I use dns01 in my homelab with step-ca. works like a charm, and it's my private certificate authority