U-ff dZddlmZddlZddlZddlmZddlmZddlmZddlm Z ddlm Z dd lm Z dd lm Z dd lm Z dd lmZdd lmZddlZddlmZddlmZddlmZddlmZddlmZdZiddddddddddddd d!d"d#d$d%d&d'd(d)d*d+d,d-d.d/d0d1d2d3d4d5d6d7d8d9d:d;dd? Zid@eDZdAedBefdCZGdDdEejeZ GdFdGe Z!e!d(Z"e!dHZ#GdIdJej$Z%GdKdLej$ej&Z&GdMdNe Z'e'dOZ(e'dPZ)e'dQZ*e'dRZ+e'dSZ,e'dTZ-e'dUZ.e'dVZ/GdWdXejZ0GdYdZej$Z1Gd[d\e1Z2Gd]d^ej$Z3Gd_d`Z4edadbcZ5Gdddbe3Z6Gdedfe6Z7Gdgdhe6Z8Gdidje2Z9Gdkdle3Z:Gdmdne1Z;Gdodpe3Z<Gdqdre<Z=Gdsdte<Z>Gdudve2Z?Gdwdxej$Z@Gdydze2ZAGd{d|ej$ZBGd}d~e3ZCGdde2ZDGddeCZEdS)zACME protocol messages.)HashableN)Any)Dict)Iterator)List)Mapping)MutableMapping)Optional)Tuple)Type)TypeVar) challenges)errors)fields)jws)utilzurn:ietf:params:acme:error:accountDoesNotExistz4The request specified an account that does not existalreadyRevokedzOThe request specified a certificate to be revoked that has already been revokedbadCSRz2The CSR is unacceptable (e.g., due to a short key)badNoncez1The client sent an unacceptable anti-replay nonce badPublicKeyz>The JWS was signed by a public key the server does not supportbadRevocationReasonz;The revocation reason provided is not allowed by the serverbadSignatureAlgorithmz@The JWS was signed with an algorithm the server does not supportcaaz\Certification Authority Authorization (CAA) records forbid the CA from issuing a certificatecompoundzBSpecific error conditions are indicated in the "subproblems" array connectionz?The server could not connect to the client to verify the domaindnszAThere was a problem with a DNS query during identifier validationdnssecz4The server could not validate a DNSSEC signed domainincorrectResponsez;Response received didn't match the challenge's requirements invalidEmailz1The provided email for a registration was invalidinvalidContactz$The provided contact URI was invalid malformedz!The request message was malformedrejectedIdentifierz9The server will not issue certificates for the identifierzLThe request attempted to finalize an order that is not ready to be finalizedz,There were too many requests of a given typez(The server experienced an internal errorz=The server experienced a TLS error during domain verificationz)The client lacks sufficient authorizationz@A contact URL for an account used an unsupported protocol schemez*The server could not resolve a domain namez'An identifier is of an unsupported typez,The server requires external account binding) orderNotReady rateLimitedserverInternaltls unauthorizedunsupportedContact unknownHostunsupportedIdentifierexternalAccountRequiredc*i|]\}}t|z|S) ERROR_PREFIX).0namedescs \/home/cdr/domains/dharristours.com/map/certbot/lib/python3.11/site-packages/acme/messages.py r4;s0",$L4errreturncZt|tr|jt|jvSdS)z#Check if argument is an ACME error.NF) isinstanceErrortypr/)r6s r3 is_acme_errorr<@s-#u'37#6sw&& 5r5ceZdZUdZdZeZeedfe d<deddffd Z defdZ e d eddfd Z defd Zd edefd ZdefdZxZS) _ConstantzACME constant.r1POSSIBLE_NAMESr1r7Ncjt||j|<||_dSN)super__init__r@r1selfr1 __class__s r3rDz_Constant.