Detailed Monitoring Summary:

DNSSEC Summary
13,410,817 Zones
11,294,655 DNSSEC enabled zones
9,834,722 Zones use both KSKs and ZSKs
133 Zones are serving revoked keys
7,329,717 DNSSEC verified zones
9,760,530 Production DNSSEC-enabled zones
Distribution of key algorithms in use:
Algorithm # Keys
RSA/SHA512 [RSASHA512]344,617
ECDSA Curve P-384 with SHA-384 [ECDSAP384SHA384]184,217
Unknown Algorithm831
ECDSA Curve P-256 with SHA-256 [ECDSAP256SHA256]7,181,360
RSA-NSEC3-SHA1 [RSASHA1-NSEC3-SHA1]148,088
DSA/SHA-1 [DSA]61
RSA/SHA256 [RSASHA256]15,048,833
ECC/GOST [ECC-GOST]15
RSA/SHA-1 [RSASHA1]84,367
DSA-NSEC3-SHA1 [DSA-NSEC3-SHA1]16
RSA/MD5 [RSAMD5]6
Private [PRIVATEOID]5
DANE Summary
641,341 DANE enabled zones with TLSA records
449 PKIX based Trust Anchor TLSA records (Cert Usage 0)
1,871 PKIX based End Entity TLSA records (Cert Usage 1)
9,014 DANE based Trust Anchor TLSA records (Cert Usage 2)
323,679 DANE based End Entity TLSA records (Cert Usage 3)
1,688 Zones have deployed TLSA for IMAP (Port 143)
2,503 Zones have deployed TLSA for Secure IMAP (Port 993)
1,228 Zones have deployed TLSA for POP3 (Port 110)
143,572 Zones have deployed TLSA for SMTP (Port 25)
3,471 Zones have deployed TLSA for SMTP with STARTTLS (Port 587)
177,758 Zones have deployed TLSA for HTTPS (Port 443)
355 Zones have deployed TLSA for Alternate SMTP (Port 2525)
2,685 Zones have deployed TLSA for Secure SMTP (Port 465)
1,755 Zones have deployed TLSA for Secure POP3 (Port 995)