TLD SLA Compliance Metrics
Spec 10DNS
| Period | Availability | RTT Compliance | RTT p50 | RTT p95 | Checks | TSLAC |
|---|---|---|---|---|---|---|
| 24h | 100% | 100% | 3.0ms | 15ms | 120 | |
| 7d | 100% | 100% | 3.0ms | 63ms | 1860 | |
| 30d | 94.91% | 94.91% | 4.0ms | 74ms | 2607 |
RDAP
| Period | Availability | RTT Compliance | RTT p50 | RTT p95 | Checks | TSLAC |
|---|---|---|---|---|---|---|
| 24h | 100% | 100% | 85ms | 100ms | 4 | |
| 7d | 100% | 100% | 87ms | 103ms | 108 | |
| 30d | 95.12% | 100% | 88ms | 111ms | 164 |
DNSSEC Validation Metrics
Registry Agreement Spec 6DNSSEC is required by the Registry Agreement (Specification 6) but is not part of the Spec 10 SLA. We monitor DNSSEC validation independently.
| Period | Validation Rate | RTT p50 | RTT p95 | Checks | Status |
|---|---|---|---|---|---|
| 24h | 100% | 33ms | 33ms | 16 | |
| 7d | 99.58% | 33ms | 79ms | 238 | |
| 30d | 99.49% | 34ms | 105ms | 390 |
Unlike Spec 10 services, DNSSEC has no formal availability SLA. Thresholds shown are operational guidelines.
Current Check Status
Reported by Any53 Probes| Type | AF | RTT | Last Check | Source | Details | Status | TSLAC |
|---|---|---|---|---|---|---|---|
DNS
|
v4 | 1.5ms | 35 minutes ago | local | NSID: Auth_Host3.Chicago_Node1 | OK | |
DNS
|
v6 | 1.4ms | 35 minutes ago | local | NSID: Auth_Host3.Chicago_Node1 | OK | |
DNSSEC
|
v4 | 33ms | 57 minutes ago | local | Key: 22405 | OK | |
DNSSEC
|
v6 | 33ms | 57 minutes ago | local | Key: 22405 | OK | |
RDAP
|
v4 | 81ms | 19 hours, 56 minutes ago | local | TLS 1.2 | OK | |
RDAP
|
v6 | 87ms | 19 hours, 56 minutes ago | local | TLS 1.2 | OK |
RDAP HTTPS Timing
87ms total
DNS Lookup
—
TCP Connect
18ms
TLS Handshake
41ms
Time to First Byte
87ms
TLS 1.2 / TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Nameservers
12 IPs tested| Hostname | IP Address | AF | Status |
|---|---|---|---|
a.nic.ally |
37.209.192.9 |
v4 | |
a.nic.ally |
2001:dcd:1::9 |
v6 | |
b.nic.ally |
37.209.194.9 |
v4 | |
b.nic.ally |
2001:dcd:2::9 |
v6 | |
c.nic.ally |
37.209.196.9 |
v4 | |
c.nic.ally |
2001:dcd:3::9 |
v6 | |
x.nic.ally |
156.154.172.82 |
v4 | |
x.nic.ally |
2610:a1:1074::1:82 |
v6 | |
y.nic.ally |
156.154.173.82 |
v4 | |
y.nic.ally |
2610:a1:1075::1:82 |
v6 | |
z.nic.ally |
156.154.174.82 |
v4 | |
z.nic.ally |
2610:a1:1076::1:82 |
v6 |
Per ICANN Spec 10, we test all delegated nameserver IPs independently.
Test With Your Computer
DNS
dig @a.nic.ally ally. SOA +dnssec +nsid
Query SOA with DNSSEC validation and NSID
drill -D ally. SOA @a.nic.ally
Alternative using drill with DNSSEC trace
RDAP
curl -sS "https://rdap.nic.ally/domain/nic.ally" | jq .
Fetch RDAP JSON (positive lookup)
curl -I -sS "https://rdap.nic.ally/domain/nic.ally"
Headers only (check TLS, timing)
Open in Browser
View RDAP response directly
Registry Information
ActiveICANN SLA Requirements
Per ICANN Registry Agreement Specification 10:
DNS SLA
UDP RTT ≤ 500ms for 95% of queries.
Availability: 99% (max 432 min/month downtime).
RDAP SLA
RTT ≤ 4000ms for 95% of queries.
Availability: 98% (max 864 min/month downtime).
API Access
JSON APIAccess .ally compliance metrics programmatically via our REST API.
Quick Start
GET
/any53/api/v1/compliance/ally/
curl -H "X-API-Key: ${YOUR_API_KEY}" \
"https://www.any53.com/any53/api/v1/compliance/ally/"
Example Response
{
"tld": "ally",
"display_name": ".ally",
"operator": "Ally Financial Inc.",
"updated_at": "2026-01-31T12:00:00Z",
"dns": {
"availability_24h": 99.99,
"rtt_p50_ms": 12,
"rtt_p95_ms": 42,
"sla_threshold_ms": 500
},
"rdds": {
"protocol": "RDAP",
"availability_24h": 99.95,
"rtt_p50_ms": 180,
"rtt_p95_ms": 412,
"sla_threshold_ms": 4000
},
"servers": {
"rdap_url": "https://rdap.nic.ally/"
},
"spec10_compliant": true
}
Generate API Key
Get a free API key to start making requests. Provide an email to upgrade to the verified tier (600 requests/hour).
Save this key now! It cannot be retrieved later.
Tier:
Rate limit: /hour
Endpoints
| Endpoint | Description | Tier |
|---|---|---|
GET /compliance/ |
List all monitored TLDs | All |
GET /compliance/{tld}/ |
Current metrics for a TLD | All |
GET /compliance/{tld}/history/ |
Historical time-series data | Organization |
GET /compliance/{tld}/probes/ |
Per-probe breakdown | Organization |
POST /compliance/keys/ |
Generate a new API key | No auth |
Rate Limits
| Tier | Rate Limit | Features |
|---|---|---|
| Anonymous | 100/hour | Current snapshot, hourly aggregates |
| Verified | 600/hour | Current snapshot, hourly aggregates |
| Organization | 6000/hour | Historical data, per-minute resolution, per-probe breakdown |