DNSSEC Analyzer - HEALTHINDICATORS.GOV

Domain Name:

Time: 2019-12-06 13:08:40 UTC, NTP stratum 4

Analyzing DNSSEC problems for HEALTHINDICATORS.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to j.root-servers.net for ./DNSKEY
	Error querying j.root-servers.net/2001:503:c27:0:0:0:2:30 for ./DNSKEY: 'IPv6 transport disabled'
	Received 864 bytes from 192.58.128.30
	;; Answer received from 192.58.128.30 (864 bytes) ;; HEADER SECTION ;; id = 56916 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 256 3 8 AwEAAbPwrxwtOMENWvblQbUFwBllR7ZtXsu9rg/LdyklKs9gU2GQTeOc59XjhuAPZ4WrT09z6YPL +vzIIJqnG3Hiru7hFUQ4pH0qsLNxrsuZrZYmXAKoVa9SXL1Ap0LygwrIugEk1G4v7Rk/Alt1jLUI E+ZymGtSEhIuGQdXrEmj3ffzXY13H42X4Ja3vJTn/WIQOXY7vwHXGDypSh9j0Tt0hknF1yVJCrIp fkhFWihMKNdMzMprD4bV+PDLRA5YSn3OPIeUnRn9qBUCN11LXQKb+W3Jg+m/5xQRQJzJ/qXgDh1+ aN+Mc9AstP29Y/ZLFmF6cKtL2zoUMN5I5QymeSkJJzc= ) ; Key ID = 22545 . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20191221000000 20191130000000 20326 . Gq7w8sR2CNe4RDL05IeRsmtmsJ38wsSuTCaSgsZmBoVk0azQToi8bJ2pd6EUlav0hRwpFXhGrOeg Rutf6RcePbaDVLLChY5H1ExeT1GhJVtCctHNTbUQadziztCEPcmtjrMEoOsRGkW8cNTo8MG79DZa jdG6P3MjQselQVVxFCWiT1Eqa0A9ojd2wEgNanUafw7mJSasBMD0tco+tQMmMmLGqX/d7/K1D/3/ lFPrclzwWiOcv3yRbTLW2X45Fn4ZNpuuV4KSwxTGBylxG5jDhPsrrumwnAk2hrRrWzshGCWgbXtk R95utBYdb/ZsZaO7KuqicdE5ZItJEV8Qh4FikA== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAbPwrxwtOMENWvblQbUFwBllR7ZtXsu9rg/LdyklKs9gU2GQTeOc59XjhuAPZ4WrT09z6YPL +vzIIJqnG3Hiru7hFUQ4pH0qsLNxrsuZrZYmXAKoVa9SXL1Ap0LygwrIugEk1G4v7Rk/Alt1jLUI E+ZymGtSEhIuGQdXrEmj3ffzXY13H42X4Ja3vJTn/WIQOXY7vwHXGDypSh9j0Tt0hknF1yVJCrIp fkhFWihMKNdMzMprD4bV+PDLRA5YSn3OPIeUnRn9qBUCN11LXQKb+W3Jg+m/5xQRQJzJ/qXgDh1+ aN+Mc9AstP29Y/ZLFmF6cKtL2zoUMN5I5QymeSkJJzc= ) ; Key ID = 22545`
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20191221000000 20191130000000 20326 . Gq7w8sR2CNe4RDL05IeRsmtmsJ38wsSuTCaSgsZmBoVk0azQToi8bJ2pd6EUlav0hRwpFXhGrOeg Rutf6RcePbaDVLLChY5H1ExeT1GhJVtCctHNTbUQadziztCEPcmtjrMEoOsRGkW8cNTo8MG79DZa jdG6P3MjQselQVVxFCWiT1Eqa0A9ojd2wEgNanUafw7mJSasBMD0tco+tQMmMmLGqX/d7/K1D/3/ lFPrclzwWiOcv3yRbTLW2X45Fn4ZNpuuV4KSwxTGBylxG5jDhPsrrumwnAk2hrRrWzshGCWgbXtk R95utBYdb/ZsZaO7KuqicdE5ZItJEV8Qh4FikA== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=22545 is now in the chain-of-trust
	Query to i.root-servers.net for HEALTHINDICATORS.GOV/A
	Error querying i.root-servers.net/2001:7fe:0:0:0:0:0:53 for HEALTHINDICATORS.GOV/A: 'IPv6 transport disabled'
	Received 678 bytes from 192.36.148.17
	;; Answer received from 192.36.148.17 (678 bytes) ;; HEADER SECTION ;; id = 57183 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) gov. 172800 IN NS b.gov-servers.net. gov. 172800 IN NS a.gov-servers.net. gov. 172800 IN NS d.gov-servers.net. gov. 172800 IN NS c.gov-servers.net. gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN RRSIG ( DS 8 1 86400 20191219050000 20191206040000 22545 . r3+cEyuEUUkk8iM/SgQseVhe71J2URZQs29zSLubYMwp5sy1rm0XHfyaJfoCSH4R87hITE8hms5e RZL71yVKB4oYNjb6e/axP5SOl2bit6jMA7SelaKd3J+r8Lfz6Sya9IxnQ4FkSb5MTQWl3Gs8q25T g4H+h3xxXHL1I/HJXOv8EYt0dkdxV/YF7vkPhVODWs3JTpVh2jCkMOR51cuKQ3hJcJGyxnm568mk n/VWawKWNebbWFzsv93hegpd+5Y/1TVXrOZMmuc1hPB3At1m6JFORfJlCISzgkWUOXIpsE3IdBY7 x5IxUKmYS1ylF5nLd0L1aAY+r/EAWhFEc9PJ3g== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN A 209.112.123.30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN A 69.36.153.30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN A 81.19.194.30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to g.root-servers.net for GOV/DNSKEY
	Error querying g.root-servers.net/2001:500:12:0:0:0:0:d0d for GOV/DNSKEY: 'IPv6 transport disabled'
	Received 661 bytes from 192.112.36.4
	;; Answer received from 192.112.36.4 (661 bytes) ;; HEADER SECTION ;; id = 37841 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) gov. 172800 IN NS c.gov-servers.net. gov. 172800 IN NS d.gov-servers.net. gov. 172800 IN NS b.gov-servers.net. gov. 172800 IN NS a.gov-servers.net. gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20191219050000 20191206040000 22545 . r3+cEyuEUUkk8iM/SgQseVhe71J2URZQs29zSLubYMwp5sy1rm0XHfyaJfoCSH4R87hITE8hms5e RZL71yVKB4oYNjb6e/axP5SOl2bit6jMA7SelaKd3J+r8Lfz6Sya9IxnQ4FkSb5MTQWl3Gs8q25T g4H+h3xxXHL1I/HJXOv8EYt0dkdxV/YF7vkPhVODWs3JTpVh2jCkMOR51cuKQ3hJcJGyxnm568mk n/VWawKWNebbWFzsv93hegpd+5Y/1TVXrOZMmuc1hPB3At1m6JFORfJlCISzgkWUOXIpsE3IdBY7 x5IxUKmYS1ylF5nLd0L1aAY+r/EAWhFEc9PJ3g== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to l.root-servers.net for GOV/DS
	Error querying l.root-servers.net/2001:500:9f:0:0:0:0:42 for GOV/DS: 'IPv6 transport disabled'
	Received 403 bytes from 199.7.83.42
	;; Answer received from 199.7.83.42 (403 bytes) ;; HEADER SECTION ;; id = 17578 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20191219050000 20191206040000 22545 . r3+cEyuEUUkk8iM/SgQseVhe71J2URZQs29zSLubYMwp5sy1rm0XHfyaJfoCSH4R87hITE8hms5e RZL71yVKB4oYNjb6e/axP5SOl2bit6jMA7SelaKd3J+r8Lfz6Sya9IxnQ4FkSb5MTQWl3Gs8q25T g4H+h3xxXHL1I/HJXOv8EYt0dkdxV/YF7vkPhVODWs3JTpVh2jCkMOR51cuKQ3hJcJGyxnm568mk n/VWawKWNebbWFzsv93hegpd+5Y/1TVXrOZMmuc1hPB3At1m6JFORfJlCISzgkWUOXIpsE3IdBY7 x5IxUKmYS1ylF5nLd0L1aAY+r/EAWhFEc9PJ3g== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-1 has algorithm RSASHA256
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`GOV. 86400 IN RRSIG ( DS 8 1 86400 20191219050000 20191206040000 22545 . r3+cEyuEUUkk8iM/SgQseVhe71J2URZQs29zSLubYMwp5sy1rm0XHfyaJfoCSH4R87hITE8hms5e RZL71yVKB4oYNjb6e/axP5SOl2bit6jMA7SelaKd3J+r8Lfz6Sya9IxnQ4FkSb5MTQWl3Gs8q25T g4H+h3xxXHL1I/HJXOv8EYt0dkdxV/YF7vkPhVODWs3JTpVh2jCkMOR51cuKQ3hJcJGyxnm568mk n/VWawKWNebbWFzsv93hegpd+5Y/1TVXrOZMmuc1hPB3At1m6JFORfJlCISzgkWUOXIpsE3IdBY7 x5IxUKmYS1ylF5nLd0L1aAY+r/EAWhFEc9PJ3g== )`
	RRSIG=22545 and DNSKEY=22545 verifies the DS RRset
	DS=7698/SHA-1 is now in the chain-of-trust
	`GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	`GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to a.gov-servers.net for GOV/DNSKEY
	Error querying a.gov-servers.net/2001:500:4431:0:0:0:2:30 for GOV/DNSKEY: 'IPv6 transport disabled'
	Received 777 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (777 bytes) ;; HEADER SECTION ;; id = 40500 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAcQAVXGAbq+khqvif1NNId5wvkmsmSZEb/UXjfazqpqEeA7IUc8b/9eEIBebIcFda4Ukv8lF lnfGIvMRADLa50RVwP2asra1Md0NC9tLjrHEYN0H68WN0tTLIQ6jUF/kzYTeTOVhlUqzM+5JyyT9 x01e1FT5ANG8RkbgXIyPte2Qs8wasqNkjFGaD5oFLerVScCa0FXumybu9cBEfBbAzPU= ) ; Key ID = 14320 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20191216200254 20191201195754 7698 gov. eu0gshGgymERiO+iIcdmJ9TqP0dRgpvjyGnI2OQlkm58YEsevRvOYxpKw0K6F9PT3RvOGPbRPvO2 b6psOWhSSeu0Btc+bvHWrEBqnf9t3h+lrfkGKSb53OFDvgtgtWR9zzeUrgivuVU09zPOqozOWcmk Ox8uhvXUrK0zoscGpBDO9efoTVF/Di6gg3tR0DWhsL/Qu3uuDT2F+k1m2WAaLaJCb3QDWgEWgcGn XEy1HEmJ0Uzca8PnKWwMNBktuODiBTiSNaUwVNFnXJmDxQMEAA+PS+DbbLJJX2CcodMHFiErvO4U JQiQgu9X8g0RpG2EO2oq6gTfIPKs+KsZ6K2y7Q== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAcQAVXGAbq+khqvif1NNId5wvkmsmSZEb/UXjfazqpqEeA7IUc8b/9eEIBebIcFda4Ukv8lF lnfGIvMRADLa50RVwP2asra1Md0NC9tLjrHEYN0H68WN0tTLIQ6jUF/kzYTeTOVhlUqzM+5JyyT9 x01e1FT5ANG8RkbgXIyPte2Qs8wasqNkjFGaD5oFLerVScCa0FXumybu9cBEfBbAzPU= ) ; Key ID = 14320`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20191216200254 20191201195754 7698 gov. eu0gshGgymERiO+iIcdmJ9TqP0dRgpvjyGnI2OQlkm58YEsevRvOYxpKw0K6F9PT3RvOGPbRPvO2 b6psOWhSSeu0Btc+bvHWrEBqnf9t3h+lrfkGKSb53OFDvgtgtWR9zzeUrgivuVU09zPOqozOWcmk Ox8uhvXUrK0zoscGpBDO9efoTVF/Di6gg3tR0DWhsL/Qu3uuDT2F+k1m2WAaLaJCb3QDWgEWgcGn XEy1HEmJ0Uzca8PnKWwMNBktuODiBTiSNaUwVNFnXJmDxQMEAA+PS+DbbLJJX2CcodMHFiErvO4U JQiQgu9X8g0RpG2EO2oq6gTfIPKs+KsZ6K2y7Q== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=14320 is now in the chain-of-trust
	Query to d.gov-servers.net for HEALTHINDICATORS.GOV/A
