DNS-Checkerby NAMEBOX
SearchToolsStatus
Language
Start Lookup
SearchToolsStatus

Security · Certificate policy

CAA check

Review certificate issuance policy before or after TLS changes.

​
Domain name
Examples: letsencrypt.org · cloudflare.com
Focused entry point

Open the workspace with the right preset

This page keeps the explanation narrow and the action obvious: enter the target, run the preset check, then inspect the full workspace with the right tab context.

Input
Domain name
Opens with
CAA
After the scan
6 tabs · resolver consensus · exports
Back to tool directory
Input
Domain name

This entry point keeps the same DNS workspace but preloads the record family that matches this diagnostic path.

Opens with
CAA

The lookup form preselects the record type below so the first result screen is already aligned with this use case.

Examples
2

Use one of these targets if you want to validate the flow quickly before testing a real hostname or IP.

After the scan
6 tabs

You are not losing any resolver, propagation, health, registration, or developer views. This tool only gets you into the right context faster.

What this tool gives you

Same workspace, narrower starting point

The sections below explain what this preset optimizes, why you would choose it first, and what stays available after the scan.

When to use it

CAA

Review certificate issuance policy before or after TLS changes.

This entry point keeps the same DNS workspace but preloads the record family that matches this diagnostic path.

What you get

Security

Verify certificate authority restrictions and uncover missing issuer policy.

You still get resolver consensus, health signals, registration data, and exports. Only the starting angle changes.

After the scan

The full diagnostic workspace still opens

You are not losing any resolver, propagation, health, registration, or developer views. This tool only gets you into the right context faster.

Resolver consensus

Google, Cloudflare, and Quad9 still run in parallel once the workspace opens.

Health signals

DNSSEC, SPF, DMARC, CAA, TTL consistency, and other checks remain available.

Registration

RDAP or WHOIS fallback, nameservers, events, and export actions stay in the same flow.

Examples

CAA

Use one of these targets if you want to validate the flow quickly before testing a real hostname or IP.

letsencrypt.orgcloudflare.com

Quick checks

Narrow the lookup

Switch straight to a specific record family.

Browse all tools
A Record
Reachability
AAAA
Reachability
MX
Email
NS
Registration
CNAME
Reachability
TXT
Email
SOA
Registration
CAA
Security
DNSSEC
Security
Reverse DNS
Reachability

Quick checks

Narrow the lookup

Switch straight to a specific record family.

Browse all tools
A Record
Reachability
AAAA
Reachability
MX
Email
NS
Registration
CNAME
Reachability
TXT
Email
SOA
Registration
CAA
Security
DNSSEC
Security
Reverse DNS
Reachability
DNS-Checker
by NAMEBOX

Anonymous DNS diagnostics with resolver consensus, registration lookups, and configuration health checks.

© 2026 NAMEBOX. All rights reserved.

MethodologyDocsPrivacyTermsAboutStatus

Cookie settings

Choose how this site can measure usage.

Essential cookies keep the interface language and core site behavior stable. Optional analytics help us understand which pages and tools are useful.

Google Analytics will load only if you accept analytics cookies.

Read the privacy page