Apparently, this affects Edge but not Firefox or Chrome.
As usual, thanks Microsoft and Cloudflare. /s
The certificates, issued in May, can be used to decrypt domain lookup queries encrypted through DNS over HTTPS or DNS over TLS. Both protocols provide end-to-end encryption when end-user devices seek the IP address of a particular domain they want to access.
For the ones who don’t read past the post or the headline:
[…] They were issued by Fina RDC 2020, a certificate authority that’s subordinate to the root certificate holder Fina Root CA. The Fina Root CA, in turn, is trusted by the Microsoft Root Certificate Program, which governs which certificates are trusted by the Windows operating system.
It seems they thought 1.1.1.1 is good enough for test data: