My AWS Notebook
Can be done (need to check Security Policy).
See also What’s New 2017-09.
Q: Can I configure my REST APIs in API Gateway to use TLS 1.1 or higher?
Not managed in API Gateway. You can set up a CloudFront distribution with custom SSL certificate in your account and use it with Regional APIs in API Gateway. You can then configure the Security Policy for the CloudFront distribution with TLS 1.1 or higher based on your security and compliance requirements.
Updated:
See Choose a Minimum TLS Version for a Custom Domain in API Gateway.
AWS recommends “We recommend the ELBSecurityPolicy-2016-08 policy for general use”.
See Create an HTTPS Listener for Your Application Load Balancer - Security Policies.