The largest ISP in Kazakhstan believes that it should be able to intercept all TLS traffic on their network: https://bits.blogs.nytimes.com/2015/12/03/kazakhstan-moves-t.... Because there are no technical differences between your TLS interception and what Kazakhtelecom is doing and no legal differences in most non-Western countries, I believe that all software should be changed to make TLS interception as hard as possible.
There is absolutely a significant legal and moral difference between national interceptions like Kazakhstan does and the ones we do protecting children you are guardians of or protecting company secrets and integrity.
In the latter case ideally (and possibly legally required) you'd have acceptance of potential interception a condition of employment.
