Expired keys

David Shaw dshaw at jabberwocky.com
Thu Nov 13 16:29:14 CET 2003

On Thu, Nov 13, 2003 at 09:02:41PM +0000, Neil Williams wrote:

> > While the key may still be valid, the expired signature is not the
> > reason.  An expired signature is not counted in the web of trust.
> > Check if there is another signature on the key in question that is
> (Been away, hence the time-lag).
> Yes, there is just one. (An old sig that didn't use the 1,2 or 3 trust 
> indication - is that why it's got no expiry?) It's the only sig, apart from 
> self-sigs, that is still unlimited expiry.

No.  Expiry is unrelated to the trust indication.

> > Sure, just try and sign it again.  You should get a:
> >   Your current signature on "(whoever)" has expired.
> >   Do you want to issue a new signature to replace the expired one? (y/N)
> No, I'm still getting:
> already signed by key 28BCB3E3
> Nothing to sign with key 28BCB3E3

Upgrade ;)  That feature was added in 1.2.2.

> What will happen if I send this key to a keyserver?

It should take it.  You'll probably end up with both signatures being

> What will happen if I refresh this key from a keyserver?

You'll probably end up with both signatures being present.  Of course,
only the unexpired one will count.


More information about the Gnupg-users mailing list