DNSSEC Analyzer - CRT2014-2024REVIEW.GOV

Domain Name:

Time: 2020-05-29 05:08:51 UTC, NTP stratum 4

Analyzing DNSSEC problems for CRT2014-2024REVIEW.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to h.root-servers.net for ./DNSKEY
	Received 864 bytes from 198.97.190.53
	;; Answer received from 198.97.190.53 (864 bytes) ;; HEADER SECTION ;; id = 62264 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 256 3 8 AwEAAc4qsciJ5MdMUIu4n/pSTsSiU9OCyAanPTe5TcMX4v1hxhpFwiTGQUv3BXT6IAO4litrZKTU aj4vitqHW1+RQsHn3k/gSvt7FwyQwpy0mEnShBgr6RQiGtlBODNY67sTl+W8M/b6SLTAaaDri3BO 5u6wrDs149rMELJAdoVBjmXW+zRH3kZzh3lwyTZsYtk7L+3DYbTiiHq+sRB4F9XoBPAz5Psv4q4E iPq07nW3acbW84zTz3CyQUmQkJT9VB1oUKHz6sNoyccqzcMX4q1GHAYpQ7FAXlKMxidoN1Ay5DWA NgTmgJXzKhcI2nIZoq1x3yq4814O1LQd9QP68gI37+0= ) ; Key ID = 48903 . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20200611000000 20200521000000 20326 . KfazTUJ4/ezskruozpqOV/AKBcdoMVTxmLSjKaiZuNW6QVAY60/khxOa0g7EqH/yBZP9pKIIMrxW tRzfl2YzZhkRfkDJKsNFDpyRtq06Hhhf8KHgFNsmmdUBKVtC7jh/5pldrMpInmtrV6344PkDS499 x0qfsziD/FQCwF/X8SWvfqKYmhvE8RjnlsycLtd1vao8iZtTDrevxPZCTRNwDfOufW5jNmDP0nRK g/U0rXVXxf5q9jVX3Q875Kzyp1eewI2fPBmBXX5Vcpb3We0GtcecKR0G0nsdXd898GiFlZU2Iwrn emLWnCfE6LaoOcKcYzNO8dfMbI1hQzyIWtnb6Q== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAc4qsciJ5MdMUIu4n/pSTsSiU9OCyAanPTe5TcMX4v1hxhpFwiTGQUv3BXT6IAO4litrZKTU aj4vitqHW1+RQsHn3k/gSvt7FwyQwpy0mEnShBgr6RQiGtlBODNY67sTl+W8M/b6SLTAaaDri3BO 5u6wrDs149rMELJAdoVBjmXW+zRH3kZzh3lwyTZsYtk7L+3DYbTiiHq+sRB4F9XoBPAz5Psv4q4E iPq07nW3acbW84zTz3CyQUmQkJT9VB1oUKHz6sNoyccqzcMX4q1GHAYpQ7FAXlKMxidoN1Ay5DWA NgTmgJXzKhcI2nIZoq1x3yq4814O1LQd9QP68gI37+0= ) ; Key ID = 48903`
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20200611000000 20200521000000 20326 . KfazTUJ4/ezskruozpqOV/AKBcdoMVTxmLSjKaiZuNW6QVAY60/khxOa0g7EqH/yBZP9pKIIMrxW tRzfl2YzZhkRfkDJKsNFDpyRtq06Hhhf8KHgFNsmmdUBKVtC7jh/5pldrMpInmtrV6344PkDS499 x0qfsziD/FQCwF/X8SWvfqKYmhvE8RjnlsycLtd1vao8iZtTDrevxPZCTRNwDfOufW5jNmDP0nRK g/U0rXVXxf5q9jVX3Q875Kzyp1eewI2fPBmBXX5Vcpb3We0GtcecKR0G0nsdXd898GiFlZU2Iwrn emLWnCfE6LaoOcKcYzNO8dfMbI1hQzyIWtnb6Q== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=48903 is now in the chain-of-trust
	Query to i.root-servers.net for CRT2014-2024REVIEW.GOV/A
	Received 680 bytes from 192.36.148.17
	;; Answer received from 192.36.148.17 (680 bytes) ;; HEADER SECTION ;; id = 11225 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; CRT2014-2024REVIEW.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) gov. 172800 IN NS c.gov-servers.net. gov. 172800 IN NS b.gov-servers.net. gov. 172800 IN NS d.gov-servers.net. gov. 172800 IN NS a.gov-servers.net. gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN RRSIG ( DS 8 1 86400 20200610210000 20200528200000 48903 . tAz1SmgWSehvgHSQcmOZ4A8WF9imkk7blqfaN5DSjki/5ryzxFQnZ8H5NF5l1UmapVmVxaT/Oq0F PjgDAhfg/N7wiAB7lEMi+ESXsIt4lreH9UGoh07S/tO4XtiJ76HrqaR8yKRCo0zwNw+JA6Kkj79T EF/ymfbyoPIxGTUDzmXrO2Ph6Pz49rfoeEX0BoQMc4Q6o/otXSVSOQNwJqAUIGB5xeDBOJ14P9O3 p4E6bwbUpUftrn4FHuBEspz+Se9S3xmeT5hT1sl8lNuF4w2EDcbZ0OVDNDImH9AVnfgQbP/CJ31w /2781DUJt9PysOlUgKt+unrKGm3ru8/f44yg2A== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN A 209.112.123.30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN A 69.36.153.30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN A 81.19.194.30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to d.root-servers.net for GOV/DNSKEY
	Received 658 bytes from 199.7.91.13
	;; Answer received from 199.7.91.13 (658 bytes) ;; HEADER SECTION ;; id = 46973 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20200610210000 20200528200000 48903 . tAz1SmgWSehvgHSQcmOZ4A8WF9imkk7blqfaN5DSjki/5ryzxFQnZ8H5NF5l1UmapVmVxaT/Oq0F PjgDAhfg/N7wiAB7lEMi+ESXsIt4lreH9UGoh07S/tO4XtiJ76HrqaR8yKRCo0zwNw+JA6Kkj79T EF/ymfbyoPIxGTUDzmXrO2Ph6Pz49rfoeEX0BoQMc4Q6o/otXSVSOQNwJqAUIGB5xeDBOJ14P9O3 p4E6bwbUpUftrn4FHuBEspz+Se9S3xmeT5hT1sl8lNuF4w2EDcbZ0OVDNDImH9AVnfgQbP/CJ31w /2781DUJt9PysOlUgKt+unrKGm3ru8/f44yg2A== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to g.root-servers.net for GOV/DS
	Received 406 bytes from 192.112.36.4
	;; Answer received from 192.112.36.4 (406 bytes) ;; HEADER SECTION ;; id = 27884 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN RRSIG ( DS 8 1 86400 20200610210000 20200528200000 48903 . tAz1SmgWSehvgHSQcmOZ4A8WF9imkk7blqfaN5DSjki/5ryzxFQnZ8H5NF5l1UmapVmVxaT/Oq0F PjgDAhfg/N7wiAB7lEMi+ESXsIt4lreH9UGoh07S/tO4XtiJ76HrqaR8yKRCo0zwNw+JA6Kkj79T EF/ymfbyoPIxGTUDzmXrO2Ph6Pz49rfoeEX0BoQMc4Q6o/otXSVSOQNwJqAUIGB5xeDBOJ14P9O3 p4E6bwbUpUftrn4FHuBEspz+Se9S3xmeT5hT1sl8lNuF4w2EDcbZ0OVDNDImH9AVnfgQbP/CJ31w /2781DUJt9PysOlUgKt+unrKGm3ru8/f44yg2A== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-256 has algorithm RSASHA256
	DS=7698/SHA-1 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`gov. 86400 IN RRSIG ( DS 8 1 86400 20200610210000 20200528200000 48903 . tAz1SmgWSehvgHSQcmOZ4A8WF9imkk7blqfaN5DSjki/5ryzxFQnZ8H5NF5l1UmapVmVxaT/Oq0F PjgDAhfg/N7wiAB7lEMi+ESXsIt4lreH9UGoh07S/tO4XtiJ76HrqaR8yKRCo0zwNw+JA6Kkj79T EF/ymfbyoPIxGTUDzmXrO2Ph6Pz49rfoeEX0BoQMc4Q6o/otXSVSOQNwJqAUIGB5xeDBOJ14P9O3 p4E6bwbUpUftrn4FHuBEspz+Se9S3xmeT5hT1sl8lNuF4w2EDcbZ0OVDNDImH9AVnfgQbP/CJ31w /2781DUJt9PysOlUgKt+unrKGm3ru8/f44yg2A== )`
	RRSIG=48903 and DNSKEY=48903 verifies the DS RRset
	DS=7698/SHA-256 is now in the chain-of-trust
	`gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	`gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	Query to b.gov-servers.net for GOV/DNSKEY
	Received 777 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (777 bytes) ;; HEADER SECTION ;; id = 29856 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAaRBt9ApLI72LFfiXVo0ye5nyqvBZ60rp7FMVEohCYuM3WOBFxty2pkgIj7K3AEw6sHOJ6Kb J6yut0qXTxEIYu1jHm/Lg+VLrDLXLzw3I1BA+mAymmfR4mkyjT/umY/0PqXETGCmTOVFx4guyhDe EVr65wIGFXpRfMqJiCSXJKmhSFvAqw1vlBRAUYDG4G9tGhUJaJdflAKWvf9Rp5TicwU= ) ; Key ID = 40176 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20200603190254 20200519185754 7698 gov. mWtjhi3cxvYYOBSsVsXSVuw2zLJw0V/q/miinZ627+QQ2gF9XLwS4K0o7vDZ2DQH9QEAYQwuWWxK O8H5pZnfpb4AAsy7lEAySinNyyvr2x7+8/XL/HatK9ofm9crLnDZtqtPCvXzNUxjA+roDsJjXw8U 4E+8l971CsWhQT5Je7BejjjyPafYgaBRNPWdw2SZhWaEDN5+NhrBFFgreuEm4dAbEB2WTVZ6qTKW 1d1QWjbWbQzf7sSbwmsx64BKHRNq08XOFkno+cstr+FrvAL5pv6EDhJuwG0Kg4f+t+633AMnY3Ax iYzhl7bI01uBsPbdoym87HOwh8yknM2s23Pj5A== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAaRBt9ApLI72LFfiXVo0ye5nyqvBZ60rp7FMVEohCYuM3WOBFxty2pkgIj7K3AEw6sHOJ6Kb J6yut0qXTxEIYu1jHm/Lg+VLrDLXLzw3I1BA+mAymmfR4mkyjT/umY/0PqXETGCmTOVFx4guyhDe EVr65wIGFXpRfMqJiCSXJKmhSFvAqw1vlBRAUYDG4G9tGhUJaJdflAKWvf9Rp5TicwU= ) ; Key ID = 40176`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20200603190254 20200519185754 7698 gov. mWtjhi3cxvYYOBSsVsXSVuw2zLJw0V/q/miinZ627+QQ2gF9XLwS4K0o7vDZ2DQH9QEAYQwuWWxK O8H5pZnfpb4AAsy7lEAySinNyyvr2x7+8/XL/HatK9ofm9crLnDZtqtPCvXzNUxjA+roDsJjXw8U 4E+8l971CsWhQT5Je7BejjjyPafYgaBRNPWdw2SZhWaEDN5+NhrBFFgreuEm4dAbEB2WTVZ6qTKW 1d1QWjbWbQzf7sSbwmsx64BKHRNq08XOFkno+cstr+FrvAL5pv6EDhJuwG0Kg4f+t+633AMnY3Ax iYzhl7bI01uBsPbdoym87HOwh8yknM2s23Pj5A== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=40176 is now in the chain-of-trust
	Query to b.gov-servers.net for CRT2014-2024REVIEW.GOV/A
	Received 1152 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (1152 bytes) ;; HEADER SECTION ;; id = 44510 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NXDOMAIN ;; qdcount = 1 ancount = 0 nscount = 8 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; CRT2014-2024REVIEW.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (8 records) GOV. 86400 IN SOA ( a.gov-servers.net. nstld.verisign-grs.com. 1590707401 ;serial 3600 ;refresh 900 ;retry 1814400 ;expire 86400 ;minimum ) GOV. 86400 IN RRSIG ( SOA 8 1 86400 20200604221007 20200528221007 40176 gov. OfzvYiqzdMCQuDThAGgAiZXpd8/B87xHq5JvWrjGZjpEv+Yaapso9lNT4m/cq1jCV+4hOEw+WEZT 5zk9u4XgIyT+5DJ8OY2iThIpOHl1a3AUDRflktFWc7/ssHWaDZNMcav4CaVb/cQKsHUu0dSg7MuU O9YhgS0CysEmL9J5SniRx7YNhPXbk9bMrE61GNfKCoCmbw7gqzu+Mjj9RgKj8Q== ) 578ET16S7LTNSQ1T0AMM21GL20OJ5G76.GOV. 86400 IN NSEC3 ( 1 0 8 4c44934802d3 578h5nt2eiqh2t6cetlnebntl52t0et8 NS SOA RRSIG DNSKEY NSEC3PARAM ) 578ET16S7LTNSQ1T0AMM21GL20OJ5G76.GOV. 86400 IN RRSIG ( NSEC3 8 2 86400 20200604221007 20200528221007 40176 gov. V1xW0SY8IYS7TYzuFXVgklrUHr74G3AIQlLyLbV6pX+pPjTdWGs2mJ/xGCdC5XdiqWPqvgootqi1 eEpDu147XIcGkHc33hUi6md/c45NnCzR3EVTPxJ0oF55nBXXN+41EcHhdeFJAWwX+UVxf8wUxfs9 4VuRWyS0gtqXibmuotQ/PH8Shwf9Gdx0A9UF4Fb7Naah42hiw6H2TECxVKPIng== ) u5gv71l254kmv6tta3m2v69oogbadce6.GOV. 86400 IN NSEC3 ( 1 0 8 4c44934802d3 u5n8ipnjq6ii3p8gnovd12m637jm0rt6 NS ) u5gv71l254kmv6tta3m2v69oogbadce6.GOV. 86400 IN RRSIG ( NSEC3 8 2 86400 20200604221007 20200528221007 40176 gov. QI/ixoaZq4SYp/+l3JuvevoZWdfAeGxtZCmkzii1+hYU12l8HyQfSLygkjlQDQAeuf+ilyjmsbiR Bpz2L7eA3jY7fN42cw0L8s6JejS7UF+sABYYhEdgMygTopby2rbkgtTOmozv5u4kQ4kUruGmaCev 0gKaFfOy4RcK8M48cobMT2fdJYpHjDvzEOxfTsAYOzPnY8QyR00WbxHkKbhynQ== ) ka690fnatniqid78pvjh8b29tb4p3bio.GOV. 86400 IN NSEC3 ( 1 0 8 4c44934802d3 kaqqhvahkg9ml8utc9qcov5l8gdcl1pt NS ) ka690fnatniqid78pvjh8b29tb4p3bio.GOV. 86400 IN RRSIG ( NSEC3 8 2 86400 20200604221007 20200528221007 40176 gov. gwKSyzMBfGHW596Q8JYyLYI+rjqn2iVNjsr6+9LBZ3H02/L0kxNTDA1/ptwDD4J9EWTi6kWay5V8 hGgJQxb8AltVbRkmc9Qas/M+GVE8nfClqWSsn9TglU51TQJS7l8t1w+kEMYrYzGLHUNvcXWAK9PA M90bCS6zQXA5UDm3UaQ5H1YEYd8sHkUonFCM0gjpITijTTwqjYbC+15CbRKFtg== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Zone GOV (209.112.123.30) returns NXDOMAIN for CRT2014-2024REVIEW.GOV
	NSEC3 validation not implemented yet

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test CRT2014-2024REVIEW.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: