So many people have misread the documentation regarding CAA that they’ve made a brokenness standardized (but highly undocumented).

A setting of 0 means that an issuer is allowed to issue certificates if it doesn’t understand the record it finds. A setting of 128 means that an issuer is NOT allowed to issue certificates if it doesn’t understand the record.

However, people have not paid attention to this, so a setting of ‘1’ also means that the issuer is to not issue records unless it’s explicitly understood.