SWG Deep Inspection with subordinate CA doesn't include the certificate chaining information when re-signing traffic for client browsers