Unable to create TLS cert with IngressRouteTCP

I am trying to create an ingress TCP route with traefik for my smtp server. I have the following Certificate:

---
apiVersion: cert-manager.io/v1
kind: Certificate

metadata:
  name: mail-tls-certificate-rsa
  namespace: mailserver

spec:
  secretName: mail-tls-certificate-rsa
  dnsNames:
    - foo.com
  issuerRef:
    name: letsencrypt-production
    kind: ClusterIssuer
  isCA: false
  usages:
    - cert sign
    - crl sign
    - server auth
    - client auth

And I have used the name of that secret, in tls.secretName of the IngressRouteTCP

---
apiVersion: traefik.containo.us/v1alpha1
kind: IngressRouteTCP
metadata:
  name: mailserver-smtps-ingress
  namespace: mailserver
  annotations:
    argocd.argoproj.io/hook: PostSync
spec:
  entryPoints:
    - smtps
  routes:
    - match: HostSNI(`*`)
      services:
        - name: mailserver-service
          port: 4650
  tls:
    secretName: mail-tls-certificate-rsa

But even if I have done that, it is still returning the self-signed cert from Traefik. How can I set up my TLS correctly?

It would be great if someone can help out with this issue. Still I am only able to return a default traefik certificate

Hello @winston0410 and thanks for your interest in Traefik,

Are you trying to make Traefik forward TCP requests to an SMTP server over TLS?

If so, this is something we are not supporting at the moment, see SMTP-STARTTLS proxying with STARTTLS handled by Traefik · Issue #7366 · traefik/traefik · GitHub

Hope this helps!