draft-ietf-tls-dnssec-chain-extension-08.xml

<?xml version="1.0" encoding="US-ASCII"?>
<!DOCTYPE rfc SYSTEM "rfc2629.dtd" [
<!ENTITY rfc1035 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.1035.xml">
<!ENTITY rfc2119 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.2119.xml">
<!ENTITY rfc2181 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.2181.xml">
<!ENTITY rfc3261 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.3261.xml">
<!ENTITY rfc4034 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.4034.xml">
<!ENTITY rfc4035 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.4035.xml">
<!ENTITY rfc5011 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.5011.xml">
<!ENTITY rfc5155 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.5155.xml">
<!ENTITY rfc5246 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.5246.xml">
<!ENTITY rfc5905 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.5905.xml">
<!ENTITY rfc6066 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.6066.xml">
<!ENTITY rfc6698 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.6698.xml">
<!ENTITY rfc7120 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.7120.xml">
<!ENTITY rfc7250 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.7250.xml">
<!ENTITY rfc7590 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.7590.xml">
<!ENTITY rfc7633 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.7633.xml">
<!ENTITY rfc7671 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.7671.xml">
<!ENTITY rfc7672 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.7672.xml">
<!ENTITY rfc7901 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.7901.xml">
<!ENTITY rfc8174 SYSTEM "http://xml.resource.org/public/rfc/bibxml/reference.RFC.8174.xml">
]>




<?rfc toc="yes"?>
<?rfc symrefs="yes"?>
<?rfc compact="yes"?>
<?rfc subcompact="no"?>
<?rfc strict="no"?>
<?rfc rfcedstyle="yes"?>
<?rfc comments="yes"?>
<?rfc inline="yes"?>

<rfc docName="draft-ietf-tls-dnssec-chain-extension-08"
     ipr="trust200902" category="std">

<front>
  <title abbrev="TLS DNSSEC Chain Extension">
    A DANE Record and DNSSEC Authentication Chain Extension for TLS
  </title>
  <author fullname="Melinda Shore" initials="M"
          surname="Shore">
    
    <organization>Fastly</organization>
    <address>
      <email>mshore@fastly.com</email>
    </address>
  </author>

  <author fullname="Richard Barnes" initials="R"
          surname="Barnes">
    <organization>Mozilla</organization>
    <address>
      <email>rlb@ipv.sx</email>
    </address>
  </author>

  <author fullname="Shumon Huque" initials="S"
          surname="Huque">
    <organization>Salesforce</organization>
    <address>
      <email>shuque@gmail.com</email>
    </address>
  </author>

  <author fullname="Willem Toorop" initials="W"
          surname="Toorop">
    <organization>NLnet Labs</organization>
    <address>
      <email>willem@nlnetlabs.nl</email>
    </address>
  </author>

  <date year="2018" />
  <area>Security</area>
  <workgroup>TLS</workgroup>
  <abstract>
    <t>
      This draft describes a new TLS extension for
      transport of a DNS record set serialized with the DNSSEC
      signatures needed to authenticate that record set.  The
      intent of this proposal is to allow TLS clients to
      perform DANE authentication of a TLS server
      without needing to perform additional DNS
      record lookups.  It is not intended to be used to validate
      the TLS server's address records.
    </t>
  </abstract>
</front>

<middle>
  <section title="Requirements Notation">
    <t>
      The key words "MUST", "MUST NOT", "REQUIRED", "SHALL", "SHALL
      NOT", "SHOULD", "SHOULD NOT", "RECOMMENDED", "NOT RECOMMENDED",
      "MAY", and "OPTIONAL" in this document are to be interpreted as
      described in BCP 14 <xref target="RFC2119" />
      <xref target="RFC8174" /> when, and only when, they
      appear in all capitals, as shown here.
    </t>
  </section>


  <section title="Introduction">
    <t>
      This draft describes a new TLS
      <xref target="RFC5246"/> <xref target="TLS13"/>
      extension
      for transport of a DNS record set serialized with the
      <xref target="RFC4034">DNSSEC signatures</xref> needed
      to authenticate that record set.  The intent of this
      proposal is to allow TLS clients to perform DANE
      Authentication <xref target="RFC6698" />
      <xref target="RFC7671" /> of a TLS
      server without performing
      additional DNS record lookups and incurring the
      associated latency penalty. It also provides the
      ability to avoid potential problems with TLS clients
      being unable to look up DANE records because of an
      interfering or broken middlebox on the path between
      the client and a DNS server <xref target="HAMPERING"/>.
      And lastly, it allows a
      TLS client to validate the server's DANE (TLSA) records
      itself without needing access to a validating DNS resolver
      to which it has a secure connection.
    </t>

    <t>
      This mechanism is useful
      for TLS applications that need to address the problems
      described above, typically web browsers or SIP/VoIP
      <xref target="RFC3261"/> and XMPP <xref target="RFC7590"/>.
      It may not be relevant for many other
      applications. For example, SMTP MTAs are usually
      located in data centers, may tolerate
      extra DNS lookup latency, are on servers where it is
      easier to provision a validating resolver, or are
      less likely to experience traffic interference from
      misconfigured middleboxes. Furthermore, SMTP MTAs usually
      employ <xref target="RFC7672">Opportunistic Security</xref>,
      in which the presence of the DNS TLSA records is used to determine
      whether to enforce an authenticated TLS connection.
      Hence DANE authentication of SMTP MTAs will typically not use 
      this mechanism.
    </t>

    <t>
      The extension described here allows a TLS client to request that
      the TLS server return the DNSSEC authentication chain corresponding
      to its DANE record. If the server is configured for DANE authentication,
      then it performs the appropriate DNS queries, builds the authentication
      chain, and returns it to the client. The server will usually use a
      previously cached authentication chain, but it will need to rebuild it
      periodically as described in <xref target="sec_caching" />. The client
      then authenticates the chain using a pre-configured trust anchor.
    </t>

    <t>
      This specification can also be used to optionally convey authenticated
      denial of existence of TLSA records. Restrictive uses that might
      require such proofs (such as the PKIX constraining modes of DANE, or
      where DANE should always be preferred over other modes of authentication
      such as traditional PKIX) are thus not in its intended scope. Such
      restrictive uses can however be supported opportunistically.
    </t>

    <t>
      This specification is based on Adam Langley's original
      proposal for serializing DNSSEC authentication chains
      and delivering them in an X.509 certificate extension
      <xref target="I-D.agl-dane-serializechain" />. It modifies the approach by using
      wire format DNS records in the serialized data (assuming
      that the data will be prepared and consumed by a DNS-specific
      library), and by using a TLS extension to deliver the data.
    </t>

    <t>
      As described in the DANE specification <xref target="RFC6698" />
      <xref target="RFC7671" />, this
      procedure applies to the DANE authentication of X.509
      certificates or raw public keys <xref target="RFC7250" />.
    </t>
    
  </section> <!-- introduction -->

  <section title="DNSSEC Authentication Chain Extension">
    <section title="Protocol, TLS 1.2">

    <t>
      A client MAY include an extension of type
      "dnssec_chain" in the (extended) ClientHello.  The
      "extension_data" field of this extension MUST be
      empty.
    </t>

    <t>
      Servers receiving a "dnssec_chain" extension in the
      ClientHello and which are capable of being authenticated
      via DANE, return a serialized authentication chain
      in the extended ServerHello message using the format
      described below.  If a server is unable to return an
      authentication chain, or does not wish to return an
      authentication chain, it does not include a dnssec_chain
      extension.  As with all TLS extensions, if the server
      does not support this extension it will not return any
      authentication chain.
    </t>

    </section> <!-- protocol 1.2 -->

    <section title="Protocol, TLS 1.3">

      <t>
        A client MAY include an extension of type
        "dnssec_chain" in the ClientHello.  The
        "extension_data" field of this extension MUST be
        empty.
      </t>

      <t>
        Servers receiving a "dnssec_chain" extension in the
        ClientHello, and which are capable of being authenticated
        via DANE, return a serialized authentication chain
        in the extension block of the Certificate message containing
        the end entity certificate being validated, using the format
        described below.
      </t>

      <t>
        The extension protocol behavior otherwise follows that specified
        for TLS version 1.2.
      </t>

    </section> <!-- protocol 1.3 -->

    <section title="Raw Public Keys">
      <t>
        <xref target="RFC7250" /> specifies the use of raw
        public keys for both server and client
        authentication in TLS 1.2.  It points out that in
        cases where raw public keys are being used, code for
        certificate path validation is not
        required. However, DANE, when used in conjunction
        with the dnssec_chain extension, provides a mechanism for
        securely binding a raw public key to a named entity
        in the DNS, and when using DANE for authentication a
        raw key may be validated using a path chaining back
        to a DNSSEC trust root.  This has the added benefit
        of mitigating an unknown key share attack, as
        described in <xref target="I-D.barnes-dane-uks" />,
        since it effectively augments the raw public key
        with the server's name and provides a means to
        commit both the server and the client to using that
        binding. 
      </t>

      <t>
        The UKS attack is possible in situations in which
        the association between a domain name and a public
        key is not tightly bound, as in the case in DANE in
        which a client either ignores the name in the
        certificate (as specified in <xref target="RFC7671"
        />) or there is no attestation of trust outside of
        the DNS.  The vulnerability arises in the following
        situations: 
      </t>
      <t>
        <list style="symbols">
          <t>If the client does not verify the identity in the
            server's certificate (as recommended in Section
            5.1 of [RFC7671]), then an attacker can induce the
            client to accept an unintended identity for the
            server, 
          </t>

          <t>If the client allows the use of raw public keys
            in TLS, then it will not receive any
            indication of the server's identity in the TLS
            channel, and is thus unable to check that the
            server's identity is as intended.
          </t>
        </list>
      </t>

      <t>The mechanism for conveying DNSSEC validation
        chains described in this document results in a
        commitment by both parties, via the TLS
        handshake, to a validated domain name and EE key.</t>

      <t>The mechanism for encoding DNSSEC authentication
        chains in a TLS extension, as described in this
        document, is not limited to public keys encapsulated
        in X.509 containers but MAY be applied to raw
        public keys and other representations, as well.
      </t>
    </section>

    
    <section title="DNSSEC Authentication Chain Data"
             anchor="auth_chain_data">

      <t>
    The "extension_data" field of the "dnssec_chain" extension 
    MUST contain a DNSSEC Authentication Chain encoded in the
    following form:
      </t>

      <figure>
        <artwork>

          opaque AuthenticationChain&lt;1..2^16-1&gt;
        </artwork>
      </figure>

      <t>
    The AuthenticationChain structure is composed of a sequence of 
    uncompressed wire format DNS resource record sets (RRset) and 
    corresponding signatures (RRSIG) record sets.
      </t>

      <t>
    This sequence of native DNS wire format records enables easier
    generation of the data structure on the server and easier 
    verification of the data on client by means of existing DNS library
    functions.
      </t>

      <t>
    Each RRset in the chain is composed of a sequence of wire format
    DNS resource records. The format of the resource record is 
    described in <xref target="RFC1035">RFC 1035</xref>, Section
    3.2.1.
      </t>

      <figure>
        <artwork>

          RR(i) = owner | type | class | TTL | RDATA length | RDATA

          where RR(i) denotes the ith RR.
        </artwork>
      </figure>

      <t>
    The resource records that make up a RRset all have the same owner,
    type and class, but different RDATA as specified
    <xref target="RFC2181">RFC 2181</xref>, Section 5.

    Each RRset in the sequence is followed by its associated
    RRsig record set.  This RRset has the same owner and class as the
    preceding RRset, but has type RRSIG.  The Type Covered 
    field in the RDATA of the RRsigs identifies the type of the
    preceding RRset as described in
    <xref target="RFC4034">RFC 4034</xref>, Section 3.

    The RRsig record wire format is described in
    <xref target="RFC4034">RFC 4034</xref>, Section 3.1. The 
    signature portion of the RDATA, as described in the same
    section, is the following:
      </t>

      <figure>
        <artwork>

          signature = sign(RRSIG_RDATA | RR(1) | RR(2)... )
        </artwork>
      </figure>

      <t>
    where RRSIG_RDATA is the wire format of the RRSIG RDATA
    fields with the Signer's Name field in canonical form and
    the signature field excluded.
      </t>

      <t>
        The first RRset in the chain MUST contain the TLSA record set
        being presented. However, if the owner name of the TLSA record
        set is an alias (CNAME or DNAME), then it MUST be preceded by the
        chain of alias records needed to resolve it. DNAME chains SHOULD
        omit unsigned CNAME records that may have been synthesized in the
        response from a DNS resolver. (If unsigned synthetic CNAMES are
        present, then the TLS client will just ignore them, as they are
        not necessary to validate the chain.)
      </t>

      <t>
        The subsequent RRsets MUST contain the full set
        of DNS records needed to authenticate the TLSA record set from the
        server's trust anchor. Typically this means a set of DNSKEY
        and DS RRsets that cover all zones from the target zone containing
        the TLSA record set to the trust anchor zone. The TLS client should
        be prepared to receive this set of RRsets in any order.
      </t>

      <t>
        Names that are aliased via CNAME and/or DNAME records may involve
        multiple branches of the DNS tree. In this case, the authentication
        chain structure needs to include DS and DNSKEY record sets that
        cover all the necessary branches.
      </t>

      <t>
        If the TLSA record set was synthesized by a DNS wildcard, the
        chain MUST include the signed NSEC or <xref target="RFC5155">
        NSEC3</xref> records that prove
        that there was no explicit match of the TLSA record name and no
        closer wildcard match.
      </t>

      <t>
        The final DNSKEY RRset in the authentication chain corresponds
        to the trust anchor (typically the DNS root). This trust anchor 
        is also preconfigured in the TLS client, but including it in the 
        response from the server permits TLS clients to use the automated 
        trust anchor rollover mechanism defined in RFC 5011 
        <xref target="RFC5011" /> to update their configured trust anchor.
      </t>

      <t>
        The following is an example of the records in the
        AuthenticationChain structure for the HTTPS server at
        www.example.com, where there are zone cuts at "com."
        and "example.com." (record data are omitted here for brevity):
      </t>

      <figure>
        <artwork>

          _443._tcp.www.example.com. TLSA
          RRSIG(_443._tcp.www.example.com. TLSA)
          example.com. DNSKEY
          RRSIG(example.com. DNSKEY)
          example.com. DS
          RRSIG(example.com. DS)
          com. DNSKEY
          RRSIG(com. DNSKEY)
          com. DS
          RRSIG(com. DS)
          . DNSKEY
          RRSIG(. DNSKEY)
        </artwork>
      </figure>

      <section title="Support for Authenticated Denial of Existence"
        anchor="denial_of_existence">

        <t>
        TLS servers that do not have a signed TLSA record MAY instead
        return a DNSSEC chain that provides authenticated denial of
        existence. This specification does not require TLS servers to
        provide such a denial of existence chain, otherwise it could
        not be deployed incrementally in environments where not all TLS
        servers support this extension.
        </t>

        <t>
        Authenticated denial chains include NSEC or NSEC3 records
        that demonstrate one of the following facts:
        </t>

        <t>
        <list style="symbols">
        <t>The TLSA record does not exist.</t>
        <t>There is no signed delegation to a DNS zone which is either
        an ancestor of, or the same as, the TLSA record name.</t>
        </list>
        </t>

      </section>

    </section> <!-- authentication chain data -->
  </section> <!-- dnssec authentication chain extension -->

  <section title="Construction of Serialized Authentication Chains">

    <t>
      This section describes a possible procedure for the
      server to use to build the serialized DNSSEC chain.
    </t>

    <t>When the goal is to perform DANE authentication 
       <xref target="RFC6698" /> <xref target="RFC7671" /> of the 
       server, the DNS record set to be
       serialized is a TLSA record set corresponding to the 
       server's domain name, protocol, and port number.
    </t>

    <t>
      The domain name of the server MUST be that included in
      the TLS server_name extension <xref target="RFC6066"
      /> when present. If the server_name extension is not
      present, or if the server does not recognize the
      provided name and wishes to proceed with the handshake
      rather than to abort the connection, the server picks
      one of its configured domain names associated with the
      server IP address to which the connection has been established.
    </t>

    <t>
      The TLSA record to be queried is constructed by prepending
      the _port and _transport labels to the domain name as described
      in <xref target="RFC6698" />, where "port" is the port number
      associated with the TLS server.  The transport is "tcp"
      for TLS servers, and "udp" for DTLS servers.  The port
      number label is the left-most label, followed by the
      transport, followed by the base domain name.
    </t>

    <t>
      The components of the authentication chain are typically built by
      starting at the target record set and its corresponding RRSIG.
      Then traversing the DNS tree upwards towards the trust anchor
      zone (normally the DNS root), for each zone cut, the DNSKEY and
      DS RRsets and their signatures are added. However, see
      <xref target="auth_chain_data" /> for specific processing needed for
      aliases and wildcards. If DNS response messages contain any
      domain names utilizing name compression
      <xref target="RFC1035"/>, then they MUST be uncompressed.
    </t>

    <t>
      Newer DNS protocol enhancements, such as the <xref target="RFC7901">
      EDNS Chain Query extension</xref> if supported, may offer easier ways
      to obtain all of the chain data in one transaction with an upstream
      DNSSEC aware recursive server.
    </t>

  </section> <!-- construction -->


  <section title="Caching and Regeneration of the Authentication Chain"
       anchor="sec_caching">
    <t>
      DNS records have Time To Live (TTL) parameters, and DNSSEC
      signatures have validity periods (specifically signature expiration
      times). After the TLS server constructs the serialized authentication
      chain, it SHOULD cache and reuse it in multiple TLS connection
      handshakes. However, it MUST refresh and rebuild the chain as TTLs
      and signature validity periods dictate. A server implementation 
      could carefully track these parameters and requery component records
      in the chain correspondingly. Alternatively, it could be configured 
      to rebuild the entire chain at some predefined periodic interval that 
      does not exceed the DNS TTLs or signature validity periods of the 
      component records in the chain.
    </t>
  </section>


  <section title="Verification" anchor="sec_verification">

    <t>
      A TLS client making use of this specification, and
      which receives a DNSSEC authentication chain extension
      from a server, MUST use this information to perform
      DANE authentication of the server.  In
      order to do this, it uses the mechanism specified by
      the DNSSEC protocol <xref target="RFC4035"/> <xref target="RFC5155"/>.
      This mechanism is sometimes implemented in a DNSSEC
      validation engine or library.
    </t>

    <t>
        If the authentication chain is correctly verified, the client then
        performs DANE authentication of the server according to the DANE TLS
        protocol <xref target="RFC6698"/> <xref target="RFC7671"/>.
    </t>

    <t>
      Clients MAY cache the server's validated TLSA RRset or other
      validated portions of the chain as an optimization to save
      signature verification work for future connections. The
      period of such caching MUST NOT exceed the TTL associated with
      those records. A client that possesses a validated and unexpired
      TLSA RRset or the full chain in its cache does not need to send the
      dnssec_chain extension for subsequent connections to the same TLS
      server. It can use the cached information to perform DANE
      authentication.
    </t>

  </section> <!-- verification -->


  <section title="Trust Anchor Maintenance" anchor="sec_trustmaint">

    <t>
      The trust anchor may change periodically, e.g. when the operator
      of the trust anchor zone performs a DNSSEC key rollover. TLS
      clients using this specification MUST implement a mechanism to
      keep their trust anchors up to date. They could use the method
      defined in <xref target="RFC5011" /> to perform trust anchor
      updates inband in TLS, by tracking the introduction of new keys
      seen in the trust anchor DNSKEY RRset. However, alternative
      mechanisms external to TLS may also be utilized. Some operating systems
      may have a system-wide service to maintain and keep the root trust
      anchor up to date. In such cases, the TLS client application
      could simply reference that as its trust anchor, periodically 
      checking whether it has changed. Some applications may prefer to
      implement trust anchor updates as part of their automated software
      updates.
    </t>

  </section> <!-- trust anchor maintenance  -->


  <section title="Mandating use of this extension" anchor="mandating">

    <t>
      Green field applications that are designed to always employ this
      extension, could of course unconditionally mandate its use.
    </t>

    <t>
      This protocol allows TLS servers to prove that they don't have a
      signed TLSA record by returning a denial of existence chain.
      However, as explained in <xref target="denial_of_existence"/>,
      it does not require TLS servers to do so. In the absence of such
      a proof, a TLS client misdirected to a server that has fraudulently
      acquired a public CA issued certificate for the real server's name,
      could be induced to establish a PKIX verified connection to the rogue
      server that precluded DANE authentication. Application ecosystems
      where all TLS servers are expected to implement this extension could
      require such authenticated denial proofs to be delivered by TLS
      servers that don't have signed TLSA records.
    </t>

    <t>
      One possible way to address the threat of attackers that have
      fraudulently obtained valid PKIX credentials, is to use current
      PKIX defense mechanisms, such as checking Certificate Transparency
      logs to detect certificate misissuance. This may be necessary anyway,
      as TLS servers may support both DANE and PKIX authentication. Even
      TLS servers that support only DANE may be interested in detecting
      PKIX adversaries impersonating their service to DANE unaware TLS
      clients.
    </t>

  </section>


  <section title="DANE and Traditional PKIX Interoperation" anchor="pkix-interop">

    <t>
      When DANE is being introduced incrementally into an existing
      PKIX environment, there may be scenarios in which DANE
      authentication for a server fails but PKIX succeeds, or vice versa.
      What happens here depends on TLS client policy. If DANE authentication
      fails, the client may decide to fallback to traditional PKIX
      authentication. In order to do so efficiently within the same
      TLS handshake, the TLS server needs to have provided the full
      X.509 certificate chain. When TLS servers only support DANE-EE
      or DANE-TA modes, they have the option to send a much smaller
      certificate chain: just the EE certificate for the former, and
      a short certificate chain from the DANE trust anchor to the EE
      certificate for the latter. If the TLS server supports both DANE
      and traditional PKIX, and wants to allow efficient PKIX fallback
      within the same handshake, they should always provide the full
      X.509 certificate chain.
    </t>

  </section>


  <section title="Security Considerations">

    <t> 
      The security considerations of the normatively referenced RFCs 
      all pertain to 
      this extension. Since the server is delivering a chain of DNS 
      records and signatures to the client, it MUST rebuild the chain
      in accordance with TTL and signature expiration of
      the chain components as described in <xref target="sec_caching" />.
      TLS clients need roughly accurate time in order to properly
      authenticate these signatures. This could be achieved by running
      a time synchronization protocol like NTP <xref target="RFC5905" /> 
      or SNTP <xref target="RFC5905" />, which are already widely used 
      today. TLS clients MUST support a mechanism to track and rollover 
      the trust anchor key, or be able to avail themselves of a service 
      that does this, as described in <xref target="sec_trustmaint" />.
      Security considerations related to mandating the use of this
      extension are described in <xref target="mandating" />.
    </t>

  </section>


  <section title="IANA Considerations">

    <t>This extension requires the registration of a new
      value in the TLS ExtensionsType registry.  The value
      requested from IANA is 53, and the extension should
      be marked "Recommended" in accordance with "IANA Registry
      Updates for TLS and DTLS" <xref target="TLSIANA"/>.
    </t>

  </section> <!-- iana considerations -->


  <section title="Acknowledgments">

    <t>
      Many thanks to Adam Langley for laying the groundwork
      for this extension. The original idea is his but our
      acknowledgment in no way implies his endorsement.
      This document also benefited from discussions with and
      review from the following people: Viktor Dukhovni,
      Daniel Kahn Gillmor, Jeff Hodges, Allison Mankin, Patrick McManus,
      Rick van Rein, Ilari Liusvaara, Eric Rescorla, Gowri Visweswaran,
      Duane Wessels, Nico Williams, and Paul Wouters.
    </t>

  </section>


</middle>

<back>

  <references title="Normative References">
    &rfc1035;
    &rfc2119;
    &rfc2181;
    &rfc4034;
    &rfc4035;
    &rfc5155;
    &rfc5246;
    &rfc6066;
    &rfc6698;
    &rfc7671;
    &rfc8174;
    <reference anchor="TLS13"
        target="https://tools.ietf.org/html/draft-ietf-tls-tls13">
        <front>
          <title>The Transport Layer Security (TLS) Protocol Version 1.3</title>
          <author fullname="Eric Rescorla" initials="E" surname="Rescorla" />
          <date year="2018" month="March" day="18"/>
        </front>
    </reference>
    <reference anchor="TLSIANA"
        target="https://tools.ietf.org/html/draft-ietf-tls-iana-registry-updates">
        <front>
          <title>IANA Registry Updates for TLS and DTLS</title>
          <author fullname="Joe Salowey" initials="J" surname="Salowey" />
          <author fullname="Sean Turner" initials="S" surname="Turner" />
          <date />
        </front>
    </reference>
  </references>


  <references title="Informative References">
    &rfc3261;
    &rfc5011;
    &rfc5905;
    &rfc7120;
    &rfc7250;
    &rfc7590;
    &rfc7672;
    &rfc7901;
    <?rfc include="reference.I-D.agl-dane-serializechain.xml"?>
    <?rfc include="reference.I-D.draft-barnes-dane-uks-00.xml"?>
    <reference anchor="HAMPERING"
        target="http://www.nlnetlabs.nl/downloads/publications/os3-2015-rp2-xavier-torrent-gorjon.pdf">
        <front>
          <title>Discovery method for a DNSSEC validating stub resolver</title>
          <author fullname="Xavier Torrent Gorjon" initials="X" surname="Gorjon" />
          <author fullname="Willem Toorop" initials="W" surname="Toorop" />
          <date year="2015" month="July" day="14"/>
        </front>
    </reference>
  </references>

