IKEv2 AUTH test. The certs are valid but both ends use an
explicit ID, not the cert ID. These IDs may only be trusted
if they appear as subjectAltName (SAN) on the certificate.

The leftid/rightid matches the email SAN entries, so the connection
should succeed.