stb.gov
« Previous analysis
|
Next analysis »
RRset status
Secure (6)
-
stb.gov/A
-
stb.gov/MX
-
stb.gov/NS
-
stb.gov/NSEC3PARAM
-
stb.gov/SOA
-
stb.gov/TXT
DNSKEY/DS/NSEC status
Secure (14)
-
./DNSKEY (alg 8, id 20326)
-
./DNSKEY (alg 8, id 20826)
-
./DNSKEY (alg 8, id 47671)
-
gov/DNSKEY (alg 8, id 2706)
-
gov/DNSKEY (alg 8, id 7698)
-
gov/DS (alg 8, id 7698)
-
stb.gov/DNSKEY (alg 7, id 12857)
-
stb.gov/DNSKEY (alg 7, id 1995)
-
stb.gov/DNSKEY (alg 7, id 21680)
-
stb.gov/DNSKEY (alg 7, id 42735)
-
stb.gov/DS (alg 7, id 1995)
-
stb.gov/DS (alg 7, id 1995)
-
stb.gov/DS (alg 7, id 42735)
-
stb.gov/DS (alg 7, id 42735)
Notices
Warnings (22)
-
RRSIG stb.gov/A alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/DNSKEY alg 7, id 1995: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/DNSKEY alg 7, id 1995: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/DNSKEY alg 7, id 1995: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/DNSKEY alg 7, id 1995: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/DNSKEY alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/DNSKEY alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/DNSKEY alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/DNSKEY alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/MX alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/NS alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/NSEC3PARAM alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/SOA alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG stb.gov/TXT alg 7, id 21680: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
stb.gov/DS (alg 7, id 1995): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
-
stb.gov/DS (alg 7, id 1995): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
-
stb.gov/DS (alg 7, id 1995): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
-
stb.gov/DS (alg 7, id 1995): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
-
stb.gov/DS (alg 7, id 42735): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
-
stb.gov/DS (alg 7, id 42735): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
-
stb.gov/DS (alg 7, id 42735): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
-
stb.gov/DS (alg 7, id 42735): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
DNSKEY legend
Full legend
| SEP bit set |
| Revoke bit set |
| Trust anchor |
JavaScript is required to make the graph below interactive.