n7dmr.radio
Updated:
2021-10-29 21:39:35 UTC (921 days ago)
Go to most recent »
Notices
DNSSEC Authentication Chain
RRset status
Bogus (4)
- n7dmr.radio/A
- n7dmr.radio/AAAA
- n7dmr.radio/NS
- n7dmr.radio/SOA
DNSKEY/DS/NSEC status
Bogus (2)
- n7dmr.radio/DNSKEY (alg 13, id 2371)
- n7dmr.radio/DNSKEY (alg 13, id 34505)
Secure (6)
- ./DNSKEY (alg 8, id 14748)
- ./DNSKEY (alg 8, id 20326)
- n7dmr.radio/DS (alg 13, id 32976)
- radio/DNSKEY (alg 10, id 38247)
- radio/DNSKEY (alg 10, id 62727)
- radio/DS (alg 10, id 62727)
Non_existent (1)
- n7dmr.radio/DNSKEY (alg 13, id 32976)
Delegation status
Bogus (1)
- radio to n7dmr.radio
Secure (1)
- . to radio
Notices
Errors (2)
- radio to n7dmr.radio: No valid RRSIGs made by a key corresponding to a DS RR were found covering the DNSKEY RRset, resulting in no secure entry point (SEP) into the zone. (108.162.192.147, 108.162.193.146, 172.64.32.147, 172.64.33.146, 173.245.58.147, 173.245.59.146, 2606:4700:50::adf5:3a93, 2606:4700:58::adf5:3b92, 2803:f800:50::6ca2:c093, 2803:f800:50::6ca2:c192, 2a06:98c1:50::ac40:2093, 2a06:98c1:50::ac40:2192, UDP_-_EDNS0_4096_D_KN, UDP_-_EDNS0_512_D_KN)
- radio to n7dmr.radio: The DS RRset for the zone included algorithm 13 (ECDSAP256SHA256), but no DS RR matched a DNSKEY with algorithm 13 that signs the zone's DNSKEY RRset. (108.162.192.147, 108.162.193.146, 172.64.32.147, 172.64.33.146, 173.245.58.147, 173.245.59.146, 2606:4700:50::adf5:3a93, 2606:4700:58::adf5:3b92, 2803:f800:50::6ca2:c093, 2803:f800:50::6ca2:c192, 2a06:98c1:50::ac40:2093, 2a06:98c1:50::ac40:2192, UDP_-_EDNS0_4096_D_KN, UDP_-_EDNS0_512_D_KN)
Warnings (3)
- RRSIG n7dmr.radio/DS alg 10, id 38247: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
- RRSIG radio/DNSKEY alg 10, id 62727: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
- RRSIG radio/DNSKEY alg 10, id 62727: DNSSEC specification recommends not signing with DNSSEC algorithm 10 (RSASHA512).
JavaScript is required to make the graph below interactive.