__init__Ls1 $(D! r5c|jSrBr?rFs r3to_partial_jsonz_Constant.to_partial_jsonQs yr5jobjcf||jvrtj|jd|j|S)Nz not recognized)r@joseDeserializationError__name__clsrKs r3 from_jsonz_Constant.from_jsonTs: s) ) )+s|,L,L,LMM M!$''r5c0|jjd|jdS)N())rGrOr1rIs r3__repr__z_Constant.__repr__Zs .)88DI8888r5otherc\t|t|o|j|jkSrB)r9typer1)rFrWs r3__eq__z_Constant.__eq__]s&%d,,Hty1HHr5c8t|j|jfSrB)hashrGr1rIs r3__hash__z_Constant.__hash__`sT^TY/000r5)rO __module__ __qualname____doc__ __slots__NotImplementedr@rstr__annotations__rDrJ classmethodrRrVrboolrZintr] __classcell__rGs@r3r>r>GsI-;NDk)*;;;ST (S([((([( 9#9999ICIDIIII1#11111111r5r>c2eZdZUdZiZeeefed<dS)IdentifierTypezACME identifier type.r@N rOr^r_r`r@rrcr>rdr.r5r3rkrkds1+-NDi(-----r5rkipcveZdZUdZejdejZee d<ejdZ e e d<dS) IdentifierzJACME identifier. :ivar IdentifierType typ: :ivar str value: rYdecoderr;valueN) rOr^r_r`rMfieldrkrRr;rdrrrcr.r5r3roroms^ %$*V^5MNNNCNNNG$$E3$$$$$r5roceZdZUdZejdddZeed<ejddZ eed<ejd dZ eed <ejd e j d Z ed ed <ejd dZeeded <ejdeeeefdedfdZedededdfdZedeefdZedeefdZdededdfdZdefdZdS)r:aACME error. https://datatracker.ietf.org/doc/html/rfc7807 Note: Although Error inherits from JSONObjectWithFields, which is immutable, we add mutability for Error to comply with the Python exception API. :ivar str typ: :ivar str title: :ivar str detail: :ivar Identifier identifier: :ivar tuple subproblems: An array of ACME Errors which may be present when the CA returns multiple errors related to the same request, `tuple` of `Error`. rYTz about:blank omitemptydefaultr;titlervdetail identifierrqrvro subproblems)r:.rrr7c4td|DS)Nc3JK|]}t|VdSrB)r:rR)r0 subproblems r3 z$Error.subproblems..s.IIZU__Z00IIIIIIr5tuplerrs r3r}zError.subproblemssII5IIIIIIr5codekwargsc `|tvrtd|zt|z}|dd|i|S)zCreate an Error instance with an ACME Error code. :str code: An ACME error code, like 'dnssec'. :kwargs: kwargs to pass to Error. z4The supplied code: %s is not a known ACME error coder;r.) ERROR_CODES ValueErrorr/)rQrrr;s r3 with_codezError.with_codesU { " "%'+,-- -T!s%%s%f%%%r5c@t|jS)zHardcoded error description based on its type. :returns: Description if standard ACME error or ``None``. :rtype: str )ERROR_TYPE_DESCRIPTIONSgetr;rIs r3 descriptionzError.descriptions'**48444r5czt|jddd}|tvr|SdS)zACME error code. Basically self.typ without the ERROR_PREFIX. :returns: error code if standard ACME code or ``None``. :rtype: str :)maxsplitN)rcr;rsplitr)rFrs r3rz Error.codes>48}}##C!#44R8 ;  Ktr5r1Nc:t|||SrB)object __setattr__)rFr1rrs r3rzError.__setattr__s!!$e444r5c.dd|j|j|j|jfD}|jrd|jjd|z}|jr*t|jdkr|jD] }|d|z } |S)Ns :: c3FK|]}||ddVdS)Nasciibackslashreplaceencode)r0parts r3rz Error.__str__..sC!!9= KK!3 4 4!!r5z Problem for z: r ) joinr;rrzrxdecoder{rrr}len)rFresultrs r3__str__z Error.__str__s!! Xt'dj A!!!!!"(  ? G=DO$9===FF   ,D$4 5 5 9 9". , , +z+++ r5)rOr^r_r`rMrsr;rcrdrxrzrorRr{r r}r rqrrrrerpropertyrrrrr.r5r3r:r:xs tz&D-HHHCHHHGt444E3444$*X666FC666)3j2d*D*D*DJ&DDD1;MUY1Z1Z1ZK% -.ZZZJ4S#X/JE,4GJJJJ &S &C &G & & &[ &5Xc]555X5 hsm   X 55C5D5555       r5r:c2eZdZUdZiZeeefed<dS)StatuszACME "status" field.r@Nrlr.r5r3rrs1+-NDi(-----r5runknownpending processingvalidinvalidrevokedready deactivatedceZdZdZGddejZdeee fddfdZ dede fd Z dede fd Z de ee ffd Zedeee fddfd ZdS) DirectoryzmDirectory. Directory resources must be accessed by the exact field name in RFC8555 (section 9.7.5). c:eZdZUdZejddZeed<ejddZ eed<ejddZ e eed<ejd dZ e ed <d ed d ffd Zed efdZd eeffd Zded efdZxZS)Directory.MetazDirectory Meta.termsOfServiceTry_terms_of_servicewebsite caaIdentitiescaa_identitiesr,external_account_requiredrr7Nc |fd|D}tjdi|dS)NcBi|]\}}||Sr._internal_namer0kvrFs r3r4z+Directory.Meta.__init__..s-KKKDAqd))!,,aKKKr5r.itemsrCrDrFrrGs` r3rDzDirectory.Meta.__init__sHKKKKFLLNNKKKF EGG  & &v & & & & &r5c|jS)zURL for the CA TOS)rrIs r3terms_of_servicezDirectory.Meta.terms_of_services ) )r5c#zKtD]}|dkr |ddn|VdS)NrrrC__iter__rEs r3rzDirectory.Meta.__iter__s\((** H H"&*="="=d122hh4GGGG H Hr5r1c|dkrd|zn|S)Nr_r.rFr1s r3rzDirectory.Meta._internal_names!%);!;!;3:: Er5)rOr^r_r`rMrsrrcrdrrrrrfrrDrrrrrrhris@r3Metarsc!+,<!M!M!M3MMM!tz)t<<<<<<$.DJ$$O$O$OS OOO*4$*5NZ^*_*_*_!4___ 'S 'T ' ' ' ' ' '  *c * * *  * Hhsm H H H H H H  Fs Fs F F F F F F F Fr5rrKr7Nc||_dSrB)_jobjrFrKs r3rDzDirectory.__init__s  r5r1cp ||S#t$r!}tt|d}~wwxYwrB)KeyErrorAttributeErrorrc)rFr1errors r3 __getattr__zDirectory.__getattr__sD -:  - - - U,, , -s 505c` |j|S#t$rtd|dwxYw)NzDirectory field "z " not found)rrrs r3 __getitem__zDirectory.__getitem__sN B:d# # B B B@t@@@AA A Bs -c8tj|jdS)Nc|SrBr.)rs r3z+Directory.to_partial_json.. s1r5)rmap_keysrrIs r3rJzDirectory.to_partial_json s}TZ555r5cz|j|di|d<||S)Nmeta)rrRpoprPs r3rRzDirectory.from_jsons7x))$((62*>*>??V s4yyr5)rOr^r_r`rMJSONObjectWithFieldsrrrcrrDrrrrJrer rRr.r5r3rrs" FFFFFt(FFF2WS#X.4------ BBBBBB 6c3h6666^CH5+[r5rc>eZdZUdZejdZded<dS)ResourcezOACME Resource. :ivar acme.messages.ResourceBody body: Resource body. body ResourceBodyN)rOr^r_r`rMrsrrdr.r5r3rrs: &4:f--D.-----r5rc>eZdZUdZejdZeed<dS)ResourceWithURIzKACME Resource with URI. :ivar str uri: Location of the resource. uriN) rOr^r_r`rMrsrrcrdr.r5r3rrs: tz%  C     r5rceZdZdZdS)rzACME Resource Body.NrOr^r_r`r.r5r3rr'sr5rc XeZdZdZedejdededede ee ff dZ dS) ExternalAccountBindingzACME External Account Bindingaccount_public_keykidhmac_key directoryr7ctj|}tj|}|d}tj |tj |tj j d||}|S)zLCreate External Account Binding Resource from contact details, kid and hmac. newAccount)keyN)jsondumpsrJrrMb64 b64decoderJWSsignjwkJWKOctjwaHS256) rQrrrrkey_jsondecoded_hmac_keyurleabs r3 from_dataz ExternalAccountBinding.from_data.s :0@@BBCCJJLL8--h77 %gll8TX__9I_%J%J8>4%%""$$$r5N) rOr^r_r`rerMJWKrcrrrrr.r5r3rr+sg'' %48 %# % %& %+/S> % % %[ % % %r5rGenericRegistration Registration)boundceZdZUdZejddejjZeje d<ejdddZ e e dfe d<ejd d Z e e d <ejd d Zee d <ejd d Zee d <ejdd Zee d<ejdd Zee efe d<dZdZe d$deedee dee deee efdedef dZdeddffd Zde de e dffdZdee efdee effdZdee efffd Z dee efffd! Z!e"de e dffd"Z#e"de e dffd#Z$xZ%S)%rzRegistration Resource Body. :ivar jose.JWK key: Public key. :ivar tuple contact: Contact information following ACME spec, `tuple` of `str`. :ivar str agreement: rTrvrqcontactr.ru. agreementrystatustermsOfServiceAgreedterms_of_service_agreedonlyReturnExistingonly_return_existingexternalAccountBindingexternal_account_bindingztel:zmailto:NrQphoneemailrr7c Fd|v}t|dd}||j|z|4|fd|dD|s|rt ||d<|r||d<di|S)a Create registration resource from contact details. The `contact` keyword being passed to a Registration object is meaningful, so this function represents empty iterables in its kwargs by passing on an empty `tuple`. rr.Nc$g|] }j|z Sr.) email_prefix)r0mailrQs r3 z*Registration.from_data..ps!QQQC,t3QQQr5,r)listrappend phone_prefixextendsplitr)rQrrrrcontact_provideddetailss` r3rzRegistration.from_data[s%.vzz)R0011   NN3+e3 4 4 4   NNQQQQ C@P@PQQQ R R R  /& / %gF9  # J1IF- .s}}V}}r5c d|vr$|dt|ddtjdi|dS)z;Note if the user provides a value for the `contact` member.rN _add_contactTr.)rrrCrDrs r3rDzRegistration.__init__|sS   6)#4#@   t^T : : :""6"""""r5prefixcDtfd|jDS)Nc3pK|]0}||tdV1dSrB) startswithr)r0rzr s r3rz/Registration._filter_contact..sZ**%+  ((* 3v;;<< ******r5)rr)rFr s `r3_filter_contactzRegistration._filter_contacts=****/3|***** *r5rKcXt|ddr|d|d<|S)a The `contact` member of Registration objects should not be required when de-serializing (as it would be if the Fields' `omitempty` flag were `False`), but it should be included in serializations if it was provided. :param jobj: Dictionary containing this Registrations' data :type jobj: dict :returns: Dictionary containing Registrations data to transmit to the server :rtype: dict rFr)getattrrrs r3_add_contact_if_appropriatez(Registration._add_contact_if_appropriates2 4 / / 5"kk)44DO r5cnt}||S)z2Modify josepy.JSONDeserializable.to_partial_json())rCrJr'rFrKrGs r3rJzRegistration.to_partial_jsons,ww&&((//555r5cnt}||S)z;Modify josepy.JSONObjectWithFields.fields_to_partial_json())rCfields_to_partial_jsonr'r)s r3r+z#Registration.fields_to_partial_jsons,ww--////555r5c6||jS)z*All phones found in the ``contact`` field.)r$rrIs r3phoneszRegistration.phones##D$5666r5c6||jS)z*All emails found in the ``contact`` field.)r$rrIs r3emailszRegistration.emailsr.r5)NNN)&rOr^r_r`rMrsrrRrrdrr rcrrrr rfr rrrrrrer rr rrDr$r'rJr+rr-r0rhris@r3rrAsDJudh>PQQQCQQQ *tz)tRPPPGU38_PPPTZ t<<"6c3h666666 6S#X666666 7c3h777X77c3h777X77777r5ceZdZdZdS)NewRegistrationzNew registration.Nrr.r5r3r2r2sr5r2ceZdZdZdS)UpdateRegistrationzUpdate registration.Nrr.r5r3r4r4sr5r4ceZdZUdZejdejZee d<ejddZ e e d<ejddZ e e d<dS) RegistrationResourcezRegistration Resource. :ivar acme.messages.Registration body: :ivar str new_authzr_uri: Deprecated. Do not use. :ivar str terms_of_service: URL for the CA TOS. rrpnew_authzr_uriTryrN) rOr^r_r`rMrsrrRrrdr7rcrr.r5r3r6r6s$FL4JKKKD,KKK$$*%5FFFNCFFF&DJ'9TJJJcJJJJJr5r6ceZdZUdZdZejdddZee d<ejde j de Z e e d<ejd d Zeje d <ejd ej dd Zee d <d eddffd Zdedeffd Zdeeefffd Zedeeefdeeefffd ZedefdZdedefdZdeeffd Z dedefdZ!xZ"S) ChallengeBodya>Challenge Resource Body. .. todo:: Confusingly, this has a similar name to `.challenges.Challenge`, as well as `.achallenges.AnnotatedChallenge`. Please use names such as ``challb`` to distinguish instances of this class from ``achall``. :ivar acme.challenges.Challenge: Wrapped challenge. Conveniently, all challenge fields are proxied, i.e. you can call ``challb.x`` to get ``challb.chall.x`` contents. :ivar acme.messages.Status status: :ivar datetime.datetime validated: :ivar messages.Error error: )challrTNru_urlr)rqrvrw validatedryrrr7c |fd|D}tjdi|dS)NcBi|]\}}||Sr.rrs r3r4z*ChallengeBody.__init__..s-GGG1$%%a((!GGGr5r.rrs` r3rDzChallengeBody.__init__sHGGGG GGG""6"""""r5r1clt||SrB)rCrrrEs r3rzChallengeBody.encodes'ww~~d11$77888r5ct}||j|SrB)rCrJupdater:r)s r3rJzChallengeBody.to_partial_jsons=ww&&(( DJ..00111 r5rKct|}tj||d<|S)Nr:)rCfields_from_jsonr ChallengerR)rQrK jobj_fieldsrGs r3rCzChallengeBody.fields_from_jsons;gg..t44 )3==dCC Gr5c|jS)zThe URL of this challenge.)r;rIs r3rzChallengeBody.uris yr5c,t|j|SrB)r&r:rs r3rzChallengeBody.__getattr__stz4(((r5c#jKtD]}|dkrdn|VdS)Nr;rrrEs r3rzChallengeBody.__iter__sMGG$$&& 4 4D6>>%%t 3 3 3 3 4 4r5c|dkrdn|S)Nrr;r.rs r3rzChallengeBody._internal_namesvvD0r5)#rOr^r_r`rarMrsr;rcrdrrRSTATUS_PENDINGrrrfc3339r<datetimer:rrrDrrrJrerrCrrrrrrrhris@r3r9r9sL I  5D$???D#???TZ&2B"&@@@FF@@@#16>+#N#N#NIx NNN4:gu!%t555E5555########9393999999c3h GCH$5$sCx.[ SX))))))4(3-444444 131311111111r5r9ceZdZUdZejdejZee d<ejdZ e e d<e de fdZ dS)ChallengeResourcezChallenge Resource. :ivar acme.messages.ChallengeBody body: :ivar str authzr_uri: URI found in the 'up' ``Link`` header. rrp authzr_urir7c|jjS)zThe URL of the challenge body.)rrrIs r3rzChallengeResource.urisy}r5N)rOr^r_r`rMrsr9rRrrdrOrcrrr.r5r3rNrNs %$*V]5LMMMD-MMM dj..J... SXr5rNc~eZdZUdZejdejdZee d<ejddZ e e e d<ejdde jZe e d<ejd dZeje d <ejd dZee d <e jd e eeefd ee d ffdZ dS) AuthorizationzAuthorization Resource Body. :ivar acme.messages.Identifier identifier: :ivar list challenges: `list` of `.ChallengeBody` :ivar acme.messages.Status status: :ivar datetime.datetime expires: r{Tr|rryrrexpireswildcardrrr7.c4td|DS)Nc3JK|]}t|VdSrB)r9rR)r0r:s r3rz+Authorization.challenges..,s0GG],,U33GGGGGGr5rrs r3rzAuthorization.challenges*sGGGGGGGGr5N)rOr^r_r`rMrsrorRr{rdrrr9rrrrKrSrLrTrfrqrrcrr r.r5r3rRrRs-(TZ j>R^bcccJ ccc&0dj&N&N&NJ]#NNNTZD&BRSSSFFSSS "0 T!J!J!JGX JJJTZ d;;;Hd;;;H$tCH~.H59K3LHHHHHHr5rRceZdZdZdS)NewAuthorizationzNew authorization.Nrr.r5r3rXrX/sr5rXceZdZdZdS)UpdateAuthorizationzUpdate authorization.Nrr.r5r3rZrZ3sr5rZczeZdZUdZejdejZee d<ejddZ e e d<dS)AuthorizationResourcez~Authorization Resource. :ivar acme.messages.Authorization body: :ivar str new_cert_uri: Deprecated. Do not use. rrp new_cert_uriTryN) rOr^r_r`rMrsrRrRrrdr]rcr.r5r3r\r\7sc %$*V]5LMMMD-MMM" >TBBBL#BBBBBr5r\cbeZdZUdZejdejejZej e d<dS)CertificateRequestz~ACME newOrder request. :ivar jose.ComparableX509 csr: `OpenSSL.crypto.X509Req` wrapped in `.ComparableX509` csrrqencoderN) rOr^r_r`rMrs decode_csr encode_csrr`ComparableX509rdr.r5r3r_r_BsJ *tz%RVRabbbC bbbbbr5r_cxeZdZUdZejdZeed<ejdZ e e dfed<dS)CertificateResourceaCertificate Resource. :ivar josepy.util.ComparableX509 body: `OpenSSL.crypto.X509` wrapped in `.ComparableX509` :ivar str cert_chain_uri: URI found in the 'up' ``Link`` header :ivar tuple authzrs: `tuple` of `AuthorizationResource`. cert_chain_uriauthzrs.N) rOr^r_r`rMrsrhrcrdrir r\r.r5r3rgrgLsb%$*%566NC6661;I1F1FGU(#- .FFFFFr5rgceZdZUdZejdejejZej e d<ejdZ e e d<dS) RevocationzRevocation message. :ivar jose.ComparableX509 certificate: `OpenSSL.crypto.X509` wrapped in `jose.ComparableX509` certificaterareasonN) rOr^r_r`rMrs decode_cert encode_certrlrerdrmrgr.r5r3rkrkYsy (2tzt/9I(K(K(KK$KKK$*X&&FC&&&&&r5rkceZdZUdZejddZeee d<ejde j dZ e e d<ejddZ eee d<ejddZee d<ejd dZee d <ejd dZeje d <ejd dej Zee d <ejd eeeefdeedffdZdS)Ordera_Order Resource Body. :ivar identifiers: List of identifiers for the certificate. :vartype identifiers: `list` of `.Identifier` :ivar acme.messages.Status status: :ivar authorizations: URLs of authorizations. :vartype authorizations: `list` of `str` :ivar str certificate: URL to download certificate as a fullchain PEM. :ivar str finalize: URL to POST to to request issuance once all authorizations have "valid" status. :ivar datetime.datetime expires: When the order expires. :ivar ~.Error error: Any error that occurred during finalization, if applicable. identifiersTryrr|authorizationsrlfinalizerSrrrrr7.c4td|DS)Nc3JK|]}t|VdSrB)rorR)r0r{s r3rz$Order.identifiers..s0NN*Z))*55NNNNNNr5rrs r3rrzOrder.identifiers}sNNNNNNNNr5N)rOr^r_r`rMrsrrrrordrrRrrsrcrlrtrrKrSrLr:rrqrrr r.r5r3rqrqeso  %/DJ}$M$M$MKj!MMMTZ&2BdSSSFFSSS * +;t L L LNDILLL!tz-4@@@K@@@DJzT:::Hc:::!/ T!J!J!JGX JJJ4:guOOOE5OOOO4S#X/OE*c/4JOOOOOOr5rqcveZdZUdZejdejZee d<ejddddZ e e d<ejd Z e ee d <ejd d Zee d <ejd d Ze ee d <e jd e eeefdeedffdZ dS) OrderResourceaOrder Resource. :ivar acme.messages.Order body: :ivar bytes csr_pem: The CSR this Order will be finalized with. :ivar authorizations: Fully-fetched AuthorizationResource objects. :vartype authorizations: `list` of `acme.messages.AuthorizationResource` :ivar str fullchain_pem: The fetched contents of the certificate URL produced once the order was finalized, if it's present. :ivar alternative_fullchains_pem: The fetched contents of alternative certificate chain URLs produced once the order was finalized, if present and requested during finalization. :vartype alternative_fullchains_pem: `list` of `str` rrpcsr_pemTc,|dSNzutf-8r)ss r3rzOrderResource.!((72C2Cr5c,|dSr{)r)bs r3rzOrderResource.r}r5)rvrqrbrs fullchain_pemryalternative_fullchains_pemrrr7.c4td|DS)Nc3JK|]}t|VdSrB)r\rR)r0authzs r3rz/OrderResource.authorizations..s1OO*44U;;OOOOOOr5rrs r3rszOrderResource.authorizationssOOOOOOOOr5N)rOr^r_r`rMrsrqrRrrdrybytesrsrr\rrcrrqrrr r.r5r3rxrxsZ  $*VU_===D%===TZ T)D(C(C(C E E EGU E E E3=$*=M2N2NND./NNN#OtDDDM3DDD,6DJ7SAE-G-G-GS GGG Pd4S>2Pu=RTW=W7XPPPPPPr5rxceZdZdZdS)NewOrderz New order.Nrr.r5r3rrsr5r)Fr`collections.abcrrLrtypingrrrrrr r r r r josepyrMacmerrrrrr/rrr BaseExceptionrfr<JSONDeSerializabler>rkIDENTIFIER_FQDN IDENTIFIER_IPrror:rSTATUS_UNKNOWNrJSTATUS_PROCESSING STATUS_VALIDSTATUS_INVALIDSTATUS_REVOKED STATUS_READYSTATUS_DEACTIVATEDrrrrrrrr2r4r6r9rNrRrXrZr\r_rgrkrqrxrr.r5r3rs $$$$$$ !!!!!!, Q B  C  T X_  T N D X!$G%&<'(4)*U+,dA@ J?\?FM= B0;0A0A0C0C }11111'111:.....Y... !.''t$$ %%%%%*%%%TTTTTD %v|TTTn.....Y...  "" ""F<((vg  "" ""vg VM**44444'444n.....t(...!!!!!h!!!4,%%%%%%%%&g3>JJJj7j7j7j7j7<j7j7j7Zl K K K K K? K K K>1>1>1>1>1L>1>1>1B         HHHHHLHHH6}     -   CCCCCOCCCccccc2ccc G G G G G/ G G G ' ' ' ' '* ' ' 'OOOOOLOOO:#P#P#P#P#PO#P#P#PLur5