Class DnssecKey

java.lang.Object
software.amazon.awssdk.services.route53domains.model.DnssecKey
All Implemented Interfaces:
Serializable, SdkPojo, ToCopyableBuilder<DnssecKey.Builder,DnssecKey>
@Generated("software.amazon.awssdk:codegen") public final class DnssecKey extends Object implements SdkPojo, Serializable, ToCopyableBuilder<DnssecKey.Builder,DnssecKey>

Information about the DNSSEC key.

You get this from your DNS provider and then give it to Route 53 (by using AssociateDelegationSignerToDomain) to pass it to the registry to establish the chain of trust.

See Also:

  • Method Details

    • algorithm

      public final Integer algorithm()

      The number of the public key’s cryptographic algorithm according to an IANA assignment.

      If Route 53 is your DNS service, set this to 13.

      For more information about enabling DNSSEC signing, see Enabling DNSSEC signing and establishing a chain of trust.

      Returns:
      The number of the public key’s cryptographic algorithm according to an IANA assignment.

      If Route 53 is your DNS service, set this to 13.

      For more information about enabling DNSSEC signing, see Enabling DNSSEC signing and establishing a chain of trust.

    • flags

      public final Integer flags()

      Defines the type of key. It can be either a KSK (key-signing-key, value 257) or ZSK (zone-signing-key, value 256). Using KSK is always encouraged. Only use ZSK if your DNS provider isn't Route 53 and you don’t have KSK available.

      If you have KSK and ZSK keys, always use KSK to create a delegations signer (DS) record. If you have ZSK keys only – use ZSK to create a DS record.

      Returns:
      Defines the type of key. It can be either a KSK (key-signing-key, value 257) or ZSK (zone-signing-key, value 256). Using KSK is always encouraged. Only use ZSK if your DNS provider isn't Route 53 and you don’t have KSK available.

      If you have KSK and ZSK keys, always use KSK to create a delegations signer (DS) record. If you have ZSK keys only – use ZSK to create a DS record.

    • publicKey

      public final String publicKey()

      The base64-encoded public key part of the key pair that is passed to the registry .

      Returns:
      The base64-encoded public key part of the key pair that is passed to the registry .

    • digestType

      public final Integer digestType()

      The number of the DS digest algorithm according to an IANA assignment.

      For more information, see IANA for DNSSEC Delegation Signer (DS) Resource Record (RR) Type Digest Algorithms.

      Returns:
      The number of the DS digest algorithm according to an IANA assignment.

      For more information, see IANA for DNSSEC Delegation Signer (DS) Resource Record (RR) Type Digest Algorithms.

    • digest

      public final String digest()

      The delegation signer digest.

      Digest is calculated from the public key provided using specified digest algorithm and this digest is the actual value returned from the registry nameservers as the value of DS records.

      Returns:
      The delegation signer digest.

      Digest is calculated from the public key provided using specified digest algorithm and this digest is the actual value returned from the registry nameservers as the value of DS records.

    • keyTag

      public final Integer keyTag()

      A numeric identification of the DNSKEY record referred to by this DS record.

      Returns:
      A numeric identification of the DNSKEY record referred to by this DS record.

    • id

      public final String id()

      An ID assigned to each DS record created by AssociateDelegationSignerToDomain.

      Returns:
      An ID assigned to each DS record created by AssociateDelegationSignerToDomain.

    • toBuilder

      public DnssecKey.Builder toBuilder()
      Description copied from interface: ToCopyableBuilder
      Take this object and create a builder that contains all of the current property values of this object.
      Specified by:
      toBuilder in interface ToCopyableBuilder<DnssecKey.Builder,DnssecKey>
      Returns:
      a builder for type T

    • builder

      public static DnssecKey.Builder builder()

    • serializableBuilderClass

      public static Class<? extends DnssecKey.Builder> serializableBuilderClass()

    • hashCode

      public final int hashCode()
      Overrides:
      hashCode in class Object

    • equals

      public final boolean equals(Object obj)
      Overrides:
      equals in class Object

    • equalsBySdkFields

      public final boolean equalsBySdkFields(Object obj)
      Description copied from interface: SdkPojo
      Indicates whether some other object is "equal to" this one by SDK fields. An SDK field is a modeled, non-inherited field in an SdkPojo class, and is generated based on a service model.

      If an SdkPojo class does not have any inherited fields, equalsBySdkFields and equals are essentially the same.

      Specified by:
      equalsBySdkFields in interface SdkPojo
      Parameters:
      obj - the object to be compared with
      Returns:
      true if the other object equals to this object by sdk fields, false otherwise.

    • toString

      public final String toString()
      Returns a string representation of this object. This is useful for testing and debugging. Sensitive data will be redacted from this string using a placeholder value.
      Overrides:
      toString in class Object

    • getValueForField

      public final <T> Optional<T> getValueForField(String fieldName, Class<T> clazz)

    • sdkFields

      public final List<SdkField<?>> sdkFields()
      Specified by:
      sdkFields in interface SdkPojo
      Returns:
      List of SdkField in this POJO. May be empty list but should never be null.