bogus.d4a7n3.rootcanary.net
« Previous analysis
|
Next analysis »
RRset status
Bogus (2)
-
bogus.d4a7n3.rootcanary.net/A
-
bogus.d4a7n3.rootcanary.net/AAAA
DNSKEY/DS/NSEC status
Secure (10)
-
./DNSKEY (alg 8, id 20326)
-
./DNSKEY (alg 8, id 42351)
-
d4a7n3.rootcanary.net/DNSKEY (alg 7, id 48396)
-
d4a7n3.rootcanary.net/DS (alg 7, id 48396)
-
net/DNSKEY (alg 8, id 30944)
-
net/DNSKEY (alg 8, id 35886)
-
net/DS (alg 8, id 35886)
-
rootcanary.net/DNSKEY (alg 8, id 25188)
-
rootcanary.net/DNSKEY (alg 8, id 64786)
-
rootcanary.net/DS (alg 8, id 64786)
Delegation status
Secure (3)
-
. to net
-
net to rootcanary.net
-
rootcanary.net to d4a7n3.rootcanary.net
Notices
Errors (2)
-
RRSIG bogus.d4a7n3.rootcanary.net/A alg 7, id 48396: The cryptographic signature of the RRSIG RR does not properly validate.
-
RRSIG bogus.d4a7n3.rootcanary.net/AAAA alg 7, id 48396: The cryptographic signature of the RRSIG RR does not properly validate.
Warnings (3)
-
RRSIG bogus.d4a7n3.rootcanary.net/A alg 7, id 48396: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG bogus.d4a7n3.rootcanary.net/AAAA alg 7, id 48396: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
-
RRSIG d4a7n3.rootcanary.net/DNSKEY alg 7, id 48396: DNSSEC specification recommends not signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1).
DNSKEY legend
Full legend
| SEP bit set |
| Revoke bit set |
| Trust anchor |
JavaScript is required to make the graph below interactive.