RRSIG bogus.d3a7n3.rootcanary.net/A alg 7, id 43770: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG bogus.d3a7n3.rootcanary.net/AAAA alg 7, id 43770: The cryptographic signature of the RRSIG RR does not properly validate.
Warnings (7)
RRSIG bogus.d3a7n3.rootcanary.net/A alg 7, id 43770: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG bogus.d3a7n3.rootcanary.net/AAAA alg 7, id 43770: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
RRSIG d3a7n3.rootcanary.net/DNSKEY alg 7, id 43770: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
d3a7n3.rootcanary.net/DS (alg 7, id 43770): DNSSEC specification prohibits signing with DS records that use digest algorithm 3 (GOST 34.11-94).
d3a7n3.rootcanary.net/DS (alg 7, id 43770): DNSSEC specification prohibits signing with DS records that use digest algorithm 3 (GOST 34.11-94).
d3a7n3.rootcanary.net/DS (alg 7, id 43770): Generating cryptographic hashes using algorithm 3 (GOST 34.11-94) is not supported by this code, so the cryptographic status of the DS RR is unknown.
d3a7n3.rootcanary.net/DS (alg 7, id 43770): Generating cryptographic hashes using algorithm 3 (GOST 34.11-94) is not supported by this code, so the cryptographic status of the DS RR is unknown.