[pornel]

They have expired the data correctly, which uncovered a bug in fetching of a new DNSSEC record.

If the DNSSEC didn't add new unnecessary complexity to an otherwise working system, there would be no bug, and no stale data.