DNSSEC Analyzer - HEALTHINDICATORS.GOV

Domain Name:

Time: 2022-08-16 04:14:46 UTC, NTP stratum 16

Analyzing DNSSEC problems for HEALTHINDICATORS.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to b.root-servers.net for ./DNSKEY
	Received 864 bytes from 199.9.14.201
	;; Response received from 199.9.14.201 (864 octets) ;; HEADER SECTION ;; id = 57586 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 256 3 8 AwEAAaQVKIqdmeLCaF4lq+IoKpejId9qqoIbZJ6cjB5MfyJYX3KVFXYyJ9rt4jKOwf4m2BoDOY66 V1upRumF+eu502HXzdOdJlioRLA9YiRyLgvfjzyfUYrExYT4/TDTS4XfQX2UcJDN5C7SQ9UxebZk /VjQfPAUU+hZKOcjOVRFbAHom4tIi+Rin0laGlAi8ZY5WUZypYKR0xvprtG0eXeOBMjbUt1EnhmO 2Bs52zC8B0cMjq6fMiYFUqtziALccsQczGngIDR0dIvvL54ky1JNNp19Ldy9ir27s7eRCYGbYI1W zR05/d4/nCmDSHkQS2BiesYufuWZZwm+FsitupCciwE= ) ; Key ID = 20826 . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20220831000000 20220810000000 20326 . FJNYHZUipwrjUsDOPlE6hwUza6fRp2vwI294cL6vn5P9B5V2NT4Uf/wWoJvJlUdKPYhLSu2mfTM+ 2ufpNU9sHB+0Z1YXBj2zK8qQlT9S/BW5v4trLo1sZzK8uvl0hXKOwBsoOiNWdvqqtfqBTpz+mzWO bVSoCnNSUyIJkDyydvbJ9W2zqP+EY448BC87+BOGn+rY0yYy9dp5NYbrAOTQDF0pudHp43LHYedc AfDtjwVREPVEWYkisVpJoT3EZbF31h1Gb/+P7v84UHi6Mykq5hgQ1fV0PIMczp53moxgJxfzr1Y8 TIQnMy3xxmDxIiLXbaeUtkyBU2iMA1JJfWExyg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAaQVKIqdmeLCaF4lq+IoKpejId9qqoIbZJ6cjB5MfyJYX3KVFXYyJ9rt4jKOwf4m2BoDOY66 V1upRumF+eu502HXzdOdJlioRLA9YiRyLgvfjzyfUYrExYT4/TDTS4XfQX2UcJDN5C7SQ9UxebZk /VjQfPAUU+hZKOcjOVRFbAHom4tIi+Rin0laGlAi8ZY5WUZypYKR0xvprtG0eXeOBMjbUt1EnhmO 2Bs52zC8B0cMjq6fMiYFUqtziALccsQczGngIDR0dIvvL54ky1JNNp19Ldy9ir27s7eRCYGbYI1W zR05/d4/nCmDSHkQS2BiesYufuWZZwm+FsitupCciwE= ) ; Key ID = 20826`
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20220831000000 20220810000000 20326 . FJNYHZUipwrjUsDOPlE6hwUza6fRp2vwI294cL6vn5P9B5V2NT4Uf/wWoJvJlUdKPYhLSu2mfTM+ 2ufpNU9sHB+0Z1YXBj2zK8qQlT9S/BW5v4trLo1sZzK8uvl0hXKOwBsoOiNWdvqqtfqBTpz+mzWO bVSoCnNSUyIJkDyydvbJ9W2zqP+EY448BC87+BOGn+rY0yYy9dp5NYbrAOTQDF0pudHp43LHYedc AfDtjwVREPVEWYkisVpJoT3EZbF31h1Gb/+P7v84UHi6Mykq5hgQ1fV0PIMczp53moxgJxfzr1Y8 TIQnMy3xxmDxIiLXbaeUtkyBU2iMA1JJfWExyg== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=20826 is now in the chain-of-trust
	Query to f.root-servers.net for HEALTHINDICATORS.GOV/A
	Received 639 bytes from 192.5.5.241
