The error you currently have seems super standard, eg Discuss link
Once you get past that, your cacert
idea seems like it should work, but of course certificate validation can be slightly tricky. Probably the logstash forum is best placed to debug the specific errors that logstash is spitting out