NSEC proving non-existence of 1.1.1.in-addr.arpa/DS
arpa/DNSKEY (alg 8, id 42581)
arpa/DNSKEY (alg 8, id 4825)
arpa/DS (alg 8, id 42581)
arpa/DS (alg 8, id 42581)
in-addr.arpa/DNSKEY (alg 8, id 39481)
in-addr.arpa/DNSKEY (alg 8, id 47054)
in-addr.arpa/DNSKEY (alg 8, id 54956)
in-addr.arpa/DS (alg 8, id 47054)
in-addr.arpa/DS (alg 8, id 53696)
in-addr.arpa/DS (alg 8, id 63982)
Non_existent (2)
in-addr.arpa/DNSKEY (alg 8, id 53696)
in-addr.arpa/DNSKEY (alg 8, id 63982)
Delegation status
Insecure (1)
1.in-addr.arpa to 1.1.1.in-addr.arpa
Secure (3)
. to arpa
arpa to in-addr.arpa
in-addr.arpa to 1.in-addr.arpa
Notices
Errors (1)
1.in-addr.arpa/DS: No response was received from the server over UDP (tried 12 times). See RFC 1035, Sec. 4.2. (2620:37:e000::53, UDP_-_NOEDNS_)
Warnings (8)
./DNSKEY (alg 8, id 20326): No response was received until the UDP payload size was decreased, indicating that the server might be attempting to send a payload that exceeds the path maximum transmission unit (PMTU) size. See RFC 6891, Sec. 6.2.6. (198.97.190.53, UDP_-_EDNS0_4096_D_KN)
./DNSKEY (alg 8, id 26116): No response was received until the UDP payload size was decreased, indicating that the server might be attempting to send a payload that exceeds the path maximum transmission unit (PMTU) size. See RFC 6891, Sec. 6.2.6. (198.97.190.53, UDP_-_EDNS0_4096_D_KN)
1.in-addr.arpa to 1.1.1.in-addr.arpa: The following NS name(s) were found in the authoritative NS RRset, but not in the delegation NS RRset (i.e., in the 1.in-addr.arpa zone): mira.ns.cloudflare.com, alec.ns.cloudflare.com See RFC 1034, Sec. 4.2.2.
1.in-addr.arpa to 1.1.1.in-addr.arpa: The following NS name(s) were found in the delegation NS RRset (i.e., in the 1.in-addr.arpa zone), but not in the authoritative NS RRset: ns3.cloudflare.com, ns7.cloudflare.com See RFC 1034, Sec. 4.2.2.
arpa/DS (alg 8, id 42581): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
arpa/DS (alg 8, id 42581): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
arpa/DS (alg 8, id 42581): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset. See RFC 4509, Sec. 3.
arpa/DS (alg 8, id 42581): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset. See RFC 4509, Sec. 3.