DNS Records for canary.is - DNS Lookup Tool

IPv4 Addresses

TTL

A

AWS EC2

34.224.110.113

ec2-34-224-110-113.compute-1.amazonaws.com

1m

A

AWS EC2

54.164.63.204

ec2-54-164-63-204.compute-1.amazonaws.com

1m

A

AWS EC2

54.208.24.248

ec2-54-208-24-248.compute-1.amazonaws.com

1m

Name Servers

TTL

NS

AWS Route53

ns-1057.awsdns-04.org

20m

NS

AWS Route53

ns-1929.awsdns-49.co.uk

20m

NS

AWS Route53

ns-295.awsdns-36.com

20m

NS

AWS Route53

ns-662.awsdns-18.net

20m

Mail Servers

TTL

MX

G Workspace

10

aspmx.l.google.com

5m

MX

G Workspace

20

alt1.aspmx.l.google.com

5m

MX

G Workspace

20

alt2.aspmx.l.google.com

5m

MX

G Workspace

30

aspmx2.googlemail.com

5m

MX

G Workspace

30

aspmx3.googlemail.com

5m

SOA Details

TTL

SOA Primary NS

ns-295.awsdns-36.com

15m

SOA Responsible

awsdns-hostmaster.amazon.com

SOA Serial

1

SOA Times

Refresh 2h

Retry 15m

Expire 14d

Minimum TTL 1d

Certificate Authority Authorization

TTL

CAA —

0 iodef mailto:[email protected]

5m

CAA

Amazon Trust

0 issue amazon.com

5m

CAA

Amazon Trust

0 issue amazonaws.com

5m

CAA

Amazon Trust

0 issue amazontrust.com

5m

CAA

Amazon Trust

0 issue awstrust.com

5m

CAA

DigiCert

0 issue digicert.com

5m

CAA

Let's Encrypt

0 issue letsencrypt.org

5m

CAA

Google Trust

0 issue pki.goog

5m

DMARC

TTL

DMARC Policy

Organizational policy (p): how receivers treat mail that fails aligned DMARC checks — none (monitor only), quarantine (often junk), or reject (block).

none quarantine reject

5m

DMARC Subdomain Policy

Subdomain policy (sp): when set, it applies to hostnames below this domain instead of p; if omitted, subdomains inherit the organizational policy.

none quarantine reject

DMARC Percentage

pct: share of mail that gets quarantine/reject; 100 = all failing messages (default).

100

DMARC RUA

Aggregate DMARC reports (ZIP/XML). Optional but recommended for visibility.

mailto:[email protected]

DMARC RUF

Forensic (per-failure) reports. Often omitted for privacy or volume.

No forensic report URIs (RUF).

DKIM

TTL

DKIM Selector google

v=DKIM1 k=rsa

20m

Public Key

MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCNx3LphB4u18RFg+TT...

DKIM Selector mandrill

v=DKIM1 k=rsa

5m

Public Key

MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrLHiExVd55zd/IQ/J...

SPF (Sender Policy Framework)

TTL

SPF SPFv1

Qualifier	Mechanism	Target / value
+ Pass	include	spf1.canary.is
+ Pass	include	spf2.canary.is
~ Softfail	all	—

5m

MTA-STS

TTL

This hostname does not publish an MTA-STS policy (no v=STSv1 TXT at _mta-sts.<name> and/or no policy at https://mta-sts.<name>/.well-known/mta-sts.txt).