As jpalko mentioned, it is not recommended to use server certificates on /usr/share/purple/ca-certs/ directory. Instead of, remove your company certificate (sip.company.com) from ~/.purple/certificates/x509/tls_peers/ and run pidgin
Fill in your company settings and connect. When pidgin prompts for server certificate, discard it.

In my understanding, you don't need the server certificate if you have proper ca certs (your servers certificates are created using ca certs [someone correct me if I'm wrong]). Discarding server certificate will cause pidgin to print missing ca certs debug info to output log.

Grep from pidgin output log for missing ca certs
for example.

Now you should see what ca cert(s) you are missing and you can download missing certificate from https://www.digicert.com and save them to /usr/share/purple/ca-certs/ directory.

In my case I did: