DNSSEC Analyzer - CRT2014-2024REVIEW.GOV

Domain Name:

Time: 2019-08-18 14:08:54 UTC, NTP stratum 4

Analyzing DNSSEC problems for CRT2014-2024REVIEW.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to h.root-servers.net for ./DNSKEY
	Received 864 bytes from 198.97.190.53
	;; Answer received from 198.97.190.53 (864 bytes) ;; HEADER SECTION ;; id = 45483 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 256 3 8 AwEAAcTQyaIe6nt3xSPOG2L/YfwBkOVTJN6mlnZ249O5Rtt3ZSRQHxQSW61AODYw6bvgxrrGq8ee OuenFjcSYgNAMcBYoEYYmKDW6e9EryW4ZaT/MCq+8Am06oR40xAA3fClOM6QjRcT85tP41Go946A icBGP8XOP/Aj1aI/oPRGzRnboUPUok/AzTNnW5npBU69+BuiIwYE7mQOiNBFePyvjQBdoiuYbmuD 3Py0IyjlBxzZUXbqLsRL9gYFkCqeTY29Ik7usuzMTa+JRSLz6KGS5RSJ7CTSMjZg8aNaUbN2dvGh akJPh92HnLvMA3TefFgbKJphFNPA3BWSKLZ02cRWXqM= ) ; Key ID = 59944 . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20190831000000 20190810000000 20326 . aqUzhXpgfWBkwR+s6UE8VT6RohWeWfyw1JD30Eqtc3LN113C/6ASGzzXw2fIMtod+w95D0ui+sOG MtH40kT96pV8ifUx6nkC4QcRxgAy5Pg7To39Pa/gwakDEDorruQHEjp2CJdL0dQ+yv6Iab0mUjCH hr/9xFtVf1sNT+6wHbzlJmUNxPsF6DAQcSwb59gGyjww/EcrYHzpDjZd1Zs6tXjH8g9Y8edQRJok HYHYuLeRKnjFzPTZgCZKnyqYesFH/sG17+b9v2wjy0uftpkGbRo4Klv+kFgonlMarDavJgRxm6JI GGhkDm53cChcWA02ciLrD1dX+Slckrd9iOiMyw== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAcTQyaIe6nt3xSPOG2L/YfwBkOVTJN6mlnZ249O5Rtt3ZSRQHxQSW61AODYw6bvgxrrGq8ee OuenFjcSYgNAMcBYoEYYmKDW6e9EryW4ZaT/MCq+8Am06oR40xAA3fClOM6QjRcT85tP41Go946A icBGP8XOP/Aj1aI/oPRGzRnboUPUok/AzTNnW5npBU69+BuiIwYE7mQOiNBFePyvjQBdoiuYbmuD 3Py0IyjlBxzZUXbqLsRL9gYFkCqeTY29Ik7usuzMTa+JRSLz6KGS5RSJ7CTSMjZg8aNaUbN2dvGh akJPh92HnLvMA3TefFgbKJphFNPA3BWSKLZ02cRWXqM= ) ; Key ID = 59944`
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20190831000000 20190810000000 20326 . aqUzhXpgfWBkwR+s6UE8VT6RohWeWfyw1JD30Eqtc3LN113C/6ASGzzXw2fIMtod+w95D0ui+sOG MtH40kT96pV8ifUx6nkC4QcRxgAy5Pg7To39Pa/gwakDEDorruQHEjp2CJdL0dQ+yv6Iab0mUjCH hr/9xFtVf1sNT+6wHbzlJmUNxPsF6DAQcSwb59gGyjww/EcrYHzpDjZd1Zs6tXjH8g9Y8edQRJok HYHYuLeRKnjFzPTZgCZKnyqYesFH/sG17+b9v2wjy0uftpkGbRo4Klv+kFgonlMarDavJgRxm6JI GGhkDm53cChcWA02ciLrD1dX+Slckrd9iOiMyw== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=59944 is now in the chain-of-trust
	Query to d.root-servers.net for CRT2014-2024REVIEW.GOV/A
	Error querying d.root-servers.net/2001:500:2d:0:0:0:0:d for CRT2014-2024REVIEW.GOV/A: 'IPv6 transport disabled'
	Received 677 bytes from 199.7.91.13
	;; Answer received from 199.7.91.13 (677 bytes) ;; HEADER SECTION ;; id = 21769 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option: ;; QUESTION SECTION (1 record) ;; CRT2014-2024REVIEW.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20190831050000 20190818040000 59944 . W86GQ2xDJSCUidZf7qTA5Y6sFI/Yq1cQNNJaAG0rs/wwaakPbsWcgF7C0meFFCywW3W1uLJDni9E yQMb4TLfzd343sRUv0H1JBXfaWZFNKIFYnVSjHI2P/Op0k9SVF46IWd2NCqLw85Q5rfxnu7Cfspe 0AFr5Fo0esdJ3s9pKf0kh3BLFTSQGFrt6WzSgxzPbgz1dhWmYXZYkCqNFJOUWCcyhf8brlDZosFM baGYKft1eBMTUo9KJVVgwnxTvBI74wrzEGv96Rf9Wu0EY9GdT91MJp0K0aLt9fmMRV1dZlSkBlXh 03ZObLrzV1UhP2E9nFiWmPaxgTJ96hw++bmN4Q== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option:
	Query to m.root-servers.net for GOV/DNSKEY
	Error querying m.root-servers.net/2001:dc3:0:0:0:0:0:35 for GOV/DNSKEY: 'IPv6 transport disabled'
	Received 661 bytes from 202.12.27.33
	;; Answer received from 202.12.27.33 (661 bytes) ;; HEADER SECTION ;; id = 39247 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) gov. 172800 IN NS a.gov-servers.net. gov. 172800 IN NS c.gov-servers.net. gov. 172800 IN NS d.gov-servers.net. gov. 172800 IN NS b.gov-servers.net. gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20190831050000 20190818040000 59944 . W86GQ2xDJSCUidZf7qTA5Y6sFI/Yq1cQNNJaAG0rs/wwaakPbsWcgF7C0meFFCywW3W1uLJDni9E yQMb4TLfzd343sRUv0H1JBXfaWZFNKIFYnVSjHI2P/Op0k9SVF46IWd2NCqLw85Q5rfxnu7Cfspe 0AFr5Fo0esdJ3s9pKf0kh3BLFTSQGFrt6WzSgxzPbgz1dhWmYXZYkCqNFJOUWCcyhf8brlDZosFM baGYKft1eBMTUo9KJVVgwnxTvBI74wrzEGv96Rf9Wu0EY9GdT91MJp0K0aLt9fmMRV1dZlSkBlXh 03ZObLrzV1UhP2E9nFiWmPaxgTJ96hw++bmN4Q== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to e.root-servers.net for GOV/DS
	Error querying e.root-servers.net/2001:500:a8:0:0:0:0:e for GOV/DS: 'IPv6 transport disabled'
	Received 406 bytes from 192.203.230.10
	;; Answer received from 192.203.230.10 (406 bytes) ;; HEADER SECTION ;; id = 57637 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20190831050000 20190818040000 59944 . W86GQ2xDJSCUidZf7qTA5Y6sFI/Yq1cQNNJaAG0rs/wwaakPbsWcgF7C0meFFCywW3W1uLJDni9E yQMb4TLfzd343sRUv0H1JBXfaWZFNKIFYnVSjHI2P/Op0k9SVF46IWd2NCqLw85Q5rfxnu7Cfspe 0AFr5Fo0esdJ3s9pKf0kh3BLFTSQGFrt6WzSgxzPbgz1dhWmYXZYkCqNFJOUWCcyhf8brlDZosFM baGYKft1eBMTUo9KJVVgwnxTvBI74wrzEGv96Rf9Wu0EY9GdT91MJp0K0aLt9fmMRV1dZlSkBlXh 03ZObLrzV1UhP2E9nFiWmPaxgTJ96hw++bmN4Q== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-1 has algorithm RSASHA256
