There are some ideas on how to address certificate issues
and those vary from self-certifying the certificates; and a
lesson may be found among many pages, including history
from 'Let's Encrypt'. As this is morphing, the trail isn't clear.
(from 2022 example)
A New Life for Certificate Revocation Lists - Let's Encrypt
https://letsencrypt.org/2022/09/07/new-life-for-crls.html
Some pages from there, say from 2021 and about older fixes
might be helpful; a few of those with 'period correct' answers
on how-to handle Specific issues of Expiry, had been posted
here in ASC. While many were redacted or removed by hosts.
Create self-signed certificates in Keychain Access on Mac - Apple Support
"You can create a self-signed certificate using the Certificate Assistant in Keychain Access.
Self-signed certificates don’t provide the guarantees of a certificate signed by a certificate
authority but can be useful if the person signing it is trusted."
Keychain Access User Guide for Mac (Table of Contents) - Apple Support
While I've several bookmarks, at various levels; to sort them
now, without an index or table of contents? is rough going.
A search with duckduckgo of Let's Encrypt should bring up a
dog-pile of bits and pieces; +others who've fought the battle
may cite some Apple tech articles or examples from online.
Often within macOS it can help find & fix newer issues with
these Certificates; or might be a place to start.
.."Let's Encrypt" is a free, automated, and open certificate authority..
brought to you by the nonprofit Internet Security Research Group (ISRG).
[Sorry I'm not significantly self-tutored or fluent in these matters.]
