View on GitHub

DNSViz: A DNS visualization tool

webmail.recomsa.com.pa

Updated: 2021-04-26 13:47:57 UTC (1087 days ago) Update now
« Previous analysis | Next analysis »
DNSSEC options (hide)
  1. |?|
  2. |?|
  3. |?|
  4. |?|
  5. |?|
  6. |?|
  7. |?|
Notices
DNSSEC Authentication Chain

RRset statusRRset status

Insecure (4)
  • com.pa/SOA
  • pa/SOA
  • webmail.recomsa.com.pa/A
  • webmail.recomsa.com.pa/AAAA
Secure (1)
  • ./SOA

DNSKEY/DS/NSEC statusDNSKEY/DS/NSEC status

Secure (3)
  • ./DNSKEY (alg 8, id 14631)
  • ./DNSKEY (alg 8, id 20326)
  • NSEC proving non-existence of pa/DS

Delegation statusDelegation status

Incomplete (1)
  • pa to com.pa
Insecure (2)
  • . to pa
  • com.pa to recomsa.com.pa

NoticesNotices

Errors (1)
  • pa to com.pa: No delegation NS records were detected in the parent zone (pa). This results in an NXDOMAIN response to a DS query (for DNSSEC), even if the parent servers are authoritative for the child. (168.77.8.2, 168.77.8.4, 168.77.8.7, 200.7.5.14, 200.160.0.5, 2001:12ff:0:a20::5, 2001:1398:276:0:200:7:5:14, UDP_-_EDNS0_4096_D_KN)
Warnings (1)
  • com.pa to recomsa.com.pa: The following NS name(s) were found in the delegation NS RRset (i.e., in the com.pa zone), but not in the authoritative NS RRset: ns1.dopate.com

DNSKEY legend

Full legend
SEP bit setSEP bit set
Revoke bit setRevoke bit set
Trust anchorTrust anchor
Download: png | svg
Warning JavaScript is required to make the graph below interactive.
DNSSEC authentication graph