`net/http` [Response](https://pkg.go.dev/net/http#Response) has [TLS info](https://pkg.go.dev/crypto/tls#ConnectionState), which points to [x509 cert](https://pkg.go.dev/crypto/x509#Certificate) Open questions: - [ ] Are there security risks with the cert itself? - [ ] would metadata be needed, like timestamps or something? - [ ] would utility funcs be needed? - [ ] Are they large?
