[root@AlmaLinux92 log]# dig TXT test.tw @192.168.100.200
; <<>> DiG 9.16.23-RH <<>> TXT test.tw @192.168.100.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62113
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: d0864ba0ace624b4010000006529c783cefa39d8595c18c5 (good)
;; QUESTION SECTION:
;test.tw. IN TXT
;; ANSWER SECTION:
test.tw. 86400 IN TXT "v=spf1 mx ip4:60.123.123.123/27 ip4:211.123.123.213 ip4:211.123.123.215 ip4:211.123.123.211 ~all"
test.tw. 86400 IN TXT "v=DKIM1; k=rsa; p=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
test.tw. 86400 IN TXT "ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ"
test.tw. 86400 IN TXT "YYYYYYYYYYYYYYYYYYYYYYYYYYY"
;; Query time: 0 msec
;; SERVER: 192.168.100.200#53(192.168.100.200)
;; WHEN: Sat Oct 14 06:41:07 CST 2023
;; MSG SIZE rcvd: 522
[root@AlmaLinux92 log]#
[root@AlmaLinux92 log]# named -v
BIND 9.16.23-RH (Extended Support Version) <id:fde3b1f>
[root@AlmaLinux92 log]#
============================================================
[root@AlmaLinux92 log]# cat /etc/named.conf
//
// named.conf
//
// Provided by Red Hat bind package to configure the ISC BIND named(8) DNS
// server as a caching only nameserver (as a localhost DNS resolver only).
//
// See /usr/share/doc/bind*/sample/ for example named configuration files.
//
options {
listen-on port 53 { any; };
directory "/var/named";
dump-file "/var/named/data/cache_dump.db";
statistics-file "/var/named/data/named_stats.txt";
memstatistics-file "/var/named/data/named_mem_stats.txt";
secroots-file "/var/named/data/named.secroots";
recursing-file "/var/named/data/named.recursing";
allow-query { localhost; 0.0.0.0/0; };
/*
- If you are building an AUTHORITATIVE DNS server, do NOT enable recursion.
- If you are building a RECURSIVE (caching) DNS server, you need to enable
recursion.
- If your recursive DNS server has a public IP address, you MUST enable access
control to limit queries to your legitimate users. Failing to do so will
cause your server to become part of large scale DNS amplification
attacks. Implementing BCP38 within your network would greatly
reduce such attack surface
*/
recursion yes;
dnssec-validation no;
managed-keys-directory "/var/named/dynamic";
geoip-directory "/usr/share/GeoIP";
pid-file "/run/named/named.pid";
session-keyfile "/run/named/session.key";
/* https://fedoraproject.org/wiki/Changes/CryptoPolicy */
include "/etc/crypto-policies/back-ends/bind.config";
};
logging {
channel default_debug {
file "data/named.run";
severity dynamic;
};
};
zone "." IN {
type hint;
file "named.ca";
};
zone "test.tw" IN {
type master;
file "test.tw.zone";
allow-query {any;};
};
include "/etc/named.rfc1912.zones";
include "/etc/named.root.key";
[root@AlmaLinux92 log]# cat /var/named/test.tw.zone
$TTL 86400
@ IN SOA dns.test.tw. root.test.tw. (
2023101401 ; Serial
604800 ; Refresh
86400 ; Retry
2419200 ; Expire
86400 ; Negative Cache TTL
);
@ IN NS dns.test.tw.
@ IN A 192.168.100.200
dns.test.tw. IN A 192.168.100.200
test.tw. IN TXT "v=DKIM1; k=rsa; p=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
test.tw. IN TXT "v=spf1 mx ip4:60.123.123.123/27 ip4:211.123.123.213 ip4:211.123.123.215 ip4:211.123.123.211 ~all"
test.tw. IN TXT "YYYYYYYYYYYYYYYYYYYYYYYYYYY"
test.tw. IN TXT "ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ"
[root@AlmaLinux92 log]# cat /etc/sysconfig/named
# BIND named process options
# ~~~~~~~~~~~~~~~~~~~~~~~~~~
#
# OPTIONS="whatever" -- These additional options will be passed to named
# at startup. Don't add -t here, enable proper
# -chroot.service unit file.
#
# NAMEDCONF=/etc/named/alternate.conf
# -- Don't use -c to change configuration file.
# Extend systemd named.service instead or use this
# variable.
#
# DISABLE_ZONE_CHECKING -- By default, service file calls named-checkzone
# utility for every zone to ensure all zones are
# valid before named starts. If you set this option
# to 'yes' then service file doesn't perform those
# checks.
#
OPTIONS="-4"
[root@AlmaLinux92 log]#
====================================
C:\Users\xrcd2>nslookup
預設伺服器: dns.hinet.net
Address: 168.95.1.1
> server 192.168.100.200
預設伺服器: [192.168.100.200]
Address: 192.168.100.200
> set type=txt
> test.tw
伺服器: [192.168.100.200]
Address: 192.168.100.200
test.tw text =
"v=DKIM1; k=rsa; p=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
test.tw text =
"YYYYYYYYYYYYYYYYYYYYYYYYYYY"
test.tw text =
"v=spf1 mx ip4:60.123.123.123/27 ip4:211.123.123.213 ip4:211.123.123.215 ip4:211.123.123.211 ~all"
test.tw text =
"ZZZZZZZZZZZZZZZZZZZZZZZZZZZZZ"
>
===============================
[root@AlmaLinux92 log]# dig TXT msa.hinet.net @127.0.0.1
; <<>> DiG 9.16.23-RH <<>> TXT msa.hinet.net @127.0.0.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1278
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: 1f3935b5ab413596010000006529c90ef407026e93083ccd (good)
;; QUESTION SECTION:
;msa.hinet.net. IN TXT
;; ANSWER SECTION:
msa.hinet.net. 86400 IN TXT "v=spf1 redirect=spf.ms.hinet.net"
msa.hinet.net. 86400 IN TXT "v=DKIM1; k=rsa; p=XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX"
;; Query time: 347 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Sat Oct 14 06:47:42 CST 2023
;; MSG SIZE rcvd: 362
[root@AlmaLinux92 log]#
========================
[root@AlmaLinux92 log]# netstat -anulp | more
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
udp 0 0 192.168.100.200:53 0.0.0.0:* 10700/named
udp 0 0 192.168.100.200:53 0.0.0.0:* 10700/named
udp 0 0 192.168.100.200:53 0.0.0.0:* 10700/named
udp 0 0 192.168.100.200:53 0.0.0.0:* 10700/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 10700/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 10700/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 10700/named
udp 0 0 127.0.0.1:53 0.0.0.0:* 10700/named
udp 0 0 127.0.0.1:323 0.0.0.0:* 905/chronyd
udp6 0 0 ::1:323 :::* 905/chronyd
[root@AlmaLinux92 log]# systemctl status named
● named.service - Berkeley Internet Name Domain (DNS)
Loaded: loaded (/usr/lib/systemd/system/named.service; enabled; preset: disabled)
Active: active (running) since Sat 2023-10-14 06:52:59 CST; 26s ago
Process: 10696 ExecStartPre=/bin/bash -c if [ ! "$DISABLE_ZONE_CHECKING" == "yes" ]; then /usr/sbin/named-checkconf -z "$NAMEDCONF"; else echo "Checking of zone files is disabled"; fi (code=exited, status=0/SUCCESS)
Process: 10699 ExecStart=/usr/sbin/named -u named -c ${NAMEDCONF} $OPTIONS (code=exited, status=0/SUCCESS)
Main PID: 10700 (named)
Tasks: 14 (limit: 48696)
Memory: 40.6M
CPU: 42ms
CGroup: /system.slice/named.service
└─10700 /usr/sbin/named -u named -c /etc/named.conf -4
Oct 14 06:52:59 AlmaLinux92 named[10700]: zone localhost/IN: loaded serial 0
Oct 14 06:52:59 AlmaLinux92 named[10700]: zone test.tw/IN: loaded serial 2023101401
Oct 14 06:52:59 AlmaLinux92 named[10700]: zone 1.0.0.127.in-addr.arpa/IN: loaded serial 0
Oct 14 06:52:59 AlmaLinux92 named[10700]: zone localhost.localdomain/IN: loaded serial 0
Oct 14 06:52:59 AlmaLinux92 named[10700]: zone 1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.0.ip6.arpa/IN: loaded serial 0
Oct 14 06:52:59 AlmaLinux92 named[10700]: all zones loaded
Oct 14 06:52:59 AlmaLinux92 named[10700]: running
Oct 14 06:52:59 AlmaLinux92 systemd[1]: Started Berkeley Internet Name Domain (DNS).
Oct 14 06:52:59 AlmaLinux92 named[10700]: managed-keys-zone: Key 20326 for zone . is now trusted (acceptance timer complete)
Oct 14 06:52:59 AlmaLinux92 named[10700]: resolver priming query complete
[root@AlmaLinux92 log]#
===============
openkdim install & setting dns zone
[root@AlmaLinux92 log]# yum install epel-release.noarch
Last metadata expiration check: 1:18:55 ago on Sat 14 Oct 2023 05:51:30 AM CST.
Dependencies resolved.
=================================================================================================================================================================================================================================================
Package Architecture Version Repository Size
=================================================================================================================================================================================================================================================
Installing:
epel-release noarch 9-5.el9 extras 18 k
Transaction Summary
=================================================================================================================================================================================================================================================
Install 1 Package
Total download size: 18 k
Installed size: 25 k
Is this ok [y/N]: y
Downloading Packages:
epel-release-9-5.el9.noarch.rpm 43 kB/s | 18 kB 00:00
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Total 13 kB/s | 18 kB 00:01
Running transaction check
Transaction check succeeded.
Running transaction test
Transaction test succeeded.
Running transaction
Preparing : 1/1
Installing : epel-release-9-5.el9.noarch 1/1
Running scriptlet: epel-release-9-5.el9.noarch 1/1
Many EPEL packages require the CodeReady Builder (CRB) repository.
It is recommended that you run /usr/bin/crb enable to enable the CRB repository.
Verifying : epel-release-9-5.el9.noarch 1/1
Installed:
epel-release-9-5.el9.noarch
Complete!
[root@AlmaLinux92 log]#
[root@AlmaLinux92 log]# dnf config-manager --set-enabled crb
[root@AlmaLinux92 log]# dnf install opendkim-tools opendkim
AlmaLinux 9 - CRB 2.0 MB/s | 2.9 MB 00:01
Last metadata expiration check: 0:00:01 ago on Sat 14 Oct 2023 07:14:38 AM CST.
Dependencies resolved.
=================================================================================================================================================================================================================================================
Package Architecture Version Repository Size
=================================================================================================================================================================================================================================================
Installing:
opendkim x86_64 2.11.0-0.34.el9 epel 224 k
opendkim-tools x86_64 2.11.0-0.34.el9 epel 55 k
Installing dependencies:
libbsd x86_64 0.11.7-2.el9 epel 111 k
libmd x86_64 1.1.0-1.el9 epel 46 k
libmemcached-awesome x86_64 1.1.0-12.el9 crb 110 k
libopendkim x86_64 2.11.0-0.34.el9 epel 70 k
opendbx x86_64 1.4.6-31.el9 epel 52 k
sendmail-milter x86_64 8.16.1-10.el9 crb 40 k
Transaction Summary
=================================================================================================================================================================================================================================================
Install 8 Packages
Total download size: 708 k
Installed size: 1.8 M
Is this ok [y/N]: y
Downloading Packages:
(1/8): sendmail-milter-8.16.1-10.el9.x86_64.rpm 272 kB/s | 40 kB 00:00
(2/8): libbsd-0.11.7-2.el9.x86_64.rpm 432 kB/s | 111 kB 00:00
(3/8): libmemcached-awesome-1.1.0-12.el9.x86_64.rpm 408 kB/s | 110 kB 00:00
(4/8): libopendkim-2.11.0-0.34.el9.x86_64.rpm 1.1 MB/s | 70 kB 00:00
(5/8): libmd-1.1.0-1.el9.x86_64.rpm 262 kB/s | 46 kB 00:00
(6/8): opendkim-tools-2.11.0-0.34.el9.x86_64.rpm 745 kB/s | 55 kB 00:00
(7/8): opendkim-2.11.0-0.34.el9.x86_64.rpm 1.7 MB/s | 224 kB 00:00
(8/8): opendbx-1.4.6-31.el9.x86_64.rpm 251 kB/s | 52 kB 00:00
-------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
Total 410 kB/s | 708 kB 00:01
Extra Packages for Enterprise Linux 9 - x86_64 1.6 MB/s | 1.6 kB 00:00
Importing GPG key 0x3228467C:
Userid : "Fedora (epel9) <epel@fedoraproject.org>"
Fingerprint: FF8A D134 4597 106E CE81 3B91 8A38 72BF 3228 467C
From : /etc/pki/rpm-gpg/RPM-GPG-KEY-EPEL-9
Is this ok [y/N]: y
Key imported successfully
Running transaction check
Transaction check succeeded.
Running transaction test
Transaction test succeeded.
