By default Network Validation does not work for wildcard certificates. This article describes how we can make the validation work.
By default Network Validation on certificate object uses the common name of the certificate to resolve the target IP address. Wildcard names can’t be resolved with DNS so validation fails with error:
Failure, ScanHostResolutionFailed:The requested name is valid, but no data of the requested type was found
We can specify the host address in the Validation settings that we want Network Validation to go to instead of using the Common Name of the certificate: