DNSSEC Analyzer - HEALTHINDICATORS.GOV

Domain Name:

Time: 2019-08-20 14:16:25 UTC, NTP stratum 4

Analyzing DNSSEC problems for HEALTHINDICATORS.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to b.root-servers.net for ./DNSKEY
	Error querying b.root-servers.net/2001:500:200:0:0:0:0:b for ./DNSKEY: 'IPv6 transport disabled'
	Received 864 bytes from 199.9.14.201
	;; Answer received from 199.9.14.201 (864 bytes) ;; HEADER SECTION ;; id = 48587 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN DNSKEY ( 256 3 8 AwEAAcTQyaIe6nt3xSPOG2L/YfwBkOVTJN6mlnZ249O5Rtt3ZSRQHxQSW61AODYw6bvgxrrGq8ee OuenFjcSYgNAMcBYoEYYmKDW6e9EryW4ZaT/MCq+8Am06oR40xAA3fClOM6QjRcT85tP41Go946A icBGP8XOP/Aj1aI/oPRGzRnboUPUok/AzTNnW5npBU69+BuiIwYE7mQOiNBFePyvjQBdoiuYbmuD 3Py0IyjlBxzZUXbqLsRL9gYFkCqeTY29Ik7usuzMTa+JRSLz6KGS5RSJ7CTSMjZg8aNaUbN2dvGh akJPh92HnLvMA3TefFgbKJphFNPA3BWSKLZ02cRWXqM= ) ; Key ID = 59944 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20190910000000 20190820000000 20326 . myqQxVqqg5Yb0Tx+BDiLM672R1pZi5zzgRAWh3SkK4mQponWEdXVglCRl6VxIDqnbi5NKabyHMBc w+k4hbBjA1TZ0f+cyJa8xxTg8m7caHrdIRDNwr1zFa16L5BO55NWCjyTCwc/IgRU+Q5zS1YX/qdy uDsWsuRxhxclK5Knxc35Z0Pj0/xlBVzatlwloBVtnSpetAHyofMq9J/ylHDdQtfDjC3B/cBE1/TA UR8cJ2hZXlBBkR0q3Nb0dc6CG8647F8Rp9NOPNn6529HFjARFOPKps2ujLqzrLD4wuKzU3B3yOBe Vqv80rPiSnz0po25KwxFuQYXhAPlNQRtVLdjDw== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAcTQyaIe6nt3xSPOG2L/YfwBkOVTJN6mlnZ249O5Rtt3ZSRQHxQSW61AODYw6bvgxrrGq8ee OuenFjcSYgNAMcBYoEYYmKDW6e9EryW4ZaT/MCq+8Am06oR40xAA3fClOM6QjRcT85tP41Go946A icBGP8XOP/Aj1aI/oPRGzRnboUPUok/AzTNnW5npBU69+BuiIwYE7mQOiNBFePyvjQBdoiuYbmuD 3Py0IyjlBxzZUXbqLsRL9gYFkCqeTY29Ik7usuzMTa+JRSLz6KGS5RSJ7CTSMjZg8aNaUbN2dvGh akJPh92HnLvMA3TefFgbKJphFNPA3BWSKLZ02cRWXqM= ) ; Key ID = 59944`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20190910000000 20190820000000 20326 . myqQxVqqg5Yb0Tx+BDiLM672R1pZi5zzgRAWh3SkK4mQponWEdXVglCRl6VxIDqnbi5NKabyHMBc w+k4hbBjA1TZ0f+cyJa8xxTg8m7caHrdIRDNwr1zFa16L5BO55NWCjyTCwc/IgRU+Q5zS1YX/qdy uDsWsuRxhxclK5Knxc35Z0Pj0/xlBVzatlwloBVtnSpetAHyofMq9J/ylHDdQtfDjC3B/cBE1/TA UR8cJ2hZXlBBkR0q3Nb0dc6CG8647F8Rp9NOPNn6529HFjARFOPKps2ujLqzrLD4wuKzU3B3yOBe Vqv80rPiSnz0po25KwxFuQYXhAPlNQRtVLdjDw== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=59944 is now in the chain-of-trust
	Query to d.root-servers.net for HEALTHINDICATORS.GOV/A
	Error querying d.root-servers.net/2001:500:2d:0:0:0:0:d for HEALTHINDICATORS.GOV/A: 'IPv6 transport disabled'
	Received 675 bytes from 199.7.91.13
