DNSSEC Analyzer - HEALTHINDICATORS.GOV

Domain Name:

Time: 2020-08-14 03:07:03 UTC, NTP stratum 4

Analyzing DNSSEC problems for HEALTHINDICATORS.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to i.root-servers.net for ./DNSKEY
	Received 864 bytes from 192.36.148.17
	;; Answer received from 192.36.148.17 (864 bytes) ;; HEADER SECTION ;; id = 14250 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN DNSKEY ( 256 3 8 AwEAAdauOGxLhfAKFTTZwGhBXbk793QKdWIQRjiSftWdusCwkPhNyJrIjwtNffCWXGLlZAbpcs41 4RE3oS1qVwV+AdXsO92SBu5haGlxMUk0NqZO7Xlf84/wrzGZVRRouPo5pNX/CKS8Mv9UOi0olKGC u31dNfh8qCszWZcloLDgeLzSnQSkvFoGe69vNCfh7feESKedkBC2qRz0BZv9+oJI0IY/3D7WEnV0 NOlf8gSHozhfJFJ/ZAKtvw/Q3ogrVJFk0LyVaU/NVtVA5FM4pVMIRID7pfrPi78aAzG7b/Wh/Pce 4jPAIpS3dApq25YkvMuPvfB91NMf9FemKwlp78PBVcM= ) ; Key ID = 46594 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20200831000000 20200810000000 20326 . FyZ8LAbEV4Jbpm2/xcE8wZu+OSatuV+1xEbRaRLfTWsjvtrPnrKZTW7cnn1yphgDD9fSHA7gAA0c tS85lRSBxr24Du7Sh+KCaGKKbs3EnSIoTzMXK0mnSVJYL3yHOyofxXe/z3ZDAaBqOGQR2wkhEKih UhNJmPEaPDXUeOr0JwYgQRoEf6PdHXld7fBC1DjiEMhHA9sXsriuG3oLUxgJdZ1fslynQjTky769 ywLkpTF/IuX2nnko+RomXuBospuQdNcXaUi1ymfTE2i3xGbEvRZYGSI4DRbxvUK4u8Lu2rNJmXct vRsBvwcuWpIL182DkbGgsDdsarVRLtobfOwMGg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAdauOGxLhfAKFTTZwGhBXbk793QKdWIQRjiSftWdusCwkPhNyJrIjwtNffCWXGLlZAbpcs41 4RE3oS1qVwV+AdXsO92SBu5haGlxMUk0NqZO7Xlf84/wrzGZVRRouPo5pNX/CKS8Mv9UOi0olKGC u31dNfh8qCszWZcloLDgeLzSnQSkvFoGe69vNCfh7feESKedkBC2qRz0BZv9+oJI0IY/3D7WEnV0 NOlf8gSHozhfJFJ/ZAKtvw/Q3ogrVJFk0LyVaU/NVtVA5FM4pVMIRID7pfrPi78aAzG7b/Wh/Pce 4jPAIpS3dApq25YkvMuPvfB91NMf9FemKwlp78PBVcM= ) ; Key ID = 46594`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20200831000000 20200810000000 20326 . FyZ8LAbEV4Jbpm2/xcE8wZu+OSatuV+1xEbRaRLfTWsjvtrPnrKZTW7cnn1yphgDD9fSHA7gAA0c tS85lRSBxr24Du7Sh+KCaGKKbs3EnSIoTzMXK0mnSVJYL3yHOyofxXe/z3ZDAaBqOGQR2wkhEKih UhNJmPEaPDXUeOr0JwYgQRoEf6PdHXld7fBC1DjiEMhHA9sXsriuG3oLUxgJdZ1fslynQjTky769 ywLkpTF/IuX2nnko+RomXuBospuQdNcXaUi1ymfTE2i3xGbEvRZYGSI4DRbxvUK4u8Lu2rNJmXct vRsBvwcuWpIL182DkbGgsDdsarVRLtobfOwMGg== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=46594 is now in the chain-of-trust
	Query to f.root-servers.net for HEALTHINDICATORS.GOV/A
	Received 675 bytes from 192.5.5.241
	;; Answer received from 192.5.5.241 (675 bytes) ;; HEADER SECTION ;; id = 34687 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20200826200000 20200813190000 46594 . FRfeY/XKEq1xDgm7tlZEUYpeRhwAky7dEzF6l86g+6ixxzFqwVYLNiI5+P7K/DBhzlr2oo2+4uIj Xo7VOn8hJX+gd4jB1BI0ctZib5T1+lh7qaCkEqsUrKFd8CTzo9f0/c4Z2MqVIT5iAwQM/YNv87tA PxulqbYLB0S5KRi0w0ZTxkdEB5ZDKXzw5hGWmwRjhRuSXDfZPOh6OW2HNnaX2LM2HLmsk55n7SuK MpeDm9T0yEb7ZqCqPJFOpeUhKekPa9CcjGKDFmJ4pghYYxCxDzXvTvWIfnfaDN8/cbCMB+TeM2Vj VWDS0hlJvLGQkQ20anheeEreU6vuPp9Wvfw9Jw== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN A 209.112.123.30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN A 69.36.153.30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN A 81.19.194.30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Query to j.root-servers.net for GOV/DNSKEY
	Received 658 bytes from 192.58.128.30
	;; Answer received from 192.58.128.30 (658 bytes) ;; HEADER SECTION ;; id = 56652 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20200826200000 20200813190000 46594 . FRfeY/XKEq1xDgm7tlZEUYpeRhwAky7dEzF6l86g+6ixxzFqwVYLNiI5+P7K/DBhzlr2oo2+4uIj Xo7VOn8hJX+gd4jB1BI0ctZib5T1+lh7qaCkEqsUrKFd8CTzo9f0/c4Z2MqVIT5iAwQM/YNv87tA PxulqbYLB0S5KRi0w0ZTxkdEB5ZDKXzw5hGWmwRjhRuSXDfZPOh6OW2HNnaX2LM2HLmsk55n7SuK MpeDm9T0yEb7ZqCqPJFOpeUhKekPa9CcjGKDFmJ4pghYYxCxDzXvTvWIfnfaDN8/cbCMB+TeM2Vj VWDS0hlJvLGQkQ20anheeEreU6vuPp9Wvfw9Jw== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to a.root-servers.net for GOV/DS
	Received 403 bytes from 198.41.0.4
	;; Answer received from 198.41.0.4 (403 bytes) ;; HEADER SECTION ;; id = 51845 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20200826200000 20200813190000 46594 . FRfeY/XKEq1xDgm7tlZEUYpeRhwAky7dEzF6l86g+6ixxzFqwVYLNiI5+P7K/DBhzlr2oo2+4uIj Xo7VOn8hJX+gd4jB1BI0ctZib5T1+lh7qaCkEqsUrKFd8CTzo9f0/c4Z2MqVIT5iAwQM/YNv87tA PxulqbYLB0S5KRi0w0ZTxkdEB5ZDKXzw5hGWmwRjhRuSXDfZPOh6OW2HNnaX2LM2HLmsk55n7SuK MpeDm9T0yEb7ZqCqPJFOpeUhKekPa9CcjGKDFmJ4pghYYxCxDzXvTvWIfnfaDN8/cbCMB+TeM2Vj VWDS0hlJvLGQkQ20anheeEreU6vuPp9Wvfw9Jw== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-1 has algorithm RSASHA256
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`GOV. 86400 IN RRSIG ( DS 8 1 86400 20200826200000 20200813190000 46594 . FRfeY/XKEq1xDgm7tlZEUYpeRhwAky7dEzF6l86g+6ixxzFqwVYLNiI5+P7K/DBhzlr2oo2+4uIj Xo7VOn8hJX+gd4jB1BI0ctZib5T1+lh7qaCkEqsUrKFd8CTzo9f0/c4Z2MqVIT5iAwQM/YNv87tA PxulqbYLB0S5KRi0w0ZTxkdEB5ZDKXzw5hGWmwRjhRuSXDfZPOh6OW2HNnaX2LM2HLmsk55n7SuK MpeDm9T0yEb7ZqCqPJFOpeUhKekPa9CcjGKDFmJ4pghYYxCxDzXvTvWIfnfaDN8/cbCMB+TeM2Vj VWDS0hlJvLGQkQ20anheeEreU6vuPp9Wvfw9Jw== )`
	RRSIG=46594 and DNSKEY=46594 verifies the DS RRset
	DS=7698/SHA-1 is now in the chain-of-trust
	`GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	`GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to a.gov-servers.net for GOV/DNSKEY
	Received 777 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (777 bytes) ;; HEADER SECTION ;; id = 34270 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAegdXlD9lumYfYK1EZkZgTXd/IgQSNnvRkdpQa8KXFujLQRrJ2+yqhamuyJq2HZ3k8yYqEER PmtKiuBYWIFw5on1Q0zUn3sO1/14bvKPcI5nbrpJXnlH672yS7FcSeWn14SRe9VzX1Y4/16QXtKh 2gC1Ot1nO0SUqjxdvY5lSDzcdJMRTJws3UjIK3f0uHMw+F5PuHpLWI5zZXir6KUuj2M= ) ; Key ID = 26665 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20200822190254 20200807185754 7698 gov. gTJuEq5ZJKGbbiG4aBERDA6OchpSLAQP0PTIrfnoYefiGL3vmkV+xqI8nQ9ZJ5cHkwaEK6ECNin8 UbmEX/Q7vYMnQbCI4drJ/LaburOqW8wpyA6IgqbehmaYtEiXoOT+QGMnXejS+gNn2BJORqUik9vR TQRjm21x/m0bdK37/QqWkiS0WCrabfN7g5UopcZuYD6UB5w9o+83utxRjMJi5tfdxi489yx74+NV P96khjCFtRvCQcnNGQlnOlEKZvHK4KoeLk4rwXtIn/FHMFTRrh2m99v5P7REzq40UHeTGNWuuZII adQu43KIsI6sJspwwOfH+FzNDILQ0NpbhJTlQQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAegdXlD9lumYfYK1EZkZgTXd/IgQSNnvRkdpQa8KXFujLQRrJ2+yqhamuyJq2HZ3k8yYqEER PmtKiuBYWIFw5on1Q0zUn3sO1/14bvKPcI5nbrpJXnlH672yS7FcSeWn14SRe9VzX1Y4/16QXtKh 2gC1Ot1nO0SUqjxdvY5lSDzcdJMRTJws3UjIK3f0uHMw+F5PuHpLWI5zZXir6KUuj2M= ) ; Key ID = 26665`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20200822190254 20200807185754 7698 gov. gTJuEq5ZJKGbbiG4aBERDA6OchpSLAQP0PTIrfnoYefiGL3vmkV+xqI8nQ9ZJ5cHkwaEK6ECNin8 UbmEX/Q7vYMnQbCI4drJ/LaburOqW8wpyA6IgqbehmaYtEiXoOT+QGMnXejS+gNn2BJORqUik9vR TQRjm21x/m0bdK37/QqWkiS0WCrabfN7g5UopcZuYD6UB5w9o+83utxRjMJi5tfdxi489yx74+NV P96khjCFtRvCQcnNGQlnOlEKZvHK4KoeLk4rwXtIn/FHMFTRrh2m99v5P7REzq40UHeTGNWuuZII adQu43KIsI6sJspwwOfH+FzNDILQ0NpbhJTlQQ== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=26665 is now in the chain-of-trust
	Query to c.gov-servers.net for HEALTHINDICATORS.GOV/A
	Received 434 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (434 bytes) ;; HEADER SECTION ;; id = 30722 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20200820221008 20200813221008 26665 gov. i05MN85NjuL/JhnmTiuylfPbbv35gwRUCkFDx2Dgy1nAJ0UQYT98MDNRqXvNqrxeeVvBaC68qtlf G0t62suZ8PxVXxq+73TQcv0+U4Ch+u3+vVNotxprPuLzpMcj9mO87PCW+n3wVj2u5sQdLAULH/Pq PO1ShyYcCKS1/loaBQQbWb4lofxLjgrwpmlFG9wryODQg+5bTDMzejQeQ9SCOQ== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to a.gov-servers.net for HEALTHINDICATORS.GOV/DNSKEY
	Received 434 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (434 bytes) ;; HEADER SECTION ;; id = 55738 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 4 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) HEALTHINDICATORS.GOV. 86400 IN NS ns2.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns3.cdc.GOV. HEALTHINDICATORS.GOV. 86400 IN NS ns1.cdc.GOV. HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20200820221008 20200813221008 26665 gov. i05MN85NjuL/JhnmTiuylfPbbv35gwRUCkFDx2Dgy1nAJ0UQYT98MDNRqXvNqrxeeVvBaC68qtlf G0t62suZ8PxVXxq+73TQcv0+U4Ch+u3+vVNotxprPuLzpMcj9mO87PCW+n3wVj2u5sQdLAULH/Pq PO1ShyYcCKS1/loaBQQbWb4lofxLjgrwpmlFG9wryODQg+5bTDMzejQeQ9SCOQ== ) ;; ADDITIONAL SECTION (4 records) ns2.cdc.GOV. 86400 IN A 198.246.96.92 ns3.cdc.GOV. 86400 IN A 198.246.125.10 ns1.cdc.GOV. 86400 IN A 198.246.96.61 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone HEALTHINDICATORS.GOV

HEALTHINDICATORS.GOV

	Checking DS between GOV and HEALTHINDICATORS.GOV
	Query to d.gov-servers.net for HEALTHINDICATORS.GOV/DS
	Received 328 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (328 bytes) ;; HEADER SECTION ;; id = 52251 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DS ;; ANSWER SECTION (3 records) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce ) HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d ) HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20200820221008 20200813221008 26665 gov. i05MN85NjuL/JhnmTiuylfPbbv35gwRUCkFDx2Dgy1nAJ0UQYT98MDNRqXvNqrxeeVvBaC68qtlf G0t62suZ8PxVXxq+73TQcv0+U4Ch+u3+vVNotxprPuLzpMcj9mO87PCW+n3wVj2u5sQdLAULH/Pq PO1ShyYcCKS1/loaBQQbWb4lofxLjgrwpmlFG9wryODQg+5bTDMzejQeQ9SCOQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DS records for HEALTHINDICATORS.GOV in the GOV zone
	DS=40410/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=40410/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`HEALTHINDICATORS.GOV. 3600 IN RRSIG ( DS 8 2 3600 20200820221008 20200813221008 26665 gov. i05MN85NjuL/JhnmTiuylfPbbv35gwRUCkFDx2Dgy1nAJ0UQYT98MDNRqXvNqrxeeVvBaC68qtlf G0t62suZ8PxVXxq+73TQcv0+U4Ch+u3+vVNotxprPuLzpMcj9mO87PCW+n3wVj2u5sQdLAULH/Pq PO1ShyYcCKS1/loaBQQbWb4lofxLjgrwpmlFG9wryODQg+5bTDMzejQeQ9SCOQ== )`
	RRSIG=26665 and DNSKEY=26665 verifies the DS RRset
	DS=40410/SHA-1 is now in the chain-of-trust
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 1 90202f5d0185bbee1382a4a3da8c35ffd6abf5ce )`
	`HEALTHINDICATORS.GOV. 3600 IN DS ( 40410 7 2 19ebca4eade31d1b43682edea676b45c2b513633fa83a813e7cc6986e2aee55d )`
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/DNSKEY
	Received 981 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (981 bytes) ;; HEADER SECTION ;; id = 23414 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 4 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN DNSKEY ;; ANSWER SECTION (4 records) healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAY3Ci4FK+f2+lh89A/WCL4m1tEMfBblFsqpRTOLpKD0wADJCMxP0yjzMsiF3B7I9W24WEObc gj9yfEy4RID1QLduC5G6ZlJNoWSSSScNhOGebCJT1q4iuVLZ3V09HucAxYEwrNKqTzSbjv8ij2c7 wraA345AdOCRDlwbpiABtoQcXBxfkKMl//5ZBTCwG3tNepuvnPDXATaBHZJ59LXuIrERHLIpFH+D qoo7uA22I3uO4lA3RUWXN/c7OYELeFVFgjrNPxRZu4ZGz53pUAg68rJty3l92aqM8JTQ26grK4i9 lTt1BiaNCPMgD6K/ZUEpMjqvUcnq8YEIADWVbkcr2MU= ) ; Key ID = 40410 healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAbAIDLXA91Td5tpnSDN3EDAOBX0xMZtBjCPBMHlYiBnmaJLwd9nunpeMJjXP6wP9eno8lO2y Q9D6wO0dsuVqPvpPQlKTFAvAgyYjUNRDmb6ivIJc9laAfskjoBBz4cF70zU9klOhLaNMFNDusDmh 7NWAWg+HxszNmoJUxmPgy88r ) ; Key ID = 1248 healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20200817155359 20200807154941 1248 healthindicators.gov. CHQIHIZyRT/39jdXnmTtXNJjkJJ84qgQ6C4pAIG1jLyX9fLNhMhA6xR1dH77esv7CKtZeyQv1gk3 FVBWJrxnrOQO3ooAJsnNjWrvvwkX4DQbGTUA083VyGNvOH9LkOpt4dPykdY7ySSZR75hFqGNE5VU GZnhfHml71EF1rcEAto= ) healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20200817155359 20200807154941 40410 healthindicators.gov. RGSSx/vGfgweya+PwNZcstqsU5XUVTDGlcW2rlJL6pnRj2feFYCy/h4hma5BLmbIE11D99MlQnzM QGhOgNlz9g88Lwx4nwqAVzQaUn4xlMJus/9I9fNJ2qXCj08WOhWmNY4H5+aMtw6+Ttuwl+TXPSI/ guwcMP1KUeexBuQAIMQAYG95wXuz2c/x6tYcAhh0TJtKWHemVnIiOQuq5/+iQXHHhrDOEtjccHbn Qn7y6IDQDAu9/G+TFf4xXIicYeWSxTpk3RS/YnVEzmhRBZXjfHO04bcRqLv1llloVxZkPh8D0q57 I7kGe1/3b3R3yLRNMlFoMMvJJpnH27EZRvDzkQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for HEALTHINDICATORS.GOV
	`healthindicators.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAY3Ci4FK+f2+lh89A/WCL4m1tEMfBblFsqpRTOLpKD0wADJCMxP0yjzMsiF3B7I9W24WEObc gj9yfEy4RID1QLduC5G6ZlJNoWSSSScNhOGebCJT1q4iuVLZ3V09HucAxYEwrNKqTzSbjv8ij2c7 wraA345AdOCRDlwbpiABtoQcXBxfkKMl//5ZBTCwG3tNepuvnPDXATaBHZJ59LXuIrERHLIpFH+D qoo7uA22I3uO4lA3RUWXN/c7OYELeFVFgjrNPxRZu4ZGz53pUAg68rJty3l92aqM8JTQ26grK4i9 lTt1BiaNCPMgD6K/ZUEpMjqvUcnq8YEIADWVbkcr2MU= ) ; Key ID = 40410`
	`healthindicators.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAbAIDLXA91Td5tpnSDN3EDAOBX0xMZtBjCPBMHlYiBnmaJLwd9nunpeMJjXP6wP9eno8lO2y Q9D6wO0dsuVqPvpPQlKTFAvAgyYjUNRDmb6ivIJc9laAfskjoBBz4cF70zU9klOhLaNMFNDusDmh 7NWAWg+HxszNmoJUxmPgy88r ) ; Key ID = 1248`
	DNSKEY=40410/SEP is now in the chain-of-trust
	DS=40410/SHA-1 verifies DNSKEY=40410/SEP
	DS=40410/SHA-256 verifies DNSKEY=40410/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20200817155359 20200807154941 1248 healthindicators.gov. CHQIHIZyRT/39jdXnmTtXNJjkJJ84qgQ6C4pAIG1jLyX9fLNhMhA6xR1dH77esv7CKtZeyQv1gk3 FVBWJrxnrOQO3ooAJsnNjWrvvwkX4DQbGTUA083VyGNvOH9LkOpt4dPykdY7ySSZR75hFqGNE5VU GZnhfHml71EF1rcEAto= )`
	`healthindicators.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20200817155359 20200807154941 40410 healthindicators.gov. RGSSx/vGfgweya+PwNZcstqsU5XUVTDGlcW2rlJL6pnRj2feFYCy/h4hma5BLmbIE11D99MlQnzM QGhOgNlz9g88Lwx4nwqAVzQaUn4xlMJus/9I9fNJ2qXCj08WOhWmNY4H5+aMtw6+Ttuwl+TXPSI/ guwcMP1KUeexBuQAIMQAYG95wXuz2c/x6tYcAhh0TJtKWHemVnIiOQuq5/+iQXHHhrDOEtjccHbn Qn7y6IDQDAu9/G+TFf4xXIicYeWSxTpk3RS/YnVEzmhRBZXjfHO04bcRqLv1llloVxZkPh8D0q57 I7kGe1/3b3R3yLRNMlFoMMvJJpnH27EZRvDzkQ== )`
	RRSIG=1248 and DNSKEY=1248 verifies the DNSKEY RRset
	RRSIG=40410 and DNSKEY=40410/SEP verifies the DNSKEY RRset
	DNSKEY=1248 is now in the chain-of-trust
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1052 bytes) ;; HEADER SECTION ;; id = 20934 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20200817163742 20200807154659 1248 healthindicators.gov. rvXaSReuocVBRCAydzpZuYmDQ2xMIVAGBJFIv3GcWEykyQ+A4qV9J+q+MmSo4MlpDmoMLtJQNB49 X+8UUFwGnDUBlfg4P8wo1rV61bRssGNBGibzJFbAwCgbwTvUTTLgrvodTemfKpL8mrQhg/rb/SBp nIwpvPVMKfYs1q8Zem8= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200817155359 20200807154941 1248 healthindicators.gov. nBZgTn+JY+BGlB2r21UCaHsNkhmxzGxNPyY92lkuL78qMzOf+8592FU3Az9sd0NC4EWId7BzGLXD O+KsmrA9Mv1KooSE4sRnYn7ZBHV2SuvcfzrwPFM9EWiueGr+fkptVW9qehFeg2OBP1PymQZJE1/r 7TWdO0J5r4KOqv8T5bw= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819170949 20200809170428 7589 cdc.gov. CtCWXai/5SH16w7psT8/plcvTUjxk3powwtk3jHtt4Yc5tAddfmkoRrWGj5auEnLmlLnRrJRRaEl SZTXEvhT3l1m2M15TZKnOw7Y+gnbNLJWTzkZcEUDBi0Ij6WeWNK7JTTCinHFYTVBUrshQ+/fwkib il6eB0nmN0WdEgsbmBY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819160442 20200809152647 7589 cdc.gov. Q6754XLxRyHoA5hKgeN96cHLycRefO+KvVwxTUcTebrT/cztH6KRWGln3+w5TCU2ItoYqjBIYPYr 61t0/qyFOIYiI1jcq7XCqioIy5KIbL0UyMYHc4Hn+1vnUa2ee/VBbtXT21+3eJlIe8L5X86XEWrn rywVCIxv44CelChyOWw= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819164212 20200809164104 7589 cdc.gov. TAOsfTMtZcakH6krjT6Z2LASMV4dnJIfOXdkHJhWIWX+YtfWNn8Vt4drnzuVK27kPn39RYu0oIV2 rWb9+vx4a1iVwSNAcRlkauoxnetX0drMei6lphRLR7ztmCXp/FxAmQ29ZkdYcTRztzFeUM9wECOg 21jHqqhNVpTnb4utm80= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV is authoritative for HEALTHINDICATORS.GOV
	Found RRSIG signed by healthindicators.gov zone
	Query to ns2.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.92
	;; Answer received from 198.246.96.92 (1081 bytes) ;; HEADER SECTION ;; id = 3490 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 614451830 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20200817164941 20200807154941 1248 healthindicators.gov. Tw1e5iy2I9zGdV72jOquyUlVRmQDCrTR3O7kH8gKSq/3OpOIdwJ2gyqGxkaLcR++Px68/b6OcoK+ xPGK92mOcu4cvSzMj5MmisvFkTJXmFxtt/KjWm/Ym+0N8e/ZAqC40tobZXR7odm857t3QuhWs4mv G7uBY4LvEza4pcKaY2Y= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200817155359 20200807154941 1248 healthindicators.gov. nBZgTn+JY+BGlB2r21UCaHsNkhmxzGxNPyY92lkuL78qMzOf+8592FU3Az9sd0NC4EWId7BzGLXD O+KsmrA9Mv1KooSE4sRnYn7ZBHV2SuvcfzrwPFM9EWiueGr+fkptVW9qehFeg2OBP1PymQZJE1/r 7TWdO0J5r4KOqv8T5bw= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819170949 20200809170428 7589 cdc.gov. CtCWXai/5SH16w7psT8/plcvTUjxk3powwtk3jHtt4Yc5tAddfmkoRrWGj5auEnLmlLnRrJRRaEl SZTXEvhT3l1m2M15TZKnOw7Y+gnbNLJWTzkZcEUDBi0Ij6WeWNK7JTTCinHFYTVBUrshQ+/fwkib il6eB0nmN0WdEgsbmBY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819160442 20200809152647 7589 cdc.gov. Q6754XLxRyHoA5hKgeN96cHLycRefO+KvVwxTUcTebrT/cztH6KRWGln3+w5TCU2ItoYqjBIYPYr 61t0/qyFOIYiI1jcq7XCqioIy5KIbL0UyMYHc4Hn+1vnUa2ee/VBbtXT21+3eJlIe8L5X86XEWrn rywVCIxv44CelChyOWw= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819164212 20200809164104 7589 cdc.gov. TAOsfTMtZcakH6krjT6Z2LASMV4dnJIfOXdkHJhWIWX+YtfWNn8Vt4drnzuVK27kPn39RYu0oIV2 rWb9+vx4a1iVwSNAcRlkauoxnetX0drMei6lphRLR7ztmCXp/FxAmQ29ZkdYcTRztzFeUM9wECOg 21jHqqhNVpTnb4utm80= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns3.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.125.10
	;; Answer received from 198.246.125.10 (1081 bytes) ;; HEADER SECTION ;; id = 29939 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 614451830 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20200817164941 20200807154941 1248 healthindicators.gov. Tw1e5iy2I9zGdV72jOquyUlVRmQDCrTR3O7kH8gKSq/3OpOIdwJ2gyqGxkaLcR++Px68/b6OcoK+ xPGK92mOcu4cvSzMj5MmisvFkTJXmFxtt/KjWm/Ym+0N8e/ZAqC40tobZXR7odm857t3QuhWs4mv G7uBY4LvEza4pcKaY2Y= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200817155359 20200807154941 1248 healthindicators.gov. nBZgTn+JY+BGlB2r21UCaHsNkhmxzGxNPyY92lkuL78qMzOf+8592FU3Az9sd0NC4EWId7BzGLXD O+KsmrA9Mv1KooSE4sRnYn7ZBHV2SuvcfzrwPFM9EWiueGr+fkptVW9qehFeg2OBP1PymQZJE1/r 7TWdO0J5r4KOqv8T5bw= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819170949 20200809170428 7589 cdc.gov. CtCWXai/5SH16w7psT8/plcvTUjxk3powwtk3jHtt4Yc5tAddfmkoRrWGj5auEnLmlLnRrJRRaEl SZTXEvhT3l1m2M15TZKnOw7Y+gnbNLJWTzkZcEUDBi0Ij6WeWNK7JTTCinHFYTVBUrshQ+/fwkib il6eB0nmN0WdEgsbmBY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819160442 20200809152647 7589 cdc.gov. Q6754XLxRyHoA5hKgeN96cHLycRefO+KvVwxTUcTebrT/cztH6KRWGln3+w5TCU2ItoYqjBIYPYr 61t0/qyFOIYiI1jcq7XCqioIy5KIbL0UyMYHc4Hn+1vnUa2ee/VBbtXT21+3eJlIe8L5X86XEWrn rywVCIxv44CelChyOWw= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819164212 20200809164104 7589 cdc.gov. TAOsfTMtZcakH6krjT6Z2LASMV4dnJIfOXdkHJhWIWX+YtfWNn8Vt4drnzuVK27kPn39RYu0oIV2 rWb9+vx4a1iVwSNAcRlkauoxnetX0drMei6lphRLR7ztmCXp/FxAmQ29ZkdYcTRztzFeUM9wECOg 21jHqqhNVpTnb4utm80= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.gov for HEALTHINDICATORS.GOV/SOA
	Received 1081 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1081 bytes) ;; HEADER SECTION ;; id = 21352 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN SOA ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN SOA ( ns2.cdc.gov. dnsadmin.cdc.gov. 614451830 ;serial 10800 ;refresh 3600 ;retry 604800 ;expire 84600 ;minimum ) healthindicators.gov. 3600 IN RRSIG ( SOA 7 2 3600 20200817164941 20200807154941 1248 healthindicators.gov. Tw1e5iy2I9zGdV72jOquyUlVRmQDCrTR3O7kH8gKSq/3OpOIdwJ2gyqGxkaLcR++Px68/b6OcoK+ xPGK92mOcu4cvSzMj5MmisvFkTJXmFxtt/KjWm/Ym+0N8e/ZAqC40tobZXR7odm857t3QuhWs4mv G7uBY4LvEza4pcKaY2Y= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200817155359 20200807154941 1248 healthindicators.gov. nBZgTn+JY+BGlB2r21UCaHsNkhmxzGxNPyY92lkuL78qMzOf+8592FU3Az9sd0NC4EWId7BzGLXD O+KsmrA9Mv1KooSE4sRnYn7ZBHV2SuvcfzrwPFM9EWiueGr+fkptVW9qehFeg2OBP1PymQZJE1/r 7TWdO0J5r4KOqv8T5bw= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819170949 20200809170428 7589 cdc.gov. CtCWXai/5SH16w7psT8/plcvTUjxk3powwtk3jHtt4Yc5tAddfmkoRrWGj5auEnLmlLnRrJRRaEl SZTXEvhT3l1m2M15TZKnOw7Y+gnbNLJWTzkZcEUDBi0Ij6WeWNK7JTTCinHFYTVBUrshQ+/fwkib il6eB0nmN0WdEgsbmBY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819160442 20200809152647 7589 cdc.gov. Q6754XLxRyHoA5hKgeN96cHLycRefO+KvVwxTUcTebrT/cztH6KRWGln3+w5TCU2ItoYqjBIYPYr 61t0/qyFOIYiI1jcq7XCqioIy5KIbL0UyMYHc4Hn+1vnUa2ee/VBbtXT21+3eJlIe8L5X86XEWrn rywVCIxv44CelChyOWw= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819164212 20200809164104 7589 cdc.gov. TAOsfTMtZcakH6krjT6Z2LASMV4dnJIfOXdkHJhWIWX+YtfWNn8Vt4drnzuVK27kPn39RYu0oIV2 rWb9+vx4a1iVwSNAcRlkauoxnetX0drMei6lphRLR7ztmCXp/FxAmQ29ZkdYcTRztzFeUM9wECOg 21jHqqhNVpTnb4utm80= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to ns1.cdc.GOV for HEALTHINDICATORS.GOV/A
	Received 1052 bytes from 198.246.96.61
	;; Answer received from 198.246.96.61 (1052 bytes) ;; HEADER SECTION ;; id = 58225 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 4 arcount = 7 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; HEALTHINDICATORS.GOV. IN A ;; ANSWER SECTION (2 records) healthindicators.gov. 3600 IN A 64.191.212.230 healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20200817163742 20200807154659 1248 healthindicators.gov. rvXaSReuocVBRCAydzpZuYmDQ2xMIVAGBJFIv3GcWEykyQ+A4qV9J+q+MmSo4MlpDmoMLtJQNB49 X+8UUFwGnDUBlfg4P8wo1rV61bRssGNBGibzJFbAwCgbwTvUTTLgrvodTemfKpL8mrQhg/rb/SBp nIwpvPVMKfYs1q8Zem8= ) ;; AUTHORITY SECTION (4 records) healthindicators.gov. 3600 IN NS ns3.cdc.gov. healthindicators.gov. 3600 IN NS ns1.cdc.gov. healthindicators.gov. 3600 IN NS ns2.cdc.gov. healthindicators.gov. 3600 IN RRSIG ( NS 7 2 3600 20200817155359 20200807154941 1248 healthindicators.gov. nBZgTn+JY+BGlB2r21UCaHsNkhmxzGxNPyY92lkuL78qMzOf+8592FU3Az9sd0NC4EWId7BzGLXD O+KsmrA9Mv1KooSE4sRnYn7ZBHV2SuvcfzrwPFM9EWiueGr+fkptVW9qehFeg2OBP1PymQZJE1/r 7TWdO0J5r4KOqv8T5bw= ) ;; ADDITIONAL SECTION (7 records) ns2.cdc.gov. 600 IN A 198.246.96.92 ns1.cdc.gov. 600 IN A 198.246.96.61 ns3.cdc.gov. 600 IN A 198.246.125.10 ns2.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819170949 20200809170428 7589 cdc.gov. CtCWXai/5SH16w7psT8/plcvTUjxk3powwtk3jHtt4Yc5tAddfmkoRrWGj5auEnLmlLnRrJRRaEl SZTXEvhT3l1m2M15TZKnOw7Y+gnbNLJWTzkZcEUDBi0Ij6WeWNK7JTTCinHFYTVBUrshQ+/fwkib il6eB0nmN0WdEgsbmBY= ) ns1.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819160442 20200809152647 7589 cdc.gov. Q6754XLxRyHoA5hKgeN96cHLycRefO+KvVwxTUcTebrT/cztH6KRWGln3+w5TCU2ItoYqjBIYPYr 61t0/qyFOIYiI1jcq7XCqioIy5KIbL0UyMYHc4Hn+1vnUa2ee/VBbtXT21+3eJlIe8L5X86XEWrn rywVCIxv44CelChyOWw= ) ns3.cdc.gov. 600 IN RRSIG ( A 7 3 600 20200819164212 20200809164104 7589 cdc.gov. TAOsfTMtZcakH6krjT6Z2LASMV4dnJIfOXdkHJhWIWX+YtfWNn8Vt4drnzuVK27kPn39RYu0oIV2 rWb9+vx4a1iVwSNAcRlkauoxnetX0drMei6lphRLR7ztmCXp/FxAmQ29ZkdYcTRztzFeUM9wECOg 21jHqqhNVpTnb4utm80= ) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	HEALTHINDICATORS.GOV A RR has value 64.191.212.230
	Found 1 RRSIGs over A RRset
	`healthindicators.gov. 3600 IN RRSIG ( A 7 2 3600 20200817163742 20200807154659 1248 healthindicators.gov. rvXaSReuocVBRCAydzpZuYmDQ2xMIVAGBJFIv3GcWEykyQ+A4qV9J+q+MmSo4MlpDmoMLtJQNB49 X+8UUFwGnDUBlfg4P8wo1rV61bRssGNBGibzJFbAwCgbwTvUTTLgrvodTemfKpL8mrQhg/rb/SBp nIwpvPVMKfYs1q8Zem8= )`
	RRSIG=1248 and DNSKEY=1248 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test HEALTHINDICATORS.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: