As long as the TXT record can be viewed on the external internet.
Yes, just OCSP won't work, which isn't fatal to most browser configurations.
CA wouldn't see anything like URLs, just your certificate domain names and IP addresses of:
- The host requesting issuance or renewal of the certificate,
- One of:
a. Browsers that encounter your certificate, if you do not have OCSP Stapling enabled.
b. The server using the certificate, if OCSP Stapling is enabled.
c. Nobody, if you block internet traffic on your browsers and web server.
Yes, it would definitely achieve that.