By default, Kloxo-MR use 'old' ssl certificate from lxlabs.com. This ssl already expired long time ago.
In my trick:
1. Create 'letsencrypt' cerficate for domain.com
2. Set 'ssl for Kloxo' for this certificate
3. Set 'Redirect To Domain' in 'Port and Redirect Configure' for domain.com
4. Reboot