DNSSEC Analyzer - HEALTHINDICATORS.GOV

Domain Name:

Time: 2020-04-10 10:04:19 UTC, NTP stratum 4

Analyzing DNSSEC problems for HEALTHINDICATORS.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to i.root-servers.net for ./DNSKEY
	Received 1139 bytes from 192.36.148.17
	;; Answer received from 192.36.148.17 (1139 bytes) ;; HEADER SECTION ;; id = 8991 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 4 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (4 records) . 172800 IN DNSKEY ( 256 3 8 AwEAAc4qsciJ5MdMUIu4n/pSTsSiU9OCyAanPTe5TcMX4v1hxhpFwiTGQUv3BXT6IAO4litrZKTU aj4vitqHW1+RQsHn3k/gSvt7FwyQwpy0mEnShBgr6RQiGtlBODNY67sTl+W8M/b6SLTAaaDri3BO 5u6wrDs149rMELJAdoVBjmXW+zRH3kZzh3lwyTZsYtk7L+3DYbTiiHq+sRB4F9XoBPAz5Psv4q4E iPq07nW3acbW84zTz3CyQUmQkJT9VB1oUKHz6sNoyccqzcMX4q1GHAYpQ7FAXlKMxidoN1Ay5DWA NgTmgJXzKhcI2nIZoq1x3yq4814O1LQd9QP68gI37+0= ) ; Key ID = 48903 . 172800 IN DNSKEY ( 256 3 8 AwEAAeN+h0loXPKt7lFdW2zKIDkVHyJ1aYGUVE1dMNBlRH3kTn40JKcHiPOs+fy0OFVCBwoKa1s9 qZtdyP1UC0hgKoldj3oELK1yLI5MUbTMcNkWbBMRuxRz/CgZJu3IxcmuZWZMbn4LQDMj5YeiUiuW ns5vipFGWWpyPyozQXmenSWOK2GJOwcm7I/DyHVtVdztTvqiHqzy2aRoxwPhmEuAoYzzuNJJw6JN EnXaN/7l2TIciskFyPVPBFZYHnk+1ma906dfehIR190z3lh1ZESL2Yy3VIE2QGpRU6Px4ydH5sXx Z2wSMgqNNga4kjnfM1msBqk3EI48RvTTkuV0yb1eFuU= ) ; Key ID = 33853 . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20200422000000 20200401000000 20326 . MYL1CcghvT4i0z7u1GFvZtGlwjU4pNZxjY8pzsZbfaWJvjA6mwQCReH2PcVjvtr7syyUhLlPHj2B xFbbb/YDbU7Fth14eI2YTChuVkrO6xR/IGf5eIYEF4Aw6gJZGp7tIchnf+Ms+pUiaWnXEpMkIZc4 HvsuuJ+HfDcvWAzyB542TsNxW9VKUfprEgX4/oQ5SLIl/HnoRRdZWZRH+GnLJ6eL5kDLrkxg8mHl rqWjC8tXJm6fpQa8Z2KdH6vlSj85z6ALy6TuXOWosC0s2M2dslQCxBm57an45uJZvfLqjn+ZdDi/ v16sPWOI/56QvdbSRHgIXIMOzQ6GBCTneThIhQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 3 DNSKEY records for .
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAc4qsciJ5MdMUIu4n/pSTsSiU9OCyAanPTe5TcMX4v1hxhpFwiTGQUv3BXT6IAO4litrZKTU aj4vitqHW1+RQsHn3k/gSvt7FwyQwpy0mEnShBgr6RQiGtlBODNY67sTl+W8M/b6SLTAaaDri3BO 5u6wrDs149rMELJAdoVBjmXW+zRH3kZzh3lwyTZsYtk7L+3DYbTiiHq+sRB4F9XoBPAz5Psv4q4E iPq07nW3acbW84zTz3CyQUmQkJT9VB1oUKHz6sNoyccqzcMX4q1GHAYpQ7FAXlKMxidoN1Ay5DWA NgTmgJXzKhcI2nIZoq1x3yq4814O1LQd9QP68gI37+0= ) ; Key ID = 48903`
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAeN+h0loXPKt7lFdW2zKIDkVHyJ1aYGUVE1dMNBlRH3kTn40JKcHiPOs+fy0OFVCBwoKa1s9 qZtdyP1UC0hgKoldj3oELK1yLI5MUbTMcNkWbBMRuxRz/CgZJu3IxcmuZWZMbn4LQDMj5YeiUiuW ns5vipFGWWpyPyozQXmenSWOK2GJOwcm7I/DyHVtVdztTvqiHqzy2aRoxwPhmEuAoYzzuNJJw6JN EnXaN/7l2TIciskFyPVPBFZYHnk+1ma906dfehIR190z3lh1ZESL2Yy3VIE2QGpRU6Px4ydH5sXx Z2wSMgqNNga4kjnfM1msBqk3EI48RvTTkuV0yb1eFuU= ) ; Key ID = 33853`
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20200422000000 20200401000000 20326 . MYL1CcghvT4i0z7u1GFvZtGlwjU4pNZxjY8pzsZbfaWJvjA6mwQCReH2PcVjvtr7syyUhLlPHj2B xFbbb/YDbU7Fth14eI2YTChuVkrO6xR/IGf5eIYEF4Aw6gJZGp7tIchnf+Ms+pUiaWnXEpMkIZc4 HvsuuJ+HfDcvWAzyB542TsNxW9VKUfprEgX4/oQ5SLIl/HnoRRdZWZRH+GnLJ6eL5kDLrkxg8mHl rqWjC8tXJm6fpQa8Z2KdH6vlSj85z6ALy6TuXOWosC0s2M2dslQCxBm57an45uJZvfLqjn+ZdDi/ v16sPWOI/56QvdbSRHgIXIMOzQ6GBCTneThIhQ== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=48903 is now in the chain-of-trust
	DNSKEY=33853 is now in the chain-of-trust
	Query to h.root-servers.net for HEALTHINDICATORS.GOV/A
	Received 675 bytes from 198.97.190.53
	;; Answer received from 198.97.190.53 (675 bytes) ;; HEADER SECTION ;; id = 16425 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20200423050000 20200410040000 48903 . HiKd1J+8ikdI+JPP/RI7fmdq4xcR6Xn6/nSizf1mxakv5v3/GxpG5Kod9nwuEHbtQ124Tp/Jpik/ 3aP2yASaXjvOpYxmjLIbZc1d5JLlkno7hNcYhIdmq9z+4ra7tA8UcWPHYH8W7woUeIFe/7wwLGoa mCOyOTNNoAPZ0m0f3D1tsjgSWCpAYsdwh7wtszkI+C37aXsVPbqlAsugid0fbdvDdrJrxR5J06h/ LNQquwxUjRy9eyf3EuVVwJvYPJmDXOeDUuf4Ugc9tI7tCI+MkH6PkGc3nFMlCFdV69DGx86xFoGV 2MgA9pspiOnpugM03Gd6k+M6yCjbucjPQfXMZQ== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to g.root-servers.net for GOV/DNSKEY
	Received 661 bytes from 192.112.36.4
	;; Answer received from 192.112.36.4 (661 bytes) ;; HEADER SECTION ;; id = 6299 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) gov. 172800 IN NS b.gov-servers.net. gov. 172800 IN NS a.gov-servers.net. gov. 172800 IN NS d.gov-servers.net. gov. 172800 IN NS c.gov-servers.net. gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20200423050000 20200410040000 48903 . HiKd1J+8ikdI+JPP/RI7fmdq4xcR6Xn6/nSizf1mxakv5v3/GxpG5Kod9nwuEHbtQ124Tp/Jpik/ 3aP2yASaXjvOpYxmjLIbZc1d5JLlkno7hNcYhIdmq9z+4ra7tA8UcWPHYH8W7woUeIFe/7wwLGoa mCOyOTNNoAPZ0m0f3D1tsjgSWCpAYsdwh7wtszkI+C37aXsVPbqlAsugid0fbdvDdrJrxR5J06h/ LNQquwxUjRy9eyf3EuVVwJvYPJmDXOeDUuf4Ugc9tI7tCI+MkH6PkGc3nFMlCFdV69DGx86xFoGV 2MgA9pspiOnpugM03Gd6k+M6yCjbucjPQfXMZQ== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to m.root-servers.net for GOV/DS
	Received 406 bytes from 202.12.27.33
	;; Answer received from 202.12.27.33 (406 bytes) ;; HEADER SECTION ;; id = 54695 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN RRSIG ( DS 8 1 86400 20200423050000 20200410040000 48903 . HiKd1J+8ikdI+JPP/RI7fmdq4xcR6Xn6/nSizf1mxakv5v3/GxpG5Kod9nwuEHbtQ124Tp/Jpik/ 3aP2yASaXjvOpYxmjLIbZc1d5JLlkno7hNcYhIdmq9z+4ra7tA8UcWPHYH8W7woUeIFe/7wwLGoa mCOyOTNNoAPZ0m0f3D1tsjgSWCpAYsdwh7wtszkI+C37aXsVPbqlAsugid0fbdvDdrJrxR5J06h/ LNQquwxUjRy9eyf3EuVVwJvYPJmDXOeDUuf4Ugc9tI7tCI+MkH6PkGc3nFMlCFdV69DGx86xFoGV 2MgA9pspiOnpugM03Gd6k+M6yCjbucjPQfXMZQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-256 has algorithm RSASHA256
	DS=7698/SHA-1 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`gov. 86400 IN RRSIG ( DS 8 1 86400 20200423050000 20200410040000 48903 . HiKd1J+8ikdI+JPP/RI7fmdq4xcR6Xn6/nSizf1mxakv5v3/GxpG5Kod9nwuEHbtQ124Tp/Jpik/ 3aP2yASaXjvOpYxmjLIbZc1d5JLlkno7hNcYhIdmq9z+4ra7tA8UcWPHYH8W7woUeIFe/7wwLGoa mCOyOTNNoAPZ0m0f3D1tsjgSWCpAYsdwh7wtszkI+C37aXsVPbqlAsugid0fbdvDdrJrxR5J06h/ LNQquwxUjRy9eyf3EuVVwJvYPJmDXOeDUuf4Ugc9tI7tCI+MkH6PkGc3nFMlCFdV69DGx86xFoGV 2MgA9pspiOnpugM03Gd6k+M6yCjbucjPQfXMZQ== )`
	RRSIG=48903 and DNSKEY=48903 verifies the DS RRset
	DS=7698/SHA-256 is now in the chain-of-trust
	`gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	`gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	Query to c.gov-servers.net for GOV/DNSKEY
	Received 777 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (777 bytes) ;; HEADER SECTION ;; id = 47150 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAdccuiuxqTxvRcMVh4o9DCfREPNTe3hGEklbdV+L99lKySyIzskGLJ6XDBrWgBeY7ZRSOWGQ 2eHdQLN61fRyqWpVLpNzqaIz/UmMP74VPBCz4QXRDkG4hDO3uifCDVs8Jex4TrYT+hGNYmprbsrq dVQCgeeHc7UMKI/SjusQ4uTKgJ9CWt02/AgK+zKFi3LCBVDGnUwE2kUOL1b0MWfT0ks= ) ; Key ID = 36558 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20200424190254 20200409185754 7698 gov. N8tXGEMHVb0KW3Olwh0MVkm/mWYKJNavMwOyC7RDK3hNR3xMP8JowTkv+0CW8+6kqSG4mZesgrmy Jh/276tjvYtFJ67XdYVWw76XJEiQPS+ZzG3a2cHzOHEh1CZomrx8UDozYRR2k2JLPsrKHcfqLydN YkmEa/ehwjQtwsAN0gHNwwTYOs33gQ39z/qv5hpUe+hsqLy7gYEGQg4+X9X9txVla3de8rm+v37t mDZ0hBO8IANDN6moefu8EeR6lvhqIfdwsmm4fb2h1+KlQEn0GEGl84DZovLNQuQ64v31Ez3UGekS VwZfhkMUBnZfUuzhEBnojHRjYAxZwlEqFnkV9w== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAdccuiuxqTxvRcMVh4o9DCfREPNTe3hGEklbdV+L99lKySyIzskGLJ6XDBrWgBeY7ZRSOWGQ 2eHdQLN61fRyqWpVLpNzqaIz/UmMP74VPBCz4QXRDkG4hDO3uifCDVs8Jex4TrYT+hGNYmprbsrq dVQCgeeHc7UMKI/SjusQ4uTKgJ9CWt02/AgK+zKFi3LCBVDGnUwE2kUOL1b0MWfT0ks= ) ; Key ID = 36558`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20200424190254 20200409185754 7698 gov. N8tXGEMHVb0KW3Olwh0MVkm/mWYKJNavMwOyC7RDK3hNR3xMP8JowTkv+0CW8+6kqSG4mZesgrmy Jh/276tjvYtFJ67XdYVWw76XJEiQPS+ZzG3a2cHzOHEh1CZomrx8UDozYRR2k2JLPsrKHcfqLydN YkmEa/ehwjQtwsAN0gHNwwTYOs33gQ39z/qv5hpUe+hsqLy7gYEGQg4+X9X9txVla3de8rm+v37t mDZ0hBO8IANDN6moefu8EeR6lvhqIfdwsmm4fb2h1+KlQEn0GEGl84DZovLNQuQ64v31Ez3UGekS VwZfhkMUBnZfUuzhEBnojHRjYAxZwlEqFnkV9w== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=36558 is now in the chain-of-trust
	Query to d.gov-servers.net for HEALTHINDICATORS.GOV/A
	Received 434 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (434 bytes) ;; HEADER SECTION ;; id = 14610 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20200417041007 20200410041007 36558 gov. m4dsC4/OQK/kKFCjJ2vWBMEnkEh6Hl1Xiy95voyBbHB5cLlUhMGP17z7Ww+KYqnygEyBCGiBnwfM +vjTCP44gNN5IHtDhkLeuO9POIScy1rX+JfHi5niUkCj5p4xvjp8lwktM4+cPm1JomGpATrT2SK6 nHdDbrrrRySGAEkRpBKkaNL0Tq1/AQC+mdBsygQjTNdzqPYVnsT8o4bVmPCXUQ== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to d.gov-servers.net for HEALTHINDICATORS.GOV/DNSKEY
	Received 434 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (434 bytes) ;; HEADER SECTION ;; id = 46604 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20200417041007 20200410041007 36558 gov. m4dsC4/OQK/kKFCjJ2vWBMEnkEh6Hl1Xiy95voyBbHB5cLlUhMGP17z7Ww+KYqnygEyBCGiBnwfM +vjTCP44gNN5IHtDhkLeuO9POIScy1rX+JfHi5niUkCj5p4xvjp8lwktM4+cPm1JomGpATrT2SK6 nHdDbrrrRySGAEkRpBKkaNL0Tq1/AQC+mdBsygQjTNdzqPYVnsT8o4bVmPCXUQ== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone HEALTHINDICATORS.GOV

HEALTHINDICATORS.GOV

	Checking DS between GOV and HEALTHINDICATORS.GOV
	Query to d.gov-servers.net for HEALTHINDICATORS.GOV/DS
	Received 328 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (328 bytes) ;; HEADER SECTION ;; id = 14705 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DS ;; ANSWER SECTION (3 records) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20200417041007 20200410041007 36558 gov. m4dsC4/OQK/kKFCjJ2vWBMEnkEh6Hl1Xiy95voyBbHB5cLlUhMGP17z7Ww+KYqnygEyBCGiBnwfM +vjTCP44gNN5IHtDhkLeuO9POIScy1rX+JfHi5niUkCj5p4xvjp8lwktM4+cPm1JomGpATrT2SK6 nHdDbrrrRySGAEkRpBKkaNL0Tq1/AQC+mdBsygQjTNdzqPYVnsT8o4bVmPCXUQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for HEALTHINDICATORS.GOV in the GOV zone
	DS=40410/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	DS=40410/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20200417041007 20200410041007 36558 gov. m4dsC4/OQK/kKFCjJ2vWBMEnkEh6Hl1Xiy95voyBbHB5cLlUhMGP17z7Ww+KYqnygEyBCGiBnwfM +vjTCP44gNN5IHtDhkLeuO9POIScy1rX+JfHi5niUkCj5p4xvjp8lwktM4+cPm1JomGpATrT2SK6 nHdDbrrrRySGAEkRpBKkaNL0Tq1/AQC+mdBsygQjTNdzqPYVnsT8o4bVmPCXUQ== )`
	RRSIG=36558 and DNSKEY=36558 verifies the DS RRset
	DS=40410/SHA-256 is now in the chain-of-trust
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce )`
	Query to ns2.cdc.GOV for HEALTHINDICATORS.GOV/DNSKEY
	Received 981 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (981 bytes) ;; HEADER SECTION ;; id = 61293 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 4 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (4 records) healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAcLT4VkCHT+lYQFuwRycn3+2E9JCey4wlqcb1IBoKrWBmr4IOrqv9K8b4K691df2Wha8TJT5 VFFtlnEgm9QeFcYxeKoQiK5I6mNkEBrkFhkYafCOwkEO5g+UsXj/crGyb8RUWDLDTkJfWmPESHea kpxqnu3SJATfTvw+XNAFuBiX ) ; Key ID = 3350 healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAY3Ci4FK+f2+lh89A/WCL4m1tEMfBblFsqpRTOLpKD0wADJCMxP0yjzMsiF3B7I9W24WEObc gj9yfEy4RID1QLduC5G6ZlJNoWSSSScNhOGebCJT1q4iuVLZ3V09HucAxYEwrNKqTzSbjv8ij2c7 wraA345AdOCRDlwbpiABtoQcXBxfkKMl//5ZBTCwG3tNepuvnPDXATaBHZJ59LXuIrERHLIpFH+D qoo7uA22I3uO4lA3RUWXN/c7OYELeFVFgjrNPxRZu4ZGz53pUAg68rJty3l92aqM8JTQ26grK4i9 lTt1BiaNCPMgD6K/ZUEpMjqvUcnq8YEIADWVbkcr2MU= ) ; Key ID = 40410 healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. ZcLi0kAn7lC0E5XexJHw4g4GJYWh7ZS6NWjLkqq40LrjhryPlvGh6POjfXi/lKnGwLEEuOPW3cbi HB2Lngrt0yFG1Nipy+sjoBAJhHO/86m8zIfxa/LN0AWUh5pzyVzdmbjj6b9YiqoZr1TzkNmitkOS C5rrgpGnH+2+j/eVyks= ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20200417120045 20200407112928 40410 healthindicators.gov. AsLPcQNxXJtjPT++6H6A9ga9kSEKPFvmgZdgJjVzUY57smMTT2ZXyM28uflQqXq1C13sqL+0rUUY NAzhn0nwq7dT7Yg4L3bMQqJlqw+QM7ndzxdSys/Azp6P3eneQ/FtYGMnsQ3C7aLu4u1/nH+nuLNo Wphvo6q0Z8g3i3Jnk2EcuVx5ioIoGNvBJSMuJDjTbPyOYdGzfGh4kT6QBWa6ZEtMFJDTtcoC+a3x u1GcU4hVr5TWcNfjDzr8BDiPPKNEsaQI0JipELeKDDqdxSFCZ8DHz6gAO19ZDIsI97at6lstVbZD BdNEFnBeyaEkwxsW5x3k+CODcRHHolweXQcZPA== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for HEALTHINDICATORS.GOV
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAcLT4VkCHT+lYQFuwRycn3+2E9JCey4wlqcb1IBoKrWBmr4IOrqv9K8b4K691df2Wha8TJT5 VFFtlnEgm9QeFcYxeKoQiK5I6mNkEBrkFhkYafCOwkEO5g+UsXj/crGyb8RUWDLDTkJfWmPESHea kpxqnu3SJATfTvw+XNAFuBiX ) ; Key ID = 3350`
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAY3Ci4FK+f2+lh89A/WCL4m1tEMfBblFsqpRTOLpKD0wADJCMxP0yjzMsiF3B7I9W24WEObc gj9yfEy4RID1QLduC5G6ZlJNoWSSSScNhOGebCJT1q4iuVLZ3V09HucAxYEwrNKqTzSbjv8ij2c7 wraA345AdOCRDlwbpiABtoQcXBxfkKMl//5ZBTCwG3tNepuvnPDXATaBHZJ59LXuIrERHLIpFH+D qoo7uA22I3uO4lA3RUWXN/c7OYELeFVFgjrNPxRZu4ZGz53pUAg68rJty3l92aqM8JTQ26grK4i9 lTt1BiaNCPMgD6K/ZUEpMjqvUcnq8YEIADWVbkcr2MU= ) ; Key ID = 40410`
	DNSKEY=40410/SEP is now in the chain-of-trust
	DS=40410/SHA-256 verifies DNSKEY=40410/SEP
	DS=40410/SHA-1 verifies DNSKEY=40410/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. ZcLi0kAn7lC0E5XexJHw4g4GJYWh7ZS6NWjLkqq40LrjhryPlvGh6POjfXi/lKnGwLEEuOPW3cbi HB2Lngrt0yFG1Nipy+sjoBAJhHO/86m8zIfxa/LN0AWUh5pzyVzdmbjj6b9YiqoZr1TzkNmitkOS C5rrgpGnH+2+j/eVyks= )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20200417120045 20200407112928 40410 healthindicators.gov. AsLPcQNxXJtjPT++6H6A9ga9kSEKPFvmgZdgJjVzUY57smMTT2ZXyM28uflQqXq1C13sqL+0rUUY NAzhn0nwq7dT7Yg4L3bMQqJlqw+QM7ndzxdSys/Azp6P3eneQ/FtYGMnsQ3C7aLu4u1/nH+nuLNo Wphvo6q0Z8g3i3Jnk2EcuVx5ioIoGNvBJSMuJDjTbPyOYdGzfGh4kT6QBWa6ZEtMFJDTtcoC+a3x u1GcU4hVr5TWcNfjDzr8BDiPPKNEsaQI0JipELeKDDqdxSFCZ8DHz6gAO19ZDIsI97at6lstVbZD BdNEFnBeyaEkwxsW5x3k+CODcRHHolweXQcZPA== )`
	RRSIG=3350 and DNSKEY=3350 verifies the DNSKEY RRset
	RRSIG=40410 and DNSKEY=40410/SEP verifies the DNSKEY RRset
	DNSKEY=3350 is now in the chain-of-trust
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1052 bytes) ;; HEADER SECTION ;; id = 39231 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. W9oN1iilhh9AqjheS/LwdqHQPr2sYsxgY44CrSKjRHtFxRRHpxwM0tO9C2JlKaRgEPI7sOYOMLLP 7W1WXg34uorgq+rKoo2krYk532ff8SWcHHmnizXjW1oamfot+cC2DASJS3CCUAo4B4kwn/uZ8Hc+ 27xWHD1K6QE352DZfto= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. ifg/W2eynMQqofudo0LBKfVnW7NOtTjLk9zmCJ+LgCWYY4f3VCsvuF31hdK2gMcH2I93lI6HD9jK d0LozsoLgs4lsIFaTa1aUxEq183xYN4U+KF0O7xJ3gtxKVPFLBiXbHoZbFPLE7FlZt20w9rc4Xge APTxhbgtbeiaUHRzSbs= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135244 20200404125507 42974 cdc.gov. ryyIsf5HHQ6Hi1sc6uojfx0ZM0TEPKy21D8pX7gUNHA/Iosr/04GzmK8nQ1WoedyuB/d9hEPy2+P sWP65oW/DTX4kxM4fhcmuGgoAZukHN7F1C3mDB/nZcCgy6hdoOhk8DA4dviEKyd0rldRoZf+f2+E pyG9LJuFRz0xuXid+xI= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414131400 20200404130317 42974 cdc.gov. Qx4muF1V35/kEIICwY8eMB/HRZI9LTmnMvkstxVxCM4eFCtV4kg47GpEJkgH0VXX+Flx2Ubzk3WI cXXagj33O7JkVOLHMmVJPXIc3Y6NBjGcOhd2A0dHvCgq8I8Fzo6oQo4reoy2twGSQhdKa2MY8DDn 74LdjRMoxvIEcAsywIA= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135645 20200404131707 42974 cdc.gov. O48PHDbTXISusvgRznptJ1Wbp978ewdhJr4s445Zo79MQULKt0vZY/c53I39gceCq8UJyy6ziVAC nvZWwuzfGypyO5FyPtHmy9FeVwq2phGtwr65jCo/SKWdxy5+QoUA5KijC7wVu8j+JoRQ2Ti3YRrV wlTZDaoa4G7zvcFYMAk= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1081 bytes) ;; HEADER SECTION ;; id = 48405 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 599754567 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20200417122928 20200407112928 3350 healthindicators.gov. c0+KiRsVIZpWTFR4vDoqHDF076Zkk8+5z7OwrXHTX6LMUZA8ilCOgB0JlnxfAEH5/IPWlYZNYj46 +LaK+UE933eKpwNMShmJhtIXnsiZFOLYeY9HnND0TdlGE32rdkGV+mQ5cGMCEyEN1bUslKmC+Ckj t7A0NxGEjw8dDvjrCY4= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. ifg/W2eynMQqofudo0LBKfVnW7NOtTjLk9zmCJ+LgCWYY4f3VCsvuF31hdK2gMcH2I93lI6HD9jK d0LozsoLgs4lsIFaTa1aUxEq183xYN4U+KF0O7xJ3gtxKVPFLBiXbHoZbFPLE7FlZt20w9rc4Xge APTxhbgtbeiaUHRzSbs= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135244 20200404125507 42974 cdc.gov. ryyIsf5HHQ6Hi1sc6uojfx0ZM0TEPKy21D8pX7gUNHA/Iosr/04GzmK8nQ1WoedyuB/d9hEPy2+P sWP65oW/DTX4kxM4fhcmuGgoAZukHN7F1C3mDB/nZcCgy6hdoOhk8DA4dviEKyd0rldRoZf+f2+E pyG9LJuFRz0xuXid+xI= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414131400 20200404130317 42974 cdc.gov. Qx4muF1V35/kEIICwY8eMB/HRZI9LTmnMvkstxVxCM4eFCtV4kg47GpEJkgH0VXX+Flx2Ubzk3WI cXXagj33O7JkVOLHMmVJPXIc3Y6NBjGcOhd2A0dHvCgq8I8Fzo6oQo4reoy2twGSQhdKa2MY8DDn 74LdjRMoxvIEcAsywIA= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135645 20200404131707 42974 cdc.gov. O48PHDbTXISusvgRznptJ1Wbp978ewdhJr4s445Zo79MQULKt0vZY/c53I39gceCq8UJyy6ziVAC nvZWwuzfGypyO5FyPtHmy9FeVwq2phGtwr65jCo/SKWdxy5+QoUA5KijC7wVu8j+JoRQ2Ti3YRrV wlTZDaoa4G7zvcFYMAk= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1081 bytes) ;; HEADER SECTION ;; id = 52103 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 599754567 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20200417122928 20200407112928 3350 healthindicators.gov. c0+KiRsVIZpWTFR4vDoqHDF076Zkk8+5z7OwrXHTX6LMUZA8ilCOgB0JlnxfAEH5/IPWlYZNYj46 +LaK+UE933eKpwNMShmJhtIXnsiZFOLYeY9HnND0TdlGE32rdkGV+mQ5cGMCEyEN1bUslKmC+Ckj t7A0NxGEjw8dDvjrCY4= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. ifg/W2eynMQqofudo0LBKfVnW7NOtTjLk9zmCJ+LgCWYY4f3VCsvuF31hdK2gMcH2I93lI6HD9jK d0LozsoLgs4lsIFaTa1aUxEq183xYN4U+KF0O7xJ3gtxKVPFLBiXbHoZbFPLE7FlZt20w9rc4Xge APTxhbgtbeiaUHRzSbs= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135244 20200404125507 42974 cdc.gov. ryyIsf5HHQ6Hi1sc6uojfx0ZM0TEPKy21D8pX7gUNHA/Iosr/04GzmK8nQ1WoedyuB/d9hEPy2+P sWP65oW/DTX4kxM4fhcmuGgoAZukHN7F1C3mDB/nZcCgy6hdoOhk8DA4dviEKyd0rldRoZf+f2+E pyG9LJuFRz0xuXid+xI= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414131400 20200404130317 42974 cdc.gov. Qx4muF1V35/kEIICwY8eMB/HRZI9LTmnMvkstxVxCM4eFCtV4kg47GpEJkgH0VXX+Flx2Ubzk3WI cXXagj33O7JkVOLHMmVJPXIc3Y6NBjGcOhd2A0dHvCgq8I8Fzo6oQo4reoy2twGSQhdKa2MY8DDn 74LdjRMoxvIEcAsywIA= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135645 20200404131707 42974 cdc.gov. O48PHDbTXISusvgRznptJ1Wbp978ewdhJr4s445Zo79MQULKt0vZY/c53I39gceCq8UJyy6ziVAC nvZWwuzfGypyO5FyPtHmy9FeVwq2phGtwr65jCo/SKWdxy5+QoUA5KijC7wVu8j+JoRQ2Ti3YRrV wlTZDaoa4G7zvcFYMAk= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1081 bytes) ;; HEADER SECTION ;; id = 40349 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 599754567 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20200417122928 20200407112928 3350 healthindicators.gov. c0+KiRsVIZpWTFR4vDoqHDF076Zkk8+5z7OwrXHTX6LMUZA8ilCOgB0JlnxfAEH5/IPWlYZNYj46 +LaK+UE933eKpwNMShmJhtIXnsiZFOLYeY9HnND0TdlGE32rdkGV+mQ5cGMCEyEN1bUslKmC+Ckj t7A0NxGEjw8dDvjrCY4= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. ifg/W2eynMQqofudo0LBKfVnW7NOtTjLk9zmCJ+LgCWYY4f3VCsvuF31hdK2gMcH2I93lI6HD9jK d0LozsoLgs4lsIFaTa1aUxEq183xYN4U+KF0O7xJ3gtxKVPFLBiXbHoZbFPLE7FlZt20w9rc4Xge APTxhbgtbeiaUHRzSbs= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135244 20200404125507 42974 cdc.gov. ryyIsf5HHQ6Hi1sc6uojfx0ZM0TEPKy21D8pX7gUNHA/Iosr/04GzmK8nQ1WoedyuB/d9hEPy2+P sWP65oW/DTX4kxM4fhcmuGgoAZukHN7F1C3mDB/nZcCgy6hdoOhk8DA4dviEKyd0rldRoZf+f2+E pyG9LJuFRz0xuXid+xI= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414131400 20200404130317 42974 cdc.gov. Qx4muF1V35/kEIICwY8eMB/HRZI9LTmnMvkstxVxCM4eFCtV4kg47GpEJkgH0VXX+Flx2Ubzk3WI cXXagj33O7JkVOLHMmVJPXIc3Y6NBjGcOhd2A0dHvCgq8I8Fzo6oQo4reoy2twGSQhdKa2MY8DDn 74LdjRMoxvIEcAsywIA= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135645 20200404131707 42974 cdc.gov. O48PHDbTXISusvgRznptJ1Wbp978ewdhJr4s445Zo79MQULKt0vZY/c53I39gceCq8UJyy6ziVAC nvZWwuzfGypyO5FyPtHmy9FeVwq2phGtwr65jCo/SKWdxy5+QoUA5KijC7wVu8j+JoRQ2Ti3YRrV wlTZDaoa4G7zvcFYMAk= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1052 bytes) ;; HEADER SECTION ;; id = 844 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. W9oN1iilhh9AqjheS/LwdqHQPr2sYsxgY44CrSKjRHtFxRRHpxwM0tO9C2JlKaRgEPI7sOYOMLLP 7W1WXg34uorgq+rKoo2krYk532ff8SWcHHmnizXjW1oamfot+cC2DASJS3CCUAo4B4kwn/uZ8Hc+ 27xWHD1K6QE352DZfto= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. ifg/W2eynMQqofudo0LBKfVnW7NOtTjLk9zmCJ+LgCWYY4f3VCsvuF31hdK2gMcH2I93lI6HD9jK d0LozsoLgs4lsIFaTa1aUxEq183xYN4U+KF0O7xJ3gtxKVPFLBiXbHoZbFPLE7FlZt20w9rc4Xge APTxhbgtbeiaUHRzSbs= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135244 20200404125507 42974 cdc.gov. ryyIsf5HHQ6Hi1sc6uojfx0ZM0TEPKy21D8pX7gUNHA/Iosr/04GzmK8nQ1WoedyuB/d9hEPy2+P sWP65oW/DTX4kxM4fhcmuGgoAZukHN7F1C3mDB/nZcCgy6hdoOhk8DA4dviEKyd0rldRoZf+f2+E pyG9LJuFRz0xuXid+xI= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414131400 20200404130317 42974 cdc.gov. Qx4muF1V35/kEIICwY8eMB/HRZI9LTmnMvkstxVxCM4eFCtV4kg47GpEJkgH0VXX+Flx2Ubzk3WI cXXagj33O7JkVOLHMmVJPXIc3Y6NBjGcOhd2A0dHvCgq8I8Fzo6oQo4reoy2twGSQhdKa2MY8DDn 74LdjRMoxvIEcAsywIA= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200414135645 20200404131707 42974 cdc.gov. O48PHDbTXISusvgRznptJ1Wbp978ewdhJr4s445Zo79MQULKt0vZY/c53I39gceCq8UJyy6ziVAC nvZWwuzfGypyO5FyPtHmy9FeVwq2phGtwr65jCo/SKWdxy5+QoUA5KijC7wVu8j+JoRQ2Ti3YRrV wlTZDaoa4G7zvcFYMAk= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20200417120045 20200407112928 3350 healthindicators.gov. W9oN1iilhh9AqjheS/LwdqHQPr2sYsxgY44CrSKjRHtFxRRHpxwM0tO9C2JlKaRgEPI7sOYOMLLP 7W1WXg34uorgq+rKoo2krYk532ff8SWcHHmnizXjW1oamfot+cC2DASJS3CCUAo4B4kwn/uZ8Hc+ 27xWHD1K6QE352DZfto= )`
	RRSIG=3350 and DNSKEY=3350 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test HEALTHINDICATORS.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: