www.cga.gov.tw

Updated: 2022-08-09 03:54:17 UTC (3 years ago) Update now

DNSSEC options (hide)

Notices

DNSSEC Authentication Chain

./DNSKEY (alg 8, id 20326)
./DNSKEY (alg 8, id 20826)
cga.gov.tw/DNSKEY (alg 7, id 24047)
cga.gov.tw/DNSKEY (alg 7, id 58068)
cga.gov.tw/DS (alg 7, id 58068)
cga.gov.tw/DS (alg 7, id 62062)
gov.tw/DNSKEY (alg 8, id 19435)
gov.tw/DNSKEY (alg 8, id 49845)
gov.tw/DNSKEY (alg 8, id 54615)
gov.tw/DS (alg 8, id 19435)
gov.tw/DS (alg 8, id 514)
tw/DNSKEY (alg 8, id 2898)
tw/DNSKEY (alg 8, id 40792)
tw/DS (alg 8, id 40792)

cga.gov.tw zone: The server(s) were not responsive to queries over UDP. See RFC 1035, Sec. 4.2. (2001:4420:6047:fffe::250)
cga.gov.tw/CNAME has errors; select the "Denial of existence" DNSSEC option to see them.

RRSIG cga.gov.tw/DNSKEY alg 7, id 24047: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
RRSIG cga.gov.tw/DNSKEY alg 7, id 24047: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
RRSIG cga.gov.tw/DNSKEY alg 7, id 58068: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
RRSIG cga.gov.tw/DNSKEY alg 7, id 58068: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
RRSIG www.cga.gov.tw/A alg 7, id 24047: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
RRSIG www.cga.gov.tw/AAAA alg 7, id 24047: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 7 (RSASHA1NSEC3SHA1). See RFC 8624, Sec. 3.1.
cga.gov.tw/CNAME has warnings; select the "Denial of existence" DNSSEC option to see them.