	Received 434 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (434 bytes) ;; HEADER SECTION ;; id = 36159 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20191213101007 20191206101007 14320 gov. u9FdQad3BRgQyx0fYh8AntnNmhI5uoSlcxtER/30oQpRDdl88IPfVEh2SfyZYqBVfaqY/xJZkxZJ jysn+cGy2M1/Csuy5bHDsdWrx9Ub5o/n4JPQmWtAlBywXeE7QRx+vgqOQhdK0x0jPEvqzHTRvrUy q1Sx8mmKRs7sVON5cdrjtrnRtUYBV8rBJ1chqsT/lDkTC+vEYLj07jeN8bpD8A== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to b.gov-servers.net for HEALTHINDICATORS.GOV/DNSKEY
	Error querying b.gov-servers.net/2620:74:27:0:0:0:2:30 for HEALTHINDICATORS.GOV/DNSKEY: 'IPv6 transport disabled'
	Received 434 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (434 bytes) ;; HEADER SECTION ;; id = 15351 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20191213101007 20191206101007 14320 gov. u9FdQad3BRgQyx0fYh8AntnNmhI5uoSlcxtER/30oQpRDdl88IPfVEh2SfyZYqBVfaqY/xJZkxZJ jysn+cGy2M1/Csuy5bHDsdWrx9Ub5o/n4JPQmWtAlBywXeE7QRx+vgqOQhdK0x0jPEvqzHTRvrUy q1Sx8mmKRs7sVON5cdrjtrnRtUYBV8rBJ1chqsT/lDkTC+vEYLj07jeN8bpD8A== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone HEALTHINDICATORS.GOV

HEALTHINDICATORS.GOV

	Checking DS between GOV and HEALTHINDICATORS.GOV
	Query to a.gov-servers.net for HEALTHINDICATORS.GOV/DS
	Error querying a.gov-servers.net/2001:500:4431:0:0:0:2:30 for HEALTHINDICATORS.GOV/DS: 'IPv6 transport disabled'
	Received 328 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (328 bytes) ;; HEADER SECTION ;; id = 3430 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DS ;; ANSWER SECTION (3 records) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20191213101007 20191206101007 14320 gov. u9FdQad3BRgQyx0fYh8AntnNmhI5uoSlcxtER/30oQpRDdl88IPfVEh2SfyZYqBVfaqY/xJZkxZJ jysn+cGy2M1/Csuy5bHDsdWrx9Ub5o/n4JPQmWtAlBywXeE7QRx+vgqOQhdK0x0jPEvqzHTRvrUy q1Sx8mmKRs7sVON5cdrjtrnRtUYBV8rBJ1chqsT/lDkTC+vEYLj07jeN8bpD8A== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for HEALTHINDICATORS.GOV in the GOV zone
	DS=41040/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=41040/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20191213101007 20191206101007 14320 gov. u9FdQad3BRgQyx0fYh8AntnNmhI5uoSlcxtER/30oQpRDdl88IPfVEh2SfyZYqBVfaqY/xJZkxZJ jysn+cGy2M1/Csuy5bHDsdWrx9Ub5o/n4JPQmWtAlBywXeE7QRx+vgqOQhdK0x0jPEvqzHTRvrUy q1Sx8mmKRs7sVON5cdrjtrnRtUYBV8rBJ1chqsT/lDkTC+vEYLj07jeN8bpD8A== )`
	RRSIG=14320 and DNSKEY=14320 verifies the DS RRset
	DS=41040/SHA-1 is now in the chain-of-trust
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 )`
	Query to ns2.cdc.GOV for HEALTHINDICATORS.GOV/DNSKEY
	Received 981 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (981 bytes) ;; HEADER SECTION ;; id = 61445 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 4 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (4 records) healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAZXbn+5vvyy3oRDWpX9OGnXP7HrfzHteFimFNQUZd3qMhP1ieop4kKmJJAoXKzYiqpWQ2FGo KmKiHstRz50dnN8QtAoj7dEqMvSQ1uSJFBP7O0aNKFNe/PW/RSBNR+SNfST1xwD0QyYhGFEbLoxf SI+c+NatxvJWIpoisxL+wdMLeH8+hzITdTdeYsnAKxx96kwC9RxW9r8S1T5Mh8SmqgCesq2xKtI0 hK3q2rTt1hqmTRzyza9xk8Z0SKY7nr1vON39Epg7MuJ7rwBn0XmA4uf8Ekb235aviFa+Ycelu6Vm EuY5ELeRamoNpitnJtZz76IAzajrmrvXN1KfoZQnBDE= ) ; Key ID = 41040 healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAYcTB2lyZtiCCzBfzx8l5nEx3XQcaW6yPEmDc9XvJx55NkEtbEOkE1lxGXnfWNshG92BXQ9R 7mpYb9zwRA8IOdpgp1TXpsN/XZVnLWK4yeWeatlIi1Gr6uwUV+wT8Ha/ME26Eq2gV4SnwwNLWPaj dyoAdv5Kp6bUxTrRGwjmUzj7 ) ; Key ID = 27618 healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. AN6f+FEQwY3er86UUuAgKSj0/dXSjpWb1ozg/A91sU6I2XmwCPWzleUGHDT+assDQRhmdCh6E+F6 q6zwpnpv1AzLHkfAEFy9a7/sDfoX5RI7QvDhwa1fMdl3RaaY06iVTZ9Ruh3UQUcSx5mnJAThgr/X bEq0cifMt31ytDQ5WmQ= ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20191210124258 20191130120850 41040 healthindicators.gov. k5NtLWD/Q5d/z+7peg4r1L64CSM24vLB2b6v+b1Ujq9QLJvLeDCpFPS9fjGfMHWe6imQdYNRTwhm 6hzeAzomwBKLY2IPFhMkec2FmpjJgBIvYTqfQn90n1fKJBz3d3U2+zjEH16O7b6psGBoQnobPvji N8E/vs1OZD/eDYEDNNC5p/ebQWqNBb+9/gP1I5Yv9w7cDd+4FMSFuZJ5zmjtAEsEkRY21V3uounX DRuCFvF0ld0+7eZ5RuSn7jZfQuzDTUQxyxkt4d0OrXlUA7MyAAFnKHOQiHU+t8bS5PXV83ODtMIP 6zA8IOgNp1G1C7kyoJV1ND76wI2jEChEgRw3hQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for HEALTHINDICATORS.GOV
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAZXbn+5vvyy3oRDWpX9OGnXP7HrfzHteFimFNQUZd3qMhP1ieop4kKmJJAoXKzYiqpWQ2FGo KmKiHstRz50dnN8QtAoj7dEqMvSQ1uSJFBP7O0aNKFNe/PW/RSBNR+SNfST1xwD0QyYhGFEbLoxf SI+c+NatxvJWIpoisxL+wdMLeH8+hzITdTdeYsnAKxx96kwC9RxW9r8S1T5Mh8SmqgCesq2xKtI0 hK3q2rTt1hqmTRzyza9xk8Z0SKY7nr1vON39Epg7MuJ7rwBn0XmA4uf8Ekb235aviFa+Ycelu6Vm EuY5ELeRamoNpitnJtZz76IAzajrmrvXN1KfoZQnBDE= ) ; Key ID = 41040`
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAYcTB2lyZtiCCzBfzx8l5nEx3XQcaW6yPEmDc9XvJx55NkEtbEOkE1lxGXnfWNshG92BXQ9R 7mpYb9zwRA8IOdpgp1TXpsN/XZVnLWK4yeWeatlIi1Gr6uwUV+wT8Ha/ME26Eq2gV4SnwwNLWPaj dyoAdv5Kp6bUxTrRGwjmUzj7 ) ; Key ID = 27618`
	DNSKEY=41040/SEP is now in the chain-of-trust
	DS=41040/SHA-1 verifies DNSKEY=41040/SEP
	DS=41040/SHA-256 verifies DNSKEY=41040/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. AN6f+FEQwY3er86UUuAgKSj0/dXSjpWb1ozg/A91sU6I2XmwCPWzleUGHDT+assDQRhmdCh6E+F6 q6zwpnpv1AzLHkfAEFy9a7/sDfoX5RI7QvDhwa1fMdl3RaaY06iVTZ9Ruh3UQUcSx5mnJAThgr/X bEq0cifMt31ytDQ5WmQ= )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20191210124258 20191130120850 41040 healthindicators.gov. k5NtLWD/Q5d/z+7peg4r1L64CSM24vLB2b6v+b1Ujq9QLJvLeDCpFPS9fjGfMHWe6imQdYNRTwhm 6hzeAzomwBKLY2IPFhMkec2FmpjJgBIvYTqfQn90n1fKJBz3d3U2+zjEH16O7b6psGBoQnobPvji N8E/vs1OZD/eDYEDNNC5p/ebQWqNBb+9/gP1I5Yv9w7cDd+4FMSFuZJ5zmjtAEsEkRY21V3uounX DRuCFvF0ld0+7eZ5RuSn7jZfQuzDTUQxyxkt4d0OrXlUA7MyAAFnKHOQiHU+t8bS5PXV83ODtMIP 6zA8IOgNp1G1C7kyoJV1ND76wI2jEChEgRw3hQ== )`
