DNSSEC Analyzer - HEALTHINDICATORS.GOV

Back to Verisign Labs Tools

Domain Name:

Detail: more(+) / less(-)

Time: 2019-04-22 06:42:37 UTC, NTP stratum 4

Analyzing DNSSEC problems for HEALTHINDICATORS.GOV

DS=19036/SHA-256 is now in the chain-of-trust

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 19036 8 2 49aac11d7b6f6446702e54a1607371607a1a41855200fd2ce1cdde32f24e8fb5 )`
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to i.root-servers.net for ./DNSKEY
	Error querying i.root-servers.net/2001:7fe:0:0:0:0:0:53 for ./DNSKEY: 'IPv6 transport disabled'
	Received 864 bytes from 192.36.148.17
	;; Answer received from 192.36.148.17 (864 bytes) ;; HEADER SECTION ;; id = 11585 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN DNSKEY ( 256 3 8 AwEAAeVDC34GZILwsQJy97K2Fst4P3XYZrXLyrkausYzSqEjSUulgh+iLgHg0y7FIF890+sIjXsk 7KLJUmCOWfYWPorNKEOKLk5Zx/4M6D3IHZE3O3m/Eahrc28qQzmTLxiMZAW65MvR2UO3LxVtYOPB EBiDgAQD47x2JLsJYtavCzNL5WiUk59OgvHmDqmcC7VXYBhK8V8Tic089XJgExGeplKWUt9yyc31 ra1swJX51XsOaQz17+vyLVH8AZP26KvKFiZeoRbaq6vl+hc8HQnI2ug5rA2zoz3MsSQBvP1f/Hvq sWxLqwXXKyDD1QM639U+XzVB8CYigyscRP22QCnwKIU= ) ; Key ID = 25266 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20190512000000 20190421000000 20326 . ljHKB9UaikaYC1wHzZyFwwibNFjGuwnI3DtVLsnRUwqmq2Er3uaMUYA63Odz4yO1f46zPAOcciVt Xol5oOyci84eGFb/7x6iZpcpIqFP7kWoNTRlQWgJ2V3KHYLr6w3TYiV/eWY7Ziu9HFPV6SLAt6g9 RWgaNwlLUw+fHdmhiAteoXjEBfqNC1je5FtAdPaOB3/aYbUayL4miAo3tsBt8vDzFPOvYVkMHbo4 75Bg1roJfSqxlfKEamGWMwtfnSjmw8htrvi51TBgUOsBBsSGgYWY5/5THwyc8oQDZfi72DiOF2Gr UGjr9yvQIYMuukNAOG8tvAn9PjHlY6pg4XkGUA== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAeVDC34GZILwsQJy97K2Fst4P3XYZrXLyrkausYzSqEjSUulgh+iLgHg0y7FIF890+sIjXsk 7KLJUmCOWfYWPorNKEOKLk5Zx/4M6D3IHZE3O3m/Eahrc28qQzmTLxiMZAW65MvR2UO3LxVtYOPB EBiDgAQD47x2JLsJYtavCzNL5WiUk59OgvHmDqmcC7VXYBhK8V8Tic089XJgExGeplKWUt9yyc31 ra1swJX51XsOaQz17+vyLVH8AZP26KvKFiZeoRbaq6vl+hc8HQnI2ug5rA2zoz3MsSQBvP1f/Hvq sWxLqwXXKyDD1QM639U+XzVB8CYigyscRP22QCnwKIU= ) ; Key ID = 25266`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	DS=19036/SHA-256 is published, but a corresponding DNSKEY is not
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20190512000000 20190421000000 20326 . ljHKB9UaikaYC1wHzZyFwwibNFjGuwnI3DtVLsnRUwqmq2Er3uaMUYA63Odz4yO1f46zPAOcciVt Xol5oOyci84eGFb/7x6iZpcpIqFP7kWoNTRlQWgJ2V3KHYLr6w3TYiV/eWY7Ziu9HFPV6SLAt6g9 RWgaNwlLUw+fHdmhiAteoXjEBfqNC1je5FtAdPaOB3/aYbUayL4miAo3tsBt8vDzFPOvYVkMHbo4 75Bg1roJfSqxlfKEamGWMwtfnSjmw8htrvi51TBgUOsBBsSGgYWY5/5THwyc8oQDZfi72DiOF2Gr UGjr9yvQIYMuukNAOG8tvAn9PjHlY6pg4XkGUA== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=25266 is now in the chain-of-trust
	Query to m.root-servers.net for HEALTHINDICATORS.GOV/A
	Received 678 bytes from 202.12.27.33
	;; Answer received from 202.12.27.33 (678 bytes) ;; HEADER SECTION ;; id = 10269 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) gov. 172800 IN NS d.gov-servers.net. gov. 172800 IN NS c.gov-servers.net. gov. 172800 IN NS a.gov-servers.net. gov. 172800 IN NS b.gov-servers.net. gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20190505050000 20190422040000 25266 . X3KdSnlGqitlfWWDeDtZGCCJU0hOCY9p+q8XLEuy1n1gTtXCZBA1cL9QfeHbTYCqYFnOS5qmTijk Xq5lM77Ru4oYKhByB0kYS+lk+Yptxi4DrNJ5ZkPe2odp2Ct8qMf1b829Vcg59Iat9yimCOoJrnZV ZcIdVc+tSjHLW32TutaMvxPZnHsQtQ7RKzudVdlvw7urNjbN06/NPVLRg7vjfYeK3usGUhgVueXK Q0SohnZTiUVjXhIe3we17+wD21HaZEJiaF6h3zwlm73Mikqj2XUGDAqUxwXKEsSv0FNPV3d+XAvU 2nWx2Osnya9axFx3LOfuUYe0TFRu/YGRuk0SlQ== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to b.root-servers.net for GOV/DNSKEY
	Error querying b.root-servers.net/2001:500:200:0:0:0:0:b for GOV/DNSKEY: 'IPv6 transport disabled'
	Received 661 bytes from 199.9.14.201
	;; Answer received from 199.9.14.201 (661 bytes) ;; HEADER SECTION ;; id = 55488 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) gov. 172800 IN NS b.gov-servers.net. gov. 172800 IN NS d.gov-servers.net. gov. 172800 IN NS c.gov-servers.net. gov. 172800 IN NS a.gov-servers.net. gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN RRSIG ( DS 8 1 86400 20190505050000 20190422040000 25266 . X3KdSnlGqitlfWWDeDtZGCCJU0hOCY9p+q8XLEuy1n1gTtXCZBA1cL9QfeHbTYCqYFnOS5qmTijk Xq5lM77Ru4oYKhByB0kYS+lk+Yptxi4DrNJ5ZkPe2odp2Ct8qMf1b829Vcg59Iat9yimCOoJrnZV ZcIdVc+tSjHLW32TutaMvxPZnHsQtQ7RKzudVdlvw7urNjbN06/NPVLRg7vjfYeK3usGUhgVueXK Q0SohnZTiUVjXhIe3we17+wD21HaZEJiaF6h3zwlm73Mikqj2XUGDAqUxwXKEsSv0FNPV3d+XAvU 2nWx2Osnya9axFx3LOfuUYe0TFRu/YGRuk0SlQ== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to m.root-servers.net for GOV/DS
	Error querying m.root-servers.net/2001:dc3:0:0:0:0:0:35 for GOV/DS: 'IPv6 transport disabled'
	Received 406 bytes from 202.12.27.33
	;; Answer received from 202.12.27.33 (406 bytes) ;; HEADER SECTION ;; id = 43958 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN RRSIG ( DS 8 1 86400 20190505050000 20190422040000 25266 . X3KdSnlGqitlfWWDeDtZGCCJU0hOCY9p+q8XLEuy1n1gTtXCZBA1cL9QfeHbTYCqYFnOS5qmTijk Xq5lM77Ru4oYKhByB0kYS+lk+Yptxi4DrNJ5ZkPe2odp2Ct8qMf1b829Vcg59Iat9yimCOoJrnZV ZcIdVc+tSjHLW32TutaMvxPZnHsQtQ7RKzudVdlvw7urNjbN06/NPVLRg7vjfYeK3usGUhgVueXK Q0SohnZTiUVjXhIe3we17+wD21HaZEJiaF6h3zwlm73Mikqj2XUGDAqUxwXKEsSv0FNPV3d+XAvU 2nWx2Osnya9axFx3LOfuUYe0TFRu/YGRuk0SlQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-256 has algorithm RSASHA256
	DS=7698/SHA-1 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`gov. 86400 IN RRSIG ( DS 8 1 86400 20190505050000 20190422040000 25266 . X3KdSnlGqitlfWWDeDtZGCCJU0hOCY9p+q8XLEuy1n1gTtXCZBA1cL9QfeHbTYCqYFnOS5qmTijk Xq5lM77Ru4oYKhByB0kYS+lk+Yptxi4DrNJ5ZkPe2odp2Ct8qMf1b829Vcg59Iat9yimCOoJrnZV ZcIdVc+tSjHLW32TutaMvxPZnHsQtQ7RKzudVdlvw7urNjbN06/NPVLRg7vjfYeK3usGUhgVueXK Q0SohnZTiUVjXhIe3we17+wD21HaZEJiaF6h3zwlm73Mikqj2XUGDAqUxwXKEsSv0FNPV3d+XAvU 2nWx2Osnya9axFx3LOfuUYe0TFRu/YGRuk0SlQ== )`
	RRSIG=25266 and DNSKEY=25266 verifies the DS RRset
	DS=7698/SHA-256 is now in the chain-of-trust
	`gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	`gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	Query to b.gov-servers.net for GOV/DNSKEY
	Received 743 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (743 bytes) ;; HEADER SECTION ;; id = 57915 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AQPO0gfZTyKZiRSwF/XvW9ta+joX/SlCfvNcTsNT4t5edmGhhiRNf45246Z4L6Cx3n93FPHtW91n F+M1gCPyxewRyAM0/UVrqBwutdPQnR8vsQ/WzdsAk50loby/jGN7UAStU/FzllD2qIq4uJ8HcLZW Qth9JV8vKuqVYXgPfhx5lw== ) ; Key ID = 43583 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20190502214731 20190417214231 7698 gov. GjRUnOLfnBAtIlt6hLcfcO1H6NuS90vNTDPZ+AQznOz3HueEqBORAmtN1Yr1z0Bnu7LHCEUVijJN SAfPRqPhwhnwBUWDHBahKuDspOKEJtNHzO5Wag4dk5n9szFVyIf6oWOPc5B0NLZc/9phCu4it24X FOynCwl+G5Fo1bFQaMfoh1CSDwZeq90LFwjLUOOKMMcwHdTVL7DIreDuGsqkFS4ZX5MoqztrUkmj TN9nF9soq7kSUiyPtbGy0c+FgMc8iEE5weI0bYXC2J8msnsFQijTQTPiwZGSIVZD5l74b2uK1SVq rHZULW5BRRnVaAGCEVLU8gTPZS0GRBNWNQcbWQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AQPO0gfZTyKZiRSwF/XvW9ta+joX/SlCfvNcTsNT4t5edmGhhiRNf45246Z4L6Cx3n93FPHtW91n F+M1gCPyxewRyAM0/UVrqBwutdPQnR8vsQ/WzdsAk50loby/jGN7UAStU/FzllD2qIq4uJ8HcLZW Qth9JV8vKuqVYXgPfhx5lw== ) ; Key ID = 43583`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20190502214731 20190417214231 7698 gov. GjRUnOLfnBAtIlt6hLcfcO1H6NuS90vNTDPZ+AQznOz3HueEqBORAmtN1Yr1z0Bnu7LHCEUVijJN SAfPRqPhwhnwBUWDHBahKuDspOKEJtNHzO5Wag4dk5n9szFVyIf6oWOPc5B0NLZc/9phCu4it24X FOynCwl+G5Fo1bFQaMfoh1CSDwZeq90LFwjLUOOKMMcwHdTVL7DIreDuGsqkFS4ZX5MoqztrUkmj TN9nF9soq7kSUiyPtbGy0c+FgMc8iEE5weI0bYXC2J8msnsFQijTQTPiwZGSIVZD5l74b2uK1SVq rHZULW5BRRnVaAGCEVLU8gTPZS0GRBNWNQcbWQ== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=43583 is now in the chain-of-trust
	Query to b.gov-servers.net for HEALTHINDICATORS.GOV/A
	Received 402 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (402 bytes) ;; HEADER SECTION ;; id = 55406 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190429041007 20190422041007 43583 gov. fB0p/CrXsCn2WL2FaI9KuHMVh2PQGIlAq9iG8EJN8K8CP33mazkwHOO5APisfD/AHefIqQ780onA 9tR7YMYi51qCDMoTCaERQqi1qO2YJRxerb+QAQdpFHKPBOAMUAsKYQUPFxv54/Z3N1do2Rr6GoUn OjQXTQIQbGwV2yad+Dw= ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to b.gov-servers.net for HEALTHINDICATORS.GOV/DNSKEY
	Received 402 bytes from 209.112.123.30
	;; Answer received from 209.112.123.30 (402 bytes) ;; HEADER SECTION ;; id = 24449 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190429041007 20190422041007 43583 gov. fB0p/CrXsCn2WL2FaI9KuHMVh2PQGIlAq9iG8EJN8K8CP33mazkwHOO5APisfD/AHefIqQ780onA 9tR7YMYi51qCDMoTCaERQqi1qO2YJRxerb+QAQdpFHKPBOAMUAsKYQUPFxv54/Z3N1do2Rr6GoUn OjQXTQIQbGwV2yad+Dw= ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone HEALTHINDICATORS.GOV

HEALTHINDICATORS.GOV

	Checking DS between GOV and HEALTHINDICATORS.GOV
	Query to c.gov-servers.net for HEALTHINDICATORS.GOV/DS
	Received 296 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (296 bytes) ;; HEADER SECTION ;; id = 52074 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DS ;; ANSWER SECTION (3 records) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 ) HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190429041007 20190422041007 43583 gov. fB0p/CrXsCn2WL2FaI9KuHMVh2PQGIlAq9iG8EJN8K8CP33mazkwHOO5APisfD/AHefIqQ780onA 9tR7YMYi51qCDMoTCaERQqi1qO2YJRxerb+QAQdpFHKPBOAMUAsKYQUPFxv54/Z3N1do2Rr6GoUn OjQXTQIQbGwV2yad+Dw= ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found 2 DS records for HEALTHINDICATORS.GOV in the GOV zone
	DS=41040/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=41040/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190429041007 20190422041007 43583 gov. fB0p/CrXsCn2WL2FaI9KuHMVh2PQGIlAq9iG8EJN8K8CP33mazkwHOO5APisfD/AHefIqQ780onA 9tR7YMYi51qCDMoTCaERQqi1qO2YJRxerb+QAQdpFHKPBOAMUAsKYQUPFxv54/Z3N1do2Rr6GoUn OjQXTQIQbGwV2yad+Dw= )`
	RRSIG=43583 and DNSKEY=43583 verifies the DS RRset
	DS=41040/SHA-1 is now in the chain-of-trust
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 1 4eb1ba7f358d6f5b55af4963df4e1771d3937218 )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 41040 7 2 7c5c67d3eec1dd43205f0366fbb6e63b30cb78b4c461ad632a38ca764d74b0e4 )`
	Query to ns3.cdc.GOV for HEALTHINDICATORS.GOV/DNSKEY
	Received 981 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (981 bytes) ;; HEADER SECTION ;; id = 56224 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 4 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (4 records) healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAZXbn+5vvyy3oRDWpX9OGnXP7HrfzHteFimFNQUZd3qMhP1ieop4kKmJJAoXKzYiqpWQ2FGo KmKiHstRz50dnN8QtAoj7dEqMvSQ1uSJFBP7O0aNKFNe/PW/RSBNR+SNfST1xwD0QyYhGFEbLoxf SI+c+NatxvJWIpoisxL+wdMLeH8+hzITdTdeYsnAKxx96kwC9RxW9r8S1T5Mh8SmqgCesq2xKtI0 hK3q2rTt1hqmTRzyza9xk8Z0SKY7nr1vON39Epg7MuJ7rwBn0XmA4uf8Ekb235aviFa+Ycelu6Vm EuY5ELeRamoNpitnJtZz76IAzajrmrvXN1KfoZQnBDE= ) ; Key ID = 41040 healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAYBRAAW+RzbD3VnuKykX36NfhftOAk8XeB/LY7GxpDHo7RsUQ++Lz+tYdlSOJBMUFFlVn02y 1LLrZPWucpsgHFa130KAAU15Ex0JJi+L3rLstW9TNMnNIUrk3HP9+keNar7fM+M/IU2ZBl/dj+R2 9YcutqhyflrwwZ89X9PBCLAB ) ; Key ID = 47213 healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190429042501 20190419033053 41040 healthindicators.gov. TN7NEgDAK3Mms0JRwvQc4EdfUVI+tTzjI7iko7MPC+Asu4FqqHg4mCpnAHd34x5I4IeB0BE70ISr Y35jSIIECyHCZJwOkSkrTZiM6Eu/UKgGDzHQ37CM5LV5QkSwzA52NazmA/KdzolM2XVvPIpnt/Oj 3nlAJiwhubZf3U7tuXgzP4s8+R8nLGCHPU15ny1KE0ne4imc5q++z8Dmsiana9GLjeLggYNdbkuM cR2LYkghvuemJosLLuiKenHZI2JAbwByCLs3z2o4bRbkNe5mpnf8iCH8S12vTeoaSIdYQT4tf0LT KebcA3ytCDalPQqpcs7NsONI9SGSUCeN1oa53g== ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190429042501 20190419033053 47213 healthindicators.gov. DtcQRLHQmCXBi/JFx4V4MNa68UQU278kH8ss1EVW+xpgBL978MizFKSenkEpW2Xq0JozNIL7VvFD RcCyon+sq1GuExM0Db2x5XDG91uVpu8DPmzlax1ImZiYh0LSl08R8jZy73Ciq0DTVcYEIcMiqth5 ir5DNaPQjHxTni93WF4= ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for HEALTHINDICATORS.GOV
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAZXbn+5vvyy3oRDWpX9OGnXP7HrfzHteFimFNQUZd3qMhP1ieop4kKmJJAoXKzYiqpWQ2FGo KmKiHstRz50dnN8QtAoj7dEqMvSQ1uSJFBP7O0aNKFNe/PW/RSBNR+SNfST1xwD0QyYhGFEbLoxf SI+c+NatxvJWIpoisxL+wdMLeH8+hzITdTdeYsnAKxx96kwC9RxW9r8S1T5Mh8SmqgCesq2xKtI0 hK3q2rTt1hqmTRzyza9xk8Z0SKY7nr1vON39Epg7MuJ7rwBn0XmA4uf8Ekb235aviFa+Ycelu6Vm EuY5ELeRamoNpitnJtZz76IAzajrmrvXN1KfoZQnBDE= ) ; Key ID = 41040`
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAYBRAAW+RzbD3VnuKykX36NfhftOAk8XeB/LY7GxpDHo7RsUQ++Lz+tYdlSOJBMUFFlVn02y 1LLrZPWucpsgHFa130KAAU15Ex0JJi+L3rLstW9TNMnNIUrk3HP9+keNar7fM+M/IU2ZBl/dj+R2 9YcutqhyflrwwZ89X9PBCLAB ) ; Key ID = 47213`
	DNSKEY=41040/SEP is now in the chain-of-trust
	DS=41040/SHA-1 verifies DNSKEY=41040/SEP
	DS=41040/SHA-256 verifies DNSKEY=41040/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190429042501 20190419033053 41040 healthindicators.gov. TN7NEgDAK3Mms0JRwvQc4EdfUVI+tTzjI7iko7MPC+Asu4FqqHg4mCpnAHd34x5I4IeB0BE70ISr Y35jSIIECyHCZJwOkSkrTZiM6Eu/UKgGDzHQ37CM5LV5QkSwzA52NazmA/KdzolM2XVvPIpnt/Oj 3nlAJiwhubZf3U7tuXgzP4s8+R8nLGCHPU15ny1KE0ne4imc5q++z8Dmsiana9GLjeLggYNdbkuM cR2LYkghvuemJosLLuiKenHZI2JAbwByCLs3z2o4bRbkNe5mpnf8iCH8S12vTeoaSIdYQT4tf0LT KebcA3ytCDalPQqpcs7NsONI9SGSUCeN1oa53g== )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190429042501 20190419033053 47213 healthindicators.gov. DtcQRLHQmCXBi/JFx4V4MNa68UQU278kH8ss1EVW+xpgBL978MizFKSenkEpW2Xq0JozNIL7VvFD RcCyon+sq1GuExM0Db2x5XDG91uVpu8DPmzlax1ImZiYh0LSl08R8jZy73Ciq0DTVcYEIcMiqth5 ir5DNaPQjHxTni93WF4= )`
	RRSIG=41040 and DNSKEY=41040/SEP verifies the DNSKEY RRset
	RRSIG=47213 and DNSKEY=47213 verifies the DNSKEY RRset
	DNSKEY=47213 is now in the chain-of-trust
	Query to ns3.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1052 bytes) ;; HEADER SECTION ;; id = 13425 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20190429042501 20190419033053 47213 healthindicators.gov. OcryTsUWQbjZMNUsRh9NCPe2THArvtrHgES9fHZ/Xuyhkrz0ib4/dwa2UxE32qHGah7Wb5bKewJH A+pwzTgOm/Y5JJvGpWt8uU52HUHSO87SNU/7+u14w27i0tPkY3Ze2YajhRecmQQN9K5ogbYKjxn5 /3Fk45VXmnxSIMvNcG0= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190428142549 20190418133607 47213 healthindicators.gov. FNDdLwIqhbHXP1t9XtYqSFvVqdKt7UnkkeEhE8+g21toIJ7l5mNSxeFK2WsvO31N3uhieuXY9k9K zZS/53Q/Ei0ky44orbOAnuQWOPTn5vHxPq3f5K1by0soTw/5DPkSi2kG+Ep/s2147XQt0x+LZnE+ 0dbt2mDSsyRXHIBeDuk= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501091337 20190421090733 62619 cdc.gov. fjsLftnNpIbj+IQRTEwzeXx8BdjQcECBvVPTFobsldLwy/6lRlPbEwnRMLxIOcdVsxyC/IKxCZWi POsTlLfi5VJlPyAbL1pUZNG/eCfh5mIKegZVYbLaCMdCTXGiXxjE0f+6KFWwYCH7Q4ERrTNVn3ZM uetI6mdXCcekAUepE/8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501095743 20190421094005 62619 cdc.gov. EkghUEa300WrfGCFbW+DpwFbWF2vx4nFBIohwl4i+xE6esVI8SFj7DJ0qy6zEJsnkA712pIcZPOG yDT+8O9xqcdDUGBSFfQ6uOESK+rl4QcMiL7hIoX7xfRub9L6wrExIW2ROepCK0fOoFB16wpYKDCR wd9VNey05WHkkcEYKX8= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190429135930 20190419134408 62619 cdc.gov. ikO3WsYHyQqkfbHHqjRWSapneEVbmibfrFvJq2yZTJc7tNyj/S1OIwaYleFk/RfsHEC+VtcQzgB2 YPGNefn6zQ+Azt23JW02vOBu9gDm3Icb2QG/9QQfiUIj2u+3pmacyT9bjtF0O5K9bkowQcgn1OlV 2D8XNj2p2UcFqUxcyDA= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1081 bytes) ;; HEADER SECTION ;; id = 29104 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 571211498 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190429043053 20190419033053 47213 healthindicators.gov. cpSe9rqJPGnu0QiCSFpFcw4QDTCqtZh7Sq8uqYi4GUbu14NcIUdvcSxAdaRBLyFlSMIsIqI6Gz+g kO/GPv2tclhlk9l3yufRY85oy3reOxCVi77UqH+qKD/ehik3YLVE501HuVMEAhq+DHjMdjze8oyd MlKj7BgMeHJ/oi4kiDs= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190428142549 20190418133607 47213 healthindicators.gov. FNDdLwIqhbHXP1t9XtYqSFvVqdKt7UnkkeEhE8+g21toIJ7l5mNSxeFK2WsvO31N3uhieuXY9k9K zZS/53Q/Ei0ky44orbOAnuQWOPTn5vHxPq3f5K1by0soTw/5DPkSi2kG+Ep/s2147XQt0x+LZnE+ 0dbt2mDSsyRXHIBeDuk= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501091337 20190421090733 62619 cdc.gov. fjsLftnNpIbj+IQRTEwzeXx8BdjQcECBvVPTFobsldLwy/6lRlPbEwnRMLxIOcdVsxyC/IKxCZWi POsTlLfi5VJlPyAbL1pUZNG/eCfh5mIKegZVYbLaCMdCTXGiXxjE0f+6KFWwYCH7Q4ERrTNVn3ZM uetI6mdXCcekAUepE/8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501095743 20190421094005 62619 cdc.gov. EkghUEa300WrfGCFbW+DpwFbWF2vx4nFBIohwl4i+xE6esVI8SFj7DJ0qy6zEJsnkA712pIcZPOG