腾讯 DNS 的 DOH 是 https://doh.pub/dns-query
解析出来用的 IP 是 1.12.12.21 和 120.53.53.53
然后使用 1.12.12.21 来作为 DNS 解析的话,直接证书不对,然后看了下证书里面它填的是 1.12.12.12
哈哈哈,你们说是不是他手抖了?
C:\Users\dima>q doh.pub /s 223.5.5.5 /verbose
time="2025-09-05T09:18:32+08:00" level=debug msg="Name: doh.pub"
time="2025-09-05T09:18:32+08:00" level=debug msg="RR types: [AAAA NS MX TXT CNAME A]"
time="2025-09-05T09:18:32+08:00" level=debug msg="Server(s): [223.5.5.5]"
time="2025-09-05T09:18:32+08:00" level=debug msg="Using server 223.5.5.5:53 with transport plain"
time="2025-09-05T09:18:32+08:00" level=debug msg="Using UDP with TCP fallback: 223.5.5.5:53"
doh.pub. 1m15s A 1.12.12.21
doh.pub. 1m15s A 120.53.53.53
doh.pub. 37m28s NS ns3.dnsv5.com.
doh.pub. 37m28s NS ns4.dnsv5.com.
doh.pub. 10m TXT "15bb0u0le1vyvo1mfjhufzuewzafdqmy"
C:\Users\dima>q doh.pub /s https://1.12.12.21/dns-query /verbose
time="2025-09-05T09:20:12+08:00" level=debug msg="Name: doh.pub"
time="2025-09-05T09:20:12+08:00" level=debug msg="RR types: [A AAAA NS MX TXT CNAME]"
time="2025-09-05T09:20:12+08:00" level=debug msg="Server(s): [https://1.12.12.21/dns-query]"
time="2025-09-05T09:20:12+08:00" level=debug msg="Using server https://1.12.12.21:443/dns-query with transport http"
time="2025-09-05T09:20:12+08:00" level=debug msg="Using HTTP(s) transport: https://1.12.12.21:443/dns-query"
time="2025-09-05T09:20:12+08:00" level=debug msg="[http] sending GET request to https://1.12.12.21:443/dns-query?dns=3AQBAAABAAAAAAAAA2RvaANwdWIAAA8AAQ"
time="2025-09-05T09:20:12+08:00" level=fatal msg="requesting https://1.12.12.21:443/dns-query?dns=3AQBAAABAAAAAAAAA2RvaANwdWIAAA8AAQ: Get \"https://1.12.12.21:443/dns-query?dns=3AQBAAABAAAAAAAAA2RvaANwdWIAAA8AAQ\": tls: failed to verify certificate: x509: certificate is valid for 120.53.53.53, 1.12.12.12, 119.28.28.87, 119.28.28.89, 119.28.28.91, 119.28.28.93, 119.28.28.95, 119.28.28.97, 119.28.28.99, 119.29.29.87, 119.29.29.89, 119.29.29.91, 119.29.29.93, 119.29.29.95, 119.29.29.97, 119.29.29.99, not 1.12.12.21"
Select Language