RRSIG datenknoten.me/A alg 10, id 50180: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/AAAA alg 10, id 50180: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/DNSKEY alg 10, id 50180: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/DNSKEY alg 10, id 50180: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/DNSKEY alg 10, id 55857: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/DNSKEY alg 10, id 55857: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/MX alg 10, id 50180: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/NS alg 10, id 50180: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/SOA alg 10, id 50180: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
RRSIG datenknoten.me/TXT alg 10, id 50180: The Signature Expiration field of the RRSIG RR (2020-06-26 16:28:42+00:00) is 14 days in the past.
me to datenknoten.me: No valid RRSIGs made by a key corresponding to a DS RR were found covering the DNSKEY RRset, resulting in no secure entry point (SEP) into the zone. (95.85.45.221, 2a03:b0c0:0:1010::fb:8001, UDP_-_EDNS0_4096_D_K)
Warnings (39)
RRSIG datenknoten.me/A alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/A alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/AAAA alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/AAAA alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DNSKEY alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DNSKEY alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DNSKEY alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DNSKEY alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DNSKEY alg 10, id 55857: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DNSKEY alg 10, id 55857: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DNSKEY alg 10, id 55857: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DNSKEY alg 10, id 55857: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/DS alg 7, id 20555: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG datenknoten.me/MX alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/MX alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/NS alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/NS alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/SOA alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/SOA alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/TXT alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG datenknoten.me/TXT alg 10, id 50180: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG me/DNSKEY alg 7, id 20555: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 20555: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 20555: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 20555: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 2569: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 2569: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 2569: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 2569: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 53233: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 53233: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 53233: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG me/DNSKEY alg 7, id 53233: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
me to datenknoten.me: Authoritative AAAA records exist for ns2.datenknoten.me, but there are no corresponding AAAA glue records.
me to datenknoten.me: Authoritative AAAA records exist for ns3.datenknoten.me, but there are no corresponding AAAA glue records.
me/DS (alg 7, id 2569): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
me/DS (alg 7, id 2569): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
me/DS (alg 7, id 2569): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
me/DS (alg 7, id 2569): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.