You can verify diasp.org Warrant Canary status with this command on your system console<br><br>
<i>delv _canary.diasp.org txt +short</i><br>
OR<br>
<i>dig _canary.diasp.org txt +short</i> (this will get you results without validating the DNSSEC is valid)
<br><br>
You would get a response of:<br><b>
"version=canary1; warrants=0; date=20191122; expires=20200614;"
</b><br><br>
Meaning:<br>
<b>version=</b> DNS Warrant Canary Version<br>
<b>warrants=</b> number we have been issued<br>
<b>date=</b> YYYYMMDD of when this was issued<br>
<b>expires=</b> YYYYMMDD of when this expires, if expired then canary is dead<br>

<br>

Running with +vtrace to validate the RRSIG:<br>
delv _canary.diasp.org txt +vtrace<br>


; fully validated
_canary.diasp.org.	21599	IN	TXT	"version=canary1; warrants=0; date=20191122; expires=20200614;"
_canary.diasp.org.	21599	IN	RRSIG	TXT 10 3 86400 20200716000000 20200625000000 34464 diasp.org. VBcn7pmgq3INP6FZSy3xF9/zZTwDxBqIzj0WzpvoxknRFLDNvRZqDnzX X7hMssBqmeSndF8vc+lccsr/qEdq1R3x1N0yRraQ616WNeECbyU253m9 Xxfw7u8PXSuu0ieyNATgnm05HL6euh0f+Xb03x+FYk9wY48H26aXbGeK iNziBSbdnNoxzwVGNH7aC4ENkiw3wm5Aq4YJdwUlMBgi/uGbZ7o1r8GR Em14xZOdSgHXjlBXC6w5s0sG68xmduRPl1X1nU0qng5gemlRSaZ5wb8z SktfwH7pV1u5LTsmktNhqT1actD3KSCbJNI/BT76/PykyWPBHH7xOCjT B9utkw==
<pre></pre>
Validate my identity on <a href="https://keybase.io/davidmorley">Keybase</a>