As defined by IETF https://datatracker.ietf.org/doc/rfc6844/
See also: https://tools.ietf.org/id/draft-hallambaker-donotissue-02.html
CaBForum baseline: https://cabforum.org/wp-content/uploads/CA-Browser-Forum-BR-1.4.5.pdf (section 184.108.40.206)
This will require an outgoing connection to unknown and potentially malicious systems, so we need to take security into account.
Standard Java does not support other lookups than standard DNS->IP queries (record types A and AAAA). But there is a pure Java library for doing DNS lookups, that we could use: http://www.dnsjava.org/
Implement this as a freestanding tool and CLI command to begin with.