sigfail.verteiltesysteme.net

Updated: 2025-03-03 21:04:26 UTC (110 days ago) Update now

DNSSEC options (hide)

Notices

DNSSEC Authentication Chain

./DNSKEY (alg 8, id 20326)
./DNSKEY (alg 8, id 26470)
./DNSKEY (alg 8, id 38696)
ippacket.stream/DNSKEY (alg 8, id 65045)
ippacket.stream/DS (alg 8, id 65045)
net/DNSKEY (alg 13, id 10024)
net/DNSKEY (alg 13, id 37331)
net/DS (alg 13, id 37331)
rsa2048-sha256.ippacket.stream/DNSKEY (alg 8, id 46436)
rsa2048-sha256.ippacket.stream/DS (alg 8, id 46436)
stream/DNSKEY (alg 8, id 31686)
stream/DNSKEY (alg 8, id 31735)
stream/DS (alg 8, id 31735)
verteiltesysteme.net/DNSKEY (alg 13, id 29912)
verteiltesysteme.net/DNSKEY (alg 13, id 47187)
verteiltesysteme.net/DS (alg 13, id 29912)

RRSIG sigfail.rsa2048-sha256.ippacket.stream/A alg 8, id 46436: The cryptographic signature of the RRSIG RR does not properly validate. See RFC 4035, Sec. 5.3.3.
RRSIG sigfail.rsa2048-sha256.ippacket.stream/AAAA alg 8, id 46436: The cryptographic signature of the RRSIG RR does not properly validate. See RFC 4035, Sec. 5.3.3.

stream to ippacket.stream: Authoritative AAAA records exist for ns1.ippacket.stream, but there are no corresponding AAAA glue records. See RFC 1034, Sec. 4.2.2.
stream to ippacket.stream: Authoritative AAAA records exist for ns2.ippacket.stream, but there are no corresponding AAAA glue records. See RFC 1034, Sec. 4.2.2.
verteiltesysteme.net/DS (alg 13, id 29912): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
verteiltesysteme.net/DS (alg 13, id 29912): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.