Problem with key showing up as expired...

David Shaw dshaw@jabberwocky.com
Sun Aug 24 02:33:02 2003


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Sat, Aug 23, 2003 at 04:17:23PM -0800, David J. Weller-Fahy wrote:
> * David Shaw <dshaw@jabberwocky.com> [2003-08-23 15:06]:
> > On Sat, Aug 23, 2003 at 08:47:21AM -0800, David J. Weller-Fahy wrote:
> > > Understood.  Is it normal for the primary key to have expired, but the
> > > sub key to still be valid?
> >
> > It depends on how the key was set up by the key owner.  It's certainly
> > not unusual.
> 
> Ok... Just seemed a bit odd, because at first (and second) impressions
> it seemed that the key was expired, yet he was using it to sign mail.

It is expired.  Sort of.  You can't have an unexpired subkey with an
expired primary key.  The primary key always takes precedence and
forces the subkey to be expired.

If the signer is still using this key regularly, it is possible that
he at some point extended the expiration date of his primary key, and
you didn't get a copy of that extension.  I suggest asking the key
owner for a copy of his key.

David
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.3.3-cvs (GNU/Linux)
Comment: Key available at http://www.jabberwocky.com/david/keys.asc

iHEEARECADEFAj9ICAMqGGh0dHA6Ly93d3cuamFiYmVyd29ja3kuY29tL2Rhdmlk
L2tleXMuYXNjAAoJEOJmXIdJ4cvJPkEAn2LSDJc4ZLrLauwKMAf89qOm4WP3AKCb
upDjzJRbBrcfkW7C1kFfuXd2EQ==
=OWg/
-----END PGP SIGNATURE-----