Please don't hit me if this is a stupid question :-) but
The cert that was used to sign your server's cert is not contained in the cacert file that you specified for your client. Try putting the correct certs in place. Since your server cert is self-signed that means your server cert must be present in the cacert file. Note that using self-signed certs for individual servers is extremely unwise.
Thanks
Bill Dossett