Comment by Arnt
LE doesn't need any A or AAAA record. The domain must exist in the DNS and you must be able to create records in the domain.
If you're using internet mail you have a domain, so you can do this. The time for self-signed certificates has passed.
A pinned self cert is still more secure than this because you don’t have to trust any CAs.
> The time for self-signed certificates has passed.
This is bad blanket advice and very much depends on use-case.