DNSSEC Analyzer - UNNPP.GOV

Domain Name:

Time: 2021-05-11 00:46:27 UTC, NTP stratum 4

Analyzing DNSSEC problems for UNNPP.GOV

DS=20326/SHA-256 is now in the chain-of-trust

	Checking DS between Trust Anchor and .
	`. IN DS ( 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d )`
	Query to a.root-servers.net for ./DNSKEY
	Received 864 bytes from 198.41.0.4
	;; Answer received from 198.41.0.4 (864 bytes) ;; HEADER SECTION ;; id = 45146 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; . IN DNSKEY ;; ANSWER SECTION (3 records) . 172800 IN DNSKEY ( 256 3 8 AwEAAa+HvD7XXjmL+1htThUQyZW7oWGnjzKHJASg3TSR5Bmu5LfnSVW7fxqZa2oAYo2ionIQWyqA j/loApzg8GNMhyIibftPJso54uWRQ2GaoMrwLD5SLu676kf7urJq6nqdjNC0aJM/C888li69lVH6 tiu2tZm1NH3cmgfnMUJpD60bsrDUqs7XwftmNkdkHa4ltQbM3UNPyfTaNBQYoH3wpOpSjdk3tyDR nreBO6Idrw+DGf/rve4sL3qiSaXfYIkcwAwozxR34iHU5dbCDs8S6FmZYhoSVKVgNSUkudxhd9/6 RrZkYRgvwRsQXl3UwsacU1DsXcORqIC+7NlQ6M2OJVU= ) ; Key ID = 14631 . 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326 . 172800 IN RRSIG ( DNSKEY 8 0 172800 20210522000000 20210501000000 20326 . KTOHq4gvmIC2KJOzZwQhHGonCSPCCEtX/453Ow6uauO3BjuoNp3Bdjh2BxEaHBQ5mvp+n/WjsrlQ dQvuf1BSZfVUJoOm3ofTQI6rRpex3rYxj8BYBjgSxYcRJniVP1nRnAozTspKfsm/bCUqB0RsnXWh 4tySxKv5fs8Ej7Eph9aG7JpIy7GuoqCxyAEKSJ6IOG8iTKtfInjg0zSF+ElRlr+K9MeCJxvsVeCP BR5BNWQ4EimmoMSCL7DfEzyHsKLau11nrDpx2jBih72PG6UmMohitJp+cCQz+C2qUSsiuME4olp9 X64P2CwkqY5T75GOmmVX+WJZsBd9xsuQkUuHTQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for .
	`. 172800 IN DNSKEY ( 256 3 8 AwEAAa+HvD7XXjmL+1htThUQyZW7oWGnjzKHJASg3TSR5Bmu5LfnSVW7fxqZa2oAYo2ionIQWyqA j/loApzg8GNMhyIibftPJso54uWRQ2GaoMrwLD5SLu676kf7urJq6nqdjNC0aJM/C888li69lVH6 tiu2tZm1NH3cmgfnMUJpD60bsrDUqs7XwftmNkdkHa4ltQbM3UNPyfTaNBQYoH3wpOpSjdk3tyDR nreBO6Idrw+DGf/rve4sL3qiSaXfYIkcwAwozxR34iHU5dbCDs8S6FmZYhoSVKVgNSUkudxhd9/6 RrZkYRgvwRsQXl3UwsacU1DsXcORqIC+7NlQ6M2OJVU= ) ; Key ID = 14631`
	`. 172800 IN DNSKEY ( 257 3 8 AwEAAaz/tAm8yTn4Mfeh5eyI96WSVexTBAvkMgJzkKTOiW1vkIbzxeF3+/4RgWOq7HrxRixHlFlE xOLAJr5emLvN7SWXgnLh4+B5xQlNVz8Og8kvArMtNROxVQuCaSnIDdD5LKyWbRd2n9WGe2R8PzgC mr3EgVLrjyBxWezF0jLHwVN8efS3rCj/EWgvIWgb9tarpVUDK/b58Da+sqqls3eNbuv7pr+eoZG+ SrDK6nWeL3c6H5Apxz7LjVc1uTIdsIXxuOLYA4/ilBmSVIzuDWfdRUfhHdY6+cn8HFRm+2hM8AnX GXws9555KrUB5qihylGa8subX2Nn6UwNR1AkUTV74bU= ) ; Key ID = 20326`
	DNSKEY=20326/SEP is now in the chain-of-trust
	DS=20326/SHA-256 verifies DNSKEY=20326/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`. 172800 IN RRSIG ( DNSKEY 8 0 172800 20210522000000 20210501000000 20326 . KTOHq4gvmIC2KJOzZwQhHGonCSPCCEtX/453Ow6uauO3BjuoNp3Bdjh2BxEaHBQ5mvp+n/WjsrlQ dQvuf1BSZfVUJoOm3ofTQI6rRpex3rYxj8BYBjgSxYcRJniVP1nRnAozTspKfsm/bCUqB0RsnXWh 4tySxKv5fs8Ej7Eph9aG7JpIy7GuoqCxyAEKSJ6IOG8iTKtfInjg0zSF+ElRlr+K9MeCJxvsVeCP BR5BNWQ4EimmoMSCL7DfEzyHsKLau11nrDpx2jBih72PG6UmMohitJp+cCQz+C2qUSsiuME4olp9 X64P2CwkqY5T75GOmmVX+WJZsBd9xsuQkUuHTQ== )`
	RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
	DNSKEY=14631 is now in the chain-of-trust
	Query to l.root-servers.net for UNNPP.GOV/A
	Received 628 bytes from 199.7.83.42
	;; Answer received from 199.7.83.42 (628 bytes) ;; HEADER SECTION ;; id = 21232 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20210523200000 20210510190000 14631 . SjqaGxB7M4EuzOJoZBBRa8SbP3aTClssQ28CRZ7X6RbDSPw/kn5bbpKhgejbppKKb8u9bzMX6nrE g62bgNKSc+S4gzGjZDJ43j7t6BbU86Xkkbaubt7lDVTogSYIL1fe0+8hGSQm6+te37QYmIxU1iJP fsl8Sq1v84uvRAttkRVohWpg6FWVr/GmbndjB1J1PxM9mTaUVK8BNt95hFuVAHDyvdGRSXw2SJ7g 3Mvf4GUVzgMDnjIO9QGVDSoMzCmUxJ1jZLs6zkHT/XxbNI16osdmH8pdANxiyg3G45wlyidLy3Gr RJ6TZFc7A+PLbQ25wwKnSgi5EJrHWZGpILap7w== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN A 209.112.123.30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN A 69.36.153.30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN A 81.19.194.30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to f.root-servers.net for GOV/DNSKEY
	Received 622 bytes from 192.5.5.241
	;; Answer received from 192.5.5.241 (622 bytes) ;; HEADER SECTION ;; id = 58829 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 6 arcount = 9 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (6 records) GOV. 172800 IN NS a.gov-servers.net. GOV. 172800 IN NS b.gov-servers.net. GOV. 172800 IN NS c.gov-servers.net. GOV. 172800 IN NS d.gov-servers.net. GOV. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) GOV. 86400 IN RRSIG ( DS 8 1 86400 20210523200000 20210510190000 14631 . SjqaGxB7M4EuzOJoZBBRa8SbP3aTClssQ28CRZ7X6RbDSPw/kn5bbpKhgejbppKKb8u9bzMX6nrE g62bgNKSc+S4gzGjZDJ43j7t6BbU86Xkkbaubt7lDVTogSYIL1fe0+8hGSQm6+te37QYmIxU1iJP fsl8Sq1v84uvRAttkRVohWpg6FWVr/GmbndjB1J1PxM9mTaUVK8BNt95hFuVAHDyvdGRSXw2SJ7g 3Mvf4GUVzgMDnjIO9QGVDSoMzCmUxJ1jZLs6zkHT/XxbNI16osdmH8pdANxiyg3G45wlyidLy3Gr RJ6TZFc7A+PLbQ25wwKnSgi5EJrHWZGpILap7w== ) ;; ADDITIONAL SECTION (9 records) a.gov-servers.net. 172800 IN A 69.36.157.30 a.gov-servers.net. 172800 IN AAAA 2001:500:4431::2:30 b.gov-servers.net. 172800 IN A 209.112.123.30 b.gov-servers.net. 172800 IN AAAA 2620:74:27::2:30 c.gov-servers.net. 172800 IN A 69.36.153.30 c.gov-servers.net. 172800 IN AAAA 2620:74:28::2:30 d.gov-servers.net. 172800 IN A 81.19.194.30 d.gov-servers.net. 172800 IN AAAA 2620:74:29::2:30 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1472 ;; option:
	Found child zone GOV

GOV

	Checking DS between . and GOV
	Query to c.root-servers.net for GOV/DS
	Received 370 bytes from 192.33.4.12
	;; Answer received from 192.33.4.12 (370 bytes) ;; HEADER SECTION ;; id = 54365 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DS ;; ANSWER SECTION (2 records) gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 ) gov. 86400 IN RRSIG ( DS 8 1 86400 20210523200000 20210510190000 14631 . SjqaGxB7M4EuzOJoZBBRa8SbP3aTClssQ28CRZ7X6RbDSPw/kn5bbpKhgejbppKKb8u9bzMX6nrE g62bgNKSc+S4gzGjZDJ43j7t6BbU86Xkkbaubt7lDVTogSYIL1fe0+8hGSQm6+te37QYmIxU1iJP fsl8Sq1v84uvRAttkRVohWpg6FWVr/GmbndjB1J1PxM9mTaUVK8BNt95hFuVAHDyvdGRSXw2SJ7g 3Mvf4GUVzgMDnjIO9QGVDSoMzCmUxJ1jZLs6zkHT/XxbNI16osdmH8pdANxiyg3G45wlyidLy3Gr RJ6TZFc7A+PLbQ25wwKnSgi5EJrHWZGpILap7w== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Found 1 DS records for GOV in the . zone
	DS=7698/SHA-256 has algorithm RSASHA256
	Found 1 RRSIGs over DS RRset
	`gov. 86400 IN RRSIG ( DS 8 1 86400 20210523200000 20210510190000 14631 . SjqaGxB7M4EuzOJoZBBRa8SbP3aTClssQ28CRZ7X6RbDSPw/kn5bbpKhgejbppKKb8u9bzMX6nrE g62bgNKSc+S4gzGjZDJ43j7t6BbU86Xkkbaubt7lDVTogSYIL1fe0+8hGSQm6+te37QYmIxU1iJP fsl8Sq1v84uvRAttkRVohWpg6FWVr/GmbndjB1J1PxM9mTaUVK8BNt95hFuVAHDyvdGRSXw2SJ7g 3Mvf4GUVzgMDnjIO9QGVDSoMzCmUxJ1jZLs6zkHT/XxbNI16osdmH8pdANxiyg3G45wlyidLy3Gr RJ6TZFc7A+PLbQ25wwKnSgi5EJrHWZGpILap7w== )`
	RRSIG=14631 and DNSKEY=14631 verifies the DS RRset
	DS=7698/SHA-256 is now in the chain-of-trust
	`gov. 86400 IN DS ( 7698 8 2 6bc949e638442ead0bdaf0935763c8d003760384ff15ebbd5ce86bb5559561f0 )`
	Query to d.gov-servers.net for GOV/DNSKEY
	Received 777 bytes from 81.19.194.30
	;; Answer received from 81.19.194.30 (777 bytes) ;; HEADER SECTION ;; id = 64604 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 3 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; GOV. IN DNSKEY ;; ANSWER SECTION (3 records) GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698 GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAbexj/PgN9RGQ1TokFnYjJ87/rMFIqE/rXjWtsmwzxteOcKIVCUJAAWg0pIZZer88omuCVrq +fAz0iBOgY48TRFWgyVFV9rm5esTGOEuCU6BTYj1Cb7zrpb/RayEw0yzVVZ0adT/AXbAsQhteTpV kgWK8K33gxq4wY70AK5KWdDCyj4v9uR6TS0mgbGdg7RzFCi8xeZoYP2PY5XOhAHFon0= ) ; Key ID = 48498 GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20210524190254 20210509185754 7698 gov. OgUUmguy6HS+AcNAUUxxinzf47xubcLwfLc+B/xt+kM//rKUgtxZjor/wh4xNRZa+SV0j6aJ/y/u We0JV/dbI9cueoq9xYSDzk2BPTW3WFjYKv1X2xcy+tfuPfbAUj5ZG20y5FUxnlcgHfDv+QnK0P5o e/yoeAFFma85ZozCWYGHwOoctKdaVq9dWyrljKdsl9Kwzkd3f7SA7dBXoo3ytFeM1NeEY9gRlTFp zrPRsTqksloHzamrlBu8hmRLEHGNh1l1M6JB4qn22VhJJ76k2yiT6WBvhhyUK4C/MRiAdxqMvuUM SO1OaIUaAVdZgJEg5Az/MIdD7OV1zaQBaA4mgw== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 2 DNSKEY records for GOV
	`GOV. 86400 IN DNSKEY ( 257 3 8 AQO8daaz7B+yshOfL60rytKd9aOSujgponEw3fwBMEC3/+e9XzHw2k+VKnbJTZ+QaVtpfUd1q9HK ZIv/ck83Gl5TjYKE5jtUZ2kpEDZfVNGv6yx0smtWAXv1nCJS9ohnyOTd397eMojGDHqkEC+uojES cZheEkMxzgCZwDAs+/CSU7mSuHtCRZn19xlZUd5Gv7yDQ3mbOUwuy30oSk0z1Q5UUPpoihOugIZH FX6Jk7NLiW2wlqfq9qhV4zj7TiBiJY0mCc4zHN8/aq2VKDHp2Na7mWzvKyTy+SYQkBQ/08LbPwj9 YMc+uCzKL6sU/ObHv17EFhD8aPDftTHZvV9L+OZr ) ; Key ID = 7698`
	`GOV. 86400 IN DNSKEY ( 256 3 8 AwEAAbexj/PgN9RGQ1TokFnYjJ87/rMFIqE/rXjWtsmwzxteOcKIVCUJAAWg0pIZZer88omuCVrq +fAz0iBOgY48TRFWgyVFV9rm5esTGOEuCU6BTYj1Cb7zrpb/RayEw0yzVVZ0adT/AXbAsQhteTpV kgWK8K33gxq4wY70AK5KWdDCyj4v9uR6TS0mgbGdg7RzFCi8xeZoYP2PY5XOhAHFon0= ) ; Key ID = 48498`
	DNSKEY=7698/SEP is now in the chain-of-trust
	DS=7698/SHA-256 verifies DNSKEY=7698/SEP
	Found 1 RRSIGs over DNSKEY RRset
	`GOV. 86400 IN RRSIG ( DNSKEY 8 1 86400 20210524190254 20210509185754 7698 gov. OgUUmguy6HS+AcNAUUxxinzf47xubcLwfLc+B/xt+kM//rKUgtxZjor/wh4xNRZa+SV0j6aJ/y/u We0JV/dbI9cueoq9xYSDzk2BPTW3WFjYKv1X2xcy+tfuPfbAUj5ZG20y5FUxnlcgHfDv+QnK0P5o e/yoeAFFma85ZozCWYGHwOoctKdaVq9dWyrljKdsl9Kwzkd3f7SA7dBXoo3ytFeM1NeEY9gRlTFp zrPRsTqksloHzamrlBu8hmRLEHGNh1l1M6JB4qn22VhJJ76k2yiT6WBvhhyUK4C/MRiAdxqMvuUM SO1OaIUaAVdZgJEg5Az/MIdD7OV1zaQBaA4mgw== )`
	RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
	DNSKEY=48498 is now in the chain-of-trust
	Query to c.gov-servers.net for UNNPP.GOV/A
	Received 454 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (454 bytes) ;; HEADER SECTION ;; id = 3128 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) UNNPP.GOV. 86400 IN NS auth120.ns.uu.net. UNNPP.GOV. 86400 IN NS auth111.ns.uu.net. UNNPP.GOV. 3600 IN DS ( 8493 7 2 ad920bb323edcdba64b0dba1a81ec4d83f4284ba2967f19ed8f6c731b98c26cb ) UNNPP.GOV. 3600 IN DS ( 52378 7 2 e4996e9a19595ef17e96b68cf7c82270695051819fae5ac740e6aa797449e684 ) UNNPP.GOV. 3600 IN DS 8493 7 1 ddac0ff89e6f9c58a347168bc3f63579c7989308 UNNPP.GOV. 3600 IN DS 52378 7 1 35bbc491853fa721cd772cc95ac8d11c16419c84 UNNPP.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210517231008 20210510231008 48498 gov. trht+ZdlaaQf+w7Zorqb/UAq+h+WFDE1QdO/GnOZ1aeTaB1Eooz0hE9wDLZbsE/r+ZvObUCkOuMr EosZkgw8iWJ59EvuU64tAWmiySnDj+8hoZBfEHQSb1xCsyS2tzf9j0KvaTaBP68b68++YigHeWeY Kj8X7/ula9UvQbuvby9vCfe1tiZDcjEV/UYjmC9CbIE4SzHY1SNn1Q1IY86RtQ== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Query to c.gov-servers.net for UNNPP.GOV/DNSKEY
	Received 454 bytes from 69.36.153.30
	;; Answer received from 69.36.153.30 (454 bytes) ;; HEADER SECTION ;; id = 40721 ;; qr = 1 aa = 0 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 7 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN DNSKEY ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (7 records) UNNPP.GOV. 86400 IN NS auth120.ns.uu.net. UNNPP.GOV. 86400 IN NS auth111.ns.uu.net. UNNPP.GOV. 3600 IN DS ( 8493 7 2 ad920bb323edcdba64b0dba1a81ec4d83f4284ba2967f19ed8f6c731b98c26cb ) UNNPP.GOV. 3600 IN DS ( 52378 7 2 e4996e9a19595ef17e96b68cf7c82270695051819fae5ac740e6aa797449e684 ) UNNPP.GOV. 3600 IN DS 8493 7 1 ddac0ff89e6f9c58a347168bc3f63579c7989308 UNNPP.GOV. 3600 IN DS 52378 7 1 35bbc491853fa721cd772cc95ac8d11c16419c84 UNNPP.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210517231008 20210510231008 48498 gov. trht+ZdlaaQf+w7Zorqb/UAq+h+WFDE1QdO/GnOZ1aeTaB1Eooz0hE9wDLZbsE/r+ZvObUCkOuMr EosZkgw8iWJ59EvuU64tAWmiySnDj+8hoZBfEHQSb1xCsyS2tzf9j0KvaTaBP68b68++YigHeWeY Kj8X7/ula9UvQbuvby9vCfe1tiZDcjEV/UYjmC9CbIE4SzHY1SNn1Q1IY86RtQ== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found child zone UNNPP.GOV

UNNPP.GOV

	Checking DS between GOV and UNNPP.GOV
	Query to a.gov-servers.net for UNNPP.GOV/DS
	Received 401 bytes from 69.36.157.30
	;; Answer received from 69.36.157.30 (401 bytes) ;; HEADER SECTION ;; id = 16688 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 5 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN DS ;; ANSWER SECTION (5 records) UNNPP.GOV. 3600 IN DS ( 8493 7 2 ad920bb323edcdba64b0dba1a81ec4d83f4284ba2967f19ed8f6c731b98c26cb ) UNNPP.GOV. 3600 IN DS ( 52378 7 2 e4996e9a19595ef17e96b68cf7c82270695051819fae5ac740e6aa797449e684 ) UNNPP.GOV. 3600 IN DS 8493 7 1 ddac0ff89e6f9c58a347168bc3f63579c7989308 UNNPP.GOV. 3600 IN DS 52378 7 1 35bbc491853fa721cd772cc95ac8d11c16419c84 UNNPP.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210517231008 20210510231008 48498 gov. trht+ZdlaaQf+w7Zorqb/UAq+h+WFDE1QdO/GnOZ1aeTaB1Eooz0hE9wDLZbsE/r+ZvObUCkOuMr EosZkgw8iWJ59EvuU64tAWmiySnDj+8hoZBfEHQSb1xCsyS2tzf9j0KvaTaBP68b68++YigHeWeY Kj8X7/ula9UvQbuvby9vCfe1tiZDcjEV/UYjmC9CbIE4SzHY1SNn1Q1IY86RtQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 4096 ;; option:
	Found 4 DS records for UNNPP.GOV in the GOV zone
	DS=8493/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	DS=52378/SHA-256 has algorithm RSASHA1-NSEC3-SHA1
	DS=8493/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	DS=52378/SHA-1 has algorithm RSASHA1-NSEC3-SHA1
	Found 1 RRSIGs over DS RRset
	`UNNPP.GOV. 3600 IN RRSIG ( DS 8 2 3600 20210517231008 20210510231008 48498 gov. trht+ZdlaaQf+w7Zorqb/UAq+h+WFDE1QdO/GnOZ1aeTaB1Eooz0hE9wDLZbsE/r+ZvObUCkOuMr EosZkgw8iWJ59EvuU64tAWmiySnDj+8hoZBfEHQSb1xCsyS2tzf9j0KvaTaBP68b68++YigHeWeY Kj8X7/ula9UvQbuvby9vCfe1tiZDcjEV/UYjmC9CbIE4SzHY1SNn1Q1IY86RtQ== )`
	RRSIG=48498 and DNSKEY=48498 verifies the DS RRset
	DS=8493/SHA-256 is now in the chain-of-trust
	DS=52378/SHA-256 is now in the chain-of-trust
	`UNNPP.GOV. 3600 IN DS ( 8493 7 2 ad920bb323edcdba64b0dba1a81ec4d83f4284ba2967f19ed8f6c731b98c26cb )`
	`UNNPP.GOV. 3600 IN DS ( 52378 7 2 e4996e9a19595ef17e96b68cf7c82270695051819fae5ac740e6aa797449e684 )`
	`UNNPP.GOV. 3600 IN DS 8493 7 1 ddac0ff89e6f9c58a347168bc3f63579c7989308`
	`UNNPP.GOV. 3600 IN DS 52378 7 1 35bbc491853fa721cd772cc95ac8d11c16419c84`
	Query to auth111.ns.uu.net for UNNPP.GOV/DNSKEY
	Received 1745 bytes from 198.6.1.115
	;; Answer received from 198.6.1.115 (1745 bytes) ;; HEADER SECTION ;; id = 44782 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 6 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN DNSKEY ;; ANSWER SECTION (6 records) unnpp.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAbpqtHKH9dl6Ht5+bWfDqhvXI3UNu4CNfBtYAoxgsMwiQsZObitMeZCZHVIhXP2eeNC66hNs ev4KKE+WMlRlG5dlb/OcM8NZ3u3f44cc2p6802ZUafKPbiLT9GYSzihfLPeN3zYin7dpKQMj21yl p/il0x0SUYHGlg+evYhmAY1hv+5wRhoatqkfZis3vKlTY1P6zpEHPxTSI4TIikT4khk326ZLSidf HfCmdxfaqpKk8bo84FzX1OXroj6/egWPBshb89rZPBNxXTBefhKCI1GjRVAR0Ce3uV5E5g2cUgCA pbK3w0ynHOfolhKrBv2h567DS3WxnwdzRTu2K/ZOG2c= ) ; Key ID = 18518 unnpp.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAd/O764/JnIXn1KvcGXcp31yHo1iRadKsc+8+W0qE/xibniTcVWDe3+9pzSkCVrhuToSgbLn mpRRWRxppvdFyBdoQu0XOvyekppy9+p9yBWZMQosYBm3KbyFqsl44WGzf17bh0zd6bZEg6y3NpDH Zi/KOFTwd0iieOuxWwL3WEC3Kfmcakh0YIes7RthCLGpkgOfSEm8cedJC0I08VXzXVSkNTU7FRhE Jmf3wlJdRF/Yk3v6fDd1xF6Xiy01mtXOttwQZ/Z6jGfpuS+imak/T96qwmHgxuWSIuwKA3nqQHQS ltHPL9ylbzgIVAaFuJ0EGNLieP/MbTldZCLBynlE2dE= ) ; Key ID = 8493 unnpp.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAXN9mJTd3GKzc8/QJ4t3xA+AutYHWxUwnQj28rpXO01WT7LawEHLNCTqxAmWJFFNDrNP7kt7 p9K5r3Tt8nAtKZqpZULWNgqsQMzzPVBzdWCP4DkPX3sA0REcr/T/JapXfd1JrX7l0XeuaVbu27rU DCEsCsWTYbzqYk9cSSyCRhgCKsEmc6bcMuRf0CUU1mBzAFnDsjn0DsID4BDYVe+vpgQa/xkXVUyE AiPfZQxb4znOm8Y6h5AXGe5SyrUuvGPaeyataX7Gq5WaKlmSxYtfoGjZbIZ4c7oamLFX3hNiN8mQ nhpPqBu2dvfZR/AhDV3wfYIsyKmXxt28VO4C+p2KdUM= ) ; Key ID = 52378 unnpp.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAYqKnZgY7CqhzzCpC2x7I6UERFmzEfg7v6WzmvIJ7N5E9NmjykHWfgqqLgd7jcjFFFzoHGBH gntrXHKUREpbG1lI9UM2dW9QeRlhgIieeZQsDWBEQPsf+MEmQD+0WyFRpkL5NLWvFrTOeDwzDfEu 4/0rg65d1gTT/BsTc0f+uoX7Nsb/LABDuR//+0Cbl8g+rGHWUU61YN6v2obLEbpLKv1nxSBweo5k BLMLY/eONYS2wqFAzUmKGB0ekAqKPeQ22OJYXS8bT7vc1uAgx9wvCvi6/9Sruix8uUsn9TcVTMDl OKe1x6xKTEZ7OHNd2mugHx7Ro3WkrXDNPiU2j87SAr8= ) ; Key ID = 22040 unnpp.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. RJAJXS89ZmK//vZXv1J5zglhHF/J0KFvZ/l8NxzNUBSBW38so2WvqnkpgWH7KZLvj8b1kylrzaP6 qufyvNvawP8xAz2M33nt5pOTggUfTbGX3xol7MxS6/iASlS5nPYdyfxeGcJ+EhiZiqCbLrTFC4Iw zMndWR6gbGEk568ZxberkwzPriRfdaLG3/q8lyY/dD6s6ewWeSQemYDjUgzX/qfNkCA24gvRDq37 Pzf6dMbjysL/mEcRkwOuSkfjmjM7C86HDi0e1LDkozGI5uVSS8baZxihe26/G2Ah9LkLV8emdl0K 1iIdjwDNgl2ZHA0VUlcmI55zKhfRezjSZnekmg== ) unnpp.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210517030310 20210510020310 52378 unnpp.gov. Wq0gED2NH9Cpt+niSlKO7EHrTCjRMpbNdn76pkoGe3Z1ewpDRg6A49eCgSY8wRA3nweGqPsjRY0w 4SC/u6ROOP/ZimrGdM0I2+i+0Id8P+pZA8Pnyq6XPttfu+OugAJz7I84sj9DH5xtmDXDHhEfrz7G cFYYxwOq21IZhQcrlNRwGI+LXW8eK3KiSEezySTbKFSA/wLtLqC5CCRom/dzdBNICcNFS9CgnkNs WhmzQIxDiz2HdprNcxZb3FINAKDoK17hOqG/eHWZjfrCAUTX+wMSJCQA3YtNnR95/OdM1ZyDDaNV B/3KlRyRWD8ZficDRy650zFiqoGxiYhF0PsVhg== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Found 4 DNSKEY records for UNNPP.GOV
	`unnpp.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAbpqtHKH9dl6Ht5+bWfDqhvXI3UNu4CNfBtYAoxgsMwiQsZObitMeZCZHVIhXP2eeNC66hNs ev4KKE+WMlRlG5dlb/OcM8NZ3u3f44cc2p6802ZUafKPbiLT9GYSzihfLPeN3zYin7dpKQMj21yl p/il0x0SUYHGlg+evYhmAY1hv+5wRhoatqkfZis3vKlTY1P6zpEHPxTSI4TIikT4khk326ZLSidf HfCmdxfaqpKk8bo84FzX1OXroj6/egWPBshb89rZPBNxXTBefhKCI1GjRVAR0Ce3uV5E5g2cUgCA pbK3w0ynHOfolhKrBv2h567DS3WxnwdzRTu2K/ZOG2c= ) ; Key ID = 18518`
	`unnpp.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAd/O764/JnIXn1KvcGXcp31yHo1iRadKsc+8+W0qE/xibniTcVWDe3+9pzSkCVrhuToSgbLn mpRRWRxppvdFyBdoQu0XOvyekppy9+p9yBWZMQosYBm3KbyFqsl44WGzf17bh0zd6bZEg6y3NpDH Zi/KOFTwd0iieOuxWwL3WEC3Kfmcakh0YIes7RthCLGpkgOfSEm8cedJC0I08VXzXVSkNTU7FRhE Jmf3wlJdRF/Yk3v6fDd1xF6Xiy01mtXOttwQZ/Z6jGfpuS+imak/T96qwmHgxuWSIuwKA3nqQHQS ltHPL9ylbzgIVAaFuJ0EGNLieP/MbTldZCLBynlE2dE= ) ; Key ID = 8493`
	`unnpp.gov. 3600 IN DNSKEY ( 257 3 7 AwEAAXN9mJTd3GKzc8/QJ4t3xA+AutYHWxUwnQj28rpXO01WT7LawEHLNCTqxAmWJFFNDrNP7kt7 p9K5r3Tt8nAtKZqpZULWNgqsQMzzPVBzdWCP4DkPX3sA0REcr/T/JapXfd1JrX7l0XeuaVbu27rU DCEsCsWTYbzqYk9cSSyCRhgCKsEmc6bcMuRf0CUU1mBzAFnDsjn0DsID4BDYVe+vpgQa/xkXVUyE AiPfZQxb4znOm8Y6h5AXGe5SyrUuvGPaeyataX7Gq5WaKlmSxYtfoGjZbIZ4c7oamLFX3hNiN8mQ nhpPqBu2dvfZR/AhDV3wfYIsyKmXxt28VO4C+p2KdUM= ) ; Key ID = 52378`
	`unnpp.gov. 3600 IN DNSKEY ( 256 3 7 AwEAAYqKnZgY7CqhzzCpC2x7I6UERFmzEfg7v6WzmvIJ7N5E9NmjykHWfgqqLgd7jcjFFFzoHGBH gntrXHKUREpbG1lI9UM2dW9QeRlhgIieeZQsDWBEQPsf+MEmQD+0WyFRpkL5NLWvFrTOeDwzDfEu 4/0rg65d1gTT/BsTc0f+uoX7Nsb/LABDuR//+0Cbl8g+rGHWUU61YN6v2obLEbpLKv1nxSBweo5k BLMLY/eONYS2wqFAzUmKGB0ekAqKPeQ22OJYXS8bT7vc1uAgx9wvCvi6/9Sruix8uUsn9TcVTMDl OKe1x6xKTEZ7OHNd2mugHx7Ro3WkrXDNPiU2j87SAr8= ) ; Key ID = 22040`
	DNSKEY=8493/SEP is now in the chain-of-trust
	DS=8493/SHA-256 verifies DNSKEY=8493/SEP
	DS=8493/SHA-1 verifies DNSKEY=8493/SEP
	DNSKEY=52378/SEP is now in the chain-of-trust
	DS=52378/SHA-256 verifies DNSKEY=52378/SEP
	DS=52378/SHA-1 verifies DNSKEY=52378/SEP
	Found 2 RRSIGs over DNSKEY RRset
	`unnpp.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. RJAJXS89ZmK//vZXv1J5zglhHF/J0KFvZ/l8NxzNUBSBW38so2WvqnkpgWH7KZLvj8b1kylrzaP6 qufyvNvawP8xAz2M33nt5pOTggUfTbGX3xol7MxS6/iASlS5nPYdyfxeGcJ+EhiZiqCbLrTFC4Iw zMndWR6gbGEk568ZxberkwzPriRfdaLG3/q8lyY/dD6s6ewWeSQemYDjUgzX/qfNkCA24gvRDq37 Pzf6dMbjysL/mEcRkwOuSkfjmjM7C86HDi0e1LDkozGI5uVSS8baZxihe26/G2Ah9LkLV8emdl0K 1iIdjwDNgl2ZHA0VUlcmI55zKhfRezjSZnekmg== )`
	`unnpp.gov. 3600 IN RRSIG ( DNSKEY 7 2 3600 20210517030310 20210510020310 52378 unnpp.gov. Wq0gED2NH9Cpt+niSlKO7EHrTCjRMpbNdn76pkoGe3Z1ewpDRg6A49eCgSY8wRA3nweGqPsjRY0w 4SC/u6ROOP/ZimrGdM0I2+i+0Id8P+pZA8Pnyq6XPttfu+OugAJz7I84sj9DH5xtmDXDHhEfrz7G cFYYxwOq21IZhQcrlNRwGI+LXW8eK3KiSEezySTbKFSA/wLtLqC5CCRom/dzdBNICcNFS9CgnkNs WhmzQIxDiz2HdprNcxZb3FINAKDoK17hOqG/eHWZjfrCAUTX+wMSJCQA3YtNnR95/OdM1ZyDDaNV B/3KlRyRWD8ZficDRy650zFiqoGxiYhF0PsVhg== )`
	RRSIG=18518 and DNSKEY=18518 verifies the DNSKEY RRset
	RRSIG=52378 and DNSKEY=52378/SEP verifies the DNSKEY RRset
	DNSKEY=18518 is now in the chain-of-trust
	DNSKEY=22040 is now in the chain-of-trust
	Query to auth120.ns.uu.net for UNNPP.GOV/A
	Received 789 bytes from 198.6.1.154
	;; Answer received from 198.6.1.154 (789 bytes) ;; HEADER SECTION ;; id = 22791 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (4 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 3206 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. kBBeulbANdsU6DZY+QqSrr51tuBSicJHmcKV/bvVonX1VkoRlknZvauIICSbCquPrqxYkA2stuxM WBeML+A4gXlAWAuT+7WfZqJ1MYXD7CWWzIxidXpXEtd0ToevWs718AQmxDbvJ0Xffq0ivb2Olx3H +VX1omeKCLfN6hezT+bGJff/l0TTYRftBWVm1c9jYnV2loct248YsvCZHCPTUKnus36LKhheDmYt xMcORcKrWAg/5++buGrGS2Nzri5AqyCUAjx+3rniJ0OuNUrolKy7CNLlOj+lke5WDPte3dKeK/LF LTUPBmadn20RN7sWDYa0JgHaGd6uCR5Cg7qYyQ== ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN NSEC3 ( 1 0 12 aabbccdd if5g15lrrgnqiqubc3f07li0o8kho1j9 NS SOA MX TXT RRSIG DNSKEY NSEC3PARAM ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN RRSIG ( NSEC3 7 3 3600 20210517030310 20210510020310 18518 unnpp.gov. durqHVw1aGalGSo8taDKXjdg5SY4te5N6XIOeXN6djhUVjwoRkkQLJN+i3YGqranG15Zh+X4UrPG g1y93LEUYQTio+qBsC35tZ8LiWoD2JLGKOj98sBo/adXFQ45TxNTYRrS3vzS5N9H0twgFTlODkNk vrFflZaBv5gZiFIriCN8nzWbn4KsouODQlHSdATuXui15l4a+M04VweZ1Rf+tMW3v/PGWiY5nUFP 8Qma1g3U2tf0kyJ4oXTXUfO6nBgUN6yCPlqAGQdCV+klvqa5Hoe89W+92nNGaOArfLhdqm9c0sbH sZQngcPOsJjPFCAkIC4pUnuFbkaLvA9gqo8ieA== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	auth120.ns.uu.net is authoritative for UNNPP.GOV
	Found RRSIG signed by unnpp.gov zone
	Query to auth111.ns.uu.net for UNNPP.GOV/SOA
	Received 408 bytes from 198.6.1.115
	;; Answer received from 198.6.1.115 (408 bytes) ;; HEADER SECTION ;; id = 38795 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 2 nscount = 0 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN SOA ;; ANSWER SECTION (2 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 3206 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. kBBeulbANdsU6DZY+QqSrr51tuBSicJHmcKV/bvVonX1VkoRlknZvauIICSbCquPrqxYkA2stuxM WBeML+A4gXlAWAuT+7WfZqJ1MYXD7CWWzIxidXpXEtd0ToevWs718AQmxDbvJ0Xffq0ivb2Olx3H +VX1omeKCLfN6hezT+bGJff/l0TTYRftBWVm1c9jYnV2loct248YsvCZHCPTUKnus36LKhheDmYt xMcORcKrWAg/5++buGrGS2Nzri5AqyCUAjx+3rniJ0OuNUrolKy7CNLlOj+lke5WDPte3dKeK/LF LTUPBmadn20RN7sWDYa0JgHaGd6uCR5Cg7qYyQ== ) ;; AUTHORITY SECTION (0 records) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	Query to auth120.ns.uu.net for UNNPP.GOV/A
	Received 789 bytes from 198.6.1.154
	;; Answer received from 198.6.1.154 (789 bytes) ;; HEADER SECTION ;; id = 41802 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (4 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 3206 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. kBBeulbANdsU6DZY+QqSrr51tuBSicJHmcKV/bvVonX1VkoRlknZvauIICSbCquPrqxYkA2stuxM WBeML+A4gXlAWAuT+7WfZqJ1MYXD7CWWzIxidXpXEtd0ToevWs718AQmxDbvJ0Xffq0ivb2Olx3H +VX1omeKCLfN6hezT+bGJff/l0TTYRftBWVm1c9jYnV2loct248YsvCZHCPTUKnus36LKhheDmYt xMcORcKrWAg/5++buGrGS2Nzri5AqyCUAjx+3rniJ0OuNUrolKy7CNLlOj+lke5WDPte3dKeK/LF LTUPBmadn20RN7sWDYa0JgHaGd6uCR5Cg7qYyQ== ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN NSEC3 ( 1 0 12 aabbccdd if5g15lrrgnqiqubc3f07li0o8kho1j9 NS SOA MX TXT RRSIG DNSKEY NSEC3PARAM ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN RRSIG ( NSEC3 7 3 3600 20210517030310 20210510020310 18518 unnpp.gov. durqHVw1aGalGSo8taDKXjdg5SY4te5N6XIOeXN6djhUVjwoRkkQLJN+i3YGqranG15Zh+X4UrPG g1y93LEUYQTio+qBsC35tZ8LiWoD2JLGKOj98sBo/adXFQ45TxNTYRrS3vzS5N9H0twgFTlODkNk vrFflZaBv5gZiFIriCN8nzWbn4KsouODQlHSdATuXui15l4a+M04VweZ1Rf+tMW3v/PGWiY5nUFP 8Qma1g3U2tf0kyJ4oXTXUfO6nBgUN6yCPlqAGQdCV+klvqa5Hoe89W+92nNGaOArfLhdqm9c0sbH sZQngcPOsJjPFCAkIC4pUnuFbkaLvA9gqo8ieA== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	NSEC3 validation not implemented yet
	Found 1 RRSIGs over SOA RRset
	`unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. kBBeulbANdsU6DZY+QqSrr51tuBSicJHmcKV/bvVonX1VkoRlknZvauIICSbCquPrqxYkA2stuxM WBeML+A4gXlAWAuT+7WfZqJ1MYXD7CWWzIxidXpXEtd0ToevWs718AQmxDbvJ0Xffq0ivb2Olx3H +VX1omeKCLfN6hezT+bGJff/l0TTYRftBWVm1c9jYnV2loct248YsvCZHCPTUKnus36LKhheDmYt xMcORcKrWAg/5++buGrGS2Nzri5AqyCUAjx+3rniJ0OuNUrolKy7CNLlOj+lke5WDPte3dKeK/LF LTUPBmadn20RN7sWDYa0JgHaGd6uCR5Cg7qYyQ== )`
	RRSIG=18518 and DNSKEY=18518 verifies the SOA RRset

UNNPP.GOV

	Query to auth111.ns.uu.net for UNNPP.GOV/A
	Received 789 bytes from 198.6.1.115
	;; Answer received from 198.6.1.115 (789 bytes) ;; HEADER SECTION ;; id = 25413 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (4 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 3206 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. kBBeulbANdsU6DZY+QqSrr51tuBSicJHmcKV/bvVonX1VkoRlknZvauIICSbCquPrqxYkA2stuxM WBeML+A4gXlAWAuT+7WfZqJ1MYXD7CWWzIxidXpXEtd0ToevWs718AQmxDbvJ0Xffq0ivb2Olx3H +VX1omeKCLfN6hezT+bGJff/l0TTYRftBWVm1c9jYnV2loct248YsvCZHCPTUKnus36LKhheDmYt xMcORcKrWAg/5++buGrGS2Nzri5AqyCUAjx+3rniJ0OuNUrolKy7CNLlOj+lke5WDPte3dKeK/LF LTUPBmadn20RN7sWDYa0JgHaGd6uCR5Cg7qYyQ== ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN NSEC3 ( 1 0 12 aabbccdd if5g15lrrgnqiqubc3f07li0o8kho1j9 NS SOA MX TXT RRSIG DNSKEY NSEC3PARAM ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN RRSIG ( NSEC3 7 3 3600 20210517030310 20210510020310 18518 unnpp.gov. durqHVw1aGalGSo8taDKXjdg5SY4te5N6XIOeXN6djhUVjwoRkkQLJN+i3YGqranG15Zh+X4UrPG g1y93LEUYQTio+qBsC35tZ8LiWoD2JLGKOj98sBo/adXFQ45TxNTYRrS3vzS5N9H0twgFTlODkNk vrFflZaBv5gZiFIriCN8nzWbn4KsouODQlHSdATuXui15l4a+M04VweZ1Rf+tMW3v/PGWiY5nUFP 8Qma1g3U2tf0kyJ4oXTXUfO6nBgUN6yCPlqAGQdCV+klvqa5Hoe89W+92nNGaOArfLhdqm9c0sbH sZQngcPOsJjPFCAkIC4pUnuFbkaLvA9gqo8ieA== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	auth111.ns.uu.net is authoritative for UNNPP.GOV
	Found RRSIG signed by unnpp.gov zone
	Query to auth111.ns.uu.net for UNNPP.GOV/A
	Received 789 bytes from 198.6.1.115
	;; Answer received from 198.6.1.115 (789 bytes) ;; HEADER SECTION ;; id = 29853 ;; qr = 1 aa = 1 tc = 0 rd = 0 opcode = QUERY ;; ra = 0 z = 0 ad = 0 cd = 0 rcode = NOERROR ;; qdcount = 1 ancount = 0 nscount = 4 arcount = 1 ;; do = 1 ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option: ;; QUESTION SECTION (1 record) ;; UNNPP.GOV. IN A ;; ANSWER SECTION (0 records) ;; AUTHORITY SECTION (4 records) unnpp.gov. 3600 IN SOA ( auth111.ns.uu.net. hostmaster.uu.net. 3206 ;serial 21600 ;refresh 3600 ;retry 1728000 ;expire 3600 ;minimum ) unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. kBBeulbANdsU6DZY+QqSrr51tuBSicJHmcKV/bvVonX1VkoRlknZvauIICSbCquPrqxYkA2stuxM WBeML+A4gXlAWAuT+7WfZqJ1MYXD7CWWzIxidXpXEtd0ToevWs718AQmxDbvJ0Xffq0ivb2Olx3H +VX1omeKCLfN6hezT+bGJff/l0TTYRftBWVm1c9jYnV2loct248YsvCZHCPTUKnus36LKhheDmYt xMcORcKrWAg/5++buGrGS2Nzri5AqyCUAjx+3rniJ0OuNUrolKy7CNLlOj+lke5WDPte3dKeK/LF LTUPBmadn20RN7sWDYa0JgHaGd6uCR5Cg7qYyQ== ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN NSEC3 ( 1 0 12 aabbccdd if5g15lrrgnqiqubc3f07li0o8kho1j9 NS SOA MX TXT RRSIG DNSKEY NSEC3PARAM ) i1nbkidnnv0t532su4b5kp1ua69sr1kh.unnpp.gov. 3600 IN RRSIG ( NSEC3 7 3 3600 20210517030310 20210510020310 18518 unnpp.gov. durqHVw1aGalGSo8taDKXjdg5SY4te5N6XIOeXN6djhUVjwoRkkQLJN+i3YGqranG15Zh+X4UrPG g1y93LEUYQTio+qBsC35tZ8LiWoD2JLGKOj98sBo/adXFQ45TxNTYRrS3vzS5N9H0twgFTlODkNk vrFflZaBv5gZiFIriCN8nzWbn4KsouODQlHSdATuXui15l4a+M04VweZ1Rf+tMW3v/PGWiY5nUFP 8Qma1g3U2tf0kyJ4oXTXUfO6nBgUN6yCPlqAGQdCV+klvqa5Hoe89W+92nNGaOArfLhdqm9c0sbH sZQngcPOsJjPFCAkIC4pUnuFbkaLvA9gqo8ieA== ) ;; ADDITIONAL SECTION (1 record) ;; EDNS version 0 ;; flags: 8000 ;; rcode: NOERROR ;; size: 1232 ;; option:
	NSEC3 validation not implemented yet
	Found 1 RRSIGs over SOA RRset
	`unnpp.gov. 3600 IN RRSIG ( SOA 7 2 3600 20210517030310 20210510020310 18518 unnpp.gov. kBBeulbANdsU6DZY+QqSrr51tuBSicJHmcKV/bvVonX1VkoRlknZvauIICSbCquPrqxYkA2stuxM WBeML+A4gXlAWAuT+7WfZqJ1MYXD7CWWzIxidXpXEtd0ToevWs718AQmxDbvJ0Xffq0ivb2Olx3H +VX1omeKCLfN6hezT+bGJff/l0TTYRftBWVm1c9jYnV2loct248YsvCZHCPTUKnus36LKhheDmYt xMcORcKrWAg/5++buGrGS2Nzri5AqyCUAjx+3rniJ0OuNUrolKy7CNLlOj+lke5WDPte3dKeK/LF LTUPBmadn20RN7sWDYa0JgHaGd6uCR5Cg7qYyQ== )`
	RRSIG=18518 and DNSKEY=18518 verifies the SOA RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test UNNPP.GOV at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options ↑ Advanced options

Trust Anchor:
Name Servers: