tamu.edu

Updated: 2023-04-23 05:08:17 UTC (395 days ago) Go to most recent »

DNSSEC options (hide)

|?| RR types:
|?| DNSSEC algorithms:
|?| DS digest algorithms:
|?| Denial of existence:
|?| Redundant edges:
|?| Trust anchors:
- Root zone KSK
|?| Additional trusted keys:

Notices

DNSSEC Authentication Chain

RRset status

Bogus (5)

tamu.edu/A
tamu.edu/MX
tamu.edu/NS
tamu.edu/SOA
tamu.edu/TXT

DNSKEY/DS/NSEC status

Bogus (4)

tamu.edu/DNSKEY (alg 8, id 27858)
tamu.edu/DNSKEY (alg 8, id 34975)
tamu.edu/DNSKEY (alg 8, id 37341)
tamu.edu/DNSKEY (alg 8, id 54682)

Secure (12)

./DNSKEY (alg 8, id 20326)
./DNSKEY (alg 8, id 60955)
edu/DNSKEY (alg 8, id 28065)
edu/DNSKEY (alg 8, id 30503)
edu/DS (alg 8, id 28065)
tamu.edu/DS (alg 5, id 30274)
tamu.edu/DS (alg 8, id 34975)
tamu.edu/DS (alg 8, id 34975)
tamu.edu/DS (alg 8, id 35167)
tamu.edu/DS (alg 8, id 53134)
tamu.edu/DS (alg 8, id 54682)
tamu.edu/DS (alg 8, id 54682)

Non_existent (4)

tamu.edu/DNSKEY (alg 5, id 30274)
tamu.edu/DNSKEY (alg 5, id 57030)
tamu.edu/DNSKEY (alg 8, id 35167)
tamu.edu/DNSKEY (alg 8, id 53134)

Delegation status

Bogus (1)

edu to tamu.edu

Secure (1)

. to edu

Notices

Errors (18)

RRSIG tamu.edu/DNSKEY alg 8, id 34975: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 34975: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 34975: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 34975: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 37341: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 37341: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 37341: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 37341: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 54682: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 54682: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 54682: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/DNSKEY alg 8, id 54682: The cryptographic signature of the RRSIG RR does not properly validate.
RRSIG tamu.edu/SOA alg 8, id 37341: The cryptographic signature of the RRSIG RR does not properly validate.
edu to tamu.edu: No valid RRSIGs made by a key corresponding to a DS RR were found covering the DNSKEY RRset, resulting in no secure entry point (SEP) into the zone. (128.194.211.238, 192.195.87.5, 192.195.94.166, TCP_-_EDNS0_4096_D_KN)
edu to tamu.edu: The DS RRset for the zone included algorithm 5 (RSASHA1), but no DS RR matched a DNSKEY with algorithm 5 that signs the zone's DNSKEY RRset. (128.194.211.238, 192.195.87.5, 192.195.94.166, TCP_-_EDNS0_4096_D_KN)
tamu.edu zone: The server(s) were not responsive to queries over UDP. (165.91.16.133)
tamu.edu/A: No response was received from the server over UDP (tried 12 times). (165.91.16.133, UDP_-_NOEDNS_)
tamu.edu/NS: No response was received from the server over UDP (tried 12 times). (165.91.16.133, UDP_-_NOEDNS_)

Warnings (21)

RRSIG tamu.edu/A alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG tamu.edu/DNSKEY alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG tamu.edu/DNSKEY alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG tamu.edu/DNSKEY alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG tamu.edu/DNSKEY alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG tamu.edu/MX alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG tamu.edu/NS alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG tamu.edu/SOA alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
RRSIG tamu.edu/TXT alg 5, id 57030: DNSSEC specification recommends not signing with DNSSEC algorithm 5 (RSASHA1).
tamu.edu/DS (alg 8, id 34975): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
tamu.edu/DS (alg 8, id 34975): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
tamu.edu/DS (alg 8, id 34975): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
tamu.edu/DS (alg 8, id 34975): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
tamu.edu/DS (alg 8, id 35167): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
tamu.edu/DS (alg 8, id 35167): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
tamu.edu/DS (alg 8, id 35167): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
tamu.edu/DS (alg 8, id 35167): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
tamu.edu/DS (alg 8, id 54682): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
tamu.edu/DS (alg 8, id 54682): DNSSEC specification prohibits signing with DS records that use digest algorithm 1 (SHA-1).
tamu.edu/DS (alg 8, id 54682): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.
tamu.edu/DS (alg 8, id 54682): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset.