www.cdc.gov

Updated: 2024-07-26 23:34:48 UTC (119 days ago) Go to most recent »

DNSSEC options (hide)

Notices

DNSSEC Authentication Chain

./DNSKEY (alg 8, id 20038)
./DNSKEY (alg 8, id 20326)
akam.cdc.gov/DNSKEY (alg 10, id 5736)
akam.cdc.gov/DNSKEY (alg 10, id 58588)
akam.cdc.gov/DNSKEY (alg 10, id 8297)
akam.cdc.gov/DS (alg 10, id 22623)
akam.cdc.gov/DS (alg 10, id 58588)
cdc.gov/DNSKEY (alg 8, id 21719)
cdc.gov/DNSKEY (alg 8, id 29991)
cdc.gov/DS (alg 8, id 21719)
gov/DNSKEY (alg 13, id 2536)
gov/DNSKEY (alg 13, id 35496)
gov/DS (alg 13, id 2536)

RRSIG akam.cdc.gov/DNSKEY alg 10, id 58588: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG akam.cdc.gov/DNSKEY alg 10, id 58588: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG akam.cdc.gov/DNSKEY alg 10, id 58588: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG www.akam.cdc.gov/A alg 10, id 8297: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG www.akam.cdc.gov/AAAA alg 10, id 8297: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
gov to cdc.gov: The following NS name(s) were found in the delegation NS RRset (i.e., in the gov zone), but not in the authoritative NS RRset: auth00.ns.uu.net, auth100.ns.uu.net See RFC 1034, Sec. 4.2.2.