DNSSEC Analyzer - HEALTHINDICATORS.GOV

Domain Name:

Time: 2021-04-21 20:38:04 UTC, NTP stratum 4

Analyzing DNSSEC problems for HEALTHINDICATORS.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to c.root-servers.net for ./DNSKEY
	Received 864 bytes from 192.33.4.12
	;; Answer received from 192.33.4.12 (864 bytes) ;; HEADER SECTION ;; id = 15963 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 256 3 8 AwEAAa+HvD7XXjmL+1htThUQyZW7oWGnjzKHJASg3TSR5Bmu5LfnSVW7fxqZa2oAYo2ionIQWyqA j/loApzg8GNMhyIibftPJso54uWRQ2GaoMrwLD5SLu676kf7urJq6nqdjNC0aJM/C888li69lVH6 tiu2tZm1NH3cmgfnMUJpD60bsrDUqs7XwftmNkdkHa4ltQbM3UNPyfTaNBQYoH3wpOpSjdk3tyDR nreBO6Idrw+DGf/rve4sL3qiSaXfYIkcwAwozxR34iHU5dbCDs8S6FmZYhoSVKVgNSUkudxhd9/6 RrZkYRgvwRsQXl3UwsacU1DsXcORqIC+7NlQ6M2OJVU= ) ; Key ID = 14631 . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20210512000000 20210421000000 20326 . bx5MOQGiU0gAwVPCF6fPBYdApVZCvs4fZ3603lzlRdtiHNsNSk2j/mVU7UD6oZkA/q/AIucEPGMD Lua0HNNnfhW8QsYssPHURJpcOUhgt17GinADGwADQYSI6fH12kFnb5wIZ/jznJ58dCdJDr0E7tg6 GarIqeu190nLM+sp75CNlKEG3HrrdSIGLWY8CFU1wLcU43ZAXaCiO5D6XwV8j7WUOs0n8XB48JzO yq4nZ/9Pt6Nl1QWT1UMrGZPPpBBeBKFeggIiGmDuzCn/nrk8F5zuN8f8RvhCxJZi1Kf6rEB0l79X XZ+JnpyjIJrNSNsDxeTQkO5NgXOrols1Gxv/QA== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAa+HvD7XXjmL+1htThUQyZW7oWGnjzKHJASg3TSR5Bmu5LfnSVW7fxqZa2oAYo2ionIQWyqA j/loApzg8GNMhyIibftPJso54uWRQ2GaoMrwLD5SLu676kf7urJq6nqdjNC0aJM/C888li69lVH6 tiu2tZm1NH3cmgfnMUJpD60bsrDUqs7XwftmNkdkHa4ltQbM3UNPyfTaNBQYoH3wpOpSjdk3tyDR nreBO6Idrw+DGf/rve4sL3qiSaXfYIkcwAwozxR34iHU5dbCDs8S6FmZYhoSVKVgNSUkudxhd9/6 RrZkYRgvwRsQXl3UwsacU1DsXcORqIC+7NlQ6M2OJVU= ) ; Key ID = 14631`
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20210512000000 20210421000000 20326 . bx5MOQGiU0gAwVPCF6fPBYdApVZCvs4fZ3603lzlRdtiHNsNSk2j/mVU7UD6oZkA/q/AIucEPGMD Lua0HNNnfhW8QsYssPHURJpcOUhgt17GinADGwADQYSI6fH12kFnb5wIZ/jznJ58dCdJDr0E7tg6 GarIqeu190nLM+sp75CNlKEG3HrrdSIGLWY8CFU1wLcU43ZAXaCiO5D6XwV8j7WUOs0n8XB48JzO yq4nZ/9Pt6Nl1QWT1UMrGZPPpBBeBKFeggIiGmDuzCn/nrk8F5zuN8f8RvhCxJZi1Kf6rEB0l79X XZ+JnpyjIJrNSNsDxeTQkO5NgXOrols1Gxv/QA== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=14631 is now in the chain-of-trust
	Query to d.root-servers.net for HEALTHINDICATORS.GOV/A
	Received 639 bytes from 199.7.91.13
	;; Answer received from 199.7.91.13 (639 bytes) ;; HEADER SECTION ;; id = 8515 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20210504170000 20210421160000 14631 . nj3tedV5qR02QXh4He6C8mhDM4FN8aoB1KF/QEMME0Znz41INHMqJUa19CpfwxCEvDB4AsSlOVRw yTsTNt10GiuRngN1h5j5r0+ol4IereF0kf/PhhbcgfKQuyjLncxLGlTe6xt7h05tqKbOaff9qpA7 MpdIjv3k4ACzo/d6J18mtEwKaVdhmlh9aelTOkEKdqELbk4JrGNJG4tbljWD+o8LdDrWvaIRaVm6 47I16skxzl8rSSWoMQ2oI3dwOyKd/teQAIL1a4fVICXl6lgmQrVLlzChp+ZjgDaWJAO4wWq8u+jQ owOqsCs0MVSDyWczuDX25xo/NnBGW6/cabsBKQ== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1450 ;; option:
	Query to f.root-servers.net for GOV/DNSKEY
	Received 622 bytes from 192.5.5.241
	;; Answer received from 192.5.5.241 (622 bytes) ;; HEADER SECTION ;; id = 64529 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20210504170000 20210421160000 14631 . nj3tedV5qR02QXh4He6C8mhDM4FN8aoB1KF/QEMME0Znz41INHMqJUa19CpfwxCEvDB4AsSlOVRw yTsTNt10GiuRngN1h5j5r0+ol4IereF0kf/PhhbcgfKQuyjLncxLGlTe6xt7h05tqKbOaff9qpA7 MpdIjv3k4ACzo/d6J18mtEwKaVdhmlh9aelTOkEKdqELbk4JrGNJG4tbljWD+o8LdDrWvaIRaVm6 47I16skxzl8rSSWoMQ2oI3dwOyKd/teQAIL1a4fVICXl6lgmQrVLlzChp+ZjgDaWJAO4wWq8u+jQ owOqsCs0MVSDyWczuDX25xo/NnBGW6/cabsBKQ== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN A 209.112.123.30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN A 69.36.153.30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN A 81.19.194.30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to m.root-servers.net for GOV/DS
	Received 370 bytes from 202.12.27.33
	;; Answer received from 202.12.27.33 (370 bytes) ;; HEADER SECTION ;; id = 34916 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (2 records) gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20210504170000 20210421160000 14631 . nj3tedV5qR02QXh4He6C8mhDM4FN8aoB1KF/QEMME0Znz41INHMqJUa19CpfwxCEvDB4AsSlOVRw yTsTNt10GiuRngN1h5j5r0+ol4IereF0kf/PhhbcgfKQuyjLncxLGlTe6xt7h05tqKbOaff9qpA7 MpdIjv3k4ACzo/d6J18mtEwKaVdhmlh9aelTOkEKdqELbk4JrGNJG4tbljWD+o8LdDrWvaIRaVm6 47I16skxzl8rSSWoMQ2oI3dwOyKd/teQAIL1a4fVICXl6lgmQrVLlzChp+ZjgDaWJAO4wWq8u+jQ owOqsCs0MVSDyWczuDX25xo/NnBGW6/cabsBKQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 1 DS records for GOV in the . zone
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`gov. 86400 IN RRSIG ( DS 8 1 86400 20210504170000 20210421160000 14631 . nj3tedV5qR02QXh4He6C8mhDM4FN8aoB1KF/QEMME0Znz41INHMqJUa19CpfwxCEvDB4AsSlOVRw yTsTNt10GiuRngN1h5j5r0+ol4IereF0kf/PhhbcgfKQuyjLncxLGlTe6xt7h05tqKbOaff9qpA7 MpdIjv3k4ACzo/d6J18mtEwKaVdhmlh9aelTOkEKdqELbk4JrGNJG4tbljWD+o8LdDrWvaIRaVm6 47I16skxzl8rSSWoMQ2oI3dwOyKd/teQAIL1a4fVICXl6lgmQrVLlzChp+ZjgDaWJAO4wWq8u+jQ owOqsCs0MVSDyWczuDX25xo/NnBGW6/cabsBKQ== )`
	RRSIG=14631 and DNSKEY=14631 verifies the DS RRset
	DS=7698/SHA-256 is now in the chain-of-trust
	`gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to b.gov-servers.net for GOV/DNSKEY
	Received 777 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (777 bytes) ;; HEADER SECTION ;; id = 21082 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAbexj/PgN9RGQ1TokFnYjJ87/rMFIqE/rXjWtsmwzxteOcKIVCUJAAWg0pIZZer88omuCVrq +fAz0iBOgY48TRFWgyVFV9rm5esTGOEuCU6BTYj1Cb7zrpb/RayEw0yzVVZ0adT/AXbAsQhteTpV kgWK8K33gxq4wY70AK5KWdDCyj4v9uR6TS0mgbGdg7RzFCi8xeZoYP2PY5XOhAHFon0= ) ; Key ID = 48498 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20210504190254 20210419185754 7698 gov. ZUQqCCEYe1uWRzEtjSAi55l/uPdT1PBCAPVabl5T0bTDYGDYkEUq6tEFc/VB/eBfw2B2pGWSIGb5 hzuuYFXyRfbgM+uwLGpFejX5M1rIRxqMawk8jyalKiedBy2NaID8XUy6yB9zHTa3QfoaGgLjvH6l Zbj6346qKK7OqyYRriKnF0K2DWGjOgfmi7zmIV1HgQ/l4Fwm8EUcrIlPnhA+l6RT37PO3u5Af+Xy HHT5s8hoOwHRthbq0W3+fP1z3luZbFre5c4nR4/sReFkwUHp0JlsVBxOaHKvDqOGARhy5U8YIT8N V4j5TSyrf+7xO6W60UfdQRPymiBmBzNWTdgm2w== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAbexj/PgN9RGQ1TokFnYjJ87/rMFIqE/rXjWtsmwzxteOcKIVCUJAAWg0pIZZer88omuCVrq +fAz0iBOgY48TRFWgyVFV9rm5esTGOEuCU6BTYj1Cb7zrpb/RayEw0yzVVZ0adT/AXbAsQhteTpV kgWK8K33gxq4wY70AK5KWdDCyj4v9uR6TS0mgbGdg7RzFCi8xeZoYP2PY5XOhAHFon0= ) ; Key ID = 48498`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20210504190254 20210419185754 7698 gov. ZUQqCCEYe1uWRzEtjSAi55l/uPdT1PBCAPVabl5T0bTDYGDYkEUq6tEFc/VB/eBfw2B2pGWSIGb5 hzuuYFXyRfbgM+uwLGpFejX5M1rIRxqMawk8jyalKiedBy2NaID8XUy6yB9zHTa3QfoaGgLjvH6l Zbj6346qKK7OqyYRriKnF0K2DWGjOgfmi7zmIV1HgQ/l4Fwm8EUcrIlPnhA+l6RT37PO3u5Af+Xy HHT5s8hoOwHRthbq0W3+fP1z3luZbFre5c4nR4/sReFkwUHp0JlsVBxOaHKvDqOGARhy5U8YIT8N V4j5TSyrf+7xO6W60UfdQRPymiBmBzNWTdgm2w== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=48498 is now in the chain-of-trust
	Query to c.gov-servers.net for HEALTHINDICATORS.GOV/A
	Received 434 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (434 bytes) ;; HEADER SECTION ;; id = 46386 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 1 cf5b889b034282d474c2da86803d656c9fa89f89 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 2 c70c99d40420fa465a65eb38bdfce096f8b9c62a56fca3bdf6ef6afa61821478 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210428191007 20210421191007 48498 gov. IA1gRR1qKCYjrh3D6B5391ZmKxtEgfD+uF98p6bCo/KvnQIrtlzAPnpWK1x0BR4yoPtBs5CmqIAz 7NYv5kKyzdegP1H0dk6LumHpGtJeU81n8LllK5MsTdGP9QWrXZfCld62NPZmfF0MSXp/Z4qt6kwm 74IdZBZBB9ao66KJ6ELgzIYqAeLEVe5SDQSiNFuDUwNFzlvmJso4MQtUYFcQEg== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to b.gov-servers.net for HEALTHINDICATORS.GOV/DNSKEY
	Received 434 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (434 bytes) ;; HEADER SECTION ;; id = 61453 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 1 cf5b889b034282d474c2da86803d656c9fa89f89 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 2 c70c99d40420fa465a65eb38bdfce096f8b9c62a56fca3bdf6ef6afa61821478 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210428191007 20210421191007 48498 gov. IA1gRR1qKCYjrh3D6B5391ZmKxtEgfD+uF98p6bCo/KvnQIrtlzAPnpWK1x0BR4yoPtBs5CmqIAz 7NYv5kKyzdegP1H0dk6LumHpGtJeU81n8LllK5MsTdGP9QWrXZfCld62NPZmfF0MSXp/Z4qt6kwm 74IdZBZBB9ao66KJ6ELgzIYqAeLEVe5SDQSiNFuDUwNFzlvmJso4MQtUYFcQEg== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone HEALTHINDICATORS.GOV

HEALTHINDICATORS.GOV

	Checking DS between GOV and HEALTHINDICATORS.GOV
	Query to d.gov-servers.net for HEALTHINDICATORS.GOV/DS
	Received 328 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (328 bytes) ;; HEADER SECTION ;; id = 43530 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DS ;; ANSWER SECTION (3 records) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 1 cf5b889b034282d474c2da86803d656c9fa89f89 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 2 c70c99d40420fa465a65eb38bdfce096f8b9c62a56fca3bdf6ef6afa61821478 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210428191007 20210421191007 48498 gov. IA1gRR1qKCYjrh3D6B5391ZmKxtEgfD+uF98p6bCo/KvnQIrtlzAPnpWK1x0BR4yoPtBs5CmqIAz 7NYv5kKyzdegP1H0dk6LumHpGtJeU81n8LllK5MsTdGP9QWrXZfCld62NPZmfF0MSXp/Z4qt6kwm 74IdZBZBB9ao66KJ6ELgzIYqAeLEVe5SDQSiNFuDUwNFzlvmJso4MQtUYFcQEg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for HEALTHINDICATORS.GOV in the GOV zone
	DS=5869/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=5869/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210428191007 20210421191007 48498 gov. IA1gRR1qKCYjrh3D6B5391ZmKxtEgfD+uF98p6bCo/KvnQIrtlzAPnpWK1x0BR4yoPtBs5CmqIAz 7NYv5kKyzdegP1H0dk6LumHpGtJeU81n8LllK5MsTdGP9QWrXZfCld62NPZmfF0MSXp/Z4qt6kwm 74IdZBZBB9ao66KJ6ELgzIYqAeLEVe5SDQSiNFuDUwNFzlvmJso4MQtUYFcQEg== )`
	RRSIG=48498 and DNSKEY=48498 verifies the DS RRset
	DS=5869/SHA-1 is now in the chain-of-trust
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 1 cf5b889b034282d474c2da86803d656c9fa89f89 )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 5869 7 2 c70c99d40420fa465a65eb38bdfce096f8b9c62a56fca3bdf6ef6afa61821478 )`
	Query to ns2.cdc.GOV for HEALTHINDICATORS.GOV/DNSKEY
	Received 981 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (981 bytes) ;; HEADER SECTION ;; id = 17172 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 4 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (4 records) healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAb7OlD0ykbeY63VgBzwdHSLALnl7xv4bDPsECtUuj5ceXRaFJzqSj5nQnWXNp66Gj/1xSZfl cF5jxJTIDRPp0Xj2LNYoKN8oKbL5iu8ChcbElHZxoLBa2of+YbcwrXJva87X7JuSb3LTITfujA4p C+UNi6rz5VyFGcEFEIiGxq6/ ) ; Key ID = 31419 healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAeOtS9gpIU6zPW3s1/VZkJzSJDujHbPy223i/sYe7S4X8IaydGsfx0DT2tcILeP5vAjzQu/7 hvXm8vWwF9kGdipMbMNRjW0uRFVpn/4Q5Gs3CFs3Y+xPnsgiF2sF+6EBW7MPK6XaIqd1IkJJRrDj cUQd2p3zpJHjbRixEyOIb4QvqwoDBkGEAWukIqdr1lcr+pbeWNeC87cn9l/Yp8+mu41WUWDoBtB1 p1MiFY4Pm/wnUpLXx2d14veOE8A3Hy6PLMxIv+E/stiwSbqqRnen6tGfGaOOUlNGP/r2THaiyg9I WLhPbWWk4fPB1NUrgubALReJaghoK8hhSdyWWwlD+wc= ) ; Key ID = 5869 healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210425115412 20210415115202 5869 healthindicators.gov. 44sUHgZ7ZVTH3mMtiOtT9mlee71swf0bGQnkId9prMyPTLDCEFCEAIsHu8u3y8Qr70pqrHrNXdxq l2WEaxX3o2fwwukAetctcupmSkZ8F1mwn/EO+sqydiWTwDN1gfgAR4ITlLeg3xlpC0enspbQ3SbW GTZcsixUcoYyyr31nHCB7fvfIAUrPF0f+yJnOErzxHo4PCGt6UPWZrrI5ELQ+FqjKU7UaL20roBN F3MNEJk33cgjoA273qjr5maVdN+Hcs0TsVwagS4b+5Pf0Lj54mRW6+OBanRSZXHyCdimrXBAnqja stdM582pZUPeoHQyC9V3PhLIcU9KB2W35Nc5Ag== ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. uJDm/atjwY7YaJwMJYe8eBDy/qMYe/jNcQucn6fM8WSUBvWmfjSMqyU7e6X8PWBAAnwa5/BUg15b aaQIJSpXjOp/ZkAuBz77Se7wURqpgRVhIyHbKhmLtTuF1UWHf4EI0nzDASDdSOCdU+dlaxpO98PI AqYe83iGEUZLWmMhTmQ= ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for HEALTHINDICATORS.GOV
