Audit Trail
Evidence record for domain check
Integrity Verified
Test Node Identity
{
"os": "Linux srv1440888 6.8.0-101-generic #101-Ubuntu SMP PREEMPT_DYNAMIC Mon Feb 9 10:15:05 UTC 2026 x86_64",
"hostname": "srv1440888",
"php_version": "8.3.30",
"server_ipv4": null,
"server_ipv6": null
}
Node Network Evidence
{
"profile": "dual_stack",
"enforcement_evidence": {
"egress_check": {
"v4_egress": "unreachable",
"v6_egress": "unreachable"
},
"ip_routes_v4": "default via 76.13.221.254 dev eth0 proto static \n76.13.221.0/24 dev eth0 proto kernel scope link src 76.13.221.142 \n",
"ip_routes_v6": "2a02:4780:5e::/48 dev eth0 proto kernel metric 256 pref medium\nfe80::/64 dev eth0 proto kernel metric 256 pref medium\ndefault via 2a02:4780:5e::1 dev eth0 proto static metric 1024 pref medium\n",
"sysctl_flags": {
"net.ipv6.conf.all.disable_ipv6": "0"
},
"nftables_summary": "unavailable or no permissions"
}
}
DNS Responses
A
;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 47346 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; ANSWER SECTION: ccb.com. 207 IN A 119.36.223.85
DS
;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57578 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; AUTHORITY SECTION: com. 900 IN SOA a.gtld-servers.net. nstld.verisign-grs.com. 1772787611 1800 900 604800 900
MX
;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34562 ;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; ANSWER SECTION: ccb.com. 300 IN MX 5 mail-in4.ccb.com. ccb.com. 300 IN MX 5 mail-in1.ccb.com. ccb.com. 300 IN MX 5 mail-in2.ccb.com. ccb.com. 300 IN MX 5 mail-in3.ccb.com.
NS
;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 7341 ;; flags: qr rd ra; QUERY: 1, ANSWER: 5, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; ANSWER SECTION: ccb.com. 1800 IN NS ns2.ccb.com. ccb.com. 1800 IN NS ns5.ccb.com. ccb.com. 1800 IN NS ns4.ccb.com. ccb.com. 1800 IN NS ns1.ccb.com. ccb.com. 1800 IN NS ns3.ccb.com.
TXT
;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 56526 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; ANSWER SECTION: ccb.com. 300 IN TXT "v=spf1 ip4:223.72.147.0/24 ip4:124.127.253.0/24 -all"
AAAA
;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 58861 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; ANSWER SECTION: ccb.com. 300 IN AAAA 240e:668:2001::149
RRSIG
ns2.ccb.com. liuyanan.ccb.com. 2026030257 10800 3600 604800 60
DNSKEY
;; communications error to 8.8.8.8#53: timed out ;; communications error to 8.8.8.8#53: timed out ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: SERVFAIL, id: 53625 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512
DNSSEC_VALIDATION
; unsigned answer ccb.com. 3600 IN SOA ns2.ccb.com. liuyanan.ccb.com. 2026030257 10800 3600 604800 60
DNS Resolution Performance
Comparison of A (IPv4) vs AAAA (IPv6) query times across resolvers and transports. Shows median (p50) of 3 samples.
| Resolver | Transport | A (IPv4) | AAAA (IPv6) | Delta |
|---|---|---|---|---|
| System | Default | 8.48 ms (p95: 23.25) | 22.99 ms (p95: 23.06) | +14.5 ms |
| IPv4 | 373.85 ms (p95: 1408.82) | 233.68 ms (p95: 398.93) | -140.2 ms | |
| IPv6 | 413.27 ms (p95: 1091.71) | 90.23 ms (p95: 365.46) | -323 ms | |
| Cloudflare | IPv4 | 9.92 ms (p95: 19.92) | 24.11 ms (p95: 27.32) | +14.2 ms |
| Cloudflare | IPv6 | 9.04 ms (p95: 9.59) | 8.95 ms (p95: 112.89) | -0.1 ms |
TLS Handshake Details
{
"ipv4": {
"ip_used": "58.49.72.85",
"ip_version": 4,
"raw_handshake": "40C706E48F7D0000:error:0A000152:SSL routines:final_renegotiate:unsafe legacy renegotiation disabled:../ssl/statem/extensions.c:893:\nCONNECTED(00000010)\n---\nno peer certificate available\n---\nNo client certificate CA names sent\n---\nSSL handshake has read 91 bytes and written 316 bytes\nVerification: OK\n---\nNew, (NONE), Cipher is (NONE)\nSecure Renegotiation IS NOT supported\nCompression: NONE\nExpansion: NONE\nNo ALPN negotiated\nSSL-Session:\n Protocol : TLSv1.2\n Cipher : 0000\n Session-ID: D80FA3B5D0DCCAAE0382CC33710FA3C5A85A17412D81FDD894CB2EC36A9CF88E\n Session-ID-ctx: \n Master-Key: \n PSK identity: None\n PSK identity hint: None\n SRP username: None\n Start Time: 1772787663\n Timeout : 7200 (sec)\n Verify return code: 0 (ok)\n Extended master secret: no\n---"
},
"ipv6": {
"ip_used": "2408:864e:c05::14a",
"ip_version": 6,
"raw_handshake": "40B76838547A0000:error:0A000152:SSL routines:final_renegotiate:unsafe legacy renegotiation disabled:../ssl/statem/extensions.c:893:\nCONNECTED(00000010)\n---\nno peer certificate available\n---\nNo client certificate CA names sent\n---\nSSL handshake has read 91 bytes and written 316 bytes\nVerification: OK\n---\nNew, (NONE), Cipher is (NONE)\nSecure Renegotiation IS NOT supported\nCompression: NONE\nExpansion: NONE\nNo ALPN negotiated\nSSL-Session:\n Protocol : TLSv1.2\n Cipher : 0000\n Session-ID: C6E18997AB3170212953F0CA2BF3863FC85E50190FE3CDF8FAA6D5AAEFE25665\n Session-ID-ctx: \n Master-Key: \n PSK identity: None\n PSK identity hint: None\n SRP username: None\n Start Time: 1772787661\n Timeout : 7200 (sec)\n Verify return code: 0 (ok)\n Extended master secret: no\n---"
}
}
HTTP Response Headers
{
"v4_http": {
"http_code": 200,
"curl_error": null,
"primary_ip": "58.49.72.85",
"total_time_ms": 763.35,
"connect_time_ms": 355.37,
"response_headers": [
"HTTP/1.1 200 OK",
"Date: Fri, 06 Mar 2026 09:01:09 GMT",
"Server: Apache",
"Accept-Ranges: bytes",
"Vary: Accept-Encoding",
"Cache-Control: max-age=0",
"Expires: Fri, 06 Mar 2026 09:01:09 GMT",
"Content-Length: 439",
"Content-Type: text/html; charset=UTF-8",
"Set-Cookie: null=!fs23O1np1YOZO+TaTbyfSJe/wI/io6GDwyGzgdJgojwUmq47UwLMx6x56ADxQ48z+HB2IhjKztwQ3XQ=; path=/"
],
"starttransfer_time_ms": 763.28
},
"v6_http": {
"http_code": 200,
"curl_error": null,
"primary_ip": "2408:864e:c05::14a",
"total_time_ms": 330.22,
"connect_time_ms": 164.61,
"response_headers": [
"HTTP/1.1 200 OK",
"Date: Fri, 06 Mar 2026 09:01:04 GMT",
"Server: Apache",
"Accept-Ranges: bytes",
"Vary: Accept-Encoding",
"Cache-Control: max-age=0",
"Expires: Fri, 06 Mar 2026 09:01:04 GMT",
"Content-Length: 439",
"Content-Type: text/html; charset=UTF-8",
"Set-Cookie: null=!P7OOE3x2Arklre9IfegjCeF0jtwMMTz9d7JjmjR9EXG7RWsTVRgS0Tovokcqwaws8tsVF0Ls8Ybtkcjldh9vcO6BcSwpG3oHzaYyDaFA; path=/"
],
"starttransfer_time_ms": 330.15
},
"v4_https": {
"http_code": 0,
"curl_error": "SSL connection timeout",
"primary_ip": "58.49.72.85",
"total_time_ms": 8002.54,
"connect_time_ms": 350.84,
"response_headers": [],
"starttransfer_time_ms": 0
},
"v6_https": {
"http_code": 0,
"curl_error": "OpenSSL/3.0.13: error:0A000152:SSL routines::unsafe legacy renegotiation disabled",
"primary_ip": "2408:864e:c05::14a",
"total_time_ms": 314.12,
"connect_time_ms": 156.95,
"response_headers": [],
"starttransfer_time_ms": 0
}
}
Connectivity Test Output
{
"tcp_connect_v4_80": "200 2.383062 2.709052",
"tcp_connect_v6_80": "200 2.189771 6.420460",
"tcp_connect_v4_443": "000 0.348074 0.000000",
"tcp_connect_v6_443": "000 4.234766 0.000000"
}
Integrity Details
Algorithm: hmac-sha256-v1
Root Hash: 7a3976f82a1fda061220486076784352a5abca78417c6e021ab26a9eef53d0fc
http_headers: ad70f1f3155c3d56c527de5c64810582bbbfe97b349dc9f103b99d4d7aa5af8a
dns_responses: d43d67f635d6d6ac0e106a74533da020dc2c343d9dcc017954b24b08a5afa6e4
tls_handshake: 9fe3f34d3c935e4ebd05d83479c9b77ac90e3178cb6baea1755a988182c3ffe3
connectivity_log: d70ca9e8949dc18c364c30033c83e7660499a8d5e4aa78a898795d217b3c0452
dns_resolution_times: 4cc5a19e509ac90de37b3385193cf524f1a634aad7dcdb6aed3c5f53f97d6b79