Created
December 27, 2013 17:04
-
-
Save miekg/8149674 to your computer and use it in GitHub Desktop.
q has regained the ability to look at NSEC3 records. Usable, but rough around the edges. More stuff coming.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| % ./q -check -dnssec dsdksldkskd.nl | |
| ;+ Secure signature, 7um0qsaocsaqtmhof0hkbk9th6ek5ce9.nl. RRSIG(NSEC3) validates (DNSKEY nl./54171/net) | |
| ;+ Secure signature, sk4e8fj94u78smusb40o1n0oltbblu2r.nl. RRSIG(NSEC3) validates (DNSKEY nl./54171/net) | |
| ;+ Secure signature, t98kg1p1cjtdoc4ksb7g57jc9vulltcd.nl. RRSIG(NSEC3) validates (DNSKEY nl./54171/net) | |
| ;+ Secure signature, nl. RRSIG(SOA) validates (DNSKEY nl./54171/net) | |
| ;+ Denial, closest encloser, nl. (sk4e8fj94u78smusb40o1n0oltbblu2r) | |
| ;+ Denial, next closer dsdksldkskd.nl. (7um0qsaocsaqtmhof0hkbk9th6ek5ce9.nl.), covered by 7UM22A80THPR89UNASIDE8K6IHNVVAJ7 -> sk4e8fj94u78smusb40o1n0oltbblu2r | |
| ;+ Denial, source of synthesis *.nl. (t98kg1p1cjtdoc4ksb7g57jc9vulltcd.nl.), covered by T98MULSKU3E499AGCTTRJK6H0L3E5T92 -> sk4e8fj94u78smusb40o1n0oltbblu2r | |
| ;+ Denial, secure authenticated denial of existence proof for name error | |
| ;; opcode: QUERY, status: NXDOMAIN, id: 20667 | |
| ;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 8, ADDITIONAL: 1 | |
| ;; QUESTION SECTION: | |
| ;dsdksldkskd.nl. IN A | |
| ;; AUTHORITY SECTION: | |
| 7um0qsaocsaqtmhof0hkbk9th6ek5ce9.nl. 900 IN NSEC3 1 1 5 F10E9F7EA83FC8F3 7UM22A80THPR89UNASIDE8K6IHNVVAJ7 NS DS RRSIG | |
| 7um0qsaocsaqtmhof0hkbk9th6ek5ce9.nl. 900 IN RRSIG NSEC3 8 2 900 20140106075132 20131223091003 54171 nl. ZQZEFns49uq+PbEmnjsW2oY0xzD8cLWztFRcvTxUWm96dCqaXSKl47poxZPE7YGGGtXp/G4EvTGFBSc0Mt9dSPTrj7gFoj+BfLK9LqiRPT0LqInua5ezqd8al+jVtfnCW5GeyGPXs4Lv3uJuGyI1vvCDIqfaptc0hfzZCweytxs= | |
| sk4e8fj94u78smusb40o1n0oltbblu2r.nl. 900 IN NSEC3 1 1 5 F10E9F7EA83FC8F3 SK4F38CQ0ATIEI8MH3RGD0P5I4II6QAN NS SOA TXT RRSIG DNSKEY NSEC3PARAM | |
| sk4e8fj94u78smusb40o1n0oltbblu2r.nl. 900 IN RRSIG NSEC3 8 2 900 20140107220609 20131224111003 54171 nl. lMG4w56PqOZ52O6Vi+yrYjTsml05nhCrJyZ0lG2f5vDZj9m72Do+qQNxDQ4NLjGdPuNUwiBHvc8T+EfYptWQ3xSLwnOICnkPtyXAYnf61k0eDBBmtEHCeESVCPBgXWXPUdCMuJWwK659I5xH0Qjuo3MGKxc+cQ8/BnISJqo6JXc= | |
| t98kg1p1cjtdoc4ksb7g57jc9vulltcd.nl. 900 IN NSEC3 1 1 5 F10E9F7EA83FC8F3 T98MULSKU3E499AGCTTRJK6H0L3E5T92 NS DS RRSIG | |
| t98kg1p1cjtdoc4ksb7g57jc9vulltcd.nl. 900 IN RRSIG NSEC3 8 2 900 20140107195807 20131224171003 54171 nl. XYGzSJ/89Sj6AqtyvYaDskTYbRIivLsUL1nQO2cr3NzW6vToyM81qrEXR/MV3Aua9as31TYVjNG2hYqgiIer9it841YHA5jsMj7fATswXdMb/jJ8tO5ZJj7DN1knXc9GxpRFUMUDf8XPy0ukl3O4oj3kUd19dJ0u0jpEbPN0VwE= | |
| nl. 900 IN SOA ns1.dns.nl. hostmaster.domain-registry.nl. 2013122708 7200 900 2419200 900 | |
| nl. 7200 IN RRSIG SOA 8 1 7200 20140110040827 20131227131003 54171 nl. ijjf4RSArNePpPK6uZCRT2CFmiBWoanwIHpVuATYRn1ooGnKKTkXZ9vF4LE3ri71ffww7+iNk2q2ifw34rCzdb8IMoxY9PtttQlQaj32i/ZqYnJQR3CAcF9QNddMvdLe0OwRmQ37hjLDBAxs0Z2ANGhP+5MWpxhxVDcFRh6eG/g= | |
| ;; ADDITIONAL SECTION: | |
| ;; OPT PSEUDOSECTION: | |
| ; EDNS: version 0; flags: do; udp: 4096 | |
| ;; query time: 10761 µs, server: 109.74.192.20:53(udp), size: 1252 bytes |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment