Apache mod_md has TLS-ALPN-01 support. That may be worth investigating.
The router is getting in the way.
See if you can turn of HTTP on the router [switch it to HTTPS on some port NOT 443]
[whatever you do with that,,, write it down - put a paper on the router with that info (if necessary)]