comunesbt.it

Updated: 2020-05-04 20:50:27 UTC (1464 days ago) Go to most recent »

DNSSEC options (hide)

|?| RR types:
|?| DNSSEC algorithms:
|?| DS digest algorithms:
|?| Denial of existence:
|?| Redundant edges:
|?| Trust anchors:
- Root zone KSK
|?| Additional trusted keys:

Notices

DNSSEC Authentication Chain

RRset status

Secure (6)

comunesbt.it/A
comunesbt.it/AAAA
comunesbt.it/MX
comunesbt.it/NS
comunesbt.it/SOA
comunesbt.it/TXT

DNSKEY/DS/NSEC status

Secure (8)

./DNSKEY (alg 8, id 20326)
./DNSKEY (alg 8, id 48903)
comunesbt.it/DNSKEY (alg 14, id 23549)
comunesbt.it/DNSKEY (alg 14, id 348)
comunesbt.it/DS (alg 14, id 348)
it/DNSKEY (alg 10, id 18395)
it/DNSKEY (alg 10, id 41901)
it/DS (alg 10, id 41901)

Delegation status

Secure (2)

. to it
it to comunesbt.it

Notices

Errors (4)

it zone: The server(s) responded over TCP with a malformed response or with an invalid RCODE. (217.29.76.4, 2001:1ac0:0:200:0:a5d1:6004:2)
it/DNSKEY: No response was received from the server over TCP (tried 6 times). (2001:1ac0:0:200:0:a5d1:6004:2, TCP_-_EDNS0_4096_D_K)
it/DNSKEY: No response was received from the server over UDP (tried 4 times). (194.119.192.34, 2001:1ac0:0:200:0:a5d1:6004:2, UDP_-_EDNS0_512_D_K)
it/DNSKEY: No response was received from the server over UDP (tried 8 times). (217.29.76.4, UDP_-_EDNS0_4096_D)

Warnings (11)

RRSIG comunesbt.it/DS alg 10, id 18395: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG it/DNSKEY alg 10, id 18395: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG it/DNSKEY alg 10, id 18395: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG it/DNSKEY alg 10, id 18395: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG it/DNSKEY alg 10, id 18395: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG it/DNSKEY alg 10, id 41901: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG it/DNSKEY alg 10, id 41901: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG it/DNSKEY alg 10, id 41901: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
RRSIG it/DNSKEY alg 10, id 41901: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
it/DNSKEY (alg 10, id 18395): No response was received until the UDP payload size was decreased, indicating that the server might be attempting to send a payload that exceeds the path maximum transmission unit (PMTU) size. (194.119.192.34, 2a00:1620:c0:220:194:119:192:34, UDP_-_EDNS0_4096_D_K)
it/DNSKEY (alg 10, id 41901): No response was received until the UDP payload size was decreased, indicating that the server might be attempting to send a payload that exceeds the path maximum transmission unit (PMTU) size. (194.119.192.34, 2a00:1620:c0:220:194:119:192:34, UDP_-_EDNS0_4096_D_K)

DNSKEY legend

Full legend

	SEP bit set
	Revoke bit set
	Trust anchor

comunesbt.it

RRset status

Secure (6)

DNSKEY/DS/NSEC status

Secure (8)

Delegation status

Secure (2)

Notices

Errors (4)

Warnings (11)

DNSKEY legend

See also