Okay, so your file
. 172800 IN DS 19036 8 2 49aac11d7b6f6446702e54a1607371607a1a41855200fd2ce1cdde32f24e8fb5
. 172800 IN DS 20326 8 2 e06d44b80b8f1d39a95c0b0d7c65d08458e880409bbc683457104237c7f8ec8d
but this is wrong (the formatting is incorrect and the second entry is wrong altogether)!
You can fix this by
echo ". IN DS 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5" | sudo tee /usr/share/dns/root.ds
The official reference for the DNSSEC trust anchor is here, just so you can be sure that I don't suggest you to insert anything wrong/bad/whatever on your system:
Validating resolvers ought to be able write out a list of current
trust anchors in the format above. Validating resolvers that perform
trust anchor maintenance MUST be able to update their trust anchor
Example: (ID width rules force text onto two lines)
. 19036 8 2 49AAC11D7B6F6446702E54A1607371607A1A41855200FD2CE1CDDE32F24E8FB5
Note: Trust anchor maintenance [RFC5011] and other schemas may
require a different format as timers and other meta data is needed.
Source: draft-ietf-dnsop-dnssec-trust-anchor-04 - DNSSEC Trust Anchor Configuration and Maintenance
You should report this bug somewhere if you find the time...