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`gov. 86400 IN RRSIG ( DS 8 1 86400 20190831050000 20190818040000 59944 . W86GQ2xDJSCUidZf7qTA5Y6sFI/Yq1cQNNJaAG0rs/wwaakPbsWcgF7C0meFFCywW3W1uLJDni9E yQMb4TLfzd343sRUv0H1JBXfaWZFNKIFYnVSjHI2P/Op0k9SVF46IWd2NCqLw85Q5rfxnu7Cfspe 0AFr5Fo0esdJ3s9pKf0kh3BLFTSQGFrt6WzSgxzPbgz1dhWmYXZYkCqNFJOUWCcyhf8brlDZosFM baGYKft1eBMTUo9KJVVgwnxTvBI74wrzEGv96Rf9Wu0EY9GdT91MJp0K0aLt9fmMRV1dZlSkBlXh 03ZObLrzV1UhP2E9nFiWmPaxgTJ96hw++bmN4Q== )`
	RRSIG=59944 and DNSKEY=59944 verifies the DS RRset
	DS=7698/SHA-1 is now in the chain-of-trust
	`gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	`gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to c.gov-servers.net for GOV/DNSKEY
	Error querying c.gov-servers.net/2620:74:28:0:0:0:2:30 for GOV/DNSKEY: 'IPv6 transport disabled'
	Received 743 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (743 bytes) ;; HEADER SECTION ;; id = 4059 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 256 3 8 AQPnviCbt0HB2CQze767dPf3TQFosiEwOIkUQaJmcSoNlVSquo3Mox7noTQGzKSdTbKAh0zfkGIb thSb6zyPceMJPpVv2RQUAj9WWTZr4yvO0J5/KllhGqr3sZndrV1lF/rrFzjnnLO8egQTS7bXHbsU 9sM71w5Xiow+isEEPrc5KQ== ) ; Key ID = 7877 GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20190830214731 20190815214231 7698 gov. k1bNHuSWv2dXTQUpQqP68QRQ5fWzTY2g+HNf1z8IpZC7H3EHKv8KptrM+vQiUBR655KD9G3geI3x HbR3kKXWcQII2XFfnvCmf7gNbVmOYUli1cTCsbTNo64VS8hdwpwFPH7C8FQ7NDs5vUH6y9XvIJv0 M571C301cmbMdtczwdTVIE64YGedJOWGQMcLJnRPzdbz9IS1XdxHkfLmGsrqzUYUc1/b88hCVlbn ftGzRDh+jUq32mCd6eknCrnfmG4moYT1CVuR10K5oG3pADzMgTSnqCYyFb9xrRYaYtBmDeN0KhKp wx+MHIquJk2W6OUnoMMCX0DqxTlUHMxoxIfOwA== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 256 3 8 AQPnviCbt0HB2CQze767dPf3TQFosiEwOIkUQaJmcSoNlVSquo3Mox7noTQGzKSdTbKAh0zfkGIb thSb6zyPceMJPpVv2RQUAj9WWTZr4yvO0J5/KllhGqr3sZndrV1lF/rrFzjnnLO8egQTS7bXHbsU 9sM71w5Xiow+isEEPrc5KQ== ) ; Key ID = 7877`
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20190830214731 20190815214231 7698 gov. k1bNHuSWv2dXTQUpQqP68QRQ5fWzTY2g+HNf1z8IpZC7H3EHKv8KptrM+vQiUBR655KD9G3geI3x HbR3kKXWcQII2XFfnvCmf7gNbVmOYUli1cTCsbTNo64VS8hdwpwFPH7C8FQ7NDs5vUH6y9XvIJv0 M571C301cmbMdtczwdTVIE64YGedJOWGQMcLJnRPzdbz9IS1XdxHkfLmGsrqzUYUc1/b88hCVlbn ftGzRDh+jUq32mCd6eknCrnfmG4moYT1CVuR10K5oG3pADzMgTSnqCYyFb9xrRYaYtBmDeN0KhKp wx+MHIquJk2W6OUnoMMCX0DqxTlUHMxoxIfOwA== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=7877 is now in the chain-of-trust
	Query to a.gov-servers.net for CRT2014-2024REVIEW.GOV/A
	Error querying a.gov-servers.net/2001:500:4431:0:0:0:2:30 for CRT2014-2024REVIEW.GOV/A: 'IPv6 transport disabled'
	Received 1024 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (1024 bytes) ;; HEADER SECTION ;; id = 1810 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NXDOMAIN ;; qdcount = 1 ancount = 0 nscount = 8 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; CRT2014-2024REVIEW.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (8 records) GOV. 86400 IN SOA ( a.gov-servers.net. nstld.verisign-grs.com. 1566126601 ;serial 3600 ;refresh 900 ;retry 1814400 ;expire 86400 ;minimum ) GOV. 86400 IN RRSIG ( SOA 8 1 86400 20190825101007 20190818101007 7877 gov. cJFkIJo062vHsMhSln+7H1QEwN3j0P4x9WRdxt/+PzybefBm7hVswYKqmS91sdkpiLYBXL4fXSwy 4Ygwc3yZRNRRtbNqx2+zutnmHh5JyIT45J/5JkSd7fDbEljYBf/v3ZTNpI7wLk/d+blipclsrF/y ELEMxKBID/hx4tdMyn8= ) 578ET16S7LTNSQ1T0AMM21GL20OJ5G76.GOV. 86400 IN NSEC3 ( 1 0 8 4c44934802d3 578h5nt2eiqh2t6cetlnebntl52t0et8 NS SOA RRSIG DNSKEY NSEC3PARAM ) 578ET16S7LTNSQ1T0AMM21GL20OJ5G76.GOV. 86400 IN RRSIG ( NSEC3 8 2 86400 20190825101007 20190818101007 7877 gov. wsaSfQwgOhqJWV+fM/2yHZIvGD3C8dEXJh9dE8agpfcwcmHjWu0F4tKjqUjZFNRf/hMaIUR4KK5o 6UlHNZafBIbngjQIlRd/Cfs1qWyuwLMN+VLceo3CRbR0cLEeM648P+HGQUBL26GTjMRWGPXQFkUW XCdo8fuuAF6LN3Dxqi0= ) u5gv71l254kmv6tta3m2v69oogbadce6.GOV. 86400 IN NSEC3 ( 1 0 8 4c44934802d3 u5n8ipnjq6ii3p8gnovd12m637jm0rt6 NS ) u5gv71l254kmv6tta3m2v69oogbadce6.GOV. 86400 IN RRSIG ( NSEC3 8 2 86400 20190825101007 20190818101007 7877 gov. XkFLqDluRtkLxK+0xSQxA9vRTJ4fjBwBhWy8rhYRn44D6EyIQp6yrvCs6b1BdBXE7+Vn4gF20mLe pdX2ecsVM5A/MgplWSZADjnDhK9iZzubz+tvUWUGqzwjKYmBHMVcZwRGW3HBysIJg2Joc+Hh+kJH 2pNXfkMb9Ji0qM2uTco= ) ka690fnatniqid78pvjh8b29tb4p3bio.GOV. 86400 IN NSEC3 ( 1 0 8 4c44934802d3 kaqqhvahkg9ml8utc9qcov5l8gdcl1pt NS ) ka690fnatniqid78pvjh8b29tb4p3bio.GOV. 86400 IN RRSIG ( NSEC3 8 2 86400 20190825101007 20190818101007 7877 gov. z1zmL+7HTGQ/khTlhx6p0FilZTMjS715VSjUwuDeCHkGkMWOW/tHWgpYWQsvXhdlO6p/r3tYIPPq BoBYjO2alXlcOii45fuJaIRMIzAjpArLhVqkoG1yspgvueKRKN/vcUh5zR3qdKIxWdRfQ2k1d92L TCgHABUmpDCHGeICag4= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Zone GOV (69.36.157.30) returns NXDOMAIN for CRT2014-2024REVIEW.GOV
	NSEC3 validation not implemented yet

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test CRT2014-2024REVIEW.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: