summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJohannes Löthberg <johannes@kyriasis.com>2024-08-03 11:27:44 +0200
committerJohannes Löthberg <johannes@kyriasis.com>2024-08-03 11:27:44 +0200
commit4be3ad085aad8b9883954ae0485cc95aa56276e0 (patch)
tree866cf693d6589f977dfa689e447fc80e471be2cb
parente5beba7a4677a1ba8d9e1817ed07bf684bb3ce45 (diff)
downloaddns-4be3ad085aad8b9883954ae0485cc95aa56276e0.tar.xz
Update Let's Encrypt TLSA records
Signed-off-by: Johannes Löthberg <johannes@kyriasis.com>
-rw-r--r--kyriasis.com.zone2
-rw-r--r--letsencrypt-tlsa.zone32
-rw-r--r--pie-in-the-sky.kitchen.zone2
-rw-r--r--remmy.foo.zone2
-rw-r--r--remmy.io.zone2
5 files changed, 35 insertions, 5 deletions
diff --git a/kyriasis.com.zone b/kyriasis.com.zone
index 5f6cc4c..ce6e054 100644
--- a/kyriasis.com.zone
+++ b/kyriasis.com.zone
@@ -2,7 +2,7 @@ $ORIGIN kyriasis.com.
$TTL 24h
@ IN SOA ns1.kyriasis.com. hostmaster.kyriasis.com. (
- 2406021420 ; serial
+ 2408031127 ; serial
24h ; refresh
2h ; retry
1w ; expire
diff --git a/letsencrypt-tlsa.zone b/letsencrypt-tlsa.zone
index e7fc71b..eee7b86 100644
--- a/letsencrypt-tlsa.zone
+++ b/letsencrypt-tlsa.zone
@@ -1,5 +1,35 @@
+; Remember to update serial for:
+; - kyriasis.com
+; - pie-in-the-sky.kitchen
+; - remmy.foo
+; - remmy.io
+
+@ ; E5
+ TLSA 2 1 1 3586d4ecf070578cbd27aedce20b964e48bc149faeb9dad72f46b857869172b8
+ ; E6
+ TLSA 2 1 1 d016e1fe311948aca64f2de44ce86c9a51ca041df6103bb52a88eb3f761f57d7
+ ; R10
+ TLSA 2 1 1 2bbad93ab5c79279ec121507f272cbe0c6647a3aae52e22f388afab426b4adba
+ ; R11
+ TLSA 2 1 1 6ddac18698f7f1f7e1c69b9bce420d974ac6f94ca8b2c761701623f99c767dc7
+
+ ;; Backup
+ ; E7
+ TLSA 2 1 1 cbbc559b44d524d6a132bdac672744da3407f12aae5d5f722c5f6c7913871c75
+ ; E8
+ TLSA 2 1 1 885bf0572252c6741dc9a52f5044487fef2a93b811cdedfad7624cc283b7cdd5
+ ; E9
+ TLSA 2 1 1 f1440a9b76e1e41e53a4cb461329bf6337b419726be513e42e19f1c691c5d4b2
+ ; R12
+ TLSA 2 1 1 919c0df7a787b597ed056ace654b1de9c0387acf349f73734a4fd7b58cf612a4
+ ; R13
+ TLSA 2 1 1 025490860b498ab73c6a12f27a49ad5fe230fafe3ac8f6112c9b7d0aad46941d
+ ; R14
+ TLSA 2 1 1 f1647a5ee3efac54c892e930584fe47979b7acd1c76c1271bca1c5076d869888
+
+ ;; Retired
; X3
-@ TLSA 2 1 1 60b87575447dcba2a36b7d11ac09fb24a9db406fee12d2cc90180517616e8a18
+ TLSA 2 1 1 60b87575447dcba2a36b7d11ac09fb24a9db406fee12d2cc90180517616e8a18
; X4
TLSA 2 1 1 b111dd8a1c2091a89bd4fd60c57f0716cce50feeff8137cdbee0326e02cf362b
; E1
diff --git a/pie-in-the-sky.kitchen.zone b/pie-in-the-sky.kitchen.zone
index 2098c78..a66edf7 100644
--- a/pie-in-the-sky.kitchen.zone
+++ b/pie-in-the-sky.kitchen.zone
@@ -2,7 +2,7 @@ $ORIGIN pie-in-the-sky.kitchen.
$TTL 24h
@ IN SOA ns1.kyriasis.com. hostmaster.kyriasis.com. (
- 2405270633 ; serial
+ 2408031127 ; serial
24h ; refresh
2h ; retry
1w ; expire
diff --git a/remmy.foo.zone b/remmy.foo.zone
index ae6c644..60aa898 100644
--- a/remmy.foo.zone
+++ b/remmy.foo.zone
@@ -2,7 +2,7 @@ $ORIGIN remmy.foo.
$TTL 24h
@ IN SOA ns1.kyriasis.com. hostmaster.kyriasis.com. (
- 2405262235 ; serial
+ 2408031127 ; serial
24h ; refresh
2h ; retry
1w ; expire
diff --git a/remmy.io.zone b/remmy.io.zone
index 8681da3..386caac 100644
--- a/remmy.io.zone
+++ b/remmy.io.zone
@@ -2,7 +2,7 @@ $ORIGIN remmy.io.
$TTL 24h
@ IN SOA ns1.kyriasis.com. hostmaster.remmy.io. (
- 2208280944 ; serial
+ 2408031127 ; serial
24h ; refresh
2h ; retry
1w ; expire