MoinQ: watchNS/aws/jp改善/daitoshi.mlit.go.jp

https://x.com/randomp23189307/status/1865176886588117294

https://dnsviz.net/d/daitoshi.mlit.go.jp/ZzHuDQ/dnssec/

ns-211.awsdns-26.com REFUSED

lame になったのは 2023-01-11 以降らしい。

ns-211.awsdns-26.com はそれ以前の可能性もある。

乗取は 2024-10-25 あたり。

• ns-211.awsdns-26.com が乗っ取られたと考えられる。

1. whois

https://crt.sh/?q=daitoshi.mlit.go.jp

Certificates    
crt.sh ID        Logged At  ⇧   Not Before      Not After       Common Name     Matching Identities     Issuer Name
15056216948     2024-10-23      2024-10-23      2025-01-21      *.daitoshi.mlit.go.jp   *.daitoshi.mlit.go.jp
daitoshi.mlit.go.jp     C=US, O=Let's Encrypt, CN=R11
15050408608     2024-10-23      2024-10-23      2025-01-21      *.daitoshi.mlit.go.jp   *.daitoshi.mlit.go.jp
daitoshi.mlit.go.jp     C=US, O=Let's Encrypt, CN=R11
8623783232      2023-02-10      2023-02-10      2023-03-23      daitoshi.mlit.go.jp     daitoshi.mlit.go.jp     C=US, O=Amazon, CN=Amazon RSA 2048 M01

2. history

139.99.53.158
        OVH SAS
        2024-10-25 (2 months)   2024-11-12 (1 month)    18 days
52.193.236.191
54.95.111.138
        Amazon.com, Inc.
        2022-12-26 (2 years)    2023-01-11 (2 years)    16 days
52.193.236.191
52.199.99.69
        Amazon.com, Inc.
        2022-12-20 (2 years)    2022-12-26 (2 years)    6 days

CategoryDns CategoryWatch CategoryTemplate