Do not use the -k option. With -k , no check is done and no cert store is loaded. If you want to verify a cert you can’t use -k .
Try:
curl -vslI https://acme-staging-v02.api.letsencrypt.org
This is a rather new behavior in curl Version 7.80.0. In previous versions, even with -k , the ca store was loaded. See