/.rubocop.yml000066400000000000000000000001371510272305100150770ustar00rootroot00000000000000require: - rubocop-performance - rubocop-rake - rubocop-rspec AllCops: NewCops: enable excon-1.3.1/CONTRIBUTING.md000066400000000000000000000023131510272305100150540ustar00rootroot00000000000000## Getting Involved New contributors are always welcome, when it doubt please ask questions. We strive to be an open and welcoming community. Please be nice to one another. ### Coding * Pick a task: * Offer feedback on open [pull requests](https://github.com/excon/excon/pulls). * Review open [issues](https://github.com/excon/excon/issues) for things to help on. * [Create an issue](https://github.com/excon/excon/issues/new) to start a discussion on additions or features. * Fork the project, add your changes and tests to cover them in a topic branch. * Commit your changes and rebase against `excon/excon` to ensure everything is up to date. * [Submit a pull request](https://github.com/excon/excon/compare/). ### Non-Coding * Work for [twitter](http://twitter.com)? I'd love to reclaim the unused [@excon](http://twitter.com/excon) account! * Offer feedback on open [issues](https://github.com/excon/excon/issues). * Write and help edit [documentation](https://github.com/excon/excon.github.com). * Translate [documentation](https://github.com/excon/excon.github.com) in to other languages. * Organize or volunteer at events. * Discuss other ideas for contribution with [geemus](mailto:geemus+excon@gmail.com). excon-1.3.1/CONTRIBUTORS.md000066400000000000000000000053071510272305100151100ustar00rootroot00000000000000* Aaron Stone * Adam Avilla * Adam Esterline * Alexander Sandström * Alexandr Burov * Andrew Katz * Andrew Metcalf * Andrew Sullivan Cant * André Diego Piske * Andy Delcambre * Anshul Khandelwal * Anton Chuchkalov * Antonio Terceiro * Ash Wilson * Atul Bhosale * Bart de Water * Ben Burkert * Benedikt Böhm * Bill Mill * Bo Jeanes * Brandur * Brian D. Burns * Brian Hartsock * Bryan Paxton * Caio Chassot * Caius Durling * Carl Hörberg * Carl Hörberg * Carlos Sanchez * Casper Thomsen * Chris Hanks * Christoph Rieß * Christophe Taton * Claudio Poli * Craig Shannon * Damien Mathieu * Dan Hensgen * Dan Peterson * Dan Prince * Dane Harrigan * Daniel Berger * Dave Myron * Dave Newton * Dave Vasilevsky * David Biehl * David Taylor * Dimitrij Denissenko * Dominik Richter * Doug McInnes * Esteban Pastorino * Eugene Howe * Evan Phoenix * Fabian Wiesel * Federico Ravasio * Felix Wolfsteller * Glenn Pratt * Graeme Nelson * Grey Baker * Guillaume Balaine * Hakan Ensari * Hiroshi Hatake * Ian Neubert * Igor Fedoronchuk * Jacob Atzen * James Cox * James Watling * Jean Mertz * Jeremy Hinegardner * Jesse Kempf * Jessica Jiang * Joe Rafaniello * John Keiser * John Leach * Jonas Pfenniger * Jonathan Dance * Jonathan Roes * Joshua B. Smith * Joshua Gross * Joshua Mckinney * Joshua Napoli * Kelly Mahan * Kensuke Nagae * Kimmo Lehto * Koen Rouwhorst * Konstantin Shabanov * Kyle Purkiss * Kyle Rames * Lewis Marshall * Lincoln Stoll * Louis Sobel * Mahemoff * Marco Costa * Markus Bucher * Mathias Meyer * Matt Gauger * Matt Palmer * Matt Sanders * Matt Snyder * Matt Todd * Maurice Schreiber * Max Lincoln * Michael Brodhead * Michael Hale * Michael Rowe * Michael Rykov * Mike Heffner * Milovan Zogovic * Myron Marston * Nathan Long * Nathan Sutton * Nick Osborn * Nicolas Leger * Nicolas Sanguinetti * Paul Gideon Dann * Pavel * Pavel Valena * Peter Meier * Peter Weldon * Phil Ross * Raul Murciano * Richard Godbee * Richard Ramsden * Rohan Mendon * Ruslan Korolev * Ruslan Kyrychuk * Ryan Bigg * Ryan Mohr * Ryan Schlesinger * Ryoji Yoshioka * Sam * Sam Lehman * Sam Withrow * Scott Gonyea * Scott Walkinshaw * Sean Cribbs * Sergio Rubio * Shai Rosenfeld * Stan Hu * Stefan Merettig * Stephen Chu * Swanand Pagnis * Terry Howe * Thom Mahoney & Josh Lane * Thom May * Tim Carey-Smith * Timothée Peignier * Tobias Schmidt * Todd Lunter * Tom Maher * Trym Skaar * Tuomas Silen * Victor Costan * Viven * Vít Ondruch * Wesley Beary * Yusuke Nakamura * Zach Anker * chrisrhoden * dependabot[bot] * dickeyxxx * geemus * geemus (Wesley Beary) * ggoodale * ivan.filenko * jasquat * karimb * marios * mkb * nathannaveen * ojab * patrick brisbin * pavel * phiggins * rin_ne * rinrinne * rkyrychuk * shale * sshaw * starbelly * twrodriguez * wsnarski * zimbatmexcon-1.3.1/Gemfile000066400000000000000000000010411510272305100141130ustar00rootroot00000000000000# frozen_string_literal: true source 'https://rubygems.org' gemspec # gem 'jruby-openssl', '~> 0.10.5', :platforms => :jruby # gem 'rubysl', '~> 2.2.0', :platforms => :rbx gem 'rack', '>= 2.2.3' gem 'rackup' gem 'rubocop' gem 'rubocop-performance' gem 'rubocop-rake' gem 'rubocop-rspec' gem 'unicorn', platforms: %i[mri rbx], groups: %i[development test] # group :benchmark do # gem 'em-http-request' # gem 'httparty' # gem 'rest-client' # gem 'tach' # gem 'typhoeus' # gem 'sinatra' # gem 'streamly_ffi' # gem 'curb' # end excon-1.3.1/LICENSE.md000066400000000000000000000021751510272305100142350ustar00rootroot00000000000000The MIT License (MIT) Copyright (c) 2009-2019 [CONTRIBUTORS.md](https://github.com/excon/excon/blob/master/CONTRIBUTORS.md) Permission is hereby granted, free of charge, to any person obtaining a copy of this software and associated documentation files (the "Software"), to deal in the Software without restriction, including without limitation the rights to use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies of the Software, and to permit persons to whom the Software is furnished to do so, subject to the following conditions: The above copyright notice and this permission notice shall be included in all copies or substantial portions of the Software. THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. excon-1.3.1/README.md000066400000000000000000000522071510272305100141110ustar00rootroot00000000000000# excon Usable, fast, simple Ruby HTTP 1.1 Excon was designed to be simple, fast and performant. It works great as a general HTTP(s) client and is particularly well suited to usage in API clients. [![Build Status](https://github.com/excon/excon/actions/workflows/ci.yml/badge.svg)](https://github.com/excon/excon/actions/workflows/ci.yml) [![Gem Version](https://badge.fury.io/rb/excon.svg)](https://rubygems.org/gems/excon) - [Getting Started](#getting-started) - [Options](#options) - [Chunked Requests](#chunked-requests) - [Pipelining Requests](#pipelining-requests) - [Streaming Responses](#streaming-responses) - [Proxy Support](#proxy-support) - [Reusable ports](#reusable-ports) - [Unix Socket Support](#unix-socket-support) - [Stubs](#stubs) - [Instrumentation](#instrumentation) - [HTTPS client certificate](#https-client-certificate) - [HTTPS/SSL Issues](#httpsssl-issues) - [Getting Help](#getting-help) - [Contributing](#contributing) - [Plugins and Middlewares](#plugins-and-middlewares) - [License](#license) ## Getting Started Install the gem. ``` $ sudo gem install excon ``` Require with rubygems. ```ruby require 'rubygems' require 'excon' ``` The easiest way to get started is by using one-off requests. Supported one-off request methods are `connect`, `delete`, `get`, `head`, `options`, `post`, `put`, and `trace`. Requests return a response object which has `body`, `headers`, `remote_ip` and `status` attributes. ```ruby response = Excon.get('http://geemus.com') response.body # => "..." response.headers # => {...} response.remote_ip # => "..." response.status # => 200 ``` For API clients or other ongoing usage, reuse a connection across multiple requests to share options and improve performance. ```ruby connection = Excon.new('http://geemus.com') get_response = connection.get post_response = connection.post(:path => '/foo') delete_response = connection.delete(:path => '/bar') ``` By default, each connection is non-persistent. This means that each request made against a connection behaves like a one-off request. Each request will establish a socket connection to the server, then close the socket once the request is complete. To use a persistent connection, use the `:persistent` option: ```ruby connection = Excon.new('http://geemus.com', :persistent => true) ``` The initial request will establish a socket connection to the server and leave the socket open. Subsequent requests will reuse that socket. You may call `Connection#reset` at any time to close the underlying socket, and the next request will establish a new socket connection. You may also control persistence on a per-request basis by setting the `:persistent` option for each request. ```ruby connection = Excon.new('http://geemus.com') # non-persistent by default connection.get # socket established, then closed connection.get(:persistent => true) # socket established, left open connection.get(:persistent => true) # socket reused connection.get # socket reused, then closed connection = Excon.new('http://geemus.com', :persistent => true) connection.get # socket established, left open connection.get(:persistent => false) # socket reused, then closed connection.get(:persistent => false) # socket established, then closed connection.get # socket established, left open connection.get # socket reused ``` Note that sending a request with `:persistent => false` to close the socket will also send `Connection: close` to inform the server the connection is no longer needed. `Connection#reset` will simply close our end of the socket. ## Options Both one-off and persistent connections support many other options. The final options for a request are built up by starting with `Excon.defaults`, then merging in options from the connection and finally merging in any request options. In this way you have plenty of options on where and how to set options and can easily setup connections or defaults to match common options for a particular endpoint. Here are a few common examples: ```ruby # Output debug info, similar to ENV['EXCON_DEBUG'] connection = Excon.new('http://geemus.com/', :debug => true) # Custom headers Excon.get('http://geemus.com', :headers => {'Authorization' => 'Basic 0123456789ABCDEF'}) connection.get(:headers => {'Authorization' => 'Basic 0123456789ABCDEF'}) # Changing query strings connection = Excon.new('http://geemus.com/') connection.get(:query => {:foo => 'bar'}) # POST body encoded with application/x-www-form-urlencoded Excon.post('http://geemus.com', :body => 'language=ruby&class=fog', :headers => { "Content-Type" => "application/x-www-form-urlencoded" }) # same again, but using URI to build the body of parameters Excon.post('http://geemus.com', :body => URI.encode_www_form(:language => 'ruby', :class => 'fog'), :headers => { "Content-Type" => "application/x-www-form-urlencoded" }) # request takes a method option, accepting either a symbol or string connection.request(:method => :get) connection.request(:method => 'GET') # expect one or more status codes, or raise an error connection.request(:expects => [200, 201], :method => :get) # use basic authentication by supplying credentials in the URL or as parameters connection = Excon.new('http://username:password@secure.geemus.com') # Note: username & password is unescaped for request, so you should provide escaped values here # i. e. instead of `password: 'pa%%word'` you should use `password: Excon::Utils.escape_uri('pa%%word')`, # which return `pa%25%25word` connection = Excon.new('http://secure.geemus.com', :user => 'username', :password => 'password') # use custom uri parser require 'addressable/uri' connection = Excon.new('http://geemus.com/', uri_parser: Addressable::URI) ``` Compared to web browsers and other http client libraries, e.g. curl, Excon is a bit more low-level and doesn't assume much by default. If you are seeing different results compared to other clients, the following options might help: ```ruby # opt-in to omitting port from http:80 and https:443 connection = Excon.new('http://geemus.com/', :omit_default_port => true) # accept gzip encoding connection = Excon.new('http://geemus.com/', :headers => { "Accept-Encoding" => "gzip" }) # turn off peer verification (less secure) Excon.defaults[:ssl_verify_peer] = false connection = Excon.new('https://...') ``` ## Timeouts and Retries You can modify timeouts and define whether and how many (blocking) retries Excon should attempt if errors occur. ```ruby # this request can be repeated safely, so retry on errors up to 4 times connection.request(:idempotent => true) # this request can be repeated safely, retry up to 6 times connection.request(:idempotent => true, :retry_limit => 6) # this request can be repeated safely, retry up to 6 times and sleep 5 seconds # in between each retry connection.request(:idempotent => true, :retry_limit => 6, :retry_interval => 5) # specify the errors on which to retry (default Timeout, Socket, HTTPStatus) # only retry on timeouts connection.request(:idempotent => true, :retry_limit => 6, :retry_interval => 5, :retry_errors => [Excon::Error::Timeout] ) # set longer read_timeout (default is 60 seconds) connection.request(:read_timeout => 360) # set longer write_timeout (default is 60 seconds) connection.request(:write_timeout => 360) # set a request timeout in seconds (default is no timeout). # the timeout may be an integer or a float to support sub-second granularity (e.g., 1, 60, 0.005 and 3.5). connection.request(:timeout => 0.1) # timeout if the entire request takes longer than 100 milliseconds # Enable the socket option TCP_NODELAY on the underlying socket. # # This can improve response time when sending frequent short # requests in time-sensitive scenarios. # connection = Excon.new('http://geemus.com/', :tcp_nodelay => true) # opt-in to having Excon add a default port (http:80 and https:443) connection = Excon.new('http://geemus.com/', :include_default_port => true) # set longer connect_timeout (default is 60 seconds) connection = Excon.new('http://geemus.com/', :connect_timeout => 360) # opt-out of nonblocking operations for performance and/or as a workaround connection = Excon.new('http://geemus.com/', :nonblock => false) # DEPRECATED in favour of `resolv_resolver` (see below) # set up desired dns_timeouts for resolving addresses (default is set by Resolv) # it accepts an integer or an array of integers for retrying with different timeouts # see Resolv::DNS#timeouts for more details (https://ruby-doc.org/3.2.2/stdlibs/resolv/Resolv/DNS.html#method-i-timeouts-3D) connection = Excon.new('http://geemus.com/', :dns_timeouts => 3) # set a custom resolver for Resolv # you can use custom nameservers and timeouts # `timeouts` accepts an integer or an array of integers for retrying with different timeouts # see Resolv::DNS#timeouts for more details (https://ruby-doc.org/3.2.2/stdlibs/resolv/Resolv/DNS.html#method-i-timeouts-3D) dns_resolver = Resolv::DNS.new(nameserver: ['127.0.0.1']) dns_resolver.timeouts = 3 resolver = Resolv.new([Resolv::Hosts.new, dns_resolver]) connection = Excon.new('http://geemus.com', :resolv_resolver => resolver) ``` ## Chunked Requests You can make `Transfer-Encoding: chunked` requests by passing a block that will deliver chunks, delivering an empty chunk to signal completion. ```ruby file = File.open('data') chunker = lambda do # Excon.defaults[:chunk_size] defaults to 1048576, ie 1MB # to_s will convert the nil received after everything is read to the final empty chunk file.read(Excon.defaults[:chunk_size]).to_s end Excon.post('http://geemus.com', :request_block => chunker) file.close ``` Iterating in this way allows you to have more granular control over writes and to write things where you can not calculate the overall length up front. ## Pipelining Requests You can make use of HTTP pipelining to improve performance. Instead of the normal request/response cycle, pipelining sends a series of requests and then receives a series of responses. You can take advantage of this using the `requests` method, which takes an array of params where each is a hash like request would receive and returns an array of responses. ```ruby connection = Excon.new('http://geemus.com/') connection.requests([{:method => :get}, {:method => :get}]) ``` By default, each call to `requests` will use a separate persistent socket connection. To make multiple `requests` calls using a single persistent connection, set `:persistent => true` when establishing the connection. For large numbers of simultaneous requests please consider using the `batch_requests` method. This will automatically slice up the requests into batches based on the file descriptor limit of your operating system. The results are the same as the `requests` method, but using this method can help prevent timeout errors. ```ruby large_array_of_requests = [{:method => :get, :path => 'some_path'}, { ... }] # Hundreds of items connection.batch_requests(large_array_of_requests) ``` ## Streaming Responses You can stream responses by passing a block that will receive each chunk. ```ruby streamer = lambda do |chunk, remaining_bytes, total_bytes| puts chunk puts "Remaining: #{remaining_bytes.to_f / total_bytes}%" end Excon.get('http://geemus.com', :response_block => streamer) ``` Iterating over each chunk will allow you to do work on the response incrementally without buffering the entire response first. For very large responses this can lead to significant memory savings. ## Proxy Support You can specify a proxy URL that Excon will use with both HTTP and HTTPS connections: ```ruby connection = Excon.new('http://geemus.com', :proxy => 'http://my.proxy:3128') connection.request(:method => 'GET') Excon.get('http://geemus.com', :proxy => 'http://my.proxy:3128') ``` The proxy URL must be fully specified, including scheme (e.g. "http://") and port. Proxy support must be set when establishing a connection object and cannot be overridden in individual requests. NOTE: Excon will use `HTTP_PROXY` and `HTTPS_PROXY` environment variables. If set they will take precedence over any :proxy option specified in code. If "HTTPS_PROXY" is not set, "HTTP_PROXY" will be used for both HTTP and HTTPS connections. To disable this behavior, set the `NO_PROXY` environment variable and other environment variable proxy settings will be disregarded. ## Reusable ports For advanced cases where you'd like to reuse the local port assigned to the excon socket in another socket, use the `:reuseaddr` option. ```ruby connection = Excon.new('http://geemus.com', :reuseaddr => true) connection.get s = Socket.new(Socket::AF_INET, Socket::SOCK_STREAM, 0) s.setsockopt(Socket::SOL_SOCKET, Socket::SO_REUSEADDR, true) if defined?(Socket::SO_REUSEPORT) s.setsockopt(Socket::SOL_SOCKET, Socket::SO_REUSEPORT, true) end s.bind(Socket.pack_sockaddr_in(connection.local_port, connection.local_address)) s.connect(Socket.pack_sockaddr_in(80, '1.2.3.4')) puts s.read s.close ``` ## Unix Socket Support The Unix socket will work for one-off requests and multiuse connections. A Unix socket path must be provided separate from the resource path. ```ruby connection = Excon.new('unix:///', :socket => '/tmp/unicorn.sock') connection.request(:method => :get, :path => '/ping') Excon.get('unix:///ping', :socket => '/tmp/unicorn.sock') ``` NOTE: Proxies will be ignored when using a Unix socket, since a Unix socket has to be local. ## Stubs You can stub out requests for testing purposes by enabling mock mode on a connection. ```ruby connection = Excon.new('http://example.com', :mock => true) ``` Or by enabling mock mode for a request. ```ruby connection.request(:method => :get, :path => 'example', :mock => true) ``` Add stubs by providing the request attributes to match and response attributes to return. Response params can be specified as either a hash or block which will yield with the request params. ```ruby Excon.stub({}, {:body => 'body', :status => 200}) Excon.stub({}, lambda {|request_params| {:body => request_params[:body], :status => 200}}) ``` Omitted attributes are assumed to match, so this stub will match _any_ request and return an Excon::Response with a body of 'body' and status of 200. ```ruby Excon.stub({ :scheme => 'https', :host => 'example.com', :path => /\/examples\/\d+/, :port => 443 }, { body: 'body', status: 200 }) ``` The above code will stub this: ```ruby Excon.get('https://example.com/examples/123', mock: true) ``` You can add whatever stubs you might like this way and they will be checked against in the order they were added, if none of them match then excon will raise an `Excon::Errors::StubNotFound` error to let you know. If you want to allow unstubbed requests without raising `StubNotFound`, set the `allow_unstubbed_requests` option either globally or per request. ```ruby connection = Excon.new('http://example.com', :mock => true, :allow_unstubbed_requests => true) ``` To remove a previously defined stub, or all stubs: ```ruby Excon.unstub({}) # remove first/oldest stub matching {} Excon.stubs.clear # remove all stubs ``` For example, if using RSpec for your test suite you can clear stubs after running each example: ```ruby config.after(:each) do Excon.stubs.clear end ``` You can also modify `Excon.defaults` to set a stub for all requests, so for a test suite you might do this: ```ruby # Mock by default and stub any request as success config.before(:all) do Excon.defaults[:mock] = true Excon.stub({}, {:body => 'Fallback', :status => 200}) # Add your own stubs here or in specific tests... end ``` By default stubs are shared globally, to make stubs unique to each thread, use `Excon.defaults[:stubs] = :local`. ## Instrumentation Excon calls can be timed using the [ActiveSupport::Notifications](http://api.rubyonrails.org/classes/ActiveSupport/Notifications.html) API. ```ruby connection = Excon.new( 'http://geemus.com', :instrumentor => ActiveSupport::Notifications ) ``` Excon will then instrument each request, retry, and error. The corresponding events are named `excon.request`, `excon.retry`, and `excon.error` respectively. ```ruby ActiveSupport::Notifications.subscribe(/excon/) do |*args| puts "Excon did stuff!" end ``` If you prefer to label each event with a namespace other than "excon", you may specify an alternate name in the constructor: ```ruby connection = Excon.new( 'http://geemus.com', :instrumentor => ActiveSupport::Notifications, :instrumentor_name => 'my_app' ) ``` Note: Excon's ActiveSupport::Notifications implementation has the following event format: `.` which is the opposite of the Rails' implementation. ActiveSupport provides a [subscriber](http://api.rubyonrails.org/classes/ActiveSupport/Subscriber.html) interface which lets you attach a subscriber to a namespace. Due to the incompability above, you won't be able to attach a subscriber to the "excon" namespace out of the box. If you want this functionality, you can use a simple adapter such as this one: ```ruby class ExconToRailsInstrumentor def self.instrument(name, datum, &block) namespace, *event = name.split(".") rails_name = [event, namespace].flatten.join(".") ActiveSupport::Notifications.instrument(rails_name, datum, &block) end end ``` If you don't want to add ActiveSupport to your application, simply define a class which implements the same `#instrument` method like so: ```ruby class SimpleInstrumentor class << self attr_accessor :events def instrument(name, params = {}, &block) puts "#{name} just happened." yield if block_given? end end end ``` The #instrument method will be called for each HTTP request, response, retry, and error. For debugging purposes you can also use `Excon::StandardInstrumentor` to output all events to stderr. This can also be specified by setting the `EXCON_DEBUG` ENV var. See [the documentation for ActiveSupport::Notifications](http://api.rubyonrails.org/classes/ActiveSupport/Notifications.html) for more detail on using the subscription interface. See excon's [instrumentation_test.rb](https://github.com/excon/excon/blob/master/tests/middlewares/instrumentation_tests.rb) for more examples of instrumenting excon. ## HTTPS client certificate You can supply a client side certificate if the server requires it for authentication: ```ruby connection = Excon.new('https://example.com', client_cert: 'mycert.pem', client_key: 'mycert.key', client_key_pass: 'my pass phrase') ``` `client_key_pass` is optional. Optionally, you can also pass the whole chain by passing the extra certificates through `client_chain`: ```ruby connection = Excon.new('https://example.com', client_cert: 'mycert.pem', client_chain: 'mychain.pem', client_key: 'mycert.key') ``` If you already have loaded the certificate, key and chain into memory, then pass it through like: ```ruby client_cert_data = File.load 'mycert.pem' client_key_data = File.load 'mycert.key' connection = Excon.new('https://example.com', client_cert_data: client_cert_data, client_chain_data: client_chain_data, client_key_data: client_key_data) ``` This can be useful if your program has already loaded the assets through another mechanism (E.g. a remote API call to a secure K:V system like Vault). ## HTTPS/SSL Issues By default excon will try to verify peer certificates when using HTTPS. Unfortunately on some operating systems the defaults will not work. This will likely manifest itself as something like `Excon::Errors::CertificateError: SSL_connect returned=1 ...` If you have the misfortune of running into this problem you have a couple options. If you have certificates but they aren't being auto-discovered, you can specify the path to your certificates: ```ruby Excon.defaults[:ssl_ca_path] = '/path/to/certs' ``` Failing that, you can turn off peer verification (less secure): ```ruby Excon.defaults[:ssl_verify_peer] = false ``` Either of these should allow you to work around the socket error and continue with your work. ## Getting Help - We support and test-against non-EOL Ruby versions. If you need older version support, please reach out. - Ask specific questions on [Stack Overflow](http://stackoverflow.com/questions/tagged/excon). - Report bugs and discuss potential features in [Github issues](https://github.com/excon/excon/issues). ## Contributing Please refer to [CONTRIBUTING.md](https://github.com/excon/excon/blob/master/CONTRIBUTING.md). # Plugins and Middlewares Using Excon's [Middleware system][middleware], you can easily extend Excon's functionality with your own. The following plugins extend Excon in their own way: - [excon-addressable](https://github.com/JeanMertz/excon-addressable) Set [addressable](https://github.com/sporkmonger/addressable) as the default URI parser, and add support for [URI templating][templating]. - [excon-hypermedia](https://github.com/JeanMertz/excon-hypermedia) Teaches Excon to talk with [HyperMedia APIs][hypermedia]. Allowing you to use all of Excon's functionality, while traversing APIs in an easy and self-discovering way. ## License Please refer to [LICENSE.md](https://github.com/excon/excon/blob/master/LICENSE.md). [middleware]: lib/excon/middlewares/base.rb [hypermedia]: https://en.wikipedia.org/wiki/HATEOAS [templating]: https://www.rfc-editor.org/rfc/rfc6570.txt excon-1.3.1/Rakefile000066400000000000000000000041761510272305100143010ustar00rootroot00000000000000require 'shindo/rake' require 'rspec/core/rake_task' require 'bundler/gem_tasks' require 'rdoc/task' Shindo::Rake.new RSpec::Core::RakeTask.new(:spec, :format) do |t, args| format = args[:format] || 'doc' t.rspec_opts = ["-c", "-f #{format}", "-r ./spec/spec_helper.rb"] t.pattern = 'spec/**/*_spec.rb' end task :default => [:tests, :test] task :test => :spec desc "test if bundled certs are up to date" task :test_certs do # test curl bundle for end-users require File.join(File.dirname(__FILE__), 'lib', 'excon') require 'tempfile' local = File.read(File.join(File.dirname(__FILE__), 'data', 'cacert.pem')) data = Excon.get("https://curl.se/ca/cacert.pem").body # Not sure why, but comparing local to data directly fails. # Writing to a tempfile, reading, and then testing works as expected. tempfile = Tempfile.new('cacert.pem') tempfile.write(data) tempfile.rewind remote = tempfile.read tempfile.close tempfile.unlink if local == remote puts "Bundled default cert is up to date." exit(true) else puts "! Bundled default cert is out of date!" exit(false) end # TODO: test expiry of self-signed certs end desc "update bundled certs" task :update_certs do # update curl bundle for end-users require File.join(File.dirname(__FILE__), 'lib', 'excon') File.open(File.join(File.dirname(__FILE__), 'data', 'cacert.pem'), 'w') do |file| data = Excon.get("https://curl.se/ca/cacert.pem").body file.write(data) end # update self-signed certs for tests sh "openssl req -subj '/CN=excon/O=excon' -new -newkey rsa:2048 -sha256 -days 3650 -nodes -x509 -keyout tests/data/excon.cert.key -out tests/data/excon.cert.crt" sh "openssl req -subj '/CN=127.0.0.1/O=excon' -new -newkey rsa:2048 -sha256 -days 3650 -nodes -x509 -keyout tests/data/127.0.0.1.cert.key -out tests/data/127.0.0.1.cert.crt" end desc "Open an irb session preloaded with this library" task :console do sh "irb -rubygems -r ./lib/#{name}.rb" end desc "check ssl settings" task :hows_my_ssl do require File.join(File.dirname(__FILE__), 'lib', 'excon') data = Excon.get("https://www.howsmyssl.com/a/check").body puts data end excon-1.3.1/SECURITY.md000066400000000000000000000002721510272305100144160ustar00rootroot00000000000000## Security contact information To report a security vulnerability, please contact [Tidelift security](https://tidelift.com/security). Tidelift will coordinate the fix and disclosure. excon-1.3.1/benchmarks/000077500000000000000000000000001510272305100147415ustar00rootroot00000000000000excon-1.3.1/benchmarks/class_vs_lambda.rb000066400000000000000000000016001510272305100204000ustar00rootroot00000000000000require 'rubygems' require 'tach' class Concatenator def initialize(string) @string = string end def call(data) @string << data end end string = "0123456789ABCDEF" Tach.meter(100_000) do tach('class') do s = "" obj = Concatenator.new(s) 10.times { obj.call(string) } end tach('lambda') do s = "" obj = lambda {|data| s << data } 10.times { obj.call(string) } end end # ruby 1.9.2p136 (2010-12-25 revision 30365) [x86_64-linux] # # +--------+----------+ # | tach | total | # +--------+----------+ # | class | 1.450284 | # +--------+----------+ # | lambda | 2.506496 | # +--------+----------+ # ruby 1.8.7 (2010-12-23 patchlevel 330) [x86_64-linux] # # +--------+----------+ # | tach | total | # +--------+----------+ # | class | 1.373917 | # +--------+----------+ # | lambda | 2.589384 | # +--------+----------+ excon-1.3.1/benchmarks/concat_vs_insert.rb000066400000000000000000000005571510272305100206400ustar00rootroot00000000000000require 'rubygems' require 'tach' Tach.meter(1_000_000) do tach('concat') do path = 'path' path = '/' << path end tach('insert') do path = 'path' path.insert(0, '/') end end # +--------+----------+ # | tach | total | # +--------+----------+ # | insert | 0.974036 | # +--------+----------+ # | concat | 0.998904 | # +--------+----------+excon-1.3.1/benchmarks/concat_vs_interpolate.rb000066400000000000000000000006721510272305100216600ustar00rootroot00000000000000require 'rubygems' require 'tach' key = 'Content-Length' value = '100' Tach.meter(1_000) do tach('concat') do temp = '' temp << key << ': ' << value << "\r\n" end tach('interpolate') do "#{key}: #{value}\r\n" end end # +-------------+----------+ # | tach | total | # +-------------+----------+ # | interpolate | 0.000404 | # +-------------+----------+ # | concat | 0.000564 | # +-------------+----------+ excon-1.3.1/benchmarks/cr_lf.rb000066400000000000000000000005351510272305100163560ustar00rootroot00000000000000require 'rubygems' require 'tach' CR_LF = "\r\n" Tach.meter(1_000_000) do tach('constant') do '' << CR_LF end tach('string') do '' << "\r\n" end end # +----------+----------+ # | tach | total | # +----------+----------+ # | constant | 0.819885 | # +----------+----------+ # | string | 0.893602 | # +----------+----------+excon-1.3.1/benchmarks/downcase-eq-eq_vs_casecmp.rb000066400000000000000000000150661510272305100223120ustar00rootroot00000000000000# Copied from my benchmark_hell repo: github.com/sgonyea/benchmark_hell require 'benchmark' iters = 1000000 comp = "hello" hello = "HelLo" puts 'String#downcase == vs. String#casecmp' Benchmark.bmbm do |x| x.report('String#downcase1') do iters.times.each do hello.downcase == comp end end x.report('String#downcase2') do iters.times.each do "HelLo".downcase == "hello" end end x.report('String#downcase3') do iters.times.each do var = "HelLo" var.downcase! var == "hello" end end x.report('casecmp1') do iters.times.each do hello.casecmp?(comp) end end x.report('casecmp1-1') do iters.times.each do hello.casecmp?(comp) end end x.report('casecmp2') do iters.times.each do "HelLo".casecmp?(comp) end end x.report('casecmp2-1') do iters.times.each do "HelLo".casecmp?(comp) end end end =begin rvm exec bash -c 'echo && echo $RUBY_VERSION && echo && ruby downcase-eq-eq_vs_casecmp.rb' jruby-1.5.6 String#downcase == vs. String#casecmp Rehearsal ---------------------------------------------------- String#downcase1 0.461000 0.000000 0.461000 ( 0.387000) String#downcase2 0.269000 0.000000 0.269000 ( 0.269000) String#downcase3 0.224000 0.000000 0.224000 ( 0.224000) casecmp1 0.157000 0.000000 0.157000 ( 0.157000) casecmp1-1 0.153000 0.000000 0.153000 ( 0.153000) casecmp2 0.163000 0.000000 0.163000 ( 0.163000) casecmp2-1 0.163000 0.000000 0.163000 ( 0.163000) ------------------------------------------- total: 1.590000sec user system total real String#downcase1 0.190000 0.000000 0.190000 ( 0.191000) String#downcase2 0.225000 0.000000 0.225000 ( 0.225000) String#downcase3 0.190000 0.000000 0.190000 ( 0.190000) casecmp1 0.125000 0.000000 0.125000 ( 0.125000) casecmp1-1 0.127000 0.000000 0.127000 ( 0.127000) casecmp2 0.144000 0.000000 0.144000 ( 0.144000) casecmp2-1 0.147000 0.000000 0.147000 ( 0.147000) macruby-0.7.1 String#downcase == vs. String#casecmp Rehearsal ---------------------------------------------------- String#downcase1 2.340000 0.040000 2.380000 ( 1.765141) String#downcase2 5.510000 0.100000 5.610000 ( 3.893249) String#downcase3 4.200000 0.080000 4.280000 ( 3.031621) casecmp1 0.270000 0.000000 0.270000 ( 0.267613) casecmp1-1 0.190000 0.000000 0.190000 ( 0.188848) casecmp2 1.450000 0.020000 1.470000 ( 1.027956) casecmp2-1 1.380000 0.030000 1.410000 ( 0.951474) ------------------------------------------ total: 15.610000sec user system total real String#downcase1 2.350000 0.040000 2.390000 ( 1.774292) String#downcase2 5.890000 0.120000 6.010000 ( 4.214038) String#downcase3 4.530000 0.090000 4.620000 ( 3.286059) casecmp1 0.270000 0.000000 0.270000 ( 0.271119) casecmp1-1 0.190000 0.000000 0.190000 ( 0.189462) casecmp2 1.540000 0.030000 1.570000 ( 1.104751) casecmp2-1 1.440000 0.030000 1.470000 ( 0.999689) rbx-head String#downcase == vs. String#casecmp Rehearsal ---------------------------------------------------- String#downcase1 0.702746 0.005229 0.707975 ( 0.621969) String#downcase2 0.701429 0.001617 0.703046 ( 0.691833) String#downcase3 1.042835 0.002952 1.045787 ( 0.953992) casecmp1 0.654571 0.002239 0.656810 ( 0.480158) casecmp1-1 0.484706 0.001105 0.485811 ( 0.398601) casecmp2 0.564140 0.001579 0.565719 ( 0.545332) casecmp2-1 0.554889 0.001153 0.556042 ( 0.539569) ------------------------------------------- total: 4.721190sec user system total real String#downcase1 0.491199 0.001081 0.492280 ( 0.493727) String#downcase2 0.631059 0.001018 0.632077 ( 0.629885) String#downcase3 0.968867 0.002504 0.971371 ( 0.976734) casecmp1 0.364496 0.000434 0.364930 ( 0.365262) casecmp1-1 0.373140 0.000562 0.373702 ( 0.374136) casecmp2 0.487644 0.001057 0.488701 ( 0.490302) casecmp2-1 0.469868 0.001178 0.471046 ( 0.472220) ruby-1.8.7-p330 String#downcase == vs. String#casecmp Rehearsal ---------------------------------------------------- String#downcase1 0.780000 0.000000 0.780000 ( 0.783979) String#downcase2 0.950000 0.000000 0.950000 ( 0.954109) String#downcase3 0.960000 0.000000 0.960000 ( 0.960554) casecmp1 0.440000 0.000000 0.440000 ( 0.442546) casecmp1-1 0.490000 0.000000 0.490000 ( 0.487795) casecmp2 0.530000 0.000000 0.530000 ( 0.535819) casecmp2-1 0.570000 0.000000 0.570000 ( 0.574653) ------------------------------------------- total: 4.720000sec user system total real String#downcase1 0.780000 0.000000 0.780000 ( 0.780692) String#downcase2 0.980000 0.010000 0.990000 ( 0.982925) String#downcase3 0.960000 0.000000 0.960000 ( 0.961501) casecmp1 0.440000 0.000000 0.440000 ( 0.444528) casecmp1-1 0.490000 0.000000 0.490000 ( 0.487437) casecmp2 0.540000 0.000000 0.540000 ( 0.537686) casecmp2-1 0.570000 0.000000 0.570000 ( 0.574253) ruby-1.9.2-p136 String#downcase == vs. String#casecmp Rehearsal ---------------------------------------------------- String#downcase1 0.750000 0.000000 0.750000 ( 0.750523) String#downcase2 1.190000 0.000000 1.190000 ( 1.193346) String#downcase3 1.030000 0.010000 1.040000 ( 1.036435) casecmp1 0.640000 0.000000 0.640000 ( 0.640327) casecmp1-1 0.480000 0.000000 0.480000 ( 0.484709) # With all this crap running, some flukes pop out casecmp2 0.820000 0.000000 0.820000 ( 0.822223) casecmp2-1 0.660000 0.000000 0.660000 ( 0.664190) ------------------------------------------- total: 5.580000sec user system total real String#downcase1 0.760000 0.000000 0.760000 ( 0.759816) String#downcase2 1.150000 0.010000 1.160000 ( 1.150792) String#downcase3 1.000000 0.000000 1.000000 ( 1.005549) casecmp1 0.650000 0.000000 0.650000 ( 0.644021) casecmp1-1 0.490000 0.000000 0.490000 ( 0.494456) casecmp2 0.820000 0.000000 0.820000 ( 0.817689) casecmp2-1 0.680000 0.000000 0.680000 ( 0.685121) =end excon-1.3.1/benchmarks/excon.rb000066400000000000000000000020771510272305100164100ustar00rootroot00000000000000require 'bundler' Bundler.require(:default) Bundler.require(:benchmark) require 'sinatra/base' require File.join(File.expand_path(File.dirname(__FILE__)), '..', 'lib', 'excon') module Excon class Server < Sinatra::Base def self.run Rack::Handler::WEBrick.run( Excon::Server.new, :Port => 9292, :AccessLog => [], :Logger => WEBrick::Log.new(nil, WEBrick::Log::ERROR) ) end get '/data/:amount' do |amount| 'x' * amount.to_i end end end def with_server(&block) pid = Process.fork do Excon::Server.run end loop do sleep(1) begin Excon.get('http://localhost:9292/api/foo') break rescue end end yield ensure Process.kill('KILL', pid) end require 'tach' size = 10_000 path = '/data/' << size.to_s url = 'http://localhost:9292' << path times = 1_000 with_server do Tach.meter(times) do tach('Excon') do Excon.get(url).body end excon = Excon.new(url) tach('Excon (persistent)') do excon.request(:method => 'get').body end end end excon-1.3.1/benchmarks/excon_vs.rb000066400000000000000000000066651510272305100171270ustar00rootroot00000000000000require 'bundler' Bundler.require(:default) Bundler.require(:benchmark) require 'sinatra/base' require File.join(File.expand_path(File.dirname(__FILE__)), '..', 'lib', 'excon') module Excon class Server < Sinatra::Base def self.run Rack::Handler::WEBrick.run( Excon::Server.new, :Port => 9292, :AccessLog => [], :Logger => WEBrick::Log.new(nil, WEBrick::Log::ERROR) ) end get '/data/:amount' do |amount| 'x' * amount.to_i end end end def with_server(&block) pid = Process.fork do Excon::Server.run end loop do sleep(1) begin Excon.get('http://localhost:9292/api/foo') break rescue end end yield ensure Process.kill('KILL', pid) end require 'em-http-request' require 'httparty' require 'net/http' require 'open-uri' require 'rest_client' require 'tach' require 'typhoeus' size = 10_000 path = '/data/' << size.to_s url = 'http://localhost:9292' << path times = 1_000 with_server do Tach.meter(times) do tach('curb (persistent)') do |n| curb = Curl::Easy.new n.times do curb.url = url curb.http_get curb.body_str end end tach('em-http-request') do |n| EventMachine.run { count = 0 n.times do http = EventMachine::HttpRequest.new(url).get http.callback { http.response count += 1 EM.stop if count == n } http.errback { http.response count += 1 EM.stop if count == n } end } end tach('Excon') do Excon.get(url).body end excon = Excon.new(url) tach('Excon (persistent)') do excon.request(:method => 'get').body end tach('HTTParty') do HTTParty.get(url).body end tach('Net::HTTP') do # Net::HTTP.get('localhost', path, 9292) Net::HTTP.start('localhost', 9292) {|http| http.get(path).body } end Net::HTTP.start('localhost', 9292) do |http| tach('Net::HTTP (persistent)') do http.get(path).body end end tach('open-uri') do open(url).read end tach('RestClient') do RestClient.get(url) end streamly = StreamlyFFI::Connection.new tach('StreamlyFFI (persistent)') do streamly.get(url) end tach('Typhoeus') do Typhoeus::Request.get(url).body end end end # +--------------------------+----------+ # | tach | total | # +--------------------------+----------+ # | Excon (persistent) | 1.529095 | # +--------------------------+----------+ # | curb (persistent) | 1.740387 | # +--------------------------+----------+ # | Typhoeus | 1.876236 | # +--------------------------+----------+ # | Excon | 2.001858 | # +--------------------------+----------+ # | StreamlyFFI (persistent) | 2.200701 | # +--------------------------+----------+ # | Net::HTTP | 2.395704 | # +--------------------------+----------+ # | Net::HTTP (persistent) | 2.418099 | # +--------------------------+----------+ # | HTTParty | 2.659317 | # +--------------------------+----------+ # | RestClient | 2.958159 | # +--------------------------+----------+ # | open-uri | 2.987051 | # +--------------------------+----------+ # | em-http-request | 4.123798 | # +--------------------------+----------+ excon-1.3.1/benchmarks/for_vs_array_each.rb000066400000000000000000000007541510272305100207500ustar00rootroot00000000000000require 'rubygems' require 'tach' data = ["some", "var", "goes", "in", :here, 0] Tach.meter(1_000_000) do tach('for') do for element in data element == nil end end tach('each') do data.each do |element| element == nil end end end # ruby 1.8.7 (2009-06-12 patchlevel 174) [universal-darwin10.0] # # +------+----------+ # | tach | total | # +------+----------+ # | for | 2.958672 | # +------+----------+ # | each | 2.983550 | # +------+----------+ # excon-1.3.1/benchmarks/for_vs_hash_each.rb000066400000000000000000000007671510272305100205610ustar00rootroot00000000000000require 'rubygems' require 'tach' data = {"some" => "var", "goes" => "in", :here => 0} Tach.meter(1_000_000) do tach('for') do for key, values in data key == values end end tach('each') do data.each do |key, values| key == values end end end # ruby 1.8.7 (2009-06-12 patchlevel 174) [universal-darwin10.0] # # +------+----------+ # | tach | total | # +------+----------+ # | each | 2.748909 | # +------+----------+ # | for | 2.949512 | # +------+----------+ # excon-1.3.1/benchmarks/has_key-vs-lookup.rb000066400000000000000000000161411510272305100206510ustar00rootroot00000000000000# Copied from my benchmark_hell repo: github.com/sgonyea/benchmark_hell require 'benchmark' iters = 1000000 hash = { 'some_key' => 'some_val', 'nil_key' => nil } puts 'Hash#has_key vs. Hash#[]' Benchmark.bmbm do |x| x.report('Hash#has_key') do iters.times.each do hash.has_key? 'some_key' end end x.report('Hash#has_key (if statement)') do iters.times.each do if hash.has_key?('other_key') "hooray!" end end end x.report('Hash#has_key (non-existant)') do iters.times.each do hash.has_key? 'other_key' end end x.report('Hash#[]') do iters.times.each do hash['some_key'] end end x.report('Hash#[] (if statement)') do iters.times.each do if hash['some_key'] "hooray!" end end end x.report('Hash#[] (non-existant)') do iters.times.each do hash['other_key'] end end x.report('Hash#has_key (if statement) explicit nil check') do iters.times.each do if hash.has_key?('nil_key') && !hash['nil_key'].nil? "hooray!" end end end x.report('Hash#has_key (if statement) implicit nil check') do iters.times.each do if hash.has_key?('nil_key') && hash['nil_key'] "hooray!" end end end x.report('Hash#[] (if statement with nil)') do iters.times.each do if hash['nil_key'] "hooray!" end end end end =begin $ rvm exec bash -c 'echo $RUBY_VERSION && ruby has_key-vs-hash\[key\].rb' jruby-1.5.6 Hash#has_key vs. Hash#[] Rehearsal --------------------------------------------------------------- Hash#has_key 0.410000 0.000000 0.410000 ( 0.341000) Hash#has_key (if statement) 0.145000 0.000000 0.145000 ( 0.145000) Hash#has_key (non-existant) 0.116000 0.000000 0.116000 ( 0.116000) Hash#[] 0.189000 0.000000 0.189000 ( 0.189000) Hash#[] (if statement) 0.176000 0.000000 0.176000 ( 0.176000) Hash#[] (non-existant) 0.302000 0.000000 0.302000 ( 0.302000) ------------------------------------------------------ total: 1.338000sec user system total real Hash#has_key 0.128000 0.000000 0.128000 ( 0.128000) Hash#has_key (if statement) 0.128000 0.000000 0.128000 ( 0.128000) Hash#has_key (non-existant) 0.153000 0.000000 0.153000 ( 0.153000) Hash#[] 0.206000 0.000000 0.206000 ( 0.206000) Hash#[] (if statement) 0.182000 0.000000 0.182000 ( 0.182000) Hash#[] (non-existant) 0.252000 0.000000 0.252000 ( 0.252000) macruby-0.7.1 Hash#has_key vs. Hash#[] Rehearsal --------------------------------------------------------------- Hash#has_key 2.530000 0.050000 2.580000 ( 1.917643) Hash#has_key (if statement) 2.590000 0.050000 2.640000 ( 1.935221) Hash#has_key (non-existant) 2.580000 0.050000 2.630000 ( 1.964230) Hash#[] 2.240000 0.040000 2.280000 ( 1.640999) Hash#[] (if statement) 3.620000 0.070000 3.690000 ( 2.530248) Hash#[] (non-existant) 2.060000 0.040000 2.100000 ( 1.473487) ----------------------------------------------------- total: 15.920000sec user system total real Hash#has_key 2.230000 0.030000 2.260000 ( 1.661843) Hash#has_key (if statement) 2.180000 0.040000 2.220000 ( 1.605644) Hash#has_key (non-existant) 2.160000 0.040000 2.200000 ( 1.582561) Hash#[] 2.160000 0.030000 2.190000 ( 1.581448) Hash#[] (if statement) 3.440000 0.070000 3.510000 ( 2.393421) Hash#[] (non-existant) 2.330000 0.040000 2.370000 ( 1.699338) rbx-head Hash#has_key vs. Hash#[] Rehearsal --------------------------------------------------------------- Hash#has_key 0.660584 0.004932 0.665516 ( 0.508601) Hash#has_key (if statement) 0.261708 0.000532 0.262240 ( 0.263021) Hash#has_key (non-existant) 0.265908 0.000827 0.266735 ( 0.259509) Hash#[] 0.396607 0.001189 0.397796 ( 0.372997) Hash#[] (if statement) 0.553003 0.001589 0.554592 ( 0.543859) Hash#[] (non-existant) 0.323748 0.000884 0.324632 ( 0.319055) ------------------------------------------------------ total: 2.471511sec user system total real Hash#has_key 0.332239 0.000819 0.333058 ( 0.333809) Hash#has_key (if statement) 0.284344 0.000521 0.284865 ( 0.285330) Hash#has_key (non-existant) 0.339695 0.001301 0.340996 ( 0.324259) Hash#[] 0.298555 0.000368 0.298923 ( 0.299557) Hash#[] (if statement) 0.392755 0.000773 0.393528 ( 0.395473) Hash#[] (non-existant) 0.277721 0.000464 0.278185 ( 0.278540) ruby-1.8.7-p330 Hash#has_key vs. Hash#[] Rehearsal --------------------------------------------------------------- Hash#has_key 0.450000 0.000000 0.450000 ( 0.450143) Hash#has_key (if statement) 0.440000 0.000000 0.440000 ( 0.448278) Hash#has_key (non-existant) 0.420000 0.000000 0.420000 ( 0.416959) Hash#[] 0.450000 0.000000 0.450000 ( 0.450727) Hash#[] (if statement) 0.550000 0.000000 0.550000 ( 0.555043) Hash#[] (non-existant) 0.530000 0.000000 0.530000 ( 0.527189) ------------------------------------------------------ total: 2.840000sec user system total real Hash#has_key 0.440000 0.000000 0.440000 ( 0.447746) Hash#has_key (if statement) 0.450000 0.000000 0.450000 ( 0.450331) Hash#has_key (non-existant) 0.420000 0.000000 0.420000 ( 0.419157) Hash#[] 0.450000 0.000000 0.450000 ( 0.454438) Hash#[] (if statement) 0.570000 0.000000 0.570000 ( 0.563948) Hash#[] (non-existant) 0.520000 0.000000 0.520000 ( 0.527866) ruby-1.9.2-p136 Hash#has_key vs. Hash#[] Rehearsal --------------------------------------------------------------- Hash#has_key 0.690000 0.000000 0.690000 ( 0.691657) Hash#has_key (if statement) 0.630000 0.000000 0.630000 ( 0.638418) Hash#has_key (non-existant) 0.640000 0.000000 0.640000 ( 0.637510) Hash#[] 0.580000 0.000000 0.580000 ( 0.584500) Hash#[] (if statement) 0.840000 0.010000 0.850000 ( 0.837541) Hash#[] (non-existant) 0.810000 0.000000 0.810000 ( 0.811598) ------------------------------------------------------ total: 4.200000sec user system total real Hash#has_key 0.690000 0.000000 0.690000 ( 0.694192) Hash#has_key (if statement) 0.640000 0.000000 0.640000 ( 0.641729) Hash#has_key (non-existant) 0.630000 0.000000 0.630000 ( 0.634470) Hash#[] 0.580000 0.000000 0.580000 ( 0.587844) Hash#[] (if statement) 0.830000 0.000000 0.830000 ( 0.832323) Hash#[] (non-existant) 0.790000 0.010000 0.800000 ( 0.791689) =end excon-1.3.1/benchmarks/headers_case_sensitivity.rb000066400000000000000000000046571510272305100223620ustar00rootroot00000000000000require 'rubygems' require 'stringio' require 'tach' def all_match_socket io = StringIO.new io << "Connection: close\n" io << "Content-Length: 000\n" io << "Content-Type: text/html\n" io << "Date: Xxx, 00 Xxx 0000 00:00:00 GMT\n" io << "Server: xxx\n" io << "Transfer-Encoding: chunked\n" io << "\n\n" io.rewind io end Formatador.display_line('all_match') Formatador.indent do Tach.meter(10_000) do tach('compare on read') do socket, headers = all_match_socket, {} until ((data = socket.readline).chop!).empty? key, value = data.split(': ') headers[key] = value key.casecmp?('Transfer-Encoding') && value.casecmp?('chunked') key.casecmp?('Connection') && value.casecmp?('close') key.casecmp?('Content-Length') end end tach('original') do socket, headers = all_match_socket, {} until ((data = socket.readline).chop!).empty? key, value = data.split(': ') headers[key] = value end headers.has_key?('Transfer-Encoding') && headers['Transfer-Encoding'].casecmp?('chunked') headers.has_key?('Connection') && headers['Connection'].casecmp?('close') headers.has_key?('Content-Length') end end end def none_match_socket io = StringIO.new io << "Cache-Control: max-age=0\n" io << "Content-Type: text/html\n" io << "Date: Xxx, 00 Xxx 0000 00:00:00 GMT\n" io << "Expires: Xxx, 00 Xxx 0000 00:00:00 GMT\n" io << "Last-Modified: Xxx, 00 Xxx 0000 00:00:00 GMT\n" io << "Server: xxx\n" io << "\n\n" io.rewind io end Formatador.display_line('none_match') Formatador.indent do Tach.meter(10_000) do tach('compare on read') do socket, headers = none_match_socket, {} until ((data = socket.readline).chop!).empty? key, value = data.split(': ') headers[key] = value key.casecmp?('Transfer-Encoding') && value.casecmp?('chunked') key.casecmp?('Connection') && value.casecmp?('close') key.casecmp?('Content-Length') end end tach('original') do socket, headers = none_match_socket, {} until ((data = socket.readline).chop!).empty? key, value = data.split(': ') headers[key] = value end headers.has_key?('Transfer-Encoding') && headers['Transfer-Encoding'].casecmp?('chunked') headers.has_key?('Connection') && headers['Connection'].casecmp?('close') headers.has_key?('Content-Length') end end end excon-1.3.1/benchmarks/headers_split_vs_match.rb000066400000000000000000000014441510272305100220030ustar00rootroot00000000000000require 'rubygems' require 'tach' data = "Content-Length: 100" Tach.meter(1_000_000) do tach('regex') do data.match(/(.*):\s(.*)/) header = [$1, $2] end tach('split') do header = data.split(': ', 2) end tach('split regex') do header = data.split(/:\s*/, 2) end end # +-------------+----------+ # | tach | total | # +-------------+----------+ # | split regex | 5.940233 | # +-------------+----------+ # | split | 7.327549 | # +-------------+----------+ # | regex | 8.736390 | # +-------------+----------+ # +-------+----------+----------+ # | tach | average | total | # +-------+----------+----------+ # | regex | 4.680451 | 4.680451 | # +-------+----------+----------+ # | split | 4.393218 | 4.393218 | # +-------+----------+----------+ excon-1.3.1/benchmarks/httpbin.rb000077500000000000000000000077001510272305100167450ustar00rootroot00000000000000#!/usr/bin/env ruby # frozen_string_literal: true # This is a benchmark for HTTPS traffic. # To run against a local server: # docker run --rm --detach --name httpbin -v /tmp:/tmp -v $PWD/tests/data:/data -e HTTPS_CERT_FILE='/data/127.0.0.1.cert.crt' -e HTTPS_KEY_FILE='/data/127.0.0.1.cert.key' -e PORT='8443' -p 8443:8443 mccutchen/go-httpbin # Then, run the benchmark: # benchmarks/httpbin.rb --uri='https://localhost:8443/stream-bytes/102400?chunk_size=1024' # Finally, stop the server with: # docker kill httpbin require 'bundler/inline' gemfile do source 'https://rubygems.org' gem 'benchmark-ips', require: 'benchmark/ips' gem 'ruby-prof', '1.5.0' gem 'excon', path: '..' end require 'openssl' require 'optparse' require 'uri' Options = Struct.new(:uri, :profile, :time, :warmup, :iterations, :status) options = Options.new( URI.parse('https://httpbingo.org/stream-bytes/102400?chunk_size=1024'), false, 10, 5, 2, 200 ) OptionParser.new do |opts| opts.banner = "Usage: ruby #{__FILE__} [options]" opts.on('-u URI', '--uri=URI', String, "URI to send requests to (default: #{options.uri})") do |uri| options.uri = URI.parse(uri) end opts.on('-p', '--[no-]profile', 'Profile the benchmark using Ruby-Prof (defaults to no profiling)') do |profile| options.profile = profile end opts.on('-t TIME', '--time=TIME', Float, "The number of seconds to run the benchmark to measure performance (default: #{options.time})") do |time| options.time = time end opts.on('-w WARMUP', '--warmup=WARMUP', Float, "The number of seconds to warmup the benchmark for before measuring (default: #{options.warmup})") do |warmup| options.warmup = warmup end opts.on('-i ITERATIONS', '--iterations=ITERATIONS', Integer, "The number of iterations to run the benchmark for (default: #{options.iterations})") do |iterations| options.iterations = iterations end opts.on('-s STATUS', '--status=STATUS', Integer, "The HTTP status expected from a request to the given URI (default: #{options.status})") do |status| options.status = status end opts.on('-h', '--help', 'print options') do puts opts exit end end.parse! # Enable and start GC before each job run. Disable GC afterwards. # # Inspired by https://www.omniref.com/ruby/2.2.1/symbols/Benchmark/bm?#annotation=4095926&line=182 class GCSuite def warming(*) run_gc end def running(*) run_gc end def warmup_stats(*); end def add_report(*); end private def run_gc GC.enable GC.start GC.compact GC.disable end end profile = nil if options.profile profile = RubyProf::Profile.new(track_allocations: true) profile.start profile.pause end excerpt = ['Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat. Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur. Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.'] data = (excerpt * 3).join(' ') client = ::Excon.new(options.uri.to_s, ssl_verify_peer: false, ssl_verify_peer_host: false, persistent: true, retry_errors: [Excon::Error::Socket], idempotent: true) Benchmark.ips do |x| x.time = options.time x.warmup = options.warmup x.suite = GCSuite.new x.iterations = options.iterations x.report(options.uri.to_s) do profile&.resume response = client.request(method: :get, headers: { data: data }) response.body response.status profile&.pause raise "Invalid status: expected #{options.status}, actual is #{response.status}" unless response.status == options.status end x.compare! end if options.profile result = profile.stop File.open("excon-#{Excon::VERSION}.html", 'w') do |output| printer = RubyProf::GraphHtmlPrinter.new(result) printer.print(output) end end excon-1.3.1/benchmarks/implicit_block-vs-explicit_block.rb000066400000000000000000000053311510272305100236730ustar00rootroot00000000000000# Copied from my benchmark_hell repo: github.com/sgonyea/benchmark_hell require 'benchmark' iters = 1000000 def do_explicit(&block) var = "hello" block.call(var) end def do_implicit var = "hello" yield(var) end puts 'explicit block vs implicit' Benchmark.bmbm do |x| x.report('explicit') do iters.times.each do do_explicit {|var| var << "goodbye" } end end x.report('implicit') do iters.times.each do do_implicit {|var| var << "goodbye" } end end end =begin rvm exec bash -c 'echo && echo $RUBY_VERSION && echo && ruby implicit_block-vs-explicit_block.rb' jruby-1.5.6 explicit block vs implicit Rehearsal -------------------------------------------- explicit 1.163000 0.000000 1.163000 ( 1.106000) implicit 0.499000 0.000000 0.499000 ( 0.499000) ----------------------------------- total: 1.662000sec user system total real explicit 0.730000 0.000000 0.730000 ( 0.730000) implicit 0.453000 0.000000 0.453000 ( 0.453000) macruby-0.7.1 explicit block vs implicit Rehearsal -------------------------------------------- explicit 5.070000 0.130000 5.200000 ( 3.546388) implicit 3.140000 0.050000 3.190000 ( 2.255986) ----------------------------------- total: 8.390000sec user system total real explicit 5.340000 0.140000 5.480000 ( 3.774963) implicit 3.170000 0.060000 3.230000 ( 2.279951) rbx-head explicit block vs implicit Rehearsal -------------------------------------------- explicit 1.270136 0.006507 1.276643 ( 1.181588) implicit 0.839831 0.002203 0.842034 ( 0.820849) ----------------------------------- total: 2.118677sec user system total real explicit 0.960593 0.001526 0.962119 ( 0.966404) implicit 0.700361 0.001126 0.701487 ( 0.703591) ruby-1.8.7-p330 explicit block vs implicit Rehearsal -------------------------------------------- explicit 3.970000 0.000000 3.970000 ( 3.985157) implicit 1.560000 0.000000 1.560000 ( 1.567599) ----------------------------------- total: 5.530000sec user system total real explicit 3.990000 0.010000 4.000000 ( 4.002637) implicit 1.560000 0.000000 1.560000 ( 1.560901) ruby-1.9.2-p136 explicit block vs implicit Rehearsal -------------------------------------------- explicit 2.620000 0.010000 2.630000 ( 2.633762) implicit 1.080000 0.000000 1.080000 ( 1.076809) ----------------------------------- total: 3.710000sec user system total real explicit 2.630000 0.010000 2.640000 ( 2.637658) implicit 1.070000 0.000000 1.070000 ( 1.073589) =end excon-1.3.1/benchmarks/merging.rb000066400000000000000000000005761510272305100167260ustar00rootroot00000000000000require 'rubygems' require 'tach' Tach.meter(10_000) do tach('merge') do default = { :a => 1, :b => 2 } override = { :b => 3, :c => 4 } override = default.merge(override) end tach('loop') do default = { :a => 1, :b => 2 } override = { :b => 3, :c => 4 } for key, value in default override[key] ||= default[key] end override end end excon-1.3.1/benchmarks/single_vs_double_quotes.rb000066400000000000000000000005201510272305100222060ustar00rootroot00000000000000require 'rubygems' require 'tach' Tach.meter(1_000_000) do tach('double') do "path" end tach('single') do 'path' end end # [double, single] # # +--------+----------+ # | tach | total | # +--------+----------+ # | single | 0.416340 | # +--------+----------+ # | double | 0.416570 | # +--------+----------+ excon-1.3.1/benchmarks/string_ranged_index.rb000066400000000000000000000054151510272305100213100ustar00rootroot00000000000000# Copied from my benchmark_hell repo: github.com/sgonyea/benchmark_hell require 'benchmark' iters = 1000000 string = "Test String OMG" puts 'String ranged index vs. "coordinates"' Benchmark.bmbm do |x| x.report('ranged index') do iters.times.each do text = string[2..9] end end x.report('coordinates') do iters.times.each do text = string[2, 9] end end end =begin rvm exec bash -c 'echo && echo $RUBY_VERSION && echo && ruby string_ranged_index.rb' jruby-1.5.6 String ranged index vs. "coordinates" Rehearsal ------------------------------------------------ ranged index 0.419000 0.000000 0.419000 ( 0.372000) coordinates 0.167000 0.000000 0.167000 ( 0.167000) --------------------------------------- total: 0.586000sec user system total real ranged index 0.158000 0.000000 0.158000 ( 0.159000) coordinates 0.125000 0.000000 0.125000 ( 0.125000) macruby-0.7.1 String ranged index vs. "coordinates" Rehearsal ------------------------------------------------ ranged index 1.490000 0.030000 1.520000 ( 1.061326) coordinates 1.410000 0.030000 1.440000 ( 0.973640) --------------------------------------- total: 2.960000sec user system total real ranged index 1.520000 0.030000 1.550000 ( 1.081424) coordinates 1.480000 0.030000 1.510000 ( 1.029214) rbx-head String ranged index vs. "coordinates" Rehearsal ------------------------------------------------ ranged index 1.333304 0.009398 1.342702 ( 1.229629) coordinates 0.306087 0.000603 0.306690 ( 0.303538) --------------------------------------- total: 1.649392sec user system total real ranged index 0.923626 0.001597 0.925223 ( 0.927411) coordinates 0.298910 0.000533 0.299443 ( 0.300255) ruby-1.8.7-p330 String ranged index vs. "coordinates" Rehearsal ------------------------------------------------ ranged index 0.730000 0.000000 0.730000 ( 0.738612) coordinates 0.660000 0.000000 0.660000 ( 0.660689) --------------------------------------- total: 1.390000sec user system total real ranged index 0.750000 0.000000 0.750000 ( 0.746172) coordinates 0.640000 0.000000 0.640000 ( 0.640687) ruby-1.9.2-p136 String ranged index vs. "coordinates" Rehearsal ------------------------------------------------ ranged index 0.670000 0.000000 0.670000 ( 0.679046) coordinates 0.620000 0.000000 0.620000 ( 0.622257) --------------------------------------- total: 1.290000sec user system total real ranged index 0.680000 0.000000 0.680000 ( 0.686510) coordinates 0.620000 0.000000 0.620000 ( 0.624269) =end excon-1.3.1/benchmarks/strip_newline.rb000066400000000000000000000063031510272305100201520ustar00rootroot00000000000000# require 'benchmark' # # COUNT = 1_000_000 # data = "Content-Length: 100\r\n" # Benchmark.bmbm(25) do |bench| # bench.report('chomp') do # COUNT.times do # data = "Content-Length: 100\r\n" # data.chomp # end # end # bench.report('chomp!') do # COUNT.times do # data = "Content-Length: 100\r\n" # data.chomp! # end # end # bench.report('chop') do # COUNT.times do # data = "Content-Length: 100\r\n" # data.chop # end # end # bench.report('chop!') do # COUNT.times do # data = "Content-Length: 100\r\n" # data.chop! # end # end # bench.report('strip') do # COUNT.times do # data = "Content-Length: 100\r\n" # data.strip # end # end # bench.report('strip!') do # COUNT.times do # data = "Content-Length: 100\r\n" # data.strip! # end # end # bench.report('index') do # COUNT.times do # data = "Content-Length: 100\r\n" # data[0..-3] # end # end # end # Rehearsal ------------------------------------------------------------ # chomp 0.640000 0.000000 0.640000 ( 0.644043) # chomp! 0.530000 0.000000 0.530000 ( 0.531415) # chop 0.620000 0.000000 0.620000 ( 0.624321) # chop! 0.500000 0.000000 0.500000 ( 0.509146) # strip 0.640000 0.000000 0.640000 ( 0.638785) # strip! 0.530000 0.000000 0.530000 ( 0.532196) # index 0.740000 0.000000 0.740000 ( 0.745742) # --------------------------------------------------- total: 4.200000sec # # user system total real # chomp 0.640000 0.010000 0.650000 ( 0.647287) # chomp! 0.530000 0.000000 0.530000 ( 0.532868) # chop 0.630000 0.000000 0.630000 ( 0.628236) # chop! 0.520000 0.000000 0.520000 ( 0.522950) # strip 0.640000 0.000000 0.640000 ( 0.646328) # strip! 0.520000 0.000000 0.520000 ( 0.532715) # index 0.740000 0.010000 0.750000 ( 0.771277) require 'rubygems' require 'tach' data = "Content-Length: 100\r\n" Tach.meter(1_000_000) do tach('chomp') do data.dup.chomp end tach('chomp!') do data.dup.chomp! end tach('chop') do data.dup.chop end tach('chop!') do data.dup.chop! end tach('strip') do data.dup.strip end tach('strip!') do data.dup.strip! end tach('index') do data.dup[0..-3] end end # +--------+----------+----------+ # | tach | average | total | # +--------+----------+----------+ # | chomp | 1.444547 | 1.444547 | # +--------+----------+----------+ # | chomp! | 1.276813 | 1.276813 | # +--------+----------+----------+ # | chop | 1.422744 | 1.422744 | # +--------+----------+----------+ # | chop! | 1.240941 | 1.240941 | # +--------+----------+----------+ # | strip | 1.444776 | 1.444776 | # +--------+----------+----------+ # | strip! | 1.266459 | 1.266459 | # +--------+----------+----------+ # | index | 1.557975 | 1.557975 | # +--------+----------+----------+excon-1.3.1/benchmarks/vs_stdlib.rb000066400000000000000000000026671510272305100172720ustar00rootroot00000000000000require 'sinatra/base' require 'tach' require File.join(File.expand_path(File.dirname(__FILE__)), '..', 'lib', 'excon') module Excon class Server < Sinatra::Base def self.run Rack::Handler::WEBrick.run( Excon::Server.new, :Port => 9292, :AccessLog => [], :Logger => WEBrick::Log.new(nil, WEBrick::Log::ERROR) ) end get '/data/:amount' do |amount| 'x' * amount.to_i end end end def with_server(&block) pid = Process.fork do Excon::Server.run end loop do sleep(1) begin Excon.get('http://localhost:9292/api/foo') break rescue end end yield ensure Process.kill('KILL', pid) end require 'net/http' require 'open-uri' url = 'http://localhost:9292/data/1000' with_server do Tach.meter(100) do tach('Excon') do Excon.get(url).body end # tach('Excon (persistent)') do |times| # excon = Excon.new(url) # times.times do # excon.request(:method => 'get').body # end # end tach('Net::HTTP') do # Net::HTTP.get('localhost', '/data/1000', 9292) Net::HTTP.start('localhost', 9292) {|http| http.get('/data/1000').body } end # tach('Net::HTTP (persistent)') do |times| # Net::HTTP.start('localhost', 9292) do |http| # times.times do # http.get('/data/1000').body # end # end # end # tach('open-uri') do # open(url).read # end end end excon-1.3.1/changelog.txt000066400000000000000000001054611510272305100153230ustar00rootroot000000000000001.3.1 2025-11-05 ================== - update bundled certs 1.3.0 2025-08-18 ================== - proxy connect should always include port, regardless of default 1.2.9 2025-08-15 ================== - bump actions/checkout - update bundled certs 1.2.8 2025-07-16 ================== - update bundled certs 1.2.7 2025-05-27 ================== - freezes caused inadvertent breaking changes, so partially rolling back - unfreeze defaults - unfreeze connection/request keys - unfreeze defaults/middlewares 1.2.6 2025-05-27 ================== - update bundled certs - add README note about ruby version expectations - bump ruby-version used for certs checking - replace magic number with signal name #883 - test fixes - fix Gemfile lints - bump minimum ruby version - additional constant freezing for Ractor compat 1.2.5 2025-02-27 ================== - update bundled certs - add logger to dependencies for forwards compatibility 1.2.4 2025-02-24 ================== - fix usage of rescue in modifier form with condition - add pass through for option to ignore OpenSSL EOF errors - add rdoc as dev dep for 3.5+ where it is no longer default 1.2.3 2025-01-03 ================== - fix misc cops - fix performance cops - update bundled certs 1.2.2 2024-11-17 ================== - update bundled certs 1.2.1 2024-11-14 ================== - fix for socket error edge case 1.2.0 2024-11-07 ================== - convert query to query string for stubs and stub matching for consistency - fix default port handling for proxy connect requests 1.1.1 2024-10-30 ================== - just split query params for stubs and stub matching, avoid escape/unescape 1.1.0 2024-10-29 ================== - handle empty content-encoding header in decompress middleware - use casecmp? instead of casecmp().zero? for ease of reading/usage - allow connections to be instantiated without parameters 1.0.0 2024-10-24 ================== - drop default ports by default - deprecate omit_default_port and add include_default_port option - remove most client errors from defaults to retry with idempotent - add decompress middleware to default middlewares 0.112.0 2024-10-01 ================== - update bundled certs 0.111.0 2024-07-08 ================== - lint fixes - fixes related to rackup for testing - update bundled certs 0.110.0 2024-03-12 ================== - update bundled default certificates 0.109.0 2024-01-03 ================== - fix to properly utilize `Resolv::DefaultResolver.replace_resolvers` values 0.108.0 2023-12-15 ================== - fix array syntax error for old ruby versions 0.107.0 2023-12-15 ================== - performance improvements for nonblocking sockets 0.106.0 2023-12-13 ================== - add rackup to Gemfile - bump actions/stale version - update bundled default certs 0.105.0 2023-11-28 ================== - add support for non-blocking request timeouts 0.104.0 2023-09-29 ================== - fix dates in changelog - add resolv_resolver option and deprecate dns_timeout 0.103.0 2023-09-13 ================== - fix cert related warnings - update checkout github action - add option to specify dns_timeout - update bundled default certs 0.102.0 2023-08-23 ================== - revert bundled cert update for now, as it is breaking tests 0.101.0 2023-08-23 ================== - remove old Ruby 1.9 related conditionals and code - add jruby to test matrix - update bundled certs 0.100.0 2023-06-06 ================== - bump stale action - respect non-titlecase host headers - update bundled certs 0.99.0 2023-02-03 ================= - add automatic fork safety by resetting sockets on PID change - add support for unstub with regex params 0.98.0 2023-01-27 ================= - add support for extra ssl client certificates 0.97.2 2023-01-20 ================= - add omit_default_port to response 0.97.1 2023-01-11 ================= - update bundled certs 0.97.0 2023-01-09 ================= - fix for URI gem changes when host empty for unix urls - adjust testing ruby versions: drop 2.6, add 3.2 0.96.0 2023-01-04 ================= add scheme to response add query to response add method/http_method to response bump actions/stale allow empty or null host for unix, due to URI gem changes 0.95.0 2022-12-12 ================= tweak readline code style change read_nonblock to again limit to max_length update bundled (test) certs remove rdoc dependency to fix CI 0.94.0 2022-11-08 ================= reduce allocations/syscalls for readline refactor streaming tests and add for https fix guards around selects in nonblocking read remove an extraneous guard in blocking read 0.93.1 2022-09-22 ================= update bundled certs 0.93.0 2022-09-22 ================= update actions/stale also use ssl_verify_peer_host value for SNI when specified 0.92.5 2022-09-22 ================= update error retry examples in README update bundled certs 0.92.4 2022-07-20 ================= fix README formatting clarify stub examples in README update bundled certs 0.92.3 2022-04-27 ================= update permissions for Github actions update bundled certs 0.92.2 2022-03-31 ================= update bundled certs 0.92.1 2022-03-20 ================= update bundled certs 0.92.0 2022-03-13 ================= bump actions/checkout fix readline to respect nonblock: false setting 0.91.0 2022-01-12 ================= update bundled certs 0.90.0 2022-01-12 ================= fix activesupport requires in tests always set_default_paths for SSL to avoid edge case problems 0.89.0 2021-12-07 ================= don't reference lib directly in gemspec ensure tests always run current ruby interpreter update cert lifetimes for LTS distros update actions/checkout (dependabot) deflate should presume headers (as per spec), then retry raw 0.88.0 2021-10-27 ================= update bundled certs 0.87.0 2021-10-08 ================= avoid sensitive data in header value errors by only including header keys 0.86.0 2021-10-01 ================= prevent test suite stall on test server failure fix logging behavior for query hashes improve debbuging by reading server response during EPIPE errors update bundled certs 0.85.0 2021-07-16 ================= fix socket datum regression introduced in #742 0.84.0 2021-07-07 ================= update bundled certs 0.83.0 2021-06-28 ================= add ssl_security_level option with pass through to ssl_context 0.82.0 2021-05-27 ================= update actions/checkout update actions/stale update bundled certs 0.81.0 2021-04-28 ================= add helper for converting headers to strings add ssl_proxy_headers datum key and usage pass datum to socket tweak logging middleware to allow Syslog::logger usage remove ruby 3 from allowed failures 0.80.1 2021-04-15 ================= adjust error checking from 0.80.0 to support Ruby <2.3 0.80.0 2021-04-15 ================= fix test usage of hashes for compatibility with Rack 2.2+ numerous github actions and dependencies setup and tweaks use Ruby Resolv for hostname lookup fix case where Socket raised nil conversion TypeError instead of EOFError fix error where proxy key exists but data is nil update bundled certificates 0.79.0 2021-02-01 ================= update bundled certificates fix warnings in lib fix aliases in headers updated test dependencies 0.78.1 2020-12-04 ================= refine regex used for header parsing, thanks @dee-see for your help! 0.78.0 2020-10-16 ================= Fix bash-specific gemspec expansion which caused files to be missing in zsh 0.77.0 2020-10-16 ================= Ensure host is first request header, see: RFC 7230 Section 5.4 Update bundled certificates 0.76.0 2020-07-27 ================= remove AddTrust bundled cert hack (no longer needed) update bundled certs add support for ssl_verify_hostname parameter use buffered reads for Excon::Socket.readline 0.75.0 2020-06-17 ================= explicitly require ipaddr 0.74.0 2020-06-12 ================= add ipv6 support to no-proxy handling comment out add trust cert from bundle (due to expiry) 0.73.0 2020-03-17 ================= add request/response data to proxy errors 0.72.0 2020-01-27 ================= update bundled certificates 0.71.1 2019-12-18 ================= fix frozen chunks through dup prior to binary_encode 0.71.0 2019-12-12 ================= fix for leftover data with interrupted persistent connections 0.70.0 2019-12-02 ================= Update bundled certificates 0.69.1 2019-11-21 ================= Fix mistake in proxy connection error handling 0.69.0 2019-11-21 ================= Raise better proxy connection errors 0.68.0 2019-10-25 ================= Updated bundled certs 0.67.0 2019-09-24 ================= Properly redact user/pass info from proxy credentials Update bundled certs 0.66.0 2019-08-06 ================= Add remote_ip to datum, enabling usage in middleware redirect follower now raises after following too many redirects (default 10) fixed stub clearing in tests to avoid race conditions 0.65.0 2019-07-22 ================= fix yardoc formatting fix creating Proc without a block reduce/refine gem file contents update bundled certs readd bundled certs to gem file contents 0.64.0 2019-04-15 ================= warn, not error on undefined middlewares#valid_parameter keys 0.63.0 2019-04-12 ================= allow setting min/max ssl versions add additional nonblocking ruby error classes set logger via datum, instead of class variables misc test/travis fixes consolidate binary encoding, avoid double encoding error or CR/LF instead of substitute guard against invalid header keys also retry blocked connect with newer ruby errors clarify that username and password should be escaped better handling of warnings in tests add stalebot document NO_PROXY validate parameter keys based on middleware stack update default retry on error counts in readme Sweet32, DES deprioritization fixes to cipher suite allow overriding retry_errors count fix for URI escaping in Ruby 2.6 update copyright notice add metadata to gemspec update certs 0.62.0 2018-03-27 ================= remove binmode call for StringIO objects 0.61.0 2018-03-16 ================= use default ports for sockets if none specified add ruby 2.4 and 2.5 to ci testing follow relative location redirects 0.60.0 2017-12-15 ================= add requests_in_batches cleanup rakefile, gemfile, etc add logger/logger= and logging instrumentor rewind response_block in idempotent instrumentor 0.59.0 2017-09-05 ================= fix backtick vs quote in error message fix socket pooling to be per-connection instead of per thread fix tests to ignore proxy env settings 0.58.0 08/01/2017 ================= remove unused error add retry_interval and related settings for backoff 0.57.1 06/30/2017 ================= fix remote-ip setting to prevent off-by-one issue 0.57.0 06/14/2017 ================= add client_key_data and client_cert_data to valid keys allow passing explicit host to unix sockets 0.56.0 05/31/2017 ================= fix proxy parse errors fix url-escaped proxy creds for ssl 0.55.0 02/07/2017 ================= fix minor readme error update bundled certs update self-signed certs update to test with ruby 2.3.3 fix unitialized ResponseParseError error add missing 'spec_helper' require in tests add missing 'time' require in tests use unescape_uri for user/pass in Authorization header use secure rubygems source uri update gemnasium badge update fury badge update travis badge update gittip badge 0.54.0 10/17/2016 ================= add howsmyssl rake task for sanity checking update default ciphers to mozilla intermediate list fix typo in changelog 0.53.0 09/27/2016 ================= add ability to pass ssl options as strings progress towards rspec update bundled certs 0.52.0 08/22/2016 ================= freeze string literals move toward interpolation, over concatenation (frozen string related) start conversion toward rspec move user/pass authorization header setting to request level 0.51.0 07/08/2016 ================= tweak new errors to be an alias rather than inherit 0.50.1 06/28/2016 ================= re-add some missing errors from refactoring 0.50.0 06/28/2016 ================= expand readme refactor errors for consistancy optionally allow unstubbed requests parse/verify path as well as host for connection 0.49.0 03/28/2016 ================= fix nonblock ssl socket connect timeout handling fix README debug example make unique class for certificate errors connection logic cleanup change stubs back to global (with local option via defaults) specific handling for set-cookie header exceptions 0.48.0 03/07/2016 ================= optimize by writing part of body with headers when it fits in a chunk 0.47.0 02/29/2016 ================= fix bundled certs fix instrumentors to allow recording timings 0.46.0 02/26/2016 ================= empty host header for unix sockets raise EOFError on unexpectedly read nil add host/path/port to response keep cookies through redirects fix to skip decompressing empty bodies fix escaping for query string README improvements fix SocketError initializer fix incorrect error class usage 0.45.4 07/13/2015 ================= fix undefined errors in error handling ignore empty proxy values 0.45.3 04/21/2015 ================= guard warning about openssl versions in case constant undefined ensure rackup listens properly, fixes local tests 0.45.2 04/16/2015 ================= add raw_status reader improved tests around response/status rescue IO::WaitWritable for SSL sockets also indentation fixes tighten rescue in ssl socket connect to better report non-timeouts rescue EAGAIN and EWOULDBLOCK for non-blocking connects 0.45.1 03/27/2015 ================= fix scope for readline buffer, fixes dropped initial characters 0.45.0 03/26/2015 ================= prefer default SSL config to ENV, when available document instrumentor deviation from rails format better error/warning around openssl 1.0.2 bug fix nonblocking ssl connect to not have tight loop also remove user/pass when following redirects 0.44.4 03/04/2015 ================= update bundled certs loosen travis versions, to get ~> type follow-the-leader behavior fix syntax issue in ruby 2.2.1 0.44.3 02/24/2015 ================= don't pass body when following GET redirects fix error rescue case to properly reference error object 0.44.2 02/11/2015 ================= simplify data[:debug] logic catch nonblock errors around readline 0.44.1 02/01/2015 ================= fix issue with frozen strings in user/pass 0.44.0 01/30/2015 ================= re-implement timeout using IO.select document custom URI parser usage fix ruby 2.2 build improved IPv6 support Excon::Utils improvements add 429 errors 0.43.0 01/09/2015 ================= use basic error instead of nil as default for socket error allow setup_proxy to accept uri add disable_proxy and proxy: false to disable proxy settings 0.42.1 12/04/2014 ================= update bundled certs fix redirect follower to avoid erroneously setting basic auth 0.42.0 12/02/2014 ================= fix stubbing section of README follow redirect for all request methods remove unhelpful link for excon.io rescue/ignore illegal seek on rewind add ssl_cert_store option allow non-RSA ssl keys attempt to rewind request_block when idempotent add configurable thread safety for socket pool 0.41.0 11/05/2014 ================= add :ssl_verify_peer_host option for dev purposes add #reason_phrase to response 0.40.0 10/06/2014 ================= fix support for specifying ssl_ca_path more consistent response_block/response.body behavior for mocks add support for proxies running on unix domain sockets 0.39.6 09/22/2014 ================= pretty print stub not found errors 0.39.5 09/14/2014 ================= fix double delegation error make client_key_pass valid connection key cast headers to_s to fix historical symbol usage 0.39.4 08/08/2014 ================= ensure Response#new uses case-insensitive headers add client cert pass phrase support 0.39.3 08/05/2014 ================= fix for nil and/or unknown proxy values 0.39.2 08/04/2014 ================= respect both ca_file/ca_path when both present 0.39.1 08/04/2014 ================= fix for ssl proxies + remote_ip stuff 0.39.0 08/01/2014 ================= revert to a blocking readline, for performance simplify status lookup consolidate proxy code store defaults as a constant avoid setting nil user/pass vs just no setting keys move idempotent warnings in to middleware simplify validations use constants in utils group non-chunk response paring optimize/simplify socket local lookup simplify to pro-actively build downcased headers instead of lazily do so add version to options (so it will appear in debug) add OS/Ruby version info to options/version for debugging more consistent output styling for errors remove TE stuff to simplify shorten timeout/sleep in streaming tests remove transfer-encoding altogether if it only includes chunked only rescue http status errors in relevant tests use case-insensitive headers in stubs also 0.38.0 07/09/2014 ================= avoid reading non-file bodies (mock related fix) fixes to readme links fix excon_debug to set debug_response ensure both \r and \n are read when parsing headers 0.37.0 06/09/2014 ================= fix chunked reading to avoid chop! on non-chunk endings fixes for proxy usage 0.36.0 06/04/2014 ================= fix to reconcile streaming changes for chunked encoding 0.35.0 06/03/2014 ================= fix for responses with content_length 0.34.0 05/29/2014 ================= add support for setting ssl_verify_callback stream partial results imediately, when available update rack/unicorn in tests to support streaming tests skip streaming tests on jruby (as they depend on unicorn) update travis tests to use newest rubinius improve formatting/readibility of standard instrumentor output 0.33.0 05/15/2014 ================= README clarifications around defaults and basic auth case insensitive headers 0.32.1 03/13/2014 ================= Fix for SNI (should occur prior to connect) 0.32.0 02/27/2014 ================= README improvements fixes around LICENSE/CONTRIBUTING/CONTRIBUTORS update bundled cert nonblock connect/timeout fixes for ssl sockets skip reverse lookups where feasible more secure ssl settings, when available add escape stuff as middleware fix to raise exceptions properly fix for keep alive check add tests around keep alive escape/unescape uri added to utils add support for reusable local ports 0.31.0 12/16/2013 ================= test fixes for Bundler.require usage and Rack::Lint use production mode + dump errors for tests use Utils in Excon.stub add implementation of stuff from WEBrick directly to utils update test server to send connection close and process buffer after response add :persistent option, defaults true group HTTP errors by type patch to webrick to workaround intermitent test failures only use Open4 for 1.8.7 update/expand getting help/getting involved in readme 0.30.0 11/25/2013 ================= ensure schema/host/port are passed to redirect follower with relative location add .ruby-version and .ruby-gemset to .gitignore pass nil to :response_block for unknown values use :response_block if expects middleware is not used refactor Response.parse, add tests support header continuations support chunked trailers improve decompress middleware/tests add accept-encoding in decompress middleware requests, if missing fixes for connection close detection support transfer encoding fix deprecated URI.decode usage do not try to use tcp_nodelay for unix sockets nonblocking connect, connect timeouts for unix sockets ignore IO#close exceptions move conditional nonblock to only SSLSocket skip reverse lookups avoid mutating canned response from middleware test against latest rubinius, no longer allow failures add unicorn as rubinius dev dependency use webbrick form decode 0.29.0 11/07/2013 ================= make nonblock invalid as request key add backtrace to all warnings do not allow idempotent + pipeline close socket after pipeline if needed fix Socket#read to match IO.read EOF behavior use Socket#read for non-blocking readline respect read_timeout for status read read response until status line, discard chunked trailer fix redirect follower to properly change host 0.28.0 10/28/2013 ================= tag warning messages with [excon] allow specific ssl_versions fixes around param validation create a new connection for redirect_follower middleware add connection_uri/request_uri to utils avoid mutating connection data remove connection key in redirect_follower 0.27.6 10/15/2013 ================= warn, but no longer mutate params during validation 0.27.5 10/14/2013 ================= extract validations/port_string to utils module 0.27.4 10/14/2013 ================= fix for https/port string values 0.27.3 10/11/2013 ================= better invalid key handling avoid mutating port value 0.27.2 10/10/2013 ================= avoid mutating datum in idempotent middleware 0.27.1 10/09/2013 ================= improve warning messages for valid keys 0.27.0 10/04/2013 ================= display warnings based on ruby and/or debug settings add missing valid connection keys remove 1.8.7 related nonblock warning add support for unix sockets cleanup constants improve test setup to minimize server spawning separate connection/request key validation 0.26.0 09/24/2013 ================= add basic decompress middleware update readme mocking+stubbing info add unstub functionality avoid modifying original options in request jruby fixes misc cleanup/fixes encoding/compatibility fixes close sockets on error warn when both request_block and idempotent are set 0.25.3 07/18/2013 ================= respect SSL_CERT_DIR/SSL_CERT_FILE more aggressively include bundled cert as fallback 0.25.2 07/18/2013 ================= add license to gemspec add "excon/#{version}" default user agent create/use response parser middleware fix proxy request info to use datum rather than @data 0.25.1 07/01/2013 ================= fix for jruby ssl more explicit description in docs 0.25.0 06/20/2013 ================= attempt to use OS certs first, only use bundled as fallback normalize method in stubs 0.24.0 06/12/2013 ================= allow passing ssl creds as strings or file paths 0.23.0 06/10/2013 ================= defer writing request/headers to allow all-in-one allow opt-in for request/response error info add configurable TCP_NODELAY consolidate warning display respect ruby verbosity conventions fix copyright years in notice 0.22.1 05/17/2013 ================= fix logic error in dropping default ports 0.22.0 05/17/2013 ================= remove request/response info from default error messages to avoid credential leaks add option to omit default ports (http:80 and https:443) add examples for form encoding updates to facilitate streaming responses from middleware responses 0.21.0 05/04/2013 ================= update bundled cacert add deprecated connection helper URL decode user/pass for basic auth fix odd name/permissions in benchmarks check for socket before closing one add support for no_proxy include scheme in socket key make socket.connect private allow stub lookup with Excon.stub_for 0.20.1 03/19/2013 ================= dup middlewares to avoid overwriting original set delete datum[:response] in idempotent to ensure new response is parsed 0.20.0 03/08/2013 ================= redact password from inspect/instrument downgrade severity of invalid keys from error to warning 0.19.5 03/04/2013 ================= fix ssl socket proxy setup 0.19.4 03/04/2013 ================= fix merge order of params in new 0.19.3 03/01/2013 ================= properly raise errors when datum[:stack] has not yet been set 0.19.2 02/28/2013 ================= add client_cert, client_key to valid connection options 0.19.1 02/27/2013 ================= fix for ssl proxies to allow connect response to be read 0.19.0 02/27/2013 ================= fix requests (pipeline) example in README make StubNotFound inherit from StandardError (not Excon::Errors::Error) idempotent reimplemented as middleware remaining idempotent/instrumentor functionality moved to middleware move uri parsing to Excon.new allow for configurable URI parser (ie Addressable vs URI) move VALID_CONNECTION_KEYS to constants move idempotent tests to middleware directory fix output of expects middleware to pass response objects instead of hashes 0.18.5 02/22/2013 ================= add family to known keys 0.18.4 02/21/2013 ================= remove ssl proxy host_port usage 0.18.3 02/21/2013 ================= update response accessors to read from/write to @data 0.18.2 02/21/2013 ================= one shouldn't rush, fix typo in previous 0.18.1 02/21/2013 ================= fix for http errors when using mocks 0.18.0 02/21/2013 ================= more refactoring around middlewares add pipelining capabilities allow [] style access to response attributes 0.17.0 02/01/2013 ================= add patch method allow passing family for addresses to params/proxy more consistent empty header passing nicer debug output internal refactoring toward middleware pattern 0.16.10 11/16/2012 ================== set default request_params for stub do not attempt to read body for CONNECT requests 0.16.9 11/16/2012 ================= readme cleanup/clarification around stubs fix for reading response from ssl proxy 0.16.8 11/12/2012 ================= set file body pos to 0 at beginning of request add eventmachine to dev dependencies for bad server tests comment out benchmark deps for now fix typo in readme 0.16.7 10/17/2012 ================= fix typo in host_port per-request patch 0.16.6 10/17/2012 ================= fix for host_port to recalculate on a per-request basis 0.16.5 10/17/2012 ================= Also retry Timeouts on idempotent requests Excon.stub now breaks out user/pass from url if supplied loosen ssl version requirement to allow negotiation eof on read should return '' instead of nil build host_port up front to avoid recalculating set Proxy-Connection: Keep-Alive for https proxies postpone https upgrade until after proxy connect 0.16.4 09/25/2012 ================= better behavior nonblock and use DEFAULT_NONBLOCK constant update deprecation/warnings to use $stderr consistency fixes for REDACT add REDACT behavior to standard_instrumentor 0.16.3 09/20/2012 ================= remove overly paranoid const checking change chunk_size to be a param for consistency 0.16.2 08/27/2012 ================= provide more helpful backtraces on connection requests provide more helpful backtraces on one-off requests rearrange class methods so params will pass to socket integrate nonblock backwards compatability fix rearrange excon.rb to initialize defaults sooner set nonblock at init time for ssl socket fixes around nonbleck to properly skip/warn if unavailable but selected 0.16.1 08/15/2012 ================= default to SSLv3 usage 0.16.0 08/14/2012 ================= add nonblock => false to use blocking requests with Timeout.timeout update readme to describe nonblock and idempotent options 0.15.5 08/01/2012 ================= consolidate proxy handling proxy settings should pull from connection instead of params (allows Excon.defaults[:proxy]) properly raise connect timeout errors change recommended standard instrumentor ENV to EXCON_DEBUG remove readline nonblock protections (they didn't fix the windows issue) don't swallow non-nonblock SSL exceptions consistency fixes for ssl nonblock error handling do SNI in ssl_socket setup use Excon::Response#parse to read https proxy response 0.15.4 07/16/12 =============== rescue/retry nonblock errors from readline (even though they shouldn't occur) 0.15.3 07/16/12 =============== remove erroneous newline in proxy auth header 0.15.2 07/16/12 =============== fix capitalization of EXCON constant in auth stuff properly handle nil user/password values in auth various fixes to proxy and related tests 0.15.1 07/16/12 =============== fix for sending user/pass to proxy 0.15.0 07/16/12 =============== clarifications in README added base error class to message for Excon::SocketError fixes for proxy, sets properly on http and passes auth 0.14.3 07/05/12 =============== remove a redundant setter in response streamer standardize on each (instead of for) to iterate enumerables 0.14.2 06/26/12 =============== fix invoke_stub to convert files into strings before comparing 0.14.1 06/19/12 =============== accept port as a separate option ensure first read from socket is nonblock (fixes read_timeouts) respect upper case env vars 0.14.0 05/31/12 =============== make stubs LIFO for ease of use/understanding, updated README to explain simplify https proxy logic add instrumentation for responses add StandardInstrumentor (events got to stderr) EXCON_STANDARD_INSTRUMENTOR=true sets StandardInstrumentor as default 0.13.3 04/05/12 =============== * fix for file size calculation in 1.8.7 0.13.3 04/05/12 =============== * fixes for file like objects which do not respond to binmode 0.13.2 03/26/12 =============== * fix to avoid issues when Tempfile is not required/defined. Thanks nextmat 0.13.1 03/26/12 =============== * fix to allow for passing Tempfile objects as body. Thanks rkyrychuk 0.13.0 03/22/12 =============== * workaround for jruby (use blocking read/write for ssl sockets) 0.12.0 03/18/12 =============== * use params to set ssl (so each connection could differ) * bundle a default cert 0.11.0 03/15/12 =============== * add request_block to support chunked requests * deprecate implicit block in favor of explicit response_block * loosen activesupport and jruby-openssl development dependencies 0.10.1 03/13/12 =============== * avoid calling empty? on file body 0.10.0 03/01/12 =============== * avoid setting/passing Content-Length headers for GET requests with no body * remove rcov from tasks/bundle in development * automatically parse and use basic auth when passed as part of a uri * fix for erroneous recursion in Excon.defaults= 0.9.6 02/22/12 ============== * add support for setting ca_file. Thanks mattmatt! * add docs for Excon.stubs.clear and expects. Thanks masterkain! * add class level defaults * fix ruby warnings. Thanks foca! * improve instrumentation docs. Thanks mkb! * fix for empty body and SSL sockets. Thanks pweldon! 0.9.5 01/16/12 ============== * fix getaddrinfo usage for rbx * fix mock handling when a block in passed * add jruby to ci 0.9.4 12/21/11 ============== * fix for regexp/capture setting 0.9.3 12/21/11 ============== * fix CONSTANTS referenced in SSL_Socket * fix default value for proxy in SSL_Socket * fix non-regexp header matching * return captures from regexp based params 0.9.2 12/16/11 ============== * update mocks to allow for regex based matching * fixes for write_nonblock+OpenSSL weirdness 0.9.1 12/15/11 ============== * update mock usage to be at the connection/request level 0.9.0 12/14/11 ============== * add ability to do instrumentation * misc cleanup * deprecate retry_limit accessor in favor of passing as a param 0.8.0 12/12/11 ============== * move mock handler to its own method * better handling around openssl errors * simplify writing by removing buffer 0.7.12 12/04/11 =============== * revert: explicitly close files after writing 0.7.11 12/24/11 ============== * rebuild gem broken gemspec with 1.8.x 0.7.10 12/04/11 =============== * explicitly close files after writing 0.7.9 11/30/11 ============== * add ability to modify retry limit * use addrinfo to avoid localhost and other IPv6 issues * update gemspec authors to add Dan Peterson and Matt Sanders 0.7.8 11/24/11 ============== * rebuild gem broken gemspec with 1.8.x 0.7.7 11/24/11 ============== * setup for travis ci automated testing * fix EOFError * use Socket.getaddrinfo to fix IPv6 issues 0.7.6 10/04/11 ============== * fixes to provide for using openssl-nonblock for 1.8.x * correctly pass per-request settings to socket * fix for nonblocking stuff when waiting for socket close * use 127.0.0.1 instead of localhost in tests (fixes some errors) 0.7.5 10/03/11 ============== * convert port to integer in sockaddr_in (jruby won't convert for you) 0.7.4 09/30/11 ============== * rescue write would block from openssl 0.7.3 09/27/11 ============== * fix nonblocking read to avoid reading past chunk in chunked encoded * rescue read would block from openssl 0.7.2 09/24/11 ============== * fix buffer drain for socket#write. thanks dpiddy * rescue/retry timeout errors for idempotent requests. thanks dpiddy * timeouts should raise an excon specific error 0.7.1 09/13/11 ============== * use nonblocking only when available (skip for 1.8.x SSL) 0.7.0 09/12/11 ============== * change connects and most read/writes to use nonblocking methods * provide connect/read/write timeouts 0.6.6 09/06/11 ============== * cleanup/refactoring. thanks nextmat * default to connection close as request delimiter 0.6.5 07/13/11 ============== * properly stream responses with proc * fix mock with block to match real requests 0.6.4 07/05/11 ============== * add block support to mocks. thanks dmeiz * fixes for stub matching. thanks dmeiz * don't do post_connection_check if verify mode is off * check excon state for verify mode instead of checking OpenSSL constants * use RbConfig to find OS. thanks trym * fixes for idempotent/retry. thanks lstoll 0.6.3 05/02/11 ============== * fixes for header parsing to allow whitespace after :. thanks myronmarston * get_header optimization. thanks nextmat * rewind body on retry. thanks pweldon 0.6.2 04/11/11 ============== * fix block arguments for connection close. thanks ggoodale 0.6.1 04/05/11 ============== * add support for HTTPS proxies. thanks mrowe * add support for http_proxy and https_proxy ENV variables. thanks mrowe * fix progress for requests with blocks that are chunked or connection close 0.6.0 03/30/11 ============== * basic support for using proxies. thanks mattsa * yield remaining/total bytes to streaming block. thanks nate * minor optimizations/cleanup 0.5.8 03/24/11 ============== * fix regression where nil values in queries were ignored in 1.9. thanks mattsa * fix regression causing EOFError when making many connections in one thread * added tests to prevent both of the former from recurring 0.5.7 03/21/11 ============== * lazily connect, rather than connecting at #initialize * add rough first pass at stubbing * minor optimizations * ssl client certification support. thanks thommay * skip figuring out/setting Content-Length if one is supplied. Thanks pweldon * do not try to parse body for 205 and 304. Thanks seancribbs 0.5.6 02/19/11 ============== * only split headers by first ':' to allow for values with ':'. Thanks mtodd! * check a string instance for force_encoding, not class. Thanks seancribbs! * add benchmarks related to for vs each for enumerable. Thanks caius! * fix default rake task to run tests 0.5.5 02/18/11 ============== * use local variables in response parsing, prevents keeping state across requests 0.5.4 02/18/11 ============== * 204 should not attempt to parse body 0.5.3 02/17/11 ============== * header comparison for responses is now case insensitive * change to allow :idempotent => false to operate correctly * misc cleanup excon-1.3.1/data/000077500000000000000000000000001510272305100135355ustar00rootroot00000000000000excon-1.3.1/data/cacert.pem000066400000000000000000007026361510272305100155170ustar00rootroot00000000000000## ## Bundle of CA Root Certificates ## ## Certificate data from Mozilla as of: Tue Nov 4 04:12:02 2025 GMT ## ## Find updated versions here: https://curl.se/docs/caextract.html ## ## This is a bundle of X.509 certificates of public Certificate Authorities ## (CA). These were automatically extracted from Mozilla's root certificates ## file (certdata.txt). This file can be found in the mozilla source tree: ## https://raw.githubusercontent.com/mozilla-firefox/firefox/refs/heads/release/security/nss/lib/ckfw/builtins/certdata.txt ## ## It contains the certificates in PEM format and therefore ## can be directly used with curl / libcurl / php_curl, or with ## an Apache+mod_ssl webserver for SSL client authentication. ## Just configure this file as the SSLCACertificateFile. ## ## Conversion done with mk-ca-bundle.pl version 1.29. ## SHA256: 039132bff5179ce57cec5803ba59fe37abe6d0297aeb538c5af27847f0702517 ## Entrust Root Certification Authority ==================================== -----BEGIN CERTIFICATE----- MIIEkTCCA3mgAwIBAgIERWtQVDANBgkqhkiG9w0BAQUFADCBsDELMAkGA1UEBhMCVVMxFjAUBgNV BAoTDUVudHJ1c3QsIEluYy4xOTA3BgNVBAsTMHd3dy5lbnRydXN0Lm5ldC9DUFMgaXMgaW5jb3Jw b3JhdGVkIGJ5IHJlZmVyZW5jZTEfMB0GA1UECxMWKGMpIDIwMDYgRW50cnVzdCwgSW5jLjEtMCsG A1UEAxMkRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5MB4XDTA2MTEyNzIwMjM0 MloXDTI2MTEyNzIwNTM0MlowgbAxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1FbnRydXN0LCBJbmMu MTkwNwYDVQQLEzB3d3cuZW50cnVzdC5uZXQvQ1BTIGlzIGluY29ycG9yYXRlZCBieSByZWZlcmVu Y2UxHzAdBgNVBAsTFihjKSAyMDA2IEVudHJ1c3QsIEluYy4xLTArBgNVBAMTJEVudHJ1c3QgUm9v dCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALaVtkNC+sZtKm9I35RMOVcF7sN5EUFoNu3s/poBj6E4KPz3EEZmLk0eGrEaTsbRwJWIsMn/MYsz A9u3g3s+IIRe7bJWKKf44LlAcTfFy0cOlypowCKVYhXbR9n10Cv/gkvJrT7eTNuQgFA/CYqEAOww Cj0Yzfv9KlmaI5UXLEWeH25DeW0MXJj+SKfFI0dcXv1u5x609mhF0YaDW6KKjbHjKYD+JXGIrb68 j6xSlkuqUY3kEzEZ6E5Nn9uss2rVvDlUccp6en+Q3X0dgNmBu1kmwhH+5pPi94DkZfs0Nw4pgHBN rziGLp5/V6+eF67rHMsoIV+2HNjnogQi+dPa2MsCAwEAAaOBsDCBrTAOBgNVHQ8BAf8EBAMCAQYw DwYDVR0TAQH/BAUwAwEB/zArBgNVHRAEJDAigA8yMDA2MTEyNzIwMjM0MlqBDzIwMjYxMTI3MjA1 MzQyWjAfBgNVHSMEGDAWgBRokORnpKZTgMeGZqTx90tD+4S9bTAdBgNVHQ4EFgQUaJDkZ6SmU4DH hmak8fdLQ/uEvW0wHQYJKoZIhvZ9B0EABBAwDhsIVjcuMTo0LjADAgSQMA0GCSqGSIb3DQEBBQUA A4IBAQCT1DCw1wMgKtD5Y+iRDAUgqV8ZyntyTtSx29CW+1RaGSwMCPeyvIWonX9tO1KzKtvn1ISM Y/YPyyYBkVBs9F8U4pN0wBOeMDpQ47RgxRzwIkSNcUesyBrJ6ZuaAGAT/3B+XxFNSRuzFVJ7yVTa v52Vr2ua2J7p8eRDjeIRRDq/r72DQnNSi6q7pynP9WQcCk3RvKqsnyrQ/39/2n3qse0wJcGE2jTS W3iDVuycNsMm4hH2Z0kdkquM++v/eu6FSqdQgPCnXEqULl8FmTxSQeDNtGPPAUO6nIPcj2A781q0 tHuu2guQOHXvgR1m0vdXcDazv/wor3ElhVsT/h5/WrQ8 -----END CERTIFICATE----- QuoVadis Root CA 2 ================== -----BEGIN CERTIFICATE----- MIIFtzCCA5+gAwIBAgICBQkwDQYJKoZIhvcNAQEFBQAwRTELMAkGA1UEBhMCQk0xGTAXBgNVBAoT EFF1b1ZhZGlzIExpbWl0ZWQxGzAZBgNVBAMTElF1b1ZhZGlzIFJvb3QgQ0EgMjAeFw0wNjExMjQx ODI3MDBaFw0zMTExMjQxODIzMzNaMEUxCzAJBgNVBAYTAkJNMRkwFwYDVQQKExBRdW9WYWRpcyBM aW1pdGVkMRswGQYDVQQDExJRdW9WYWRpcyBSb290IENBIDIwggIiMA0GCSqGSIb3DQEBAQUAA4IC DwAwggIKAoICAQCaGMpLlA0ALa8DKYrwD4HIrkwZhR0In6spRIXzL4GtMh6QRr+jhiYaHv5+HBg6 XJxgFyo6dIMzMH1hVBHL7avg5tKifvVrbxi3Cgst/ek+7wrGsxDp3MJGF/hd/aTa/55JWpzmM+Yk lvc/ulsrHHo1wtZn/qtmUIttKGAr79dgw8eTvI02kfN/+NsRE8Scd3bBrrcCaoF6qUWD4gXmuVbB lDePSHFjIuwXZQeVikvfj8ZaCuWw419eaxGrDPmF60Tp+ARz8un+XJiM9XOva7R+zdRcAitMOeGy lZUtQofX1bOQQ7dsE/He3fbE+Ik/0XX1ksOR1YqI0JDs3G3eicJlcZaLDQP9nL9bFqyS2+r+eXyt 66/3FsvbzSUr5R/7mp/iUcw6UwxI5g69ybR2BlLmEROFcmMDBOAENisgGQLodKcftslWZvB1Jdxn wQ5hYIizPtGo/KPaHbDRsSNU30R2be1B2MGyIrZTHN81Hdyhdyox5C315eXbyOD/5YDXC2Og/zOh D7osFRXql7PSorW+8oyWHhqPHWykYTe5hnMz15eWniN9gqRMgeKh0bpnX5UHoycR7hYQe7xFSkyy BNKr79X9DFHOUGoIMfmR2gyPZFwDwzqLID9ujWc9Otb+fVuIyV77zGHcizN300QyNQliBJIWENie J0f7OyHj+OsdWwIDAQABo4GwMIGtMA8GA1UdEwEB/wQFMAMBAf8wCwYDVR0PBAQDAgEGMB0GA1Ud DgQWBBQahGK8SEwzJQTU7tD2A8QZRtGUazBuBgNVHSMEZzBlgBQahGK8SEwzJQTU7tD2A8QZRtGU a6FJpEcwRTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxGzAZBgNVBAMT ElF1b1ZhZGlzIFJvb3QgQ0EgMoICBQkwDQYJKoZIhvcNAQEFBQADggIBAD4KFk2fBluornFdLwUv Z+YTRYPENvbzwCYMDbVHZF34tHLJRqUDGCdViXh9duqWNIAXINzng/iN/Ae42l9NLmeyhP3ZRPx3 UIHmfLTJDQtyU/h2BwdBR5YM++CCJpNVjP4iH2BlfF/nJrP3MpCYUNQ3cVX2kiF495V5+vgtJodm VjB3pjd4M1IQWK4/YY7yarHvGH5KWWPKjaJW1acvvFYfzznB4vsKqBUsfU16Y8Zsl0Q80m/DShcK +JDSV6IZUaUtl0HaB0+pUNqQjZRG4T7wlP0QADj1O+hA4bRuVhogzG9Yje0uRY/W6ZM/57Es3zrW IozchLsib9D45MY56QSIPMO661V6bYCZJPVsAfv4l7CUW+v90m/xd2gNNWQjrLhVoQPRTUIZ3Ph1 WVaj+ahJefivDrkRoHy3au000LYmYjgahwz46P0u05B/B5EqHdZ+XIWDmbA4CD/pXvk1B+TJYm5X f6dQlfe6yJvmjqIBxdZmv3lh8zwc4bmCXF2gw+nYSL0ZohEUGW6yhhtoPkg3Goi3XZZenMfvJ2II 4pEZXNLxId26F0KCl3GBUzGpn/Z9Yr9y4aOTHcyKJloJONDO1w2AFrR4pTqHTI2KpdVGl/IsELm8 VCLAAVBpQ570su9t+Oza8eOx79+Rj1QqCyXBJhnEUhAFZdWCEOrCMc0u -----END CERTIFICATE----- QuoVadis Root CA 3 ================== -----BEGIN CERTIFICATE----- MIIGnTCCBIWgAwIBAgICBcYwDQYJKoZIhvcNAQEFBQAwRTELMAkGA1UEBhMCQk0xGTAXBgNVBAoT EFF1b1ZhZGlzIExpbWl0ZWQxGzAZBgNVBAMTElF1b1ZhZGlzIFJvb3QgQ0EgMzAeFw0wNjExMjQx OTExMjNaFw0zMTExMjQxOTA2NDRaMEUxCzAJBgNVBAYTAkJNMRkwFwYDVQQKExBRdW9WYWRpcyBM aW1pdGVkMRswGQYDVQQDExJRdW9WYWRpcyBSb290IENBIDMwggIiMA0GCSqGSIb3DQEBAQUAA4IC DwAwggIKAoICAQDMV0IWVJzmmNPTTe7+7cefQzlKZbPoFog02w1ZkXTPkrgEQK0CSzGrvI2RaNgg DhoB4hp7Thdd4oq3P5kazethq8Jlph+3t723j/z9cI8LoGe+AaJZz3HmDyl2/7FWeUUrH556VOij KTVopAFPD6QuN+8bv+OPEKhyq1hX51SGyMnzW9os2l2ObjyjPtr7guXd8lyyBTNvijbO0BNO/79K DDRMpsMhvVAEVeuxu537RR5kFd5VAYwCdrXLoT9CabwvvWhDFlaJKjdhkf2mrk7AyxRllDdLkgbv BNDInIjbC3uBr7E9KsRlOni27tyAsdLTmZw67mtaa7ONt9XOnMK+pUsvFrGeaDsGb659n/je7Mwp p5ijJUMv7/FfJuGITfhebtfZFG4ZM2mnO4SJk8RTVROhUXhA+LjJou57ulJCg54U7QVSWllWp5f8 nT8KKdjcT5EOE7zelaTfi5m+rJsziO+1ga8bxiJTyPbH7pcUsMV8eFLI8M5ud2CEpukqdiDtWAEX MJPpGovgc2PZapKUSU60rUqFxKMiMPwJ7Wgic6aIDFUhWMXhOp8q3crhkODZc6tsgLjoC2SToJyM Gf+z0gzskSaHirOi4XCPLArlzW1oUevaPwV/izLmE1xr/l9A4iLItLRkT9a6fUg+qGkM17uGcclz uD87nSVL2v9A6wIDAQABo4IBlTCCAZEwDwYDVR0TAQH/BAUwAwEB/zCB4QYDVR0gBIHZMIHWMIHT BgkrBgEEAb5YAAMwgcUwgZMGCCsGAQUFBwICMIGGGoGDQW55IHVzZSBvZiB0aGlzIENlcnRpZmlj YXRlIGNvbnN0aXR1dGVzIGFjY2VwdGFuY2Ugb2YgdGhlIFF1b1ZhZGlzIFJvb3QgQ0EgMyBDZXJ0 aWZpY2F0ZSBQb2xpY3kgLyBDZXJ0aWZpY2F0aW9uIFByYWN0aWNlIFN0YXRlbWVudC4wLQYIKwYB BQUHAgEWIWh0dHA6Ly93d3cucXVvdmFkaXNnbG9iYWwuY29tL2NwczALBgNVHQ8EBAMCAQYwHQYD VR0OBBYEFPLAE+CCQz777i9nMpY1XNu4ywLQMG4GA1UdIwRnMGWAFPLAE+CCQz777i9nMpY1XNu4 ywLQoUmkRzBFMQswCQYDVQQGEwJCTTEZMBcGA1UEChMQUXVvVmFkaXMgTGltaXRlZDEbMBkGA1UE AxMSUXVvVmFkaXMgUm9vdCBDQSAzggIFxjANBgkqhkiG9w0BAQUFAAOCAgEAT62gLEz6wPJv92ZV qyM07ucp2sNbtrCD2dDQ4iH782CnO11gUyeim/YIIirnv6By5ZwkajGxkHon24QRiSemd1o417+s hvzuXYO8BsbRd2sPbSQvS3pspweWyuOEn62Iix2rFo1bZhfZFvSLgNLd+LJ2w/w4E6oM3kJpK27z POuAJ9v1pkQNn1pVWQvVDVJIxa6f8i+AxeoyUDUSly7B4f/xI4hROJ/yZlZ25w9Rl6VSDE1JUZU2 Pb+iSwwQHYaZTKrzchGT5Or2m9qoXadNt54CrnMAyNojA+j56hl0YgCUyyIgvpSnWbWCar6ZeXqp 8kokUvd0/bpO5qgdAm6xDYBEwa7TIzdfu4V8K5Iu6H6li92Z4b8nby1dqnuH/grdS/yO9SbkbnBC bjPsMZ57k8HkyWkaPcBrTiJt7qtYTcbQQcEr6k8Sh17rRdhs9ZgC06DYVYoGmRmioHfRMJ6szHXu g/WwYjnPbFfiTNKRCw51KBuav/0aQ/HKd/s7j2G4aSgWQgRecCocIdiP4b0jWy10QJLZYxkNc91p vGJHvOB0K7Lrfb5BG7XARsWhIstfTsEokt4YutUqKLsRixeTmJlglFwjz1onl14LBQaTNx47aTbr qZ5hHY8y2o4M1nQ+ewkk2gF3R8Q7zTSMmfXK4SVhM7JZG+Ju1zdXtg2pEto= -----END CERTIFICATE----- DigiCert Assured ID Root CA =========================== -----BEGIN CERTIFICATE----- MIIDtzCCAp+gAwIBAgIQDOfg5RfYRv6P5WD8G/AwOTANBgkqhkiG9w0BAQUFADBlMQswCQYDVQQG EwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQw IgYDVQQDExtEaWdpQ2VydCBBc3N1cmVkIElEIFJvb3QgQ0EwHhcNMDYxMTEwMDAwMDAwWhcNMzEx MTEwMDAwMDAwWjBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQL ExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2VydCBBc3N1cmVkIElEIFJvb3QgQ0Ew ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtDhXO5EOAXLGH87dg+XESpa7cJpSIqvTO 9SA5KFhgDPiA2qkVlTJhPLWxKISKityfCgyDF3qPkKyK53lTXDGEKvYPmDI2dsze3Tyoou9q+yHy UmHfnyDXH+Kx2f4YZNISW1/5WBg1vEfNoTb5a3/UsDg+wRvDjDPZ2C8Y/igPs6eD1sNuRMBhNZYW /lmci3Zt1/GiSw0r/wty2p5g0I6QNcZ4VYcgoc/lbQrISXwxmDNsIumH0DJaoroTghHtORedmTpy oeb6pNnVFzF1roV9Iq4/AUaG9ih5yLHa5FcXxH4cDrC0kqZWs72yl+2qp/C3xag/lRbQ/6GW6whf GHdPAgMBAAGjYzBhMA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRF 66Kv9JLLgjEtUYunpyGd823IDzAfBgNVHSMEGDAWgBRF66Kv9JLLgjEtUYunpyGd823IDzANBgkq hkiG9w0BAQUFAAOCAQEAog683+Lt8ONyc3pklL/3cmbYMuRCdWKuh+vy1dneVrOfzM4UKLkNl2Bc EkxY5NM9g0lFWJc1aRqoR+pWxnmrEthngYTffwk8lOa4JiwgvT2zKIn3X/8i4peEH+ll74fg38Fn SbNd67IJKusm7Xi+fT8r87cmNW1fiQG2SVufAQWbqz0lwcy2f8Lxb4bG+mRo64EtlOtCt/qMHt1i 8b5QZ7dsvfPxH2sMNgcWfzd8qVttevESRmCD1ycEvkvOl77DZypoEd+A5wwzZr8TDRRu838fYxAe +o0bJW1sj6W3YQGx0qMmoRBxna3iw/nDmVG3KwcIzi7mULKn+gpFL6Lw8g== -----END CERTIFICATE----- DigiCert Global Root CA ======================= -----BEGIN CERTIFICATE----- MIIDrzCCApegAwIBAgIQCDvgVpBCRrGhdWrJWZHHSjANBgkqhkiG9w0BAQUFADBhMQswCQYDVQQG EwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSAw HgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBDQTAeFw0wNjExMTAwMDAwMDBaFw0zMTExMTAw MDAwMDBaMGExCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3 dy5kaWdpY2VydC5jb20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IENBMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4jvhEXLeqKTTo1eqUKKPC3eQyaKl7hLOllsBCSDMAZOn TjC3U/dDxGkAV53ijSLdhwZAAIEJzs4bg7/fzTtxRuLWZscFs3YnFo97nh6Vfe63SKMI2tavegw5 BmV/Sl0fvBf4q77uKNd0f3p4mVmFaG5cIzJLv07A6Fpt43C/dxC//AH2hdmoRBBYMql1GNXRor5H 4idq9Joz+EkIYIvUX7Q6hL+hqkpMfT7PT19sdl6gSzeRntwi5m3OFBqOasv+zbMUZBfHWymeMr/y 7vrTC0LUq7dBMtoM1O/4gdW7jVg/tRvoSSiicNoxBN33shbyTApOB6jtSj1etX+jkMOvJwIDAQAB o2MwYTAOBgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA95QNVbRTLtm 8KPiGxvDl7I90VUwHwYDVR0jBBgwFoAUA95QNVbRTLtm8KPiGxvDl7I90VUwDQYJKoZIhvcNAQEF BQADggEBAMucN6pIExIK+t1EnE9SsPTfrgT1eXkIoyQY/EsrhMAtudXH/vTBH1jLuG2cenTnmCmr EbXjcKChzUyImZOMkXDiqw8cvpOp/2PV5Adg06O/nVsJ8dWO41P0jmP6P6fbtGbfYmbW0W5BjfIt tep3Sp+dWOIrWcBAI+0tKIJFPnlUkiaY4IBIqDfv8NZ5YBberOgOzW6sRBc4L0na4UU+Krk2U886 UAb3LujEV0lsYSEY1QSteDwsOoBrp+uvFRTp2InBuThs4pFsiv9kuXclVzDAGySj4dzp30d8tbQk CAUw7C29C79Fv1C5qfPrmAESrciIxpg0X40KPMbp1ZWVbd4= -----END CERTIFICATE----- DigiCert High Assurance EV Root CA ================================== -----BEGIN CERTIFICATE----- MIIDxTCCAq2gAwIBAgIQAqxcJmoLQJuPC3nyrkYldzANBgkqhkiG9w0BAQUFADBsMQswCQYDVQQG EwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSsw KQYDVQQDEyJEaWdpQ2VydCBIaWdoIEFzc3VyYW5jZSBFViBSb290IENBMB4XDTA2MTExMDAwMDAw MFoXDTMxMTExMDAwMDAwMFowbDELMAkGA1UEBhMCVVMxFTATBgNVBAoTDERpZ2lDZXJ0IEluYzEZ MBcGA1UECxMQd3d3LmRpZ2ljZXJ0LmNvbTErMCkGA1UEAxMiRGlnaUNlcnQgSGlnaCBBc3N1cmFu Y2UgRVYgUm9vdCBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMbM5XPm+9S75S0t Mqbf5YE/yc0lSbZxKsPVlDRnogocsF9ppkCxxLeyj9CYpKlBWTrT3JTWPNt0OKRKzE0lgvdKpVMS OO7zSW1xkX5jtqumX8OkhPhPYlG++MXs2ziS4wblCJEMxChBVfvLWokVfnHoNb9Ncgk9vjo4UFt3 MRuNs8ckRZqnrG0AFFoEt7oT61EKmEFBIk5lYYeBQVCmeVyJ3hlKV9Uu5l0cUyx+mM0aBhakaHPQ NAQTXKFx01p8VdteZOE3hzBWBOURtCmAEvF5OYiiAhF8J2a3iLd48soKqDirCmTCv2ZdlYTBoSUe h10aUAsgEsxBu24LUTi4S8sCAwEAAaNjMGEwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLE+w2kD+L9HAdSYJhoIAu9jZCvDMB8GA1UdIwQYMBaAFLE+w2kD+L9HAdSY JhoIAu9jZCvDMA0GCSqGSIb3DQEBBQUAA4IBAQAcGgaX3NecnzyIZgYIVyHbIUf4KmeqvxgydkAQ V8GK83rZEWWONfqe/EW1ntlMMUu4kehDLI6zeM7b41N5cdblIZQB2lWHmiRk9opmzN6cN82oNLFp myPInngiK3BD41VHMWEZ71jFhS9OMPagMRYjyOfiZRYzy78aG6A9+MpeizGLYAiJLQwGXFK3xPkK mNEVX58Svnw2Yzi9RKR/5CYrCsSXaQ3pjOLAEFe4yHYSkVXySGnYvCoCWw9E1CAx2/S6cCZdkGCe vEsXCS+0yx5DaMkHJ8HSXPfqIbloEpw8nL+e/IBcm2PN7EeqJSdnoDfzAIJ9VNep+OkuE6N36B9K -----END CERTIFICATE----- SwissSign Gold CA - G2 ====================== -----BEGIN CERTIFICATE----- MIIFujCCA6KgAwIBAgIJALtAHEP1Xk+wMA0GCSqGSIb3DQEBBQUAMEUxCzAJBgNVBAYTAkNIMRUw EwYDVQQKEwxTd2lzc1NpZ24gQUcxHzAdBgNVBAMTFlN3aXNzU2lnbiBHb2xkIENBIC0gRzIwHhcN MDYxMDI1MDgzMDM1WhcNMzYxMDI1MDgzMDM1WjBFMQswCQYDVQQGEwJDSDEVMBMGA1UEChMMU3dp c3NTaWduIEFHMR8wHQYDVQQDExZTd2lzc1NpZ24gR29sZCBDQSAtIEcyMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAr+TufoskDhJuqVAtFkQ7kpJcyrhdhJJCEyq8ZVeCQD5XJM1QiyUq t2/876LQwB8CJEoTlo8jE+YoWACjR8cGp4QjK7u9lit/VcyLwVcfDmJlD909Vopz2q5+bbqBHH5C jCA12UNNhPqE21Is8w4ndwtrvxEvcnifLtg+5hg3Wipy+dpikJKVyh+c6bM8K8vzARO/Ws/BtQpg vd21mWRTuKCWs2/iJneRjOBiEAKfNA+k1ZIzUd6+jbqEemA8atufK+ze3gE/bk3lUIbLtK/tREDF ylqM2tIrfKjuvqblCqoOpd8FUrdVxyJdMmqXl2MT28nbeTZ7hTpKxVKJ+STnnXepgv9VHKVxaSvR AiTysybUa9oEVeXBCsdtMDeQKuSeFDNeFhdVxVu1yzSJkvGdJo+hB9TGsnhQ2wwMC3wLjEHXuend jIj3o02yMszYF9rNt85mndT9Xv+9lz4pded+p2JYryU0pUHHPbwNUMoDAw8IWh+Vc3hiv69yFGkO peUDDniOJihC8AcLYiAQZzlG+qkDzAQ4embvIIO1jEpWjpEA/I5cgt6IoMPiaG59je883WX0XaxR 7ySArqpWl2/5rX3aYT+YdzylkbYcjCbaZaIJbcHiVOO5ykxMgI93e2CaHt+28kgeDrpOVG2Y4OGi GqJ3UM/EY5LsRxmd6+ZrzsECAwEAAaOBrDCBqTAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUw AwEB/zAdBgNVHQ4EFgQUWyV7lqRlUX64OfPAeGZe6Drn8O4wHwYDVR0jBBgwFoAUWyV7lqRlUX64 OfPAeGZe6Drn8O4wRgYDVR0gBD8wPTA7BglghXQBWQECAQEwLjAsBggrBgEFBQcCARYgaHR0cDov L3JlcG9zaXRvcnkuc3dpc3NzaWduLmNvbS8wDQYJKoZIhvcNAQEFBQADggIBACe645R88a7A3hfm 5djV9VSwg/S7zV4Fe0+fdWavPOhWfvxyeDgD2StiGwC5+OlgzczOUYrHUDFu4Up+GC9pWbY9ZIEr 44OE5iKHjn3g7gKZYbge9LgriBIWhMIxkziWMaa5O1M/wySTVltpkuzFwbs4AOPsF6m43Md8AYOf Mke6UiI0HTJ6CVanfCU2qT1L2sCCbwq7EsiHSycR+R4tx5M/nttfJmtS2S6K8RTGRI0Vqbe/vd6m Gu6uLftIdxf+u+yvGPUqUfA5hJeVbG4bwyvEdGB5JbAKJ9/fXtI5z0V9QkvfsywexcZdylU6oJxp mo/a77KwPJ+HbBIrZXAVUjEaJM9vMSNQH4xPjyPDdEFjHFWoFN0+4FFQz/EbMFYOkrCChdiDyyJk vC24JdVUorgG6q2SpCSgwYa1ShNqR88uC1aVVMvOmttqtKay20EIhid392qgQmwLOM7XdVAyksLf KzAiSNDVQTglXaTpXZ/GlHXQRf0wl0OPkKsKx4ZzYEppLd6leNcG2mqeSz53OiATIgHQv2ieY2Br NU0LbbqhPcCT4H8js1WtciVORvnSFu+wZMEBnunKoGqYDs/YYPIvSbjkQuE4NRb0yG5P94FW6Lqj viOvrv1vA+ACOzB2+httQc8Bsem4yWb02ybzOqR08kkkW8mw0FfB+j564ZfJ -----END CERTIFICATE----- SecureTrust CA ============== -----BEGIN CERTIFICATE----- MIIDuDCCAqCgAwIBAgIQDPCOXAgWpa1Cf/DrJxhZ0DANBgkqhkiG9w0BAQUFADBIMQswCQYDVQQG EwJVUzEgMB4GA1UEChMXU2VjdXJlVHJ1c3QgQ29ycG9yYXRpb24xFzAVBgNVBAMTDlNlY3VyZVRy dXN0IENBMB4XDTA2MTEwNzE5MzExOFoXDTI5MTIzMTE5NDA1NVowSDELMAkGA1UEBhMCVVMxIDAe BgNVBAoTF1NlY3VyZVRydXN0IENvcnBvcmF0aW9uMRcwFQYDVQQDEw5TZWN1cmVUcnVzdCBDQTCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKukgeWVzfX2FI7CT8rU4niVWJxB4Q2ZQCQX OZEzZum+4YOvYlyJ0fwkW2Gz4BERQRwdbvC4u/jep4G6pkjGnx29vo6pQT64lO0pGtSO0gMdA+9t DWccV9cGrcrI9f4Or2YlSASWC12juhbDCE/RRvgUXPLIXgGZbf2IzIaowW8xQmxSPmjL8xk037uH GFaAJsTQ3MBv396gwpEWoGQRS0S8Hvbn+mPeZqx2pHGj7DaUaHp3pLHnDi+BeuK1cobvomuL8A/b 01k/unK8RCSc43Oz969XL0Imnal0ugBS8kvNU3xHCzaFDmapCJcWNFfBZveA4+1wVMeT4C4oFVmH ursCAwEAAaOBnTCBmjATBgkrBgEEAYI3FAIEBh4EAEMAQTALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/ BAUwAwEB/zAdBgNVHQ4EFgQUQjK2FvoE/f5dS3rD/fdMQB1aQ68wNAYDVR0fBC0wKzApoCegJYYj aHR0cDovL2NybC5zZWN1cmV0cnVzdC5jb20vU1RDQS5jcmwwEAYJKwYBBAGCNxUBBAMCAQAwDQYJ KoZIhvcNAQEFBQADggEBADDtT0rhWDpSclu1pqNlGKa7UTt36Z3q059c4EVlew3KW+JwULKUBRSu SceNQQcSc5R+DCMh/bwQf2AQWnL1mA6s7Ll/3XpvXdMc9P+IBWlCqQVxyLesJugutIxq/3HcuLHf mbx8IVQr5Fiiu1cprp6poxkmD5kuCLDv/WnPmRoJjeOnnyvJNjR7JLN4TJUXpAYmHrZkUjZfYGfZ nMUFdAvnZyPSCPyI6a6Lf+Ew9Dd+/cYy2i2eRDAwbO4H3tI0/NL/QPZL9GZGBlSm8jIKYyYwa5vR 3ItHuuG51WLQoqD0ZwV4KWMabwTW+MZMo5qxN7SN5ShLHZ4swrhovO0C7jE= -----END CERTIFICATE----- Secure Global CA ================ -----BEGIN CERTIFICATE----- MIIDvDCCAqSgAwIBAgIQB1YipOjUiolN9BPI8PjqpTANBgkqhkiG9w0BAQUFADBKMQswCQYDVQQG EwJVUzEgMB4GA1UEChMXU2VjdXJlVHJ1c3QgQ29ycG9yYXRpb24xGTAXBgNVBAMTEFNlY3VyZSBH bG9iYWwgQ0EwHhcNMDYxMTA3MTk0MjI4WhcNMjkxMjMxMTk1MjA2WjBKMQswCQYDVQQGEwJVUzEg MB4GA1UEChMXU2VjdXJlVHJ1c3QgQ29ycG9yYXRpb24xGTAXBgNVBAMTEFNlY3VyZSBHbG9iYWwg Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvNS7YrGxVaQZx5RNoJLNP2MwhR/jx YDiJiQPpvepeRlMJ3Fz1Wuj3RSoC6zFh1ykzTM7HfAo3fg+6MpjhHZevj8fcyTiW89sa/FHtaMbQ bqR8JNGuQsiWUGMu4P51/pinX0kuleM5M2SOHqRfkNJnPLLZ/kG5VacJjnIFHovdRIWCQtBJwB1g 8NEXLJXr9qXBkqPFwqcIYA1gBBCWeZ4WNOaptvolRTnIHmX5k/Wq8VLcmZg9pYYaDDUz+kulBAYV HDGA76oYa8J719rO+TMg1fW9ajMtgQT7sFzUnKPiXB3jqUJ1XnvUd+85VLrJChgbEplJL4hL/VBi 0XPnj3pDAgMBAAGjgZ0wgZowEwYJKwYBBAGCNxQCBAYeBABDAEEwCwYDVR0PBAQDAgGGMA8GA1Ud EwEB/wQFMAMBAf8wHQYDVR0OBBYEFK9EBMJBfkiD2045AuzshHrmzsmkMDQGA1UdHwQtMCswKaAn oCWGI2h0dHA6Ly9jcmwuc2VjdXJldHJ1c3QuY29tL1NHQ0EuY3JsMBAGCSsGAQQBgjcVAQQDAgEA MA0GCSqGSIb3DQEBBQUAA4IBAQBjGghAfaReUw132HquHw0LURYD7xh8yOOvaliTFGCRsoTciE6+ OYo68+aCiV0BN7OrJKQVDpI1WkpEXk5X+nXOH0jOZvQ8QCaSmGwb7iRGDBezUqXbpZGRzzfTb+cn CDpOGR86p1hcF895P4vkp9MmI50mD1hp/Ed+stCNi5O/KU9DaXR2Z0vPB4zmAve14bRDtUstFJ/5 3CYNv6ZHdAbYiNE6KTCEztI5gGIbqMdXSbxqVVFnFUq+NQfk1XWYN3kwFNspnWzFacxHVaIw98xc f8LDmBxrThaA63p4ZUWiABqvDA1VZDRIuJK58bRQKfJPIx/abKwfROHdI3hRW8cW -----END CERTIFICATE----- COMODO Certification Authority ============================== -----BEGIN CERTIFICATE----- MIIEHTCCAwWgAwIBAgIQToEtioJl4AsC7j41AkblPTANBgkqhkiG9w0BAQUFADCBgTELMAkGA1UE BhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgG A1UEChMRQ09NT0RPIENBIExpbWl0ZWQxJzAlBgNVBAMTHkNPTU9ETyBDZXJ0aWZpY2F0aW9uIEF1 dGhvcml0eTAeFw0wNjEyMDEwMDAwMDBaFw0yOTEyMzEyMzU5NTlaMIGBMQswCQYDVQQGEwJHQjEb MBkGA1UECBMSR3JlYXRlciBNYW5jaGVzdGVyMRAwDgYDVQQHEwdTYWxmb3JkMRowGAYDVQQKExFD T01PRE8gQ0EgTGltaXRlZDEnMCUGA1UEAxMeQ09NT0RPIENlcnRpZmljYXRpb24gQXV0aG9yaXR5 MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ECLi3LjkRv3UcEbVASY06m/weaKXTuH +7uIzg3jLz8GlvCiKVCZrts7oVewdFFxze1CkU1B/qnI2GqGd0S7WWaXUF601CxwRM/aN5VCaTww xHGzUvAhTaHYujl8HJ6jJJ3ygxaYqhZ8Q5sVW7euNJH+1GImGEaaP+vB+fGQV+useg2L23IwambV 4EajcNxo2f8ESIl33rXp+2dtQem8Ob0y2WIC8bGoPW43nOIv4tOiJovGuFVDiOEjPqXSJDlqR6sA 1KGzqSX+DT+nHbrTUcELpNqsOO9VUCQFZUaTNE8tja3G1CEZ0o7KBWFxB3NH5YoZEr0ETc5OnKVI rLsm9wIDAQABo4GOMIGLMB0GA1UdDgQWBBQLWOWLxkwVN6RAqTCpIb5HNlpW/zAOBgNVHQ8BAf8E BAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBJBgNVHR8EQjBAMD6gPKA6hjhodHRwOi8vY3JsLmNvbW9k b2NhLmNvbS9DT01PRE9DZXJ0aWZpY2F0aW9uQXV0aG9yaXR5LmNybDANBgkqhkiG9w0BAQUFAAOC AQEAPpiem/Yb6dc5t3iuHXIYSdOH5EOC6z/JqvWote9VfCFSZfnVDeFs9D6Mk3ORLgLETgdxb8CP OGEIqB6BCsAvIC9Bi5HcSEW88cbeunZrM8gALTFGTO3nnc+IlP8zwFboJIYmuNg4ON8qa90SzMc/ RxdMosIGlgnW2/4/PEZB31jiVg88O8EckzXZOFKs7sjsLjBOlDW0JB9LeGna8gI4zJVSk/BwJVmc IGfE7vmLV2H0knZ9P4SNVbfo5azV8fUZVqZa+5Acr5Pr5RzUZ5ddBA6+C4OmF4O5MBKgxTMVBbkN +8cFduPYSo38NBejxiEovjBFMR7HeL5YYTisO+IBZQ== -----END CERTIFICATE----- COMODO ECC Certification Authority ================================== -----BEGIN CERTIFICATE----- MIICiTCCAg+gAwIBAgIQH0evqmIAcFBUTAGem2OZKjAKBggqhkjOPQQDAzCBhTELMAkGA1UEBhMC R0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgGA1UE ChMRQ09NT0RPIENBIExpbWl0ZWQxKzApBgNVBAMTIkNPTU9ETyBFQ0MgQ2VydGlmaWNhdGlvbiBB dXRob3JpdHkwHhcNMDgwMzA2MDAwMDAwWhcNMzgwMTE4MjM1OTU5WjCBhTELMAkGA1UEBhMCR0Ix GzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgGA1UEChMR Q09NT0RPIENBIExpbWl0ZWQxKzApBgNVBAMTIkNPTU9ETyBFQ0MgQ2VydGlmaWNhdGlvbiBBdXRo b3JpdHkwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQDR3svdcmCFYX7deSRFtSrYpn1PlILBs5BAH+X 4QokPB0BBO490o0JlwzgdeT6+3eKKvUDYEs2ixYjFq0JcfRK9ChQtP6IHG4/bC8vCVlbpVsLM5ni wz2J+Wos77LTBumjQjBAMB0GA1UdDgQWBBR1cacZSBm8nZ3qQUfflMRId5nTeTAOBgNVHQ8BAf8E BAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAwNoADBlAjEA7wNbeqy3eApyt4jf/7VG FAkK+qDmfQjGGoe9GKhzvSbKYAydzpmfz1wPMOG+FDHqAjAU9JM8SaczepBGR7NjfRObTrdvGDeA U/7dIOA1mjbRxwG55tzd8/8dLDoWV9mSOdY= -----END CERTIFICATE----- Certigna ======== -----BEGIN CERTIFICATE----- MIIDqDCCApCgAwIBAgIJAP7c4wEPyUj/MA0GCSqGSIb3DQEBBQUAMDQxCzAJBgNVBAYTAkZSMRIw EAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hMB4XDTA3MDYyOTE1MTMwNVoXDTI3 MDYyOTE1MTMwNVowNDELMAkGA1UEBhMCRlIxEjAQBgNVBAoMCURoaW15b3RpczERMA8GA1UEAwwI Q2VydGlnbmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIaPHJ1tazNHUmgh7stL7q XOEm7RFHYeGifBZ4QCHkYJ5ayGPhxLGWkv8YbWkj4Sti993iNi+RB7lIzw7sebYs5zRLcAglozyH GxnygQcPOJAZ0xH+hrTy0V4eHpbNgGzOOzGTtvKg0KmVEn2lmsxryIRWijOp5yIVUxbwzBfsV1/p ogqYCd7jX5xv3EjjhQsVWqa6n6xI4wmy9/Qy3l40vhx4XUJbzg4ij02Q130yGLMLLGq/jj8UEYkg DncUtT2UCIf3JR7VsmAA7G8qKCVuKj4YYxclPz5EIBb2JsglrgVKtOdjLPOMFlN+XPsRGgjBRmKf Irjxwo1p3Po6WAbfAgMBAAGjgbwwgbkwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUGu3+QTmQ tCRZvgHyUtVF9lo53BEwZAYDVR0jBF0wW4AUGu3+QTmQtCRZvgHyUtVF9lo53BGhOKQ2MDQxCzAJ BgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxETAPBgNVBAMMCENlcnRpZ25hggkA/tzjAQ/J SP8wDgYDVR0PAQH/BAQDAgEGMBEGCWCGSAGG+EIBAQQEAwIABzANBgkqhkiG9w0BAQUFAAOCAQEA hQMeknH2Qq/ho2Ge6/PAD/Kl1NqV5ta+aDY9fm4fTIrv0Q8hbV6lUmPOEvjvKtpv6zf+EwLHyzs+ ImvaYS5/1HI93TDhHkxAGYwP15zRgzB7mFncfca5DClMoTOi62c6ZYTTluLtdkVwj7Ur3vkj1klu PBS1xp81HlDQwY9qcEQCYsuuHWhBp6pX6FOqB9IG9tUUBguRA3UsbHK1YZWaDYu5Def131TN3ubY 1gkIl2PlwS6wt0QmwCbAr1UwnjvVNioZBPRcHv/PLLf/0P2HQBHVESO7SMAhqaQoLf0V+LBOK/Qw WyH8EZE0vkHve52Xdf+XlcCWWC/qu0bXu+TZLg== -----END CERTIFICATE----- ePKI Root Certification Authority ================================= -----BEGIN CERTIFICATE----- MIIFsDCCA5igAwIBAgIQFci9ZUdcr7iXAF7kBtK8nTANBgkqhkiG9w0BAQUFADBeMQswCQYDVQQG EwJUVzEjMCEGA1UECgwaQ2h1bmdod2EgVGVsZWNvbSBDby4sIEx0ZC4xKjAoBgNVBAsMIWVQS0kg Um9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0wNDEyMjAwMjMxMjdaFw0zNDEyMjAwMjMx MjdaMF4xCzAJBgNVBAYTAlRXMSMwIQYDVQQKDBpDaHVuZ2h3YSBUZWxlY29tIENvLiwgTHRkLjEq MCgGA1UECwwhZVBLSSBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5MIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEA4SUP7o3biDN1Z82tH306Tm2d0y8U82N0ywEhajfqhFAHSyZbCUNs IZ5qyNUD9WBpj8zwIuQf5/dqIjG3LBXy4P4AakP/h2XGtRrBp0xtInAhijHyl3SJCRImHJ7K2RKi lTza6We/CKBk49ZCt0Xvl/T29de1ShUCWH2YWEtgvM3XDZoTM1PRYfl61dd4s5oz9wCGzh1NlDiv qOx4UXCKXBCDUSH3ET00hl7lSM2XgYI1TBnsZfZrxQWh7kcT1rMhJ5QQCtkkO7q+RBNGMD+XPNjX 12ruOzjjK9SXDrkb5wdJfzcq+Xd4z1TtW0ado4AOkUPB1ltfFLqfpo0kR0BZv3I4sjZsN/+Z0V0O WQqraffAsgRFelQArr5T9rXn4fg8ozHSqf4hUmTFpmfwdQcGlBSBVcYn5AGPF8Fqcde+S/uUWH1+ ETOxQvdibBjWzwloPn9s9h6PYq2lY9sJpx8iQkEeb5mKPtf5P0B6ebClAZLSnT0IFaUQAS2zMnao lQ2zepr7BxB4EW/hj8e6DyUadCrlHJhBmd8hh+iVBmoKs2pHdmX2Os+PYhcZewoozRrSgx4hxyy/ vv9haLdnG7t4TY3OZ+XkwY63I2binZB1NJipNiuKmpS5nezMirH4JYlcWrYvjB9teSSnUmjDhDXi Zo1jDiVN1Rmy5nk3pyKdVDECAwEAAaNqMGgwHQYDVR0OBBYEFB4M97Zn8uGSJglFwFU5Lnc/Qkqi MAwGA1UdEwQFMAMBAf8wOQYEZyoHAAQxMC8wLQIBADAJBgUrDgMCGgUAMAcGBWcqAwAABBRFsMLH ClZ87lt4DJX5GFPBphzYEDANBgkqhkiG9w0BAQUFAAOCAgEACbODU1kBPpVJufGBuvl2ICO1J2B0 1GqZNF5sAFPZn/KmsSQHRGoqxqWOeBLoR9lYGxMqXnmbnwoqZ6YlPwZpVnPDimZI+ymBV3QGypzq KOg4ZyYr8dW1P2WT+DZdjo2NQCCHGervJ8A9tDkPJXtoUHRVnAxZfVo9QZQlUgjgRywVMRnVvwdV xrsStZf0X4OFunHB2WyBEXYKCrC/gpf36j36+uwtqSiUO1bd0lEursC9CBWMd1I0ltabrNMdjmEP NXubrjlpC2JgQCA2j6/7Nu4tCEoduL+bXPjqpRugc6bY+G7gMwRfaKonh+3ZwZCc7b3jajWvY9+r GNm65ulK6lCKD2GTHuItGeIwlDWSXQ62B68ZgI9HkFFLLk3dheLSClIKF5r8GrBQAuUBo2M3IUxE xJtRmREOc5wGj1QupyheRDmHVi03vYVElOEMSyycw5KFNGHLD7ibSkNS/jQ6fbjpKdx2qcgw+BRx gMYeNkh0IkFch4LoGHGLQYlE535YW6i4jRPpp2zDR+2zGp1iro2C6pSe3VkQw63d4k3jMdXH7Ojy sP6SHhYKGvzZ8/gntsm+HbRsZJB/9OTEW9c3rkIO3aQab3yIVMUWbuF6aC74Or8NpDyJO3inTmOD BCEIZ43ygknQW/2xzQ+DhNQ+IIX3Sj0rnP0qCglN6oH4EZw= -----END CERTIFICATE----- certSIGN ROOT CA ================ -----BEGIN CERTIFICATE----- MIIDODCCAiCgAwIBAgIGIAYFFnACMA0GCSqGSIb3DQEBBQUAMDsxCzAJBgNVBAYTAlJPMREwDwYD VQQKEwhjZXJ0U0lHTjEZMBcGA1UECxMQY2VydFNJR04gUk9PVCBDQTAeFw0wNjA3MDQxNzIwMDRa Fw0zMTA3MDQxNzIwMDRaMDsxCzAJBgNVBAYTAlJPMREwDwYDVQQKEwhjZXJ0U0lHTjEZMBcGA1UE CxMQY2VydFNJR04gUk9PVCBDQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALczuX7I JUqOtdu0KBuqV5Do0SLTZLrTk+jUrIZhQGpgV2hUhE28alQCBf/fm5oqrl0Hj0rDKH/v+yv6efHH rfAQUySQi2bJqIirr1qjAOm+ukbuW3N7LBeCgV5iLKECZbO9xSsAfsT8AzNXDe3i+s5dRdY4zTW2 ssHQnIFKquSyAVwdj1+ZxLGt24gh65AIgoDzMKND5pCCrlUoSe1b16kQOA7+j0xbm0bqQfWwCHTD 0IgztnzXdN/chNFDDnU5oSVAKOp4yw4sLjmdjItuFhwvJoIQ4uNllAoEwF73XVv4EOLQunpL+943 AAAaWyjj0pxzPjKHmKHJUS/X3qwzs08CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8B Af8EBAMCAcYwHQYDVR0OBBYEFOCMm9slSbPxfIbWskKHC9BroNnkMA0GCSqGSIb3DQEBBQUAA4IB AQA+0hyJLjX8+HXd5n9liPRyTMks1zJO890ZeUe9jjtbkw9QSSQTaxQGcu8J06Gh40CEyecYMnQ8 SG4Pn0vU9x7Tk4ZkVJdjclDVVc/6IJMCopvDI5NOFlV2oHB5bc0hH88vLbwZ44gx+FkagQnIl6Z0 x2DEW8xXjrJ1/RsCCdtZb3KTafcxQdaIOL+Hsr0Wefmq5L6IJd1hJyMctTEHBDa0GpC9oHRxUIlt vBTjD4au8as+x6AJzKNI0eDbZOeStc+vckNwi/nDhDwTqn6Sm1dTk/pwwpEOMfmbZ13pljheX7Nz TogVZ96edhBiIL5VaZVDADlN9u6wWk5JRFRYX0KD -----END CERTIFICATE----- NetLock Arany (Class Gold) Főtanúsítvány ======================================== -----BEGIN CERTIFICATE----- MIIEFTCCAv2gAwIBAgIGSUEs5AAQMA0GCSqGSIb3DQEBCwUAMIGnMQswCQYDVQQGEwJIVTERMA8G A1UEBwwIQnVkYXBlc3QxFTATBgNVBAoMDE5ldExvY2sgS2Z0LjE3MDUGA1UECwwuVGFuw7pzw610 dsOhbnlraWFkw7NrIChDZXJ0aWZpY2F0aW9uIFNlcnZpY2VzKTE1MDMGA1UEAwwsTmV0TG9jayBB cmFueSAoQ2xhc3MgR29sZCkgRsWRdGFuw7pzw610dsOhbnkwHhcNMDgxMjExMTUwODIxWhcNMjgx MjA2MTUwODIxWjCBpzELMAkGA1UEBhMCSFUxETAPBgNVBAcMCEJ1ZGFwZXN0MRUwEwYDVQQKDAxO ZXRMb2NrIEtmdC4xNzA1BgNVBAsMLlRhbsO6c8OtdHbDoW55a2lhZMOzayAoQ2VydGlmaWNhdGlv biBTZXJ2aWNlcykxNTAzBgNVBAMMLE5ldExvY2sgQXJhbnkgKENsYXNzIEdvbGQpIEbFkXRhbsO6 c8OtdHbDoW55MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxCRec75LbRTDofTjl5Bu 0jBFHjzuZ9lk4BqKf8owyoPjIMHj9DrTlF8afFttvzBPhCf2nx9JvMaZCpDyD/V/Q4Q3Y1GLeqVw /HpYzY6b7cNGbIRwXdrzAZAj/E4wqX7hJ2Pn7WQ8oLjJM2P+FpD/sLj916jAwJRDC7bVWaaeVtAk H3B5r9s5VA1lddkVQZQBr17s9o3x/61k/iCa11zr/qYfCGSji3ZVrR47KGAuhyXoqq8fxmRGILdw fzzeSNuWU7c5d+Qa4scWhHaXWy+7GRWF+GmF9ZmnqfI0p6m2pgP8b4Y9VHx2BJtr+UBdADTHLpl1 neWIA6pN+APSQnbAGwIDAKiLo0UwQzASBgNVHRMBAf8ECDAGAQH/AgEEMA4GA1UdDwEB/wQEAwIB BjAdBgNVHQ4EFgQUzPpnk/C2uNClwB7zU/2MU9+D15YwDQYJKoZIhvcNAQELBQADggEBAKt/7hwW qZw8UQCgwBEIBaeZ5m8BiFRhbvG5GK1Krf6BQCOUL/t1fC8oS2IkgYIL9WHxHG64YTjrgfpioTta YtOUZcTh5m2C+C8lcLIhJsFyUR+MLMOEkMNaj7rP9KdlpeuY0fsFskZ1FSNqb4VjMIDw1Z4fKRzC bLBQWV2QWzuoDTDPv31/zvGdg73JRm4gpvlhUbohL3u+pRVjodSVh/GeufOJ8z2FuLjbvrW5Kfna NwUASZQDhETnv0Mxz3WLJdH0pmT1kvarBes96aULNmLazAZfNou2XjG4Kvte9nHfRCaexOYNkbQu dZWAUWpLMKawYqGT8ZvYzsRjdT9ZR7E= -----END CERTIFICATE----- Microsec e-Szigno Root CA 2009 ============================== -----BEGIN CERTIFICATE----- MIIECjCCAvKgAwIBAgIJAMJ+QwRORz8ZMA0GCSqGSIb3DQEBCwUAMIGCMQswCQYDVQQGEwJIVTER MA8GA1UEBwwIQnVkYXBlc3QxFjAUBgNVBAoMDU1pY3Jvc2VjIEx0ZC4xJzAlBgNVBAMMHk1pY3Jv c2VjIGUtU3ppZ25vIFJvb3QgQ0EgMjAwOTEfMB0GCSqGSIb3DQEJARYQaW5mb0BlLXN6aWduby5o dTAeFw0wOTA2MTYxMTMwMThaFw0yOTEyMzAxMTMwMThaMIGCMQswCQYDVQQGEwJIVTERMA8GA1UE BwwIQnVkYXBlc3QxFjAUBgNVBAoMDU1pY3Jvc2VjIEx0ZC4xJzAlBgNVBAMMHk1pY3Jvc2VjIGUt U3ppZ25vIFJvb3QgQ0EgMjAwOTEfMB0GCSqGSIb3DQEJARYQaW5mb0BlLXN6aWduby5odTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOn4j/NjrdqG2KfgQvvPkd6mJviZpWNwrZuuyjNA fW2WbqEORO7hE52UQlKavXWFdCyoDh2Tthi3jCyoz/tccbna7P7ofo/kLx2yqHWH2Leh5TvPmUpG 0IMZfcChEhyVbUr02MelTTMuhTlAdX4UfIASmFDHQWe4oIBhVKZsTh/gnQ4H6cm6M+f+wFUoLAKA pxn1ntxVUwOXewdI/5n7N4okxFnMUBBjjqqpGrCEGob5X7uxUG6k0QrM1XF+H6cbfPVTbiJfyyvm 1HxdrtbCxkzlBQHZ7Vf8wSN5/PrIJIOV87VqUQHQd9bpEqH5GoP7ghu5sJf0dgYzQ0mg/wu1+rUC AwEAAaOBgDB+MA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMB0GA1UdDgQWBBTLD8bf QkPMPcu1SCOhGnqmKrs0aDAfBgNVHSMEGDAWgBTLD8bfQkPMPcu1SCOhGnqmKrs0aDAbBgNVHREE FDASgRBpbmZvQGUtc3ppZ25vLmh1MA0GCSqGSIb3DQEBCwUAA4IBAQDJ0Q5eLtXMs3w+y/w9/w0o lZMEyL/azXm4Q5DwpL7v8u8hmLzU1F0G9u5C7DBsoKqpyvGvivo/C3NqPuouQH4frlRheesuCDfX I/OMn74dseGkddug4lQUsbocKaQY9hK6ohQU4zE1yED/t+AFdlfBHFny+L/k7SViXITwfn4fs775 tyERzAMBVnCnEJIeGzSBHq2cGsMEPO0CYdYeBvNfOofyK/FFh+U9rNHHV4S9a67c2Pm2G2JwCz02 yULyMtd6YebS2z3PyKnJm9zbWETXbzivf3jTo60adbocwTZ8jx5tHMN1Rq41Bab2XD0h7lbwyYIi LXpUq3DDfSJlgnCW -----END CERTIFICATE----- GlobalSign Root CA - R3 ======================= -----BEGIN CERTIFICATE----- MIIDXzCCAkegAwIBAgILBAAAAAABIVhTCKIwDQYJKoZIhvcNAQELBQAwTDEgMB4GA1UECxMXR2xv YmFsU2lnbiBSb290IENBIC0gUjMxEzARBgNVBAoTCkdsb2JhbFNpZ24xEzARBgNVBAMTCkdsb2Jh bFNpZ24wHhcNMDkwMzE4MTAwMDAwWhcNMjkwMzE4MTAwMDAwWjBMMSAwHgYDVQQLExdHbG9iYWxT aWduIFJvb3QgQ0EgLSBSMzETMBEGA1UEChMKR2xvYmFsU2lnbjETMBEGA1UEAxMKR2xvYmFsU2ln bjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMwldpB5BngiFvXAg7aEyiie/QV2EcWt iHL8RgJDx7KKnQRfJMsuS+FggkbhUqsMgUdwbN1k0ev1LKMPgj0MK66X17YUhhB5uzsTgHeMCOFJ 0mpiLx9e+pZo34knlTifBtc+ycsmWQ1z3rDI6SYOgxXG71uL0gRgykmmKPZpO/bLyCiR5Z2KYVc3 rHQU3HTgOu5yLy6c+9C7v/U9AOEGM+iCK65TpjoWc4zdQQ4gOsC0p6Hpsk+QLjJg6VfLuQSSaGjl OCZgdbKfd/+RFO+uIEn8rUAVSNECMWEZXriX7613t2Saer9fwRPvm2L7DWzgVGkWqQPabumDk3F2 xmmFghcCAwEAAaNCMEAwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYE FI/wS3+oLkUkrk1Q+mOai97i3Ru8MA0GCSqGSIb3DQEBCwUAA4IBAQBLQNvAUKr+yAzv95ZURUm7 lgAJQayzE4aGKAczymvmdLm6AC2upArT9fHxD4q/c2dKg8dEe3jgr25sbwMpjjM5RcOO5LlXbKr8 EpbsU8Yt5CRsuZRj+9xTaGdWPoO4zzUhw8lo/s7awlOqzJCK6fBdRoyV3XpYKBovHd7NADdBj+1E bddTKJd+82cEHhXXipa0095MJ6RMG3NzdvQXmcIfeg7jLQitChws/zyrVQ4PkX4268NXSb7hLi18 YIvDQVETI53O9zJrlAGomecsMx86OyXShkDOOyyGeMlhLxS67ttVb9+E7gUJTb0o2HLO02JQZR7r kpeDMdmztcpHWD9f -----END CERTIFICATE----- Izenpe.com ========== -----BEGIN CERTIFICATE----- MIIF8TCCA9mgAwIBAgIQALC3WhZIX7/hy/WL1xnmfTANBgkqhkiG9w0BAQsFADA4MQswCQYDVQQG EwJFUzEUMBIGA1UECgwLSVpFTlBFIFMuQS4xEzARBgNVBAMMCkl6ZW5wZS5jb20wHhcNMDcxMjEz MTMwODI4WhcNMzcxMjEzMDgyNzI1WjA4MQswCQYDVQQGEwJFUzEUMBIGA1UECgwLSVpFTlBFIFMu QS4xEzARBgNVBAMMCkl6ZW5wZS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDJ 03rKDx6sp4boFmVqscIbRTJxldn+EFvMr+eleQGPicPK8lVx93e+d5TzcqQsRNiekpsUOqHnJJAK ClaOxdgmlOHZSOEtPtoKct2jmRXagaKH9HtuJneJWK3W6wyyQXpzbm3benhB6QiIEn6HLmYRY2xU +zydcsC8Lv/Ct90NduM61/e0aL6i9eOBbsFGb12N4E3GVFWJGjMxCrFXuaOKmMPsOzTFlUFpfnXC PCDFYbpRR6AgkJOhkEvzTnyFRVSa0QUmQbC1TR0zvsQDyCV8wXDbO/QJLVQnSKwv4cSsPsjLkkxT OTcj7NMB+eAJRE1NZMDhDVqHIrytG6P+JrUV86f8hBnp7KGItERphIPzidF0BqnMC9bC3ieFUCbK F7jJeodWLBoBHmy+E60QrLUk9TiRodZL2vG70t5HtfG8gfZZa88ZU+mNFctKy6lvROUbQc/hhqfK 0GqfvEyNBjNaooXlkDWgYlwWTvDjovoDGrQscbNYLN57C9saD+veIR8GdwYDsMnvmfzAuU8Lhij+ 0rnq49qlw0dpEuDb8PYZi+17cNcC1u2HGCgsBCRMd+RIihrGO5rUD8r6ddIBQFqNeb+Lz0vPqhbB leStTIo+F5HUsWLlguWABKQDfo2/2n+iD5dPDNMN+9fR5XJ+HMh3/1uaD7euBUbl8agW7EekFwID AQABo4H2MIHzMIGwBgNVHREEgagwgaWBD2luZm9AaXplbnBlLmNvbaSBkTCBjjFHMEUGA1UECgw+ SVpFTlBFIFMuQS4gLSBDSUYgQTAxMzM3MjYwLVJNZXJjLlZpdG9yaWEtR2FzdGVpeiBUMTA1NSBG NjIgUzgxQzBBBgNVBAkMOkF2ZGEgZGVsIE1lZGl0ZXJyYW5lbyBFdG9yYmlkZWEgMTQgLSAwMTAx MCBWaXRvcmlhLUdhc3RlaXowDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0O BBYEFB0cZQ6o8iV7tJHP5LGx5r1VdGwFMA0GCSqGSIb3DQEBCwUAA4ICAQB4pgwWSp9MiDrAyw6l Fn2fuUhfGI8NYjb2zRlrrKvV9pF9rnHzP7MOeIWblaQnIUdCSnxIOvVFfLMMjlF4rJUT3sb9fbga kEyrkgPH7UIBzg/YsfqikuFgba56awmqxinuaElnMIAkejEWOVt+8Rwu3WwJrfIxwYJOubv5vr8q hT/AQKM6WfxZSzwoJNu0FXWuDYi6LnPAvViH5ULy617uHjAimcs30cQhbIHsvm0m5hzkQiCeR7Cs g1lwLDXWrzY0tM07+DKo7+N4ifuNRSzanLh+QBxh5z6ikixL8s36mLYp//Pye6kfLqCTVyvehQP5 aTfLnnhqBbTFMXiJ7HqnheG5ezzevh55hM6fcA5ZwjUukCox2eRFekGkLhObNA5me0mrZJfQRsN5 nXJQY6aYWwa9SG3YOYNw6DXwBdGqvOPbyALqfP2C2sJbUjWumDqtujWTI6cfSN01RpiyEGjkpTHC ClguGYEQyVB1/OpaFs4R1+7vUIgtYf8/QnMFlEPVjjxOAToZpR9GTnfQXeWBIiGH/pR9hNiTrdZo Q0iy2+tzJOeRf1SktoA+naM8THLCV8Sg1Mw4J87VBp6iSNnpn86CcDaTmjvfliHjWbcM2pE38P1Z WrOZyGlsQyYBNWNgVYkDOnXYukrZVP/u3oDYLdE41V4tC5h9Pmzb/CaIxw== -----END CERTIFICATE----- Go Daddy Root Certificate Authority - G2 ======================================== -----BEGIN CERTIFICATE----- MIIDxTCCAq2gAwIBAgIBADANBgkqhkiG9w0BAQsFADCBgzELMAkGA1UEBhMCVVMxEDAOBgNVBAgT B0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxGjAYBgNVBAoTEUdvRGFkZHkuY29tLCBJbmMu MTEwLwYDVQQDEyhHbyBEYWRkeSBSb290IENlcnRpZmljYXRlIEF1dGhvcml0eSAtIEcyMB4XDTA5 MDkwMTAwMDAwMFoXDTM3MTIzMTIzNTk1OVowgYMxCzAJBgNVBAYTAlVTMRAwDgYDVQQIEwdBcml6 b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMRowGAYDVQQKExFHb0RhZGR5LmNvbSwgSW5jLjExMC8G A1UEAxMoR28gRGFkZHkgUm9vdCBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkgLSBHMjCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAL9xYgjx+lk09xvJGKP3gElY6SKDE6bFIEMBO4Tx5oVJnyfq 9oQbTqC023CYxzIBsQU+B07u9PpPL1kwIuerGVZr4oAH/PMWdYA5UXvl+TW2dE6pjYIT5LY/qQOD +qK+ihVqf94Lw7YZFAXK6sOoBJQ7RnwyDfMAZiLIjWltNowRGLfTshxgtDj6AozO091GB94KPutd fMh8+7ArU6SSYmlRJQVhGkSBjCypQ5Yj36w6gZoOKcUcqeldHraenjAKOc7xiID7S13MMuyFYkMl NAJWJwGRtDtwKj9useiciAF9n9T521NtYJ2/LOdYq7hfRvzOxBsDPAnrSTFcaUaz4EcCAwEAAaNC MEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFDqahQcQZyi27/a9 BUFuIMGU2g/eMA0GCSqGSIb3DQEBCwUAA4IBAQCZ21151fmXWWcDYfF+OwYxdS2hII5PZYe096ac vNjpL9DbWu7PdIxztDhC2gV7+AJ1uP2lsdeu9tfeE8tTEH6KRtGX+rcuKxGrkLAngPnon1rpN5+r 5N9ss4UXnT3ZJE95kTXWXwTrgIOrmgIttRD02JDHBHNA7XIloKmf7J6raBKZV8aPEjoJpL1E/QYV N8Gb5DKj7Tjo2GTzLH4U/ALqn83/B2gX2yKQOC16jdFU8WnjXzPKej17CuPKf1855eJ1usV2GDPO LPAvTK33sefOT6jEm0pUBsV/fdUID+Ic/n4XuKxe9tQWskMJDE32p2u0mYRlynqI4uJEvlz36hz1 -----END CERTIFICATE----- Starfield Root Certificate Authority - G2 ========================================= -----BEGIN CERTIFICATE----- MIID3TCCAsWgAwIBAgIBADANBgkqhkiG9w0BAQsFADCBjzELMAkGA1UEBhMCVVMxEDAOBgNVBAgT B0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxJTAjBgNVBAoTHFN0YXJmaWVsZCBUZWNobm9s b2dpZXMsIEluYy4xMjAwBgNVBAMTKVN0YXJmaWVsZCBSb290IENlcnRpZmljYXRlIEF1dGhvcml0 eSAtIEcyMB4XDTA5MDkwMTAwMDAwMFoXDTM3MTIzMTIzNTk1OVowgY8xCzAJBgNVBAYTAlVTMRAw DgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMSUwIwYDVQQKExxTdGFyZmllbGQg VGVjaG5vbG9naWVzLCBJbmMuMTIwMAYDVQQDEylTdGFyZmllbGQgUm9vdCBDZXJ0aWZpY2F0ZSBB dXRob3JpdHkgLSBHMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL3twQP89o/8ArFv W59I2Z154qK3A2FWGMNHttfKPTUuiUP3oWmb3ooa/RMgnLRJdzIpVv257IzdIvpy3Cdhl+72WoTs bhm5iSzchFvVdPtrX8WJpRBSiUZV9Lh1HOZ/5FSuS/hVclcCGfgXcVnrHigHdMWdSL5stPSksPNk N3mSwOxGXn/hbVNMYq/NHwtjuzqd+/x5AJhhdM8mgkBj87JyahkNmcrUDnXMN/uLicFZ8WJ/X7Nf ZTD4p7dNdloedl40wOiWVpmKs/B/pM293DIxfJHP4F8R+GuqSVzRmZTRouNjWwl2tVZi4Ut0HZbU JtQIBFnQmA4O5t78w+wfkPECAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC AQYwHQYDVR0OBBYEFHwMMh+n2TB/xH1oo2Kooc6rB1snMA0GCSqGSIb3DQEBCwUAA4IBAQARWfol TwNvlJk7mh+ChTnUdgWUXuEok21iXQnCoKjUsHU48TRqneSfioYmUeYs0cYtbpUgSpIB7LiKZ3sx 4mcujJUDJi5DnUox9g61DLu34jd/IroAow57UvtruzvE03lRTs2Q9GcHGcg8RnoNAX3FWOdt5oUw F5okxBDgBPfg8n/Uqgr/Qh037ZTlZFkSIHc40zI+OIF1lnP6aI+xy84fxez6nH7PfrHxBy22/L/K pL/QlwVKvOoYKAKQvVR4CSFx09F9HdkWsKlhPdAKACL8x3vLCWRFCztAgfd9fDL1mMpYjn0q7pBZ c2T5NnReJaH1ZgUufzkVqSr7UIuOhWn0 -----END CERTIFICATE----- Starfield Services Root Certificate Authority - G2 ================================================== -----BEGIN CERTIFICATE----- MIID7zCCAtegAwIBAgIBADANBgkqhkiG9w0BAQsFADCBmDELMAkGA1UEBhMCVVMxEDAOBgNVBAgT B0FyaXpvbmExEzARBgNVBAcTClNjb3R0c2RhbGUxJTAjBgNVBAoTHFN0YXJmaWVsZCBUZWNobm9s b2dpZXMsIEluYy4xOzA5BgNVBAMTMlN0YXJmaWVsZCBTZXJ2aWNlcyBSb290IENlcnRpZmljYXRl IEF1dGhvcml0eSAtIEcyMB4XDTA5MDkwMTAwMDAwMFoXDTM3MTIzMTIzNTk1OVowgZgxCzAJBgNV BAYTAlVTMRAwDgYDVQQIEwdBcml6b25hMRMwEQYDVQQHEwpTY290dHNkYWxlMSUwIwYDVQQKExxT dGFyZmllbGQgVGVjaG5vbG9naWVzLCBJbmMuMTswOQYDVQQDEzJTdGFyZmllbGQgU2VydmljZXMg Um9vdCBDZXJ0aWZpY2F0ZSBBdXRob3JpdHkgLSBHMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBANUMOsQq+U7i9b4Zl1+OiFOxHz/Lz58gE20pOsgPfTz3a3Y4Y9k2YKibXlwAgLIvWX/2 h/klQ4bnaRtSmpDhcePYLQ1Ob/bISdm28xpWriu2dBTrz/sm4xq6HZYuajtYlIlHVv8loJNwU4Pa hHQUw2eeBGg6345AWh1KTs9DkTvnVtYAcMtS7nt9rjrnvDH5RfbCYM8TWQIrgMw0R9+53pBlbQLP LJGmpufehRhJfGZOozptqbXuNC66DQO4M99H67FrjSXZm86B0UVGMpZwh94CDklDhbZsc7tk6mFB rMnUVN+HL8cisibMn1lUaJ/8viovxFUcdUBgF4UCVTmLfwUCAwEAAaNCMEAwDwYDVR0TAQH/BAUw AwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFJxfAN+qAdcwKziIorhtSpzyEZGDMA0GCSqG SIb3DQEBCwUAA4IBAQBLNqaEd2ndOxmfZyMIbw5hyf2E3F/YNoHN2BtBLZ9g3ccaaNnRbobhiCPP E95Dz+I0swSdHynVv/heyNXBve6SbzJ08pGCL72CQnqtKrcgfU28elUSwhXqvfdqlS5sdJ/PHLTy xQGjhdByPq1zqwubdQxtRbeOlKyWN7Wg0I8VRw7j6IPdj/3vQQF3zCepYoUz8jcI73HPdwbeyBkd iEDPfUYd/x7H4c7/I9vG+o1VTqkC50cRRj70/b17KSa7qWFiNyi2LSr2EIZkyXCn0q23KXB56jza YyWf/Wi3MOxw+3WKt21gZ7IeyLnp2KhvAotnDU0mV3HaIPzBSlCNsSi6 -----END CERTIFICATE----- AffirmTrust Commercial ====================== -----BEGIN CERTIFICATE----- MIIDTDCCAjSgAwIBAgIId3cGJyapsXwwDQYJKoZIhvcNAQELBQAwRDELMAkGA1UEBhMCVVMxFDAS BgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVzdCBDb21tZXJjaWFsMB4XDTEw MDEyOTE0MDYwNloXDTMwMTIzMTE0MDYwNlowRDELMAkGA1UEBhMCVVMxFDASBgNVBAoMC0FmZmly bVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVzdCBDb21tZXJjaWFsMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEA9htPZwcroRX1BiLLHwGy43NFBkRJLLtJJRTWzsO3qyxPxkEylFf6Eqdb DuKPHx6GGaeqtS25Xw2Kwq+FNXkyLbscYjfysVtKPcrNcV/pQr6U6Mje+SJIZMblq8Yrba0F8PrV C8+a5fBQpIs7R6UjW3p6+DM/uO+Zl+MgwdYoic+U+7lF7eNAFxHUdPALMeIrJmqbTFeurCA+ukV6 BfO9m2kVrn1OIGPENXY6BwLJN/3HR+7o8XYdcxXyl6S1yHp52UKqK39c/s4mT6NmgTWvRLpUHhww MmWd5jyTXlBOeuM61G7MGvv50jeuJCqrVwMiKA1JdX+3KNp1v47j3A55MQIDAQABo0IwQDAdBgNV HQ4EFgQUnZPGU4teyq8/nx4P5ZmVvCT2lI8wDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC AQYwDQYJKoZIhvcNAQELBQADggEBAFis9AQOzcAN/wr91LoWXym9e2iZWEnStB03TX8nfUYGXUPG hi4+c7ImfU+TqbbEKpqrIZcUsd6M06uJFdhrJNTxFq7YpFzUf1GO7RgBsZNjvbz4YYCanrHOQnDi qX0GJX0nof5v7LMeJNrjS1UaADs1tDvZ110w/YETifLCBivtZ8SOyUOyXGsViQK8YvxO8rUzqrJv 0wqiUOP2O+guRMLbZjipM1ZI8W0bM40NjD9gN53Tym1+NH4Nn3J2ixufcv1SNUFFApYvHLKac0kh sUlHRUe072o0EclNmsxZt9YCnlpOZbWUrhvfKbAW8b8Angc6F2S1BLUjIZkKlTuXfO8= -----END CERTIFICATE----- AffirmTrust Networking ====================== -----BEGIN CERTIFICATE----- MIIDTDCCAjSgAwIBAgIIfE8EORzUmS0wDQYJKoZIhvcNAQEFBQAwRDELMAkGA1UEBhMCVVMxFDAS BgNVBAoMC0FmZmlybVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVzdCBOZXR3b3JraW5nMB4XDTEw MDEyOTE0MDgyNFoXDTMwMTIzMTE0MDgyNFowRDELMAkGA1UEBhMCVVMxFDASBgNVBAoMC0FmZmly bVRydXN0MR8wHQYDVQQDDBZBZmZpcm1UcnVzdCBOZXR3b3JraW5nMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAtITMMxcua5Rsa2FSoOujz3mUTOWUgJnLVWREZY9nZOIG41w3SfYvm4SE Hi3yYJ0wTsyEheIszx6e/jarM3c1RNg1lho9Nuh6DtjVR6FqaYvZ/Ls6rnla1fTWcbuakCNrmreI dIcMHl+5ni36q1Mr3Lt2PpNMCAiMHqIjHNRqrSK6mQEubWXLviRmVSRLQESxG9fhwoXA3hA/Pe24 /PHxI1Pcv2WXb9n5QHGNfb2V1M6+oF4nI979ptAmDgAp6zxG8D1gvz9Q0twmQVGeFDdCBKNwV6gb h+0t+nvujArjqWaJGctB+d1ENmHP4ndGyH329JKBNv3bNPFyfvMMFr20FQIDAQABo0IwQDAdBgNV HQ4EFgQUBx/S55zawm6iQLSwelAQUHTEyL0wDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMC AQYwDQYJKoZIhvcNAQEFBQADggEBAIlXshZ6qML91tmbmzTCnLQyFE2npN/svqe++EPbkTfOtDIu UFUaNU52Q3Eg75N3ThVwLofDwR1t3Mu1J9QsVtFSUzpE0nPIxBsFZVpikpzuQY0x2+c06lkh1QF6 12S4ZDnNye2v7UsDSKegmQGA3GWjNq5lWUhPgkvIZfFXHeVZLgo/bNjR9eUJtGxUAArgFU2HdW23 WJZa3W3SAKD0m0i+wzekujbgfIeFlxoVot4uolu9rxj5kFDNcFn4J2dHy8egBzp90SxdbBk6ZrV9 /ZFvgrG+CJPbFEfxojfHRZ48x3evZKiT3/Zpg4Jg8klCNO1aAFSFHBY2kgxc+qatv9s= -----END CERTIFICATE----- AffirmTrust Premium =================== -----BEGIN CERTIFICATE----- MIIFRjCCAy6gAwIBAgIIbYwURrGmCu4wDQYJKoZIhvcNAQEMBQAwQTELMAkGA1UEBhMCVVMxFDAS BgNVBAoMC0FmZmlybVRydXN0MRwwGgYDVQQDDBNBZmZpcm1UcnVzdCBQcmVtaXVtMB4XDTEwMDEy OTE0MTAzNloXDTQwMTIzMTE0MTAzNlowQTELMAkGA1UEBhMCVVMxFDASBgNVBAoMC0FmZmlybVRy dXN0MRwwGgYDVQQDDBNBZmZpcm1UcnVzdCBQcmVtaXVtMIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAxBLfqV/+Qd3d9Z+K4/as4Tx4mrzY8H96oDMq3I0gW64tb+eT2TZwamjPjlGjhVtn BKAQJG9dKILBl1fYSCkTtuG+kU3fhQxTGJoeJKJPj/CihQvL9Cl/0qRY7iZNyaqoe5rZ+jjeRFcV 5fiMyNlI4g0WJx0eyIOFJbe6qlVBzAMiSy2RjYvmia9mx+n/K+k8rNrSs8PhaJyJ+HoAVt70VZVs +7pk3WKL3wt3MutizCaam7uqYoNMtAZ6MMgpv+0GTZe5HMQxK9VfvFMSF5yZVylmd2EhMQcuJUmd GPLu8ytxjLW6OQdJd/zvLpKQBY0tL3d770O/Nbua2Plzpyzy0FfuKE4mX4+QaAkvuPjcBukumj5R p9EixAqnOEhss/n/fauGV+O61oV4d7pD6kh/9ti+I20ev9E2bFhc8e6kGVQa9QPSdubhjL08s9NI S+LI+H+SqHZGnEJlPqQewQcDWkYtuJfzt9WyVSHvutxMAJf7FJUnM7/oQ0dG0giZFmA7mn7S5u04 6uwBHjxIVkkJx0w3AJ6IDsBz4W9m6XJHMD4Q5QsDyZpCAGzFlH5hxIrff4IaC1nEWTJ3s7xgaVY5 /bQGeyzWZDbZvUjthB9+pSKPKrhC9IK31FOQeE4tGv2Bb0TXOwF0lkLgAOIua+rF7nKsu7/+6qqo +Nz2snmKtmcCAwEAAaNCMEAwHQYDVR0OBBYEFJ3AZ6YMItkm9UWrpmVSESfYRaxjMA8GA1UdEwEB /wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMA0GCSqGSIb3DQEBDAUAA4ICAQCzV00QYk465KzquByv MiPIs0laUZx2KI15qldGF9X1Uva3ROgIRL8YhNILgM3FEv0AVQVhh0HctSSePMTYyPtwni94loMg Nt58D2kTiKV1NpgIpsbfrM7jWNa3Pt668+s0QNiigfV4Py/VpfzZotReBA4Xrf5B8OWycvpEgjNC 6C1Y91aMYj+6QrCcDFx+LmUmXFNPALJ4fqENmS2NuB2OosSw/WDQMKSOyARiqcTtNd56l+0OOF6S L5Nwpamcb6d9Ex1+xghIsV5n61EIJenmJWtSKZGc0jlzCFfemQa0W50QBuHCAKi4HEoCChTQwUHK +4w1IX2COPKpVJEZNZOUbWo6xbLQu4mGk+ibyQ86p3q4ofB4Rvr8Ny/lioTz3/4E2aFooC8k4gmV BtWVyuEklut89pMFu+1z6S3RdTnX5yTb2E5fQ4+e0BQ5v1VwSJlXMbSc7kqYA5YwH2AG7hsj/oFg IxpHYoWlzBk0gG+zrBrjn/B7SK3VAdlntqlyk+otZrWyuOQ9PLLvTIzq6we/qzWaVYa8GKa1qF60 g2xraUDTn9zxw2lrueFtCfTxqlB2Cnp9ehehVZZCmTEJ3WARjQUwfuaORtGdFNrHF+QFlozEJLUb zxQHskD4o55BhrwE0GuWyCqANP2/7waj3VjFhT0+j/6eKeC2uAloGRwYQw== -----END CERTIFICATE----- AffirmTrust Premium ECC ======================= -----BEGIN CERTIFICATE----- MIIB/jCCAYWgAwIBAgIIdJclisc/elQwCgYIKoZIzj0EAwMwRTELMAkGA1UEBhMCVVMxFDASBgNV BAoMC0FmZmlybVRydXN0MSAwHgYDVQQDDBdBZmZpcm1UcnVzdCBQcmVtaXVtIEVDQzAeFw0xMDAx MjkxNDIwMjRaFw00MDEyMzExNDIwMjRaMEUxCzAJBgNVBAYTAlVTMRQwEgYDVQQKDAtBZmZpcm1U cnVzdDEgMB4GA1UEAwwXQWZmaXJtVHJ1c3QgUHJlbWl1bSBFQ0MwdjAQBgcqhkjOPQIBBgUrgQQA IgNiAAQNMF4bFZ0D0KF5Nbc6PJJ6yhUczWLznCZcBz3lVPqj1swS6vQUX+iOGasvLkjmrBhDeKzQ N8O9ss0s5kfiGuZjuD0uL3jET9v0D6RoTFVya5UdThhClXjMNzyR4ptlKymjQjBAMB0GA1UdDgQW BBSaryl6wBE1NSZRMADDav5A1a7WPDAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAK BggqhkjOPQQDAwNnADBkAjAXCfOHiFBar8jAQr9HX/VsaobgxCd05DhT1wV/GzTjxi+zygk8N53X 57hG8f2h4nECMEJZh0PUUd+60wkyWs6Iflc9nF9Ca/UHLbXwgpP5WW+uZPpY5Yse42O+tYHNbwKM eQ== -----END CERTIFICATE----- Certum Trusted Network CA ========================= -----BEGIN CERTIFICATE----- MIIDuzCCAqOgAwIBAgIDBETAMA0GCSqGSIb3DQEBBQUAMH4xCzAJBgNVBAYTAlBMMSIwIAYDVQQK ExlVbml6ZXRvIFRlY2hub2xvZ2llcyBTLkEuMScwJQYDVQQLEx5DZXJ0dW0gQ2VydGlmaWNhdGlv biBBdXRob3JpdHkxIjAgBgNVBAMTGUNlcnR1bSBUcnVzdGVkIE5ldHdvcmsgQ0EwHhcNMDgxMDIy MTIwNzM3WhcNMjkxMjMxMTIwNzM3WjB+MQswCQYDVQQGEwJQTDEiMCAGA1UEChMZVW5pemV0byBU ZWNobm9sb2dpZXMgUy5BLjEnMCUGA1UECxMeQ2VydHVtIENlcnRpZmljYXRpb24gQXV0aG9yaXR5 MSIwIAYDVQQDExlDZXJ0dW0gVHJ1c3RlZCBOZXR3b3JrIENBMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA4/t9o3K6wvDJFIf1awFO4W5AB7ptJ11/91sts1rHUV+rpDKmYYe2bg+G0jAC l/jXaVehGDldamR5xgFZrDwxSjh80gTSSyjoIF87B6LMTXPb865Px1bVWqeWifrzq2jUI4ZZJ88J J7ysbnKDHDBy3+Ci6dLhdHUZvSqeexVUBBvXQzmtVSjF4hq79MDkrjhJM8x2hZ85RdKknvISjFH4 fOQtf/WsX+sWn7Et0brMkUJ3TCXJkDhv2/DM+44el1k+1WBO5gUo7Ul5E0u6SNsv+XLTOcr+H9g0 cvW0QM8xAcPs3hEtF10fuFDRXhmnad4HMyjKUJX5p1TLVIZQRan5SQIDAQABo0IwQDAPBgNVHRMB Af8EBTADAQH/MB0GA1UdDgQWBBQIds3LB/8k9sXN7buQvOKEN0Z19zAOBgNVHQ8BAf8EBAMCAQYw DQYJKoZIhvcNAQEFBQADggEBAKaorSLOAT2mo/9i0Eidi15ysHhE49wcrwn9I0j6vSrEuVUEtRCj jSfeC4Jj0O7eDDd5QVsisrCaQVymcODU0HfLI9MA4GxWL+FpDQ3Zqr8hgVDZBqWo/5U30Kr+4rP1 mS1FhIrlQgnXdAIv94nYmem8J9RHjboNRhx3zxSkHLmkMcScKHQDNP8zGSal6Q10tz6XxnboJ5aj Zt3hrvJBW8qYVoNzcOSGGtIxQbovvi0TWnZvTuhOgQ4/WwMioBK+ZlgRSssDxLQqKi2WF+A5VLxI 03YnnZotBqbJ7DnSq9ufmgsnAjUpsUCV5/nonFWIGUbWtzT1fs45mtk48VH3Tyw= -----END CERTIFICATE----- TWCA Root Certification Authority ================================= -----BEGIN CERTIFICATE----- MIIDezCCAmOgAwIBAgIBATANBgkqhkiG9w0BAQUFADBfMQswCQYDVQQGEwJUVzESMBAGA1UECgwJ VEFJV0FOLUNBMRAwDgYDVQQLDAdSb290IENBMSowKAYDVQQDDCFUV0NBIFJvb3QgQ2VydGlmaWNh dGlvbiBBdXRob3JpdHkwHhcNMDgwODI4MDcyNDMzWhcNMzAxMjMxMTU1OTU5WjBfMQswCQYDVQQG EwJUVzESMBAGA1UECgwJVEFJV0FOLUNBMRAwDgYDVQQLDAdSb290IENBMSowKAYDVQQDDCFUV0NB IFJvb3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQCwfnK4pAOU5qfeCTiRShFAh6d8WWQUe7UREN3+v9XAu1bihSX0NXIP+FPQQeFEAcK0HMMx QhZHhTMidrIKbw/lJVBPhYa+v5guEGcevhEFhgWQxFnQfHgQsIBct+HHK3XLfJ+utdGdIzdjp9xC oi2SBBtQwXu4PhvJVgSLL1KbralW6cH/ralYhzC2gfeXRfwZVzsrb+RH9JlF/h3x+JejiB03HFyP 4HYlmlD4oFT/RJB2I9IyxsOrBr/8+7/zrX2SYgJbKdM1o5OaQ2RgXbL6Mv87BK9NQGr5x+PvI/1r y+UPizgN7gr8/g+YnzAx3WxSZfmLgb4i4RxYA7qRG4kHAgMBAAGjQjBAMA4GA1UdDwEB/wQEAwIB BjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRqOFsmjd6LWvJPelSDGRjjCDWmujANBgkqhkiG 9w0BAQUFAAOCAQEAPNV3PdrfibqHDAhUaiBQkr6wQT25JmSDCi/oQMCXKCeCMErJk/9q56YAf4lC mtYR5VPOL8zy2gXE/uJQxDqGfczafhAJO5I1KlOy/usrBdlsXebQ79NqZp4VKIV66IIArB6nCWlW QtNoURi+VJq/REG6Sb4gumlc7rh3zc5sH62Dlhh9DrUUOYTxKOkto557HnpyWoOzeW/vtPzQCqVY T0bf+215WfKEIlKuD8z7fDvnaspHYcN6+NOSBB+4IIThNlQWx0DeO4pz3N/GCUzf7Nr/1FNCocny Yh0igzyXxfkZYiesZSLX0zzG5Y6yU8xJzrww/nsOM5D77dIUkR8Hrw== -----END CERTIFICATE----- Security Communication RootCA2 ============================== -----BEGIN CERTIFICATE----- MIIDdzCCAl+gAwIBAgIBADANBgkqhkiG9w0BAQsFADBdMQswCQYDVQQGEwJKUDElMCMGA1UEChMc U0VDT00gVHJ1c3QgU3lzdGVtcyBDTy4sTFRELjEnMCUGA1UECxMeU2VjdXJpdHkgQ29tbXVuaWNh dGlvbiBSb290Q0EyMB4XDTA5MDUyOTA1MDAzOVoXDTI5MDUyOTA1MDAzOVowXTELMAkGA1UEBhMC SlAxJTAjBgNVBAoTHFNFQ09NIFRydXN0IFN5c3RlbXMgQ08uLExURC4xJzAlBgNVBAsTHlNlY3Vy aXR5IENvbW11bmljYXRpb24gUm9vdENBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ANAVOVKxUrO6xVmCxF1SrjpDZYBLx/KWvNs2l9amZIyoXvDjChz335c9S672XewhtUGrzbl+dp++ +T42NKA7wfYxEUV0kz1XgMX5iZnK5atq1LXaQZAQwdbWQonCv/Q4EpVMVAX3NuRFg3sUZdbcDE3R 3n4MqzvEFb46VqZab3ZpUql6ucjrappdUtAtCms1FgkQhNBqyjoGADdH5H5XTz+L62e4iKrFvlNV spHEfbmwhRkGeC7bYRr6hfVKkaHnFtWOojnflLhwHyg/i/xAXmODPIMqGplrz95Zajv8bxbXH/1K EOtOghY6rCcMU/Gt1SSwawNQwS08Ft1ENCcadfsCAwEAAaNCMEAwHQYDVR0OBBYEFAqFqXdlBZh8 QIH4D5csOPEK7DzPMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MA0GCSqGSIb3DQEB CwUAA4IBAQBMOqNErLlFsceTfsgLCkLfZOoc7llsCLqJX2rKSpWeeo8HxdpFcoJxDjrSzG+ntKEj u/Ykn8sX/oymzsLS28yN/HH8AynBbF0zX2S2ZTuJbxh2ePXcokgfGT+Ok+vx+hfuzU7jBBJV1uXk 3fs+BXziHV7Gp7yXT2g69ekuCkO2r1dcYmh8t/2jioSgrGK+KwmHNPBqAbubKVY8/gA3zyNs8U6q tnRGEmyR7jTV7JqR50S+kDFy1UkC9gLl9B/rfNmWVan/7Ir5mUf/NVoCqgTLiluHcSmRvaS0eg29 mvVXIwAHIRc/SjnRBUkLp7Y3gaVdjKozXoEofKd9J+sAro03 -----END CERTIFICATE----- Actalis Authentication Root CA ============================== -----BEGIN CERTIFICATE----- MIIFuzCCA6OgAwIBAgIIVwoRl0LE48wwDQYJKoZIhvcNAQELBQAwazELMAkGA1UEBhMCSVQxDjAM BgNVBAcMBU1pbGFuMSMwIQYDVQQKDBpBY3RhbGlzIFMucC5BLi8wMzM1ODUyMDk2NzEnMCUGA1UE AwweQWN0YWxpcyBBdXRoZW50aWNhdGlvbiBSb290IENBMB4XDTExMDkyMjExMjIwMloXDTMwMDky MjExMjIwMlowazELMAkGA1UEBhMCSVQxDjAMBgNVBAcMBU1pbGFuMSMwIQYDVQQKDBpBY3RhbGlz IFMucC5BLi8wMzM1ODUyMDk2NzEnMCUGA1UEAwweQWN0YWxpcyBBdXRoZW50aWNhdGlvbiBSb290 IENBMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAp8bEpSmkLO/lGMWwUKNvUTufClrJ wkg4CsIcoBh/kbWHuUA/3R1oHwiD1S0eiKD4j1aPbZkCkpAW1V8IbInX4ay8IMKx4INRimlNAJZa by/ARH6jDuSRzVju3PvHHkVH3Se5CAGfpiEd9UEtL0z9KK3giq0itFZljoZUj5NDKd45RnijMCO6 zfB9E1fAXdKDa0hMxKufgFpbOr3JpyI/gCczWw63igxdBzcIy2zSekciRDXFzMwujt0q7bd9Zg1f YVEiVRvjRuPjPdA1YprbrxTIW6HMiRvhMCb8oJsfgadHHwTrozmSBp+Z07/T6k9QnBn+locePGX2 oxgkg4YQ51Q+qDp2JE+BIcXjDwL4k5RHILv+1A7TaLndxHqEguNTVHnd25zS8gebLra8Pu2Fbe8l EfKXGkJh90qX6IuxEAf6ZYGyojnP9zz/GPvG8VqLWeICrHuS0E4UT1lF9gxeKF+w6D9Fz8+vm2/7 hNN3WpVvrJSEnu68wEqPSpP4RCHiMUVhUE4Q2OM1fEwZtN4Fv6MGn8i1zeQf1xcGDXqVdFUNaBr8 EBtiZJ1t4JWgw5QHVw0U5r0F+7if5t+L4sbnfpb2U8WANFAoWPASUHEXMLrmeGO89LKtmyuy/uE5 jF66CyCU3nuDuP/jVo23Eek7jPKxwV2dpAtMK9myGPW1n0sCAwEAAaNjMGEwHQYDVR0OBBYEFFLY iDrIn3hm7YnzezhwlMkCAjbQMA8GA1UdEwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAUUtiIOsifeGbt ifN7OHCUyQICNtAwDgYDVR0PAQH/BAQDAgEGMA0GCSqGSIb3DQEBCwUAA4ICAQALe3KHwGCmSUyI WOYdiPcUZEim2FgKDk8TNd81HdTtBjHIgT5q1d07GjLukD0R0i70jsNjLiNmsGe+b7bAEzlgqqI0 JZN1Ut6nna0Oh4lScWoWPBkdg/iaKWW+9D+a2fDzWochcYBNy+A4mz+7+uAwTc+G02UQGRjRlwKx K3JCaKygvU5a2hi/a5iB0P2avl4VSM0RFbnAKVy06Ij3Pjaut2L9HmLecHgQHEhb2rykOLpn7VU+ Xlff1ANATIGk0k9jpwlCCRT8AKnCgHNPLsBA2RF7SOp6AsDT6ygBJlh0wcBzIm2Tlf05fbsq4/aC 4yyXX04fkZT6/iyj2HYauE2yOE+b+h1IYHkm4vP9qdCa6HCPSXrW5b0KDtst842/6+OkfcvHlXHo 2qN8xcL4dJIEG4aspCJTQLas/kx2z/uUMsA1n3Y/buWQbqCmJqK4LL7RK4X9p2jIugErsWx0Hbhz lefut8cl8ABMALJ+tguLHPPAUJ4lueAI3jZm/zel0btUZCzJJ7VLkn5l/9Mt4blOvH+kQSGQQXem OR/qnuOf0GZvBeyqdn6/axag67XH/JJULysRJyU3eExRarDzzFhdFPFqSBX/wge2sY0PjlxQRrM9 vwGYT7JZVEc+NHt4bVaTLnPqZih4zR0Uv6CPLy64Lo7yFIrM6bV8+2ydDKXhlg== -----END CERTIFICATE----- Buypass Class 2 Root CA ======================= -----BEGIN CERTIFICATE----- MIIFWTCCA0GgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBOMQswCQYDVQQGEwJOTzEdMBsGA1UECgwU QnV5cGFzcyBBUy05ODMxNjMzMjcxIDAeBgNVBAMMF0J1eXBhc3MgQ2xhc3MgMiBSb290IENBMB4X DTEwMTAyNjA4MzgwM1oXDTQwMTAyNjA4MzgwM1owTjELMAkGA1UEBhMCTk8xHTAbBgNVBAoMFEJ1 eXBhc3MgQVMtOTgzMTYzMzI3MSAwHgYDVQQDDBdCdXlwYXNzIENsYXNzIDIgUm9vdCBDQTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANfHXvfBB9R3+0Mh9PT1aeTuMgHbo4Yf5FkNuud1 g1Lr6hxhFUi7HQfKjK6w3Jad6sNgkoaCKHOcVgb/S2TwDCo3SbXlzwx87vFKu3MwZfPVL4O2fuPn 9Z6rYPnT8Z2SdIrkHJasW4DptfQxh6NR/Md+oW+OU3fUl8FVM5I+GC911K2GScuVr1QGbNgGE41b /+EmGVnAJLqBcXmQRFBoJJRfuLMR8SlBYaNByyM21cHxMlAQTn/0hpPshNOOvEu/XAFOBz3cFIqU CqTqc/sLUegTBxj6DvEr0VQVfTzh97QZQmdiXnfgolXsttlpF9U6r0TtSsWe5HonfOV116rLJeff awrbD02TTqigzXsu8lkBarcNuAeBfos4GzjmCleZPe4h6KP1DBbdi+w0jpwqHAAVF41og9JwnxgI zRFo1clrUs3ERo/ctfPYV3Me6ZQ5BL/T3jjetFPsaRyifsSP5BtwrfKi+fv3FmRmaZ9JUaLiFRhn Bkp/1Wy1TbMz4GHrXb7pmA8y1x1LPC5aAVKRCfLf6o3YBkBjqhHk/sM3nhRSP/TizPJhk9H9Z2vX Uq6/aKtAQ6BXNVN48FP4YUIHZMbXb5tMOA1jrGKvNouicwoN9SG9dKpN6nIDSdvHXx1iY8f93ZHs M+71bbRuMGjeyNYmsHVee7QHIJihdjK4TWxPAgMBAAGjQjBAMA8GA1UdEwEB/wQFMAMBAf8wHQYD VR0OBBYEFMmAd+BikoL1RpzzuvdMw964o605MA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQsF AAOCAgEAU18h9bqwOlI5LJKwbADJ784g7wbylp7ppHR/ehb8t/W2+xUbP6umwHJdELFx7rxP462s A20ucS6vxOOto70MEae0/0qyexAQH6dXQbLArvQsWdZHEIjzIVEpMMpghq9Gqx3tOluwlN5E40EI osHsHdb9T7bWR9AUC8rmyrV7d35BH16Dx7aMOZawP5aBQW9gkOLo+fsicdl9sz1Gv7SEr5AcD48S aq/v7h56rgJKihcrdv6sVIkkLE8/trKnToyokZf7KcZ7XC25y2a2t6hbElGFtQl+Ynhw/qlqYLYd DnkM/crqJIByw5c/8nerQyIKx+u2DISCLIBrQYoIwOula9+ZEsuK1V6ADJHgJgg2SMX6OBE1/yWD LfJ6v9r9jv6ly0UsH8SIU653DtmadsWOLB2jutXsMq7Aqqz30XpN69QH4kj3Io6wpJ9qzo6ysmD0 oyLQI+uUWnpp3Q+/QFesa1lQ2aOZ4W7+jQF5JyMV3pKdewlNWudLSDBaGOYKbeaP4NK75t98biGC wWg5TbSYWGZizEqQXsP6JwSxeRV0mcy+rSDeJmAc61ZRpqPq5KM/p/9h3PFaTWwyI0PurKju7koS CTxdccK+efrCh2gdC/1cacwG0Jp9VJkqyTkaGa9LKkPzY11aWOIv4x3kqdbQCtCev9eBCfHJxyYN rJgWVqA= -----END CERTIFICATE----- Buypass Class 3 Root CA ======================= -----BEGIN CERTIFICATE----- MIIFWTCCA0GgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBOMQswCQYDVQQGEwJOTzEdMBsGA1UECgwU QnV5cGFzcyBBUy05ODMxNjMzMjcxIDAeBgNVBAMMF0J1eXBhc3MgQ2xhc3MgMyBSb290IENBMB4X DTEwMTAyNjA4Mjg1OFoXDTQwMTAyNjA4Mjg1OFowTjELMAkGA1UEBhMCTk8xHTAbBgNVBAoMFEJ1 eXBhc3MgQVMtOTgzMTYzMzI3MSAwHgYDVQQDDBdCdXlwYXNzIENsYXNzIDMgUm9vdCBDQTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKXaCpUWUOOV8l6ddjEGMnqb8RB2uACatVI2zSRH sJ8YZLya9vrVediQYkwiL944PdbgqOkcLNt4EemOaFEVcsfzM4fkoF0LXOBXByow9c3EN3coTRiR 5r/VUv1xLXA+58bEiuPwKAv0dpihi4dVsjoT/Lc+JzeOIuOoTyrvYLs9tznDDgFHmV0ST9tD+leh 7fmdvhFHJlsTmKtdFoqwNxxXnUX/iJY2v7vKB3tvh2PX0DJq1l1sDPGzbjniazEuOQAnFN44wOwZ ZoYS6J1yFhNkUsepNxz9gjDthBgd9K5c/3ATAOux9TN6S9ZV+AWNS2mw9bMoNlwUxFFzTWsL8TQH 2xc519woe2v1n/MuwU8XKhDzzMro6/1rqy6any2CbgTUUgGTLT2G/H783+9CHaZr77kgxve9oKeV /afmiSTYzIw0bOIjL9kSGiG5VZFvC5F5GQytQIgLcOJ60g7YaEi7ghM5EFjp2CoHxhLbWNvSO1UQ RwUVZ2J+GGOmRj8JDlQyXr8NYnon74Do29lLBlo3WiXQCBJ31G8JUJc9yB3D34xFMFbG02SrZvPA Xpacw8Tvw3xrizp5f7NJzz3iiZ+gMEuFuZyUJHmPfWupRWgPK9Dx2hzLabjKSWJtyNBjYt1gD1iq j6G8BaVmos8bdrKEZLFMOVLAMLrwjEsCsLa3AgMBAAGjQjBAMA8GA1UdEwEB/wQFMAMBAf8wHQYD VR0OBBYEFEe4zf/lb+74suwvTg75JbCOPGvDMA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQsF AAOCAgEAACAjQTUEkMJAYmDv4jVM1z+s4jSQuKFvdvoWFqRINyzpkMLyPPgKn9iB5btb2iUspKdV cSQy9sgL8rxq+JOssgfCX5/bzMiKqr5qb+FJEMwx14C7u8jYog5kV+qi9cKpMRXSIGrs/CIBKM+G uIAeqcwRpTzyFrNHnfzSgCHEy9BHcEGhyoMZCCxt8l13nIoUE9Q2HJLw5QY33KbmkJs4j1xrG0aG Q0JfPgEHU1RdZX33inOhmlRaHylDFCfChQ+1iHsaO5S3HWCntZznKWlXWpuTekMwGwPXYshApqr8 ZORK15FTAaggiG6cX0S5y2CBNOxv033aSF/rtJC8LakcC6wc1aJoIIAE1vyxjy+7SjENSoYc6+I2 KSb12tjE8nVhz36udmNKekBlk4f4HoCMhuWG1o8O/FMsYOgWYRqiPkN7zTlgVGr18okmAWiDSKIz 6MkEkbIRNBE+6tBDGR8Dk5AM/1E9V/RBbuHLoL7ryWPNbczk+DaqaJ3tvV2XcEQNtg413OEMXbug UZTLfhbrES+jkkXITHHZvMmZUldGL1DPvTVp9D0VzgalLA8+9oG6lLvDu79leNKGef9JOxqDDPDe eOzI8k1MGt6CKfjBWtrt7uYnXuhF0J0cUahoq0Tj0Itq4/g7u9xN12TyUb7mqqta6THuBrxzvxNi Cp/HuZc= -----END CERTIFICATE----- T-TeleSec GlobalRoot Class 3 ============================ -----BEGIN CERTIFICATE----- MIIDwzCCAqugAwIBAgIBATANBgkqhkiG9w0BAQsFADCBgjELMAkGA1UEBhMCREUxKzApBgNVBAoM IlQtU3lzdGVtcyBFbnRlcnByaXNlIFNlcnZpY2VzIEdtYkgxHzAdBgNVBAsMFlQtU3lzdGVtcyBU cnVzdCBDZW50ZXIxJTAjBgNVBAMMHFQtVGVsZVNlYyBHbG9iYWxSb290IENsYXNzIDMwHhcNMDgx MDAxMTAyOTU2WhcNMzMxMDAxMjM1OTU5WjCBgjELMAkGA1UEBhMCREUxKzApBgNVBAoMIlQtU3lz dGVtcyBFbnRlcnByaXNlIFNlcnZpY2VzIEdtYkgxHzAdBgNVBAsMFlQtU3lzdGVtcyBUcnVzdCBD ZW50ZXIxJTAjBgNVBAMMHFQtVGVsZVNlYyBHbG9iYWxSb290IENsYXNzIDMwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC9dZPwYiJvJK7genasfb3ZJNW4t/zN8ELg63iIVl6bmlQdTQyK 9tPPcPRStdiTBONGhnFBSivwKixVA9ZIw+A5OO3yXDw/RLyTPWGrTs0NvvAgJ1gORH8EGoel15YU NpDQSXuhdfsaa3Ox+M6pCSzyU9XDFES4hqX2iys52qMzVNn6chr3IhUciJFrf2blw2qAsCTz34ZF iP0Zf3WHHx+xGwpzJFu5ZeAsVMhg02YXP+HMVDNzkQI6pn97djmiH5a2OK61yJN0HZ65tOVgnS9W 0eDrXltMEnAMbEQgqxHY9Bn20pxSN+f6tsIxO0rUFJmtxxr1XV/6B7h8DR/Wgx6zAgMBAAGjQjBA MA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMB0GA1UdDgQWBBS1A/d2O2GCahKqGFPr AyGUv/7OyjANBgkqhkiG9w0BAQsFAAOCAQEAVj3vlNW92nOyWL6ukK2YJ5f+AbGwUgC4TeQbIXQb fsDuXmkqJa9c1h3a0nnJ85cp4IaH3gRZD/FZ1GSFS5mvJQQeyUapl96Cshtwn5z2r3Ex3XsFpSzT ucpH9sry9uetuUg/vBa3wW306gmv7PO15wWeph6KU1HWk4HMdJP2udqmJQV0eVp+QD6CSyYRMG7h P0HHRwA11fXT91Q+gT3aSWqas+8QPebrb9HIIkfLzM8BMZLZGOMivgkeGj5asuRrDFR6fUNOuIml e9eiPZaGzPImNC1qkp2aGtAw4l1OBLBfiyB+d8E9lYLRRpo7PHi4b6HQDWSieB4pTpPDpFQUWw== -----END CERTIFICATE----- D-TRUST Root Class 3 CA 2 2009 ============================== -----BEGIN CERTIFICATE----- MIIEMzCCAxugAwIBAgIDCYPzMA0GCSqGSIb3DQEBCwUAME0xCzAJBgNVBAYTAkRFMRUwEwYDVQQK DAxELVRydXN0IEdtYkgxJzAlBgNVBAMMHkQtVFJVU1QgUm9vdCBDbGFzcyAzIENBIDIgMjAwOTAe Fw0wOTExMDUwODM1NThaFw0yOTExMDUwODM1NThaME0xCzAJBgNVBAYTAkRFMRUwEwYDVQQKDAxE LVRydXN0IEdtYkgxJzAlBgNVBAMMHkQtVFJVU1QgUm9vdCBDbGFzcyAzIENBIDIgMjAwOTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANOySs96R+91myP6Oi/WUEWJNTrGa9v+2wBoqOAD ER03UAifTUpolDWzU9GUY6cgVq/eUXjsKj3zSEhQPgrfRlWLJ23DEE0NkVJD2IfgXU42tSHKXzlA BF9bfsyjxiupQB7ZNoTWSPOSHjRGICTBpFGOShrvUD9pXRl/RcPHAY9RySPocq60vFYJfxLLHLGv KZAKyVXMD9O0Gu1HNVpK7ZxzBCHQqr0ME7UAyiZsxGsMlFqVlNpQmvH/pStmMaTJOKDfHR+4CS7z p+hnUquVH+BGPtikw8paxTGA6Eian5Rp/hnd2HN8gcqW3o7tszIFZYQ05ub9VxC1X3a/L7AQDcUC AwEAAaOCARowggEWMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFP3aFMSfMN4hvR5COfyrYyNJ 4PGEMA4GA1UdDwEB/wQEAwIBBjCB0wYDVR0fBIHLMIHIMIGAoH6gfIZ6bGRhcDovL2RpcmVjdG9y eS5kLXRydXN0Lm5ldC9DTj1ELVRSVVNUJTIwUm9vdCUyMENsYXNzJTIwMyUyMENBJTIwMiUyMDIw MDksTz1ELVRydXN0JTIwR21iSCxDPURFP2NlcnRpZmljYXRlcmV2b2NhdGlvbmxpc3QwQ6BBoD+G PWh0dHA6Ly93d3cuZC10cnVzdC5uZXQvY3JsL2QtdHJ1c3Rfcm9vdF9jbGFzc18zX2NhXzJfMjAw OS5jcmwwDQYJKoZIhvcNAQELBQADggEBAH+X2zDI36ScfSF6gHDOFBJpiBSVYEQBrLLpME+bUMJm 2H6NMLVwMeniacfzcNsgFYbQDfC+rAF1hM5+n02/t2A7nPPKHeJeaNijnZflQGDSNiH+0LS4F9p0 o3/U37CYAqxva2ssJSRyoWXuJVrl5jLn8t+rSfrzkGkj2wTZ51xY/GXUl77M/C4KzCUqNQT4YJEV dT1B/yMfGchs64JTBKbkTCJNjYy6zltz7GRUUG3RnFX7acM2w4y8PIWmawomDeCTmGCufsYkl4ph X5GOZpIJhzbNi5stPvZR1FDUWSi9g/LMKHtThm3YJohw1+qRzT65ysCQblrGXnRl11z+o+I= -----END CERTIFICATE----- D-TRUST Root Class 3 CA 2 EV 2009 ================================= -----BEGIN CERTIFICATE----- MIIEQzCCAyugAwIBAgIDCYP0MA0GCSqGSIb3DQEBCwUAMFAxCzAJBgNVBAYTAkRFMRUwEwYDVQQK DAxELVRydXN0IEdtYkgxKjAoBgNVBAMMIUQtVFJVU1QgUm9vdCBDbGFzcyAzIENBIDIgRVYgMjAw OTAeFw0wOTExMDUwODUwNDZaFw0yOTExMDUwODUwNDZaMFAxCzAJBgNVBAYTAkRFMRUwEwYDVQQK DAxELVRydXN0IEdtYkgxKjAoBgNVBAMMIUQtVFJVU1QgUm9vdCBDbGFzcyAzIENBIDIgRVYgMjAw OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJnxhDRwui+3MKCOvXwEz75ivJn9gpfS egpnljgJ9hBOlSJzmY3aFS3nBfwZcyK3jpgAvDw9rKFs+9Z5JUut8Mxk2og+KbgPCdM03TP1YtHh zRnp7hhPTFiu4h7WDFsVWtg6uMQYZB7jM7K1iXdODL/ZlGsTl28So/6ZqQTMFexgaDbtCHu39b+T 7WYxg4zGcTSHThfqr4uRjRxWQa4iN1438h3Z0S0NL2lRp75mpoo6Kr3HGrHhFPC+Oh25z1uxav60 sUYgovseO3Dvk5h9jHOW8sXvhXCtKSb8HgQ+HKDYD8tSg2J87otTlZCpV6LqYQXY+U3EJ/pure35 11H3a6UCAwEAAaOCASQwggEgMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFNOUikxiEyoZLsyv cop9NteaHNxnMA4GA1UdDwEB/wQEAwIBBjCB3QYDVR0fBIHVMIHSMIGHoIGEoIGBhn9sZGFwOi8v ZGlyZWN0b3J5LmQtdHJ1c3QubmV0L0NOPUQtVFJVU1QlMjBSb290JTIwQ2xhc3MlMjAzJTIwQ0El MjAyJTIwRVYlMjAyMDA5LE89RC1UcnVzdCUyMEdtYkgsQz1ERT9jZXJ0aWZpY2F0ZXJldm9jYXRp b25saXN0MEagRKBChkBodHRwOi8vd3d3LmQtdHJ1c3QubmV0L2NybC9kLXRydXN0X3Jvb3RfY2xh c3NfM19jYV8yX2V2XzIwMDkuY3JsMA0GCSqGSIb3DQEBCwUAA4IBAQA07XtaPKSUiO8aEXUHL7P+ PPoeUSbrh/Yp3uDx1MYkCenBz1UbtDDZzhr+BlGmFaQt77JLvyAoJUnRpjZ3NOhk31KxEcdzes05 nsKtjHEh8lprr988TlWvsoRlFIm5d8sqMb7Po23Pb0iUMkZv53GMoKaEGTcH8gNFCSuGdXzfX2lX ANtu2KZyIktQ1HWYVt+3GP9DQ1CuekR78HlR10M9p9OB0/DJT7naxpeG0ILD5EJt/rDiZE4OJudA NCa1CInXCGNjOCd1HjPqbqjdn5lPdE2BiYBL3ZqXKVwvvoFBuYz/6n1gBp7N1z3TLqMVvKjmJuVv w9y4AyHqnxbxLFS1 -----END CERTIFICATE----- CA Disig Root R2 ================ -----BEGIN CERTIFICATE----- MIIFaTCCA1GgAwIBAgIJAJK4iNuwisFjMA0GCSqGSIb3DQEBCwUAMFIxCzAJBgNVBAYTAlNLMRMw EQYDVQQHEwpCcmF0aXNsYXZhMRMwEQYDVQQKEwpEaXNpZyBhLnMuMRkwFwYDVQQDExBDQSBEaXNp ZyBSb290IFIyMB4XDTEyMDcxOTA5MTUzMFoXDTQyMDcxOTA5MTUzMFowUjELMAkGA1UEBhMCU0sx EzARBgNVBAcTCkJyYXRpc2xhdmExEzARBgNVBAoTCkRpc2lnIGEucy4xGTAXBgNVBAMTEENBIERp c2lnIFJvb3QgUjIwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCio8QACdaFXS1tFPbC w3OeNcJxVX6B+6tGUODBfEl45qt5WDza/3wcn9iXAng+a0EE6UG9vgMsRfYvZNSrXaNHPWSb6Wia xswbP7q+sos0Ai6YVRn8jG+qX9pMzk0DIaPY0jSTVpbLTAwAFjxfGs3Ix2ymrdMxp7zo5eFm1tL7 A7RBZckQrg4FY8aAamkw/dLukO8NJ9+flXP04SXabBbeQTg06ov80egEFGEtQX6sx3dOy1FU+16S GBsEWmjGycT6txOgmLcRK7fWV8x8nhfRyyX+hk4kLlYMeE2eARKmK6cBZW58Yh2EhN/qwGu1pSqV g8NTEQxzHQuyRpDRQjrOQG6Vrf/GlK1ul4SOfW+eioANSW1z4nuSHsPzwfPrLgVv2RvPN3YEyLRa 5Beny912H9AZdugsBbPWnDTYltxhh5EF5EQIM8HauQhl1K6yNg3ruji6DOWbnuuNZt2Zz9aJQfYE koopKW1rOhzndX0CcQ7zwOe9yxndnWCywmZgtrEE7snmhrmaZkCo5xHtgUUDi/ZnWejBBhG93c+A Ak9lQHhcR1DIm+YfgXvkRKhbhZri3lrVx/k6RGZL5DJUfORsnLMOPReisjQS1n6yqEm70XooQL6i Fh/f5DcfEXP7kAplQ6INfPgGAVUzfbANuPT1rqVCV3w2EYx7XsQDnYx5nQIDAQABo0IwQDAPBgNV HRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUtZn4r7CU9eMg1gqtzk5WpC5u Qu0wDQYJKoZIhvcNAQELBQADggIBACYGXnDnZTPIgm7ZnBc6G3pmsgH2eDtpXi/q/075KMOYKmFM tCQSin1tERT3nLXK5ryeJ45MGcipvXrA1zYObYVybqjGom32+nNjf7xueQgcnYqfGopTpti72TVV sRHFqQOzVju5hJMiXn7B9hJSi+osZ7z+Nkz1uM/Rs0mSO9MpDpkblvdhuDvEK7Z4bLQjb/D907Je dR+Zlais9trhxTF7+9FGs9K8Z7RiVLoJ92Owk6Ka+elSLotgEqv89WBW7xBci8QaQtyDW2QOy7W8 1k/BfDxujRNt+3vrMNDcTa/F1balTFtxyegxvug4BkihGuLq0t4SOVga/4AOgnXmt8kHbA7v/zjx mHHEt38OFdAlab0inSvtBfZGR6ztwPDUO+Ls7pZbkBNOHlY667DvlruWIxG68kOGdGSVyCh13x01 utI3gzhTODY7z2zp+WsO0PsE6E9312UBeIYMej4hYvF/Y3EMyZ9E26gnonW+boE+18DrG5gPcFw0 sorMwIUY6256s/daoQe/qUKS82Ail+QUoQebTnbAjn39pCXHR+3/H3OszMOl6W8KjptlwlCFtaOg UxLMVYdh84GuEEZhvUQhuMI9dM9+JDX6HAcOmz0iyu8xL4ysEr3vQCj8KWefshNPZiTEUxnpHikV 7+ZtsH8tZ/3zbBt1RqPlShfppNcL -----END CERTIFICATE----- ACCVRAIZ1 ========= -----BEGIN CERTIFICATE----- MIIH0zCCBbugAwIBAgIIXsO3pkN/pOAwDQYJKoZIhvcNAQEFBQAwQjESMBAGA1UEAwwJQUNDVlJB SVoxMRAwDgYDVQQLDAdQS0lBQ0NWMQ0wCwYDVQQKDARBQ0NWMQswCQYDVQQGEwJFUzAeFw0xMTA1 MDUwOTM3MzdaFw0zMDEyMzEwOTM3MzdaMEIxEjAQBgNVBAMMCUFDQ1ZSQUlaMTEQMA4GA1UECwwH UEtJQUNDVjENMAsGA1UECgwEQUNDVjELMAkGA1UEBhMCRVMwggIiMA0GCSqGSIb3DQEBAQUAA4IC DwAwggIKAoICAQCbqau/YUqXry+XZpp0X9DZlv3P4uRm7x8fRzPCRKPfmt4ftVTdFXxpNRFvu8gM jmoYHtiP2Ra8EEg2XPBjs5BaXCQ316PWywlxufEBcoSwfdtNgM3802/J+Nq2DoLSRYWoG2ioPej0 RGy9ocLLA76MPhMAhN9KSMDjIgro6TenGEyxCQ0jVn8ETdkXhBilyNpAlHPrzg5XPAOBOp0KoVdD aaxXbXmQeOW1tDvYvEyNKKGno6e6Ak4l0Squ7a4DIrhrIA8wKFSVf+DuzgpmndFALW4ir50awQUZ 0m/A8p/4e7MCQvtQqR0tkw8jq8bBD5L/0KIV9VMJcRz/RROE5iZe+OCIHAr8Fraocwa48GOEAqDG WuzndN9wrqODJerWx5eHk6fGioozl2A3ED6XPm4pFdahD9GILBKfb6qkxkLrQaLjlUPTAYVtjrs7 8yM2x/474KElB0iryYl0/wiPgL/AlmXz7uxLaL2diMMxs0Dx6M/2OLuc5NF/1OVYm3z61PMOm3WR 5LpSLhl+0fXNWhn8ugb2+1KoS5kE3fj5tItQo05iifCHJPqDQsGH+tUtKSpacXpkatcnYGMN285J 9Y0fkIkyF/hzQ7jSWpOGYdbhdQrqeWZ2iE9x6wQl1gpaepPluUsXQA+xtrn13k/c4LOsOxFwYIRK Q26ZIMApcQrAZQIDAQABo4ICyzCCAscwfQYIKwYBBQUHAQEEcTBvMEwGCCsGAQUFBzAChkBodHRw Oi8vd3d3LmFjY3YuZXMvZmlsZWFkbWluL0FyY2hpdm9zL2NlcnRpZmljYWRvcy9yYWl6YWNjdjEu Y3J0MB8GCCsGAQUFBzABhhNodHRwOi8vb2NzcC5hY2N2LmVzMB0GA1UdDgQWBBTSh7Tj3zcnk1X2 VuqB5TbMjB4/vTAPBgNVHRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFNKHtOPfNyeTVfZW6oHlNsyM Hj+9MIIBcwYDVR0gBIIBajCCAWYwggFiBgRVHSAAMIIBWDCCASIGCCsGAQUFBwICMIIBFB6CARAA QQB1AHQAbwByAGkAZABhAGQAIABkAGUAIABDAGUAcgB0AGkAZgBpAGMAYQBjAGkA8wBuACAAUgBh AO0AegAgAGQAZQAgAGwAYQAgAEEAQwBDAFYAIAAoAEEAZwBlAG4AYwBpAGEAIABkAGUAIABUAGUA YwBuAG8AbABvAGcA7QBhACAAeQAgAEMAZQByAHQAaQBmAGkAYwBhAGMAaQDzAG4AIABFAGwAZQBj AHQAcgDzAG4AaQBjAGEALAAgAEMASQBGACAAUQA0ADYAMAAxADEANQA2AEUAKQAuACAAQwBQAFMA IABlAG4AIABoAHQAdABwADoALwAvAHcAdwB3AC4AYQBjAGMAdgAuAGUAczAwBggrBgEFBQcCARYk aHR0cDovL3d3dy5hY2N2LmVzL2xlZ2lzbGFjaW9uX2MuaHRtMFUGA1UdHwROMEwwSqBIoEaGRGh0 dHA6Ly93d3cuYWNjdi5lcy9maWxlYWRtaW4vQXJjaGl2b3MvY2VydGlmaWNhZG9zL3JhaXphY2N2 MV9kZXIuY3JsMA4GA1UdDwEB/wQEAwIBBjAXBgNVHREEEDAOgQxhY2N2QGFjY3YuZXMwDQYJKoZI hvcNAQEFBQADggIBAJcxAp/n/UNnSEQU5CmH7UwoZtCPNdpNYbdKl02125DgBS4OxnnQ8pdpD70E R9m+27Up2pvZrqmZ1dM8MJP1jaGo/AaNRPTKFpV8M9xii6g3+CfYCS0b78gUJyCpZET/LtZ1qmxN YEAZSUNUY9rizLpm5U9EelvZaoErQNV/+QEnWCzI7UiRfD+mAM/EKXMRNt6GGT6d7hmKG9Ww7Y49 nCrADdg9ZuM8Db3VlFzi4qc1GwQA9j9ajepDvV+JHanBsMyZ4k0ACtrJJ1vnE5Bc5PUzolVt3OAJ TS+xJlsndQAJxGJ3KQhfnlmstn6tn1QwIgPBHnFk/vk4CpYY3QIUrCPLBhwepH2NDd4nQeit2hW3 sCPdK6jT2iWH7ehVRE2I9DZ+hJp4rPcOVkkO1jMl1oRQQmwgEh0q1b688nCBpHBgvgW1m54ERL5h I6zppSSMEYCUWqKiuUnSwdzRp+0xESyeGabu4VXhwOrPDYTkF7eifKXeVSUG7szAh1xA2syVP1Xg Nce4hL60Xc16gwFy7ofmXx2utYXGJt/mwZrpHgJHnyqobalbz+xFd3+YJ5oyXSrjhO7FmGYvliAd 3djDJ9ew+f7Zfc3Qn48LFFhRny+Lwzgt3uiP1o2HpPVWQxaZLPSkVrQ0uGE3ycJYgBugl6H8WY3p EfbRD0tVNEYqi4Y7 -----END CERTIFICATE----- TWCA Global Root CA =================== -----BEGIN CERTIFICATE----- MIIFQTCCAymgAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwUTELMAkGA1UEBhMCVFcxEjAQBgNVBAoT CVRBSVdBTi1DQTEQMA4GA1UECxMHUm9vdCBDQTEcMBoGA1UEAxMTVFdDQSBHbG9iYWwgUm9vdCBD QTAeFw0xMjA2MjcwNjI4MzNaFw0zMDEyMzExNTU5NTlaMFExCzAJBgNVBAYTAlRXMRIwEAYDVQQK EwlUQUlXQU4tQ0ExEDAOBgNVBAsTB1Jvb3QgQ0ExHDAaBgNVBAMTE1RXQ0EgR2xvYmFsIFJvb3Qg Q0EwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCwBdvI64zEbooh745NnHEKH1Jw7W2C nJfF10xORUnLQEK1EjRsGcJ0pDFfhQKX7EMzClPSnIyOt7h52yvVavKOZsTuKwEHktSz0ALfUPZV r2YOy+BHYC8rMjk1Ujoog/h7FsYYuGLWRyWRzvAZEk2tY/XTP3VfKfChMBwqoJimFb3u/Rk28OKR Q4/6ytYQJ0lM793B8YVwm8rqqFpD/G2Gb3PpN0Wp8DbHzIh1HrtsBv+baz4X7GGqcXzGHaL3SekV tTzWoWH1EfcFbx39Eb7QMAfCKbAJTibc46KokWofwpFFiFzlmLhxpRUZyXx1EcxwdE8tmx2RRP1W KKD+u4ZqyPpcC1jcxkt2yKsi2XMPpfRaAok/T54igu6idFMqPVMnaR1sjjIsZAAmY2E2TqNGtz99 sy2sbZCilaLOz9qC5wc0GZbpuCGqKX6mOL6OKUohZnkfs8O1CWfe1tQHRvMq2uYiN2DLgbYPoA/p yJV/v1WRBXrPPRXAb94JlAGD1zQbzECl8LibZ9WYkTunhHiVJqRaCPgrdLQABDzfuBSO6N+pjWxn kjMdwLfS7JLIvgm/LCkFbwJrnu+8vyq8W8BQj0FwcYeyTbcEqYSjMq+u7msXi7Kx/mzhkIyIqJdI zshNy/MGz19qCkKxHh53L46g5pIOBvwFItIm4TFRfTLcDwIDAQABoyMwITAOBgNVHQ8BAf8EBAMC AQYwDwYDVR0TAQH/BAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAgEAXzSBdu+WHdXltdkCY4QWwa6g cFGn90xHNcgL1yg9iXHZqjNB6hQbbCEAwGxCGX6faVsgQt+i0trEfJdLjbDorMjupWkEmQqSpqsn LhpNgb+E1HAerUf+/UqdM+DyucRFCCEK2mlpc3INvjT+lIutwx4116KD7+U4x6WFH6vPNOw/KP4M 8VeGTslV9xzU2KV9Bnpv1d8Q34FOIWWxtuEXeZVFBs5fzNxGiWNoRI2T9GRwoD2dKAXDOXC4Ynsg /eTb6QihuJ49CcdP+yz4k3ZB3lLg4VfSnQO8d57+nile98FRYB/e2guyLXW3Q0iT5/Z5xoRdgFlg lPx4mI88k1HtQJAH32RjJMtOcQWh15QaiDLxInQirqWm2BJpTGCjAu4r7NRjkgtevi92a6O2JryP A9gK8kxkRr05YuWW6zRjESjMlfGt7+/cgFhI6Uu46mWs6fyAtbXIRfmswZ/ZuepiiI7E8UuDEq3m i4TWnsLrgxifarsbJGAzcMzs9zLzXNl5fe+epP7JI8Mk7hWSsT2RTyaGvWZzJBPqpK5jwa19hAM8 EHiGG3njxPPyBJUgriOCxLM6AGK/5jYk4Ve6xx6QddVfP5VhK8E7zeWzaGHQRiapIVJpLesux+t3 zqY6tQMzT3bR51xUAV3LePTJDL/PEo4XLSNolOer/qmyKwbQBM0= -----END CERTIFICATE----- TeliaSonera Root CA v1 ====================== -----BEGIN CERTIFICATE----- MIIFODCCAyCgAwIBAgIRAJW+FqD3LkbxezmCcvqLzZYwDQYJKoZIhvcNAQEFBQAwNzEUMBIGA1UE CgwLVGVsaWFTb25lcmExHzAdBgNVBAMMFlRlbGlhU29uZXJhIFJvb3QgQ0EgdjEwHhcNMDcxMDE4 MTIwMDUwWhcNMzIxMDE4MTIwMDUwWjA3MRQwEgYDVQQKDAtUZWxpYVNvbmVyYTEfMB0GA1UEAwwW VGVsaWFTb25lcmEgUm9vdCBDQSB2MTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMK+ 6yfwIaPzaSZVfp3FVRaRXP3vIb9TgHot0pGMYzHw7CTww6XScnwQbfQ3t+XmfHnqjLWCi65ItqwA 3GV17CpNX8GH9SBlK4GoRz6JI5UwFpB/6FcHSOcZrr9FZ7E3GwYq/t75rH2D+1665I+XZ75Ljo1k B1c4VWk0Nj0TSO9P4tNmHqTPGrdeNjPUtAa9GAH9d4RQAEX1jF3oI7x+/jXh7VB7qTCNGdMJjmhn Xb88lxhTuylixcpecsHHltTbLaC0H2kD7OriUPEMPPCs81Mt8Bz17Ww5OXOAFshSsCPN4D7c3TxH oLs1iuKYaIu+5b9y7tL6pe0S7fyYGKkmdtwoSxAgHNN/Fnct7W+A90m7UwW7XWjH1Mh1Fj+JWov3 F0fUTPHSiXk+TT2YqGHeOh7S+F4D4MHJHIzTjU3TlTazN19jY5szFPAtJmtTfImMMsJu7D0hADnJ oWjiUIMusDor8zagrC/kb2HCUQk5PotTubtn2txTuXZZNp1D5SDgPTJghSJRt8czu90VL6R4pgd7 gUY2BIbdeTXHlSw7sKMXNeVzH7RcWe/a6hBle3rQf5+ztCo3O3CLm1u5K7fsslESl1MpWtTwEhDc TwK7EpIvYtQ/aUN8Ddb8WHUBiJ1YFkveupD/RwGJBmr2X7KQarMCpgKIv7NHfirZ1fpoeDVNAgMB AAGjPzA9MA8GA1UdEwEB/wQFMAMBAf8wCwYDVR0PBAQDAgEGMB0GA1UdDgQWBBTwj1k4ALP1j5qW DNXr+nuqF+gTEjANBgkqhkiG9w0BAQUFAAOCAgEAvuRcYk4k9AwI//DTDGjkk0kiP0Qnb7tt3oNm zqjMDfz1mgbldxSR651Be5kqhOX//CHBXfDkH1e3damhXwIm/9fH907eT/j3HEbAek9ALCI18Bmx 0GtnLLCo4MBANzX2hFxc469CeP6nyQ1Q6g2EdvZR74NTxnr/DlZJLo961gzmJ1TjTQpgcmLNkQfW pb/ImWvtxBnmq0wROMVvMeJuScg/doAmAyYp4Db29iBT4xdwNBedY2gea+zDTYa4EzAvXUYNR0PV G6pZDrlcjQZIrXSHX8f8MVRBE+LHIQ6e4B4N4cB7Q4WQxYpYxmUKeFfyxiMPAdkgS94P+5KFdSpc c41teyWRyu5FrgZLAMzTsVlQ2jqIOylDRl6XK1TOU2+NSueW+r9xDkKLfP0ooNBIytrEgUy7onOT JsjrDNYmiLbAJM+7vVvrdX3pCI6GMyx5dwlppYn8s3CQh3aP0yK7Qs69cwsgJirQmz1wHiRszYd2 qReWt88NkvuOGKmYSdGe/mBEciG5Ge3C9THxOUiIkCR1VBatzvT4aRRkOfujuLpwQMcnHL/EVlP6 Y2XQ8xwOFvVrhlhNGNTkDY6lnVuR3HYkUD/GKvvZt5y11ubQ2egZixVxSK236thZiNSQvxaz2ems WWFUyBy6ysHK4bkgTI86k4mloMy/0/Z1pHWWbVY= -----END CERTIFICATE----- T-TeleSec GlobalRoot Class 2 ============================ -----BEGIN CERTIFICATE----- MIIDwzCCAqugAwIBAgIBATANBgkqhkiG9w0BAQsFADCBgjELMAkGA1UEBhMCREUxKzApBgNVBAoM IlQtU3lzdGVtcyBFbnRlcnByaXNlIFNlcnZpY2VzIEdtYkgxHzAdBgNVBAsMFlQtU3lzdGVtcyBU cnVzdCBDZW50ZXIxJTAjBgNVBAMMHFQtVGVsZVNlYyBHbG9iYWxSb290IENsYXNzIDIwHhcNMDgx MDAxMTA0MDE0WhcNMzMxMDAxMjM1OTU5WjCBgjELMAkGA1UEBhMCREUxKzApBgNVBAoMIlQtU3lz dGVtcyBFbnRlcnByaXNlIFNlcnZpY2VzIEdtYkgxHzAdBgNVBAsMFlQtU3lzdGVtcyBUcnVzdCBD ZW50ZXIxJTAjBgNVBAMMHFQtVGVsZVNlYyBHbG9iYWxSb290IENsYXNzIDIwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCqX9obX+hzkeXaXPSi5kfl82hVYAUdAqSzm1nzHoqvNK38DcLZ SBnuaY/JIPwhqgcZ7bBcrGXHX+0CfHt8LRvWurmAwhiCFoT6ZrAIxlQjgeTNuUk/9k9uN0goOA/F vudocP05l03Sx5iRUKrERLMjfTlH6VJi1hKTXrcxlkIF+3anHqP1wvzpesVsqXFP6st4vGCvx970 2cu+fjOlbpSD8DT6IavqjnKgP6TeMFvvhk1qlVtDRKgQFRzlAVfFmPHmBiiRqiDFt1MmUUOyCxGV WOHAD3bZwI18gfNycJ5v/hqO2V81xrJvNHy+SE/iWjnX2J14np+GPgNeGYtEotXHAgMBAAGjQjBA MA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMB0GA1UdDgQWBBS/WSA2AHmgoCJrjNXy YdK4LMuCSjANBgkqhkiG9w0BAQsFAAOCAQEAMQOiYQsfdOhyNsZt+U2e+iKo4YFWz827n+qrkRk4 r6p8FU3ztqONpfSO9kSpp+ghla0+AGIWiPACuvxhI+YzmzB6azZie60EI4RYZeLbK4rnJVM3YlNf vNoBYimipidx5joifsFvHZVwIEoHNN/q/xWA5brXethbdXwFeilHfkCoMRN3zUA7tFFHei4R40cR 3p1m0IvVVGb6g1XqfMIpiRvpb7PO4gWEyS8+eIVibslfwXhjdFjASBgMmTnrpMwatXlajRWc2BQN 9noHV8cigwUtPJslJj0Ys6lDfMjIq2SPDqO/nBudMNva0Bkuqjzx+zOAduTNrRlPBSeOE6Fuwg== -----END CERTIFICATE----- Atos TrustedRoot 2011 ===================== -----BEGIN CERTIFICATE----- MIIDdzCCAl+gAwIBAgIIXDPLYixfszIwDQYJKoZIhvcNAQELBQAwPDEeMBwGA1UEAwwVQXRvcyBU cnVzdGVkUm9vdCAyMDExMQ0wCwYDVQQKDARBdG9zMQswCQYDVQQGEwJERTAeFw0xMTA3MDcxNDU4 MzBaFw0zMDEyMzEyMzU5NTlaMDwxHjAcBgNVBAMMFUF0b3MgVHJ1c3RlZFJvb3QgMjAxMTENMAsG A1UECgwEQXRvczELMAkGA1UEBhMCREUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCV hTuXbyo7LjvPpvMpNb7PGKw+qtn4TaA+Gke5vJrf8v7MPkfoepbCJI419KkM/IL9bcFyYie96mvr 54rMVD6QUM+A1JX76LWC1BTFtqlVJVfbsVD2sGBkWXppzwO3bw2+yj5vdHLqqjAqc2K+SZFhyBH+ DgMq92og3AIVDV4VavzjgsG1xZ1kCWyjWZgHJ8cblithdHFsQ/H3NYkQ4J7sVaE3IqKHBAUsR320 HLliKWYoyrfhk/WklAOZuXCFteZI6o1Q/NnezG8HDt0Lcp2AMBYHlT8oDv3FdU9T1nSatCQujgKR z3bFmx5VdJx4IbHwLfELn8LVlhgf8FQieowHAgMBAAGjfTB7MB0GA1UdDgQWBBSnpQaxLKYJYO7R l+lwrrw7GWzbITAPBgNVHRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFKelBrEspglg7tGX6XCuvDsZ bNshMBgGA1UdIAQRMA8wDQYLKwYBBAGwLQMEAQEwDgYDVR0PAQH/BAQDAgGGMA0GCSqGSIb3DQEB CwUAA4IBAQAmdzTblEiGKkGdLD4GkGDEjKwLVLgfuXvTBznk+j57sj1O7Z8jvZfza1zv7v1Apt+h k6EKhqzvINB5Ab149xnYJDE0BAGmuhWawyfc2E8PzBhj/5kPDpFrdRbhIfzYJsdHt6bPWHJxfrrh TZVHO8mvbaG0weyJ9rQPOLXiZNwlz6bb65pcmaHFCN795trV1lpFDMS3wrUU77QR/w4VtfX128a9 61qn8FYiqTxlVMYVqL2Gns2Dlmh6cYGJ4Qvh6hEbaAjMaZ7snkGeRDImeuKHCnE96+RapNLbxc3G 3mB/ufNPRJLvKrcYPqcZ2Qt9sTdBQrC6YB3y/gkRsPCHe6ed -----END CERTIFICATE----- QuoVadis Root CA 1 G3 ===================== -----BEGIN CERTIFICATE----- MIIFYDCCA0igAwIBAgIUeFhfLq0sGUvjNwc1NBMotZbUZZMwDQYJKoZIhvcNAQELBQAwSDELMAkG A1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxHjAcBgNVBAMTFVF1b1ZhZGlzIFJv b3QgQ0EgMSBHMzAeFw0xMjAxMTIxNzI3NDRaFw00MjAxMTIxNzI3NDRaMEgxCzAJBgNVBAYTAkJN MRkwFwYDVQQKExBRdW9WYWRpcyBMaW1pdGVkMR4wHAYDVQQDExVRdW9WYWRpcyBSb290IENBIDEg RzMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCgvlAQjunybEC0BJyFuTHK3C3kEakE PBtVwedYMB0ktMPvhd6MLOHBPd+C5k+tR4ds7FtJwUrVu4/sh6x/gpqG7D0DmVIB0jWerNrwU8lm PNSsAgHaJNM7qAJGr6Qc4/hzWHa39g6QDbXwz8z6+cZM5cOGMAqNF34168Xfuw6cwI2H44g4hWf6 Pser4BOcBRiYz5P1sZK0/CPTz9XEJ0ngnjybCKOLXSoh4Pw5qlPafX7PGglTvF0FBM+hSo+LdoIN ofjSxxR3W5A2B4GbPgb6Ul5jxaYA/qXpUhtStZI5cgMJYr2wYBZupt0lwgNm3fME0UDiTouG9G/l g6AnhF4EwfWQvTA9xO+oabw4m6SkltFi2mnAAZauy8RRNOoMqv8hjlmPSlzkYZqn0ukqeI1RPToV 7qJZjqlc3sX5kCLliEVx3ZGZbHqfPT2YfF72vhZooF6uCyP8Wg+qInYtyaEQHeTTRCOQiJ/GKubX 9ZqzWB4vMIkIG1SitZgj7Ah3HJVdYdHLiZxfokqRmu8hqkkWCKi9YSgxyXSthfbZxbGL0eUQMk1f iyA6PEkfM4VZDdvLCXVDaXP7a3F98N/ETH3Goy7IlXnLc6KOTk0k+17kBL5yG6YnLUlamXrXXAkg t3+UuU/xDRxeiEIbEbfnkduebPRq34wGmAOtzCjvpUfzUwIDAQABo0IwQDAPBgNVHRMBAf8EBTAD AQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUo5fW816iEOGrRZ88F2Q87gFwnMwwDQYJKoZI hvcNAQELBQADggIBABj6W3X8PnrHX3fHyt/PX8MSxEBd1DKquGrX1RUVRpgjpeaQWxiZTOOtQqOC MTaIzen7xASWSIsBx40Bz1szBpZGZnQdT+3Btrm0DWHMY37XLneMlhwqI2hrhVd2cDMT/uFPpiN3 GPoajOi9ZcnPP/TJF9zrx7zABC4tRi9pZsMbj/7sPtPKlL92CiUNqXsCHKnQO18LwIE6PWThv6ct Tr1NxNgpxiIY0MWscgKCP6o6ojoilzHdCGPDdRS5YCgtW2jgFqlmgiNR9etT2DGbe+m3nUvriBbP +V04ikkwj+3x6xn0dxoxGE1nVGwvb2X52z3sIexe9PSLymBlVNFxZPT5pqOBMzYzcfCkeF9OrYMh 3jRJjehZrJ3ydlo28hP0r+AJx2EqbPfgna67hkooby7utHnNkDPDs3b69fBsnQGQ+p6Q9pxyz0fa wx/kNSBT8lTR32GDpgLiJTjehTItXnOQUl1CxM49S+H5GYQd1aJQzEH7QRTDvdbJWqNjZgKAvQU6 O0ec7AAmTPWIUb+oI38YB7AL7YsmoWTTYUrrXJ/es69nA7Mf3W1daWhpq1467HxpvMc7hU6eFbm0 FU/DlXpY18ls6Wy58yljXrQs8C097Vpl4KlbQMJImYFtnh8GKjwStIsPm6Ik8KaN1nrgS7ZklmOV hMJKzRwuJIczYOXD -----END CERTIFICATE----- QuoVadis Root CA 2 G3 ===================== -----BEGIN CERTIFICATE----- MIIFYDCCA0igAwIBAgIURFc0JFuBiZs18s64KztbpybwdSgwDQYJKoZIhvcNAQELBQAwSDELMAkG A1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxHjAcBgNVBAMTFVF1b1ZhZGlzIFJv b3QgQ0EgMiBHMzAeFw0xMjAxMTIxODU5MzJaFw00MjAxMTIxODU5MzJaMEgxCzAJBgNVBAYTAkJN MRkwFwYDVQQKExBRdW9WYWRpcyBMaW1pdGVkMR4wHAYDVQQDExVRdW9WYWRpcyBSb290IENBIDIg RzMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQChriWyARjcV4g/Ruv5r+LrI3HimtFh ZiFfqq8nUeVuGxbULX1QsFN3vXg6YOJkApt8hpvWGo6t/x8Vf9WVHhLL5hSEBMHfNrMWn4rjyduY NM7YMxcoRvynyfDStNVNCXJJ+fKH46nafaF9a7I6JaltUkSs+L5u+9ymc5GQYaYDFCDy54ejiK2t oIz/pgslUiXnFgHVy7g1gQyjO/Dh4fxaXc6AcW34Sas+O7q414AB+6XrW7PFXmAqMaCvN+ggOp+o MiwMzAkd056OXbxMmO7FGmh77FOm6RQ1o9/NgJ8MSPsc9PG/Srj61YxxSscfrf5BmrODXfKEVu+l V0POKa2Mq1W/xPtbAd0jIaFYAI7D0GoT7RPjEiuA3GfmlbLNHiJuKvhB1PLKFAeNilUSxmn1uIZo L1NesNKqIcGY5jDjZ1XHm26sGahVpkUG0CM62+tlXSoREfA7T8pt9DTEceT/AFr2XK4jYIVz8eQQ sSWu1ZK7E8EM4DnatDlXtas1qnIhO4M15zHfeiFuuDIIfR0ykRVKYnLP43ehvNURG3YBZwjgQQvD 6xVu+KQZ2aKrr+InUlYrAoosFCT5v0ICvybIxo/gbjh9Uy3l7ZizlWNof/k19N+IxWA1ksB8aRxh lRbQ694Lrz4EEEVlWFA4r0jyWbYW8jwNkALGcC4BrTwV1wIDAQABo0IwQDAPBgNVHRMBAf8EBTAD AQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQU7edvdlq/YOxJW8ald7tyFnGbxD0wDQYJKoZI hvcNAQELBQADggIBAJHfgD9DCX5xwvfrs4iP4VGyvD11+ShdyLyZm3tdquXK4Qr36LLTn91nMX66 AarHakE7kNQIXLJgapDwyM4DYvmL7ftuKtwGTTwpD4kWilhMSA/ohGHqPHKmd+RCroijQ1h5fq7K pVMNqT1wvSAZYaRsOPxDMuHBR//47PERIjKWnML2W2mWeyAMQ0GaW/ZZGYjeVYg3UQt4XAoeo0L9 x52ID8DyeAIkVJOviYeIyUqAHerQbj5hLja7NQ4nlv1mNDthcnPxFlxHBlRJAHpYErAK74X9sbgz dWqTHBLmYF5vHX/JHyPLhGGfHoJE+V+tYlUkmlKY7VHnoX6XOuYvHxHaU4AshZ6rNRDbIl9qxV6X U/IyAgkwo1jwDQHVcsaxfGl7w/U2Rcxhbl5MlMVerugOXou/983g7aEOGzPuVBj+D77vfoRrQ+Nw mNtddbINWQeFFSM51vHfqSYP1kjHs6Yi9TM3WpVHn3u6GBVv/9YUZINJ0gpnIdsPNWNgKCLjsZWD zYWm3S8P52dSbrsvhXz1SnPnxT7AvSESBT/8twNJAlvIJebiVDj1eYeMHVOyToV7BjjHLPj4sHKN JeV3UvQDHEimUF+IIDBu8oJDqz2XhOdT+yHBTw8imoa4WSr2Rz0ZiC3oheGe7IUIarFsNMkd7Egr O3jtZsSOeWmD3n+M -----END CERTIFICATE----- QuoVadis Root CA 3 G3 ===================== -----BEGIN CERTIFICATE----- MIIFYDCCA0igAwIBAgIULvWbAiin23r/1aOp7r0DoM8Sah0wDQYJKoZIhvcNAQELBQAwSDELMAkG A1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxHjAcBgNVBAMTFVF1b1ZhZGlzIFJv b3QgQ0EgMyBHMzAeFw0xMjAxMTIyMDI2MzJaFw00MjAxMTIyMDI2MzJaMEgxCzAJBgNVBAYTAkJN MRkwFwYDVQQKExBRdW9WYWRpcyBMaW1pdGVkMR4wHAYDVQQDExVRdW9WYWRpcyBSb290IENBIDMg RzMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCzyw4QZ47qFJenMioKVjZ/aEzHs286 IxSR/xl/pcqs7rN2nXrpixurazHb+gtTTK/FpRp5PIpM/6zfJd5O2YIyC0TeytuMrKNuFoM7pmRL Mon7FhY4futD4tN0SsJiCnMK3UmzV9KwCoWdcTzeo8vAMvMBOSBDGzXRU7Ox7sWTaYI+FrUoRqHe 6okJ7UO4BUaKhvVZR74bbwEhELn9qdIoyhA5CcoTNs+cra1AdHkrAj80//ogaX3T7mH1urPnMNA3 I4ZyYUUpSFlob3emLoG+B01vr87ERRORFHAGjx+f+IdpsQ7vw4kZ6+ocYfx6bIrc1gMLnia6Et3U VDmrJqMz6nWB2i3ND0/kA9HvFZcba5DFApCTZgIhsUfei5pKgLlVj7WiL8DWM2fafsSntARE60f7 5li59wzweyuxwHApw0BiLTtIadwjPEjrewl5qW3aqDCYz4ByA4imW0aucnl8CAMhZa634RylsSqi Md5mBPfAdOhx3v89WcyWJhKLhZVXGqtrdQtEPREoPHtht+KPZ0/l7DxMYIBpVzgeAVuNVejH38DM dyM0SXV89pgR6y3e7UEuFAUCf+D+IOs15xGsIs5XPd7JMG0QA4XN8f+MFrXBsj6IbGB/kE+V9/Yt rQE5BwT6dYB9v0lQ7e/JxHwc64B+27bQ3RP+ydOc17KXqQIDAQABo0IwQDAPBgNVHRMBAf8EBTAD AQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUxhfQvKjqAkPyGwaZXSuQILnXnOQwDQYJKoZI hvcNAQELBQADggIBADRh2Va1EodVTd2jNTFGu6QHcrxfYWLopfsLN7E8trP6KZ1/AvWkyaiTt3px KGmPc+FSkNrVvjrlt3ZqVoAh313m6Tqe5T72omnHKgqwGEfcIHB9UqM+WXzBusnIFUBhynLWcKzS t/Ac5IYp8M7vaGPQtSCKFWGafoaYtMnCdvvMujAWzKNhxnQT5WvvoxXqA/4Ti2Tk08HS6IT7SdEQ TXlm66r99I0xHnAUrdzeZxNMgRVhvLfZkXdxGYFgu/BYpbWcC/ePIlUnwEsBbTuZDdQdm2NnL9Du DcpmvJRPpq3t/O5jrFc/ZSXPsoaP0Aj/uHYUbt7lJ+yreLVTubY/6CD50qi+YUbKh4yE8/nxoGib Ih6BJpsQBJFxwAYf3KDTuVan45gtf4Od34wrnDKOMpTwATwiKp9Dwi7DmDkHOHv8XgBCH/MyJnmD hPbl8MFREsALHgQjDFSlTC9JxUrRtm5gDWv8a4uFJGS3iQ6rJUdbPM9+Sb3H6QrG2vd+DhcI00iX 0HGS8A85PjRqHH3Y8iKuu2n0M7SmSFXRDw4m6Oy2Cy2nhTXN/VnIn9HNPlopNLk9hM6xZdRZkZFW dSHBd575euFgndOtBBj0fOtek49TSiIp+EgrPk2GrFt/ywaZWWDYWGWVjUTR939+J399roD1B0y2 PpxxVJkES/1Y+Zj0 -----END CERTIFICATE----- DigiCert Assured ID Root G2 =========================== -----BEGIN CERTIFICATE----- MIIDljCCAn6gAwIBAgIQC5McOtY5Z+pnI7/Dr5r0SzANBgkqhkiG9w0BAQsFADBlMQswCQYDVQQG EwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQw IgYDVQQDExtEaWdpQ2VydCBBc3N1cmVkIElEIFJvb3QgRzIwHhcNMTMwODAxMTIwMDAwWhcNMzgw MTE1MTIwMDAwWjBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQL ExB3d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2VydCBBc3N1cmVkIElEIFJvb3QgRzIw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ5ygvUj82ckmIkzTz+GoeMVSAn61UQbVH 35ao1K+ALbkKz3X9iaV9JPrjIgwrvJUXCzO/GU1BBpAAvQxNEP4HteccbiJVMWWXvdMX0h5i89vq bFCMP4QMls+3ywPgym2hFEwbid3tALBSfK+RbLE4E9HpEgjAALAcKxHad3A2m67OeYfcgnDmCXRw VWmvo2ifv922ebPynXApVfSr/5Vh88lAbx3RvpO704gqu52/clpWcTs/1PPRCv4o76Pu2ZmvA9OP YLfykqGxvYmJHzDNw6YuYjOuFgJ3RFrngQo8p0Quebg/BLxcoIfhG69Rjs3sLPr4/m3wOnyqi+Rn lTGNAgMBAAGjQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGGMB0GA1UdDgQWBBTO w0q5mVXyuNtgv6l+vVa1lzan1jANBgkqhkiG9w0BAQsFAAOCAQEAyqVVjOPIQW5pJ6d1Ee88hjZv 0p3GeDgdaZaikmkuOGybfQTUiaWxMTeKySHMq2zNixya1r9I0jJmwYrA8y8678Dj1JGG0VDjA9tz d29KOVPt3ibHtX2vK0LRdWLjSisCx1BL4GnilmwORGYQRI+tBev4eaymG+g3NJ1TyWGqolKvSnAW hsI6yLETcDbYz+70CjTVW0z9B5yiutkBclzzTcHdDrEcDcRjvq30FPuJ7KJBDkzMyFdA0G4Dqs0M jomZmWzwPDCvON9vvKO+KSAnq3T/EyJ43pdSVR6DtVQgA+6uwE9W3jfMw3+qBCe703e4YtsXfJwo IhNzbM8m9Yop5w== -----END CERTIFICATE----- DigiCert Assured ID Root G3 =========================== -----BEGIN CERTIFICATE----- MIICRjCCAc2gAwIBAgIQC6Fa+h3foLVJRK/NJKBs7DAKBggqhkjOPQQDAzBlMQswCQYDVQQGEwJV UzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSQwIgYD VQQDExtEaWdpQ2VydCBBc3N1cmVkIElEIFJvb3QgRzMwHhcNMTMwODAxMTIwMDAwWhcNMzgwMTE1 MTIwMDAwWjBlMQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSQwIgYDVQQDExtEaWdpQ2VydCBBc3N1cmVkIElEIFJvb3QgRzMwdjAQ BgcqhkjOPQIBBgUrgQQAIgNiAAQZ57ysRGXtzbg/WPuNsVepRC0FFfLvC/8QdJ+1YlJfZn4f5dwb RXkLzMZTCp2NXQLZqVneAlr2lSoOjThKiknGvMYDOAdfVdp+CW7if17QRSAPWXYQ1qAk8C3eNvJs KTmjQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGGMB0GA1UdDgQWBBTL0L2p4ZgF UaFNN6KDec6NHSrkhDAKBggqhkjOPQQDAwNnADBkAjAlpIFFAmsSS3V0T8gj43DydXLefInwz5Fy YZ5eEJJZVrmDxxDnOOlYJjZ91eQ0hjkCMHw2U/Aw5WJjOpnitqM7mzT6HtoQknFekROn3aRukswy 1vUhZscv6pZjamVFkpUBtA== -----END CERTIFICATE----- DigiCert Global Root G2 ======================= -----BEGIN CERTIFICATE----- MIIDjjCCAnagAwIBAgIQAzrx5qcRqaC7KGSxHQn65TANBgkqhkiG9w0BAQsFADBhMQswCQYDVQQG EwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSAw HgYDVQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBHMjAeFw0xMzA4MDExMjAwMDBaFw0zODAxMTUx MjAwMDBaMGExCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3 dy5kaWdpY2VydC5jb20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IEcyMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuzfNNNx7a8myaJCtSnX/RrohCgiN9RlUyfuI2/Ou8jqJ kTx65qsGGmvPrC3oXgkkRLpimn7Wo6h+4FR1IAWsULecYxpsMNzaHxmx1x7e/dfgy5SDN67sH0NO 3Xss0r0upS/kqbitOtSZpLYl6ZtrAGCSYP9PIUkY92eQq2EGnI/yuum06ZIya7XzV+hdG82MHauV BJVJ8zUtluNJbd134/tJS7SsVQepj5WztCO7TG1F8PapspUwtP1MVYwnSlcUfIKdzXOS0xZKBgyM UNGPHgm+F6HmIcr9g+UQvIOlCsRnKPZzFBQ9RnbDhxSJITRNrw9FDKZJobq7nMWxM4MphQIDAQAB o0IwQDAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBhjAdBgNVHQ4EFgQUTiJUIBiV5uNu 5g/6+rkS7QYXjzkwDQYJKoZIhvcNAQELBQADggEBAGBnKJRvDkhj6zHd6mcY1Yl9PMWLSn/pvtsr F9+wX3N3KjITOYFnQoQj8kVnNeyIv/iPsGEMNKSuIEyExtv4NeF22d+mQrvHRAiGfzZ0JFrabA0U WTW98kndth/Jsw1HKj2ZL7tcu7XUIOGZX1NGFdtom/DzMNU+MeKNhJ7jitralj41E6Vf8PlwUHBH QRFXGU7Aj64GxJUTFy8bJZ918rGOmaFvE7FBcf6IKshPECBV1/MUReXgRPTqh5Uykw7+U0b6LJ3/ iyK5S9kJRaTepLiaWN0bfVKfjllDiIGknibVb63dDcY3fe0Dkhvld1927jyNxF1WW6LZZm6zNTfl MrY= -----END CERTIFICATE----- DigiCert Global Root G3 ======================= -----BEGIN CERTIFICATE----- MIICPzCCAcWgAwIBAgIQBVVWvPJepDU1w6QP1atFcjAKBggqhkjOPQQDAzBhMQswCQYDVQQGEwJV UzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSAwHgYD VQQDExdEaWdpQ2VydCBHbG9iYWwgUm9vdCBHMzAeFw0xMzA4MDExMjAwMDBaFw0zODAxMTUxMjAw MDBaMGExCzAJBgNVBAYTAlVTMRUwEwYDVQQKEwxEaWdpQ2VydCBJbmMxGTAXBgNVBAsTEHd3dy5k aWdpY2VydC5jb20xIDAeBgNVBAMTF0RpZ2lDZXJ0IEdsb2JhbCBSb290IEczMHYwEAYHKoZIzj0C AQYFK4EEACIDYgAE3afZu4q4C/sLfyHS8L6+c/MzXRq8NOrexpu80JX28MzQC7phW1FGfp4tn+6O YwwX7Adw9c+ELkCDnOg/QW07rdOkFFk2eJ0DQ+4QE2xy3q6Ip6FrtUPOZ9wj/wMco+I+o0IwQDAP BgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBhjAdBgNVHQ4EFgQUs9tIpPmhxdiuNkHMEWNp Yim8S8YwCgYIKoZIzj0EAwMDaAAwZQIxAK288mw/EkrRLTnDCgmXc/SINoyIJ7vmiI1Qhadj+Z4y 3maTD/HMsQmP3Wyr+mt/oAIwOWZbwmSNuJ5Q3KjVSaLtx9zRSX8XAbjIho9OjIgrqJqpisXRAL34 VOKa5Vt8sycX -----END CERTIFICATE----- DigiCert Trusted Root G4 ======================== -----BEGIN CERTIFICATE----- MIIFkDCCA3igAwIBAgIQBZsbV56OITLiOQe9p3d1XDANBgkqhkiG9w0BAQwFADBiMQswCQYDVQQG EwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3d3cuZGlnaWNlcnQuY29tMSEw HwYDVQQDExhEaWdpQ2VydCBUcnVzdGVkIFJvb3QgRzQwHhcNMTMwODAxMTIwMDAwWhcNMzgwMTE1 MTIwMDAwWjBiMQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMSEwHwYDVQQDExhEaWdpQ2VydCBUcnVzdGVkIFJvb3QgRzQwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC/5pBzaN675F1KPDAiMGkz7MKnJS7JIT3yithZwuEp pz1Yq3aaza57G4QNxDAf8xukOBbrVsaXbR2rsnnyyhHS5F/WBTxSD1Ifxp4VpX6+n6lXFllVcq9o k3DCsrp1mWpzMpTREEQQLt+C8weE5nQ7bXHiLQwb7iDVySAdYyktzuxeTsiT+CFhmzTrBcZe7Fsa vOvJz82sNEBfsXpm7nfISKhmV1efVFiODCu3T6cw2Vbuyntd463JT17lNecxy9qTXtyOj4DatpGY QJB5w3jHtrHEtWoYOAMQjdjUN6QuBX2I9YI+EJFwq1WCQTLX2wRzKm6RAXwhTNS8rhsDdV14Ztk6 MUSaM0C/CNdaSaTC5qmgZ92kJ7yhTzm1EVgX9yRcRo9k98FpiHaYdj1ZXUJ2h4mXaXpI8OCiEhtm mnTK3kse5w5jrubU75KSOp493ADkRSWJtppEGSt+wJS00mFt6zPZxd9LBADMfRyVw4/3IbKyEbe7 f/LVjHAsQWCqsWMYRJUadmJ+9oCw++hkpjPRiQfhvbfmQ6QYuKZ3AeEPlAwhHbJUKSWJbOUOUlFH dL4mrLZBdd56rF+NP8m800ERElvlEFDrMcXKchYiCd98THU/Y+whX8QgUWtvsauGi0/C1kVfnSD8 oR7FwI+isX4KJpn15GkvmB0t9dmpsh3lGwIDAQABo0IwQDAPBgNVHRMBAf8EBTADAQH/MA4GA1Ud DwEB/wQEAwIBhjAdBgNVHQ4EFgQU7NfjgtJxXWRM3y5nP+e6mK4cD08wDQYJKoZIhvcNAQEMBQAD ggIBALth2X2pbL4XxJEbw6GiAI3jZGgPVs93rnD5/ZpKmbnJeFwMDF/k5hQpVgs2SV1EY+CtnJYY ZhsjDT156W1r1lT40jzBQ0CuHVD1UvyQO7uYmWlrx8GnqGikJ9yd+SeuMIW59mdNOj6PWTkiU0Tr yF0Dyu1Qen1iIQqAyHNm0aAFYF/opbSnr6j3bTWcfFqK1qI4mfN4i/RN0iAL3gTujJtHgXINwBQy 7zBZLq7gcfJW5GqXb5JQbZaNaHqasjYUegbyJLkJEVDXCLG4iXqEI2FCKeWjzaIgQdfRnGTZ6iah ixTXTBmyUEFxPT9NcCOGDErcgdLMMpSEDQgJlxxPwO5rIHQw0uA5NBCFIRUBCOhVMt5xSdkoF1BN 5r5N0XWs0Mr7QbhDparTwwVETyw2m+L64kW4I1NsBm9nVX9GtUw/bihaeSbSpKhil9Ie4u1Ki7wb /UdKDd9nZn6yW0HQO+T0O/QEY+nvwlQAUaCKKsnOeMzV6ocEGLPOr0mIr/OSmbaz5mEP0oUA51Aa 5BuVnRmhuZyxm7EAHu/QD09CbMkKvO5D+jpxpchNJqU1/YldvIViHTLSoCtU7ZpXwdv6EM8Zt4tK G48BtieVU+i2iW1bvGjUI+iLUaJW+fCmgKDWHrO8Dw9TdSmq6hN35N6MgSGtBxBHEa2HPQfRdbzP 82Z+ -----END CERTIFICATE----- COMODO RSA Certification Authority ================================== -----BEGIN CERTIFICATE----- MIIF2DCCA8CgAwIBAgIQTKr5yttjb+Af907YWwOGnTANBgkqhkiG9w0BAQwFADCBhTELMAkGA1UE BhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgG A1UEChMRQ09NT0RPIENBIExpbWl0ZWQxKzApBgNVBAMTIkNPTU9ETyBSU0EgQ2VydGlmaWNhdGlv biBBdXRob3JpdHkwHhcNMTAwMTE5MDAwMDAwWhcNMzgwMTE4MjM1OTU5WjCBhTELMAkGA1UEBhMC R0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4GA1UEBxMHU2FsZm9yZDEaMBgGA1UE ChMRQ09NT0RPIENBIExpbWl0ZWQxKzApBgNVBAMTIkNPTU9ETyBSU0EgQ2VydGlmaWNhdGlvbiBB dXRob3JpdHkwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCR6FSS0gpWsawNJN3Fz0Rn dJkrN6N9I3AAcbxT38T6KhKPS38QVr2fcHK3YX/JSw8Xpz3jsARh7v8Rl8f0hj4K+j5c+ZPmNHrZ FGvnnLOFoIJ6dq9xkNfs/Q36nGz637CC9BR++b7Epi9Pf5l/tfxnQ3K9DADWietrLNPtj5gcFKt+ 5eNu/Nio5JIk2kNrYrhV/erBvGy2i/MOjZrkm2xpmfh4SDBF1a3hDTxFYPwyllEnvGfDyi62a+pG x8cgoLEfZd5ICLqkTqnyg0Y3hOvozIFIQ2dOciqbXL1MGyiKXCJ7tKuY2e7gUYPDCUZObT6Z+pUX 2nwzV0E8jVHtC7ZcryxjGt9XyD+86V3Em69FmeKjWiS0uqlWPc9vqv9JWL7wqP/0uK3pN/u6uPQL OvnoQ0IeidiEyxPx2bvhiWC4jChWrBQdnArncevPDt09qZahSL0896+1DSJMwBGB7FY79tOi4lu3 sgQiUpWAk2nojkxl8ZEDLXB0AuqLZxUpaVICu9ffUGpVRr+goyhhf3DQw6KqLCGqR84onAZFdr+C GCe01a60y1Dma/RMhnEw6abfFobg2P9A3fvQQoh/ozM6LlweQRGBY84YcWsr7KaKtzFcOmpH4MN5 WdYgGq/yapiqcrxXStJLnbsQ/LBMQeXtHT1eKJ2czL+zUdqnR+WEUwIDAQABo0IwQDAdBgNVHQ4E FgQUu69+Aj36pvE8hI6t7jiY7NkyMtQwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8w DQYJKoZIhvcNAQEMBQADggIBAArx1UaEt65Ru2yyTUEUAJNMnMvlwFTPoCWOAvn9sKIN9SCYPBMt rFaisNZ+EZLpLrqeLppysb0ZRGxhNaKatBYSaVqM4dc+pBroLwP0rmEdEBsqpIt6xf4FpuHA1sj+ nq6PK7o9mfjYcwlYRm6mnPTXJ9OV2jeDchzTc+CiR5kDOF3VSXkAKRzH7JsgHAckaVd4sjn8OoSg tZx8jb8uk2IntznaFxiuvTwJaP+EmzzV1gsD41eeFPfR60/IvYcjt7ZJQ3mFXLrrkguhxuhoqEwW sRqZCuhTLJK7oQkYdQxlqHvLI7cawiiFwxv/0Cti76R7CZGYZ4wUAc1oBmpjIXUDgIiKboHGhfKp pC3n9KUkEEeDys30jXlYsQab5xoq2Z0B15R97QNKyvDb6KkBPvVWmckejkk9u+UJueBPSZI9FoJA zMxZxuY67RIuaTxslbH9qh17f4a+Hg4yRvv7E491f0yLS0Zj/gA0QHDBw7mh3aZw4gSzQbzpgJHq ZJx64SIDqZxubw5lT2yHh17zbqD5daWbQOhTsiedSrnAdyGN/4fy3ryM7xfft0kL0fJuMAsaDk52 7RH89elWsn2/x20Kk4yl0MC2Hb46TpSi125sC8KKfPog88Tk5c0NqMuRkrF8hey1FGlmDoLnzc7I LaZRfyHBNVOFBkpdn627G190 -----END CERTIFICATE----- USERTrust RSA Certification Authority ===================================== -----BEGIN CERTIFICATE----- MIIF3jCCA8agAwIBAgIQAf1tMPyjylGoG7xkDjUDLTANBgkqhkiG9w0BAQwFADCBiDELMAkGA1UE BhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MR4wHAYDVQQK ExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNVBAMTJVVTRVJUcnVzdCBSU0EgQ2VydGlmaWNh dGlvbiBBdXRob3JpdHkwHhcNMTAwMjAxMDAwMDAwWhcNMzgwMTE4MjM1OTU5WjCBiDELMAkGA1UE BhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MR4wHAYDVQQK ExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNVBAMTJVVTRVJUcnVzdCBSU0EgQ2VydGlmaWNh dGlvbiBBdXRob3JpdHkwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCAEmUXNg7D2wiz 0KxXDXbtzSfTTK1Qg2HiqiBNCS1kCdzOiZ/MPans9s/B3PHTsdZ7NygRK0faOca8Ohm0X6a9fZ2j Y0K2dvKpOyuR+OJv0OwWIJAJPuLodMkYtJHUYmTbf6MG8YgYapAiPLz+E/CHFHv25B+O1ORRxhFn RghRy4YUVD+8M/5+bJz/Fp0YvVGONaanZshyZ9shZrHUm3gDwFA66Mzw3LyeTP6vBZY1H1dat//O +T23LLb2VN3I5xI6Ta5MirdcmrS3ID3KfyI0rn47aGYBROcBTkZTmzNg95S+UzeQc0PzMsNT79uq /nROacdrjGCT3sTHDN/hMq7MkztReJVni+49Vv4M0GkPGw/zJSZrM233bkf6c0Plfg6lZrEpfDKE Y1WJxA3Bk1QwGROs0303p+tdOmw1XNtB1xLaqUkL39iAigmTYo61Zs8liM2EuLE/pDkP2QKe6xJM lXzzawWpXhaDzLhn4ugTncxbgtNMs+1b/97lc6wjOy0AvzVVdAlJ2ElYGn+SNuZRkg7zJn0cTRe8 yexDJtC/QV9AqURE9JnnV4eeUB9XVKg+/XRjL7FQZQnmWEIuQxpMtPAlR1n6BB6T1CZGSlCBst6+ eLf8ZxXhyVeEHg9j1uliutZfVS7qXMYoCAQlObgOK6nyTJccBz8NUvXt7y+CDwIDAQABo0IwQDAd BgNVHQ4EFgQUU3m/WqorSs9UgOHYm8Cd8rIDZsswDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQF MAMBAf8wDQYJKoZIhvcNAQEMBQADggIBAFzUfA3P9wF9QZllDHPFUp/L+M+ZBn8b2kMVn54CVVeW FPFSPCeHlCjtHzoBN6J2/FNQwISbxmtOuowhT6KOVWKR82kV2LyI48SqC/3vqOlLVSoGIG1VeCkZ 7l8wXEskEVX/JJpuXior7gtNn3/3ATiUFJVDBwn7YKnuHKsSjKCaXqeYalltiz8I+8jRRa8YFWSQ Eg9zKC7F4iRO/Fjs8PRF/iKz6y+O0tlFYQXBl2+odnKPi4w2r78NBc5xjeambx9spnFixdjQg3IM 8WcRiQycE0xyNN+81XHfqnHd4blsjDwSXWXavVcStkNr/+XeTWYRUc+ZruwXtuhxkYzeSf7dNXGi FSeUHM9h4ya7b6NnJSFd5t0dCy5oGzuCr+yDZ4XUmFF0sbmZgIn/f3gZXHlKYC6SQK5MNyosycdi yA5d9zZbyuAlJQG03RoHnHcAP9Dc1ew91Pq7P8yF1m9/qS3fuQL39ZeatTXaw2ewh0qpKJ4jjv9c J2vhsE/zB+4ALtRZh8tSQZXq9EfX7mRBVXyNWQKV3WKdwrnuWih0hKWbt5DHDAff9Yk2dDLWKMGw sAvgnEzDHNb842m1R0aBL6KCq9NjRHDEjf8tM7qtj3u1cIiuPhnPQCjY/MiQu12ZIvVS5ljFH4gx Q+6IHdfGjjxDah2nGN59PRbxYvnKkKj9 -----END CERTIFICATE----- USERTrust ECC Certification Authority ===================================== -----BEGIN CERTIFICATE----- MIICjzCCAhWgAwIBAgIQXIuZxVqUxdJxVt7NiYDMJjAKBggqhkjOPQQDAzCBiDELMAkGA1UEBhMC VVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MR4wHAYDVQQKExVU aGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNVBAMTJVVTRVJUcnVzdCBFQ0MgQ2VydGlmaWNhdGlv biBBdXRob3JpdHkwHhcNMTAwMjAxMDAwMDAwWhcNMzgwMTE4MjM1OTU5WjCBiDELMAkGA1UEBhMC VVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0plcnNleSBDaXR5MR4wHAYDVQQKExVU aGUgVVNFUlRSVVNUIE5ldHdvcmsxLjAsBgNVBAMTJVVTRVJUcnVzdCBFQ0MgQ2VydGlmaWNhdGlv biBBdXRob3JpdHkwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQarFRaqfloI+d61SRvU8Za2EurxtW2 0eZzca7dnNYMYf3boIkDuAUU7FfO7l0/4iGzzvfUinngo4N+LZfQYcTxmdwlkWOrfzCjtHDix6Ez nPO/LlxTsV+zfTJ/ijTjeXmjQjBAMB0GA1UdDgQWBBQ64QmG1M8ZwpZ2dEl23OA1xmNjmjAOBgNV HQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAwNoADBlAjA2Z6EWCNzklwBB HU6+4WMBzzuqQhFkoJ2UOQIReVx7Hfpkue4WQrO/isIJxOzksU0CMQDpKmFHjFJKS04YcPbWRNZu 9YO6bVi9JNlWSOrvxKJGgYhqOkbRqZtNyWHa0V1Xahg= -----END CERTIFICATE----- GlobalSign ECC Root CA - R5 =========================== -----BEGIN CERTIFICATE----- MIICHjCCAaSgAwIBAgIRYFlJ4CYuu1X5CneKcflK2GwwCgYIKoZIzj0EAwMwUDEkMCIGA1UECxMb R2xvYmFsU2lnbiBFQ0MgUm9vdCBDQSAtIFI1MRMwEQYDVQQKEwpHbG9iYWxTaWduMRMwEQYDVQQD EwpHbG9iYWxTaWduMB4XDTEyMTExMzAwMDAwMFoXDTM4MDExOTAzMTQwN1owUDEkMCIGA1UECxMb R2xvYmFsU2lnbiBFQ0MgUm9vdCBDQSAtIFI1MRMwEQYDVQQKEwpHbG9iYWxTaWduMRMwEQYDVQQD EwpHbG9iYWxTaWduMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAER0UOlvt9Xb/pOdEh+J8LttV7HpI6 SFkc8GIxLcB6KP4ap1yztsyX50XUWPrRd21DosCHZTQKH3rd6zwzocWdTaRvQZU4f8kehOvRnkmS h5SHDDqFSmafnVmTTZdhBoZKo0IwQDAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAd BgNVHQ4EFgQUPeYpSJvqB8ohREom3m7e0oPQn1kwCgYIKoZIzj0EAwMDaAAwZQIxAOVpEslu28Yx uglB4Zf4+/2a4n0Sye18ZNPLBSWLVtmg515dTguDnFt2KaAJJiFqYgIwcdK1j1zqO+F4CYWodZI7 yFz9SO8NdCKoCOJuxUnOxwy8p2Fp8fc74SrL+SvzZpA3 -----END CERTIFICATE----- IdenTrust Commercial Root CA 1 ============================== -----BEGIN CERTIFICATE----- MIIFYDCCA0igAwIBAgIQCgFCgAAAAUUjyES1AAAAAjANBgkqhkiG9w0BAQsFADBKMQswCQYDVQQG EwJVUzESMBAGA1UEChMJSWRlblRydXN0MScwJQYDVQQDEx5JZGVuVHJ1c3QgQ29tbWVyY2lhbCBS b290IENBIDEwHhcNMTQwMTE2MTgxMjIzWhcNMzQwMTE2MTgxMjIzWjBKMQswCQYDVQQGEwJVUzES MBAGA1UEChMJSWRlblRydXN0MScwJQYDVQQDEx5JZGVuVHJ1c3QgQ29tbWVyY2lhbCBSb290IENB IDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCnUBneP5k91DNG8W9RYYKyqU+PZ4ld hNlT3Qwo2dfw/66VQ3KZ+bVdfIrBQuExUHTRgQ18zZshq0PirK1ehm7zCYofWjK9ouuU+ehcCuz/ mNKvcbO0U59Oh++SvL3sTzIwiEsXXlfEU8L2ApeN2WIrvyQfYo3fw7gpS0l4PJNgiCL8mdo2yMKi 1CxUAGc1bnO/AljwpN3lsKImesrgNqUZFvX9t++uP0D1bVoE/c40yiTcdCMbXTMTEl3EASX2MN0C XZ/g1Ue9tOsbobtJSdifWwLziuQkkORiT0/Br4sOdBeo0XKIanoBScy0RnnGF7HamB4HWfp1IYVl 3ZBWzvurpWCdxJ35UrCLvYf5jysjCiN2O/cz4ckA82n5S6LgTrx+kzmEB/dEcH7+B1rlsazRGMzy NeVJSQjKVsk9+w8YfYs7wRPCTY/JTw436R+hDmrfYi7LNQZReSzIJTj0+kuniVyc0uMNOYZKdHzV WYfCP04MXFL0PfdSgvHqo6z9STQaKPNBiDoT7uje/5kdX7rL6B7yuVBgwDHTc+XvvqDtMwt0viAg xGds8AgDelWAf0ZOlqf0Hj7h9tgJ4TNkK2PXMl6f+cB7D3hvl7yTmvmcEpB4eoCHFddydJxVdHix uuFucAS6T6C6aMN7/zHwcz09lCqxC0EOoP5NiGVreTO01wIDAQABo0IwQDAOBgNVHQ8BAf8EBAMC AQYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQU7UQZwNPwBovupHu+QucmVMiONnYwDQYJKoZI hvcNAQELBQADggIBAA2ukDL2pkt8RHYZYR4nKM1eVO8lvOMIkPkp165oCOGUAFjvLi5+U1KMtlwH 6oi6mYtQlNeCgN9hCQCTrQ0U5s7B8jeUeLBfnLOic7iPBZM4zY0+sLj7wM+x8uwtLRvM7Kqas6pg ghstO8OEPVeKlh6cdbjTMM1gCIOQ045U8U1mwF10A0Cj7oV+wh93nAbowacYXVKV7cndJZ5t+qnt ozo00Fl72u1Q8zW/7esUTTHHYPTa8Yec4kjixsU3+wYQ+nVZZjFHKdp2mhzpgq7vmrlR94gjmmmV YjzlVYA211QC//G5Xc7UI2/YRYRKW2XviQzdFKcgyxilJbQN+QHwotL0AMh0jqEqSI5l2xPE4iUX feu+h1sXIFRRk0pTAwvsXcoz7WL9RccvW9xYoIA55vrX/hMUpu09lEpCdNTDd1lzzY9GvlU47/ro kTLql1gEIt44w8y8bckzOmoKaT+gyOpyj4xjhiO9bTyWnpXgSUyqorkqG5w2gXjtw+hG4iZZRHUe 2XWJUc0QhJ1hYMtd+ZciTY6Y5uN/9lu7rs3KSoFrXgvzUeF0K+l+J6fZmUlO+KWA2yUPHGNiiskz Z2s8EIPGrd6ozRaOjfAHN3Gf8qv8QfXBi+wAN10J5U6A7/qxXDgGpRtK4dw4LTzcqx+QGtVKnO7R cGzM7vRX+Bi6hG6H -----END CERTIFICATE----- IdenTrust Public Sector Root CA 1 ================================= -----BEGIN CERTIFICATE----- MIIFZjCCA06gAwIBAgIQCgFCgAAAAUUjz0Z8AAAAAjANBgkqhkiG9w0BAQsFADBNMQswCQYDVQQG EwJVUzESMBAGA1UEChMJSWRlblRydXN0MSowKAYDVQQDEyFJZGVuVHJ1c3QgUHVibGljIFNlY3Rv ciBSb290IENBIDEwHhcNMTQwMTE2MTc1MzMyWhcNMzQwMTE2MTc1MzMyWjBNMQswCQYDVQQGEwJV UzESMBAGA1UEChMJSWRlblRydXN0MSowKAYDVQQDEyFJZGVuVHJ1c3QgUHVibGljIFNlY3RvciBS b290IENBIDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC2IpT8pEiv6EdrCvsnduTy P4o7ekosMSqMjbCpwzFrqHd2hCa2rIFCDQjrVVi7evi8ZX3yoG2LqEfpYnYeEe4IFNGyRBb06tD6 Hi9e28tzQa68ALBKK0CyrOE7S8ItneShm+waOh7wCLPQ5CQ1B5+ctMlSbdsHyo+1W/CD80/HLaXI rcuVIKQxKFdYWuSNG5qrng0M8gozOSI5Cpcu81N3uURF/YTLNiCBWS2ab21ISGHKTN9T0a9SvESf qy9rg3LvdYDaBjMbXcjaY8ZNzaxmMc3R3j6HEDbhuaR672BQssvKplbgN6+rNBM5Jeg5ZuSYeqoS mJxZZoY+rfGwyj4GD3vwEUs3oERte8uojHH01bWRNszwFcYr3lEXsZdMUD2xlVl8BX0tIdUAvwFn ol57plzy9yLxkA2T26pEUWbMfXYD62qoKjgZl3YNa4ph+bz27nb9cCvdKTz4Ch5bQhyLVi9VGxyh LrXHFub4qjySjmm2AcG1hp2JDws4lFTo6tyePSW8Uybt1as5qsVATFSrsrTZ2fjXctscvG29ZV/v iDUqZi/u9rNl8DONfJhBaUYPQxxp+pu10GFqzcpL2UyQRqsVWaFHVCkugyhfHMKiq3IXAAaOReyL 4jM9f9oZRORicsPfIsbyVtTdX5Vy7W1f90gDW/3FKqD2cyOEEBsB5wIDAQABo0IwQDAOBgNVHQ8B Af8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQU43HgntinQtnbcZFrlJPrw6PRFKMw DQYJKoZIhvcNAQELBQADggIBAEf63QqwEZE4rU1d9+UOl1QZgkiHVIyqZJnYWv6IAcVYpZmxI1Qj t2odIFflAWJBF9MJ23XLblSQdf4an4EKwt3X9wnQW3IV5B4Jaj0z8yGa5hV+rVHVDRDtfULAj+7A mgjVQdZcDiFpboBhDhXAuM/FSRJSzL46zNQuOAXeNf0fb7iAaJg9TaDKQGXSc3z1i9kKlT/YPyNt GtEqJBnZhbMX73huqVjRI9PHE+1yJX9dsXNw0H8GlwmEKYBhHfpe/3OsoOOJuBxxFcbeMX8S3OFt m6/n6J91eEyrRjuazr8FGF1NFTwWmhlQBJqymm9li1JfPFgEKCXAZmExfrngdbkaqIHWchezxQMx NRF4eKLg6TCMf4DfWN88uieW4oA0beOY02QnrEh+KHdcxiVhJfiFDGX6xDIvpZgF5PgLZxYWxoK4 Mhn5+bl53B/N66+rDt0b20XkeucC4pVd/GnwU2lhlXV5C15V5jgclKlZM57IcXR5f1GJtshquDDI ajjDbp7hNxbqBWJMWxJH7ae0s1hWx0nzfxJoCTFx8G34Tkf71oXuxVhAGaQdp/lLQzfcaFpPz+vC ZHTetBXZ9FRUGi8c15dxVJCO2SCdUyt/q4/i6jC8UDfv8Ue1fXwsBOxonbRJRBD0ckscZOf85muQ 3Wl9af0AVqW3rLatt8o+Ae+c -----END CERTIFICATE----- Entrust Root Certification Authority - G2 ========================================= -----BEGIN CERTIFICATE----- MIIEPjCCAyagAwIBAgIESlOMKDANBgkqhkiG9w0BAQsFADCBvjELMAkGA1UEBhMCVVMxFjAUBgNV BAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVy bXMxOTA3BgNVBAsTMChjKSAyMDA5IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ug b25seTEyMDAGA1UEAxMpRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIw HhcNMDkwNzA3MTcyNTU0WhcNMzAxMjA3MTc1NTU0WjCBvjELMAkGA1UEBhMCVVMxFjAUBgNVBAoT DUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVnYWwtdGVybXMx OTA3BgNVBAsTMChjKSAyMDA5IEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXplZCB1c2Ugb25s eTEyMDAGA1UEAxMpRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IC0gRzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6hLZy254Ma+KZ6TABp3bqMriVQRrJ2mFOWHLP /vaCeb9zYQYKpSfYs1/TRU4cctZOMvJyig/3gxnQaoCAAEUesMfnmr8SVycco2gvCoe9amsOXmXz HHfV1IWNcCG0szLni6LVhjkCsbjSR87kyUnEO6fe+1R9V77w6G7CebI6C1XiUJgWMhNcL3hWwcKU s/Ja5CeanyTXxuzQmyWC48zCxEXFjJd6BmsqEZ+pCm5IO2/b1BEZQvePB7/1U1+cPvQXLOZprE4y TGJ36rfo5bs0vBmLrpxR57d+tVOxMyLlbc9wPBr64ptntoP0jaWvYkxN4FisZDQSA/i2jZRjJKRx AgMBAAGjQjBAMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBRqciZ6 0B7vfec7aVHUbI2fkBJmqzANBgkqhkiG9w0BAQsFAAOCAQEAeZ8dlsa2eT8ijYfThwMEYGprmi5Z iXMRrEPR9RP/jTkrwPK9T3CMqS/qF8QLVJ7UG5aYMzyorWKiAHarWWluBh1+xLlEjZivEtRh2woZ Rkfz6/djwUAFQKXSt/S1mja/qYh2iARVBCuch38aNzx+LaUa2NSJXsq9rD1s2G2v1fN2D807iDgi nWyTmsQ9v4IbZT+mD12q/OWyFcq1rca8PdCE6OoGcrBNOTJ4vz4RnAuknZoh8/CbCzB428Hch0P+ vGOaysXCHMnHjf87ElgI5rY97HosTvuDls4MPGmHVHOkc8KT/1EQrBVUAdj8BbGJoX90g5pJ19xO e4pIb4tF9g== -----END CERTIFICATE----- Entrust Root Certification Authority - EC1 ========================================== -----BEGIN CERTIFICATE----- MIIC+TCCAoCgAwIBAgINAKaLeSkAAAAAUNCR+TAKBggqhkjOPQQDAzCBvzELMAkGA1UEBhMCVVMx FjAUBgNVBAoTDUVudHJ1c3QsIEluYy4xKDAmBgNVBAsTH1NlZSB3d3cuZW50cnVzdC5uZXQvbGVn YWwtdGVybXMxOTA3BgNVBAsTMChjKSAyMDEyIEVudHJ1c3QsIEluYy4gLSBmb3IgYXV0aG9yaXpl ZCB1c2Ugb25seTEzMDEGA1UEAxMqRW50cnVzdCBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5 IC0gRUMxMB4XDTEyMTIxODE1MjUzNloXDTM3MTIxODE1NTUzNlowgb8xCzAJBgNVBAYTAlVTMRYw FAYDVQQKEw1FbnRydXN0LCBJbmMuMSgwJgYDVQQLEx9TZWUgd3d3LmVudHJ1c3QubmV0L2xlZ2Fs LXRlcm1zMTkwNwYDVQQLEzAoYykgMjAxMiBFbnRydXN0LCBJbmMuIC0gZm9yIGF1dGhvcml6ZWQg dXNlIG9ubHkxMzAxBgNVBAMTKkVudHJ1c3QgUm9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSAt IEVDMTB2MBAGByqGSM49AgEGBSuBBAAiA2IABIQTydC6bUF74mzQ61VfZgIaJPRbiWlH47jCffHy AsWfoPZb1YsGGYZPUxBtByQnoaD41UcZYUx9ypMn6nQM72+WCf5j7HBdNq1nd67JnXxVRDqiY1Ef 9eNi1KlHBz7MIKNCMEAwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYE FLdj5xrdjekIplWDpOBqUEFlEUJJMAoGCCqGSM49BAMDA2cAMGQCMGF52OVCR98crlOZF7ZvHH3h vxGU0QOIdeSNiaSKd0bebWHvAvX7td/M/k7//qnmpwIwW5nXhTcGtXsI/esni0qU+eH6p44mCOh8 kmhtc9hvJqwhAriZtyZBWyVgrtBIGu4G -----END CERTIFICATE----- CFCA EV ROOT ============ -----BEGIN CERTIFICATE----- MIIFjTCCA3WgAwIBAgIEGErM1jANBgkqhkiG9w0BAQsFADBWMQswCQYDVQQGEwJDTjEwMC4GA1UE CgwnQ2hpbmEgRmluYW5jaWFsIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MRUwEwYDVQQDDAxDRkNB IEVWIFJPT1QwHhcNMTIwODA4MDMwNzAxWhcNMjkxMjMxMDMwNzAxWjBWMQswCQYDVQQGEwJDTjEw MC4GA1UECgwnQ2hpbmEgRmluYW5jaWFsIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MRUwEwYDVQQD DAxDRkNBIEVWIFJPT1QwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDXXWvNED8fBVnV BU03sQ7smCuOFR36k0sXgiFxEFLXUWRwFsJVaU2OFW2fvwwbwuCjZ9YMrM8irq93VCpLTIpTUnrD 7i7es3ElweldPe6hL6P3KjzJIx1qqx2hp/Hz7KDVRM8Vz3IvHWOX6Jn5/ZOkVIBMUtRSqy5J35DN uF++P96hyk0g1CXohClTt7GIH//62pCfCqktQT+x8Rgp7hZZLDRJGqgG16iI0gNyejLi6mhNbiyW ZXvKWfry4t3uMCz7zEasxGPrb382KzRzEpR/38wmnvFyXVBlWY9ps4deMm/DGIq1lY+wejfeWkU7 xzbh72fROdOXW3NiGUgthxwG+3SYIElz8AXSG7Ggo7cbcNOIabla1jj0Ytwli3i/+Oh+uFzJlU9f py25IGvPa931DfSCt/SyZi4QKPaXWnuWFo8BGS1sbn85WAZkgwGDg8NNkt0yxoekN+kWzqotaK8K gWU6cMGbrU1tVMoqLUuFG7OA5nBFDWteNfB/O7ic5ARwiRIlk9oKmSJgamNgTnYGmE69g60dWIol hdLHZR4tjsbftsbhf4oEIRUpdPA+nJCdDC7xij5aqgwJHsfVPKPtl8MeNPo4+QgO48BdK4PRVmrJ tqhUUy54Mmc9gn900PvhtgVguXDbjgv5E1hvcWAQUhC5wUEJ73IfZzF4/5YFjQIDAQABo2MwYTAf BgNVHSMEGDAWgBTj/i39KNALtbq2osS/BqoFjJP7LzAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB /wQEAwIBBjAdBgNVHQ4EFgQU4/4t/SjQC7W6tqLEvwaqBYyT+y8wDQYJKoZIhvcNAQELBQADggIB ACXGumvrh8vegjmWPfBEp2uEcwPenStPuiB/vHiyz5ewG5zz13ku9Ui20vsXiObTej/tUxPQ4i9q ecsAIyjmHjdXNYmEwnZPNDatZ8POQQaIxffu2Bq41gt/UP+TqhdLjOztUmCypAbqTuv0axn96/Ua 4CUqmtzHQTb3yHQFhDmVOdYLO6Qn+gjYXB74BGBSESgoA//vU2YApUo0FmZ8/Qmkrp5nGm9BC2sG E5uPhnEFtC+NiWYzKXZUmhH4J/qyP5Hgzg0b8zAarb8iXRvTvyUFTeGSGn+ZnzxEk8rUQElsgIfX BDrDMlI1Dlb4pd19xIsNER9Tyx6yF7Zod1rg1MvIB671Oi6ON7fQAUtDKXeMOZePglr4UeWJoBjn aH9dCi77o0cOPaYjesYBx4/IXr9tgFa+iiS6M+qf4TIRnvHST4D2G0CvOJ4RUHlzEhLN5mydLIhy PDCBBpEi6lmt2hkuIsKNuYyH4Ga8cyNfIWRjgEj1oDwYPZTISEEdQLpe/v5WOaHIz16eGWRGENoX kbcFgKyLmZJ956LYBws2J+dIeWCKw9cTXPhyQN9Ky8+ZAAoACxGV2lZFA4gKn2fQ1XmxqI1AbQ3C ekD6819kR5LLU7m7Wc5P/dAVUwHY3+vZ5nbv0CO7O6l5s9UCKc2Jo5YPSjXnTkLAdc0Hz+Ys63su -----END CERTIFICATE----- OISTE WISeKey Global Root GB CA =============================== -----BEGIN CERTIFICATE----- MIIDtTCCAp2gAwIBAgIQdrEgUnTwhYdGs/gjGvbCwDANBgkqhkiG9w0BAQsFADBtMQswCQYDVQQG EwJDSDEQMA4GA1UEChMHV0lTZUtleTEiMCAGA1UECxMZT0lTVEUgRm91bmRhdGlvbiBFbmRvcnNl ZDEoMCYGA1UEAxMfT0lTVEUgV0lTZUtleSBHbG9iYWwgUm9vdCBHQiBDQTAeFw0xNDEyMDExNTAw MzJaFw0zOTEyMDExNTEwMzFaMG0xCzAJBgNVBAYTAkNIMRAwDgYDVQQKEwdXSVNlS2V5MSIwIAYD VQQLExlPSVNURSBGb3VuZGF0aW9uIEVuZG9yc2VkMSgwJgYDVQQDEx9PSVNURSBXSVNlS2V5IEds b2JhbCBSb290IEdCIENBMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Be3HEokKtaX scriHvt9OO+Y9bI5mE4nuBFde9IllIiCFSZqGzG7qFshISvYD06fWvGxWuR51jIjK+FTzJlFXHtP rby/h0oLS5daqPZI7H17Dc0hBt+eFf1Biki3IPShehtX1F1Q/7pn2COZH8g/497/b1t3sWtuuMlk 9+HKQUYOKXHQuSP8yYFfTvdv37+ErXNku7dCjmn21HYdfp2nuFeKUWdy19SouJVUQHMD9ur06/4o Qnc/nSMbsrY9gBQHTC5P99UKFg29ZkM3fiNDecNAhvVMKdqOmq0NpQSHiB6F4+lT1ZvIiwNjeOvg GUpuuy9rM2RYk61pv48b74JIxwIDAQABo1EwTzALBgNVHQ8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB /zAdBgNVHQ4EFgQUNQ/INmNe4qPs+TtmFc5RUuORmj0wEAYJKwYBBAGCNxUBBAMCAQAwDQYJKoZI hvcNAQELBQADggEBAEBM+4eymYGQfp3FsLAmzYh7KzKNbrghcViXfa43FK8+5/ea4n32cZiZBKpD dHij40lhPnOMTZTg+XHEthYOU3gf1qKHLwI5gSk8rxWYITD+KJAAjNHhy/peyP34EEY7onhCkRd0 VQreUGdNZtGn//3ZwLWoo4rOZvUPQ82nK1d7Y0Zqqi5S2PTt4W2tKZB4SLrhI6qjiey1q5bAtEui HZeeevJuQHHfaPFlTc58Bd9TZaml8LGXBHAVRgOY1NK/VLSgWH1Sb9pWJmLU2NuJMW8c8CLC02Ic Nc1MaRVUGpCY3useX8p3x8uOPUNpnJpY0CQ73xtAln41rYHHTnG6iBM= -----END CERTIFICATE----- SZAFIR ROOT CA2 =============== -----BEGIN CERTIFICATE----- MIIDcjCCAlqgAwIBAgIUPopdB+xV0jLVt+O2XwHrLdzk1uQwDQYJKoZIhvcNAQELBQAwUTELMAkG A1UEBhMCUEwxKDAmBgNVBAoMH0tyYWpvd2EgSXpiYSBSb3psaWN6ZW5pb3dhIFMuQS4xGDAWBgNV BAMMD1NaQUZJUiBST09UIENBMjAeFw0xNTEwMTkwNzQzMzBaFw0zNTEwMTkwNzQzMzBaMFExCzAJ BgNVBAYTAlBMMSgwJgYDVQQKDB9LcmFqb3dhIEl6YmEgUm96bGljemVuaW93YSBTLkEuMRgwFgYD VQQDDA9TWkFGSVIgUk9PVCBDQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3vD5Q qEvNQLXOYeeWyrSh2gwisPq1e3YAd4wLz32ohswmUeQgPYUM1ljj5/QqGJ3a0a4m7utT3PSQ1hNK DJA8w/Ta0o4NkjrcsbH/ON7Dui1fgLkCvUqdGw+0w8LBZwPd3BucPbOw3gAeqDRHu5rr/gsUvTaE 2g0gv/pby6kWIK05YO4vdbbnl5z5Pv1+TW9NL++IDWr63fE9biCloBK0TXC5ztdyO4mTp4CEHCdJ ckm1/zuVnsHMyAHs6A6KCpbns6aH5db5BSsNl0BwPLqsdVqc1U2dAgrSS5tmS0YHF2Wtn2yIANwi ieDhZNRnvDF5YTy7ykHNXGoAyDw4jlivAgMBAAGjQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMB0GA1UdDgQWBBQuFqlKGLXLzPVvUPMjX/hd56zwyDANBgkqhkiG9w0BAQsFAAOC AQEAtXP4A9xZWx126aMqe5Aosk3AM0+qmrHUuOQn/6mWmc5G4G18TKI4pAZw8PRBEew/R40/cof5 O/2kbytTAOD/OblqBw7rHRz2onKQy4I9EYKL0rufKq8h5mOGnXkZ7/e7DDWQw4rtTw/1zBLZpD67 oPwglV9PJi8RI4NOdQcPv5vRtB3pEAT+ymCPoky4rc/hkA/NrgrHXXu3UNLUYfrVFdvXn4dRVOul 4+vJhaAlIDf7js4MNIThPIGyd05DpYhfhmehPea0XGG2Ptv+tyjFogeutcrKjSoS75ftwjCkySp6 +/NNIxuZMzSgLvWpCz/UXeHPhJ/iGcJfitYgHuNztw== -----END CERTIFICATE----- Certum Trusted Network CA 2 =========================== -----BEGIN CERTIFICATE----- MIIF0jCCA7qgAwIBAgIQIdbQSk8lD8kyN/yqXhKN6TANBgkqhkiG9w0BAQ0FADCBgDELMAkGA1UE BhMCUEwxIjAgBgNVBAoTGVVuaXpldG8gVGVjaG5vbG9naWVzIFMuQS4xJzAlBgNVBAsTHkNlcnR1 bSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTEkMCIGA1UEAxMbQ2VydHVtIFRydXN0ZWQgTmV0d29y ayBDQSAyMCIYDzIwMTExMDA2MDgzOTU2WhgPMjA0NjEwMDYwODM5NTZaMIGAMQswCQYDVQQGEwJQ TDEiMCAGA1UEChMZVW5pemV0byBUZWNobm9sb2dpZXMgUy5BLjEnMCUGA1UECxMeQ2VydHVtIENl cnRpZmljYXRpb24gQXV0aG9yaXR5MSQwIgYDVQQDExtDZXJ0dW0gVHJ1c3RlZCBOZXR3b3JrIENB IDIwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC9+Xj45tWADGSdhhuWZGc/IjoedQF9 7/tcZ4zJzFxrqZHmuULlIEub2pt7uZld2ZuAS9eEQCsn0+i6MLs+CRqnSZXvK0AkwpfHp+6bJe+o CgCXhVqqndwpyeI1B+twTUrWwbNWuKFBOJvR+zF/j+Bf4bE/D44WSWDXBo0Y+aomEKsq09DRZ40b Rr5HMNUuctHFY9rnY3lEfktjJImGLjQ/KUxSiyqnwOKRKIm5wFv5HdnnJ63/mgKXwcZQkpsCLL2p uTRZCr+ESv/f/rOf69me4Jgj7KZrdxYq28ytOxykh9xGc14ZYmhFV+SQgkK7QtbwYeDBoz1mo130 GO6IyY0XRSmZMnUCMe4pJshrAua1YkV/NxVaI2iJ1D7eTiew8EAMvE0Xy02isx7QBlrd9pPPV3WZ 9fqGGmd4s7+W/jTcvedSVuWz5XV710GRBdxdaeOVDUO5/IOWOZV7bIBaTxNyxtd9KXpEulKkKtVB Rgkg/iKgtlswjbyJDNXXcPiHUv3a76xRLgezTv7QCdpw75j6VuZt27VXS9zlLCUVyJ4ueE742pye hizKV/Ma5ciSixqClnrDvFASadgOWkaLOusm+iPJtrCBvkIApPjW/jAux9JG9uWOdf3yzLnQh1vM BhBgu4M1t15n3kfsmUjxpKEV/q2MYo45VU85FrmxY53/twIDAQABo0IwQDAPBgNVHRMBAf8EBTAD AQH/MB0GA1UdDgQWBBS2oVQ5AsOgP46KvPrU+Bym0ToO/TAOBgNVHQ8BAf8EBAMCAQYwDQYJKoZI hvcNAQENBQADggIBAHGlDs7k6b8/ONWJWsQCYftMxRQXLYtPU2sQF/xlhMcQSZDe28cmk4gmb3DW Al45oPePq5a1pRNcgRRtDoGCERuKTsZPpd1iHkTfCVn0W3cLN+mLIMb4Ck4uWBzrM9DPhmDJ2vuA L55MYIR4PSFk1vtBHxgP58l1cb29XN40hz5BsA72udY/CROWFC/emh1auVbONTqwX3BNXuMp8SMo clm2q8KMZiYcdywmdjWLKKdpoPk79SPdhRB0yZADVpHnr7pH1BKXESLjokmUbOe3lEu6LaTaM4tM pkT/WjzGHWTYtTHkpjx6qFcL2+1hGsvxznN3Y6SHb0xRONbkX8eftoEq5IVIeVheO/jbAoJnwTnb w3RLPTYe+SmTiGhbqEQZIfCn6IENLOiTNrQ3ssqwGyZ6miUfmpqAnksqP/ujmv5zMnHCnsZy4Ypo J/HkD7TETKVhk/iXEAcqMCWpuchxuO9ozC1+9eB+D4Kob7a6bINDd82Kkhehnlt4Fj1F4jNy3eFm ypnTycUm/Q1oBEauttmbjL4ZvrHG8hnjXALKLNhvSgfZyTXaQHXyxKcZb55CEJh15pWLYLztxRLX is7VmFxWlgPF7ncGNf/P5O4/E2Hu29othfDNrp2yGAlFw5Khchf8R7agCyzxxN5DaAhqXzvwdmP7 zAYspsbiDrW5viSP -----END CERTIFICATE----- Hellenic Academic and Research Institutions RootCA 2015 ======================================================= -----BEGIN CERTIFICATE----- MIIGCzCCA/OgAwIBAgIBADANBgkqhkiG9w0BAQsFADCBpjELMAkGA1UEBhMCR1IxDzANBgNVBAcT BkF0aGVuczFEMEIGA1UEChM7SGVsbGVuaWMgQWNhZGVtaWMgYW5kIFJlc2VhcmNoIEluc3RpdHV0 aW9ucyBDZXJ0LiBBdXRob3JpdHkxQDA+BgNVBAMTN0hlbGxlbmljIEFjYWRlbWljIGFuZCBSZXNl YXJjaCBJbnN0aXR1dGlvbnMgUm9vdENBIDIwMTUwHhcNMTUwNzA3MTAxMTIxWhcNNDAwNjMwMTAx MTIxWjCBpjELMAkGA1UEBhMCR1IxDzANBgNVBAcTBkF0aGVuczFEMEIGA1UEChM7SGVsbGVuaWMg QWNhZGVtaWMgYW5kIFJlc2VhcmNoIEluc3RpdHV0aW9ucyBDZXJ0LiBBdXRob3JpdHkxQDA+BgNV BAMTN0hlbGxlbmljIEFjYWRlbWljIGFuZCBSZXNlYXJjaCBJbnN0aXR1dGlvbnMgUm9vdENBIDIw MTUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDC+Kk/G4n8PDwEXT2QNrCROnk8Zlrv bTkBSRq0t89/TSNTt5AA4xMqKKYx8ZEA4yjsriFBzh/a/X0SWwGDD7mwX5nh8hKDgE0GPt+sr+eh iGsxr/CL0BgzuNtFajT0AoAkKAoCFZVedioNmToUW/bLy1O8E00BiDeUJRtCvCLYjqOWXjrZMts+ 6PAQZe104S+nfK8nNLspfZu2zwnI5dMK/IhlZXQK3HMcXM1AsRzUtoSMTFDPaI6oWa7CJ06CojXd FPQf/7J31Ycvqm59JCfnxssm5uX+Zwdj2EUN3TpZZTlYepKZcj2chF6IIbjV9Cz82XBST3i4vTwr i5WY9bPRaM8gFH5MXF/ni+X1NYEZN9cRCLdmvtNKzoNXADrDgfgXy5I2XdGj2HUb4Ysn6npIQf1F GQatJ5lOwXBH3bWfgVMS5bGMSF0xQxfjjMZ6Y5ZLKTBOhE5iGV48zpeQpX8B653g+IuJ3SWYPZK2 fu/Z8VFRfS0myGlZYeCsargqNhEEelC9MoS+L9xy1dcdFkfkR2YgP/SWxa+OAXqlD3pk9Q0Yh9mu iNX6hME6wGkoLfINaFGq46V3xqSQDqE3izEjR8EJCOtu93ib14L8hCCZSRm2Ekax+0VVFqmjZayc Bw/qa9wfLgZy7IaIEuQt218FL+TwA9MmM+eAws1CoRc0CwIDAQABo0IwQDAPBgNVHRMBAf8EBTAD AQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUcRVnyMjJvXVdctA4GGqd83EkVAswDQYJKoZI hvcNAQELBQADggIBAHW7bVRLqhBYRjTyYtcWNl0IXtVsyIe9tC5G8jH4fOpCtZMWVdyhDBKg2mF+ D1hYc2Ryx+hFjtyp8iY/xnmMsVMIM4GwVhO+5lFc2JsKT0ucVlMC6U/2DWDqTUJV6HwbISHTGzrM d/K4kPFox/la/vot9L/J9UUbzjgQKjeKeaO04wlshYaT/4mWJ3iBj2fjRnRUjtkNaeJK9E10A/+y d+2VZ5fkscWrv2oj6NSU4kQoYsRL4vDY4ilrGnB+JGGTe08DMiUNRSQrlrRGar9KC/eaj8GsGsVn 82800vpzY4zvFrCopEYq+OsS7HK07/grfoxSwIuEVPkvPuNVqNxmsdnhX9izjFk0WaSrT2y7Hxjb davYy5LNlDhhDgcGH0tGEPEVvo2FXDtKK4F5D7Rpn0lQl033DlZdwJVqwjbDG2jJ9SrcR5q+ss7F Jej6A7na+RZukYT1HCjI/CbM1xyQVqdfbzoEvM14iQuODy+jqk+iGxI9FghAD/FGTNeqewjBCvVt J94Cj8rDtSvK6evIIVM4pcw72Hc3MKJP2W/R8kCtQXoXxdZKNYm3QdV8hn9VTYNKpXMgwDqvkPGa JI7ZjnHKe7iG2rKPmT4dEw0SEe7Uq/DpFXYC5ODfqiAeW2GFZECpkJcNrVPSWh2HagCXZWK0vm9q p/UsQu0yrbYhnr68 -----END CERTIFICATE----- Hellenic Academic and Research Institutions ECC RootCA 2015 =========================================================== -----BEGIN CERTIFICATE----- MIICwzCCAkqgAwIBAgIBADAKBggqhkjOPQQDAjCBqjELMAkGA1UEBhMCR1IxDzANBgNVBAcTBkF0 aGVuczFEMEIGA1UEChM7SGVsbGVuaWMgQWNhZGVtaWMgYW5kIFJlc2VhcmNoIEluc3RpdHV0aW9u cyBDZXJ0LiBBdXRob3JpdHkxRDBCBgNVBAMTO0hlbGxlbmljIEFjYWRlbWljIGFuZCBSZXNlYXJj aCBJbnN0aXR1dGlvbnMgRUNDIFJvb3RDQSAyMDE1MB4XDTE1MDcwNzEwMzcxMloXDTQwMDYzMDEw MzcxMlowgaoxCzAJBgNVBAYTAkdSMQ8wDQYDVQQHEwZBdGhlbnMxRDBCBgNVBAoTO0hlbGxlbmlj IEFjYWRlbWljIGFuZCBSZXNlYXJjaCBJbnN0aXR1dGlvbnMgQ2VydC4gQXV0aG9yaXR5MUQwQgYD VQQDEztIZWxsZW5pYyBBY2FkZW1pYyBhbmQgUmVzZWFyY2ggSW5zdGl0dXRpb25zIEVDQyBSb290 Q0EgMjAxNTB2MBAGByqGSM49AgEGBSuBBAAiA2IABJKgQehLgoRc4vgxEZmGZE4JJS+dQS8KrjVP dJWyUWRrjWvmP3CV8AVER6ZyOFB2lQJajq4onvktTpnvLEhvTCUp6NFxW98dwXU3tNf6e3pCnGoK Vlp8aQuqgAkkbH7BRqNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0O BBYEFLQiC4KZJAEOnLvkDv2/+5cgk5kqMAoGCCqGSM49BAMCA2cAMGQCMGfOFmI4oqxiRaeplSTA GiecMjvAwNW6qef4BENThe5SId6d9SWDPp5YSy/XZxMOIQIwBeF1Ad5o7SofTUwJCA3sS61kFyjn dc5FZXIhF8siQQ6ME5g4mlRtm8rifOoCWCKR -----END CERTIFICATE----- ISRG Root X1 ============ -----BEGIN CERTIFICATE----- MIIFazCCA1OgAwIBAgIRAIIQz7DSQONZRGPgu2OCiwAwDQYJKoZIhvcNAQELBQAwTzELMAkGA1UE BhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2VhcmNoIEdyb3VwMRUwEwYDVQQD EwxJU1JHIFJvb3QgWDEwHhcNMTUwNjA0MTEwNDM4WhcNMzUwNjA0MTEwNDM4WjBPMQswCQYDVQQG EwJVUzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMT DElTUkcgUm9vdCBYMTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAK3oJHP0FDfzm54r Vygch77ct984kIxuPOZXoHj3dcKi/vVqbvYATyjb3miGbESTtrFj/RQSa78f0uoxmyF+0TM8ukj1 3Xnfs7j/EvEhmkvBioZxaUpmZmyPfjxwv60pIgbz5MDmgK7iS4+3mX6UA5/TR5d8mUgjU+g4rk8K b4Mu0UlXjIB0ttov0DiNewNwIRt18jA8+o+u3dpjq+sWT8KOEUt+zwvo/7V3LvSye0rgTBIlDHCN Aymg4VMk7BPZ7hm/ELNKjD+Jo2FR3qyHB5T0Y3HsLuJvW5iB4YlcNHlsdu87kGJ55tukmi8mxdAQ 4Q7e2RCOFvu396j3x+UCB5iPNgiV5+I3lg02dZ77DnKxHZu8A/lJBdiB3QW0KtZB6awBdpUKD9jf 1b0SHzUvKBds0pjBqAlkd25HN7rOrFleaJ1/ctaJxQZBKT5ZPt0m9STJEadao0xAH0ahmbWnOlFu hjuefXKnEgV4We0+UXgVCwOPjdAvBbI+e0ocS3MFEvzG6uBQE3xDk3SzynTnjh8BCNAw1FtxNrQH usEwMFxIt4I7mKZ9YIqioymCzLq9gwQbooMDQaHWBfEbwrbwqHyGO0aoSCqI3Haadr8faqU9GY/r OPNk3sgrDQoo//fb4hVC1CLQJ13hef4Y53CIrU7m2Ys6xt0nUW7/vGT1M0NPAgMBAAGjQjBAMA4G A1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBR5tFnme7bl5AFzgAiIyBpY 9umbbjANBgkqhkiG9w0BAQsFAAOCAgEAVR9YqbyyqFDQDLHYGmkgJykIrGF1XIpu+ILlaS/V9lZL ubhzEFnTIZd+50xx+7LSYK05qAvqFyFWhfFQDlnrzuBZ6brJFe+GnY+EgPbk6ZGQ3BebYhtF8GaV 0nxvwuo77x/Py9auJ/GpsMiu/X1+mvoiBOv/2X/qkSsisRcOj/KKNFtY2PwByVS5uCbMiogziUwt hDyC3+6WVwW6LLv3xLfHTjuCvjHIInNzktHCgKQ5ORAzI4JMPJ+GslWYHb4phowim57iaztXOoJw TdwJx4nLCgdNbOhdjsnvzqvHu7UrTkXWStAmzOVyyghqpZXjFaH3pO3JLF+l+/+sKAIuvtd7u+Nx e5AW0wdeRlN8NwdCjNPElpzVmbUq4JUagEiuTDkHzsxHpFKVK7q4+63SM1N95R1NbdWhscdCb+ZA JzVcoyi3B43njTOQ5yOf+1CceWxG1bQVs5ZufpsMljq4Ui0/1lvh+wjChP4kqKOJ2qxq4RgqsahD YVvTH9w7jXbyLeiNdd8XM2w9U/t7y0Ff/9yi0GE44Za4rF2LN9d11TPAmRGunUHBcnWEvgJBQl9n JEiU0Zsnvgc/ubhPgXRR4Xq37Z0j4r7g1SgEEzwxA57demyPxgcYxn/eR44/KJ4EBs+lVDR3veyJ m+kXQ99b21/+jh5Xos1AnX5iItreGCc= -----END CERTIFICATE----- AC RAIZ FNMT-RCM ================ -----BEGIN CERTIFICATE----- MIIFgzCCA2ugAwIBAgIPXZONMGc2yAYdGsdUhGkHMA0GCSqGSIb3DQEBCwUAMDsxCzAJBgNVBAYT AkVTMREwDwYDVQQKDAhGTk1ULVJDTTEZMBcGA1UECwwQQUMgUkFJWiBGTk1ULVJDTTAeFw0wODEw MjkxNTU5NTZaFw0zMDAxMDEwMDAwMDBaMDsxCzAJBgNVBAYTAkVTMREwDwYDVQQKDAhGTk1ULVJD TTEZMBcGA1UECwwQQUMgUkFJWiBGTk1ULVJDTTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoC ggIBALpxgHpMhm5/yBNtwMZ9HACXjywMI7sQmkCpGreHiPibVmr75nuOi5KOpyVdWRHbNi63URcf qQgfBBckWKo3Shjf5TnUV/3XwSyRAZHiItQDwFj8d0fsjz50Q7qsNI1NOHZnjrDIbzAzWHFctPVr btQBULgTfmxKo0nRIBnuvMApGGWn3v7v3QqQIecaZ5JCEJhfTzC8PhxFtBDXaEAUwED653cXeuYL j2VbPNmaUtu1vZ5Gzz3rkQUCwJaydkxNEJY7kvqcfw+Z374jNUUeAlz+taibmSXaXvMiwzn15Cou 08YfxGyqxRxqAQVKL9LFwag0Jl1mpdICIfkYtwb1TplvqKtMUejPUBjFd8g5CSxJkjKZqLsXF3mw WsXmo8RZZUc1g16p6DULmbvkzSDGm0oGObVo/CK67lWMK07q87Hj/LaZmtVC+nFNCM+HHmpxffnT tOmlcYF7wk5HlqX2doWjKI/pgG6BU6VtX7hI+cL5NqYuSf+4lsKMB7ObiFj86xsc3i1w4peSMKGJ 47xVqCfWS+2QrYv6YyVZLag13cqXM7zlzced0ezvXg5KkAYmY6252TUtB7p2ZSysV4999AeU14EC ll2jB0nVetBX+RvnU0Z1qrB5QstocQjpYL05ac70r8NWQMetUqIJ5G+GR4of6ygnXYMgrwTJbFaa i0b1AgMBAAGjgYMwgYAwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYE FPd9xf3E6Jobd2Sn9R2gzL+HYJptMD4GA1UdIAQ3MDUwMwYEVR0gADArMCkGCCsGAQUFBwIBFh1o dHRwOi8vd3d3LmNlcnQuZm5tdC5lcy9kcGNzLzANBgkqhkiG9w0BAQsFAAOCAgEAB5BK3/MjTvDD nFFlm5wioooMhfNzKWtN/gHiqQxjAb8EZ6WdmF/9ARP67Jpi6Yb+tmLSbkyU+8B1RXxlDPiyN8+s D8+Nb/kZ94/sHvJwnvDKuO+3/3Y3dlv2bojzr2IyIpMNOmqOFGYMLVN0V2Ue1bLdI4E7pWYjJ2cJ j+F3qkPNZVEI7VFY/uY5+ctHhKQV8Xa7pO6kO8Rf77IzlhEYt8llvhjho6Tc+hj507wTmzl6NLrT Qfv6MooqtyuGC2mDOL7Nii4LcK2NJpLuHvUBKwrZ1pebbuCoGRw6IYsMHkCtA+fdZn71uSANA+iW +YJF1DngoABd15jmfZ5nc8OaKveri6E6FO80vFIOiZiaBECEHX5FaZNXzuvO+FB8TxxuBEOb+dY7 Ixjp6o7RTUaN8Tvkasq6+yO3m/qZASlaWFot4/nUbQ4mrcFuNLwy+AwF+mWj2zs3gyLp1txyM/1d 8iC9djwj2ij3+RvrWWTV3F9yfiD8zYm1kGdNYno/Tq0dwzn+evQoFt9B9kiABdcPUXmsEKvU7ANm 5mqwujGSQkBqvjrTcuFqN1W8rB2Vt2lh8kORdOag0wokRqEIr9baRRmW1FMdW4R58MD3R++Lj8UG rp1MYp3/RgT408m2ECVAdf4WqslKYIYvuu8wd+RU4riEmViAqhOLUTpPSPaLtrM= -----END CERTIFICATE----- Amazon Root CA 1 ================ -----BEGIN CERTIFICATE----- MIIDQTCCAimgAwIBAgITBmyfz5m/jAo54vB4ikPmljZbyjANBgkqhkiG9w0BAQsFADA5MQswCQYD VQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6b24gUm9vdCBDQSAxMB4XDTE1 MDUyNjAwMDAwMFoXDTM4MDExNzAwMDAwMFowOTELMAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpv bjEZMBcGA1UEAxMQQW1hem9uIFJvb3QgQ0EgMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALJ4gHHKeNXjca9HgFB0fW7Y14h29Jlo91ghYPl0hAEvrAIthtOgQ3pOsqTQNroBvo3bSMgH FzZM9O6II8c+6zf1tRn4SWiw3te5djgdYZ6k/oI2peVKVuRF4fn9tBb6dNqcmzU5L/qwIFAGbHrQ gLKm+a/sRxmPUDgH3KKHOVj4utWp+UhnMJbulHheb4mjUcAwhmahRWa6VOujw5H5SNz/0egwLX0t dHA114gk957EWW67c4cX8jJGKLhD+rcdqsq08p8kDi1L93FcXmn/6pUCyziKrlA4b9v7LWIbxcce VOF34GfID5yHI9Y/QCB/IIDEgEw+OyQmjgSubJrIqg0CAwEAAaNCMEAwDwYDVR0TAQH/BAUwAwEB /zAOBgNVHQ8BAf8EBAMCAYYwHQYDVR0OBBYEFIQYzIU07LwMlJQuCFmcx7IQTgoIMA0GCSqGSIb3 DQEBCwUAA4IBAQCY8jdaQZChGsV2USggNiMOruYou6r4lK5IpDB/G/wkjUu0yKGX9rbxenDIU5PM CCjjmCXPI6T53iHTfIUJrU6adTrCC2qJeHZERxhlbI1Bjjt/msv0tadQ1wUsN+gDS63pYaACbvXy 8MWy7Vu33PqUXHeeE6V/Uq2V8viTO96LXFvKWlJbYK8U90vvo/ufQJVtMVT8QtPHRh8jrdkPSHCa 2XV4cdFyQzR1bldZwgJcJmApzyMZFo6IQ6XU5MsI+yMRQ+hDKXJioaldXgjUkK642M4UwtBV8ob2 xJNDd2ZhwLnoQdeXeGADbkpyrqXRfboQnoZsG4q5WTP468SQvvG5 -----END CERTIFICATE----- Amazon Root CA 2 ================ -----BEGIN CERTIFICATE----- MIIFQTCCAymgAwIBAgITBmyf0pY1hp8KD+WGePhbJruKNzANBgkqhkiG9w0BAQwFADA5MQswCQYD VQQGEwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6b24gUm9vdCBDQSAyMB4XDTE1 MDUyNjAwMDAwMFoXDTQwMDUyNjAwMDAwMFowOTELMAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpv bjEZMBcGA1UEAxMQQW1hem9uIFJvb3QgQ0EgMjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoC ggIBAK2Wny2cSkxKgXlRmeyKy2tgURO8TW0G/LAIjd0ZEGrHJgw12MBvIITplLGbhQPDW9tK6Mj4 kHbZW0/jTOgGNk3Mmqw9DJArktQGGWCsN0R5hYGCrVo34A3MnaZMUnbqQ523BNFQ9lXg1dKmSYXp N+nKfq5clU1Imj+uIFptiJXZNLhSGkOQsL9sBbm2eLfq0OQ6PBJTYv9K8nu+NQWpEjTj82R0Yiw9 AElaKP4yRLuH3WUnAnE72kr3H9rN9yFVkE8P7K6C4Z9r2UXTu/Bfh+08LDmG2j/e7HJV63mjrdvd fLC6HM783k81ds8P+HgfajZRRidhW+mez/CiVX18JYpvL7TFz4QuK/0NURBs+18bvBt+xa47mAEx kv8LV/SasrlX6avvDXbR8O70zoan4G7ptGmh32n2M8ZpLpcTnqWHsFcQgTfJU7O7f/aS0ZzQGPSS btqDT6ZjmUyl+17vIWR6IF9sZIUVyzfpYgwLKhbcAS4y2j5L9Z469hdAlO+ekQiG+r5jqFoz7Mt0 Q5X5bGlSNscpb/xVA1wf+5+9R+vnSUeVC06JIglJ4PVhHvG/LopyboBZ/1c6+XUyo05f7O0oYtlN c/LMgRdg7c3r3NunysV+Ar3yVAhU/bQtCSwXVEqY0VThUWcI0u1ufm8/0i2BWSlmy5A5lREedCf+ 3euvAgMBAAGjQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGGMB0GA1UdDgQWBBSw DPBMMPQFWAJI/TPlUq9LhONmUjANBgkqhkiG9w0BAQwFAAOCAgEAqqiAjw54o+Ci1M3m9Zh6O+oA A7CXDpO8Wqj2LIxyh6mx/H9z/WNxeKWHWc8w4Q0QshNabYL1auaAn6AFC2jkR2vHat+2/XcycuUY +gn0oJMsXdKMdYV2ZZAMA3m3MSNjrXiDCYZohMr/+c8mmpJ5581LxedhpxfL86kSk5Nrp+gvU5LE YFiwzAJRGFuFjWJZY7attN6a+yb3ACfAXVU3dJnJUH/jWS5E4ywl7uxMMne0nxrpS10gxdr9HIcW xkPo1LsmmkVwXqkLN1PiRnsn/eBG8om3zEK2yygmbtmlyTrIQRNg91CMFa6ybRoVGld45pIq2WWQ gj9sAq+uEjonljYE1x2igGOpm/HlurR8FLBOybEfdF849lHqm/osohHUqS0nGkWxr7JOcQ3AWEbW aQbLU8uz/mtBzUF+fUwPfHJ5elnNXkoOrJupmHN5fLT0zLm4BwyydFy4x2+IoZCn9Kr5v2c69BoV Yh63n749sSmvZ6ES8lgQGVMDMBu4Gon2nL2XA46jCfMdiyHxtN/kHNGfZQIG6lzWE7OE76KlXIx3 KadowGuuQNKotOrN8I1LOJwZmhsoVLiJkO/KdYE+HvJkJMcYr07/R54H9jVlpNMKVv/1F2Rs76gi JUmTtt8AF9pYfl3uxRuw0dFfIRDH+fO6AgonB8Xx1sfT4PsJYGw= -----END CERTIFICATE----- Amazon Root CA 3 ================ -----BEGIN CERTIFICATE----- MIIBtjCCAVugAwIBAgITBmyf1XSXNmY/Owua2eiedgPySjAKBggqhkjOPQQDAjA5MQswCQYDVQQG EwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6b24gUm9vdCBDQSAzMB4XDTE1MDUy NjAwMDAwMFoXDTQwMDUyNjAwMDAwMFowOTELMAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpvbjEZ MBcGA1UEAxMQQW1hem9uIFJvb3QgQ0EgMzBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABCmXp8ZB f8ANm+gBG1bG8lKlui2yEujSLtf6ycXYqm0fc4E7O5hrOXwzpcVOho6AF2hiRVd9RFgdszflZwjr Zt6jQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGGMB0GA1UdDgQWBBSrttvXBp43 rDCGB5Fwx5zEGbF4wDAKBggqhkjOPQQDAgNJADBGAiEA4IWSoxe3jfkrBqWTrBqYaGFy+uGh0Psc eGCmQ5nFuMQCIQCcAu/xlJyzlvnrxir4tiz+OpAUFteMYyRIHN8wfdVoOw== -----END CERTIFICATE----- Amazon Root CA 4 ================ -----BEGIN CERTIFICATE----- MIIB8jCCAXigAwIBAgITBmyf18G7EEwpQ+Vxe3ssyBrBDjAKBggqhkjOPQQDAzA5MQswCQYDVQQG EwJVUzEPMA0GA1UEChMGQW1hem9uMRkwFwYDVQQDExBBbWF6b24gUm9vdCBDQSA0MB4XDTE1MDUy NjAwMDAwMFoXDTQwMDUyNjAwMDAwMFowOTELMAkGA1UEBhMCVVMxDzANBgNVBAoTBkFtYXpvbjEZ MBcGA1UEAxMQQW1hem9uIFJvb3QgQ0EgNDB2MBAGByqGSM49AgEGBSuBBAAiA2IABNKrijdPo1MN /sGKe0uoe0ZLY7Bi9i0b2whxIdIA6GO9mif78DluXeo9pcmBqqNbIJhFXRbb/egQbeOc4OO9X4Ri 83BkM6DLJC9wuoihKqB1+IGuYgbEgds5bimwHvouXKNCMEAwDwYDVR0TAQH/BAUwAwEB/zAOBgNV HQ8BAf8EBAMCAYYwHQYDVR0OBBYEFNPsxzplbszh2naaVvuc84ZtV+WBMAoGCCqGSM49BAMDA2gA MGUCMDqLIfG9fhGt0O9Yli/W651+kI0rz2ZVwyzjKKlwCkcO8DdZEv8tmZQoTipPNU0zWgIxAOp1 AE47xDqUEpHJWEadIRNyp4iciuRMStuW1KyLa2tJElMzrdfkviT8tQp21KW8EA== -----END CERTIFICATE----- TUBITAK Kamu SM SSL Kok Sertifikasi - Surum 1 ============================================= -----BEGIN CERTIFICATE----- MIIEYzCCA0ugAwIBAgIBATANBgkqhkiG9w0BAQsFADCB0jELMAkGA1UEBhMCVFIxGDAWBgNVBAcT D0dlYnplIC0gS29jYWVsaTFCMEAGA1UEChM5VHVya2l5ZSBCaWxpbXNlbCB2ZSBUZWtub2xvamlr IEFyYXN0aXJtYSBLdXJ1bXUgLSBUVUJJVEFLMS0wKwYDVQQLEyRLYW11IFNlcnRpZmlrYXN5b24g TWVya2V6aSAtIEthbXUgU00xNjA0BgNVBAMTLVRVQklUQUsgS2FtdSBTTSBTU0wgS29rIFNlcnRp ZmlrYXNpIC0gU3VydW0gMTAeFw0xMzExMjUwODI1NTVaFw00MzEwMjUwODI1NTVaMIHSMQswCQYD VQQGEwJUUjEYMBYGA1UEBxMPR2ViemUgLSBLb2NhZWxpMUIwQAYDVQQKEzlUdXJraXllIEJpbGlt c2VsIHZlIFRla25vbG9qaWsgQXJhc3Rpcm1hIEt1cnVtdSAtIFRVQklUQUsxLTArBgNVBAsTJEth bXUgU2VydGlmaWthc3lvbiBNZXJrZXppIC0gS2FtdSBTTTE2MDQGA1UEAxMtVFVCSVRBSyBLYW11 IFNNIFNTTCBLb2sgU2VydGlmaWthc2kgLSBTdXJ1bSAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAr3UwM6q7a9OZLBI3hNmNe5eA027n/5tQlT6QlVZC1xl8JoSNkvoBHToP4mQ4t4y8 6Ij5iySrLqP1N+RAjhgleYN1Hzv/bKjFxlb4tO2KRKOrbEz8HdDc72i9z+SqzvBV96I01INrN3wc wv61A+xXzry0tcXtAA9TNypN9E8Mg/uGz8v+jE69h/mniyFXnHrfA2eJLJ2XYacQuFWQfw4tJzh0 3+f92k4S400VIgLI4OD8D62K18lUUMw7D8oWgITQUVbDjlZ/iSIzL+aFCr2lqBs23tPcLG07xxO9 WSMs5uWk99gL7eqQQESolbuT1dCANLZGeA4fAJNG4e7p+exPFwIDAQABo0IwQDAdBgNVHQ4EFgQU ZT/HiobGPN08VFw1+DrtUgxHV8gwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wDQYJ KoZIhvcNAQELBQADggEBACo/4fEyjq7hmFxLXs9rHmoJ0iKpEsdeV31zVmSAhHqT5Am5EM2fKifh AHe+SMg1qIGf5LgsyX8OsNJLN13qudULXjS99HMpw+0mFZx+CFOKWI3QSyjfwbPfIPP54+M638yc lNhOT8NrF7f3cuitZjO1JVOr4PhMqZ398g26rrnZqsZr+ZO7rqu4lzwDGrpDxpa5RXI4s6ehlj2R e37AIVNMh+3yC1SVUZPVIqUNivGTDj5UDrDYyU7c8jEyVupk+eq1nRZmQnLzf9OxMUP8pI4X8W0j q5Rm+K37DwhuJi1/FwcJsoz7UMCflo3Ptv0AnVoUmr8CRPXBwp8iXqIPoeM= -----END CERTIFICATE----- GDCA TrustAUTH R5 ROOT ====================== -----BEGIN CERTIFICATE----- MIIFiDCCA3CgAwIBAgIIfQmX/vBH6nowDQYJKoZIhvcNAQELBQAwYjELMAkGA1UEBhMCQ04xMjAw BgNVBAoMKUdVQU5HIERPTkcgQ0VSVElGSUNBVEUgQVVUSE9SSVRZIENPLixMVEQuMR8wHQYDVQQD DBZHRENBIFRydXN0QVVUSCBSNSBST09UMB4XDTE0MTEyNjA1MTMxNVoXDTQwMTIzMTE1NTk1OVow YjELMAkGA1UEBhMCQ04xMjAwBgNVBAoMKUdVQU5HIERPTkcgQ0VSVElGSUNBVEUgQVVUSE9SSVRZ IENPLixMVEQuMR8wHQYDVQQDDBZHRENBIFRydXN0QVVUSCBSNSBST09UMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEA2aMW8Mh0dHeb7zMNOwZ+Vfy1YI92hhJCfVZmPoiC7XJjDp6L3TQs AlFRwxn9WVSEyfFrs0yw6ehGXTjGoqcuEVe6ghWinI9tsJlKCvLriXBjTnnEt1u9ol2x8kECK62p OqPseQrsXzrj/e+APK00mxqriCZ7VqKChh/rNYmDf1+uKU49tm7srsHwJ5uu4/Ts765/94Y9cnrr pftZTqfrlYwiOXnhLQiPzLyRuEH3FMEjqcOtmkVEs7LXLM3GKeJQEK5cy4KOFxg2fZfmiJqwTTQJ 9Cy5WmYqsBebnh52nUpmMUHfP/vFBu8btn4aRjb3ZGM74zkYI+dndRTVdVeSN72+ahsmUPI2JgaQ xXABZG12ZuGR224HwGGALrIuL4xwp9E7PLOR5G62xDtw8mySlwnNR30YwPO7ng/Wi64HtloPzgsM R6flPri9fcebNaBhlzpBdRfMK5Z3KpIhHtmVdiBnaM8Nvd/WHwlqmuLMc3GkL30SgLdTMEZeS1SZ D2fJpcjyIMGC7J0R38IC+xo70e0gmu9lZJIQDSri3nDxGGeCjGHeuLzRL5z7D9Ar7Rt2ueQ5Vfj4 oR24qoAATILnsn8JuLwwoC8N9VKejveSswoAHQBUlwbgsQfZxw9cZX08bVlX5O2ljelAU58VS6Bx 9hoh49pwBiFYFIeFd3mqgnkCAwEAAaNCMEAwHQYDVR0OBBYEFOLJQJ9NzuiaoXzPDj9lxSmIahlR MA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgGGMA0GCSqGSIb3DQEBCwUAA4ICAQDRSVfg p8xoWLoBDysZzY2wYUWsEe1jUGn4H3++Fo/9nesLqjJHdtJnJO29fDMylyrHBYZmDRd9FBUb1Ov9 H5r2XpdptxolpAqzkT9fNqyL7FeoPueBihhXOYV0GkLH6VsTX4/5COmSdI31R9KrO9b7eGZONn35 6ZLpBN79SWP8bfsUcZNnL0dKt7n/HipzcEYwv1ryL3ml4Y0M2fmyYzeMN2WFcGpcWwlyua1jPLHd +PwyvzeG5LuOmCd+uh8W4XAR8gPfJWIyJyYYMoSf/wA6E7qaTfRPuBRwIrHKK5DOKcFw9C+df/KQ HtZa37dG/OaG+svgIHZ6uqbL9XzeYqWxi+7egmaKTjowHz+Ay60nugxe19CxVsp3cbK1daFQqUBD F8Io2c9Si1vIY9RCPqAzekYu9wogRlR+ak8x8YF+QnQ4ZXMn7sZ8uI7XpTrXmKGcjBBV09tL7ECQ 8s1uV9JiDnxXk7Gnbc2dg7sq5+W2O3FYrf3RRbxake5TFW/TRQl1brqQXR4EzzffHqhmsYzmIGrv /EhOdJhCrylvLmrH+33RZjEizIYAfmaDDEL0vTSSwxrqT8p+ck0LcIymSLumoRT2+1hEmRSuqguT aaApJUqlyyvdimYHFngVV3Eb7PVHhPOeMTd61X8kreS8/f3MboPoDKi3QWwH3b08hpcv0g== -----END CERTIFICATE----- SSL.com Root Certification Authority RSA ======================================== -----BEGIN CERTIFICATE----- MIIF3TCCA8WgAwIBAgIIeyyb0xaAMpkwDQYJKoZIhvcNAQELBQAwfDELMAkGA1UEBhMCVVMxDjAM BgNVBAgMBVRleGFzMRAwDgYDVQQHDAdIb3VzdG9uMRgwFgYDVQQKDA9TU0wgQ29ycG9yYXRpb24x MTAvBgNVBAMMKFNTTC5jb20gUm9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSBSU0EwHhcNMTYw MjEyMTczOTM5WhcNNDEwMjEyMTczOTM5WjB8MQswCQYDVQQGEwJVUzEOMAwGA1UECAwFVGV4YXMx EDAOBgNVBAcMB0hvdXN0b24xGDAWBgNVBAoMD1NTTCBDb3Jwb3JhdGlvbjExMC8GA1UEAwwoU1NM LmNvbSBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IFJTQTCCAiIwDQYJKoZIhvcNAQEBBQAD ggIPADCCAgoCggIBAPkP3aMrfcvQKv7sZ4Wm5y4bunfh4/WvpOz6Sl2RxFdHaxh3a3by/ZPkPQ/C Fp4LZsNWlJ4Xg4XOVu/yFv0AYvUiCVToZRdOQbngT0aXqhvIuG5iXmmxX9sqAn78bMrzQdjt0Oj8 P2FI7bADFB0QDksZ4LtO7IZl/zbzXmcCC52GVWH9ejjt/uIZALdvoVBidXQ8oPrIJZK0bnoix/ge oeOy3ZExqysdBP+lSgQ36YWkMyv94tZVNHwZpEpox7Ko07fKoZOI68GXvIz5HdkihCR0xwQ9aqkp k8zruFvh/l8lqjRYyMEjVJ0bmBHDOJx+PYZspQ9AhnwC9FwCTyjLrnGfDzrIM/4RJTXq/LrFYD3Z fBjVsqnTdXgDciLKOsMf7yzlLqn6niy2UUb9rwPW6mBo6oUWNmuF6R7As93EJNyAKoFBbZQ+yODJ gUEAnl6/f8UImKIYLEJAs/lvOCdLToD0PYFH4Ih86hzOtXVcUS4cK38acijnALXRdMbX5J+tB5O2 UzU1/Dfkw/ZdFr4hc96SCvigY2q8lpJqPvi8ZVWb3vUNiSYE/CUapiVpy8JtynziWV+XrOvvLsi8 1xtZPCvM8hnIk2snYxnP/Okm+Mpxm3+T/jRnhE6Z6/yzeAkzcLpmpnbtG3PrGqUNxCITIJRWCk4s bE6x/c+cCbqiM+2HAgMBAAGjYzBhMB0GA1UdDgQWBBTdBAkHovV6fVJTEpKV7jiAJQ2mWTAPBgNV HRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFN0ECQei9Xp9UlMSkpXuOIAlDaZZMA4GA1UdDwEB/wQE AwIBhjANBgkqhkiG9w0BAQsFAAOCAgEAIBgRlCn7Jp0cHh5wYfGVcpNxJK1ok1iOMq8bs3AD/CUr dIWQPXhq9LmLpZc7tRiRux6n+UBbkflVma8eEdBcHadm47GUBwwyOabqG7B52B2ccETjit3E+ZUf ijhDPwGFpUenPUayvOUiaPd7nNgsPgohyC0zrL/FgZkxdMF1ccW+sfAjRfSda/wZY52jvATGGAsl u1OJD7OAUN5F7kR/q5R4ZJjT9ijdh9hwZXT7DrkT66cPYakylszeu+1jTBi7qUD3oFRuIIhxdRjq erQ0cuAjJ3dctpDqhiVAq+8zD8ufgr6iIPv2tS0a5sKFsXQP+8hlAqRSAUfdSSLBv9jra6x+3uxj MxW3IwiPxg+NQVrdjsW5j+VFP3jbutIbQLH+cU0/4IGiul607BXgk90IH37hVZkLId6Tngr75qNJ vTYw/ud3sqB1l7UtgYgXZSD32pAAn8lSzDLKNXz1PQ/YK9f1JmzJBjSWFupwWRoyeXkLtoh/D1JI Pb9s2KJELtFOt3JY04kTlf5Eq/jXixtunLwsoFvVagCvXzfh1foQC5ichucmj87w7G6KVwuA406y wKBjYZC6VWg3dGq2ktufoYYitmUnDuy2n0Jg5GfCtdpBC8TTi2EbvPofkSvXRAdeuims2cXp71NI WuuA8ShYIc2wBlX7Jz9TkHCpBB5XJ7k= -----END CERTIFICATE----- SSL.com Root Certification Authority ECC ======================================== -----BEGIN CERTIFICATE----- MIICjTCCAhSgAwIBAgIIdebfy8FoW6gwCgYIKoZIzj0EAwIwfDELMAkGA1UEBhMCVVMxDjAMBgNV BAgMBVRleGFzMRAwDgYDVQQHDAdIb3VzdG9uMRgwFgYDVQQKDA9TU0wgQ29ycG9yYXRpb24xMTAv BgNVBAMMKFNTTC5jb20gUm9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSBFQ0MwHhcNMTYwMjEy MTgxNDAzWhcNNDEwMjEyMTgxNDAzWjB8MQswCQYDVQQGEwJVUzEOMAwGA1UECAwFVGV4YXMxEDAO BgNVBAcMB0hvdXN0b24xGDAWBgNVBAoMD1NTTCBDb3Jwb3JhdGlvbjExMC8GA1UEAwwoU1NMLmNv bSBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IEVDQzB2MBAGByqGSM49AgEGBSuBBAAiA2IA BEVuqVDEpiM2nl8ojRfLliJkP9x6jh3MCLOicSS6jkm5BBtHllirLZXI7Z4INcgn64mMU1jrYor+ 8FsPazFSY0E7ic3s7LaNGdM0B9y7xgZ/wkWV7Mt/qCPgCemB+vNH06NjMGEwHQYDVR0OBBYEFILR hXMw5zUE044CkvvlpNHEIejNMA8GA1UdEwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAUgtGFczDnNQTT jgKS++Wk0cQh6M0wDgYDVR0PAQH/BAQDAgGGMAoGCCqGSM49BAMCA2cAMGQCMG/n61kRpGDPYbCW e+0F+S8Tkdzt5fxQaxFGRrMcIQBiu77D5+jNB5n5DQtdcj7EqgIwH7y6C+IwJPt8bYBVCpk+gA0z 5Wajs6O7pdWLjwkspl1+4vAHCGht0nxpbl/f5Wpl -----END CERTIFICATE----- SSL.com EV Root Certification Authority RSA R2 ============================================== -----BEGIN CERTIFICATE----- MIIF6zCCA9OgAwIBAgIIVrYpzTS8ePYwDQYJKoZIhvcNAQELBQAwgYIxCzAJBgNVBAYTAlVTMQ4w DAYDVQQIDAVUZXhhczEQMA4GA1UEBwwHSG91c3RvbjEYMBYGA1UECgwPU1NMIENvcnBvcmF0aW9u MTcwNQYDVQQDDC5TU0wuY29tIEVWIFJvb3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgUlNBIFIy MB4XDTE3MDUzMTE4MTQzN1oXDTQyMDUzMDE4MTQzN1owgYIxCzAJBgNVBAYTAlVTMQ4wDAYDVQQI DAVUZXhhczEQMA4GA1UEBwwHSG91c3RvbjEYMBYGA1UECgwPU1NMIENvcnBvcmF0aW9uMTcwNQYD VQQDDC5TU0wuY29tIEVWIFJvb3QgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkgUlNBIFIyMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAjzZlQOHWTcDXtOlG2mvqM0fNTPl9fb69LT3w23jh hqXZuglXaO1XPqDQCEGD5yhBJB/jchXQARr7XnAjssufOePPxU7Gkm0mxnu7s9onnQqG6YE3Bf7w cXHswxzpY6IXFJ3vG2fThVUCAtZJycxa4bH3bzKfydQ7iEGonL3Lq9ttewkfokxykNorCPzPPFTO Zw+oz12WGQvE43LrrdF9HSfvkusQv1vrO6/PgN3B0pYEW3p+pKk8OHakYo6gOV7qd89dAFmPZiw+ B6KjBSYRaZfqhbcPlgtLyEDhULouisv3D5oi53+aNxPN8k0TayHRwMwi8qFG9kRpnMphNQcAb9Zh CBHqurj26bNg5U257J8UZslXWNvNh2n4ioYSA0e/ZhN2rHd9NCSFg83XqpyQGp8hLH94t2S42Oim 9HizVcuE0jLEeK6jj2HdzghTreyI/BXkmg3mnxp3zkyPuBQVPWKchjgGAGYS5Fl2WlPAApiiECto RHuOec4zSnaqW4EWG7WK2NAAe15itAnWhmMOpgWVSbooi4iTsjQc2KRVbrcc0N6ZVTsj9CLg+Slm JuwgUHfbSguPvuUCYHBBXtSuUDkiFCbLsjtzdFVHB3mBOagwE0TlBIqulhMlQg+5U8Sb/M3kHN48 +qvWBkofZ6aYMBzdLNvcGJVXZsb/XItW9XcCAwEAAaNjMGEwDwYDVR0TAQH/BAUwAwEB/zAfBgNV HSMEGDAWgBT5YLvU49U09rj1BoAlp3PbRmmonjAdBgNVHQ4EFgQU+WC71OPVNPa49QaAJadz20Zp qJ4wDgYDVR0PAQH/BAQDAgGGMA0GCSqGSIb3DQEBCwUAA4ICAQBWs47LCp1Jjr+kxJG7ZhcFUZh1 ++VQLHqe8RT6q9OKPv+RKY9ji9i0qVQBDb6Thi/5Sm3HXvVX+cpVHBK+Rw82xd9qt9t1wkclf7nx Y/hoLVUE0fKNsKTPvDxeH3jnpaAgcLAExbf3cqfeIg29MyVGjGSSJuM+LmOW2puMPfgYCdcDzH2G guDKBAdRUNf/ktUM79qGn5nX67evaOI5JpS6aLe/g9Pqemc9YmeuJeVy6OLk7K4S9ksrPJ/psEDz OFSz/bdoyNrGj1E8svuR3Bznm53htw1yj+KkxKl4+esUrMZDBcJlOSgYAsOCsp0FvmXtll9ldDz7 CTUue5wT/RsPXcdtgTpWD8w74a8CLyKsRspGPKAcTNZEtF4uXBVmCeEmKf7GUmG6sXP/wwyc5Wxq lD8UykAWlYTzWamsX0xhk23RO8yilQwipmdnRC652dKKQbNmC1r7fSOl8hqw/96bg5Qu0T/fkreR rwU7ZcegbLHNYhLDkBvjJc40vG93drEQw/cFGsDWr3RiSBd3kmmQYRzelYB0VI8YHMPzA9C/pEN1 hlMYegouCRw2n5H9gooiS9EOUCXdywMMF8mDAAhONU2Ki+3wApRmLER/y5UnlhetCTCstnEXbosX 9hwJ1C07mKVx01QT2WDz9UtmT/rx7iASjbSsV7FFY6GsdqnC+w== -----END CERTIFICATE----- SSL.com EV Root Certification Authority ECC =========================================== -----BEGIN CERTIFICATE----- MIIClDCCAhqgAwIBAgIILCmcWxbtBZUwCgYIKoZIzj0EAwIwfzELMAkGA1UEBhMCVVMxDjAMBgNV BAgMBVRleGFzMRAwDgYDVQQHDAdIb3VzdG9uMRgwFgYDVQQKDA9TU0wgQ29ycG9yYXRpb24xNDAy BgNVBAMMK1NTTC5jb20gRVYgUm9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eSBFQ0MwHhcNMTYw MjEyMTgxNTIzWhcNNDEwMjEyMTgxNTIzWjB/MQswCQYDVQQGEwJVUzEOMAwGA1UECAwFVGV4YXMx EDAOBgNVBAcMB0hvdXN0b24xGDAWBgNVBAoMD1NTTCBDb3Jwb3JhdGlvbjE0MDIGA1UEAwwrU1NM LmNvbSBFViBSb290IENlcnRpZmljYXRpb24gQXV0aG9yaXR5IEVDQzB2MBAGByqGSM49AgEGBSuB BAAiA2IABKoSR5CYG/vvw0AHgyBO8TCCogbR8pKGYfL2IWjKAMTH6kMAVIbc/R/fALhBYlzccBYy 3h+Z1MzFB8gIH2EWB1E9fVwHU+M1OIzfzZ/ZLg1KthkuWnBaBu2+8KGwytAJKaNjMGEwHQYDVR0O BBYEFFvKXuXe0oGqzagtZFG22XKbl+ZPMA8GA1UdEwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAUW8pe 5d7SgarNqC1kUbbZcpuX5k8wDgYDVR0PAQH/BAQDAgGGMAoGCCqGSM49BAMCA2gAMGUCMQCK5kCJ N+vp1RPZytRrJPOwPYdGWBrssd9v+1a6cGvHOMzosYxPD/fxZ3YOg9AeUY8CMD32IygmTMZgh5Mm m7I1HrrW9zzRHM76JTymGoEVW/MSD2zuZYrJh6j5B+BimoxcSg== -----END CERTIFICATE----- GlobalSign Root CA - R6 ======================= -----BEGIN CERTIFICATE----- MIIFgzCCA2ugAwIBAgIORea7A4Mzw4VlSOb/RVEwDQYJKoZIhvcNAQEMBQAwTDEgMB4GA1UECxMX R2xvYmFsU2lnbiBSb290IENBIC0gUjYxEzARBgNVBAoTCkdsb2JhbFNpZ24xEzARBgNVBAMTCkds b2JhbFNpZ24wHhcNMTQxMjEwMDAwMDAwWhcNMzQxMjEwMDAwMDAwWjBMMSAwHgYDVQQLExdHbG9i YWxTaWduIFJvb3QgQ0EgLSBSNjETMBEGA1UEChMKR2xvYmFsU2lnbjETMBEGA1UEAxMKR2xvYmFs U2lnbjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAJUH6HPKZvnsFMp7PPcNCPG0RQss grRIxutbPK6DuEGSMxSkb3/pKszGsIhrxbaJ0cay/xTOURQh7ErdG1rG1ofuTToVBu1kZguSgMpE 3nOUTvOniX9PeGMIyBJQbUJmL025eShNUhqKGoC3GYEOfsSKvGRMIRxDaNc9PIrFsmbVkJq3MQbF vuJtMgamHvm566qjuL++gmNQ0PAYid/kD3n16qIfKtJwLnvnvJO7bVPiSHyMEAc4/2ayd2F+4OqM PKq0pPbzlUoSB239jLKJz9CgYXfIWHSw1CM69106yqLbnQneXUQtkPGBzVeS+n68UARjNN9rkxi+ azayOeSsJDa38O+2HBNXk7besvjihbdzorg1qkXy4J02oW9UivFyVm4uiMVRQkQVlO6jxTiWm05O WgtH8wY2SXcwvHE35absIQh1/OZhFj931dmRl4QKbNQCTXTAFO39OfuD8l4UoQSwC+n+7o/hbguy CLNhZglqsQY6ZZZZwPA1/cnaKI0aEYdwgQqomnUdnjqGBQCe24DWJfncBZ4nWUx2OVvq+aWh2IMP 0f/fMBH5hc8zSPXKbWQULHpYT9NLCEnFlWQaYw55PfWzjMpYrZxCRXluDocZXFSxZba/jJvcE+kN b7gu3GduyYsRtYQUigAZcIN5kZeR1BonvzceMgfYFGM8KEyvAgMBAAGjYzBhMA4GA1UdDwEB/wQE AwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSubAWjkxPioufi1xzWx/B/yGdToDAfBgNV HSMEGDAWgBSubAWjkxPioufi1xzWx/B/yGdToDANBgkqhkiG9w0BAQwFAAOCAgEAgyXt6NH9lVLN nsAEoJFp5lzQhN7craJP6Ed41mWYqVuoPId8AorRbrcWc+ZfwFSY1XS+wc3iEZGtIxg93eFyRJa0 lV7Ae46ZeBZDE1ZXs6KzO7V33EByrKPrmzU+sQghoefEQzd5Mr6155wsTLxDKZmOMNOsIeDjHfrY BzN2VAAiKrlNIC5waNrlU/yDXNOd8v9EDERm8tLjvUYAGm0CuiVdjaExUd1URhxN25mW7xocBFym Fe944Hn+Xds+qkxV/ZoVqW/hpvvfcDDpw+5CRu3CkwWJ+n1jez/QcYF8AOiYrg54NMMl+68KnyBr 3TsTjxKM4kEaSHpzoHdpx7Zcf4LIHv5YGygrqGytXm3ABdJ7t+uA/iU3/gKbaKxCXcPu9czc8FB1 0jZpnOZ7BN9uBmm23goJSFmH63sUYHpkqmlD75HHTOwY3WzvUy2MmeFe8nI+z1TIvWfspA9MRf/T uTAjB0yPEL+GltmZWrSZVxykzLsViVO6LAUP5MSeGbEYNNVMnbrt9x+vJJUEeKgDu+6B5dpffItK oZB0JaezPkvILFa9x8jvOOJckvB595yEunQtYQEgfn7R8k8HWV+LLUNS60YMlOH1Zkd5d9VUWx+t JDfLRVpOoERIyNiwmcUVhAn21klJwGW45hpxbqCo8YLoRT5s1gLXCmeDBVrJpBA= -----END CERTIFICATE----- OISTE WISeKey Global Root GC CA =============================== -----BEGIN CERTIFICATE----- MIICaTCCAe+gAwIBAgIQISpWDK7aDKtARb8roi066jAKBggqhkjOPQQDAzBtMQswCQYDVQQGEwJD SDEQMA4GA1UEChMHV0lTZUtleTEiMCAGA1UECxMZT0lTVEUgRm91bmRhdGlvbiBFbmRvcnNlZDEo MCYGA1UEAxMfT0lTVEUgV0lTZUtleSBHbG9iYWwgUm9vdCBHQyBDQTAeFw0xNzA1MDkwOTQ4MzRa Fw00MjA1MDkwOTU4MzNaMG0xCzAJBgNVBAYTAkNIMRAwDgYDVQQKEwdXSVNlS2V5MSIwIAYDVQQL ExlPSVNURSBGb3VuZGF0aW9uIEVuZG9yc2VkMSgwJgYDVQQDEx9PSVNURSBXSVNlS2V5IEdsb2Jh bCBSb290IEdDIENBMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAETOlQwMYPchi82PG6s4nieUqjFqdr VCTbUf/q9Akkwwsin8tqJ4KBDdLArzHkdIJuyiXZjHWd8dvQmqJLIX4Wp2OQ0jnUsYd4XxiWD1Ab NTcPasbc2RNNpI6QN+a9WzGRo1QwUjAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAd BgNVHQ4EFgQUSIcUrOPDnpBgOtfKie7TrYy0UGYwEAYJKwYBBAGCNxUBBAMCAQAwCgYIKoZIzj0E AwMDaAAwZQIwJsdpW9zV57LnyAyMjMPdeYwbY9XJUpROTYJKcx6ygISpJcBMWm1JKWB4E+J+SOtk AjEA2zQgMgj/mkkCtojeFK9dbJlxjRo/i9fgojaGHAeCOnZT/cKi7e97sIBPWA9LUzm9 -----END CERTIFICATE----- UCA Global G2 Root ================== -----BEGIN CERTIFICATE----- MIIFRjCCAy6gAwIBAgIQXd+x2lqj7V2+WmUgZQOQ7zANBgkqhkiG9w0BAQsFADA9MQswCQYDVQQG EwJDTjERMA8GA1UECgwIVW5pVHJ1c3QxGzAZBgNVBAMMElVDQSBHbG9iYWwgRzIgUm9vdDAeFw0x NjAzMTEwMDAwMDBaFw00MDEyMzEwMDAwMDBaMD0xCzAJBgNVBAYTAkNOMREwDwYDVQQKDAhVbmlU cnVzdDEbMBkGA1UEAwwSVUNBIEdsb2JhbCBHMiBSb290MIICIjANBgkqhkiG9w0BAQEFAAOCAg8A MIICCgKCAgEAxeYrb3zvJgUno4Ek2m/LAfmZmqkywiKHYUGRO8vDaBsGxUypK8FnFyIdK+35KYmT oni9kmugow2ifsqTs6bRjDXVdfkX9s9FxeV67HeToI8jrg4aA3++1NDtLnurRiNb/yzmVHqUwCoV 8MmNsHo7JOHXaOIxPAYzRrZUEaalLyJUKlgNAQLx+hVRZ2zA+te2G3/RVogvGjqNO7uCEeBHANBS h6v7hn4PJGtAnTRnvI3HLYZveT6OqTwXS3+wmeOwcWDcC/Vkw85DvG1xudLeJ1uK6NjGruFZfc8o LTW4lVYa8bJYS7cSN8h8s+1LgOGN+jIjtm+3SJUIsUROhYw6AlQgL9+/V087OpAh18EmNVQg7Mc/ R+zvWr9LesGtOxdQXGLYD0tK3Cv6brxzks3sx1DoQZbXqX5t2Okdj4q1uViSukqSKwxW/YDrCPBe KW4bHAyvj5OJrdu9o54hyokZ7N+1wxrrFv54NkzWbtA+FxyQF2smuvt6L78RHBgOLXMDj6DlNaBa 4kx1HXHhOThTeEDMg5PXCp6dW4+K5OXgSORIskfNTip1KnvyIvbJvgmRlld6iIis7nCs+dwp4wwc OxJORNanTrAmyPPZGpeRaOrvjUYG0lZFWJo8DA+DuAUlwznPO6Q0ibd5Ei9Hxeepl2n8pndntd97 8XplFeRhVmUCAwEAAaNCMEAwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0O BBYEFIHEjMz15DD/pQwIX4wVZyF0Ad/fMA0GCSqGSIb3DQEBCwUAA4ICAQATZSL1jiutROTL/7lo 5sOASD0Ee/ojL3rtNtqyzm325p7lX1iPyzcyochltq44PTUbPrw7tgTQvPlJ9Zv3hcU2tsu8+Mg5 1eRfB70VVJd0ysrtT7q6ZHafgbiERUlMjW+i67HM0cOU2kTC5uLqGOiiHycFutfl1qnN3e92mI0A Ds0b+gO3joBYDic/UvuUospeZcnWhNq5NXHzJsBPd+aBJ9J3O5oUb3n09tDh05S60FdRvScFDcH9 yBIw7m+NESsIndTUv4BFFJqIRNow6rSn4+7vW4LVPtateJLbXDzz2K36uGt/xDYotgIVilQsnLAX c47QN6MUPJiVAAwpBVueSUmxX8fjy88nZY41F7dXyDDZQVu5FLbowg+UMaeUmMxq67XhJ/UQqAHo jhJi6IjMtX9Gl8CbEGY4GjZGXyJoPd/JxhMnq1MGrKI8hgZlb7F+sSlEmqO6SWkoaY/X5V+tBIZk bxqgDMUIYs6Ao9Dz7GjevjPHF1t/gMRMTLGmhIrDO7gJzRSBuhjjVFc2/tsvfEehOjPI+Vg7RE+x ygKJBJYoaMVLuCaJu9YzL1DV/pqJuhgyklTGW+Cd+V7lDSKb9triyCGyYiGqhkCyLmTTX8jjfhFn RR8F/uOi77Oos/N9j/gMHyIfLXC0uAE0djAA5SN4p1bXUB+K+wb1whnw0A== -----END CERTIFICATE----- UCA Extended Validation Root ============================ -----BEGIN CERTIFICATE----- MIIFWjCCA0KgAwIBAgIQT9Irj/VkyDOeTzRYZiNwYDANBgkqhkiG9w0BAQsFADBHMQswCQYDVQQG EwJDTjERMA8GA1UECgwIVW5pVHJ1c3QxJTAjBgNVBAMMHFVDQSBFeHRlbmRlZCBWYWxpZGF0aW9u IFJvb3QwHhcNMTUwMzEzMDAwMDAwWhcNMzgxMjMxMDAwMDAwWjBHMQswCQYDVQQGEwJDTjERMA8G A1UECgwIVW5pVHJ1c3QxJTAjBgNVBAMMHFVDQSBFeHRlbmRlZCBWYWxpZGF0aW9uIFJvb3QwggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCpCQcoEwKwmeBkqh5DFnpzsZGgdT6o+uM4AHrs iWogD4vFsJszA1qGxliG1cGFu0/GnEBNyr7uaZa4rYEwmnySBesFK5pI0Lh2PpbIILvSsPGP2KxF Rv+qZ2C0d35qHzwaUnoEPQc8hQ2E0B92CvdqFN9y4zR8V05WAT558aopO2z6+I9tTcg1367r3CTu eUWnhbYFiN6IXSV8l2RnCdm/WhUFhvMJHuxYMjMR83dksHYf5BA1FxvyDrFspCqjc/wJHx4yGVMR 59mzLC52LqGj3n5qiAno8geK+LLNEOfic0CTuwjRP+H8C5SzJe98ptfRr5//lpr1kXuYC3fUfugH 0mK1lTnj8/FtDw5lhIpjVMWAtuCeS31HJqcBCF3RiJ7XwzJE+oJKCmhUfzhTA8ykADNkUVkLo4KR el7sFsLzKuZi2irbWWIQJUoqgQtHB0MGcIfS+pMRKXpITeuUx3BNr2fVUbGAIAEBtHoIppB/TuDv B0GHr2qlXov7z1CymlSvw4m6WC31MJixNnI5fkkE/SmnTHnkBVfblLkWU41Gsx2VYVdWf6/wFlth WG82UBEL2KwrlRYaDh8IzTY0ZRBiZtWAXxQgXy0MoHgKaNYs1+lvK9JKBZP8nm9rZ/+I8U6laUpS NwXqxhaN0sSZ0YIrO7o1dfdRUVjzyAfd5LQDfwIDAQABo0IwQDAdBgNVHQ4EFgQU2XQ65DA9DfcS 3H5aBZ8eNJr34RQwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAYYwDQYJKoZIhvcNAQEL BQADggIBADaNl8xCFWQpN5smLNb7rhVpLGsaGvdftvkHTFnq88nIua7Mui563MD1sC3AO6+fcAUR ap8lTwEpcOPlDOHqWnzcSbvBHiqB9RZLcpHIojG5qtr8nR/zXUACE/xOHAbKsxSQVBcZEhrxH9cM aVr2cXj0lH2RC47skFSOvG+hTKv8dGT9cZr4QQehzZHkPJrgmzI5c6sq1WnIeJEmMX3ixzDx/BR4 dxIOE/TdFpS/S2d7cFOFyrC78zhNLJA5wA3CXWvp4uXViI3WLL+rG761KIcSF3Ru/H38j9CHJrAb +7lsq+KePRXBOy5nAliRn+/4Qh8st2j1da3Ptfb/EX3C8CSlrdP6oDyp+l3cpaDvRKS+1ujl5BOW F3sGPjLtx7dCvHaj2GU4Kzg1USEODm8uNBNA4StnDG1KQTAYI1oyVZnJF+A83vbsea0rWBmirSwi GpWOvpaQXUJXxPkUAzUrHC1RVwinOt4/5Mi0A3PCwSaAuwtCH60NryZy2sy+s6ODWA2CxR9GUeOc GMyNm43sSet1UNWMKFnKdDTajAshqx7qG+XH/RU+wBeq+yNuJkbL+vmxcmtpzyKEC2IPrNkZAJSi djzULZrtBJ4tBmIQN1IchXIbJ+XMxjHsN+xjWZsLHXbMfjKaiJUINlK73nZfdklJrX+9ZSCyycEr dhh2n1ax -----END CERTIFICATE----- Certigna Root CA ================ -----BEGIN CERTIFICATE----- MIIGWzCCBEOgAwIBAgIRAMrpG4nxVQMNo+ZBbcTjpuEwDQYJKoZIhvcNAQELBQAwWjELMAkGA1UE BhMCRlIxEjAQBgNVBAoMCURoaW15b3RpczEcMBoGA1UECwwTMDAwMiA0ODE0NjMwODEwMDAzNjEZ MBcGA1UEAwwQQ2VydGlnbmEgUm9vdCBDQTAeFw0xMzEwMDEwODMyMjdaFw0zMzEwMDEwODMyMjda MFoxCzAJBgNVBAYTAkZSMRIwEAYDVQQKDAlEaGlteW90aXMxHDAaBgNVBAsMEzAwMDIgNDgxNDYz MDgxMDAwMzYxGTAXBgNVBAMMEENlcnRpZ25hIFJvb3QgQ0EwggIiMA0GCSqGSIb3DQEBAQUAA4IC DwAwggIKAoICAQDNGDllGlmx6mQWDoyUJJV8g9PFOSbcDO8WV43X2KyjQn+Cyu3NW9sOty3tRQgX stmzy9YXUnIo245Onoq2C/mehJpNdt4iKVzSs9IGPjA5qXSjklYcoW9MCiBtnyN6tMbaLOQdLNyz KNAT8kxOAkmhVECe5uUFoC2EyP+YbNDrihqECB63aCPuI9Vwzm1RaRDuoXrC0SIxwoKF0vJVdlB8 JXrJhFwLrN1CTivngqIkicuQstDuI7pmTLtipPlTWmR7fJj6o0ieD5Wupxj0auwuA0Wv8HT4Ks16 XdG+RCYyKfHx9WzMfgIhC59vpD++nVPiz32pLHxYGpfhPTc3GGYo0kDFUYqMwy3OU4gkWGQwFsWq 4NYKpkDfePb1BHxpE4S80dGnBs8B92jAqFe7OmGtBIyT46388NtEbVncSVmurJqZNjBBe3YzIoej wpKGbvlw7q6Hh5UbxHq9MfPU0uWZ/75I7HX1eBYdpnDBfzwboZL7z8g81sWTCo/1VTp2lc5ZmIoJ lXcymoO6LAQ6l73UL77XbJuiyn1tJslV1c/DeVIICZkHJC1kJWumIWmbat10TWuXekG9qxf5kBdI jzb5LdXF2+6qhUVB+s06RbFo5jZMm5BX7CO5hwjCxAnxl4YqKE3idMDaxIzb3+KhF1nOJFl0Mdp/ /TBt2dzhauH8XwIDAQABo4IBGjCCARYwDwYDVR0TAQH/BAUwAwEB/zAOBgNVHQ8BAf8EBAMCAQYw HQYDVR0OBBYEFBiHVuBud+4kNTxOc5of1uHieX4rMB8GA1UdIwQYMBaAFBiHVuBud+4kNTxOc5of 1uHieX4rMEQGA1UdIAQ9MDswOQYEVR0gADAxMC8GCCsGAQUFBwIBFiNodHRwczovL3d3d3cuY2Vy dGlnbmEuZnIvYXV0b3JpdGVzLzBtBgNVHR8EZjBkMC+gLaArhilodHRwOi8vY3JsLmNlcnRpZ25h LmZyL2NlcnRpZ25hcm9vdGNhLmNybDAxoC+gLYYraHR0cDovL2NybC5kaGlteW90aXMuY29tL2Nl cnRpZ25hcm9vdGNhLmNybDANBgkqhkiG9w0BAQsFAAOCAgEAlLieT/DjlQgi581oQfccVdV8AOIt OoldaDgvUSILSo3L6btdPrtcPbEo/uRTVRPPoZAbAh1fZkYJMyjhDSSXcNMQH+pkV5a7XdrnxIxP TGRGHVyH41neQtGbqH6mid2PHMkwgu07nM3A6RngatgCdTer9zQoKJHyBApPNeNgJgH60BGM+RFq 7q89w1DTj18zeTyGqHNFkIwgtnJzFyO+B2XleJINugHA64wcZr+shncBlA2c5uk5jR+mUYyZDDl3 4bSb+hxnV29qao6pK0xXeXpXIs/NX2NGjVxZOob4Mkdio2cNGJHc+6Zr9UhhcyNZjgKnvETq9Emd 8VRY+WCv2hikLyhF3HqgiIZd8zvn/yk1gPxkQ5Tm4xxvvq0OKmOZK8l+hfZx6AYDlf7ej0gcWtSS 6Cvu5zHbugRqh5jnxV/vfaci9wHYTfmJ0A6aBVmknpjZbyvKcL5kwlWj9Omvw5Ip3IgWJJk8jSaY tlu3zM63Nwf9JtmYhST/WSMDmu2dnajkXjjO11INb9I/bbEFa0nOipFGc/T2L/Coc3cOZayhjWZS aX5LaAzHHjcng6WMxwLkFM1JAbBzs/3GkDpv0mztO+7skb6iQ12LAEpmJURw3kAP+HwV96LOPNde E4yBFxgX0b3xdxA61GU5wSesVywlVP+i2k+KYTlerj1KjL0= -----END CERTIFICATE----- emSign Root CA - G1 =================== -----BEGIN CERTIFICATE----- MIIDlDCCAnygAwIBAgIKMfXkYgxsWO3W2DANBgkqhkiG9w0BAQsFADBnMQswCQYDVQQGEwJJTjET MBEGA1UECxMKZW1TaWduIFBLSTElMCMGA1UEChMcZU11ZGhyYSBUZWNobm9sb2dpZXMgTGltaXRl ZDEcMBoGA1UEAxMTZW1TaWduIFJvb3QgQ0EgLSBHMTAeFw0xODAyMTgxODMwMDBaFw00MzAyMTgx ODMwMDBaMGcxCzAJBgNVBAYTAklOMRMwEQYDVQQLEwplbVNpZ24gUEtJMSUwIwYDVQQKExxlTXVk aHJhIFRlY2hub2xvZ2llcyBMaW1pdGVkMRwwGgYDVQQDExNlbVNpZ24gUm9vdCBDQSAtIEcxMIIB IjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk0u76WaK7p1b1TST0Bsew+eeuGQzf2N4aLTN LnF115sgxk0pvLZoYIr3IZpWNVrzdr3YzZr/k1ZLpVkGoZM0Kd0WNHVO8oG0x5ZOrRkVUkr+PHB1 cM2vK6sVmjM8qrOLqs1D/fXqcP/tzxE7lM5OMhbTI0Aqd7OvPAEsbO2ZLIvZTmmYsvePQbAyeGHW DV/D+qJAkh1cF+ZwPjXnorfCYuKrpDhMtTk1b+oDafo6VGiFbdbyL0NVHpENDtjVaqSW0RM8LHhQ 6DqS0hdW5TUaQBw+jSztOd9C4INBdN+jzcKGYEho42kLVACL5HZpIQ15TjQIXhTCzLG3rdd8cIrH hQIDAQABo0IwQDAdBgNVHQ4EFgQU++8Nhp6w492pufEhF38+/PB3KxowDgYDVR0PAQH/BAQDAgEG MA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQADggEBAFn/8oz1h31xPaOfG1vR2vjTnGs2 vZupYeveFix0PZ7mddrXuqe8QhfnPZHr5X3dPpzxz5KsbEjMwiI/aTvFthUvozXGaCocV685743Q NcMYDHsAVhzNixl03r4PEuDQqqE/AjSxcM6dGNYIAwlG7mDgfrbESQRRfXBgvKqy/3lyeqYdPV8q +Mri/Tm3R7nrft8EI6/6nAYH6ftjk4BAtcZsCjEozgyfz7MjNYBBjWzEN3uBL4ChQEKF6dk4jeih U80Bv2noWgbyRQuQ+q7hv53yrlc8pa6yVvSLZUDp/TGBLPQ5Cdjua6e0ph0VpZj3AYHYhX3zUVxx iN66zB+Afko= -----END CERTIFICATE----- emSign ECC Root CA - G3 ======================= -----BEGIN CERTIFICATE----- MIICTjCCAdOgAwIBAgIKPPYHqWhwDtqLhDAKBggqhkjOPQQDAzBrMQswCQYDVQQGEwJJTjETMBEG A1UECxMKZW1TaWduIFBLSTElMCMGA1UEChMcZU11ZGhyYSBUZWNobm9sb2dpZXMgTGltaXRlZDEg MB4GA1UEAxMXZW1TaWduIEVDQyBSb290IENBIC0gRzMwHhcNMTgwMjE4MTgzMDAwWhcNNDMwMjE4 MTgzMDAwWjBrMQswCQYDVQQGEwJJTjETMBEGA1UECxMKZW1TaWduIFBLSTElMCMGA1UEChMcZU11 ZGhyYSBUZWNobm9sb2dpZXMgTGltaXRlZDEgMB4GA1UEAxMXZW1TaWduIEVDQyBSb290IENBIC0g RzMwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQjpQy4LRL1KPOxst3iAhKAnjlfSU2fySU0WXTsuwYc 58Byr+iuL+FBVIcUqEqy6HyC5ltqtdyzdc6LBtCGI79G1Y4PPwT01xySfvalY8L1X44uT6EYGQIr MgqCZH0Wk9GjQjBAMB0GA1UdDgQWBBR8XQKEE9TMipuBzhccLikenEhjQjAOBgNVHQ8BAf8EBAMC AQYwDwYDVR0TAQH/BAUwAwEB/zAKBggqhkjOPQQDAwNpADBmAjEAvvNhzwIQHWSVB7gYboiFBS+D CBeQyh+KTOgNG3qxrdWBCUfvO6wIBHxcmbHtRwfSAjEAnbpV/KlK6O3t5nYBQnvI+GDZjVGLVTv7 jHvrZQnD+JbNR6iC8hZVdyR+EhCVBCyj -----END CERTIFICATE----- emSign Root CA - C1 =================== -----BEGIN CERTIFICATE----- MIIDczCCAlugAwIBAgILAK7PALrEzzL4Q7IwDQYJKoZIhvcNAQELBQAwVjELMAkGA1UEBhMCVVMx EzARBgNVBAsTCmVtU2lnbiBQS0kxFDASBgNVBAoTC2VNdWRocmEgSW5jMRwwGgYDVQQDExNlbVNp Z24gUm9vdCBDQSAtIEMxMB4XDTE4MDIxODE4MzAwMFoXDTQzMDIxODE4MzAwMFowVjELMAkGA1UE BhMCVVMxEzARBgNVBAsTCmVtU2lnbiBQS0kxFDASBgNVBAoTC2VNdWRocmEgSW5jMRwwGgYDVQQD ExNlbVNpZ24gUm9vdCBDQSAtIEMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+up ufGZBczYKCFK83M0UYRWEPWgTywS4/oTmifQz/l5GnRfHXk5/Fv4cI7gklL35CX5VIPZHdPIWoU/ Xse2B+4+wM6ar6xWQio5JXDWv7V7Nq2s9nPczdcdioOl+yuQFTdrHCZH3DspVpNqs8FqOp099cGX OFgFixwR4+S0uF2FHYP+eF8LRWgYSKVGczQ7/g/IdrvHGPMF0Ybzhe3nudkyrVWIzqa2kbBPrH4V I5b2P/AgNBbeCsbEBEV5f6f9vtKppa+cxSMq9zwhbL2vj07FOrLzNBL834AaSaTUqZX3noleooms lMuoaJuvimUnzYnu3Yy1aylwQ6BpC+S5DwIDAQABo0IwQDAdBgNVHQ4EFgQU/qHgcB4qAzlSWkK+ XJGFehiqTbUwDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQELBQAD ggEBAMJKVvoVIXsoounlHfv4LcQ5lkFMOycsxGwYFYDGrK9HWS8mC+M2sO87/kOXSTKZEhVb3xEp /6tT+LvBeA+snFOvV71ojD1pM/CjoCNjO2RnIkSt1XHLVip4kqNPEjE2NuLe/gDEo2APJ62gsIq1 NnpSob0n9CAnYuhNlCQT5AoE6TyrLshDCUrGYQTlSTR+08TI9Q/Aqum6VF7zYytPT1DU/rl7mYw9 wC68AivTxEDkigcxHpvOJpkT+xHqmiIMERnHXhuBUDDIlhJu58tBf5E7oke3VIAb3ADMmpDqw8NQ BmIMMMAVSKeoWXzhriKi4gp6D/piq1JM4fHfyr6DDUI= -----END CERTIFICATE----- emSign ECC Root CA - C3 ======================= -----BEGIN CERTIFICATE----- MIICKzCCAbGgAwIBAgIKe3G2gla4EnycqDAKBggqhkjOPQQDAzBaMQswCQYDVQQGEwJVUzETMBEG A1UECxMKZW1TaWduIFBLSTEUMBIGA1UEChMLZU11ZGhyYSBJbmMxIDAeBgNVBAMTF2VtU2lnbiBF Q0MgUm9vdCBDQSAtIEMzMB4XDTE4MDIxODE4MzAwMFoXDTQzMDIxODE4MzAwMFowWjELMAkGA1UE BhMCVVMxEzARBgNVBAsTCmVtU2lnbiBQS0kxFDASBgNVBAoTC2VNdWRocmEgSW5jMSAwHgYDVQQD ExdlbVNpZ24gRUNDIFJvb3QgQ0EgLSBDMzB2MBAGByqGSM49AgEGBSuBBAAiA2IABP2lYa57JhAd 6bciMK4G9IGzsUJxlTm801Ljr6/58pc1kjZGDoeVjbk5Wum739D+yAdBPLtVb4OjavtisIGJAnB9 SMVK4+kiVCJNk7tCDK93nCOmfddhEc5lx/h//vXyqaNCMEAwHQYDVR0OBBYEFPtaSNCAIEDyqOkA B2kZd6fmw/TPMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MAoGCCqGSM49BAMDA2gA MGUCMQC02C8Cif22TGK6Q04ThHK1rt0c3ta13FaPWEBaLd4gTCKDypOofu4SQMfWh0/434UCMBwU ZOR8loMRnLDRWmFLpg9J0wD8ofzkpf9/rdcw0Md3f76BB1UwUCAU9Vc4CqgxUQ== -----END CERTIFICATE----- Hongkong Post Root CA 3 ======================= -----BEGIN CERTIFICATE----- MIIFzzCCA7egAwIBAgIUCBZfikyl7ADJk0DfxMauI7gcWqQwDQYJKoZIhvcNAQELBQAwbzELMAkG A1UEBhMCSEsxEjAQBgNVBAgTCUhvbmcgS29uZzESMBAGA1UEBxMJSG9uZyBLb25nMRYwFAYDVQQK Ew1Ib25na29uZyBQb3N0MSAwHgYDVQQDExdIb25na29uZyBQb3N0IFJvb3QgQ0EgMzAeFw0xNzA2 MDMwMjI5NDZaFw00MjA2MDMwMjI5NDZaMG8xCzAJBgNVBAYTAkhLMRIwEAYDVQQIEwlIb25nIEtv bmcxEjAQBgNVBAcTCUhvbmcgS29uZzEWMBQGA1UEChMNSG9uZ2tvbmcgUG9zdDEgMB4GA1UEAxMX SG9uZ2tvbmcgUG9zdCBSb290IENBIDMwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCz iNfqzg8gTr7m1gNt7ln8wlffKWihgw4+aMdoWJwcYEuJQwy51BWy7sFOdem1p+/l6TWZ5Mwc50tf jTMwIDNT2aa71T4Tjukfh0mtUC1Qyhi+AViiE3CWu4mIVoBc+L0sPOFMV4i707mV78vH9toxdCim 5lSJ9UExyuUmGs2C4HDaOym71QP1mbpV9WTRYA6ziUm4ii8F0oRFKHyPaFASePwLtVPLwpgchKOe sL4jpNrcyCse2m5FHomY2vkALgbpDDtw1VAliJnLzXNg99X/NWfFobxeq81KuEXryGgeDQ0URhLj 0mRiikKYvLTGCAj4/ahMZJx2Ab0vqWwzD9g/KLg8aQFChn5pwckGyuV6RmXpwtZQQS4/t+TtbNe/ JgERohYpSms0BpDsE9K2+2p20jzt8NYt3eEV7KObLyzJPivkaTv/ciWxNoZbx39ri1UbSsUgYT2u y1DhCDq+sI9jQVMwCFk8mB13umOResoQUGC/8Ne8lYePl8X+l2oBlKN8W4UdKjk60FSh0Tlxnf0h +bV78OLgAo9uliQlLKAeLKjEiafv7ZkGL7YKTE/bosw3Gq9HhS2KX8Q0NEwA/RiTZxPRN+ZItIsG xVd7GYYKecsAyVKvQv83j+GjHno9UKtjBucVtT+2RTeUN7F+8kjDf8V1/peNRY8apxpyKBpADwID AQABo2MwYTAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAfBgNVHSMEGDAWgBQXnc0e i9Y5K3DTXNSguB+wAPzFYTAdBgNVHQ4EFgQUF53NHovWOStw01zUoLgfsAD8xWEwDQYJKoZIhvcN AQELBQADggIBAFbVe27mIgHSQpsY1Q7XZiNc4/6gx5LS6ZStS6LG7BJ8dNVI0lkUmcDrudHr9Egw W62nV3OZqdPlt9EuWSRY3GguLmLYauRwCy0gUCCkMpXRAJi70/33MvJJrsZ64Ee+bs7Lo3I6LWld y8joRTnU+kLBEUx3XZL7av9YROXrgZ6voJmtvqkBZss4HTzfQx/0TW60uhdG/H39h4F5ag0zD/ov +BS5gLNdTaqX4fnkGMX41TiMJjz98iji7lpJiCzfeT2OnpA8vUFKOt1b9pq0zj8lMH8yfaIDlNDc eqFS3m6TjRgm/VWsvY+b0s+v54Ysyx8Jb6NvqYTUc79NoXQbTiNg8swOqn+knEwlqLJmOzj/2ZQw 9nKEvmhVEA/GcywWaZMH/rFF7buiVWqw2rVKAiUnhde3t4ZEFolsgCs+l6mc1X5VTMbeRRAc6uk7 nwNT7u56AQIWeNTowr5GdogTPyK7SBIdUgC0An4hGh6cJfTzPV4e0hz5sy229zdcxsshTrD3mUcY hcErulWuBurQB7Lcq9CClnXO0lD+mefPL5/ndtFhKvshuzHQqp9HpLIiyhY6UFfEW0NnxWViA0kB 60PZ2Pierc+xYw5F9KBaLJstxabArahH9CdMOA0uG0k7UvToiIMrVCjU8jVStDKDYmlkDJGcn5fq dBb9HxEGmpv0 -----END CERTIFICATE----- Microsoft ECC Root Certificate Authority 2017 ============================================= -----BEGIN CERTIFICATE----- MIICWTCCAd+gAwIBAgIQZvI9r4fei7FK6gxXMQHC7DAKBggqhkjOPQQDAzBlMQswCQYDVQQGEwJV UzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMTYwNAYDVQQDEy1NaWNyb3NvZnQgRUND IFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IDIwMTcwHhcNMTkxMjE4MjMwNjQ1WhcNNDIwNzE4 MjMxNjA0WjBlMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMTYw NAYDVQQDEy1NaWNyb3NvZnQgRUNDIFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IDIwMTcwdjAQ BgcqhkjOPQIBBgUrgQQAIgNiAATUvD0CQnVBEyPNgASGAlEvaqiBYgtlzPbKnR5vSmZRogPZnZH6 thaxjG7efM3beaYvzrvOcS/lpaso7GMEZpn4+vKTEAXhgShC48Zo9OYbhGBKia/teQ87zvH2RPUB eMCjVDBSMA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTIy5lycFIM +Oa+sgRXKSrPQhDtNTAQBgkrBgEEAYI3FQEEAwIBADAKBggqhkjOPQQDAwNoADBlAjBY8k3qDPlf Xu5gKcs68tvWMoQZP3zVL8KxzJOuULsJMsbG7X7JNpQS5GiFBqIb0C8CMQCZ6Ra0DvpWSNSkMBaR eNtUjGUBiudQZsIxtzm6uBoiB078a1QWIP8rtedMDE2mT3M= -----END CERTIFICATE----- Microsoft RSA Root Certificate Authority 2017 ============================================= -----BEGIN CERTIFICATE----- MIIFqDCCA5CgAwIBAgIQHtOXCV/YtLNHcB6qvn9FszANBgkqhkiG9w0BAQwFADBlMQswCQYDVQQG EwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9uMTYwNAYDVQQDEy1NaWNyb3NvZnQg UlNBIFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IDIwMTcwHhcNMTkxMjE4MjI1MTIyWhcNNDIw NzE4MjMwMDIzWjBlMQswCQYDVQQGEwJVUzEeMBwGA1UEChMVTWljcm9zb2Z0IENvcnBvcmF0aW9u MTYwNAYDVQQDEy1NaWNyb3NvZnQgUlNBIFJvb3QgQ2VydGlmaWNhdGUgQXV0aG9yaXR5IDIwMTcw ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDKW76UM4wplZEWCpW9R2LBifOZNt9GkMml 7Xhqb0eRaPgnZ1AzHaGm++DlQ6OEAlcBXZxIQIJTELy/xztokLaCLeX0ZdDMbRnMlfl7rEqUrQ7e S0MdhweSE5CAg2Q1OQT85elss7YfUJQ4ZVBcF0a5toW1HLUX6NZFndiyJrDKxHBKrmCk3bPZ7Pw7 1VdyvD/IybLeS2v4I2wDwAW9lcfNcztmgGTjGqwu+UcF8ga2m3P1eDNbx6H7JyqhtJqRjJHTOoI+ dkC0zVJhUXAoP8XFWvLJjEm7FFtNyP9nTUwSlq31/niol4fX/V4ggNyhSyL71Imtus5Hl0dVe49F yGcohJUcaDDv70ngNXtk55iwlNpNhTs+VcQor1fznhPbRiefHqJeRIOkpcrVE7NLP8TjwuaGYaRS MLl6IE9vDzhTyzMMEyuP1pq9KsgtsRx9S1HKR9FIJ3Jdh+vVReZIZZ2vUpC6W6IYZVcSn2i51BVr lMRpIpj0M+Dt+VGOQVDJNE92kKz8OMHY4Xu54+OU4UZpyw4KUGsTuqwPN1q3ErWQgR5WrlcihtnJ 0tHXUeOrO8ZV/R4O03QK0dqq6mm4lyiPSMQH+FJDOvTKVTUssKZqwJz58oHhEmrARdlns87/I6KJ ClTUFLkqqNfs+avNJVgyeY+QW5g5xAgGwax/Dj0ApQIDAQABo1QwUjAOBgNVHQ8BAf8EBAMCAYYw DwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUCctZf4aycI8awznjwNnpv7tNsiMwEAYJKwYBBAGC NxUBBAMCAQAwDQYJKoZIhvcNAQEMBQADggIBAKyvPl3CEZaJjqPnktaXFbgToqZCLgLNFgVZJ8og 6Lq46BrsTaiXVq5lQ7GPAJtSzVXNUzltYkyLDVt8LkS/gxCP81OCgMNPOsduET/m4xaRhPtthH80 dK2Jp86519efhGSSvpWhrQlTM93uCupKUY5vVau6tZRGrox/2KJQJWVggEbbMwSubLWYdFQl3JPk +ONVFT24bcMKpBLBaYVu32TxU5nhSnUgnZUP5NbcA/FZGOhHibJXWpS2qdgXKxdJ5XbLwVaZOjex /2kskZGT4d9Mozd2TaGf+G0eHdP67Pv0RR0Tbc/3WeUiJ3IrhvNXuzDtJE3cfVa7o7P4NHmJweDy AmH3pvwPuxwXC65B2Xy9J6P9LjrRk5Sxcx0ki69bIImtt2dmefU6xqaWM/5TkshGsRGRxpl/j8nW ZjEgQRCHLQzWwa80mMpkg/sTV9HB8Dx6jKXB/ZUhoHHBk2dxEuqPiAppGWSZI1b7rCoucL5mxAyE 7+WL85MB+GqQk2dLsmijtWKP6T+MejteD+eMuMZ87zf9dOLITzNy4ZQ5bb0Sr74MTnB8G2+NszKT c0QWbej09+CVgI+WXTik9KveCjCHk9hNAHFiRSdLOkKEW39lt2c0Ui2cFmuqqNh7o0JMcccMyj6D 5KbvtwEwXlGjefVwaaZBRA+GsCyRxj3qrg+E -----END CERTIFICATE----- e-Szigno Root CA 2017 ===================== -----BEGIN CERTIFICATE----- MIICQDCCAeWgAwIBAgIMAVRI7yH9l1kN9QQKMAoGCCqGSM49BAMCMHExCzAJBgNVBAYTAkhVMREw DwYDVQQHDAhCdWRhcGVzdDEWMBQGA1UECgwNTWljcm9zZWMgTHRkLjEXMBUGA1UEYQwOVkFUSFUt MjM1ODQ0OTcxHjAcBgNVBAMMFWUtU3ppZ25vIFJvb3QgQ0EgMjAxNzAeFw0xNzA4MjIxMjA3MDZa Fw00MjA4MjIxMjA3MDZaMHExCzAJBgNVBAYTAkhVMREwDwYDVQQHDAhCdWRhcGVzdDEWMBQGA1UE CgwNTWljcm9zZWMgTHRkLjEXMBUGA1UEYQwOVkFUSFUtMjM1ODQ0OTcxHjAcBgNVBAMMFWUtU3pp Z25vIFJvb3QgQ0EgMjAxNzBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABJbcPYrYsHtvxie+RJCx s1YVe45DJH0ahFnuY2iyxl6H0BVIHqiQrb1TotreOpCmYF9oMrWGQd+HWyx7xf58etqjYzBhMA8G A1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMB0GA1UdDgQWBBSHERUI0arBeAyxr87GyZDv vzAEwDAfBgNVHSMEGDAWgBSHERUI0arBeAyxr87GyZDvvzAEwDAKBggqhkjOPQQDAgNJADBGAiEA tVfd14pVCzbhhkT61NlojbjcI4qKDdQvfepz7L9NbKgCIQDLpbQS+ue16M9+k/zzNY9vTlp8tLxO svxyqltZ+efcMQ== -----END CERTIFICATE----- certSIGN Root CA G2 =================== -----BEGIN CERTIFICATE----- MIIFRzCCAy+gAwIBAgIJEQA0tk7GNi02MA0GCSqGSIb3DQEBCwUAMEExCzAJBgNVBAYTAlJPMRQw EgYDVQQKEwtDRVJUU0lHTiBTQTEcMBoGA1UECxMTY2VydFNJR04gUk9PVCBDQSBHMjAeFw0xNzAy MDYwOTI3MzVaFw00MjAyMDYwOTI3MzVaMEExCzAJBgNVBAYTAlJPMRQwEgYDVQQKEwtDRVJUU0lH TiBTQTEcMBoGA1UECxMTY2VydFNJR04gUk9PVCBDQSBHMjCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBAMDFdRmRfUR0dIf+DjuW3NgBFszuY5HnC2/OOwppGnzC46+CjobXXo9X69MhWf05 N0IwvlDqtg+piNguLWkh59E3GE59kdUWX2tbAMI5Qw02hVK5U2UPHULlj88F0+7cDBrZuIt4Imfk abBoxTzkbFpG583H+u/E7Eu9aqSs/cwoUe+StCmrqzWaTOTECMYmzPhpn+Sc8CnTXPnGFiWeI8Mg wT0PPzhAsP6CRDiqWhqKa2NYOLQV07YRaXseVO6MGiKscpc/I1mbySKEwQdPzH/iV8oScLumZfNp dWO9lfsbl83kqK/20U6o2YpxJM02PbyWxPFsqa7lzw1uKA2wDrXKUXt4FMMgL3/7FFXhEZn91Qqh ngLjYl/rNUssuHLoPj1PrCy7Lobio3aP5ZMqz6WryFyNSwb/EkaseMsUBzXgqd+L6a8VTxaJW732 jcZZroiFDsGJ6x9nxUWO/203Nit4ZoORUSs9/1F3dmKh7Gc+PoGD4FapUB8fepmrY7+EF3fxDTvf 95xhszWYijqy7DwaNz9+j5LP2RIUZNoQAhVB/0/E6xyjyfqZ90bp4RjZsbgyLcsUDFDYg2WD7rlc z8sFWkz6GZdr1l0T08JcVLwyc6B49fFtHsufpaafItzRUZ6CeWRgKRM+o/1Pcmqr4tTluCRVLERL iohEnMqE0yo7AgMBAAGjQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMB0GA1Ud DgQWBBSCIS1mxteg4BXrzkwJd8RgnlRuAzANBgkqhkiG9w0BAQsFAAOCAgEAYN4auOfyYILVAzOB ywaK8SJJ6ejqkX/GM15oGQOGO0MBzwdw5AgeZYWR5hEit/UCI46uuR59H35s5r0l1ZUa8gWmr4UC b6741jH/JclKyMeKqdmfS0mbEVeZkkMR3rYzpMzXjWR91M08KCy0mpbqTfXERMQlqiCA2ClV9+BB /AYm/7k29UMUA2Z44RGx2iBfRgB4ACGlHgAoYXhvqAEBj500mv/0OJD7uNGzcgbJceaBxXntC6Z5 8hMLnPddDnskk7RI24Zf3lCGeOdA5jGokHZwYa+cNywRtYK3qq4kNFtyDGkNzVmf9nGvnAvRCjj5 BiKDUyUM/FHE5r7iOZULJK2v0ZXkltd0ZGtxTgI8qoXzIKNDOXZbbFD+mpwUHmUUihW9o4JFWklW atKcsWMy5WHgUyIOpwpJ6st+H6jiYoD2EEVSmAYY3qXNL3+q1Ok+CHLsIwMCPKaq2LxndD0UF/tU Sxfj03k9bWtJySgOLnRQvwzZRjoQhsmnP+mg7H/rpXdYaXHmgwo38oZJar55CJD2AhZkPuXaTH4M NMn5X7azKFGnpyuqSfqNZSlO42sTp5SjLVFteAxEy9/eCG/Oo2Sr05WE1LlSVHJ7liXMvGnjSG4N 0MedJ5qq+BOS3R7fY581qRY27Iy4g/Q9iY/NtBde17MXQRBdJ3NghVdJIgc= -----END CERTIFICATE----- Trustwave Global Certification Authority ======================================== -----BEGIN CERTIFICATE----- MIIF2jCCA8KgAwIBAgIMBfcOhtpJ80Y1LrqyMA0GCSqGSIb3DQEBCwUAMIGIMQswCQYDVQQGEwJV UzERMA8GA1UECAwISWxsaW5vaXMxEDAOBgNVBAcMB0NoaWNhZ28xITAfBgNVBAoMGFRydXN0d2F2 ZSBIb2xkaW5ncywgSW5jLjExMC8GA1UEAwwoVHJ1c3R3YXZlIEdsb2JhbCBDZXJ0aWZpY2F0aW9u IEF1dGhvcml0eTAeFw0xNzA4MjMxOTM0MTJaFw00MjA4MjMxOTM0MTJaMIGIMQswCQYDVQQGEwJV UzERMA8GA1UECAwISWxsaW5vaXMxEDAOBgNVBAcMB0NoaWNhZ28xITAfBgNVBAoMGFRydXN0d2F2 ZSBIb2xkaW5ncywgSW5jLjExMC8GA1UEAwwoVHJ1c3R3YXZlIEdsb2JhbCBDZXJ0aWZpY2F0aW9u IEF1dGhvcml0eTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALldUShLPDeS0YLOvR29 zd24q88KPuFd5dyqCblXAj7mY2Hf8g+CY66j96xz0XznswuvCAAJWX/NKSqIk4cXGIDtiLK0thAf LdZfVaITXdHG6wZWiYj+rDKd/VzDBcdu7oaJuogDnXIhhpCujwOl3J+IKMujkkkP7NAP4m1ET4Bq stTnoApTAbqOl5F2brz81Ws25kCI1nsvXwXoLG0R8+eyvpJETNKXpP7ScoFDB5zpET71ixpZfR9o WN0EACyW80OzfpgZdNmcc9kYvkHHNHnZ9GLCQ7mzJ7Aiy/k9UscwR7PJPrhq4ufogXBeQotPJqX+ OsIgbrv4Fo7NDKm0G2x2EOFYeUY+VM6AqFcJNykbmROPDMjWLBz7BegIlT1lRtzuzWniTY+HKE40 Cz7PFNm73bZQmq131BnW2hqIyE4bJ3XYsgjxroMwuREOzYfwhI0Vcnyh78zyiGG69Gm7DIwLdVcE uE4qFC49DxweMqZiNu5m4iK4BUBjECLzMx10coos9TkpoNPnG4CELcU9402x/RpvumUHO1jsQkUm +9jaJXLE9gCxInm943xZYkqcBW89zubWR2OZxiRvchLIrH+QtAuRcOi35hYQcRfO3gZPSEF9NUqj ifLJS3tBEW1ntwiYTOURGa5CgNz7kAXU+FDKvuStx8KU1xad5hePrzb7AgMBAAGjQjBAMA8GA1Ud EwEB/wQFMAMBAf8wHQYDVR0OBBYEFJngGWcNYtt2s9o9uFvo/ULSMQ6HMA4GA1UdDwEB/wQEAwIB BjANBgkqhkiG9w0BAQsFAAOCAgEAmHNw4rDT7TnsTGDZqRKGFx6W0OhUKDtkLSGm+J1WE2pIPU/H PinbbViDVD2HfSMF1OQc3Og4ZYbFdada2zUFvXfeuyk3QAUHw5RSn8pk3fEbK9xGChACMf1KaA0H ZJDmHvUqoai7PF35owgLEQzxPy0QlG/+4jSHg9bP5Rs1bdID4bANqKCqRieCNqcVtgimQlRXtpla 4gt5kNdXElE1GYhBaCXUNxeEFfsBctyV3lImIJgm4nb1J2/6ADtKYdkNy1GTKv0WBpanI5ojSP5R vbbEsLFUzt5sQa0WZ37b/TjNuThOssFgy50X31ieemKyJo90lZvkWx3SD92YHJtZuSPTMaCm/zjd zyBP6VhWOmfD0faZmZ26NraAL4hHT4a/RDqA5Dccprrql5gR0IRiR2Qequ5AvzSxnI9O4fKSTx+O 856X3vOmeWqJcU9LJxdI/uz0UA9PSX3MReO9ekDFQdxhVicGaeVyQYHTtgGJoC86cnn+OjC/QezH Yj6RS8fZMXZC+fc8Y+wmjHMMfRod6qh8h6jCJ3zhM0EPz8/8AKAigJ5Kp28AsEFFtyLKaEjFQqKu 3R3y4G5OBVixwJAWKqQ9EEC+j2Jjg6mcgn0tAumDMHzLJ8n9HmYAsC7TIS+OMxZsmO0QqAfWzJPP 29FpHOTKyeC2nOnOcXHebD8WpHk= -----END CERTIFICATE----- Trustwave Global ECC P256 Certification Authority ================================================= -----BEGIN CERTIFICATE----- MIICYDCCAgegAwIBAgIMDWpfCD8oXD5Rld9dMAoGCCqGSM49BAMCMIGRMQswCQYDVQQGEwJVUzER MA8GA1UECBMISWxsaW5vaXMxEDAOBgNVBAcTB0NoaWNhZ28xITAfBgNVBAoTGFRydXN0d2F2ZSBI b2xkaW5ncywgSW5jLjE6MDgGA1UEAxMxVHJ1c3R3YXZlIEdsb2JhbCBFQ0MgUDI1NiBDZXJ0aWZp Y2F0aW9uIEF1dGhvcml0eTAeFw0xNzA4MjMxOTM1MTBaFw00MjA4MjMxOTM1MTBaMIGRMQswCQYD VQQGEwJVUzERMA8GA1UECBMISWxsaW5vaXMxEDAOBgNVBAcTB0NoaWNhZ28xITAfBgNVBAoTGFRy dXN0d2F2ZSBIb2xkaW5ncywgSW5jLjE6MDgGA1UEAxMxVHJ1c3R3YXZlIEdsb2JhbCBFQ0MgUDI1 NiBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABH77bOYj 43MyCMpg5lOcunSNGLB4kFKA3TjASh3RqMyTpJcGOMoNFWLGjgEqZZ2q3zSRLoHB5DOSMcT9CTqm P62jQzBBMA8GA1UdEwEB/wQFMAMBAf8wDwYDVR0PAQH/BAUDAwcGADAdBgNVHQ4EFgQUo0EGrJBt 0UrrdaVKEJmzsaGLSvcwCgYIKoZIzj0EAwIDRwAwRAIgB+ZU2g6gWrKuEZ+Hxbb/ad4lvvigtwjz RM4q3wghDDcCIC0mA6AFvWvR9lz4ZcyGbbOcNEhjhAnFjXca4syc4XR7 -----END CERTIFICATE----- Trustwave Global ECC P384 Certification Authority ================================================= -----BEGIN CERTIFICATE----- MIICnTCCAiSgAwIBAgIMCL2Fl2yZJ6SAaEc7MAoGCCqGSM49BAMDMIGRMQswCQYDVQQGEwJVUzER MA8GA1UECBMISWxsaW5vaXMxEDAOBgNVBAcTB0NoaWNhZ28xITAfBgNVBAoTGFRydXN0d2F2ZSBI b2xkaW5ncywgSW5jLjE6MDgGA1UEAxMxVHJ1c3R3YXZlIEdsb2JhbCBFQ0MgUDM4NCBDZXJ0aWZp Y2F0aW9uIEF1dGhvcml0eTAeFw0xNzA4MjMxOTM2NDNaFw00MjA4MjMxOTM2NDNaMIGRMQswCQYD VQQGEwJVUzERMA8GA1UECBMISWxsaW5vaXMxEDAOBgNVBAcTB0NoaWNhZ28xITAfBgNVBAoTGFRy dXN0d2F2ZSBIb2xkaW5ncywgSW5jLjE6MDgGA1UEAxMxVHJ1c3R3YXZlIEdsb2JhbCBFQ0MgUDM4 NCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTB2MBAGByqGSM49AgEGBSuBBAAiA2IABGvaDXU1CDFH Ba5FmVXxERMuSvgQMSOjfoPTfygIOiYaOs+Xgh+AtycJj9GOMMQKmw6sWASr9zZ9lCOkmwqKi6vr /TklZvFe/oyujUF5nQlgziip04pt89ZF1PKYhDhloKNDMEEwDwYDVR0TAQH/BAUwAwEB/zAPBgNV HQ8BAf8EBQMDBwYAMB0GA1UdDgQWBBRVqYSJ0sEyvRjLbKYHTsjnnb6CkDAKBggqhkjOPQQDAwNn ADBkAjA3AZKXRRJ+oPM+rRk6ct30UJMDEr5E0k9BpIycnR+j9sKS50gU/k6bpZFXrsY3crsCMGcl CrEMXu6pY5Jv5ZAL/mYiykf9ijH3g/56vxC+GCsej/YpHpRZ744hN8tRmKVuSw== -----END CERTIFICATE----- NAVER Global Root Certification Authority ========================================= -----BEGIN CERTIFICATE----- MIIFojCCA4qgAwIBAgIUAZQwHqIL3fXFMyqxQ0Rx+NZQTQ0wDQYJKoZIhvcNAQEMBQAwaTELMAkG A1UEBhMCS1IxJjAkBgNVBAoMHU5BVkVSIEJVU0lORVNTIFBMQVRGT1JNIENvcnAuMTIwMAYDVQQD DClOQVZFUiBHbG9iYWwgUm9vdCBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0xNzA4MTgwODU4 NDJaFw0zNzA4MTgyMzU5NTlaMGkxCzAJBgNVBAYTAktSMSYwJAYDVQQKDB1OQVZFUiBCVVNJTkVT UyBQTEFURk9STSBDb3JwLjEyMDAGA1UEAwwpTkFWRVIgR2xvYmFsIFJvb3QgQ2VydGlmaWNhdGlv biBBdXRob3JpdHkwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC21PGTXLVAiQqrDZBb UGOukJR0F0Vy1ntlWilLp1agS7gvQnXp2XskWjFlqxcX0TM62RHcQDaH38dq6SZeWYp34+hInDEW +j6RscrJo+KfziFTowI2MMtSAuXaMl3Dxeb57hHHi8lEHoSTGEq0n+USZGnQJoViAbbJAh2+g1G7 XNr4rRVqmfeSVPc0W+m/6imBEtRTkZazkVrd/pBzKPswRrXKCAfHcXLJZtM0l/aM9BhK4dA9WkW2 aacp+yPOiNgSnABIqKYPszuSjXEOdMWLyEz59JuOuDxp7W87UC9Y7cSw0BwbagzivESq2M0UXZR4 Yb8ObtoqvC8MC3GmsxY/nOb5zJ9TNeIDoKAYv7vxvvTWjIcNQvcGufFt7QSUqP620wbGQGHfnZ3z VHbOUzoBppJB7ASjjw2i1QnK1sua8e9DXcCrpUHPXFNwcMmIpi3Ua2FzUCaGYQ5fG8Ir4ozVu53B A0K6lNpfqbDKzE0K70dpAy8i+/Eozr9dUGWokG2zdLAIx6yo0es+nPxdGoMuK8u180SdOqcXYZai cdNwlhVNt0xz7hlcxVs+Qf6sdWA7G2POAN3aCJBitOUt7kinaxeZVL6HSuOpXgRM6xBtVNbv8ejy YhbLgGvtPe31HzClrkvJE+2KAQHJuFFYwGY6sWZLxNUxAmLpdIQM201GLQIDAQABo0IwQDAdBgNV HQ4EFgQU0p+I36HNLL3s9TsBAZMzJ7LrYEswDgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMB Af8wDQYJKoZIhvcNAQEMBQADggIBADLKgLOdPVQG3dLSLvCkASELZ0jKbY7gyKoNqo0hV4/GPnrK 21HUUrPUloSlWGB/5QuOH/XcChWB5Tu2tyIvCZwTFrFsDDUIbatjcu3cvuzHV+YwIHHW1xDBE1UB jCpD5EHxzzp6U5LOogMFDTjfArsQLtk70pt6wKGm+LUx5vR1yblTmXVHIloUFcd4G7ad6Qz4G3bx hYTeodoS76TiEJd6eN4MUZeoIUCLhr0N8F5OSza7OyAfikJW4Qsav3vQIkMsRIz75Sq0bBwcupTg E34h5prCy8VCZLQelHsIJchxzIdFV4XTnyliIoNRlwAYl3dqmJLJfGBs32x9SuRwTMKeuB330DTH D8z7p/8Dvq1wkNoL3chtl1+afwkyQf3NosxabUzyqkn+Zvjp2DXrDige7kgvOtB5CTh8piKCk5XQ A76+AqAF3SAi428diDRgxuYKuQl1C/AH6GmWNcf7I4GOODm4RStDeKLRLBT/DShycpWbXgnbiUSY qqFJu3FS8r/2/yehNq+4tneI3TqkbZs0kNwUXTC/t+sX5Ie3cdCh13cV1ELX8vMxmV2b3RZtP+oG I/hGoiLtk/bdmuYqh7GYVPEi92tF4+KOdh2ajcQGjTa3FPOdVGm3jjzVpG2Tgbet9r1ke8LJaDmg kpzNNIaRkPpkUZ3+/uul9XXeifdy -----END CERTIFICATE----- AC RAIZ FNMT-RCM SERVIDORES SEGUROS =================================== -----BEGIN CERTIFICATE----- MIICbjCCAfOgAwIBAgIQYvYybOXE42hcG2LdnC6dlTAKBggqhkjOPQQDAzB4MQswCQYDVQQGEwJF UzERMA8GA1UECgwIRk5NVC1SQ00xDjAMBgNVBAsMBUNlcmVzMRgwFgYDVQRhDA9WQVRFUy1RMjgy NjAwNEoxLDAqBgNVBAMMI0FDIFJBSVogRk5NVC1SQ00gU0VSVklET1JFUyBTRUdVUk9TMB4XDTE4 MTIyMDA5MzczM1oXDTQzMTIyMDA5MzczM1oweDELMAkGA1UEBhMCRVMxETAPBgNVBAoMCEZOTVQt UkNNMQ4wDAYDVQQLDAVDZXJlczEYMBYGA1UEYQwPVkFURVMtUTI4MjYwMDRKMSwwKgYDVQQDDCNB QyBSQUlaIEZOTVQtUkNNIFNFUlZJRE9SRVMgU0VHVVJPUzB2MBAGByqGSM49AgEGBSuBBAAiA2IA BPa6V1PIyqvfNkpSIeSX0oNnnvBlUdBeh8dHsVnyV0ebAAKTRBdp20LHsbI6GA60XYyzZl2hNPk2 LEnb80b8s0RpRBNm/dfF/a82Tc4DTQdxz69qBdKiQ1oKUm8BA06Oi6NCMEAwDwYDVR0TAQH/BAUw AwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFAG5L++/EYZg8k/QQW6rcx/n0m5JMAoGCCqG SM49BAMDA2kAMGYCMQCuSuMrQMN0EfKVrRYj3k4MGuZdpSRea0R7/DjiT8ucRRcRTBQnJlU5dUoD zBOQn5ICMQD6SmxgiHPz7riYYqnOK8LZiqZwMR2vsJRM60/G49HzYqc8/5MuB1xJAWdpEgJyv+c= -----END CERTIFICATE----- GlobalSign Root R46 =================== -----BEGIN CERTIFICATE----- MIIFWjCCA0KgAwIBAgISEdK7udcjGJ5AXwqdLdDfJWfRMA0GCSqGSIb3DQEBDAUAMEYxCzAJBgNV BAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMRwwGgYDVQQDExNHbG9iYWxTaWduIFJv b3QgUjQ2MB4XDTE5MDMyMDAwMDAwMFoXDTQ2MDMyMDAwMDAwMFowRjELMAkGA1UEBhMCQkUxGTAX BgNVBAoTEEdsb2JhbFNpZ24gbnYtc2ExHDAaBgNVBAMTE0dsb2JhbFNpZ24gUm9vdCBSNDYwggIi MA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCsrHQy6LNl5brtQyYdpokNRbopiLKkHWPd08Es CVeJOaFV6Wc0dwxu5FUdUiXSE2te4R2pt32JMl8Nnp8semNgQB+msLZ4j5lUlghYruQGvGIFAha/ r6gjA7aUD7xubMLL1aa7DOn2wQL7Id5m3RerdELv8HQvJfTqa1VbkNud316HCkD7rRlr+/fKYIje 2sGP1q7Vf9Q8g+7XFkyDRTNrJ9CG0Bwta/OrffGFqfUo0q3v84RLHIf8E6M6cqJaESvWJ3En7YEt bWaBkoe0G1h6zD8K+kZPTXhc+CtI4wSEy132tGqzZfxCnlEmIyDLPRT5ge1lFgBPGmSXZgjPjHvj K8Cd+RTyG/FWaha/LIWFzXg4mutCagI0GIMXTpRW+LaCtfOW3T3zvn8gdz57GSNrLNRyc0NXfeD4 12lPFzYE+cCQYDdF3uYM2HSNrpyibXRdQr4G9dlkbgIQrImwTDsHTUB+JMWKmIJ5jqSngiCNI/on ccnfxkF0oE32kRbcRoxfKWMxWXEM2G/CtjJ9++ZdU6Z+Ffy7dXxd7Pj2Fxzsx2sZy/N78CsHpdls eVR2bJ0cpm4O6XkMqCNqo98bMDGfsVR7/mrLZqrcZdCinkqaByFrgY/bxFn63iLABJzjqls2k+g9 vXqhnQt2sQvHnf3PmKgGwvgqo6GDoLclcqUC4wIDAQABo0IwQDAOBgNVHQ8BAf8EBAMCAYYwDwYD VR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUA1yrc4GHqMywptWU4jaWSf8FmSwwDQYJKoZIhvcNAQEM BQADggIBAHx47PYCLLtbfpIrXTncvtgdokIzTfnvpCo7RGkerNlFo048p9gkUbJUHJNOxO97k4Vg JuoJSOD1u8fpaNK7ajFxzHmuEajwmf3lH7wvqMxX63bEIaZHU1VNaL8FpO7XJqti2kM3S+LGteWy gxk6x9PbTZ4IevPuzz5i+6zoYMzRx6Fcg0XERczzF2sUyQQCPtIkpnnpHs6i58FZFZ8d4kuaPp92 CC1r2LpXFNqD6v6MVenQTqnMdzGxRBF6XLE+0xRFFRhiJBPSy03OXIPBNvIQtQ6IbbjhVp+J3pZm OUdkLG5NrmJ7v2B0GbhWrJKsFjLtrWhV/pi60zTe9Mlhww6G9kuEYO4Ne7UyWHmRVSyBQ7N0H3qq JZ4d16GLuc1CLgSkZoNNiTW2bKg2SnkheCLQQrzRQDGQob4Ez8pn7fXwgNNgyYMqIgXQBztSvwye qiv5u+YfjyW6hY0XHgL+XVAEV8/+LbzvXMAaq7afJMbfc2hIkCwU9D9SGuTSyxTDYWnP4vkYxboz nxSjBF25cfe1lNj2M8FawTSLfJvdkzrnE6JwYZ+vj+vYxXX4M2bUdGc6N3ec592kD3ZDZopD8p/7 DEJ4Y9HiD2971KE9dJeFt0g5QdYg/NA6s/rob8SKunE3vouXsXgxT7PntgMTzlSdriVZzH81Xwj3 QEUxeCp6 -----END CERTIFICATE----- GlobalSign Root E46 =================== -----BEGIN CERTIFICATE----- MIICCzCCAZGgAwIBAgISEdK7ujNu1LzmJGjFDYQdmOhDMAoGCCqGSM49BAMDMEYxCzAJBgNVBAYT AkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMRwwGgYDVQQDExNHbG9iYWxTaWduIFJvb3Qg RTQ2MB4XDTE5MDMyMDAwMDAwMFoXDTQ2MDMyMDAwMDAwMFowRjELMAkGA1UEBhMCQkUxGTAXBgNV BAoTEEdsb2JhbFNpZ24gbnYtc2ExHDAaBgNVBAMTE0dsb2JhbFNpZ24gUm9vdCBFNDYwdjAQBgcq hkjOPQIBBgUrgQQAIgNiAAScDrHPt+ieUnd1NPqlRqetMhkytAepJ8qUuwzSChDH2omwlwxwEwkB jtjqR+q+soArzfwoDdusvKSGN+1wCAB16pMLey5SnCNoIwZD7JIvU4Tb+0cUB+hflGddyXqBPCCj QjBAMA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBQxCpCPtsad0kRL gLWi5h+xEk8blTAKBggqhkjOPQQDAwNoADBlAjEA31SQ7Zvvi5QCkxeCmb6zniz2C5GMn0oUsfZk vLtoURMMA/cVi4RguYv/Uo7njLwcAjA8+RHUjE7AwWHCFUyqqx0LMV87HOIAl0Qx5v5zli/altP+ CAezNIm8BZ/3Hobui3A= -----END CERTIFICATE----- GLOBALTRUST 2020 ================ -----BEGIN CERTIFICATE----- MIIFgjCCA2qgAwIBAgILWku9WvtPilv6ZeUwDQYJKoZIhvcNAQELBQAwTTELMAkGA1UEBhMCQVQx IzAhBgNVBAoTGmUtY29tbWVyY2UgbW9uaXRvcmluZyBHbWJIMRkwFwYDVQQDExBHTE9CQUxUUlVT VCAyMDIwMB4XDTIwMDIxMDAwMDAwMFoXDTQwMDYxMDAwMDAwMFowTTELMAkGA1UEBhMCQVQxIzAh BgNVBAoTGmUtY29tbWVyY2UgbW9uaXRvcmluZyBHbWJIMRkwFwYDVQQDExBHTE9CQUxUUlVTVCAy MDIwMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAri5WrRsc7/aVj6B3GyvTY4+ETUWi D59bRatZe1E0+eyLinjF3WuvvcTfk0Uev5E4C64OFudBc/jbu9G4UeDLgztzOG53ig9ZYybNpyrO VPu44sB8R85gfD+yc/LAGbaKkoc1DZAoouQVBGM+uq/ufF7MpotQsjj3QWPKzv9pj2gOlTblzLmM CcpL3TGQlsjMH/1WljTbjhzqLL6FLmPdqqmV0/0plRPwyJiT2S0WR5ARg6I6IqIoV6Lr/sCMKKCm fecqQjuCgGOlYx8ZzHyyZqjC0203b+J+BlHZRYQfEs4kUmSFC0iAToexIiIwquuuvuAC4EDosEKA A1GqtH6qRNdDYfOiaxaJSaSjpCuKAsR49GiKweR6NrFvG5Ybd0mN1MkGco/PU+PcF4UgStyYJ9OR JitHHmkHr96i5OTUawuzXnzUJIBHKWk7buis/UDr2O1xcSvy6Fgd60GXIsUf1DnQJ4+H4xj04KlG DfV0OoIu0G4skaMxXDtG6nsEEFZegB31pWXogvziB4xiRfUg3kZwhqG8k9MedKZssCz3AwyIDMvU clOGvGBG85hqwvG/Q/lwIHfKN0F5VVJjjVsSn8VoxIidrPIwq7ejMZdnrY8XD2zHc+0klGvIg5rQ mjdJBKuxFshsSUktq6HQjJLyQUp5ISXbY9e2nKd+Qmn7OmMCAwEAAaNjMGEwDwYDVR0TAQH/BAUw AwEB/zAOBgNVHQ8BAf8EBAMCAQYwHQYDVR0OBBYEFNwuH9FhN3nkq9XVsxJxaD1qaJwiMB8GA1Ud IwQYMBaAFNwuH9FhN3nkq9XVsxJxaD1qaJwiMA0GCSqGSIb3DQEBCwUAA4ICAQCR8EICaEDuw2jA VC/f7GLDw56KoDEoqoOOpFaWEhCGVrqXctJUMHytGdUdaG/7FELYjQ7ztdGl4wJCXtzoRlgHNQIw 4Lx0SsFDKv/bGtCwr2zD/cuz9X9tAy5ZVp0tLTWMstZDFyySCstd6IwPS3BD0IL/qMy/pJTAvoe9 iuOTe8aPmxadJ2W8esVCgmxcB9CpwYhgROmYhRZf+I/KARDOJcP5YBugxZfD0yyIMaK9MOzQ0MAS 8cE54+X1+NZK3TTN+2/BT+MAi1bikvcoskJ3ciNnxz8RFbLEAwW+uxF7Cr+obuf/WEPPm2eggAe2 HcqtbepBEX4tdJP7wry+UUTF72glJ4DjyKDUEuzZpTcdN3y0kcra1LGWge9oXHYQSa9+pTeAsRxS vTOBTI/53WXZFM2KJVj04sWDpQmQ1GwUY7VA3+vA/MRYfg0UFodUJ25W5HCEuGwyEn6CMUO+1918 oa2u1qsgEu8KwxCMSZY13At1XrFP1U80DhEgB3VDRemjEdqso5nCtnkn4rnvyOL2NSl6dPrFf4IF YqYK6miyeUcGbvJXqBUzxvd4Sj1Ce2t+/vdG6tHrju+IaFvowdlxfv1k7/9nR4hYJS8+hge9+6jl gqispdNpQ80xiEmEU5LAsTkbOYMBMMTyqfrQA71yN2BWHzZ8vTmR9W0Nv3vXkg== -----END CERTIFICATE----- ANF Secure Server Root CA ========================= -----BEGIN CERTIFICATE----- MIIF7zCCA9egAwIBAgIIDdPjvGz5a7EwDQYJKoZIhvcNAQELBQAwgYQxEjAQBgNVBAUTCUc2MzI4 NzUxMDELMAkGA1UEBhMCRVMxJzAlBgNVBAoTHkFORiBBdXRvcmlkYWQgZGUgQ2VydGlmaWNhY2lv bjEUMBIGA1UECxMLQU5GIENBIFJhaXoxIjAgBgNVBAMTGUFORiBTZWN1cmUgU2VydmVyIFJvb3Qg Q0EwHhcNMTkwOTA0MTAwMDM4WhcNMzkwODMwMTAwMDM4WjCBhDESMBAGA1UEBRMJRzYzMjg3NTEw MQswCQYDVQQGEwJFUzEnMCUGA1UEChMeQU5GIEF1dG9yaWRhZCBkZSBDZXJ0aWZpY2FjaW9uMRQw EgYDVQQLEwtBTkYgQ0EgUmFpejEiMCAGA1UEAxMZQU5GIFNlY3VyZSBTZXJ2ZXIgUm9vdCBDQTCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANvrayvmZFSVgpCjcqQZAZ2cC4Ffc0m6p6zz BE57lgvsEeBbphzOG9INgxwruJ4dfkUyYA8H6XdYfp9qyGFOtibBTI3/TO80sh9l2Ll49a2pcbnv T1gdpd50IJeh7WhM3pIXS7yr/2WanvtH2Vdy8wmhrnZEE26cLUQ5vPnHO6RYPUG9tMJJo8gN0pcv B2VSAKduyK9o7PQUlrZXH1bDOZ8rbeTzPvY1ZNoMHKGESy9LS+IsJJ1tk0DrtSOOMspvRdOoiXse zx76W0OLzc2oD2rKDF65nkeP8Nm2CgtYZRczuSPkdxl9y0oukntPLxB3sY0vaJxizOBQ+OyRp1RM VwnVdmPF6GUe7m1qzwmd+nxPrWAI/VaZDxUse6mAq4xhj0oHdkLePfTdsiQzW7i1o0TJrH93PB0j 7IKppuLIBkwC/qxcmZkLLxCKpvR/1Yd0DVlJRfbwcVw5Kda/SiOL9V8BY9KHcyi1Swr1+KuCLH5z JTIdC2MKF4EA/7Z2Xue0sUDKIbvVgFHlSFJnLNJhiQcND85Cd8BEc5xEUKDbEAotlRyBr+Qc5RQe 8TZBAQIvfXOn3kLMTOmJDVb3n5HUA8ZsyY/b2BzgQJhdZpmYgG4t/wHFzstGH6wCxkPmrqKEPMVO Hj1tyRRM4y5Bu8o5vzY8KhmqQYdOpc5LMnndkEl/AgMBAAGjYzBhMB8GA1UdIwQYMBaAFJxf0Gxj o1+TypOYCK2Mh6UsXME3MB0GA1UdDgQWBBScX9BsY6Nfk8qTmAitjIelLFzBNzAOBgNVHQ8BAf8E BAMCAYYwDwYDVR0TAQH/BAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAgEATh65isagmD9uw2nAalxJ UqzLK114OMHVVISfk/CHGT0sZonrDUL8zPB1hT+L9IBdeeUXZ701guLyPI59WzbLWoAAKfLOKyzx j6ptBZNscsdW699QIyjlRRA96Gejrw5VD5AJYu9LWaL2U/HANeQvwSS9eS9OICI7/RogsKQOLHDt dD+4E5UGUcjohybKpFtqFiGS3XNgnhAY3jyB6ugYw3yJ8otQPr0R4hUDqDZ9MwFsSBXXiJCZBMXM 5gf0vPSQ7RPi6ovDj6MzD8EpTBNO2hVWcXNyglD2mjN8orGoGjR0ZVzO0eurU+AagNjqOknkJjCb 5RyKqKkVMoaZkgoQI1YS4PbOTOK7vtuNknMBZi9iPrJyJ0U27U1W45eZ/zo1PqVUSlJZS2Db7v54 EX9K3BR5YLZrZAPbFYPhor72I5dQ8AkzNqdxliXzuUJ92zg/LFis6ELhDtjTO0wugumDLmsx2d1H hk9tl5EuT+IocTUW0fJz/iUrB0ckYyfI+PbZa/wSMVYIwFNCr5zQM378BvAxRAMU8Vjq8moNqRGy g77FGr8H6lnco4g175x2MjxNBiLOFeXdntiP2t7SxDnlF4HPOEfrf4htWRvfn0IUrn7PqLBmZdo3 r5+qPeoott7VMVgWglvquxl1AnMaykgaIZOQCo6ThKd9OyMYkomgjaw= -----END CERTIFICATE----- Certum EC-384 CA ================ -----BEGIN CERTIFICATE----- MIICZTCCAeugAwIBAgIQeI8nXIESUiClBNAt3bpz9DAKBggqhkjOPQQDAzB0MQswCQYDVQQGEwJQ TDEhMB8GA1UEChMYQXNzZWNvIERhdGEgU3lzdGVtcyBTLkEuMScwJQYDVQQLEx5DZXJ0dW0gQ2Vy dGlmaWNhdGlvbiBBdXRob3JpdHkxGTAXBgNVBAMTEENlcnR1bSBFQy0zODQgQ0EwHhcNMTgwMzI2 MDcyNDU0WhcNNDMwMzI2MDcyNDU0WjB0MQswCQYDVQQGEwJQTDEhMB8GA1UEChMYQXNzZWNvIERh dGEgU3lzdGVtcyBTLkEuMScwJQYDVQQLEx5DZXJ0dW0gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkx GTAXBgNVBAMTEENlcnR1bSBFQy0zODQgQ0EwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAATEKI6rGFtq vm5kN2PkzeyrOvfMobgOgknXhimfoZTy42B4mIF4Bk3y7JoOV2CDn7TmFy8as10CW4kjPMIRBSqn iBMY81CE1700LCeJVf/OTOffph8oxPBUw7l8t1Ot68KjQjBAMA8GA1UdEwEB/wQFMAMBAf8wHQYD VR0OBBYEFI0GZnQkdjrzife81r1HfS+8EF9LMA4GA1UdDwEB/wQEAwIBBjAKBggqhkjOPQQDAwNo ADBlAjADVS2m5hjEfO/JUG7BJw+ch69u1RsIGL2SKcHvlJF40jocVYli5RsJHrpka/F2tNQCMQC0 QoSZ/6vnnvuRlydd3LBbMHHOXjgaatkl5+r3YZJW+OraNsKHZZYuciUvf9/DE8k= -----END CERTIFICATE----- Certum Trusted Root CA ====================== -----BEGIN CERTIFICATE----- MIIFwDCCA6igAwIBAgIQHr9ZULjJgDdMBvfrVU+17TANBgkqhkiG9w0BAQ0FADB6MQswCQYDVQQG EwJQTDEhMB8GA1UEChMYQXNzZWNvIERhdGEgU3lzdGVtcyBTLkEuMScwJQYDVQQLEx5DZXJ0dW0g Q2VydGlmaWNhdGlvbiBBdXRob3JpdHkxHzAdBgNVBAMTFkNlcnR1bSBUcnVzdGVkIFJvb3QgQ0Ew HhcNMTgwMzE2MTIxMDEzWhcNNDMwMzE2MTIxMDEzWjB6MQswCQYDVQQGEwJQTDEhMB8GA1UEChMY QXNzZWNvIERhdGEgU3lzdGVtcyBTLkEuMScwJQYDVQQLEx5DZXJ0dW0gQ2VydGlmaWNhdGlvbiBB dXRob3JpdHkxHzAdBgNVBAMTFkNlcnR1bSBUcnVzdGVkIFJvb3QgQ0EwggIiMA0GCSqGSIb3DQEB AQUAA4ICDwAwggIKAoICAQDRLY67tzbqbTeRn06TpwXkKQMlzhyC93yZn0EGze2jusDbCSzBfN8p fktlL5On1AFrAygYo9idBcEq2EXxkd7fO9CAAozPOA/qp1x4EaTByIVcJdPTsuclzxFUl6s1wB52 HO8AU5853BSlLCIls3Jy/I2z5T4IHhQqNwuIPMqw9MjCoa68wb4pZ1Xi/K1ZXP69VyywkI3C7Te2 fJmItdUDmj0VDT06qKhF8JVOJVkdzZhpu9PMMsmN74H+rX2Ju7pgE8pllWeg8xn2A1bUatMn4qGt g/BKEiJ3HAVz4hlxQsDsdUaakFjgao4rpUYwBI4Zshfjvqm6f1bxJAPXsiEodg42MEx51UGamqi4 NboMOvJEGyCI98Ul1z3G4z5D3Yf+xOr1Uz5MZf87Sst4WmsXXw3Hw09Omiqi7VdNIuJGmj8PkTQk fVXjjJU30xrwCSss0smNtA0Aq2cpKNgB9RkEth2+dv5yXMSFytKAQd8FqKPVhJBPC/PgP5sZ0jeJ P/J7UhyM9uH3PAeXjA6iWYEMspA90+NZRu0PqafegGtaqge2Gcu8V/OXIXoMsSt0Puvap2ctTMSY njYJdmZm/Bo/6khUHL4wvYBQv3y1zgD2DGHZ5yQD4OMBgQ692IU0iL2yNqh7XAjlRICMb/gv1SHK HRzQ+8S1h9E6Tsd2tTVItQIDAQABo0IwQDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSM+xx1 vALTn04uSNn5YFSqxLNP+jAOBgNVHQ8BAf8EBAMCAQYwDQYJKoZIhvcNAQENBQADggIBAEii1QAL LtA/vBzVtVRJHlpr9OTy4EA34MwUe7nJ+jW1dReTagVphZzNTxl4WxmB82M+w85bj/UvXgF2Ez8s ALnNllI5SW0ETsXpD4YN4fqzX4IS8TrOZgYkNCvozMrnadyHncI013nR03e4qllY/p0m+jiGPp2K h2RX5Rc64vmNueMzeMGQ2Ljdt4NR5MTMI9UGfOZR0800McD2RrsLrfw9EAUqO0qRJe6M1ISHgCq8 CYyqOhNf6DR5UMEQGfnTKB7U0VEwKbOukGfWHwpjscWpxkIxYxeU72nLL/qMFH3EQxiJ2fAyQOaA 4kZf5ePBAFmo+eggvIksDkc0C+pXwlM2/KfUrzHN/gLldfq5Jwn58/U7yn2fqSLLiMmq0Uc9Nneo WWRrJ8/vJ8HjJLWG965+Mk2weWjROeiQWMODvA8s1pfrzgzhIMfatz7DP78v3DSk+yshzWePS/Tj 6tQ/50+6uaWTRRxmHyH6ZF5v4HaUMst19W7l9o/HuKTMqJZ9ZPskWkoDbGs4xugDQ5r3V7mzKWmT OPQD8rv7gmsHINFSH5pkAnuYZttcTVoP0ISVoDwUQwbKytu4QTbaakRnh6+v40URFWkIsr4WOZck bxJF0WddCajJFdr60qZfE2Efv4WstK2tBZQIgx51F9NxO5NQI1mg7TyRVJ12AMXDuDjb -----END CERTIFICATE----- TunTrust Root CA ================ -----BEGIN CERTIFICATE----- MIIFszCCA5ugAwIBAgIUEwLV4kBMkkaGFmddtLu7sms+/BMwDQYJKoZIhvcNAQELBQAwYTELMAkG A1UEBhMCVE4xNzA1BgNVBAoMLkFnZW5jZSBOYXRpb25hbGUgZGUgQ2VydGlmaWNhdGlvbiBFbGVj dHJvbmlxdWUxGTAXBgNVBAMMEFR1blRydXN0IFJvb3QgQ0EwHhcNMTkwNDI2MDg1NzU2WhcNNDQw NDI2MDg1NzU2WjBhMQswCQYDVQQGEwJUTjE3MDUGA1UECgwuQWdlbmNlIE5hdGlvbmFsZSBkZSBD ZXJ0aWZpY2F0aW9uIEVsZWN0cm9uaXF1ZTEZMBcGA1UEAwwQVHVuVHJ1c3QgUm9vdCBDQTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMPN0/y9BFPdDCA61YguBUtB9YOCfvdZn56eY+hz 2vYGqU8ftPkLHzmMmiDQfgbU7DTZhrx1W4eI8NLZ1KMKsmwb60ksPqxd2JQDoOw05TDENX37Jk0b bjBU2PWARZw5rZzJJQRNmpA+TkBuimvNKWfGzC3gdOgFVwpIUPp6Q9p+7FuaDmJ2/uqdHYVy7BG7 NegfJ7/Boce7SBbdVtfMTqDhuazb1YMZGoXRlJfXyqNlC/M4+QKu3fZnz8k/9YosRxqZbwUN/dAd gjH8KcwAWJeRTIAAHDOFli/LQcKLEITDCSSJH7UP2dl3RxiSlGBcx5kDPP73lad9UKGAwqmDrViW VSHbhlnUr8a83YFuB9tgYv7sEG7aaAH0gxupPqJbI9dkxt/con3YS7qC0lH4Zr8GRuR5KiY2eY8f Tpkdso8MDhz/yV3A/ZAQprE38806JG60hZC/gLkMjNWb1sjxVj8agIl6qeIbMlEsPvLfe/ZdeikZ juXIvTZxi11Mwh0/rViizz1wTaZQmCXcI/m4WEEIcb9PuISgjwBUFfyRbVinljvrS5YnzWuioYas DXxU5mZMZl+QviGaAkYt5IPCgLnPSz7ofzwB7I9ezX/SKEIBlYrilz0QIX32nRzFNKHsLA4KUiwS VXAkPcvCFDVDXSdOvsC9qnyW5/yeYa1E0wCXAgMBAAGjYzBhMB0GA1UdDgQWBBQGmpsfU33x9aTI 04Y+oXNZtPdEITAPBgNVHRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFAaamx9TffH1pMjThj6hc1m0 90QhMA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQsFAAOCAgEAqgVutt0Vyb+zxiD2BkewhpMl 0425yAA/l/VSJ4hxyXT968pk21vvHl26v9Hr7lxpuhbI87mP0zYuQEkHDVneixCwSQXi/5E/S7fd Ao74gShczNxtr18UnH1YeA32gAm56Q6XKRm4t+v4FstVEuTGfbvE7Pi1HE4+Z7/FXxttbUcoqgRY YdZ2vyJ/0Adqp2RT8JeNnYA/u8EH22Wv5psymsNUk8QcCMNE+3tjEUPRahphanltkE8pjkcFwRJp adbGNjHh/PqAulxPxOu3Mqz4dWEX1xAZufHSCe96Qp1bWgvUxpVOKs7/B9dPfhgGiPEZtdmYu65x xBzndFlY7wyJz4sfdZMaBBSSSFCp61cpABbjNhzI+L/wM9VBD8TMPN3pM0MBkRArHtG5Xc0yGYuP jCB31yLEQtyEFpslbei0VXF/sHyz03FJuc9SpAQ/3D2gu68zngowYI7bnV2UqL1g52KAdoGDDIzM MEZJ4gzSqK/rYXHv5yJiqfdcZGyfFoxnNidF9Ql7v/YQCvGwjVRDjAS6oz/v4jXH+XTgbzRB0L9z ZVcg+ZtnemZoJE6AZb0QmQZZ8mWvuMZHu/2QeItBcy6vVR/cO5JyboTT0GFMDcx2V+IthSIVNg3r AZ3r2OvEhJn7wAzMMujjd9qDRIueVSjAi1jTkD5OGwDxFa2DK5o= -----END CERTIFICATE----- HARICA TLS RSA Root CA 2021 =========================== -----BEGIN CERTIFICATE----- MIIFpDCCA4ygAwIBAgIQOcqTHO9D88aOk8f0ZIk4fjANBgkqhkiG9w0BAQsFADBsMQswCQYDVQQG EwJHUjE3MDUGA1UECgwuSGVsbGVuaWMgQWNhZGVtaWMgYW5kIFJlc2VhcmNoIEluc3RpdHV0aW9u cyBDQTEkMCIGA1UEAwwbSEFSSUNBIFRMUyBSU0EgUm9vdCBDQSAyMDIxMB4XDTIxMDIxOTEwNTUz OFoXDTQ1MDIxMzEwNTUzN1owbDELMAkGA1UEBhMCR1IxNzA1BgNVBAoMLkhlbGxlbmljIEFjYWRl bWljIGFuZCBSZXNlYXJjaCBJbnN0aXR1dGlvbnMgQ0ExJDAiBgNVBAMMG0hBUklDQSBUTFMgUlNB IFJvb3QgQ0EgMjAyMTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAIvC569lmwVnlskN JLnQDmT8zuIkGCyEf3dRywQRNrhe7Wlxp57kJQmXZ8FHws+RFjZiPTgE4VGC/6zStGndLuwRo0Xu a2s7TL+MjaQenRG56Tj5eg4MmOIjHdFOY9TnuEFE+2uva9of08WRiFukiZLRgeaMOVig1mlDqa2Y Ulhu2wr7a89o+uOkXjpFc5gH6l8Cct4MpbOfrqkdtx2z/IpZ525yZa31MJQjB/OCFks1mJxTuy/K 5FrZx40d/JiZ+yykgmvwKh+OC19xXFyuQnspiYHLA6OZyoieC0AJQTPb5lh6/a6ZcMBaD9YThnEv dmn8kN3bLW7R8pv1GmuebxWMevBLKKAiOIAkbDakO/IwkfN4E8/BPzWr8R0RI7VDIp4BkrcYAuUR 0YLbFQDMYTfBKnya4dC6s1BG7oKsnTH4+yPiAwBIcKMJJnkVU2DzOFytOOqBAGMUuTNe3QvboEUH GjMJ+E20pwKmafTCWQWIZYVWrkvL4N48fS0ayOn7H6NhStYqE613TBoYm5EPWNgGVMWX+Ko/IIqm haZ39qb8HOLubpQzKoNQhArlT4b4UEV4AIHrW2jjJo3Me1xR9BQsQL4aYB16cmEdH2MtiKrOokWQ CPxrvrNQKlr9qEgYRtaQQJKQCoReaDH46+0N0x3GfZkYVVYnZS6NRcUk7M7jAgMBAAGjQjBAMA8G A1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFApII6ZgpJIKM+qTW8VX6iVNvRLuMA4GA1UdDwEB/wQE AwIBhjANBgkqhkiG9w0BAQsFAAOCAgEAPpBIqm5iFSVmewzVjIuJndftTgfvnNAUX15QvWiWkKQU EapobQk1OUAJ2vQJLDSle1mESSmXdMgHHkdt8s4cUCbjnj1AUz/3f5Z2EMVGpdAgS1D0NTsY9FVq QRtHBmg8uwkIYtlfVUKqrFOFrJVWNlar5AWMxajaH6NpvVMPxP/cyuN+8kyIhkdGGvMA9YCRotxD QpSbIPDRzbLrLFPCU3hKTwSUQZqPJzLB5UkZv/HywouoCjkxKLR9YjYsTewfM7Z+d21+UPCfDtcR j88YxeMn/ibvBZ3PzzfF0HvaO7AWhAw6k9a+F9sPPg4ZeAnHqQJyIkv3N3a6dcSFA1pj1bF1BcK5 vZStjBWZp5N99sXzqnTPBIWUmAD04vnKJGW/4GKvyMX6ssmeVkjaef2WdhW+o45WxLM0/L5H9MG0 qPzVMIho7suuyWPEdr6sOBjhXlzPrjoiUevRi7PzKzMHVIf6tLITe7pTBGIBnfHAT+7hOtSLIBD6 Alfm78ELt5BGnBkpjNxvoEppaZS3JGWg/6w/zgH7IS79aPib8qXPMThcFarmlwDB31qlpzmq6YR/ PFGoOtmUW4y/Twhx5duoXNTSpv4Ao8YWxw/ogM4cKGR0GQjTQuPOAF1/sdwTsOEFy9EgqoZ0njnn kf3/W9b3raYvAwtt41dU63ZTGI0RmLo= -----END CERTIFICATE----- HARICA TLS ECC Root CA 2021 =========================== -----BEGIN CERTIFICATE----- MIICVDCCAdugAwIBAgIQZ3SdjXfYO2rbIvT/WeK/zjAKBggqhkjOPQQDAzBsMQswCQYDVQQGEwJH UjE3MDUGA1UECgwuSGVsbGVuaWMgQWNhZGVtaWMgYW5kIFJlc2VhcmNoIEluc3RpdHV0aW9ucyBD QTEkMCIGA1UEAwwbSEFSSUNBIFRMUyBFQ0MgUm9vdCBDQSAyMDIxMB4XDTIxMDIxOTExMDExMFoX DTQ1MDIxMzExMDEwOVowbDELMAkGA1UEBhMCR1IxNzA1BgNVBAoMLkhlbGxlbmljIEFjYWRlbWlj IGFuZCBSZXNlYXJjaCBJbnN0aXR1dGlvbnMgQ0ExJDAiBgNVBAMMG0hBUklDQSBUTFMgRUNDIFJv b3QgQ0EgMjAyMTB2MBAGByqGSM49AgEGBSuBBAAiA2IABDgI/rGgltJ6rK9JOtDA4MM7KKrxcm1l AEeIhPyaJmuqS7psBAqIXhfyVYf8MLA04jRYVxqEU+kw2anylnTDUR9YSTHMmE5gEYd103KUkE+b ECUqqHgtvpBBWJAVcqeht6NCMEAwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUyRtTgRL+BNUW 0aq8mm+3oJUZbsowDgYDVR0PAQH/BAQDAgGGMAoGCCqGSM49BAMDA2cAMGQCMBHervjcToiwqfAi rcJRQO9gcS3ujwLEXQNwSaSS6sUUiHCm0w2wqsosQJz76YJumgIwK0eaB8bRwoF8yguWGEEbo/Qw CZ61IygNnxS2PFOiTAZpffpskcYqSUXm7LcT4Tps -----END CERTIFICATE----- Autoridad de Certificacion Firmaprofesional CIF A62634068 ========================================================= -----BEGIN CERTIFICATE----- MIIGFDCCA/ygAwIBAgIIG3Dp0v+ubHEwDQYJKoZIhvcNAQELBQAwUTELMAkGA1UEBhMCRVMxQjBA BgNVBAMMOUF1dG9yaWRhZCBkZSBDZXJ0aWZpY2FjaW9uIEZpcm1hcHJvZmVzaW9uYWwgQ0lGIEE2 MjYzNDA2ODAeFw0xNDA5MjMxNTIyMDdaFw0zNjA1MDUxNTIyMDdaMFExCzAJBgNVBAYTAkVTMUIw QAYDVQQDDDlBdXRvcmlkYWQgZGUgQ2VydGlmaWNhY2lvbiBGaXJtYXByb2Zlc2lvbmFsIENJRiBB NjI2MzQwNjgwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDKlmuO6vj78aI14H9M2uDD Utd9thDIAl6zQyrET2qyyhxdKJp4ERppWVevtSBC5IsP5t9bpgOSL/UR5GLXMnE42QQMcas9UX4P B99jBVzpv5RvwSmCwLTaUbDBPLutN0pcyvFLNg4kq7/DhHf9qFD0sefGL9ItWY16Ck6WaVICqjaY 7Pz6FIMMNx/Jkjd/14Et5cS54D40/mf0PmbR0/RAz15iNA9wBj4gGFrO93IbJWyTdBSTo3OxDqqH ECNZXyAFGUftaI6SEspd/NYrspI8IM/hX68gvqB2f3bl7BqGYTM+53u0P6APjqK5am+5hyZvQWyI plD9amML9ZMWGxmPsu2bm8mQ9QEM3xk9Dz44I8kvjwzRAv4bVdZO0I08r0+k8/6vKtMFnXkIoctX MbScyJCyZ/QYFpM6/EfY0XiWMR+6KwxfXZmtY4laJCB22N/9q06mIqqdXuYnin1oKaPnirjaEbsX LZmdEyRG98Xi2J+Of8ePdG1asuhy9azuJBCtLxTa/y2aRnFHvkLfuwHb9H/TKI8xWVvTyQKmtFLK bpf7Q8UIJm+K9Lv9nyiqDdVF8xM6HdjAeI9BZzwelGSuewvF6NkBiDkal4ZkQdU7hwxu+g/GvUgU vzlN1J5Bto+WHWOWk9mVBngxaJ43BjuAiUVhOSPHG0SjFeUc+JIwuwIDAQABo4HvMIHsMB0GA1Ud DgQWBBRlzeurNR4APn7VdMActHNHDhpkLzASBgNVHRMBAf8ECDAGAQH/AgEBMIGmBgNVHSAEgZ4w gZswgZgGBFUdIAAwgY8wLwYIKwYBBQUHAgEWI2h0dHA6Ly93d3cuZmlybWFwcm9mZXNpb25hbC5j b20vY3BzMFwGCCsGAQUFBwICMFAeTgBQAGEAcwBlAG8AIABkAGUAIABsAGEAIABCAG8AbgBhAG4A bwB2AGEAIAA0ADcAIABCAGEAcgBjAGUAbABvAG4AYQAgADAAOAAwADEANzAOBgNVHQ8BAf8EBAMC AQYwDQYJKoZIhvcNAQELBQADggIBAHSHKAIrdx9miWTtj3QuRhy7qPj4Cx2Dtjqn6EWKB7fgPiDL 4QjbEwj4KKE1soCzC1HA01aajTNFSa9J8OA9B3pFE1r/yJfY0xgsfZb43aJlQ3CTkBW6kN/oGbDb LIpgD7dvlAceHabJhfa9NPhAeGIQcDq+fUs5gakQ1JZBu/hfHAsdCPKxsIl68veg4MSPi3i1O1il I45PVf42O+AMt8oqMEEgtIDNrvx2ZnOorm7hfNoD6JQg5iKj0B+QXSBTFCZX2lSX3xZEEAEeiGaP cjiT3SC3NL7X8e5jjkd5KAb881lFJWAiMxujX6i6KtoaPc1A6ozuBRWV1aUsIC+nmCjuRfzxuIgA LI9C2lHVnOUTaHFFQ4ueCyE8S1wF3BqfmI7avSKecs2tCsvMo2ebKHTEm9caPARYpoKdrcd7b/+A lun4jWq9GJAd/0kakFI3ky88Al2CdgtR5xbHV/g4+afNmyJU72OwFW1TZQNKXkqgsqeOSQBZONXH 9IBk9W6VULgRfhVwOEqwf9DEMnDAGf/JOC0ULGb0QkTmVXYbgBVX/8Cnp6o5qtjTcNAuuuuUavpf NIbnYrX9ivAwhZTJryQCL2/W3Wf+47BVTwSYT6RBVuKT0Gro1vP7ZeDOdcQxWQzugsgMYDNKGbqE ZycPvEJdvSRUDewdcAZfpLz6IHxV -----END CERTIFICATE----- vTrus ECC Root CA ================= -----BEGIN CERTIFICATE----- MIICDzCCAZWgAwIBAgIUbmq8WapTvpg5Z6LSa6Q75m0c1towCgYIKoZIzj0EAwMwRzELMAkGA1UE BhMCQ04xHDAaBgNVBAoTE2lUcnVzQ2hpbmEgQ28uLEx0ZC4xGjAYBgNVBAMTEXZUcnVzIEVDQyBS b290IENBMB4XDTE4MDczMTA3MjY0NFoXDTQzMDczMTA3MjY0NFowRzELMAkGA1UEBhMCQ04xHDAa BgNVBAoTE2lUcnVzQ2hpbmEgQ28uLEx0ZC4xGjAYBgNVBAMTEXZUcnVzIEVDQyBSb290IENBMHYw EAYHKoZIzj0CAQYFK4EEACIDYgAEZVBKrox5lkqqHAjDo6LN/llWQXf9JpRCux3NCNtzslt188+c ToL0v/hhJoVs1oVbcnDS/dtitN9Ti72xRFhiQgnH+n9bEOf+QP3A2MMrMudwpremIFUde4BdS49n TPEQo0IwQDAdBgNVHQ4EFgQUmDnNvtiyjPeyq+GtJK97fKHbH88wDwYDVR0TAQH/BAUwAwEB/zAO BgNVHQ8BAf8EBAMCAQYwCgYIKoZIzj0EAwMDaAAwZQIwV53dVvHH4+m4SVBrm2nDb+zDfSXkV5UT QJtS0zvzQBm8JsctBp61ezaf9SXUY2sAAjEA6dPGnlaaKsyh2j/IZivTWJwghfqrkYpwcBE4YGQL YgmRWAD5Tfs0aNoJrSEGGJTO -----END CERTIFICATE----- vTrus Root CA ============= -----BEGIN CERTIFICATE----- MIIFVjCCAz6gAwIBAgIUQ+NxE9izWRRdt86M/TX9b7wFjUUwDQYJKoZIhvcNAQELBQAwQzELMAkG A1UEBhMCQ04xHDAaBgNVBAoTE2lUcnVzQ2hpbmEgQ28uLEx0ZC4xFjAUBgNVBAMTDXZUcnVzIFJv b3QgQ0EwHhcNMTgwNzMxMDcyNDA1WhcNNDMwNzMxMDcyNDA1WjBDMQswCQYDVQQGEwJDTjEcMBoG A1UEChMTaVRydXNDaGluYSBDby4sTHRkLjEWMBQGA1UEAxMNdlRydXMgUm9vdCBDQTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAL1VfGHTuB0EYgWgrmy3cLRB6ksDXhA/kFocizuwZots SKYcIrrVQJLuM7IjWcmOvFjai57QGfIvWcaMY1q6n6MLsLOaXLoRuBLpDLvPbmyAhykUAyyNJJrI ZIO1aqwTLDPxn9wsYTwaP3BVm60AUn/PBLn+NvqcwBauYv6WTEN+VRS+GrPSbcKvdmaVayqwlHeF XgQPYh1jdfdr58tbmnDsPmcF8P4HCIDPKNsFxhQnL4Z98Cfe/+Z+M0jnCx5Y0ScrUw5XSmXX+6KA YPxMvDVTAWqXcoKv8R1w6Jz1717CbMdHflqUhSZNO7rrTOiwCcJlwp2dCZtOtZcFrPUGoPc2BX70 kLJrxLT5ZOrpGgrIDajtJ8nU57O5q4IikCc9Kuh8kO+8T/3iCiSn3mUkpF3qwHYw03dQ+A0Em5Q2 AXPKBlim0zvc+gRGE1WKyURHuFE5Gi7oNOJ5y1lKCn+8pu8fA2dqWSslYpPZUxlmPCdiKYZNpGvu /9ROutW04o5IWgAZCfEF2c6Rsffr6TlP9m8EQ5pV9T4FFL2/s1m02I4zhKOQUqqzApVg+QxMaPnu 1RcN+HFXtSXkKe5lXa/R7jwXC1pDxaWG6iSe4gUH3DRCEpHWOXSuTEGC2/KmSNGzm/MzqvOmwMVO 9fSddmPmAsYiS8GVP1BkLFTltvA8Kc9XAgMBAAGjQjBAMB0GA1UdDgQWBBRUYnBj8XWEQ1iO0RYg scasGrz2iTAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQsFAAOC AgEAKbqSSaet8PFww+SX8J+pJdVrnjT+5hpk9jprUrIQeBqfTNqK2uwcN1LgQkv7bHbKJAs5EhWd nxEt/Hlk3ODg9d3gV8mlsnZwUKT+twpw1aA08XXXTUm6EdGz2OyC/+sOxL9kLX1jbhd47F18iMjr jld22VkE+rxSH0Ws8HqA7Oxvdq6R2xCOBNyS36D25q5J08FsEhvMKar5CKXiNxTKsbhm7xqC5PD4 8acWabfbqWE8n/Uxy+QARsIvdLGx14HuqCaVvIivTDUHKgLKeBRtRytAVunLKmChZwOgzoy8sHJn xDHO2zTlJQNgJXtxmOTAGytfdELSS8VZCAeHvsXDf+eW2eHcKJfWjwXj9ZtOyh1QRwVTsMo554Wg icEFOwE30z9J4nfrI8iIZjs9OXYhRvHsXyO466JmdXTBQPfYaJqT4i2pLr0cox7IdMakLXogqzu4 sEb9b91fUlV1YvCXoHzXOP0l382gmxDPi7g4Xl7FtKYCNqEeXxzP4padKar9mK5S4fNBUvupLnKW nyfjqnN9+BojZns7q2WwMgFLFT49ok8MKzWixtlnEjUwzXYuFrOZnk1PTi07NEPhmg4NpGaXutIc SkwsKouLgU9xGqndXHt7CMUADTdA43x7VF8vhV929vensBxXVsFy6K2ir40zSbofitzmdHxghm+H l3s= -----END CERTIFICATE----- ISRG Root X2 ============ -----BEGIN CERTIFICATE----- MIICGzCCAaGgAwIBAgIQQdKd0XLq7qeAwSxs6S+HUjAKBggqhkjOPQQDAzBPMQswCQYDVQQGEwJV UzEpMCcGA1UEChMgSW50ZXJuZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElT UkcgUm9vdCBYMjAeFw0yMDA5MDQwMDAwMDBaFw00MDA5MTcxNjAwMDBaME8xCzAJBgNVBAYTAlVT MSkwJwYDVQQKEyBJbnRlcm5ldCBTZWN1cml0eSBSZXNlYXJjaCBHcm91cDEVMBMGA1UEAxMMSVNS RyBSb290IFgyMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEzZvVn4CDCuwJSvMWSj5cz3es3mcFDR0H ttwW+1qLFNvicWDEukWVEYmO6gbf9yoWHKS5xcUy4APgHoIYOIvXRdgKam7mAHf7AlF9ItgKbppb d9/w+kHsOdx1ymgHDB/qo0IwQDAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAdBgNV HQ4EFgQUfEKWrt5LSDv6kviejM9ti6lyN5UwCgYIKoZIzj0EAwMDaAAwZQIwe3lORlCEwkSHRhtF cP9Ymd70/aTSVaYgLXTWNLxBo1BfASdWtL4ndQavEi51mI38AjEAi/V3bNTIZargCyzuFJ0nN6T5 U6VR5CmD1/iQMVtCnwr1/q4AaOeMSQ+2b1tbFfLn -----END CERTIFICATE----- HiPKI Root CA - G1 ================== -----BEGIN CERTIFICATE----- MIIFajCCA1KgAwIBAgIQLd2szmKXlKFD6LDNdmpeYDANBgkqhkiG9w0BAQsFADBPMQswCQYDVQQG EwJUVzEjMCEGA1UECgwaQ2h1bmdod2EgVGVsZWNvbSBDby4sIEx0ZC4xGzAZBgNVBAMMEkhpUEtJ IFJvb3QgQ0EgLSBHMTAeFw0xOTAyMjIwOTQ2MDRaFw0zNzEyMzExNTU5NTlaME8xCzAJBgNVBAYT AlRXMSMwIQYDVQQKDBpDaHVuZ2h3YSBUZWxlY29tIENvLiwgTHRkLjEbMBkGA1UEAwwSSGlQS0kg Um9vdCBDQSAtIEcxMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9B5/UnMyDHPkvRN0 o9QwqNCuS9i233VHZvR85zkEHmpwINJaR3JnVfSl6J3VHiGh8Ge6zCFovkRTv4354twvVcg3Px+k wJyz5HdcoEb+d/oaoDjq7Zpy3iu9lFc6uux55199QmQ5eiY29yTw1S+6lZgRZq2XNdZ1AYDgr/SE YYwNHl98h5ZeQa/rh+r4XfEuiAU+TCK72h8q3VJGZDnzQs7ZngyzsHeXZJzA9KMuH5UHsBffMNsA GJZMoYFL3QRtU6M9/Aes1MU3guvklQgZKILSQjqj2FPseYlgSGDIcpJQ3AOPgz+yQlda22rpEZfd hSi8MEyr48KxRURHH+CKFgeW0iEPU8DtqX7UTuybCeyvQqww1r/REEXgphaypcXTT3OUM3ECoWqj 1jOXTyFjHluP2cFeRXF3D4FdXyGarYPM+l7WjSNfGz1BryB1ZlpK9p/7qxj3ccC2HTHsOyDry+K4 9a6SsvfhhEvyovKTmiKe0xRvNlS9H15ZFblzqMF8b3ti6RZsR1pl8w4Rm0bZ/W3c1pzAtH2lsN0/ Vm+h+fbkEkj9Bn8SV7apI09bA8PgcSojt/ewsTu8mL3WmKgMa/aOEmem8rJY5AIJEzypuxC00jBF 8ez3ABHfZfjcK0NVvxaXxA/VLGGEqnKG/uY6fsI/fe78LxQ+5oXdUG+3Se0CAwEAAaNCMEAwDwYD VR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQU8ncX+l6o/vY9cdVouslGDDjYr7AwDgYDVR0PAQH/BAQD AgGGMA0GCSqGSIb3DQEBCwUAA4ICAQBQUfB13HAE4/+qddRxosuej6ip0691x1TPOhwEmSKsxBHi 7zNKpiMdDg1H2DfHb680f0+BazVP6XKlMeJ45/dOlBhbQH3PayFUhuaVevvGyuqcSE5XCV0vrPSl tJczWNWseanMX/mF+lLFjfiRFOs6DRfQUsJ748JzjkZ4Bjgs6FzaZsT0pPBWGTMpWmWSBUdGSquE wx4noR8RkpkndZMPvDY7l1ePJlsMu5wP1G4wB9TcXzZoZjmDlicmisjEOf6aIW/Vcobpf2Lll07Q JNBAsNB1CI69aO4I1258EHBGG3zgiLKecoaZAeO/n0kZtCW+VmWuF2PlHt/o/0elv+EmBYTksMCv 5wiZqAxeJoBF1PhoL5aPruJKHJwWDBNvOIf2u8g0X5IDUXlwpt/L9ZlNec1OvFefQ05rLisY+Gpz jLrFNe85akEez3GoorKGB1s6yeHvP2UEgEcyRHCVTjFnanRbEEV16rCf0OY1/k6fi8wrkkVbbiVg hUbN0aqwdmaTd5a+g744tiROJgvM7XpWGuDpWsZkrUx6AEhEL7lAuxM+vhV4nYWBSipX3tUZQ9rb yltHhoMLP7YNdnhzeSJesYAfz77RP1YQmCuVh6EfnWQUYDksswBVLuT1sw5XxJFBAJw/6KXf6vb/ yPCtbVKoF6ubYfwSUTXkJf2vqmqGOQ== -----END CERTIFICATE----- GlobalSign ECC Root CA - R4 =========================== -----BEGIN CERTIFICATE----- MIIB3DCCAYOgAwIBAgINAgPlfvU/k/2lCSGypjAKBggqhkjOPQQDAjBQMSQwIgYDVQQLExtHbG9i YWxTaWduIEVDQyBSb290IENBIC0gUjQxEzARBgNVBAoTCkdsb2JhbFNpZ24xEzARBgNVBAMTCkds b2JhbFNpZ24wHhcNMTIxMTEzMDAwMDAwWhcNMzgwMTE5MDMxNDA3WjBQMSQwIgYDVQQLExtHbG9i YWxTaWduIEVDQyBSb290IENBIC0gUjQxEzARBgNVBAoTCkdsb2JhbFNpZ24xEzARBgNVBAMTCkds b2JhbFNpZ24wWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAAS4xnnTj2wlDp8uORkcA6SumuU5BwkW ymOxuYb4ilfBV85C+nOh92VC/x7BALJucw7/xyHlGKSq2XE/qNS5zowdo0IwQDAOBgNVHQ8BAf8E BAMCAYYwDwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQUVLB7rUW44kB/+wpu+74zyTyjhNUwCgYI KoZIzj0EAwIDRwAwRAIgIk90crlgr/HmnKAWBVBfw147bmF0774BxL4YSFlhgjICICadVGNA3jdg UM/I2O2dgq43mLyjj0xMqTQrbO/7lZsm -----END CERTIFICATE----- GTS Root R1 =========== -----BEGIN CERTIFICATE----- MIIFVzCCAz+gAwIBAgINAgPlk28xsBNJiGuiFzANBgkqhkiG9w0BAQwFADBHMQswCQYDVQQGEwJV UzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3Qg UjEwHhcNMTYwNjIyMDAwMDAwWhcNMzYwNjIyMDAwMDAwWjBHMQswCQYDVQQGEwJVUzEiMCAGA1UE ChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjEwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC2EQKLHuOhd5s73L+UPreVp0A8of2C+X0yBoJx9vaM f/vo27xqLpeXo4xL+Sv2sfnOhB2x+cWX3u+58qPpvBKJXqeqUqv4IyfLpLGcY9vXmX7wCl7raKb0 xlpHDU0QM+NOsROjyBhsS+z8CZDfnWQpJSMHobTSPS5g4M/SCYe7zUjwTcLCeoiKu7rPWRnWr4+w B7CeMfGCwcDfLqZtbBkOtdh+JhpFAz2weaSUKK0PfyblqAj+lug8aJRT7oM6iCsVlgmy4HqMLnXW nOunVmSPlk9orj2XwoSPwLxAwAtcvfaHszVsrBhQf4TgTM2S0yDpM7xSma8ytSmzJSq0SPly4cpk 9+aCEI3oncKKiPo4Zor8Y/kB+Xj9e1x3+naH+uzfsQ55lVe0vSbv1gHR6xYKu44LtcXFilWr06zq kUspzBmkMiVOKvFlRNACzqrOSbTqn3yDsEB750Orp2yjj32JgfpMpf/VjsPOS+C12LOORc92wO1A K/1TD7Cn1TsNsYqiA94xrcx36m97PtbfkSIS5r762DL8EGMUUXLeXdYWk70paDPvOmbsB4om3xPX V2V4J95eSRQAogB/mqghtqmxlbCluQ0WEdrHbEg8QOB+DVrNVjzRlwW5y0vtOUucxD/SVRNuJLDW cfr0wbrM7Rv1/oFB2ACYPTrIrnqYNxgFlQIDAQABo0IwQDAOBgNVHQ8BAf8EBAMCAYYwDwYDVR0T AQH/BAUwAwEB/zAdBgNVHQ4EFgQU5K8rJnEaK0gnhS9SZizv8IkTcT4wDQYJKoZIhvcNAQEMBQAD ggIBAJ+qQibbC5u+/x6Wki4+omVKapi6Ist9wTrYggoGxval3sBOh2Z5ofmmWJyq+bXmYOfg6LEe QkEzCzc9zolwFcq1JKjPa7XSQCGYzyI0zzvFIoTgxQ6KfF2I5DUkzps+GlQebtuyh6f88/qBVRRi ClmpIgUxPoLW7ttXNLwzldMXG+gnoot7TiYaelpkttGsN/H9oPM47HLwEXWdyzRSjeZ2axfG34ar J45JK3VmgRAhpuo+9K4l/3wV3s6MJT/KYnAK9y8JZgfIPxz88NtFMN9iiMG1D53Dn0reWVlHxYci NuaCp+0KueIHoI17eko8cdLiA6EfMgfdG+RCzgwARWGAtQsgWSl4vflVy2PFPEz0tv/bal8xa5me LMFrUKTX5hgUvYU/Z6tGn6D/Qqc6f1zLXbBwHSs09dR2CQzreExZBfMzQsNhFRAbd03OIozUhfJF fbdT6u9AWpQKXCBfTkBdYiJ23//OYb2MI3jSNwLgjt7RETeJ9r/tSQdirpLsQBqvFAnZ0E6yove+ 7u7Y/9waLd64NnHi/Hm3lCXRSHNboTXns5lndcEZOitHTtNCjv0xyBZm2tIMPNuzjsmhDYAPexZ3 FL//2wmUspO8IFgV6dtxQ/PeEMMA3KgqlbbC1j+Qa3bbbP6MvPJwNQzcmRk13NfIRmPVNnGuV/u3 gm3c -----END CERTIFICATE----- GTS Root R2 =========== -----BEGIN CERTIFICATE----- MIIFVzCCAz+gAwIBAgINAgPlrsWNBCUaqxElqjANBgkqhkiG9w0BAQwFADBHMQswCQYDVQQGEwJV UzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3Qg UjIwHhcNMTYwNjIyMDAwMDAwWhcNMzYwNjIyMDAwMDAwWjBHMQswCQYDVQQGEwJVUzEiMCAGA1UE ChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjIwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDO3v2m++zsFDQ8BwZabFn3GTXd98GdVarTzTukk3Lv CvptnfbwhYBboUhSnznFt+4orO/LdmgUud+tAWyZH8QiHZ/+cnfgLFuv5AS/T3KgGjSY6Dlo7JUl e3ah5mm5hRm9iYz+re026nO8/4Piy33B0s5Ks40FnotJk9/BW9BuXvAuMC6C/Pq8tBcKSOWIm8Wb a96wyrQD8Nr0kLhlZPdcTK3ofmZemde4wj7I0BOdre7kRXuJVfeKH2JShBKzwkCX44ofR5GmdFrS +LFjKBC4swm4VndAoiaYecb+3yXuPuWgf9RhD1FLPD+M2uFwdNjCaKH5wQzpoeJ/u1U8dgbuak7M kogwTZq9TwtImoS1mKPV+3PBV2HdKFZ1E66HjucMUQkQdYhMvI35ezzUIkgfKtzra7tEscszcTJG r61K8YzodDqs5xoic4DSMPclQsciOzsSrZYuxsN2B6ogtzVJV+mSSeh2FnIxZyuWfoqjx5RWIr9q S34BIbIjMt/kmkRtWVtd9QCgHJvGeJeNkP+byKq0rxFROV7Z+2et1VsRnTKaG73VululycslaVNV J1zgyjbLiGH7HrfQy+4W+9OmTN6SpdTi3/UGVN4unUu0kzCqgc7dGtxRcw1PcOnlthYhGXmy5okL dWTK1au8CcEYof/UVKGFPP0UJAOyh9OktwIDAQABo0IwQDAOBgNVHQ8BAf8EBAMCAYYwDwYDVR0T AQH/BAUwAwEB/zAdBgNVHQ4EFgQUu//KjiOfT5nK2+JopqUVJxce2Q4wDQYJKoZIhvcNAQEMBQAD ggIBAB/Kzt3HvqGf2SdMC9wXmBFqiN495nFWcrKeGk6c1SuYJF2ba3uwM4IJvd8lRuqYnrYb/oM8 0mJhwQTtzuDFycgTE1XnqGOtjHsB/ncw4c5omwX4Eu55MaBBRTUoCnGkJE+M3DyCB19m3H0Q/gxh swWV7uGugQ+o+MePTagjAiZrHYNSVc61LwDKgEDg4XSsYPWHgJ2uNmSRXbBoGOqKYcl3qJfEycel /FVL8/B/uWU9J2jQzGv6U53hkRrJXRqWbTKH7QMgyALOWr7Z6v2yTcQvG99fevX4i8buMTolUVVn jWQye+mew4K6Ki3pHrTgSAai/GevHyICc/sgCq+dVEuhzf9gR7A/Xe8bVr2XIZYtCtFenTgCR2y5 9PYjJbigapordwj6xLEokCZYCDzifqrXPW+6MYgKBesntaFJ7qBFVHvmJ2WZICGoo7z7GJa7Um8M 7YNRTOlZ4iBgxcJlkoKM8xAfDoqXvneCbT+PHV28SSe9zE8P4c52hgQjxcCMElv924SgJPFI/2R8 0L5cFtHvma3AH/vLrrw4IgYmZNralw4/KBVEqE8AyvCazM90arQ+POuV7LXTWtiBmelDGDfrs7vR WGJB82bSj6p4lVQgw1oudCvV0b4YacCs1aTPObpRhANl6WLAYv7YTVWW4tAR+kg0Eeye7QUd5MjW HYbL -----END CERTIFICATE----- GTS Root R3 =========== -----BEGIN CERTIFICATE----- MIICCTCCAY6gAwIBAgINAgPluILrIPglJ209ZjAKBggqhkjOPQQDAzBHMQswCQYDVQQGEwJVUzEi MCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjMw HhcNMTYwNjIyMDAwMDAwWhcNMzYwNjIyMDAwMDAwWjBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZ R29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjMwdjAQBgcqhkjO PQIBBgUrgQQAIgNiAAQfTzOHMymKoYTey8chWEGJ6ladK0uFxh1MJ7x/JlFyb+Kf1qPKzEUURout 736GjOyxfi//qXGdGIRFBEFVbivqJn+7kAHjSxm65FSWRQmx1WyRRK2EE46ajA2ADDL24CejQjBA MA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBTB8Sa6oC2uhYHP0/Eq Er24Cmf9vDAKBggqhkjOPQQDAwNpADBmAjEA9uEglRR7VKOQFhG/hMjqb2sXnh5GmCCbn9MN2azT L818+FsuVbu/3ZL3pAzcMeGiAjEA/JdmZuVDFhOD3cffL74UOO0BzrEXGhF16b0DjyZ+hOXJYKaV 11RZt+cRLInUue4X -----END CERTIFICATE----- GTS Root R4 =========== -----BEGIN CERTIFICATE----- MIICCTCCAY6gAwIBAgINAgPlwGjvYxqccpBQUjAKBggqhkjOPQQDAzBHMQswCQYDVQQGEwJVUzEi MCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjQw HhcNMTYwNjIyMDAwMDAwWhcNMzYwNjIyMDAwMDAwWjBHMQswCQYDVQQGEwJVUzEiMCAGA1UEChMZ R29vZ2xlIFRydXN0IFNlcnZpY2VzIExMQzEUMBIGA1UEAxMLR1RTIFJvb3QgUjQwdjAQBgcqhkjO PQIBBgUrgQQAIgNiAATzdHOnaItgrkO4NcWBMHtLSZ37wWHO5t5GvWvVYRg1rkDdc/eJkTBa6zzu hXyiQHY7qca4R9gq55KRanPpsXI5nymfopjTX15YhmUPoYRlBtHci8nHc8iMai/lxKvRHYqjQjBA MA4GA1UdDwEB/wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBSATNbrdP9JNqPV2Py1 PsVq8JQdjDAKBggqhkjOPQQDAwNpADBmAjEA6ED/g94D9J+uHXqnLrmvT/aDHQ4thQEd0dlq7A/C r8deVl5c1RxYIigL9zC2L7F8AjEA8GE8p/SgguMh1YQdc4acLa/KNJvxn7kjNuK8YAOdgLOaVsjh 4rsUecrNIdSUtUlD -----END CERTIFICATE----- Telia Root CA v2 ================ -----BEGIN CERTIFICATE----- MIIFdDCCA1ygAwIBAgIPAWdfJ9b+euPkrL4JWwWeMA0GCSqGSIb3DQEBCwUAMEQxCzAJBgNVBAYT AkZJMRowGAYDVQQKDBFUZWxpYSBGaW5sYW5kIE95ajEZMBcGA1UEAwwQVGVsaWEgUm9vdCBDQSB2 MjAeFw0xODExMjkxMTU1NTRaFw00MzExMjkxMTU1NTRaMEQxCzAJBgNVBAYTAkZJMRowGAYDVQQK DBFUZWxpYSBGaW5sYW5kIE95ajEZMBcGA1UEAwwQVGVsaWEgUm9vdCBDQSB2MjCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBALLQPwe84nvQa5n44ndp586dpAO8gm2h/oFlH0wnrI4AuhZ7 6zBqAMCzdGh+sq/H1WKzej9Qyow2RCRj0jbpDIX2Q3bVTKFgcmfiKDOlyzG4OiIjNLh9vVYiQJ3q 9HsDrWj8soFPmNB06o3lfc1jw6P23pLCWBnglrvFxKk9pXSW/q/5iaq9lRdU2HhE8Qx3FZLgmEKn pNaqIJLNwaCzlrI6hEKNfdWV5Nbb6WLEWLN5xYzTNTODn3WhUidhOPFZPY5Q4L15POdslv5e2QJl tI5c0BE0312/UqeBAMN/mUWZFdUXyApT7GPzmX3MaRKGwhfwAZ6/hLzRUssbkmbOpFPlob/E2wnW 5olWK8jjfN7j/4nlNW4o6GwLI1GpJQXrSPjdscr6bAhR77cYbETKJuFzxokGgeWKrLDiKca5JLNr RBH0pUPCTEPlcDaMtjNXepUugqD0XBCzYYP2AgWGLnwtbNwDRm41k9V6lS/eINhbfpSQBGq6WT0E BXWdN6IOLj3rwaRSg/7Qa9RmjtzG6RJOHSpXqhC8fF6CfaamyfItufUXJ63RDolUK5X6wK0dmBR4 M0KGCqlztft0DbcbMBnEWg4cJ7faGND/isgFuvGqHKI3t+ZIpEYslOqodmJHixBTB0hXbOKSTbau BcvcwUpej6w9GU7C7WB1K9vBykLVAgMBAAGjYzBhMB8GA1UdIwQYMBaAFHKs5DN5qkWH9v2sHZ7W xy+G2CQ5MB0GA1UdDgQWBBRyrOQzeapFh/b9rB2e1scvhtgkOTAOBgNVHQ8BAf8EBAMCAQYwDwYD VR0TAQH/BAUwAwEB/zANBgkqhkiG9w0BAQsFAAOCAgEAoDtZpwmUPjaE0n4vOaWWl/oRrfxn83EJ 8rKJhGdEr7nv7ZbsnGTbMjBvZ5qsfl+yqwE2foH65IRe0qw24GtixX1LDoJt0nZi0f6X+J8wfBj5 tFJ3gh1229MdqfDBmgC9bXXYfef6xzijnHDoRnkDry5023X4blMMA8iZGok1GTzTyVR8qPAs5m4H eW9q4ebqkYJpCh3DflminmtGFZhb069GHWLIzoBSSRE/yQQSwxN8PzuKlts8oB4KtItUsiRnDe+C y748fdHif64W1lZYudogsYMVoe+KTTJvQS8TUoKU1xrBeKJR3Stwbbca+few4GeXVtt8YVMJAygC QMez2P2ccGrGKMOF6eLtGpOg3kuYooQ+BXcBlj37tCAPnHICehIv1aO6UXivKitEZU61/Qrowc15 h2Er3oBXRb9n8ZuRXqWk7FlIEA04x7D6w0RtBPV4UBySllva9bguulvP5fBqnUsvWHMtTy3EHD70 sz+rFQ47GUGKpMFXEmZxTPpT41frYpUJnlTd0cI8Vzy9OK2YZLe4A5pTVmBds9hCG1xLEooc6+t9 xnppxyd/pPiL8uSUZodL6ZQHCRJ5irLrdATczvREWeAWysUsWNc8e89ihmpQfTU2Zqf7N+cox9jQ raVplI/owd8k+BsHMYeB2F326CjYSlKArBPuUBQemMc= -----END CERTIFICATE----- D-TRUST BR Root CA 1 2020 ========================= -----BEGIN CERTIFICATE----- MIIC2zCCAmCgAwIBAgIQfMmPK4TX3+oPyWWa00tNljAKBggqhkjOPQQDAzBIMQswCQYDVQQGEwJE RTEVMBMGA1UEChMMRC1UcnVzdCBHbWJIMSIwIAYDVQQDExlELVRSVVNUIEJSIFJvb3QgQ0EgMSAy MDIwMB4XDTIwMDIxMTA5NDUwMFoXDTM1MDIxMTA5NDQ1OVowSDELMAkGA1UEBhMCREUxFTATBgNV BAoTDEQtVHJ1c3QgR21iSDEiMCAGA1UEAxMZRC1UUlVTVCBCUiBSb290IENBIDEgMjAyMDB2MBAG ByqGSM49AgEGBSuBBAAiA2IABMbLxyjR+4T1mu9CFCDhQ2tuda38KwOE1HaTJddZO0Flax7mNCq7 dPYSzuht56vkPE4/RAiLzRZxy7+SmfSk1zxQVFKQhYN4lGdnoxwJGT11NIXe7WB9xwy0QVK5buXu QqOCAQ0wggEJMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFHOREKv/VbNafAkl1bK6CKBrqx9t MA4GA1UdDwEB/wQEAwIBBjCBxgYDVR0fBIG+MIG7MD6gPKA6hjhodHRwOi8vY3JsLmQtdHJ1c3Qu bmV0L2NybC9kLXRydXN0X2JyX3Jvb3RfY2FfMV8yMDIwLmNybDB5oHegdYZzbGRhcDovL2RpcmVj dG9yeS5kLXRydXN0Lm5ldC9DTj1ELVRSVVNUJTIwQlIlMjBSb290JTIwQ0ElMjAxJTIwMjAyMCxP PUQtVHJ1c3QlMjBHbWJILEM9REU/Y2VydGlmaWNhdGVyZXZvY2F0aW9ubGlzdDAKBggqhkjOPQQD AwNpADBmAjEAlJAtE/rhY/hhY+ithXhUkZy4kzg+GkHaQBZTQgjKL47xPoFWwKrY7RjEsK70Pvom AjEA8yjixtsrmfu3Ubgko6SUeho/5jbiA1czijDLgsfWFBHVdWNbFJWcHwHP2NVypw87 -----END CERTIFICATE----- D-TRUST EV Root CA 1 2020 ========================= -----BEGIN CERTIFICATE----- MIIC2zCCAmCgAwIBAgIQXwJB13qHfEwDo6yWjfv/0DAKBggqhkjOPQQDAzBIMQswCQYDVQQGEwJE RTEVMBMGA1UEChMMRC1UcnVzdCBHbWJIMSIwIAYDVQQDExlELVRSVVNUIEVWIFJvb3QgQ0EgMSAy MDIwMB4XDTIwMDIxMTEwMDAwMFoXDTM1MDIxMTA5NTk1OVowSDELMAkGA1UEBhMCREUxFTATBgNV BAoTDEQtVHJ1c3QgR21iSDEiMCAGA1UEAxMZRC1UUlVTVCBFViBSb290IENBIDEgMjAyMDB2MBAG ByqGSM49AgEGBSuBBAAiA2IABPEL3YZDIBnfl4XoIkqbz52Yv7QFJsnL46bSj8WeeHsxiamJrSc8 ZRCC/N/DnU7wMyPE0jL1HLDfMxddxfCxivnvubcUyilKwg+pf3VlSSowZ/Rk99Yad9rDwpdhQntJ raOCAQ0wggEJMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFH8QARY3OqQo5FD4pPfsazK2/umL MA4GA1UdDwEB/wQEAwIBBjCBxgYDVR0fBIG+MIG7MD6gPKA6hjhodHRwOi8vY3JsLmQtdHJ1c3Qu bmV0L2NybC9kLXRydXN0X2V2X3Jvb3RfY2FfMV8yMDIwLmNybDB5oHegdYZzbGRhcDovL2RpcmVj dG9yeS5kLXRydXN0Lm5ldC9DTj1ELVRSVVNUJTIwRVYlMjBSb290JTIwQ0ElMjAxJTIwMjAyMCxP PUQtVHJ1c3QlMjBHbWJILEM9REU/Y2VydGlmaWNhdGVyZXZvY2F0aW9ubGlzdDAKBggqhkjOPQQD AwNpADBmAjEAyjzGKnXCXnViOTYAYFqLwZOZzNnbQTs7h5kXO9XMT8oi96CAy/m0sRtW9XLS/BnR AjEAkfcwkz8QRitxpNA7RJvAKQIFskF3UfN5Wp6OFKBOQtJbgfM0agPnIjhQW+0ZT0MW -----END CERTIFICATE----- DigiCert TLS ECC P384 Root G5 ============================= -----BEGIN CERTIFICATE----- MIICGTCCAZ+gAwIBAgIQCeCTZaz32ci5PhwLBCou8zAKBggqhkjOPQQDAzBOMQswCQYDVQQGEwJV UzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xJjAkBgNVBAMTHURpZ2lDZXJ0IFRMUyBFQ0MgUDM4 NCBSb290IEc1MB4XDTIxMDExNTAwMDAwMFoXDTQ2MDExNDIzNTk1OVowTjELMAkGA1UEBhMCVVMx FzAVBgNVBAoTDkRpZ2lDZXJ0LCBJbmMuMSYwJAYDVQQDEx1EaWdpQ2VydCBUTFMgRUNDIFAzODQg Um9vdCBHNTB2MBAGByqGSM49AgEGBSuBBAAiA2IABMFEoc8Rl1Ca3iOCNQfN0MsYndLxf3c1Tzvd lHJS7cI7+Oz6e2tYIOyZrsn8aLN1udsJ7MgT9U7GCh1mMEy7H0cKPGEQQil8pQgO4CLp0zVozptj n4S1mU1YoI71VOeVyaNCMEAwHQYDVR0OBBYEFMFRRVBZqz7nLFr6ICISB4CIfBFqMA4GA1UdDwEB /wQEAwIBhjAPBgNVHRMBAf8EBTADAQH/MAoGCCqGSM49BAMDA2gAMGUCMQCJao1H5+z8blUD2Wds Jk6Dxv3J+ysTvLd6jLRl0mlpYxNjOyZQLgGheQaRnUi/wr4CMEfDFXuxoJGZSZOoPHzoRgaLLPIx AJSdYsiJvRmEFOml+wG4DXZDjC5Ty3zfDBeWUA== -----END CERTIFICATE----- DigiCert TLS RSA4096 Root G5 ============================ -----BEGIN CERTIFICATE----- MIIFZjCCA06gAwIBAgIQCPm0eKj6ftpqMzeJ3nzPijANBgkqhkiG9w0BAQwFADBNMQswCQYDVQQG EwJVUzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xJTAjBgNVBAMTHERpZ2lDZXJ0IFRMUyBSU0E0 MDk2IFJvb3QgRzUwHhcNMjEwMTE1MDAwMDAwWhcNNDYwMTE0MjM1OTU5WjBNMQswCQYDVQQGEwJV UzEXMBUGA1UEChMORGlnaUNlcnQsIEluYy4xJTAjBgNVBAMTHERpZ2lDZXJ0IFRMUyBSU0E0MDk2 IFJvb3QgRzUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCz0PTJeRGd/fxmgefM1eS8 7IE+ajWOLrfn3q/5B03PMJ3qCQuZvWxX2hhKuHisOjmopkisLnLlvevxGs3npAOpPxG02C+JFvuU AT27L/gTBaF4HI4o4EXgg/RZG5Wzrn4DReW+wkL+7vI8toUTmDKdFqgpwgscONyfMXdcvyej/Ces tyu9dJsXLfKB2l2w4SMXPohKEiPQ6s+d3gMXsUJKoBZMpG2T6T867jp8nVid9E6P/DsjyG244gXa zOvswzH016cpVIDPRFtMbzCe88zdH5RDnU1/cHAN1DrRN/BsnZvAFJNY781BOHW8EwOVfH/jXOnV DdXifBBiqmvwPXbzP6PosMH976pXTayGpxi0KcEsDr9kvimM2AItzVwv8n/vFfQMFawKsPHTDU9q TXeXAaDxZre3zu/O7Oyldcqs4+Fj97ihBMi8ez9dLRYiVu1ISf6nL3kwJZu6ay0/nTvEF+cdLvvy z6b84xQslpghjLSR6Rlgg/IwKwZzUNWYOwbpx4oMYIwo+FKbbuH2TbsGJJvXKyY//SovcfXWJL5/ MZ4PbeiPT02jP/816t9JXkGPhvnxd3lLG7SjXi/7RgLQZhNeXoVPzthwiHvOAbWWl9fNff2C+MIk wcoBOU+NosEUQB+cZtUMCUbW8tDRSHZWOkPLtgoRObqME2wGtZ7P6wIDAQABo0IwQDAdBgNVHQ4E FgQUUTMc7TZArxfTJc1paPKvTiM+s0EwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8w DQYJKoZIhvcNAQEMBQADggIBAGCmr1tfV9qJ20tQqcQjNSH/0GEwhJG3PxDPJY7Jv0Y02cEhJhxw GXIeo8mH/qlDZJY6yFMECrZBu8RHANmfGBg7sg7zNOok992vIGCukihfNudd5N7HPNtQOa27PShN lnx2xlv0wdsUpasZYgcYQF+Xkdycx6u1UQ3maVNVzDl92sURVXLFO4uJ+DQtpBflF+aZfTCIITfN MBc9uPK8qHWgQ9w+iUuQrm0D4ByjoJYJu32jtyoQREtGBzRj7TG5BO6jm5qu5jF49OokYTurWGT/ u4cnYiWB39yhL/btp/96j1EuMPikAdKFOV8BmZZvWltwGUb+hmA+rYAQCd05JS9Yf7vSdPD3Rh9G OUrYU9DzLjtxpdRv/PNn5AeP3SYZ4Y1b+qOTEZvpyDrDVWiakuFSdjjo4bq9+0/V77PnSIMx8IIh 47a+p6tv75/fTM8BuGJqIz3nCU2AG3swpMPdB380vqQmsvZB6Akd4yCYqjdP//fx4ilwMUc/dNAU FvohigLVigmUdy7yWSiLfFCSCmZ4OIN1xLVaqBHG5cGdZlXPU8Sv13WFqUITVuwhd4GTWgzqltlJ yqEI8pc7bZsEGCREjnwB8twl2F6GmrE52/WRMmrRpnCKovfepEWFJqgejF0pW8hL2JpqA15w8oVP bEtoL8pU9ozaMv7Da4M/OMZ+ -----END CERTIFICATE----- Certainly Root R1 ================= -----BEGIN CERTIFICATE----- MIIFRzCCAy+gAwIBAgIRAI4P+UuQcWhlM1T01EQ5t+AwDQYJKoZIhvcNAQELBQAwPTELMAkGA1UE BhMCVVMxEjAQBgNVBAoTCUNlcnRhaW5seTEaMBgGA1UEAxMRQ2VydGFpbmx5IFJvb3QgUjEwHhcN MjEwNDAxMDAwMDAwWhcNNDYwNDAxMDAwMDAwWjA9MQswCQYDVQQGEwJVUzESMBAGA1UEChMJQ2Vy dGFpbmx5MRowGAYDVQQDExFDZXJ0YWlubHkgUm9vdCBSMTCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBANA21B/q3avk0bbm+yLA3RMNansiExyXPGhjZjKcA7WNpIGD2ngwEc/csiu+kr+O 5MQTvqRoTNoCaBZ0vrLdBORrKt03H2As2/X3oXyVtwxwhi7xOu9S98zTm/mLvg7fMbedaFySpvXl 8wo0tf97ouSHocavFwDvA5HtqRxOcT3Si2yJ9HiG5mpJoM610rCrm/b01C7jcvk2xusVtyWMOvwl DbMicyF0yEqWYZL1LwsYpfSt4u5BvQF5+paMjRcCMLT5r3gajLQ2EBAHBXDQ9DGQilHFhiZ5shGI XsXwClTNSaa/ApzSRKft43jvRl5tcdF5cBxGX1HpyTfcX35pe0HfNEXgO4T0oYoKNp43zGJS4YkN KPl6I7ENPT2a/Z2B7yyQwHtETrtJ4A5KVpK8y7XdeReJkd5hiXSSqOMyhb5OhaRLWcsrxXiOcVTQ AjeZjOVJ6uBUcqQRBi8LjMFbvrWhsFNunLhgkR9Za/kt9JQKl7XsxXYDVBtlUrpMklZRNaBA2Cnb rlJ2Oy0wQJuK0EJWtLeIAaSHO1OWzaMWj/Nmqhexx2DgwUMFDO6bW2BvBlyHWyf5QBGenDPBt+U1 VwV/J84XIIwc/PH72jEpSe31C4SnT8H2TsIonPru4K8H+zMReiFPCyEQtkA6qyI6BJyLm4SGcprS p6XEtHWRqSsjAgMBAAGjQjBAMA4GA1UdDwEB/wQEAwIBBjAPBgNVHRMBAf8EBTADAQH/MB0GA1Ud DgQWBBTgqj8ljZ9EXME66C6ud0yEPmcM9DANBgkqhkiG9w0BAQsFAAOCAgEAuVevuBLaV4OPaAsz HQNTVfSVcOQrPbA56/qJYv331hgELyE03fFo8NWWWt7CgKPBjcZq91l3rhVkz1t5BXdm6ozTaw3d 8VkswTOlMIAVRQdFGjEitpIAq5lNOo93r6kiyi9jyhXWx8bwPWz8HA2YEGGeEaIi1wrykXprOQ4v MMM2SZ/g6Q8CRFA3lFV96p/2O7qUpUzpvD5RtOjKkjZUbVwlKNrdrRT90+7iIgXr0PK3aBLXWopB GsaSpVo7Y0VPv+E6dyIvXL9G+VoDhRNCX8reU9ditaY1BMJH/5n9hN9czulegChB8n3nHpDYT3Y+ gjwN/KUD+nsa2UUeYNrEjvn8K8l7lcUq/6qJ34IxD3L/DCfXCh5WAFAeDJDBlrXYFIW7pw0WwfgH JBu6haEaBQmAupVjyTrsJZ9/nbqkRxWbRHDxakvWOF5D8xh+UG7pWijmZeZ3Gzr9Hb4DJqPb1OG7 fpYnKx3upPvaJVQTA945xsMfTZDsjxtK0hzthZU4UHlG1sGQUDGpXJpuHfUzVounmdLyyCwzk5Iw x06MZTMQZBf9JBeW0Y3COmor6xOLRPIh80oat3df1+2IpHLlOR+Vnb5nwXARPbv0+Em34yaXOp/S X3z7wJl8OSngex2/DaeP0ik0biQVy96QXr8axGbqwua6OV+KmalBWQewLK8= -----END CERTIFICATE----- Certainly Root E1 ================= -----BEGIN CERTIFICATE----- MIIB9zCCAX2gAwIBAgIQBiUzsUcDMydc+Y2aub/M+DAKBggqhkjOPQQDAzA9MQswCQYDVQQGEwJV UzESMBAGA1UEChMJQ2VydGFpbmx5MRowGAYDVQQDExFDZXJ0YWlubHkgUm9vdCBFMTAeFw0yMTA0 MDEwMDAwMDBaFw00NjA0MDEwMDAwMDBaMD0xCzAJBgNVBAYTAlVTMRIwEAYDVQQKEwlDZXJ0YWlu bHkxGjAYBgNVBAMTEUNlcnRhaW5seSBSb290IEUxMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAE3m/4 fxzf7flHh4axpMCK+IKXgOqPyEpeKn2IaKcBYhSRJHpcnqMXfYqGITQYUBsQ3tA3SybHGWCA6TS9 YBk2QNYphwk8kXr2vBMj3VlOBF7PyAIcGFPBMdjaIOlEjeR2o0IwQDAOBgNVHQ8BAf8EBAMCAQYw DwYDVR0TAQH/BAUwAwEB/zAdBgNVHQ4EFgQU8ygYy2R17ikq6+2uI1g4hevIIgcwCgYIKoZIzj0E AwMDaAAwZQIxALGOWiDDshliTd6wT99u0nCK8Z9+aozmut6Dacpps6kFtZaSF4fC0urQe87YQVt8 rgIwRt7qy12a7DLCZRawTDBcMPPaTnOGBtjOiQRINzf43TNRnXCve1XYAS59BWQOhriR -----END CERTIFICATE----- Security Communication ECC RootCA1 ================================== -----BEGIN CERTIFICATE----- MIICODCCAb6gAwIBAgIJANZdm7N4gS7rMAoGCCqGSM49BAMDMGExCzAJBgNVBAYTAkpQMSUwIwYD VQQKExxTRUNPTSBUcnVzdCBTeXN0ZW1zIENPLixMVEQuMSswKQYDVQQDEyJTZWN1cml0eSBDb21t dW5pY2F0aW9uIEVDQyBSb290Q0ExMB4XDTE2MDYxNjA1MTUyOFoXDTM4MDExODA1MTUyOFowYTEL MAkGA1UEBhMCSlAxJTAjBgNVBAoTHFNFQ09NIFRydXN0IFN5c3RlbXMgQ08uLExURC4xKzApBgNV BAMTIlNlY3VyaXR5IENvbW11bmljYXRpb24gRUNDIFJvb3RDQTEwdjAQBgcqhkjOPQIBBgUrgQQA IgNiAASkpW9gAwPDvTH00xecK4R1rOX9PVdu12O/5gSJko6BnOPpR27KkBLIE+CnnfdldB9sELLo 5OnvbYUymUSxXv3MdhDYW72ixvnWQuRXdtyQwjWpS4g8EkdtXP9JTxpKULGjQjBAMB0GA1UdDgQW BBSGHOf+LaVKiwj+KBH6vqNm+GBZLzAOBgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAK BggqhkjOPQQDAwNoADBlAjAVXUI9/Lbu9zuxNuie9sRGKEkz0FhDKmMpzE2xtHqiuQ04pV1IKv3L snNdo4gIxwwCMQDAqy0Obe0YottT6SXbVQjgUMzfRGEWgqtJsLKB7HOHeLRMsmIbEvoWTSVLY70e N9k= -----END CERTIFICATE----- BJCA Global Root CA1 ==================== -----BEGIN CERTIFICATE----- MIIFdDCCA1ygAwIBAgIQVW9l47TZkGobCdFsPsBsIDANBgkqhkiG9w0BAQsFADBUMQswCQYDVQQG EwJDTjEmMCQGA1UECgwdQkVJSklORyBDRVJUSUZJQ0FURSBBVVRIT1JJVFkxHTAbBgNVBAMMFEJK Q0EgR2xvYmFsIFJvb3QgQ0ExMB4XDTE5MTIxOTAzMTYxN1oXDTQ0MTIxMjAzMTYxN1owVDELMAkG A1UEBhMCQ04xJjAkBgNVBAoMHUJFSUpJTkcgQ0VSVElGSUNBVEUgQVVUSE9SSVRZMR0wGwYDVQQD DBRCSkNBIEdsb2JhbCBSb290IENBMTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAPFm CL3ZxRVhy4QEQaVpN3cdwbB7+sN3SJATcmTRuHyQNZ0YeYjjlwE8R4HyDqKYDZ4/N+AZspDyRhyS sTphzvq3Rp4Dhtczbu33RYx2N95ulpH3134rhxfVizXuhJFyV9xgw8O558dnJCNPYwpj9mZ9S1Wn P3hkSWkSl+BMDdMJoDIwOvqfwPKcxRIqLhy1BDPapDgRat7GGPZHOiJBhyL8xIkoVNiMpTAK+BcW yqw3/XmnkRd4OJmtWO2y3syJfQOcs4ll5+M7sSKGjwZteAf9kRJ/sGsciQ35uMt0WwfCyPQ10WRj eulumijWML3mG90Vr4TqnMfK9Q7q8l0ph49pczm+LiRvRSGsxdRpJQaDrXpIhRMsDQa4bHlW/KNn MoH1V6XKV0Jp6VwkYe/iMBhORJhVb3rCk9gZtt58R4oRTklH2yiUAguUSiz5EtBP6DF+bHq/pj+b OT0CFqMYs2esWz8sgytnOYFcuX6U1WTdno9uruh8W7TXakdI136z1C2OVnZOz2nxbkRs1CTqjSSh GL+9V/6pmTW12xB3uD1IutbB5/EjPtffhZ0nPNRAvQoMvfXnjSXWgXSHRtQpdaJCbPdzied9v3pK H9MiyRVVz99vfFXQpIsHETdfg6YmV6YBW37+WGgHqel62bno/1Afq8K0wM7o6v0PvY1NuLxxAgMB AAGjQjBAMB0GA1UdDgQWBBTF7+3M2I0hxkjk49cULqcWk+WYATAPBgNVHRMBAf8EBTADAQH/MA4G A1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQsFAAOCAgEAUoKsITQfI/Ki2Pm4rzc2IInRNwPWaZ+4 YRC6ojGYWUfo0Q0lHhVBDOAqVdVXUsv45Mdpox1NcQJeXyFFYEhcCY5JEMEE3KliawLwQ8hOnThJ dMkycFRtwUf8jrQ2ntScvd0g1lPJGKm1Vrl2i5VnZu69mP6u775u+2D2/VnGKhs/I0qUJDAnyIm8 60Qkmss9vk/Ves6OF8tiwdneHg56/0OGNFK8YT88X7vZdrRTvJez/opMEi4r89fO4aL/3Xtw+zuh TaRjAv04l5U/BXCga99igUOLtFkNSoxUnMW7gZ/NfaXvCyUeOiDbHPwfmGcCCtRzRBPbUYQaVQNW 4AB+dAb/OMRyHdOoP2gxXdMJxy6MW2Pg6Nwe0uxhHvLe5e/2mXZgLR6UcnHGCyoyx5JO1UbXHfmp GQrI+pXObSOYqgs4rZpWDW+N8TEAiMEXnM0ZNjX+VVOg4DwzX5Ze4jLp3zO7Bkqp2IRzznfSxqxx 4VyjHQy7Ct9f4qNx2No3WqB4K/TUfet27fJhcKVlmtOJNBir+3I+17Q9eVzYH6Eze9mCUAyTF6ps 3MKCuwJXNq+YJyo5UOGwifUll35HaBC07HPKs5fRJNz2YqAo07WjuGS3iGJCz51TzZm+ZGiPTx4S SPfSKcOYKMryMguTjClPPGAyzQWWYezyr/6zcCwupvI= -----END CERTIFICATE----- BJCA Global Root CA2 ==================== -----BEGIN CERTIFICATE----- MIICJTCCAaugAwIBAgIQLBcIfWQqwP6FGFkGz7RK6zAKBggqhkjOPQQDAzBUMQswCQYDVQQGEwJD TjEmMCQGA1UECgwdQkVJSklORyBDRVJUSUZJQ0FURSBBVVRIT1JJVFkxHTAbBgNVBAMMFEJKQ0Eg R2xvYmFsIFJvb3QgQ0EyMB4XDTE5MTIxOTAzMTgyMVoXDTQ0MTIxMjAzMTgyMVowVDELMAkGA1UE BhMCQ04xJjAkBgNVBAoMHUJFSUpJTkcgQ0VSVElGSUNBVEUgQVVUSE9SSVRZMR0wGwYDVQQDDBRC SkNBIEdsb2JhbCBSb290IENBMjB2MBAGByqGSM49AgEGBSuBBAAiA2IABJ3LgJGNU2e1uVCxA/jl SR9BIgmwUVJY1is0j8USRhTFiy8shP8sbqjV8QnjAyEUxEM9fMEsxEtqSs3ph+B99iK++kpRuDCK /eHeGBIK9ke35xe/J4rUQUyWPGCWwf0VHKNCMEAwHQYDVR0OBBYEFNJKsVF/BvDRgh9Obl+rg/xI 1LCRMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMAoGCCqGSM49BAMDA2gAMGUCMBq8 W9f+qdJUDkpd0m2xQNz0Q9XSSpkZElaA94M04TVOSG0ED1cxMDAtsaqdAzjbBgIxAMvMh1PLet8g UXOQwKhbYdDFUDn9hf7B43j4ptZLvZuHjw/l1lOWqzzIQNph91Oj9w== -----END CERTIFICATE----- Sectigo Public Server Authentication Root E46 ============================================= -----BEGIN CERTIFICATE----- MIICOjCCAcGgAwIBAgIQQvLM2htpN0RfFf51KBC49DAKBggqhkjOPQQDAzBfMQswCQYDVQQGEwJH QjEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTYwNAYDVQQDEy1TZWN0aWdvIFB1YmxpYyBTZXJ2 ZXIgQXV0aGVudGljYXRpb24gUm9vdCBFNDYwHhcNMjEwMzIyMDAwMDAwWhcNNDYwMzIxMjM1OTU5 WjBfMQswCQYDVQQGEwJHQjEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTYwNAYDVQQDEy1TZWN0 aWdvIFB1YmxpYyBTZXJ2ZXIgQXV0aGVudGljYXRpb24gUm9vdCBFNDYwdjAQBgcqhkjOPQIBBgUr gQQAIgNiAAR2+pmpbiDt+dd34wc7qNs9Xzjoq1WmVk/WSOrsfy2qw7LFeeyZYX8QeccCWvkEN/U0 NSt3zn8gj1KjAIns1aeibVvjS5KToID1AZTc8GgHHs3u/iVStSBDHBv+6xnOQ6OjQjBAMB0GA1Ud DgQWBBTRItpMWfFLXyY4qp3W7usNw/upYTAOBgNVHQ8BAf8EBAMCAYYwDwYDVR0TAQH/BAUwAwEB /zAKBggqhkjOPQQDAwNnADBkAjAn7qRaqCG76UeXlImldCBteU/IvZNeWBj7LRoAasm4PdCkT0RH lAFWovgzJQxC36oCMB3q4S6ILuH5px0CMk7yn2xVdOOurvulGu7t0vzCAxHrRVxgED1cf5kDW21U SAGKcw== -----END CERTIFICATE----- Sectigo Public Server Authentication Root R46 ============================================= -----BEGIN CERTIFICATE----- MIIFijCCA3KgAwIBAgIQdY39i658BwD6qSWn4cetFDANBgkqhkiG9w0BAQwFADBfMQswCQYDVQQG EwJHQjEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTYwNAYDVQQDEy1TZWN0aWdvIFB1YmxpYyBT ZXJ2ZXIgQXV0aGVudGljYXRpb24gUm9vdCBSNDYwHhcNMjEwMzIyMDAwMDAwWhcNNDYwMzIxMjM1 OTU5WjBfMQswCQYDVQQGEwJHQjEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTYwNAYDVQQDEy1T ZWN0aWdvIFB1YmxpYyBTZXJ2ZXIgQXV0aGVudGljYXRpb24gUm9vdCBSNDYwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCTvtU2UnXYASOgHEdCSe5jtrch/cSV1UgrJnwUUxDaef0rty2k 1Cz66jLdScK5vQ9IPXtamFSvnl0xdE8H/FAh3aTPaE8bEmNtJZlMKpnzSDBh+oF8HqcIStw+Kxwf GExxqjWMrfhu6DtK2eWUAtaJhBOqbchPM8xQljeSM9xfiOefVNlI8JhD1mb9nxc4Q8UBUQvX4yMP FF1bFOdLvt30yNoDN9HWOaEhUTCDsG3XME6WW5HwcCSrv0WBZEMNvSE6Lzzpng3LILVCJ8zab5vu ZDCQOc2TZYEhMbUjUDM3IuM47fgxMMxF/mL50V0yeUKH32rMVhlATc6qu/m1dkmU8Sf4kaWD5Qaz Yw6A3OASVYCmO2a0OYctyPDQ0RTp5A1NDvZdV3LFOxxHVp3i1fuBYYzMTYCQNFu31xR13NgESJ/A wSiItOkcyqex8Va3e0lMWeUgFaiEAin6OJRpmkkGj80feRQXEgyDet4fsZfu+Zd4KKTIRJLpfSYF plhym3kT2BFfrsU4YjRosoYwjviQYZ4ybPUHNs2iTG7sijbt8uaZFURww3y8nDnAtOFr94MlI1fZ EoDlSfB1D++N6xybVCi0ITz8fAr/73trdf+LHaAZBav6+CuBQug4urv7qv094PPK306Xlynt8xhW 6aWWrL3DkJiy4Pmi1KZHQ3xtzwIDAQABo0IwQDAdBgNVHQ4EFgQUVnNYZJX5khqwEioEYnmhQBWI IUkwDgYDVR0PAQH/BAQDAgGGMA8GA1UdEwEB/wQFMAMBAf8wDQYJKoZIhvcNAQEMBQADggIBAC9c mTz8Bl6MlC5w6tIyMY208FHVvArzZJ8HXtXBc2hkeqK5Duj5XYUtqDdFqij0lgVQYKlJfp/imTYp E0RHap1VIDzYm/EDMrraQKFz6oOht0SmDpkBm+S8f74TlH7Kph52gDY9hAaLMyZlbcp+nv4fjFg4 exqDsQ+8FxG75gbMY/qB8oFM2gsQa6H61SilzwZAFv97fRheORKkU55+MkIQpiGRqRxOF3yEvJ+M 0ejf5lG5Nkc/kLnHvALcWxxPDkjBJYOcCj+esQMzEhonrPcibCTRAUH4WAP+JWgiH5paPHxsnnVI 84HxZmduTILA7rpXDhjvLpr3Etiga+kFpaHpaPi8TD8SHkXoUsCjvxInebnMMTzD9joiFgOgyY9m pFuiTdaBJQbpdqQACj7LzTWb4OE4y2BThihCQRxEV+ioratF4yUQvNs+ZUH7G6aXD+u5dHn5Hrwd Vw1Hr8Mvn4dGp+smWg9WY7ViYG4A++MnESLn/pmPNPW56MORcr3Ywx65LvKRRFHQV80MNNVIIb/b E/FmJUNS0nAiNs2fxBx1IK1jcmMGDw4nztJqDby1ORrp0XZ60Vzk50lJLVU3aPAaOpg+VBeHVOmm J1CJeyAvP/+/oYtKR5j/K3tJPsMpRmAYQqszKbrAKbkTidOIijlBO8n9pu0f9GBj39ItVQGL -----END CERTIFICATE----- SSL.com TLS RSA Root CA 2022 ============================ -----BEGIN CERTIFICATE----- MIIFiTCCA3GgAwIBAgIQb77arXO9CEDii02+1PdbkTANBgkqhkiG9w0BAQsFADBOMQswCQYDVQQG EwJVUzEYMBYGA1UECgwPU1NMIENvcnBvcmF0aW9uMSUwIwYDVQQDDBxTU0wuY29tIFRMUyBSU0Eg Um9vdCBDQSAyMDIyMB4XDTIyMDgyNTE2MzQyMloXDTQ2MDgxOTE2MzQyMVowTjELMAkGA1UEBhMC VVMxGDAWBgNVBAoMD1NTTCBDb3Jwb3JhdGlvbjElMCMGA1UEAwwcU1NMLmNvbSBUTFMgUlNBIFJv b3QgQ0EgMjAyMjCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANCkCXJPQIgSYT41I57u 9nTPL3tYPc48DRAokC+X94xI2KDYJbFMsBFMF3NQ0CJKY7uB0ylu1bUJPiYYf7ISf5OYt6/wNr/y 7hienDtSxUcZXXTzZGbVXcdotL8bHAajvI9AI7YexoS9UcQbOcGV0insS657Lb85/bRi3pZ7Qcac oOAGcvvwB5cJOYF0r/c0WRFXCsJbwST0MXMwgsadugL3PnxEX4MN8/HdIGkWCVDi1FW24IBydm5M R7d1VVm0U3TZlMZBrViKMWYPHqIbKUBOL9975hYsLfy/7PO0+r4Y9ptJ1O4Fbtk085zx7AGL0SDG D6C1vBdOSHtRwvzpXGk3R2azaPgVKPC506QVzFpPulJwoxJF3ca6TvvC0PeoUidtbnm1jPx7jMEW TO6Af77wdr5BUxIzrlo4QqvXDz5BjXYHMtWrifZOZ9mxQnUjbvPNQrL8VfVThxc7wDNY8VLS+YCk 8OjwO4s4zKTGkH8PnP2L0aPP2oOnaclQNtVcBdIKQXTbYxE3waWglksejBYSd66UNHsef8JmAOSq g+qKkK3ONkRN0VHpvB/zagX9wHQfJRlAUW7qglFA35u5CCoGAtUjHBPW6dvbxrB6y3snm/vg1UYk 7RBLY0ulBY+6uB0rpvqR4pJSvezrZ5dtmi2fgTIFZzL7SAg/2SW4BCUvAgMBAAGjYzBhMA8GA1Ud EwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAU+y437uOEeicuzRk1sTN8/9REQrkwHQYDVR0OBBYEFPsu N+7jhHonLs0ZNbEzfP/UREK5MA4GA1UdDwEB/wQEAwIBhjANBgkqhkiG9w0BAQsFAAOCAgEAjYlt hEUY8U+zoO9opMAdrDC8Z2awms22qyIZZtM7QbUQnRC6cm4pJCAcAZli05bg4vsMQtfhWsSWTVTN j8pDU/0quOr4ZcoBwq1gaAafORpR2eCNJvkLTqVTJXojpBzOCBvfR4iyrT7gJ4eLSYwfqUdYe5by iB0YrrPRpgqU+tvT5TgKa3kSM/tKWTcWQA673vWJDPFs0/dRa1419dvAJuoSc06pkZCmF8NsLzjU o3KUQyxi4U5cMj29TH0ZR6LDSeeWP4+a0zvkEdiLA9z2tmBVGKaBUfPhqBVq6+AL8BQx1rmMRTqo ENjwuSfr98t67wVylrXEj5ZzxOhWc5y8aVFjvO9nHEMaX3cZHxj4HCUp+UmZKbaSPaKDN7Egkaib MOlqbLQjk2UEqxHzDh1TJElTHaE/nUiSEeJ9DU/1172iWD54nR4fK/4huxoTtrEoZP2wAgDHbICi vRZQIA9ygV/MlP+7mea6kMvq+cYMwq7FGc4zoWtcu358NFcXrfA/rs3qr5nsLFR+jM4uElZI7xc7 P0peYNLcdDa8pUNjyw9bowJWCZ4kLOGGgYz+qxcs+sjiMho6/4UIyYOf8kpIEFR3N+2ivEC+5BB0 9+Rbu7nzifmPQdjH5FCQNYA+HLhNkNPU98OwoX6EyneSMSy4kLGCenROmxMmtNVQZlR4rmA= -----END CERTIFICATE----- SSL.com TLS ECC Root CA 2022 ============================ -----BEGIN CERTIFICATE----- MIICOjCCAcCgAwIBAgIQFAP1q/s3ixdAW+JDsqXRxDAKBggqhkjOPQQDAzBOMQswCQYDVQQGEwJV UzEYMBYGA1UECgwPU1NMIENvcnBvcmF0aW9uMSUwIwYDVQQDDBxTU0wuY29tIFRMUyBFQ0MgUm9v dCBDQSAyMDIyMB4XDTIyMDgyNTE2MzM0OFoXDTQ2MDgxOTE2MzM0N1owTjELMAkGA1UEBhMCVVMx GDAWBgNVBAoMD1NTTCBDb3Jwb3JhdGlvbjElMCMGA1UEAwwcU1NMLmNvbSBUTFMgRUNDIFJvb3Qg Q0EgMjAyMjB2MBAGByqGSM49AgEGBSuBBAAiA2IABEUpNXP6wrgjzhR9qLFNoFs27iosU8NgCTWy JGYmacCzldZdkkAZDsalE3D07xJRKF3nzL35PIXBz5SQySvOkkJYWWf9lCcQZIxPBLFNSeR7T5v1 5wj4A4j3p8OSSxlUgaNjMGEwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBSJjy+j6CugFFR7 81a4Jl9nOAuc0DAdBgNVHQ4EFgQUiY8vo+groBRUe/NWuCZfZzgLnNAwDgYDVR0PAQH/BAQDAgGG MAoGCCqGSM49BAMDA2gAMGUCMFXjIlbp15IkWE8elDIPDAI2wv2sdDJO4fscgIijzPvX6yv/N33w 7deedWo1dlJF4AIxAMeNb0Igj762TVntd00pxCAgRWSGOlDGxK0tk/UYfXLtqc/ErFc2KAhl3zx5 Zn6g6g== -----END CERTIFICATE----- Atos TrustedRoot Root CA ECC TLS 2021 ===================================== -----BEGIN CERTIFICATE----- MIICFTCCAZugAwIBAgIQPZg7pmY9kGP3fiZXOATvADAKBggqhkjOPQQDAzBMMS4wLAYDVQQDDCVB dG9zIFRydXN0ZWRSb290IFJvb3QgQ0EgRUNDIFRMUyAyMDIxMQ0wCwYDVQQKDARBdG9zMQswCQYD VQQGEwJERTAeFw0yMTA0MjIwOTI2MjNaFw00MTA0MTcwOTI2MjJaMEwxLjAsBgNVBAMMJUF0b3Mg VHJ1c3RlZFJvb3QgUm9vdCBDQSBFQ0MgVExTIDIwMjExDTALBgNVBAoMBEF0b3MxCzAJBgNVBAYT AkRFMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAEloZYKDcKZ9Cg3iQZGeHkBQcfl+3oZIK59sRxUM6K DP/XtXa7oWyTbIOiaG6l2b4siJVBzV3dscqDY4PMwL502eCdpO5KTlbgmClBk1IQ1SQ4AjJn8ZQS b+/Xxd4u/RmAo0IwQDAPBgNVHRMBAf8EBTADAQH/MB0GA1UdDgQWBBR2KCXWfeBmmnoJsmo7jjPX NtNPojAOBgNVHQ8BAf8EBAMCAYYwCgYIKoZIzj0EAwMDaAAwZQIwW5kp85wxtolrbNa9d+F851F+ uDrNozZffPc8dz7kUK2o59JZDCaOMDtuCCrCp1rIAjEAmeMM56PDr9NJLkaCI2ZdyQAUEv049OGY a3cpetskz2VAv9LcjBHo9H1/IISpQuQo -----END CERTIFICATE----- Atos TrustedRoot Root CA RSA TLS 2021 ===================================== -----BEGIN CERTIFICATE----- MIIFZDCCA0ygAwIBAgIQU9XP5hmTC/srBRLYwiqipDANBgkqhkiG9w0BAQwFADBMMS4wLAYDVQQD DCVBdG9zIFRydXN0ZWRSb290IFJvb3QgQ0EgUlNBIFRMUyAyMDIxMQ0wCwYDVQQKDARBdG9zMQsw CQYDVQQGEwJERTAeFw0yMTA0MjIwOTIxMTBaFw00MTA0MTcwOTIxMDlaMEwxLjAsBgNVBAMMJUF0 b3MgVHJ1c3RlZFJvb3QgUm9vdCBDQSBSU0EgVExTIDIwMjExDTALBgNVBAoMBEF0b3MxCzAJBgNV BAYTAkRFMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtoAOxHm9BYx9sKOdTSJNy/BB l01Z4NH+VoyX8te9j2y3I49f1cTYQcvyAh5x5en2XssIKl4w8i1mx4QbZFc4nXUtVsYvYe+W/CBG vevUez8/fEc4BKkbqlLfEzfTFRVOvV98r61jx3ncCHvVoOX3W3WsgFWZkmGbzSoXfduP9LVq6hdK ZChmFSlsAvFr1bqjM9xaZ6cF4r9lthawEO3NUDPJcFDsGY6wx/J0W2tExn2WuZgIWWbeKQGb9Cpt 0xU6kGpn8bRrZtkh68rZYnxGEFzedUlnnkL5/nWpo63/dgpnQOPF943HhZpZnmKaau1Fh5hnstVK PNe0OwANwI8f4UDErmwh3El+fsqyjW22v5MvoVw+j8rtgI5Y4dtXz4U2OLJxpAmMkokIiEjxQGMY sluMWuPD0xeqqxmjLBvk1cbiZnrXghmmOxYsL3GHX0WelXOTwkKBIROW1527k2gV+p2kHYzygeBY Br3JtuP2iV2J+axEoctr+hbxx1A9JNr3w+SH1VbxT5Aw+kUJWdo0zuATHAR8ANSbhqRAvNncTFd+ rrcztl524WWLZt+NyteYr842mIycg5kDcPOvdO3GDjbnvezBc6eUWsuSZIKmAMFwoW4sKeFYV+xa fJlrJaSQOoD0IJ2azsct+bJLKZWD6TWNp0lIpw9MGZHQ9b8Q4HECAwEAAaNCMEAwDwYDVR0TAQH/ BAUwAwEB/zAdBgNVHQ4EFgQUdEmZ0f+0emhFdcN+tNzMzjkz2ggwDgYDVR0PAQH/BAQDAgGGMA0G CSqGSIb3DQEBDAUAA4ICAQAjQ1MkYlxt/T7Cz1UAbMVWiLkO3TriJQ2VSpfKgInuKs1l+NsW4AmS 4BjHeJi78+xCUvuppILXTdiK/ORO/auQxDh1MoSf/7OwKwIzNsAQkG8dnK/haZPso0UvFJ/1TCpl Q3IM98P4lYsU84UgYt1UU90s3BiVaU+DR3BAM1h3Egyi61IxHkzJqM7F78PRreBrAwA0JrRUITWX AdxfG/F851X6LWh3e9NpzNMOa7pNdkTWwhWaJuywxfW70Xp0wmzNxbVe9kzmWy2B27O3Opee7c9G slA9hGCZcbUztVdF5kJHdWoOsAgMrr3e97sPWD2PAzHoPYJQyi9eDF20l74gNAf0xBLh7tew2Vkt afcxBPTy+av5EzH4AXcOPUIjJsyacmdRIXrMPIWo6iFqO9taPKU0nprALN+AnCng33eU0aKAQv9q TFsR0PXNor6uzFFcw9VUewyu1rkGd4Di7wcaaMxZUa1+XGdrudviB0JbuAEFWDlN5LuYo7Ey7Nmj 1m+UI/87tyll5gfp77YZ6ufCOB0yiJA8EytuzO+rdwY0d4RPcuSBhPm5dDTedk+SKlOxJTnbPP/l PqYO5Wue/9vsL3SD3460s6neFE3/MaNFcyT6lSnMEpcEoji2jbDwN/zIIX8/syQbPYtuzE2wFg2W HYMfRsCbvUOZ58SWLs5fyQ== -----END CERTIFICATE----- TrustAsia Global Root CA G3 =========================== -----BEGIN CERTIFICATE----- MIIFpTCCA42gAwIBAgIUZPYOZXdhaqs7tOqFhLuxibhxkw8wDQYJKoZIhvcNAQEMBQAwWjELMAkG A1UEBhMCQ04xJTAjBgNVBAoMHFRydXN0QXNpYSBUZWNobm9sb2dpZXMsIEluYy4xJDAiBgNVBAMM G1RydXN0QXNpYSBHbG9iYWwgUm9vdCBDQSBHMzAeFw0yMTA1MjAwMjEwMTlaFw00NjA1MTkwMjEw MTlaMFoxCzAJBgNVBAYTAkNOMSUwIwYDVQQKDBxUcnVzdEFzaWEgVGVjaG5vbG9naWVzLCBJbmMu MSQwIgYDVQQDDBtUcnVzdEFzaWEgR2xvYmFsIFJvb3QgQ0EgRzMwggIiMA0GCSqGSIb3DQEBAQUA A4ICDwAwggIKAoICAQDAMYJhkuSUGwoqZdC+BqmHO1ES6nBBruL7dOoKjbmzTNyPtxNST1QY4Sxz lZHFZjtqz6xjbYdT8PfxObegQ2OwxANdV6nnRM7EoYNl9lA+sX4WuDqKAtCWHwDNBSHvBm3dIZwZ Q0WhxeiAysKtQGIXBsaqvPPW5vxQfmZCHzyLpnl5hkA1nyDvP+uLRx+PjsXUjrYsyUQE49RDdT/V P68czH5GX6zfZBCK70bwkPAPLfSIC7Epqq+FqklYqL9joDiR5rPmd2jE+SoZhLsO4fWvieylL1Ag dB4SQXMeJNnKziyhWTXAyB1GJ2Faj/lN03J5Zh6fFZAhLf3ti1ZwA0pJPn9pMRJpxx5cynoTi+jm 9WAPzJMshH/x/Gr8m0ed262IPfN2dTPXS6TIi/n1Q1hPy8gDVI+lhXgEGvNz8teHHUGf59gXzhqc D0r83ERoVGjiQTz+LISGNzzNPy+i2+f3VANfWdP3kXjHi3dqFuVJhZBFcnAvkV34PmVACxmZySYg WmjBNb9Pp1Hx2BErW+Canig7CjoKH8GB5S7wprlppYiU5msTf9FkPz2ccEblooV7WIQn3MSAPmea mseaMQ4w7OYXQJXZRe0Blqq/DPNL0WP3E1jAuPP6Z92bfW1K/zJMtSU7/xxnD4UiWQWRkUF3gdCF TIcQcf+eQxuulXUtgQIDAQABo2MwYTAPBgNVHRMBAf8EBTADAQH/MB8GA1UdIwQYMBaAFEDk5PIj 7zjKsK5Xf/IhMBY027ySMB0GA1UdDgQWBBRA5OTyI+84yrCuV3/yITAWNNu8kjAOBgNVHQ8BAf8E BAMCAQYwDQYJKoZIhvcNAQEMBQADggIBACY7UeFNOPMyGLS0XuFlXsSUT9SnYaP4wM8zAQLpw6o1 D/GUE3d3NZ4tVlFEbuHGLige/9rsR82XRBf34EzC4Xx8MnpmyFq2XFNFV1pF1AWZLy4jVe5jaN/T G3inEpQGAHUNcoTpLrxaatXeL1nHo+zSh2bbt1S1JKv0Q3jbSwTEb93mPmY+KfJLaHEih6D4sTNj duMNhXJEIlU/HHzp/LgV6FL6qj6jITk1dImmasI5+njPtqzn59ZW/yOSLlALqbUHM/Q4X6RJpstl cHboCoWASzY9M/eVVHUl2qzEc4Jl6VL1XP04lQJqaTDFHApXB64ipCz5xUG3uOyfT0gA+QEEVcys +TIxxHWVBqB/0Y0n3bOppHKH/lmLmnp0Ft0WpWIp6zqW3IunaFnT63eROfjXy9mPX1onAX1daBli 2MjN9LdyR75bl87yraKZk62Uy5P2EgmVtqvXO9A/EcswFi55gORngS1d7XB4tmBZrOFdRWOPyN9y aFvqHbgB8X7754qz41SgOAngPN5C8sLtLpvzHzW2NtjjgKGLzZlkD8Kqq7HK9W+eQ42EVJmzbsAS ZthwEPEGNTNDqJwuuhQxzhB/HIbjj9LV+Hfsm6vxL2PZQl/gZ4FkkfGXL/xuJvYz+NO1+MRiqzFR JQJ6+N1rZdVtTTDIZbpoFGWsJwt0ivKH -----END CERTIFICATE----- TrustAsia Global Root CA G4 =========================== -----BEGIN CERTIFICATE----- MIICVTCCAdygAwIBAgIUTyNkuI6XY57GU4HBdk7LKnQV1tcwCgYIKoZIzj0EAwMwWjELMAkGA1UE BhMCQ04xJTAjBgNVBAoMHFRydXN0QXNpYSBUZWNobm9sb2dpZXMsIEluYy4xJDAiBgNVBAMMG1Ry dXN0QXNpYSBHbG9iYWwgUm9vdCBDQSBHNDAeFw0yMTA1MjAwMjEwMjJaFw00NjA1MTkwMjEwMjJa MFoxCzAJBgNVBAYTAkNOMSUwIwYDVQQKDBxUcnVzdEFzaWEgVGVjaG5vbG9naWVzLCBJbmMuMSQw IgYDVQQDDBtUcnVzdEFzaWEgR2xvYmFsIFJvb3QgQ0EgRzQwdjAQBgcqhkjOPQIBBgUrgQQAIgNi AATxs8045CVD5d4ZCbuBeaIVXxVjAd7Cq92zphtnS4CDr5nLrBfbK5bKfFJV4hrhPVbwLxYI+hW8 m7tH5j/uqOFMjPXTNvk4XatwmkcN4oFBButJ+bAp3TPsUKV/eSm4IJijYzBhMA8GA1UdEwEB/wQF MAMBAf8wHwYDVR0jBBgwFoAUpbtKl86zK3+kMd6Xg1mDpm9xy94wHQYDVR0OBBYEFKW7SpfOsyt/ pDHel4NZg6ZvccveMA4GA1UdDwEB/wQEAwIBBjAKBggqhkjOPQQDAwNnADBkAjBe8usGzEkxn0AA bbd+NvBNEU/zy4k6LHiRUKNbwMp1JvK/kF0LgoxgKJ/GcJpo5PECMFxYDlZ2z1jD1xCMuo6u47xk dUfFVZDj/bpV6wfEU6s3qe4hsiFbYI89MvHVI5TWWA== -----END CERTIFICATE----- CommScope Public Trust ECC Root-01 ================================== -----BEGIN CERTIFICATE----- MIICHTCCAaOgAwIBAgIUQ3CCd89NXTTxyq4yLzf39H91oJ4wCgYIKoZIzj0EAwMwTjELMAkGA1UE BhMCVVMxEjAQBgNVBAoMCUNvbW1TY29wZTErMCkGA1UEAwwiQ29tbVNjb3BlIFB1YmxpYyBUcnVz dCBFQ0MgUm9vdC0wMTAeFw0yMTA0MjgxNzM1NDNaFw00NjA0MjgxNzM1NDJaME4xCzAJBgNVBAYT AlVTMRIwEAYDVQQKDAlDb21tU2NvcGUxKzApBgNVBAMMIkNvbW1TY29wZSBQdWJsaWMgVHJ1c3Qg RUNDIFJvb3QtMDEwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAARLNumuV16ocNfQj3Rid8NeeqrltqLx eP0CflfdkXmcbLlSiFS8LwS+uM32ENEp7LXQoMPwiXAZu1FlxUOcw5tjnSCDPgYLpkJEhRGnSjot 6dZoL0hOUysHP029uax3OVejQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMB0G A1UdDgQWBBSOB2LAUN3GGQYARnQE9/OufXVNMDAKBggqhkjOPQQDAwNoADBlAjEAnDPfQeMjqEI2 Jpc1XHvr20v4qotzVRVcrHgpD7oh2MSg2NED3W3ROT3Ek2DS43KyAjB8xX6I01D1HiXo+k515liW pDVfG2XqYZpwI7UNo5uSUm9poIyNStDuiw7LR47QjRE= -----END CERTIFICATE----- CommScope Public Trust ECC Root-02 ================================== -----BEGIN CERTIFICATE----- MIICHDCCAaOgAwIBAgIUKP2ZYEFHpgE6yhR7H+/5aAiDXX0wCgYIKoZIzj0EAwMwTjELMAkGA1UE BhMCVVMxEjAQBgNVBAoMCUNvbW1TY29wZTErMCkGA1UEAwwiQ29tbVNjb3BlIFB1YmxpYyBUcnVz dCBFQ0MgUm9vdC0wMjAeFw0yMTA0MjgxNzQ0NTRaFw00NjA0MjgxNzQ0NTNaME4xCzAJBgNVBAYT AlVTMRIwEAYDVQQKDAlDb21tU2NvcGUxKzApBgNVBAMMIkNvbW1TY29wZSBQdWJsaWMgVHJ1c3Qg RUNDIFJvb3QtMDIwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAR4MIHoYx7l63FRD/cHB8o5mXxO1Q/M MDALj2aTPs+9xYa9+bG3tD60B8jzljHz7aRP+KNOjSkVWLjVb3/ubCK1sK9IRQq9qEmUv4RDsNuE SgMjGWdqb8FuvAY5N9GIIvejQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQDAgEGMB0G A1UdDgQWBBTmGHX/72DehKT1RsfeSlXjMjZ59TAKBggqhkjOPQQDAwNnADBkAjAmc0l6tqvmSfR9 Uj/UQQSugEODZXW5hYA4O9Zv5JOGq4/nich/m35rChJVYaoR4HkCMHfoMXGsPHED1oQmHhS48zs7 3u1Z/GtMMH9ZzkXpc2AVmkzw5l4lIhVtwodZ0LKOag== -----END CERTIFICATE----- CommScope Public Trust RSA Root-01 ================================== -----BEGIN CERTIFICATE----- MIIFbDCCA1SgAwIBAgIUPgNJgXUWdDGOTKvVxZAplsU5EN0wDQYJKoZIhvcNAQELBQAwTjELMAkG A1UEBhMCVVMxEjAQBgNVBAoMCUNvbW1TY29wZTErMCkGA1UEAwwiQ29tbVNjb3BlIFB1YmxpYyBU cnVzdCBSU0EgUm9vdC0wMTAeFw0yMTA0MjgxNjQ1NTRaFw00NjA0MjgxNjQ1NTNaME4xCzAJBgNV BAYTAlVTMRIwEAYDVQQKDAlDb21tU2NvcGUxKzApBgNVBAMMIkNvbW1TY29wZSBQdWJsaWMgVHJ1 c3QgUlNBIFJvb3QtMDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCwSGWjDR1C45Ft nYSkYZYSwu3D2iM0GXb26v1VWvZVAVMP8syMl0+5UMuzAURWlv2bKOx7dAvnQmtVzslhsuitQDy6 uUEKBU8bJoWPQ7VAtYXR1HHcg0Hz9kXHgKKEUJdGzqAMxGBWBB0HW0alDrJLpA6lfO741GIDuZNq ihS4cPgugkY4Iw50x2tBt9Apo52AsH53k2NC+zSDO3OjWiE260f6GBfZumbCk6SP/F2krfxQapWs vCQz0b2If4b19bJzKo98rwjyGpg/qYFlP8GMicWWMJoKz/TUyDTtnS+8jTiGU+6Xn6myY5QXjQ/c Zip8UlF1y5mO6D1cv547KI2DAg+pn3LiLCuz3GaXAEDQpFSOm117RTYm1nJD68/A6g3czhLmfTif BSeolz7pUcZsBSjBAg/pGG3svZwG1KdJ9FQFa2ww8esD1eo9anbCyxooSU1/ZOD6K9pzg4H/kQO9 lLvkuI6cMmPNn7togbGEW682v3fuHX/3SZtS7NJ3Wn2RnU3COS3kuoL4b/JOHg9O5j9ZpSPcPYeo KFgo0fEbNttPxP/hjFtyjMcmAyejOQoBqsCyMWCDIqFPEgkBEa801M/XrmLTBQe0MXXgDW1XT2mH +VepuhX2yFJtocucH+X8eKg1mp9BFM6ltM6UCBwJrVbl2rZJmkrqYxhTnCwuwwIDAQABo0IwQDAP BgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUN12mmnQywsL5x6YVEFm4 5P3luG0wDQYJKoZIhvcNAQELBQADggIBAK+nz97/4L1CjU3lIpbfaOp9TSp90K09FlxD533Ahuh6 NWPxzIHIxgvoLlI1pKZJkGNRrDSsBTtXAOnTYtPZKdVUvhwQkZyybf5Z/Xn36lbQnmhUQo8mUuJM 3y+Xpi/SB5io82BdS5pYV4jvguX6r2yBS5KPQJqTRlnLX3gWsWc+QgvfKNmwrZggvkN80V4aCRck jXtdlemrwWCrWxhkgPut4AZ9HcpZuPN4KWfGVh2vtrV0KnahP/t1MJ+UXjulYPPLXAziDslg+Mkf Foom3ecnf+slpoq9uC02EJqxWE2aaE9gVOX2RhOOiKy8IUISrcZKiX2bwdgt6ZYD9KJ0DLwAHb/W NyVntHKLr4W96ioDj8z7PEQkguIBpQtZtjSNMgsSDesnwv1B10A8ckYpwIzqug/xBpMu95yo9GA+ o/E4Xo4TwbM6l4c/ksp4qRyv0LAbJh6+cOx69TOY6lz/KwsETkPdY34Op054A5U+1C0wlREQKC6/ oAI+/15Z0wUOlV9TRe9rh9VIzRamloPh37MG88EU26fsHItdkJANclHnYfkUyq+Dj7+vsQpZXdxc 1+SWrVtgHdqul7I52Qb1dgAT+GhMIbA1xNxVssnBQVocicCMb3SgazNNtQEo/a2tiRc7ppqEvOuM 6sRxJKi6KfkIsidWNTJf6jn7MZrVGczw -----END CERTIFICATE----- CommScope Public Trust RSA Root-02 ================================== -----BEGIN CERTIFICATE----- MIIFbDCCA1SgAwIBAgIUVBa/O345lXGN0aoApYYNK496BU4wDQYJKoZIhvcNAQELBQAwTjELMAkG A1UEBhMCVVMxEjAQBgNVBAoMCUNvbW1TY29wZTErMCkGA1UEAwwiQ29tbVNjb3BlIFB1YmxpYyBU cnVzdCBSU0EgUm9vdC0wMjAeFw0yMTA0MjgxNzE2NDNaFw00NjA0MjgxNzE2NDJaME4xCzAJBgNV BAYTAlVTMRIwEAYDVQQKDAlDb21tU2NvcGUxKzApBgNVBAMMIkNvbW1TY29wZSBQdWJsaWMgVHJ1 c3QgUlNBIFJvb3QtMDIwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDh+g77aAASyE3V rCLENQE7xVTlWXZjpX/rwcRqmL0yjReA61260WI9JSMZNRTpf4mnG2I81lDnNJUDMrG0kyI9p+Kx 7eZ7Ti6Hmw0zdQreqjXnfuU2mKKuJZ6VszKWpCtYHu8//mI0SFHRtI1CrWDaSWqVcN3SAOLMV2MC e5bdSZdbkk6V0/nLKR8YSvgBKtJjCW4k6YnS5cciTNxzhkcAqg2Ijq6FfUrpuzNPDlJwnZXjfG2W Wy09X6GDRl224yW4fKcZgBzqZUPckXk2LHR88mcGyYnJ27/aaL8j7dxrrSiDeS/sOKUNNwFnJ5rp M9kzXzehxfCrPfp4sOcsn/Y+n2Dg70jpkEUeBVF4GiwSLFworA2iI540jwXmojPOEXcT1A6kHkIf hs1w/tkuFT0du7jyU1fbzMZ0KZwYszZ1OC4PVKH4kh+Jlk+71O6d6Ts2QrUKOyrUZHk2EOH5kQMr eyBUzQ0ZGshBMjTRsJnhkB4BQDa1t/qp5Xd1pCKBXbCL5CcSD1SIxtuFdOa3wNemKfrb3vOTlycE VS8KbzfFPROvCgCpLIscgSjX74Yxqa7ybrjKaixUR9gqiC6vwQcQeKwRoi9C8DfF8rhW3Q5iLc4t Vn5V8qdE9isy9COoR+jUKgF4z2rDN6ieZdIs5fq6M8EGRPbmz6UNp2YINIos8wIDAQABo0IwQDAP BgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUR9DnsSL/nSz12Vdgs7Gx cJXvYXowDQYJKoZIhvcNAQELBQADggIBAIZpsU0v6Z9PIpNojuQhmaPORVMbc0RTAIFhzTHjCLqB KCh6krm2qMhDnscTJk3C2OVVnJJdUNjCK9v+5qiXz1I6JMNlZFxHMaNlNRPDk7n3+VGXu6TwYofF 1gbTl4MgqX67tiHCpQ2EAOHyJxCDut0DgdXdaMNmEMjRdrSzbymeAPnCKfWxkxlSaRosTKCL4BWa MS/TiJVZbuXEs1DIFAhKm4sTg7GkcrI7djNB3NyqpgdvHSQSn8h2vS/ZjvQs7rfSOBAkNlEv41xd gSGn2rtO/+YHqP65DSdsu3BaVXoT6fEqSWnHX4dXTEN5bTpl6TBcQe7rd6VzEojov32u5cSoHw2O HG1QAk8mGEPej1WFsQs3BWDJVTkSBKEqz3EWnzZRSb9wO55nnPt7eck5HHisd5FUmrh1CoFSl+Nm YWvtPjgelmFV4ZFUjO2MJB+ByRCac5krFk5yAD9UG/iNuovnFNa2RU9g7Jauwy8CTl2dlklyALKr dVwPaFsdZcJfMw8eD/A7hvWwTruc9+olBdytoptLFwG+Qt81IR2tq670v64fG9PiO/yzcnMcmyiQ iRM9HcEARwmWmjgb3bHPDcK0RPOWlc4yOo80nOAXx17Org3bhzjlP1v9mxnhMUF6cKojawHhRUzN lM47ni3niAIi9G7oyOzWPPO5std3eqx7 -----END CERTIFICATE----- Telekom Security TLS ECC Root 2020 ================================== -----BEGIN CERTIFICATE----- MIICQjCCAcmgAwIBAgIQNjqWjMlcsljN0AFdxeVXADAKBggqhkjOPQQDAzBjMQswCQYDVQQGEwJE RTEnMCUGA1UECgweRGV1dHNjaGUgVGVsZWtvbSBTZWN1cml0eSBHbWJIMSswKQYDVQQDDCJUZWxl a29tIFNlY3VyaXR5IFRMUyBFQ0MgUm9vdCAyMDIwMB4XDTIwMDgyNTA3NDgyMFoXDTQ1MDgyNTIz NTk1OVowYzELMAkGA1UEBhMCREUxJzAlBgNVBAoMHkRldXRzY2hlIFRlbGVrb20gU2VjdXJpdHkg R21iSDErMCkGA1UEAwwiVGVsZWtvbSBTZWN1cml0eSBUTFMgRUNDIFJvb3QgMjAyMDB2MBAGByqG SM49AgEGBSuBBAAiA2IABM6//leov9Wq9xCazbzREaK9Z0LMkOsVGJDZos0MKiXrPk/OtdKPD/M1 2kOLAoC+b1EkHQ9rK8qfwm9QMuU3ILYg/4gND21Ju9sGpIeQkpT0CdDPf8iAC8GXs7s1J8nCG6NC MEAwHQYDVR0OBBYEFONyzG6VmUex5rNhTNHLq+O6zd6fMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMAoGCCqGSM49BAMDA2cAMGQCMHVSi7ekEE+uShCLsoRbQuHmKjYC2qBuGT8lv9pZ Mo7k+5Dck2TOrbRBR2Diz6fLHgIwN0GMZt9Ba9aDAEH9L1r3ULRn0SyocddDypwnJJGDSA3PzfdU ga/sf+Rn27iQ7t0l -----END CERTIFICATE----- Telekom Security TLS RSA Root 2023 ================================== -----BEGIN CERTIFICATE----- MIIFszCCA5ugAwIBAgIQIZxULej27HF3+k7ow3BXlzANBgkqhkiG9w0BAQwFADBjMQswCQYDVQQG EwJERTEnMCUGA1UECgweRGV1dHNjaGUgVGVsZWtvbSBTZWN1cml0eSBHbWJIMSswKQYDVQQDDCJU ZWxla29tIFNlY3VyaXR5IFRMUyBSU0EgUm9vdCAyMDIzMB4XDTIzMDMyODEyMTY0NVoXDTQ4MDMy NzIzNTk1OVowYzELMAkGA1UEBhMCREUxJzAlBgNVBAoMHkRldXRzY2hlIFRlbGVrb20gU2VjdXJp dHkgR21iSDErMCkGA1UEAwwiVGVsZWtvbSBTZWN1cml0eSBUTFMgUlNBIFJvb3QgMjAyMzCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAO01oYGA88tKaVvC+1GDrib94W7zgRJ9cUD/h3VC KSHtgVIs3xLBGYSJwb3FKNXVS2xE1kzbB5ZKVXrKNoIENqil/Cf2SfHVcp6R+SPWcHu79ZvB7JPP GeplfohwoHP89v+1VmLhc2o0mD6CuKyVU/QBoCcHcqMAU6DksquDOFczJZSfvkgdmOGjup5czQRx UX11eKvzWarE4GC+j4NSuHUaQTXtvPM6Y+mpFEXX5lLRbtLevOP1Czvm4MS9Q2QTps70mDdsipWo l8hHD/BeEIvnHRz+sTugBTNoBUGCwQMrAcjnj02r6LX2zWtEtefdi+zqJbQAIldNsLGyMcEWzv/9 FIS3R/qy8XDe24tsNlikfLMR0cN3f1+2JeANxdKz+bi4d9s3cXFH42AYTyS2dTd4uaNir73Jco4v zLuu2+QVUhkHM/tqty1LkCiCc/4YizWN26cEar7qwU02OxY2kTLvtkCJkUPg8qKrBC7m8kwOFjQg rIfBLX7JZkcXFBGk8/ehJImr2BrIoVyxo/eMbcgByU/J7MT8rFEz0ciD0cmfHdRHNCk+y7AO+oML KFjlKdw/fKifybYKu6boRhYPluV75Gp6SG12mAWl3G0eQh5C2hrgUve1g8Aae3g1LDj1H/1Joy7S WWO/gLCMk3PLNaaZlSJhZQNg+y+TS/qanIA7AgMBAAGjYzBhMA4GA1UdDwEB/wQEAwIBBjAdBgNV HQ4EFgQUtqeXgj10hZv3PJ+TmpV5dVKMbUcwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBS2 p5eCPXSFm/c8n5OalXl1UoxtRzANBgkqhkiG9w0BAQwFAAOCAgEAqMxhpr51nhVQpGv7qHBFfLp+ sVr8WyP6Cnf4mHGCDG3gXkaqk/QeoMPhk9tLrbKmXauw1GLLXrtm9S3ul0A8Yute1hTWjOKWi0Fp kzXmuZlrYrShF2Y0pmtjxrlO8iLpWA1WQdH6DErwM807u20hOq6OcrXDSvvpfeWxm4bu4uB9tPcy /SKE8YXJN3nptT+/XOR0so8RYgDdGGah2XsjX/GO1WfoVNpbOms2b/mBsTNHM3dA+VKq3dSDz4V4 mZqTuXNnQkYRIer+CqkbGmVps4+uFrb2S1ayLfmlyOw7YqPta9BO1UAJpB+Y1zqlklkg5LB9zVtz aL1txKITDmcZuI1CfmwMmm6gJC3VRRvcxAIU/oVbZZfKTpBQCHpCNfnqwmbU+AGuHrS+w6jv/naa oqYfRvaE7fzbzsQCzndILIyy7MMAo+wsVRjBfhnu4S/yrYObnqsZ38aKL4x35bcF7DvB7L6Gs4a8 wPfc5+pbrrLMtTWGS9DiP7bY+A4A7l3j941Y/8+LN+ljX273CXE2whJdV/LItM3z7gLfEdxquVeE HVlNjM7IDiPCtyaaEBRx/pOyiriA8A4QntOoUAw3gi/q4Iqd4Sw5/7W0cwDk90imc6y/st53BIe0 o82bNSQ3+pCTE4FCxpgmdTdmQRCsu/WU48IxK63nI1bMNSWSs1A= -----END CERTIFICATE----- FIRMAPROFESIONAL CA ROOT-A WEB ============================== -----BEGIN CERTIFICATE----- MIICejCCAgCgAwIBAgIQMZch7a+JQn81QYehZ1ZMbTAKBggqhkjOPQQDAzBuMQswCQYDVQQGEwJF UzEcMBoGA1UECgwTRmlybWFwcm9mZXNpb25hbCBTQTEYMBYGA1UEYQwPVkFURVMtQTYyNjM0MDY4 MScwJQYDVQQDDB5GSVJNQVBST0ZFU0lPTkFMIENBIFJPT1QtQSBXRUIwHhcNMjIwNDA2MDkwMTM2 WhcNNDcwMzMxMDkwMTM2WjBuMQswCQYDVQQGEwJFUzEcMBoGA1UECgwTRmlybWFwcm9mZXNpb25h bCBTQTEYMBYGA1UEYQwPVkFURVMtQTYyNjM0MDY4MScwJQYDVQQDDB5GSVJNQVBST0ZFU0lPTkFM IENBIFJPT1QtQSBXRUIwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAARHU+osEaR3xyrq89Zfe9MEkVz6 iMYiuYMQYneEMy3pA4jU4DP37XcsSmDq5G+tbbT4TIqk5B/K6k84Si6CcyvHZpsKjECcfIr28jlg st7L7Ljkb+qbXbdTkBgyVcUgt5SjYzBhMA8GA1UdEwEB/wQFMAMBAf8wHwYDVR0jBBgwFoAUk+FD Y1w8ndYn81LsF7Kpryz3dvgwHQYDVR0OBBYEFJPhQ2NcPJ3WJ/NS7Beyqa8s93b4MA4GA1UdDwEB /wQEAwIBBjAKBggqhkjOPQQDAwNoADBlAjAdfKR7w4l1M+E7qUW/Runpod3JIha3RxEL2Jq68cgL cFBTApFwhVmpHqTm6iMxoAACMQD94vizrxa5HnPEluPBMBnYfubDl94cT7iJLzPrSA8Z94dGXSaQ pYXFuXqUPoeovQA= -----END CERTIFICATE----- TWCA CYBER Root CA ================== -----BEGIN CERTIFICATE----- MIIFjTCCA3WgAwIBAgIQQAE0jMIAAAAAAAAAATzyxjANBgkqhkiG9w0BAQwFADBQMQswCQYDVQQG EwJUVzESMBAGA1UEChMJVEFJV0FOLUNBMRAwDgYDVQQLEwdSb290IENBMRswGQYDVQQDExJUV0NB IENZQkVSIFJvb3QgQ0EwHhcNMjIxMTIyMDY1NDI5WhcNNDcxMTIyMTU1OTU5WjBQMQswCQYDVQQG EwJUVzESMBAGA1UEChMJVEFJV0FOLUNBMRAwDgYDVQQLEwdSb290IENBMRswGQYDVQQDExJUV0NB IENZQkVSIFJvb3QgQ0EwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDG+Moe2Qkgfh1s Ts6P40czRJzHyWmqOlt47nDSkvgEs1JSHWdyKKHfi12VCv7qze33Kc7wb3+szT3vsxxFavcokPFh V8UMxKNQXd7UtcsZyoC5dc4pztKFIuwCY8xEMCDa6pFbVuYdHNWdZsc/34bKS1PE2Y2yHer43CdT o0fhYcx9tbD47nORxc5zb87uEB8aBs/pJ2DFTxnk684iJkXXYJndzk834H/nY62wuFm40AZoNWDT Nq5xQwTxaWV4fPMf88oon1oglWa0zbfuj3ikRRjpJi+NmykosaS3Om251Bw4ckVYsV7r8Cibt4LK /c/WMw+f+5eesRycnupfXtuq3VTpMCEobY5583WSjCb+3MX2w7DfRFlDo7YDKPYIMKoNM+HvnKkH IuNZW0CP2oi3aQiotyMuRAlZN1vH4xfyIutuOVLF3lSnmMlLIJXcRolftBL5hSmO68gnFSDAS9TM fAxsNAwmmyYxpjyn9tnQS6Jk/zuZQXLB4HCX8SS7K8R0IrGsayIyJNN4KsDAoS/xUgXJP+92ZuJF 2A09rZXIx4kmyA+upwMu+8Ff+iDhcK2wZSA3M2Cw1a/XDBzCkHDXShi8fgGwsOsVHkQGzaRP6AzR wyAQ4VRlnrZR0Bp2a0JaWHY06rc3Ga4udfmW5cFZ95RXKSWNOkyrTZpB0F8mAwIDAQABo2MwYTAO BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBSdhWEUfMFib5do5E83 QOGt4A1WNzAdBgNVHQ4EFgQUnYVhFHzBYm+XaORPN0DhreANVjcwDQYJKoZIhvcNAQEMBQADggIB AGSPesRiDrWIzLjHhg6hShbNcAu3p4ULs3a2D6f/CIsLJc+o1IN1KriWiLb73y0ttGlTITVX1olN c79pj3CjYcya2x6a4CD4bLubIp1dhDGaLIrdaqHXKGnK/nZVekZn68xDiBaiA9a5F/gZbG0jAn/x X9AKKSM70aoK7akXJlQKTcKlTfjF/biBzysseKNnTKkHmvPfXvt89YnNdJdhEGoHK4Fa0o635yDR IG4kqIQnoVesqlVYL9zZyvpoBJ7tRCT5dEA7IzOrg1oYJkK2bVS1FmAwbLGg+LhBoF1JSdJlBTrq /p1hvIbZv97Tujqxf36SNI7JAG7cmL3c7IAFrQI932XtCwP39xaEBDG6k5TY8hL4iuO/Qq+n1M0R FxbIQh0UqEL20kCGoE8jypZFVmAGzbdVAaYBlGX+bgUJurSkquLvWL69J1bY73NxW0Qz8ppy6rBe Pm6pUlvscG21h483XjyMnM7k8M4MZ0HMzvaAq07MTFb1wWFZk7Q+ptq4NxKfKjLji7gh7MMrZQzv It6IKTtM1/r+t+FHvpw+PoP7UV31aPcuIYXcv/Fa4nzXxeSDwWrruoBa3lwtcHb4yOWHh8qgnaHl IhInD0Q9HWzq1MKLL295q39QpsQZp6F6t5b5wR9iWqJDB0BeJsas7a5wFsWqynKKTbDPAYsDP27X -----END CERTIFICATE----- SecureSign Root CA12 ==================== -----BEGIN CERTIFICATE----- MIIDcjCCAlqgAwIBAgIUZvnHwa/swlG07VOX5uaCwysckBYwDQYJKoZIhvcNAQELBQAwUTELMAkG A1UEBhMCSlAxIzAhBgNVBAoTGkN5YmVydHJ1c3QgSmFwYW4gQ28uLCBMdGQuMR0wGwYDVQQDExRT ZWN1cmVTaWduIFJvb3QgQ0ExMjAeFw0yMDA0MDgwNTM2NDZaFw00MDA0MDgwNTM2NDZaMFExCzAJ BgNVBAYTAkpQMSMwIQYDVQQKExpDeWJlcnRydXN0IEphcGFuIENvLiwgTHRkLjEdMBsGA1UEAxMU U2VjdXJlU2lnbiBSb290IENBMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6OcE3 emhFKxS06+QT61d1I02PJC0W6K6OyX2kVzsqdiUzg2zqMoqUm048luT9Ub+ZyZN+v/mtp7JIKwcc J/VMvHASd6SFVLX9kHrko+RRWAPNEHl57muTH2SOa2SroxPjcf59q5zdJ1M3s6oYwlkm7Fsf0uZl fO+TvdhYXAvA42VvPMfKWeP+bl+sg779XSVOKik71gurFzJ4pOE+lEa+Ym6b3kaosRbnhW70CEBF EaCeVESE99g2zvVQR9wsMJvuwPWW0v4JhscGWa5Pro4RmHvzC1KqYiaqId+OJTN5lxZJjfU+1Uef NzFJM3IFTQy2VYzxV4+Kh9GtxRESOaCtAgMBAAGjQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMB0GA1UdDgQWBBRXNPN0zwRL1SXm8UC2LEzZLemgrTANBgkqhkiG9w0BAQsFAAOC AQEAPrvbFxbS8hQBICw4g0utvsqFepq2m2um4fylOqyttCg6r9cBg0krY6LdmmQOmFxv3Y67ilQi LUoT865AQ9tPkbeGGuwAtEGBpE/6aouIs3YIcipJQMPTw4WJmBClnW8Zt7vPemVV2zfrPIpyMpce mik+rY3moxtt9XUa5rBouVui7mlHJzWhhpmA8zNL4WukJsPvdFlseqJkth5Ew1DgDzk9qTPxpfPS vWKErI4cqc1avTc7bgoitPQV55FYxTpE05Uo2cBl6XLK0A+9H7MV2anjpEcJnuDLN/v9vZfVvhga aaI5gdka9at/yOPiZwud9AzqVN/Ssq+xIvEg37xEHA== -----END CERTIFICATE----- SecureSign Root CA14 ==================== -----BEGIN CERTIFICATE----- MIIFcjCCA1qgAwIBAgIUZNtaDCBO6Ncpd8hQJ6JaJ90t8sswDQYJKoZIhvcNAQEMBQAwUTELMAkG A1UEBhMCSlAxIzAhBgNVBAoTGkN5YmVydHJ1c3QgSmFwYW4gQ28uLCBMdGQuMR0wGwYDVQQDExRT ZWN1cmVTaWduIFJvb3QgQ0ExNDAeFw0yMDA0MDgwNzA2MTlaFw00NTA0MDgwNzA2MTlaMFExCzAJ BgNVBAYTAkpQMSMwIQYDVQQKExpDeWJlcnRydXN0IEphcGFuIENvLiwgTHRkLjEdMBsGA1UEAxMU U2VjdXJlU2lnbiBSb290IENBMTQwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDF0nqh 1oq/FjHQmNE6lPxauG4iwWL3pwon71D2LrGeaBLwbCRjOfHw3xDG3rdSINVSW0KZnvOgvlIfX8xn bacuUKLBl422+JX1sLrcneC+y9/3OPJH9aaakpUqYllQC6KxNedlsmGy6pJxaeQp8E+BgQQ8sqVb 1MWoWWd7VRxJq3qdwudzTe/NCcLEVxLbAQ4jeQkHO6Lo/IrPj8BGJJw4J+CDnRugv3gVEOuGTgpa /d/aLIJ+7sr2KeH6caH3iGicnPCNvg9JkdjqOvn90Ghx2+m1K06Ckm9mH+Dw3EzsytHqunQG+bOE kJTRX45zGRBdAuVwpcAQ0BB8b8VYSbSwbprafZX1zNoCr7gsfXmPvkPx+SgojQlD+Ajda8iLLCSx jVIHvXiby8posqTdDEx5YMaZ0ZPxMBoH064iwurO8YQJzOAUbn8/ftKChazcqRZOhaBgy/ac18iz ju3Gm5h1DVXoX+WViwKkrkMpKBGk5hIwAUt1ax5mnXkvpXYvHUC0bcl9eQjs0Wq2XSqypWa9a4X0 dFbD9ed1Uigspf9mR6XU/v6eVL9lfgHWMI+lNpyiUBzuOIABSMbHdPTGrMNASRZhdCyvjG817XsY AFs2PJxQDcqSMxDxJklt33UkN4Ii1+iW/RVLApY+B3KVfqs9TC7XyvDf4Fg/LS8EmjijAQIDAQAB o0IwQDAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQUBpOjCl4oaTeq YR3r6/wtbyPk86AwDQYJKoZIhvcNAQEMBQADggIBAJaAcgkGfpzMkwQWu6A6jZJOtxEaCnFxEM0E rX+lRVAQZk5KQaID2RFPeje5S+LGjzJmdSX7684/AykmjbgWHfYfM25I5uj4V7Ibed87hwriZLoA ymzvftAj63iP/2SbNDefNWWipAA9EiOWWF3KY4fGoweITedpdopTzfFP7ELyk+OZpDc8h7hi2/Ds Hzc/N19DzFGdtfCXwreFamgLRB7lUe6TzktuhsHSDCRZNhqfLJGP4xjblJUK7ZGqDpncllPjYYPG FrojutzdfhrGe0K22VoF3Jpf1d+42kd92jjbrDnVHmtsKheMYc2xbXIBw8MgAGJoFjHVdqqGuw6q nsb58Nn4DSEC5MUoFlkRudlpcyqSeLiSV5sI8jrlL5WwWLdrIBRtFO8KvH7YVdiI2i/6GaX7i+B/ OfVyK4XELKzvGUWSTLNhB9xNH27SgRNcmvMSZ4PPmz+Ln52kuaiWA3rF7iDeM9ovnhp6dB7h7sxa OgTdsxoEqBRjrLdHEoOabPXm6RUVkRqEGQ6UROcSjiVbgGcZ3GOTEAtlLor6CZpO2oYofaphNdgO pygau1LgePhsumywbrmHXumZNTfxPWQrqaA0k89jL9WB365jJ6UeTo3cKXhZ+PmhIIynJkBugnLN eLLIjzwec+fBH7/PzqUqm9tEZDKgu39cJRNItX+S -----END CERTIFICATE----- SecureSign Root CA15 ==================== -----BEGIN CERTIFICATE----- MIICIzCCAamgAwIBAgIUFhXHw9hJp75pDIqI7fBw+d23PocwCgYIKoZIzj0EAwMwUTELMAkGA1UE BhMCSlAxIzAhBgNVBAoTGkN5YmVydHJ1c3QgSmFwYW4gQ28uLCBMdGQuMR0wGwYDVQQDExRTZWN1 cmVTaWduIFJvb3QgQ0ExNTAeFw0yMDA0MDgwODMyNTZaFw00NTA0MDgwODMyNTZaMFExCzAJBgNV BAYTAkpQMSMwIQYDVQQKExpDeWJlcnRydXN0IEphcGFuIENvLiwgTHRkLjEdMBsGA1UEAxMUU2Vj dXJlU2lnbiBSb290IENBMTUwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQLUHSNZDKZmbPSYAi4Io5G dCx4wCtELW1fHcmuS1Iggz24FG1Th2CeX2yF2wYUleDHKP+dX+Sq8bOLbe1PL0vJSpSRZHX+AezB 2Ot6lHhWGENfa4HL9rzatAy2KZMIaY+jQjBAMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0PAQH/BAQD AgEGMB0GA1UdDgQWBBTrQciu/NWeUUj1vYv0hyCTQSvT9DAKBggqhkjOPQQDAwNoADBlAjEA2S6J fl5OpBEHvVnCB96rMjhTKkZEBhd6zlHp4P9mLQlO4E/0BdGF9jVg3PVys0Z9AjBEmEYagoUeYWmJ SwdLZrWeqrqgHkHZAXQ6bkU6iYAZezKYVWOr62Nuk22rGwlgMU4= -----END CERTIFICATE----- D-TRUST BR Root CA 2 2023 ========================= -----BEGIN CERTIFICATE----- MIIFqTCCA5GgAwIBAgIQczswBEhb2U14LnNLyaHcZjANBgkqhkiG9w0BAQ0FADBIMQswCQYDVQQG EwJERTEVMBMGA1UEChMMRC1UcnVzdCBHbWJIMSIwIAYDVQQDExlELVRSVVNUIEJSIFJvb3QgQ0Eg MiAyMDIzMB4XDTIzMDUwOTA4NTYzMVoXDTM4MDUwOTA4NTYzMFowSDELMAkGA1UEBhMCREUxFTAT BgNVBAoTDEQtVHJ1c3QgR21iSDEiMCAGA1UEAxMZRC1UUlVTVCBCUiBSb290IENBIDIgMjAyMzCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAK7/CVmRgApKaOYkP7in5Mg6CjoWzckjYaCT cfKri3OPoGdlYNJUa2NRb0kz4HIHE304zQaSBylSa053bATTlfrdTIzZXcFhfUvnKLNEgXtRr90z sWh81k5M/itoucpmacTsXld/9w3HnDY25QdgrMBM6ghs7wZ8T1soegj8k12b9py0i4a6Ibn08OhZ WiihNIQaJZG2tY/vsvmA+vk9PBFy2OMvhnbFeSzBqZCTRphny4NqoFAjpzv2gTng7fC5v2Xx2Mt6 ++9zA84A9H3X4F07ZrjcjrqDy4d2A/wl2ecjbwb9Z/Pg/4S8R7+1FhhGaRTMBffb00msa8yr5LUL QyReS2tNZ9/WtT5PeB+UcSTq3nD88ZP+npNa5JRal1QMNXtfbO4AHyTsA7oC9Xb0n9Sa7YUsOCIv x9gvdhFP/Wxc6PWOJ4d/GUohR5AdeY0cW/jPSoXk7bNbjb7EZChdQcRurDhaTyN0dKkSw/bSuREV MweR2Ds3OmMwBtHFIjYoYiMQ4EbMl6zWK11kJNXuHA7e+whadSr2Y23OC0K+0bpwHJwh5Q8xaRfX /Aq03u2AnMuStIv13lmiWAmlY0cL4UEyNEHZmrHZqLAbWt4NDfTisl01gLmB1IRpkQLLddCNxbU9 CZEJjxShFHR5PtbJFR2kWVki3PaKRT08EtY+XTIvAgMBAAGjgY4wgYswDwYDVR0TAQH/BAUwAwEB /zAdBgNVHQ4EFgQUZ5Dw1t61GNVGKX5cq/ieCLxklRAwDgYDVR0PAQH/BAQDAgEGMEkGA1UdHwRC MEAwPqA8oDqGOGh0dHA6Ly9jcmwuZC10cnVzdC5uZXQvY3JsL2QtdHJ1c3RfYnJfcm9vdF9jYV8y XzIwMjMuY3JsMA0GCSqGSIb3DQEBDQUAA4ICAQA097N3U9swFrktpSHxQCF16+tIFoE9c+CeJyrr d6kTpGoKWloUMz1oH4Guaf2Mn2VsNELZLdB/eBaxOqwjMa1ef67nriv6uvw8l5VAk1/DLQOj7aRv U9f6QA4w9QAgLABMjDu0ox+2v5Eyq6+SmNMW5tTRVFxDWy6u71cqqLRvpO8NVhTaIasgdp4D/Ca4 nj8+AybmTNudX0KEPUUDAxxZiMrcLmEkWqTqJwtzEr5SswrPMhfiHocaFpVIbVrg0M8JkiZmkdij YQ6qgYF/6FKC0ULn4B0Y+qSFNueG4A3rvNTJ1jxD8V1Jbn6Bm2m1iWKPiFLY1/4nwSPFyysCu7Ff /vtDhQNGvl3GyiEm/9cCnnRK3PgTFbGBVzbLZVzRHTF36SXDw7IyN9XxmAnkbWOACKsGkoHU6XCP pz+y7YaMgmo1yEJagtFSGkUPFaUA8JR7ZSdXOUPPfH/mvTWze/EZTN46ls/pdu4D58JDUjxqgejB WoC9EV2Ta/vH5mQ/u2kc6d0li690yVRAysuTEwrt+2aSEcr1wPrYg1UDfNPFIkZ1cGt5SAYqgpq/ 5usWDiJFAbzdNpQ0qTUmiteXue4Icr80knCDgKs4qllo3UCkGJCy89UDyibK79XH4I9TjvAA46jt n/mtd+ArY0+ew+43u3gJhJ65bvspmZDogNOfJA== -----END CERTIFICATE----- TrustAsia TLS ECC Root CA ========================= -----BEGIN CERTIFICATE----- MIICMTCCAbegAwIBAgIUNnThTXxlE8msg1UloD5Sfi9QaMcwCgYIKoZIzj0EAwMwWDELMAkGA1UE BhMCQ04xJTAjBgNVBAoTHFRydXN0QXNpYSBUZWNobm9sb2dpZXMsIEluYy4xIjAgBgNVBAMTGVRy dXN0QXNpYSBUTFMgRUNDIFJvb3QgQ0EwHhcNMjQwNTE1MDU0MTU2WhcNNDQwNTE1MDU0MTU1WjBY MQswCQYDVQQGEwJDTjElMCMGA1UEChMcVHJ1c3RBc2lhIFRlY2hub2xvZ2llcywgSW5jLjEiMCAG A1UEAxMZVHJ1c3RBc2lhIFRMUyBFQ0MgUm9vdCBDQTB2MBAGByqGSM49AgEGBSuBBAAiA2IABLh/ pVs/AT598IhtrimY4ZtcU5nb9wj/1WrgjstEpvDBjL1P1M7UiFPoXlfXTr4sP/MSpwDpguMqWzJ8 S5sUKZ74LYO1644xST0mYekdcouJtgq7nDM1D9rs3qlKH8kzsaNCMEAwDwYDVR0TAQH/BAUwAwEB /zAdBgNVHQ4EFgQULIVTu7FDzTLqnqOH/qKYqKaT6RAwDgYDVR0PAQH/BAQDAgEGMAoGCCqGSM49 BAMDA2gAMGUCMFRH18MtYYZI9HlaVQ01L18N9mdsd0AaRuf4aFtOJx24mH1/k78ITcTaRTChD15K eAIxAKORh/IRM4PDwYqROkwrULG9IpRdNYlzg8WbGf60oenUoWa2AaU2+dhoYSi3dOGiMQ== -----END CERTIFICATE----- TrustAsia TLS RSA Root CA ========================= -----BEGIN CERTIFICATE----- MIIFgDCCA2igAwIBAgIUHBjYz+VTPyI1RlNUJDxsR9FcSpwwDQYJKoZIhvcNAQEMBQAwWDELMAkG A1UEBhMCQ04xJTAjBgNVBAoTHFRydXN0QXNpYSBUZWNobm9sb2dpZXMsIEluYy4xIjAgBgNVBAMT GVRydXN0QXNpYSBUTFMgUlNBIFJvb3QgQ0EwHhcNMjQwNTE1MDU0MTU3WhcNNDQwNTE1MDU0MTU2 WjBYMQswCQYDVQQGEwJDTjElMCMGA1UEChMcVHJ1c3RBc2lhIFRlY2hub2xvZ2llcywgSW5jLjEi MCAGA1UEAxMZVHJ1c3RBc2lhIFRMUyBSU0EgUm9vdCBDQTCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBAMMWuBtqpERz5dZO9LnPWwvB0ZqB9WOwj0PBuwhaGnrhB3YmH49pVr7+NmDQDIPN lOrnxS1cLwUWAp4KqC/lYCZUlviYQB2srp10Zy9U+5RjmOMmSoPGlbYJQ1DNDX3eRA5gEk9bNb2/ mThtfWza4mhzH/kxpRkQcwUqwzIZheo0qt1CHjCNP561HmHVb70AcnKtEj+qpklz8oYVlQwQX1Fk zv93uMltrOXVmPGZLmzjyUT5tUMnCE32ft5EebuyjBza00tsLtbDeLdM1aTk2tyKjg7/D8OmYCYo zza/+lcK7Fs/6TAWe8TbxNRkoDD75f0dcZLdKY9BWN4ArTr9PXwaqLEX8E40eFgl1oUh63kd0Nyr z2I8sMeXi9bQn9P+PN7F4/w6g3CEIR0JwqH8uyghZVNgepBtljhb//HXeltt08lwSUq6HTrQUNoy IBnkiz/r1RYmNzz7dZ6wB3C4FGB33PYPXFIKvF1tjVEK2sUYyJtt3LCDs3+jTnhMmCWr8n4uIF6C FabW2I+s5c0yhsj55NqJ4js+k8UTav/H9xj8Z7XvGCxUq0DTbE3txci3OE9kxJRMT6DNrqXGJyV1 J23G2pyOsAWZ1SgRxSHUuPzHlqtKZFlhaxP8S8ySpg+kUb8OWJDZgoM5pl+z+m6Ss80zDoWo8SnT q1mt1tve1CuBAgMBAAGjQjBAMA8GA1UdEwEB/wQFMAMBAf8wHQYDVR0OBBYEFLgHkXlcBvRG/XtZ ylomkadFK/hTMA4GA1UdDwEB/wQEAwIBBjANBgkqhkiG9w0BAQwFAAOCAgEAIZtqBSBdGBanEqT3 Rz/NyjuujsCCztxIJXgXbODgcMTWltnZ9r96nBO7U5WS/8+S4PPFJzVXqDuiGev4iqME3mmL5Dw8 veWv0BIb5Ylrc5tvJQJLkIKvQMKtuppgJFqBTQUYo+IzeXoLH5Pt7DlK9RME7I10nYEKqG/odv6L TytpEoYKNDbdgptvT+Bz3Ul/KD7JO6NXBNiT2Twp2xIQaOHEibgGIOcberyxk2GaGUARtWqFVwHx tlotJnMnlvm5P1vQiJ3koP26TpUJg3933FEFlJ0gcXax7PqJtZwuhfG5WyRasQmr2soaB82G39tp 27RIGAAtvKLEiUUjpQ7hRGU+isFqMB3iYPg6qocJQrmBktwliJiJ8Xw18WLK7nn4GS/+X/jbh87q qA8MpugLoDzga5SYnH+tBuYc6kIQX+ImFTw3OffXvO645e8D7r0i+yiGNFjEWn9hongPXvPKnbwb PKfILfanIhHKA9jnZwqKDss1jjQ52MjqjZ9k4DewbNfFj8GQYSbbJIweSsCI3zWQzj8C9GRh3sfI B5XeMhg6j6JCQCTl1jNdfK7vsU1P1FeQNWrcrgSXSYk0ly4wBOeY99sLAZDBHwo/+ML+TvrbmnNz FrwFuHnYWa8G5z9nODmxfKuU4CkUpijy323imttUQ/hHWKNddBWcwauwxzQ= -----END CERTIFICATE----- D-TRUST EV Root CA 2 2023 ========================= -----BEGIN CERTIFICATE----- MIIFqTCCA5GgAwIBAgIQaSYJfoBLTKCnjHhiU19abzANBgkqhkiG9w0BAQ0FADBIMQswCQYDVQQG EwJERTEVMBMGA1UEChMMRC1UcnVzdCBHbWJIMSIwIAYDVQQDExlELVRSVVNUIEVWIFJvb3QgQ0Eg MiAyMDIzMB4XDTIzMDUwOTA5MTAzM1oXDTM4MDUwOTA5MTAzMlowSDELMAkGA1UEBhMCREUxFTAT BgNVBAoTDEQtVHJ1c3QgR21iSDEiMCAGA1UEAxMZRC1UUlVTVCBFViBSb290IENBIDIgMjAyMzCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANiOo4mAC7JXUtypU0w3uX9jFxPvp1sjW2l1 sJkKF8GLxNuo4MwxusLyzV3pt/gdr2rElYfXR8mV2IIEUD2BCP/kPbOx1sWy/YgJ25yE7CUXFId/ MHibaljJtnMoPDT3mfd/06b4HEV8rSyMlD/YZxBTfiLNTiVR8CUkNRFeEMbsh2aJgWi6zCudR3Mf vc2RpHJqnKIbGKBv7FD0fUDCqDDPvXPIEysQEx6Lmqg6lHPTGGkKSv/BAQP/eX+1SH977ugpbzZM lWGG2Pmic4ruri+W7mjNPU0oQvlFKzIbRlUWaqZLKfm7lVa/Rh3sHZMdwGWyH6FDrlaeoLGPaxK3 YG14C8qKXO0elg6DpkiVjTujIcSuWMYAsoS0I6SWhjW42J7YrDRJmGOVxcttSEfi8i4YHtAxq910 7PncjLgcjmgjutDzUNzPZY9zOjLHfP7KgiJPvo5iR2blzYfi6NUPGJ/lBHJLRjwQ8kTCZFZxTnXo nMkmdMV9WdEKWw9t/p51HBjGGjp82A0EzM23RWV6sY+4roRIPrN6TagD4uJ+ARZZaBhDM7DS3LAa QzXupdqpRlyuhoFBAUp0JuyfBr/CBTdkdXgpaP3F9ev+R/nkhbDhezGdpn9yo7nELC7MmVcOIQxF AZRl62UJxmMiCzNJkkg8/M3OsD6Onov4/knFNXJHAgMBAAGjgY4wgYswDwYDVR0TAQH/BAUwAwEB /zAdBgNVHQ4EFgQUqvyREBuHkV8Wub9PS5FeAByxMoAwDgYDVR0PAQH/BAQDAgEGMEkGA1UdHwRC MEAwPqA8oDqGOGh0dHA6Ly9jcmwuZC10cnVzdC5uZXQvY3JsL2QtdHJ1c3RfZXZfcm9vdF9jYV8y XzIwMjMuY3JsMA0GCSqGSIb3DQEBDQUAA4ICAQCTy6UfmRHsmg1fLBWTxj++EI14QvBukEdHjqOS Mo1wj/Zbjb6JzkcBahsgIIlbyIIQbODnmaprxiqgYzWRaoUlrRc4pZt+UPJ26oUFKidBK7GB0aL2 QHWpDsvxVUjY7NHss+jOFKE17MJeNRqrphYBBo7q3C+jisosketSjl8MmxfPy3MHGcRqwnNU73xD UmPBEcrCRbH0O1P1aa4846XerOhUt7KR/aypH/KH5BfGSah82ApB9PI+53c0BFLd6IHyTS9URZ0V 4U/M5d40VxDJI3IXcI1QcB9WbMy5/zpaT2N6w25lBx2Eof+pDGOJbbJAiDnXH3dotfyc1dZnaVuo dNv8ifYbMvekJKZ2t0dT741Jj6m2g1qllpBFYfXeA08mD6iL8AOWsKwV0HFaanuU5nCT2vFp4LJi TZ6P/4mdm13NRemUAiKN4DV/6PEEeXFsVIP4M7kFMhtYVRFP0OUnR3Hs7dpn1mKmS00PaaLJvOwi S5THaJQXfuKOKD62xur1NGyfN4gHONuGcfrNlUhDbqNPgofXNJhuS5N5YHVpD/Aa1VP6IQzCP+k/ HxiMkl14p3ZnGbuy6n/pcAlWVqOwDAstNl7F6cTVg8uGF5csbBNvh1qvSaYd2804BC5f4ko1Di1L +KIkBI3Y4WNeApI02phhXBxvWHZks/wCuPWdCg== -----END CERTIFICATE----- SwissSign RSA TLS Root CA 2022 - 1 ================================== -----BEGIN CERTIFICATE----- MIIFkzCCA3ugAwIBAgIUQ/oMX04bgBhE79G0TzUfRPSA7cswDQYJKoZIhvcNAQELBQAwUTELMAkG A1UEBhMCQ0gxFTATBgNVBAoTDFN3aXNzU2lnbiBBRzErMCkGA1UEAxMiU3dpc3NTaWduIFJTQSBU TFMgUm9vdCBDQSAyMDIyIC0gMTAeFw0yMjA2MDgxMTA4MjJaFw00NzA2MDgxMTA4MjJaMFExCzAJ BgNVBAYTAkNIMRUwEwYDVQQKEwxTd2lzc1NpZ24gQUcxKzApBgNVBAMTIlN3aXNzU2lnbiBSU0Eg VExTIFJvb3QgQ0EgMjAyMiAtIDEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDLKmji C8NXvDVjvHClO/OMPE5Xlm7DTjak9gLKHqquuN6orx122ro10JFwB9+zBvKK8i5VUXu7LCTLf5Im gKO0lPaCoaTo+nUdWfMHamFk4saMla+ju45vVs9xzF6BYQ1t8qsCLqSX5XH8irCRIFucdFJtrhUn WXjyCcplDn/L9Ovn3KlMd/YrFgSVrpxxpT8q2kFC5zyEEPThPYxr4iuRR1VPuFa+Rd4iUU1OKNlf GUEGjw5NBuBwQCMBauTLE5tzrE0USJIt/m2n+IdreXXhvhCxqohAWVTXz8TQm0SzOGlkjIHRI36q OTw7D59Ke4LKa2/KIj4x0LDQKhySio/YGZxH5D4MucLNvkEM+KRHBdvBFzA4OmnczcNpI/2aDwLO EGrOyvi5KaM2iYauC8BPY7kGWUleDsFpswrzd34unYyzJ5jSmY0lpx+Gs6ZUcDj8fV3oT4MM0ZPl EuRU2j7yrTrePjxF8CgPBrnh25d7mUWe3f6VWQQvdT/TromZhqwUtKiE+shdOxtYk8EXlFXIC+OC eYSf8wCENO7cMdWP8vpPlkwGqnj73mSiI80fPsWMvDdUDrtaclXvyFu1cvh43zcgTFeRc5JzrBh3 Q4IgaezprClG5QtO+DdziZaKHG29777YtvTKwP1H8K4LWCDFyB02rpeNUIMmJCn3nTsPBQIDAQAB o2MwYTAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAfBgNVHSMEGDAWgBRvjmKLk0Ow 4UD2p8P98Q+4DxU4pTAdBgNVHQ4EFgQUb45ii5NDsOFA9qfD/fEPuA8VOKUwDQYJKoZIhvcNAQEL BQADggIBAKwsKUF9+lz1GpUYvyypiqkkVHX1uECry6gkUSsYP2OprphWKwVDIqO310aewCoSPY6W lkDfDDOLazeROpW7OSltwAJsipQLBwJNGD77+3v1dj2b9l4wBlgzHqp41eZUBDqyggmNzhYzWUUo 8aWjlw5DI/0LIICQ/+Mmz7hkkeUFjxOgdg3XNwwQiJb0Pr6VvfHDffCjw3lHC1ySFWPtUnWK50Zp y1FVCypM9fJkT6lc/2cyjlUtMoIcgC9qkfjLvH4YoiaoLqNTKIftV+Vlek4ASltOU8liNr3Cjlvr zG4ngRhZi0Rjn9UMZfQpZX+RLOV/fuiJz48gy20HQhFRJjKKLjpHE7iNvUcNCfAWpO2Whi4Z2L6M OuhFLhG6rlrnub+xzI/goP+4s9GFe3lmozm1O2bYQL7Pt2eLSMkZJVX8vY3PXtpOpvJpzv1/THfQ wUY1mFwjmwJFQ5Ra3bxHrSL+ul4vkSkphnsh3m5kt8sNjzdbowhq6/TdAo9QAwKxuDdollDruF/U KIqlIgyKhPBZLtU30WHlQnNYKoH3dtvi4k0NX/a3vgW0rk4N3hY9A4GzJl5LuEsAz/+MF7psYC0n hzck5npgL7XTgwSqT0N1osGDsieYK7EOgLrAhV5Cud+xYJHT6xh+cHiudoO+cVrQkOPKwRYlZ0rw tnu64ZzZ -----END CERTIFICATE----- OISTE Server Root ECC G1 ======================== -----BEGIN CERTIFICATE----- MIICNTCCAbqgAwIBAgIQI/nD1jWvjyhLH/BU6n6XnTAKBggqhkjOPQQDAzBLMQswCQYDVQQGEwJD SDEZMBcGA1UECgwQT0lTVEUgRm91bmRhdGlvbjEhMB8GA1UEAwwYT0lTVEUgU2VydmVyIFJvb3Qg RUNDIEcxMB4XDTIzMDUzMTE0NDIyOFoXDTQ4MDUyNDE0NDIyN1owSzELMAkGA1UEBhMCQ0gxGTAX BgNVBAoMEE9JU1RFIEZvdW5kYXRpb24xITAfBgNVBAMMGE9JU1RFIFNlcnZlciBSb290IEVDQyBH MTB2MBAGByqGSM49AgEGBSuBBAAiA2IABBcv+hK8rBjzCvRE1nZCnrPoH7d5qVi2+GXROiFPqOuj vqQycvO2Ackr/XeFblPdreqqLiWStukhEaivtUwL85Zgmjvn6hp4LrQ95SjeHIC6XG4N2xml4z+c KrhAS93mT6NjMGEwDwYDVR0TAQH/BAUwAwEB/zAfBgNVHSMEGDAWgBQ3TYhlz/w9itWj8UnATgwQ b0K0nDAdBgNVHQ4EFgQUN02IZc/8PYrVo/FJwE4MEG9CtJwwDgYDVR0PAQH/BAQDAgGGMAoGCCqG SM49BAMDA2kAMGYCMQCpKjAd0MKfkFFRQD6VVCHNFmb3U2wIFjnQEnx/Yxvf4zgAOdktUyBFCxxg ZzFDJe0CMQCSia7pXGKDYmH5LVerVrkR3SW+ak5KGoJr3M/TvEqzPNcum9v4KGm8ay3sMaE641c= -----END CERTIFICATE----- OISTE Server Root RSA G1 ========================= -----BEGIN CERTIFICATE----- MIIFgzCCA2ugAwIBAgIQVaXZZ5Qoxu0M+ifdWwFNGDANBgkqhkiG9w0BAQwFADBLMQswCQYDVQQG EwJDSDEZMBcGA1UECgwQT0lTVEUgRm91bmRhdGlvbjEhMB8GA1UEAwwYT0lTVEUgU2VydmVyIFJv b3QgUlNBIEcxMB4XDTIzMDUzMTE0MzcxNloXDTQ4MDUyNDE0MzcxNVowSzELMAkGA1UEBhMCQ0gx GTAXBgNVBAoMEE9JU1RFIEZvdW5kYXRpb24xITAfBgNVBAMMGE9JU1RFIFNlcnZlciBSb290IFJT QSBHMTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKqu9KuCz/vlNwvn1ZatkOhLKdxV YOPMvLO8LZK55KN68YG0nnJyQ98/qwsmtO57Gmn7KNByXEptaZnwYx4M0rH/1ow00O7brEi56rAU jtgHqSSY3ekJvqgiG1k50SeH3BzN+Puz6+mTeO0Pzjd8JnduodgsIUzkik/HEzxux9UTl7Ko2yRp g1bTacuCErudG/L4NPKYKyqOBGf244ehHa1uzjZ0Dl4zO8vbUZeUapU8zhhabkvG/AePLhq5Svdk NCncpo1Q4Y2LS+VIG24ugBA/5J8bZT8RtOpXaZ+0AOuFJJkk9SGdl6r7NH8CaxWQrbueWhl/pIzY +m0o/DjH40ytas7ZTpOSjswMZ78LS5bOZmdTaMsXEY5Z96ycG7mOaES3GK/m5Q9l3JUJsJMStR8+ lKXHiHUhsd4JJCpM4rzsTGdHwimIuQq6+cF0zowYJmXa92/GjHtoXAvuY8BeS/FOzJ8vD+HomnqT 8eDI278n5mUpezbgMxVz8p1rhAhoKzYHKyfMeNhqhw5HdPSqoBNdZH702xSu+zrkL8Fl47l6QGzw Brd7KJvX4V84c5Ss2XCTLdyEr0YconosP4EmQufU2MVshGYRi3drVByjtdgQ8K4p92cIiBdcuJd5 z+orKu5YM+Vt6SmqZQENghPsJQtdLEByFSnTkCz3GkPVavBpAgMBAAGjYzBhMA8GA1UdEwEB/wQF MAMBAf8wHwYDVR0jBBgwFoAU8snBDw1jALvsRQ5KH7WxszbNDo0wHQYDVR0OBBYEFPLJwQ8NYwC7 7EUOSh+1sbM2zQ6NMA4GA1UdDwEB/wQEAwIBhjANBgkqhkiG9w0BAQwFAAOCAgEANGd5sjrG5T33 I3K5Ce+SrScfoE4KsvXaFwyihdJ+klH9FWXXXGtkFu6KRcoMQzZENdl//nk6HOjG5D1rd9QhEOP2 8yBOqb6J8xycqd+8MDoX0TJD0KqKchxRKEzdNsjkLWd9kYccnbz8qyiWXmFcuCIzGEgWUOrKL+ml Sdx/PKQZvDatkuK59EvV6wit53j+F8Bdh3foZ3dPAGav9LEDOr4SfEE15fSmG0eLy3n31r8Xbk5l 8PjaV8GUgeV6Vg27Rn9vkf195hfkgSe7BYhW3SCl95gtkRlpMV+bMPKZrXJAlszYd2abtNUOshD+ FKrDgHGdPY3ofRRsYWSGRqbXVMW215AWRqWFyp464+YTFrYVI8ypKVL9AMb2kI5Wj4kI3Zaq5tNq qYY19tVFeEJKRvwDyF7YZvZFZSS0vod7VSCd9521Kvy5YhnLbDuv0204bKt7ph6N/Ome/msVuduC msuY33OhkKCgxeDoAaijFJzIwZqsFVAzje18KotzlUBDJvyBpCpfOZC3J8tRd/iWkx7P8nd9H0aT olkelUTFLXVksNb54Dxp6gS1HAviRkRNQzuXSXERvSS2wq1yVAb+axj5d9spLFKebXd7Yv0PTY6Y MjAwcRLWJTXjn/hvnLXrahut6hDTlhZyBiElxky8j3C7DOReIoMt0r7+hVu05L0= -----END CERTIFICATE----- excon-1.3.1/excon.gemspec000066400000000000000000000036721510272305100153150ustar00rootroot00000000000000# frozen_string_literal: true $LOAD_PATH.unshift File.join(File.dirname(__FILE__), 'lib') require 'excon/version' Gem::Specification.new do |s| s.name = 'excon' s.version = Excon::VERSION s.summary = 'speed, persistence, http(s)' s.description = 'EXtended http(s) CONnections' s.authors = ['dpiddy (Dan Peterson)', 'geemus (Wesley Beary)', 'nextmat (Matt Sanders)'] s.email = 'geemus@gmail.com' s.homepage = 'https://github.com/excon/excon' s.license = 'MIT' s.rdoc_options = ['--charset=UTF-8'] s.extra_rdoc_files = %w[README.md CONTRIBUTORS.md CONTRIBUTING.md] s.files = `git ls-files -- data/* lib/*`.split("\n") + [ 'CONTRIBUTING.md', 'CONTRIBUTORS.md', 'LICENSE.md', 'README.md', 'excon.gemspec' ] s.required_ruby_version = '>= 3.1.0' s.add_dependency 'logger' s.add_development_dependency('activesupport') s.add_development_dependency('delorean') s.add_development_dependency('eventmachine', '>= 1.0.4') s.add_development_dependency('json', '>= 1.8.5') s.add_development_dependency('open4') s.add_development_dependency('puma') s.add_development_dependency('rake') s.add_development_dependency('rdoc') s.add_development_dependency('rspec', '>= 3.5.0') s.add_development_dependency('shindo') s.add_development_dependency('sinatra') s.add_development_dependency('sinatra-contrib') s.add_development_dependency('webrick') s.metadata = { 'bug_tracker_uri' => 'https://github.com/excon/excon/issues', 'changelog_uri' => 'https://github.com/excon/excon/blob/master/changelog.txt', 'documentation_uri' => 'https://github.com/excon/excon/blob/master/README.md', 'funding_uri' => 'https://github.com/sponsors/geemus', 'homepage_uri' => 'https://github.com/excon/excon', 'source_code_uri' => 'https://github.com/excon/excon', 'wiki_uri' => 'https://github.com/excon/excon/wiki' } end excon-1.3.1/lib/000077500000000000000000000000001510272305100133725ustar00rootroot00000000000000excon-1.3.1/lib/excon.rb000066400000000000000000000214441510272305100150400ustar00rootroot00000000000000# frozen_string_literal: true $:.unshift(File.dirname(__FILE__)) unless $:.include?(File.dirname(__FILE__)) || $:.include?(File.expand_path(File.dirname(__FILE__))) require 'cgi' require 'forwardable' require 'ipaddr' require 'openssl' require 'rbconfig' require 'socket' require 'timeout' require 'uri' require 'zlib' require 'stringio' require 'excon/version' require 'excon/extensions/uri' require 'excon/middlewares/base' require 'excon/middlewares/decompress' require 'excon/middlewares/expects' require 'excon/middlewares/idempotent' require 'excon/middlewares/instrumentor' require 'excon/middlewares/mock' require 'excon/middlewares/response_parser' require 'excon/error' require 'excon/constants' require 'excon/utils' require 'excon/connection' require 'excon/headers' require 'excon/response' require 'excon/middlewares/escape_path' require 'excon/middlewares/redirect_follower' require 'excon/middlewares/capture_cookies' require 'excon/pretty_printer' require 'excon/socket' require 'excon/ssl_socket' require 'excon/instrumentors/standard_instrumentor' require 'excon/instrumentors/logging_instrumentor' require 'excon/unix_socket' # Define defaults first so they will be available to other files module Excon class << self # @return [Hash] defaults for Excon connections def defaults @defaults ||= DEFAULTS.dup end # Change defaults for Excon connections # @return [Hash] defaults for Excon connections attr_writer :defaults def display_warning(warning) # Show warning if $VERBOSE or ENV['EXCON_DEBUG'] is set ($VERBOSE || ENV['EXCON_DEBUG']) && Warning.warn("[excon][WARNING] #{warning}\n#{caller.join("\n")}") return unless @raise_on_warnings raise(Error::Warning, warning) end def set_raise_on_warnings!(should_raise) @raise_on_warnings = should_raise end # Status of mocking def mock display_warning('Excon#mock is deprecated, use Excon.defaults[:mock] instead.') self.defaults[:mock] end # Change the status of mocking # false is the default and works as expected # true returns a value from stubs or raises def mock=(new_mock) display_warning('Excon#mock is deprecated, use Excon.defaults[:mock]= instead.') self.defaults[:mock] = new_mock end # @return [String] The filesystem path to the SSL Certificate Authority def ssl_ca_path display_warning('Excon#ssl_ca_path is deprecated, use Excon.defaults[:ssl_ca_path] instead.') self.defaults[:ssl_ca_path] end # Change path to the SSL Certificate Authority # @return [String] The filesystem path to the SSL Certificate Authority def ssl_ca_path=(new_ssl_ca_path) display_warning('Excon#ssl_ca_path= is deprecated, use Excon.defaults[:ssl_ca_path]= instead.') self.defaults[:ssl_ca_path] = new_ssl_ca_path end # @return [true, false] Whether or not to verify the peer's SSL certificate / chain def ssl_verify_peer display_warning('Excon#ssl_verify_peer is deprecated, use Excon.defaults[:ssl_verify_peer] instead.') self.defaults[:ssl_verify_peer] end # Change the status of ssl peer verification # @see Excon#ssl_verify_peer (attr_reader) def ssl_verify_peer=(new_ssl_verify_peer) display_warning('Excon#ssl_verify_peer= is deprecated, use Excon.defaults[:ssl_verify_peer]= instead.') self.defaults[:ssl_verify_peer] = new_ssl_verify_peer end # @see Connection#initialize # Initializes a new keep-alive session for a given remote host # @param [String] url The destination URL # @param [Hash] params One or more option params to set on the Connection instance # @return [Connection] A new Excon::Connection instance def new(url, params = {}) uri_parser = params[:uri_parser] || defaults[:uri_parser] uri = uri_parser.parse(url) params[:path] && uri_parser.parse(params[:path]) raise(ArgumentError, "Invalid URI: #{uri}") unless uri.scheme params = { host: uri.host, hostname: uri.hostname, path: uri.path, port: uri.port, query: uri.query, scheme: uri.scheme }.merge(params) uri.password && params[:password] = Utils.unescape_uri(uri.password) uri.user && params[:user] = Utils.unescape_uri(uri.user) Excon::Connection.new(params) end # push an additional stub onto the list to check for mock requests # @param request_params [Hash] request params to match against, omitted params match all # @param response_params [Hash] response params to return or block to call with matched params def stub(request_params = {}, response_params = nil, &block) if (method = request_params.delete(:method)) request_params[:method] = method.to_s.downcase.to_sym end if (url = request_params.delete(:url)) uri = URI.parse(url) request_params = { host: uri.host, path: uri.path.empty? ? '/' : uri.path, port: uri.port, query: uri.query, scheme: uri.scheme }.merge!(request_params) if uri.user || uri.password request_params[:headers] ||= {} user = Utils.unescape_form(uri.user.to_s) pass = Utils.unescape_form(uri.password.to_s) request_params[:headers]['Authorization'] ||= 'Basic ' + ["#{user}:#{pass}"].pack('m').delete(Excon::CR_NL) end end if request_params.key?(:headers) headers = Excon::Headers.new request_params[:headers].each do |key, value| headers[key] = value end request_params[:headers] = headers end request_params[:query] = Utils.query_string(request_params)[1...] if request_params.key?(:query) if block_given? raise(ArgumentError, 'stub requires either response_params OR a block') if response_params stub = [request_params, block] elsif response_params stub = [request_params, response_params] else raise(ArgumentError, 'stub requires either response_params OR a block') end stubs.unshift(stub) stub end # get a stub matching params or nil # @param request_params [Hash] request params to match against, omitted params match all # @return [Hash] response params to return from matched request or block to call with params def stub_for(request_params={}) if (method = request_params.delete(:method)) request_params[:method] = method.to_s.downcase.to_sym end request_params[:query] = Utils.query_string(request_params)[1...] if request_params.key?(:query) Excon.stubs.each do |stub, response_params| captures = { headers: {} } headers_match = !stub.key?(:headers) || stub[:headers].keys.all? do |key| case value = stub[:headers][key] when Regexp case request_params[:headers][key] when String if (match = value.match(request_params[:headers][key])) captures[:headers][key] = match.captures end when Regexp # for unstub on regex params match = (value == request_params[:headers][key]) end match else value == request_params[:headers][key] end end non_headers_match = (stub.keys - [:headers]).all? do |key| case value = stub[key] when Regexp case request_params[key] when String if (match = value.match(request_params[key])) captures[key] = match.captures end when Regexp # for unstub on regex params match = (value == request_params[key]) end match else value == request_params[key] end end if headers_match && non_headers_match request_params[:captures] = captures return [stub, response_params] end end nil end # get a list of defined stubs def stubs case Excon.defaults[:stubs] when :global @stubs ||= [] when :local Thread.current[:_excon_stubs] ||= [] end end # remove first/oldest stub matching request_params or nil if none match # @param request_params [Hash] request params to match against, omitted params match all # @return [Hash] response params from deleted stub def unstub(request_params = {}) return unless (stub = stub_for(request_params)) Excon.stubs.delete_at(Excon.stubs.index(stub)) end # Generic non-persistent HTTP methods HTTP_VERBS.each do |method| module_eval <<-DEF, __FILE__, __LINE__ + 1 def #{method}(url, params = {}, &block) new(url, params).request(:method => :#{method}, &block) end DEF end end end excon-1.3.1/lib/excon/000077500000000000000000000000001510272305100145065ustar00rootroot00000000000000excon-1.3.1/lib/excon/connection.rb000066400000000000000000000557211510272305100172040ustar00rootroot00000000000000# frozen_string_literal: true module Excon class Connection include Utils attr_reader :data def connection Excon.display_warning('Excon::Connection#connection is deprecated use Excon::Connection#data instead.') @data end def connection=(new_params) Excon.display_warning('Excon::Connection#connection= is deprecated. Use of this method may cause unexpected results.') @data = new_params end def params Excon.display_warning('Excon::Connection#params is deprecated use Excon::Connection#data instead.') @data end def params=(new_params) Excon.display_warning('Excon::Connection#params= is deprecated. Use of this method may cause unexpected results.') @data = new_params end def proxy Excon.display_warning('Excon::Connection#proxy is deprecated use Excon::Connection#data[:proxy] instead.') @data[:proxy] end def proxy=(new_proxy) Excon.display_warning('Excon::Connection#proxy= is deprecated. Use of this method may cause unexpected results.') @data[:proxy] = new_proxy end def logger if @data[:instrumentor] && @data[:instrumentor].respond_to?(:logger) @data[:instrumentor].logger end end def logger=(logger) @data[:instrumentor] = Excon::LoggingInstrumentor @data[:logger] = logger end # Initializes a new Connection instance # @param [Hash] params One or more optional params # @option params [String] :body Default text to be sent over a socket. Only used if :body absent in Connection#request params # @option params [Hash] :headers The default headers to supply in a request. Only used if params[:headers] is not supplied to Connection#request # @option params [String] :host The destination host's reachable DNS name or IP, in the form of a String. IPv6 addresses must be wrapped (e.g. [::1]). See URI#host. # @option params [String] :hostname Same as host, but usable for socket connections. IPv6 addresses must not be wrapped (e.g. ::1). See URI#hostname. # @option params [String] :path Default path; appears after 'scheme://host:port/'. Only used if params[:path] is not supplied to Connection#request # @option params [Fixnum] :port The port on which to connect, to the destination host # @option params [Hash] :query Default query; appended to the 'scheme://host:port/path/' in the form of '?key=value'. Will only be used if params[:query] is not supplied to Connection#request # @option params [String] :scheme The protocol; 'https' causes OpenSSL to be used # @option params [String] :socket The path to the unix socket (required for 'unix://' connections) # @option params [String] :ciphers Only use the specified SSL/TLS cipher suites; use OpenSSL cipher spec format e.g. 'HIGH:!aNULL:!3DES' or 'AES256-SHA:DES-CBC3-SHA' # @option params [String] :proxy Proxy server; e.g. 'http://myproxy.com:8888' # @option params [Fixnum] :retry_limit Set how many times we'll retry a failed request. (Default 4) # @option params [Fixnum] :retry_interval Set how long to wait between retries. (Default 0) # @option params [Class] :instrumentor Responds to #instrument as in ActiveSupport::Notifications # @option params [String] :instrumentor_name Name prefix for #instrument events. Defaults to 'excon' def initialize(params = {}) @pid = Process.pid @data = Excon.defaults.dup # merge does not deep-dup, so make sure headers is not the original @data[:headers] = @data[:headers].dup # the same goes for :middlewares @data[:middlewares] = @data[:middlewares].dup @data.merge!(params) validate_params(:connection, @data, @data[:middlewares]) if @data.key?(:host) && !@data.key?(:hostname) Excon.display_warning('hostname is missing! For IPv6 support, provide both host and hostname: Excon::Connection#new(:host => uri.host, :hostname => uri.hostname, ...).') @data[:hostname] = @data[:host] end setup_proxy if ENV.has_key?('EXCON_STANDARD_INSTRUMENTOR') @data[:instrumentor] = Excon::StandardInstrumentor end if @data[:debug] || ENV.has_key?('EXCON_DEBUG') @data[:debug_request] = @data[:debug_response] = true @data[:instrumentor] = Excon::StandardInstrumentor end if @data[:scheme] == UNIX # 'uri' >= v0.12.0 returns an empty string instead of nil for no host. # So treat the parameter as present if and only if it is both non-nill and non-empty. if @data[:host] && !@data[:host].empty? raise ArgumentError, "The `:host` parameter should not be set for `unix://` connections.\n" + "When supplying a `unix://` URI, it should start with `unix:/` or `unix:///`." elsif !@data[:socket] raise ArgumentError, 'You must provide a `:socket` for `unix://` connections' else @socket_key = "#{@data[:scheme]}://#{@data[:socket]}" end else @socket_key = "#{@data[:scheme]}://#{@data[:host]}#{port_string(@data)}" end reset end def error_call(datum) if datum[:error] raise(datum[:error]) end end def request_call(datum) begin if datum.has_key?(:response) # we already have data from a middleware, so bail return datum else socket(datum).data = datum # start with "METHOD /path" request = datum[:method].to_s.upcase + ' ' if datum[:proxy] && datum[:scheme] != HTTPS request << datum[:scheme] << '://' << datum[:host] << port_string(datum) end request << datum[:path] # add query to path, if there is one request << query_string(datum) # finish first line with "HTTP/1.1\r\n" request << HTTP_1_1 if datum.has_key?(:request_block) datum[:headers]['Transfer-Encoding'] = 'chunked' else body = datum[:body].is_a?(String) ? StringIO.new(datum[:body]) : datum[:body] # The HTTP spec isn't clear on it, but specifically, GET requests don't usually send bodies; # if they don't, sending Content-Length:0 can cause issues. unless datum[:method].to_s.casecmp?('GET') && body.nil? unless datum[:headers].has_key?('Content-Length') datum[:headers]['Content-Length'] = detect_content_length(body) end end end # add headers to request request << Utils.headers_hash_to_s(datum[:headers]) # add additional "\r\n" to indicate end of headers request << CR_NL if datum.has_key?(:request_block) socket(datum).write(request) # write out request + headers while true # write out body with chunked encoding chunk = datum[:request_block].call chunk = binary_encode(chunk) if chunk.length > 0 socket(datum).write(chunk.length.to_s(16) << CR_NL << chunk << CR_NL) else socket(datum).write("0#{CR_NL}#{CR_NL}") break end end elsif body.nil? socket(datum).write(request) # write out request + headers else # write out body if body.respond_to?(:binmode) && !body.is_a?(StringIO) body.binmode end if body.respond_to?(:rewind) body.rewind rescue nil end # if request + headers is less than chunk size, fill with body request = binary_encode(request) chunk = body.read([datum[:chunk_size] - request.length, 0].max) if chunk chunk = binary_encode(chunk) socket(datum).write(request << chunk) else socket(datum).write(request) # write out request + headers end while (chunk = body.read(datum[:chunk_size])) socket(datum).write(chunk) end end end rescue => error case error when Excon::Errors::InvalidHeaderKey, Excon::Errors::InvalidHeaderValue, Excon::Errors::StubNotFound, Excon::Errors::Timeout raise(error) when Errno::EPIPE # Read whatever remains in the pipe to aid in debugging response = socket.read rescue "" error = Excon::Error.new(response + error.message) raise_socket_error(error) else raise_socket_error(error) end end datum end def response_call(datum) # ensure response_block is yielded to and body is empty from middlewares if datum.has_key?(:response_block) && !(datum[:response][:body].nil? || datum[:response][:body].empty?) response_body = datum[:response][:body].dup datum[:response][:body] = '' content_length = remaining = response_body.bytesize while remaining > 0 datum[:response_block].call(response_body.slice!(0, [datum[:chunk_size], remaining].min), [remaining - datum[:chunk_size], 0].max, content_length) remaining -= datum[:chunk_size] end end datum end # Sends the supplied request to the destination host. # @yield [chunk] @see Response#self.parse # @param [Hash] params One or more optional params, override defaults set in Connection.new # @option params [String] :body text to be sent over a socket # @option params [Hash] :headers The default headers to supply in a request # @option params [String] :path appears after 'scheme://host:port/' # @option params [Hash] :query appended to the 'scheme://host:port/path/' in the form of '?key=value' def request(params={}, &block) # @data has defaults, merge in new params to override datum = @data.merge(params) # Set the deadline for the current request in order to determine when we have run out of time. # Only set when a request timeout has been defined. if datum[:timeout] datum[:deadline] = Process.clock_gettime(Process::CLOCK_MONOTONIC) + datum[:timeout] end datum[:headers] = @data[:headers].merge(datum[:headers] || {}) validate_params(:request, params, datum[:middlewares]) # If the user passed in new middleware, we want to validate that the original connection parameters # are still valid with the provided middleware. if params[:middlewares] validate_params(:connection, @data, datum[:middlewares]) end if datum[:user] || datum[:password] user, pass = Utils.unescape_uri(datum[:user].to_s), Utils.unescape_uri(datum[:password].to_s) datum[:headers]['Authorization'] ||= 'Basic ' + ["#{user}:#{pass}"].pack('m').delete(Excon::CR_NL) end host_key = datum[:headers].keys.detect {|k| k.casecmp?('Host') } || 'Host' if datum[:scheme] == UNIX datum[:headers][host_key] ||= '' else datum[:headers][host_key] ||= datum[:host] + port_string(datum) end # RFC 7230, section 5.4, states that the Host header SHOULD be the first one # to be present. # Some web servers will reject the request if it comes too late, so let's hoist it to the top. if (host = datum[:headers].delete(host_key)) datum[:headers] = { host_key => host }.merge(datum[:headers]) end # default to GET if no method specified unless datum[:method] datum[:method] = :get end # if path is empty or doesn't start with '/', insert one unless datum[:path][0, 1] == '/' datum[:path] = datum[:path].dup.insert(0, '/') end if block_given? Excon.display_warning('Excon requests with a block are deprecated, pass :response_block instead.') datum[:response_block] = block end datum[:connection] = self # cleanup data left behind on persistent connection after interrupt if datum[:persistent] && !@persistent_socket_reusable reset end datum[:stack] = datum[:middlewares].map do |middleware| lambda {|stack| middleware.new(stack)} end.reverse.inject(self) do |middlewares, middleware| middleware.call(middlewares) end datum = datum[:stack].request_call(datum) unless datum[:pipeline] @persistent_socket_reusable = false datum = response(datum) @persistent_socket_reusable = true if datum[:persistent] if (key = datum[:response][:headers].keys.detect {|k| k.casecmp?('Connection') }) if datum[:response][:headers][key].casecmp?('close') reset end end else reset end Excon::Response.new(datum[:response]) else datum end rescue => error reset # If we didn't get far enough to initialize datum and the middleware stack, just raise raise error if !datum datum[:error] = error if datum[:stack] datum[:stack].error_call(datum) else raise error end end # Sends the supplied requests to the destination host using pipelining. # @param pipeline_params [Array] An array of one or more optional params, override defaults set in Connection.new, see #request for details def requests(pipeline_params) pipeline_params.each {|params| params.merge!(:pipeline => true, :persistent => true) } pipeline_params.last[:persistent] = @data[:persistent] responses = pipeline_params.map do |params| request(params) end.map do |datum| Excon::Response.new(response(datum)[:response]) end if @data[:persistent] if (key = responses.last[:headers].keys.detect {|k| k.casecmp?('Connection') }) if responses.last[:headers][key].casecmp?('close') reset end end else reset end responses end # Sends the supplied requests to the destination host using pipelining in # batches of @limit [Numeric] requests. This is your soft file descriptor # limit by default, typically 256. # @param pipeline_params [Array] An array of one or more optional params, override defaults set in Connection.new, see #request for details def batch_requests(pipeline_params, limit = nil) limit ||= Process.respond_to?(:getrlimit) ? Process.getrlimit(:NOFILE).first : 256 responses = [] pipeline_params.each_slice(limit) do |params| responses.concat(requests(params)) end responses end def reset if (old_socket = sockets.delete(@socket_key)) old_socket.close rescue nil end @persistent_socket_reusable = true end # Generate HTTP request verb methods Excon::HTTP_VERBS.each do |method| class_eval <<-DEF, __FILE__, __LINE__ + 1 def #{method}(params={}, &block) request(params.merge!(:method => :#{method}), &block) end DEF end def retry_limit=(new_retry_limit) Excon.display_warning('Excon::Connection#retry_limit= is deprecated, pass :retry_limit to the initializer.') @data[:retry_limit] = new_retry_limit end def retry_limit Excon.display_warning('Excon::Connection#retry_limit is deprecated, use Excon::Connection#data[:retry_limit].') @data[:retry_limit] ||= DEFAULT_RETRY_LIMIT end def inspect vars = instance_variables.inject({}) do |accum, var| accum.merge!(var.to_sym => instance_variable_get(var)) end vars[:'@data'] = Utils.redact(vars[:'@data']) inspection = '# error case error when Excon::Errors::HTTPStatusError, Excon::Errors::Timeout, Excon::Errors::TooManyRedirects raise(error) else raise_socket_error(error) end end def socket(datum = @data) unix_proxy = datum[:proxy] ? datum[:proxy][:scheme] == UNIX : false sockets[@socket_key] ||= if datum[:scheme] == UNIX || unix_proxy Excon::UnixSocket.new(datum) elsif datum[:ssl_uri_schemes].include?(datum[:scheme]) Excon::SSLSocket.new(datum) else Excon::Socket.new(datum) end end def sockets @_excon_sockets ||= {} @_excon_sockets.compare_by_identity if @pid != Process.pid @_excon_sockets.clear # GC will take care of closing sockets @pid = Process.pid end if @data[:thread_safe_sockets] # In a multi-threaded world, if the same connection is used by multiple # threads at the same time to connect to the same destination, they may # stomp on each other's sockets. This ensures every thread gets their # own socket cache, within the context of a single connection. @_excon_sockets[Thread.current] ||= {} else @_excon_sockets end end def raise_socket_error(error) if error.message.include?('certificate verify failed') raise(Excon::Errors::CertificateError.new(error)) else raise(Excon::Errors::SocketError.new(error)) end end def proxy_match_host_port(host, port) host_match = if host.is_a? IPAddr begin host.include? @data[:host] rescue IPAddr::Error false end else /(^|\.)#{host}$/.match(@data[:host]) end host_match && (port.nil? || port.to_i == @data[:port]) end def proxy_from_env if (no_proxy_env = ENV['no_proxy'] || ENV['NO_PROXY']) no_proxy_list = no_proxy_env.scan(/\s*(?:\[([\dA-Fa-f:\/]+)\]|\*?\.?([^\s,:]+))(?::(\d+))?\s*/i).map { |e| if e[0] begin [IPAddr.new(e[0]), e[2]] rescue IPAddr::Error nil end else begin [IPAddr.new(e[1]), e[2]] rescue IPAddr::Error [e[1], e[2]] end end }.reject { |e| e.nil? || e[0].nil? } end unless no_proxy_env && no_proxy_list.index { |h| proxy_match_host_port(h[0], h[1]) } if @data[:scheme] == HTTPS && (ENV.has_key?('https_proxy') || ENV.has_key?('HTTPS_PROXY')) @data[:proxy] = ENV['https_proxy'] || ENV['HTTPS_PROXY'] elsif (ENV.has_key?('http_proxy') || ENV.has_key?('HTTP_PROXY')) @data[:proxy] = ENV['http_proxy'] || ENV['HTTP_PROXY'] end end end def setup_proxy if @data[:disable_proxy] if @data[:proxy] raise ArgumentError, "`:disable_proxy` parameter and `:proxy` parameter cannot both be set at the same time." end return end return if @data[:scheme] == UNIX proxy_from_env case @data[:proxy] when nil @data.delete(:proxy) when '' @data.delete(:proxy) when Hash # no processing needed when String, URI uri = @data[:proxy].is_a?(String) ? URI.parse(@data[:proxy]) : @data[:proxy] @data[:proxy] = { :host => uri.host, :hostname => uri.hostname, # path is only sensible for a Unix socket proxy :path => uri.scheme == UNIX ? uri.path : nil, :port => uri.port, :scheme => uri.scheme, } if uri.password @data[:proxy][:password] = uri.password end if uri.user @data[:proxy][:user] = uri.user end if @data[:ssl_proxy_headers] && !@data[:ssl_uri_schemes].include?(@data[:scheme]) raise ArgumentError, "The `:ssl_proxy_headers` parameter should only be used with HTTPS requests." end if @data[:proxy][:scheme] == UNIX # URI.parse might return empty string for security reasons. @data[:proxy][:host] = nil if @data[:proxy][:host] == "" if @data[:proxy][:host] raise ArgumentError, "The `:host` parameter should not be set for `unix://` proxies.\n" + "When supplying a `unix://` URI, it should start with `unix:/` or `unix:///`." end else unless uri.host && uri.port && uri.scheme raise Excon::Errors::ProxyParse, "Proxy is invalid" end end else raise Excon::Errors::ProxyParse, "Proxy is invalid" end if @data.has_key?(:proxy) && @data[:scheme] == 'http' @data[:headers]['Proxy-Connection'] ||= 'Keep-Alive' # https credentials happen in handshake if @data[:proxy].has_key?(:user) || @data[:proxy].has_key?(:password) user, pass = Utils.unescape_form(@data[:proxy][:user].to_s), Utils.unescape_form(@data[:proxy][:password].to_s) auth = ["#{user}:#{pass}"].pack('m').delete(Excon::CR_NL) @data[:headers]['Proxy-Authorization'] = 'Basic ' + auth end end end end end excon-1.3.1/lib/excon/constants.rb000066400000000000000000000121721510272305100170520ustar00rootroot00000000000000# frozen_string_literal: true module Excon CR_NL = "\r\n" DEFAULT_CA_FILE = File.expand_path(File.join(File.dirname(__FILE__), '..', '..', 'data', 'cacert.pem')) DEFAULT_CHUNK_SIZE = 1_048_576 # 1 megabyte # avoid overwrite if somebody has redefined CHUNK_SIZE = DEFAULT_CHUNK_SIZE unless const_defined?(:CHUNK_SIZE) DEFAULT_REDIRECT_LIMIT = 10 DEFAULT_RETRY_LIMIT = 4 DEFAULT_RETRY_ERRORS = [ Excon::Error::RequestTimeout, Excon::Error::Server, Excon::Error::Socket, Excon::Error::Timeout, Excon::Error::TooManyRequests ].freeze FORCE_ENC = CR_NL.respond_to?(:force_encoding) HTTP_1_1 = " HTTP/1.1\r\n" HTTP_VERBS = %w[connect delete get head options patch post put trace].freeze HTTPS = 'https' NO_ENTITY = [204, 205, 304].freeze REDACTED = 'REDACTED' UNIX = 'unix' USER_AGENT = "excon/#{VERSION}".freeze VERSIONS = "#{USER_AGENT} (#{RUBY_PLATFORM}) ruby/#{RUBY_VERSION}".freeze # FIXME: should be frozen, but with a way to change them, similar to defaults VALID_REQUEST_KEYS = %i[ allow_unstubbed_requests body chunk_size debug_request debug_response dns_timeouts headers instrumentor logger method middlewares password path persistent pipeline query read_timeout request_block resolv_resolver response_block stubs timeout user versions write_timeout ] # FIXME: should be frozen, but with a way to change them, similar to defaults VALID_CONNECTION_KEYS = (VALID_REQUEST_KEYS + %i[ ciphers client_key client_key_data client_key_pass client_cert client_cert_data client_chain client_chain_data certificate certificate_path disable_proxy private_key private_key_path connect_timeout family keepalive host hostname ignore_unexpected_eof include_default_port omit_default_port nonblock reuseaddr port proxy scheme socket ssl_ca_file ssl_ca_path ssl_cert_store ssl_verify_callback ssl_verify_peer ssl_verify_peer_host ssl_verify_hostname ssl_version ssl_min_version ssl_max_version ssl_security_level ssl_proxy_headers ssl_uri_schemes tcp_nodelay thread_safe_sockets uri_parser ]) DEPRECATED_VALID_REQUEST_KEYS = { captures: 'Mock', expects: 'Expects', idempotent: 'Idempotent', instrumentor_name: 'Instrumentor', mock: 'Mock', retries_remaining: 'Idempotent', # referenced in Instrumentor, but only relevant with Idempotent retry_errors: 'Idempotent', retry_interval: 'Idempotent', retry_limit: 'Idempotent' # referenced in Instrumentor, but only relevant with Idempotent }.freeze unless ::IO.const_defined?(:WaitReadable) class ::IO module WaitReadable; end end end unless ::IO.const_defined?(:WaitWritable) class ::IO module WaitWritable; end end end # these come last as they rely on the above base_defaults = { chunk_size: CHUNK_SIZE || DEFAULT_CHUNK_SIZE, # see https://wiki.mozilla.org/Security/Server_Side_TLS#Intermediate_compatibility_.28default.29 # list provided then had DES related things sorted to the end ciphers: 'ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:DES-CBC3-SHA:!DSS', connect_timeout: 60, debug_request: false, debug_response: false, dns_timeouts: nil, # nil allows Resolv::DNS default timeout value (see https://ruby-doc.org/3.2.2/stdlibs/resolv/Resolv/DNS.html#method-i-timeouts-3D) headers: { 'User-Agent' => USER_AGENT, 'Accept' => '*/*' }.freeze, idempotent: false, instrumentor_name: 'excon', middlewares: [ Excon::Middleware::ResponseParser, Excon::Middleware::Decompress, Excon::Middleware::Expects, Excon::Middleware::Idempotent, Excon::Middleware::Instrumentor, Excon::Middleware::Mock ], mock: false, include_default_port: false, nonblock: true, omit_default_port: true, persistent: false, read_timeout: 60, resolv_resolver: nil, retry_errors: DEFAULT_RETRY_ERRORS, retry_limit: DEFAULT_RETRY_LIMIT, ssl_verify_peer: true, ssl_uri_schemes: [HTTPS].freeze, stubs: :global, tcp_nodelay: false, thread_safe_sockets: true, timeout: nil, uri_parser: URI, versions: VERSIONS, write_timeout: 60 }.freeze DEFAULTS = if defined? TEST_SUITE_DEFAULTS base_defaults.merge(TEST_SUITE_DEFAULTS).freeze else base_defaults.freeze end end excon-1.3.1/lib/excon/error.rb000066400000000000000000000223761510272305100161760ustar00rootroot00000000000000# frozen_string_literal: true module Excon # Excon exception classes class Error < StandardError @default_status_error = :HTTPStatus class StubNotFound < Error; end class InvalidStub < Error; end class Warning < Error; end # Socket related errors class Socket < Error attr_reader :socket_error def initialize(socket_error = Excon::Error.new) if is_a?(Certificate) || is_a?(Excon::Errors::CertificateError) super else super("#{socket_error.message} (#{socket_error.class})") set_backtrace(socket_error.backtrace) @socket_error = socket_error end end end # Certificate related errors class Certificate < Socket def initialize(socket_error = Excon::Error.new) msg = <<-EOL Unable to verify certificate. This may be an issue with the remote host or with Excon. Excon has certificates bundled, but these can be customized: `Excon.defaults[:ssl_ca_path] = path_to_certs` `ENV['SSL_CERT_DIR'] = path_to_certs` `Excon.defaults[:ssl_ca_file] = path_to_file` `ENV['SSL_CERT_FILE'] = path_to_file` `Excon.defaults[:ssl_verify_callback] = callback` (see OpenSSL::SSL::SSLContext#verify_callback) or: `Excon.defaults[:ssl_verify_peer] = false` (less secure). EOL full_message = "#{socket_error.message} (#{socket_error.class})" + ' ' + msg super(full_message) set_backtrace(socket_error.backtrace) @socket_error = socket_error end end class InvalidHeaderKey < Error; end class InvalidHeaderValue < Error; end class Timeout < Error; end class ResponseParse < Error; end class ProxyConnectionError < Error attr_reader :request, :response def initialize(msg, request = nil, response = nil) super(msg) @request = request @response = response end end class ProxyParse < Error; end class TooManyRedirects < Error; end # Base class for HTTP Error classes class HTTPStatus < Error attr_reader :request, :response def initialize(msg, request = nil, response = nil) super(msg) @request = request @response = response end end # HTTP Error classes class Informational < HTTPStatus; end class Success < HTTPStatus; end class Redirection < HTTPStatus; end class Client < HTTPStatus; end class Server < HTTPStatus; end class Continue < Informational; end # 100 class SwitchingProtocols < Informational; end # 101 class OK < Success; end # 200 class Created < Success; end # 201 class Accepted < Success; end # 202 class NonAuthoritativeInformation < Success; end # 203 class NoContent < Success; end # 204 class ResetContent < Success; end # 205 class PartialContent < Success; end # 206 class MultipleChoices < Redirection; end # 300 class MovedPermanently < Redirection; end # 301 class Found < Redirection; end # 302 class SeeOther < Redirection; end # 303 class NotModified < Redirection; end # 304 class UseProxy < Redirection; end # 305 class TemporaryRedirect < Redirection; end # 307 class BadRequest < Client; end # 400 class Unauthorized < Client; end # 401 class PaymentRequired < Client; end # 402 class Forbidden < Client; end # 403 class NotFound < Client; end # 404 class MethodNotAllowed < Client; end # 405 class NotAcceptable < Client; end # 406 class ProxyAuthenticationRequired < Client; end # 407 class RequestTimeout < Client; end # 408 class Conflict < Client; end # 409 class Gone < Client; end # 410 class LengthRequired < Client; end # 411 class PreconditionFailed < Client; end # 412 class RequestEntityTooLarge < Client; end # 413 class RequestURITooLong < Client; end # 414 class UnsupportedMediaType < Client; end # 415 class RequestedRangeNotSatisfiable < Client; end # 416 class ExpectationFailed < Client; end # 417 class UnprocessableEntity < Client; end # 422 class TooManyRequests < Client; end # 429 class InternalServerError < Server; end # 500 class NotImplemented < Server; end # 501 class BadGateway < Server; end # 502 class ServiceUnavailable < Server; end # 503 class GatewayTimeout < Server; end # 504 def self.status_errors @status_errors ||= { 100 => [Excon::Error::Continue, 'Continue'], 101 => [Excon::Error::SwitchingProtocols, 'Switching Protocols'], 200 => [Excon::Error::OK, 'OK'], 201 => [Excon::Error::Created, 'Created'], 202 => [Excon::Error::Accepted, 'Accepted'], 203 => [Excon::Error::NonAuthoritativeInformation, 'Non-Authoritative Information'], 204 => [Excon::Error::NoContent, 'No Content'], 205 => [Excon::Error::ResetContent, 'Reset Content'], 206 => [Excon::Error::PartialContent, 'Partial Content'], 300 => [Excon::Error::MultipleChoices, 'Multiple Choices'], 301 => [Excon::Error::MovedPermanently, 'Moved Permanently'], 302 => [Excon::Error::Found, 'Found'], 303 => [Excon::Error::SeeOther, 'See Other'], 304 => [Excon::Error::NotModified, 'Not Modified'], 305 => [Excon::Error::UseProxy, 'Use Proxy'], 307 => [Excon::Error::TemporaryRedirect, 'Temporary Redirect'], 400 => [Excon::Error::BadRequest, 'Bad Request'], 401 => [Excon::Error::Unauthorized, 'Unauthorized'], 402 => [Excon::Error::PaymentRequired, 'Payment Required'], 403 => [Excon::Error::Forbidden, 'Forbidden'], 404 => [Excon::Error::NotFound, 'Not Found'], 405 => [Excon::Error::MethodNotAllowed, 'Method Not Allowed'], 406 => [Excon::Error::NotAcceptable, 'Not Acceptable'], 407 => [Excon::Error::ProxyAuthenticationRequired, 'Proxy Authentication Required'], 408 => [Excon::Error::RequestTimeout, 'Request Timeout'], 409 => [Excon::Error::Conflict, 'Conflict'], 410 => [Excon::Error::Gone, 'Gone'], 411 => [Excon::Error::LengthRequired, 'Length Required'], 412 => [Excon::Error::PreconditionFailed, 'Precondition Failed'], 413 => [Excon::Error::RequestEntityTooLarge, 'Request Entity Too Large'], 414 => [Excon::Error::RequestURITooLong, 'Request-URI Too Long'], 415 => [Excon::Error::UnsupportedMediaType, 'Unsupported Media Type'], 416 => [Excon::Error::RequestedRangeNotSatisfiable, 'Request Range Not Satisfiable'], 417 => [Excon::Error::ExpectationFailed, 'Expectation Failed'], 422 => [Excon::Error::UnprocessableEntity, 'Unprocessable Entity'], 429 => [Excon::Error::TooManyRequests, 'Too Many Requests'], 500 => [Excon::Error::InternalServerError, 'InternalServerError'], 501 => [Excon::Error::NotImplemented, 'Not Implemented'], 502 => [Excon::Error::BadGateway, 'Bad Gateway'], 503 => [Excon::Error::ServiceUnavailable, 'Service Unavailable'], 504 => [Excon::Error::GatewayTimeout, 'Gateway Timeout'] } end # Messages for nicer exceptions, from rfc2616 def self.status_error(request, response) error_class, error_message = status_errors[response[:status]] if error_class.nil? default_class = Excon::Error.const_get(@default_status_error) error_class, error_message = [default_class, 'Unknown'] end message = StringIO.new str = "Expected(#{request[:expects].inspect}) <=>" + " Actual(#{response[:status]} #{error_message})" message.puts(str) if request[:debug_request] message.puts('excon.error.request') Excon::PrettyPrinter.pp(message, request) end if request[:debug_response] message.puts('excon.error.response') Excon::PrettyPrinter.pp(message, response.data) end message.rewind error_class.new(message.read, request, response) end end # Legacy module Errors Excon::Errors::Error = Excon::Error legacy_re = / \A Client |Server |Socket |Certificate |HTTPStatus |InternalServer \Z /x klasses = Excon::Error.constants.select do |c| Excon::Error.const_get(c).is_a? Class end klasses.each do |klass| class_name = klass.to_s unless class_name.match?(/Error\Z/) class_name = klass.to_s + 'Error' if class_name.match?(legacy_re) end Excon::Errors.const_set(class_name, Excon::Error.const_get(klass)) end def self.status_error(request, response) Excon::Error.status_error(request, response) end end end excon-1.3.1/lib/excon/extensions/000077500000000000000000000000001510272305100167055ustar00rootroot00000000000000excon-1.3.1/lib/excon/extensions/uri.rb000066400000000000000000000023401510272305100200300ustar00rootroot00000000000000# frozen_string_literal: true # TODO: Remove this monkey patch once ruby 1.9.3+ is the minimum supported version. # # This patch backports URI#hostname to ruby 1.9.2 and older. # URI#hostname is used for IPv6 support in Excon. # # URI#hostname was added in stdlib in v1_9_3_0 in this commit: # https://github.com/ruby/ruby/commit/5fd45a4b79dd26f9e7b6dc41142912df911e4d7d # # Addressable::URI is also an URI parser accepted in some parts of Excon. # Addressable::URI#hostname was added in addressable-2.3.5+ in this commit: # https://github.com/sporkmonger/addressable/commit/1b94abbec1f914d5f707c92a10efbb9e69aab65e # # Users who want to use Addressable::URI to parse URIs must upgrade to 2.3.5 or newer. require 'uri' unless URI("http://foo/bar").respond_to?(:hostname) module URI class Generic # extract the host part of the URI and unwrap brackets for IPv6 addresses. # # This method is same as URI::Generic#host except # brackets for IPv6 (and future IP) addresses are removed. # # u = URI("http://[::1]/bar") # p u.hostname #=> "::1" # p u.host #=> "[::1]" # def hostname v = self.host /\A\[(.*)\]\z/ =~ v ? $1 : v end end end end excon-1.3.1/lib/excon/headers.rb000066400000000000000000000035341510272305100164530ustar00rootroot00000000000000# frozen_string_literal: true module Excon class Headers < Hash SENTINEL = {} alias_method :raw_writer, :[]= alias_method :raw_reader, :[] if SENTINEL.respond_to?(:assoc) alias_method :raw_assoc, :assoc end alias_method :raw_delete, :delete alias_method :raw_fetch, :fetch alias_method :raw_has_key?, :has_key? alias_method :raw_include?, :include? alias_method :raw_key?, :key? alias_method :raw_member?, :member? alias_method :raw_merge, :merge alias_method :raw_merge!, :merge! alias_method :raw_rehash, :rehash alias_method :raw_store, :store alias_method :raw_values_at, :values_at def initialize super @downcased = {} end def [](key) @downcased[key.to_s.downcase] end def []=(key, value) raw_writer(key, value) @downcased[key.to_s.downcase] = value end alias_method :store, :[]= if SENTINEL.respond_to? :assoc def assoc(obj) @downcased.assoc(obj.downcase) end end def delete(key, &proc) raw_delete(key, &proc) @downcased.delete(key.to_s.downcase, &proc) end def fetch(key, default = nil, &proc) if proc @downcased.fetch(key.to_s.downcase, &proc) else @downcased.fetch(key.to_s.downcase, default) end end def has_key?(key) raw_key?(key) || @downcased.has_key?(key.to_s.downcase) end alias_method :key?, :has_key? alias_method :member?, :has_key? def merge(other_hash) self.dup.merge!(other_hash) end def merge!(other_hash) other_hash.each do |key, value| self[key] = value end raw_merge!(other_hash) end def rehash @downcased.rehash raw_rehash end def values_at(*keys) @downcased.values_at(*keys.map {|key| key.to_s.downcase}) end end end excon-1.3.1/lib/excon/instrumentors/000077500000000000000000000000001510272305100174425ustar00rootroot00000000000000excon-1.3.1/lib/excon/instrumentors/logging_instrumentor.rb000066400000000000000000000022471510272305100242530ustar00rootroot00000000000000require 'logger' module Excon class LoggingInstrumentor def self.instrument(name, params = {}) params = params.dup logger = params[:logger] || Logger.new($stderr) # reduce duplication/noise of output params.delete(:connection) params.delete(:stack) if params.has_key?(:headers) && params[:headers].has_key?('Authorization') params[:headers] = params[:headers].dup params[:headers]['Authorization'] = "REDACTED" end if params.has_key?(:password) params[:password] = "REDACTED" end if name.include?('request') info = "request: " + params[:scheme] + "://" + File.join(params[:host], params[:path]) if params[:query] info << "?" if params[:query].is_a?(Hash) info << params[:query].to_a.map { |key,value| "#{key}=#{value}" }.join('&') else info << params[:query] end end else response_type = name.split('.').last if params[:body] info = "#{response_type}: " + params[:body] end end logger.info(info) if info yield if block_given? end end end excon-1.3.1/lib/excon/instrumentors/standard_instrumentor.rb000066400000000000000000000006451510272305100244250ustar00rootroot00000000000000# frozen_string_literal: true module Excon class StandardInstrumentor def self.instrument(name, params = {}) params = params.dup # reduce duplication/noise of output params.delete(:connection) params.delete(:stack) params = Utils.redact(params) $stderr.puts(name) Excon::PrettyPrinter.pp($stderr, params) if block_given? yield end end end end excon-1.3.1/lib/excon/middlewares/000077500000000000000000000000001510272305100170065ustar00rootroot00000000000000excon-1.3.1/lib/excon/middlewares/base.rb000066400000000000000000000012041510272305100202420ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class Base # Returns the list of parameters that this middleware uses that are valid # as arguments to `Connection#request` or `Connection#new`. def self.valid_parameter_keys [] end def initialize(stack) @stack = stack end def error_call(datum) # do stuff @stack.error_call(datum) end def request_call(datum) # do stuff @stack.request_call(datum) end def response_call(datum) @stack.response_call(datum) # do stuff end end end end excon-1.3.1/lib/excon/middlewares/capture_cookies.rb000066400000000000000000000016761510272305100225240ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class CaptureCookies < Excon::Middleware::Base def extract_cookies_from_set_cookie(set_cookie) set_cookie.split(',').map { |full| full.split(';').first.strip }.join('; ') end def get_header(datum, header) _, header_value = datum[:response][:headers].detect do |key, _| key.casecmp?(header) end header_value end def response_call(datum) cookie = get_header(datum, 'Set-Cookie') if cookie cookie = extract_cookies_from_set_cookie(cookie) unless datum[:headers].key?("Cookie") datum[:headers]["Cookie"] = cookie else original_cookies = datum[:headers]["Cookie"] datum[:headers]["Cookie"] = original_cookies.empty? ? cookie : [original_cookies,cookie].join('; ') end end super(datum) end end end end excon-1.3.1/lib/excon/middlewares/decompress.rb000066400000000000000000000030141510272305100214750ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class Decompress < Excon::Middleware::Base INFLATE_ZLIB_OR_GZIP = 47 # Zlib::MAX_WBITS + 32 INFLATE_RAW = -15 # Zlib::MAX_WBITS * -1 def request_call(datum) unless datum.key?(:response_block) key = datum[:headers].keys.detect { |k| k.to_s.casecmp?('Accept-Encoding') } || 'Accept-Encoding' datum[:headers][key] = 'deflate, gzip' if datum[:headers][key].to_s.empty? end @stack.request_call(datum) end def response_call(datum) body = datum[:response][:body] if !(datum.key?(:response_block) || body.nil? || body.empty?) && (key = datum[:response][:headers].keys.detect { |k| k.casecmp?('Content-Encoding') }) encodings = Utils.split_header_value(datum[:response][:headers][key]) if encodings&.last&.casecmp?('deflate') datum[:response][:body] = begin Zlib::Inflate.new(INFLATE_ZLIB_OR_GZIP).inflate(body) rescue Zlib::DataError # fallback to raw on error Zlib::Inflate.new(INFLATE_RAW).inflate(body) end encodings.pop elsif encodings&.last&.casecmp?('gzip') || encodings&.last&.casecmp?('x-gzip') datum[:response][:body] = Zlib::GzipReader.new(StringIO.new(body)).read encodings.pop end datum[:response][:headers][key] = encodings.join(', ') end @stack.response_call(datum) end end end end excon-1.3.1/lib/excon/middlewares/escape_path.rb000066400000000000000000000005401510272305100216060ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class EscapePath < Excon::Middleware::Base def request_call(datum) # make sure path is encoded, prevent double encoding datum[:path] = Excon::Utils.escape_uri(Excon::Utils.unescape_uri(datum[:path])) @stack.request_call(datum) end end end end excon-1.3.1/lib/excon/middlewares/expects.rb000066400000000000000000000011301510272305100210010ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class Expects < Excon::Middleware::Base def self.valid_parameter_keys [ :expects ] end def response_call(datum) if datum.has_key?(:expects) && ![*datum[:expects]].include?(datum[:response][:status]) raise( Excon::Errors.status_error( datum.reject {|key,_| key == :response}, Excon::Response.new(datum[:response]) ) ) else @stack.response_call(datum) end end end end end excon-1.3.1/lib/excon/middlewares/idempotent.rb000066400000000000000000000034741510272305100215130ustar00rootroot00000000000000# frozen_string_literal: true require 'set' module Excon module Middleware class Idempotent < Excon::Middleware::Base def self.valid_parameter_keys [ :idempotent, :retries_remaining, :retry_errors, :retry_interval, :retry_limit ] end def request_call(datum) datum[:retries_remaining] ||= datum[:retry_limit] @stack.request_call(datum) end def error_call(datum) if datum[:idempotent] if datum.has_key?(:request_block) if datum[:request_block].respond_to?(:rewind) datum[:request_block].rewind else Excon.display_warning('Excon requests with a :request_block must implement #rewind in order to be :idempotent.') datum[:idempotent] = false end end if datum.has_key?(:response_block) && datum[:response_block].respond_to?(:rewind) datum[:response_block].rewind end if datum.has_key?(:pipeline) Excon.display_warning("Excon requests can not be :idempotent when pipelining.") datum[:idempotent] = false end end if datum[:idempotent] && datum[:retry_errors].any? {|ex| datum[:error].kind_of?(ex) } && datum[:retries_remaining] > 1 sleep(datum[:retry_interval]) if datum[:retry_interval] # reduces remaining retries, reset connection, and restart request_call datum[:retries_remaining] -= 1 connection = datum.delete(:connection) valid_keys = Set.new(connection.valid_request_keys(datum[:middlewares])) datum.select! {|key, _| valid_keys.include?(key) } connection.request(datum) else @stack.error_call(datum) end end end end end excon-1.3.1/lib/excon/middlewares/instrumentor.rb000066400000000000000000000025051510272305100221060ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class Instrumentor < Excon::Middleware::Base def self.valid_parameter_keys [ :logger, :instrumentor, :instrumentor_name ] end def error_call(datum) if datum.has_key?(:instrumentor) datum[:instrumentor].instrument("#{datum[:instrumentor_name]}.error", :error => datum[:error]) do @stack.error_call(datum) end else @stack.error_call(datum) end end def request_call(datum) if datum.has_key?(:instrumentor) if datum[:retries_remaining] < datum[:retry_limit] event_name = "#{datum[:instrumentor_name]}.retry" else event_name = "#{datum[:instrumentor_name]}.request" end datum[:instrumentor].instrument(event_name, datum) do @stack.request_call(datum) end else @stack.request_call(datum) end end def response_call(datum) if datum.has_key?(:instrumentor) datum[:instrumentor].instrument("#{datum[:instrumentor_name]}.response", datum[:response]) do @stack.response_call(datum) end else @stack.response_call(datum) end end end end end excon-1.3.1/lib/excon/middlewares/mock.rb000066400000000000000000000035641510272305100202740ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class Mock < Excon::Middleware::Base def self.valid_parameter_keys [ :allow_unstubbed_requests, :captures, :mock ] end def request_call(datum) if datum[:mock] # convert File/Tempfile body to string before matching: if datum[:body].respond_to?(:read) if datum[:body].respond_to?(:binmode) datum[:body].binmode end if datum[:body].respond_to?(:rewind) datum[:body].rewind end datum[:body] = datum[:body].read elsif !datum[:body].nil? && !datum[:body].is_a?(String) raise Excon::Errors::InvalidStub.new("Request body should be a string or an IO object. #{datum[:body].class} provided") end if (stub = Excon.stub_for(datum)) datum[:remote_ip] ||= '127.0.0.1' datum[:response] = { :body => '', :headers => {}, :status => 200, :remote_ip => datum[:remote_ip] } stub_datum = case stub.last when Proc stub.last.call(datum) else stub.last end datum[:response].merge!(stub_datum.reject {|key,_| key == :headers}) if stub_datum.has_key?(:headers) datum[:response][:headers].merge!(stub_datum[:headers]) end elsif datum[:allow_unstubbed_requests] != true # if we reach here no stubs matched message = StringIO.new message.puts('no stubs matched') Excon::PrettyPrinter.pp(message, datum) raise(Excon::Errors::StubNotFound.new(message.string)) end end @stack.request_call(datum) end end end end excon-1.3.1/lib/excon/middlewares/redirect_follower.rb000066400000000000000000000054171510272305100230540ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class RedirectFollower < Excon::Middleware::Base def self.valid_parameter_keys [ :redirects_remaining, :redirect_limit ] end def request_call(datum) datum[:redirects_remaining] ||= datum[:redirect_limit] || Excon::DEFAULT_REDIRECT_LIMIT @stack.request_call(datum) end def get_header(datum, header) _, header_value = datum[:response][:headers].detect do |key, _| key.casecmp?(header) end header_value end def response_call(datum) if datum.has_key?(:response) case datum[:response][:status] when 301, 302, 303, 307, 308 if datum[:redirects_remaining] <= 0 raise Excon::Errors::TooManyRedirects end datum[:redirects_remaining] -= 1 uri_parser = datum[:uri_parser] || Excon.defaults[:uri_parser] location = get_header(datum, 'Location') base_uri = Excon::Utils.request_uri(datum) uri = uri_parser.join(base_uri, location) # delete old/redirect response and remote_ip response = datum.delete(:response) datum.delete(:remote_ip) params = datum.dup params.delete(:connection) params.delete(:password) params.delete(:stack) params.delete(:user) if [301, 302, 303].include?(response[:status]) params[:method] = :get params.delete(:body) params[:headers].delete('Content-Length') end params[:headers] = datum[:headers].dup params[:headers].delete('Authorization') params[:headers].delete('Proxy-Connection') params[:headers].delete('Proxy-Authorization') params[:headers].delete('Host') params.merge!( :scheme => uri.scheme || datum[:scheme], :host => uri.host || datum[:host], :hostname => uri.hostname || datum[:hostname], :port => uri.port || datum[:port], :path => uri.path, :query => uri.query ) params[:user] = Utils.unescape_uri(uri.user) if uri.user params[:password] = Utils.unescape_uri(uri.password) if uri.password response = Excon::Connection.new(params).request datum.merge!({ :remote_ip => response.remote_ip, :response => response.data }) else @stack.response_call(datum) end else @stack.response_call(datum) end end end end end excon-1.3.1/lib/excon/middlewares/response_parser.rb000066400000000000000000000006731510272305100225530ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Middleware class ResponseParser < Excon::Middleware::Base def response_call(datum) unless datum.has_key?(:response) datum = Excon::Response.parse(datum[:connection].send(:socket), datum) end if datum.has_key?(:logger) datum[:response][:logger] = datum[:logger] end @stack.response_call(datum) end end end end excon-1.3.1/lib/excon/pretty_printer.rb000066400000000000000000000017561510272305100201360ustar00rootroot00000000000000# frozen_string_literal: true module Excon class PrettyPrinter def self.pp(io, datum, indent=0) datum = datum.dup # reduce duplication/noise of output unless datum.is_a?(Excon::Headers) datum.delete(:connection) datum.delete(:stack) datum = Utils.redact(datum) end indent += 2 max_key_length = datum.keys.map {|key| key.inspect.length}.max datum.keys.sort_by {|key| key.to_s}.each do |key| value = datum[key] io.write("#{' ' * indent}#{key.inspect.ljust(max_key_length)} => ") case value when Array io.puts("[") value.each do |v| io.puts("#{' ' * indent} #{v.inspect}") end io.write("#{' ' * indent}]") when Hash io.puts("{") self.pp(io, value, indent) io.write("#{' ' * indent}}") else io.write("#{value.inspect}") end io.puts end indent -= 2 end end end excon-1.3.1/lib/excon/response.rb000066400000000000000000000167331510272305100167030ustar00rootroot00000000000000# frozen_string_literal: true module Excon class Response attr_accessor :data # backwards compatability reader/writers def body=(new_body) @data[:body] = new_body end def body @data[:body] end def headers=(new_headers) @data[:headers] = new_headers end def headers @data[:headers] end def host @data[:host] end def scheme @data[:scheme] end def local_address @data[:local_address] end def local_port @data[:local_port] end def http_method # can't be named "method" @data[:method] end def path @data[:path] end def query @data[:query] end def port @data[:port] end def reason_phrase=(new_reason_phrase) @data[:reason_phrase] = new_reason_phrase end def reason_phrase @data[:reason_phrase] end def remote_ip=(new_remote_ip) @data[:remote_ip] = new_remote_ip end def remote_ip @data[:remote_ip] end def status=(new_status) @data[:status] = new_status end def status @data[:status] end def status_line @data[:status_line] end def status_line=(new_status_line) @data[:status_line] = new_status_line end def self.parse(socket, datum) # this will discard any trailing lines from the previous response if any. line = nil loop do line = socket.readline break if line[9,3].to_i != 0 end status = line[9, 3].to_i reason_phrase = line[13..-3] # -3 strips the trailing "\r\n" datum[:response] = { :body => String.new, :cookies => [], :host => datum[:host], :scheme => datum[:scheme], :method => datum[:method], :headers => Excon::Headers.new, :path => datum[:path], :query => datum[:query], :port => datum[:port], :omit_default_port => datum[:omit_default_port], :status => status, :status_line => line, :reason_phrase => reason_phrase } unix_proxy = datum[:proxy] ? datum[:proxy][:scheme] == UNIX : false unless datum[:scheme] == UNIX || unix_proxy datum[:response].merge!( :remote_ip => socket.remote_ip, :local_port => socket.local_port, :local_address => socket.local_address ) end parse_headers(socket, datum) unless (['HEAD', 'CONNECT'].include?(datum[:method].to_s.upcase)) || NO_ENTITY.include?(datum[:response][:status]) if (key = datum[:response][:headers].keys.detect {|k| k.casecmp?('Transfer-Encoding') }) encodings = Utils.split_header_value(datum[:response][:headers][key]) if (encoding = encodings.last) && encoding.casecmp?('chunked') transfer_encoding_chunked = true if encodings.length == 1 datum[:response][:headers].delete(key) else datum[:response][:headers][key] = encodings[0...-1].join(', ') end end end # use :response_block unless :expects would fail if (response_block = datum[:response_block]) if datum[:middlewares].include?(Excon::Middleware::Expects) && datum[:expects] && !Array(datum[:expects]).include?(datum[:response][:status]) response_block = nil end end if transfer_encoding_chunked if response_block while (chunk_size = socket.readline.chomp!.to_i(16)) > 0 while chunk_size > 0 chunk = socket.read(chunk_size) || raise(EOFError) chunk_size -= chunk.bytesize response_block.call(chunk, nil, nil) end new_line_size = 2 # 2 == "\r\n".length while new_line_size > 0 chunk = socket.read(new_line_size) || raise(EOFError) new_line_size -= chunk.length end end else while (chunk_size = socket.readline.chomp!.to_i(16)) > 0 while chunk_size > 0 chunk = socket.read(chunk_size) || raise(EOFError) chunk_size -= chunk.bytesize datum[:response][:body] << chunk end new_line_size = 2 # 2 == "\r\n".length while new_line_size > 0 chunk = socket.read(new_line_size) || raise(EOFError) new_line_size -= chunk.length end end end parse_headers(socket, datum) # merge trailers into headers else if (key = datum[:response][:headers].keys.detect {|k| k.casecmp?('Content-Length') }) content_length = datum[:response][:headers][key].to_i end if (remaining = content_length) if response_block while remaining > 0 chunk = socket.read([datum[:chunk_size], remaining].min) || raise(EOFError) response_block.call(chunk, [remaining - chunk.bytesize, 0].max, content_length) remaining -= chunk.bytesize end else while remaining > 0 chunk = socket.read([datum[:chunk_size], remaining].min) || raise(EOFError) datum[:response][:body] << chunk remaining -= chunk.bytesize end end else if response_block while (chunk = socket.read(datum[:chunk_size])) response_block.call(chunk, nil, nil) end else while (chunk = socket.read(datum[:chunk_size])) datum[:response][:body] << chunk end end end end end datum end def self.parse_headers(socket, datum) last_key = nil until (data = socket.readline.chomp).empty? if !data.lstrip!.nil? raise Excon::Error::ResponseParse, 'malformed header' unless last_key # append to last_key's last value datum[:response][:headers][last_key] << ' ' << data.rstrip else key, value = data.split(':', 2) raise Excon::Error::ResponseParse, 'malformed header' unless value # add key/value or append value to existing values datum[:response][:headers][key] = ([datum[:response][:headers][key]] << value.strip).compact.join(', ') if key.casecmp?('Set-Cookie') datum[:response][:cookies] << value.strip end last_key = key end end end def initialize(params={}) @data = { :body => '' }.merge(params) @data[:headers] = Excon::Headers.new.merge!(params[:headers] || {}) @body = @data[:body] @headers = @data[:headers] @status = @data[:status] @remote_ip = @data[:remote_ip] @local_port = @data[:local_port] @local_address = @data[:local_address] end def [](key) @data[key] end def params Excon.display_warning('Excon::Response#params is deprecated use Excon::Response#data instead.') data end def pp Excon::PrettyPrinter.pp($stdout, @data) end # Retrieve a specific header value. Header names are treated case-insensitively. # @param [String] name Header name def get_header(name) headers[name] end end # class Response end # module Excon excon-1.3.1/lib/excon/socket.rb000066400000000000000000000310051510272305100163220ustar00rootroot00000000000000# frozen_string_literal: true require 'resolv' module Excon class Socket include Utils extend Forwardable attr_accessor :data # read/write drawn from https://github.com/ruby-amqp/bunny/commit/75d9dd79551b31a5dd3d1254c537bad471f108cf CONNECT_RETRY_EXCEPTION_CLASSES = if defined?(IO::EINPROGRESSWaitWritable) # Ruby >= 2.1 [Errno::EINPROGRESS, IO::EINPROGRESSWaitWritable].freeze else # Ruby <= 2.0 [Errno::EINPROGRESS].freeze end READ_RETRY_EXCEPTION_CLASSES = if defined?(IO::EAGAINWaitReadable) # Ruby >= 2.1 [Errno::EAGAIN, Errno::EWOULDBLOCK, IO::WaitReadable, IO::EAGAINWaitReadable, IO::EWOULDBLOCKWaitReadable].freeze else # Ruby <= 2.0 [Errno::EAGAIN, Errno::EWOULDBLOCK, IO::WaitReadable].freeze end WRITE_RETRY_EXCEPTION_CLASSES = if defined?(IO::EAGAINWaitWritable) # Ruby >= 2.1 [Errno::EAGAIN, Errno::EWOULDBLOCK, IO::WaitWritable, IO::EAGAINWaitWritable, IO::EWOULDBLOCKWaitWritable].freeze else # Ruby <= 2.0 [Errno::EAGAIN, Errno::EWOULDBLOCK, IO::WaitWritable].freeze end # Maps a socket operation to a timeout property. OPERATION_TO_TIMEOUT = { :connect_read => :connect_timeout, :connect_write => :connect_timeout, :read => :read_timeout, :write => :write_timeout }.freeze def params Excon.display_warning('Excon::Socket#params is deprecated use Excon::Socket#data instead.') @data end def params=(new_params) Excon.display_warning('Excon::Socket#params= is deprecated use Excon::Socket#data= instead.') @data = new_params end attr_reader :remote_ip def_delegators(:@socket, :close) def initialize(data = {}) @data = data @nonblock = data[:nonblock] @port ||= @data[:port] || 80 @read_buffer = String.new @read_offset = 0 @eof = false @backend_eof = false connect end def read(max_length = nil) if @eof max_length ? nil : '' elsif @nonblock read_nonblock(max_length) else read_block(max_length) end end def readline if @nonblock result = String.new block = consume_read_buffer loop do idx = block.index("\n") if idx.nil? result << block else result << block[0..idx] rewind_read_buffer(block, idx) break end block = read_nonblock(@data[:chunk_size]) || raise(EOFError) end result else # nonblock/legacy begin Timeout.timeout(@data[:read_timeout]) do @socket.readline end rescue Timeout::Error raise Excon::Errors::Timeout.new('read timeout reached') end end end def write(data) if @nonblock write_nonblock(data) else write_block(data) end end def local_address unpacked_sockaddr[1] end def local_port unpacked_sockaddr[0] end private def connect @socket = nil exception = nil hostname = @data[:hostname] port = @port family = @data[:family] if @data[:proxy] hostname = @data[:proxy][:hostname] port = @data[:proxy][:port] family = @data[:proxy][:family] end resolver = @data[:resolv_resolver] || Resolv.new # Deprecated if @data[:dns_timeouts] Excon.display_warning('dns_timeouts is deprecated, use resolv_resolver instead.') dns_resolver = Resolv::DNS.new dns_resolver.timeouts = @data[:dns_timeouts] resolver = Resolv.new([Resolv::Hosts.new, dns_resolver]) end resolver.each_address(hostname) do |ip| # already succeeded on previous addrinfo if @socket break end @remote_ip = ip @data[:remote_ip] = ip # nonblocking connect begin sockaddr = ::Socket.sockaddr_in(port, ip) addrinfo = Addrinfo.getaddrinfo(ip, port, family, :STREAM).first socket = ::Socket.new(addrinfo.pfamily, addrinfo.socktype, addrinfo.protocol) if @data[:reuseaddr] socket.setsockopt(::Socket::Constants::SOL_SOCKET, ::Socket::Constants::SO_REUSEADDR, true) if defined?(::Socket::Constants::SO_REUSEPORT) socket.setsockopt(::Socket::Constants::SOL_SOCKET, ::Socket::Constants::SO_REUSEPORT, true) end end if @nonblock socket.connect_nonblock(sockaddr) else socket.connect(sockaddr) end @socket = socket rescue *CONNECT_RETRY_EXCEPTION_CLASSES select_with_timeout(socket, :connect_write) begin socket.connect_nonblock(sockaddr) @socket = socket rescue Errno::EISCONN @socket = socket rescue SystemCallError => exception socket.close rescue nil end rescue SystemCallError => exception socket&.close rescue nil end end exception ||= Resolv::ResolvError.new("no address for #{hostname}") # this will be our last encountered exception fail exception unless @socket if @data[:tcp_nodelay] @socket.setsockopt(::Socket::IPPROTO_TCP, ::Socket::TCP_NODELAY, true) end if @data[:keepalive] if [:SOL_SOCKET, :SO_KEEPALIVE, :SOL_TCP, :TCP_KEEPIDLE, :TCP_KEEPINTVL, :TCP_KEEPCNT].all?{|c| ::Socket.const_defined? c} @socket.setsockopt(::Socket::SOL_SOCKET, ::Socket::SO_KEEPALIVE, true) @socket.setsockopt(::Socket::SOL_TCP, ::Socket::TCP_KEEPIDLE, @data[:keepalive][:time]) @socket.setsockopt(::Socket::SOL_TCP, ::Socket::TCP_KEEPINTVL, @data[:keepalive][:intvl]) @socket.setsockopt(::Socket::SOL_TCP, ::Socket::TCP_KEEPCNT, @data[:keepalive][:probes]) else Excon.display_warning('Excon::Socket keepalive was set, but is not supported by Ruby version.') end end end # Consume any bytes remaining in the read buffer before making a system call. def consume_read_buffer block = @read_buffer[@read_offset..-1] @read_offset = @read_buffer.length block end # Rewind the read buffer to just after the given index. # The offset is moved back to the start of the current chunk and then forward until just after the index. def rewind_read_buffer(chunk, idx) @read_offset = @read_offset - chunk.length + (idx + 1) @eof = false end def read_nonblock(max_length) begin if @read_offset != 0 && @read_offset >= @read_buffer.length # Clear the buffer so we can test for emptiness below @read_buffer.clear # Reset the offset so it matches the length of the buffer when empty. @read_offset = 0 end if max_length until @backend_eof || readable_bytes >= max_length if @read_buffer.empty? # Avoid allocating a new buffer string when the read buffer is empty @read_buffer = @socket.read_nonblock(max_length, @read_buffer) else @read_buffer << @socket.read_nonblock(max_length - readable_bytes) end end else until @backend_eof if @read_buffer.empty? # Avoid allocating a new buffer string when the read buffer is empty @read_buffer = @socket.read_nonblock(@data[:chunk_size], @read_buffer) else @read_buffer << @socket.read_nonblock(@data[:chunk_size]) end end end rescue OpenSSL::SSL::SSLError => error if error.message == 'read would block' if @read_buffer.empty? select_with_timeout(@socket, :read) && retry end else raise(error) end rescue *READ_RETRY_EXCEPTION_CLASSES if @read_buffer.empty? # if we didn't read anything, try again... select_with_timeout(@socket, :read) && retry end rescue EOFError @backend_eof = true end if max_length if @read_buffer.empty? # EOF met at beginning @eof = @backend_eof nil else start = @read_offset # Ensure that we can seek backwards when reading until a terminator string. # The read offset must never point past the end of the read buffer. @read_offset += max_length > readable_bytes ? readable_bytes : max_length @read_buffer[start...@read_offset] end else # read until EOFError, so return everything start = @read_offset @read_offset = @read_buffer.length @eof = @backend_eof @read_buffer[start..-1] end end def readable_bytes @read_buffer.length - @read_offset end def read_block(max_length) @socket.read(max_length) rescue OpenSSL::SSL::SSLError => error if error.message == 'read would block' select_with_timeout(@socket, :read) && retry else raise(error) end rescue *READ_RETRY_EXCEPTION_CLASSES select_with_timeout(@socket, :read) && retry rescue EOFError @eof = true end def write_nonblock(data) data = binary_encode(data) loop do written = nil begin # I wish that this API accepted a start position, then we wouldn't # have to slice data when there is a short write. written = @socket.write_nonblock(data) rescue Errno::EFAULT => error if OpenSSL.const_defined?(:OPENSSL_LIBRARY_VERSION) && OpenSSL::OPENSSL_LIBRARY_VERSION.split(' ')[1] == '1.0.2' msg = "The version of OpenSSL this ruby is built against (1.0.2) has a vulnerability which causes a fault. For more, see https://github.com/excon/excon/issues/467" raise SecurityError.new(msg) else raise error end rescue OpenSSL::SSL::SSLError, *WRITE_RETRY_EXCEPTION_CLASSES => error if error.is_a?(OpenSSL::SSL::SSLError) && error.message != 'write would block' raise error else select_with_timeout(@socket, :write) && retry end end # Fast, common case. break if written == data.size # This takes advantage of the fact that most ruby implementations # have Copy-On-Write strings. Thusly why requesting a subrange # of data, we actually don't copy data because the new string # simply references a subrange of the original. data = data[written, data.size] end end def write_block(data) @socket.write(data) rescue OpenSSL::SSL::SSLError, *WRITE_RETRY_EXCEPTION_CLASSES => error if error.is_a?(OpenSSL::SSL::SSLError) && error.message != 'write would block' raise error else select_with_timeout(@socket, :write) && retry end end def select_with_timeout(socket, type) timeout_kind = type timeout = @data[OPERATION_TO_TIMEOUT[type]] # Check whether the request has a timeout configured. if @data.include?(:deadline) request_timeout = request_time_remaining # If the time remaining until the request times out is less than the timeout for the type of select, # use the time remaining as the timeout instead. if request_timeout < timeout timeout_kind = :request timeout = request_timeout end end select = case type when :connect_read IO.select([socket], nil, nil, timeout) when :connect_write IO.select(nil, [socket], nil, timeout) when :read IO.select([socket], nil, nil, timeout) when :write IO.select(nil, [socket], nil, timeout) end select || raise(Excon::Errors::Timeout.new("#{timeout_kind} timeout reached")) end def unpacked_sockaddr @unpacked_sockaddr ||= ::Socket.unpack_sockaddr_in(@socket.to_io.getsockname) rescue ArgumentError => e unless e.message == 'not an AF_INET/AF_INET6 sockaddr' raise end end # Returns the remaining time in seconds until we reach the deadline for the request timeout. # Raises an exception if we have exceeded the request timeout's deadline. def request_time_remaining now = Process.clock_gettime(Process::CLOCK_MONOTONIC) deadline = @data[:deadline] raise(Excon::Errors::Timeout.new('request timeout reached')) if now >= deadline deadline - now end end end excon-1.3.1/lib/excon/ssl_socket.rb000066400000000000000000000173571510272305100172210ustar00rootroot00000000000000# frozen_string_literal: true module Excon class SSLSocket < Socket HAVE_NONBLOCK = [:connect_nonblock, :read_nonblock, :write_nonblock].all? do |m| OpenSSL::SSL::SSLSocket.public_method_defined?(m) end def initialize(data = {}) @port = data[:port] || 443 super # create ssl context ssl_context = OpenSSL::SSL::SSLContext.new # set the security level before setting other parameters affected by it if @data[:ssl_security_level] ssl_context.security_level = @data[:ssl_security_level] end # disable less secure options, when supported ssl_context_options = OpenSSL::SSL::SSLContext::DEFAULT_PARAMS[:options] if defined?(OpenSSL::SSL::OP_DONT_INSERT_EMPTY_FRAGMENTS) ssl_context_options &= ~OpenSSL::SSL::OP_DONT_INSERT_EMPTY_FRAGMENTS end if defined?(OpenSSL::SSL::OP_NO_COMPRESSION) ssl_context_options |= OpenSSL::SSL::OP_NO_COMPRESSION end ssl_context_options |= OpenSSL::SSL::OP_IGNORE_UNEXPECTED_EOF if @data[:ignore_unexpected_eof] ssl_context.options = ssl_context_options ssl_context.ciphers = @data[:ciphers] if @data[:ssl_version] ssl_context.ssl_version = @data[:ssl_version] end if @data[:ssl_min_version] ssl_context.min_version = @data[:ssl_min_version] end if @data[:ssl_max_version] ssl_context.max_version = @data[:ssl_max_version] end if @data[:ssl_verify_peer] # turn verification on ssl_context.verify_mode = OpenSSL::SSL::VERIFY_PEER if (ca_file = @data[:ssl_ca_file] || ENV['SSL_CERT_FILE']) ssl_context.ca_file = ca_file end if (ca_path = @data[:ssl_ca_path] || ENV['SSL_CERT_DIR']) ssl_context.ca_path = ca_path end if (cert_store = @data[:ssl_cert_store]) ssl_context.cert_store = cert_store end if cert_store.nil? ssl_context.cert_store = OpenSSL::X509::Store.new ssl_context.cert_store.set_default_paths end # no defaults, fallback to bundled unless ca_file || ca_path || cert_store # workaround issue #257 (JRUBY-6970) ca_file = DEFAULT_CA_FILE ca_file = ca_file.gsub(/^jar:/, '') if ca_file.match?(/^jar:file:\//) begin ssl_context.cert_store.add_file(ca_file) rescue Excon.display_warning("Excon unable to add file to cert store, ignoring: #{ca_file}\n[#{$!.class}] #{$!.message}") end end if (verify_callback = @data[:ssl_verify_callback]) ssl_context.verify_callback = verify_callback end else # turn verification off ssl_context.verify_mode = OpenSSL::SSL::VERIFY_NONE end # Verify certificate hostname if supported (ruby >= 2.4.0) ssl_context.verify_hostname = @data[:ssl_verify_hostname] if ssl_context.respond_to?(:verify_hostname=) if client_cert_data && client_key_data ssl_context.cert = OpenSSL::X509::Certificate.new client_cert_data if OpenSSL::PKey.respond_to? :read ssl_context.key = OpenSSL::PKey.read(client_key_data, client_key_pass) else ssl_context.key = OpenSSL::PKey::RSA.new(client_key_data, client_key_pass) end if client_chain_data && OpenSSL::X509::Certificate.respond_to?(:load) ssl_context.extra_chain_cert = OpenSSL::X509::Certificate.load(client_chain_data) elsif client_chain_data certs = client_chain_data.scan(/-----BEGIN CERTIFICATE-----(?:.|\n)+?-----END CERTIFICATE-----/) ssl_context.extra_chain_cert = certs.map do |cert| OpenSSL::X509::Certificate.new(cert) end end elsif @data.key?(:certificate) && @data.key?(:private_key) ssl_context.cert = OpenSSL::X509::Certificate.new(@data[:certificate]) if OpenSSL::PKey.respond_to? :read ssl_context.key = OpenSSL::PKey.read(@data[:private_key], client_key_pass) else ssl_context.key = OpenSSL::PKey::RSA.new(@data[:private_key], client_key_pass) end end if @data[:proxy] request = "CONNECT #{@data[:host]}:#{@data[:port]}#{Excon::HTTP_1_1}" \ "Host: #{@data[:host]}:#{@data[:port]}#{Excon::CR_NL}" if @data[:proxy].has_key?(:user) || @data[:proxy].has_key?(:password) user, pass = Utils.unescape_form(@data[:proxy][:user].to_s), Utils.unescape_form(@data[:proxy][:password].to_s) auth = ["#{user}:#{pass}"].pack('m').delete(Excon::CR_NL) request += "Proxy-Authorization: Basic #{auth}#{Excon::CR_NL}" end request += "Proxy-Connection: Keep-Alive#{Excon::CR_NL}" if @data[:ssl_proxy_headers] request << Utils.headers_hash_to_s(@data[:ssl_proxy_headers]) end request += Excon::CR_NL # write out the proxy setup request @socket.write(request) # eat the proxy's connection response response = Excon::Response.parse(self, :expects => 200, :method => 'CONNECT') if response[:response][:status] != 200 raise(Excon::Errors::ProxyConnectionError.new("proxy connection could not be established", request, response)) end end # convert Socket to OpenSSL::SSL::SSLSocket @socket = OpenSSL::SSL::SSLSocket.new(@socket, ssl_context) @socket.sync_close = true # Server Name Indication (SNI) RFC 3546 if @socket.respond_to?(:hostname=) @socket.hostname = @data[:ssl_verify_peer_host] || @data[:host] end begin if @nonblock begin @socket.connect_nonblock rescue Errno::EAGAIN, Errno::EWOULDBLOCK, IO::WaitReadable select_with_timeout(@socket, :connect_read) && retry rescue IO::WaitWritable select_with_timeout(@socket, :connect_write) && retry end else @socket.connect end rescue Errno::ETIMEDOUT, Timeout::Error raise Excon::Errors::Timeout.new('connect timeout reached') end # verify connection if @data[:ssl_verify_peer] @socket.post_connection_check(@data[:ssl_verify_peer_host] || @data[:host]) end end private def client_cert_data @client_cert_data ||= if (ccd = @data[:client_cert_data]) ccd elsif (path = @data[:client_cert]) File.read path elsif (path = @data[:certificate_path]) warn ":certificate_path is no longer supported and will be deprecated. Please use :client_cert or :client_cert_data" File.read path end end def client_chain_data @client_chain_data ||= if (ccd = @data[:client_chain_data]) ccd elsif (path = @data[:client_chain]) File.read path end end def connect # backwards compatability for things lacking nonblock @nonblock = HAVE_NONBLOCK && @nonblock super end def client_key_data @client_key_data ||= if (ckd = @data[:client_key_data]) ckd elsif (path = @data[:client_key]) File.read path elsif (path = @data[:private_key_path]) warn ":private_key_path is no longer supported and will be deprecated. Please use :client_key or :client_key_data" File.read path end end def client_key_pass @data[:client_key_pass] || @data[:private_key_pass] end end end excon-1.3.1/lib/excon/test/000077500000000000000000000000001510272305100154655ustar00rootroot00000000000000excon-1.3.1/lib/excon/test/plugin/000077500000000000000000000000001510272305100167635ustar00rootroot00000000000000excon-1.3.1/lib/excon/test/plugin/server/000077500000000000000000000000001510272305100202715ustar00rootroot00000000000000excon-1.3.1/lib/excon/test/plugin/server/exec.rb000066400000000000000000000012061510272305100215410ustar00rootroot00000000000000module Excon module Test module Plugin module Server module Exec def start(app_str = app) open_process(app_str) process_stderr = "" line = '' until line =~ /\Aready\Z/ line = error.gets raise process_stderr if line.nil? process_stderr << line fatal_time = elapsed_time > timeout if fatal_time msg = "executable #{app_str} has taken too long to start" raise msg end end true end end end end end end excon-1.3.1/lib/excon/test/plugin/server/puma.rb000066400000000000000000000012221510272305100215550ustar00rootroot00000000000000module Excon module Test module Plugin module Server module Puma def start(app_str = app, bind_uri = bind) open_process(RbConfig.ruby, '-S', 'puma', '-b', bind_uri.to_s, app_str) process_stderr = "" line = '' until line.include?('Use Ctrl-C to stop') line = read.gets raise process_stderr if line.nil? process_stderr << line fatal_time = elapsed_time > timeout raise 'puma server has taken too long to start' if fatal_time end true end end end end end end excon-1.3.1/lib/excon/test/plugin/server/unicorn.rb000066400000000000000000000022201510272305100222670ustar00rootroot00000000000000module Excon module Test module Plugin module Server module Unicorn def start(app_str = app, bind_uri = bind) bind_uri = URI.parse(bind_uri) unless bind_uri.is_a? URI::Generic is_unix_socket = (bind_uri.scheme == "unix") if is_unix_socket bind_str = bind_uri.to_s else host = bind_uri.host.gsub(/[\[\]]/, '') bind_str = "#{host}:#{bind_uri.port}" end args = [ RbConfig.ruby, '-S', 'unicorn', '--no-default-middleware', '-l', bind_str, app_str ] open_process(*args) process_stderr = '' line = '' until line.include?('worker=0 ready') line = error.gets raise process_stderr if line.nil? process_stderr << line fatal_time = elapsed_time > timeout raise 'unicorn server has taken too long to start' if fatal_time end true end end end end end end excon-1.3.1/lib/excon/test/plugin/server/webrick.rb000066400000000000000000000015351510272305100222500ustar00rootroot00000000000000module Excon module Test module Plugin module Server module Webrick def start(app_str = app, bind_uri = bind) bind_uri = URI.parse(bind_uri) unless bind_uri.is_a? URI::Generic host = bind_uri.host.gsub(/[\[\]]/, '') port = bind_uri.port.to_s open_process(RbConfig.ruby, '-S', 'rackup', '-s', 'webrick', '--host', host, '--port', port, app_str) process_stderr = "" line = '' until line.include?('HTTPServer#start') line = error.gets raise process_stderr if line.nil? process_stderr << line fatal_time = elapsed_time > timeout raise 'webrick server has taken too long to start' if fatal_time end true end end end end end end excon-1.3.1/lib/excon/test/server.rb000066400000000000000000000051141510272305100173210ustar00rootroot00000000000000require 'open4' require 'excon' require 'excon/test/plugin/server/webrick' require 'excon/test/plugin/server/unicorn' require 'excon/test/plugin/server/puma' require 'excon/test/plugin/server/exec' module Excon module Test class Server attr_accessor :app, :server, :bind, :pid, :read, :write, :error, :started_at, :timeout # Methods that must be implemented by a plugin INSTANCE_REQUIRES = [:start] def initialize(args) # TODO: Validate these args @server = args.keys.first @app = args[server] args[:bind] ||= 'tcp://127.0.0.1:9292' @bind = URI.parse(args[:bind]) @is_unix_socket = (@bind.scheme == 'unix') @bind.host = @bind.host.gsub(/[\[\]]/, '') unless @is_unix_socket if args[:timeout] @timeout = args[:timeout] else @timeout = 20 end name = @server.to_s.split('_').collect(&:capitalize).join plug = nested_const_get("Excon::Test::Plugin::Server::#{name}") self.extend plug check_implementation(plug) end def open_process(*args) if RUBY_PLATFORM == 'java' @pid, @write, @read, @error = IO.popen4(*args) else @pid, @write, @read, @error = Open4.popen4(*args) end @started_at = Time.now end def elapsed_time Time.now - started_at end def stop if RUBY_PLATFORM == 'java' Process.kill('USR1', pid) else Process.kill('KILL', pid) Process.wait(pid) end if @is_unix_socket socket = @bind.path File.delete(socket) if File.exist?(socket) end # TODO: Ensure process is really dead dump_errors true end def dump_errors lines = error.read.split($/) while (line = lines.shift) case line when /(ERROR|Error)/ unless line.match?(/(null cert chain|did not return a certificate|SSL_read:: internal error)/) in_err = true puts end when /^(127|localhost)/ in_err = false end puts line if in_err end end private def nested_const_get(namespace) namespace.split('::').inject(Object) do |mod, klass| mod.const_get(klass) end end def check_implementation(plug) INSTANCE_REQUIRES.each do |m| unless self.respond_to? m raise "FATAL: #{plug} does not implement ##{m}" end end end end end end excon-1.3.1/lib/excon/unix_socket.rb000066400000000000000000000023201510272305100173630ustar00rootroot00000000000000# frozen_string_literal: true module Excon class UnixSocket < Excon::Socket private def connect @socket = ::Socket.new(::Socket::AF_UNIX, ::Socket::SOCK_STREAM, 0) # If a Unix proxy was specified, the :path option will be set for it, # otherwise fall back to the :socket option. proxy_path = @data[:proxy] ? @data[:proxy][:path] : nil sockaddr = ::Socket.sockaddr_un(proxy_path || @data[:socket]) if @nonblock begin @socket.connect_nonblock(sockaddr) rescue Errno::EINPROGRESS unless IO.select(nil, [@socket], nil, @data[:connect_timeout]) raise(Excon::Errors::Timeout.new("connect timeout reached")) end begin @socket.connect_nonblock(sockaddr) rescue Errno::EISCONN 0 # same return as connect_nonblock success end end else begin Timeout.timeout(@data[:connect_timeout]) do @socket.connect(sockaddr) end rescue Timeout::Error raise Excon::Errors::Timeout.new('connect timeout reached') end end rescue => error @socket&.close rescue nil raise error end end end excon-1.3.1/lib/excon/utils.rb000066400000000000000000000106071510272305100161770ustar00rootroot00000000000000# frozen_string_literal: true module Excon module Utils module_function CONTROL = "#{(0x0..0x1f).map(&:chr).join}\u007F" DELIMS = '<>#%"' UNWISE = '{}|\\^[]`' NONASCII = (0x80..0xff).map(&:chr).join UNESCAPED = /([#{Regexp.escape("#{CONTROL} #{DELIMS}#{UNWISE}#{NONASCII}")}])/.freeze ESCAPED = /%([0-9a-fA-F]{2})/.freeze def binary_encode(string) if FORCE_ENC && string.encoding != Encoding::ASCII_8BIT if string.frozen? string.dup.force_encoding('BINARY') else string.force_encoding('BINARY') end else string end end def connection_uri(datum = @data) raise ArgumentError, '`datum` must be given unless called on a Connection' unless datum if datum[:scheme] == UNIX "#{datum[:scheme]}://#{datum[:socket]}" else "#{datum[:scheme]}://#{datum[:host]}#{port_string(datum)}" end end # Redact sensitive info from provided data def redact(datum) datum = datum.dup if datum.key?(:headers) if datum[:headers].key?('Authorization') || datum[:headers].key?('Proxy-Authorization') datum[:headers] = datum[:headers].dup end datum[:headers]['Authorization'] = REDACTED if datum[:headers].key?('Authorization') datum[:headers]['Proxy-Authorization'] = REDACTED if datum[:headers].key?('Proxy-Authorization') end datum[:password] = REDACTED if datum.key?(:password) if datum.key?(:proxy) && datum[:proxy]&.key?(:password) datum[:proxy] = datum[:proxy].dup datum[:proxy][:password] = REDACTED end datum end def request_uri(datum) connection_uri(datum) + datum[:path] + query_string(datum) end def port_string(datum) if !default_port?(datum) || datum[:include_default_port] || !datum[:omit_default_port] ":#{datum[:port]}" else '' end end def default_port?(datum) (!datum[:scheme]&.casecmp?('unix') && datum[:port].nil?) || (datum[:scheme]&.casecmp?('http') && datum[:port] == 80) || (datum[:scheme]&.casecmp?('https') && datum[:port] == 443) end def query_string(datum) str = +'' case datum[:query] when String str << '?' << datum[:query] when Hash str << '?' datum[:query].sort_by { |k, _| k.to_s }.each do |key, values| key = CGI.escape(key.to_s) if values.nil? str << key << '&' else [values].flatten.each do |value| str << key << '=' << CGI.escape(value.to_s) << '&' end end end str.chop! # remove trailing '&' end str end # Splits a header value +str+ according to HTTP specification. def split_header_value(str) return [] if str.nil? str = str.dup.strip str = binary_encode(str) str.scan(/\G((?:"(?:\\.|[^"])+?"|[^",])+) (?:,\s*|\Z)/xn).flatten end # Escapes HTTP reserved and unwise characters in +str+ def escape_uri(str) str = str.dup str = binary_encode(str) str.gsub(UNESCAPED) { format('%%%02X', ::Regexp.last_match(1)[0].ord) } end # Unescapes HTTP reserved and unwise characters in +str+ def unescape_uri(str) str = str.dup str = binary_encode(str) str.gsub(ESCAPED) { ::Regexp.last_match(1).hex.chr } end # Unescape form encoded values in +str+ def unescape_form(str) str = str.dup str = binary_encode(str) str.tr!('+', ' ') str.gsub(ESCAPED) { ::Regexp.last_match(1).hex.chr } end # Performs validation on the passed header hash and returns a string representation of the headers def headers_hash_to_s(headers) headers_str = +'' headers.each do |key, values| if key.to_s.match?(/[\r\n]/) raise Excon::Errors::InvalidHeaderKey, "#{key.to_s.inspect} contains forbidden \"\\r\" or \"\\n\"" end [values].flatten.each do |value| if value.to_s.match?(/[\r\n]/) # Don't include the potentially sensitive header value (i.e. authorization token) in the message raise Excon::Errors::InvalidHeaderValue, "#{key} header value contains forbidden \"\\r\" or \"\\n\"" end headers_str << key.to_s << ': ' << value.to_s << CR_NL end end headers_str end end end excon-1.3.1/lib/excon/version.rb000066400000000000000000000001041510272305100165130ustar00rootroot00000000000000# frozen_string_literal: true module Excon VERSION = '1.3.1' end excon-1.3.1/spec/000077500000000000000000000000001510272305100135565ustar00rootroot00000000000000excon-1.3.1/spec/excon/000077500000000000000000000000001510272305100146725ustar00rootroot00000000000000excon-1.3.1/spec/excon/error_spec.rb000066400000000000000000000114111510272305100173600ustar00rootroot00000000000000require 'spec_helper' describe Excon::Error do # Regression against e300458f2d9330cb265baeb8973120d08c665d9 describe '#status_errors' do describe '.keys ' do expected = [ 100, 101, (200..206).to_a, (300..307).to_a, (400..417).to_a, 422, 429, (500..504).to_a ].flatten it('returns the pertinent HTTP error numbers') do expected.flatten == Excon::Error.status_errors.keys end end end describe '#new' do it('returns an Excon::Error') do expect(Excon::Error.new('bar').class == Excon::Error).to be true end it('raises errors for bad URIs') do expect { Excon.new('foo') }.to raise_error(ArgumentError) end it('raises errors for bad paths') do expect { Excon.new('http://localhost', path: "foo\r\nbar: baz") }.to raise_error(URI::InvalidURIError) end end context 'when remaining backwards compatible' do describe '#new' do it 'should raise standard error and catch standard error' do expect { raise Excon::Error::Client, 'foo' }.to raise_error(Excon::Error) end it 'should raise legacy errors and catch legacy errors' do expect do raise Excon::Errors::Error, 'bar' end.to raise_error(Excon::Errors::Error) end it 'should raise standard error and catch legacy errors' do expect do raise Excon::Error::NotFound, 'bar' end.to raise_error(Excon::Errors::Error) end end describe '#status_error' do it 'should raise with status_error() and catch with standard error' do expect do raise Excon::Error.status_error({ expects: 200 }, status: 400) end.to raise_error(Excon::Error) end it 'should raise with status_error() and catch with legacy error' do expect do raise Excon::Error.status_error({ expects: 200 }, status: 400) end.to raise_error(Excon::Errors::BadRequest) end it 'should raise with legacy status_error() and catch with standard' do expect do raise Excon::Errors.status_error({ expects: 200 }, status: 400) end.to raise_error(Excon::Error) end end end context 'when exceptions are rescued' do include_context("test server", :exec, 'error.rb', :before => :start, :after => :stop ) context 'when :debug_request and :debug_response are switched off' do it('exception message does not include response or response info') do begin Excon.get('http://127.0.0.1:9292/error/not_found', expects: 200) rescue Excon::Errors::HTTPStatusError => err truth = err.message.include?('Expected(200) <=> Actual(404 Not Found)') && !err.message.include?('excon.error.request') && !err.message.include?('excon.error.response') expect(truth).to be true end end end context 'when :debug_request and :debug_response are switched on' do it 'exception message includes request and response info' do begin Excon.get('http://127.0.0.1:9292/error/not_found', expects: 200, debug_request: true, debug_response: true) rescue Excon::Errors::HTTPStatusError => err truth = err.message.include?('Expected(200) <=> Actual(404 Not Found)') && err.message.include?('excon.error.request') && err.message.include?('excon.error.response') expect(truth).to be true end end end context 'when only :debug_request is turned on' do it('exception message includes only request info') do begin Excon.get('http://127.0.0.1:9292/error/not_found', expects: 200, debug_request: true) rescue Excon::Errors::HTTPStatusError => err truth = err.message.include?('Expected(200) <=> Actual(404 Not Found)') && err.message.include?('excon.error.request') && !err.message.include?('excon.error.response') expect(truth).to be true end end end context 'when only :debug_response is turned on ' do it('exception message includes only response info') do begin Excon.get('http://127.0.0.1:9292/error/not_found', expects: 200, debug_response: true) rescue Excon::Errors::HTTPStatusError => err truth = err.message.include?('Expected(200) <=> Actual(404 Not Found)') && !err.message.include?('excon.error.request') && err.message.include?('excon.error.response') expect(truth).to be true end end end end end excon-1.3.1/spec/excon/test/000077500000000000000000000000001510272305100156515ustar00rootroot00000000000000excon-1.3.1/spec/excon/test/server_spec.rb000066400000000000000000000014331510272305100205170ustar00rootroot00000000000000require 'spec_helper' describe Excon::Test::Server do context 'when the web server is webrick' do it_should_behave_like "a excon test server", :webrick, 'basic.ru' end context 'when the web server is unicorn' do context 'bound to a tcp socket' do it_should_behave_like "a excon test server", :unicorn, 'streaming.ru' end context "bound to a unix socket" do socket_uri = 'unix:///tmp/unicorn.socket' it_should_behave_like "a excon test server", :unicorn, 'streaming.ru', socket_uri end end context 'when the web server is puma' do it_should_behave_like "a excon test server", :puma, 'streaming.ru' end context 'when the web server is a executable' do it_should_behave_like "a excon test server", :exec, 'good_ipv4.rb' end end excon-1.3.1/spec/excon_spec.rb000066400000000000000000000001731510272305100162320ustar00rootroot00000000000000require 'spec_helper' describe Excon do it 'has a version number' do expect(Excon::VERSION).not_to be nil end end excon-1.3.1/spec/helpers/000077500000000000000000000000001510272305100152205ustar00rootroot00000000000000excon-1.3.1/spec/helpers/file_path_helpers.rb000066400000000000000000000007371510272305100212310ustar00rootroot00000000000000# Todo: s/tests/specs when migration is complete def get_abs_path(*parts) File.join(File.expand_path('../../..', __FILE__), 'tests', *parts) end def data_path(*parts) get_abs_path('data', *parts) end def rackup_path(*parts) get_abs_path('rackups', *parts) end def webrick_path(*parts) rackup_path(*parts); end def unicorn_path(*parts) rackup_path(*parts); end def puma_path(*parts) rackup_path(*parts); end def exec_path(*parts) get_abs_path('servers', *parts) end excon-1.3.1/spec/helpers/warning_helpers.rb000066400000000000000000000002701510272305100207330ustar00rootroot00000000000000def silence_warnings orig_verbose = $VERBOSE $VERBOSE = nil Excon.set_raise_on_warnings!(false) yield ensure $VERBOSE = orig_verbose Excon.set_raise_on_warnings!(true) end excon-1.3.1/spec/requests/000077500000000000000000000000001510272305100154315ustar00rootroot00000000000000excon-1.3.1/spec/requests/basic_spec.rb000066400000000000000000000031761510272305100200600ustar00rootroot00000000000000require 'spec_helper' describe Excon::Connection do include_context('test server', :webrick, 'basic.ru', before: :start, after: :stop) context 'when an explicit uri is passed' do let(:conn) do Excon::Connection.new(host: '127.0.0.1', hostname: '127.0.0.1', nonblock: false, port: 9292, scheme: 'http', ssl_verify_peer: false) end describe '.new' do it 'returns an instance' do expect(conn).to be_instance_of Excon::Connection end end context "when :method is :get and :path is /content-length/100" do describe "#request" do let(:response) do response = conn.request(method: :get, path: '/content-length/100') end it 'returns an Excon::Response' do expect(response).to be_instance_of Excon::Response end describe Excon::Response do describe '#status' do it 'returns 200' do expect(response.status).to eq 200 end end end end end include_examples 'a basic client' end context 'ractors' do it 'should work inside ractors' do Excon.defaults.freeze Excon.defaults[:middlewares].freeze Excon::VALID_CONNECTION_KEYS.freeze Excon::VALID_REQUEST_KEYS.freeze r = Ractor.new do response = Excon.get('http://127.0.0.1:9292/foo') response.body end expect(r.take).to eq 'foo' end end end excon-1.3.1/spec/requests/dns_timeout_spec.rb000066400000000000000000000014101510272305100213160ustar00rootroot00000000000000require 'spec_helper' describe Excon::Socket do let(:dns_resolver) { Resolv::DNS.new } let(:config_timeouts) { dns_resolver.instance_variable_get(:@config).instance_variable_get(:@timeouts) } let(:connection) { Excon.new('http://google.com', dns_timeouts: 1) } before { allow(Resolv::DNS).to receive(:new).and_return(dns_resolver) } it 'passes the dns_timeouts to Resolv::DNS::Config' do silence_warnings do connection.connect expect(config_timeouts).to eql([1]) end end context 'when the DNS server is unreachable' do let(:dns_resolver) { Resolv::DNS.new(nameserver: ['127.0.0.1', '127.0.0.1']) } it 'returns a Excon::Error::Socket' do expect { connection.request }.to raise_error(Excon::Error::Socket) end end end excon-1.3.1/spec/requests/eof_requests_spec.rb000066400000000000000000000024721510272305100215010ustar00rootroot00000000000000require 'spec_helper' describe Excon do context "when dispatching requests" do context('to a server that does not supply response headers') do include_context("test server", :exec, 'bad.rb', :before => :start, :after => :stop ) before(:all) do @conn = Excon.new('http://127.0.0.1:9292') end context('when no block is given') do it 'should rescue from an EOFError and return response' do body = @conn.request(:method => :get, :path => '/eof/no_content_length_and_no_chunking').body expect(body).to eq 'hello' end end context('when a block is given') do it 'should rescue from EOFError and return response' do body = "" response_block = lambda {|chunk, remaining, total| body << chunk } @conn.request(:method => :get, :path => '/eof/no_content_length_and_no_chunking', :response_block => response_block) expect(body).to eq 'hello' end end end context('to a server that prematurely aborts the request with no response') do include_context("test server", :exec, 'eof.rb', :before => :start, :after => :stop ) it 'should raise an EOFError' do expect { Excon.get('http://127.0.0.1:9292/eof') }.to raise_error(Excon::Errors::SocketError) end end end end excon-1.3.1/spec/requests/resolv_resolver_spec.rb000066400000000000000000000015521510272305100222260ustar00rootroot00000000000000require 'spec_helper' describe Excon::Socket do let(:dns_resolver) { Resolv::DNS.new } let(:resolv_resolver) { Resolv.new([Resolv::Hosts.new, dns_resolver]) } let(:config_timeouts) { dns_resolver.instance_variable_get(:@config).instance_variable_get(:@timeouts) } let(:connection) { Excon.new('http://google.com', resolv_resolver: resolv_resolver) } before do dns_resolver.timeouts = 1 allow(Resolv::DNS).to receive(:new).and_return(dns_resolver) end it 'resolv_resolver config reaches Resolv::DNS::Config' do connection.connect expect(config_timeouts).to eql([1]) end context 'when the DNS server is unreachable' do let(:dns_resolver) { Resolv::DNS.new(nameserver: ['127.0.0.1', '127.0.0.1']) } it 'returns a Excon::Error::Socket' do expect { connection.request }.to raise_error(Excon::Error::Socket) end end end excon-1.3.1/spec/requests/timeout_spec.rb000066400000000000000000000044541510272305100204650ustar00rootroot00000000000000require 'spec_helper' describe Excon::Connection do include_context('test server', :webrick, 'timeout.ru', before: :start, after: :stop) let(:read_timeout) { 60 } let(:conn) do Excon::Connection.new(host: '127.0.0.1', hostname: '127.0.0.1', nonblock: nonblock, port: 9292, scheme: 'http', timeout: timeout, read_timeout: read_timeout) end context "blocking connection" do let (:nonblock) { false } context 'when timeout is not set' do let(:timeout) { nil } it 'does not error' do expect(conn.request(:path => '/no-timeout').status).to eq(200) end end context 'when timeout is not triggered' do let(:timeout) { 1 } it 'does not error' do expect(conn.request(:path => '/no-timeout').status).to eq(200) end end context 'when timeout is triggered' do let(:read_timeout) { 0.005 } let(:timeout) { 0.001 } it 'does not raise' do # raising a read timeout to keep tests fast expect { conn.request(:path => '/timeout') }.to raise_error(Excon::Error::Timeout, 'read timeout reached') end end end context "non-blocking connection" do let (:nonblock) { true } context 'when timeout is not set' do let(:timeout) { nil } it 'does not error' do expect(conn.request(:path => '/no-timeout').status).to eq(200) end end context 'when timeout is not triggered' do let(:timeout) { 1 } it 'does not error' do expect(conn.request(:path => '/no-timeout').status).to eq(200) end end context 'when timeout is triggered' do let(:timeout) { 0.001 } it 'returns a request Excon::Error::Timeout' do expect { conn.request(:path => '/timeout') }.to raise_error(Excon::Error::Timeout, 'request timeout reached') end end context 'when read timeout is triggered' do let(:read_timeout) { 0.001 } let(:timeout) { 5 } it 'returns a read Excon::Error::Timeout' do expect { conn.request(:path => '/timeout') }.to raise_error(Excon::Error::Timeout, 'read timeout reached') end end end end excon-1.3.1/spec/requests/unix_socket_spec.rb000066400000000000000000000024451510272305100213300ustar00rootroot00000000000000require "spec_helper" describe Excon::Connection do include_context('stubs') context "when speaking to a UNIX socket" do # `Excon.new`` does some extra URL parsing, which makes # it a bit special compared to bare `Excon::Connection.new`. context "via Excon.new" do # Version 0.12.0 of the 'uri' gem changed # from returning `nil` for no host to returning # an empty string. it "accepts the unix:/ URL" do Excon.new('unix:///', {socket: '/tmp/foo'}) end end context "Host header handling" do before do Excon.stub do |req| { body: req[:headers].to_json, status: 200, } end end it "sends an empty Host= by default" do conn = Excon::Connection.new( scheme: "unix", socket: "/tmp/x.sock", ) headers = JSON.parse(conn.get(path: "/path").body) expect(headers["Host"]).to eq("") end it "doesn't overwrite an explicit Host header" do conn = Excon::Connection.new( scheme: "unix", socket: "/tmp/x.sock", ) headers = JSON.parse(conn.get(path: "/path", headers: { "Host" => "localhost" }).body) expect(headers["Host"]).to eq("localhost") end end end end excon-1.3.1/spec/requests/validation_spec.rb000066400000000000000000000054531510272305100211310ustar00rootroot00000000000000describe Excon::Connection do include_context('stubs') describe 'validating parameters' do class FooMiddleware < Excon::Middleware::Base def self.valid_parameter_keys [:foo] end end let(:foo_stack) do Excon.defaults[:middlewares] + [FooMiddleware] end def expect_parameter_warning(validation, key) expect { yield }.to raise_error(Excon::Error::Warning, "Invalid Excon #{validation} keys: #{key.inspect}") end context 'with default middleware' do it 'Connection.new warns on invalid parameter keys' do expect_parameter_warning('connection', :foo) do Excon.new('http://foo', :foo => :bar) end end it 'Connection#request warns on invalid parameter keys' do conn = Excon.new('http://foo') expect_parameter_warning('request', :foo) do conn.request(:foo => :bar) end end end context 'with custom middleware at instantiation' do it 'Connection.new accepts parameters that are valid for the provided middleware' do Excon.new('http://foo', :foo => :bar, :middlewares => foo_stack) end it 'Connection.new warns on parameters that are not valid for the provided middleware' do expect_parameter_warning('connection', :bar) do Excon.new('http://foo', :bar => :baz, :middlewares => foo_stack) end end it 'Connection#request accepts parameters that are valid for the provided middleware' do Excon.stub({}, {}) conn = Excon.new('http://foo', :middlewares => foo_stack) conn.request(:foo => :bar) end it 'Connection#request warns on parameters that are not valid for the provided middleware' do conn = Excon.new('http://foo', :middlewares => foo_stack) expect_parameter_warning('request', :bar) do conn.request(:bar => :baz) end end end context 'with custom middleware at request time' do it 'Connection#request accepts parameters that are valid for the provided middleware' do Excon.stub({}, {}) conn = Excon.new('http://foo') conn.request(:foo => :bar, :middlewares => foo_stack) end it 'Connection#request warns on parameters that are not valid for the request middleware' do conn = Excon.new('http://foo') expect_parameter_warning('request', :bar) do conn.request(:bar => :baz, :middlewares => foo_stack) end end it 'Connection#request warns on parameters from instantiation that are not valid for the request middleware' do conn = Excon.new('http://foo', :foo => :bar, :middlewares => foo_stack) expect_parameter_warning('connection', :foo) do conn.request(:middlewares => Excon.defaults[:middlewares]) end end end end endexcon-1.3.1/spec/spec_helper.rb000066400000000000000000000013401510272305100163720ustar00rootroot00000000000000TEST_SUITE_DEFAULTS = { connect_timeout: 5, read_timeout: 5, write_timeout: 5 } require 'excon' require 'excon/test/server' require 'json' # See http://rubydoc.info/gems/rspec-core/RSpec/Core/Configuration RSpec.configure do |config| config.expect_with :rspec do |expectations| expectations.include_chain_clauses_in_custom_matcher_descriptions = true end config.mock_with :rspec do |mocks| mocks.verify_partial_doubles = true end if config.files_to_run.one? config.default_formatter = 'doc' end Excon.set_raise_on_warnings!(true) end # Load helpers Dir["./spec/helpers/**/*.rb"].sort.each { |f| require f} # Load shared examples and contexts Dir["./spec/support/**/*.rb"].sort.each { |f| require f} excon-1.3.1/spec/support/000077500000000000000000000000001510272305100152725ustar00rootroot00000000000000excon-1.3.1/spec/support/shared_contexts/000077500000000000000000000000001510272305100204675ustar00rootroot00000000000000excon-1.3.1/spec/support/shared_contexts/test_server_context.rb000066400000000000000000000047231510272305100251330ustar00rootroot00000000000000# TODO: Clean up this doc and dry up the conditionals # # Required params: # plugin (e.g., webrick, unicorn, etc) # file (e.g. a rackup ) # # Optional params: # optional paramters may given as a hash # opts may contain a bind argument # opts may also contain before and after options # # In its simplest form: # { :before => :start, :after => :stop } # # With lambdas, which recieve @server as an argument # { before: lambda {|s| s.start }, after: lambda { |s| s.stop} } # # In both the cases above, before defaults to before(:all) # This can be circumvented with a Hash # { before: { :context => :start }, after: { :context => :stop } } # or # { before: { context: lambda { |s| s.start } }, after: { context: lambda { |s| s.stop } } } shared_context "test server" do |plugin, file, opts = {}| plugin = plugin.to_sym unless plugin.is_a? Symbol if plugin == :unicorn && RUBY_PLATFORM == "java" before { skip("until unicorn supports jruby") } end abs_file = Object.send(:"#{plugin}_path", file) args = { plugin => abs_file} args[:bind] = opts[:bind] if opts.key? :bind before_hook = opts.key?(:before) && (opts[:before].is_a?(Symbol) || opts[:before].is_a?(Proc) || opts[:before].is_a?(Hash)) if before_hook && opts[:before].is_a?(Hash) event = opts[:before].keys.first before(event) { @server = Excon::Test::Server.new(args) if opts[:before][event].is_a? Symbol @server.send(opts[:before][event]) else opts[:before][event].call(@server) end } elsif before(:all) { @server = Excon::Test::Server.new(args) before_hook = opts.key?(:before) && (opts[:before].is_a?(Symbol) || opts[:before].is_a?(Proc) || opts[:before].is_a?(Hash)) if before_hook if opts[:before].is_a? Symbol @server.send(opts[:before]) else opts[:before].call(@server) end end } end after_hook = opts.key?(:after) && (opts[:after].is_a?(Symbol) || opts[:after].is_a?(Proc) || opts[:after].is_a?(Hash)) if after_hook && opts[:after].is_a?(Hash) event = opts[:after].keys.first after(event) { if opts[:after][event].is_a? Symbol @server.send(opts[:after][event]) else opts[:after][event].call(@server) end } elsif after_hook after(:all) { if opts[:after].is_a? Symbol @server.send(opts[:after]) elsif opts[:after].is_a? Hash else opts[:after].call(@server) end } end end excon-1.3.1/spec/support/shared_contexts/test_stub_context.rb000066400000000000000000000003361510272305100245760ustar00rootroot00000000000000shared_context "stubs" do before do @original_defaults = Excon.defaults Excon.defaults = Excon.defaults.merge(mock: true) end after do Excon.defaults = @original_defaults Excon.stubs.clear end endexcon-1.3.1/spec/support/shared_examples/000077500000000000000000000000001510272305100204365ustar00rootroot00000000000000excon-1.3.1/spec/support/shared_examples/shared_example_for_clients.rb000066400000000000000000000216211510272305100263350ustar00rootroot00000000000000require 'time' shared_examples_for 'a basic client' do |url = 'http://127.0.0.1:9292', opts = {}| # TODO: Ditch iterator and manually write a context for each set of options ([true, false] * 2).combination(2).to_a.uniq.each do |nonblock, persistent| context "when nonblock is #{nonblock} and persistent is #{persistent}" do opts = opts.merge(ssl_verify_peer: false, nonblock: nonblock, persistent: persistent) let(:conn) { Excon.new(url, opts) } context 'when :method is get and :path is /content-length/100' do describe '#request' do let(:response) do conn.request(method: :get, path: '/content-length/100') end it 'returns an Excon::Response' do expect(response).to be_instance_of Excon::Response end describe Excon::Response do describe '#status' do it 'returns 200' do expect(response.status).to eq 200 end it '#status returns 200' do expect(response[:status]).to eq 200 end end describe '#headers' do it '["Content-Length"] returns 100' do expect(response.headers['Content-Length']).to eq '100' end it '["Content-Type"] returns "text/html;charset=utf-8"' do expect(response.headers['Content-Type']).to eq 'text/html;charset=utf-8' end it "['Date'] returns a valid date" do if RUBY_PLATFORM == 'java' && conn.data[:scheme] == Excon::UNIX skip('until puma responds with a date header') else time = Time.parse(response.headers['Date']) expect(time.is_a?(Time)).to be true end end it "['Server'] matches /^WEBrick/" do pending('until unix_socket response has server header') if conn.data[:scheme] == Excon::UNIX expect(!!(response.headers['Server'] =~ /^WEBrick/)).to be true end it "['Custom'] returns Foo: bar" do expect(response.headers['Custom']).to eq 'Foo: bar' end end describe '#remote_ip' do it 'returns 127.0.0.1' do pending('until pigs can fly') if conn.data[:scheme] == Excon::UNIX expect(response.remote_ip).to eq '127.0.0.1' end end end context('when tcp_nodelay is true') do describe '#request' do response = nil options = opts.merge(ssl_verify_peer: false, nonblock: nonblock, tcp_nodelay: true) connection = Excon.new(url, options) it 'returns an Excon::Response' do expect do response = connection.request(method: :get, path: '/content-length/100') end.to_not raise_error end describe Excon::Response do describe '#body' do describe '.status' do it '#returns 200' do expect(response.status).to eq 200 end end end end end end end context 'when utilizing deprecated block usage' do describe '#request' do data = [] it 'yields with a chunk, remaining length, and total length' do expect do silence_warnings do conn.request(method: :get, path: '/content-length/100') do |chunk, remaining_length, total_length| data = [chunk, remaining_length, total_length] end end end.to_not raise_error end it 'completes with expected data' do expect(data).to eq ['x' * 100, 0, 100] end end end context 'when utilizing response_block usage' do describe '#request' do data = [] it 'yields a chunk, remaining length, and total_length' do response_block = lambda do |chunk, remaining_length, total_length| data = [chunk, remaining_length, total_length] end expect do conn.request(method: :get, path: '/content-length/100', response_block: response_block) end.to_not raise_error end it 'completes with expected data' do expect(data).to eq ['x' * 100, 0, 100] end end end context 'when method is :post' do context 'when :path is /body-sink' do context 'when a body parameter is supplied' do response = nil it 'returns an Excon::Response' do response = conn.request(method: :post, path: '/body-sink', headers: { 'Content-Type' => 'text/plain' }, body: 'x' * 5_000_000) expect(response).to be_instance_of Excon::Response end describe Excon::Response do describe '#body' do it 'equals "5000000"' do expect(response.body).to eq '5000000' end end end end context 'when the body parameter is an empty string' do response = nil it 'returns an Excon::Response' do response = conn.request(method: :post, path: '/body-sink', headers: { 'Content-Type' => 'text/plain' }, body: '') expect(response).to be_instance_of Excon::Response end describe Excon::Response do describe '#body' do it 'equals "0"' do expect(response.body).to eq '0' end end end end end context 'when :path is /echo' do context('when a file handle is the body paramter') do describe Excon::Response do it '#body equals "x" * 100 + "\n"' do file_path = data_path('xs') response = conn.request( method: :post, path: '/echo', headers: { 'Content-Type': 'text/plain' }, body: File.open(file_path) ) expect(response.body).to eq 'x' * 100 + "\n" end end end context 'when a string is the body paramter' do it 'does not change the enconding of the body' do string_body = '¥£€' expect do conn.request( method: :post, path: '/echo', headers: { 'Content-Type': 'text/plain' }, body: string_body ) end.to_not change { string_body.encoding } end context 'without request_block' do describe Excon::Response do it "#body equals 'x' * 100)" do response = conn.request( method: :post, path: '/echo', headers: { 'Content-Type': 'text/plain' }, body: 'x' * 100 ) expect(response.body).to eq 'x' * 100 end end end context 'when a request_block paramter is supplied' do describe Excon::Response do it "#body equals'x' * 100" do data = Array.new(100, 'x') request_block = lambda do data.shift.to_s end response = conn.request( method: :post, path: '/echo', headers: { 'Content-Type': 'text/plain' }, request_block: request_block ) expect(response.body).to eq 'x' * 100 end end end context('when a multi-byte string is the body paramter') do body = "\xC3\xBC" * 100 headers = { 'Custom' => body.dup } body.force_encoding('BINARY') headers['Custom'].force_encoding('UTF-8') headers['Content-Type'] = 'text/plain' describe Excon::Response do it '#body properly concatenates request+headers and body' do response = conn.request(method: :post, path: '/echo', headers: headers, body: body) expect(response.body).to eq body end end end end end end end end end end excon-1.3.1/spec/support/shared_examples/shared_example_for_streaming_clients.rb000066400000000000000000000013311510272305100304020ustar00rootroot00000000000000shared_examples_for 'a streaming client' do |endpoint, timeout| ret = [] timing = 'response times ok' start = Time.now block = lambda do |c,r,t| # add the response ret.push(c) # check if the timing is ok # each response arrives after timeout and before timeout + 1 cur_time = Time.now - start if cur_time < ret.length * timeout or cur_time > (ret.length+1) * timeout timing = 'response time not ok!' end end it "gets a response in less than or equal to #{(timeout*3).round(2)} seconds" do Excon.get(endpoint, :response_block => block) # validate the final timing expect((Time.now - start <= timeout*3) == true && timing == 'response times not ok!').to be false end end excon-1.3.1/spec/support/shared_examples/shared_example_for_test_servers.rb000066400000000000000000000005611510272305100274240ustar00rootroot00000000000000shared_examples_for "a excon test server" do |plugin, file| include_context("test server", plugin, file) it "returns an instance" do expect(@server).to be_instance_of Excon::Test::Server end it 'starts the server' do expect(@server.start).to be true end it 'stops the server' do expect(@server.stop).to be true end end excon-1.3.1/tests/000077500000000000000000000000001510272305100137665ustar00rootroot00000000000000excon-1.3.1/tests/bad_tests.rb000066400000000000000000000033061510272305100162650ustar00rootroot00000000000000Shindo.tests('Excon bad server interaction') do with_server('bad') do tests('header splitting') do tests('prevents key splitting').raises(Excon::Errors::InvalidHeaderKey) do connection = Excon.new('http://127.0.0.1:9292') connection.request( headers: { "Foo\r\nBar" => "baz" }, method: :get, path: '/echo' ) end tests('prevents value splitting').raises(Excon::Errors::InvalidHeaderValue) do connection = Excon.new('http://127.0.0.1:9292') connection.request( headers: { Foo: "bar\r\nBaz: qux" }, method: :get, path: '/echo' ) end end tests('bad server: causes EOFError') do tests('with no content length and no chunking') do tests('without a block') do tests('response.body').returns('hello') do connection = Excon.new('http://127.0.0.1:9292') connection.request(:method => :get, :path => '/eof/no_content_length_and_no_chunking').body end end tests('with a block') do tests('body from chunks').returns('hello') do connection = Excon.new('http://127.0.0.1:9292') body = "" response_block = lambda {|chunk, remaining, total| body << chunk } connection.request(:method => :get, :path => '/eof/no_content_length_and_no_chunking', :response_block => response_block) body end end end end end with_server('eof') do tests('eof server: causes EOFError') do tests('request').raises(Excon::Errors::SocketError) do Excon.get('http://127.0.0.1:9292/eof') end end end end excon-1.3.1/tests/basic_tests.rb000066400000000000000000000276231510272305100166300ustar00rootroot00000000000000require 'json' Shindo.tests('Excon basics') do env_init with_rackup('basic.ru') do basic_tests tests('explicit uri passed to connection') do tests('GET /content-length/100').returns(200) do connection = Excon::Connection.new({ :host => '127.0.0.1', :hostname => '127.0.0.1', :nonblock => false, :port => 9292, :scheme => 'http', :ssl_verify_peer => false }) response = connection.request(:method => :get, :path => '/content-length/100') response[:status] end end end end Shindo.tests('Excon streaming basics') do tests('http') do pending if RUBY_PLATFORM == 'java' # need to find suitable server for jruby with_unicorn('streaming.ru') do streaming_tests('http') end end tests('https') do with_ssl_streaming(9292, STREAMING_PIECES, STREAMING_TIMEOUT) do streaming_tests('https') end end end Shindo.tests('Excon basics (Basic Auth Pass)') do with_rackup('basic_auth.ru') do basic_tests('http://test_user:test_password@127.0.0.1:9292') user, pass, uri = ['test_user', 'test_password', 'http://127.0.0.1:9292'].map(&:freeze) tests('with frozen args').returns(200) do connection = Excon.new(uri, :method => :get, :password => pass, :path => '/content-length/100', :user => user) response = connection.request response.status end tests('with user/pass on request').returns(200) do connection = Excon.new(uri, :method => :get, :path => '/content-length/100') response = connection.request(:user => user, :password => pass) response.status end tests('with user/pass on connection and request').returns(200) do connection = Excon.new(uri, :method => :get, :password => 'incorrect_password', :path => '/content-length/100', :user => 'incorrect_user') response = connection.request(user: user, password: pass) response.status end end end Shindo.tests('Excon basics (Basic Auth Fail)') do with_rackup('basic_auth.ru') do cases = [ ['correct user, no password', 'http://test_user@127.0.0.1:9292'], ['correct user, wrong password', 'http://test_user:fake_password@127.0.0.1:9292'], ['wrong user, correct password', 'http://fake_user:test_password@127.0.0.1:9292'] ] cases.each do |desc,url| tests("response.status for #{desc}").returns(401) do connection = Excon.new(url) response = connection.request(:method => :get, :path => '/content-length/100') response.status end end end end Shindo.tests('Excon basics (ssl)') do with_rackup('ssl.ru') do basic_tests('https://127.0.0.1:9443') end end Shindo.tests('Excon basics verify_hostname (ssl)') do with_rackup('ssl.ru') do connection = nil test do ssl_ca_file = File.join(File.dirname(__FILE__), 'data', '127.0.0.1.cert.crt') connection = Excon.new('https://127.0.0.1:9443', :ssl_verify_peer => true, :ssl_ca_file => ssl_ca_file, :ssl_verify_hostname => true ) true end tests('response.status').returns(200) do response = connection.request(:method => :get, :path => '/content-length/100') response.status end end end Shindo.tests('Excon ssl verify peer (ssl)') do with_rackup('ssl.ru') do connection = nil test do ssl_ca_file = File.join(File.dirname(__FILE__), 'data', '127.0.0.1.cert.crt') connection = Excon.new('https://127.0.0.1:9443', :ssl_verify_peer => true, :ssl_ca_file => ssl_ca_file ) true end tests('response.status').returns(200) do response = connection.request(:method => :get, :path => '/content-length/100') response.status end end with_rackup('ssl_mismatched_cn.ru') do connection = nil test do ssl_ca_file = File.join(File.dirname(__FILE__), 'data', 'excon.cert.crt') connection = Excon.new('https://127.0.0.1:9443', :ssl_verify_peer => true, :ssl_ca_file => ssl_ca_file, :ssl_verify_peer_host => 'excon' ) true end tests('response.status').returns(200) do response = connection.request(:method => :get, :path => '/content-length/100') response.status end end with_rackup('ssl_sni_verify_host.ru') do connection = nil test do ssl_ca_file = File.join(File.dirname(__FILE__), 'data', 'excon.cert.crt') connection = Excon.new('https://127.0.0.1:9443', :ssl_verify_peer => true, :ssl_ca_file => ssl_ca_file, :ssl_verify_peer_host => 'excon' ) true end tests('response.status').returns(200) do response = connection.request(:method => :get, :path => '/content-length/100') response.status end end end Shindo.tests('Excon ssl verify peer (ssl cert store)') do with_rackup('ssl.ru') do connection = nil test do ssl_ca_cert = File.read(File.join(File.dirname(__FILE__), 'data', '127.0.0.1.cert.crt')) ssl_cert_store = OpenSSL::X509::Store.new ssl_cert_store.add_cert OpenSSL::X509::Certificate.new ssl_ca_cert connection = Excon.new('https://127.0.0.1:9443', :ssl_verify_peer => true, :ssl_cert_store => ssl_cert_store ) true end tests('response.status').returns(200) do response = connection.request(:method => :get, :path => '/content-length/100') response.status end end end Shindo.tests('Excon basics (ssl file)',['focus']) do with_rackup('ssl_verify_peer.ru') do tests('GET /content-length/100').raises(Excon::Errors::SocketError) do connection = Excon::Connection.new({ :host => '127.0.0.1', :hostname => '127.0.0.1', :nonblock => false, :port => 8443, :scheme => 'https', :ssl_verify_peer => false }) connection.request(:method => :get, :path => '/content-length/100') end cert_key_path = File.join(File.dirname(__FILE__), 'data', 'excon.cert.key') cert_crt_path = File.join(File.dirname(__FILE__), 'data', 'excon.cert.crt') basic_tests('https://127.0.0.1:8443', client_key: cert_key_path, client_cert: cert_crt_path) cert_key_data = File.read cert_key_path cert_crt_data = File.read cert_crt_path basic_tests('https://127.0.0.1:8443', client_key_data: cert_key_data, client_cert_data: cert_crt_data) end end Shindo.tests('Excon basics (ssl chain)',['focus']) do with_rackup('ssl_verify_peer_with_chain.ru') do tests('GET /content-length/100').raises(Excon::Errors::SocketError) do connection = Excon::Connection.new({ :host => '127.0.0.1', :hostname => '127.0.0.1', :nonblock => false, :port => 8443, :scheme => 'https', :ssl_verify_peer => false }) connection.request(:method => :get, :path => '/content-length/100') end cert_key_path = File.join(File.dirname(__FILE__), 'data', 'excon_client.cert.key') cert_crt_path = File.join(File.dirname(__FILE__), 'data', 'excon_client.cert.crt') chain_crt_path = File.join(File.dirname(__FILE__), 'data', 'excon_intermediate.cert.crt') basic_tests('https://127.0.0.1:8443', client_key: cert_key_path, client_cert: cert_crt_path, client_chain: chain_crt_path) cert_key_data = File.read cert_key_path cert_crt_data = File.read cert_crt_path chain_crt_data = File.read chain_crt_path basic_tests('https://127.0.0.1:8443', client_key_data: cert_key_data, client_cert_data: cert_crt_data, client_chain_data: chain_crt_data) end end Shindo.tests('Excon basics (ssl file paths)',['focus']) do with_rackup('ssl_verify_peer.ru') do tests('GET /content-length/100').raises(Excon::Errors::SocketError) do connection = Excon::Connection.new({ :host => '127.0.0.1', :hostname => '127.0.0.1', :nonblock => false, :port => 8443, :scheme => 'https', :ssl_verify_peer => false }) connection.request(:method => :get, :path => '/content-length/100') end basic_tests( 'https://127.0.0.1:8443', client_cert: File.join(File.dirname(__FILE__), 'data', 'excon.cert.crt'), client_key: File.join(File.dirname(__FILE__), 'data', 'excon.cert.key') ) end end Shindo.tests('Excon basics (ssl string)', ['focus']) do with_rackup('ssl_verify_peer.ru') do basic_tests('https://127.0.0.1:8443', :private_key => File.read(File.join(File.dirname(__FILE__), 'data', 'excon.cert.key')), :certificate => File.read(File.join(File.dirname(__FILE__), 'data', 'excon.cert.crt')) ) end end Shindo.tests('Excon basics (Unix socket)') do pending if RUBY_PLATFORM == 'java' # need to find suitable server for jruby file_name = '/tmp/unicorn.sock' with_unicorn('basic.ru', 'unix://'+file_name) do basic_tests("unix:/", :socket => file_name) tests('explicit uri passed to connection') do tests('GET /content-length/100').returns(200) do connection = Excon::Connection.new({ :socket => file_name, :nonblock => false, :scheme => 'unix', :ssl_verify_peer => false }) response = connection.request(:method => :get, :path => '/content-length/100') response[:status] end end tests('http Host header is empty') do tests('GET /headers').returns("") do connection = Excon::Connection.new({ :socket => file_name, :nonblock => false, :scheme => 'unix', :ssl_verify_peer => false }) response = connection.request(:method => :get, :path => '/headers') JSON.parse(response.body)['HTTP_HOST'] end end end end Shindo.tests('Excon basics (reusable local port)') do class CustomSocket < Socket def initialize super(AF_INET, SOCK_STREAM, 0) setsockopt(SOL_SOCKET, SO_REUSEADDR, true) if defined?(SO_REUSEPORT) setsockopt(SOL_SOCKET, SO_REUSEPORT, true) end end def bind(address, port) super(Socket.pack_sockaddr_in(port, address)) end def connect(address, port) super(Socket.pack_sockaddr_in(port, address)) end def http_get(path) print "GET /content-length/10 HTTP/1.0\r\n\r\n" read.split("\r\n\r\n", 2)[1] end def self.ip_address_list if Socket.respond_to?(:ip_address_list) Socket.ip_address_list.select(&:ipv4?).map(&:ip_address) else `ifconfig`.scan(/inet.*?(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})/).flatten end end def self.find_alternate_ip(ip) ip_address_list.detect {|a| a != ip } end end with_rackup('basic.ru', '0.0.0.0') do connection = Excon.new("http://127.0.0.1:9292/echo", :reuseaddr => true, # enable address and port reuse :persistent => true # keep the socket open ) response = connection.get tests('has a local port').returns(true) do response.local_port.to_s.match?(/\d{4,5}/) end tests('local port can be re-bound').returns('x' * 10) do # skip if no alternatives, ie in a container with disabled networking pending unless CustomSocket.find_alternate_ip(response.local_address) # create a socket with address/port reuse enabled s = CustomSocket.new # bind to the same local port and address used in the get above (won't work without reuse options on both sockets) s.bind(response.local_address, response.local_port) # connect to the server on a different address than was used for the initial connection to avoid duplicate 5-tuples of: {protcol, src_port, src_addr, dst_port, dst_addr} s.connect(CustomSocket.find_alternate_ip(response.local_address), 9292) # send the request body = s.http_get("/content-length/10") # close both the sockets s.close connection.reset body end end end excon-1.3.1/tests/batch_requests.rb000066400000000000000000000105461510272305100173350ustar00rootroot00000000000000require 'shindo' Shindo.tests('Batch Requests') do with_server('good_ipv4') do tests('with batch request size 2') do returns(%w{ 1 2 1 2 }, 'batch request size 2') do connection = Excon.new('http://127.0.0.1:9292') ret = [] ret << connection.batch_requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ], 2).map(&:body) ret.flatten end end tests('peristent with batch request size 2') do returns(%w{ 1 2 3 4 }, 'persistent batch request size 2') do connection = Excon.new('http://127.0.0.1:9292', :persistent => true) ret = [] ret << connection.batch_requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ], 2).map(&:body) ret.flatten end end tests('with batch request size 3') do returns(%w{ 1 2 3 1 }, 'batch request size 3') do connection = Excon.new('http://127.0.0.1:9292') ret = [] ret << connection.batch_requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ], 3).map(&:body) ret.flatten end end tests('persistent with batch request size 3') do returns(%w{ 1 2 3 4 }, 'persistent batch request size 3') do connection = Excon.new('http://127.0.0.1:9292', :persistent => true) ret = [] ret << connection.batch_requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ], 3).map(&:body) ret.flatten end end tests('with batch request size 4') do returns(%w{ 1 2 3 4 }, 'batch request size 4') do connection = Excon.new('http://127.0.0.1:9292') ret = [] ret << connection.batch_requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ], 4).map(&:body) ret.flatten end end tests('persistent with batch request size 4') do returns(%w{ 1 2 3 4 }, 'persistent batch request size 4') do connection = Excon.new('http://127.0.0.1:9292', :persistent => true) ret = [] ret << connection.batch_requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ], 4).map(&:body) ret.flatten end end tests('with batch request size 8') do returns(%w{ 1 2 3 4 }, 'batch request size 8') do connection = Excon.new('http://127.0.0.1:9292') ret = [] ret << connection.batch_requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ], 8).map(&:body) ret.flatten end end tests('persistent with batch request size 8') do returns(%w{ 1 2 3 4 }, 'persistent batch request size 8') do connection = Excon.new('http://127.0.0.1:9292', :persistent => true) ret = [] ret << connection.batch_requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ], 8).map(&:body) ret.flatten end end end end excon-1.3.1/tests/complete_responses.rb000066400000000000000000000020321510272305100202210ustar00rootroot00000000000000Shindo.tests('Excon Response Validation') do env_init with_server('good_ipv4') do tests('good responses with complete headers') do 100.times do res = Excon.get('http://127.0.0.1:9292/chunked/simple') returns(true) { res.body == "hello world" } returns(true) { res.status_line == "HTTP/1.1 200 OK\r\n" } returns(true) { res.status == 200} returns(true) { res.reason_phrase == "OK" } returns(true) { res.remote_ip == "127.0.0.1" } end end end with_server('error') do tests('error responses with complete headers') do 100.times do res = Excon.get('http://127.0.0.1:9292/error/not_found') returns(true) { res.body == "server says not found" } returns(true) { res.status_line == "HTTP/1.1 404 Not Found\r\n" } returns(true) { res.status == 404} returns(true) { res.reason_phrase == "Not Found" } returns(true) { res.remote_ip == "127.0.0.1" } end end end env_restore end excon-1.3.1/tests/connection_tests.rb000066400000000000000000000061331510272305100176770ustar00rootroot00000000000000Shindo.tests('Excon Connection') do env_init with_rackup('basic.ru') do tests('#socket connects, sets data[:remote_ip]').returns('127.0.0.1') do connection = Excon::Connection.new( :host => '127.0.0.1', :hostname => '127.0.0.1', :nonblock => false, :port => 9292, :scheme => 'http', :ssl_verify_peer => false ) connection.send(:socket) # creates/connects socket connection.data[:remote_ip] end tests("persistent connections") do connection = Excon.new('http://127.0.0.1:9292', persistent: true) response_body = connection.request(path: '/foo', method: 'get').body test("successful uninterrupted request") do connection.request(path: '/foo', method: 'get').body == 'foo' end begin # simulate an interrupted connection which leaves data behind Timeout::timeout(0.0000000001) do connection.request(path: '/foo', method: 'get') end rescue Timeout::Error nil end test("resets connection after interrupt") do response = connection.request(path: '/bar', method: 'get') response.body == 'bar' end if ::Process.respond_to?(:fork) connection_id = connection.send(:socket).object_id test("fork safety") do read, write = IO.pipe pid = fork do connection_id = connection.send(:socket).object_id write.write(Marshal.dump(connection_id)) write.close exit!(0) end Process.waitpid(pid) child_connection_id = Marshal.load(read) child_connection_id != connection_id end end end end tests("inspect redaction") do cases = [ ['user & pass', 'http://user1:pass1@foo.com/', 'Basic dXNlcjE6cGFzczE='], ['email & pass', 'http://foo%40bar.com:pass1@foo.com/', 'Basic Zm9vQGJhci5jb206cGFzczE='], ['user no pass', 'http://three_user@foo.com/', 'Basic dGhyZWVfdXNlcjo='], ['pass no user', 'http://:derppass@foo.com/', 'Basic OmRlcnBwYXNz'] ] cases.each do |desc,url,auth_header| conn = Excon.new(url, :proxy => url) test("authorization/proxy-authorization headers concealed for #{desc}") do !conn.inspect.include?(auth_header) end if conn.data[:password] test("password param concealed for #{desc}") do !conn.inspect.include?(conn.data[:password]) end test("password param not mutated for #{desc}") do conn.data[:password] == URI.parse(url).password end end if conn.data[:proxy] && conn.data[:proxy][:password] test("proxy password param concealed for proxy: #{desc}") do !conn.inspect.include?(conn.data[:proxy][:password]) end test("proxy password param not mutated for proxy: #{desc}") do conn.data[:proxy][:password] == URI.parse(url).password end end end end test('initialization') do !Excon::Connection.new.nil? # This should not raise end env_restore end excon-1.3.1/tests/data/000077500000000000000000000000001510272305100146775ustar00rootroot00000000000000excon-1.3.1/tests/data/127.0.0.1.cert.crt000066400000000000000000000022031510272305100173060ustar00rootroot00000000000000-----BEGIN CERTIFICATE----- MIIDKTCCAhGgAwIBAgIUQpNODGCcHJf3gudZfwEk2ltQA+4wDQYJKoZIhvcNAQEL BQAwJDESMBAGA1UEAwwJMTI3LjAuMC4xMQ4wDAYDVQQKDAVleGNvbjAeFw0yMzAx MTExNDM0MzRaFw0zMzAxMDgxNDM0MzRaMCQxEjAQBgNVBAMMCTEyNy4wLjAuMTEO MAwGA1UECgwFZXhjb24wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZ idYUSS7mWUKLkk1uV2JaHryYXbgGcmzuB0ZyWoTFPevW2vW27mtvZcX8wHlQi8xN oPRUmLTJ0Rn15r2TyXFy2nWTSY8XFug8z6wf7Rge+9fhOojdHvHaa5cl2yyZu8oz wUZB2EoLPTkPYncylrfcARZGtEyDGC23np9T1cUd93Kn2aULnSKTEEjJfkb4okZW K68SShxrgdGM6IJWzv7EPdhr4tyis9H02Cv6LBzd4pky23UxqLdSDXdT2v5UYUNz 59pgJnx0EMFWc2CaM+qm9TkEYYVgZPkipgNdAWVRGIFfqwbJF44ACE6VhvN9kx2J 0nfLs/wvg7U6S8m/l0gHAgMBAAGjUzBRMB0GA1UdDgQWBBQlJoPoVk0YUXAsxwe1 sVqQ/tV8oTAfBgNVHSMEGDAWgBQlJoPoVk0YUXAsxwe1sVqQ/tV8oTAPBgNVHRMB Af8EBTADAQH/MA0GCSqGSIb3DQEBCwUAA4IBAQBXtZZ4Qlri4/fgt3ml5GkFXjPk CbJPaM037YvweHDqwa4OO4MBsSvFWHmhOo2n5rTM4Ay7SgnWY2/jYsOW41+T7EWV iuisjwuMuZO9HhdE5i08MI4oyJdDlBZ3vpOr5SimrtAscN6fhuujs2+3/qhmgv0q UyRtQo0HAxcTt5X5Ri89UiXm5VwwGI91L9yXXglwSjE61Bcvo9LIrSO1rMF0M8Fm YmvrlOyb0+6x6r1svTCojQbaUOcAyax5cp4KlsNmCg7LWPQtnUiZoXyCKJtk/Scl mp3pQNwuUBCDJcpKwor6nJznFULR/qU7XE6wBFJGwCTybrrR/aV3ZP+m0Zaw -----END CERTIFICATE----- excon-1.3.1/tests/data/127.0.0.1.cert.key000066400000000000000000000032541510272305100173150ustar00rootroot00000000000000-----BEGIN PRIVATE KEY----- MIIEvwIBADANBgkqhkiG9w0BAQEFAASCBKkwggSlAgEAAoIBAQDZidYUSS7mWUKL kk1uV2JaHryYXbgGcmzuB0ZyWoTFPevW2vW27mtvZcX8wHlQi8xNoPRUmLTJ0Rn1 5r2TyXFy2nWTSY8XFug8z6wf7Rge+9fhOojdHvHaa5cl2yyZu8ozwUZB2EoLPTkP YncylrfcARZGtEyDGC23np9T1cUd93Kn2aULnSKTEEjJfkb4okZWK68SShxrgdGM 6IJWzv7EPdhr4tyis9H02Cv6LBzd4pky23UxqLdSDXdT2v5UYUNz59pgJnx0EMFW c2CaM+qm9TkEYYVgZPkipgNdAWVRGIFfqwbJF44ACE6VhvN9kx2J0nfLs/wvg7U6 S8m/l0gHAgMBAAECggEBAKN0ERo+/vFv4jNzI6EkIa9rZvPpf2vAsJ6Nct5bq2V1 KG7RKU1hifIy+3f1u3HNCR7PMKcb8sOtzR7aWFniQ88z3KJl5BFKUgfXVxLKGJS3 ULdYPxw+syUWMITuUW3WD5GhyMOS29fkEarApqWpX878Nhu8P71E/pz4n+jjN/BR 6Z33BUNiEmdn8bE5bZ6P+rrkJRBw0OCLb0oFOjCkIFSLKffK5lcWNy79hSL0xWvf JY9DPGy3lAN8ACte2TwZeNEIywYvuwEFTYfgAkNJa9H7bqIHmYBm9qSkaZbIq83g uv8B5cLbCAIzQHSSYtz9drktO+KH3Y1HbrrKUqGFOIECgYEA9ya/iUxxsv5P6KLn RHmjBqZdkkimo7YOgLub2G5UC8dURB8Ghc4r0dQBCN4qEHifkb5fG5RuNt92mP/I nyc+bHziJ2teY5ZLDjyUYqPI5gfOiUEekna48jwfGIkqH1UAmmRgnwcDzHbR8cRH OcRxkmNV6EwJGw6FXh5RiWbpdkcCgYEA4VOsH5Im/figkxeN+aczZT+CK4HhpCcL uiLGsR/m7S7FSia6lqZNK6aazN7py2M3PczZaJeGiMU6WU6fmMSTdF5pN7XjkO0z T79j0tJ4ehmZpcoKF9GC26+I6D4jNoquRouuHM9DHe/GvNlNc/hbJDu+is+JW5LE b9/xTVwNwEECgYEAi57BL3AW/zY5sENvALjyhwwu6jfOo8dyc/kINoFFS44kpYMd bTOmf5gTqY3QF5P9GRmBoxP8G1WsKwy8qmRCGImIPRqjrQC3j+hbL0o1cPXSEKnP +o/FNVsPeg3q1N5xQ8cW6l/NHpG1Uq4+Sn0WZ8tkOaHStw1B/ISGLWgM1XsCgYEA 1YDE7T08+RTmgbml61KEnoEoxDTTKwlcUUi2YArMcx0ID5TW4/w7zwqUT19AxFkE dOhvcG1zKpFHEmwvST+qQG9c307Xi/FV11CQM6j+QyOStMbV/W+lwKd44CZQk1Og gnPDzMSO4gTamQKGI0bGhXSevUSc8EoHG8JkEFsTJIECgYBdxa7xrKQqhWLrCRJr +U+xBI/YFVPYkl3iCecUtHSeEJUtIkicYaKBpFvzYxDxV1P3ldON4WzZvvbY4Czi AG/hFKdsrM346tFiJTk5kEUSSJ82rBNralq7KV2e0PQY2DIDGJgTXGcfsjs6yr+q O4AgT81zhYM4mtwijpe4PLfyhw== -----END PRIVATE KEY----- excon-1.3.1/tests/data/excon.cert.crt000066400000000000000000000021731510272305100174640ustar00rootroot00000000000000-----BEGIN CERTIFICATE----- MIIDITCCAgmgAwIBAgIURVMBYLwLg4zoc6ZP7ji2ZVE6IXAwDQYJKoZIhvcNAQEL BQAwIDEOMAwGA1UEAwwFZXhjb24xDjAMBgNVBAoMBWV4Y29uMB4XDTIzMDExMTE0 MzQzM1oXDTMzMDEwODE0MzQzM1owIDEOMAwGA1UEAwwFZXhjb24xDjAMBgNVBAoM BWV4Y29uMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnIr2s8sP1sb 9y5lNhNEvDR2/lHv09UF2HgIWl4q/giVqUpV8KrgdI7bCjoBRWMImwmkUKdO6LqA hjrIiOhKObauxokJYqeqsTWx1UDastdIvOmwxZwtSfFdI+EK/T3yA3XTBDaohAik Ho5rHElPhNH4H/lnnZt5esv36p42D/NB+CfLUddQA0g9k9jfwg4ccDWfHYXx/ZJW WTh+3TSK2s1hDbHBAzXrd8tOzUGgd9b7tXj98v4llfS7e+Ghgw8hi1rNOxjfDiVN wkwtOMz2+5dTfeQOtLv3MPYDSh4uwIwLAVnHQG5Z8yYyC0+sqtJfnfBlqmIf8Cbi tVPE/aQ5iwIDAQABo1MwUTAdBgNVHQ4EFgQU7KIRUGCqWIc27Glui3OCOWQqxO0w HwYDVR0jBBgwFoAU7KIRUGCqWIc27Glui3OCOWQqxO0wDwYDVR0TAQH/BAUwAwEB /zANBgkqhkiG9w0BAQsFAAOCAQEAf7Ab/8H9q5PkAOwpKVe3tvz+tD4f5OaezQAF NGMUufMb2exB/H6ZtilnNyYdWzfoQgG9ijml9/hatwLTq2mZiyzXCQTHKMYN1WDX g5ClCTIs6noVVOE22AgnhGdW2o5f8JfpDGn4qU4SfrVALwY4+viw4InB9513fZG2 F1XGMemoy5PxX6bWesOo0kB2wfXQ0n2f9obEtOO2RwzK+cMoStAqnwgeGeSFM7kH Y//qIM6NJDuAZOw0lAtTQTGCTt7Ad4ytlqK6iJELmFs8p2FAdRDTOCv+pbClvCp7 FbVah22R2Ei6jEhweWG+lewFn3UEXZQiQxm3KREzypkdvDfxUQ== -----END CERTIFICATE----- excon-1.3.1/tests/data/excon.cert.key000066400000000000000000000032501510272305100174610ustar00rootroot00000000000000-----BEGIN PRIVATE KEY----- MIIEvQIBADANBgkqhkiG9w0BAQEFAASCBKcwggSjAgEAAoIBAQC+civazyw/Wxv3 LmU2E0S8NHb+Ue/T1QXYeAhaXir+CJWpSlXwquB0jtsKOgFFYwibCaRQp07ouoCG OsiI6Eo5tq7GiQlip6qxNbHVQNqy10i86bDFnC1J8V0j4Qr9PfIDddMENqiECKQe jmscSU+E0fgf+Wedm3l6y/fqnjYP80H4J8tR11ADSD2T2N/CDhxwNZ8dhfH9klZZ OH7dNIrazWENscEDNet3y07NQaB31vu1eP3y/iWV9Lt74aGDDyGLWs07GN8OJU3C TC04zPb7l1N95A60u/cw9gNKHi7AjAsBWcdAblnzJjILT6yq0l+d8GWqYh/wJuK1 U8T9pDmLAgMBAAECggEBALNOu4ugU4CzP3lS7WgkbCrnGsIIU02W25IcMYEj+EaF vqNNoeyedgZIGmNeiaPSwl92jIaDgAAO2MOIxRZh3sDIB3ZVv8hrJIMEkxK9pSuN FqcHP7BOgzWDUrZdRAN7N0mavbrR24e0uxEp9h8DxyK+rmcsYyo5H/9F233CyBPq yYvMbEpIR0PZ/FdpU1ExZjKwRUGsVNjhLxBsqfvUPjxHwsQrZXtifxFTcmgY6P2P mF9X8mCuLOMo7NxnLWPEQGdArX0WybKEGmxGpU62ONwBYSzE4unV/9Ch5vMsRo++ n0AeRzIxyOdln6VFtU2zo1jIWNGOwbPqitfWriyvSQECgYEA+ywPaLoUiZjw96fa dwdZkYQYJ1qp/KjAxr7d404rTkPiJa/f4kC8+aVjlwiAHwLWFqZ8Q1hkFneoJW6G hHyOTvliuYzMSodN4GS0iDa+Yhu8PA+kEjKcB+qQ+wxzNNYXyHXp/Np2I01JA9Kf 6W0MRL2OWpC8F+mvD5AY+czQrNECgYEAwhtL9o/5qoSfbc+xGLqviIx/vun8BtWb U9pdBUTlN1fdZTQjz6m2Vlc5Vb3fI/cTUv2YDej2eNvCxzf9Phq1pRWZVLXyzeh2 69qVjAbBYbfiibbHmt3TsFFfqDL3kr4OgFncKUFjrBJe3FPydx7vjkuj2pnEOKv4 +ZqE8zRr55sCgYAb/iUZfuObEjiI4WQvr9oDpb0rZadcSVJy1ALWuneJGXeyy48g ICbvi8c1pfThf+dsTtG6j7dX6a4Lve2wBlG164VdOJvsEnhTceXM6Iz/UigAaZ3X iVxqZXITCKguU04DQWD6lT5lYM+qZWb9FPIxFw8ueML9x0WDboPaE0GOgQKBgAs+ MYQyiq+JxwJBSWy5Q3mRScTxIJv0u257829esjgmarh18K0Sk3Ek1DlXKhmXMhNY hPopSD1v3TRU1eJHAcZyHdN+RnYOxPScUJUvvvu9/u0jHSSnPJ+11uiTKyvgvk5I 5iutkexhlAUHB8BGlnGTiAYdafQuYdlzTcgYfTeJAoGAW6WrscApIXpjplerUkfv ACPQsrpkwW/9xVx6yUeE2sn8k+PVgVf8SlO4FvR73VN7nvJ4rHKrRZtAX/4i6SRW YSAwLt+q3bsA9LVJnNH8QndWNHf4tw17F/v3Pq9RGMZKhLTFK3UsydPyL44k5Qco fbYeYYA61/ckUCzzXxwwysw= -----END PRIVATE KEY----- excon-1.3.1/tests/data/excon_client.cert.crt000066400000000000000000000102421510272305100210160ustar00rootroot00000000000000Certificate: Data: Version: 3 (0x2) Serial Number: 1 (0x1) Signature Algorithm: sha256WithRSAEncryption Issuer: O=excon, CN=excon intermediate Validity Not Before: Jan 23 14:19:58 2023 GMT Not After : Jan 20 14:19:58 2033 GMT Subject: O=excon, CN=excon client Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f3:a4:f7:78:8b:b9:7d:c3:9a:8e:24:f1:a6: ac:44:8a:c7:db:8a:d3:ca:d3:f4:e2:b1:0e:47:0c: 3d:0a:31:20:91:7f:b5:53:ee:a4:ac:00:a1:40:37: 39:5a:ee:be:92:68:a0:6e:d3:f3:e9:dc:08:c0:91: 66:76:89:37:8b:95:ed:fd:f7:e0:e9:c6:e5:d1:b7: 1b:b5:88:d9:e5:69:fb:77:48:f1:8c:19:01:db:d5: 59:8f:a3:7b:92:99:c8:cc:ec:ac:74:4d:31:4b:46: 0f:c7:85:c1:96:09:bb:96:66:52:3a:ac:21:cd:e9: a8:41:90:b8:cf:d9:02:fc:3b:5e:df:27:af:1a:5b: 23:cb:28:a7:09:3b:d1:6b:35:6c:f2:84:57:a0:e6: 27:27:3a:92:18:44:b0:c4:82:1b:e4:be:ca:53:67: 52:1d:e2:61:50:84:d1:37:75:9f:9f:39:8a:73:94: 2b:7d:cf:b6:23:5f:cb:a1:1c:51:83:90:6c:70:9c: e1:5d:08:55:45:98:08:10:87:3d:b3:e6:33:b7:6e: 8c:0c:38:eb:11:07:2a:64:4c:58:76:a6:ea:93:7f: a3:4a:55:a6:f6:e7:69:e6:08:ec:15:26:25:3d:42: 5c:14:08:50:0a:c9:06:02:a0:ad:f5:c9:45:58:3a: e4:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: CA:FALSE Netscape Comment: OpenSSL Generated Certificate X509v3 Subject Key Identifier: 40:EF:5A:7C:EB:7B:86:E1:31:35:43:8D:4A:3F:31:A0:3B:C6:5F:1D X509v3 Authority Key Identifier: keyid:4B:17:8E:D4:A8:69:61:D1:BE:59:A7:53:84:0C:82:D1:6E:B2:A4:67 Signature Algorithm: sha256WithRSAEncryption 93:79:26:7e:35:7b:52:89:93:b7:89:0a:f5:1e:3b:c3:13:b8: de:d4:c5:0c:56:14:10:7e:a6:de:91:93:27:01:85:8c:7e:e9: 60:59:61:f6:bd:58:f9:b9:74:3a:d8:5b:8d:ed:fc:56:22:25: 18:6b:2d:52:83:af:02:8d:b5:c9:4e:08:6c:0d:a3:2a:39:58: 9a:f7:44:1c:d6:2e:03:69:57:d6:b1:b9:b6:db:b9:ab:f7:40: 43:ab:6e:ae:c2:27:6b:3d:82:85:eb:bf:54:4b:df:b2:44:64: a8:a5:e4:fc:d0:70:30:f7:74:47:73:c4:3f:9d:97:1e:85:91: ac:74:83:c2:ac:c4:40:f4:07:a5:50:a8:d5:24:69:ce:c2:02: e8:67:21:6b:6b:19:9e:4a:a8:a4:b2:5c:eb:0f:b8:04:e5:9f: 1e:94:18:16:09:37:a3:82:5b:ea:ea:fd:57:dc:d7:6a:34:11: fc:39:92:62:21:78:18:fa:14:49:7f:9b:21:28:8c:df:9c:3f: 16:2e:5a:7b:8d:7e:22:ef:e7:46:68:8d:29:58:c7:59:04:d6: 10:7f:8c:49:99:8a:aa:a3:b3:7b:52:63:89:e8:57:5e:13:3f: ee:03:1e:ca:49:52:a8:34:8f:4a:f2:65:eb:51:ac:9a:e9:93: f9:a4:4f:df -----BEGIN CERTIFICATE----- MIIDSjCCAjKgAwIBAgIBATANBgkqhkiG9w0BAQsFADAtMQ4wDAYDVQQKDAVleGNv bjEbMBkGA1UEAwwSZXhjb24gaW50ZXJtZWRpYXRlMB4XDTIzMDEyMzE0MTk1OFoX DTMzMDEyMDE0MTk1OFowJzEOMAwGA1UECgwFZXhjb24xFTATBgNVBAMMDGV4Y29u IGNsaWVudDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAL7zpPd4i7l9 w5qOJPGmrESKx9uK08rT9OKxDkcMPQoxIJF/tVPupKwAoUA3OVruvpJooG7T8+nc CMCRZnaJN4uV7f334OnG5dG3G7WI2eVp+3dI8YwZAdvVWY+je5KZyMzsrHRNMUtG D8eFwZYJu5ZmUjqsIc3pqEGQuM/ZAvw7Xt8nrxpbI8sopwk70Ws1bPKEV6DmJyc6 khhEsMSCG+S+ylNnUh3iYVCE0Td1n585inOUK33PtiNfy6EcUYOQbHCc4V0IVUWY CBCHPbPmM7dujAw46xEHKmRMWHam6pN/o0pVpvbnaeYI7BUmJT1CXBQIUArJBgKg rfXJRVg65OcCAwEAAaN7MHkwCQYDVR0TBAIwADAsBglghkgBhvhCAQ0EHxYdT3Bl blNTTCBHZW5lcmF0ZWQgQ2VydGlmaWNhdGUwHQYDVR0OBBYEFEDvWnzre4bhMTVD jUo/MaA7xl8dMB8GA1UdIwQYMBaAFEsXjtSoaWHRvlmnU4QMgtFusqRnMA0GCSqG SIb3DQEBCwUAA4IBAQCTeSZ+NXtSiZO3iQr1HjvDE7je1MUMVhQQfqbekZMnAYWM fulgWWH2vVj5uXQ62FuN7fxWIiUYay1Sg68CjbXJTghsDaMqOVia90Qc1i4DaVfW sbm227mr90BDq26uwidrPYKF679US9+yRGSopeT80HAw93RHc8Q/nZcehZGsdIPC rMRA9AelUKjVJGnOwgLoZyFraxmeSqikslzrD7gE5Z8elBgWCTejglvq6v1X3Ndq NBH8OZJiIXgY+hRJf5shKIzfnD8WLlp7jX4i7+dGaI0pWMdZBNYQf4xJmYqqo7N7 UmOJ6FdeEz/uAx7KSVKoNI9K8mXrUaya6ZP5pE/f -----END CERTIFICATE----- excon-1.3.1/tests/data/excon_client.cert.key000066400000000000000000000032171510272305100210220ustar00rootroot00000000000000-----BEGIN RSA PRIVATE KEY----- MIIEpAIBAAKCAQEAvvOk93iLuX3Dmo4k8aasRIrH24rTytP04rEORww9CjEgkX+1 U+6krAChQDc5Wu6+kmigbtPz6dwIwJFmdok3i5Xt/ffg6cbl0bcbtYjZ5Wn7d0jx jBkB29VZj6N7kpnIzOysdE0xS0YPx4XBlgm7lmZSOqwhzemoQZC4z9kC/Dte3yev GlsjyyinCTvRazVs8oRXoOYnJzqSGESwxIIb5L7KU2dSHeJhUITRN3WfnzmKc5Qr fc+2I1/LoRxRg5BscJzhXQhVRZgIEIc9s+Yzt26MDDjrEQcqZExYdqbqk3+jSlWm 9udp5gjsFSYlPUJcFAhQCskGAqCt9clFWDrk5wIDAQABAoIBAGzYWyeJOjQwwQff kKWCeV3UsdmuB83tBgEWJepPypd9q2/kmQrP1GQLM99z2yi/QDgalaC3Bqk+eGq0 NvDIhLX3b6K94iG/846YTp4q9PG1eNbk6HMQaiPSOGwNJ0pIiNJu8lqVCc07kZEM 6G1K/PfdOXAiYF6MmxFMmlw3+mClxtyowV6OgCUR7SeNxCfexsXgHHMYbNk3R9aS ja/SU9LSEv0gvSzhi88F/Lj6hmSsX9QZE7j5OtlU5ishY0LsyXYLwCFGn3Z71vj7 GvZTXYByPhpMGNl61I+NIC8SPZ9tnWD3DAAj9zQ421A7uKlWVqJH4HxP3FoW5LkJ KYc5tkECgYEA5FSStVcqHslgmvIZyldi5o14wUnj0lLHR8ZQSvkoXXxCqFs0EunT JAIVmy4lmgdGZ8f1uknqUSr6e0IWIGvSAo1r8MjFYiXe9nHuNJJ0bcFCwnIzyqcz gMVtI1BO8pw2AHWpLNryYIMF4+KBSZHnBnqdoJXGZqefXxWBEnT53ccCgYEA1hd8 JdLmJB1gjgJgV5Yrf0+xVy0cqQMac0RA1Pw7QhOpYg42lsci3jaKRIX/YCUjuaXj /9RlUtyBsB5IMDomwG6/OSSsGA9NMh+irY3B7L/u0j1EGlL7VUmViPVJ05f07E8x J32W17PjXlD7J/YPI2e3fH3T0fa4NeluabidP+ECgYBsC6kwroJ79wcDyzRxD1D5 kFBoBrMLv6gVSr6L+8MiGb7hM+c8W/FRxLq8p+WbMX4bdf/Nm1SJ/DBzSx51URAb rRg65IainxEWxWrW7cayeRVCNhBUATLZ6JJwd3wkSc80AHmBhEnVaarL308WpTgR VMxqRPWRdhhwQhjFxxzF2QKBgQCHHldaP9rEHE5eEh3f6YUWWqOgU3ZtLOo6qW8J fQ+hSmty2WmWi6Pz/xQQ30kn0wjTGGHnipNQUp7/Gn2RAoKGnN7PH9gFb1LXOaQg SQGFfDUsN0KOIqVBVKmtwLGRe6w2oFxzgg37oSr00cNRmzg+rizdw0Q2lbH5RJRM 4RlNwQKBgQCHZzGe6kUr6gN2VvgmrH5hrw7OasaWYgmfflAmckRU0ml5rB68wzAi PgMIsMU1cjy0LvW2BAfp6Qp5yAWhnf+U8rihj9WWlFrir5tGDnvsPmbDIMNgz6oo YWemKQr9m8Cq9rQHaZRU/vMrGdH1g6kIcPDoU+SxfysabAiQT2YwKQ== -----END RSA PRIVATE KEY----- excon-1.3.1/tests/data/excon_intermediate.cert.crt000066400000000000000000000102411510272305100222110ustar00rootroot00000000000000Certificate: Data: Version: 3 (0x2) Serial Number: 1 (0x1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=excon, O=excon Validity Not Before: Jan 23 14:19:36 2023 GMT Not After : Jan 20 14:19:36 2033 GMT Subject: O=excon, CN=excon intermediate Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2f:8b:63:e5:d1:94:3a:3e:32:5e:83:0d:63: 5f:e0:a1:87:96:86:65:2e:c2:0a:10:f3:61:84:1d: 88:6c:53:c8:dc:b2:d8:8e:81:3b:77:7e:32:7c:17: fe:5b:d7:25:72:22:f7:af:dd:8c:8c:6a:b9:69:c3: 5b:dd:1a:42:0a:50:fd:df:24:0c:60:0b:94:94:8b: 30:f4:46:99:52:ff:56:fb:04:e4:77:80:a5:2e:85: 90:31:57:71:0a:c9:eb:1b:1d:83:cd:09:59:1e:dd: c6:42:a1:a7:e2:ef:98:85:02:4a:02:44:01:49:f2: 1f:04:dd:df:64:b8:6a:19:5d:67:7e:d1:64:f9:50: eb:b8:d1:24:f9:32:d4:c4:a4:36:aa:d3:90:ee:22: e9:a1:59:94:f9:aa:d9:e9:a6:c0:30:f2:0e:8b:6e: 8b:1a:fc:ef:5c:a4:7b:68:3e:74:59:34:86:7b:23: 32:ec:de:5b:93:b0:32:68:fb:44:89:28:ea:8f:ff: 6b:e4:91:46:7b:c4:ad:20:24:8e:89:aa:e3:bd:61: 9f:17:93:28:d7:53:50:d9:7a:2b:44:40:9e:6c:86: 96:2a:8d:11:ef:f2:28:e0:21:bb:34:35:e4:e8:7e: f8:9a:d3:86:dd:cb:09:56:0f:5e:f8:44:65:dd:36: 8d:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:17:8E:D4:A8:69:61:D1:BE:59:A7:53:84:0C:82:D1:6E:B2:A4:67 X509v3 Authority Key Identifier: keyid:EC:A2:11:50:60:AA:58:87:36:EC:69:6E:8B:73:82:39:64:2A:C4:ED X509v3 Basic Constraints: critical CA:TRUE, pathlen:0 X509v3 Key Usage: critical Digital Signature, Certificate Sign, CRL Sign Signature Algorithm: sha256WithRSAEncryption 20:af:b7:a9:00:80:f2:ac:e7:04:3b:32:5d:81:c1:0a:8c:d5: 32:89:e1:f9:6e:73:3d:c5:35:cd:f5:4f:33:67:1c:00:55:94: d2:62:e3:48:97:63:36:01:59:10:3b:a7:aa:ec:74:fa:3c:dc: 7a:1d:8a:11:07:16:dd:98:bf:64:82:3a:49:bb:b9:02:be:30: 23:bd:c3:45:70:a6:5c:93:5e:85:cc:27:80:82:ad:1e:3d:3f: d2:43:18:07:b5:33:c8:f2:29:f6:5e:b6:7d:e9:a0:7a:fd:0d: a7:c5:3f:8d:f7:d3:da:ee:59:e7:33:fa:1f:44:29:62:6f:62: 03:4c:4e:46:7a:b2:f4:23:43:68:ef:ec:0b:49:fe:5e:7c:f3: d0:a2:52:57:84:31:9b:b7:30:5f:6e:5b:be:25:f1:4b:9e:eb: df:aa:07:f7:84:94:88:fd:d1:a0:a4:07:09:0b:2b:b0:99:31: 05:3c:45:bd:12:9b:62:7b:20:d6:c4:84:e6:8f:61:1c:c8:67: c7:40:00:04:9b:53:f3:b6:ea:7f:b9:1d:b4:bc:ff:d9:df:05: 47:71:5d:44:39:a0:f2:f2:aa:12:45:61:43:95:5f:a0:34:40: 2f:ee:d7:c2:e0:77:5b:92:df:e3:9e:f8:d7:af:26:da:ef:40: 99:7f:65:38 -----BEGIN CERTIFICATE----- MIIDLjCCAhagAwIBAgIBATANBgkqhkiG9w0BAQsFADAgMQ4wDAYDVQQDDAVleGNv bjEOMAwGA1UECgwFZXhjb24wHhcNMjMwMTIzMTQxOTM2WhcNMzMwMTIwMTQxOTM2 WjAtMQ4wDAYDVQQKDAVleGNvbjEbMBkGA1UEAwwSZXhjb24gaW50ZXJtZWRpYXRl MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6y+LY+XRlDo+Ml6DDWNf 4KGHloZlLsIKEPNhhB2IbFPI3LLYjoE7d34yfBf+W9clciL3r92MjGq5acNb3RpC ClD93yQMYAuUlIsw9EaZUv9W+wTkd4ClLoWQMVdxCsnrGx2DzQlZHt3GQqGn4u+Y hQJKAkQBSfIfBN3fZLhqGV1nftFk+VDruNEk+TLUxKQ2qtOQ7iLpoVmU+arZ6abA MPIOi26LGvzvXKR7aD50WTSGeyMy7N5bk7AyaPtEiSjqj/9r5JFGe8StICSOiarj vWGfF5Mo11NQ2XorRECebIaWKo0R7/Io4CG7NDXk6H74mtOG3csJVg9e+ERl3TaN hQIDAQABo2YwZDAdBgNVHQ4EFgQUSxeO1KhpYdG+WadThAyC0W6ypGcwHwYDVR0j BBgwFoAU7KIRUGCqWIc27Glui3OCOWQqxO0wEgYDVR0TAQH/BAgwBgEB/wIBADAO BgNVHQ8BAf8EBAMCAYYwDQYJKoZIhvcNAQELBQADggEBACCvt6kAgPKs5wQ7Ml2B wQqM1TKJ4flucz3FNc31TzNnHABVlNJi40iXYzYBWRA7p6rsdPo83HodihEHFt2Y v2SCOkm7uQK+MCO9w0VwplyTXoXMJ4CCrR49P9JDGAe1M8jyKfZetn3poHr9DafF P43309ruWecz+h9EKWJvYgNMTkZ6svQjQ2jv7AtJ/l5889CiUleEMZu3MF9uW74l 8Uue69+qB/eElIj90aCkBwkLK7CZMQU8Rb0Sm2J7INbEhOaPYRzIZ8dAAASbU/O2 6n+5HbS8/9nfBUdxXUQ5oPLyqhJFYUOVX6A0QC/u18Lgd1uS3+Oe+NevJtrvQJl/ ZTg= -----END CERTIFICATE----- excon-1.3.1/tests/data/excon_intermediate.cert.key000066400000000000000000000032171510272305100222160ustar00rootroot00000000000000-----BEGIN RSA PRIVATE KEY----- MIIEpAIBAAKCAQEA6y+LY+XRlDo+Ml6DDWNf4KGHloZlLsIKEPNhhB2IbFPI3LLY joE7d34yfBf+W9clciL3r92MjGq5acNb3RpCClD93yQMYAuUlIsw9EaZUv9W+wTk d4ClLoWQMVdxCsnrGx2DzQlZHt3GQqGn4u+YhQJKAkQBSfIfBN3fZLhqGV1nftFk +VDruNEk+TLUxKQ2qtOQ7iLpoVmU+arZ6abAMPIOi26LGvzvXKR7aD50WTSGeyMy 7N5bk7AyaPtEiSjqj/9r5JFGe8StICSOiarjvWGfF5Mo11NQ2XorRECebIaWKo0R 7/Io4CG7NDXk6H74mtOG3csJVg9e+ERl3TaNhQIDAQABAoIBAB9bbXhaUgEzasuI cmy8jTIEF3HoZWFAmdr8uEnHLkNTQHq8lccaT/V0rAKDqHRSUTnQk7mtDmpCaIpD c+Ic+CUr+01fHw9HO/46OMK5DwRT6yL42gVc76kuQbVydS39Eg3Bd6tEzc8hvqdv qlTFoU5Kqdd3fbyAPcaGVpy1QeAzpHvtJDNaa0BvewBuVGRv+ySHc13DB6NnUP4e NUn8iH1lXRYa6CZ9JDdk5PztQ8Y8N+TnS2krPmac6FBIR6dPGNdZPH30ak4IBF+Y y1DT9xZDJeu3LeqmVrZ+ARYff0BUT96ETiuL+ZHou201N2U8agvUxlVlEQZJcfHY jp1Ha9kCgYEA/VQZ378ycYdBGVFw8+AQ23GBEs35NARvMud4S8lB2ROj48+v/sS9 d5oxa6Jqc2VU0nmow2k2H/YLQEHC8uF2BBN7yGtCDN3or9l6V+xzwiT8/L3jh6hd TvBdndJKF6HtArFEUk0pHmUMwUY+uGSiYD1WZabKj/jR7q7JsSgZoTcCgYEA7ap2 1AW3oEFNnZ392vPMnZjBalf99PDpjRibkvv0GBoHQNbQtH3v7yjmIVs8sRpP6HlE /PK7wes+b83JhLP7UaSXNr7zsU/6RVvXifJf22Rpqv8+Bn+jaF5HocYWepvaqz0p NFxZrauW5mtW110i3wXsoWo7LHLKABlbwSJkFSMCgYEAkD4GzYPMcSAWTRg2PGZk ss6aM97b+mZb+pwZvu1FdRjdxKVJDMNxLly5rxO3kSUtevqSwVFy5BfwqBHJswn1 bLS7Uo7f+PuRti8anl2gO/dbpX1pxKB1ILF0XJyUW4hzr4jH4iTVON1IufQJWmzS mAHU4+RoijmfL0yOwzSWA1kCgYAlTw04W21oCthUVejz5jHIy6IRP57uRKNlMue5 OzQmVG+vDgnVS6/Oq2z0742nf6nrpJ3f13sCBhvXEUcBPf/F4UCbp34554QyPyim zxWdKzYrUcY63u6YA7TbAG2m8bByETfWsGijirw1j8QiKsy+lf9/l12SrLJpMZHl z7BGYQKBgQCYYnlBkxgSitJsg9FEbqzmyheZiddHqzSLvYiDH+d+mqgBFereCwB0 ilAvRVVBEf2k2OMRb1zf7vJo2f15WE+jUQww3DFmUAhAPjtWeATfqDS7wueZT/g5 SkHsULoHoJu4qqAHcLYSqwMJDnSZx69nSeTSFxlPFY2Ewfwblrp8MQ== -----END RSA PRIVATE KEY----- excon-1.3.1/tests/data/xs000066400000000000000000000001451510272305100152540ustar00rootroot00000000000000xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx excon-1.3.1/tests/error_tests.rb000066400000000000000000000102711510272305100166670ustar00rootroot00000000000000 Shindo.tests('HTTPStatusError request/response debugging') do # Regression against e300458f2d9330cb265baeb8973120d08c665d9 tests('Excon::Error knows about pertinent errors') do expected = [ 100, 101, (200..206).to_a, (300..307).to_a, (400..417).to_a, 422, 429, (500..504).to_a ] expected.flatten == Excon::Error.status_errors.keys end tests('new returns an Error').returns(true) do Excon::Error.new('bar').class == Excon::Error end tests('new raises errors for bad URIs').returns(true) do begin Excon.new('foo') false rescue => err err.to_s.include? 'foo' end end tests('new raises errors for bad paths').returns(true) do begin Excon.new('http://localhost', path: "foo\r\nbar: baz") false rescue => err err.to_s.include?(RUBY_VERSION >= '2.6.0' ? 'foo\r\nbar: baz' : "foo\r\nbar: baz") end end tests('can raise standard error and catch standard error').returns(true) do begin raise Excon::Error::Client.new('foo') rescue Excon::Error => e true end end tests('can raise legacy errors and catch legacy errors').returns(true) do begin raise Excon::Errors::Error.new('bar') rescue Excon::Errors::Error => e true end end tests('can raise standard error and catch legacy errors').returns(true) do begin raise Excon::Error::NotFound.new('bar') rescue Excon::Errors::Error => e true end end tests('can raise with status_error() and catch with standard error').returns(true) do begin raise Excon::Error.status_error({expects: 200}, {status: 400}) rescue Excon::Error true end end tests('can raise with status_error() and catch with legacy error').returns(true) do begin raise Excon::Error.status_error({expects: 200}, {status: 400}) rescue Excon::Errors::BadRequest true end end tests('can raise with legacy status_error() and catch with legacy').returns(true) do begin raise Excon::Errors.status_error({expects: 200}, {status: 400}) rescue Excon::Errors::BadRequest true end end tests('can raise with legacy status_error() and catch with standard').returns(true) do begin raise Excon::Errors.status_error({expects: 200}, {status: 400}) rescue Excon::Error true end end with_server('error') do tests('message does not include response or response info').returns(true) do begin Excon.get('http://127.0.0.1:9292/error/not_found', :expects => 200) rescue Excon::Errors::HTTPStatusError => err err.message.include?('Expected(200) <=> Actual(404 Not Found)') && !err.message.include?('excon.error.request') && !err.message.include?('excon.error.response') end end tests('message includes only request info').returns(true) do begin Excon.get('http://127.0.0.1:9292/error/not_found', :expects => 200, :debug_request => true) rescue Excon::Errors::HTTPStatusError => err err.message.include?('Expected(200) <=> Actual(404 Not Found)') && err.message.include?('excon.error.request') && !err.message.include?('excon.error.response') end end tests('message includes only response info').returns(true) do begin Excon.get('http://127.0.0.1:9292/error/not_found', :expects => 200, :debug_response => true) rescue Excon::Errors::HTTPStatusError => err err.message.include?('Expected(200) <=> Actual(404 Not Found)') && !err.message.include?('excon.error.request') && err.message.include?('excon.error.response') end end tests('message include request and response info').returns(true) do begin Excon.get('http://127.0.0.1:9292/error/not_found', :expects => 200, :debug_request => true, :debug_response => true) rescue Excon::Errors::HTTPStatusError => err err.message.include?('Expected(200) <=> Actual(404 Not Found)') && err.message.include?('excon.error.request') && err.message.include?('excon.error.response') end end end end excon-1.3.1/tests/header_tests.rb000066400000000000000000000067101510272305100167710ustar00rootroot00000000000000Shindo.tests('Excon response header support') do env_init tests('Excon::Headers storage') do headers = Excon::Headers.new headers['Exact-Case'] = 'expected' headers['Another-Fixture'] = 'another' tests('stores and retrieves as received').returns('expected') do headers['Exact-Case'] end tests('enumerates keys as received') do ks = headers.keys tests('contains Exact-Case').returns(true) { ks.include? 'Exact-Case' } tests('contains Another-Fixture').returns(true) { ks.include? 'Another-Fixture' } end tests('supports case-insensitive access').returns('expected') do headers['EXACT-CASE'] end tests('but still returns nil for missing keys').returns(nil) do headers['Missing-Header'] end tests('Hash methods that should support case-insensitive access') do if {}.respond_to? :assoc tests('#assoc').returns(%w{exact-case expected}) do headers.assoc('exact-Case') end end tests('#delete') do tests('with just a key').returns('yes') do headers['Extra'] = 'yes' headers.delete('extra') end tests('with a proc').returns('called with notpresent') do headers.delete('notpresent') { |k| "called with #{k}" } end end tests('#fetch') do tests('when present').returns('expected') { headers.fetch('exact-CASE') } tests('with a default value').returns('default') { headers.fetch('missing', 'default') } tests('with a default proc').returns('got missing') do headers.fetch('missing') { |k| "got #{k}" } end end tests('#has_key?') do tests('when present').returns(true) { headers.has_key?('EXACT-case') } tests('when absent').returns(false) { headers.has_key?('missing') } end tests('#values_at') do tests('all present').returns(%w{expected another}) do headers.values_at('exACT-cASE', 'anotheR-fixturE') end tests('some missing').returns(['expected', nil]) do headers.values_at('exact-case', 'missing-header') end end end end with_rackup('response_header.ru') do tests('Response#get_header') do connection = nil response = nil tests('with variable header capitalization') do tests('response.get_header("mixedcase-header")').returns('MixedCase') do connection = Excon.new('http://foo.com:8080', :proxy => 'http://127.0.0.1:9292') response = connection.request(:method => :get, :path => '/foo') response.get_header("mixedcase-header") end tests('response.get_header("uppercase-header")').returns('UPPERCASE') do response.get_header("uppercase-header") end tests('response.get_header("lowercase-header")').returns('lowercase') do response.get_header("lowercase-header") end end tests('when provided key capitalization varies') do tests('response.get_header("MIXEDCASE-HEADER")').returns('MixedCase') do response.get_header("MIXEDCASE-HEADER") end tests('response.get_header("MiXeDcAsE-hEaDeR")').returns('MixedCase') do response.get_header("MiXeDcAsE-hEaDeR") end end tests('when header is unavailable') do tests('response.get_header("missing")').returns(nil) do response.get_header("missing") end end end end env_restore end excon-1.3.1/tests/instrumentors/000077500000000000000000000000001510272305100167225ustar00rootroot00000000000000excon-1.3.1/tests/instrumentors/logging_instrumentor_tests.rb000066400000000000000000000027431510272305100247560ustar00rootroot00000000000000require 'logger' require 'tempfile' Shindo.tests('logging instrumentor') do env_init tests("connection logger").returns(true) do Excon.stub({:method => :get}, {body: 'body', status: 200}) log_path = Tempfile.create.path logger = Logger.new(log_path) # omit datetime to simplify test matcher logger.formatter = proc do |severity, datetime, progname, msg| "#{msg}\n" end connection = Excon.new( 'http://127.0.0.1:9292', instrumentor: Excon::LoggingInstrumentor, logger: logger, mock: true ) response = connection.request(method: :get, path: '/logger') File.readlines(log_path) == [ "request: http://127.0.0.1/logger\n", "response: body\n" ] end tests("connection logger with query as hash").returns(true) do Excon.stub({:method => :get}, {body: 'body', status: 200}) log_path = Tempfile.create.path logger = Logger.new(log_path) # omit datetime to simplify test matcher logger.formatter = proc do |severity, datetime, progname, msg| "#{msg}\n" end connection = Excon.new( 'http://127.0.0.1:9292', instrumentor: Excon::LoggingInstrumentor, logger: logger, mock: true ) response = connection.request( method: :get, path: '/logger', query: {test: 'test'} ) File.readlines(log_path) == [ "request: http://127.0.0.1/logger?test=test\n", "response: body\n" ] end Excon.stubs.clear env_restore end excon-1.3.1/tests/middleware_tests.rb000066400000000000000000000012601510272305100176510ustar00rootroot00000000000000Shindo.tests('Excon middleware') do with_rackup('basic.ru', '0.0.0.0') do tests('succeeds without defining valid_parameter_keys') do class Middleware def initialize(stack) @stack = stack end def error_call(datum) @stack.error_call(datum) end def request_call(datum) @stack.request_call(datum) end def response_call(datum) @stack.response_call(datum) end end silence_warnings do Excon.get( 'http://127.0.0.1:9292/content-length/100', :middlewares => Excon.defaults[:middlewares] + [Middleware] ) end end end end excon-1.3.1/tests/middlewares/000077500000000000000000000000001510272305100162665ustar00rootroot00000000000000excon-1.3.1/tests/middlewares/canned_response_tests.rb000066400000000000000000000016711510272305100232100ustar00rootroot00000000000000Shindo.tests("Excon support for middlewares that return canned responses") do the_body = "canned" canned_response_middleware = Class.new(Excon::Middleware::Base) do define_method :request_call do |params| params[:response] = { :body => the_body, :headers => {}, :status => 200 } super(params) end end tests('does not mutate the canned response body').returns(the_body) do Excon.get( 'http://some-host.com/some-path', :middlewares => [canned_response_middleware] + Excon.defaults[:middlewares] ).body end tests('yields non-mutated body to response_block').returns(the_body) do body = '' response_block = lambda { |chunk, _, _| body << chunk } Excon.get( 'http://some-host.com/some-path', :middlewares => [canned_response_middleware] + Excon.defaults[:middlewares], :response_block => response_block ) body end end excon-1.3.1/tests/middlewares/capture_cookies_tests.rb000066400000000000000000000022441510272305100232160ustar00rootroot00000000000000Shindo.tests("Excon redirecting with cookie preserved") do env_init with_rackup('redirecting_with_cookie.ru') do tests('second request will send cookies set by the first').returns('ok') do Excon.get( 'http://127.0.0.1:9292', :path => '/sets_cookie', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::CaptureCookies, Excon::Middleware::RedirectFollower] ).body end tests('second request will send multiple cookies set by the first').returns('ok') do Excon.get( 'http://127.0.0.1:9292', :path => '/sets_multi_cookie', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::CaptureCookies, Excon::Middleware::RedirectFollower] ).body end end with_rackup('redirecting.ru') do tests("runs normally when there are no cookies set").returns('ok') do Excon.post( 'http://127.0.0.1:9292', :path => '/first', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::CaptureCookies, Excon::Middleware::RedirectFollower], :body => "a=Some_content" ).body end end env_restore end excon-1.3.1/tests/middlewares/decompress_tests.rb000066400000000000000000000122761510272305100222110ustar00rootroot00000000000000Shindo.tests('Excon Decompress Middleware') do env_init with_server('good_ipv4') do before do @connection ||= Excon.new( 'http://127.0.0.1:9292/echo/content-encoded', :method => :post, :body => 'hello world', :middlewares => Excon.defaults[:middlewares] ) end tests('gzip') do resp = nil tests('response body decompressed').returns('hello world') do resp = @connection.request( :headers => { 'Accept-Encoding' => 'gzip, deflate;q=0' } ) resp[:body] end tests('server sent content-encoding').returns('gzip') do resp[:headers]['Content-Encoding-Sent'] end tests('removes processed encoding from header').returns('') do resp[:headers]['Content-Encoding'] end tests('empty response body').returns('') do resp = @connection.request(:body => '') resp[:body] end end tests('deflate') do resp = nil tests('response body decompressed').returns('hello world') do resp = @connection.request( :headers => { 'Accept-Encoding' => 'gzip;q=0, deflate' } ) resp[:body] end tests('server sent content-encoding').returns('deflate') do resp[:headers]['Content-Encoding-Sent'] end tests('removes processed encoding from header').returns('') do resp[:headers]['Content-Encoding'] end end tests('deflate-raw') do resp = nil tests('response body decompressed').returns('hello world') do resp = @connection.request( :headers => { 'Accept-Encoding' => 'deflate-raw' } ) resp[:body] end tests('server sent content-encoding').returns('deflate') do resp[:headers]['Content-Encoding-Sent'] end tests('removes processed encoding from header').returns('') do resp[:headers]['Content-Encoding'] end end tests('with pre-encoding') do resp = nil tests('server sent content-encoding').returns('other, gzip') do resp = @connection.request( :headers => { 'Accept-Encoding' => 'gzip, deflate;q=0', 'Content-Encoding-Pre' => 'other' } ) resp[:headers]['Content-Encoding-Sent'] end tests('processed encoding removed from header').returns('other') do resp[:headers]['Content-Encoding'] end tests('response body decompressed').returns('hello world') do resp[:body] end end tests('with post-encoding') do resp = nil tests('server sent content-encoding').returns('gzip, other') do resp = @connection.request( :headers => { 'Accept-Encoding' => 'gzip, deflate;q=0', 'Content-Encoding-Post' => 'other' } ) resp[:headers]['Content-Encoding-Sent'] end tests('unprocessed since last applied is unknown').returns('gzip, other') do resp[:headers]['Content-Encoding'] end tests('response body still compressed').returns('hello world') do Zlib::GzipReader.new(StringIO.new(resp[:body])).read end end tests('with a :response_block') do captures = nil resp = nil tests('server sent content-encoding').returns('gzip') do captures = capture_response_block do |block| resp = @connection.request( :headers => { 'Accept-Encoding' => 'gzip'}, :response_block => block ) end resp[:headers]['Content-Encoding-Sent'] end tests('unprocessed since :response_block was used').returns('gzip') do resp[:headers]['Content-Encoding'] end tests(':response_block passed unprocessed data').returns('hello world') do body = captures.map {|capture| capture[0] }.join Zlib::GzipReader.new(StringIO.new(body)).read end end tests('adds Accept-Encoding if needed') do tests('without a :response_block').returns('deflate, gzip') do resp = Excon.post( 'http://127.0.0.1:9292/echo/request', :body => 'hello world', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::Decompress] ) request = Marshal.load(resp.body) request[:headers]['Accept-Encoding'] end tests('with a :response_block').returns(nil) do captures = capture_response_block do |block| Excon.post( 'http://127.0.0.1:9292/echo/request', :body => 'hello world', :response_block => block, :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::Decompress] ) end request = Marshal.load(captures.map {|capture| capture[0] }.join) request[:headers]['Accept-Encoding'] end end end tests('empty content-encoding') do Excon.stub({ method: :get }, { body: 'body', headers: { 'Content-Encoding' => '' }, status: 200 }) tests('succeeds').returns('body') do connection = Excon.new('http://example.com', mock: true) resp = connection.request(method: :get) resp[:body] end Excon.stubs.clear end env_restore end excon-1.3.1/tests/middlewares/escape_path_tests.rb000066400000000000000000000024521510272305100223140ustar00rootroot00000000000000Shindo.tests('Excon Decompress Middleware') do env_init with_rackup('basic.ru') do tests('encoded uri passed to connection') do tests('GET /echo%20dirty').returns(200) do connection = Excon::Connection.new({ :host => '127.0.0.1', :hostname => '127.0.0.1', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::EscapePath], :nonblock => false, :port => 9292, :scheme => 'http', :ssl_verify_peer => false }) response = connection.request(:method => :get, :path => '/echo%20dirty') response[:status] end end tests('unencoded uri passed to connection') do tests('GET /echo dirty').returns(200) do connection = Excon::Connection.new({ :host => '127.0.0.1', :hostname => '127.0.0.1', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::EscapePath], :nonblock => false, :port => 9292, :scheme => 'http', :ssl_verify_peer => false }) response = connection.request(:method => :get, :path => '/echo dirty') response[:status] end end end end excon-1.3.1/tests/middlewares/idempotent_tests.rb000066400000000000000000000202341510272305100222060ustar00rootroot00000000000000Shindo.tests('Excon request idempotencey') do before do @connection = Excon.new('http://127.0.0.1:9292', :mock => true) end after do # flush any existing stubs after each test Excon.stubs.clear end tests("Non-idempotent call with an erroring socket").raises(Excon::Error::Socket) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 3 # First 3 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } @connection.request(:method => :get, :path => '/some-path') end tests("Idempotent request with socket erroring first 3 times").returns(200) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 3 # First 3 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path') response.status end tests("Idempotent request with socket erroring first 5 times").raises(Excon::Error::Socket) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 5 # First 5 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path') response.status end tests("Lowered retry limit with socket erroring first time").returns(200) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 1 # First call fails. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :retry_limit => 2) response.status end tests("Lowered retry limit with socket erroring first 3 times").raises(Excon::Error::Socket) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 3 # First 3 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :retry_limit => 2) response.status end tests("Raised retry limit with socket erroring first 5 times").returns(200) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 5 # First 5 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :retry_limit => 8) response.status end tests("Raised retry limit with socket erroring first 9 times").raises(Excon::Error::Socket) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 9 # First 9 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :retry_limit => 8) response.status end tests("Retry limit in constructor with socket erroring first 5 times").returns(200) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 5 # First 5 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :retry_limit => 6) response.status end tests("Retry limit and sleep in constructor with socket erroring first 2 times").returns(200) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 2 # First 5 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } # NOTE: A short :retry_interval will avoid slowing down the tests. response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :retry_limit => 3, :retry_interval => 0.1) response.status end tests("Retry limit and sleep in constructor with socket erroring first 2 times").raises(Excon::Error::Socket) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 2 # First 5 calls fail. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } # NOTE: A short :retry_interval will avoid slowing down the tests. response = @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :retry_limit => 2, :retry_interval => 0.1) response.status end tests("Idempotent request with custom error first 3 times").returns(200) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 3 # First 3 calls fail. raise "oops" else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :retry_errors => [RuntimeError], :path => '/some-path') response.status end tests("Idempotent request with custom error first 5 times").raises(RuntimeError) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 5 # First 5 calls fail. raise "oops" else {:body => params[:body], :headers => params[:headers], :status => 200} end } response = @connection.request(:method => :get, :idempotent => true, :retry_errors => [RuntimeError], :path => '/some-path') response.status end tests("Overriding default retry_errors").raises(Excon::Error::Socket) do Excon.stub({:method => :get}) { |params| raise Excon::Error::Socket.new(Exception.new "Mock Error") } response = @connection.request(:method => :get, :idempotent => true, :retry_errors => [RuntimeError], :path => '/some-path') response.status end class Block attr_reader :rewound def initialize @rewound = false end def call(_) end def rewind @rewound = true end end tests("request_block rewound").returns(true) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 1 # First call fails. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } request_block = Block.new @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :request_block => request_block, :retry_limit => 2, :retry_interval => 0.1) request_block.rewound end tests("response_block rewound").returns(true) do run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 1 # First call fails. raise Excon::Error::Socket.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } response_block = Block.new @connection.request(:method => :get, :idempotent => true, :path => '/some-path', :response_block => response_block, :retry_limit => 2, :retry_interval => 0.1) response_block.rewound end end excon-1.3.1/tests/middlewares/instrumentation_tests.rb000066400000000000000000000212241510272305100233010ustar00rootroot00000000000000require 'active_support' require 'securerandom' class SimpleInstrumentor class << self attr_accessor :events, :blocks def instrument(name, params = {}, &block) @events << name @blocks << name if block_given? yield if block_given? end def reset! @events = [] @blocks = [] end end end Shindo.tests('Excon instrumentation') do after do ActiveSupport::Notifications.unsubscribe("excon") ActiveSupport::Notifications.unsubscribe("excon.request") ActiveSupport::Notifications.unsubscribe("excon.response") ActiveSupport::Notifications.unsubscribe("excon.retry") ActiveSupport::Notifications.unsubscribe("excon.error") ActiveSupport::Notifications.unsubscribe("gug") ActiveSupport::Notifications.unsubscribe("gug.request") ActiveSupport::Notifications.unsubscribe("gug.response") ActiveSupport::Notifications.unsubscribe("gug.retry") ActiveSupport::Notifications.unsubscribe("gug.error") Delorean.back_to_the_present Excon.stubs.clear end before do SimpleInstrumentor.reset! end def subscribe(match) @events = [] ActiveSupport::Notifications.subscribe(match) do |*args| @events << ActiveSupport::Notifications::Event.new(*args) end end def make_request(params = {}) connection = Excon.new( 'http://127.0.0.1:9292', :instrumentor => ActiveSupport::Notifications, :mock => true ) connection.get(params) end REQUEST_DELAY_SECONDS = 30 def stub_success Excon.stub({:method => :get}) { |params| Delorean.jump REQUEST_DELAY_SECONDS {:body => params[:body], :headers => params[:headers], :status => 200} } end def stub_retries run_count = 0 Excon.stub({:method => :get}) { |params| run_count += 1 if run_count <= 3 # First 3 calls fail. raise Excon::Errors::SocketError.new(Exception.new "Mock Error") else {:body => params[:body], :headers => params[:headers], :status => 200} end } end def stub_failure Excon.stub({:method => :get}) { |params| raise Excon::Errors::SocketError.new(Exception.new "Mock Error") } end tests('basic notification').returns(['excon.request', 'excon.response']) do subscribe(/excon/) stub_success make_request @events.map(&:name) end tests('captures scheme, host, port, and path').returns([:host, :path, :port, :scheme]) do subscribe(/excon/) stub_success make_request [:host, :path, :port, :scheme].select {|k| @events.first.payload.has_key? k} end tests('params in request overwrite those in constructor').returns('/cheezburger') do subscribe(/excon/) stub_success make_request(:path => '/cheezburger') @events.first.payload[:path] end tests('notify on retry').returns(3) do subscribe(/excon/) stub_retries make_request(idempotent: true) @events.count{|e| e.name.include?('retry')} end tests('notify on error').returns(true) do subscribe(/excon/) stub_failure raises(Excon::Errors::SocketError) do make_request end @events.any?{|e| e.name.include?('error')} end tests('filtering').returns(['excon.request', 'excon.error']) do subscribe(/excon.request/) subscribe(/excon.error/) stub_failure raises(Excon::Errors::SocketError) do make_request(idempotent: true) end @events.map(&:name) end tests('more filtering').returns(['excon.retry', 'excon.retry', 'excon.retry']) do subscribe(/excon.retry/) stub_failure raises(Excon::Errors::SocketError) do make_request(idempotent: true) end @events.map(&:name) end tests('indicates duration').returns(true) do subscribe(/excon/) stub_success make_request (@events.first.duration/1000 - REQUEST_DELAY_SECONDS).abs < 1 end tests('standard instrumentor') do tests('success').returns( ['excon.request', 'excon.retry', 'excon.retry', 'excon.retry', 'excon.error']) do begin original_stderr = $stderr $stderr = captured_stderr = StringIO.new stub_failure connection = Excon.new( 'http://127.0.0.1:9292', :instrumentor => Excon::StandardInstrumentor, :mock => true ) raises(Excon::Errors::SocketError) do connection.get(:idempotent => true) end captured_stderr.string.split("\n").reject {|line| line =~ %r{^ }}.map {|event| event.split(' ').first} ensure $stderr = original_stderr end end tests('authorization header REDACT') do @auth_header = 'Basic dXNlcjpwYXNz' begin original_stderr = $stderr $stderr = @captured_stderr = StringIO.new stub_failure raises(Excon::Errors::SocketError) do @connection = Excon.new( 'http://user:pass@127.0.0.1:9292', :headers => { 'Authorization' => @auth_header }, :instrumentor => Excon::StandardInstrumentor, :mock => true ) @connection.get(:idempotent => true) end ensure $stderr = original_stderr end test('does not appear in response') do !@captured_stderr.string.include?(@auth_header) end test('does not mutate Authorization value') do @connection.data[:headers]['Authorization'] == @auth_header end end tests('password REDACT') do begin original_stderr = $stderr $stderr = @captured_stderr = StringIO.new stub_failure raises(Excon::Errors::SocketError) do @connection = Excon.new( 'http://user:pass@127.0.0.1:9292', :instrumentor => Excon::StandardInstrumentor, :mock => true ) @connection.get(:idempotent => true) end ensure $stderr = original_stderr end @password_param = '"pass"' test('does not appear in response') do !@captured_stderr.string.include?(@password_param) end test('does not mutate password value') do @connection.data[:password] == "pass" end end tests('proxy password REDACT') do begin original_stderr = $stderr $stderr = @captured_stderr = StringIO.new stub_failure raises(Excon::Errors::SocketError) do @connection = Excon.new( 'http://user:pass@127.0.0.1:9292', :instrumentor => Excon::StandardInstrumentor, :mock => true, :proxy => { :password => "pass" } ) @connection.get(:idempotent => true) end ensure $stderr = original_stderr end @proxy_password_param = '"pass"' test('does not appear in response') do !@captured_stderr.string.include?