If I wasn't using CloudFlare for my ssl I would switch over to LetsEncrypt and use their wildcards which are now live!