Additional info:
From the attached full log, you will see that around line 29311 Katello is generating a certificate that is NOT my custom CA certificate. As @ekohl has alluded to earlier, this may be what is causing error (?)
Full log (though beginning appears to be lost):
katello.log (2.8 MB)