i think it was because the rfc that says which attributes of a cert must be checked by the browser was deprecated 15 years ago and everybody ignored the update (that says that the san attribute must be present)
i think it was because the rfc that says which attributes of a cert must be checked by the browser was deprecated 15 years ago and everybody ignored the update (that says that the san attribute must be present)