DNSSEC TA Tool

This tool will extract DNSSEC Trust Anchors from a Trust Anchor XML file formatted as described in RFC 7958. Validation of the detached signature over the Trust Anchor XML file IS NOT performed by this tool.

Usage

python3 dnssec_ta_tool.py --format dnskey --verbose
python3 dnssec_ta_tool.py --format ds --output trust-anchor-file.conf
python3 dnssec_ta_tool.py --format bind-managed --output managed-keys.bind
python3 dnssec_ta_tool.py --format bind-trusted --output trusted-keys.bind

Format Specification

RFC 7958

Root zone Trust Anchors

Trust Anchor Validation

Before use, all trust anchors should be validated. Example code for how to do this using OpenSSL is available in dnssec_ta_tool_wrapper.sh.

Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
regress		regress
.gitignore		.gitignore
.pylintrc		.pylintrc
.travis.yml		.travis.yml
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
dnssec_ta_tool.py		dnssec_ta_tool.py
dnssec_ta_tool_wrapper.sh		dnssec_ta_tool_wrapper.sh
requirements.txt		requirements.txt
setup.py		setup.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

DNSSEC TA Tool

Usage

Format Specification

Root zone Trust Anchors

Trust Anchor Validation

About

Releases

Packages

Languages

License

kirei/dnssec_ta_tool

Folders and files

Latest commit

History

Repository files navigation

DNSSEC TA Tool

Usage

Format Specification

Root zone Trust Anchors

Trust Anchor Validation

About

Topics

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages