Never click "Yes" to this error on a public network. Always verify the "Issued by" field. When in doubt, call your IT helpdesk and ask, "Did you guys recently roll out a new internal root CA?"
Outlook (and Windows) maintains a list of "Trusted Root Certification Authorities." These are global companies like DigiCert, GlobalSign, or Let's Encrypt. When a certificate is presented, Outlook checks: Is the issuer on my trusted list? Never click "Yes" to this error on a public network
Outlook tries to connect to mail.company.com , but the server’s certificate is actually for exchange01.internal.local . The domain names don’t match. Even if the certificate is from VeriSign, the mismatch triggers the same error because the "company" (the subject of the cert) doesn't align with the URL. call your IT helpdesk and ask