Yunohost as CA (Certificates Authority)

Hi everyone,
I am setting up a municipal intranet (not connected to the internet) but I would like to continue using self-signed ssl certificates.
The problem is that I can’t go around town telling them, all the time that they have to accept intranet websites as trustworthy.
The ideal would be to install a public certificate on each device that trusts all the websites of this intranet domain.

In other words, yunohost’s self-signed certificate would work as Certificate Authority.

But where am I going to get yunohost’s public certificate?