I know that (and openssl returns also error when not pointed to /etc/certs/common-ca). But why on earth does cmcli return an error even when pointed explicitly to common-ca??? That made me thinking of hard-coded certs in GPS blob. And why supl.nokia.com returns result for N900 when using proxy?