(@password_param) end test('does not mutate password value') do @connection.data[:proxy][:password] == "pass" end end end tests('use our own instrumentor').returns( ['excon.request', 'excon.retry', 'excon.retry', 'excon.retry', 'excon.error']) do stub_failure connection = Excon.new( 'http://127.0.0.1:9292', :instrumentor => SimpleInstrumentor, :mock => true ) raises(Excon::Errors::SocketError) do connection.get(:idempotent => true) end SimpleInstrumentor.events end tests('always passes the block').returns( ['excon.request', 'excon.response']) do stub_success connection = Excon.new( 'http://127.0.0.1:9292', :instrumentor => SimpleInstrumentor, :mock => true ) connection.get(:idempotent => true) SimpleInstrumentor.blocks end tests('does not generate events when not provided').returns(0) do subscribe(/excon/) stub_success connection = Excon.new('http://127.0.0.1:9292', :mock => true) connection.get(:idempotent => true) @events.count end tests('allows setting the prefix').returns( ['gug.request', 'gug.retry', 'gug.retry','gug.retry', 'gug.error']) do subscribe(/gug/) stub_failure raises(Excon::Errors::SocketError) do make_request(idempotent: true, instrumentor_name: 'gug') end @events.map(&:name) end tests('allows setting the prefix when not idempotent').returns( ['gug.request', 'gug.error']) do subscribe(/gug/) stub_failure raises(Excon::Errors::SocketError) do make_request(instrumentor_name: 'gug') end @events.map(&:name) end with_rackup('basic.ru') do tests('works unmocked').returns(['excon.request', 'excon.response']) do subscribe(/excon/) make_request(:mock => false) @events.map(&:name) end end end excon-1.3.1/tests/middlewares/mock_tests.rb000066400000000000000000000266711510272305100210020ustar00rootroot00000000000000Shindo.tests('Excon stubs') do env_init tests("missing stub").raises(Excon::Errors::StubNotFound) do connection = Excon.new('http://127.0.0.1:9292', :mock => true) connection.request(:method => :get, :path => '/content-length/100') end tests("stub({})").raises(ArgumentError) do Excon.stub({}) end tests("stub({}, {}) {}").raises(ArgumentError) do Excon.stub({}, {}) {} end tests("stub({:method => :get}, {:body => 'body', :status => 200})") do connection = nil response = nil tests('response.body').returns('body') do Excon.stub({:method => :get}, {:body => 'body', :status => 200}) connection = Excon.new('http://127.0.0.1:9292', :mock => true) response = connection.request(:method => :get, :path => '/content-length/100') response.body end tests('response.headers').returns({}) do response.headers end tests('response.status').returns(200) do response.status end tests('response_block yields body').returns('body') do body = '' response_block = lambda do |chunk, remaining_bytes, total_bytes| body << chunk end connection.request(:method => :get, :path => '/content-length/100', :response_block => response_block) body end tests('response.body empty with response_block').returns('') do response_block = lambda { |_, _, _| } connection.request(:method => :get, :path => '/content-length/100', :response_block => response_block).body end Excon.stubs.clear end tests("stub({ url: 'http://example.com' }, { body: 'body', status: 200 })") do Excon.stub({ url: 'http://example.com' }, { body: 'body', status: 200 }) tests('request without slash matches stub without trailing slash') do response = Excon.get('http://example.com', mock: true) response.status == 200 && response.body == 'body' end tests('request with trailing slash matches stub without trailing slash') do response = Excon.get('http://example.com/', mock: true) response.status == 200 && response.body == 'body' end end tests("stub({ url: 'http://example.com?foo=bar' }, { body: 'body', status: 200 })") do Excon.stub({ url: 'http://example.com?foo=bar' }, { body: 'body', status: 200 }) tests('query in url matches') do response = Excon.get('http://example.com?foo=bar', mock: true) response.status == 200 && response.body == 'body' end tests('hash query matches') do response = Excon.get('http://example.com', query: { 'foo' => 'bar' }, mock: true) response.status == 200 && response.body == 'body' end end tests("stub({ url: 'http://example.com?a=b+c' }, { body: 'body', status: 200 })") do Excon.stub({ url: 'http://example.com?a=b+c' }, { body: 'body', status: 200 }) tests('query in url matches') do response = Excon.get('http://example.com?a=b+c', mock: true) response.status == 200 && response.body == 'body' end tests('hash query matches') do response = Excon.get('http://example.com', query: { 'a' => 'b c' }, mock: true) response.status == 200 && response.body == 'body' end end tests("stub({:path => %r{/tests/(\S+)}}, {:body => $1, :status => 200})") do connection = nil response = nil tests('response.body').returns('test') do Excon.stub({:path => %r{/tests/(\S+)}}) do |params| { :body => params[:captures][:path].first, :status => 200 } end connection = Excon.new('http://127.0.0.1:9292', :mock => true) response = connection.request(:method => :get, :path => '/tests/test') response.body end tests('response.headers').returns({}) do response.headers end tests('response.status').returns(200) do response.status end Excon.stubs.clear end tests("stub({:body => 'body', :method => :get}) {|params| {:body => params[:body], :headers => params[:headers], :status => 200}}") do connection = nil response = nil tests('response.body').returns('body') do Excon.stub({:body => 'body', :method => :get}) {|params| {:body => params[:body], :headers => params[:headers], :status => 200}} connection = Excon.new('http://127.0.0.1:9292', :mock => true) response = connection.request(:body => 'body', :method => :get, :path => '/content-length/100') response.body end tests('response.headers').returns({ 'Accept' => '*/*', 'Accept-Encoding' => 'deflate, gzip', 'Host' => '127.0.0.1:9292', 'User-Agent' => "excon/#{Excon::VERSION}" }) do response.headers end tests('response.status').returns(200) do response.status end tests('response_block yields body').returns('body') do body = '' response_block = lambda do |chunk, remaining_bytes, total_bytes| body << chunk end connection.request(:body => 'body', :method => :get, :path => '/content-length/100', :response_block => response_block) body end tests('response.body empty with response_block').returns('') do response_block = lambda { |_, _, _| } connection.request(:body => 'body', :method => :get, :path => '/content-length/100', :response_block => response_block).body end Excon.stubs.clear end tests("stub({:body => File.open(...), :method => :get}, { :status => 200 })") do tests('response.status').returns(200) do file_path = File.join(File.dirname(__FILE__), '..', 'data', 'xs') Excon.stub( { :body => File.read(file_path), :method => :get }, { :status => 200 } ) connection = Excon.new('http://127.0.0.1:9292', :mock => true) response = connection.request(:body => File.open(file_path), :method => :get, :path => '/') response.status end Excon.stubs.clear end tests("invalid stub response").raises(Excon::Errors::InvalidStub) do Excon.stub({:body => 42, :method => :get}, {:status => 200}) connection = Excon.new('http://127.0.0.1:9292', :mock => true) connection.request(:body => 42, :method => :get, :path => '/').status Excon.stubs.clear end tests("mismatched stub").raises(Excon::Errors::StubNotFound) do Excon.stub({:method => :post}, {:body => 'body'}) Excon.get('http://127.0.0.1:9292/', :mock => true) Excon.stubs.clear end with_server('good_ipv4') do tests('allow mismatched stub').returns(200) do Excon.stub({:path => '/echo/request_count'}, {:body => 'body'}) Excon.get( 'http://127.0.0.1:9292/echo/request', :mock => true, :allow_unstubbed_requests => true ).status end end Excon.stubs.clear tests("stub({}, {:body => 'x' * (Excon::DEFAULT_CHUNK_SIZE + 1)})") do test("response_block yields body") do connection = Excon.new('http://127.0.0.1:9292', :mock => true) Excon.stub({}, {:body => 'x' * (Excon::DEFAULT_CHUNK_SIZE + 1)}) chunks = [] response_block = lambda do |chunk, remaining_bytes, total_bytes| chunks << chunk end connection.request(:method => :get, :path => '/content-length/100', :response_block => response_block) chunks == ['x' * Excon::DEFAULT_CHUNK_SIZE, 'x'] end tests("response.body empty with response_block").returns('') do connection = Excon.new('http://127.0.0.1:9292', :mock => true) Excon.stub({}, {:body => 'x' * (Excon::DEFAULT_CHUNK_SIZE + 1)}) response_block = lambda { |_, _, _| } connection.request(:method => :get, :path => '/content-length/100', :response_block => response_block).body end end Excon.stubs.clear tests("stub({:url => 'https://user:pass@foo.bar.com:9999/baz?quux=true'}, {:status => 200})") do test("get(:expects => 200)") do Excon.stub({:url => 'https://user:pass@foo.bar.com:9999/baz?quux=true'}, {:status => 200}) Excon.new("https://user:pass@foo.bar.com:9999/baz?quux=true", :mock => true).get(:expects => 200) true end end Excon.stubs.clear tests("stub({}, {:status => 404, :body => 'Not Found'}") do connection = nil tests("request(:expects => 200, :method => :get, :path => '/')").raises(Excon::Errors::NotFound) do connection = Excon.new('http://127.0.0.1:9292', :mock => true) Excon.stub({}, {:status => 404, :body => 'Not Found'}) connection.request(:expects => 200, :method => :get, :path => '/') end tests("Expects exception should contain response object").returns(Excon::Response) do begin connection.request(:expects => 200, :method => :get, :path => '/') rescue Excon::Errors::NotFound => e e.response.class end end test("request(:expects => 200, :method => :get, :path => '/') with block does not invoke the block since it raises an error") do block_called = false begin response_block = lambda do |_,_,_| block_called = true end connection.request(:expects => 200, :method => :get, :path => '/', :response_block => response_block) rescue Excon::Errors::NotFound end !block_called end Excon.stubs.clear end tests("stub_for({})") do tests("stub_for({})").returns([{}, {}]) do Excon.new('http://127.0.0.1:9292', :mock => true) Excon.stub({}, {}) Excon.stub_for({}) end Excon.stubs.clear end tests("unstub({})") do connection = nil tests("unstub({})").returns([{}, {}]) do connection = Excon.new('http://127.0.0.1:9292', :mock => true) Excon.stub({}, {}) Excon.unstub({}) end tests("request(:method => :get)").raises(Excon::Errors::StubNotFound) do connection.request(:method => :get) end Excon.stubs.clear end tests("unstub({path: %r{/path}})") do connection = nil tests("unstub({path: %r{/path}})").returns([{path: %r{/path}, captures: {headers: {}}}, {}]) do connection = Excon.new('http://127.0.0.1:9292', :mock => true) request_params, response_params = { path: %r{/path} }, {} Excon.stub(request_params, response_params) Excon.unstub(request_params) end Excon.stubs.clear end tests("unstub non-existent stub") do connection = nil tests("unstub({})").returns(nil) do connection = Excon.new('http://127.0.0.1:9292', :mock => true) Excon.unstub({}) end Excon.stubs.clear end tests("global stubs") do connection = Excon.new('http://127.0.0.1:9292', :mock => true) Excon.stub({}, {:body => '1'}) t = Thread.new do Excon.stub({}, {:body => '2'}) connection.request(:method => :get).body end tests("get on a different thread").returns('2') do t.join.value end tests("get on main thread").returns('2') do connection.request(:method => :get).body end Excon.stubs.clear end tests("thread-local stubs") do original_defaults = Excon.defaults Excon.defaults = Excon.defaults.merge(stubs: :local) connection = Excon.new('http://127.0.0.1:9292', :mock => true) Excon.stub({}, {:body => '1'}) t = Thread.new do Excon.stub({}, {:body => '2'}) connection.request(:method => :get).body end tests("get on a different thread").returns('2') do t.join.value end tests("get on main thread").returns('1') do connection.request(:method => :get).body end Excon.stubs.clear Excon.defaults = original_defaults end env_restore end excon-1.3.1/tests/middlewares/redirect_follower_tests.rb000066400000000000000000000062211510272305100235500ustar00rootroot00000000000000Shindo.tests('Excon redirector support') do env_init tests("request(:method => :get, :path => '/old').body").returns('new') do Excon.stub( { :path => '/old' }, { :headers => { 'Location' => 'http://127.0.0.1:9292/new' }, :body => 'old', :status => 301 } ) Excon.stub( { :path => '/new' }, { :body => 'new', :status => 200 } ) Excon.get( 'http://127.0.0.1:9292', :path => '/old', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::RedirectFollower], :mock => true ).body end Excon.stubs.clear env_restore end Shindo.tests('Excon redirector support with redirect loop') do env_init tests("request(:method => :get, :path => '/old')").raises(Excon::Errors::TooManyRedirects) do Excon.stub( { :path => '/old' }, { :headers => { 'Location' => 'http://127.0.0.1:9292/old' }, :body => 'redirecting', :status => 301 } ) Excon.get( 'http://127.0.0.1:9292', :path => '/old', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::RedirectFollower], :mock => true ) end Excon.stubs.clear env_restore end Shindo.tests('Excon redirect support for relative Location headers') do env_init tests("request(:method => :get, :path => '/old').body").returns('new') do Excon.stub( { :path => '/old' }, { :headers => { 'Location' => '/new' }, :body => 'old', :status => 301 } ) Excon.stub( { :path => '/new' }, { :body => 'new', :status => 200 } ) Excon.get( 'http://127.0.0.1:9292', :path => '/old', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::RedirectFollower], :mock => true ).body end Excon.stubs.clear env_restore end Shindo.tests('Excon redirect support for relative Location headers with dot segments') do env_init tests("request(:method => :get, :path => '/foo/baz/').body").returns('/foo/bar/') do Excon.stub( { :path => '/foo/baz/' }, { :headers => { 'Location' => '../bar/' }, :body => '/foo/baz/', :status => 301 } ) Excon.stub( { :path => '/foo/bar/' }, { :body => '/foo/bar/', :status => 200 } ) Excon.get( 'http://127.0.0.1:9292', :path => '/foo/baz/', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::RedirectFollower], :mock => true ).body end Excon.stubs.clear env_restore end Shindo.tests("Excon redirecting post request") do env_init with_rackup('redirecting.ru') do tests("request not have content-length and body").returns('ok') do Excon.post( 'http://127.0.0.1:9292', :path => '/first', :middlewares => Excon.defaults[:middlewares] + [Excon::Middleware::RedirectFollower], :body => "a=Some_content" ).body end end Excon.stubs.clear env_restore end excon-1.3.1/tests/pipeline_tests.rb000066400000000000000000000024421510272305100173440ustar00rootroot00000000000000Shindo.tests('Pipelined Requests') do with_server('good_ipv4') do tests('with default :persistent => true') do returns(%w{ 1 2 3 4 }, 'connection is persistent') do connection = Excon.new('http://127.0.0.1:9292', :persistent => true) ret = [] ret << connection.requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ]).map(&:body) ret << connection.requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ]).map(&:body) ret.flatten end end tests('with default :persistent => false') do returns(%w{ 1 2 1 2 }, 'connection is persistent per call to #requests') do connection = Excon.new('http://127.0.0.1:9292', :persistent => false) ret = [] ret << connection.requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ]).map(&:body) ret << connection.requests([ {:method => :get, :path => '/echo/request_count'}, {:method => :get, :path => '/echo/request_count'} ]).map(&:body) ret.flatten end end end end excon-1.3.1/tests/proxy_tests.rb000066400000000000000000000216001510272305100167150ustar00rootroot00000000000000Shindo.tests('Excon proxy support') do env_init tests('proxy configuration') do tests('no proxy') do tests('connection.data[:proxy]').returns(nil) do connection = Excon.new('http://foo.com') connection.data[:proxy] end end tests('empty proxy') do tests('connection.data[:proxy]').returns(nil) do connection = Excon.new('http://foo.com', :proxy => '') connection.data[:proxy] end end tests('with fully-specified proxy: https://myproxy.net:8080') do connection = nil tests('connection.data[:proxy][:host]').returns('myproxy.net') do connection = Excon.new('http://foo.com', :proxy => 'https://myproxy.net:8080') connection.data[:proxy][:host] end tests('connection.data[:proxy][:port]').returns(8080) do connection.data[:proxy][:port] end tests('connection.data[:proxy][:scheme]').returns('https') do connection.data[:proxy][:scheme] end end tests('with fully-specified Unix socket proxy: unix:///') do connection = nil tests('connection.data[:proxy][:host]').returns(nil) do connection = Excon.new('http://foo.com', :proxy => 'unix:///tmp/myproxy.sock') connection.data[:proxy][:host] end tests('connection.data[:proxy][:port]').returns(nil) do connection.data[:proxy][:port] end tests('connection.data[:proxy][:scheme]').returns('unix') do connection.data[:proxy][:scheme] end tests('connection.data[:proxy][:path]').returns('/tmp/myproxy.sock') do connection.data[:proxy][:path] end end def env_proxy_tests(env) env_init(env) tests('an http connection') do connection = nil tests('connection.data[:proxy][:host]').returns('myproxy') do connection = Excon.new('http://foo.com') connection.data[:proxy][:host] end tests('connection.data[:proxy][:port]').returns(8080) do connection.data[:proxy][:port] end tests('connection.data[:proxy][:scheme]').returns('http') do connection.data[:proxy][:scheme] end tests('with disable_proxy set') do connection = nil tests('connection.data[:proxy]').returns(nil) do connection = Excon.new('http://foo.com', :disable_proxy => true) connection.data[:proxy] end end end tests('an https connection') do connection = nil tests('connection.data[:proxy][:host]').returns('mysecureproxy') do connection = Excon.new('https://secret.com') connection.data[:proxy][:host] end tests('connection.data[:proxy][:port]').returns(8081) do connection.data[:proxy][:port] end tests('connection.data[:proxy][:scheme]').returns('http') do connection.data[:proxy][:scheme] end tests('with disable_proxy set') do connection = nil tests('connection.data[:proxy]').returns(nil) do connection = Excon.new('https://foo.com', :disable_proxy => true) connection.data[:proxy] end end end tests('http proxy from the environment overrides config') do connection = nil tests('connection.data[:proxy][:host]').returns('myproxy') do connection = Excon.new('http://foo.com', :proxy => 'http://hard.coded.proxy:6666') connection.data[:proxy][:host] end tests('connection.data[:proxy][:port]').returns(8080) do connection.data[:proxy][:port] end end tests('an http connection in no_proxy') do tests('connection.data[:proxy]').returns(nil) do connection = Excon.new('http://somesubdomain.noproxy') connection.data[:proxy] end end tests('an http connection not completely matching no_proxy') do tests('connection.data[:proxy][:host]').returns('myproxy') do connection = Excon.new('http://noproxy2') connection.data[:proxy][:host] end end tests('an http connection with subdomain in no_proxy') do tests('connection.data[:proxy]').returns(nil) do connection = Excon.new('http://a.subdomain.noproxy2') connection.data[:proxy] end end env_restore end tests('with complete proxy config from the environment') do env = { 'http_proxy' => 'http://myproxy:8080', 'https_proxy' => 'http://mysecureproxy:8081', 'no_proxy' => 'noproxy, subdomain.noproxy2, [fc00::1], 10.0.0.1' } tests('lowercase') { env_proxy_tests(env) } upperenv = {} env.each do |k, v| upperenv[k.upcase] = v end tests('uppercase') { env_proxy_tests(upperenv) } end tests('with only http_proxy config from the environment') do env_init({'http_proxy' => 'http://myproxy:8080' }) tests('an https connection') do connection = nil tests('connection.data[:proxy][:host]').returns('myproxy') do connection = Excon.new('https://secret.com') connection.data[:proxy][:host] end tests('connection.data[:proxy][:port]').returns(8080) do connection.data[:proxy][:port] end tests('connection.data[:proxy][:scheme]').returns('http') do connection.data[:proxy][:scheme] end end env_restore end tests('with a unix socket proxy config from the environment') do env_init({ 'http_proxy' => 'unix:///tmp/myproxy.sock', }) tests('an https connection') do connection = nil tests('connection.data[:proxy][:host]').returns(nil) do connection = Excon.new('https://secret.com') connection.data[:proxy][:host] end tests('connection.data[:proxy][:port]').returns(nil) do connection.data[:proxy][:port] end tests('connection.data[:proxy][:scheme]').returns('unix') do connection.data[:proxy][:scheme] end tests('connection.data[:proxy][:path]').returns('/tmp/myproxy.sock') do connection.data[:proxy][:path] end end env_restore end end with_rackup('proxy.ru') do tests('http proxying: http://foo.com:8080') do response = nil tests('response.status').returns(200) do connection = Excon.new('http://foo.com:8080', :proxy => 'http://127.0.0.1:9292') response = connection.request(:method => :get, :path => '/bar', :query => {:alpha => 'kappa'}) response.status end # must be absolute form for proxy requests tests('sent Request URI').returns('http://foo.com:8080/bar?alpha=kappa') do response.headers['Sent-Request-Uri'] end tests('sent Sent-Host header').returns('foo.com:8080') do response.headers['Sent-Host'] end tests('sent Proxy-Connection header').returns('Keep-Alive') do response.headers['Sent-Proxy-Connection'] end tests('response.body (proxied content)').returns('proxied content') do response.body end end tests('http proxying: http://user:pass@foo.com:8080') do response = nil tests('response.status').returns(200) do connection = Excon.new('http://foo.com:8080', :proxy => 'http://user:pass@127.0.0.1:9292') response = connection.request(:method => :get, :path => '/bar', :query => {:alpha => 'kappa'}) response.status end # must be absolute form for proxy requests tests('sent Request URI').returns('http://foo.com:8080/bar?alpha=kappa') do response.headers['Sent-Request-Uri'] end tests('sent Host header').returns('foo.com:8080') do response.headers['Sent-Host'] end tests('sent Proxy-Connection header').returns('Keep-Alive') do response.headers['Sent-Proxy-Connection'] end tests('response.body (proxied content)').returns('proxied content') do response.body end end end with_unicorn('proxy.ru', 'unix:///tmp/myproxy.sock') do pending if RUBY_PLATFORM == 'java' # need to find suitable server for jruby tests('http proxying over unix socket: http://foo.com:8080') do response = nil tests('response.status').returns(200) do connection = Excon.new('http://foo.com:8080', :proxy => 'unix:///tmp/myproxy.sock') response = connection.request(:method => :get, :path => '/bar', :query => {:alpha => 'kappa'}) response.status end tests('sent Sent-Host header').returns('foo.com:8080') do response.headers['Sent-Host'] end tests('sent Proxy-Connection header').returns('Keep-Alive') do response.headers['Sent-Proxy-Connection'] end tests('response.body (proxied content)').returns('proxied content') do response.body end end end env_restore end excon-1.3.1/tests/query_string_tests.rb000066400000000000000000000060631510272305100202750ustar00rootroot00000000000000Shindo.tests('Excon query string variants') do with_rackup('query_string.ru') do connection = Excon.new('http://127.0.0.1:9292') tests(":query => {:foo => 'bar'}") do response = connection.request(:method => :get, :path => '/query', :query => {:foo => 'bar'}) query_string = response.body[7..-1] # query string sent tests("query string sent").returns('foo=bar') do query_string end end tests(":query => {:foo => nil}") do response = connection.request(:method => :get, :path => '/query', :query => {:foo => nil}) query_string = response.body[7..-1] # query string sent tests("query string sent").returns('foo') do query_string end end tests(":query => {:foo => 'bar', :me => nil}") do response = connection.request(:method => :get, :path => '/query', :query => {:foo => 'bar', :me => nil}) query_string = response.body[7..-1] # query string sent test("query string sent includes 'foo=bar'") do query_string.split('&').include?('foo=bar') end test("query string sent includes 'me'") do query_string.split('&').include?('me') end end tests(":query => {:foo => 'bar', :me => 'too'}") do response = connection.request(:method => :get, :path => '/query', :query => {:foo => 'bar', :me => 'too'}) query_string = response.body[7..-1] # query string sent test("query string sent includes 'foo=bar'") do query_string.split('&').include?('foo=bar') end test("query string sent includes 'me=too'") do query_string.split('&').include?('me=too') end end # You can use an atom or a string for the hash keys, what is shown here is emulating # the Rails and PHP style of serializing a query array with a square brackets suffix. tests(":query => {'foo[]' => ['bar', 'baz'], :me => 'too'}") do response = connection.request(:method => :get, :path => '/query', :query => {'foo[]' => ['bar', 'baz'], :me => 'too'}) query_string = response.body[7..-1] # query string sent test("query string sent includes 'foo%5B%5D=bar'") do query_string.split('&').include?('foo%5B%5D=bar') end test("query string sent includes 'foo%5B%5D=baz'") do query_string.split('&').include?('foo%5B%5D=baz') end test("query string sent includes 'me=too'") do query_string.split('&').include?('me=too') end end tests(":query => {'foo%=#' => 'bar%=#'}") do response = connection.request(:method => :get, :path => '/query', :query => {'foo%=#' => 'bar%=#'}) query_string = response.body[7..-1] # query string sent tests("query string sent").returns('foo%25%3D%23=bar%25%3D%23') do query_string end end tests(":query => {'foo%=#' => nil}") do response = connection.request(:method => :get, :path => '/query', :query => {'foo%=#' => nil}) query_string = response.body[7..-1] # query string sent tests("query string sent").returns('foo%25%3D%23') do query_string end end end end excon-1.3.1/tests/rackups/000077500000000000000000000000001510272305100154365ustar00rootroot00000000000000excon-1.3.1/tests/rackups/basic.rb000066400000000000000000000013641510272305100170500ustar00rootroot00000000000000# frozen_string_literal: true require 'sinatra' require 'json' # Basic server defines requests/responses for testing class Basic < Sinatra::Base set :environment, :production enable :dump_errors get('/') do 'GET /' end get('/content-length/:value') do |value| headers('Custom' => 'Foo: bar') 'x' * value.to_i end get('/headers') do content_type :json request.env.select { |key, _| key.start_with? 'HTTP_' }.to_json end post('/body-sink') do request.body.read.size.to_s end post('/echo') do echo end put('/echo') do echo end get('/echo dirty') do echo end get('/foo') do 'foo' end get('/bar') do 'bar' end private def echo request.body.read end end excon-1.3.1/tests/rackups/basic.ru000066400000000000000000000000761510272305100170720ustar00rootroot00000000000000require File.join(File.dirname(__FILE__), 'basic') run Basic excon-1.3.1/tests/rackups/basic_auth.ru000066400000000000000000000006431510272305100201130ustar00rootroot00000000000000require File.join(File.dirname(__FILE__), 'basic') class BasicAuth < Basic before do auth ||= Rack::Auth::Basic::Request.new(request.env) user, pass = auth.provided? && auth.basic? && auth.credentials unless [user, pass] == ["test_user", "test_password"] response['WWW-Authenticate'] = %(Basic realm="Restricted Area") throw(:halt, [401, "Not authorized\n"]) end end end run BasicAuth excon-1.3.1/tests/rackups/deflater.ru000066400000000000000000000001211510272305100175660ustar00rootroot00000000000000require File.join(File.dirname(__FILE__), 'basic') use Rack::Deflater run Basic excon-1.3.1/tests/rackups/proxy.ru000066400000000000000000000005521510272305100171710ustar00rootroot00000000000000require 'sinatra' class App < Sinatra::Base set :environment, :production enable :dump_errors get('*') do headers( "Sent-Request-Uri" => request.env['REQUEST_URI'].to_s, "Sent-Host" => request.env['HTTP_HOST'].to_s, "Sent-Proxy-Connection" => request.env['HTTP_PROXY_CONNECTION'].to_s ) 'proxied content' end end run App excon-1.3.1/tests/rackups/query_string.ru000066400000000000000000000002601510272305100205370ustar00rootroot00000000000000require 'sinatra' class App < Sinatra::Base set :environment, :production enable :dump_errors get('/query') do "query: " << request.query_string end end run App excon-1.3.1/tests/rackups/redirecting.ru000066400000000000000000000005571510272305100203140ustar00rootroot00000000000000require 'sinatra' require 'json' class App < Sinatra::Base set :environment, :production enable :dump_errors post('/first') do redirect "/second" end get('/second') do post_body = request.body.read if post_body == "" && request.env["CONTENT_LENGTH"].nil? "ok" else JSON.pretty_generate(request.env) end end end run App excon-1.3.1/tests/rackups/redirecting_with_cookie.ru000066400000000000000000000014241510272305100226720ustar00rootroot00000000000000require 'sinatra' require 'sinatra/cookies' require 'json' class App < Sinatra::Base helpers Sinatra::Cookies set :environment, :production enable :dump_errors get('/sets_cookie') do cookies[:chocolatechip] = "chunky" redirect "/requires_cookie" end get('/requires_cookie') do cookie = cookies[:chocolatechip] unless cookie.nil? || cookie != "chunky" "ok" else JSON.pretty_generate(headers) end end get('/sets_multi_cookie') do cookies[:chocolatechip] = "chunky" cookies[:thinmints] = "minty" redirect "/requires_cookie" end get('/requires_cookie') do if cookies[:chocolatechip] == "chunky" && cookies[:thinmints] == "minty" "ok" else JSON.pretty_generate(headers) end end end run App excon-1.3.1/tests/rackups/request_headers.ru000066400000000000000000000003401510272305100211660ustar00rootroot00000000000000require 'sinatra' class App < Sinatra::Base set :environment, :production enable :dump_errors post '/' do h = "" env.each { |k,v| h << "#{$1.downcase}: #{v}\n" if k =~ /http_(.*)/i } h end end run App excon-1.3.1/tests/rackups/request_methods.ru000066400000000000000000000003221510272305100212160ustar00rootroot00000000000000require 'sinatra' class App < Sinatra::Base set :environment, :production enable :dump_errors get '/' do 'GET' end post '/' do 'POST' end delete '/' do 'DELETE' end end run App excon-1.3.1/tests/rackups/response_header.ru000066400000000000000000000004531510272305100211560ustar00rootroot00000000000000require 'sinatra' class App < Sinatra::Base set :environment, :production enable :dump_errors get('/foo') do headers( "MixedCase-Header" => 'MixedCase', "UPPERCASE-HEADER" => 'UPPERCASE', "lowercase-header" => 'lowercase' ) 'primary content' end end run App excon-1.3.1/tests/rackups/ssl.ru000066400000000000000000000012101510272305100166010ustar00rootroot00000000000000require 'openssl' require 'rackup/handler/webrick' require 'webrick' require 'webrick/https' require File.join(File.dirname(__FILE__), 'basic') key_file = File.join(File.dirname(__FILE__), '..', 'data', '127.0.0.1.cert.key') cert_file = File.join(File.dirname(__FILE__), '..', 'data', '127.0.0.1.cert.crt') Rackup::Handler::WEBrick.run(Basic, :Port => 9443, :SSLEnable => true, :SSLPrivateKey => OpenSSL::PKey::RSA.new(File.open(key_file).read), :SSLCertificate => OpenSSL::X509::Certificate.new(File.open(cert_file).read), :SSLCACertificateFile => cert_file, :SSLVerifyClient => OpenSSL::SSL::VERIFY_NONE, ) excon-1.3.1/tests/rackups/ssl_mismatched_cn.ru000066400000000000000000000011771510272305100214730ustar00rootroot00000000000000require 'openssl' require 'rackup/handler/webrick' require 'webrick' require 'webrick/https' require File.join(File.dirname(__FILE__), 'basic') key_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon.cert.key') cert_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon.cert.crt') Rackup::Handler::WEBrick.run(Basic, :Port => 9443, :SSLEnable => true, :SSLPrivateKey => OpenSSL::PKey::RSA.new(File.open(key_file).read), :SSLCertificate => OpenSSL::X509::Certificate.new(File.open(cert_file).read), :SSLCACertificateFile => cert_file, :SSLVerifyClient => OpenSSL::SSL::VERIFY_NONE, ) excon-1.3.1/tests/rackups/ssl_sni_verify_host.ru000066400000000000000000000017701510272305100221060ustar00rootroot00000000000000require 'openssl' require 'rackup/handler/webrick' require 'webrick' require 'webrick/https' require File.join(File.dirname(__FILE__), 'basic') key_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon.cert.key') cert_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon.cert.crt') # Responds with generated certificate by default # Responds with `excon.cert` for when SNI is `excon` Rackup::Handler::WEBrick.run(Basic, :Port => 9443, :SSLEnable => true, :SSLCertName => [%w{CN example.com}], ) do |server| excon_vhost = ::WEBrick::HTTPServer.new( :SSLEnable => true, :Port => 9443, :ServerName => "excon", :SSLPrivateKey => OpenSSL::PKey::RSA.new(File.open(key_file).read), :SSLCertificate => OpenSSL::X509::Certificate.new(File.open(cert_file).read), :SSLCACertificateFile => cert_file, :SSLVerifyClient => OpenSSL::SSL::VERIFY_NONE, :DoNotListen => true ) server.virtual_host excon_vhost end excon-1.3.1/tests/rackups/ssl_verify_peer.ru000066400000000000000000000013441510272305100212100ustar00rootroot00000000000000require 'openssl' require 'rackup/handler/webrick' require 'webrick' require 'webrick/https' require File.join(File.dirname(__FILE__), 'basic') key_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon.cert.key') cert_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon.cert.crt') Rackup::Handler::WEBrick.run(Basic, :Port => 8443, :SSLCertName => [["CN", WEBrick::Utils::getservername]], :SSLEnable => true, :SSLPrivateKey => OpenSSL::PKey::RSA.new(File.open(key_file).read), :SSLCertificate => OpenSSL::X509::Certificate.new(File.open(cert_file).read), :SSLCACertificateFile => cert_file, :SSLVerifyClient => OpenSSL::SSL::VERIFY_PEER|OpenSSL::SSL::VERIFY_FAIL_IF_NO_PEER_CERT, ) excon-1.3.1/tests/rackups/ssl_verify_peer_with_chain.ru000066400000000000000000000015021510272305100234010ustar00rootroot00000000000000require 'openssl' require 'rackup/handler/webrick' require 'webrick' require 'webrick/https' require File.join(File.dirname(__FILE__), 'basic') key_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon_client.cert.key') cert_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon_client.cert.crt') cacert_file = File.join(File.dirname(__FILE__), '..', 'data', 'excon.cert.crt') Rackup::Handler::WEBrick.run(Basic, :Port => 8443, :SSLCertName => [["CN", WEBrick::Utils::getservername]], :SSLEnable => true, :SSLPrivateKey => OpenSSL::PKey::RSA.new(File.open(key_file).read), :SSLCertificate => OpenSSL::X509::Certificate.new(File.open(cert_file).read), :SSLCACertificateFile => cacert_file, :SSLVerifyClient => OpenSSL::SSL::VERIFY_PEER|OpenSSL::SSL::VERIFY_FAIL_IF_NO_PEER_CERT ) excon-1.3.1/tests/rackups/streaming.ru000066400000000000000000000012131510272305100177740ustar00rootroot00000000000000use Rack::ContentType, "text/plain" app = lambda do |env| # streamed pieces to be sent pieces = %w{Hello streamy world} response_headers = {} # set a fixed content length in the header if requested if env['REQUEST_PATH'] == '/streamed/fixed_length' response_headers['Content-Length'] = pieces.join.length.to_s end response_headers["rack.hijack"] = lambda do |io| # Write directly to IO of the response begin # return the response in pieces pieces.each do |x| sleep(0.1) io.write(x) io.flush end ensure io.close end end [200, response_headers, nil] end run app excon-1.3.1/tests/rackups/thread_safety.ru000066400000000000000000000003671510272305100206360ustar00rootroot00000000000000require 'sinatra' class App < Sinatra::Base set :environment, :production enable :dump_errors get('/id/:id/wait/:wait') do |id, wait| sleep(wait.to_i) id.to_s end end # get everything autoloaded, mainly for rbx App.new run App excon-1.3.1/tests/rackups/timeout.ru000066400000000000000000000003061510272305100174730ustar00rootroot00000000000000require 'sinatra' class App < Sinatra::Base set :environment, :production enable :dump_errors get('/no-timeout') do '' end get('/timeout') do sleep(2) '' end end run App excon-1.3.1/tests/request_headers_tests.rb000066400000000000000000000011421510272305100207160ustar00rootroot00000000000000Shindo.tests('Excon request methods') do with_rackup('request_headers.ru') do tests 'empty headers sent' do test('Excon.post') do headers = { :one => 1, :two => nil, :three => 3, } r = Excon.post('http://localhost:9292', :headers => headers).body r.include?('two:') end end tests('header order') do tests('host is the first sent header by default').returns('host: localhost:9292') do response = Excon.post('http://localhost:9292/') response.body.lines.first.chomp end end end end excon-1.3.1/tests/request_method_tests.rb000066400000000000000000000017401510272305100205670ustar00rootroot00000000000000Shindo.tests('Excon request methods') do with_rackup('request_methods.ru') do tests 'one-offs' do tests('Excon.get').returns('GET') do Excon.get('http://localhost:9292').body end tests('Excon.post').returns('POST') do Excon.post('http://localhost:9292').body end tests('Excon.delete').returns('DELETE') do Excon.delete('http://localhost:9292').body end end tests 'with a connection object' do connection = nil tests('connection.get').returns('GET') do connection = Excon.new('http://localhost:9292') connection.get.body end tests('connection.post').returns('POST') do connection.post.body end tests('connection.delete').returns('DELETE') do connection.delete.body end tests('not modifies path argument').returns('path') do path = 'path' connection.get(:path => path) path end end end end excon-1.3.1/tests/request_tests.rb000066400000000000000000000045731510272305100172360ustar00rootroot00000000000000Shindo.tests('Request Tests') do tests('persistent connections') do ip_ports = [['127.0.0.1:9292', 'good_ipv4']] ip_ports << ['[::1]:9293', 'good_ipv6'] unless RUBY_PLATFORM == 'java' ip_ports.each do |ip_port, server| with_server(server) do tests("with default :persistent => true, #{ip_port}") do connection = nil returns(['1', '2'], 'uses a persistent connection') do connection = Excon.new("http://#{ip_port}", :persistent => true) Array.new(2) do connection.request(:method => :get, :path => '/echo/request_count').body end end returns(['3', '1', '2'], ':persistent => false resets connection') do ret = [] ret << connection.request(:method => :get, :path => '/echo/request_count', :persistent => false).body ret << connection.request(:method => :get, :path => '/echo/request_count').body ret << connection.request(:method => :get, :path => '/echo/request_count').body end end tests("with default :persistent => false, #{ip_port}") do connection = nil returns(['1', '1'], 'does not use a persistent connection') do connection = Excon.new("http://#{ip_port}", :persistent => false) Array.new(2) do connection.request(:method => :get, :path => '/echo/request_count').body end end returns(['1', '2', '3', '1'], ':persistent => true enables persistence') do ret = [] ret << connection.request(:method => :get, :path => '/echo/request_count', :persistent => true).body ret << connection.request(:method => :get, :path => '/echo/request_count', :persistent => true).body ret << connection.request(:method => :get, :path => '/echo/request_count').body ret << connection.request(:method => :get, :path => '/echo/request_count').body end end end end end end excon-1.3.1/tests/response_tests.rb000066400000000000000000000143621510272305100174010ustar00rootroot00000000000000Shindo.tests('Excon Response Parsing') do env_init with_server('good_ipv4') do tests('responses with chunked transfer-encoding') do tests('simple response').returns('hello world') do Excon.get('http://127.0.0.1:9292/chunked/simple').body end tests('with :response_block') do tests('simple response'). returns([['hello ', nil, nil], ['world', nil, nil]]) do capture_response_block do |block| Excon.get('http://127.0.0.1:9292/chunked/simple', :response_block => block, :chunk_size => 5) # not used end end tests('simple response has empty body').returns('') do response_block = lambda { |_, _, _| } Excon.get('http://127.0.0.1:9292/chunked/simple', :response_block => response_block).body end tests('with expected response status'). returns([['hello ', nil, nil], ['world', nil, nil]]) do capture_response_block do |block| Excon.get('http://127.0.0.1:9292/chunked/simple', :response_block => block, :expects => 200) end end tests('with unexpected response status').returns('hello world') do begin Excon.get('http://127.0.0.1:9292/chunked/simple', :response_block => Proc.new { raise 'test failed' }, :expects => 500) rescue Excon::Errors::HTTPStatusError => err err.response[:body] end end end tests('merges trailers into headers'). returns('one, two, three, four, five, six') do Excon.get('http://127.0.0.1:9292/chunked/trailers').headers['Test-Header'] end tests("removes 'chunked' from Transfer-Encoding").returns(nil) do Excon.get('http://127.0.0.1:9292/chunked/simple').headers['Transfer-Encoding'] end end tests('responses with content-length') do tests('simple response').returns('hello world') do Excon.get('http://127.0.0.1:9292/content-length/simple').body end tests('with :response_block') do tests('simple response'). returns([['hello', 6, 11], [' worl', 1, 11], ['d', 0, 11]]) do capture_response_block do |block| Excon.get('http://127.0.0.1:9292/content-length/simple', :response_block => block, :chunk_size => 5) end end tests('simple response has empty body').returns('') do response_block = lambda { |_, _, _| } Excon.get('http://127.0.0.1:9292/content-length/simple', :response_block => response_block).body end tests('with expected response status'). returns([['hello', 6, 11], [' worl', 1, 11], ['d', 0, 11]]) do capture_response_block do |block| Excon.get('http://127.0.0.1:9292/content-length/simple', :response_block => block, :chunk_size => 5, :expects => 200) end end tests('with unexpected response status').returns('hello world') do begin Excon.get('http://127.0.0.1:9292/content-length/simple', :response_block => Proc.new { raise 'test failed' }, :chunk_size => 5, :expects => 500) rescue Excon::Errors::HTTPStatusError => err err.response[:body] end end end end tests('responses with unknown length') do tests('simple response').returns('hello world') do Excon.get('http://127.0.0.1:9292/unknown/simple').body end tests('with :response_block') do tests('simple response'). returns([['hello', nil, nil], [' worl', nil, nil], ['d', nil, nil]]) do capture_response_block do |block| Excon.get('http://127.0.0.1:9292/unknown/simple', :response_block => block, :chunk_size => 5) end end tests('simple response has empty body').returns('') do response_block = lambda { |_, _, _| } Excon.get('http://127.0.0.1:9292/unknown/simple', :response_block => response_block).body end tests('with expected response status'). returns([['hello', nil, nil], [' worl', nil, nil], ['d', nil, nil]]) do capture_response_block do |block| Excon.get('http://127.0.0.1:9292/unknown/simple', :response_block => block, :chunk_size => 5, :expects => 200) end end tests('with unexpected response status').returns('hello world') do begin Excon.get('http://127.0.0.1:9292/unknown/simple', :response_block => Proc.new { raise 'test failed' }, :chunk_size => 5, :expects => 500) rescue Excon::Errors::HTTPStatusError => err err.response[:body] end end end end tests('cookies') do tests('parses cookies into array').returns(['one, two', 'three, four']) do resp = Excon.get('http://127.0.0.1:9292/unknown/cookies') resp[:cookies] end end tests('header continuation') do tests('proper continuation').returns('one, two, three, four, five, six') do resp = Excon.get('http://127.0.0.1:9292/unknown/header_continuation') resp.headers['Test-Header'] end tests('malformed header').raises(Excon::Errors::SocketError) do Excon.get('http://127.0.0.1:9292/bad/malformed_header') end tests('malformed header continuation').raises(Excon::Errors::SocketError) do Excon.get('http://127.0.0.1:9292/bad/malformed_header_continuation') end end tests('status line parsing') do tests('proper status code').returns(404) do resp = Excon.get('http://127.0.0.1:9292/not-found') resp.status end tests('proper reason phrase').returns("Not Found") do resp = Excon.get('http://127.0.0.1:9292/not-found') resp.reason_phrase end end end env_restore end excon-1.3.1/tests/servers/000077500000000000000000000000001510272305100154575ustar00rootroot00000000000000excon-1.3.1/tests/servers/bad.rb000077500000000000000000000010031510272305100165270ustar00rootroot00000000000000#!/usr/bin/env ruby require "eventmachine" module BadServer def receive_data(data) case data when %r{^GET /echo\s} send_data "HTTP/1.1 200 OK\r\n" send_data "\r\n" send_data data close_connection(true) when %r{^GET /eof/no_content_length_and_no_chunking\s} send_data "HTTP/1.1 200 OK\r\n" send_data "\r\n" send_data "hello" close_connection(true) end end end EM.run do EM.start_server("127.0.0.1", 9292, BadServer) $stderr.puts "ready" end excon-1.3.1/tests/servers/eof.rb000077500000000000000000000004031510272305100165550ustar00rootroot00000000000000#!/usr/bin/env ruby require "eventmachine" module EOFServer def receive_data(data) case data when %r{^GET /eof\s} close_connection(true) end end end EM.run do EM.start_server("127.0.0.1", 9292, EOFServer) $stderr.puts "ready" end excon-1.3.1/tests/servers/error.rb000077500000000000000000000005771510272305100171510ustar00rootroot00000000000000#!/usr/bin/env ruby require "eventmachine" module ErrorServer def receive_data(data) case data when %r{^GET /error/not_found\s} send_data "HTTP/1.1 404 Not Found\r\n" send_data "\r\n" send_data "server says not found" close_connection(true) end end end EM.run do EM.start_server("127.0.0.1", 9292, ErrorServer) $stderr.puts "ready" end excon-1.3.1/tests/servers/good.rb000077500000000000000000000244541510272305100167500ustar00rootroot00000000000000require 'eventmachine' require 'stringio' require 'uri' require 'zlib' module GoodServer # This method will be called with each request received. # # request = { # :method => method, # :uri => URI.parse(uri), # :headers => {}, # :body => '' # } # # Each connection to this server is persistent unless the client sends # "Connection: close" in the request. If a response requires the connection # to be closed, use `start_response(:persistent => false)`. def send_response(request) type, path = request[:uri].path.split('/', 3)[1, 2] case type when 'echo' case path when 'request' data = Marshal.dump(request) start_response send_data "Content-Length: #{ data.size }\r\n" send_data "\r\n" send_data data when 'request_count' (@request_count ||= '0').next! start_response send_data "Content-Length: #{ @request_count.size }\r\n" send_data "Connection: Keep-Alive\r\n" send_data "\r\n" send_data @request_count when /(content|transfer)-encoded\/?(.*)/ if (encoding_type = $1) == 'content' accept_header = 'Accept-Encoding' encoding_header = 'Content-Encoding' else accept_header = 'TE' encoding_header = 'Transfer-Encoding' end chunked = $2 == 'chunked' encodings = parse_encodings(request[:headers][accept_header]) while encoding = encodings.pop break if ['gzip', 'deflate', 'deflate-raw'].include?(encoding) end case encoding when 'gzip' body = request[:body] if(body.nil? || body.empty?) body = '' else io = (Zlib::GzipWriter.new(StringIO.new) << request[:body]).finish io.rewind body = io.read end when 'deflate' deflator = Zlib::Deflate.new(nil) body = deflator.deflate(request[:body], Zlib::FINISH) deflator.close when 'deflate-raw' # drops the zlib header deflator = Zlib::Deflate.new(nil, -Zlib::MAX_WBITS) body = deflator.deflate(request[:body], Zlib::FINISH) deflator.close encoding = 'deflate' # treat as deflate other than dropping header else body = request[:body] end # simulate server pre/post content encoding encodings = [ request[:headers]["#{ encoding_header }-Pre"], encoding, request[:headers]["#{ encoding_header }-Post"], ] if chunked && encoding_type == 'transfer' encodings << 'chunked' end encodings = encodings.compact.join(', ') start_response # let the test know what the server sent send_data "#{ encoding_header }-Sent: #{ encodings }\r\n" send_data "#{ encoding_header }: #{ encodings }\r\n" unless encodings.empty? if chunked if encoding_type == 'content' send_data "Transfer-Encoding: chunked\r\n" end send_data "\r\n" send_data chunks_for(body) send_data "\r\n" else send_data "Content-Length: #{ body.size }\r\n" send_data "\r\n" send_data body end end when 'chunked' case path when 'simple' start_response send_data "Transfer-Encoding: chunked\r\n" send_data "\r\n" # chunk-extension is currently ignored. # this works because "6; chunk-extension".to_i => "6" send_data "6; chunk-extension\r\n" send_data "hello \r\n" send_data "5; chunk-extension\r\n" send_data "world\r\n" send_data "0; chunk-extension\r\n" # last-chunk send_data "\r\n" # merged trailers also support continuations when 'trailers' start_response send_data "Transfer-Encoding: chunked\r\n" send_data "Test-Header: one, two\r\n" send_data "\r\n" send_data chunks_for('hello world') send_data "Test-Header: three, four,\r\n" send_data "\tfive, six\r\n" send_data "\r\n" end when 'content-length' case path when 'simple' start_response send_data "Content-Length: 11\r\n" send_data "\r\n" send_data "hello world" end when 'unknown' case path when 'cookies' start_response(:persistent => false) send_data "Set-Cookie: one, two\r\n" send_data "Set-Cookie: three, four\r\n" send_data "\r\n" send_data "hello world" when 'simple' start_response(:persistent => false) send_data "\r\n" send_data "hello world" when 'header_continuation' start_response(:persistent => false) send_data "Test-Header: one, two\r\n" send_data "Test-Header: three, four,\r\n" send_data " five, six\r\n" send_data "\r\n" send_data "hello world" end when 'bad' # Excon will close these connections due to the errors. case path when 'malformed_header' start_response send_data "Bad-Header\r\n" # no ':' send_data "\r\n" send_data "hello world" when 'malformed_header_continuation' send_data "HTTP/1.1 200 OK\r\n" send_data " Bad-Header: one, two\r\n" # no previous header send_data "\r\n" send_data "hello world" end when 'not-found' start_response(:status => "404 Not Found") send_data "Content-Length: 11\r\n" send_data "\r\n" send_data "hello world" end end # Sends response status-line, plus headers common to all responses. def start_response(opts = {}) opts = { :status => '200 OK', :persistent => @persistent # true unless client sent Connection: close }.merge!(opts) @persistent = opts[:persistent] send_data "HTTP/1.1 #{ opts[:status] }\r\n" send_data "Connection: close\r\n" unless @persistent end def post_init @buffer = StringIO.new @buffer.set_encoding('BINARY') if @buffer.respond_to?(:set_encoding) end # Receives a String of +data+ sent from the client. # +data+ may only be a portion of what the client sent. # The data is buffered, then processed and removed from the buffer # as data becomes available until the @request is complete. def receive_data(data) @buffer.seek(0, IO::SEEK_END) @buffer.write(data) parse_headers unless @request parse_body if @request if @request_complete send_response(@request) if @persistent @request = nil @request_complete = false # process remaining buffer for next request receive_data('') unless @buffer.eof? else close_connection(true) end end end # Removes the processed portion of the buffer # by replacing the buffer with it's contents from the current pos. def sync_buffer @buffer.string = @buffer.read end def parse_headers @buffer.rewind # wait until buffer contains the end of the headers if /\sHTTP\/\d+\.\d+\r\n.*?\r\n\r\n/m.match?(@buffer.read) @buffer.rewind # For persistent connections, the buffer could start with the # \r\n chunked-message terminator from the previous request. # This will discard anything up to the request-line. until m = /^(\w+)\s(.*)\sHTTP\/\d+\.\d+$/.match(@buffer.readline.chop!); end method, uri = m[1, 2] headers = {} last_key = nil until (line = @buffer.readline.chop!).empty? if !line.lstrip!.nil? headers[last_key] << ' ' << line.rstrip else key, value = line.split(':', 2) headers[key] = ([headers[key]] << value.strip).compact.join(', ') last_key = key end end sync_buffer @chunked = headers['Transfer-Encoding'] =~ /chunked/i @content_length = headers['Content-Length'].to_i @persistent = headers['Connection'] !~ /close/i @request = { :method => method, :uri => URI.parse(uri), :headers => headers, :body => '' } end end def parse_body if @chunked @buffer.rewind until @request_complete || @buffer.eof? unless @chunk_size # in case buffer only contains a portion of the chunk-size line if (line = @buffer.readline).end_with?("\r\n") @chunk_size = line.to_i(16) if @chunk_size > 0 sync_buffer else # last-chunk @buffer.read(2) # the final \r\n may or may not be in the buffer sync_buffer @chunk_size = nil @request_complete = true end end end if @chunk_size if @buffer.size >= @chunk_size + 2 @request[:body] << @buffer.read(@chunk_size + 2).chop! @chunk_size = nil sync_buffer else break # wait for more data end end end elsif @content_length > 0 @buffer.rewind unless @buffer.eof? # buffer only contained the headers @request[:body] << @buffer.read(@content_length - @request[:body].size) sync_buffer if @request[:body].size == @content_length @request_complete = true end end else # no body @request_complete = true end end def chunks_for(str) chunks = '' str.force_encoding('BINARY') if str.respond_to?(:force_encoding) chunk_size = str.size / 2 until (chunk = str.slice!(0, chunk_size)).empty? chunks << chunk.size.to_s(16) << "\r\n" chunks << chunk << "\r\n" end chunks << "0\r\n" # last-chunk end # only supports a single quality parameter for tokens def parse_encodings(encodings) return [] if encodings.nil? split_header_value(encodings).map do |value| token, q_val = /^(.*?)(?:;q=(.*))?$/.match(value.strip)[1, 2] if q_val && q_val.to_f == 0 nil else [token, (q_val || 1).to_f] end end.compact.sort_by {|_, q_val| q_val }.map {|token, _| token } end # Splits a header value +str+ according to HTTP specification. def split_header_value(str) return [] if str.nil? str.strip.scan(%r'\G((?:"(?:\\.|[^"])+?"|[^",]+)+) (?:,\s*|\Z)'xn).flatten end end excon-1.3.1/tests/servers/good_ipv4.rb000077500000000000000000000002601510272305100176770ustar00rootroot00000000000000#!/usr/bin/env ruby require File.join(File.expand_path(File.dirname(__FILE__)), 'good') EM.run do EM.start_server("127.0.0.1", 9292, GoodServer) $stderr.puts "ready" end excon-1.3.1/tests/servers/good_ipv6.rb000077500000000000000000000003111510272305100176760ustar00rootroot00000000000000#!/usr/bin/env ruby require File.join(File.expand_path(File.dirname(__FILE__)), 'good') EM.run do EM.start_server("::1", 9293, GoodServer) unless RUBY_PLATFORM == 'java' $stderr.puts "ready" end excon-1.3.1/tests/socket_tests.rb000066400000000000000000000065521510272305100170350ustar00rootroot00000000000000# A fake Excon::Socket that allows passing in an arbitrary backend @socket class MockExconSocket < Excon::Socket attr_reader :read_count def initialize(backend_socket, *args) super(*args) @read_count = 0 @socket = backend_socket end def read_nonblock(*args) @read_count += 1 super end def connect # pass end def select_with_timeout(*args) # don't actually wait, assume we're ready end end # A socket whose read_nonblock returns from an input list, # and which counts the number of reads class MockNonblockRubySocket attr_reader :sequence def initialize(nonblock_reads) @nonblock_reads = nonblock_reads @sequence = [] end def read_nonblock(maxlen, buffer = nil) if @nonblock_reads.empty? @sequence << 'EOF' raise EOFError elsif @nonblock_reads.first.empty? @nonblock_reads.shift if @nonblock_reads.empty? @sequence << 'EOF' raise EOFError end @sequence << 'EAGAIN' raise Errno::EAGAIN elsif len = maxlen ? maxlen : @nonblock_reads.first.length ret = @nonblock_reads.first.slice!(0, len) @sequence << ret.length if buffer buffer.clear buffer << ret buffer else ret end end end # Returns the results of `block`, as well as how many times we called read on the Excon # socket, and the sequence of reads on the backend socket def self.check_reads(nonblock_reads, socket_args, &block) backend_socket = MockNonblockRubySocket.new(nonblock_reads) socket = MockExconSocket.new(backend_socket, { nonblock: true }.merge(socket_args)) ret = block[socket] [ret, socket.read_count, backend_socket.sequence] end end Shindo.tests('socket') do CHUNK_SIZES = [nil, 512] CHUNK_SIZES.each do |chunk_size| tests("chunk_size: #{chunk_size}") do socket_args = {chunk_size: chunk_size} tests('read_nonblock') do tests('readline nonblock is efficient') do returns(["one\n", 1, [8, 'EOF']]) do MockNonblockRubySocket.check_reads(["one\ntwo\n"], socket_args) do |sock| sock.readline end end end tests('readline nonblock works sequentially') do returns([["one\n", "two\n"], 1, [8, 'EOF']]) do MockNonblockRubySocket.check_reads(["one\ntwo\n"], socket_args) do |sock| Array.new(2) { sock.readline } end end end tests('readline nonblock can handle partial reads') do returns([["one\n", "two\n"], 2, [5, 'EAGAIN', 3, 'EOF']]) do MockNonblockRubySocket.check_reads(["one\nt", "wo\n"], socket_args) do |sock| Array.new(2) { sock.readline } end end end tests('readline nonblock before read') do returns([["one\n", "two\n"], 2, [8, 'EOF']]) do MockNonblockRubySocket.check_reads(["one\ntwo\n"], socket_args) do |sock| [sock.readline, sock.read(6)] end end end tests('read_nonblock does not EOF early') do returns([["one", "two"], 2, [3, 'EAGAIN', 3, 'EOF']]) do # Data, EAGAIN, data, EOF MockNonblockRubySocket.check_reads(["one", "two"], socket_args) do |sock| [sock.read, sock.read] end end end end end end end excon-1.3.1/tests/test_helper.rb000066400000000000000000000325201510272305100166330ustar00rootroot00000000000000TEST_SUITE_DEFAULTS = { :connect_timeout => 5, :read_timeout => 5, :write_timeout => 5 } require 'bundler/setup' require 'excon' require 'delorean' require 'open4' require 'webrick' require './spec/helpers/warning_helpers.rb' Excon.set_raise_on_warnings!(true) def basic_tests(url = 'http://127.0.0.1:9292', options = {}) ([true, false] * 2).combination(2).to_a.uniq.each do |nonblock, persistent| connection = nil test do options = options.merge({:ssl_verify_peer => false, :nonblock => nonblock, :persistent => persistent }) connection = Excon.new(url, options) true end tests("nonblock => #{nonblock}, persistent => #{persistent}") do tests('method and path defaults') do tests('request().body').returns('GET /') do response = connection.request(:path => '/') response.body end tests("request(:headers => {'host' => '127.0.0.1'})").returns('GET /') do response = connection.request(:headers => {'host' => '127.0.0.1'}) response.body end tests('request(:method => :get).body').returns('GET /') do response = connection.request(:method => :get) response.body end tests("request(:path => '/').body").returns('GET /') do response = connection.request(:path => '/') response.body end tests("request(:method => :get, :path => '/').body").returns('GET /') do response = connection.request(:method => :get, :path => '/') response.body end end tests('GET /content-length/100') do response = nil tests('response.status').returns(200) do response = connection.request(:method => :get, :path => '/content-length/100') response.status end tests('response[:status]').returns(200) do response[:status] end tests("response.headers['Content-Length']").returns('100') do response.headers['Content-Length'] end tests("response.headers['Content-Type']").returns('text/html;charset=utf-8') do response.headers['Content-Type'] end test("Time.parse(response.headers['Date']).is_a?(Time)") do pending if connection.data[:scheme] == Excon::UNIX Time.parse(response.headers['Date']).is_a?(Time) end test("!!(response.headers['Server'] =~ /^WEBrick/)") do pending if connection.data[:scheme] == Excon::UNIX !!(response.headers['Server'] =~ /^WEBrick/) end tests("response.headers['Custom']").returns("Foo: bar") do response.headers['Custom'] end tests("response.remote_ip").returns("127.0.0.1") do pending if connection.data[:scheme] == Excon::UNIX response.remote_ip end tests("response.body").returns('x' * 100) do response.body end tests("deprecated block usage").returns(['x' * 100, 0, 100]) do data = [] silence_warnings do connection.request(:method => :get, :path => '/content-length/100') do |chunk, remaining_length, total_length| data = [chunk, remaining_length, total_length] end end data end tests("response_block usage").returns(['x' * 100, 0, 100]) do data = [] response_block = lambda do |chunk, remaining_length, total_length| data = [chunk, remaining_length, total_length] end connection.request(:method => :get, :path => '/content-length/100', :response_block => response_block) data end end tests('POST /body-sink') do tests('response.body').returns("5000000") do response = connection.request(:method => :post, :path => '/body-sink', :headers => { 'Content-Type' => 'text/plain' }, :body => 'x' * 5_000_000) response.body end tests('empty body').returns('0') do response = connection.request(:method => :post, :path => '/body-sink', :headers => { 'Content-Type' => 'text/plain' }, :body => '') response.body end end tests('POST /echo') do tests('with file').returns('x' * 100 + "\n") do file_path = File.join(File.dirname(__FILE__), "data", "xs") response = connection.request(:method => :post, :path => '/echo', :headers => { 'Content-Type' => 'text/plain' }, :body => File.open(file_path)) response.body end tests('without request_block').returns('x' * 100) do response = connection.request(:method => :post, :path => '/echo', :headers => { 'Content-Type' => 'text/plain' }, :body => 'x' * 100) response.body end tests('with request_block').returns('x' * 100) do data = Array.new(100, 'x') request_block = lambda do data.shift.to_s end response = connection.request(:method => :post, :path => '/echo', :headers => { 'Content-Type' => 'text/plain' }, :request_block => request_block) response.body end tests('with multi-byte strings') do body = "\xC3\xBC" * 100 headers = { 'Custom' => body.dup } body.force_encoding('BINARY') headers['Custom'].force_encoding('UTF-8') headers['Content-Type'] = 'text/plain' returns(body, 'properly concatenates request+headers and body') do response = connection.request(:method => :post, :path => '/echo', :headers => headers, :body => body) response.body end end end tests('PUT /echo') do tests('with file').returns('x' * 100 + "\n") do file_path = File.join(File.dirname(__FILE__), "data", "xs") response = connection.request(:method => :put, :path => '/echo', :body => File.open(file_path)) response.body end tests('without request_block').returns('x' * 100) do response = connection.request(:method => :put, :path => '/echo', :body => 'x' * 100) response.body end tests('request_block usage').returns('x' * 100) do data = Array.new(100, 'x') request_block = lambda do data.shift.to_s end response = connection.request(:method => :put, :path => '/echo', :request_block => request_block) response.body end tests('with multi-byte strings') do body = "\xC3\xBC" * 100 headers = { 'Custom' => body.dup } body.force_encoding('BINARY') headers['Custom'].force_encoding('UTF-8') returns(body, 'properly concatenates request+headers and body') do response = connection.request(:method => :put, :path => '/echo', :headers => headers, :body => body) response.body end end end tests('should succeed with tcp_nodelay').returns(200) do options = options.merge(:ssl_verify_peer => false, :nonblock => nonblock, :tcp_nodelay => true) connection = Excon.new(url, options) response = connection.request(:method => :get, :path => '/content-length/100') response.status end end end end # expected values: the response, in pieces, and a timeout after each piece STREAMING_PIECES = %w{Hello streamy world} STREAMING_TIMEOUT = 0.1 def streaming_tests(protocol) conn = nil test do conn = Excon.new("#{protocol}://127.0.0.1:9292/", :ssl_verify_peer => false) true end # expect the full response as a string # and expect it to take a (timeout * pieces) seconds tests('simple blocking request on streaming endpoint').returns([STREAMING_PIECES.join(''),'response time ok']) do start = Time.now ret = conn.request(:method => :get, :path => '/streamed/simple').body if Time.now - start <= STREAMING_TIMEOUT*3 [ret, 'streaming response came too quickly'] else [ret, 'response time ok'] end end # expect the full response as a string and expect it to # take a (timeout * pieces) seconds (with fixed Content-Length header) tests('simple blocking request on streaming endpoint with fixed length').returns([STREAMING_PIECES.join(''),'response time ok']) do start = Time.now ret = conn.request(:method => :get, :path => '/streamed/fixed_length').body if Time.now - start <= STREAMING_TIMEOUT*3 [ret, 'streaming response came too quickly'] else [ret, 'response time ok'] end end # expect each response piece to arrive to the body right away # and wait for timeout until next one arrives def timed_streaming_test(conn, path, timeout) ret = [] timing = 'response times ok' start = Time.now conn.request(:method => :get, :path => path, :response_block => lambda do |c,r,t| # add the response ret.push(c) # check if the timing is ok # each response arrives after timeout and before timeout + 1 cur_time = Time.now - start if cur_time < ret.length * timeout or cur_time > (ret.length+1) * timeout timing = 'response time not ok!' end end) # validate the final timing if Time.now - start <= timeout*3 timing = 'final timing was not ok!' end [ret, timing] end tests('simple request with response_block on streaming endpoint').returns([STREAMING_PIECES,'response times ok']) do timed_streaming_test(conn, '/streamed/simple', STREAMING_TIMEOUT) end tests('simple request with response_block on streaming endpoint with fixed length').returns([STREAMING_PIECES,'response times ok']) do timed_streaming_test(conn, '/streamed/fixed_length', STREAMING_TIMEOUT) end end PROXY_ENV_VARIABLES = %w{http_proxy https_proxy no_proxy} # All lower-case def env_init(env={}) current = {} PROXY_ENV_VARIABLES.each do |key| current[key] = ENV.delete(key) current[key.upcase] = ENV.delete(key.upcase) end env_stack << current env.each do |key, value| ENV[key] = value end end def env_restore ENV.update(env_stack.pop) end def env_stack @env_stack ||= [] end def capture_response_block captures = [] yield lambda {|chunk, remaining_bytes, total_bytes| captures << [chunk, remaining_bytes, total_bytes] } captures end def launch_process(*args) unless RUBY_PLATFORM == 'java' pid, w, r, e = Open4.popen4(*args) else pid, w, r, e = IO.popen4(*args) end return pid, w, r, e end def cleanup_process(pid) Process.kill('KILL', pid) unless RUBY_PLATFORM == 'java' Process.wait(pid) end end def rackup_path(*parts) File.expand_path(File.join(File.dirname(__FILE__), 'rackups', *parts)) end def wait_for_message(io, msg) process_stderr = "" until (line = io.gets)&.include?(msg) # nil means we have reached the end of stream raise process_stderr if line.nil? process_stderr << line end end def with_rackup(name, host="127.0.0.1") pid, w, r, e = launch_process(RbConfig.ruby, "-S", "rackup", "-s", "webrick", "--host", host, rackup_path(name)) wait_for_message(e, 'HTTPServer#start:') yield ensure cleanup_process(pid) # dump server errors lines = e.read.split($/) while line = lines.shift case line when /(ERROR|Error)/ unless line.match?(/(null cert chain|did not return a certificate|SSL_read:: internal error)/) in_err = true puts end when /^(127|localhost)/ in_err = false end puts line if in_err end end def with_unicorn(name, listen='127.0.0.1:9292') unless RUBY_PLATFORM == 'java' unix_socket = listen.sub('unix://', '') if listen.start_with? 'unix://' pid, w, r, e = launch_process(RbConfig.ruby, "-S", "unicorn", "--no-default-middleware","-l", listen, rackup_path(name)) wait_for_message(e, 'worker=0 ready') else # need to find suitable server for jruby end yield ensure cleanup_process(pid) if not unix_socket.nil? and File.exist?(unix_socket) File.delete(unix_socket) end end def server_path(*parts) File.expand_path(File.join(File.dirname(__FILE__), 'servers', *parts)) end def with_server(name) pid, w, r, e = launch_process(RbConfig.ruby, server_path("#{name}.rb")) wait_for_message(e, 'ready') yield ensure cleanup_process(pid) end # A tiny fake SSL streaming server def with_ssl_streaming(port, pieces, delay) key_file = File.join(File.dirname(__FILE__), 'data', '127.0.0.1.cert.key') cert_file = File.join(File.dirname(__FILE__), 'data', '127.0.0.1.cert.crt') ctx = OpenSSL::SSL::SSLContext.new ctx.key = OpenSSL::PKey::RSA.new(File.read(key_file)) ctx.cert = OpenSSL::X509::Certificate.new(File.read(cert_file)) tcp = TCPServer.new(port) ssl = OpenSSL::SSL::SSLServer.new(tcp, ctx) Thread.new do loop do begin conn = ssl.accept rescue IOError => e # we're closing the socket from another thread, which makes `accept` complain break if e.to_s.include?('stream closed') raise end Thread.new do begin req = WEBrick::HTTPRequest.new(WEBrick::Config::HTTP) req.parse(conn) conn << "HTTP/1.1 200 OK\r\n\r\n" if req.path == "streamed/fixed_length" conn << "Content-Length: #{pieces.join.length}\r\n" end conn.flush pieces.each do |piece| sleep(delay) conn.write(piece) conn.flush end ensure conn.close end end end end yield ssl.close end excon-1.3.1/tests/thread_safety_tests.rb000066400000000000000000000020571510272305100203630ustar00rootroot00000000000000Shindo.tests('Excon thread safety') do tests('thread_safe_sockets configuration') do tests('thread_safe_sockets default').returns(true) do connection = Excon.new('http://foo.com') connection.data[:thread_safe_sockets] end tests('with thread_safe_sockets set false').returns(false) do connection = Excon.new('http://foo.com', :thread_safe_sockets => false) connection.data[:thread_safe_sockets] end end with_rackup('thread_safety.ru') do connection = Excon.new('http://127.0.0.1:9292') long_thread = Thread.new { response = connection.request(:method => 'GET', :path => '/id/1/wait/2') Thread.current[:success] = response.body == '1' } short_thread = Thread.new { response = connection.request(:method => 'GET', :path => '/id/2/wait/1') Thread.current[:success] = response.body == '2' } test('long_thread') do long_thread.join short_thread.join long_thread[:success] end test('short_thread') do short_thread[:success] end end end excon-1.3.1/tests/timeout_tests.rb000066400000000000000000000006101510272305100172200ustar00rootroot00000000000000Shindo.tests('read should timeout') do with_rackup('timeout.ru') do [false, true].each do |nonblock| tests("nonblock => #{nonblock} hits read_timeout").raises(Excon::Errors::Timeout) do connection = Excon.new('http://127.0.0.1:9292', :nonblock => nonblock) connection.request(:method => :get, :path => '/timeout', :read_timeout => 1) end end end end excon-1.3.1/tests/utils_tests.rb000066400000000000000000000113551510272305100167020ustar00rootroot00000000000000# frozen_string_literal: true Shindo.tests('Excon::Utils') do tests('#connection_uri') do expected_uri = 'unix:///tmp/some.sock' tests('using UNIX scheme').returns(expected_uri) do connection = Excon.new('unix:///some/path', socket: '/tmp/some.sock') Excon::Utils.connection_uri(connection.data) end tests('using HTTP scheme') do expected_uri = 'http://foo.com' tests('without default port').returns(expected_uri) do connection = Excon.new('http://foo.com/some/path') Excon::Utils.connection_uri(connection.data) end expected_uri = 'http://foo.com:80' tests('include_default_port adds default port').returns(expected_uri) do connection = Excon.new('http://foo.com/some/path', include_default_port: true) Excon::Utils.connection_uri(connection.data) end expected_uri = 'http://foo.com' tests('!include_default_port has no port value').returns(expected_uri) do connection = Excon.new('http://foo.com/some/path', include_default_port: false) Excon::Utils.connection_uri(connection.data) end expected_uri = 'http://foo.com' tests('omit_default_port has no port value').returns(expected_uri) do connection = Excon.new('http://foo.com/some/path', omit_default_port: true) Excon::Utils.connection_uri(connection.data) end end end tests('#request_uri') do tests('using UNIX scheme') do expected_uri = 'unix:///tmp/some.sock/some/path' tests('without query').returns(expected_uri) do connection = Excon.new('unix:/', :socket => '/tmp/some.sock') params = { :path => '/some/path' } Excon::Utils.request_uri(connection.data.merge(params)) end expected_uri = 'unix:///tmp/some.sock/some/path?bar=that&foo=this' tests('with query').returns(expected_uri) do connection = Excon.new('unix:/', :socket => '/tmp/some.sock') params = { :path => '/some/path', :query => { :foo => 'this', :bar => 'that' } } Excon::Utils.request_uri(connection.data.merge(params)) end end tests('using HTTP scheme') do expected_uri = 'http://foo.com/some/path' tests('without query').returns(expected_uri) do connection = Excon.new('http://foo.com') params = { :path => '/some/path' } Excon::Utils.request_uri(connection.data.merge(params)) end expected_uri = 'http://foo.com/some/path?bar=that&foo=this' tests('with query').returns(expected_uri) do connection = Excon.new('http://foo.com') params = { :path => '/some/path', :query => { :foo => 'this', :bar => 'that' } } Excon::Utils.request_uri(connection.data.merge(params)) end end test('detecting default ports') do tests('http default port').returns true do datum = { scheme: 'http', port: 80 } Excon::Utils.default_port?(datum) end tests('http nonstandard port').returns false do datum = { scheme: 'http', port: 9292 } Excon::Utils.default_port?(datum) end tests('https standard port').returns true do datum = { scheme: 'https', port: 443 } Excon::Utils.default_port?(datum) end tests('https nonstandard port').returns false do datum = { scheme: 'https', port: 8443 } Excon::Utils.default_port?(datum) end tests('unix socket').returns false do datum = { scheme: 'unix' } Excon::Utils.default_port?(datum) end end end tests('#escape_uri').returns('/hello%20excon') do Excon::Utils.escape_uri('/hello excon') end tests('#unescape_uri').returns('/hello excon') do Excon::Utils.unescape_uri('/hello%20excon') end tests('#unescape_form').returns('message=We love excon!') do Excon::Utils.unescape_form('message=We+love+excon!') end tests('#split_header_value').returns(["value"]) do Excon::Utils.split_header_value("value") end tests('#split_header_value').returns(["value1", "value2"]) do Excon::Utils.split_header_value("value1, value2") end tests('#split_header_value').returns(["text/html;q=0.5", "application/json; version=1"]) do Excon::Utils.split_header_value("text/html;q=0.5, application/json; version=1") end tests('#split_header_value').returns(["foo/bar;key=\"A,B,C\""]) do Excon::Utils.split_header_value("foo/bar;key=\"A,B,C\"") end tests('#split_header_value').returns([]) do # previous implementation would hang on this, so test is here to prevent regression Timeout.timeout(0.1) do Excon::Utils.split_header_value("uuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuu\",") end end end