Bengt Richter <[email protected]> writes: > gpg --verify gwl-0.3.0.tar.gz.sig > gpg: assuming signed data in 'gwl-0.3.0.tar.gz' > gpg: Signature made Sat 06 Feb 2021 09:28:59 PM CET > gpg: using RSA key BCA689B636553801C3C62150197A5888235FACAC > gpg: Good signature from "Ricardo Wurmus (Work) > <[email protected]>" [expired] > gpg: aka "rekado <[email protected]>" [expired] > ┌──────────────────────────────────┐ > │ gpg: Note: This key has expired! │ > └──────────────────────────────────┘
You should get a fresh key from keys.openpgp.org Its expiry is regularly extended. Ricardo
