Blog

Qualified digital signature not recognized. Missing Root CA certificate

Upgrading to Ubuntu 20.04 caused a "1 signature is unknown!" error due to OpenSSL 1.1.1f. Building OpenSSL 1.1.1g from source resolved it, but some certificate issues remain.

15 Jun
,
2020
3 Apr
,
2025
# min read
Digital signature process with eID Easy platform interface on a computer screen

After upgrading to new computer with Ubuntu 20.04 I managed to see such error "1 signature is unknown!".

SignatureXAdES_LTA.cpp:198 Signature validation
SignatureXAdES_B.cpp:738 Unable to verify signing certificate
X509CertStore.cpp:351 unable to get local issuer certificate
:0
OCSP.cpp:308 Certificate status: unknown

Issue happens because openssl version 1.1.1f that is included in Ubuntu 20.04 LTS https://github.com/open-eid/libdigidocpp/issues/341

Building openssl 1.1.1g from source helped to fix that issue. However during writing this post there are still some certificate validation issues open with this version.

One guide to help you build openssl from source can be found from here https://www.howtoforge.com/tutorial/how-to-install-openssl-from-source-on-linux/

More latest articles

See all news
See all news
Businesswoman using digital signature on tablet in modern office setting
31 Jan
,
2025
3 Apr
,
2025
eSignatures

Legal Clarity for eSignatures: Insights from an ECJ Ruling

Read article
Diia.Signature digital service by eID Easy, showcasing secure electronic signatures for document signing and user authentication.
28 Jan
,
2025
3 Apr
,
2025
eSignatures
Announcements

eID Easy First to Bring Ukraine’s Diia.Signature to the EU for Legally Valid Signing

Read article