  <section title="Test vectors">
    <t>
       The provided test vectors will authenticate the certificate
       used with https://example.com/, https://example.net/ and
       https://example.org/ at the time of writing:
    </t>
    <figure>
      <artwork>
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
      </artwork>
    </figure>
    <t>For brevity and reproducibility all DNS zones involved with the test vectors
    are signed using keys with algorithm 13: ECDSA Curve P-256 with SHA-256.</t>
    <t>To reflect operational practice, different zones in the examples are in
    different phases of rolling their signing keys:
      <list>
        <t>All zones use a Key Signing Key (KSK) and Zone Signing Key (ZSK),
        except for the example.com and example.net zones which use a
        Combined Signing Key (CSK).</t>
        <t>The root and org zones are rolling their ZSK's.</t>
        <t>The com and org zones are rolling their KSK's.</t>
      </list>
    </t>
    <t>The test vectors are DNSSEC valid in the same period as the certificate is
    valid, which is in between November 3 2015 and November 28 2018, with the 
    following root trust anchor:</t>
    <figure>
      <artwork>
.  IN  DS  ( 47005 13 2 2eb6e9f2480126691594d649a5a613de3052e37861634
        641bb568746f2ffc4d4 )
      </artwork>
    </figure>
    <section title="_443._tcp.www.example.com">
      <figure>
        <artwork>
_443._tcp.www.example.com.  3600  IN  TLSA  ( 3 1 1 
        c66bef6a5c1a3e78b82016e13f314f3cc5fa25b1e52aab9adb9ec5989b165
        ada )
_443._tcp.www.example.com.  3600  IN  RRSIG  ( TLSA 13 5 3600
        20181128000000 20151103000000 1870 example.com.
        v8N91gZ/eFvT8KwKFqtTLbF/KYu6H5GalYPdAafE7bISOXVOhqI8GiTWyb4OE
        9g/YJdwaGjyFVi9x5rsLmZv0Q== )
example.com.  3600  IN  DNSKEY  ( 257 3 13
        JnA1XgyJTZz+psWvbrfUWLV6ULqIJyUS2CQdhUH9VK35bslWeJpRzrlxCUs7s
        /TsSfZMaGWVvlsuieh5nHcXzA== ) ; Key ID = 1870
example.com.  3600  IN  RRSIG  ( DNSKEY 13 2 3600
        20181128000000 20151103000000 1870 example.com.
        iSQmfIb8PdM5mEB1vNh31vMfSLqUjAJoFwW8EUvjXHtQhHe2jSml4OdojumlW
        +YFx6XeWRx2t+jBTYmAVOsRRw== )
example.com.  172800  IN  DS  ( 1870 13 2 e9b533a049798e900b5c29c90cd
        25a986e8a44f319ac3cd302bafc08f5b81e16 )
example.com.  172800  IN  RRSIG  ( DS 13 2 172800
        20181128000000 20151103000000 34327 com.
        UDG6IfSgVJlZfPbC20U+j41vrlDitlWGh662ILScnOZWlXamxh73qtXqCeuLa
        Ve9fa5s1u2a4CSrZiFmdPUcRA== )
com.  172800  IN  DNSKEY  ( 256 3 13
        7IIE5Dol8jSMUqHTvOOiZapdEbQ9wqRxFi/zQcSdufUKLhpByvLpzSAQTqCWj
        3URIZ8L3Fa2gBLMOZUzZ1GQCw== ) ; Key ID = 34327
com.  172800  IN  DNSKEY  ( 257 3 13
        RbkcO+96XZmnp8jYIuM4lryAp3egQjSmBaSoiA7H76Tm0RLHPNPUxlVk+nQ0f
        Ic3I8xfZDNw8Wa0Pe3/g2QA/w== ) ; Key ID = 18931
com.  172800  IN  DNSKEY  ( 257 3 13
        szc7biLo5J4OHlkan1vZrF4aD4YYf+NHA/GAqdNslY9xxK9Izg68XHkqck4Rt
        DiVk37lNAQmgSlHbrGu0yOTkA== ) ; Key ID = 28809
com.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 18931 com.
        yzAYyY7Sr/Rz5qwAd7cVCREHe2FordFSYkB5eonqQE3m6rUlRSYq9nrh4xWYK
        u3JkwHpF5UQLRslLVrsuuZc8g== )
com.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 28809 com.
        CYiMUA1mgF/i00FEHjPSBpuXYuZWo1qrqc0xgyMzAWZzR0z0zXlJGlExIZT93
        yYTsCWWVKTWHzQG9rv2tFvr8w== )
com.  86400  IN  DS  ( 18931 13 2 20f7a9db42d0e2042fbbb9f9ea015941202
        f9eabb94487e658c188e7bcb52115 )
com.  86400  IN  DS  ( 28809 13 2 ad66b3276f796223aa45eda773e92c6d98e
        70643bbde681db342a9e5cf2bb380 )
com.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        zCsvW1syx+DkEr9+y6Z+S5PP0VsQSOKMt4EGig1JafbPufQej7KlZopBdt1VZ
        c4khYrs5OqhzgnZ45g1vlPObQ== )
.  86400  IN  DNSKEY  ( 256 3 13
        zKz+DCWkNA/vuheiVPcGqsH40U84KZAlrMRIyozj9WHzf8PsFp/oR8j8vmjjW
        P98cbte4d8NvlGLxzbUzo3+FA== ) ; Key ID = 31918
.  86400  IN  DNSKEY  ( 256 3 13
        8wMZZ4lzHdyKZ4fv8kys/t3QMlgvEadbsbyqWrMhwddSXCZYGRrsAbPpireRW
        xbVcd1VtOrlFBcRDMTN0R0XEQ== ) ; Key ID = 2635
.  86400  IN  DNSKEY  ( 257 3 13
        yvX+VNTUjxZiGvtr060hVbrPV9H6rVusQtF9lIxCFzbZOJxMQBFmbqlc8Xclv
        Q+gDOXnFOTsgs/frMmxyGOtRg== ) ; Key ID = 47005
.  86400  IN  RRSIG  ( DNSKEY 13 0 86400 20181128000000
        20151103000000 47005 .
        BHtoZKDyZrl15nQvbdcwB92zifXkT1uqnSIwc/BfvdK7MXHIzOPV8IOIcxIgv
        Yvl+HBzaIjxvs3mDtoAMAdyPg== )
        </artwork>
      </figure>
      <t>A hex dump of the wire format data of this content is:</t>
      <figure>
        <artwork>
0000:  04 5f 34 34 33 04 5f 74  63 70 03 77 77 77 07 65
0010:  78 61 6d 70 6c 65 03 63  6f 6d 00 00 34 00 01 00
0020:  00 0e 10 00 23 03 01 01  c6 6b ef 6a 5c 1a 3e 78
0030:  b8 20 16 e1 3f 31 4f 3c  c5 fa 25 b1 e5 2a ab 9a
0040:  db 9e c5 98 9b 16 5a da  04 5f 34 34 33 04 5f 74
0050:  63 70 03 77 77 77 07 65  78 61 6d 70 6c 65 03 63
0060:  6f 6d 00 00 2e 00 01 00  00 0e 10 00 5f 00 34 0d
0070:  05 00 00 0e 10 5b fd da  80 56 37 f9 00 07 4e 07
0080:  65 78 61 6d 70 6c 65 03  63 6f 6d 00 bf c3 7d d6
0090:  06 7f 78 5b d3 f0 ac 0a  16 ab 53 2d b1 7f 29 8b
00a0:  ba 1f 91 9a 95 83 dd 01  a7 c4 ed b2 12 39 75 4e
00b0:  86 a2 3c 1a 24 d6 c9 be  0e 13 d8 3f 60 97 70 68
00c0:  68 f2 15 58 bd c7 9a ec  2e 66 6f d1 07 65 78 61
00d0:  6d 70 6c 65 03 63 6f 6d  00 00 30 00 01 00 00 0e
00e0:  10 00 44 01 01 03 0d 26  70 35 5e 0c 89 4d 9c fe
00f0:  a6 c5 af 6e b7 d4 58 b5  7a 50 ba 88 27 25 12 d8
0100:  24 1d 85 41 fd 54 ad f9  6e c9 56 78 9a 51 ce b9
0110:  71 09 4b 3b b3 f4 ec 49  f6 4c 68 65 95 be 5b 2e
0120:  89 e8 79 9c 77 17 cc 07  65 78 61 6d 70 6c 65 03
0130:  63 6f 6d 00 00 2e 00 01  00 00 0e 10 00 5f 00 30
0140:  0d 02 00 00 0e 10 5b fd  da 80 56 37 f9 00 07 4e
0150:  07 65 78 61 6d 70 6c 65  03 63 6f 6d 00 89 24 26
0160:  7c 86 fc 3d d3 39 98 40  75 bc d8 77 d6 f3 1f 48
0170:  ba 94 8c 02 68 17 05 bc  11 4b e3 5c 7b 50 84 77
0180:  b6 8d 29 a5 e0 e7 68 8e  e9 a5 5b e6 05 c7 a5 de
0190:  59 1c 76 b7 e8 c1 4d 89  80 54 eb 11 47 07 65 78
01a0:  61 6d 70 6c 65 03 63 6f  6d 00 00 2b 00 01 00 02
01b0:  a3 00 00 24 07 4e 0d 02  e9 b5 33 a0 49 79 8e 90
01c0:  0b 5c 29 c9 0c d2 5a 98  6e 8a 44 f3 19 ac 3c d3
01d0:  02 ba fc 08 f5 b8 1e 16  07 65 78 61 6d 70 6c 65
01e0:  03 63 6f 6d 00 00 2e 00  01 00 02 a3 00 00 57 00
01f0:  2b 0d 02 00 02 a3 00 5b  fd da 80 56 37 f9 00 86
0200:  17 03 63 6f 6d 00 50 31  ba 21 f4 a0 54 99 59 7c
0210:  f6 c2 db 45 3e 8f 8d 6f  ae 50 e2 b6 55 86 87 ae
0220:  b6 20 b4 9c 9c e6 56 95  76 a6 c6 1e f7 aa d5 ea
0230:  09 eb 8b 69 57 bd 7d ae  6c d6 ed 9a e0 24 ab 66
0240:  21 66 74 f5 1c 44 03 63  6f 6d 00 00 30 00 01 00
0250:  02 a3 00 00 44 01 00 03  0d ec 82 04 e4 3a 25 f2
0260:  34 8c 52 a1 d3 bc e3 a2  65 aa 5d 11 b4 3d c2 a4
0270:  71 16 2f f3 41 c4 9d b9  f5 0a 2e 1a 41 ca f2 e9
0280:  cd 20 10 4e a0 96 8f 75  11 21 9f 0b dc 56 b6 80
0290:  12 cc 39 95 33 67 51 90  0b 03 63 6f 6d 00 00 30
02a0:  00 01 00 02 a3 00 00 44  01 01 03 0d 45 b9 1c 3b
02b0:  ef 7a 5d 99 a7 a7 c8 d8  22 e3 38 96 bc 80 a7 77
02c0:  a0 42 34 a6 05 a4 a8 88  0e c7 ef a4 e6 d1 12 c7
02d0:  3c d3 d4 c6 55 64 fa 74  34 7c 87 37 23 cc 5f 64
02e0:  33 70 f1 66 b4 3d ed ff  83 64 00 ff 03 63 6f 6d
02f0:  00 00 30 00 01 00 02 a3  00 00 44 01 01 03 0d b3
0300:  37 3b 6e 22 e8 e4 9e 0e  1e 59 1a 9f 5b d9 ac 5e
0310:  1a 0f 86 18 7f e3 47 03  f1 80 a9 d3 6c 95 8f 71
0320:  c4 af 48 ce 0e bc 5c 79  2a 72 4e 11 b4 38 95 93
0330:  7e e5 34 04 26 81 29 47  6e b1 ae d3 23 93 90 03
0340:  63 6f 6d 00 00 2e 00 01  00 02 a3 00 00 57 00 30
0350:  0d 01 00 02 a3 00 5b fd  da 80 56 37 f9 00 49 f3
0360:  03 63 6f 6d 00 cb 30 18  c9 8e d2 af f4 73 e6 ac
0370:  00 77 b7 15 09 11 07 7b  61 68 ad d1 52 62 40 79
0380:  7a 89 ea 40 4d e6 ea b5  25 45 26 2a f6 7a e1 e3
0390:  15 98 2a ed c9 93 01 e9  17 95 10 2d 1b 25 2d 5a
03a0:  ec ba e6 5c f2 03 63 6f  6d 00 00 2e 00 01 00 02
03b0:  a3 00 00 57 00 30 0d 01  00 02 a3 00 5b fd da 80
03c0:  56 37 f9 00 70 89 03 63  6f 6d 00 09 88 8c 50 0d
03d0:  66 80 5f e2 d3 41 44 1e  33 d2 06 9b 97 62 e6 56
03e0:  a3 5a ab a9 cd 31 83 23  33 01 66 73 47 4c f4 cd
03f0:  79 49 1a 51 31 21 94 fd  df 26 13 b0 25 96 54 a4
0400:  d6 1f 34 06 f6 bb f6 b4  5b eb f3 03 63 6f 6d 00
0410:  00 2b 00 01 00 01 51 80  00 24 49 f3 0d 02 20 f7
0420:  a9 db 42 d0 e2 04 2f bb  b9 f9 ea 01 59 41 20 2f
0430:  9e ab b9 44 87 e6 58 c1  88 e7 bc b5 21 15 03 63
0440:  6f 6d 00 00 2b 00 01 00  01 51 80 00 24 70 89 0d
0450:  02 ad 66 b3 27 6f 79 62  23 aa 45 ed a7 73 e9 2c
0460:  6d 98 e7 06 43 bb de 68  1d b3 42 a9 e5 cf 2b b3
0470:  80 03 63 6f 6d 00 00 2e  00 01 00 01 51 80 00 53
0480:  00 2b 0d 01 00 01 51 80  5b fd da 80 56 37 f9 00
0490:  7c ae 00 cc 2b 2f 5b 5b  32 c7 e0 e4 12 bf 7e cb
04a0:  a6 7e 4b 93 cf d1 5b 10  48 e2 8c b7 81 06 8a 0d
04b0:  49 69 f6 cf b9 f4 1e 8f  b2 a5 66 8a 41 76 dd 55
04c0:  65 ce 24 85 8a ec e4 ea  a1 ce 09 d9 e3 98 35 be
04d0:  53 ce 6d 00 00 30 00 01  00 01 51 80 00 44 01 00
04e0:  03 0d cc ac fe 0c 25 a4  34 0f ef ba 17 a2 54 f7
04f0:  06 aa c1 f8 d1 4f 38 29  90 25 ac c4 48 ca 8c e3
0500:  f5 61 f3 7f c3 ec 16 9f  e8 47 c8 fc be 68 e3 58
0510:  ff 7c 71 bb 5e e1 df 0d  be 51 8b c7 36 d4 ce 8d
0520:  fe 14 00 00 30 00 01 00  01 51 80 00 44 01 00 03
0530:  0d f3 03 19 67 89 73 1d  dc 8a 67 87 ef f2 4c ac
0540:  fe dd d0 32 58 2f 11 a7  5b b1 bc aa 5a b3 21 c1
0550:  d7 52 5c 26 58 19 1a ec  01 b3 e9 8a b7 91 5b 16
0560:  d5 71 dd 55 b4 ea e5 14  17 11 0c c4 cd d1 1d 17
0570:  11 00 00 30 00 01 00 01  51 80 00 44 01 01 03 0d
0580:  ca f5 fe 54 d4 d4 8f 16  62 1a fb 6b d3 ad 21 55
0590:  ba cf 57 d1 fa ad 5b ac  42 d1 7d 94 8c 42 17 36
05a0:  d9 38 9c 4c 40 11 66 6e  a9 5c f1 77 25 bd 0f a0
05b0:  0c e5 e7 14 e4 ec 82 cf  df ac c9 b1 c8 63 ad 46
05c0:  00 00 2e 00 01 00 01 51  80 00 53 00 30 0d 00 00
05d0:  01 51 80 5b fd da 80 56  37 f9 00 b7 9d 00 04 7b
05e0:  68 64 a0 f2 66 b9 75 e6  74 2f 6d d7 30 07 dd b3
05f0:  89 f5 e4 4f 5b aa 9d 22  30 73 f0 5f bd d2 bb 31
0600:  71 c8 cc e3 d5 f0 83 88  73 12 20 bd 8b e5 f8 70
0610:  73 68 88 f1 be cd e6 0e  da 00 30 07 72 3e
        </artwork>
      </figure>
    </section>  <!-- _443._tcp.www.example.com -->
    <section title="_25._tcp.example.com NSEC wildcard">
      <figure>
        <artwork>
_25._tcp.example.com.  3600  IN  TLSA  ( 3 1 1 
        c66bef6a5c1a3e78b82016e13f314f3cc5fa25b1e52aab9adb9ec5989b165
        ada )
_25._tcp.example.com.  3600  IN  RRSIG  ( TLSA 13 3 3600
        20181128000000 20151103000000 1870 example.com.
        qo4l24OdKVAZXLbtGdv/bpHguyqNL5LiIB/16NI3YVUeOS+UGZorvt253NimC
        m67EH2A6qkmcqhHcqHG9n7nbw== )
*._tcp.example.com.  3600  IN  NSEC  ( smtp.example.com. RRSIG
        NSEC TLSA )
*._tcp.example.com.  3600  IN  RRSIG  ( NSEC 13 3 3600
        20181128000000 20151103000000 1870 example.com.
        lOatdUxGVvufDPBfLnb4zYv0eVXv9sFkY8xsfe8xyuF0fg2M74lxOXviLf1yg
        5z5KhWPmr34nz2rm3U4IkhOvA== )
example.com.  3600  IN  DNSKEY  ( 257 3 13
        JnA1XgyJTZz+psWvbrfUWLV6ULqIJyUS2CQdhUH9VK35bslWeJpRzrlxCUs7s
        /TsSfZMaGWVvlsuieh5nHcXzA== ) ; Key ID = 1870
example.com.  3600  IN  RRSIG  ( DNSKEY 13 2 3600
        20181128000000 20151103000000 1870 example.com.
        iSQmfIb8PdM5mEB1vNh31vMfSLqUjAJoFwW8EUvjXHtQhHe2jSml4OdojumlW
        +YFx6XeWRx2t+jBTYmAVOsRRw== )
example.com.  172800  IN  DS  ( 1870 13 2 e9b533a049798e900b5c29c90cd
        25a986e8a44f319ac3cd302bafc08f5b81e16 )
example.com.  172800  IN  RRSIG  ( DS 13 2 172800
        20181128000000 20151103000000 34327 com.
        UDG6IfSgVJlZfPbC20U+j41vrlDitlWGh662ILScnOZWlXamxh73qtXqCeuLa
        Ve9fa5s1u2a4CSrZiFmdPUcRA== )
com.  172800  IN  DNSKEY  ( 256 3 13
        7IIE5Dol8jSMUqHTvOOiZapdEbQ9wqRxFi/zQcSdufUKLhpByvLpzSAQTqCWj
        3URIZ8L3Fa2gBLMOZUzZ1GQCw== ) ; Key ID = 34327
com.  172800  IN  DNSKEY  ( 257 3 13
        RbkcO+96XZmnp8jYIuM4lryAp3egQjSmBaSoiA7H76Tm0RLHPNPUxlVk+nQ0f
        Ic3I8xfZDNw8Wa0Pe3/g2QA/w== ) ; Key ID = 18931
com.  172800  IN  DNSKEY  ( 257 3 13
        szc7biLo5J4OHlkan1vZrF4aD4YYf+NHA/GAqdNslY9xxK9Izg68XHkqck4Rt
        DiVk37lNAQmgSlHbrGu0yOTkA== ) ; Key ID = 28809
com.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 18931 com.
        yzAYyY7Sr/Rz5qwAd7cVCREHe2FordFSYkB5eonqQE3m6rUlRSYq9nrh4xWYK
        u3JkwHpF5UQLRslLVrsuuZc8g== )
com.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 28809 com.
        CYiMUA1mgF/i00FEHjPSBpuXYuZWo1qrqc0xgyMzAWZzR0z0zXlJGlExIZT93
        yYTsCWWVKTWHzQG9rv2tFvr8w== )
com.  86400  IN  DS  ( 18931 13 2 20f7a9db42d0e2042fbbb9f9ea015941202
        f9eabb94487e658c188e7bcb52115 )
com.  86400  IN  DS  ( 28809 13 2 ad66b3276f796223aa45eda773e92c6d98e
        70643bbde681db342a9e5cf2bb380 )
com.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        zCsvW1syx+DkEr9+y6Z+S5PP0VsQSOKMt4EGig1JafbPufQej7KlZopBdt1VZ
        c4khYrs5OqhzgnZ45g1vlPObQ== )
.  86400  IN  DNSKEY  ( 256 3 13
        zKz+DCWkNA/vuheiVPcGqsH40U84KZAlrMRIyozj9WHzf8PsFp/oR8j8vmjjW
        P98cbte4d8NvlGLxzbUzo3+FA== ) ; Key ID = 31918
.  86400  IN  DNSKEY  ( 256 3 13
        8wMZZ4lzHdyKZ4fv8kys/t3QMlgvEadbsbyqWrMhwddSXCZYGRrsAbPpireRW
        xbVcd1VtOrlFBcRDMTN0R0XEQ== ) ; Key ID = 2635
.  86400  IN  DNSKEY  ( 257 3 13
        yvX+VNTUjxZiGvtr060hVbrPV9H6rVusQtF9lIxCFzbZOJxMQBFmbqlc8Xclv
        Q+gDOXnFOTsgs/frMmxyGOtRg== ) ; Key ID = 47005
.  86400  IN  RRSIG  ( DNSKEY 13 0 86400 20181128000000
        20151103000000 47005 .
        BHtoZKDyZrl15nQvbdcwB92zifXkT1uqnSIwc/BfvdK7MXHIzOPV8IOIcxIgv
        Yvl+HBzaIjxvs3mDtoAMAdyPg== )
        </artwork>
      </figure>
    </section> <!-- _25._tcp.example.com wildcard -->
    <section title="_25._tcp.example.org NSEC3 wildcard">
      <figure>
        <artwork>
_25._tcp.example.org.  3600  IN  TLSA  ( 3 1 1 
        c66bef6a5c1a3e78b82016e13f314f3cc5fa25b1e52aab9adb9ec5989b165
        ada )
_25._tcp.example.org.  3600  IN  RRSIG  ( TLSA 13 3 3600
        20181128000000 20151103000000 56566 example.org.
        AzKfRUquuHpcjnlSpBRd1SeXJ+2kuTUqkKN7NRahgyTW1Yg3frZKyaLiwlSrJ
        gaeoxJiKRyzKo45AFIn2Tlc0Q== )
dlm7rss9pejqnh0ev6h7k1ikqqcl5mae.example.org.  3600  IN  NSEC3  (
        1 0 1 - t6lf7uuoi0qofq0nvdjroavo46pp20im RRSIG TLSA )
dlm7rss9pejqnh0ev6h7k1ikqqcl5mae.example.org.  3600  IN  RRSIG  (
        NSEC3 13 3 3600 20181128000000 20151103000000 56566
        example.org.
        HM1LMR5mbbCsJzHcW7WdSgCjamjFZIQsBjV/zba4O4BRehs2F6wMCFmeKR1rz
        CNiYORR9DKBV7ymxf9kQSde4Q== )
example.org.  3600  IN  DNSKEY  ( 256 3 13
        NrbL6utGqIW1wrhhjeexdA6bMdD1lC1hj0Fnpevaa1AMyY2uy83TmoGnR996N
        UR5TlG4Zh+YPbbmUIixe4nS3w== ) ; Key ID = 56566
example.org.  3600  IN  DNSKEY  ( 257 3 13
        uspaqp17jsMTX6AWVgmbog/3Sttz+9ANFUWLn6qKUHr0BOqRuChQWj8jyYUUr
        Wy9txxesNQ9MkO4LUrFght1LQ== ) ; Key ID = 44384
example.org.  3600  IN  RRSIG  ( DNSKEY 13 2 3600
        20181128000000 20151103000000 44384 example.org.
        0iz4rhb5BvPog73WqYjZfFXqnalGn2ACwe1Dm13VJaWHia08FL0tdlYSvFoBV
        ghsXelOOL5CNXXxx88WkBn0ow== )
example.org.  86400  IN  DS  ( 44384 13 2 ec307e2efc8f0117ed96ab48a51
        3c8003e1d9121f1ff11a08b4cdd348d090aa6 )
example.org.  86400  IN  RRSIG  ( DS 13 2 86400 20181128000000
        20151103000000 9523 org.
        79fPtEuK4zIc/s4RscLlQ4auq40IqS8P5Ilb1tfvSqqASmLkm+i9WvBQp1sSF
        iLwqM5/XHcpvDGBO5Yirzm1gw== )
org.  86400  IN  DNSKEY  ( 256 3 13
        fuLp60znhSSEr9HowILpTpyLKQdM6ixcgkTE0gqVdsLx+DSNHSc69o6fLWC0e
        HfWx7kzlBBoJB0vLrvsJtXJ6g== ) ; Key ID = 47417
org.  86400  IN  DNSKEY  ( 256 3 13
        zTHbb7JM627Bjr8CGOySUarsic91xZU3vvLJ5RjVix9YH6+iwpBXb6qfHyQHy
        mlMiAAoaoXh7BUkEBVgDVN8sQ== ) ; Key ID = 9523
org.  86400  IN  DNSKEY  ( 257 3 13
        Uf24EyNt51DMcLV+dHPInhSpmjPnqAQNUTouU+SGLu+lFRRlBetgw1bJUZNI6
        Dlger0VJTm0QuX/JVXcyGVGoQ== ) ; Key ID = 49352
org.  86400  IN  DNSKEY  ( 257 3 13
        0SZfoe8Yx+eoaGgyAGEeJax/ZBV1AuG+/smcOgRm+F6doNlgc3lddcM1MbTvJ
        HTjK6Fvy8W6yZ+cAptn8sQheg== ) ; Key ID = 12651
org.  86400  IN  RRSIG  ( DNSKEY 13 1 86400 20181128000000
        20151103000000 12651 org.
        4LZLq/tp6NgDp0smMZTimmyglxf1jGlCTtfAqiN8UBpKkFCNNdxUdqhwHTrBk
        9rxkmy9S2+0FVMX4W+kfdgadQ== )
org.  86400  IN  RRSIG  ( DNSKEY 13 1 86400 20181128000000
        20151103000000 49352 org.
        +/npDnaC5OFeXaVosFmC1T+OWQG9F8vcoxyLLayu47zX1ZzpNC5E7OvsUyIQm
        7Jy7uzWFyvyjpVkFpYwsTG4Fw== )
org.  86400  IN  DS  ( 12651 13 2 3979a51f98bbf219fcaf4a4176e766dfa8f
        9db5c24a75743eb1e704b97a9fabc )
org.  86400  IN  DS  ( 49352 13 2 03d11a1aa114abbb8f708c3c0ff0db765fe
        f4a2f18920db5f58710dd767c293b )
org.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        mOA+Y4fCWoWweQl+ipddwhnCK2wU3vx9FLyaPWo9lbfvzUZU7SPmy7FJkyygG
        dYz9jTjAzl8ohbgacFcy44Acw== )
.  86400  IN  DNSKEY  ( 256 3 13
        zKz+DCWkNA/vuheiVPcGqsH40U84KZAlrMRIyozj9WHzf8PsFp/oR8j8vmjjW
        P98cbte4d8NvlGLxzbUzo3+FA== ) ; Key ID = 31918
.  86400  IN  DNSKEY  ( 256 3 13
        8wMZZ4lzHdyKZ4fv8kys/t3QMlgvEadbsbyqWrMhwddSXCZYGRrsAbPpireRW
        xbVcd1VtOrlFBcRDMTN0R0XEQ== ) ; Key ID = 2635
.  86400  IN  DNSKEY  ( 257 3 13
        yvX+VNTUjxZiGvtr060hVbrPV9H6rVusQtF9lIxCFzbZOJxMQBFmbqlc8Xclv
        Q+gDOXnFOTsgs/frMmxyGOtRg== ) ; Key ID = 47005
.  86400  IN  RRSIG  ( DNSKEY 13 0 86400 20181128000000
        20151103000000 47005 .
        BHtoZKDyZrl15nQvbdcwB92zifXkT1uqnSIwc/BfvdK7MXHIzOPV8IOIcxIgv
        Yvl+HBzaIjxvs3mDtoAMAdyPg== )
        </artwork>
      </figure>
    </section> <!-- _25._tcp.example.org NSEC3 wildcard -->
    <section title="_443._tcp.www.example.org CNAME">
      <figure>
        <artwork>
_443._tcp.www.example.org.  3600  IN  CNAME  dane311.example.org.
_443._tcp.www.example.org.  3600  IN  RRSIG  ( CNAME 13 5 3600
        20181128000000 20151103000000 56566 example.org.
        ghRwyn7rWkJCKmJYDw01BXbtUppbm0o0VxSpOgCMkyZSBxAIj1XbblsdInrSd
        FLvyFrxsJYmtRliDD3u2VYvSg== )
dane311.example.org.  3600  IN  TLSA  ( 3 1 1 
        c66bef6a5c1a3e78b82016e13f314f3cc5fa25b1e52aab9adb9ec5989b165
        ada )
dane311.example.org.  3600  IN  RRSIG  ( TLSA 13 3 3600
        20181128000000 20151103000000 56566 example.org.
        du6PG0KDeqna1y6bLI4wRMGGarfXT/fRfREZ3mHqKCIcdczu7y4B/4G1VV540
        c+HVwadzTDjexYRfgbjIeW+eQ== )
example.org.  3600  IN  DNSKEY  ( 256 3 13
        NrbL6utGqIW1wrhhjeexdA6bMdD1lC1hj0Fnpevaa1AMyY2uy83TmoGnR996N
        UR5TlG4Zh+YPbbmUIixe4nS3w== ) ; Key ID = 56566
example.org.  3600  IN  DNSKEY  ( 257 3 13
        uspaqp17jsMTX6AWVgmbog/3Sttz+9ANFUWLn6qKUHr0BOqRuChQWj8jyYUUr
        Wy9txxesNQ9MkO4LUrFght1LQ== ) ; Key ID = 44384
example.org.  3600  IN  RRSIG  ( DNSKEY 13 2 3600
        20181128000000 20151103000000 44384 example.org.
        0iz4rhb5BvPog73WqYjZfFXqnalGn2ACwe1Dm13VJaWHia08FL0tdlYSvFoBV
        ghsXelOOL5CNXXxx88WkBn0ow== )
example.org.  86400  IN  DS  ( 44384 13 2 ec307e2efc8f0117ed96ab48a51
        3c8003e1d9121f1ff11a08b4cdd348d090aa6 )
example.org.  86400  IN  RRSIG  ( DS 13 2 86400 20181128000000
        20151103000000 9523 org.
        79fPtEuK4zIc/s4RscLlQ4auq40IqS8P5Ilb1tfvSqqASmLkm+i9WvBQp1sSF
        iLwqM5/XHcpvDGBO5Yirzm1gw== )
org.  86400  IN  DNSKEY  ( 256 3 13
        fuLp60znhSSEr9HowILpTpyLKQdM6ixcgkTE0gqVdsLx+DSNHSc69o6fLWC0e
        HfWx7kzlBBoJB0vLrvsJtXJ6g== ) ; Key ID = 47417
org.  86400  IN  DNSKEY  ( 256 3 13
        zTHbb7JM627Bjr8CGOySUarsic91xZU3vvLJ5RjVix9YH6+iwpBXb6qfHyQHy
        mlMiAAoaoXh7BUkEBVgDVN8sQ== ) ; Key ID = 9523
org.  86400  IN  DNSKEY  ( 257 3 13
        Uf24EyNt51DMcLV+dHPInhSpmjPnqAQNUTouU+SGLu+lFRRlBetgw1bJUZNI6
        Dlger0VJTm0QuX/JVXcyGVGoQ== ) ; Key ID = 49352
org.  86400  IN  DNSKEY  ( 257 3 13
        0SZfoe8Yx+eoaGgyAGEeJax/ZBV1AuG+/smcOgRm+F6doNlgc3lddcM1MbTvJ
        HTjK6Fvy8W6yZ+cAptn8sQheg== ) ; Key ID = 12651
org.  86400  IN  RRSIG  ( DNSKEY 13 1 86400 20181128000000
        20151103000000 12651 org.
        4LZLq/tp6NgDp0smMZTimmyglxf1jGlCTtfAqiN8UBpKkFCNNdxUdqhwHTrBk
        9rxkmy9S2+0FVMX4W+kfdgadQ== )
org.  86400  IN  RRSIG  ( DNSKEY 13 1 86400 20181128000000
        20151103000000 49352 org.
        +/npDnaC5OFeXaVosFmC1T+OWQG9F8vcoxyLLayu47zX1ZzpNC5E7OvsUyIQm
        7Jy7uzWFyvyjpVkFpYwsTG4Fw== )
org.  86400  IN  DS  ( 12651 13 2 3979a51f98bbf219fcaf4a4176e766dfa8f
        9db5c24a75743eb1e704b97a9fabc )
org.  86400  IN  DS  ( 49352 13 2 03d11a1aa114abbb8f708c3c0ff0db765fe
        f4a2f18920db5f58710dd767c293b )
org.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        mOA+Y4fCWoWweQl+ipddwhnCK2wU3vx9FLyaPWo9lbfvzUZU7SPmy7FJkyygG
        dYz9jTjAzl8ohbgacFcy44Acw== )
.  86400  IN  DNSKEY  ( 256 3 13
        zKz+DCWkNA/vuheiVPcGqsH40U84KZAlrMRIyozj9WHzf8PsFp/oR8j8vmjjW
        P98cbte4d8NvlGLxzbUzo3+FA== ) ; Key ID = 31918
.  86400  IN  DNSKEY  ( 256 3 13
        8wMZZ4lzHdyKZ4fv8kys/t3QMlgvEadbsbyqWrMhwddSXCZYGRrsAbPpireRW
        xbVcd1VtOrlFBcRDMTN0R0XEQ== ) ; Key ID = 2635
.  86400  IN  DNSKEY  ( 257 3 13
        yvX+VNTUjxZiGvtr060hVbrPV9H6rVusQtF9lIxCFzbZOJxMQBFmbqlc8Xclv
        Q+gDOXnFOTsgs/frMmxyGOtRg== ) ; Key ID = 47005
.  86400  IN  RRSIG  ( DNSKEY 13 0 86400 20181128000000
        20151103000000 47005 .
        BHtoZKDyZrl15nQvbdcwB92zifXkT1uqnSIwc/BfvdK7MXHIzOPV8IOIcxIgv
        Yvl+HBzaIjxvs3mDtoAMAdyPg== )
        </artwork>
      </figure>
    </section> <!-- _443._tcp.www.example.org CNAME -->
    <section title="_443._tcp.www.example.net DNAME">
      <figure>
        <artwork>
example.net.  3600  IN  DNAME  example.com.
example.net.  3600  IN  RRSIG  ( DNAME 13 2 3600 20181128000000
        20151103000000 48085 example.net.
        ilK2RCGi3KERRPB/5gaym2Hw+UCbCU1MFNODKK6qbQK7H0B9+4nPwKQ8Fasc6
        AeXqDIsGqMVrdm/HUgHu5Bu3w== )
; _443._tcp.www.example.net.  3600  IN  CNAME  (
;         _443._tcp.www.example.com. )
_443._tcp.www.example.com.  3600  IN  TLSA  ( 3 1 1 
        c66bef6a5c1a3e78b82016e13f314f3cc5fa25b1e52aab9adb9ec5989b165
        ada )
_443._tcp.www.example.com.  3600  IN  RRSIG  ( TLSA 13 5 3600
        20181128000000 20151103000000 1870 example.com.
        v8N91gZ/eFvT8KwKFqtTLbF/KYu6H5GalYPdAafE7bISOXVOhqI8GiTWyb4OE
        9g/YJdwaGjyFVi9x5rsLmZv0Q== )
example.net.  3600  IN  DNSKEY  ( 257 3 13
        X9GHpJcS7bqKVEsLiVAbddHUHTZqqBbVa3mzIQmdp+5cTJk7qDazwH68Kts8d
        9MvN55HddWgsmeRhgzePz6hMg== ) ; Key ID = 48085
example.net.  3600  IN  RRSIG  ( DNSKEY 13 2 3600
        20181128000000 20151103000000 48085 example.net.
        JYp2an1iOqVTByDgUKaDRSQaC7b4OdUn0I0AmWMjkpgq+O2BGTGg3cvw9ou6Q
        WB80l37Ib3g0CPD/bz2lDz/fA== )
example.net.  172800  IN  DS  ( 48085 13 2 7c1998ce683df60e2fa41460c4
        53f88f463dac8cd5d074277b4a7c04502921be )
example.net.  172800  IN  RRSIG  ( DS 13 2 172800
        20181128000000 20151103000000 10713 net.
        WZKTFvoTn4aJ9BReBRgkecgoyBB04vJIHrhEonJ3BOyUANbcWHzwdpTSseYe6
        YxYJxo4ll+2CZDCqE9hIIRANA== )
net.  172800  IN  DNSKEY  ( 256 3 13
        061EoQs4sBcDsPiz17vt4nFSGLmXAGguqLStOesmKNCimi4/lw/vtyfqALuLF
        JiFjtCK3HMPi8HQ1jbGEwbGCA== ) ; Key ID = 10713
net.  172800  IN  DNSKEY  ( 257 3 13
        LkNCPE+v3S4MVnsOqZFhn8n2NSwtLYOZLZjjgVsAKgu4XZncaDgq1R/7ZXRO5
        oVx2zthxuu2i+mGbRrycAaCvA== ) ; Key ID = 485
net.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 485 net.
        BFoCXuxLcLmYXJBUYi3zDbox52CuqfbJcLjusW5k+rsdZ0/WSIBcuuFpqK/FT
        jHH/EjCziEACN1w3t1eBJBxyw== )
net.  86400  IN  DS  ( 485 13 2 ab25a2941aa7f1eb8688bb783b25587515a0c
        d8c247769b23adb13ca234d1c05 )
net.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        secc/A3oEHoSMUWunDp3wsbNpcTM55ndU+F3mxC+oC7idlGW3hdAs+12kcZBv
        q3ZDgdA5VOELlz/qVMzUQT0xw== )
.  86400  IN  DNSKEY  ( 256 3 13
        zKz+DCWkNA/vuheiVPcGqsH40U84KZAlrMRIyozj9WHzf8PsFp/oR8j8vmjjW
        P98cbte4d8NvlGLxzbUzo3+FA== ) ; Key ID = 31918
.  86400  IN  DNSKEY  ( 256 3 13
        8wMZZ4lzHdyKZ4fv8kys/t3QMlgvEadbsbyqWrMhwddSXCZYGRrsAbPpireRW
        xbVcd1VtOrlFBcRDMTN0R0XEQ== ) ; Key ID = 2635
.  86400  IN  DNSKEY  ( 257 3 13
        yvX+VNTUjxZiGvtr060hVbrPV9H6rVusQtF9lIxCFzbZOJxMQBFmbqlc8Xclv
        Q+gDOXnFOTsgs/frMmxyGOtRg== ) ; Key ID = 47005
.  86400  IN  RRSIG  ( DNSKEY 13 0 86400 20181128000000
        20151103000000 47005 .
        BHtoZKDyZrl15nQvbdcwB92zifXkT1uqnSIwc/BfvdK7MXHIzOPV8IOIcxIgv
        Yvl+HBzaIjxvs3mDtoAMAdyPg== )
example.com.  3600  IN  DNSKEY  ( 257 3 13
        JnA1XgyJTZz+psWvbrfUWLV6ULqIJyUS2CQdhUH9VK35bslWeJpRzrlxCUs7s
        /TsSfZMaGWVvlsuieh5nHcXzA== ) ; Key ID = 1870
example.com.  3600  IN  RRSIG  ( DNSKEY 13 2 3600
        20181128000000 20151103000000 1870 example.com.
        iSQmfIb8PdM5mEB1vNh31vMfSLqUjAJoFwW8EUvjXHtQhHe2jSml4OdojumlW
        +YFx6XeWRx2t+jBTYmAVOsRRw== )
example.com.  172800  IN  DS  ( 1870 13 2 e9b533a049798e900b5c29c90cd
        25a986e8a44f319ac3cd302bafc08f5b81e16 )
example.com.  172800  IN  RRSIG  ( DS 13 2 172800
        20181128000000 20151103000000 34327 com.
        UDG6IfSgVJlZfPbC20U+j41vrlDitlWGh662ILScnOZWlXamxh73qtXqCeuLa
        Ve9fa5s1u2a4CSrZiFmdPUcRA== )
com.  172800  IN  DNSKEY  ( 256 3 13
        7IIE5Dol8jSMUqHTvOOiZapdEbQ9wqRxFi/zQcSdufUKLhpByvLpzSAQTqCWj
        3URIZ8L3Fa2gBLMOZUzZ1GQCw== ) ; Key ID = 34327
com.  172800  IN  DNSKEY  ( 257 3 13
        RbkcO+96XZmnp8jYIuM4lryAp3egQjSmBaSoiA7H76Tm0RLHPNPUxlVk+nQ0f
        Ic3I8xfZDNw8Wa0Pe3/g2QA/w== ) ; Key ID = 18931
com.  172800  IN  DNSKEY  ( 257 3 13
        szc7biLo5J4OHlkan1vZrF4aD4YYf+NHA/GAqdNslY9xxK9Izg68XHkqck4Rt
        DiVk37lNAQmgSlHbrGu0yOTkA== ) ; Key ID = 28809
com.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 18931 com.
        yzAYyY7Sr/Rz5qwAd7cVCREHe2FordFSYkB5eonqQE3m6rUlRSYq9nrh4xWYK
        u3JkwHpF5UQLRslLVrsuuZc8g== )
com.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 28809 com.
        CYiMUA1mgF/i00FEHjPSBpuXYuZWo1qrqc0xgyMzAWZzR0z0zXlJGlExIZT93
        yYTsCWWVKTWHzQG9rv2tFvr8w== )
com.  86400  IN  DS  ( 18931 13 2 20f7a9db42d0e2042fbbb9f9ea015941202
        f9eabb94487e658c188e7bcb52115 )
com.  86400  IN  DS  ( 28809 13 2 ad66b3276f796223aa45eda773e92c6d98e
        70643bbde681db342a9e5cf2bb380 )
com.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        zCsvW1syx+DkEr9+y6Z+S5PP0VsQSOKMt4EGig1JafbPufQej7KlZopBdt1VZ
        c4khYrs5OqhzgnZ45g1vlPObQ== )
        </artwork>
      </figure>
    </section> <!-- _443._tcp.www.example.net DNAME-->
    <section title="_25._tcp.smtp.example.com NSEC Denial of Existence">
      <figure>
        <artwork>
example.com.  3600  IN  SOA  ( sns.dns.icann.org. noc.dns.icann.org.
        2017042720 7200 3600 1209600 3600)
example.com.  3600  IN  RRSIG  ( SOA 13 2 3600 20181128000000
        20151103000000 1870 example.com.
        tWkHhuCyJuVQ6M+7Ql1A1N+NlJvL1K7KbvCLKKemqAEn/w/67iap58VmGOJ53
        6Iwk8hA9kANMCtOcKS61CDr1g== )
smtp.example.com.  3600  IN  NSEC  ( www.example.com. A AAAA
        RRSIG NSEC )
smtp.example.com.  3600  IN  RRSIG  ( NSEC 13 3 3600
        20181128000000 20151103000000 1870 example.com.
        cQRiiLFOHrUTN8WoJnNkrGFFCBrAde8LG8Wl1phMpgwb8r7PGIV5Hc6DIYJY3
        zOAHSuPuaGvNvlHCAo1fKZAxQ== )
example.com.  3600  IN  DNSKEY  ( 257 3 13
        JnA1XgyJTZz+psWvbrfUWLV6ULqIJyUS2CQdhUH9VK35bslWeJpRzrlxCUs7s
        /TsSfZMaGWVvlsuieh5nHcXzA== ) ; Key ID = 1870
example.com.  3600  IN  RRSIG  ( DNSKEY 13 2 3600
        20181128000000 20151103000000 1870 example.com.
        iSQmfIb8PdM5mEB1vNh31vMfSLqUjAJoFwW8EUvjXHtQhHe2jSml4OdojumlW
        +YFx6XeWRx2t+jBTYmAVOsRRw== )
example.com.  172800  IN  DS  ( 1870 13 2 e9b533a049798e900b5c29c90cd
        25a986e8a44f319ac3cd302bafc08f5b81e16 )
example.com.  172800  IN  RRSIG  ( DS 13 2 172800
        20181128000000 20151103000000 34327 com.
        UDG6IfSgVJlZfPbC20U+j41vrlDitlWGh662ILScnOZWlXamxh73qtXqCeuLa
        Ve9fa5s1u2a4CSrZiFmdPUcRA== )
com.  172800  IN  DNSKEY  ( 256 3 13
        7IIE5Dol8jSMUqHTvOOiZapdEbQ9wqRxFi/zQcSdufUKLhpByvLpzSAQTqCWj
        3URIZ8L3Fa2gBLMOZUzZ1GQCw== ) ; Key ID = 34327
com.  172800  IN  DNSKEY  ( 257 3 13
        RbkcO+96XZmnp8jYIuM4lryAp3egQjSmBaSoiA7H76Tm0RLHPNPUxlVk+nQ0f
        Ic3I8xfZDNw8Wa0Pe3/g2QA/w== ) ; Key ID = 18931
com.  172800  IN  DNSKEY  ( 257 3 13
        szc7biLo5J4OHlkan1vZrF4aD4YYf+NHA/GAqdNslY9xxK9Izg68XHkqck4Rt
        DiVk37lNAQmgSlHbrGu0yOTkA== ) ; Key ID = 28809
com.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 18931 com.
        yzAYyY7Sr/Rz5qwAd7cVCREHe2FordFSYkB5eonqQE3m6rUlRSYq9nrh4xWYK
        u3JkwHpF5UQLRslLVrsuuZc8g== )
com.  172800  IN  RRSIG  ( DNSKEY 13 1 172800 20181128000000
        20151103000000 28809 com.
        CYiMUA1mgF/i00FEHjPSBpuXYuZWo1qrqc0xgyMzAWZzR0z0zXlJGlExIZT93
        yYTsCWWVKTWHzQG9rv2tFvr8w== )
com.  86400  IN  DS  ( 18931 13 2 20f7a9db42d0e2042fbbb9f9ea015941202
        f9eabb94487e658c188e7bcb52115 )
com.  86400  IN  DS  ( 28809 13 2 ad66b3276f796223aa45eda773e92c6d98e
        70643bbde681db342a9e5cf2bb380 )
com.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        zCsvW1syx+DkEr9+y6Z+S5PP0VsQSOKMt4EGig1JafbPufQej7KlZopBdt1VZ
        c4khYrs5OqhzgnZ45g1vlPObQ== )
.  86400  IN  DNSKEY  ( 256 3 13
        zKz+DCWkNA/vuheiVPcGqsH40U84KZAlrMRIyozj9WHzf8PsFp/oR8j8vmjjW
        P98cbte4d8NvlGLxzbUzo3+FA== ) ; Key ID = 31918
.  86400  IN  DNSKEY  ( 256 3 13
        8wMZZ4lzHdyKZ4fv8kys/t3QMlgvEadbsbyqWrMhwddSXCZYGRrsAbPpireRW
        xbVcd1VtOrlFBcRDMTN0R0XEQ== ) ; Key ID = 2635
.  86400  IN  DNSKEY  ( 257 3 13
        yvX+VNTUjxZiGvtr060hVbrPV9H6rVusQtF9lIxCFzbZOJxMQBFmbqlc8Xclv
        Q+gDOXnFOTsgs/frMmxyGOtRg== ) ; Key ID = 47005
.  86400  IN  RRSIG  ( DNSKEY 13 0 86400 20181128000000
        20151103000000 47005 .
        BHtoZKDyZrl15nQvbdcwB92zifXkT1uqnSIwc/BfvdK7MXHIzOPV8IOIcxIgv
        Yvl+HBzaIjxvs3mDtoAMAdyPg== )
        </artwork>
      </figure>
    </section> <!-- _25._tcp.smtp.example.org NSEC3 Denial of Existence -->
