The answer to the main question is "dig" but there may be more to this, beyond your direct question.
Dig is a DNS tool found in most *NIX systems. It does not come with Windows. There are online versions of dig.
DIG EXAMPLE:
id 55166
opcode QUERY
rcode NOERROR
flags QR RD RA
;QUESTION
netflix.com. IN ANY
;ANSWER
netflix.com. 59 IN A 34.227.4.120
netflix.com. 59 IN A 35.153.58.124
netflix.com. 59 IN A 34.234.59.120
netflix.com. 59 IN A 34.236.214.109
netflix.com. 59 IN A 34.238.74.93
netflix.com. 59 IN A 34.229.8.114
netflix.com. 59 IN A 54.85.172.124
netflix.com. 59 IN A 52.20.168.249
netflix.com. 14399 IN NS ns-1372.awsdns-43.org.
netflix.com. 14399 IN NS ns-1984.awsdns-56.co.uk.
netflix.com. 14399 IN NS ns-659.awsdns-18.net.
netflix.com. 14399 IN NS ns-81.awsdns-10.com.
netflix.com. 899 IN SOA ns-81.awsdns-10.com. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 1800
netflix.com. 59 IN MX 1 aspmx.l.google.com.
netflix.com. 59 IN MX 10 aspmx2.googlemail.com.
netflix.com. 59 IN MX 10 aspmx3.googlemail.com.
netflix.com. 59 IN MX 5 alt1.aspmx.l.google.com.
netflix.com. 59 IN MX 5 alt2.aspmx.l.google.com.
netflix.com. 299 IN TXT "facebook-domain-verification=k65vedr09b2tp2q144ho1zewp3xsc6"
netflix.com. 299 IN TXT "v=spf1 include:_spf_ipv4.netflix.com include:_spf.google.com include:amazonses.com -all"
netflix.com. 59 IN AAAA 2406:da00:ff00::34ce:17ec
netflix.com. 59 IN AAAA 2406:da00:ff00::23a9:2d21
netflix.com. 59 IN AAAA 2406:da00:ff00::23a9:5340
netflix.com. 59 IN AAAA 2406:da00:ff00::3403:a912
netflix.com. 59 IN AAAA 2406:da00:ff00::34c9:c896
netflix.com. 59 IN AAAA 2406:da00:ff00::3403:2021
netflix.com. 59 IN AAAA 2406:da00:ff00::34ce:7a8a
netflix.com. 59 IN AAAA 2406:da00:ff00::36a4:fed8
netflix.com. 299 IN CAA 0 iodef "mailto:security@netflix.com"
netflix.com. 299 IN CAA 0 issue "digicert.com"
netflix.com. 299 IN CAA 0 issue "symantec.com"
netflix.com. 299 IN CAA 0 issuewild "digicert.com"
netflix.com. 299 IN CAA 0 issuewild "symantec.com"
;AUTHORITY
;ADDITIONAL
NOTE:
Netflix, like many high volume websites, uses a CDN. The actual content may not come from any of the listed addresses. You would also need to dig every CDN they use and those might be scattered across subdomains like "cdn0.netflix.com". It looks like they might be using Amazon Web Services as their actual CDN.
USING THE BROWSER:
To answer your final thought about collecting this information by visiting, yes. You can see what your browser is doing by hitting F12. This works in Chrome and FireFox. Click on the Network tab to see all the traffic from the browser perspective.
NETSTAT:
You can also run netstat to see all established connections. Connect to netflix and run this:
netstat -banf
If it were possible, @Hack's answer is the way to go. But I agree with davidgo that due to the highly dynamic nature way in which sites like NetFlix source their content, it would amount to grasping the wind. – I say Reinstate Monica – 2018-03-02T03:01:19.937
@TwistyImpersonator I have seen, at one point, a Netflix subnet (it may have been more than one) work fine for a couple years for a friend... Likewise, someone who used PIA was able to use several Google subnets to get by their incessant griping about IP change. They did the same with Amazon since there were some quirks there too. The idea is to be able to build these ip or subnet lists readily in order to update the exception list to pass through the local gateway vs the vpn. – ylluminate – 2018-03-02T03:16:51.060