itau.b.br

Updated: 2020-03-30 15:05:50 UTC (1538 days ago) Go to most recent »

DNSSEC options (hide)

Notices

DNSSEC Authentication Chain

./DNSKEY (alg 8, id 20326)
./DNSKEY (alg 8, id 33853)
./DNSKEY (alg 8, id 48903)
b.br/DNSKEY (alg 13, id 145)
b.br/DS (alg 13, id 145)
br/DNSKEY (alg 13, id 19027)
br/DNSKEY (alg 13, id 2471)
br/DS (alg 13, id 2471)
itau.b.br/DNSKEY (alg 5, id 22876)
itau.b.br/DS (alg 5, id 22876)

itau.b.br/DS (alg 5, id 22876): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
itau.b.br/DS (alg 5, id 22876): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.

RRSIG itau.b.br/A alg 5, id 22876: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1). See RFC 8624, Sec. 3.1.
RRSIG itau.b.br/DNSKEY alg 5, id 22876: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1). See RFC 8624, Sec. 3.1.
RRSIG itau.b.br/NS alg 5, id 22876: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1). See RFC 8624, Sec. 3.1.
RRSIG itau.b.br/SOA alg 5, id 22876: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1). See RFC 8624, Sec. 3.1.
RRSIG itau.b.br/TXT alg 5, id 22876: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1). See RFC 8624, Sec. 3.1.
itau.b.br/CNAME has warnings; select the "Denial of existence" DNSSEC option to see them.
itau.b.br/DNSKEY has warnings; select the "Denial of existence" DNSSEC option to see them.
owzt5314qf.itau.b.br/A has warnings; select the "Denial of existence" DNSSEC option to see them.
itau.b.br/AAAA has warnings; select the "Denial of existence" DNSSEC option to see them.
itau.b.br/MX has warnings; select the "Denial of existence" DNSSEC option to see them.