I came across a packaged application with an RSA certificate claiming to have valid signature for over 2000 years..
i thought maybe there had been an error. But i quickly discovered a second package for overlays, but this package uses the same API as the first.
Doing some research on the matter leads me to believe the dates dont matter and only that the certificates match as they should for whatever pki it's matched to. And that no process checks dates, only the SHA..
But 2XXX some years seems unprecedented.. If anyone cares to check their own, look for the Health Connect app... When i realized what that was, my heart sank. Now i dont know what to do.
Ps sorry i dont know where to label this post for. Even though i think it's directly on topic, i'll put it in Off Topic because i trust someone would fix it otherwise.