Thank you so much for your help. It ended up being the CRM for sure. They were very resistant to the possibility until I showed them this:
https://www.ssl.com/blogs/addtrust-external-ca-root-expired-may-30-2020/
They updated their side and everything turned out okay.
Thanks for being so willing to help out.
