DNS CAA Catalog

Welcome to the DNS CAA Catalog! This project monitors Certification Authority Authorization (CAA) DNS records for the top 10,000 domains as ranked by Cloudflare Radar and used under the CC BY-NC 4.0 license. The DNS records are periodically crawled and used to generate the data and statistics shown on this page. The goal is to help understand how CAA is configured and used by popular websites across the web. Select a domain from the list to explore its CAA records and gain insights into real-world CAA deployment.

CAA Statistics Summary

10000

Total Domains

1711

With CAA Records

17.1%

1579 ✅

With 'issue' Records

15.8%

599 ✳️

With 'issuewild' Record

6.0%

503 📬

With 'iodef' Records

5.0%

'issue' Record Values

Certificate Authority	Count	%
letsencrypt.org	879	8.8
digicert.com	845	8.4
pki.goog	736	7.4
amazon.com	432	4.3
globalsign.com	294	2.9
comodoca.com	267	2.7
sectigo.com	259	2.6
ssl.com	195	1.9
amazonaws.com	155	1.6
amazontrust.com	126	1.3
awstrust.com	111	1.1
godaddy.com	80	0.8
microsoft.com	67	0.7
entrust.net	51	0.5
certainly.com	34	0.3
symantec.com	31	0.3
pki.apple.com	24	0.2
thawte.com	14	0.1
geotrust.com	14	0.1
telesec.de	12	0.1
comodo.com	11	0.1
quovadisglobal.com	11	0.1
trust-provider.com	10	0.1
identrust.com	10	0.1
certum.pl	8	0.1
usertrust.com	7	0.1
d-trust.net	6	0.1
www.digicert.com	6	0.1
cloudflare.com	5	0.1
swisssign.com	5	0.1
rapidssl.com	5	0.1
twca.com.tw	4	0.0
starfieldtech.com	4	0.0
visa.com	4	0.0
harica.gr	3	0.0
cybertrust.ne.jp	3	0.0
buypass.no	3	0.0
secomtrust.net	3	0.0
affirmtrust.com	2	0.0
certum.eu	2	0.0
kpn.com	2	0.0
dtrust.de	2	0.0
certsign.ro	1	0.0
netnod.se	1	0.0
starfieldtech.org	1	0.0
certificados.serpro.gov.br	1	0.0
ica.cz	1	0.0
aws.amazon.com	1	0.0
emsign.com	1	0.0
zscaler.com	1	0.0
serpro.gov.br	1	0.0
jprs.jp	1	0.0
trustwave.com	1	0.0
amazonaws.cn	1	0.0
cloudflaressl.com	1	0.0
pki.dfn.de	1	0.0
e-szigno.hu	1	0.0
letsencrypt.com	1	0.0
amazonzonaws.com	1	0.0
letsencrypt	1	0.0
yandex.ru	1	0.0
zerossl.com	1	0.0
register.globalsign.com	1	0.0
actalis.it	1	0.0
alphassl.com	1	0.0
docusign.fr	1	0.0

'issuewild' Record Values

Certificate Authority	Count	%
digicert.com	374	3.7
letsencrypt.org	328	3.3
pki.goog	239	2.4
comodoca.com	201	2.0
ssl.com	182	1.8
amazon.com	136	1.4
sectigo.com	106	1.1
globalsign.com	87	0.9
amazonaws.com	38	0.4
amazontrust.com	29	0.3
awstrust.com	26	0.3
pki.apple.com	25	0.2
godaddy.com	24	0.2
telesec.de	10	0.1
certainly.com	6	0.1
certum.pl	6	0.1
geotrust.com	5	0.1
trust-provider.com	4	0.0
usertrust.com	4	0.0
microsoft.com	4	0.0
entrust.net	4	0.0
www.digicert.com	3	0.0
comodo.com	3	0.0
thawte.com	3	0.0
rapidssl.com	3	0.0
cloudflare.com	3	0.0
identrust.com	3	0.0
symantec.com	2	0.0
d-trust.net	2	0.0
swisssign.com	2	0.0
quovadisglobal.com	2	0.0
emsign.com	1	0.0
certum.eu	1	0.0
certsign.ro	1	0.0
jprs.jp	1	0.0
pixfuture.com	1	0.0
wordpress.com	1	0.0
entrust.com	1	0.0
alphassl.com	1	0.0
yandex.ru	1	0.0
letsencrypt.com	1	0.0
affirmtrust.com	1	0.0
secomtrust.net	1	0.0
amazonaws.cn	1	0.0