	;; Response received from 192.5.5.241 (639 octets) ;; HEADER SECTION ;; id = 63834 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20220828170000 20220815160000 20826 . jOWpAgmoMQaEDIy501972EmC6Y2o50emV1u0OGOfSoqMcLg1emE+wJNSI0p8+tWUjAcYKUPX/hZf 8zLCjMieK0bCR3gAwph8KYGEcPkriaM7+jTH8/xlqd7mV5WaYzr/EnCBuOl+jQNE31Ul7fnEZm6l WJjnMRotz/CJqwUFJnF8SBmaWYrC15zp0VppqtUK3hja/zjG+0sZwKLNwFMHf01zuXYbJCqATE+K AeqpGWbPBHs8gHOHKYumuxTDaVhf8yI+PKiPDJ+dZv6XdT+2ZfO8+YxWwH4iJthcFqM7+OsLXOeP fUQnl0JFK6FRlxPRUHVNr5gKVvAJkXme44bwDw== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN A 209.112.123.30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN A 69.36.153.30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN A 81.19.194.30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Query to h.root-servers.net for GOV/DNSKEY
	Received 622 bytes from 198.97.190.53
	;; Response received from 198.97.190.53 (622 octets) ;; HEADER SECTION ;; id = 33329 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20220828170000 20220815160000 20826 . jOWpAgmoMQaEDIy501972EmC6Y2o50emV1u0OGOfSoqMcLg1emE+wJNSI0p8+tWUjAcYKUPX/hZf 8zLCjMieK0bCR3gAwph8KYGEcPkriaM7+jTH8/xlqd7mV5WaYzr/EnCBuOl+jQNE31Ul7fnEZm6l WJjnMRotz/CJqwUFJnF8SBmaWYrC15zp0VppqtUK3hja/zjG+0sZwKLNwFMHf01zuXYbJCqATE+K AeqpGWbPBHs8gHOHKYumuxTDaVhf8yI+PKiPDJ+dZv6XdT+2ZfO8+YxWwH4iJthcFqM7+OsLXOeP fUQnl0JFK6FRlxPRUHVNr5gKVvAJkXme44bwDw== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to c.root-servers.net for GOV/DS
	Received 370 bytes from 192.33.4.12
	;; Response received from 192.33.4.12 (370 octets) ;; HEADER SECTION ;; id = 13848 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (2 records) gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20220828170000 20220815160000 20826 . jOWpAgmoMQaEDIy501972EmC6Y2o50emV1u0OGOfSoqMcLg1emE+wJNSI0p8+tWUjAcYKUPX/hZf 8zLCjMieK0bCR3gAwph8KYGEcPkriaM7+jTH8/xlqd7mV5WaYzr/EnCBuOl+jQNE31Ul7fnEZm6l WJjnMRotz/CJqwUFJnF8SBmaWYrC15zp0VppqtUK3hja/zjG+0sZwKLNwFMHf01zuXYbJCqATE+K AeqpGWbPBHs8gHOHKYumuxTDaVhf8yI+PKiPDJ+dZv6XdT+2ZfO8+YxWwH4iJthcFqM7+OsLXOeP fUQnl0JFK6FRlxPRUHVNr5gKVvAJkXme44bwDw== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Found 1 DS records for GOV in the . zone
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`gov. 86400 IN RRSIG ( DS 8 1 86400 20220828170000 20220815160000 20826 . jOWpAgmoMQaEDIy501972EmC6Y2o50emV1u0OGOfSoqMcLg1emE+wJNSI0p8+tWUjAcYKUPX/hZf 8zLCjMieK0bCR3gAwph8KYGEcPkriaM7+jTH8/xlqd7mV5WaYzr/EnCBuOl+jQNE31Ul7fnEZm6l WJjnMRotz/CJqwUFJnF8SBmaWYrC15zp0VppqtUK3hja/zjG+0sZwKLNwFMHf01zuXYbJCqATE+K AeqpGWbPBHs8gHOHKYumuxTDaVhf8yI+PKiPDJ+dZv6XdT+2ZfO8+YxWwH4iJthcFqM7+OsLXOeP fUQnl0JFK6FRlxPRUHVNr5gKVvAJkXme44bwDw== )`
	RRSIG=20826 and DNSKEY=20826 verifies the DS RRset
	DS=7698/SHA-256 is now in the chain-of-trust
	`gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to d.gov-servers.net for GOV/DNSKEY
	Received 777 bytes from 81.19.194.30
