To end this thread: the issue was finally solved after some mail exchange with more code and packet captures.
The underlying problem was a failure to verify the hostname of the URL against the SSL certificate, because the URL contained only the IP address but the certificate did not contain this IP address. It was solved by explicitly setting the expected name with SSL_verifycn_name in ssl_opts for LWP::UserAgent.