You can verify diasp.org Warrant Canary status with this command on your system console<br><br>
<i>delv _canary.diasp.org txt +short</i><br>
OR<br>
<i>dig _canary.diasp.org txt +short</i> (this will get you results without validating the DNSSEC is valid)
<br><br>
You would get a response of:<br><b>
"version=canary1; warrants=0; date=20240101; expires=20240601;"
</b><br><br>
Meaning:<br>
<b>version=</b> DNS Warrant Canary Version<br>
<b>warrants=</b> number we have been issued<br>
<b>date=</b> YYYYMMDD of when this was issued<br>
<b>expires=</b> YYYYMMDD of when this expires, if expired then canary is dead<br>

<br>

Running with +vtrace to validate the RRSIG:<br>
delv _canary.diasp.org txt +vtrace<br>


<pre></pre>