Having looked at several different public DNS resolvers I can say that those who have DNS Over TLS running correctly are the large operations (money to hire nerds with OCD) and the one person outfits (has nerd OCD). There’s a lot of poorly configured junk out there from those providers in between.
