OpenSSL Not Using the Validated FIPS Provider
According to openssl.org, there are only two Validated FIPS 140-2 Providers: 3.0.8 & 3.0.9. The current Iron Bank Debian 12.x images are shipping with newer Providers.
I'd recommend building/installing OpenSSL & fips.so from the 3.0.9 source code package, and let apt update take care of bringing the package up to the current 3.0.x version.
From the link above: Please follow the Security Policy instructions to download, build and install a validated OpenSSL FIPS provider. Other OpenSSL Releases MAY use the validated FIPS provider, but MUST NOT build and use their own FIPS provider. For example you can build OpenSSL 3.2 and use the OpenSSL 3.0.8 FIPS provider with it.