	RRSIG=27618 and DNSKEY=27618 verifies the DNSKEY RRset
	RRSIG=41040 and DNSKEY=41040/SEP verifies the DNSKEY RRset
	DNSKEY=27618 is now in the chain-of-trust
	Query to ns2.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1052 bytes) ;; HEADER SECTION ;; id = 33135 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. SoJLbHrXrSB4wbOCI4t0gb+z9RKcQGOy1A1Yyeui8AQEF/7cE5ZVx15oL1ivp6QxWlbihixsudwF YDjbKrPz715P8c069AxC0QNebBqbdH7OMxoeA50bu+f9iPLlmjo/WxI3Y2/MOTsWg4F74fVPYC8r M19qJ/Itghrgn8Ra35s= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. gnOG2sA6iUF7wUKvddWzl22fYViJWKVSYzKC5dr4MBMq5vPix96XU36B8nALKmQLfCnQLmMkUEOy U0UaGIairi/9ax7JeCYOltewKV6uEbVCY+776qgGm7lC5b/AV3nLG3TvqVLwoQjOlVvjP+FGYO92 0rRe05aLQ3VFYR2G6oY= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103027 20191202100153 63879 cdc.gov. D6nQSUpg6fTn4xuAjnC4pNXVWvHrp66fB25MhZYhy+XO4Z6PU4mGd40qDttpNqSlcz3jU4lyqpXU iGo9kLhDfa6nN3pwAhlflyrIr0WeHCM26O4TBsC4a3epJZX7r96iB1MoL1dibWHl/KWKTCyzY3OM DSli7V6HjUgC2sNNE5w= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212102255 20191202101606 63879 cdc.gov. CrEFI9NQ3dRAQQQodUa+o6Iu9e9gLkl7deG0JrGK09mmP0dvGlLXpUInD1TtbG1FXQMqZA/yjgpf dmfoVQIXt7jAyOSDGxCwtD64xh3fJimK6uBhdBDpW7+28w8yJ82tXNfWG/7K7gj9ep4aHHXRs38d /G5qJ7naX5LD1s15GvQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103547 20191202093558 63879 cdc.gov. e/x6w0EKOZ1NaK6MAce1oLxnRIvxLozyOQAbOzIVpYlKM97SVHYorkN2vxcTOFAYh7gbYqU/VlTU Wb9Uicpt6bv7OsbpqAOAvVpAhKdjqVefn/S9G2Z1CW/dRPMvODEwM3vksLK6rcN+YfPMLPpkTpKO 5fjFAHlgSvB+zg+dqu0= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1081 bytes) ;; HEADER SECTION ;; id = 52693 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 592753402 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20191210132342 20191130122342 27618 healthindicators.gov. Lq6AHgAJlDBIKSoiIpdDUC+pdRyjY3dE/alaLOPOcDkKLvjorCSx6grLzPuZuS1K13Me1XjTiYCR cWdR+P9s8LBmevtut4DzwI46iPgzoPYRlC9fH/pFROvj9VhhvjadXRR+o+JHXCpcSje2Yvvah51d DsmTkZLXj29DkGhIEc0= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. gnOG2sA6iUF7wUKvddWzl22fYViJWKVSYzKC5dr4MBMq5vPix96XU36B8nALKmQLfCnQLmMkUEOy U0UaGIairi/9ax7JeCYOltewKV6uEbVCY+776qgGm7lC5b/AV3nLG3TvqVLwoQjOlVvjP+FGYO92 0rRe05aLQ3VFYR2G6oY= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103027 20191202100153 63879 cdc.gov. D6nQSUpg6fTn4xuAjnC4pNXVWvHrp66fB25MhZYhy+XO4Z6PU4mGd40qDttpNqSlcz3jU4lyqpXU iGo9kLhDfa6nN3pwAhlflyrIr0WeHCM26O4TBsC4a3epJZX7r96iB1MoL1dibWHl/KWKTCyzY3OM DSli7V6HjUgC2sNNE5w= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212102255 20191202101606 63879 cdc.gov. CrEFI9NQ3dRAQQQodUa+o6Iu9e9gLkl7deG0JrGK09mmP0dvGlLXpUInD1TtbG1FXQMqZA/yjgpf dmfoVQIXt7jAyOSDGxCwtD64xh3fJimK6uBhdBDpW7+28w8yJ82tXNfWG/7K7gj9ep4aHHXRs38d /G5qJ7naX5LD1s15GvQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103547 20191202093558 63879 cdc.gov. e/x6w0EKOZ1NaK6MAce1oLxnRIvxLozyOQAbOzIVpYlKM97SVHYorkN2vxcTOFAYh7gbYqU/VlTU Wb9Uicpt6bv7OsbpqAOAvVpAhKdjqVefn/S9G2Z1CW/dRPMvODEwM3vksLK6rcN+YfPMLPpkTpKO 5fjFAHlgSvB+zg+dqu0= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1081 bytes) ;; HEADER SECTION ;; id = 110 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 592753402 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20191210132342 20191130122342 27618 healthindicators.gov. Lq6AHgAJlDBIKSoiIpdDUC+pdRyjY3dE/alaLOPOcDkKLvjorCSx6grLzPuZuS1K13Me1XjTiYCR cWdR+P9s8LBmevtut4DzwI46iPgzoPYRlC9fH/pFROvj9VhhvjadXRR+o+JHXCpcSje2Yvvah51d DsmTkZLXj29DkGhIEc0= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. gnOG2sA6iUF7wUKvddWzl22fYViJWKVSYzKC5dr4MBMq5vPix96XU36B8nALKmQLfCnQLmMkUEOy U0UaGIairi/9ax7JeCYOltewKV6uEbVCY+776qgGm7lC5b/AV3nLG3TvqVLwoQjOlVvjP+FGYO92 0rRe05aLQ3VFYR2G6oY= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103027 20191202100153 63879 cdc.gov. D6nQSUpg6fTn4xuAjnC4pNXVWvHrp66fB25MhZYhy+XO4Z6PU4mGd40qDttpNqSlcz3jU4lyqpXU iGo9kLhDfa6nN3pwAhlflyrIr0WeHCM26O4TBsC4a3epJZX7r96iB1MoL1dibWHl/KWKTCyzY3OM DSli7V6HjUgC2sNNE5w= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212102255 20191202101606 63879 cdc.gov. CrEFI9NQ3dRAQQQodUa+o6Iu9e9gLkl7deG0JrGK09mmP0dvGlLXpUInD1TtbG1FXQMqZA/yjgpf dmfoVQIXt7jAyOSDGxCwtD64xh3fJimK6uBhdBDpW7+28w8yJ82tXNfWG/7K7gj9ep4aHHXRs38d /G5qJ7naX5LD1s15GvQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103547 20191202093558 63879 cdc.gov. e/x6w0EKOZ1NaK6MAce1oLxnRIvxLozyOQAbOzIVpYlKM97SVHYorkN2vxcTOFAYh7gbYqU/VlTU Wb9Uicpt6bv7OsbpqAOAvVpAhKdjqVefn/S9G2Z1CW/dRPMvODEwM3vksLK6rcN+YfPMLPpkTpKO 5fjFAHlgSvB+zg+dqu0= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1081 bytes) ;; HEADER SECTION ;; id = 33189 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 592753402 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20191210132342 20191130122342 27618 healthindicators.gov. Lq6AHgAJlDBIKSoiIpdDUC+pdRyjY3dE/alaLOPOcDkKLvjorCSx6grLzPuZuS1K13Me1XjTiYCR cWdR+P9s8LBmevtut4DzwI46iPgzoPYRlC9fH/pFROvj9VhhvjadXRR+o+JHXCpcSje2Yvvah51d DsmTkZLXj29DkGhIEc0= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. gnOG2sA6iUF7wUKvddWzl22fYViJWKVSYzKC5dr4MBMq5vPix96XU36B8nALKmQLfCnQLmMkUEOy U0UaGIairi/9ax7JeCYOltewKV6uEbVCY+776qgGm7lC5b/AV3nLG3TvqVLwoQjOlVvjP+FGYO92 