When you run juju bootstrap it makes a call to MAAS API and since MAAS presents a self-signed certificate it fails to validate it.
Unfortunately right now it is impossible to pass CA certs to juju CLI, but adding CA to a trusted root should work.