[RPKI] certificate has expired
David Njuki
njukey at gmail.com
Wed Apr 23 07:40:59 UTC 2025
Hi Jon,
The warning has nothing to do with your setup but rather the signed object
that is being validated by routinator.
It means that the ROA validity period has expired.
If you check now, you'll notice that the object is no longer available in
the repository.
We also do get a lot of similar warnings on our setup
https://routinator.afrinic.net/log
Regards,
David
On Tue, 22 Apr 2025 at 23:32, Jon Schwendemann via RPKI <
rpki at lists.nlnetlabs.nl> wrote:
> Routinator, latest rhel version, running on rhel 8.10.
>
> I’ve been trying to figure out my reverse proxy issue, between routinator
> and apache.
>
> During this, I received I don’t know how many errors like this:
>
> “[WARN] rsync://
> rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/E8F4DC6A19E811F0BDC86BF76DB8BCC6.roa:
> certificate has expired.”
>
>
>
> I just tried routinator validate, and I get these errors, also.
>
> What certificate is expired? How would I find/replace it? Or is it a
> matter of clearing rsync, in routinator?
>
>
>
> Jon Schwendemann
>
> Redhat Administrator
>
> Concordia College
>
> 218-299-4716 schwende at cord.edu
>
>
> --
> RPKI mailing list
> RPKI at lists.nlnetlabs.nl
> https://lists.nlnetlabs.nl/mailman/listinfo/rpki
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.nlnetlabs.nl/pipermail/rpki/attachments/20250423/b956c7c1/attachment-0001.htm>
More information about the RPKI
mailing list