kronos.xdi.uevora.pt
« Previous analysis
|
Next analysis »
DNSKEY/DS/NSEC status
Secure (10)
-
./DNSKEY (alg 8, id 20326)
-
./DNSKEY (alg 8, id 48903)
-
NSEC proving non-existence of xdi.uevora.pt/DS
-
pt/DNSKEY (alg 7, id 21299)
-
pt/DNSKEY (alg 7, id 40995)
-
pt/DS (alg 7, id 40995)
-
pt/DS (alg 7, id 40995)
-
uevora.pt/DNSKEY (alg 5, id 10167)
-
uevora.pt/DNSKEY (alg 5, id 52276)
-
uevora.pt/DS (alg 5, id 52276)
Delegation status
Insecure (1)
-
uevora.pt to xdi.uevora.pt
Notices
Errors (1)
-
xdi.uevora.pt zone: The server(s) were not responsive to queries over UDP. (193.137.179.181, 2001:690:2006:4200::181)
Warnings (20)
-
RRSIG NSEC proving non-existence of xdi.uevora.pt/DS alg 5, id 10167: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
-
RRSIG pt/DNSKEY alg 7, id 40995: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG pt/DNSKEY alg 7, id 40995: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG uevora.pt/DNSKEY alg 5, id 10167: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
-
RRSIG uevora.pt/DNSKEY alg 5, id 10167: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
-
RRSIG uevora.pt/DNSKEY alg 5, id 52276: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
-
RRSIG uevora.pt/DNSKEY alg 5, id 52276: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
-
RRSIG uevora.pt/DS alg 7, id 21299: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG uevora.pt/SOA alg 5, id 10167: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
-
pt/DNSKEY (alg 7, id 21299): The server appears to support DNS cookies but did not return a COOKIE option. (2a04:6d82::1, UDP_-_EDNS0_4096_D_K)
-
pt/DNSKEY (alg 7, id 40995): The server appears to support DNS cookies but did not return a COOKIE option. (2a04:6d82::1, UDP_-_EDNS0_4096_D_K)
-
pt/DNSKEY: The server appears to support DNS cookies but did not return a COOKIE option. (2a04:6d82::1, UDP_-_EDNS0_512_D_K)
-
pt/DS (alg 7, id 40995): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
-
pt/DS (alg 7, id 40995): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
-
pt/DS (alg 7, id 40995): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
-
pt/DS (alg 7, id 40995): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
-
uevora.pt/DS (alg 5, id 52276): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
-
uevora.pt/DS (alg 5, id 52276): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
-
uevora.pt/DS (alg 5, id 52276): The server appears to support DNS cookies but did not return a COOKIE option. (2a04:6d82::1, UDP_-_EDNS0_4096_D_K)
-
uevora.pt/DS (alg 5, id 52276): The server appears to support DNS cookies but did not return a COOKIE option. (2a04:6d82::1, UDP_-_EDNS0_4096_D_K)
DNSKEY legend
Full legend
| SEP bit set |
| Revoke bit set |
| Trust anchor |
JavaScript is required to make the graph below interactive.