Hi Vinod,
I implemented this at several applications.
Best you can do is create your own Certificate Authority. If you use a known Certificate Authority, any certificate signed there can connect to your REST function.
After creating the Authority, you can use this certificate in the restriction profile.
Use this authority to self sign your CSR's. You can use that certificate to make connection to the REST functionality.
Have a look at this:
https://deliciousbrains.com/ssl-certificate-authority-for-local-https-development/