Replacing with a blockchain is a horrible idea. If the certificate gets compromised, how do you handle revoking the old certificate? How do you handle someone having a domain name like paypa1.com? There are a lot of cases where having a human in the loop is a good thing for overall security. Now, this isn't to say that the current system isn't broken as hell, but a bitcoin type solution is definitely not the way to do it.