currently its only possible to add certificate fingerprints.
with letsencrypt this is quite cumbersome, and yes, one would argue just get your shit right
but still this is usefull in cornercases :/
Patches welcome. This could be done in a new module.
mod_s2s_auth_fingerprint was meant as a transition mechanism for when self-signed certificates were more common.