Back to Verisign Labs Tools
Domain Name: Detail: more(+) / less(-) Time: 2021-04-22 01:55:28 UTC, NTP stratum 4

Analyzing DNSSEC problems for CFPA.GOV

.
Found 2 DNSKEY records for .
DS=20326/SHA-256 verifies DNSKEY=20326/SEP
Found 1 RRSIGs over DNSKEY RRset
RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
GOV
Found 1 DS records for GOV in the . zone
DS=7698/SHA-256 has algorithm RSASHA256
Found 1 RRSIGs over DS RRset
RRSIG=14631 and DNSKEY=14631 verifies the DS RRset
Found 2 DNSKEY records for GOV
DS=7698/SHA-256 verifies DNSKEY=7698/SEP
Found 1 RRSIGs over DNSKEY RRset
RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
CFPA.GOV
Found 4 DS records for CFPA.GOV in the GOV zone
DS=41376/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
DS=47283/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
DS=41376/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
DS=47283/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
Found 1 RRSIGs over DS RRset
RRSIG=48498 and DNSKEY=48498 verifies the DS RRset
Found 4 DNSKEY records for CFPA.GOV
DS=47283/SHA-1 verifies DNSKEY=47283/SEP
DS=41376/SHA-1 verifies DNSKEY=41376/SEP
Found 2 RRSIGs over DNSKEY RRset
RRSIG=47283 and DNSKEY=47283/SEP verifies the DNSKEY RRset
sauthns1.qwest.net is authoritative for CFPA.GOV
CFPA.GOV A RR has value 166.123.218.220
Found 1 RRSIGs over A RRset
RRSIG=63875 and DNSKEY=63875 verifies the A RRset
CFPA.GOV
sauthns2.qwest.net is authoritative for CFPA.GOV
CFPA.GOV A RR has value 166.123.218.220
Found 1 RRSIGs over A RRset
RRSIG=63875 and DNSKEY=63875 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test CFPA.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options