RRSIG d3a5n1.rootcanary.net/DNSKEY alg 5, id 32389: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG secure.d3a5n1.rootcanary.net/A alg 5, id 32389: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG secure.d3a5n1.rootcanary.net/AAAA alg 5, id 32389: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
d3a5n1.rootcanary.net/DS (alg 5, id 32389): DNSSEC specification prohibits signing with DS records that use digest algorithm 3 (GOST 34.11-94).
d3a5n1.rootcanary.net/DS (alg 5, id 32389): DNSSEC specification prohibits signing with DS records that use digest algorithm 3 (GOST 34.11-94).
d3a5n1.rootcanary.net/DS (alg 5, id 32389): Generating cryptographic hashes using algorithm 3 (GOST 34.11-94) is not supported by this code, so the cryptographic status of the DS RR is unknown.
d3a5n1.rootcanary.net/DS (alg 5, id 32389): Generating cryptographic hashes using algorithm 3 (GOST 34.11-94) is not supported by this code, so the cryptographic status of the DS RR is unknown.