	;; Response received from 81.19.194.30 (777 octets) ;; HEADER SECTION ;; id = 51402 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAbSW4ocEzPbMwUkqAURZNNLAAZ9XoKgSLoPQVtMdnKBkrDoIwWxYO0nk3n/seSHxNb4I+Shq HeLM0bydpkqpMPCesMKazwq2YfQD0t0NdN4kiApakMBOO6foEa9UKHg8YbF5ZeZ2oZzIyFVlDhZB qtVeCM7SIEfxp8VR4/TWRHaoqoOnScTAoVZA9+YknqERZeQoUecTd1xXBHV0dQawxlc= ) ; Key ID = 261 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20220822190254 20220807185754 7698 gov. dBSpBgHX0L/G2I5MJ/wkADBF0OthUgrMtPrydX0kqzyxQ9q6NGouP9nsmeBDOGrwE8zw7tL4i8fT SOopdT5cwON+mCIXEufGG3NzJq3NRDUkFe5WV3gY5YKqK6LdBcHiiRp3pUuG7KweBRaz5OoWcu9c SyZ24XyNzRfw5i0QGzAvnHXd8YDn+1pFHGbtT596srFiwAizD9ulBk8n2onBC7ITfykoxu4fEO6H 6Onjeuh0wmJx+w0kfGvuShL7+P+o88iXilvEMAxeOxTq0zWgskqQLLRpd/k/fVJUk+CelsaWz2V6 0ySOAHlvSa9XwlINoCMtuBhR3dwglLxnixqudw== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAbSW4ocEzPbMwUkqAURZNNLAAZ9XoKgSLoPQVtMdnKBkrDoIwWxYO0nk3n/seSHxNb4I+Shq HeLM0bydpkqpMPCesMKazwq2YfQD0t0NdN4kiApakMBOO6foEa9UKHg8YbF5ZeZ2oZzIyFVlDhZB qtVeCM7SIEfxp8VR4/TWRHaoqoOnScTAoVZA9+YknqERZeQoUecTd1xXBHV0dQawxlc= ) ; Key ID = 261`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20220822190254 20220807185754 7698 gov. dBSpBgHX0L/G2I5MJ/wkADBF0OthUgrMtPrydX0kqzyxQ9q6NGouP9nsmeBDOGrwE8zw7tL4i8fT SOopdT5cwON+mCIXEufGG3NzJq3NRDUkFe5WV3gY5YKqK6LdBcHiiRp3pUuG7KweBRaz5OoWcu9c SyZ24XyNzRfw5i0QGzAvnHXd8YDn+1pFHGbtT596srFiwAizD9ulBk8n2onBC7ITfykoxu4fEO6H 6Onjeuh0wmJx+w0kfGvuShL7+P+o88iXilvEMAxeOxTq0zWgskqQLLRpd/k/fVJUk+CelsaWz2V6 0ySOAHlvSa9XwlINoCMtuBhR3dwglLxnixqudw== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=261 is now in the chain-of-trust
	Query to b.gov-servers.net for HEALTHINDICATORS.GOV/A
	Received 434 bytes from 209.112.123.30
	;; Response received from 209.112.123.30 (434 octets) ;; HEADER SECTION ;; id = 61199 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 21553 7 1 5fd06d89cff1f4a36dccc34b726adee23192c0a9 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 21553 7 2 7e4c2022cfe059751664d7728eb195ca94154d3217f484daf04d51ebb6b76726 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20220822134046 20220815134046 261 gov. K/x3AHkMzQzMuSuM+fGtBUA/0CfWCmP2UcXHbmjWE6wTuQnQTYWbeSKxNJKeKwwBj+bv5gvAIvh0 CRymKWfgocVhAZNhiVDSHNWwHTo9BvzL/2cABgCKR6ctKMoQQE0aR39LOfjH/5zY5Ho/IADseVZo y/g4mPsnIcfCMjobPNYoN5fa26Rypce2mimPcfgqrcjXackW4UrIzG1ryBzwBQ== ) ;; ADDITIONAL SECTION (4 records) ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to c.gov-servers.net for HEALTHINDICATORS.GOV/DNSKEY
	Received 434 bytes from 69.36.153.30
	;; Response received from 69.36.153.30 (434 octets) ;; HEADER SECTION ;; id = 18393 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 21553 7 1 5fd06d89cff1f4a36dccc34b726adee23192c0a9 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 21553 7 2 7e4c2022cfe059751664d7728eb195ca94154d3217f484daf04d51ebb6b76726 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20220822134046 20220815134046 261 gov. K/x3AHkMzQzMuSuM+fGtBUA/0CfWCmP2UcXHbmjWE6wTuQnQTYWbeSKxNJKeKwwBj+bv5gvAIvh0 CRymKWfgocVhAZNhiVDSHNWwHTo9BvzL/2cABgCKR6ctKMoQQE0aR39LOfjH/5zY5Ho/IADseVZo y/g4mPsnIcfCMjobPNYoN5fa26Rypce2mimPcfgqrcjXackW4UrIzG1ryBzwBQ== ) ;; ADDITIONAL SECTION (4 records) ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone HEALTHINDICATORS.GOV

HEALTHINDICATORS.GOV

	Checking DS between GOV and HEALTHINDICATORS.GOV
	Query to b.gov-servers.net for HEALTHINDICATORS.GOV/DS
	Received 328 bytes from 209.112.123.30
	;; Response received from 209.112.123.30 (328 octets) ;; HEADER SECTION ;; id = 33671 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DS ;; ANSWER SECTION (3 records) HEALTHINDICATORS.GOV. 3600 IN DS ( 21553 7 1 5fd06d89cff1f4a36dccc34b726adee23192c0a9 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 21553 7 2 7e4c2022cfe059751664d7728eb195ca94154d3217f484daf04d51ebb6b76726 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20220822134046 20220815134046 261 gov. K/x3AHkMzQzMuSuM+fGtBUA/0CfWCmP2UcXHbmjWE6wTuQnQTYWbeSKxNJKeKwwBj+bv5gvAIvh0 CRymKWfgocVhAZNhiVDSHNWwHTo9BvzL/2cABgCKR6ctKMoQQE0aR39LOfjH/5zY5Ho/IADseVZo y/g4mPsnIcfCMjobPNYoN5fa26Rypce2mimPcfgqrcjXackW4UrIzG1ryBzwBQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for HEALTHINDICATORS.GOV in the GOV zone
	DS=21553/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=21553/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20220822134046 20220815134046 261 gov. K/x3AHkMzQzMuSuM+fGtBUA/0CfWCmP2UcXHbmjWE6wTuQnQTYWbeSKxNJKeKwwBj+bv5gvAIvh0 CRymKWfgocVhAZNhiVDSHNWwHTo9BvzL/2cABgCKR6ctKMoQQE0aR39LOfjH/5zY5Ho/IADseVZo y/g4mPsnIcfCMjobPNYoN5fa26Rypce2mimPcfgqrcjXackW4UrIzG1ryBzwBQ== )`
	RRSIG=261 and DNSKEY=261 verifies the DS RRset
	DS=21553/SHA-1 is now in the chain-of-trust
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 21553 7 1 5fd06d89cff1f4a36dccc34b726adee23192c0a9 )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 21553 7 2 7e4c2022cfe059751664d7728eb195ca94154d3217f484daf04d51ebb6b76726 )`
	Query to ns2.cdc.GOV for HEALTHINDICATORS.GOV/DNSKEY
	Received 981 bytes from 198.246.96.92
