Detailed Monitoring Summary:

DNSSEC Summary
13,610,981 Zones
11,415,721 DNSSEC enabled zones
9,957,330 Zones use both KSKs and ZSKs
124 Zones are serving revoked keys
7,460,646 DNSSEC verified zones
9,830,736 Production DNSSEC-enabled zones
Distribution of key algorithms in use:
Algorithm # Keys
RSA/SHA256 [RSASHA256]15,132,392
RSA/MD5 [RSAMD5]6
ECDSA Curve P-384 with SHA-384 [ECDSAP384SHA384]180,117
DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1]20
ECDSA Curve P-256 with SHA-256 [ECDSAP256SHA256]7,154,003
ECC/GOST [ECC-GOST]11
Unknown Algorithm811
RSA-NSEC3-SHA1 [RSASHA1-NSEC3-SHA1]143,696
DSA/SHA-1 [DSA]61
RSA/SHA512 [RSASHA512]338,875
RSA/SHA-1 [RSASHA1]81,901
Private [PRIVATEOID]5
DANE Summary
642,766 DANE enabled zones with TLSA records
453 PKIX based Trust Anchor TLSA records (Cert Usage 0)
1,882 PKIX based End Entity TLSA records (Cert Usage 1)
9,037 DANE based Trust Anchor TLSA records (Cert Usage 2)
327,817 DANE based End Entity TLSA records (Cert Usage 3)
3,556 Zones have deployed TLSA for SMTP with STARTTLS (Port 587)
1,759 Zones have deployed TLSA for Secure POP3 (Port 995)
2,760 Zones have deployed TLSA for Secure SMTP (Port 465)
2,525 Zones have deployed TLSA for Secure IMAP (Port 993)
143,380 Zones have deployed TLSA for SMTP (Port 25)
1,702 Zones have deployed TLSA for IMAP (Port 143)
351 Zones have deployed TLSA for Alternate SMTP (Port 2525)
181,928 Zones have deployed TLSA for HTTPS (Port 443)
1,230 Zones have deployed TLSA for POP3 (Port 110)