Back to Verisign Labs Tools
Domain Name: Detail: more(+) / less(-) Time: 2021-04-21 05:08:56 UTC, NTP stratum 4

Analyzing DNSSEC problems for irs.gov

.
Found 2 DNSKEY records for .
DS=20326/SHA-256 verifies DNSKEY=20326/SEP
Found 1 RRSIGs over DNSKEY RRset
RRSIG=20326 and DNSKEY=20326/SEP verifies the DNSKEY RRset
gov
Found 1 DS records for gov in the . zone
DS=7698/SHA-256 has algorithm RSASHA256
Found 1 RRSIGs over DS RRset
RRSIG=14631 and DNSKEY=14631 verifies the DS RRset
Found 2 DNSKEY records for gov
DS=7698/SHA-256 verifies DNSKEY=7698/SEP
Found 1 RRSIGs over DNSKEY RRset
RRSIG=7698 and DNSKEY=7698/SEP verifies the DNSKEY RRset
irs.gov
Found 1 DS records for irs.gov in the gov zone
DS=44947/SHA-256 has algorithm RSASHA256
Found 1 RRSIGs over DS RRset
RRSIG=48498 and DNSKEY=48498 verifies the DS RRset
Found 4 DNSKEY records for irs.gov
DS=44947/SHA-256 verifies DNSKEY=44947/SEP
Found 1 RRSIGs over DNSKEY RRset
RRSIG=44947 and DNSKEY=44947/SEP verifies the DNSKEY RRset
ns1.irs.gov is authoritative for irs.gov
irs.gov A RR has value 152.216.7.110
Found 1 RRSIGs over A RRset
RRSIG=40488 and DNSKEY=40488 verifies the A RRset
irs.gov
ns2.irs.gov is authoritative for irs.gov
irs.gov A RR has value 152.216.7.110
Found 1 RRSIGs over A RRset
RRSIG=40488 and DNSKEY=40488 verifies the A RRset
irs.gov
ns3.irs.gov is authoritative for irs.gov
irs.gov A RR has value 152.216.7.110
Found 1 RRSIGs over A RRset
RRSIG=40488 and DNSKEY=40488 verifies the A RRset
irs.gov
ns5.irs.gov is authoritative for irs.gov
irs.gov A RR has value 152.216.7.110
Found 1 RRSIGs over A RRset
RRSIG=40488 and DNSKEY=40488 verifies the A RRset
irs.gov
ns4.irs.gov is authoritative for irs.gov
irs.gov A RR has value 152.216.7.110
Found 1 RRSIGs over A RRset
RRSIG=40488 and DNSKEY=40488 verifies the A RRset
irs.gov
ns6.irs.gov is authoritative for irs.gov
irs.gov A RR has value 152.216.7.110
Found 1 RRSIGs over A RRset
RRSIG=40488 and DNSKEY=40488 verifies the A RRset

Move your mouse over any or symbols for remediation hints.

Want a second opinion? Test irs.gov at dnsviz.net.

DNSSEC Analyzer

↓ Advanced options