Maintained by: NLnet Labs

[Unbound-users] DNSSEC problems

Jan-Piet Mens
Sun Jun 10 10:56:12 CEST 2012


> The current contents of root-key (sorry for line breaks):
> 
> atlanta# cat /etc/unbound/root.key
> . IN DS 19036 8 2
> 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5

That looks strange to me:

        $ unbound-anchor -a /tmp/xxx -v
        /tmp/xxx does not exist
        success: the anchor is ok

        $ cat /tmp/xxx
        ; autotrust trust anchor file
        ;;id: . 1
        ;;last_queried: 1339309685 ;;Sun Jun 10 08:28:05 2012
        ;;last_success: 1339309685 ;;Sun Jun 10 08:28:05 2012
        ;;next_probe_time: 1339350455 ;;Sun Jun 10 19:47:35 2012
        ;;query_failed: 0
        ;;query_interval: 43200
        ;;retry_time: 8640
        .       172800  IN      DNSKEY  257 3 8 AwEAAag [.... truncated ...]

Try obtaining your root key again.

        -JP