In the current state of things, a customer has no way to know whether their origin server certificate will get a "pass" when setting the "Origin server verification" to "Use default trusted CA list".

Although publishing this list in a formatted page would not be useful and would rather be a pain for customers to use to verify the above, just publishing a file containing all the CA certificates we use (on the TLS reference page, or directly in the UI, or both) would help them verify programatically.

That would help reduce the amount of customers getting only HTTP 503 errors as soon as they switch to Volterra.