2 ; The island of trust is at example.com (the DLV repository)
4 dlv-anchor: "example.com. 3600 IN DS 2854 3 1 46e4ffc6e9a4793b488954bd3f0cc6af0dfb201b"
5 val-override-date: "20070916134226"
6 harden-referral-path: no
7 target-fetch-policy: "0 0 0 0 0"
9 trust-anchor-signaling: no
13 stub-addr: 193.0.14.129 # K.ROOT-SERVERS.NET.
16 SCENARIO_BEGIN Test validator with insecure zone, no DLV from negative cache
22 MATCH opcode qtype qname
28 . IN NS K.ROOT-SERVERS.NET.
30 K.ROOT-SERVERS.NET. IN A 193.0.14.129
34 MATCH opcode subdomain
35 ADJUST copy_id copy_query
40 com. IN NS a.gtld-servers.net.
42 a.gtld-servers.net. IN A 192.5.6.30
46 MATCH opcode subdomain
47 ADJUST copy_id copy_query
52 net. IN NS a.gtld-servers.net.
54 a.gtld-servers.net. IN A 192.5.6.30
62 MATCH opcode qtype qname
68 com. IN NS a.gtld-servers.net.
70 a.gtld-servers.net. IN A 192.5.6.30
74 MATCH opcode qtype qname
80 net. IN NS a.gtld-servers.net.
82 a.gtld-servers.net. IN A 192.5.6.30
86 MATCH opcode subdomain
87 ADJUST copy_id copy_query
92 example.com. IN NS ns.example.com.
94 ns.example.com. IN A 1.2.3.4
98 MATCH opcode subdomain
99 ADJUST copy_id copy_query
104 example.net. IN NS ns.example.net.
106 ns.example.net. IN A 1.2.3.5
114 MATCH opcode qtype qname
120 example.com. IN NS ns.example.com.
121 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
123 ns.example.com. IN A 1.2.3.4
124 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
127 ; response to DNSKEY priming query
129 MATCH opcode qtype qname
133 example.com. IN DNSKEY
135 example.com. 3600 IN DNSKEY 256 3 3 ALXLUsWqUrY3JYER3T4TBJII s70j+sDS/UT2QRp61SE7S3E EXopNXoFE73JLRmvpi/UrOO/Vz4Se 6wXv/CYCKjGw06U4WRgR YXcpEhJROyNapmdIKSx hOzfLVE1gqA0PweZR8d tY3aNQSRn3sPpwJr6Mi /PqQKAMMrZ9ckJpf1+b QMOOvxgzz2U1GS18b3y ZKcgTMEaJzd/GZYzi/B N2DzQ0MsrSwYXfsNLFO Bbs8PJMW4LYIxeeOe6rUgkWOF 7CC9Dh/dduQ1QrsJhmZAEFfd6ByYV+ ;{id = 2854 (zsk), size = 1688b}
136 example.com. 3600 IN RRSIG DNSKEY 3 2 3600 20070926134802 20070829134802 2854 example.com. MCwCFG1yhRNtTEa3Eno2zhVVuy2EJX3wAhQeLyUp6+UXcpC5qGNu9tkrTEgPUg== ;{id = 2854}
138 example.com. IN NS ns.example.com.
139 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
141 ns.example.com. IN A 1.2.3.4
142 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
146 ; could be picked out of the negative cache due to NS queries in between.
148 MATCH opcode qtype qname
152 www.example.net.example.com. IN DLV
155 example.com. IN SOA open.nlnetlabs.nl. hostmaster.nlnetlabs.nl. 2008081300 28800 7200 604800 3600
156 example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AKPJnPBqfJKxE4P2iVYkSRJno9HmiXJZtjdqE8oBeq9Lk9FytcMdcig= ;{id = 2854}
157 example.com. IN NS ns.example.com.
158 example.com. 3600 IN RRSIG NS 3 2 3600 20070926134150 20070829134150 2854 example.com. MC0CFQCN+qHdJxoI/2tNKwsb08pra/G7aAIUAWA5sDdJTbrXA1/3OaesGBAO3sI= ;{id = 2854}
159 zoink.name.example.com IN NSEC zazz.net.example.com. RRSIG NSEC DLV
160 zoink.name.example.com. 3600 IN RRSIG NSEC 3 4 3600 20070926134150 20070829134150 2854 example.com. AHipxvshRHglCEN4nZCT4m/4RIj8TrCOE2AsqEoH9e+6OYSo+yuNzzo= ;{id = 2854}
162 ns.example.com. IN A 1.2.3.4
163 ns.example.com. 3600 IN RRSIG A 3 3 3600 20070926135752 20070829135752 2854 example.com. MC0CFQCMSWxVehgOQLoYclB9PIAbNP229AIUeH0vNNGJhjnZiqgIOKvs1EhzqAo= ;{id = 2854}
167 MATCH opcode qtype qname
171 net.example.com. IN DLV
174 example.com. IN SOA open.nlnetlabs.nl. hostmaster.nlnetlabs.nl. 2008081300 28800 7200 604800 3600
175 example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AKPJnPBqfJKxE4P2iVYkSRJno9HmiXJZtjdqE8oBeq9Lk9FytcMdcig= ;{id = 2854}
176 zoink.name.example.com IN NSEC zazz.net.example.com. RRSIG NSEC DLV
177 zoink.name.example.com. 3600 IN RRSIG NSEC 3 4 3600 20070926134150 20070829134150 2854 example.com. AHipxvshRHglCEN4nZCT4m/4RIj8TrCOE2AsqEoH9e+6OYSo+yuNzzo= ;{id = 2854}
181 MATCH opcode qtype qname
188 example.com. IN SOA open.nlnetlabs.nl. hostmaster.nlnetlabs.nl. 2008081300 28800 7200 604800 3600
189 example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AKPJnPBqfJKxE4P2iVYkSRJno9HmiXJZtjdqE8oBeq9Lk9FytcMdcig= ;{id = 2854}
190 example.com IN NSEC frump.aqua.example.com. SOA NS RRSIG NSEC DNSKEY
191 example.com. 3600 IN RRSIG NSEC 3 2 3600 20070926134150 20070829134150 2854 example.com. AAscY9DfNm3Uy8f8Q4WX6AzR0flHYNSr3fKfgQ0Xc20fzj1lGP9ebfk= ;{id = 2854}
195 MATCH opcode qtype qname
199 com.example.com. IN DLV
202 example.com. IN SOA open.nlnetlabs.nl. hostmaster.nlnetlabs.nl. 2008081300 28800 7200 604800 3600
203 example.com. 3600 IN RRSIG SOA 3 2 3600 20070926134150 20070829134150 2854 example.com. AKPJnPBqfJKxE4P2iVYkSRJno9HmiXJZtjdqE8oBeq9Lk9FytcMdcig= ;{id = 2854}
204 example.com IN NSEC zazz.example.com. SOA NS RRSIG NSEC
205 example.com. 3600 IN RRSIG NSEC 3 2 3600 20070926135752 20070829135752 2854 example.com. AAi21jQpno6gXnrPrtK0NvNgX9B8E9U5RvTd47QiCWLF7KdtKxB7Xz0= ;{id = 2854}
215 MATCH opcode qtype qname
221 example.net. IN NS ns.example.net.
223 ns.example.net. IN A 1.2.3.5
226 ; www.example.net query
228 MATCH opcode qtype qname
232 www.example.net. IN A
234 www.example.net. 10 IN A 10.20.30.40
236 example.net. IN NS ns.example.net.
238 ns.example.net. IN A 1.2.3.5
248 www.example.net. IN A
251 ; recursion happens here.
255 REPLY QR RD RA DO NOERROR
257 www.example.net. IN A
259 www.example.net. 10 IN A 10.20.30.40
261 example.net. IN NS ns.example.net.
263 ns.example.net. IN A 1.2.3.5
266 STEP 150 TIME_PASSES ELAPSE 30
268 ; no more DLV authority reachable
273 www.example.net. IN A
276 STEP 210 CHECK_ANSWER
279 REPLY QR RD RA DO NOERROR
281 www.example.net. IN A
283 www.example.net. 10 IN A 10.20.30.40
285 example.net. IN NS ns.example.net.
287 ns.example.net. IN A 1.2.3.5
297 STEP 230 CHECK_ANSWER
300 REPLY QR RD RA DO NOERROR
304 net. IN NS a.gtld-servers.net.
306 a.gtld-servers.net. IN A 192.5.6.30