NSEC3 proving non-existence of www.cssz.cz/DS: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
NSEC3 proving non-existence of www.cssz.cz/DS: An iterations count of 0 must be used in NSEC3 records to alleviate computational burdens. See RFC 9276, Sec. 3.1.
www.cssz.cz/MX has errors; select the "Denial of existence" DNSSEC option to see them.
www.cssz.cz/TXT has errors; select the "Denial of existence" DNSSEC option to see them.
www.cssz.cz/NS has errors; select the "Denial of existence" DNSSEC option to see them.
www.cssz.cz/CNAME has errors; select the "Denial of existence" DNSSEC option to see them.
www.cssz.cz/DNSKEY has errors; select the "Denial of existence" DNSSEC option to see them.
www.cssz.cz/DS has errors; select the "Denial of existence" DNSSEC option to see them.
www.cssz.cz/SOA has errors; select the "Denial of existence" DNSSEC option to see them.
n94roq05pg.www.cssz.cz/A has errors; select the "Denial of existence" DNSSEC option to see them.
Warnings (12)
NSEC3 proving non-existence of www.cssz.cz/DS: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
NSEC3 proving non-existence of www.cssz.cz/DS: The salt value for an NSEC3 record should be empty. See RFC 9276, Sec. 3.1.
RRSIG NSEC3 proving non-existence of www.cssz.cz/DS alg 10, id 9068: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG NSEC3 proving non-existence of www.cssz.cz/DS alg 10, id 9068: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG cssz.cz/DNSKEY alg 10, id 32292: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG cssz.cz/DNSKEY alg 10, id 32292: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG cssz.cz/DNSKEY alg 10, id 9068: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG cssz.cz/DNSKEY alg 10, id 9068: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
RRSIG cssz.cz/SOA alg 10, id 9068: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
cz/DNSKEY (alg 13, id 17880): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (2001:678:11::1, UDP_-_EDNS0_4096_D_K, UDP_-_EDNS0_512_D_K)
cz/DNSKEY (alg 13, id 20237): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (2001:678:11::1, UDP_-_EDNS0_4096_D_K, UDP_-_EDNS0_512_D_K)
www.cssz.cz/DS has warnings; select the "Denial of existence" DNSSEC option to see them.