I think it will be difficult to handle two different certificates for the same server instance.
Why don’t you use the Let’s Encrypt certificate on your lan too? It only requires are correctly configured local dns service to get a different ip address returned for yor dns name on your lan than over the internet.
The following threads might provide additional information to you how this could be managed: