.legal

TLD SLA Compliance Monitoring

TLD SLA Compliance Metrics

Spec 10

DNS

Period Availability RTT Compliance RTT p50 RTT p95 Checks TSLAC
24h 100% 100% 64ms 124ms 528
7d 100% 100% 68ms 144ms 2886
30d 100% 100% 69ms 160ms 15962

RDAP

Period Availability RTT Compliance RTT p50 RTT p95 Checks TSLAC
24h 100% 100% 167ms 169ms 44
7d 100% 100% 167ms 169ms 240
30d 100% 100% 168ms 171ms 1340

DNSSEC Validation Metrics

Registry Agreement Spec 6

DNSSEC is required by the Registry Agreement (Specification 6) but is not part of the Spec 10 SLA. We monitor DNSSEC validation independently.

Period Validation Rate RTT p50 RTT p95 Checks Status
24h 100% 135ms 150ms 56
7d 100% 139ms 153ms 300
30d 99.94% 140ms 155ms 1674

Unlike Spec 10 services, DNSSEC has no formal availability SLA. Thresholds shown are operational guidelines.

Current Check Status

Reported by Any53 Probes
Type AF RTT Last Check Source Details Status TSLAC
DNS v4 9.9ms 23 minutes ago local NSID: YYZ3 OK
DNS v6 133ms 3 days, 9 hours ago local NSID: app7.nrt1.hosts.meta.re… OK
DNSSEC v4 140ms 22 minutes ago local Key: 11869 OK
DNSSEC v6 151ms 22 minutes ago local Key: 11869 OK
RDAP v4 168ms 9 minutes ago local TLS 1.3 OK
RDAP v6 166ms 9 minutes ago local TLS 1.3 OK

RDAP HTTPS Timing

166ms total
DNS Lookup
TCP Connect
48ms
TLS Handshake
53ms
Time to First Byte
166ms

TLS 1.3 / TLS_AES_128_GCM_SHA256

Nameservers

6 IPs tested
Hostname IP Address AF ASN RPKI Status
v0n0.nic.legal 65.22.20.12 v4
v0n1.nic.legal 65.22.21.12 v4
v0n2.nic.legal 65.22.22.12 v4
v0n3.nic.legal 161.232.10.12 v4
v2n0.nic.legal 65.22.23.12 v4
v2n1.nic.legal 161.232.11.12 v4

Per ICANN Spec 10, we test all delegated nameserver IPs independently.

Test With Your Computer

DNS

dig @v0n0.nic.legal legal. SOA +dnssec +nsid Query SOA with DNSSEC validation and NSID
drill -D legal. SOA @v0n0.nic.legal Alternative using drill with DNSSEC trace

RDAP

curl -sS "https://rdap.identitydigital.services/rdap/domain/nic.legal" | jq . Fetch RDAP JSON (positive lookup)
curl -I -sS "https://rdap.identitydigital.services/rdap/domain/nic.legal" Headers only (check TLS, timing)
Open in Browser View RDAP response directly

Registry Information

Active
TLD .legal
Operator Binky Moon, LLC
RDAP Server https://rdap.identitydigital.services/rdap/ RDAP Client

ICANN SLA Requirements

Per ICANN Registry Agreement Specification 10:

DNS SLA UDP RTT ≤ 500ms for 95% of queries. Availability: 99% (max 432 min/month downtime).
RDAP SLA RTT ≤ 4000ms for 95% of queries. Availability: 98% (max 864 min/month downtime).

API Access

JSON API

Access .legal compliance metrics programmatically via our REST API.

Quick Start

GET /any53/api/v1/compliance/legal/ 
curl -H "X-API-Key: ${YOUR_API_KEY}" \
  "https://www.any53.com/any53/api/v1/compliance/legal/"

Example Response

{
  "tld": "legal",
  "display_name": ".legal",
  "operator": "Binky Moon, LLC",
  "updated_at": "2026-01-31T12:00:00Z",
  "dns": {
    "availability_24h": 99.99,
    "rtt_p50_ms": 12,
    "rtt_p95_ms": 42,
    "sla_threshold_ms": 500
  },
  "rdds": {
    "protocol": "RDAP",
    "availability_24h": 99.95,
    "rtt_p50_ms": 180,
    "rtt_p95_ms": 412,
    "sla_threshold_ms": 4000
  },
  "servers": {
    "rdap_url": "https://rdap.identitydigital.services/rdap/"
  },
  "spec10_compliant": true
}

Generate API Key

Get a free API key to start making requests. Provide an email to upgrade to the verified tier (600 requests/hour).

Endpoints

Endpoint Description Tier
GET /compliance/ List all monitored TLDs All
GET /compliance/{tld}/ Current metrics for a TLD All
GET /compliance/{tld}/history/ Historical time-series data Organization
GET /compliance/{tld}/probes/ Per-probe breakdown Organization
POST /compliance/keys/ Generate a new API key No auth

Rate Limits

Tier Rate Limit Features
Anonymous 100/hour Current snapshot, hourly aggregates
Verified 600/hour Current snapshot, hourly aggregates
Organization 6000/hour Historical data, per-minute resolution, per-probe breakdown

Enter a TLD name or IDN code • Browse all TLDs