www.aisearching.online

Updated: 2023-07-28 09:07:18 UTC (486 days ago) Go to most recent »

DNSSEC options (hide)

|?| RR types:
|?| DNSSEC algorithms:
|?| DS digest algorithms:
|?| Denial of existence:
|?| Redundant edges:
|?| Ignore RFC 8624:
|?| Ignore RFC 9276:
|?| Multi-signer:
|?| Trust anchors:
- Root zone KSK
|?| Additional trusted keys:

Notices

DNSSEC Authentication Chain

RRset status

Secure (2)

aisearching.online/SOA
www.aisearching.online/A (NXDOMAIN)

DNSKEY/DS/NSEC status

Secure (11)

./DNSKEY (alg 8, id 11019)
./DNSKEY (alg 8, id 20326)
NSEC3 proving non-existence of www.aisearching.online/A
aisearching.online/DNSKEY (alg 8, id 31699)
aisearching.online/DNSKEY (alg 8, id 5884)
aisearching.online/DS (alg 8, id 5884)
online/DNSKEY (alg 8, id 4267)
online/DNSKEY (alg 8, id 43564)
online/DNSKEY (alg 8, id 5403)
online/DS (alg 8, id 4267)
online/DS (alg 8, id 4267)

Delegation status

Secure (2)

. to online
online to aisearching.online

Notices

Errors (3)

NSEC3 proving non-existence of www.aisearching.online/A: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
NSEC3 proving non-existence of www.aisearching.online/A: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
aisearching.online/CNAME has errors; select the "Denial of existence" DNSSEC option to see them.

Warnings (11)

NSEC3 proving non-existence of www.aisearching.online/A: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
NSEC3 proving non-existence of www.aisearching.online/A: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
online/DNSKEY (alg 8, id 4267): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (212.18.248.54, UDP_-_EDNS0_4096_D_KN)
online/DNSKEY (alg 8, id 43564): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (212.18.248.54, UDP_-_EDNS0_4096_D_KN)
online/DNSKEY (alg 8, id 5403): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (212.18.248.54, UDP_-_EDNS0_4096_D_KN)
online/DNSKEY: The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (194.169.218.54, 2a04:2b00:13ee::54, UDP_-_EDNS0_512_D_KN)
online/DS (alg 8, id 4267): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
online/DS (alg 8, id 4267): DNSSEC implementers are prohibited from implementing signing with DS algorithm 1 (SHA-1). See RFC 8624, Sec. 3.2.
online/DS (alg 8, id 4267): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset. See RFC 4509, Sec. 3.
online/DS (alg 8, id 4267): DS records with digest type 1 (SHA-1) are ignored when DS records with digest type 2 (SHA-256) exist in the same RRset. See RFC 4509, Sec. 3.
aisearching.online/CNAME has warnings; select the "Denial of existence" DNSSEC option to see them.

DNSKEY legend

Full legend

	SEP bit set
	Revoke bit set
	Trust anchor

www.aisearching.online

RRset status

Secure (2)

DNSKEY/DS/NSEC status

Secure (11)

Delegation status

Secure (2)

Notices

Errors (3)

Warnings (11)

DNSKEY legend

See also