Running transaction
Preparing : 1/1
Installing : opendbx-1.4.6-31.el9.x86_64 1/8
Installing : libmemcached-awesome-1.1.0-12.el9.x86_64 2/8
Installing : libmd-1.1.0-1.el9.x86_64 3/8
Installing : libbsd-0.11.7-2.el9.x86_64 4/8
Installing : libopendkim-2.11.0-0.34.el9.x86_64 5/8
Installing : sendmail-milter-8.16.1-10.el9.x86_64 6/8
Running scriptlet: opendkim-2.11.0-0.34.el9.x86_64 7/8
Installing : opendkim-2.11.0-0.34.el9.x86_64 7/8
Running scriptlet: opendkim-2.11.0-0.34.el9.x86_64 7/8
Installing : opendkim-tools-2.11.0-0.34.el9.x86_64 8/8
Running scriptlet: opendkim-tools-2.11.0-0.34.el9.x86_64 8/8
Verifying : libmemcached-awesome-1.1.0-12.el9.x86_64 1/8
Verifying : sendmail-milter-8.16.1-10.el9.x86_64 2/8
Verifying : libbsd-0.11.7-2.el9.x86_64 3/8
Verifying : libmd-1.1.0-1.el9.x86_64 4/8
Verifying : libopendkim-2.11.0-0.34.el9.x86_64 5/8
Verifying : opendbx-1.4.6-31.el9.x86_64 6/8
Verifying : opendkim-2.11.0-0.34.el9.x86_64 7/8
Verifying : opendkim-tools-2.11.0-0.34.el9.x86_64 8/8
Installed:
libbsd-0.11.7-2.el9.x86_64 libmd-1.1.0-1.el9.x86_64 libmemcached-awesome-1.1.0-12.el9.x86_64 libopendkim-2.11.0-0.34.el9.x86_64 opendbx-1.4.6-31.el9.x86_64 opendkim-2.11.0-0.34.el9.x86_64 opendkim-tools-2.11.0-0.34.el9.x86_64
sendmail-milter-8.16.1-10.el9.x86_64
Complete!
[root@AlmaLinux92 log]#
[root@AlmaLinux92 test.tw]# pwd
/etc/opendkim/keys/test.tw
[root@AlmaLinux92 test.tw]# ll
total 0
[root@AlmaLinux92 test.tw]# opendkim-genkey -b 2048 -r -s default -d test.tw -D /etc/opendkim/keys/test.tw/
[root@AlmaLinux92 test.tw]# ll
total 8
-rw------- 1 root root 1704 Oct 14 07:27 default.private
-rw------- 1 root root 502 Oct 14 07:27 default.txt
[root@AlmaLinux92 test.tw]# chown opendkim.opendkim -R /etc/opendkim/keys/test.tw
[root@AlmaLinux92 test.tw]# ll
total 8
-rw------- 1 opendkim opendkim 1704 Oct 14 07:27 default.private
-rw------- 1 opendkim opendkim 502 Oct 14 07:27 default.txt
[root@AlmaLinux92 test.tw]# cat default.txt
[root@AlmaLinux92 test.tw]# cat default.txt
default._domainkey IN TXT ( "v=DKIM1; k=rsa; s=email; "
"p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaJDpwzwD8Xn/iKQPN4jD8V97/pQsCkUdnmJOf5gqQ4to1ehmM+3+P7EH7Id9XaL7dtyeOpxe63waunulPBNQ3TtEMuDbI3nCiscNEHxDICzmpqm99fpi/vzsMZ0MvN11/VdITgQ8qmUd6uzTfpEHNTgNzfBRuNc89Upw7MZuSL82AT+Pks3xuyIgBWXaouQQHXlw5P6hF0TLQ"
"pfi3uAQEeI8g42rWV/cbCzXzrQ2MwOSEnVkuhQopNU5cdqYtuXkCRdebT2LoK2uFAYaEk6O58CSfKnEPB5q4Q8MVitL/qHq4IuJpGL1Lz7UGHEe5Krn+AVQnw58J7/OH/k8CrE1wIDAQAB" ) ; ----- DKIM key default for test.tw
[root@AlmaLinux92 test.tw]#
[root@AlmaLinux92 test.tw]# vi /var/named/test.tw.zone
test.tw. IN TXT "v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaJDpwzwD8Xn/iKQPN4jD8V97/pQsCkUdnmJOf5gqQ4to1ehmM+3+P7EH7Id9XaL7dtyeOpxe63waunulPBNQ3TtEMuDbI3nCiscNEHxDICzmpqm9" "9fpi/vzsMZ0MvN11/VdITgQ8qmUd6uzTfpEHNTgNzfBRuNc89Upw7MZuSL82AT+Pks3xuyIgBWXaouQQHXlw5P6hF0TLQ" "pfi3uAQEeI8g42rWV/cbCzXzrQ2MwOSEnVkuhQopNU5cdqYtuXkCRdebT2LoK2uFAYaEk6O58CSfKnEPB5q4Q8MVitL/qHq4IuJpGL1Lz7UGHEe5Krn+AVQnw58J7/OH/k8CrE1wIDAQAB"
#systemctl restart named
[root@AlmaLinux92 test.tw]# dig TXT test.tw @192.168.100.200
; <<>> DiG 9.16.23-RH <<>> TXT test.tw @192.168.100.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38844
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: f74f11fd6e9c9d33010000006529d973b9f9e24db038b1ba (good)
;; QUESTION SECTION:
;test.tw. IN TXT
;; ANSWER SECTION:
.................