    <section title="_25._tcp.smtp.example.org NSEC3 Denial of Existence">
      <figure>
        <artwork>
example.org.  3600  IN  SOA  ( sns.dns.icann.org.  noc.dns.icann.org.
        2017042720 7200 3600 1209600 3600)
example.org.  3600  IN  RRSIG  ( SOA 13 2 3600 20181128000000
        20151103000000 56566 example.org.
        cdTd84awnFIxn4KKGbC0AmkOXmWxcd3KNaY8+sXcM2CrG+ER0boo00kYfoXRM
        Mnsz5UZe0WkbJXQQaeaLG5Jxg== )
vkv62jbv85822q8rtmfnbhfnmnat9ve3.example.org.  3600  IN  NSEC3  (
        1 0 1 - 93u63bg57ppj6649al2n31l92iedkjd6 A AAAA RRSIG )
vkv62jbv85822q8rtmfnbhfnmnat9ve3.example.org.  3600  IN  RRSIG  (
        NSEC3 13 3 3600 20181128000000 20151103000000 56566
        example.org.
        yeZcHjDgvIlKFL6UrDefZq/3HxUbMiQmiqipNf16Amc90e+bsKW80kc+nqQiD
        z8EBwvL+PT8/z/Z/e8+j9PQjQ== )
dlm7rss9pejqnh0ev6h7k1ikqqcl5mae.example.org.  3600  IN  NSEC3  (
        1 0 1 - t6lf7uuoi0qofq0nvdjroavo46pp20im RRSIG TLSA )
dlm7rss9pejqnh0ev6h7k1ikqqcl5mae.example.org.  3600  IN  RRSIG  (
        NSEC3 13 3 3600 20181128000000 20151103000000 56566
        example.org.
        HM1LMR5mbbCsJzHcW7WdSgCjamjFZIQsBjV/zba4O4BRehs2F6wMCFmeKR1rz
        CNiYORR9DKBV7ymxf9kQSde4Q== )
a73bi8coh6dvf1arqdeuogf95r0828mk.example.org.  3600  IN  NSEC3  (
        1 0 1 - c1p0lp7l1l8gdn0jl13pp1o41h35untj CNAME RRSIG )
a73bi8coh6dvf1arqdeuogf95r0828mk.example.org.  3600  IN  RRSIG  (
        NSEC3 13 3 3600 20181128000000 20151103000000 56566
        example.org.
        HYLPyJ4Nf0NX1Ip0TGZjh9OIsjEZLL//x0PLNvV8gwwZjuvnlQ0SqoYKLWKPi
        5MSzKL4+JCzUjff4+h6tPKSzg== )
example.org.  3600  IN  DNSKEY  ( 256 3 13
        NrbL6utGqIW1wrhhjeexdA6bMdD1lC1hj0Fnpevaa1AMyY2uy83TmoGnR996N
        UR5TlG4Zh+YPbbmUIixe4nS3w== ) ; Key ID = 56566
example.org.  3600  IN  DNSKEY  ( 257 3 13
        uspaqp17jsMTX6AWVgmbog/3Sttz+9ANFUWLn6qKUHr0BOqRuChQWj8jyYUUr
        Wy9txxesNQ9MkO4LUrFght1LQ== ) ; Key ID = 44384
example.org.  3600  IN  RRSIG  ( DNSKEY 13 2 3600
        20181128000000 20151103000000 44384 example.org.
        0iz4rhb5BvPog73WqYjZfFXqnalGn2ACwe1Dm13VJaWHia08FL0tdlYSvFoBV
        ghsXelOOL5CNXXxx88WkBn0ow== )
example.org.  86400  IN  DS  ( 44384 13 2 ec307e2efc8f0117ed96ab48a51
        3c8003e1d9121f1ff11a08b4cdd348d090aa6 )
example.org.  86400  IN  RRSIG  ( DS 13 2 86400 20181128000000
        20151103000000 9523 org.
        79fPtEuK4zIc/s4RscLlQ4auq40IqS8P5Ilb1tfvSqqASmLkm+i9WvBQp1sSF
        iLwqM5/XHcpvDGBO5Yirzm1gw== )
org.  86400  IN  DNSKEY  ( 256 3 13
        fuLp60znhSSEr9HowILpTpyLKQdM6ixcgkTE0gqVdsLx+DSNHSc69o6fLWC0e
        HfWx7kzlBBoJB0vLrvsJtXJ6g== ) ; Key ID = 47417
org.  86400  IN  DNSKEY  ( 256 3 13
        zTHbb7JM627Bjr8CGOySUarsic91xZU3vvLJ5RjVix9YH6+iwpBXb6qfHyQHy
        mlMiAAoaoXh7BUkEBVgDVN8sQ== ) ; Key ID = 9523
org.  86400  IN  DNSKEY  ( 257 3 13
        Uf24EyNt51DMcLV+dHPInhSpmjPnqAQNUTouU+SGLu+lFRRlBetgw1bJUZNI6
        Dlger0VJTm0QuX/JVXcyGVGoQ== ) ; Key ID = 49352
org.  86400  IN  DNSKEY  ( 257 3 13
        0SZfoe8Yx+eoaGgyAGEeJax/ZBV1AuG+/smcOgRm+F6doNlgc3lddcM1MbTvJ
        HTjK6Fvy8W6yZ+cAptn8sQheg== ) ; Key ID = 12651
org.  86400  IN  RRSIG  ( DNSKEY 13 1 86400 20181128000000
        20151103000000 12651 org.
        4LZLq/tp6NgDp0smMZTimmyglxf1jGlCTtfAqiN8UBpKkFCNNdxUdqhwHTrBk
        9rxkmy9S2+0FVMX4W+kfdgadQ== )
org.  86400  IN  RRSIG  ( DNSKEY 13 1 86400 20181128000000
        20151103000000 49352 org.
        +/npDnaC5OFeXaVosFmC1T+OWQG9F8vcoxyLLayu47zX1ZzpNC5E7OvsUyIQm
        7Jy7uzWFyvyjpVkFpYwsTG4Fw== )
org.  86400  IN  DS  ( 12651 13 2 3979a51f98bbf219fcaf4a4176e766dfa8f
        9db5c24a75743eb1e704b97a9fabc )
org.  86400  IN  DS  ( 49352 13 2 03d11a1aa114abbb8f708c3c0ff0db765fe
        f4a2f18920db5f58710dd767c293b )
org.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        mOA+Y4fCWoWweQl+ipddwhnCK2wU3vx9FLyaPWo9lbfvzUZU7SPmy7FJkyygG
        dYz9jTjAzl8ohbgacFcy44Acw== )
.  86400  IN  DNSKEY  ( 256 3 13
        zKz+DCWkNA/vuheiVPcGqsH40U84KZAlrMRIyozj9WHzf8PsFp/oR8j8vmjjW
        P98cbte4d8NvlGLxzbUzo3+FA== ) ; Key ID = 31918
.  86400  IN  DNSKEY  ( 256 3 13
        8wMZZ4lzHdyKZ4fv8kys/t3QMlgvEadbsbyqWrMhwddSXCZYGRrsAbPpireRW
        xbVcd1VtOrlFBcRDMTN0R0XEQ== ) ; Key ID = 2635
.  86400  IN  DNSKEY  ( 257 3 13
        yvX+VNTUjxZiGvtr060hVbrPV9H6rVusQtF9lIxCFzbZOJxMQBFmbqlc8Xclv
        Q+gDOXnFOTsgs/frMmxyGOtRg== ) ; Key ID = 47005
.  86400  IN  RRSIG  ( DNSKEY 13 0 86400 20181128000000
        20151103000000 47005 .
        BHtoZKDyZrl15nQvbdcwB92zifXkT1uqnSIwc/BfvdK7MXHIzOPV8IOIcxIgv
        Yvl+HBzaIjxvs3mDtoAMAdyPg== )
        </artwork>
      </figure>
    </section> <!-- _25._tcp.smtp.example.org NSEC3 Denial of Existence -->
    <section title="_443._tcp.www.insecure.example NSEC3 opt-out insecure delegation">
      <figure>
        <artwork>
example.  432000  IN  SOA  ( ns.ns-servers.example.
        hostmaster.ns-servers.example. 2018042500 1800 900 604800
        43200 )
example.  432000  IN  RRSIG  ( SOA 13 1 432000 20181128000000
        20151103000000 15903 example.
        QvaC/JXrXdpmK9kFcZ6AUD5NcRn+7n6bWZdtExVwhwASoWsyI3XUebewHmOub
        LjTaR7jWKBZVdusAyJy+GasFg== )
c1kgc91hrn9nqi2qjh1ms78ki8p7s75o.example.  43200  IN  NSEC3  (
        1 1 1 - shn05itmoa45mmnv74lc4p0nnfmimtjt NS SOA RRSIG DNSKEY
        NSEC3PARAM )
c1kgc91hrn9nqi2qjh1ms78ki8p7s75o.example.  43200  IN  RRSIG  (
        NSEC3 13 2 43200 20181128000000 20151103000000 15903
        example.
        RGbtCZ2g1kkwHF1X6Hub2gIw5dA03xIYKIvrboJTqJx86jDG2tFFatdhJBh0J
        NREMnviEADDyb09CuK0UpXtZA== )
shn05itmoa45mmnv74lc4p0nnfmimtjt.example.  43200  IN  NSEC3  (
        1 1 1 - a3ib1dvf1bdtfmd91usrdem5fiiepi6p NS DS RRSIG )
shn05itmoa45mmnv74lc4p0nnfmimtjt.example.  43200  IN  RRSIG  (
        NSEC3 13 2 43200 20181128000000 20151103000000 15903
        example.
        x5SpB7Z4aqgtEloiNngcN03llqkcTwyiTa04oBVK7dW+3mH+svofr3r18lQLI
        aZgr0gmNbgKuW6C8/i+lI5SlA== )
example.  432000  IN  DNSKEY  ( 257 3 13
        yrkqXSbVwXOoUxCjr/E9yg8XUzbZNlwPllVsoUPd73TLOnBQQ+03Qw4/k+Nme
        /66WIw+ZTlHYcTNalxiGYm0uQ== ) ; Key ID = 15903
example.  432000  IN  RRSIG  ( DNSKEY 13 1 432000
        20181128000000 20151103000000 15903 example.
        URP73Z7USF7YvI3ff6cQSlo+pJrQwIx19SVbMTR8bT556Uf0PIbVDyPYbwfJ9
        L/iXmh8E50FEdhUsr0z7o28sg== )
example.  86400  IN  DS  ( 15903 13 2 7e0ebaf1cc0d309d4a73ca7d711719d
        d940f4da87b3d72865167650fc73ea577 )
example.  86400  IN  RRSIG  ( DS 13 1 86400 20181128000000
        20151103000000 31918 .
        +6aZMKsYO4tV0xvZ/FKUdHNXXMUEHu3qltUs+GYnoCEsmNx14F3g8QoT34d5/
        Oo2AfP+lHv76wc/bqVdz1fh9A== )
.  86400  IN  DNSKEY  ( 256 3 13
        zKz+DCWkNA/vuheiVPcGqsH40U84KZAlrMRIyozj9WHzf8PsFp/oR8j8vmjjW
        P98cbte4d8NvlGLxzbUzo3+FA== ) ; Key ID = 31918
.  86400  IN  DNSKEY  ( 256 3 13
        8wMZZ4lzHdyKZ4fv8kys/t3QMlgvEadbsbyqWrMhwddSXCZYGRrsAbPpireRW
        xbVcd1VtOrlFBcRDMTN0R0XEQ== ) ; Key ID = 2635
.  86400  IN  DNSKEY  ( 257 3 13
        yvX+VNTUjxZiGvtr060hVbrPV9H6rVusQtF9lIxCFzbZOJxMQBFmbqlc8Xclv
        Q+gDOXnFOTsgs/frMmxyGOtRg== ) ; Key ID = 47005
.  86400  IN  RRSIG  ( DNSKEY 13 0 86400 20181128000000
        20151103000000 47005 .
        BHtoZKDyZrl15nQvbdcwB92zifXkT1uqnSIwc/BfvdK7MXHIzOPV8IOIcxIgv
        Yvl+HBzaIjxvs3mDtoAMAdyPg== )
        </artwork>
      </figure>
    </section> <!-- _443._tcp.www.insecure.example NSEC3 opt-out insecure delegation -->
  </section> <!-- test vectors -->
</back>
</rfc>