yDT+8O9xqcdDUGBSFfQ6uOESK+rl4QcMiL7hIoX7xfRub9L6wrExIW2ROepCK0fOoFB16wpYKDCR wd9VNey05WHkkcEYKX8= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190429135930 20190419134408 62619 cdc.gov. ikO3WsYHyQqkfbHHqjRWSapneEVbmibfrFvJq2yZTJc7tNyj/S1OIwaYleFk/RfsHEC+VtcQzgB2 YPGNefn6zQ+Azt23JW02vOBu9gDm3Icb2QG/9QQfiUIj2u+3pmacyT9bjtF0O5K9bkowQcgn1OlV 2D8XNj2p2UcFqUxcyDA= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1081 bytes) ;; HEADER SECTION ;; id = 64514 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 571211498 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190429043053 20190419033053 47213 healthindicators.gov. cpSe9rqJPGnu0QiCSFpFcw4QDTCqtZh7Sq8uqYi4GUbu14NcIUdvcSxAdaRBLyFlSMIsIqI6Gz+g kO/GPv2tclhlk9l3yufRY85oy3reOxCVi77UqH+qKD/ehik3YLVE501HuVMEAhq+DHjMdjze8oyd MlKj7BgMeHJ/oi4kiDs= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190428142549 20190418133607 47213 healthindicators.gov. FNDdLwIqhbHXP1t9XtYqSFvVqdKt7UnkkeEhE8+g21toIJ7l5mNSxeFK2WsvO31N3uhieuXY9k9K zZS/53Q/Ei0ky44orbOAnuQWOPTn5vHxPq3f5K1by0soTw/5DPkSi2kG+Ep/s2147XQt0x+LZnE+ 0dbt2mDSsyRXHIBeDuk= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501091337 20190421090733 62619 cdc.gov. fjsLftnNpIbj+IQRTEwzeXx8BdjQcECBvVPTFobsldLwy/6lRlPbEwnRMLxIOcdVsxyC/IKxCZWi POsTlLfi5VJlPyAbL1pUZNG/eCfh5mIKegZVYbLaCMdCTXGiXxjE0f+6KFWwYCH7Q4ERrTNVn3ZM uetI6mdXCcekAUepE/8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501095743 20190421094005 62619 cdc.gov. EkghUEa300WrfGCFbW+DpwFbWF2vx4nFBIohwl4i+xE6esVI8SFj7DJ0qy6zEJsnkA712pIcZPOG yDT+8O9xqcdDUGBSFfQ6uOESK+rl4QcMiL7hIoX7xfRub9L6wrExIW2ROepCK0fOoFB16wpYKDCR wd9VNey05WHkkcEYKX8= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190429135930 20190419134408 62619 cdc.gov. ikO3WsYHyQqkfbHHqjRWSapneEVbmibfrFvJq2yZTJc7tNyj/S1OIwaYleFk/RfsHEC+VtcQzgB2 YPGNefn6zQ+Azt23JW02vOBu9gDm3Icb2QG/9QQfiUIj2u+3pmacyT9bjtF0O5K9bkowQcgn1OlV 2D8XNj2p2UcFqUxcyDA= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1081 bytes) ;; HEADER SECTION ;; id = 30279 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 571211498 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190429043053 20190419033053 47213 healthindicators.gov. cpSe9rqJPGnu0QiCSFpFcw4QDTCqtZh7Sq8uqYi4GUbu14NcIUdvcSxAdaRBLyFlSMIsIqI6Gz+g kO/GPv2tclhlk9l3yufRY85oy3reOxCVi77UqH+qKD/ehik3YLVE501HuVMEAhq+DHjMdjze8oyd MlKj7BgMeHJ/oi4kiDs= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190428142549 20190418133607 47213 healthindicators.gov. FNDdLwIqhbHXP1t9XtYqSFvVqdKt7UnkkeEhE8+g21toIJ7l5mNSxeFK2WsvO31N3uhieuXY9k9K zZS/53Q/Ei0ky44orbOAnuQWOPTn5vHxPq3f5K1by0soTw/5DPkSi2kG+Ep/s2147XQt0x+LZnE+ 0dbt2mDSsyRXHIBeDuk= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501091337 20190421090733 62619 cdc.gov. fjsLftnNpIbj+IQRTEwzeXx8BdjQcECBvVPTFobsldLwy/6lRlPbEwnRMLxIOcdVsxyC/IKxCZWi POsTlLfi5VJlPyAbL1pUZNG/eCfh5mIKegZVYbLaCMdCTXGiXxjE0f+6KFWwYCH7Q4ERrTNVn3ZM uetI6mdXCcekAUepE/8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501095743 20190421094005 62619 cdc.gov. EkghUEa300WrfGCFbW+DpwFbWF2vx4nFBIohwl4i+xE6esVI8SFj7DJ0qy6zEJsnkA712pIcZPOG yDT+8O9xqcdDUGBSFfQ6uOESK+rl4QcMiL7hIoX7xfRub9L6wrExIW2ROepCK0fOoFB16wpYKDCR wd9VNey05WHkkcEYKX8= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190429135930 20190419134408 62619 cdc.gov. ikO3WsYHyQqkfbHHqjRWSapneEVbmibfrFvJq2yZTJc7tNyj/S1OIwaYleFk/RfsHEC+VtcQzgB2 YPGNefn6zQ+Azt23JW02vOBu9gDm3Icb2QG/9QQfiUIj2u+3pmacyT9bjtF0O5K9bkowQcgn1OlV 2D8XNj2p2UcFqUxcyDA= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1052 bytes) ;; HEADER SECTION ;; id = 4413 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20190429042501 20190419033053 47213 healthindicators.gov. OcryTsUWQbjZMNUsRh9NCPe2THArvtrHgES9fHZ/Xuyhkrz0ib4/dwa2UxE32qHGah7Wb5bKewJH A+pwzTgOm/Y5JJvGpWt8uU52HUHSO87SNU/7+u14w27i0tPkY3Ze2YajhRecmQQN9K5ogbYKjxn5 /3Fk45VXmnxSIMvNcG0= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20190428142549 20190418133607 47213 healthindicators.gov. FNDdLwIqhbHXP1t9XtYqSFvVqdKt7UnkkeEhE8+g21toIJ7l5mNSxeFK2WsvO31N3uhieuXY9k9K zZS/53Q/Ei0ky44orbOAnuQWOPTn5vHxPq3f5K1by0soTw/5DPkSi2kG+Ep/s2147XQt0x+LZnE+ 0dbt2mDSsyRXHIBeDuk= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501091337 20190421090733 62619 cdc.gov. fjsLftnNpIbj+IQRTEwzeXx8BdjQcECBvVPTFobsldLwy/6lRlPbEwnRMLxIOcdVsxyC/IKxCZWi POsTlLfi5VJlPyAbL1pUZNG/eCfh5mIKegZVYbLaCMdCTXGiXxjE0f+6KFWwYCH7Q4ERrTNVn3ZM uetI6mdXCcekAUepE/8= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190501095743 20190421094005 62619 cdc.gov. EkghUEa300WrfGCFbW+DpwFbWF2vx4nFBIohwl4i+xE6esVI8SFj7DJ0qy6zEJsnkA712pIcZPOG yDT+8O9xqcdDUGBSFfQ6uOESK+rl4QcMiL7hIoX7xfRub9L6wrExIW2ROepCK0fOoFB16wpYKDCR wd9VNey05WHkkcEYKX8= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20190429135930 20190419134408 62619 cdc.gov. ikO3WsYHyQqkfbHHqjRWSapneEVbmibfrFvJq2yZTJc7tNyj/S1OIwaYleFk/RfsHEC+VtcQzgB2 YPGNefn6zQ+Azt23JW02vOBu9gDm3Icb2QG/9QQfiUIj2u+3pmacyT9bjtF0O5K9bkowQcgn1OlV 2D8XNj2p2UcFqUxcyDA= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20190429042501 20190419033053 47213 healthindicators.gov. OcryTsUWQbjZMNUsRh9NCPe2THArvtrHgES9fHZ/Xuyhkrz0ib4/dwa2UxE32qHGah7Wb5bKewJH A+pwzTgOm/Y5JJvGpWt8uU52HUHSO87SNU/7+u14w27i0tPkY3Ze2YajhRecmQQN9K5ogbYKjxn5 /3Fk45VXmnxSIMvNcG0= )`
	RRSIG=47213 and DNSKEY=47213 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test HEALTHINDICATORS.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: