This triggered a memory. When I went to university one of my flatmates bought a fancy frisbee that you could throw super far, so as a form of exercise we used to walk to a large park nearby to play.
Come spring when the weather started getting better, the park started getting busier. On one occasion it was full of kids (like 5-6 year olds?) and parents who ignored them. We tried to stay away but the kids kept getting lured by the frisbee that flies far. At some point one of my flatmates tried to hide the frisbee under his shirt to get them to leave, but one of the kids saw him do it and ran to him trying to grab it from under his shirt and yeah… as soon as my flatmate realised the kid was going to try grabbing at him at the bottom of his shirt he immediately threw the frisbee on the ground and held up his hands as if he was at gunpoint and walked away.
It was pretty funny from the outside but damn… do I hate parents who let their kids harass other people. It was a much better experience when a bad dog owner was there at a different occasion and we had a dog chasing us around for 20 mins…
Would you accept a certificate issued by AWS (Amazon)? Or GCP (Google)? Or azure (Microsoft)? Do you visit websites behind cloudflare with CF issued certs? Because all 4 of those certificates are free. There is no identity validation for signing up for any of them really past having access to some payment form (and I don’t even think all of them do even that). And you could argue between those 4 companies it’s about 80-90% of the traffic on the internet these days.
Paid vs free is not a reliable comparison for trust. If anything, non-automated processes where a random engineer just gets the new cert and then hopefully remembers to delete it has a number of risk factors that doesn’t exist with LE (or other ACME supporting providers).