[Yeti DNS Discuss] First KSK rollover in Yeti Testbed
Stephane Bortzmeyer
bortzmeyer at nic.fr
Thu Jul 2 16:54:12 UTC 2015
On Thu, Jul 02, 2015 at 04:59:22PM +0200,
Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote
a message of 20 lines which said:
> No, the problem was simply that I was too impatient. Now, I have the
> new key (and, of course, still the "old" one).
And with BIND (note there is no mention of the state of the keys):
/var/cache/bind % cat managed-keys.bind
$ORIGIN .
$TTL 0 ; 0 seconds
@ IN SOA . . (
2 ; serial
0 ; refresh (0 seconds)
0 ; retry (0 seconds)
0 ; expire (0 seconds)
0 ; minimum (0 seconds)
)
KEYDATA 20150703040258 20150702160258 19700101000000 257 3 8 (
AwEAAaP3gGQ4db0tAiDEky0dcUNGeI1aTDYP5NFxzhbd
pD60ZhKLVV4KyxPmoSNUpq5Fv5M0iBwK1Tyswsyq/9sM
SoZ8zx8aT3ho1YnPsSqQeJfjTT1WsX6YZ5Kw6B2QkjRN
a6OMGZ96Kn8AI/slqsw+z8hY49Sn3baeo9iJxHPzloNc
2dQkW4aLqzNEYxnuoJsthCfGrPSAXlUjY9m3YKIaEWR5
WFYQk770fT+gGWLk/54Vp0sG+Lw75JZnwhDhixPFaToT
DNqbHQmkEylq1XJLO15uZ/+RZNRfTXZKO4fVR0tMEbMA
ITqRmyP8xLXY4RXbS4J32gnenQbzABX8sQmwO7s=
) ; KSK; alg = RSASHA256; key id = 55954
KEYDATA 20150703040258 20150702160258 19700101000000 257 3 8 (
AwEAAchb6LrHCdz9Yo55u1id/b+X1FqVDF66xNrhbgnV
+vtpiq7pDsT8KgzSijNuGs4GLGsMhVE/9H0wOtmVRUQq
Q50PHZsiqg8gqB6i5zLortjpaCLZS7Oke1xP+6LzVRgT
4c8NXlRBg3m/gDjzijBD0BMACjVGZNv0gReAg2OCr9dB
rweE6DnM6twG7D2NyuGjpWzKeJfNd3Hek39V9NGHuABG
kmYG16XCao37IWcP/s/57HuBom5U3SNfuzfVDppokatu
L6dXp9ktuuVXsESc/rUERU/GPleuNfRuPHFr3URmrRud
4DYbRWNVIsxqkSLrCldDjP1Hicf3S8NgVHJTSRE=
) ; KSK; alg = RSASHA256; key id = 24439
More information about the discuss
mailing list