[Nextgrid]

It still means that only whoever has the private key corresponding to that certificate can intercept and decrypt the traffic, so a third-party like Starlink should not be able to.

[steego]

Preventing third parties from intercepting encrypted traffic isn’t the point of deep packet inspection (DPI).

Organizations implement DPI to PREVENT outbound encrypted connections to unknown external servers to keep internal data LEAVING the organization.

In other words, the point of DPI is to prevent unauthorized encrypted connections to unknown servers.