I agree that the CA system is broken and that the setup is in some cases needlessly complex. I think that more people who runs sites and going through setting up HTTPS will mean more people having exposure to if, and more change over the long term. I don't think opting out is an answer. I guess I am saying that first we collectively need to understand the mess before we can clean it up.