Unable to connect to ASP.Net gRPC Server with certificate applied when trying to connect from C# Client

I created a server certificate (localhost.pfx) in Windows 10 and hosted the gRPC server in Kestrel using the se same certificate. This is how I configured the server. The service started and listening on: https://0.0.0.0:50051.

 webBuilder.ConfigureKestrel((context, serverOptions) =>
                    {
                        serverOptions.Listen(IPAddress.Any, 50051, listenOptions =>
                        {
                            listenOptions.Protocols = HttpProtocols.Http2;
                            listenOptions.UseHttps("localhost.pfx", "12345678");
                        });
                    }).UseStartup<Startup>();

Now I tried connecting to the gRPC service using a C# Client (same machine),

var httpHandler = new HttpClientHandler();
            httpHandler.ServerCertificateCustomValidationCallback =
                HttpClientHandler.DangerousAcceptAnyServerCertificateValidator;
            var channel = GrpcChannel.ForAddress("https://localhost:50051",
                new GrpcChannelOptions { HttpHandler = httpHandler });
            dataClient = new Data.DataClient(channel);

I am getting below error,

Grpc.Core.RpcException: Status(StatusCode="Internal", Detail="Error starting gRPC call. HttpRequestException: HTTP/2 requires TLS 1.2 or newer, but 'Tls11' was negotiated.", DebugException="System.Net.Http.HttpRequestException: HTTP/2 requires TLS 1.2 or newer, but 'Tls11' was negotiated.
   at System.Net.Http.HttpConnectionPool.GetHttp2ConnectionAsync(HttpRequestMessage request, CancellationToken cancellationToken)
   at System.Net.Http.HttpConnectionPool.SendWithRetryAsync(HttpRequestMessage request, Boolean doRequestAuth, CancellationToken cancellationToken)
   at System.Net.Http.RedirectHandler.SendAsync(HttpRequestMessage request, CancellationToken cancellationToken)
   at Grpc.Net.Client.Internal.GrpcCall`2.RunCall(HttpRequestMessage request, Nullable`1 timeout)")
   at Grpc.Net.Client.Internal.HttpClientCallInvoker.BlockingUnaryCall[TRequest,TResponse](Method`2 method, String host, CallOptions options, TRequest request)
   at Grpc.Core.Interceptors.InterceptingCallInvoker.<BlockingUnaryCall>b__3_0[TRequest,TResponse](TRequest req, ClientInterceptorContext`2 ctx)
   at Grpc.Core.ClientBase.ClientBaseConfiguration.ClientBaseConfigurationInterceptor.BlockingUnaryCall[TRequest,TResponse](TRequest request, ClientInterceptorContext`2 context, BlockingUnaryCallContinuation`2 continuation)
   at Grpc.Core.Interceptors.InterceptingCallInvoker.BlockingUnaryCall[TRequest,TResponse](Method`2 method, String host, CallOptions options, TRequest request)

How can I make sure client is using TLS 1.2 or how do I specify the root certificates in SslCredentialsOptions?