I need to have insights to a scenario, where I have an azure-application-gateway and the HTTPS listener in it carries a certificate for the domain that will get expired soon, if I add the TLS at nginx ingress level in kubernetes then whether the expiry of .pfx certificate at application gateway will mark the domain as insecure or secure ?

In the current scenario, the SSL termination is happening at azure application gateway only, if the above approach has been used/tested by anyone then I can patch additional TLS certificates at ingress rule file