from Hacker News

Launching RDAP; sunsetting WHOIS

by radeeyate on 3/17/25, 12:48 AM with 347 comments

  • by hughesey on 3/17/25, 5:55 AM

    This was announced originally early last year. It removes the requirement for TLD and nTLD (not ccTLD) operators to have a WHOIS service available, but doesn't mandate they must shut them down.

    So far the sunsetting has had little effect with most TLDs still having their WHOIS services online. In reality, I think we'll see a period of time where many TLDs and nTLDs have both WHOIS and RDAP available.

    Additionally, since ccTLD's aren't governed by ICANN, many don't even have an RDAP service available. As such, there's going to be a mix of RDAP and WHOIS in use across the entire internet for some time to come.

    Disclosure: I run https://viewdns.info/ and have spent many an hour dealing with both WHOIS and RDAP parsing to make sure that our service returns consistent data (via our web interface and API) regardless of the protocol in use.

  • by transcriptase on 3/17/25, 1:31 AM

    The concept of WHOIS has felt sleazy for many years.

    If I register a domain, the registrar will basically extort me a couple extra dollars per year for “domain privacy” for the privilege of not having my name, home address, phone number, and email publicly available and then mirrored across thousands of shady scraped content sites in perpetuity. Even If you don’t care about that, then begins the never ending emails texts and calls begin from sleazy outfits who want to sell you related domains, do SEO for you, revamp your site, schedule a call, or just fill your spam box up with legitimate scams and bootleg pharma trash.

    All because you wanted a $10/year dot com without paying the bribe.

    And yes I grew up leafing through well worn phone books next to corded phones. This is not comparable.

  • by brown on 3/17/25, 1:11 AM

    RDAP replaces WHOIS, offering a more technologically advanced way to discover the domain is protected by privacy services.

  • by gkoberger on 3/17/25, 1:21 AM

    Wow. I never noticed how much how I used the internet changed. I haven’t done a WHOIS in a decade.

    When I started using the internet, it’s how I contacted people. If I liked their site or their blog, I’d check who was behind it and get an email address I could contact.

    Now… humans don’t really own domains anymore. Content is so centralized. I obviously noticed this shift, but I had forgotten how I used to be able to interact with the internet.

  • by imoreno on 3/17/25, 3:45 AM

    The article is titled:

    > ICANN Update: Launching RDAP; Sunsetting WHOIS

    Bit deceptive to editorialize it into something that sounds like something else much more interesting (removing contact info from domains) but isn't the case at all (they're just changing the method to access the same info).

  • by defanor on 3/17/25, 5:45 AM

    I like WHOIS with its extreme simplicity [0]. RDAP, on the other hand, works on top of a large and changing HTTP [1], and uses a JS-derived serialization format [2]. RDAP has advantages, such as optionally benefiting from TLS, the data being better structured and defined, but the cost in added complexity seems high.

    [0] https://datatracker.ietf.org/doc/html/rfc3912

    [1] https://datatracker.ietf.org/doc/html/rfc9082

    [1] https://datatracker.ietf.org/doc/html/rfc9083

  • by TheSaifurRahman on 3/17/25, 6:17 AM

    Worth mentioning are two open-source RDAP projects that are helping move the internet to a more structured system:

    DNSBelgium: https://github.com/DNSBelgium/rdap

    RedDog: https://www.reddog.mx/home/2017/12/14/server-1.2.2-patch-rel...

  • by phendrenad2 on 3/17/25, 1:52 AM

    Most people won't even notice this change. They'll still go to a "whois lookup service" and input a domain, and get the same results. The fact that it arrived via a different protocol (RDAP) won't mean anything.

  • by vekatimest on 3/17/25, 1:11 AM

    To be replaced with a system providing a standardized method to give law enforcement easier "secure access" to your redacted personal information.

  • by nine_k on 3/17/25, 1:56 AM

    Back in 2014, when TLD .church was introduced, me and my friends tried to register alonzo.church and (ab)use the contact information records to provide some biographic information and links, explaining literally whois alonzo.church on the command line. That would not prevent hosting whatever services on that domain as normal.

    Sadly, we were not able to secure the domain on time, and after 11 years, the attempted trick is becoming irrelevant.

  • by einpoklum on 3/17/25, 1:48 PM

    I just did an

       apt cache search rdap
    on a Debian (well, Devuan) system, and found nothing. Also could not find that phrase in the name of any executable in /usr/bin or /usr/sbin .

    :-(

  • by bravetraveler on 3/17/25, 1:33 AM

    If distribution packages don't abstract this trivia away I'm going to be endlessly frustrated

  • by 1970-01-01 on 3/17/25, 1:32 AM

    I don't play with domains all day, but this very much feels like nothing important was accomplished, and things are just being made more complicated for political reasons. Sorry if that is being harsh, but I've never had any issue using WHOIS.

  • by throwaway150 on 3/17/25, 1:53 AM

    There's something about WHOIS I've never understood. If you run `whois ycombinator.com` you'll see name servers in the output.

      Name Server: NS-1411.AWSDNS-48.ORG
  Name Server: NS-1914.AWSDNS-47.CO.UK
  Name Server: NS-225.AWSDNS-28.COM
  Name Server: NS-556.AWSDNS-05.NET
    But if you run `dig ycombinator.com ANY +noall +answer` you'll see name servers here too.

      ycombinator.com.        21600   IN      NS      ns-556.awsdns-05.net.
  ycombinator.com.        21600   IN      NS      ns-1914.awsdns-47.co.uk.
  ycombinator.com.        21600   IN      NS      ns-225.awsdns-28.com.
  ycombinator.com.        21600   IN      NS      ns-1411.awsdns-48.org.
  ycombinator.com.        900     IN      SOA     ns-225.awsdns-28.com. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400
    If you see all the output together, you'll find the same name servers are present in WHOIS output and the DNS NS records. But wait, there's more.

    The name server `ns-225.awsdns-28.com` is present three times- in WHOIS, in DNS NS records, in DNS SOA record.

    Which of these name servers get used to resolve `ycombinator.com` to its IP address like when I do `ping ycombinator.com`?

    What if the information between the WHOIS and DNS NS records and the DNS SOA records are inconsistent? Which record wins?

  • by anonymousiam on 3/17/25, 4:26 AM

    I've had domains registered for over 30 years. I liked WHOIS because it provided a means to report abuse, which has gone from zero 30 years ago, to massive amounts of daily spam and network probes. I was not happy when ICANN began to allow privacy features in domain registration data, and I never made mine private. Most reputable sites still provide contact information via WHOIS.

    Hopefully RDAP will be a suitable replacement. I haven't tried it yet.

  • by threePointFive on 3/17/25, 9:29 PM

    My first question when reading this was how is it going to affect the `whois` CLI tool, which I use at least weekly for both IPs and Domains. I even started trying to find source code before getting pulled away. Luckily I had an excuse to use it today and noticed that an RDAP endpoint was already being queried for the information. Good to know I won't have to change any habits!

  • by dgacmu on 3/17/25, 11:38 AM

    rdap is nice when it's available.

        cargo install icann-rdap-cli
    rdap -O json ycombinator.com| jq .nameservers
    (or brew install, etc., depending on your os and tooling). The jq formatted output is a little more verbose than the whois one, but three cheers for a well-specified machine-parsable format. (and rdap has a pretty-printed format output also)

  • by oefrha on 3/17/25, 2:34 AM

    People say WHOIS is useless these days due to WHOIS privacy, but it's useful for at least one thing: checking when a domain was registered/transferred. Fishy stuff tend to be registered/transferred recently. Also older and larger companies tend to not hide their organizational identity.

    Btw, I tried the icann-rdap CLI tool and the default rendered-markdown output mode is atrocious. Sea of output, each nameserver has one or more standalone tables taking up 15x$repetition lines, almost impossible to fish out useful info. The retro gtld-whois mode is so much cleaner. Their web tool https://lookup.icann.org/en/lookup is fine too, don't know why the rendered markdown mode isn't like that. WTF.

  • by mdrzn on 3/17/25, 3:10 PM

    The linked page (https://lookup.icann.org/en) seems to work only for .com domains?

    "No registry RDAP server was identified for this domain. Attempting lookup using WHOIS service."

    "Failed to perform lookup using WHOIS service: TLD_NOT_SUPPORTED."

  • by mike503 on 3/17/25, 9:40 AM

    I have no doubt some of the benefits are definitely to be able to resell or access that data once again. I literally just told someone yesterday “don’t pay for domain privacy, any registrar worth a damn will include it anymore”

  • by Sophira on 3/17/25, 10:46 PM

    My main use for WHOIS currently is actually not for domain names. I use it for querying IP addresses on whois.arin.net. Does anyone know how this news will impact that particular service, if at all?

  • by TZubiri on 3/17/25, 2:09 AM

    I wasn't aware of rdap.

    Anyone experienced with this, I am not seeing abuse contact info, usually a phone number or email. Am i supposed to follow hyperlinks to get this info or something? Like search the registrar for this data?

  • by smoyer on 3/17/25, 1:27 AM

    When can I finally see an article announcing that ICANN has been sunsetted?

  • by tgtweak on 3/17/25, 8:10 PM

    The fact most WHOIS is private these days makes it more or less useless.

    I think rdap with a request/response authentication on the requestor but that the provider can't mask would be more practical.

    Also requiring that registrars keep a history of changes from the time the domain was first registered would be very helpful vs relying on 3rd parties that cache the data over time (and charge for it) like domaintools.

    Unlikely that this is in the protocol but I think it would better the entire ecosystem.

  • by zombot on 3/17/25, 9:16 AM

    Good bye, then, whois.

    I can remember times when you could still see the names and addresses of registrants in whois records. That was before abuse and fraud became everyday occurrences in today's internet.

    I miss the times when we could still believe in basic human decency.

  • by Pxtl on 3/17/25, 1:41 PM

    From what I've seen most domain servers don't really implement the history components of RDAP, which is a shame - being able to see if a domain ownership lapsed or was transferred historically would be great for being able to determine if somebody's email address is still trustworthy or has been stolen by a domain transfer.

  • by roelschroeven on 3/17/25, 10:55 AM

    Are existing whois-clients going to be updated to support RDAP next to Whois, or will we have to use different clients?

  • by notepad0x90 on 3/17/25, 1:30 AM

    Whois needs it's own port open usually, this is good I suppose, now it's all HTTPS. Now, if only passive dns resolution data was part of this same api. As it stands today, if you're looking into WHOIS information, historical WHOIS and passive dns are a must, and they are usually provided by commercial entities.

  • by charcircuit on 3/17/25, 3:26 AM

    ICANN's DNS servers is one of the only systems on the internet that requires people to continually pay money to have a name. X, YouTube, Facebook, Reddit, Twitch, etc all let you register a name for free and without submitting all of your personal information. The entire model here is outdated with what users want.

  • by webprofusion on 3/17/25, 9:03 AM

    The main benefit of whois and RDAP is to see which registrar handles a domain and when there were recent changes or upcoming expiry etc. RDAP is also useful to see who operates an IP address etc. I've been using RDAP for a few years but the service has been spotty, hopefully that improves now.

  • by a-dub on 3/17/25, 4:05 AM

    it was fun when having a network solutions/internic contact handle was a badge of honor.

    the early internet was fun. whois was always a fun dimension.

    is there a canonical rdap client that will end up everywhere? one of the nice things about the early Internet was that there were canonical utilities that were everywhere.

  • by londons_explore on 3/17/25, 8:44 AM

    Why isn't this data simply available as a custom DNS record type?

    Seems far simpler than a whole custom protocol.

  • by qrush on 3/17/25, 1:26 AM

    What does this mean for the command line tool whois? It definitely works still and it's still being updated...

    > whois ycombinator.com % IANA WHOIS server % for more information on IANA, visit http://www.iana.org % This query returned 1 object

    refer: whois.verisign-grs.com

    domain: COM

    organisation: VeriSign Global Registry Services address: 12061 Bluemont Way address: Reston VA 20190 address: United States of America (the)

    contact: administrative name: Registry Customer Service organisation: VeriSign Global Registry Services address: 12061 Bluemont Way address: Reston VA 20190 address: United States of America (the) phone: +1 703 925-6999 fax-no: +1 703 948 3978 e-mail: info@verisign-grs.com

    contact: technical name: Registry Customer Service organisation: VeriSign Global Registry Services address: 12061 Bluemont Way address: Reston VA 20190 address: United States of America (the) phone: +1 703 925-6999 fax-no: +1 703 948 3978 e-mail: info@verisign-grs.com

    nserver: A.GTLD-SERVERS.NET 192.5.6.30 2001:503:a83e:0:0:0:2:30 nserver: B.GTLD-SERVERS.NET 192.33.14.30 2001:503:231d:0:0:0:2:30 nserver: C.GTLD-SERVERS.NET 192.26.92.30 2001:503:83eb:0:0:0:0:30 nserver: D.GTLD-SERVERS.NET 192.31.80.30 2001:500:856e:0:0:0:0:30 nserver: E.GTLD-SERVERS.NET 192.12.94.30 2001:502:1ca1:0:0:0:0:30 nserver: F.GTLD-SERVERS.NET 192.35.51.30 2001:503:d414:0:0:0:0:30 nserver: G.GTLD-SERVERS.NET 192.42.93.30 2001:503:eea3:0:0:0:0:30 nserver: H.GTLD-SERVERS.NET 192.54.112.30 2001:502:8cc:0:0:0:0:30 nserver: I.GTLD-SERVERS.NET 192.43.172.30 2001:503:39c1:0:0:0:0:30 nserver: J.GTLD-SERVERS.NET 192.48.79.30 2001:502:7094:0:0:0:0:30 nserver: K.GTLD-SERVERS.NET 192.52.178.30 2001:503:d2d:0:0:0:0:30 nserver: L.GTLD-SERVERS.NET 192.41.162.30 2001:500:d937:0:0:0:0:30 nserver: M.GTLD-SERVERS.NET 192.55.83.30 2001:501:b1f9:0:0:0:0:30 ds-rdata: 19718 13 2 8acbb0cd28f41250a80a491389424d341522d946b0da0c0291f2d3d771d7805a

    whois: whois.verisign-grs.com

    status: ACTIVE remarks: Registration information: http://www.verisigninc.com

    created: 1985-01-01 changed: 2023-12-07 source: IANA

    # whois.verisign-grs.com

       Domain Name: YCOMBINATOR.COM
   Registry Domain ID: 147225527_DOMAIN_COM-VRSN
   Registrar WHOIS Server: whois.gandi.net
   Registrar URL: http://www.gandi.net
   Updated Date: 2025-02-14T02:53:36Z
   Creation Date: 2005-03-20T23:51:07Z
   Registry Expiry Date: 2026-03-20T22:51:07Z
   Registrar: Gandi SAS
   Registrar IANA ID: 81
   Registrar Abuse Contact Email: abuse@support.gandi.net
   Registrar Abuse Contact Phone: +33.170377661
   Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited
   Name Server: NS-1411.AWSDNS-48.ORG
   Name Server: NS-1914.AWSDNS-47.CO.UK
   Name Server: NS-225.AWSDNS-28.COM
   Name Server: NS-556.AWSDNS-05.NET
   DNSSEC: unsigned
   URL of the ICANN Whois Inaccuracy Complaint Form: https://www.icann.org/wicf/
    >>> Last update of whois database: 2025-03-17T01:27:31Z <<<

  • by BizarreByte on 3/17/25, 4:26 AM

    My favourite part of my .ca domains is that personal data is protected by default and I don't have to pay for it as an additional service.

    There's no need for people to know my information because I happen to own a domain.

  • by llacb47 on 3/17/25, 4:29 PM

    It doesn't work with yandex.kz. Someone call Kazakhstan.

    > No registry RDAP server was identified for this domain. Attempting lookup using WHOIS service.

    > Failed to perform lookup using WHOIS service: TLD_NOT_SUPPORTED.

  • by RVuRnvbM2e on 3/17/25, 5:31 AM

    Stoked to see that ICANN reference implementations are now being written in rust!

    https://github.com/icann/icann-rdap

  • by attah_ on 3/17/25, 9:07 PM

    So... WHOIS is now JSON over HTTP. I guess that's reasonable. But this warrants the sample application to need a gazillion crates why exactly?

  • by DeathArrow on 3/17/25, 5:53 AM

    I wonder which other old internet protocols fell into obsolescence.

    Finger is not officially retired but no one supports it. NNTP seems it had a similar fate.

  • by OutOfHere on 3/17/25, 1:21 AM

    These days how can one register a domain anonymously, using crypto as payment, and without KYC?

  • by selfhoster on 3/17/25, 1:25 PM

    Glad I read this, I wasn't aware whois was being sunsetted. Now I have to change one of my critical services to do rdap. Wow. How can you sunset the main service that is the backbone of the internet?

  • by DonHopkins on 3/17/25, 6:46 AM

    I hope archive.org will host a WHOWAS service.

  • by qb_dp on 3/17/25, 11:57 AM

    this really looks like a regression. In the sense that RDAP could be cheated

  • by qb_dp on 3/17/25, 11:58 AM

    looks bad. I see a loss in trust there

  • by than on 3/17/25, 3:59 PM

    Missed opportunity to call the successor `whodat`

  • by rootsudo on 3/17/25, 3:11 AM

    wow! something I didn't expect to read today, or in the near future.

  • by chrisallick on 3/17/25, 2:15 AM

    r dap me up

  • by whalesalad on 3/17/25, 3:10 AM

    check out the rdap deployment dashboard - https://deployment.rdap.org/

    it's still unsupported by a lot of tld's and the rate limits are atrocious. some registrar's only allow 10 requests per day and will group huge netblocks into one single block.

  • by technopol on 3/17/25, 1:31 AM

    This seems like it would break things.

  • by CaffeineLD50 on 3/17/25, 1:08 AM

    I havent had a successful use of whois in probably over a decade. What was once a useful tool was destroyed by spammers harvesting email addresses and privacy oriented registrars.

    I won't even notice its gone