Hi Jacob,
What use case did you have in mind for including the expiration date
in the RDATA? We didn't choose to initially include it as we believed
the instructions for when a validation record could be removed were clear
with ACME. ACME challenge tokens are only used once and have the expiry of
The latest dns-account-01 draft (
https://datatracker.ietf.org/doc/html/draft-ietf-acme-scoped-dns-challenges-00)
incorporates recommendations from the dnsop domain control verification
draft (
https://datatracker.ietf.org/doc/html/draft-ietf-dnsop-domain-verification-techniques-03
).
The dnsop