I am looking at the Unbound log from recent past and I see this error showing for 7 whole days in January.
unbound: [3610:0] error: ssl handshake failed crypto error:0A000086:SSL routines::certificate ver ify failed
unbound: [3610:0] notice: ssl handshake failed 5.9.164.112 port 853
I had the same error with this and other DNS providers.
Look here to read which working and why sometimes you get Problems with other.
I was also seeing the “ssl handshake failed crypto error: certificate verify failed” in my Unbound logs for days. It turned out the issue was due to an expired or untrusted root certificate. I fixed it by updating the system’s CA certificates and making sure DNS-over-TLS was using a valid upstream server with a proper certificate.
I hope it helps!