TIL about Certificate Transparency logs, basically every Let's Encrypt certificate you got shows up there as public information, so your subdomains are also public information.

https://crt.sh/ is a good tool to check that yourself.