Recs.
Updated
Running a small local CA is not difficult, and does not require you trusting a third party at all.
Specs
Pros
Pro The only truly trusted option
The fatal flaw of a Certificate Authority is pretending that they can be trusted. Individually, they can, but as a whole there are always CAs that are controlled by state actors or subverted by bad guys, and by using them you are betting that any abuse is discovered and handled quickly by the community. Running your own CA is placing trust only in yourself - you are not relying on a third party to vouch for a given certificate. That can be invaluable, or worthless, depending on your need.
Cons
Con Not really free
Running your own CA costs you no money, but will cost you a certain amount of time and effort; moreso if you do it right. A good admin who knows what they are doing can set up in an hour or so, but you will also have the ongoing task of adding your CA to the trust store for the browsers you use.