DNSSEC Analyzer - UNNPP.GOV

Back to Verisign Labs Tools

Domain Name:

Detail: more(+) / less(-)

Time: 2019-02-21 07:22:02 UTC, NTP stratum 4

Analyzing DNSSEC problems for UNNPP.GOV

DS=19036/SHA-256 is now in the chain-of-trust

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 19036 8 2 49aac11d7b6f6446702e54a1607371607a1a41855200fd2ce1cdde32f24e8fb5 )`
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to f.root-servers.net for ./DNSKEY
	Error querying f.root-servers.net/2001:500:2f:0:0:0:0:f for ./DNSKEY: 'IPv6 transport disabled'
	Received 1425 bytes from 192.5.5.241
	;; Answer received from 192.5.5.241 (1425 bytes) ;; HEADER SECTION ;; id = 26657 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 5 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (5 records) . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN DNSKEY ( 385 3 8 AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjFFVQUTf6v58fLjwBd0YI0 EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoXbfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/Q Zxkjf5/Efucp2gaDX6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpzW5hO A2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relSQageu+ipAdTTJ25AsRTAoub8 ONGcLmqrAmRLKBP1dfwhYB4N7knNnulqQxA+Uk1ihz0= ) ; Key ID = 19164 . 172800 IN DNSKEY ( 256 3 8 AwEAAcH+axCdUOsTc9o+jmyVq5rsGTh1EcatSumPqEfsPBT+whyj0/UhD7cWeixV9Wqzj/cnqs8i WELqhdzGX41ZtaNQUfWNfOriASnWmX2D9m/EunplHu8nMSlDnDcT7+llE9tjk5HI1Sr7d9N16ZTI rbVALf65VB2ABbBG39dyAb7tz21PICJbSp2cd77UF7NFqEVkqohl/LkDw+7Apalmp0qAQT1Mgwi2 cVxZMKUiciA6EqS+KNajf0A6olO2oEhZnGGY6b1LTg34/YfHdiIIZQqAfqbieruCGHRiSscC2ZE7 iNreL/76f4JyIEUNkt6bQA29JsegxorLzQkpF7NKqZc= ) ; Key ID = 16749 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20190313000000 20190220000000 19164 . eyvOQiC637051ggBwNwq0Kle0vatTO4HrfxgLlRcVDWGZeYVoDRGkqPiCyC1K1HvUrRQHB8vbXfd hrVfXJpjh9e1+Uf403++n6J94wMi2UlAmUkNwo6ROE9JcT4QFpQrUj1TPqY9DpdRrRUYgAPl/PNC vKwIvbwSt4I070PLGGPeumOIPCeZr7YMt8ewiCS3uwOUJB6bk8qUo4tQeL5pkPpmFgozw2v7JT/8 nTZfbu6T0+9GmqRDxvizFVZ8lQRKZZif+Ilyb+Lz7j2XHiI0JszLEQ5vQKLKEtBtyHwcL7ZPgbN/ mpN9ik8h/Jx0H1hjhaS+jSCBBulq+hde8GFH0A== ) . 172800 IN RRSIG ( DNSKEY 8 0 172800 20190313000000 20190220000000 20326 . bKvs4iBtsS7x4UItBsNxJnGzKUowmON76AJt6DQlUjcDXdmNUGW0DNfwz91UCnfonlNeG09mCbRF zhfrgNiE2Niu0Qxh+EcygOjuy1uObcPgFBUsKp201u0WFQwrUl4O0NQfPY5Fa01e44v1u+L/yj2W K4gW2BKfW+5d9GIJhWRAPYWphOiG0+G1MUlWQ45cS07wu2X90+UDREw0prI0c4yJ9OiI6OnSvUvD hoyIgf5oHHYPieU7qu/aaiY8MdyJgfIelmFA65VzLDsTAHGoaagxJEolJehWSJl6AhY0mIs6lF2W XVCtEQbdLocsuCXln3w/n8jO2oJBotQ7S6E4bQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 3 DNSKEY records for .
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	`. 172800 IN DNSKEY ( 385 3 8 AwEAAagAIKlVZrpC6Ia7gEzahOR+9W29euxhJhVVLOyQbSEW0O8gcCjFFVQUTf6v58fLjwBd0YI0 EzrAcQqBGCzh/RStIoO8g0NfnfL2MTJRkxoXbfDaUeVPQuYEhg37NZWAJQ9VnMVDxP/VHL496M/Q Zxkjf5/Efucp2gaDX6RS6CXpoY68LsvPVjR0ZSwzz1apAzvN9dlzEheX7ICJBBtuA6G3LQpzW5hO A2hzCTMjJPJ8LbqF6dsV6DoBQzgul0sGIcGOYl7OyQdXfZ57relSQageu+ipAdTTJ25AsRTAoub8 ONGcLmqrAmRLKBP1dfwhYB4N7knNnulqQxA+Uk1ihz0= ) ; Key ID = 19164`
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAcH+axCdUOsTc9o+jmyVq5rsGTh1EcatSumPqEfsPBT+whyj0/UhD7cWeixV9Wqzj/cnqs8i WELqhdzGX41ZtaNQUfWNfOriASnWmX2D9m/EunplHu8nMSlDnDcT7+llE9tjk5HI1Sr7d9N16ZTI rbVALf65VB2ABbBG39dyAb7tz21PICJbSp2cd77UF7NFqEVkqohl/LkDw+7Apalmp0qAQT1Mgwi2 cVxZMKUiciA6EqS+KNajf0A6olO2oEhZnGGY6b1LTg34/YfHdiIIZQqAfqbieruCGHRiSscC2ZE7 iNreL/76f4JyIEUNkt6bQA29JsegxorLzQkpF7NKqZc= ) ; Key ID = 16749`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	DS=19036/SHA-256 is published, but a corresponding DNSKEY is not
	DNSKEY=19164/SEP is revoked
	Found 2 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20190313000000 20190220000000 19164 . eyvOQiC637051ggBwNwq0Kle0vatTO4HrfxgLlRcVDWGZeYVoDRGkqPiCyC1K1HvUrRQHB8vbXfd hrVfXJpjh9e1+Uf403++n6J94wMi2UlAmUkNwo6ROE9JcT4QFpQrUj1TPqY9DpdRrRUYgAPl/PNC vKwIvbwSt4I070PLGGPeumOIPCeZr7YMt8ewiCS3uwOUJB6bk8qUo4tQeL5pkPpmFgozw2v7JT/8 nTZfbu6T0+9GmqRDxvizFVZ8lQRKZZif+Ilyb+Lz7j2XHiI0JszLEQ5vQKLKEtBtyHwcL7ZPgbN/ mpN9ik8h/Jx0H1hjhaS+jSCBBulq+hde8GFH0A== )`
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20190313000000 20190220000000 20326 . bKvs4iBtsS7x4UItBsNxJnGzKUowmON76AJt6DQlUjcDXdmNUGW0DNfwz91UCnfonlNeG09mCbRF zhfrgNiE2Niu0Qxh+EcygOjuy1uObcPgFBUsKp201u0WFQwrUl4O0NQfPY5Fa01e44v1u+L/yj2W K4gW2BKfW+5d9GIJhWRAPYWphOiG0+G1MUlWQ45cS07wu2X90+UDREw0prI0c4yJ9OiI6OnSvUvD hoyIgf5oHHYPieU7qu/aaiY8MdyJgfIelmFA65VzLDsTAHGoaagxJEolJehWSJl6AhY0mIs6lF2W XVCtEQbdLocsuCXln3w/n8jO2oJBotQ7S6E4bQ== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=19164/SEP is now in the chain-of-trust
	DNSKEY=16749 is now in the chain-of-trust
	Query to l.root-servers.net for UNNPP.GOV/A
	Received 664 bytes from 199.7.83.42
	;; Answer received from 199.7.83.42 (664 bytes) ;; HEADER SECTION ;; id = 39858 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20190306050000 20190221040000 16749 . E1ZZ21bA8ntnR2CcQN68ZRPbsangjIdlWglLY09Ovt7w/c0Jubpl+Z6Kb6ScW5VpXIX2ySL/V6xO g3DzFUWcdAc+VfV8/qUweOan2yfDwtNtx+Hdal+5fDRYPeHewLu1V8Qmvl4aR9ig5fJ5/05KVZUc 9eu2qyF3I9ahzTkpoVDlY2yw8PLY1Te0CTwoH24FNT77SMPrPasJ/ay+6TlCrusF0tPktBknl99R U3o/6mZJm7coFIqcW7osTa8dABGh1hdfrs1Xgkl+yGw9OCgUQpA3AZcN3m0YLG1bKckQ8QRiXNhV +73NyoWa1eUCuSZfwEZ8Cj6qU68UZm0JDCbb7w== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to b.root-servers.net for GOV/DNSKEY
	Received 661 bytes from 199.9.14.201
