Hello. sorry this took up a bunch of time.
Try 10.150.0.0/15 for the zerotier managed route. Something somewhere in the chain is particular about that.
# ipcalc 10.151.0.0/15 ⏎ release
Address: 10.151.0.0 00001010.1001011 1.00000000.00000000
Netmask: 255.254.0.0 = 15 11111111.1111111 0.00000000.00000000
Wildcard: 0.1.255.255 00000000.0000000 1.11111111.11111111
=>
Network: 10.150.0.0/15 00001010.1001011 0.00000000.00000000
HostMin: 10.150.0.1 00001010.1001011 0.00000000.00000001
HostMax: 10.151.255.254 00001010.1001011 1.11111111.11111110
Broadcast: 10.151.255.255 00001010.1001011 1.11111111.11111111
Hosts/Net: 131070 Class A, Private Internet