0rRe05aLQ3VFYR2G6oY= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103027 20191202100153 63879 cdc.gov. D6nQSUpg6fTn4xuAjnC4pNXVWvHrp66fB25MhZYhy+XO4Z6PU4mGd40qDttpNqSlcz3jU4lyqpXU iGo9kLhDfa6nN3pwAhlflyrIr0WeHCM26O4TBsC4a3epJZX7r96iB1MoL1dibWHl/KWKTCyzY3OM DSli7V6HjUgC2sNNE5w= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212102255 20191202101606 63879 cdc.gov. CrEFI9NQ3dRAQQQodUa+o6Iu9e9gLkl7deG0JrGK09mmP0dvGlLXpUInD1TtbG1FXQMqZA/yjgpf dmfoVQIXt7jAyOSDGxCwtD64xh3fJimK6uBhdBDpW7+28w8yJ82tXNfWG/7K7gj9ep4aHHXRs38d /G5qJ7naX5LD1s15GvQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103547 20191202093558 63879 cdc.gov. e/x6w0EKOZ1NaK6MAce1oLxnRIvxLozyOQAbOzIVpYlKM97SVHYorkN2vxcTOFAYh7gbYqU/VlTU Wb9Uicpt6bv7OsbpqAOAvVpAhKdjqVefn/S9G2Z1CW/dRPMvODEwM3vksLK6rcN+YfPMLPpkTpKO 5fjFAHlgSvB+zg+dqu0= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns2.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1052 bytes) ;; HEADER SECTION ;; id = 47632 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. SoJLbHrXrSB4wbOCI4t0gb+z9RKcQGOy1A1Yyeui8AQEF/7cE5ZVx15oL1ivp6QxWlbihixsudwF YDjbKrPz715P8c069AxC0QNebBqbdH7OMxoeA50bu+f9iPLlmjo/WxI3Y2/MOTsWg4F74fVPYC8r M19qJ/Itghrgn8Ra35s= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. gnOG2sA6iUF7wUKvddWzl22fYViJWKVSYzKC5dr4MBMq5vPix96XU36B8nALKmQLfCnQLmMkUEOy U0UaGIairi/9ax7JeCYOltewKV6uEbVCY+776qgGm7lC5b/AV3nLG3TvqVLwoQjOlVvjP+FGYO92 0rRe05aLQ3VFYR2G6oY= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103027 20191202100153 63879 cdc.gov. D6nQSUpg6fTn4xuAjnC4pNXVWvHrp66fB25MhZYhy+XO4Z6PU4mGd40qDttpNqSlcz3jU4lyqpXU iGo9kLhDfa6nN3pwAhlflyrIr0WeHCM26O4TBsC4a3epJZX7r96iB1MoL1dibWHl/KWKTCyzY3OM DSli7V6HjUgC2sNNE5w= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212102255 20191202101606 63879 cdc.gov. CrEFI9NQ3dRAQQQodUa+o6Iu9e9gLkl7deG0JrGK09mmP0dvGlLXpUInD1TtbG1FXQMqZA/yjgpf dmfoVQIXt7jAyOSDGxCwtD64xh3fJimK6uBhdBDpW7+28w8yJ82tXNfWG/7K7gj9ep4aHHXRs38d /G5qJ7naX5LD1s15GvQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20191212103547 20191202093558 63879 cdc.gov. e/x6w0EKOZ1NaK6MAce1oLxnRIvxLozyOQAbOzIVpYlKM97SVHYorkN2vxcTOFAYh7gbYqU/VlTU Wb9Uicpt6bv7OsbpqAOAvVpAhKdjqVefn/S9G2Z1CW/dRPMvODEwM3vksLK6rcN+YfPMLPpkTpKO 5fjFAHlgSvB+zg+dqu0= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20191210124258 20191130120850 27618 healthindicators.gov. SoJLbHrXrSB4wbOCI4t0gb+z9RKcQGOy1A1Yyeui8AQEF/7cE5ZVx15oL1ivp6QxWlbihixsudwF YDjbKrPz715P8c069AxC0QNebBqbdH7OMxoeA50bu+f9iPLlmjo/WxI3Y2/MOTsWg4F74fVPYC8r M19qJ/Itghrgn8Ra35s= )`
	RRSIG=27618 and DNSKEY=27618 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test HEALTHINDICATORS.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: