capital.gov

Updated: 2020-07-17 14:28:21 UTC (1589 days ago) Go to most recent »

DNSSEC options (hide)

Notices

DNSSEC Authentication Chain

./DNSKEY (alg 8, id 20326)
./DNSKEY (alg 8, id 46594)
capital.gov/DNSKEY (alg 8, id 18303)
capital.gov/DNSKEY (alg 8, id 47871)
capital.gov/DNSKEY (alg 8, id 5556)
capital.gov/DNSKEY (alg 8, id 56122)
capital.gov/DNSKEY (alg 8, id 63964)
capital.gov/DS (alg 8, id 56122)
capital.gov/DS (alg 8, id 56122)
gov/DNSKEY (alg 8, id 26665)
gov/DNSKEY (alg 8, id 40176)
gov/DNSKEY (alg 8, id 7698)
gov/DS (alg 8, id 7698)
gov/DS (alg 8, id 7698)

capital.gov/DNSKEY (alg 8, id 63964): The DNSKEY RR was not found in the DNSKEY RRset returned by one or more servers. (63.150.72.4, 208.44.130.120, 2001:428::5, 2001:428::6, UDP_-_EDNS0_4096_D_K)
capital.gov/DS (alg 8, id 56122): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
capital.gov/DS (alg 8, id 56122): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
capital.gov/DS (alg 8, id 56122): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset. See RFC 4509, Sec. 3.
capital.gov/DS (alg 8, id 56122): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset. See RFC 4509, Sec. 3.
gov/DS (alg 8, id 7698): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
gov/DS (alg 8, id 7698): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
gov/DS (alg 8, id 7698): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset. See RFC 4509, Sec. 3.
gov/DS (alg 8, id 7698): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset. See RFC 4509, Sec. 3.