using tar or using ca-root package and linking pfsense ca created I always get the same error.
using only cert check, all https that is not on blacklists goes with no erros
using ssl mitm every https that is not on whitelist fails with
The only thing that changed is that the error now says:*DENIED* Failed to negotiate ssl connection to client CONNECT 0 0 SSL Site 1 200
I did removed all certs, including ca-root package and folders.
I'll keep trying to identify how to reach each error.