We have a cert for our site https://www.blocherconsulting.com
If you browse there, sometimes you get the *.azurewebsites.net built-in certificate, like this:
However, multiple sites that check certificate validity return the correct result: https://www.sslshopper.com/ssl-checker.html#hostname=blocherconsulting.com
We've tried various things like flushing the DNS of the client machine, trying it on domain machines, non-domain machines, etc. But a lot of our clients also report that they see this issue.
Why would Azure serve up the default certificate when the certificate is configured within App Service and verified internally and externally?