TLD SLA Compliance Metrics
Spec 10DNS
| Period | Availability | RTT Compliance | RTT p50 | RTT p95 | Checks | TSLAC |
|---|---|---|---|---|---|---|
| 24h | 100% | 100% | 80ms | 241ms | 84 | |
| 7d | 100% | 100% | 81ms | 477ms | 2064 | |
| 30d | 94.74% | 94.74% | 82ms | 477ms | 2835 |
RDAP
| Period | Availability | RTT Compliance | RTT p50 | RTT p95 | Checks | TSLAC |
|---|---|---|---|---|---|---|
| 24h | 100% | 100% | 170ms | 175ms | 4 | |
| 7d | 100% | 100% | 173ms | 178ms | 212 | |
| 30d | 100% | 100% | 171ms | 181ms | 300 |
DNSSEC Validation Metrics
Registry Agreement Spec 6DNSSEC is required by the Registry Agreement (Specification 6) but is not part of the Spec 10 SLA. We monitor DNSSEC validation independently.
| Period | Validation Rate | RTT p50 | RTT p95 | Checks | Status |
|---|---|---|---|---|---|
| 24h | 100% | 141ms | 157ms | 4 | |
| 7d | 100% | 135ms | 153ms | 204 | |
| 30d | 100% | 136ms | 154ms | 288 |
Unlike Spec 10 services, DNSSEC has no formal availability SLA. Thresholds shown are operational guidelines.
Current Check Status
Reported by Any53 Probes| Type | AF | RTT | Last Check | Source | Details | Status | TSLAC |
|---|---|---|---|---|---|---|---|
DNS
|
v4 | 11ms | 1 hour, 23 minutes ago | local | NSID: YYZ4 | OK | |
DNS
|
v6 | 11ms | 1 hour, 23 minutes ago | local | NSID: YYZ3 | OK | |
DNSSEC
|
v4 | 142ms | 1 hour, 33 minutes ago | local | Key: 10282 | OK | |
DNSSEC
|
v6 | 152ms | 1 hour, 33 minutes ago | local | Key: 10282 | OK | |
RDAP
|
v4 | 170ms | 11 hours, 38 minutes ago | local | TLS 1.3 | OK | |
RDAP
|
v6 | 170ms | 11 hours, 37 minutes ago | local | TLS 1.3 | OK |
RDAP HTTPS Timing
170ms total
DNS Lookup
—
TCP Connect
49ms
TLS Handshake
54ms
Time to First Byte
169ms
TLS 1.3 / TLS_AES_128_GCM_SHA256
Nameservers
12 IPs tested| Hostname | IP Address | AF | Status |
|---|---|---|---|
v0n0.nic.orange |
65.22.108.16 |
v4 | |
v0n0.nic.orange |
2a01:8840:6a::16 |
v6 | |
v0n1.nic.orange |
65.22.109.16 |
v4 | |
v0n1.nic.orange |
2a01:8840:6b::16 |
v6 | |
v0n2.nic.orange |
65.22.110.16 |
v4 | |
v0n2.nic.orange |
2a01:8840:6c::16 |
v6 | |
v0n3.nic.orange |
161.232.32.16 |
v4 | |
v0n3.nic.orange |
2a01:8840:108::16 |
v6 | |
v2n0.nic.orange |
65.22.111.16 |
v4 | |
v2n0.nic.orange |
2a01:8840:6d::16 |
v6 | |
v2n1.nic.orange |
161.232.33.16 |
v4 | |
v2n1.nic.orange |
2a01:8840:109::16 |
v6 |
Per ICANN Spec 10, we test all delegated nameserver IPs independently.
Test With Your Computer
DNS
dig @v0n0.nic.orange orange. SOA +dnssec +nsid
Query SOA with DNSSEC validation and NSID
drill -D orange. SOA @v0n0.nic.orange
Alternative using drill with DNSSEC trace
RDAP
curl -sS "https://rdap.identitydigital.services/rdap/domain/nic.orange" | jq .
Fetch RDAP JSON (positive lookup)
curl -I -sS "https://rdap.identitydigital.services/rdap/domain/nic.orange"
Headers only (check TLS, timing)
Open in Browser
View RDAP response directly
Registry Information
Active
TLD
.orange
Operator
Orange Brand Services Limited
RDAP Server
https://rdap.identitydigital.services/rdap/
RDAP Client
ICANN SLA Requirements
Per ICANN Registry Agreement Specification 10:
DNS SLA
UDP RTT ≤ 500ms for 95% of queries.
Availability: 99% (max 432 min/month downtime).
RDAP SLA
RTT ≤ 4000ms for 95% of queries.
Availability: 98% (max 864 min/month downtime).
API Access
JSON APIAccess .orange compliance metrics programmatically via our REST API.
Quick Start
GET
/any53/api/v1/compliance/orange/
curl -H "X-API-Key: ${YOUR_API_KEY}" \
"https://www.any53.com/any53/api/v1/compliance/orange/"
Example Response
{
"tld": "orange",
"display_name": ".orange",
"operator": "Orange Brand Services Limited",
"updated_at": "2026-01-31T12:00:00Z",
"dns": {
"availability_24h": 99.99,
"rtt_p50_ms": 12,
"rtt_p95_ms": 42,
"sla_threshold_ms": 500
},
"rdds": {
"protocol": "RDAP",
"availability_24h": 99.95,
"rtt_p50_ms": 180,
"rtt_p95_ms": 412,
"sla_threshold_ms": 4000
},
"servers": {
"rdap_url": "https://rdap.identitydigital.services/rdap/"
},
"spec10_compliant": true
}
Generate API Key
Get a free API key to start making requests. Provide an email to upgrade to the verified tier (600 requests/hour).
Save this key now! It cannot be retrieved later.
Tier:
Rate limit: /hour
Endpoints
| Endpoint | Description | Tier |
|---|---|---|
GET /compliance/ |
List all monitored TLDs | All |
GET /compliance/{tld}/ |
Current metrics for a TLD | All |
GET /compliance/{tld}/history/ |
Historical time-series data | Organization |
GET /compliance/{tld}/probes/ |
Per-probe breakdown | Organization |
POST /compliance/keys/ |
Generate a new API key | No auth |
Rate Limits
| Tier | Rate Limit | Features |
|---|---|---|
| Anonymous | 100/hour | Current snapshot, hourly aggregates |
| Verified | 600/hour | Current snapshot, hourly aggregates |
| Organization | 6000/hour | Historical data, per-minute resolution, per-probe breakdown |