bogus.d2a10n3.rootcanary.net
« Previous analysis
|
Next analysis »
RRset status
Bogus (2)
-
bogus.d2a10n3.rootcanary.net/A
-
bogus.d2a10n3.rootcanary.net/AAAA
DNSKEY/DS/NSEC status
Secure (10)
-
./DNSKEY (alg 8, id 20326)
-
./DNSKEY (alg 8, id 26838)
-
d2a10n3.rootcanary.net/DNSKEY (alg 10, id 47604)
-
d2a10n3.rootcanary.net/DS (alg 10, id 47604)
-
net/DNSKEY (alg 8, id 35886)
-
net/DNSKEY (alg 8, id 65378)
-
net/DS (alg 8, id 35886)
-
rootcanary.net/DNSKEY (alg 8, id 25188)
-
rootcanary.net/DNSKEY (alg 8, id 64786)
-
rootcanary.net/DS (alg 8, id 64786)
Delegation status
Secure (3)
-
. to net
-
net to rootcanary.net
-
rootcanary.net to d2a10n3.rootcanary.net
Notices
Errors (2)
-
RRSIG bogus.d2a10n3.rootcanary.net/A alg 10, id 47604: The cryptographic signature of the RRSIG RR does not properly validate.
-
RRSIG bogus.d2a10n3.rootcanary.net/AAAA alg 10, id 47604: The cryptographic signature of the RRSIG RR does not properly validate.
Warnings (3)
-
RRSIG bogus.d2a10n3.rootcanary.net/A alg 10, id 47604: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
-
RRSIG bogus.d2a10n3.rootcanary.net/AAAA alg 10, id 47604: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
-
RRSIG d2a10n3.rootcanary.net/DNSKEY alg 10, id 47604: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
DNSKEY legend
Full legend
| SEP bit set |
| Revoke bit set |
| Trust anchor |
JavaScript is required to make the graph below interactive.