Hi, I have my development team asking if the SSL cert has a wildcard as they want to know if a subdomain will be protected by the SSL cert. It is urgent. Can someone please help me as it is holding up development?
My domain is:thestartup.com
My hosting provider, if applicable, is: AWS
I can login to a root shell on my machine (yes or no, or I don't know): Don't know
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): GoDaddy
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): Don't know
Certificates can be valid for multiple domain names. They contain an extension called "Subject Alternative Name" that contains all names the certificate is valid for.
The certificate currently served on the domain thestartup.com is this one, and as per that extension the certificate is valid for the following two names:
Wildcard certificates are certificates containing a * character, which serves as some kind of placeholder and means that the certificate is valid for any subdomain on the same level. As seen above, the certificate currently served on your apex domain does not contain such a wildcard.
Based on a CT search - crt.sh | thestartup.com - you have more than this certificate. Specifically there are also a number of certificates issued for subdomains of your domain.
If you want to secure an additional domain, the easiest way would be to simply get a new certificate valid for that new subdomain. If you really want or need a wildcard, then you will need to issue one; Let's Encrypt does offer wildcard certificates, but they must be validated via the DNS-01 challenge. This challenge may be harder than the usual default challenge (HTTP-01), but this really depends on your setup.