SHA2 Cert is expired for windows installer


I was trying to download and install audacity-win-2.1.3. Looks like the certificate expired on 10/23/2017.


Could you be more specific. Where were you downloading from, and exactly what happened?

I was downloading at this link…

and after the download if I look at the file properties under digital signatures it says the certificate used to sign the file has expired…

Issued to: James Crook

Issued by: Certum Code Signing CA SHA2

Valid from: 10/23/2016 to 10/23/2017

Thanks for the details.
James Crook was the release manager for Audacity 2.1.3, and that’s his digital signature for code signing. Code signing certificates usually last for between 1 and 3 years. I presume that he bought a 1 year certificate. A new version of Audacity is due to be released very soon (it’s a bit overdue), and that will be signed, with a new certificate, by another developer, Paul Licameli, who is the release manager for the upcoming release.

Ok, thanks