sure, but I wouldn't it be more likely to get your own signing process wrong then to use a cert that was later compromised?