usps.gov
Updated:
2024-10-17 12:51:39 UTC (35 days ago)
Update now
Notices
DNSSEC Authentication Chain
RRset status
Secure (5)
- usps.gov/MX
- usps.gov/NS
- usps.gov/NSEC3PARAM
- usps.gov/SOA
- usps.gov/TXT
DNSKEY/DS/NSEC status
Secure (9)
- ./DNSKEY (alg 8, id 20326)
- ./DNSKEY (alg 8, id 61050)
- gov/DNSKEY (alg 13, id 2536)
- gov/DNSKEY (alg 13, id 35496)
- gov/DS (alg 13, id 2536)
- usps.gov/DNSKEY (alg 7, id 26265)
- usps.gov/DNSKEY (alg 7, id 57825)
- usps.gov/DS (alg 7, id 20034)
- usps.gov/DS (alg 7, id 57825)
Non_existent (1)
- usps.gov/DNSKEY (alg 7, id 20034)
Delegation status
Secure (2)
- . to gov
- gov to usps.gov
Notices
Errors (8)
- usps.gov zone: The server(s) were not responsive to queries over UDP. See RFC 1035, Sec. 4.2. (2610:68:3130:25:6010::25, 2610:68:5130:11:1410::25)
- usps.gov/NS: No response was received from the server over UDP (tried 12 times). See RFC 1035, Sec. 4.2. (2610:68:3130:25:6010::25, 2610:68:5130:11:1410::25, UDP_-_NOEDNS_)
- usps.gov/CDS has errors; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/CDNSKEY has errors; select the "Denial of existence" DNSSEC option to see them.
- m506p.43gfq.usps.gov/A has errors; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/A has errors; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/AAAA has errors; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/CNAME has errors; select the "Denial of existence" DNSSEC option to see them.
Warnings (16)
- RRSIG usps.gov/DNSKEY alg 7, id 26265: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- RRSIG usps.gov/DNSKEY alg 7, id 26265: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- RRSIG usps.gov/DNSKEY alg 7, id 57825: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- RRSIG usps.gov/DNSKEY alg 7, id 57825: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- RRSIG usps.gov/MX alg 7, id 26265: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- RRSIG usps.gov/NS alg 7, id 26265: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- RRSIG usps.gov/NSEC3PARAM alg 7, id 26265: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- RRSIG usps.gov/SOA alg 7, id 26265: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- RRSIG usps.gov/TXT alg 7, id 26265: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
- usps.gov/CDS has warnings; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/CDNSKEY has warnings; select the "Denial of existence" DNSSEC option to see them.
- m506p.43gfq.usps.gov/A has warnings; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/A has warnings; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/AAAA has warnings; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/CNAME has warnings; select the "Denial of existence" DNSSEC option to see them.
- usps.gov/DNSKEY has warnings; select the "Denial of existence" DNSSEC option to see them.
JavaScript is required to make the graph below interactive.
