Is it possible to handle https connections on the ESP32 without knowing in advance the root CA for the service one is trying to connect to?

For example, on the ESP8266 this is possible using CertStoreBearSSL (see https://github.com/esp8266/Arduino/tree/master/libraries/ESP8266WiFi).

This is particularly important for https services which redirect from one domain to another where one would need to know all the certificates in advance on the ESP32 whereas on the ESP8266 one needs only to add certs.ar to SPIFFS and it is possible to connect to almost any https service.

I may have missed a way that this is already possible but I haven't been able to find one. How complex would it be to port the CertStoreBearSSL functionality to the ESP32?