yes electrum servers use self-signed certs. these are the servers that give electrum blockchain data not the website where you download electrum from.
btw you did download electrum from electrum.org right? if you did that then it's ok. i ask because there are malware copies floating around so you have to make sure you download it from the official site.
This is great advice, i only wanted to add that a second option is to check the signature.
All releases of electrum should be signed by ThomasV
https://pgp.mit.edu/pks/lookup?op=vindex&search=0x2BD5824B7F9470E6If the signature checks out, it doesn't really matter where you downloaded the release
(altough it might be a good idear to download from electrum.org, so you're sure you have the lastest stable release)
Edit
Howto (linux) for the 2.8.1-portable binary for windows:
wget https://download.electrum.org/2.8.1/electrum-2.8.1-portable.exe
wget https://download.electrum.org/2.8.1/electrum-2.8.1-portable.exe.asc
gpg --keyserver pgp.mit.edu --recv-keys 0x2BD5824B7F9470E6
gpg --verify electrum-2.8.1-portable.exe.asc
The output contained this line:
Good signature from "Thomas Voegtlin (
https://electrum.org) <
thomasv@electrum.org>"
So, it doesn't matter where i downloaded it, it was signed by ThomasV, thus it was real
