Do you actually want HAProxy to deal with SSL and certificates at all? Because HAProxy is capable of inspecting the handshake and you could just use SSL pass-through to forward traffic. Check for example this article - https://scriptthe.net/2015/02/08/pass-through-ssl-with-haproxy/