我正在尝试将 GNU Parted 3.1 升级到 3.2,当我尝试验证密钥时,它显示:
# gpg --verify parted-3.2.tar.xz.sig
gpg: Signature made Mon 28 Jul 2014 11:20:50 PM EDT using RSA key ID 3348AAF0
gpg: Good signature from "Phillip Susi <[email protected]>"
gpg: aka "Phillip Susi <[email protected]>"
gpg: Note: This key has expired!
Primary key fingerprint: 1B49 F933 916A 37A3 F45A 1812 015F 4DD4 A70F B705
Subkey fingerprint: E9CD C6E7 010A 6386 A734 951E 8E45 A022 3348 AAF0
它还没有升级,我仍然在 3.1 ...我不知道哪个密钥已过期!
我更新了提供的密钥GNU
:
gpg --keyserver keys.gnupg.net --recv-keys 8E45A0223348AAF0
但什么都没有改变!
答案1
查看密钥的详细信息(使用gpg --edit-key 0x8E45A0223348AAF0
)显示以下内容:
pub rsa2048/0x015F4DD4A70FB705
created: 2011-12-13 expires: never usage: SCA
trust: unknown validity: unknown
sub rsa2048/0xD1FDDE0451FEF1C9
created: 2011-12-13 expired: 2013-12-13 usage: E
sub rsa2048/0x9AC13A54FA9EEEF9
created: 2011-12-14 expired: 2013-12-13 usage: S
sub rsa2048/0x8E45A0223348AAF0
created: 2013-11-26 expired: 2014-11-26 usage: S
sub rsa2048/0x1B6CD765BDCC7F92
created: 2013-11-26 expired: 2014-11-26 usage: E
sub rsa2048/0xD455AF0D9C8E5E51
created: 2014-10-29 expired: 2015-10-29 usage: S
sub rsa2048/0xBF0C615393A02CCD
created: 2014-10-29 expired: 2015-10-29 usage: E
sub rsa2048/0x107951615CBBA516
created: 2015-10-05 expires: 2016-09-29 usage: S
sub rsa2048/0xEBD87E9510850B71
created: 2015-10-05 expires: 2016-09-29 usage: E
[ unknown] (1). Phillip Susi <[email protected]>
[ unknown] (2) Phillip Susi <[email protected]>
parted-3.2.tar.xz
使用于 2014 年 11 月过期的子密钥进行签名。0x8E45A0223348AAF0
tarball 于 2014 年 7 月发布,因此所使用的子密钥在签名时有效,因此子密钥已过期的事实无需担心。
除非你之前已经固定了钥匙,因为它不是强组的一部分,所以没有什么可说的。