	;; Answer received from 199.9.14.201 (661 bytes) ;; HEADER SECTION ;; id = 39571 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) gov. 172800 IN NS b.gov-servers.net. gov. 172800 IN NS a.gov-servers.net. gov. 172800 IN NS d.gov-servers.net. gov. 172800 IN NS c.gov-servers.net. gov. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20190306050000 20190221040000 16749 . E1ZZ21bA8ntnR2CcQN68ZRPbsangjIdlWglLY09Ovt7w/c0Jubpl+Z6Kb6ScW5VpXIX2ySL/V6xO g3DzFUWcdAc+VfV8/qUweOan2yfDwtNtx+Hdal+5fDRYPeHewLu1V8Qmvl4aR9ig5fJ5/05KVZUc 9eu2qyF3I9ahzTkpoVDlY2yw8PLY1Te0CTwoH24FNT77SMPrPasJ/ay+6TlCrusF0tPktBknl99R U3o/6mZJm7coFIqcW7osTa8dABGh1hdfrs1Xgkl+yGw9OCgUQpA3AZcN3m0YLG1bKckQ8QRiXNhV +73NyoWa1eUCuSZfwEZ8Cj6qU68UZm0JDCbb7w== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 b.gov-servers.net. 172800 IN A 209.112.123.30 c.gov-servers.net. 172800 IN A 69.36.153.30 d.gov-servers.net. 172800 IN A 81.19.194.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to j.root-servers.net for GOV/DS
	Error querying j.root-servers.net/2001:503:c27:0:0:0:2:30 for GOV/DS: 'IPv6 transport disabled'
	Received 403 bytes from 192.58.128.30
	;; Answer received from 192.58.128.30 (403 bytes) ;; HEADER SECTION ;; id = 21104 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (3 records) GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20190306050000 20190221040000 16749 . E1ZZ21bA8ntnR2CcQN68ZRPbsangjIdlWglLY09Ovt7w/c0Jubpl+Z6Kb6ScW5VpXIX2ySL/V6xO g3DzFUWcdAc+VfV8/qUweOan2yfDwtNtx+Hdal+5fDRYPeHewLu1V8Qmvl4aR9ig5fJ5/05KVZUc 9eu2qyF3I9ahzTkpoVDlY2yw8PLY1Te0CTwoH24FNT77SMPrPasJ/ay+6TlCrusF0tPktBknl99R U3o/6mZJm7coFIqcW7osTa8dABGh1hdfrs1Xgkl+yGw9OCgUQpA3AZcN3m0YLG1bKckQ8QRiXNhV +73NyoWa1eUCuSZfwEZ8Cj6qU68UZm0JDCbb7w== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found 2 DS records for GOV in the . zone
	DS=7698/SHA-1 has algorithm RSASHA256
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`GOV. 86400 IN RRSIG ( DS 8 1 86400 20190306050000 20190221040000 16749 . E1ZZ21bA8ntnR2CcQN68ZRPbsangjIdlWglLY09Ovt7w/c0Jubpl+Z6Kb6ScW5VpXIX2ySL/V6xO g3DzFUWcdAc+VfV8/qUweOan2yfDwtNtx+Hdal+5fDRYPeHewLu1V8Qmvl4aR9ig5fJ5/05KVZUc 9eu2qyF3I9ahzTkpoVDlY2yw8PLY1Te0CTwoH24FNT77SMPrPasJ/ay+6TlCrusF0tPktBknl99R U3o/6mZJm7coFIqcW7osTa8dABGh1hdfrs1Xgkl+yGw9OCgUQpA3AZcN3m0YLG1bKckQ8QRiXNhV +73NyoWa1eUCuSZfwEZ8Cj6qU68UZm0JDCbb7w== )`
	RRSIG=16749 and DNSKEY=16749 verifies the DS RRset
	DS=7698/SHA-1 is now in the chain-of-trust
	`GOV. 86400 IN DS 7698 8 1 6f109b46a80cea9613dc86d5a3e065520505aafe`
	`GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to d.gov-servers.net for GOV/DNSKEY
	Error querying d.gov-servers.net/2620:74:29:0:0:0:2:30 for GOV/DNSKEY: 'IPv6 transport disabled'
	Received 743 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (743 bytes) ;; HEADER SECTION ;; id = 13407 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 256 3 8 AQO1oAFyB/QSuf32vdl3Yp+o83rKLBdvjsz13AdVp8EooKwa6DL4D8G+e3PanKAJyWEiRpNQIAl2 Ra6JuC7DCiEPBziclmFygf2XGdY4qirPqVemcHHKNoVIMNUteughuiPaqlFY8gTZajQ02ZizqiYK +LRxpPs/ePcbETPT3oB9Ew== ) ; Key ID = 28157 GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20190303224731 20190216224231 7698 gov. IJNwadcbltKxKxpP+0War8mfKnzLNyIo0YNGrdFE9Fn7taZx50JinEvHHTS03gEoZqEm8G1JnFFr sWxiQlUZOVR3J+jdKiZ9UM+RC6Fxo2rXJ2T+PCGz6S2C8/Xl9YCPiV17a/HiPZhuwF4U+n6Np1ox bSfY1/GRL4oN5r6OMlEfqZAdoZh58axSBByvbDNcxC7j40RUFGYzvvpUYsj4DLcJlw+LS0zt0hVs iVfQmnQXiHx5ku0riOJQf8zMtnQ/R1ZiwdsBuDvrM7I5GndEBZFlb6O16eLs84ibjD2+R+4QE1lw INZzWsKg5G7B3qRnULzqjEbmY4adUMCN5CGMwg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 256 3 8 AQO1oAFyB/QSuf32vdl3Yp+o83rKLBdvjsz13AdVp8EooKwa6DL4D8G+e3PanKAJyWEiRpNQIAl2 Ra6JuC7DCiEPBziclmFygf2XGdY4qirPqVemcHHKNoVIMNUteughuiPaqlFY8gTZajQ02ZizqiYK +LRxpPs/ePcbETPT3oB9Ew== ) ; Key ID = 28157`
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-1 verifies DNSKEY=7698/SEP
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20190303224731 20190216224231 7698 gov. IJNwadcbltKxKxpP+0War8mfKnzLNyIo0YNGrdFE9Fn7taZx50JinEvHHTS03gEoZqEm8G1JnFFr sWxiQlUZOVR3J+jdKiZ9UM+RC6Fxo2rXJ2T+PCGz6S2C8/Xl9YCPiV17a/HiPZhuwF4U+n6Np1ox bSfY1/GRL4oN5r6OMlEfqZAdoZh58axSBByvbDNcxC7j40RUFGYzvvpUYsj4DLcJlw+LS0zt0hVs iVfQmnQXiHx5ku0riOJQf8zMtnQ/R1ZiwdsBuDvrM7I5GndEBZFlb6O16eLs84ibjD2+R+4QE1lw INZzWsKg5G7B3qRnULzqjEbmY4adUMCN5CGMwg== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=28157 is now in the chain-of-trust
	Query to d.gov-servers.net for UNNPP.GOV/A
	Received 422 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (422 bytes) ;; HEADER SECTION ;; id = 32281 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) UNNPP.GOV. 86400 IN NS auth111.ns.uu.net. UNNPP.GOV. 86400 IN NS auth120.ns.uu.net. UNNPP.GOV. 3600 IN DS 8935 7 1 c3937e8a6b6896ef1196790cd76f60c671d13608 UNNPP.GOV. 3600 IN DS ( 8935 7 2 0064fa628ca6eabb4baf03cb85caec36a5ac9ac755fe9076e15f7ba88633b0d7 ) UNNPP.GOV. 3600 IN DS 51109 7 1 089c2416470d369f5764f4d987600a6c5618affa UNNPP.GOV. 3600 IN DS ( 51109 7 2 e1e20720b68a539f8b3996efdf78137cc9efc80764b09b77c159669997037ce9 ) UNNPP.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190228041006 20190221041006 28157 gov. FmGRkwqhm+COWVSzC8iXsXRMm8u8UGvtxGiwPByQlX/qFU9YqTugFvmxYP7MoeUABYkyKV4PVlHw jOy2qstdF7f6HnO01YmleT3PYjUetuya1SZ4jGHMYmR582z2+y6Z4/PYXfd5X1BnyMpVjAbYKKNY sFjDcaphS+XcH782xFA= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Query to a.gov-servers.net for UNNPP.GOV/DNSKEY
	Error querying a.gov-servers.net/2001:500:4431:0:0:0:2:30 for UNNPP.GOV/DNSKEY: 'IPv6 transport disabled'
	Received 422 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (422 bytes) ;; HEADER SECTION ;; id = 40085 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) UNNPP.GOV. 86400 IN NS auth111.ns.uu.net. UNNPP.GOV. 86400 IN NS auth120.ns.uu.net. UNNPP.GOV. 3600 IN DS 8935 7 1 c3937e8a6b6896ef1196790cd76f60c671d13608 UNNPP.GOV. 3600 IN DS ( 8935 7 2 0064fa628ca6eabb4baf03cb85caec36a5ac9ac755fe9076e15f7ba88633b0d7 ) UNNPP.GOV. 3600 IN DS 51109 7 1 089c2416470d369f5764f4d987600a6c5618affa UNNPP.GOV. 3600 IN DS ( 51109 7 2 e1e20720b68a539f8b3996efdf78137cc9efc80764b09b77c159669997037ce9 ) UNNPP.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190228041006 20190221041006 28157 gov. FmGRkwqhm+COWVSzC8iXsXRMm8u8UGvtxGiwPByQlX/qFU9YqTugFvmxYP7MoeUABYkyKV4PVlHw jOy2qstdF7f6HnO01YmleT3PYjUetuya1SZ4jGHMYmR582z2+y6Z4/PYXfd5X1BnyMpVjAbYKKNY sFjDcaphS+XcH782xFA= ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found child zone UNNPP.GOV

UNNPP.GOV

	Checking DS between GOV and UNNPP.GOV
	Query to c.gov-servers.net for UNNPP.GOV/DS
	Received 369 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (369 bytes) ;; HEADER SECTION ;; id = 22428 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 5 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN DS ;; ANSWER SECTION (5 records) UNNPP.GOV. 3600 IN DS 8935 7 1 c3937e8a6b6896ef1196790cd76f60c671d13608 UNNPP.GOV. 3600 IN DS ( 8935 7 2 0064fa628ca6eabb4baf03cb85caec36a5ac9ac755fe9076e15f7ba88633b0d7 ) UNNPP.GOV. 3600 IN DS 51109 7 1 089c2416470d369f5764f4d987600a6c5618affa UNNPP.GOV. 3600 IN DS ( 51109 7 2 e1e20720b68a539f8b3996efdf78137cc9efc80764b09b77c159669997037ce9 ) UNNPP.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190228041006 20190221041006 28157 gov. FmGRkwqhm+COWVSzC8iXsXRMm8u8UGvtxGiwPByQlX/qFU9YqTugFvmxYP7MoeUABYkyKV4PVlHw jOy2qstdF7f6HnO01YmleT3PYjUetuya1SZ4jGHMYmR582z2+y6Z4/PYXfd5X1BnyMpVjAbYKKNY sFjDcaphS+XcH782xFA= ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found 4 DS records for UNNPP.GOV in the GOV zone
	DS=8935/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=8935/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	DS=51109/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=51109/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`UNNPP.GOV. 3600 IN RRSIG ( DS 8 2 3600 20190228041006 20190221041006 28157 gov. FmGRkwqhm+COWVSzC8iXsXRMm8u8UGvtxGiwPByQlX/qFU9YqTugFvmxYP7MoeUABYkyKV4PVlHw jOy2qstdF7f6HnO01YmleT3PYjUetuya1SZ4jGHMYmR582z2+y6Z4/PYXfd5X1BnyMpVjAbYKKNY sFjDcaphS+XcH782xFA= )`
	RRSIG=28157 and DNSKEY=28157 verifies the DS RRset
	DS=8935/SHA-1 is now in the chain-of-trust
	DS=51109/SHA-1 is now in the chain-of-trust
	`UNNPP.GOV. 3600 IN DS 8935 7 1 c3937e8a6b6896ef1196790cd76f60c671d13608`
	`UNNPP.GOV. 3600 IN DS ( 8935 7 2 0064fa628ca6eabb4baf03cb85caec36a5ac9ac755fe9076e15f7ba88633b0d7 )`
	`UNNPP.GOV. 3600 IN DS 51109 7 1 089c2416470d369f5764f4d987600a6c5618affa`
	`UNNPP.GOV. 3600 IN DS ( 51109 7 2 e1e20720b68a539f8b3996efdf78137cc9efc80764b09b77c159669997037ce9 )`
	Query to auth111.ns.uu.net for UNNPP.GOV/DNSKEY
	Received 1745 bytes from 198.6.1.115
	;; Answer received from 198.6.1.115 (1745 bytes) ;; HEADER SECTION ;; id = 14949 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 6 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN DNSKEY ;; ANSWER SECTION (6 records) unnpp.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAcVQpQ4cGrR8MnR+PZsxz6iYQMW1WZM2TZAwu+kPPvSk9mrhmaOskHZhg2PIa7XTXlj3HTHt pn7A8w1Yx8wm8yn/RvWe0VXJyw+0CPiJXOfbkzwNvIv3gVKvc7oGOm2tOIWwhbx3DjGTvqaH9M6o 8G0v1wGDGZcpqvSj8liRwfDe/+DmwgRxQVEojAi0oaG08PnURsHoZPshSOk9MozrqOhoNU+pBxGn ZcUbxKbQeSDNfsnKCeTbfOESvChU+h/tDWwI4tvz+uI+V4xNiTvMZjHoxyzp4IM7CbqE7rpcTM7z anpffN5kQBuRBuJ3/h2k7vx7BnxXdnE8wlKZVdVJh6E= ) ; Key ID = 33417 unnpp.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAZCgjCJuN7fizMq4WJR6gPXW2FenMd+1yRK+OJ90zQi5MnsX+23kSlbtC877ACC++EezJGjB PYP8vIRERiQoZt18Q7Mv7qsH2V803W88f1GxyruukZA33CAoKRdqs7xbGgVGYCRKjhYjN2RF4Yqn 6SwzMVdqDyBkgw1zd9r+nwagQxjjE3a1rQlzEy1Qp6wuO4c6HqlLBhCRSnM32jBS7mgw1tAPu2PB IKCJg6quhZbjfE2d9kN17k4Cg3CGIgoriX7ZAqUs6+XeXm0wbRrlQ1TNibRpwfy8FUJRM1dUjHkS 259L3CEO2uasNCcWq5i+57omLBclutEmmOJM5K1ugzk= ) ; Key ID = 21305 unnpp.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAZkGvtqXDc2aW90LcSv3wLSVMW5GO96Xm3Zsf+5zyKdlNynhSuBdMiIsddQlBA76RWhqQVm9 DtG5Gb1/9fBscXr5QmaeyKfxbtNZhWxFADSu+HyXGo/+iB7GueI/Ras8OExzt4mPrBupzEkcnrm6 Q5FeB7RD/qBfCns9Zr1MP0z2CHza55OglxpvLLazU1ftX8NW4dp0e4ljF6M+fLjnQggoHmJdmezw S25Z3CSd4dqAYSpp6cW2owo5DHid5M1unt7pxemxuHhCs6vRvk/mp4RGqeqt+V5DcZP7cUG1+ZYo Nc9qUBAwTE9x+4q136Xj9PLvybdl/bf6WKcU6/B8r8s= ) ; Key ID = 51109 unnpp.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAbMwt+fZJxy59WufS3BZvd1oaxC+p4n7U/ksXzELkd+C8CtKxoUe2W/JMmNQ/0+nXchtmZoI SzRMS3XtjU/bjxwFE+/wmidodFzpVdWsir8GuOJUIdJfrmpFVc9+KIFWHYxzkFHRdT8rTp3ZS+t7 cexHhfKTuyUOhfnyAbHjYmWmUUQjKUjdHflxRePYcwntFL/XNPdSm95SUKdVf3JwwYgi7QbW02KS spb6xKI81QEQDELQ2hqK8OpGl2UJ7l7hf7IXYhHcJkjJmX56gS2HLZvmDybfXyDSdYDkm+qYtMRM R/2ZnCyTZ/s/3PRhcV/srZH+W3f9Za0cmaDQFbL7B1s= ) ; Key ID = 8935 unnpp.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190221030521 20190214020521 21305 unnpp.gov. MikWxyJtgG7VVtAKeUO4+g2qnOFZ7mGZsHU8rnUTWMoV+ocUqg0RNpjp6loXxYohUmxb/SV/uI2H M5M+csyYBR7OtOf2K8dDJ+OyzKxAXiLBRS9IwKCfnzjgfhAFRKQCbOGUJv3r2oDDqLAmOMxZPOgv Wd7qOeN9Bl1Gu4AKOr1M9gfaCJ6WieYnDBJXRAM0vU2iReHgir0kqPsvy0svlhqDU1Qpbjjdab0k nK6E9sOgZ0KBdoqzZ3iES8AhCz915hnMcf2sFUEXFTP2ucUVllCUaRV9O6Da4JwWape+O1q16Bon 4UZ1Ow7a1qQ4Uiprb/PaU5qjI9Xdxox4D35YWw== ) unnpp.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190221030521 20190214020521 51109 unnpp.gov. N2x4azHHbdNSOOqYuVZwbdTLfHGaFc7H8AQZJD7sybeuqhpITWlU4AIGMQqkKodczpWPiducn/Ui NfS4EaqlLjm4zhajCXUkGAhh630q2ShMbqW/JDRp4I7ZeyAs957CEtpfTaKA3KFLhzPEJAK72xJG uel+FNxEo4Xvi0jN5fEfrhFB805ny3GNeul7Y9y2ZQgNxGfkSYmuf1jLf6alCpinfaMYl80Zm79F xmq3UKRcr1mQYvM8X2UAtQxOH57Y7JQzrG3Nyb1vultmPGiDRNwnmz1ORZ4jyh7zwr/69qDoEbQU Icd3YBiuVF1f4VhUG7b38ZYJrj4xayZ4oJpoeA== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 4 DNSKEY records for UNNPP.GOV
	`unnpp.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAcVQpQ4cGrR8MnR+PZsxz6iYQMW1WZM2TZAwu+kPPvSk9mrhmaOskHZhg2PIa7XTXlj3HTHt pn7A8w1Yx8wm8yn/RvWe0VXJyw+0CPiJXOfbkzwNvIv3gVKvc7oGOm2tOIWwhbx3DjGTvqaH9M6o 8G0v1wGDGZcpqvSj8liRwfDe/+DmwgRxQVEojAi0oaG08PnURsHoZPshSOk9MozrqOhoNU+pBxGn ZcUbxKbQeSDNfsnKCeTbfOESvChU+h/tDWwI4tvz+uI+V4xNiTvMZjHoxyzp4IM7CbqE7rpcTM7z anpffN5kQBuRBuJ3/h2k7vx7BnxXdnE8wlKZVdVJh6E= ) ; Key ID = 33417`
	`unnpp.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAZCgjCJuN7fizMq4WJR6gPXW2FenMd+1yRK+OJ90zQi5MnsX+23kSlbtC877ACC++EezJGjB PYP8vIRERiQoZt18Q7Mv7qsH2V803W88f1GxyruukZA33CAoKRdqs7xbGgVGYCRKjhYjN2RF4Yqn 6SwzMVdqDyBkgw1zd9r+nwagQxjjE3a1rQlzEy1Qp6wuO4c6HqlLBhCRSnM32jBS7mgw1tAPu2PB IKCJg6quhZbjfE2d9kN17k4Cg3CGIgoriX7ZAqUs6+XeXm0wbRrlQ1TNibRpwfy8FUJRM1dUjHkS 259L3CEO2uasNCcWq5i+57omLBclutEmmOJM5K1ugzk= ) ; Key ID = 21305`
	`unnpp.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAZkGvtqXDc2aW90LcSv3wLSVMW5GO96Xm3Zsf+5zyKdlNynhSuBdMiIsddQlBA76RWhqQVm9 DtG5Gb1/9fBscXr5QmaeyKfxbtNZhWxFADSu+HyXGo/+iB7GueI/Ras8OExzt4mPrBupzEkcnrm6 Q5FeB7RD/qBfCns9Zr1MP0z2CHza55OglxpvLLazU1ftX8NW4dp0e4ljF6M+fLjnQggoHmJdmezw S25Z3CSd4dqAYSpp6cW2owo5DHid5M1unt7pxemxuHhCs6vRvk/mp4RGqeqt+V5DcZP7cUG1+ZYo Nc9qUBAwTE9x+4q136Xj9PLvybdl/bf6WKcU6/B8r8s= ) ; Key ID = 51109`
	`unnpp.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAbMwt+fZJxy59WufS3BZvd1oaxC+p4n7U/ksXzELkd+C8CtKxoUe2W/JMmNQ/0+nXchtmZoI SzRMS3XtjU/bjxwFE+/wmidodFzpVdWsir8GuOJUIdJfrmpFVc9+KIFWHYxzkFHRdT8rTp3ZS+t7 cexHhfKTuyUOhfnyAbHjYmWmUUQjKUjdHflxRePYcwntFL/XNPdSm95SUKdVf3JwwYgi7QbW02KS spb6xKI81QEQDELQ2hqK8OpGl2UJ7l7hf7IXYhHcJkjJmX56gS2HLZvmDybfXyDSdYDkm+qYtMRM R/2ZnCyTZ/s/3PRhcV/srZH+W3f9Za0cmaDQFbL7B1s= ) ; Key ID = 8935`
	DNSKEY=51109/SEP is now in the chain-of-trust
	DS=51109/SHA-1 verifies DNSKEY=51109/SEP
	DS=51109/SHA-256 verifies DNSKEY=51109/SEP
	DNSKEY=8935/SEP is now in the chain-of-trust
	DS=8935/SHA-1 verifies DNSKEY=8935/SEP
	DS=8935/SHA-256 verifies DNSKEY=8935/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`unnpp.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190221030521 20190214020521 21305 unnpp.gov. MikWxyJtgG7VVtAKeUO4+g2qnOFZ7mGZsHU8rnUTWMoV+ocUqg0RNpjp6loXxYohUmxb/SV/uI2H M5M+csyYBR7OtOf2K8dDJ+OyzKxAXiLBRS9IwKCfnzjgfhAFRKQCbOGUJv3r2oDDqLAmOMxZPOgv Wd7qOeN9Bl1Gu4AKOr1M9gfaCJ6WieYnDBJXRAM0vU2iReHgir0kqPsvy0svlhqDU1Qpbjjdab0k nK6E9sOgZ0KBdoqzZ3iES8AhCz915hnMcf2sFUEXFTP2ucUVllCUaRV9O6Da4JwWape+O1q16Bon 4UZ1Ow7a1qQ4Uiprb/PaU5qjI9Xdxox4D35YWw== )`
	`unnpp.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20190221030521 20190214020521 51109 unnpp.gov. N2x4azHHbdNSOOqYuVZwbdTLfHGaFc7H8AQZJD7sybeuqhpITWlU4AIGMQqkKodczpWPiducn/Ui NfS4EaqlLjm4zhajCXUkGAhh630q2ShMbqW/JDRp4I7ZeyAs957CEtpfTaKA3KFLhzPEJAK72xJG uel+FNxEo4Xvi0jN5fEfrhFB805ny3GNeul7Y9y2ZQgNxGfkSYmuf1jLf6alCpinfaMYl80Zm79F xmq3UKRcr1mQYvM8X2UAtQxOH57Y7JQzrG3Nyb1vultmPGiDRNwnmz1ORZ4jyh7zwr/69qDoEbQU Icd3YBiuVF1f4VhUG7b38ZYJrj4xayZ4oJpoeA== )`
	RRSIG=21305 is expired
	RRSIG=51109 is expired
	None of the 2 RRSIG and 4 DNSKEY records validate the DNSKEY RRset
	The DNSKEY RRset was not signed by any keys in the chain-of-trust
	Query to auth120.ns.uu.net for UNNPP.GOV/A
	Received 789 bytes from 198.6.1.154
	;; Answer received from 198.6.1.154 (789 bytes) ;; HEADER SECTION ;; id = 18663 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (4 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 1542 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190228030529 20190221020529 21305 unnpp.gov. kDApwi4u+5LprUh80iDRwsr6ytM7okgEpXFF9qB4og6RqPDQcm1j4DVx2mpG0xv11N3Q8C7tHVsp /wpQne6zH92kWrURMEQdUOVK9/szb7UEGN4xcDJzOLTcUUCarEgHRvXwR6PFVi0uDTl0OR6jV4iB B5ItqvgwvsU+oyYU1p9SR1W7i3esAcjlugOgvfrhPxs12k2xbtFlZeg5cwu1p/4S5MvgdrTFfFl7 4fX/OQOGtrY3vweRiTjwXFYsq4PpTTV0nwYeS89GQwxk26y37a5/XISY/vDHZT5LYtdAzCYFZNLf 9hImCblksdm0oNY5bMwuKZNMPl1iOzp6A2HaEw== ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN NSEC3 ( 1 0 12 aabbccdd if5g15lrrgnqiqubc3f07li0o8kho1j9 NS SOA MX TXT RRSIG DNSKEY NSEC3PARAM ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN RRSIG ( NSEC3 7 3 3600 20190228030529 20190221020529 21305 unnpp.gov. PuijMAfdWXgigCaN+3P5n9tJZeayaBID7JvpimmKhgGeohyk95KWNl3yYvMsCw3SBy3hDKIK73wq WCmnrmXJok1+BmLPc/E/8MqwjjpTCHJ8LqdFYScR8kDFKULcrUNEXjPV7O0yA2qg4QR5ru646qWb ytRe59PGBFyJciB9UaV0E0ifX+RlmtxjFLudf7RcX3jcYmIduih7mXruFR5acg0F1oaW+b0YpNRN j93MTCyxFV5d7yuFHaJQyGmt22Gy+v3HagpOuvG0AvEziZp5zDBwg5fKmWJogcnrWBA4UX+mwdFT zepKBl2igQhmXHmQYUEAQL07Yr0ILXm32TgIcA== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	UNNPP.GOV is authoritative for UNNPP.GOV
	Found RRSIG signed by unnpp.gov zone
	Query to auth120.ns.uu.net for UNNPP.GOV/SOA
	Received 408 bytes from 198.6.1.154
	;; Answer received from 198.6.1.154 (408 bytes) ;; HEADER SECTION ;; id = 63159 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN SOA ;; ANSWER SECTION (2 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 1542 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190228030529 20190221020529 21305 unnpp.gov. kDApwi4u+5LprUh80iDRwsr6ytM7okgEpXFF9qB4og6RqPDQcm1j4DVx2mpG0xv11N3Q8C7tHVsp /wpQne6zH92kWrURMEQdUOVK9/szb7UEGN4xcDJzOLTcUUCarEgHRvXwR6PFVi0uDTl0OR6jV4iB B5ItqvgwvsU+oyYU1p9SR1W7i3esAcjlugOgvfrhPxs12k2xbtFlZeg5cwu1p/4S5MvgdrTFfFl7 4fX/OQOGtrY3vweRiTjwXFYsq4PpTTV0nwYeS89GQwxk26y37a5/XISY/vDHZT5LYtdAzCYFZNLf 9hImCblksdm0oNY5bMwuKZNMPl1iOzp6A2HaEw== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to auth111.ns.uu.net for UNNPP.GOV/SOA
	Received 408 bytes from 198.6.1.115
	;; Answer received from 198.6.1.115 (408 bytes) ;; HEADER SECTION ;; id = 508 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN SOA ;; ANSWER SECTION (2 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 1528 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190221030521 20190214020521 21305 unnpp.gov. WJkKW1smNxSpv0Vpg7ZkbXJyq8zWqh2Yjh6ujer9PUiREqOBG5HExbneH7mS0bMif0MZ2sO8vboo wVh8VHRfL++jmrReY2bHbPPF3R5aTapvJjXaRYYdemn3J79VBtX6KoQZA0gBxpvCCKPI+yPGP9jR O4HVhkdfYT3POlCJXB/sf58cyE7wlRqLqAQXRJa62/9mFGaHQHXqew/l32NrPeye8jbZM8b2KPV1 kstGXFpPlMJQZVg57o07vNDu6z27fNMyBii9BsWYTEyKOE9KCo5o2laqhIx5+V8vWxCfBNtl3kD0 k3YWhd3H+a2l3A21t+ViCQuiNlsxtS0XqdI73w== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	auth111.ns.uu.net serial (1528) differs from auth120.ns.uu.net serial (1542)
	Query to auth120.ns.uu.net for UNNPP.GOV/A
	Received 789 bytes from 198.6.1.154
	;; Answer received from 198.6.1.154 (789 bytes) ;; HEADER SECTION ;; id = 5294 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (4 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 1542 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190228030529 20190221020529 21305 unnpp.gov. kDApwi4u+5LprUh80iDRwsr6ytM7okgEpXFF9qB4og6RqPDQcm1j4DVx2mpG0xv11N3Q8C7tHVsp /wpQne6zH92kWrURMEQdUOVK9/szb7UEGN4xcDJzOLTcUUCarEgHRvXwR6PFVi0uDTl0OR6jV4iB B5ItqvgwvsU+oyYU1p9SR1W7i3esAcjlugOgvfrhPxs12k2xbtFlZeg5cwu1p/4S5MvgdrTFfFl7 4fX/OQOGtrY3vweRiTjwXFYsq4PpTTV0nwYeS89GQwxk26y37a5/XISY/vDHZT5LYtdAzCYFZNLf 9hImCblksdm0oNY5bMwuKZNMPl1iOzp6A2HaEw== ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN NSEC3 ( 1 0 12 aabbccdd if5g15lrrgnqiqubc3f07li0o8kho1j9 NS SOA MX TXT RRSIG DNSKEY NSEC3PARAM ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN RRSIG ( NSEC3 7 3 3600 20190228030529 20190221020529 21305 unnpp.gov. PuijMAfdWXgigCaN+3P5n9tJZeayaBID7JvpimmKhgGeohyk95KWNl3yYvMsCw3SBy3hDKIK73wq WCmnrmXJok1+BmLPc/E/8MqwjjpTCHJ8LqdFYScR8kDFKULcrUNEXjPV7O0yA2qg4QR5ru646qWb ytRe59PGBFyJciB9UaV0E0ifX+RlmtxjFLudf7RcX3jcYmIduih7mXruFR5acg0F1oaW+b0YpNRN j93MTCyxFV5d7yuFHaJQyGmt22Gy+v3HagpOuvG0AvEziZp5zDBwg5fKmWJogcnrWBA4UX+mwdFT zepKBl2igQhmXHmQYUEAQL07Yr0ILXm32TgIcA== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	NSEC3 validation not implemented yet
	Found 1 RRSIGs over SOA RRset
	`unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20190228030529 20190221020529 21305 unnpp.gov. kDApwi4u+5LprUh80iDRwsr6ytM7okgEpXFF9qB4og6RqPDQcm1j4DVx2mpG0xv11N3Q8C7tHVsp /wpQne6zH92kWrURMEQdUOVK9/szb7UEGN4xcDJzOLTcUUCarEgHRvXwR6PFVi0uDTl0OR6jV4iB B5ItqvgwvsU+oyYU1p9SR1W7i3esAcjlugOgvfrhPxs12k2xbtFlZeg5cwu1p/4S5MvgdrTFfFl7 4fX/OQOGtrY3vweRiTjwXFYsq4PpTTV0nwYeS89GQwxk26y37a5/XISY/vDHZT5LYtdAzCYFZNLf 9hImCblksdm0oNY5bMwuKZNMPl1iOzp6A2HaEw== )`
	RRSIG=21305 and DNSKEY=21305 verifies the SOA RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test UNNPP.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: