Fix wrong scrape of Root Certificates

[alessio-perugini]

After #212 we can leverage the usage of ConnectionState.VerifiedChains and per docs:

last element is from Config.RootCAs

So the last element of the VerifiedChains will be the actual RootCA!

[codecov-commenter]

Codecov Report

❌ Patch coverage is 66.66667% with 4 lines in your changes missing coverage. Please review.
✅ Project coverage is 13.19%. Comparing base (f07445f) to head (7dc0404).
⚠️ Report is 46 commits behind head on main.

Files with missing lines	Patch %	Lines
certificates/certutils.go	80.00%	1 Missing and 1 partial ⚠️
cli/certificates/flash.go	0.00%	2 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main     #216      +/-   ##
==========================================
+ Coverage   12.10%   13.19%   +1.09%     
==========================================
  Files          20       20              
  Lines        1165     1167       +2     
==========================================
+ Hits          141      154      +13     
+ Misses        971      957      -14     
- Partials       53       56       +3     

Flag	Coverage Δ
unit	13.19% <66.66%> (+1.09%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[cmaglie]

Great catch! I've pushed a suggestion but otherwise, looks good to me.

[per1234]

Thanks Alessio!