Public CA do not allow internal names and reserved IP address any more
With November 2015 public CAs do not issue new certificates that uses internal names or reserved IP addresses in
subjectAltName or in
commonName. Furthermore such certificates will be revoked on October 1st, 2016.
Internal names are hostnames that do not end with an Top Level Domain ending (.com, .de, …). For example: .local, .internal. Also NetBIOS names without any domain extension are affected.