Site URLs showing as insecure/not using HTTPS?

EDIT 1.5hrs later: Fixed it by adding the below code to my app.yml file under the hooks section:

after_ssl:
   # tell letsencrypt what additional certs to get
    - replace:
        filename: "/etc/runit/1.d/letsencrypt"
        from: /--keylength/
        to: "-d mysite.me -d www.mysite.me -d forum.mysite.me --keylength"
    - replace:
        filename: "/etc/runit/1.d/letsencrypt"
        from: /--fullchainpath/
        to: "-d mysite.me -d www.mysite.me -d forum.mysite.me  --fullchainpath"

EDIT2: Ignore all the below, but leaving here for future people.

For full context: Set up Let’s Encrypt with multiple domains / redirects - #136 by 45thj5ej
IGNORE ALL TY

Not sure if this goes here in support, or maybe installation since I’m way passed the installation process, so apologies if this isn’t in right location. So…

I host Discourse on a VPS. Let’s Encrypt is setup. I setup NGINX to connect to my forum URL. I then pointed DNS A record on my domain provider to the Discourse VPS’ IP. Works great. However, when I added CNAME records for www.mysite.me & mysite.me, I get a security error when visiting them…I contacted my domain provider, which has SSL enabled, and they said this:
mmm

I don’t understand why I am getting a security/no HTTPS issue when SSL is enabled on my domain provider (which really wouldn’t even get used anyway since they aren’t hosting my Discourse forums) and Let’s Encrypt is enabled on my Discourse VPS.

My NGINX is setup like:

after_web_config:
    - replace:
        filename: /etc/nginx/nginx.conf
        from: /sendfile.+on;/
        to: |
          server_names_hash_bucket_size 64;
          sendfile on;
    - file:
        path: /etc/nginx/conf.d/forumsredirect1.conf
        contents: |
          server {
            listen 80;
            server_name mysite.me;
            return 301 $scheme://forums.mysite.me/landing$request_uri;
          }
    - file:
        path: /etc/nginx/conf.d/forumsredirect2.conf
        contents: |
          server {
            listen 80;
            server_name www.mysite.me;
            return 301 $scheme://forums.mysite.me/landing$request_uri;
          }          
    - file:
        path: /etc/nginx/conf.d/forumsredirect3.conf
        contents: |
          server {
            listen 80;
            server_name forum.mysite.me;
            return 301 $scheme://forums.mysite.me$request_uri;
          }

My DNS settings are:


For what it’s worth, the direct forums.mysite.me link IS HTTPS/secure.
To make it more weird, https://forum.mysite.me (without the “s”) shows as insecure on Desktop, but https://www.mysite.me doesn’t on Desktop, but DOES on mobile…seems like an issue with CNAME’s…kinda?

When using a SSL-checker on the CNAME’s, I get:
" None of the common names in the certificate match the name that was entered. You may receive an error when accessing this site in a web browser."
What am I doing wrong here?