You shouldn’t use www on a subdomain. It should only be sub.example.com
- That’s not something I see mainstream sites do.
- Cloudflare’s TLS certificates only cover example.com and *.example.com (not ..example.com)
So…can your browser reach sub.example.com?