The domain content-ci360.sas.com is not able to finish the verification due to CAA check. We are seeing the text below when trying to finish the validation. The TLD sas.com does have a CAA record that has only Digicert listed in it. The link here does mention that the subdomain CAA record takes precedence over the TLD. So, is there a different reason for the CAA check error here?
error: CAA record for content-ci360.sas.com prevents issuance