www.suomi.fi
Updated:
2024-07-29 08:42:54 UTC (493 days ago)
Go to most recent »
Notices
DNSSEC Authentication Chain
RRset status
Secure (2)
- www.suomi.fi/CNAME
- www.verkkopalvelu.suomi.fi/A
DNSKEY/DS/NSEC status
Secure (12)
- ./DNSKEY (alg 8, id 20038)
- ./DNSKEY (alg 8, id 20326)
- fi/DNSKEY (alg 8, id 33834)
- fi/DNSKEY (alg 8, id 35221)
- fi/DS (alg 8, id 35221)
- suomi.fi/DNSKEY (alg 10, id 22634)
- suomi.fi/DNSKEY (alg 10, id 8097)
- suomi.fi/DS (alg 10, id 8097)
- verkkopalvelu.suomi.fi/DNSKEY (alg 13, id 38849)
- verkkopalvelu.suomi.fi/DNSKEY (alg 13, id 55122)
- verkkopalvelu.suomi.fi/DNSKEY (alg 13, id 58966)
- verkkopalvelu.suomi.fi/DS (alg 13, id 55122)
Delegation status
Secure (3)
- . to fi
- fi to suomi.fi
- suomi.fi to verkkopalvelu.suomi.fi
Notices
Errors (1)
- suomi.fi/CNAME has errors; select the "Denial of existence" DNSSEC option to see them.
Warnings (17)
- ./DNSKEY (alg 8, id 20038): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (2001:500:2f::f, UDP_-_EDNS0_4096_D_KN)
- ./DNSKEY (alg 8, id 20326): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (2001:500:2f::f, UDP_-_EDNS0_4096_D_KN)
- ./DNSKEY: The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (2001:500:2f::f, UDP_-_EDNS0_512_D_KN)
- RRSIG suomi.fi/DNSKEY alg 10, id 22634: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
- RRSIG suomi.fi/DNSKEY alg 10, id 22634: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
- RRSIG suomi.fi/DNSKEY alg 10, id 22634: The value of the Signature Inception field of the RRSIG RR (2024-07-29 08:36:55+00:00) is within possible clock skew range (1 minute) of the current time (2024-07-29 08:38:50+00:00). See RFC 4035, Sec. 5.3.1.
- RRSIG suomi.fi/DNSKEY alg 10, id 22634: The value of the Signature Inception field of the RRSIG RR (2024-07-29 08:36:55+00:00) is within possible clock skew range (1 minute) of the current time (2024-07-29 08:38:50+00:00). See RFC 4035, Sec. 5.3.1.
- RRSIG suomi.fi/DNSKEY alg 10, id 8097: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
- RRSIG suomi.fi/DNSKEY alg 10, id 8097: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
- RRSIG suomi.fi/DNSKEY alg 10, id 8097: The value of the Signature Inception field of the RRSIG RR (2024-07-29 08:36:55+00:00) is within possible clock skew range (1 minute) of the current time (2024-07-29 08:38:50+00:00). See RFC 4035, Sec. 5.3.1.
- RRSIG suomi.fi/DNSKEY alg 10, id 8097: The value of the Signature Inception field of the RRSIG RR (2024-07-29 08:36:55+00:00) is within possible clock skew range (1 minute) of the current time (2024-07-29 08:38:50+00:00). See RFC 4035, Sec. 5.3.1.
- RRSIG verkkopalvelu.suomi.fi/DS alg 10, id 22634: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
- RRSIG www.suomi.fi/CNAME alg 10, id 22634: DNSSEC implementers are recommended against implementing signing with DNSSEC algorithm 10 (RSASHA512). See RFC 8624, Sec. 3.1.
- fi/DS (alg 8, id 35221): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (2001:500:2f::f, UDP_-_EDNS0_4096_D_KN)
- fi/DS (alg 8, id 35221): The server appears to support DNS cookies but did not return a COOKIE option. See RFC 7873, Sec. 5.2.3. (2001:500:2f::f, UDP_-_EDNS0_4096_D_KN)
- suomi.fi/CNAME has warnings; select the "Denial of existence" DNSSEC option to see them.
- www.suomi.fi/AAAA has warnings; select the "Denial of existence" DNSSEC option to see them.
JavaScript is required to make the graph below interactive.
