> Entire point of SSL/TLS is to ensure end to end authenticity and confidentiality.
The point is that country A can strongarm a certificate authority under their domain to sign any certificate they want. So if A wants to MITM google or github they can, and there's no way for you to know which certificate is the real one and which is the fake.
I believe the above poster does not fully understand SSL/TLS at all.