mail.bestwell.com.tw
Updated:
2021-11-01 02:44:00 UTC (3 years ago)
Update now
Notices
DNSSEC Authentication Chain
RRset status
Insecure (1)
- mail.bestwell.com.tw/A
Secure (4)
- com.tw/SOA
- com.tw/SOA
- com.tw/SOA
- com.tw/SOA
DNSKEY/DS/NSEC status
Secure (11)
- ./DNSKEY (alg 8, id 14748)
- ./DNSKEY (alg 8, id 20326)
- NSEC3 proving non-existence of bestwell.com.tw/DS
- com.tw/DNSKEY (alg 8, id 24960)
- com.tw/DNSKEY (alg 8, id 25270)
- com.tw/DNSKEY (alg 8, id 51351)
- com.tw/DS (alg 8, id 25270)
- tw/DNSKEY (alg 8, id 37254)
- tw/DNSKEY (alg 8, id 40792)
- tw/DNSKEY (alg 8, id 44793)
- tw/DS (alg 8, id 40792)
Delegation status
Insecure (1)
- com.tw to bestwell.com.tw
Secure (2)
- . to tw
- tw to com.tw
Notices
Errors (2)
- NSEC3 proving non-existence of bestwell.com.tw/DS: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
- NSEC3 proving non-existence of bestwell.com.tw/DS: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
Warnings (4)
- NSEC3 proving non-existence of bestwell.com.tw/DS: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
- NSEC3 proving non-existence of bestwell.com.tw/DS: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
- com.tw to bestwell.com.tw: The following NS name(s) were found in the authoritative NS RRset, but not in the delegation NS RRset (i.e., in the com.tw zone): ns1.hinetidc.net, ns2.hinetidc.net, ns03.idc.hinet.net, ns02.idc.hinet.net, ns01.idc.hinet.net, ns.hinetidc.net See RFC 1034, Sec. 4.2.2.
- com.tw to bestwell.com.tw: The following NS name(s) were found in the delegation NS RRset (i.e., in the com.tw zone), but not in the authoritative NS RRset: ns.idc.hinet.net, ns2.idc.hinet.net, ns3.idc.hinet.net See RFC 1034, Sec. 4.2.2.
JavaScript is required to make the graph below interactive.