.................
test.tw. 86400 IN TXT "v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaJDpwzwD8Xn/iKQPN4jD8V97/pQsCkUdnmJOf5gqQ4to1ehmM+3+P7EH7Id9XaL7dtyeOpxe63waunulPBNQ3TtEMuDbI3nCiscNEHxDICzmpqm9" "9fpi/vzsMZ0MvN11/VdITgQ8qmUd6uzTfpEHNTgNzfBRuNc89Upw7MZuSL82AT+Pks3xuyIgBWXaouQQHXlw5P6hF0TLQ" "pfi3uAQEeI8g42rWV/cbCzXzrQ2MwOSEnVkuhQopNU5cdqYtuXkCRdebT2LoK2uFAYaEk6O58CSfKnEPB5q4Q8MVitL/qHq4IuJpGL1Lz7UGHEe5Krn+AVQnw58J7/OH/k8CrE1wIDAQAB"
.................
.................
;; Query time: 0 msec
;; SERVER: 192.168.100.200#53(192.168.100.200)
;; WHEN: Sat Oct 14 07:57:39 CST 2023
;; MSG SIZE rcvd: 700
[root@AlmaLinux92 test.tw]#
[root@AlmaLinux92 test.tw]# dig TXT test.tw @192.168.100.200
; <<>> DiG 9.16.23-RH <<>> TXT test.tw @192.168.100.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38844
;; flags: qr aa rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
; COOKIE: f74f11fd6e9c9d33010000006529d973b9f9e24db038b1ba (good)
;; QUESTION SECTION:
;test.tw. IN TXT
;; ANSWER SECTION:
.................
.................
test.tw. 86400 IN TXT "v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaJDpwzwD8Xn/iKQPN4jD8V97/pQsCkUdnmJOf5gqQ4to1ehmM+3+P7EH7Id9XaL7dtyeOpxe63waunulPBNQ3TtEMuDbI3nCiscNEHxDICzmpqm9" "9fpi/vzsMZ0MvN11/VdITgQ8qmUd6uzTfpEHNTgNzfBRuNc89Upw7MZuSL82AT+Pks3xuyIgBWXaouQQHXlw5P6hF0TLQ" "pfi3uAQEeI8g42rWV/cbCzXzrQ2MwOSEnVkuhQopNU5cdqYtuXkCRdebT2LoK2uFAYaEk6O58CSfKnEPB5q4Q8MVitL/qHq4IuJpGL1Lz7UGHEe5Krn+AVQnw58J7/OH/k8CrE1wIDAQAB"
.................
.................
;; Query time: 0 msec
;; SERVER: 192.168.100.200#53(192.168.100.200)
;; WHEN: Sat Oct 14 07:57:39 CST 2023
;; MSG SIZE rcvd: 700
[root@AlmaLinux92 test.tw]#
=================
> set type=txt
> test.tw
伺服器: [192.168.100.200]
Address: 192.168.100.200
............
test.tw text =
"v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlaJDpwzwD8Xn/iKQPN4jD8V97/pQsCkUdnmJOf5gqQ4to1ehmM+3+P7EH7Id9XaL7dtyeOpxe63waunulPBNQ3TtEMuDbI3nCiscNEHxDICzmpqm9"
"9fpi/vzsMZ0MvN11/VdITgQ8qmUd6uzTfpEHNTgNzfBRuNc89Upw7MZuSL82AT+Pks3xuyIgBWXaouQQHXlw5P6hF0TLQ"
"pfi3uAQEeI8g42rWV/cbCzXzrQ2MwOSEnVkuhQopNU5cdqYtuXkCRdebT2LoK2uFAYaEk6O58CSfKnEPB5q4Q8MVitL/qHq4IuJpGL1Lz7UGHEe5Krn+AVQnw58J7/OH/k8CrE1wIDAQAB"
.................
>