Who benefits from this? Even though Let’s Encrypt stresses that most site operators will do fine sticking with ordinary domain certificates, there are still scenarios where a numeric identifier is the only practical choice:
Infrastructure services such as DNS-over-HTTPS (DoH) – where clients may pin a literal IP address for performance or censorship-evasion reasons.
IoT and home-lab devices – think network-attached storage boxes, for example, living behind static WAN addresses.
Ephemeral cloud workloads – short-lived back-end servers that spin up with public IPs faster than DNS records can propagate.


But
home.arpa’s top-level domain is.arpa?I’m not sure I follow the question. All of the TLD
*.arpais not reserved for private use, only*.home.arpa. So all your internal services are required to be a sub domain.Sounds like you followed.
Now that I’m moving goalposts, why not use
.home.arpasubdomains?Oops. :)