Code: Select all
Verified ‘openvpn-install-2.4.5-I601.exe’ with ‘openvpn-install-2.4.5-I601.exe.asc’:
The data could not be verified.
Signature created on Thursday, March 01, 2018 3:53:30 AM
With certificate:
F554 A368 7412 CFFE BDEF E0A3 12F5 F7B4 2F2B 01E7
The signature is invalid: Signing certificate is expired
From what I can tell, this is caused by 2/5 of the subkeys (F80E8008F6D9F8D7 & D72AF3448CC2B034) being expired. But if I delete the expired subkeys, Kleopatra gives me this message:
Code: Select all
Verified ‘openvpn-install-2.4.5-I601.exe’ with ‘openvpn-install-2.4.5-I601.exe.asc’:
The data could not be verified.
Signature created on Thursday, March 01, 2018 3:53:30 AM
With unavailable certificate:
ID: 0xD72AF3448CC2B034
You can search the certificate on a keyserver or import it from a file.
I doubt it's needed, but here's the key info:
Code: Select all
pub rsa4096/12F5F7B42F2B01E7
created: 2017-02-09 expires: 2027-02-07 usage: SC
trust: full validity: full
sub rsa4096/F80E8008F6D9F8D7
created: 2017-02-09 expired: 2018-03-06 usage: E
sub rsa4096/D72AF3448CC2B034
created: 2017-02-09 expired: 2018-03-06 usage: S
sub rsa4096/F132B1CBAF131CAE
created: 2018-03-07 expires: 2019-03-07 usage: S
sub rsa4096/0A24DFCF907F94CF
created: 2018-03-07 expires: 2019-03-07 usage: E
[ full ] (1). OpenVPN - Security Mailing List <security@openvpn.net>
As a side note, my 32 character, 194-bit randomly generated password containing letters, numbers, and symbols that I created to register for this site is "weak" according to it. I don't think so. There's clearly something not right with whatever algorithm is used to determine that.