moeltaher/1.1.1.1 Egypt

## 1.1.1.1 Egypt
mo@mo-ThinkPad-T470:~$ dig google.com @1.1.1.1

; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> google.com @1.1.1.1
;; global options: +cmd
;; connection timed out; no servers could be reached
mo@mo-ThinkPad-T470:~$ dig google.com @1.0.0.1

; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> google.com @1.0.0.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64014
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1452
;; QUESTION SECTION:
;google.com.			IN	A

;; ANSWER SECTION:
google.com.		198	IN	A	172.217.18.238

;; Query time: 63 msec
;; SERVER: 1.0.0.1#53(1.0.0.1)
;; WHEN: Mon Dec 09 11:31:54 EET 2019
;; MSG SIZE  rcvd: 55

mo@mo-ThinkPad-T470:~$ dig +short CHAOS TXT id.server @1.1.1.1
;; connection timed out; no servers could be reached
mo@mo-ThinkPad-T470:~$ dig +short CHAOS TXT id.server @1.0.0.1
"MRS"
mo@mo-ThinkPad-T470:~$ dig @ns3.Cloudflare.com whoami.Cloudflare.com txt +short
"197.52.10.72"
mo@mo-ThinkPad-T470:~$  traceroute 1.1.1.1
traceroute to 1.1.1.1 (1.1.1.1), 30 hops max, 60 byte packets
 1  * * *
 2  192.168.2.1 (192.168.2.1)  2.418 ms  2.665 ms 192.168.1.1 (192.168.1.1)  2.917 ms
 3  * * *
 4  * * *
 5  * * *
 6  * * *
 7  10.36.19.161 (10.36.19.161)  47.253 ms  33.705 ms  33.944 ms
 8  * * *
 9  * * *
10  * * *
11  * * *
12  * * *
13  * * *
14  * * *
15  * * *
16  * * *
17  * * *
18  * * *
19  * * *
20  * * *
21  * * *
22  * * *
23  * * *
24  * * *
25  * * *
26  * * *
27  * * *
28  * * *
29  * * *
30  * * *
mo@mo-ThinkPad-T470:~$  traceroute 1.0.0.1
traceroute to 1.0.0.1 (1.0.0.1), 30 hops max, 60 byte packets
 1  * * *
 2  192.168.2.1 (192.168.2.1)  3.595 ms  3.873 ms  3.866 ms
 3  * * *
 4  * * *
 5  * * *
 6  * * *
 7  10.38.32.245 (10.38.32.245)  48.305 ms  34.017 ms  35.610 ms
 8  * et-0-0-1-0.cr5-mrs1.ip4.gtt.net (213.254.226.57)  102.233 ms *
 9  149.6.154.130 (149.6.154.130)  95.240 ms  89.392 ms cloudflare-gw.cr2-mrs1.ip4.gtt.net (141.136.100.94)  93.940 ms
10  * * *
11  * * *
12  * * *
13  * * *
14  * * *
15  * * *
16  * * *
17  * * *
18  * * *
19  * * *
20  * * *
21  * * *
22  * * *
23  * * *
24  * * *
25  * * *
26  * * *
27  * * *
28  * * *
29  * * *
30  * * *
mo@mo-ThinkPad-T470:~$ dig +short CHAOS TXT id.server @1.1.1.1
;; connection timed out; no servers could be reached
mo@mo-ThinkPad-T470:~$ dig +short CHAOS TXT id.server @1.0.0.1
"MRS"
mo@mo-ThinkPad-T470:~$ dig +tcp @1.1.1.1 id.server CH TXT
;; Connection to 1.1.1.1#53(1.1.1.1) for id.server failed: timed out.
;; Connection to 1.1.1.1#53(1.1.1.1) for id.server failed: timed out.

; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> +tcp @1.1.1.1 id.server CH TXT
; (1 server found)
;; global options: +cmd
;; connection timed out; no servers could be reached
;; Connection to 1.1.1.1#53(1.1.1.1) for id.server failed: timed out.

mo@mo-ThinkPad-T470:~$ dig +tcp @1.0.0.1 id.server CH TXT

; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> +tcp @1.0.0.1 id.server CH TXT
; (1 server found)
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38832
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1452
;; QUESTION SECTION:
;id.server.			CH	TXT

;; ANSWER SECTION:
id.server.		0	CH	TXT	"MRS"

;; Query time: 62 msec
;; SERVER: 1.0.0.1#53(1.0.0.1)
;; WHEN: Mon Dec 09 11:35:28 EET 2019
;; MSG SIZE  rcvd: 54

mo@mo-ThinkPad-T470:~$  openssl s_client -connect 1.1.1.1:853
140326427218368:error:0200206E:system library:connect:Connection timed out:../crypto/bio/b_sock2.c:110:
140326427218368:error:2008A067:BIO routines:BIO_connect:connect error:../crypto/bio/b_sock2.c:111:
connect:errno=110

mo@mo-ThinkPad-T470:~$  openssl s_client -connect 1.0.0.1:853
CONNECTED(00000005)
depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
verify return:1
depth=1 C = US, O = DigiCert Inc, CN = DigiCert ECC Secure Server CA
verify return:1
depth=0 C = US, ST = California, L = San Francisco, O = "Cloudflare, Inc.", CN = cloudflare-dns.com
verify return:1
---
Certificate chain
 0 s:C = US, ST = California, L = San Francisco, O = "Cloudflare, Inc.", CN = cloudflare-dns.com
   i:C = US, O = DigiCert Inc, CN = DigiCert ECC Secure Server CA
 1 s:C = US, O = DigiCert Inc, CN = DigiCert ECC Secure Server CA
   i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
---
Server certificate
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
subject=C = US, ST = California, L = San Francisco, O = "Cloudflare, Inc.", CN = cloudflare-dns.com

issuer=C = US, O = DigiCert Inc, CN = DigiCert ECC Secure Server CA

---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: ECDSA
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 2903 bytes and written 402 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-ECDSA-AES256-GCM-SHA384
Server public key is 256 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
    Protocol  : TLSv1.2
    Cipher    : ECDHE-ECDSA-AES256-GCM-SHA384
    Session-ID: 788BA52D781D4FFA1A839363F0FBD50A2080CB359367AEA7155531BA18646B3B
    Session-ID-ctx:
    Master-Key: 16ACA5669F9DC5131BA5A01D6A6BB75FF4EE0AB7045DCB4C7A5C630F43199F440C3CF4623DCD761A88B90AE240A397B1
    PSK identity: None
    PSK identity hint: None
    SRP username: None
    TLS session ticket lifetime hint: 300 (seconds)
    TLS session ticket:
    0000 - 5a 78 0f 5e 50 a8 3a d0-9e ac 17 34 5c a6 6c 22   Zx.^P.:....4\.l"
    0010 - 76 b4 19 64 22 12 8d ac-3f 1d 27 78 38 fd 22 8f   v..d"...?.'x8.".
    0020 - 62 d7 9c 60 ee b8 69 36-e9 fa f9 d5 68 50 46 57   b..`..i6....hPFW
    0030 - 91 0d 49 4d 63 3d 40 9e-0c be 0a 73 f3 6c 41 c7   ..IMc=@....s.lA.
    0040 - 60 be 6f 03 37 42 a6 b0-74 87 65 84 73 f3 34 6c   `.o.7B..t.e.s.4l
    0050 - 22 e7 f9 df 29 74 e5 f5-40 ba 68 3d c6 d1 af 69   "...)t..@.h=...i
    0060 - 00 9c 0b 2c c5 6c 0f c8-f4 f8 15 ce 6a c8 d8 ef   ...,.l......j...
    0070 - af 8a a1 c6 4f c8 b9 04-ac d7 7b 63 83 89 d4 90   ....O.....{c....
    0080 - c2 52 4b cf 12 7f 12 9c-bf 2f c5 9b 43 fd f8 76   .RK....../..C..v
    0090 - 09 68 df 78 59 e8 f3 4d-fd fc 5c 4d ac f3 3d 90   .h.xY..M..\M..=.
    00a0 - ab ca 03 41 81 df 67 22-f1 92 16 07 55 72 bf 22   ...A..g"....Ur."
    00b0 - a6 a8 28 fc 1d 79 d2 c4-c8 b1 80 65 ec 2c 5a 56   ..(..y.....e.,ZV

    Start Time: 1575884157
    Timeout   : 7200 (sec)
    Verify return code: 0 (ok)
    Extended master secret: yes
---
closed

mo@mo-ThinkPad-T470:~$  kdig +tls @1.1.1.1 id.server CH TXT
;; WARNING: connection timeout for 1.1.1.1@853(TCP)
;; WARNING: failed to query server 1.1.1.1@853(TCP)


mo@mo-ThinkPad-T470:~$  kdig +tls @1.0.0.1 id.server CH TXT
;; TLS session (TLS1.2)-(ECDHE-ECDSA-SECP256R1)-(AES-256-GCM)
;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 22055
;; Flags: qr rd ra; QUERY: 1; ANSWER: 1; AUTHORITY: 0; ADDITIONAL: 1

;; EDNS PSEUDOSECTION:
;; Version: 0; flags: ; UDP size: 1452 B; ext-rcode: NOERROR

;; QUESTION SECTION:
;; id.server.          		CH	TXT

;; ANSWER SECTION:
id.server.          	0	CH	TXT	"MRS"

;; Received 54 B
;; Time 2019-12-09 11:36:58 EET
;; From 1.0.0.1@853(TCP) in 92.0 ms

mo@mo-ThinkPad-T470:~$ curl -v 'https://1.1.1.1/dns-query?ct=application/dns-json&name=Cloudflare.com'
*   Trying 1.1.1.1...
* TCP_NODELAY set
* connect to 1.1.1.1 port 443 failed: Connection timed out
* Failed to connect to 1.1.1.1 port 443: Connection timed out
* Closing connection 0
curl: (7) Failed to connect to 1.1.1.1 port 443: Connection timed out
	mo@mo-ThinkPad-T470:~$ dig google.com @1.1.1.1

	; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> google.com @1.1.1.1
	;; global options: +cmd
	;; connection timed out; no servers could be reached
	mo@mo-ThinkPad-T470:~$ dig google.com @1.0.0.1

	; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> google.com @1.0.0.1
	;; global options: +cmd
	;; Got answer:
	;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 64014
	;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

	;; OPT PSEUDOSECTION:
	; EDNS: version: 0, flags:; udp: 1452
	;; QUESTION SECTION:
	;google.com. IN A

	;; ANSWER SECTION:
	google.com. 198 IN A 172.217.18.238

	;; Query time: 63 msec
	;; SERVER: 1.0.0.1#53(1.0.0.1)
	;; WHEN: Mon Dec 09 11:31:54 EET 2019
	;; MSG SIZE rcvd: 55

	mo@mo-ThinkPad-T470:~$ dig +short CHAOS TXT id.server @1.1.1.1
	;; connection timed out; no servers could be reached
	mo@mo-ThinkPad-T470:~$ dig +short CHAOS TXT id.server @1.0.0.1
	"MRS"
	mo@mo-ThinkPad-T470:~$ dig @ns3.Cloudflare.com whoami.Cloudflare.com txt +short
	"197.52.10.72"
	mo@mo-ThinkPad-T470:~$ traceroute 1.1.1.1
	traceroute to 1.1.1.1 (1.1.1.1), 30 hops max, 60 byte packets
	1 * * *
	2 192.168.2.1 (192.168.2.1) 2.418 ms 2.665 ms 192.168.1.1 (192.168.1.1) 2.917 ms
	3 * * *
	4 * * *
	5 * * *
	6 * * *
	7 10.36.19.161 (10.36.19.161) 47.253 ms 33.705 ms 33.944 ms
	8 * * *
	9 * * *
	10 * * *
	11 * * *
	12 * * *
	13 * * *
	14 * * *
	15 * * *
	16 * * *
	17 * * *
	18 * * *
	19 * * *
	20 * * *
	21 * * *
	22 * * *
	23 * * *
	24 * * *
	25 * * *
	26 * * *
	27 * * *
	28 * * *
	29 * * *
	30 * * *
	mo@mo-ThinkPad-T470:~$ traceroute 1.0.0.1
	traceroute to 1.0.0.1 (1.0.0.1), 30 hops max, 60 byte packets
	1 * * *
	2 192.168.2.1 (192.168.2.1) 3.595 ms 3.873 ms 3.866 ms
	3 * * *
	4 * * *
	5 * * *
	6 * * *
	7 10.38.32.245 (10.38.32.245) 48.305 ms 34.017 ms 35.610 ms
	8 * et-0-0-1-0.cr5-mrs1.ip4.gtt.net (213.254.226.57) 102.233 ms *
	9 149.6.154.130 (149.6.154.130) 95.240 ms 89.392 ms cloudflare-gw.cr2-mrs1.ip4.gtt.net (141.136.100.94) 93.940 ms
	10 * * *
	11 * * *
	12 * * *
	13 * * *
	14 * * *
	15 * * *
	16 * * *
	17 * * *
	18 * * *
	19 * * *
	20 * * *
	21 * * *
	22 * * *
	23 * * *
	24 * * *
	25 * * *
	26 * * *
	27 * * *
	28 * * *
	29 * * *
	30 * * *
	mo@mo-ThinkPad-T470:~$ dig +short CHAOS TXT id.server @1.1.1.1
	;; connection timed out; no servers could be reached
	mo@mo-ThinkPad-T470:~$ dig +short CHAOS TXT id.server @1.0.0.1
	"MRS"
	mo@mo-ThinkPad-T470:~$ dig +tcp @1.1.1.1 id.server CH TXT
	;; Connection to 1.1.1.1#53(1.1.1.1) for id.server failed: timed out.
	;; Connection to 1.1.1.1#53(1.1.1.1) for id.server failed: timed out.

	; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> +tcp @1.1.1.1 id.server CH TXT
	; (1 server found)
	;; global options: +cmd
	;; connection timed out; no servers could be reached
	;; Connection to 1.1.1.1#53(1.1.1.1) for id.server failed: timed out.

	mo@mo-ThinkPad-T470:~$ dig +tcp @1.0.0.1 id.server CH TXT

	; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> +tcp @1.0.0.1 id.server CH TXT
	; (1 server found)
	;; global options: +cmd
	;; Got answer:
	;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 38832
	;; flags: qr rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

	;; OPT PSEUDOSECTION:
	; EDNS: version: 0, flags:; udp: 1452
	;; QUESTION SECTION:
	;id.server. CH TXT

	;; ANSWER SECTION:
	id.server. 0 CH TXT "MRS"

	;; Query time: 62 msec
	;; SERVER: 1.0.0.1#53(1.0.0.1)
	;; WHEN: Mon Dec 09 11:35:28 EET 2019
	;; MSG SIZE rcvd: 54

	mo@mo-ThinkPad-T470:~$ openssl s_client -connect 1.1.1.1:853
	140326427218368:error:0200206E:system library:connect:Connection timed out:../crypto/bio/b_sock2.c:110:
	140326427218368:error:2008A067:BIO routines:BIO_connect:connect error:../crypto/bio/b_sock2.c:111:
	connect:errno=110

	mo@mo-ThinkPad-T470:~$ openssl s_client -connect 1.0.0.1:853
	CONNECTED(00000005)
	depth=2 C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
	verify return:1
	depth=1 C = US, O = DigiCert Inc, CN = DigiCert ECC Secure Server CA
	verify return:1
	depth=0 C = US, ST = California, L = San Francisco, O = "Cloudflare, Inc.", CN = cloudflare-dns.com
	verify return:1
	---
	Certificate chain
	0 s:C = US, ST = California, L = San Francisco, O = "Cloudflare, Inc.", CN = cloudflare-dns.com
	i:C = US, O = DigiCert Inc, CN = DigiCert ECC Secure Server CA
	1 s:C = US, O = DigiCert Inc, CN = DigiCert ECC Secure Server CA
	i:C = US, O = DigiCert Inc, OU = www.digicert.com, CN = DigiCert Global Root CA
	---
	Server certificate
	-----BEGIN CERTIFICATE-----
	MIIFxjCCBUygAwIBAgIQAczjGN6fVn+rKySQH62nHTAKBggqhkjOPQQDAjBMMQsw
	CQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMSYwJAYDVQQDEx1EaWdp
	Q2VydCBFQ0MgU2VjdXJlIFNlcnZlciBDQTAeFw0xOTAxMjgwMDAwMDBaFw0yMTAy
	MDExMjAwMDBaMHIxCzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRYw
	FAYDVQQHEw1TYW4gRnJhbmNpc2NvMRkwFwYDVQQKExBDbG91ZGZsYXJlLCBJbmMu
	MRswGQYDVQQDExJjbG91ZGZsYXJlLWRucy5jb20wWTATBgcqhkjOPQIBBggqhkjO
	PQMBBwNCAATFIHCMIEJQKB59REF8MHkpHGNeHUSbxfdxOive0qKksWw9ash3uMuP
	LlBT/fQYJn9hN+3/wr7pC125fuHfHOJ0o4ID6DCCA+QwHwYDVR0jBBgwFoAUo53m
	H/naOU/AbuiRy5Wl2jHiCp8wHQYDVR0OBBYEFHCV3FyjjmYH28uBEMar58OoRX+g
	MIGsBgNVHREEgaQwgaGCEmNsb3VkZmxhcmUtZG5zLmNvbYIUKi5jbG91ZGZsYXJl
	LWRucy5jb22CD29uZS5vbmUub25lLm9uZYcEAQEBAYcEAQAAAYcEop+ENYcQJgZH
	AEcAAAAAAAAAAAAREYcQJgZHAEcAAAAAAAAAAAAQAYcQJgZHAEcAAAAAAAAAAAAA
	ZIcQJgZHAEcAAAAAAAAAAABkAIcEop8kAYcEop8uATAOBgNVHQ8BAf8EBAMCB4Aw
	HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMGkGA1UdHwRiMGAwLqAsoCqG
	KGh0dHA6Ly9jcmwzLmRpZ2ljZXJ0LmNvbS9zc2NhLWVjYy1nMS5jcmwwLqAsoCqG
	KGh0dHA6Ly9jcmw0LmRpZ2ljZXJ0LmNvbS9zc2NhLWVjYy1nMS5jcmwwTAYDVR0g
	BEUwQzA3BglghkgBhv1sAQEwKjAoBggrBgEFBQcCARYcaHR0cHM6Ly93d3cuZGln
	aWNlcnQuY29tL0NQUzAIBgZngQwBAgIwewYIKwYBBQUHAQEEbzBtMCQGCCsGAQUF
	BzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wRQYIKwYBBQUHMAKGOWh0dHA6
	Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9EaWdpQ2VydEVDQ1NlY3VyZVNlcnZlckNB
	LmNydDAMBgNVHRMBAf8EAjAAMIIBfgYKKwYBBAHWeQIEAgSCAW4EggFqAWgAdgCk
	uQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAAAWiVHhSLAAAEAwBHMEUC
	IQDlnoPeMXtFkRsy3Vs0eovk3ILKt01x6bgUdMlmQTFIvAIgcAn0lFSjiGzHm2eO
	jDZJzMiP5Uaj0Jwub9GO8RkxkkoAdQCHdb/nWXz4jEOZX73zbv9WjUdWNv9KtWDB
	tOr/XqCDDwAAAWiVHhVsAAAEAwBGMEQCIFC0n0JModeol8b/Qicxd5Blf/o7xOs/
	Bk0j9hdc5N7jAiAQocYnHL9iMqTtFkh0vmSsII5NbiakM/2yDEXnwkPRvAB3ALvZ
	37wfinG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABaJUeFJEAAAQDAEgwRgIh
	AL3OPTBzOZpS5rS/uLzqMOiACCFQyY+mTJ+L0I9TcB3RAiEA4+SiPz0/5kFxvrk7
	AKYKdvelgV1hiiPbM2YHY+/0BIkwCgYIKoZIzj0EAwIDaAAwZQIwez76hX2HTMur
	/I3XRuwfdmVoa8J6ZVEVq+AZsE7DyQh7AV4WNLU+092BrPbnyVUFAjEAzUf5jdz1
	pyc74lgOunC7LBE6cPtWbzfGpJiYyT/T+c5eIAwRYziKT0DKbaql7tiZ
	-----END CERTIFICATE-----
	subject=C = US, ST = California, L = San Francisco, O = "Cloudflare, Inc.", CN = cloudflare-dns.com

	issuer=C = US, O = DigiCert Inc, CN = DigiCert ECC Secure Server CA

	---
	No client certificate CA names sent
	Peer signing digest: SHA256
	Peer signature type: ECDSA
	Server Temp Key: X25519, 253 bits
	---
	SSL handshake has read 2903 bytes and written 402 bytes
	Verification: OK
	---
	New, TLSv1.2, Cipher is ECDHE-ECDSA-AES256-GCM-SHA384
	Server public key is 256 bit
	Secure Renegotiation IS supported
	Compression: NONE
	Expansion: NONE
	No ALPN negotiated
	SSL-Session:
	Protocol : TLSv1.2
	Cipher : ECDHE-ECDSA-AES256-GCM-SHA384
	Session-ID: 788BA52D781D4FFA1A839363F0FBD50A2080CB359367AEA7155531BA18646B3B
	Session-ID-ctx:
	Master-Key: 16ACA5669F9DC5131BA5A01D6A6BB75FF4EE0AB7045DCB4C7A5C630F43199F440C3CF4623DCD761A88B90AE240A397B1
	PSK identity: None
	PSK identity hint: None
	SRP username: None
	TLS session ticket lifetime hint: 300 (seconds)
	TLS session ticket:
	0000 - 5a 78 0f 5e 50 a8 3a d0-9e ac 17 34 5c a6 6c 22 Zx.^P.:....4\.l"
	0010 - 76 b4 19 64 22 12 8d ac-3f 1d 27 78 38 fd 22 8f v..d"...?.'x8.".
	0020 - 62 d7 9c 60 ee b8 69 36-e9 fa f9 d5 68 50 46 57 b..`..i6....hPFW
	0030 - 91 0d 49 4d 63 3d 40 9e-0c be 0a 73 f3 6c 41 c7 ..IMc=@....s.lA.
	0040 - 60 be 6f 03 37 42 a6 b0-74 87 65 84 73 f3 34 6c `.o.7B..t.e.s.4l
	0050 - 22 e7 f9 df 29 74 e5 f5-40 ba 68 3d c6 d1 af 69 "...)t..@.h=...i
	0060 - 00 9c 0b 2c c5 6c 0f c8-f4 f8 15 ce 6a c8 d8 ef ...,.l......j...
	0070 - af 8a a1 c6 4f c8 b9 04-ac d7 7b 63 83 89 d4 90 ....O.....{c....
	0080 - c2 52 4b cf 12 7f 12 9c-bf 2f c5 9b 43 fd f8 76 .RK....../..C..v
	0090 - 09 68 df 78 59 e8 f3 4d-fd fc 5c 4d ac f3 3d 90 .h.xY..M..\M..=.
	00a0 - ab ca 03 41 81 df 67 22-f1 92 16 07 55 72 bf 22 ...A..g"....Ur."
	00b0 - a6 a8 28 fc 1d 79 d2 c4-c8 b1 80 65 ec 2c 5a 56 ..(..y.....e.,ZV

	Start Time: 1575884157
	Timeout : 7200 (sec)
	Verify return code: 0 (ok)
	Extended master secret: yes
	---
	closed

	mo@mo-ThinkPad-T470:~$ kdig +tls @1.1.1.1 id.server CH TXT
	;; WARNING: connection timeout for 1.1.1.1@853(TCP)
	;; WARNING: failed to query server 1.1.1.1@853(TCP)


	mo@mo-ThinkPad-T470:~$ kdig +tls @1.0.0.1 id.server CH TXT
	;; TLS session (TLS1.2)-(ECDHE-ECDSA-SECP256R1)-(AES-256-GCM)
	;; ->>HEADER<<- opcode: QUERY; status: NOERROR; id: 22055
	;; Flags: qr rd ra; QUERY: 1; ANSWER: 1; AUTHORITY: 0; ADDITIONAL: 1

	;; EDNS PSEUDOSECTION:
	;; Version: 0; flags: ; UDP size: 1452 B; ext-rcode: NOERROR

	;; QUESTION SECTION:
	;; id.server. CH TXT

	;; ANSWER SECTION:
	id.server. 0 CH TXT "MRS"

	;; Received 54 B
	;; Time 2019-12-09 11:36:58 EET
	;; From 1.0.0.1@853(TCP) in 92.0 ms

	mo@mo-ThinkPad-T470:~$ curl -v 'https://1.1.1.1/dns-query?ct=application/dns-json&name=Cloudflare.com'
	* Trying 1.1.1.1...
	* TCP_NODELAY set
	* connect to 1.1.1.1 port 443 failed: Connection timed out
	* Failed to connect to 1.1.1.1 port 443: Connection timed out
	* Closing connection 0
	curl: (7) Failed to connect to 1.1.1.1 port 443: Connection timed out