Wtf that makes no sense at all … a CA pointing to a full chain in /etc/ssl … itself pointing to a crt.pem in /etc/yunohost/certs ? What the heck …
Idk let’s just rm /etc/yunohost/certs/yunohost.org/ca.pem
And then maybe yunohost tools regen-conf ssl should recreate a proper ca.pem