Support specifying trusted root certificates

[srounce]

Is your feature request related to a problem? Please describe.

• I'm getting MITM'd by my government and want to specify a set of root certificates I trust.
• I want to use a self-signed certificate for a HTTPS source.

Describe the solution you'd like

• I'd like an additional flag to provide users with a way to specify additional root certificates to trust.
• I'd like an additional flag to disable trust of the system root certificates, so only user-specified root certificates will be trusted.

Additional context
Thx to @nitrotm for suggesting this 😄