NuGetToolInstaller failed to get Nuget with a certificate error

[dmazuronak]

We have a pipeline and one of the staps is to get a current Nuget version. Agent is running on-premise behind a transparent proxy.

==============================================================================
Task         : NuGet tool installer
Description  : Acquires a specific version of NuGet from the internet or the tools cache and adds it to the PATH. Use this task to change the version of NuGet used in the NuGet tasks.
Version      : 1.221.0
Author       : Microsoft Corporation
Help         : https://docs.microsoft.com/azure/devops/pipelines/tasks/tool/nuget
==============================================================================
##[debug]Resource Utilization warnings is disabled, switch "DISABLE_RESOURCE_UTILIZATION_WARNINGS" variable to "false" if you want to enable it
##[debug]Using node path: D:\Agents\Devops_CI\Agent_3\externals\node16\bin\node.exe
##[debug]agent.TempDirectory=D:\Agents\Devops_CI\Agent_3\_work\_temp
##[debug]loading inputs and endpoints
##[debug]loading ENDPOINT_AUTH_PARAMETER_SYSTEMVSSCONNECTION_ACCESSTOKEN
##[debug]loading ENDPOINT_AUTH_SCHEME_SYSTEMVSSCONNECTION
##[debug]loading ENDPOINT_AUTH_SYSTEMVSSCONNECTION
##[debug]loading INPUT_CHECKLATEST
##[debug]loading INPUT_VERSIONSPEC
##[debug]loaded 5
##[debug]Agent.ProxyUrl=undefined
##[debug]Agent.CAInfo=D:\Agents\myCA.pem
##[debug]Agent.ClientCert=undefined
##[debug]expose agent certificate configuration.
##[debug]Agent.SkipCertValidation=true
##[debug]Agent.ProxyUrl=undefined
##[debug]Agent.CAInfo=D:\Agents\myCA.pem
##[debug]Agent.ClientCert=undefined
##[debug]check path : D:\Agents\Devops_CI\Agent_3\_work\_tasks\NuGetToolInstaller_2c65196a-54fd-4a02-9be8-d9d1837b7c5d\1.221.0\node_modules\azure-pipelines-tool-lib\lib.json
##[debug]adding resource file: D:\Agents\Devops_CI\Agent_3\_work\_tasks\NuGetToolInstaller_2c65196a-54fd-4a02-9be8-d9d1837b7c5d\1.221.0\node_modules\azure-pipelines-tool-lib\lib.json
##[debug]system.culture=en-US
##[debug]check path : D:\Agents\Devops_CI\Agent_3\_work\_tasks\NuGetToolInstaller_2c65196a-54fd-4a02-9be8-d9d1837b7c5d\1.221.0\task.json
##[debug]adding resource file: D:\Agents\Devops_CI\Agent_3\_work\_tasks\NuGetToolInstaller_2c65196a-54fd-4a02-9be8-d9d1837b7c5d\1.221.0\task.json
##[debug]system.culture=en-US
##[debug]versionSpec=6.13.2
##[debug]checkLatest=true
##[debug]isExplicit: 6.13.2
##[debug]explicit? true
##[debug]Exact match expected on version: 6.13.2
##[debug]Trying to get tool from local cache
##[debug]isExplicit: 6.13.2
##[debug]explicit? true
##[debug]Agent.Version=4.261.0
##[debug]Agent.ToolsDirectory=D:\Agents\Devops_CI\Agent_3\_work\_tool
##[debug]checking cache: D:\Agents\Devops_CI\Agent_3\_work\_tool\NuGet\6.13.2\x64
##[debug]not found
##[debug]Agent.Version=4.261.0
##[debug]Agent.ToolsDirectory=D:\Agents\Devops_CI\Agent_3\_work\_tool
##[debug]evaluating 0 versions
##[debug]match not found
##[debug]Querying versions list
##[debug]Agent.ProxyUrl=undefined
##[debug]evaluating 88 versions
##[debug]matched: 6.13.2
##[debug]Found the following version from the list: 6.13.2
##[debug]isExplicit: 6.13.2
##[debug]explicit? true
##[debug]Agent.Version=4.261.0
##[debug]Agent.ToolsDirectory=D:\Agents\Devops_CI\Agent_3\_work\_tool
##[debug]checking cache: D:\Agents\Devops_CI\Agent_3\_work\_tool\NuGet\6.13.2\x64
##[debug]not found
##[debug]Downloading version: 6.13.2
##[debug]
##[debug]Agent.Version=4.261.0
##[debug]Agent.TempDirectory=D:\Agents\Devops_CI\Agent_3\_work\_temp
##[debug]testing directory 'D:\Agents\Devops_CI\Agent_3\_work\_temp'
Downloading: https://dist.nuget.org/win-x86-commandline/v6.13.2/nuget.exe
##[debug]destination D:\Agents\Devops_CI\Agent_3\_work\_temp\be2af292-1bdc-4a8b-968f-f505d37bdd5e
##[debug]downloading
ERR:unable to get local issuer certificate
##[debug]task result: Failed

The user is able to download https://dist.nuget.org/win-x86-commandline/v6.13.2/nuget.exe without issues.

The question now is: Which certificate caused the problems? Is there any way to obtain a more informative error message?