DKIMPROBLEM.comDKIM Record Analysis

Privacy Policy

When you use this site, we process the information you submit, such as domain names, selectors, email-authentication details, contact-form content, and any email address or IP address supplied for a sender test. We also process basic technical data such as request time, source IP address, request identifiers, browser security signals, and lookup results so the service can operate, diagnose faults, prevent abuse, and produce operational reports.

Form submissions are checked using Cloudflare Turnstile for spam prevention. Contact form submissions are sent using the AuthSMTP email service provider. Those providers may process technical request data and message content as part of delivering, protecting, and securing the service.

We do not sell submitted lookup data or contact-form content. Information may be retained in service logs or email records for troubleshooting, abuse prevention, security, and operational monitoring, and may be shared where necessary with service providers or where required to investigate abuse or comply with legal obligations.

Anti-Spam Policy

This site is provided to help domain owners, administrators, and email senders diagnose SPF, DKIM, DMARC, and related DNS configuration. It must not be used to support spam, phishing, spoofing, unsolicited bulk email, credential harvesting, or any other abusive activity. Advertising, promoting, or linking to this site using unsolicited messages is specifically prohibited.

Contact forms are for genuine questions about these services and email-authentication issues. Unsolicited commercial messages, automated submissions, misleading content, or attempts to abuse the forms may be blocked, ignored, logged, or reported where appropriate.

Validation and Liability

This DKIM checker inspects selector DNS records and any CNAME target visible at lookup time. It can identify missing selector hosts, duplicate TXT records, CNAME/TXT conflicts, malformed tag syntax, and RSA key-size concerns.

DKIM validation also depends on the message that was actually signed, the selector used by the sending platform, the private key held by that platform, and which headers were included in the signature. Those message-level checks are outside the scope of a DNS-only lookup.

Before changing a DKIM selector, CNAME delegation, public key, or signing configuration, verify the selector currently used by your sending service and obtain approval from your DNS and email administrators.

Changing the wrong DKIM selector, removing an active key, or publishing a malformed key can cause signed mail to fail DKIM and may break DMARC alignment for legitimate messages.

We aim to keep the site accurate and available, but we do not guarantee uninterrupted access, error-free operation, or compatibility across every browser and device at all times.

Use of this site is at your own discretion and risk. External services used by the site, including security or email providers, may affect availability or functionality from time to time.