16.172.in-addr.arpa

Updated: 2021-01-08 04:27:12 UTC (1204 days ago) Go to most recent »

DNSSEC options (hide)

|?| RR types:
|?| DNSSEC algorithms:
|?| DS digest algorithms:
|?| Denial of existence:
|?| Redundant edges:
|?| Trust anchors:
- Root zone KSK
|?| Additional trusted keys:

Notices

DNSSEC Authentication Chain

RRset status

Insecure (2)

16.172.in-addr.arpa/NS
16.172.in-addr.arpa/SOA

Secure (1)

172.in-addr.arpa/SOA

DNSKEY/DS/NSEC status

Secure (20)

./DNSKEY (alg 8, id 20326)
./DNSKEY (alg 8, id 26116)
./DNSKEY (alg 8, id 42351)
172.in-addr.arpa/DNSKEY (alg 5, id 4776)
172.in-addr.arpa/DNSKEY (alg 5, id 54712)
172.in-addr.arpa/DNSKEY (alg 5, id 63856)
172.in-addr.arpa/DNSKEY (alg 5, id 65331)
172.in-addr.arpa/DS (alg 5, id 4776)
NSEC proving non-existence of 16.172.in-addr.arpa/DS
arpa/DNSKEY (alg 8, id 41685)
arpa/DNSKEY (alg 8, id 42581)
arpa/DNSKEY (alg 8, id 4825)
arpa/DS (alg 8, id 42581)
arpa/DS (alg 8, id 42581)
in-addr.arpa/DNSKEY (alg 8, id 39481)
in-addr.arpa/DNSKEY (alg 8, id 47054)
in-addr.arpa/DNSKEY (alg 8, id 54956)
in-addr.arpa/DS (alg 8, id 47054)
in-addr.arpa/DS (alg 8, id 53696)
in-addr.arpa/DS (alg 8, id 63982)

Non_existent (2)

in-addr.arpa/DNSKEY (alg 8, id 53696)
in-addr.arpa/DNSKEY (alg 8, id 63982)

Delegation status

Lame (1)

172.in-addr.arpa to 16.172.in-addr.arpa

Secure (3)

. to arpa
arpa to in-addr.arpa
in-addr.arpa to 172.in-addr.arpa

Notices

Errors (3)

16.172.in-addr.arpa zone: The server(s) did not respond authoritatively for the namespace. (192.175.48.6, 192.175.48.42, 2620:4f:8000::6, 2620:4f:8000::42)
16.172.in-addr.arpa/NS: The Authoritative Answer (AA) flag was not set in the response. (192.175.48.6, 192.175.48.42, 2620:4f:8000::6, 2620:4f:8000::42, UDP_-_EDNS0_4096_D_KN)
16.172.in-addr.arpa/SOA: The Authoritative Answer (AA) flag was not set in the response. (192.175.48.6, 192.175.48.42, 2620:4f:8000::6, 2620:4f:8000::42, TCP_-_EDNS0_4096_D_N, UDP_-_EDNS0_4096_D_KN, UDP_-_EDNS0_4096_D_KN_0x20)

Warnings (16)

172.in-addr.arpa/DS (alg 5, id 4776): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
172.in-addr.arpa/DS (alg 5, id 4776): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
RRSIG 172.in-addr.arpa/DNSKEY alg 5, id 4776: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG 172.in-addr.arpa/DNSKEY alg 5, id 4776: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG 172.in-addr.arpa/DNSKEY alg 5, id 4776: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG 172.in-addr.arpa/DNSKEY alg 5, id 4776: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG 172.in-addr.arpa/DNSKEY alg 5, id 65331: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG 172.in-addr.arpa/DNSKEY alg 5, id 65331: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG 172.in-addr.arpa/DNSKEY alg 5, id 65331: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG 172.in-addr.arpa/DNSKEY alg 5, id 65331: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG 172.in-addr.arpa/SOA alg 5, id 65331: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG NSEC proving non-existence of 16.172.in-addr.arpa/DS alg 5, id 65331: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
arpa/DS (alg 8, id 42581): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
arpa/DS (alg 8, id 42581): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
arpa/DS (alg 8, id 42581): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
arpa/DS (alg 8, id 42581): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.