DNSSEC Analyzer - HEALTHINDICATORS.GOV

Domain Name:

Time: 2021-01-17 10:39:54 UTC, NTP stratum 4

Analyzing DNSSEC problems for HEALTHINDICATORS.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to b.root-servers.net for ./DNSKEY
	Received 864 bytes from 199.9.14.201
	;; Answer received from 199.9.14.201 (864 bytes) ;; HEADER SECTION ;; id = 36975 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 256 3 8 AwEAAbKGKkqc1VAvQr48iPf9Nd39f337MitggxF0AB9kLKRNSuq9joOEPC/R6PD/4lTzUms8U9oP +aiF0rVC2rGOKSdOLxPHRLA3ameMFT2/3bmVCFsRsn03IVTdN5VUAfczjqjmA0t9NM7bbN5oVzuQ L3P1FyQb1q6HX4M1qg+htMNEd9PdlPLMFcrUg5fcYtTr2llVkO1Xo3lAdrjmmxfGeIyQnskpwPyW 88J527DEytmgPo5KzLBYLMoL2Q41PK0ul0rs7yN+g5IG4LnJOcjew1yrmHXrp/OzrpsO4FkicufY t/ygfQKkT5HYbr/yFgeZAfaF80nYyc7wgDYxOeHdiRk= ) ; Key ID = 42351 . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20210201000000 20210111000000 20326 . nPlFYAyI+iUNytZu71KcMwdvR1ubjVRP6Hp7E/owRaLhHhOON4gJsezf4UoBeq75yeDBkzRA2pwD 7g6XVY/qsQM9WDuzTYQJWqvSGDj0BYF5bS482kH8Y3N/Ly/jlQCSFIlCbTjAUBHTdYZji6esQDqi Wk2SzB38ZLsxgey439JkhxUzMh5520zLCiOnuZs9Iy0KLoy4ss7R/GiQjcYEIi0zScXZXcDBr3qd 2HB/BL98F2MDeshzQ/VRimxsZ3RH3ERNPS1GurmjY/mTUZxX3ITj1C57PI2bgurv1b7dyp1zLpmZ lIz/21lQwvT3wESGF44J1YmBDheYoG44GY9RVg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAbKGKkqc1VAvQr48iPf9Nd39f337MitggxF0AB9kLKRNSuq9joOEPC/R6PD/4lTzUms8U9oP +aiF0rVC2rGOKSdOLxPHRLA3ameMFT2/3bmVCFsRsn03IVTdN5VUAfczjqjmA0t9NM7bbN5oVzuQ L3P1FyQb1q6HX4M1qg+htMNEd9PdlPLMFcrUg5fcYtTr2llVkO1Xo3lAdrjmmxfGeIyQnskpwPyW 88J527DEytmgPo5KzLBYLMoL2Q41PK0ul0rs7yN+g5IG4LnJOcjew1yrmHXrp/OzrpsO4FkicufY t/ygfQKkT5HYbr/yFgeZAfaF80nYyc7wgDYxOeHdiRk= ) ; Key ID = 42351`
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20210201000000 20210111000000 20326 . nPlFYAyI+iUNytZu71KcMwdvR1ubjVRP6Hp7E/owRaLhHhOON4gJsezf4UoBeq75yeDBkzRA2pwD 7g6XVY/qsQM9WDuzTYQJWqvSGDj0BYF5bS482kH8Y3N/Ly/jlQCSFIlCbTjAUBHTdYZji6esQDqi Wk2SzB38ZLsxgey439JkhxUzMh5520zLCiOnuZs9Iy0KLoy4ss7R/GiQjcYEIi0zScXZXcDBr3qd 2HB/BL98F2MDeshzQ/VRimxsZ3RH3ERNPS1GurmjY/mTUZxX3ITj1C57PI2bgurv1b7dyp1zLpmZ lIz/21lQwvT3wESGF44J1YmBDheYoG44GY9RVg== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=42351 is now in the chain-of-trust
	Query to d.root-servers.net for HEALTHINDICATORS.GOV/A
	Received 675 bytes from 199.7.91.13
	;; Answer received from 199.7.91.13 (675 bytes) ;; HEADER SECTION ;; id = 32295 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20210130050000 20210117040000 42351 . Uqx31Wf45Vvi7NyeZMW6zqcAcDZMD6wpnF+EdNxqrb0l/bvTnP2z75eIA5PWkd5Tduq1DTzNZhaB 8TxWdY6LC74o1e6M7sq+pJpg47Mn7JQBgay1+7jpRqd5nHo9StkB7Nexyxe6UZduuJaTkiXJ5Ubd 7Dqime2PlXCkEB5IV1LbhsMhI8eaQqpVE0VCx+xcS5syHMByLrzux6qKRM5W/lOPMYkwK6qqF2Sl GtPH7/6161eHPLefAhgXXfm/vhif4rEWx+q+JeVH6Ra7ajLuJ/s4s/4sDUHQY2MD56qASRAHOLa9 hQ4ehHLJ+aOT0W07CdFrLSGeTWxZF0jg0lVTCA== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option:
	Query to f.root-servers.net for GOV/DNSKEY
	Received 658 bytes from 192.5.5.241
	;; Answer received from 192.5.5.241 (658 bytes) ;; HEADER SECTION ;; id = 36026 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20210130050000 20210117040000 42351 . Uqx31Wf45Vvi7NyeZMW6zqcAcDZMD6wpnF+EdNxqrb0l/bvTnP2z75eIA5PWkd5Tduq1DTzNZhaB 8TxWdY6LC74o1e6M7sq+pJpg47Mn7JQBgay1+7jpRqd5nHo9StkB7Nexyxe6UZduuJaTkiXJ5Ubd 7Dqime2PlXCkEB5IV1LbhsMhI8eaQqpVE0VCx+xcS5syHMByLrzux6qKRM5W/lOPMYkwK6qqF2Sl GtPH7/6161eHPLefAhgXXfm/vhif4rEWx+q+JeVH6Ra7ajLuJ/s4s/4sDUHQY2MD56qASRAHOLa9 hQ4ehHLJ+aOT0W07CdFrLSGeTWxZF0jg0lVTCA== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN A 209.112.123.30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN A 69.36.153.30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN A 81.19.194.30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to d.root-servers.net for GOV/DS
	Received 403 bytes from 199.7.91.13
	;; Answer received from 199.7.91.13 (403 bytes) ;; HEADER SECTION ;; id = 15382 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20210130050000 20210117040000 42351 . Uqx31Wf45Vvi7NyeZMW6zqcAcDZMD6wpnF+EdNxqrb0l/bvTnP2z75eIA5PWkd5Tduq1DTzNZhaB 8TxWdY6LC74o1e6M7sq+pJpg47Mn7JQBgay1+7jpRqd5nHo9StkB7Nexyxe6UZduuJaTkiXJ5Ubd 7Dqime2PlXCkEB5IV1LbhsMhI8eaQqpVE0VCx+xcS5syHMByLrzux6qKRM5W/lOPMYkwK6qqF2Sl GtPH7/6161eHPLefAhgXXfm/vhif4rEWx+q+JeVH6Ra7ajLuJ/s4s/4sDUHQY2MD56qASRAHOLa9 hQ4ehHLJ+aOT0W07CdFrLSGeTWxZF0jg0lVTCA== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-1 has algorithm RSASHA256
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`GOV. 86400 IN RRSIG ( DS 8 1 86400 20210130050000 20210117040000 42351 . Uqx31Wf45Vvi7NyeZMW6zqcAcDZMD6wpnF+EdNxqrb0l/bvTnP2z75eIA5PWkd5Tduq1DTzNZhaB 8TxWdY6LC74o1e6M7sq+pJpg47Mn7JQBgay1+7jpRqd5nHo9StkB7Nexyxe6UZduuJaTkiXJ5Ubd 7Dqime2PlXCkEB5IV1LbhsMhI8eaQqpVE0VCx+xcS5syHMByLrzux6qKRM5W/lOPMYkwK6qqF2Sl GtPH7/6161eHPLefAhgXXfm/vhif4rEWx+q+JeVH6Ra7ajLuJ/s4s/4sDUHQY2MD56qASRAHOLa9 hQ4ehHLJ+aOT0W07CdFrLSGeTWxZF0jg0lVTCA== )`
	RRSIG=42351 and DNSKEY=42351 verifies the DS RRset
	DS=7698/SHA-1 is now in the chain-of-trust
	`GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	`GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to c.gov-servers.net for GOV/DNSKEY
	Received 957 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (957 bytes) ;; HEADER SECTION ;; id = 43816 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 4 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (4 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAaQup5BwKqvn1In1x+PzsLpFav6zsLaW7fivUq9PpXUzXn++rcjtYBS15NXm1hMAZb5FChUp 35qd7hVqdwNuT/NGFNHfEykaeWjkqBKX2mCBSiyIsK4i4TQu7CS2CgqfqR43wXFITyItTPP5wijo 9Jt4dsVTjAtNJKaXOKZ31tLaeM5C2bYqAofxX6oK3TVAZ7vFsjPqjJZtZUBMZq28BiU= ) ; Key ID = 27306 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAeFoiC01j4zIdBfR1vxBGp7WmV8q6IgTQ/pvbQJhCd9+sE16txuz6M81FPFkWhTk1nsXR4tI UZLQZpvgme+q3dqWuqtFA2amB99IM9B9iq6kwSrkZNVFv6zav3eP+5BlL/OA9FNFQHXCj5qj2noA j2le7j8umVcc+4zH677ytdtIImoAY45H8wWxVrGR4kxqM54O10fPHXEPu84irfaZGrM= ) ; Key ID = 15489 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20210129200254 20210114195754 7698 gov. CGhz32kgAD2TX5Lg2j23jXXUv+RTgGyMxbh/yobXObSvJneaSKa75D5Vo/iCVbvVvp3lntOGoKnQ AD+e8tEVlaKiG2bX1u9asLn9azwmk+M5i/4vCydP31wJ4503w+7bZe1c5qg26RqVN5pudzmgUUUK msaHry0zXHrpcC941eZZhuemdKlF4XT3E6JkkAL+HyCLvqIk4rBqlShTiqUwzKj6+GbhQvuJzU+B 4ZsiuoNu1FBU2ipWi+FJ88xawWmBc+yEDZkPJFJZpdPNtonI1Cjd3H61PSXe6JRrtsLcLX/G9F+J nQo6IN7tiEONh5QAEo2RBBc1yL29N3BRDW8qMg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 3 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAaQup5BwKqvn1In1x+PzsLpFav6zsLaW7fivUq9PpXUzXn++rcjtYBS15NXm1hMAZb5FChUp 35qd7hVqdwNuT/NGFNHfEykaeWjkqBKX2mCBSiyIsK4i4TQu7CS2CgqfqR43wXFITyItTPP5wijo 9Jt4dsVTjAtNJKaXOKZ31tLaeM5C2bYqAofxX6oK3TVAZ7vFsjPqjJZtZUBMZq28BiU= ) ; Key ID = 27306`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAeFoiC01j4zIdBfR1vxBGp7WmV8q6IgTQ/pvbQJhCd9+sE16txuz6M81FPFkWhTk1nsXR4tI UZLQZpvgme+q3dqWuqtFA2amB99IM9B9iq6kwSrkZNVFv6zav3eP+5BlL/OA9FNFQHXCj5qj2noA j2le7j8umVcc+4zH677ytdtIImoAY45H8wWxVrGR4kxqM54O10fPHXEPu84irfaZGrM= ) ; Key ID = 15489`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20210129200254 20210114195754 7698 gov. CGhz32kgAD2TX5Lg2j23jXXUv+RTgGyMxbh/yobXObSvJneaSKa75D5Vo/iCVbvVvp3lntOGoKnQ AD+e8tEVlaKiG2bX1u9asLn9azwmk+M5i/4vCydP31wJ4503w+7bZe1c5qg26RqVN5pudzmgUUUK msaHry0zXHrpcC941eZZhuemdKlF4XT3E6JkkAL+HyCLvqIk4rBqlShTiqUwzKj6+GbhQvuJzU+B 4ZsiuoNu1FBU2ipWi+FJ88xawWmBc+yEDZkPJFJZpdPNtonI1Cjd3H61PSXe6JRrtsLcLX/G9F+J nQo6IN7tiEONh5QAEo2RBBc1yL29N3BRDW8qMg== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=27306 is now in the chain-of-trust
	DNSKEY=15489 is now in the chain-of-trust
	Query to c.gov-servers.net for HEALTHINDICATORS.GOV/A
	Received 518 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (518 bytes) ;; HEADER SECTION ;; id = 27001 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 8 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (8 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 1 cf5b889b034282d474c2da86803d656c9fa89f89 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 2 c70c99d40420fa465a65eb38bdfce096f8b9c62a56fca3bdf6ef6afa61821478 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210124091008 20210117091008 27306 gov. jX1pdqTK3rort1bR/yprjs55pJjS31e2csJ93z46xn6m0Xa2xovG/0t6ZwMdJAYx93bl8UecXSJr p0LOtcXKjpf+uN3qfMDmhYU/2vBBvM8yECn7L12gq5DO6/8Ol2lq/rpoxL1zBRBtm0JEUUUy1Ilu dmRzwqD2Thbht65awCKUTYmjHqJ4K1uGQY8m30i2IDnKVomoZgM1QYDdFUoNLg== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to b.gov-servers.net for HEALTHINDICATORS.GOV/DNSKEY
	Received 518 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (518 bytes) ;; HEADER SECTION ;; id = 20013 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 8 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (8 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 1 cf5b889b034282d474c2da86803d656c9fa89f89 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 2 c70c99d40420fa465a65eb38bdfce096f8b9c62a56fca3bdf6ef6afa61821478 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210124091008 20210117091008 27306 gov. jX1pdqTK3rort1bR/yprjs55pJjS31e2csJ93z46xn6m0Xa2xovG/0t6ZwMdJAYx93bl8UecXSJr p0LOtcXKjpf+uN3qfMDmhYU/2vBBvM8yECn7L12gq5DO6/8Ol2lq/rpoxL1zBRBtm0JEUUUy1Ilu dmRzwqD2Thbht65awCKUTYmjHqJ4K1uGQY8m30i2IDnKVomoZgM1QYDdFUoNLg== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone HEALTHINDICATORS.GOV

HEALTHINDICATORS.GOV

	Checking DS between GOV and HEALTHINDICATORS.GOV
	Query to a.gov-servers.net for HEALTHINDICATORS.GOV/DS
	Received 412 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (412 bytes) ;; HEADER SECTION ;; id = 27530 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 5 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DS ;; ANSWER SECTION (5 records) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 1 cf5b889b034282d474c2da86803d656c9fa89f89 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 2 c70c99d40420fa465a65eb38bdfce096f8b9c62a56fca3bdf6ef6afa61821478 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210124091008 20210117091008 27306 gov. jX1pdqTK3rort1bR/yprjs55pJjS31e2csJ93z46xn6m0Xa2xovG/0t6ZwMdJAYx93bl8UecXSJr p0LOtcXKjpf+uN3qfMDmhYU/2vBBvM8yECn7L12gq5DO6/8Ol2lq/rpoxL1zBRBtm0JEUUUy1Ilu dmRzwqD2Thbht65awCKUTYmjHqJ4K1uGQY8m30i2IDnKVomoZgM1QYDdFUoNLg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 4 DS records for HEALTHINDICATORS.GOV in the GOV zone
	DS=40410/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=5869/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=5869/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	DS=40410/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210124091008 20210117091008 27306 gov. jX1pdqTK3rort1bR/yprjs55pJjS31e2csJ93z46xn6m0Xa2xovG/0t6ZwMdJAYx93bl8UecXSJr p0LOtcXKjpf+uN3qfMDmhYU/2vBBvM8yECn7L12gq5DO6/8Ol2lq/rpoxL1zBRBtm0JEUUUy1Ilu dmRzwqD2Thbht65awCKUTYmjHqJ4K1uGQY8m30i2IDnKVomoZgM1QYDdFUoNLg== )`
	RRSIG=27306 and DNSKEY=27306 verifies the DS RRset
	DS=40410/SHA-1 is now in the chain-of-trust
	DS=5869/SHA-1 is now in the chain-of-trust
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 1 cf5b889b034282d474c2da86803d656c9fa89f89 )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 2 c70c99d40420fa465a65eb38bdfce096f8b9c62a56fca3bdf6ef6afa61821478 )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d )`
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/DNSKEY
	Received 1565 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1565 bytes) ;; HEADER SECTION ;; id = 59414 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 6 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (6 records) healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAbXJsNqY/MoNboZHFNqGkJvs6IUXPRhduxs4iYLjclkHROPgXhDqjsjRSgVyIEHuR9GUGcXm KoTB3bVDoJEV78AXWPcbra61arpZliUe7iLMT6GrfR98BKMu+ytTu2hjuvD4mJxK4mHMTEx6Jz8o IzPpM5rKrLCyeW91Tfq3HLwF ) ; Key ID = 37232 healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAY3Ci4FK+f2+lh89A/WCL4m1tEMfBblFsqpRTOLpKD0wADJCMxP0yjzMsiF3B7I9W24WEObc gj9yfEy4RID1QLduC5G6ZlJNoWSSSScNhOGebCJT1q4iuVLZ3V09HucAxYEwrNKqTzSbjv8ij2c7 wraA345AdOCRDlwbpiABtoQcXBxfkKMl//5ZBTCwG3tNepuvnPDXATaBHZJ59LXuIrERHLIpFH+D qoo7uA22I3uO4lA3RUWXN/c7OYELeFVFgjrNPxRZu4ZGz53pUAg68rJty3l92aqM8JTQ26grK4i9 lTt1BiaNCPMgD6K/ZUEpMjqvUcnq8YEIADWVbkcr2MU= ) ; Key ID = 40410 healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAeOtS9gpIU6zPW3s1/VZkJzSJDujHbPy223i/sYe7S4X8IaydGsfx0DT2tcILeP5vAjzQu/7 hvXm8vWwF9kGdipMbMNRjW0uRFVpn/4Q5Gs3CFs3Y+xPnsgiF2sF+6EBW7MPK6XaIqd1IkJJRrDj cUQd2p3zpJHjbRixEyOIb4QvqwoDBkGEAWukIqdr1lcr+pbeWNeC87cn9l/Yp8+mu41WUWDoBtB1 p1MiFY4Pm/wnUpLXx2d14veOE8A3Hy6PLMxIv+E/stiwSbqqRnen6tGfGaOOUlNGP/r2THaiyg9I WLhPbWWk4fPB1NUrgubALReJaghoK8hhSdyWWwlD+wc= ) ; Key ID = 5869 healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210123141953 20210113132523 5869 healthindicators.gov. qrkWC8LIQ3hKndt/yrudEFnnL1WiS8ipjC3L/I+V2xr/8rXgNwG6hncRvZTzkTd0N7qcyuZuNsnc WHnAZBplox6L4+JSzJ1Fe2AxtIGAADm6SIiJdjsybXSxQumjwT27yUdtJhhUy4Mf/cOxkFUk8MQ4 Ark4Vk1rb2xRKehNEepevh1zzK/9US+rqXOQJuhfgnaJB1TcVCe9DDYxssHKr2DsHGU3Fqou4/Fn gLMCQRAS3xOU26pDkPWYZtIRxw6Ha7vEGioa0lgtykWyFo+zdzNhtgEqpmAdheJw/Vfx3wB7SI62 vup3YvjiGDHSPpJqiqz5el2gcNix4F8MhdJMPw== ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210123141953 20210113132523 37232 healthindicators.gov. SdRRlR6BFdlFVHv3miGDVsiL+R/rX6YN0xOQ+WCgpUvhacFSfyqAmVkq0Ak+UybANYdXkYrZHC+6 7zsgMwx3KUodS/KhRRGS1dgMlHrGTBJ3BwWhgVT8CyAqwVyN6uimH05YtWingP3qMCUAuu5Y8y/k +Q3ChhqA/qhsOp51aLg= ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210123141953 20210113132523 40410 healthindicators.gov. hYB3jCAbV3/TqicR8DEG/p0RQrhF5P45swzJ/dJ7sPDARvnTreMsiKEcBL3cCoYwzlYjLnbS3rtQ 8YYKAQlkbHJhOwyr4uv/bIPfFkmWtTlzTGBuntjISyLu9bEf3siN5VG0015yja8bGrYA89HANn5O ZNpFxrX47lkR73mZoeAOF7r00VX9bBuzErOFfJo8JK45YpObX56AQuJ8wK9vmzwb367XjvVRIH5j KJ7t1xCgXTNAPxKbWBr0IBRzU1mJUk06hRwyvg3xqPJKnd8aA5CuafDZ1PvBJSoIyJJH3rnbGhJR e9QWvXyxv7dSyHjtq409tsPhXsG1LRSqFvU+dg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 3 DNSKEY records for HEALTHINDICATORS.GOV
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAbXJsNqY/MoNboZHFNqGkJvs6IUXPRhduxs4iYLjclkHROPgXhDqjsjRSgVyIEHuR9GUGcXm KoTB3bVDoJEV78AXWPcbra61arpZliUe7iLMT6GrfR98BKMu+ytTu2hjuvD4mJxK4mHMTEx6Jz8o IzPpM5rKrLCyeW91Tfq3HLwF ) ; Key ID = 37232`
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAY3Ci4FK+f2+lh89A/WCL4m1tEMfBblFsqpRTOLpKD0wADJCMxP0yjzMsiF3B7I9W24WEObc gj9yfEy4RID1QLduC5G6ZlJNoWSSSScNhOGebCJT1q4iuVLZ3V09HucAxYEwrNKqTzSbjv8ij2c7 wraA345AdOCRDlwbpiABtoQcXBxfkKMl//5ZBTCwG3tNepuvnPDXATaBHZJ59LXuIrERHLIpFH+D qoo7uA22I3uO4lA3RUWXN/c7OYELeFVFgjrNPxRZu4ZGz53pUAg68rJty3l92aqM8JTQ26grK4i9 lTt1BiaNCPMgD6K/ZUEpMjqvUcnq8YEIADWVbkcr2MU= ) ; Key ID = 40410`
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAeOtS9gpIU6zPW3s1/VZkJzSJDujHbPy223i/sYe7S4X8IaydGsfx0DT2tcILeP5vAjzQu/7 hvXm8vWwF9kGdipMbMNRjW0uRFVpn/4Q5Gs3CFs3Y+xPnsgiF2sF+6EBW7MPK6XaIqd1IkJJRrDj cUQd2p3zpJHjbRixEyOIb4QvqwoDBkGEAWukIqdr1lcr+pbeWNeC87cn9l/Yp8+mu41WUWDoBtB1 p1MiFY4Pm/wnUpLXx2d14veOE8A3Hy6PLMxIv+E/stiwSbqqRnen6tGfGaOOUlNGP/r2THaiyg9I WLhPbWWk4fPB1NUrgubALReJaghoK8hhSdyWWwlD+wc= ) ; Key ID = 5869`
	DNSKEY=40410/SEP is now in the chain-of-trust
	DS=40410/SHA-1 verifies DNSKEY=40410/SEP
	DS=40410/SHA-256 verifies DNSKEY=40410/SEP
	DNSKEY=5869/SEP is now in the chain-of-trust
	DS=5869/SHA-1 verifies DNSKEY=5869/SEP
	DS=5869/SHA-256 verifies DNSKEY=5869/SEP
	Found 3 RRSIGs over DNSKEY RRset
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210123141953 20210113132523 5869 healthindicators.gov. qrkWC8LIQ3hKndt/yrudEFnnL1WiS8ipjC3L/I+V2xr/8rXgNwG6hncRvZTzkTd0N7qcyuZuNsnc WHnAZBplox6L4+JSzJ1Fe2AxtIGAADm6SIiJdjsybXSxQumjwT27yUdtJhhUy4Mf/cOxkFUk8MQ4 Ark4Vk1rb2xRKehNEepevh1zzK/9US+rqXOQJuhfgnaJB1TcVCe9DDYxssHKr2DsHGU3Fqou4/Fn gLMCQRAS3xOU26pDkPWYZtIRxw6Ha7vEGioa0lgtykWyFo+zdzNhtgEqpmAdheJw/Vfx3wB7SI62 vup3YvjiGDHSPpJqiqz5el2gcNix4F8MhdJMPw== )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210123141953 20210113132523 37232 healthindicators.gov. SdRRlR6BFdlFVHv3miGDVsiL+R/rX6YN0xOQ+WCgpUvhacFSfyqAmVkq0Ak+UybANYdXkYrZHC+6 7zsgMwx3KUodS/KhRRGS1dgMlHrGTBJ3BwWhgVT8CyAqwVyN6uimH05YtWingP3qMCUAuu5Y8y/k +Q3ChhqA/qhsOp51aLg= )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210123141953 20210113132523 40410 healthindicators.gov. hYB3jCAbV3/TqicR8DEG/p0RQrhF5P45swzJ/dJ7sPDARvnTreMsiKEcBL3cCoYwzlYjLnbS3rtQ 8YYKAQlkbHJhOwyr4uv/bIPfFkmWtTlzTGBuntjISyLu9bEf3siN5VG0015yja8bGrYA89HANn5O ZNpFxrX47lkR73mZoeAOF7r00VX9bBuzErOFfJo8JK45YpObX56AQuJ8wK9vmzwb367XjvVRIH5j KJ7t1xCgXTNAPxKbWBr0IBRzU1mJUk06hRwyvg3xqPJKnd8aA5CuafDZ1PvBJSoIyJJH3rnbGhJR e9QWvXyxv7dSyHjtq409tsPhXsG1LRSqFvU+dg== )`
	RRSIG=5869 and DNSKEY=5869/SEP verifies the DNSKEY RRset
	RRSIG=37232 and DNSKEY=37232 verifies the DNSKEY RRset
	RRSIG=40410 and DNSKEY=40410/SEP verifies the DNSKEY RRset
	DNSKEY=37232 is now in the chain-of-trust
	Query to ns3.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1052 bytes) ;; HEADER SECTION ;; id = 27960 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210123141906 20210113132523 37232 healthindicators.gov. nc/DAdb63KPpqf5j3BPxQNGuNpyamb3rUkMOtgV+gQ/4ZN2CYIlr0LgYhtfHSwb/cf4zMdbN3mFB UL1YPW9Rnsq2+R/eeLVbuVQEZqucZMmfMIni+HzWZYRfkuRNNWHTzdGGZfTq2lTE0zM1sjQ8ViJ3 O23EjFym2UvBY2kva0c= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210123141953 20210113132523 37232 healthindicators.gov. f7VdVRYxcAn+u6e/NLwuv/ji+k2O5GfO4pxxhLBo2eTtKigRkIzk3Ihu8ZBKgjHn2c8URldHA0Vu /Mq6fwsMOA/3xiJB7F13si43fAAzyJGsb3+FTCF2FJ8Btw7yiDjbIisrnlVmGvGm3vhdQq8IdvDx 949gnSpL2YqP7+AGG+w= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. oq0rMCgN4GHIuJ73gFltXdMg6fnBC4D7DGqVsMkOLELdjHH9L6y9sNTwnOpNtl17YySLBsJNLIhs Gnmad531B+WmbE72nOTgFkrzu7g+9ePv/9LBeXRG7rbBD8sVoY3ggMf7KfM6VZTDo/dGY7G0cCD1 Uo9+Tgcy+qmOPhA+NyY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. XUdR45ALl1yIXXWVqWSf/sVXQrSzw3JUAyrc5C0BFiz5/Lmg2tryrxG1STTIaRFxVKZmPCDXCIGO v/8bwZPFjzOm9ZLlwtTlnNOvr5hCrk+ICdo1nNLEBxUQqr28eZlICKGIMGHFMLmKbNdIJUyRIxV+ Yh1MSyeHdeLpJipNyaM= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120120514 20210110111351 9155 cdc.gov. TU2nwlH9JYlWDRQ3RZZ3e3gH3+FKB8FEinpZYjG7cTo8xYLWSovFZM5cgWqWKlwPKninGwQa4phw 4WjYlZLakqKg59qwYOCeTfRbhGP7OKidhFZZ5ZWpfTwcuRPWjRuPOYPgS0wOZwOqRqWDMYuuniEk /XbAMzFgJPl1SvUK+yo= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1081 bytes) ;; HEADER SECTION ;; id = 60563 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 628853128 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210123142523 20210113132523 37232 healthindicators.gov. EZbMTWePfNavb53Fg1QeVesxqXTwdAO+3UhsWIfnBm4vCiUBA1tXzp6hKaraPmLtrDsjmoHMujXy SyCbH/GPHUaXthLUzA3qN/lr7DZ/OtoizOXMjwPZNL0Nwe1G5B+XpS2Oow2nKJivpbQWzKrsgf/q uY7mRwPsAMRhWY4uBhQ= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210123141953 20210113132523 37232 healthindicators.gov. f7VdVRYxcAn+u6e/NLwuv/ji+k2O5GfO4pxxhLBo2eTtKigRkIzk3Ihu8ZBKgjHn2c8URldHA0Vu /Mq6fwsMOA/3xiJB7F13si43fAAzyJGsb3+FTCF2FJ8Btw7yiDjbIisrnlVmGvGm3vhdQq8IdvDx 949gnSpL2YqP7+AGG+w= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. oq0rMCgN4GHIuJ73gFltXdMg6fnBC4D7DGqVsMkOLELdjHH9L6y9sNTwnOpNtl17YySLBsJNLIhs Gnmad531B+WmbE72nOTgFkrzu7g+9ePv/9LBeXRG7rbBD8sVoY3ggMf7KfM6VZTDo/dGY7G0cCD1 Uo9+Tgcy+qmOPhA+NyY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. XUdR45ALl1yIXXWVqWSf/sVXQrSzw3JUAyrc5C0BFiz5/Lmg2tryrxG1STTIaRFxVKZmPCDXCIGO v/8bwZPFjzOm9ZLlwtTlnNOvr5hCrk+ICdo1nNLEBxUQqr28eZlICKGIMGHFMLmKbNdIJUyRIxV+ Yh1MSyeHdeLpJipNyaM= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120120514 20210110111351 9155 cdc.gov. TU2nwlH9JYlWDRQ3RZZ3e3gH3+FKB8FEinpZYjG7cTo8xYLWSovFZM5cgWqWKlwPKninGwQa4phw 4WjYlZLakqKg59qwYOCeTfRbhGP7OKidhFZZ5ZWpfTwcuRPWjRuPOYPgS0wOZwOqRqWDMYuuniEk /XbAMzFgJPl1SvUK+yo= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1081 bytes) ;; HEADER SECTION ;; id = 7904 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 628853128 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210123142523 20210113132523 37232 healthindicators.gov. EZbMTWePfNavb53Fg1QeVesxqXTwdAO+3UhsWIfnBm4vCiUBA1tXzp6hKaraPmLtrDsjmoHMujXy SyCbH/GPHUaXthLUzA3qN/lr7DZ/OtoizOXMjwPZNL0Nwe1G5B+XpS2Oow2nKJivpbQWzKrsgf/q uY7mRwPsAMRhWY4uBhQ= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210123141953 20210113132523 37232 healthindicators.gov. f7VdVRYxcAn+u6e/NLwuv/ji+k2O5GfO4pxxhLBo2eTtKigRkIzk3Ihu8ZBKgjHn2c8URldHA0Vu /Mq6fwsMOA/3xiJB7F13si43fAAzyJGsb3+FTCF2FJ8Btw7yiDjbIisrnlVmGvGm3vhdQq8IdvDx 949gnSpL2YqP7+AGG+w= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. oq0rMCgN4GHIuJ73gFltXdMg6fnBC4D7DGqVsMkOLELdjHH9L6y9sNTwnOpNtl17YySLBsJNLIhs Gnmad531B+WmbE72nOTgFkrzu7g+9ePv/9LBeXRG7rbBD8sVoY3ggMf7KfM6VZTDo/dGY7G0cCD1 Uo9+Tgcy+qmOPhA+NyY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. XUdR45ALl1yIXXWVqWSf/sVXQrSzw3JUAyrc5C0BFiz5/Lmg2tryrxG1STTIaRFxVKZmPCDXCIGO v/8bwZPFjzOm9ZLlwtTlnNOvr5hCrk+ICdo1nNLEBxUQqr28eZlICKGIMGHFMLmKbNdIJUyRIxV+ Yh1MSyeHdeLpJipNyaM= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120120514 20210110111351 9155 cdc.gov. TU2nwlH9JYlWDRQ3RZZ3e3gH3+FKB8FEinpZYjG7cTo8xYLWSovFZM5cgWqWKlwPKninGwQa4phw 4WjYlZLakqKg59qwYOCeTfRbhGP7OKidhFZZ5ZWpfTwcuRPWjRuPOYPgS0wOZwOqRqWDMYuuniEk /XbAMzFgJPl1SvUK+yo= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1081 bytes) ;; HEADER SECTION ;; id = 32652 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 628853128 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210123142523 20210113132523 37232 healthindicators.gov. EZbMTWePfNavb53Fg1QeVesxqXTwdAO+3UhsWIfnBm4vCiUBA1tXzp6hKaraPmLtrDsjmoHMujXy SyCbH/GPHUaXthLUzA3qN/lr7DZ/OtoizOXMjwPZNL0Nwe1G5B+XpS2Oow2nKJivpbQWzKrsgf/q uY7mRwPsAMRhWY4uBhQ= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210123141953 20210113132523 37232 healthindicators.gov. f7VdVRYxcAn+u6e/NLwuv/ji+k2O5GfO4pxxhLBo2eTtKigRkIzk3Ihu8ZBKgjHn2c8URldHA0Vu /Mq6fwsMOA/3xiJB7F13si43fAAzyJGsb3+FTCF2FJ8Btw7yiDjbIisrnlVmGvGm3vhdQq8IdvDx 949gnSpL2YqP7+AGG+w= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. oq0rMCgN4GHIuJ73gFltXdMg6fnBC4D7DGqVsMkOLELdjHH9L6y9sNTwnOpNtl17YySLBsJNLIhs Gnmad531B+WmbE72nOTgFkrzu7g+9ePv/9LBeXRG7rbBD8sVoY3ggMf7KfM6VZTDo/dGY7G0cCD1 Uo9+Tgcy+qmOPhA+NyY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. XUdR45ALl1yIXXWVqWSf/sVXQrSzw3JUAyrc5C0BFiz5/Lmg2tryrxG1STTIaRFxVKZmPCDXCIGO v/8bwZPFjzOm9ZLlwtTlnNOvr5hCrk+ICdo1nNLEBxUQqr28eZlICKGIMGHFMLmKbNdIJUyRIxV+ Yh1MSyeHdeLpJipNyaM= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120120514 20210110111351 9155 cdc.gov. TU2nwlH9JYlWDRQ3RZZ3e3gH3+FKB8FEinpZYjG7cTo8xYLWSovFZM5cgWqWKlwPKninGwQa4phw 4WjYlZLakqKg59qwYOCeTfRbhGP7OKidhFZZ5ZWpfTwcuRPWjRuPOYPgS0wOZwOqRqWDMYuuniEk /XbAMzFgJPl1SvUK+yo= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1052 bytes) ;; HEADER SECTION ;; id = 26390 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210123141906 20210113132523 37232 healthindicators.gov. nc/DAdb63KPpqf5j3BPxQNGuNpyamb3rUkMOtgV+gQ/4ZN2CYIlr0LgYhtfHSwb/cf4zMdbN3mFB UL1YPW9Rnsq2+R/eeLVbuVQEZqucZMmfMIni+HzWZYRfkuRNNWHTzdGGZfTq2lTE0zM1sjQ8ViJ3 O23EjFym2UvBY2kva0c= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210123141953 20210113132523 37232 healthindicators.gov. f7VdVRYxcAn+u6e/NLwuv/ji+k2O5GfO4pxxhLBo2eTtKigRkIzk3Ihu8ZBKgjHn2c8URldHA0Vu /Mq6fwsMOA/3xiJB7F13si43fAAzyJGsb3+FTCF2FJ8Btw7yiDjbIisrnlVmGvGm3vhdQq8IdvDx 949gnSpL2YqP7+AGG+w= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. oq0rMCgN4GHIuJ73gFltXdMg6fnBC4D7DGqVsMkOLELdjHH9L6y9sNTwnOpNtl17YySLBsJNLIhs Gnmad531B+WmbE72nOTgFkrzu7g+9ePv/9LBeXRG7rbBD8sVoY3ggMf7KfM6VZTDo/dGY7G0cCD1 Uo9+Tgcy+qmOPhA+NyY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120112429 20210110105225 9155 cdc.gov. XUdR45ALl1yIXXWVqWSf/sVXQrSzw3JUAyrc5C0BFiz5/Lmg2tryrxG1STTIaRFxVKZmPCDXCIGO v/8bwZPFjzOm9ZLlwtTlnNOvr5hCrk+ICdo1nNLEBxUQqr28eZlICKGIMGHFMLmKbNdIJUyRIxV+ Yh1MSyeHdeLpJipNyaM= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210120120514 20210110111351 9155 cdc.gov. TU2nwlH9JYlWDRQ3RZZ3e3gH3+FKB8FEinpZYjG7cTo8xYLWSovFZM5cgWqWKlwPKninGwQa4phw 4WjYlZLakqKg59qwYOCeTfRbhGP7OKidhFZZ5ZWpfTwcuRPWjRuPOYPgS0wOZwOqRqWDMYuuniEk /XbAMzFgJPl1SvUK+yo= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210123141906 20210113132523 37232 healthindicators.gov. nc/DAdb63KPpqf5j3BPxQNGuNpyamb3rUkMOtgV+gQ/4ZN2CYIlr0LgYhtfHSwb/cf4zMdbN3mFB UL1YPW9Rnsq2+R/eeLVbuVQEZqucZMmfMIni+HzWZYRfkuRNNWHTzdGGZfTq2lTE0zM1sjQ8ViJ3 O23EjFym2UvBY2kva0c= )`
	RRSIG=37232 and DNSKEY=37232 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test HEALTHINDICATORS.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: