DNSSEC analyzer
Walks the trust chain from root to leaf, validates every signature.
DNSSEC: UNSIGNED
No DS or DNSKEY records found for github.com
Awaiting validation
Parent delegation is not signed
Chain of trust
Each step's DS hash must match the child's DNSKEY. All signatures must validate.
DS at parent → github.com
github.com → DNSKEY
github.com → RRSIG
DS records
0
DNSKEY records
0
RRSIG records
0