It's a bit rubbish that the browser lies to the user, but I guess it doesn't know any better. 
The user has an expectation of end to end encryption with HTTPS, but it's not happening in this case.  
Maybe we should fix this all by overlaying the network with something like single hop tor/i2p hidden services.  
We lose anonymity, but gain performance, and self authenticating endpoints.