.koeln

TLD SLA Compliance Monitoring

TLD SLA Compliance Metrics

Spec 10

DNS

Period Availability RTT Compliance RTT p50 RTT p95 Checks TSLAC
24h 100% 100% 86ms 115ms 264
7d 100% 100% 85ms 131ms 1428
30d 100% 100% 84ms 131ms 7878

RDAP

Period Availability RTT Compliance RTT p50 RTT p95 Checks TSLAC
24h 100% 100% 343ms 577ms 88
7d 99.17% 99.17% 346ms 759ms 480
30d 99.81% 99.77% 343ms 662ms 2584

DNSSEC Validation Metrics

Registry Agreement Spec 6

DNSSEC is required by the Registry Agreement (Specification 6) but is not part of the Spec 10 SLA. We monitor DNSSEC validation independently.

Period Validation Rate RTT p50 RTT p95 Checks Status
24h 100% 45ms 52ms 44
7d 99.17% 46ms 135ms 240
30d 99.77% 46ms 74ms 1302

Unlike Spec 10 services, DNSSEC has no formal availability SLA. Thresholds shown are operational guidelines.

Current Check Status

Reported by Any53 Probes
Type AF RTT Last Check Source Details Status TSLAC
DNS v4 113ms 8 minutes ago local OK
DNS v6 107ms 106 days, 11 hours ago local OK
DNSSEC v4 51ms 1 hour, 8 minutes ago local Key: 38539 OK
DNSSEC v6 48ms 1 hour, 8 minutes ago local Key: 38539 OK
RDAP v4 342ms 29 minutes ago local TLS 1.3 OK
RDAP v6 340ms 29 minutes ago local TLS 1.3 OK

RDAP HTTPS Timing

340ms total
DNS Lookup
TCP Connect
112ms
TLS Handshake
114ms
Time to First Byte
339ms

TLS 1.3 / TLS_AES_128_GCM_SHA256

Nameservers

3 IPs tested
Hostname IP Address AF ASN RPKI Status
dns.ryce-rsp.com 194.0.11.114 v4
ns1.dns.business 157.90.205.138 v4
ns1.ryce-rsp.com 193.56.204.111 v4

Per ICANN Spec 10, we test all delegated nameserver IPs independently.

Test With Your Computer

DNS

dig @dns.ryce-rsp.com koeln. SOA +dnssec +nsid Query SOA with DNSSEC validation and NSID
drill -D koeln. SOA @dns.ryce-rsp.com Alternative using drill with DNSSEC trace

RDAP

curl -sS "https://rdap.ryce-rsp.com/rdap/domain/nic.koeln" | jq . Fetch RDAP JSON (positive lookup)
curl -I -sS "https://rdap.ryce-rsp.com/rdap/domain/nic.koeln" Headers only (check TLS, timing)
Open in Browser View RDAP response directly

Registry Information

Active
TLD .koeln
Operator dotKoeln GmbH
RDAP Server https://rdap.ryce-rsp.com/rdap/ RDAP Client

ICANN SLA Requirements

Per ICANN Registry Agreement Specification 10:

DNS SLA UDP RTT ≤ 500ms for 95% of queries. Availability: 99% (max 432 min/month downtime).
RDAP SLA RTT ≤ 4000ms for 95% of queries. Availability: 98% (max 864 min/month downtime).

API Access

JSON API

Access .koeln compliance metrics programmatically via our REST API.

Quick Start

GET /any53/api/v1/compliance/koeln/ 
curl -H "X-API-Key: ${YOUR_API_KEY}" \
  "https://www.any53.com/any53/api/v1/compliance/koeln/"

Example Response

{
  "tld": "koeln",
  "display_name": ".koeln",
  "operator": "dotKoeln GmbH",
  "updated_at": "2026-01-31T12:00:00Z",
  "dns": {
    "availability_24h": 99.99,
    "rtt_p50_ms": 12,
    "rtt_p95_ms": 42,
    "sla_threshold_ms": 500
  },
  "rdds": {
    "protocol": "RDAP",
    "availability_24h": 99.95,
    "rtt_p50_ms": 180,
    "rtt_p95_ms": 412,
    "sla_threshold_ms": 4000
  },
  "servers": {
    "rdap_url": "https://rdap.ryce-rsp.com/rdap/"
  },
  "spec10_compliant": true
}

Generate API Key

Get a free API key to start making requests. Provide an email to upgrade to the verified tier (600 requests/hour).

Endpoints

Endpoint Description Tier
GET /compliance/ List all monitored TLDs All
GET /compliance/{tld}/ Current metrics for a TLD All
GET /compliance/{tld}/history/ Historical time-series data Organization
GET /compliance/{tld}/probes/ Per-probe breakdown Organization
POST /compliance/keys/ Generate a new API key No auth

Rate Limits

Tier Rate Limit Features
Anonymous 100/hour Current snapshot, hourly aggregates
Verified 600/hour Current snapshot, hourly aggregates
Organization 6000/hour Historical data, per-minute resolution, per-probe breakdown

Enter a TLD name or IDN code • Browse all TLDs