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAb7OlD0ykbeY63VgBzwdHSLALnl7xv4bDPsECtUuj5ceXRaFJzqSj5nQnWXNp66Gj/1xSZfl cF5jxJTIDRPp0Xj2LNYoKN8oKbL5iu8ChcbElHZxoLBa2of+YbcwrXJva87X7JuSb3LTITfujA4p C+UNi6rz5VyFGcEFEIiGxq6/ ) ; Key ID = 31419`
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAeOtS9gpIU6zPW3s1/VZkJzSJDujHbPy223i/sYe7S4X8IaydGsfx0DT2tcILeP5vAjzQu/7 hvXm8vWwF9kGdipMbMNRjW0uRFVpn/4Q5Gs3CFs3Y+xPnsgiF2sF+6EBW7MPK6XaIqd1IkJJRrDj cUQd2p3zpJHjbRixEyOIb4QvqwoDBkGEAWukIqdr1lcr+pbeWNeC87cn9l/Yp8+mu41WUWDoBtB1 p1MiFY4Pm/wnUpLXx2d14veOE8A3Hy6PLMxIv+E/stiwSbqqRnen6tGfGaOOUlNGP/r2THaiyg9I WLhPbWWk4fPB1NUrgubALReJaghoK8hhSdyWWwlD+wc= ) ; Key ID = 5869`
	DNSKEY=5869/SEP is now in the chain-of-trust
	DS=5869/SHA-1 verifies DNSKEY=5869/SEP
	DS=5869/SHA-256 verifies DNSKEY=5869/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210425115412 20210415115202 5869 healthindicators.gov. 44sUHgZ7ZVTH3mMtiOtT9mlee71swf0bGQnkId9prMyPTLDCEFCEAIsHu8u3y8Qr70pqrHrNXdxq l2WEaxX3o2fwwukAetctcupmSkZ8F1mwn/EO+sqydiWTwDN1gfgAR4ITlLeg3xlpC0enspbQ3SbW GTZcsixUcoYyyr31nHCB7fvfIAUrPF0f+yJnOErzxHo4PCGt6UPWZrrI5ELQ+FqjKU7UaL20roBN F3MNEJk33cgjoA273qjr5maVdN+Hcs0TsVwagS4b+5Pf0Lj54mRW6+OBanRSZXHyCdimrXBAnqja stdM582pZUPeoHQyC9V3PhLIcU9KB2W35Nc5Ag== )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. uJDm/atjwY7YaJwMJYe8eBDy/qMYe/jNcQucn6fM8WSUBvWmfjSMqyU7e6X8PWBAAnwa5/BUg15b aaQIJSpXjOp/ZkAuBz77Se7wURqpgRVhIyHbKhmLtTuF1UWHf4EI0nzDASDdSOCdU+dlaxpO98PI AqYe83iGEUZLWmMhTmQ= )`
	RRSIG=5869 and DNSKEY=5869/SEP verifies the DNSKEY RRset
	RRSIG=31419 and DNSKEY=31419 verifies the DNSKEY RRset
	DNSKEY=31419 is now in the chain-of-trust
	Query to ns2.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1052 bytes) ;; HEADER SECTION ;; id = 40157 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. kYykpSzHgQwLk1unB4MXs0fSt1UQDpLtLxfOBnGzgJIleGTj6PSs2RNIIuCrQNtJkOK1HUE/m+vI nsT8oXUlyDDBBXCe+p0GxhU19sLrIzTsIw6XwL4mKuQ+jBnVz7LvlRmVOzJit7f/PPy3Xhq1ceJC XUdJfxlaFfqw74ZA15U= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. wxaqgfGISwCJlw9n6rImyf5VjAPhFxscBEiNE93YUBTfdOwi+6zBcON1jSNG3qqVoBI6BJTjXiTh AiePlmgWVlpQPfJ8xiNP6IYS4mYBRPsrkmQOWRvA2mXEUwT6Tad26nC2wRtGsYa6WVNw1tIjWPKs kZ7bZtFgOIjuZh0p0zo= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. uZeSLRVbtLtt9JwWWTa/EZ5iwXUYQ440wESJGIiNQZ7Cq24BXLsctIvqz4uLaZ4XDOL+GtEZ/y3n QIiUV6PV1oCZV98G2jot7ddRPSsPUaxLn/2fTYAZESOw/1AQ+ycGwpYjRxtmp7h6F8QSlvP8O9TC JExst42Lw3LLcb4h6zQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501083906 20210421082614 42473 cdc.gov. dqizEn7MQJyVJZvGKpSM2iGjeQFWhKtV1wqglP8oJ4yEF7/S+A/f+CkPCHQ6nQS5uDf616lIcv3O TwISZstYNjUxqRVOVIqfZ77PR6W0e77W/pXi7yei2gtTlqjK/bizqwryfbqH84LtnWih8ehfgnaL mE7KcF5yCE97XZ9NUnM= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	ns2.cdc.GOV is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1081 bytes) ;; HEADER SECTION ;; id = 23687 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 636105514 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210425125433 20210415115433 31419 healthindicators.gov. aHxiukBfGDcPW854CHLrpgI5W9sqlfyelwLDYPCvhcn3XVw1naMsLjgyEpe6OChBhAxxXt97724e XDpeZdTHcU0tf4K7X9UzU9/XieK7ne8Xr+eyGrxagk6hKwnhhiEsB/9QDeLnjZIkRmG7ePuL9vvf HANPauG2J7xXEtR2TWw= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. kYykpSzHgQwLk1unB4MXs0fSt1UQDpLtLxfOBnGzgJIleGTj6PSs2RNIIuCrQNtJkOK1HUE/m+vI nsT8oXUlyDDBBXCe+p0GxhU19sLrIzTsIw6XwL4mKuQ+jBnVz7LvlRmVOzJit7f/PPy3Xhq1ceJC XUdJfxlaFfqw74ZA15U= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. wxaqgfGISwCJlw9n6rImyf5VjAPhFxscBEiNE93YUBTfdOwi+6zBcON1jSNG3qqVoBI6BJTjXiTh AiePlmgWVlpQPfJ8xiNP6IYS4mYBRPsrkmQOWRvA2mXEUwT6Tad26nC2wRtGsYa6WVNw1tIjWPKs kZ7bZtFgOIjuZh0p0zo= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. uZeSLRVbtLtt9JwWWTa/EZ5iwXUYQ440wESJGIiNQZ7Cq24BXLsctIvqz4uLaZ4XDOL+GtEZ/y3n QIiUV6PV1oCZV98G2jot7ddRPSsPUaxLn/2fTYAZESOw/1AQ+ycGwpYjRxtmp7h6F8QSlvP8O9TC JExst42Lw3LLcb4h6zQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501083906 20210421082614 42473 cdc.gov. dqizEn7MQJyVJZvGKpSM2iGjeQFWhKtV1wqglP8oJ4yEF7/S+A/f+CkPCHQ6nQS5uDf616lIcv3O TwISZstYNjUxqRVOVIqfZ77PR6W0e77W/pXi7yei2gtTlqjK/bizqwryfbqH84LtnWih8ehfgnaL mE7KcF5yCE97XZ9NUnM= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1081 bytes) ;; HEADER SECTION ;; id = 10934 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 636105514 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210425125433 20210415115433 31419 healthindicators.gov. aHxiukBfGDcPW854CHLrpgI5W9sqlfyelwLDYPCvhcn3XVw1naMsLjgyEpe6OChBhAxxXt97724e XDpeZdTHcU0tf4K7X9UzU9/XieK7ne8Xr+eyGrxagk6hKwnhhiEsB/9QDeLnjZIkRmG7ePuL9vvf HANPauG2J7xXEtR2TWw= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. kYykpSzHgQwLk1unB4MXs0fSt1UQDpLtLxfOBnGzgJIleGTj6PSs2RNIIuCrQNtJkOK1HUE/m+vI nsT8oXUlyDDBBXCe+p0GxhU19sLrIzTsIw6XwL4mKuQ+jBnVz7LvlRmVOzJit7f/PPy3Xhq1ceJC XUdJfxlaFfqw74ZA15U= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. wxaqgfGISwCJlw9n6rImyf5VjAPhFxscBEiNE93YUBTfdOwi+6zBcON1jSNG3qqVoBI6BJTjXiTh AiePlmgWVlpQPfJ8xiNP6IYS4mYBRPsrkmQOWRvA2mXEUwT6Tad26nC2wRtGsYa6WVNw1tIjWPKs kZ7bZtFgOIjuZh0p0zo= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. uZeSLRVbtLtt9JwWWTa/EZ5iwXUYQ440wESJGIiNQZ7Cq24BXLsctIvqz4uLaZ4XDOL+GtEZ/y3n QIiUV6PV1oCZV98G2jot7ddRPSsPUaxLn/2fTYAZESOw/1AQ+ycGwpYjRxtmp7h6F8QSlvP8O9TC JExst42Lw3LLcb4h6zQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501083906 20210421082614 42473 cdc.gov. dqizEn7MQJyVJZvGKpSM2iGjeQFWhKtV1wqglP8oJ4yEF7/S+A/f+CkPCHQ6nQS5uDf616lIcv3O TwISZstYNjUxqRVOVIqfZ77PR6W0e77W/pXi7yei2gtTlqjK/bizqwryfbqH84LtnWih8ehfgnaL mE7KcF5yCE97XZ9NUnM= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns2.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1052 bytes) ;; HEADER SECTION ;; id = 4003 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. kYykpSzHgQwLk1unB4MXs0fSt1UQDpLtLxfOBnGzgJIleGTj6PSs2RNIIuCrQNtJkOK1HUE/m+vI nsT8oXUlyDDBBXCe+p0GxhU19sLrIzTsIw6XwL4mKuQ+jBnVz7LvlRmVOzJit7f/PPy3Xhq1ceJC XUdJfxlaFfqw74ZA15U= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. wxaqgfGISwCJlw9n6rImyf5VjAPhFxscBEiNE93YUBTfdOwi+6zBcON1jSNG3qqVoBI6BJTjXiTh AiePlmgWVlpQPfJ8xiNP6IYS4mYBRPsrkmQOWRvA2mXEUwT6Tad26nC2wRtGsYa6WVNw1tIjWPKs kZ7bZtFgOIjuZh0p0zo= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. uZeSLRVbtLtt9JwWWTa/EZ5iwXUYQ440wESJGIiNQZ7Cq24BXLsctIvqz4uLaZ4XDOL+GtEZ/y3n QIiUV6PV1oCZV98G2jot7ddRPSsPUaxLn/2fTYAZESOw/1AQ+ycGwpYjRxtmp7h6F8QSlvP8O9TC JExst42Lw3LLcb4h6zQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501083906 20210421082614 42473 cdc.gov. dqizEn7MQJyVJZvGKpSM2iGjeQFWhKtV1wqglP8oJ4yEF7/S+A/f+CkPCHQ6nQS5uDf616lIcv3O TwISZstYNjUxqRVOVIqfZ77PR6W0e77W/pXi7yei2gtTlqjK/bizqwryfbqH84LtnWih8ehfgnaL mE7KcF5yCE97XZ9NUnM= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= )`
	RRSIG=31419 and DNSKEY=31419 verifies the A RRset

HEALTHINDICATORS.GOV

	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1052 bytes) ;; HEADER SECTION ;; id = 53507 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. kYykpSzHgQwLk1unB4MXs0fSt1UQDpLtLxfOBnGzgJIleGTj6PSs2RNIIuCrQNtJkOK1HUE/m+vI nsT8oXUlyDDBBXCe+p0GxhU19sLrIzTsIw6XwL4mKuQ+jBnVz7LvlRmVOzJit7f/PPy3Xhq1ceJC XUdJfxlaFfqw74ZA15U= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. wxaqgfGISwCJlw9n6rImyf5VjAPhFxscBEiNE93YUBTfdOwi+6zBcON1jSNG3qqVoBI6BJTjXiTh AiePlmgWVlpQPfJ8xiNP6IYS4mYBRPsrkmQOWRvA2mXEUwT6Tad26nC2wRtGsYa6WVNw1tIjWPKs kZ7bZtFgOIjuZh0p0zo= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. uZeSLRVbtLtt9JwWWTa/EZ5iwXUYQ440wESJGIiNQZ7Cq24BXLsctIvqz4uLaZ4XDOL+GtEZ/y3n QIiUV6PV1oCZV98G2jot7ddRPSsPUaxLn/2fTYAZESOw/1AQ+ycGwpYjRxtmp7h6F8QSlvP8O9TC JExst42Lw3LLcb4h6zQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501083906 20210421082614 42473 cdc.gov. dqizEn7MQJyVJZvGKpSM2iGjeQFWhKtV1wqglP8oJ4yEF7/S+A/f+CkPCHQ6nQS5uDf616lIcv3O TwISZstYNjUxqRVOVIqfZ77PR6W0e77W/pXi7yei2gtTlqjK/bizqwryfbqH84LtnWih8ehfgnaL mE7KcF5yCE97XZ9NUnM= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	ns3.cdc.gov is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1052 bytes) ;; HEADER SECTION ;; id = 50483 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. kYykpSzHgQwLk1unB4MXs0fSt1UQDpLtLxfOBnGzgJIleGTj6PSs2RNIIuCrQNtJkOK1HUE/m+vI nsT8oXUlyDDBBXCe+p0GxhU19sLrIzTsIw6XwL4mKuQ+jBnVz7LvlRmVOzJit7f/PPy3Xhq1ceJC XUdJfxlaFfqw74ZA15U= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. wxaqgfGISwCJlw9n6rImyf5VjAPhFxscBEiNE93YUBTfdOwi+6zBcON1jSNG3qqVoBI6BJTjXiTh AiePlmgWVlpQPfJ8xiNP6IYS4mYBRPsrkmQOWRvA2mXEUwT6Tad26nC2wRtGsYa6WVNw1tIjWPKs kZ7bZtFgOIjuZh0p0zo= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. uZeSLRVbtLtt9JwWWTa/EZ5iwXUYQ440wESJGIiNQZ7Cq24BXLsctIvqz4uLaZ4XDOL+GtEZ/y3n QIiUV6PV1oCZV98G2jot7ddRPSsPUaxLn/2fTYAZESOw/1AQ+ycGwpYjRxtmp7h6F8QSlvP8O9TC JExst42Lw3LLcb4h6zQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501083906 20210421082614 42473 cdc.gov. dqizEn7MQJyVJZvGKpSM2iGjeQFWhKtV1wqglP8oJ4yEF7/S+A/f+CkPCHQ6nQS5uDf616lIcv3O TwISZstYNjUxqRVOVIqfZ77PR6W0e77W/pXi7yei2gtTlqjK/bizqwryfbqH84LtnWih8ehfgnaL mE7KcF5yCE97XZ9NUnM= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= )`
	RRSIG=31419 and DNSKEY=31419 verifies the A RRset

HEALTHINDICATORS.GOV

	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1052 bytes) ;; HEADER SECTION ;; id = 33638 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. kYykpSzHgQwLk1unB4MXs0fSt1UQDpLtLxfOBnGzgJIleGTj6PSs2RNIIuCrQNtJkOK1HUE/m+vI nsT8oXUlyDDBBXCe+p0GxhU19sLrIzTsIw6XwL4mKuQ+jBnVz7LvlRmVOzJit7f/PPy3Xhq1ceJC XUdJfxlaFfqw74ZA15U= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. wxaqgfGISwCJlw9n6rImyf5VjAPhFxscBEiNE93YUBTfdOwi+6zBcON1jSNG3qqVoBI6BJTjXiTh AiePlmgWVlpQPfJ8xiNP6IYS4mYBRPsrkmQOWRvA2mXEUwT6Tad26nC2wRtGsYa6WVNw1tIjWPKs kZ7bZtFgOIjuZh0p0zo= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. uZeSLRVbtLtt9JwWWTa/EZ5iwXUYQ440wESJGIiNQZ7Cq24BXLsctIvqz4uLaZ4XDOL+GtEZ/y3n QIiUV6PV1oCZV98G2jot7ddRPSsPUaxLn/2fTYAZESOw/1AQ+ycGwpYjRxtmp7h6F8QSlvP8O9TC JExst42Lw3LLcb4h6zQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501083906 20210421082614 42473 cdc.gov. dqizEn7MQJyVJZvGKpSM2iGjeQFWhKtV1wqglP8oJ4yEF7/S+A/f+CkPCHQ6nQS5uDf616lIcv3O TwISZstYNjUxqRVOVIqfZ77PR6W0e77W/pXi7yei2gtTlqjK/bizqwryfbqH84LtnWih8ehfgnaL mE7KcF5yCE97XZ9NUnM= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	ns1.cdc.gov is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1052 bytes) ;; HEADER SECTION ;; id = 23832 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20210425115412 20210415115202 31419 healthindicators.gov. kYykpSzHgQwLk1unB4MXs0fSt1UQDpLtLxfOBnGzgJIleGTj6PSs2RNIIuCrQNtJkOK1HUE/m+vI nsT8oXUlyDDBBXCe+p0GxhU19sLrIzTsIw6XwL4mKuQ+jBnVz7LvlRmVOzJit7f/PPy3Xhq1ceJC XUdJfxlaFfqw74ZA15U= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. wxaqgfGISwCJlw9n6rImyf5VjAPhFxscBEiNE93YUBTfdOwi+6zBcON1jSNG3qqVoBI6BJTjXiTh AiePlmgWVlpQPfJ8xiNP6IYS4mYBRPsrkmQOWRvA2mXEUwT6Tad26nC2wRtGsYa6WVNw1tIjWPKs kZ7bZtFgOIjuZh0p0zo= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501080440 20210421075246 42473 cdc.gov. uZeSLRVbtLtt9JwWWTa/EZ5iwXUYQ440wESJGIiNQZ7Cq24BXLsctIvqz4uLaZ4XDOL+GtEZ/y3n QIiUV6PV1oCZV98G2jot7ddRPSsPUaxLn/2fTYAZESOw/1AQ+ycGwpYjRxtmp7h6F8QSlvP8O9TC JExst42Lw3LLcb4h6zQ= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20210501083906 20210421082614 42473 cdc.gov. dqizEn7MQJyVJZvGKpSM2iGjeQFWhKtV1wqglP8oJ4yEF7/S+A/f+CkPCHQ6nQS5uDf616lIcv3O TwISZstYNjUxqRVOVIqfZ77PR6W0e77W/pXi7yei2gtTlqjK/bizqwryfbqH84LtnWih8ehfgnaL mE7KcF5yCE97XZ9NUnM= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20210425114508 20210415112425 31419 healthindicators.gov. cV13HmExdptsqgASoDIDQv/xeoAzSUSUUB99n8j5lSuwENp1FUYVtajwOplxjFtGMbNnFusw20tx v2NM6UDa50WavDbno3rz5TE/j+BVDX8k1dmiXZAg2cbrXvZmoSr31iK45NCJpX0iYqdtmCelFhN7 N/SPydPJvqtByWTaCc8= )`
	RRSIG=31419 and DNSKEY=31419 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test HEALTHINDICATORS.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: