View on GitHub

DNSViz: A DNS visualization tool

dyn.ad5ey.net

DNSSEC options (hide)
  1. |?|
  2. |?|
  3. |?|
  4. |?|
  5. |?|
  6. |?|
  7. |?|
Notices
DNSSEC Authentication Chain

RRset statusRRset status

Secure (3)
  • dyn.ad5ey.net/NS
  • dyn.ad5ey.net/NSEC3PARAM
  • dyn.ad5ey.net/SOA

DNSKEY/DS/NSEC statusDNSKEY/DS/NSEC status

Secure (13)
  • ./DNSKEY (alg 8, id 20326)
  • ./DNSKEY (alg 8, id 26838)
  • ad5ey.net/DNSKEY (alg 10, id 12693)
  • ad5ey.net/DNSKEY (alg 10, id 18488)
  • ad5ey.net/DS (alg 10, id 12693)
  • ad5ey.net/DS (alg 10, id 18488)
  • dyn.ad5ey.net/DNSKEY (alg 10, id 58925)
  • dyn.ad5ey.net/DNSKEY (alg 10, id 6207)
  • dyn.ad5ey.net/DS (alg 10, id 58925)
  • dyn.ad5ey.net/DS (alg 10, id 6207)
  • net/DNSKEY (alg 8, id 35886)
  • net/DNSKEY (alg 8, id 65378)
  • net/DS (alg 8, id 35886)

Delegation statusDelegation status

Secure (3)
  • . to net
  • ad5ey.net to dyn.ad5ey.net
  • net to ad5ey.net

NoticesNotices

Warnings (14)
  • RRSIG ad5ey.net/DNSKEY alg 10, id 12693: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG ad5ey.net/DNSKEY alg 10, id 12693: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG ad5ey.net/DNSKEY alg 10, id 18488: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG ad5ey.net/DNSKEY alg 10, id 18488: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/DNSKEY alg 10, id 58925: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/DNSKEY alg 10, id 58925: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/DNSKEY alg 10, id 6207: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/DNSKEY alg 10, id 6207: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/DS alg 10, id 18488: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/DS alg 10, id 18488: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/NS alg 10, id 58925: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/NSEC3PARAM alg 10, id 58925: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • RRSIG dyn.ad5ey.net/SOA alg 10, id 58925: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
  • net to ad5ey.net: Authoritative AAAA records exist for ns.cynd.net, but there are no corresponding AAAA glue records.

DNSKEY legend

Full legend
SEP bit setSEP bit set
Revoke bit setRevoke bit set
Trust anchorTrust anchor
Download: png | svg
Warning JavaScript is required to make the graph below interactive.
DNSSEC authentication graph