ke
Updated:
2022-09-16 16:17:50 UTC (659 days ago)
Go to most recent »
Notices
DNSSEC Authentication Chain
RRset status
Insecure (7)
- ke/NS
- ke/NSEC3PARAM
- ke/NSEC3PARAM (NODATA)
- ke/SOA
- ke/SOA
- ke/SOA
- ke/SOA
Secure (1)
- ./SOA
DNSKEY/DS/NSEC status
Insecure (3)
- ke/DNSKEY (alg 8, id 10600)
- ke/DNSKEY (alg 8, id 30228)
- ke/DNSKEY (alg 8, id 41201)
Secure (3)
- ./DNSKEY (alg 8, id 20326)
- ./DNSKEY (alg 8, id 20826)
- NSEC proving non-existence of ke/DS
Delegation status
Insecure (1)
- . to ke
Notices
Errors (10)
- ke zone: The following NS name(s) did not resolve to address(es): ns.anycast.kenic.or.ke
- ke/DNSKEY (alg 8, id 30228): The DNSKEY RR was not found in the DNSKEY RRset returned by one or more servers. (185.28.194.194, 185.38.108.108, 196.1.4.3, 196.1.4.130, 196.216.168.22, 198.32.67.9, 204.61.216.7, 2001:500:14:6007:ad::1, 2001:43f8:10:0:50c0:a8ff:feee:30, 2001:43f8:120::22, UDP_-_EDNS0_4096_D_KN, UDP_-_EDNS0_512_D_KN)
- ke/NS: No RRSIG covering the RRset was returned in the response. See RFC 4035, Sec. 3.1.1. (185.28.194.194, 185.38.108.108, 196.1.4.3, 196.1.4.130, 196.216.168.22, 198.32.67.9, 204.61.216.7, 2001:500:14:6007:ad::1, 2001:43f8:10:0:50c0:a8ff:feee:30, 2001:43f8:120::22, UDP_-_EDNS0_4096_D_KN)
- ke/NSEC3PARAM (NODATA): No NSEC RR(s) were returned to validate the NODATA response. See RFC 4035, Sec. 3.1.3.1, RFC 5155, Sec. 7.2.3, RFC 5155, Sec. 7.2.4. (185.28.194.194, 185.38.108.108, 196.1.4.3, 196.1.4.130, 196.216.168.22, 198.32.67.9, 204.61.216.7, 2001:500:14:6007:ad::1, 2001:43f8:10:0:50c0:a8ff:feee:30, 2001:43f8:120::22, UDP_-_EDNS0_4096_D_KN)
- ke/SOA: No RRSIG covering the RRset was returned in the response. See RFC 4035, Sec. 3.1.1. (185.28.194.194, 185.38.108.108, 196.1.4.3, 196.1.4.130, 198.32.67.9, 204.61.216.7, 2001:500:14:6007:ad::1, 2001:43f8:10:0:50c0:a8ff:feee:30, TCP_-_EDNS0_4096_D_N, UDP_-_EDNS0_4096_D_KN, UDP_-_EDNS0_4096_D_KN_0x20)
- ke/SOA: No RRSIG covering the RRset was returned in the response. See RFC 4035, Sec. 3.1.1. (196.216.168.22, 2001:43f8:120::22, TCP_-_EDNS0_4096_D_N, UDP_-_EDNS0_4096_D_KN, UDP_-_EDNS0_4096_D_KN_0x20)
- ke/SOA: No RRSIG covering the RRset was returned in the response. See RFC 4035, Sec. 3.1.1. (204.61.216.7, UDP_-_EDNS0_4096_D_KN)
- ke/DNSKEY has errors; select the "Denial of existence" DNSSEC option to see them.
- ke/CNAME has errors; select the "Denial of existence" DNSSEC option to see them.
- 5c7p09o6hl.ke/A has errors; select the "Denial of existence" DNSSEC option to see them.
Warnings (6)
- . to ke: AAAA glue records exist for mzizi.kenic.or.ke, but there are no corresponding authoritative AAAA records. See RFC 1034, Sec. 4.2.2.
- . to ke: The glue address(es) for mzizi.kenic.or.ke (196.1.4.3, 196.1.4.130, 198.32.67.9) differed from its authoritative address(es) (198.32.67.9). See RFC 1034, Sec. 4.2.2.
- ke/DNSKEY (alg 8, id 10600): The DNSKEY RR was not found in the DNSKEY RRset returned by one or more servers. (185.28.194.194, 185.38.108.108, 196.1.4.3, 196.1.4.130, 196.216.168.22, 198.32.67.9, 204.61.216.7, 2001:500:14:6007:ad::1, 2001:43f8:10:0:50c0:a8ff:feee:30, 2001:43f8:120::22, UDP_-_EDNS0_4096_D_KN, UDP_-_EDNS0_512_D_KN)
- ke/DNSKEY (alg 8, id 41201): The DNSKEY RR was not found in the DNSKEY RRset returned by one or more servers. (185.28.194.194, 185.38.108.108, 196.1.4.3, 196.1.4.130, 196.216.168.22, 198.32.67.9, 204.61.216.7, 2001:500:14:6007:ad::1, 2001:43f8:10:0:50c0:a8ff:feee:30, 2001:43f8:120::22, UDP_-_EDNS0_4096_D_KN, UDP_-_EDNS0_512_D_KN)
- ke/CNAME has warnings; select the "Denial of existence" DNSSEC option to see them.
- 5c7p09o6hl.ke/A has warnings; select the "Denial of existence" DNSSEC option to see them.
JavaScript is required to make the graph below interactive.
