ZegnatHmm. Looking at that safecurl code they disable cert verification and then mess with host headers. That's not the way to go. Unless you have to support old PHP and curl they should do what I show and pass the resolved IP for the domain to curl and let it handle those details itself.
