Back to Verisign Labs Tools
Domain Name: Detail: more(+) / less(-) Time: 2019-08-23 05:14:29 UTC, NTP stratum 4

Analyzing DNSSEC problems for IAD.GOV

.
Found 2 DNSKEY records for .
DS=20326/SHA-256 verifies DNSKEY=20326/SEP
Found 1 RRSIGs over DNSKEY RRset
RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
GOV
Found 2 DS records for GOV in the . zone
DS=7698/SHA-1 has algorithm RSASHA256
DS=7698/SHA-256 has algorithm RSASHA256
Found 1 RRSIGs over DS RRset
RRSIG=59944 and DNSKEY=59944 verifies the DS RRset
Found 2 DNSKEY records for GOV
DS=7698/SHA-1 verifies DNSKEY=7698/SEP
Found 1 RRSIGs over DNSKEY RRset
RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
IAD.GOV
Found 4 DS records for IAD.GOV in the GOV zone
DS=61415/SHA-1 has algorithm RSASHA256
DS=6620/SHA-1 has algorithm RSASHA256
DS=61415/SHA-256 has algorithm RSASHA256
DS=6620/SHA-256 has algorithm RSASHA256
Found 1 RRSIGs over DS RRset
RRSIG=7877 and DNSKEY=7877 verifies the DS RRset
Unknown host bloodgem.IAD.GOV
Unknown host bloodaxe.IAD.GOV
Failed to get DNSKEY RR set for zone IAD.GOV
Unknown host bloodaxe.IAD.GOV
Unknown host bloodgem.IAD.GOV
No response from IAD.GOV nameservers

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test IAD.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options