@FourOh-LLC @matrix Sorry, but I'd just like to interject for a moment.

Secure Sockets Layer is deprecated and insecure and little better than null encryption.

You want at least version 1.2 of Transport Layer Security (TLS), or better version 1.3.

CAcert is another gratis option, but that only works for those who have imported CAcerts root certificate.

You really don't need to rely on Certificate Authorities (it's actually a bad idea, as all of them glow as bright as the sun), you can just sign your own root authority, the problem then is convincing people to install your non-glowing root authority alongside all the glowing ones they have already installed.