	;; Response received from 198.246.96.92 (981 octets) ;; HEADER SECTION ;; id = 55761 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 4 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (4 records) healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAZ+913U99/bwIe50kjvLoW6i6EKpl+DyJeamDBvhqCzJK0eMWw+g7AddAMn72oW+HaARYHEq N/Q+k219gfo0uyEPpYU3ds99XxKP2cjgBrehnrF8YpX7H6WM5TzP6Bot2CpRtUWisoesPTrj0cRs nHJ63BgKri1+Nh4lJZIPd/SJ ) ; Key ID = 16418 healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAazAwEK223AWivth2bNC+Gr3QvSz7TTQQsOSshiAFrIaTZBRBBoOqBV2qU86PzgmttE1yADL WCFxUYa7Y0CW/VZvs9QpIO3W6M5YP3PL4WZsKwXqkaQHzsTkqGh+uTQytqh2EB/J0FC9VBvyOz9y MPKxbmmO7baGwcsti+WivzLiDZWfypIBZcJLZyZbxmTZacI6gEHN7yZJsNiJ4tWmjJpCD8sGx/DJ e/bIrbjxgoWSJnJT+dbp3fP92v1vUCC8lBRFQBvrkuNeFeRRr1LFmwVrdTm12SwcV9rmcq2ngL0p uHnqUhsD8tjYnEFa4Eej1DdM0NLuuS3Sd4S/OEiguoc= ) ; Key ID = 21553 healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. QeDOr21Sp9kFVE7qv3cHete+zD+UxJ8J8DPbhdozlpalRY9A258K7g/ZlOHb4Ko0vAhUnZy0tXYG XrQYAWI0LmdZ+qKEphgjFDuUAomGFo3iPZF69ip74dU90CagbiFyEkyqGHVKIqBqcUVo901MeoH3 7qPpgCh6yNJO+Gbfw3I= ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20220818175650 20220808175150 21553 healthindicators.gov. Xs9VisPOJOHhaW8k7I3WuWG7VmySQ+ab1ZNHJmnvxNVdIbN63harpJBwEFF8EritajMamf+bIGy6 Kko5Thblpy4QskcaYTnsJwigb5Mx7DKOgUrljHOHNqNFXmU8cGa340Wc4S6nQSfCn4WY6TSAZdoA W30TxeRTkwKmTDqsJo6NEBGUJvPe+x0FMjtZFPs4gEFVMYgHtDA0yX6NJP5IO/yjSgyOxycUCIKY Ea6PrOTtWfnxhsVDwAHk6yPMjqE3vfOdTKmM4bhNiNV9CIqfz5VLLoHgGIkBSfJ+IWPRsRM8wg8Y 4/m4ZgNjONpioH0jwvt5Tpeo8UbuFfzgSmEhYg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Found 2 DNSKEY records for HEALTHINDICATORS.GOV
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAZ+913U99/bwIe50kjvLoW6i6EKpl+DyJeamDBvhqCzJK0eMWw+g7AddAMn72oW+HaARYHEq N/Q+k219gfo0uyEPpYU3ds99XxKP2cjgBrehnrF8YpX7H6WM5TzP6Bot2CpRtUWisoesPTrj0cRs nHJ63BgKri1+Nh4lJZIPd/SJ ) ; Key ID = 16418`
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAazAwEK223AWivth2bNC+Gr3QvSz7TTQQsOSshiAFrIaTZBRBBoOqBV2qU86PzgmttE1yADL WCFxUYa7Y0CW/VZvs9QpIO3W6M5YP3PL4WZsKwXqkaQHzsTkqGh+uTQytqh2EB/J0FC9VBvyOz9y MPKxbmmO7baGwcsti+WivzLiDZWfypIBZcJLZyZbxmTZacI6gEHN7yZJsNiJ4tWmjJpCD8sGx/DJ e/bIrbjxgoWSJnJT+dbp3fP92v1vUCC8lBRFQBvrkuNeFeRRr1LFmwVrdTm12SwcV9rmcq2ngL0p uHnqUhsD8tjYnEFa4Eej1DdM0NLuuS3Sd4S/OEiguoc= ) ; Key ID = 21553`
	DNSKEY=21553/SEP is now in the chain-of-trust
	DS=21553/SHA-1 verifies DNSKEY=21553/SEP
	DS=21553/SHA-256 verifies DNSKEY=21553/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. QeDOr21Sp9kFVE7qv3cHete+zD+UxJ8J8DPbhdozlpalRY9A258K7g/ZlOHb4Ko0vAhUnZy0tXYG XrQYAWI0LmdZ+qKEphgjFDuUAomGFo3iPZF69ip74dU90CagbiFyEkyqGHVKIqBqcUVo901MeoH3 7qPpgCh6yNJO+Gbfw3I= )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20220818175650 20220808175150 21553 healthindicators.gov. Xs9VisPOJOHhaW8k7I3WuWG7VmySQ+ab1ZNHJmnvxNVdIbN63harpJBwEFF8EritajMamf+bIGy6 Kko5Thblpy4QskcaYTnsJwigb5Mx7DKOgUrljHOHNqNFXmU8cGa340Wc4S6nQSfCn4WY6TSAZdoA W30TxeRTkwKmTDqsJo6NEBGUJvPe+x0FMjtZFPs4gEFVMYgHtDA0yX6NJP5IO/yjSgyOxycUCIKY Ea6PrOTtWfnxhsVDwAHk6yPMjqE3vfOdTKmM4bhNiNV9CIqfz5VLLoHgGIkBSfJ+IWPRsRM8wg8Y 4/m4ZgNjONpioH0jwvt5Tpeo8UbuFfzgSmEhYg== )`
	RRSIG=16418 and DNSKEY=16418 verifies the DNSKEY RRset
	RRSIG=21553 and DNSKEY=21553/SEP verifies the DNSKEY RRset
	DNSKEY=16418 is now in the chain-of-trust
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 506 bytes from 198.246.96.61
	;; Response received from 198.246.96.61 (506 octets) ;; HEADER SECTION ;; id = 60679 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Yonr5lORFGw4gOhIrlF1lXAiEUsvJPlGkihmxO20SONPBbEfii4tcveeuWe7AGxS84o+FWB2Iv8X gfHMRRUlcyAFP19jwR9XyhQcWuCjgpfc+Ahn4AAJlyT9XFufAuOny+gEEU8beokycPIiYSvm/6bs XMek1MjHbm6rPT7pBkg= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	ns1.cdc.GOV is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 535 bytes from 198.246.96.92
	;; Response received from 198.246.96.92 (535 octets) ;; HEADER SECTION ;; id = 15375 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 678977813 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20220825174808 20220815164808 16418 healthindicators.gov. HXP5A7VN1tjtUIuLp658OnHcjt0zn2vEKLdlDy5QduGbGpNDzZDjxs4J7qqcKBY0Teny8zHZZ5KZ V57D7bLKuqQdtURXlMOQ7pVvrMmPlcoQJvWeXrXrJQtc1002EGCa/mMIHgm7lREwA9mRHQqkCZ4P cLMGGGgwm6/E+G8jNcg= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Yonr5lORFGw4gOhIrlF1lXAiEUsvJPlGkihmxO20SONPBbEfii4tcveeuWe7AGxS84o+FWB2Iv8X gfHMRRUlcyAFP19jwR9XyhQcWuCjgpfc+Ahn4AAJlyT9XFufAuOny+gEEU8beokycPIiYSvm/6bs XMek1MjHbm6rPT7pBkg= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 535 bytes from 198.246.125.10
	;; Response received from 198.246.125.10 (535 octets) ;; HEADER SECTION ;; id = 48843 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 678977813 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20220825174808 20220815164808 16418 healthindicators.gov. HXP5A7VN1tjtUIuLp658OnHcjt0zn2vEKLdlDy5QduGbGpNDzZDjxs4J7qqcKBY0Teny8zHZZ5KZ V57D7bLKuqQdtURXlMOQ7pVvrMmPlcoQJvWeXrXrJQtc1002EGCa/mMIHgm7lREwA9mRHQqkCZ4P cLMGGGgwm6/E+G8jNcg= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Yonr5lORFGw4gOhIrlF1lXAiEUsvJPlGkihmxO20SONPBbEfii4tcveeuWe7AGxS84o+FWB2Iv8X gfHMRRUlcyAFP19jwR9XyhQcWuCjgpfc+Ahn4AAJlyT9XFufAuOny+gEEU8beokycPIiYSvm/6bs XMek1MjHbm6rPT7pBkg= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 506 bytes from 198.246.96.61
	;; Response received from 198.246.96.61 (506 octets) ;; HEADER SECTION ;; id = 5970 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Yonr5lORFGw4gOhIrlF1lXAiEUsvJPlGkihmxO20SONPBbEfii4tcveeuWe7AGxS84o+FWB2Iv8X gfHMRRUlcyAFP19jwR9XyhQcWuCjgpfc+Ahn4AAJlyT9XFufAuOny+gEEU8beokycPIiYSvm/6bs XMek1MjHbm6rPT7pBkg= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= )`
	RRSIG=16418 and DNSKEY=16418 verifies the A RRset

HEALTHINDICATORS.GOV

	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/A
	Received 506 bytes from 198.246.125.10
	;; Response received from 198.246.125.10 (506 octets) ;; HEADER SECTION ;; id = 2509 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Yonr5lORFGw4gOhIrlF1lXAiEUsvJPlGkihmxO20SONPBbEfii4tcveeuWe7AGxS84o+FWB2Iv8X gfHMRRUlcyAFP19jwR9XyhQcWuCjgpfc+Ahn4AAJlyT9XFufAuOny+gEEU8beokycPIiYSvm/6bs XMek1MjHbm6rPT7pBkg= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	ns3.cdc.gov is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/A
	Received 506 bytes from 198.246.125.10
	;; Response received from 198.246.125.10 (506 octets) ;; HEADER SECTION ;; id = 64620 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Yonr5lORFGw4gOhIrlF1lXAiEUsvJPlGkihmxO20SONPBbEfii4tcveeuWe7AGxS84o+FWB2Iv8X gfHMRRUlcyAFP19jwR9XyhQcWuCjgpfc+Ahn4AAJlyT9XFufAuOny+gEEU8beokycPIiYSvm/6bs XMek1MjHbm6rPT7pBkg= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= )`
	RRSIG=16418 and DNSKEY=16418 verifies the A RRset

HEALTHINDICATORS.GOV

	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/A
	Received 506 bytes from 198.246.96.92
	;; Response received from 198.246.96.92 (506 octets) ;; HEADER SECTION ;; id = 42340 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Yonr5lORFGw4gOhIrlF1lXAiEUsvJPlGkihmxO20SONPBbEfii4tcveeuWe7AGxS84o+FWB2Iv8X gfHMRRUlcyAFP19jwR9XyhQcWuCjgpfc+Ahn4AAJlyT9XFufAuOny+gEEU8beokycPIiYSvm/6bs XMek1MjHbm6rPT7pBkg= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	ns2.cdc.gov is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/A
	Received 506 bytes from 198.246.96.92
	;; Response received from 198.246.96.92 (506 octets) ;; HEADER SECTION ;; id = 27097 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Yonr5lORFGw4gOhIrlF1lXAiEUsvJPlGkihmxO20SONPBbEfii4tcveeuWe7AGxS84o+FWB2Iv8X gfHMRRUlcyAFP19jwR9XyhQcWuCjgpfc+Ahn4AAJlyT9XFufAuOny+gEEU8beokycPIiYSvm/6bs XMek1MjHbm6rPT7pBkg= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20220818175650 20220808175150 16418 healthindicators.gov. Ipd7tDXQxPCsluISwKQ4/R+PdfNdjOPabamcUEjc5mwyw6VzWaWcrX0FhXWFOgzyZGxuVJSW/bND zUydgC6Cku8LFljqr0/FPLozL/yDlpnMlr46mnNkZVgSbW+uzh1uz5xK+7uzyIMO0JtclLW8XI2j lpPE7JYJTcKFRRwlzRA= )`
	RRSIG=16418 and DNSKEY=16418 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test HEALTHINDICATORS.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: