#12 gpg key signing package or source is expired

[Anonymous]

Hello, here's Bruno openSUSE maintainer of rpmrebuild package.

I was in the run of updating rpmrebuild package here at openSUSE,
but I realized that the gpg key serving to sign package is expired.

So gpg checking source authenticity is exiting with error, and as such
I can't submit the new sources to our build system :-(

Would you mind to check ?

[eric gerbier]

Hello
I now have a gpg key and sign with subkeys
The subkey validity is short (one year) and changed every year :

$ gpg --list-key F80D3B85029F2DACC6A8469A364644463D1079A1
pub rsa8192/0x364644463D1079A1 2022-07-22 [C] [expire : 2029-07-21]
F80D3B85029F2DACC6A8469A364644463D1079A1
uid [ ultime ] Eric Gerbier eric.gerbier@tutanota.com
uid [ ultime ] Eric Gerbier gerbier@users.sourceforge.net
sub rsa4096/0xBE1EE0FE980514B7 2022-07-22 [S] [expire : 2025-07-22]
sub rsa4096/0xFAA7EA370084E0DB 2022-07-22 [E] [expire : 2025-07-22]
sub rsa4096/0xD1697C7C09BAC69B 2022-07-22 [A] [expire : 2025-07-22]

the gpg key is published on gpg server as keys.openpgp.org or pgp.mit.edu