	;; Answer received from 199.7.91.13 (675 bytes) ;; HEADER SECTION ;; id = 16690 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20190902050000 20190820040000 59944 . RUqbA1seT9QkM6KjM21mq6zFMpCnbA/HPqmPHOMxHtrUCinjtW5I4Ufad48PsBNAPfO2LEbwVqe3 Tq7l6ImdQOUgNXFMBn87KMCi5JDRr2gOf+uaEcNz7l2Rb+r1hd/HgZLZSO5XDP8aJU69JwysL8FE K8qNOzZSCFDeznsNJtNsUiw7PLgECGESrefbDbR7kk4viDon8aODFeS3nKDc+B5wbEs5qCzkDbBK u0XcjMtlCYIaFzcQT348bivOa4ovXBYf6SNGgPHgwHRl8L+0HSKCB4m9mLGqoqk/9xn6agjZ+hdM KyrSS/FMZx/sAu9oCxEWWvQKNzF7xGEkhRVa/w== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option:
	Query to h.root-servers.net for GOV/DNSKEY
	Error querying h.root-servers.net/2001:500:1:0:0:0:0:53 for GOV/DNSKEY: 'IPv6 transport disabled'
	Received 658 bytes from 198.97.190.53
	;; Answer received from 198.97.190.53 (658 bytes) ;; HEADER SECTION ;; id = 50591 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20190902050000 20190820040000 59944 . RUqbA1seT9QkM6KjM21mq6zFMpCnbA/HPqmPHOMxHtrUCinjtW5I4Ufad48PsBNAPfO2LEbwVqe3 Tq7l6ImdQOUgNXFMBn87KMCi5JDRr2gOf+uaEcNz7l2Rb+r1hd/HgZLZSO5XDP8aJU69JwysL8FE K8qNOzZSCFDeznsNJtNsUiw7PLgECGESrefbDbR7kk4viDon8aODFeS3nKDc+B5wbEs5qCzkDbBK u0XcjMtlCYIaFzcQT348bivOa4ovXBYf6SNGgPHgwHRl8L+0HSKCB4m9mLGqoqk/9xn6agjZ+hdM KyrSS/FMZx/sAu9oCxEWWvQKNzF7xGEkhRVa/w== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to i.root-servers.net for GOV/DS
	Error querying i.root-servers.net/2001:7fe:0:0:0:0:0:53 for GOV/DS: 'IPv6 transport disabled'
	Received 406 bytes from 192.36.148.17
	;; Answer received from 192.36.148.17 (406 bytes) ;; HEADER SECTION ;; id = 62011 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20190902050000 20190820040000 59944 . RUqbA1seT9QkM6KjM21mq6zFMpCnbA/HPqmPHOMxHtrUCinjtW5I4Ufad48PsBNAPfO2LEbwVqe3 Tq7l6ImdQOUgNXFMBn87KMCi5JDRr2gOf+uaEcNz7l2Rb+r1hd/HgZLZSO5XDP8aJU69JwysL8FE K8qNOzZSCFDeznsNJtNsUiw7PLgECGESrefbDbR7kk4viDon8aODFeS3nKDc+B5wbEs5qCzkDbBK u0XcjMtlCYIaFzcQT348bivOa4ovXBYf6SNGgPHgwHRl8L+0HSKCB4m9mLGqoqk/9xn6agjZ+hdM KyrSS/FMZx/sAu9oCxEWWvQKNzF7xGEkhRVa/w== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-1 has algorithm RSASHA256
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`gov. 86400 IN RRSIG ( DS 8 1 86400 20190902050000 20190820040000 59944 . RUqbA1seT9QkM6KjM21mq6zFMpCnbA/HPqmPHOMxHtrUCinjtW5I4Ufad48PsBNAPfO2LEbwVqe3 Tq7l6ImdQOUgNXFMBn87KMCi5JDRr2gOf+uaEcNz7l2Rb+r1hd/HgZLZSO5XDP8aJU69JwysL8FE K8qNOzZSCFDeznsNJtNsUiw7PLgECGESrefbDbR7kk4viDon8aODFeS3nKDc+B5wbEs5qCzkDbBK u0XcjMtlCYIaFzcQT348bivOa4ovXBYf6SNGgPHgwHRl8L+0HSKCB4m9mLGqoqk/9xn6agjZ+hdM KyrSS/FMZx/sAu9oCxEWWvQKNzF7xGEkhRVa/w== )`
	RRSIG=59944 and DNSKEY=59944 verifies the DS RRset
	DS=7698/SHA-1 is now in the chain-of-trust
	`gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	`gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to d.gov-servers.net for GOV/DNSKEY
	Received 743 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (743 bytes) ;; HEADER SECTION ;; id = 13848 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 256 3 8 AQPnviCbt0HB2CQze767dPf3TQFosiEwOIkUQaJmcSoNlVSquo3Mox7noTQGzKSdTbKAh0zfkGIb thSb6zyPceMJPpVv2RQUAj9WWTZr4yvO0J5/KllhGqr3sZndrV1lF/rrFzjnnLO8egQTS7bXHbsU 9sM71w5Xiow+isEEPrc5KQ== ) ; Key ID = 7877 GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20190830214731 20190815214231 7698 gov. k1bNHuSWv2dXTQUpQqP68QRQ5fWzTY2g+HNf1z8IpZC7H3EHKv8KptrM+vQiUBR655KD9G3geI3x HbR3kKXWcQII2XFfnvCmf7gNbVmOYUli1cTCsbTNo64VS8hdwpwFPH7C8FQ7NDs5vUH6y9XvIJv0 M571C301cmbMdtczwdTVIE64YGedJOWGQMcLJnRPzdbz9IS1XdxHkfLmGsrqzUYUc1/b88hCVlbn ftGzRDh+jUq32mCd6eknCrnfmG4moYT1CVuR10K5oG3pADzMgTSnqCYyFb9xrRYaYtBmDeN0KhKp wx+MHIquJk2W6OUnoMMCX0DqxTlUHMxoxIfOwA== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 256 3 8 AQPnviCbt0HB2CQze767dPf3TQFosiEwOIkUQaJmcSoNlVSquo3Mox7noTQGzKSdTbKAh0zfkGIb thSb6zyPceMJPpVv2RQUAj9WWTZr4yvO0J5/KllhGqr3sZndrV1lF/rrFzjnnLO8egQTS7bXHbsU 9sM71w5Xiow+isEEPrc5KQ== ) ; Key ID = 7877`
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20190830214731 20190815214231 7698 gov. k1bNHuSWv2dXTQUpQqP68QRQ5fWzTY2g+HNf1z8IpZC7H3EHKv8KptrM+vQiUBR655KD9G3geI3x HbR3kKXWcQII2XFfnvCmf7gNbVmOYUli1cTCsbTNo64VS8hdwpwFPH7C8FQ7NDs5vUH6y9XvIJv0 M571C301cmbMdtczwdTVIE64YGedJOWGQMcLJnRPzdbz9IS1XdxHkfLmGsrqzUYUc1/b88hCVlbn ftGzRDh+jUq32mCd6eknCrnfmG4moYT1CVuR10K5oG3pADzMgTSnqCYyFb9xrRYaYtBmDeN0KhKp wx+MHIquJk2W6OUnoMMCX0DqxTlUHMxoxIfOwA== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=7877 is now in the chain-of-trust
	Query to a.gov-servers.net for HEALTHINDICATORS.GOV/A
	Error querying a.gov-servers.net/2001:500:4431:0:0:0:2:30 for HEALTHINDICATORS.GOV/A: 'IPv6 transport disabled'
	Received 402 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (402 bytes) ;; HEADER SECTION ;; id = 17353 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190827101007 20190820101007 7877 gov. fpBAeQ/VhWjs4c+CJuZAtCfi31CweVKm9waTxT6groIs26c4j6kIyTB0Rvg9zCqr2piqgUh9xccG AEnieG22sydJRsgRqfuGp4JZBumF3dYIs1LMhYvDlV80v2HnikJ5Zmau66Lfog7c6OxKhJsD1ASw vtFl09EeoUM/G/MfpvU= ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to b.gov-servers.net for HEALTHINDICATORS.GOV/DNSKEY
	Error querying b.gov-servers.net/2620:74:27:0:0:0:2:30 for HEALTHINDICATORS.GOV/DNSKEY: 'IPv6 transport disabled'
	Received 402 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (402 bytes) ;; HEADER SECTION ;; id = 1924 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190827101007 20190820101007 7877 gov. fpBAeQ/VhWjs4c+CJuZAtCfi31CweVKm9waTxT6groIs26c4j6kIyTB0Rvg9zCqr2piqgUh9xccG AEnieG22sydJRsgRqfuGp4JZBumF3dYIs1LMhYvDlV80v2HnikJ5Zmau66Lfog7c6OxKhJsD1ASw vtFl09EeoUM/G/MfpvU= ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone HEALTHINDICATORS.GOV

HEALTHINDICATORS.GOV

	Checking DS between GOV and HEALTHINDICATORS.GOV
	Query to d.gov-servers.net for HEALTHINDICATORS.GOV/DS
	Received 296 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (296 bytes) ;; HEADER SECTION ;; id = 18370 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DS ;; ANSWER SECTION (3 records) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190827101007 20190820101007 7877 gov. fpBAeQ/VhWjs4c+CJuZAtCfi31CweVKm9waTxT6groIs26c4j6kIyTB0Rvg9zCqr2piqgUh9xccG AEnieG22sydJRsgRqfuGp4JZBumF3dYIs1LMhYvDlV80v2HnikJ5Zmau66Lfog7c6OxKhJsD1ASw vtFl09EeoUM/G/MfpvU= ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for HEALTHINDICATORS.GOV in the GOV zone
	DS=41040/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=41040/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190827101007 20190820101007 7877 gov. fpBAeQ/VhWjs4c+CJuZAtCfi31CweVKm9waTxT6groIs26c4j6kIyTB0Rvg9zCqr2piqgUh9xccG AEnieG22sydJRsgRqfuGp4JZBumF3dYIs1LMhYvDlV80v2HnikJ5Zmau66Lfog7c6OxKhJsD1ASw vtFl09EeoUM/G/MfpvU= )`
	RRSIG=7877 and DNSKEY=7877 verifies the DS RRset
	DS=41040/SHA-1 is now in the chain-of-trust
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 )`
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/DNSKEY
	Received 1129 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1129 bytes) ;; HEADER SECTION ;; id = 2515 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 5 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (5 records) healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAZXbn+5vvyy3oRDWpX9OGnXP7HrfzHteFimFNQUZd3qMhP1ieop4kKmJJAoXKzYiqpWQ2FGo KmKiHstRz50dnN8QtAoj7dEqMvSQ1uSJFBP7O0aNKFNe/PW/RSBNR+SNfST1xwD0QyYhGFEbLoxf SI+c+NatxvJWIpoisxL+wdMLeH8+hzITdTdeYsnAKxx96kwC9RxW9r8S1T5Mh8SmqgCesq2xKtI0 hK3q2rTt1hqmTRzyza9xk8Z0SKY7nr1vON39Epg7MuJ7rwBn0XmA4uf8Ekb235aviFa+Ycelu6Vm EuY5ELeRamoNpitnJtZz76IAzajrmrvXN1KfoZQnBDE= ) ; Key ID = 41040 healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAdlMdYfi3ltesHqFehyjZTRh7vGBopyE9T8DIlIvZP1az2zp9l2gsJvWxEkzGxJAt4RPJaCH jPPO/Q3P/J19lcSSjGKI/i7WXSioOKAdGfK9/3oy9Eel69bmvsr/Wm02h1EF7jID8TZQO3HaUAog 3Dik+Od6apthrx+VvF+5ybTN ) ; Key ID = 47670 healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAdF1m35I4f7gyLj6563QbQ9aqM+UR/tlb8EQ+c2puut5/w6qMnRPGGAFhveyZRiGF1+Q4s2k TbdrMae0ySBObLy+c4mIqwPyOXWDFNafUnK8HhXVhEkjR5fP7gZXHrzAzN6H6O7HGpwqKgwDgy5V Ascr1wHclra72X0P6BQjGlcP ) ; Key ID = 38567 healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190824135848 20190814125848 41040 healthindicators.gov. FHuDmomhAukSITmo3T6kxgj7V3MXUsRIyO8No2HJgAUlQEWrNUMlQOZETHXL39n2UnoD/lR1bAvc Y8PycuK/e9iMxzTWBRYdKi7sXvRSAex1Csj2ALJ59osCIV2yUpbGaRQ+vKPsdI21ZC7HpLQJSlEG I0qGQk/E5HoTCSB5SiC8mAN7GNBHzu0Mc+2IgEDQMt0V2i3VWoc5p5q34YnYlikayJwIpOh98kpc qr+8bxhR1DG1n/iXaiLEmzAzOUbTLBlHkuarUX0tr91pI0gfdo7AYSrWZ1ygicADx15PHFwWrDFj nfRvstLe3h6I6J7RReg+KmTPKQdqb1LU55a3Bw== ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190824135848 20190814125848 47670 healthindicators.gov. Z4IUIGvxqk/OeQcCkRqCm0ntuS/DwCV54i89lr1QcV6A7pqnPqlE2AR02RzNHy11YHyfao5cK6rK RYizC9AG54QhwoxcQW3NM79BkrwTHdxQ/eV4ujgO+6yhLY2/Zsu8Ke5rdsGkTqwR5yv+dve/btFn +ehfaTXrO3oDIDSg1DU= ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 3 DNSKEY records for HEALTHINDICATORS.GOV
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAZXbn+5vvyy3oRDWpX9OGnXP7HrfzHteFimFNQUZd3qMhP1ieop4kKmJJAoXKzYiqpWQ2FGo KmKiHstRz50dnN8QtAoj7dEqMvSQ1uSJFBP7O0aNKFNe/PW/RSBNR+SNfST1xwD0QyYhGFEbLoxf SI+c+NatxvJWIpoisxL+wdMLeH8+hzITdTdeYsnAKxx96kwC9RxW9r8S1T5Mh8SmqgCesq2xKtI0 hK3q2rTt1hqmTRzyza9xk8Z0SKY7nr1vON39Epg7MuJ7rwBn0XmA4uf8Ekb235aviFa+Ycelu6Vm EuY5ELeRamoNpitnJtZz76IAzajrmrvXN1KfoZQnBDE= ) ; Key ID = 41040`
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAdlMdYfi3ltesHqFehyjZTRh7vGBopyE9T8DIlIvZP1az2zp9l2gsJvWxEkzGxJAt4RPJaCH jPPO/Q3P/J19lcSSjGKI/i7WXSioOKAdGfK9/3oy9Eel69bmvsr/Wm02h1EF7jID8TZQO3HaUAog 3Dik+Od6apthrx+VvF+5ybTN ) ; Key ID = 47670`
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAdF1m35I4f7gyLj6563QbQ9aqM+UR/tlb8EQ+c2puut5/w6qMnRPGGAFhveyZRiGF1+Q4s2k TbdrMae0ySBObLy+c4mIqwPyOXWDFNafUnK8HhXVhEkjR5fP7gZXHrzAzN6H6O7HGpwqKgwDgy5V Ascr1wHclra72X0P6BQjGlcP ) ; Key ID = 38567`
	DNSKEY=41040/SEP is now in the chain-of-trust
	DS=41040/SHA-1 verifies DNSKEY=41040/SEP
	DS=41040/SHA-256 verifies DNSKEY=41040/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190824135848 20190814125848 41040 healthindicators.gov. FHuDmomhAukSITmo3T6kxgj7V3MXUsRIyO8No2HJgAUlQEWrNUMlQOZETHXL39n2UnoD/lR1bAvc Y8PycuK/e9iMxzTWBRYdKi7sXvRSAex1Csj2ALJ59osCIV2yUpbGaRQ+vKPsdI21ZC7HpLQJSlEG I0qGQk/E5HoTCSB5SiC8mAN7GNBHzu0Mc+2IgEDQMt0V2i3VWoc5p5q34YnYlikayJwIpOh98kpc qr+8bxhR1DG1n/iXaiLEmzAzOUbTLBlHkuarUX0tr91pI0gfdo7AYSrWZ1ygicADx15PHFwWrDFj nfRvstLe3h6I6J7RReg+KmTPKQdqb1LU55a3Bw== )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190824135848 20190814125848 47670 healthindicators.gov. Z4IUIGvxqk/OeQcCkRqCm0ntuS/DwCV54i89lr1QcV6A7pqnPqlE2AR02RzNHy11YHyfao5cK6rK RYizC9AG54QhwoxcQW3NM79BkrwTHdxQ/eV4ujgO+6yhLY2/Zsu8Ke5rdsGkTqwR5yv+dve/btFn +ehfaTXrO3oDIDSg1DU= )`
	RRSIG=41040 and DNSKEY=41040/SEP verifies the DNSKEY RRset
	RRSIG=47670 and DNSKEY=47670 verifies the DNSKEY RRset
	DNSKEY=47670 is now in the chain-of-trust
	DNSKEY=38567 is now in the chain-of-trust
	Query to ns3.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1052 bytes) ;; HEADER SECTION ;; id = 18536 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20190825123634 20190815122301 47670 healthindicators.gov. Y0tYJrI3kmPHunpGcPFC5BuSwibGEwBnahIKML/HkzC50gD6doyyOm3RuAbIGA2cXGJ6K3fJacgq +WibzJQey7E2SNyZ2gDSjbXn1yqJ6JtmA5LKC2srya5Y1m9Qv8SkI0R26B2mLHuEYx8/jNxQmTAx elgtE2xUyssP+GZcU6c= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190825123358 20190815121136 47670 healthindicators.gov. fezfLX2S+DXkRLWExoykbLxGiHsNpK1PZxDQPUyI/mBwqIIvh89n6xp+0auSiphuZ+ZMabfEUaFe 9fJ3arLpAR+valkKVk1VtDPgNv4S9DDWCFiN28czj1wvvt9SwARlRZKGUAoOK0Z88gSFMhCVKJQT nKHD3eDxEAYrCtqAF8Q= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827151308 20190817143058 46095 cdc.gov. bVkNPfqEixDdI43vWQV1WcPLyB/sOKQeu1PcN+2kzwLFBSB3Z6wcSZ6gr96D7FkiWMHufscnkcBn hSSXg4dBN6T9YkUkhZMYUoFTOgNUSbxsi/JjB4WbLytDCnqUWqSutdCXyRqsvvbFoa7q6pGWzCbe wcoM37Voc9ugjm1HDa8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827143540 20190817142013 46095 cdc.gov. TbLMFf5n+5OTyg/3R8KWrb6/UhZD1XBKIOZzqyaukWCh3mRcyviSIPQHziNqUIhEVIPkrBvhxuEC nFxsCGY1p/aLw1h9cgBF2ASo+5osGQBRyFIqzyZpUSkX/A3rCtM0oaF+I0LfGoesDuesO6L2fkwy Mq5BRoglL8Hcn6mj4AQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827141028 20190817134828 46095 cdc.gov. bzsvuffcCyY8ZBvJt2/uB2z6n9WAqg6YkGFO46qElIv9ysm3f29+8sCqSF6h36DKWYgcXv1wvdQJ l8cFEzduhTP/KkewjEdQ758fibe9z9KB+3e2N4RJVtSdaUuCPkoiuex8izKhySXSnl9K+QgNP64G 10nmfsXsjhrq0mVRn6o= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1081 bytes) ;; HEADER SECTION ;; id = 63429 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 578683644 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190828094924 20190818084924 47670 healthindicators.gov. vvqw/ce46yxoJZd4OZgvqB9hXApxaTLnzviEvU5nO1uwXZoGoeBGVm75y96hF8CF3tOPvMmZ/8eB Vc3gbTNGCnymMUOFWMlOt855jjj2pt5HBKmeikHKruug3oALMU8p5Wx9hL8r81XjOmvUX1VNG5+i NAIt4UfM/GVcPnkp5HU= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190825123358 20190815121136 47670 healthindicators.gov. fezfLX2S+DXkRLWExoykbLxGiHsNpK1PZxDQPUyI/mBwqIIvh89n6xp+0auSiphuZ+ZMabfEUaFe 9fJ3arLpAR+valkKVk1VtDPgNv4S9DDWCFiN28czj1wvvt9SwARlRZKGUAoOK0Z88gSFMhCVKJQT nKHD3eDxEAYrCtqAF8Q= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827151308 20190817143058 46095 cdc.gov. bVkNPfqEixDdI43vWQV1WcPLyB/sOKQeu1PcN+2kzwLFBSB3Z6wcSZ6gr96D7FkiWMHufscnkcBn hSSXg4dBN6T9YkUkhZMYUoFTOgNUSbxsi/JjB4WbLytDCnqUWqSutdCXyRqsvvbFoa7q6pGWzCbe wcoM37Voc9ugjm1HDa8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827143540 20190817142013 46095 cdc.gov. TbLMFf5n+5OTyg/3R8KWrb6/UhZD1XBKIOZzqyaukWCh3mRcyviSIPQHziNqUIhEVIPkrBvhxuEC nFxsCGY1p/aLw1h9cgBF2ASo+5osGQBRyFIqzyZpUSkX/A3rCtM0oaF+I0LfGoesDuesO6L2fkwy Mq5BRoglL8Hcn6mj4AQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827141028 20190817134828 46095 cdc.gov. bzsvuffcCyY8ZBvJt2/uB2z6n9WAqg6YkGFO46qElIv9ysm3f29+8sCqSF6h36DKWYgcXv1wvdQJ l8cFEzduhTP/KkewjEdQ758fibe9z9KB+3e2N4RJVtSdaUuCPkoiuex8izKhySXSnl9K+QgNP64G 10nmfsXsjhrq0mVRn6o= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1081 bytes) ;; HEADER SECTION ;; id = 45382 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 578683644 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190828094924 20190818084924 47670 healthindicators.gov. vvqw/ce46yxoJZd4OZgvqB9hXApxaTLnzviEvU5nO1uwXZoGoeBGVm75y96hF8CF3tOPvMmZ/8eB Vc3gbTNGCnymMUOFWMlOt855jjj2pt5HBKmeikHKruug3oALMU8p5Wx9hL8r81XjOmvUX1VNG5+i NAIt4UfM/GVcPnkp5HU= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190825123358 20190815121136 47670 healthindicators.gov. fezfLX2S+DXkRLWExoykbLxGiHsNpK1PZxDQPUyI/mBwqIIvh89n6xp+0auSiphuZ+ZMabfEUaFe 9fJ3arLpAR+valkKVk1VtDPgNv4S9DDWCFiN28czj1wvvt9SwARlRZKGUAoOK0Z88gSFMhCVKJQT nKHD3eDxEAYrCtqAF8Q= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827151308 20190817143058 46095 cdc.gov. bVkNPfqEixDdI43vWQV1WcPLyB/sOKQeu1PcN+2kzwLFBSB3Z6wcSZ6gr96D7FkiWMHufscnkcBn hSSXg4dBN6T9YkUkhZMYUoFTOgNUSbxsi/JjB4WbLytDCnqUWqSutdCXyRqsvvbFoa7q6pGWzCbe wcoM37Voc9ugjm1HDa8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827143540 20190817142013 46095 cdc.gov. TbLMFf5n+5OTyg/3R8KWrb6/UhZD1XBKIOZzqyaukWCh3mRcyviSIPQHziNqUIhEVIPkrBvhxuEC nFxsCGY1p/aLw1h9cgBF2ASo+5osGQBRyFIqzyZpUSkX/A3rCtM0oaF+I0LfGoesDuesO6L2fkwy Mq5BRoglL8Hcn6mj4AQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827141028 20190817134828 46095 cdc.gov. bzsvuffcCyY8ZBvJt2/uB2z6n9WAqg6YkGFO46qElIv9ysm3f29+8sCqSF6h36DKWYgcXv1wvdQJ l8cFEzduhTP/KkewjEdQ758fibe9z9KB+3e2N4RJVtSdaUuCPkoiuex8izKhySXSnl9K+QgNP64G 10nmfsXsjhrq0mVRn6o= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1081 bytes) ;; HEADER SECTION ;; id = 304 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 578683644 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190828094924 20190818084924 47670 healthindicators.gov. vvqw/ce46yxoJZd4OZgvqB9hXApxaTLnzviEvU5nO1uwXZoGoeBGVm75y96hF8CF3tOPvMmZ/8eB Vc3gbTNGCnymMUOFWMlOt855jjj2pt5HBKmeikHKruug3oALMU8p5Wx9hL8r81XjOmvUX1VNG5+i NAIt4UfM/GVcPnkp5HU= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190825123358 20190815121136 47670 healthindicators.gov. fezfLX2S+DXkRLWExoykbLxGiHsNpK1PZxDQPUyI/mBwqIIvh89n6xp+0auSiphuZ+ZMabfEUaFe 9fJ3arLpAR+valkKVk1VtDPgNv4S9DDWCFiN28czj1wvvt9SwARlRZKGUAoOK0Z88gSFMhCVKJQT nKHD3eDxEAYrCtqAF8Q= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827151308 20190817143058 46095 cdc.gov. bVkNPfqEixDdI43vWQV1WcPLyB/sOKQeu1PcN+2kzwLFBSB3Z6wcSZ6gr96D7FkiWMHufscnkcBn hSSXg4dBN6T9YkUkhZMYUoFTOgNUSbxsi/JjB4WbLytDCnqUWqSutdCXyRqsvvbFoa7q6pGWzCbe wcoM37Voc9ugjm1HDa8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827143540 20190817142013 46095 cdc.gov. TbLMFf5n+5OTyg/3R8KWrb6/UhZD1XBKIOZzqyaukWCh3mRcyviSIPQHziNqUIhEVIPkrBvhxuEC nFxsCGY1p/aLw1h9cgBF2ASo+5osGQBRyFIqzyZpUSkX/A3rCtM0oaF+I0LfGoesDuesO6L2fkwy Mq5BRoglL8Hcn6mj4AQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827141028 20190817134828 46095 cdc.gov. bzsvuffcCyY8ZBvJt2/uB2z6n9WAqg6YkGFO46qElIv9ysm3f29+8sCqSF6h36DKWYgcXv1wvdQJ l8cFEzduhTP/KkewjEdQ758fibe9z9KB+3e2N4RJVtSdaUuCPkoiuex8izKhySXSnl9K+QgNP64G 10nmfsXsjhrq0mVRn6o= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1052 bytes) ;; HEADER SECTION ;; id = 39748 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20190825123634 20190815122301 47670 healthindicators.gov. Y0tYJrI3kmPHunpGcPFC5BuSwibGEwBnahIKML/HkzC50gD6doyyOm3RuAbIGA2cXGJ6K3fJacgq +WibzJQey7E2SNyZ2gDSjbXn1yqJ6JtmA5LKC2srya5Y1m9Qv8SkI0R26B2mLHuEYx8/jNxQmTAx elgtE2xUyssP+GZcU6c= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190825123358 20190815121136 47670 healthindicators.gov. fezfLX2S+DXkRLWExoykbLxGiHsNpK1PZxDQPUyI/mBwqIIvh89n6xp+0auSiphuZ+ZMabfEUaFe 9fJ3arLpAR+valkKVk1VtDPgNv4S9DDWCFiN28czj1wvvt9SwARlRZKGUAoOK0Z88gSFMhCVKJQT nKHD3eDxEAYrCtqAF8Q= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827151308 20190817143058 46095 cdc.gov. bVkNPfqEixDdI43vWQV1WcPLyB/sOKQeu1PcN+2kzwLFBSB3Z6wcSZ6gr96D7FkiWMHufscnkcBn hSSXg4dBN6T9YkUkhZMYUoFTOgNUSbxsi/JjB4WbLytDCnqUWqSutdCXyRqsvvbFoa7q6pGWzCbe wcoM37Voc9ugjm1HDa8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827143540 20190817142013 46095 cdc.gov. TbLMFf5n+5OTyg/3R8KWrb6/UhZD1XBKIOZzqyaukWCh3mRcyviSIPQHziNqUIhEVIPkrBvhxuEC nFxsCGY1p/aLw1h9cgBF2ASo+5osGQBRyFIqzyZpUSkX/A3rCtM0oaF+I0LfGoesDuesO6L2fkwy Mq5BRoglL8Hcn6mj4AQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190827141028 20190817134828 46095 cdc.gov. bzsvuffcCyY8ZBvJt2/uB2z6n9WAqg6YkGFO46qElIv9ysm3f29+8sCqSF6h36DKWYgcXv1wvdQJ l8cFEzduhTP/KkewjEdQ758fibe9z9KB+3e2N4RJVtSdaUuCPkoiuex8izKhySXSnl9K+QgNP64G 10nmfsXsjhrq0mVRn6o= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20190825123634 20190815122301 47670 healthindicators.gov. Y0tYJrI3kmPHunpGcPFC5BuSwibGEwBnahIKML/HkzC50gD6doyyOm3RuAbIGA2cXGJ6K3fJacgq +WibzJQey7E2SNyZ2gDSjbXn1yqJ6JtmA5LKC2srya5Y1m9Qv8SkI0R26B2mLHuEYx8/jNxQmTAx elgtE2xUyssP+GZcU6c= )`
	RRSIG=47670 and DNSKEY=47670 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test HEALTHINDICATORS.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: