Hello,
I wouldn't recommend setting your client PC to a future date (month in advance) as a valid test. The reason for this is exactly as you described. Based on your error, it sounds like you have the recommended Online Certificate Status Protocol (OCSP) validation enabled in Advanced Java settings. What this means is that Java Webstart on your PC will send a request to the OCSP server for certificate validation. I have seen odd errors when there is a wide range in dates between the the local client and OCSP. This does not mean the certificate is invalid, but rather that the online verification failed due to the date/time. You could try using the older Certificate Revocation List (CRLs) check, however I'm not sure if that would help.
If you've already applied 9.1.3 and have seen no errors, then that's the first step in validating that you have new signed jar files. If you would like to take that a step further, you can investigate the validity of any signed jar by using either of the following commands below. These commands can be run for any jar file, just replace 'AppWorx.jar' with the name of the file.
keytool -printcert -jarfile AppWorx.jar
jarsigner -verify AppWorx.jar
You can add the -verbose -certs flags to jarsigner for even more details.
Note: These tools (keytool, jarsigner) come with JDK, not JRE versions, so you must have that in your path.
You will want to look specifically for the validity lines which indicate a date range.
Sample keytool output:
Signature:
Owner: CN=Automic Software GmbH, OU=Secure Application Development, O=Automic Software GmbH, L=Vienna, ST=Vienna, C=AT
Issuer: CN=thawte SHA256 Code Signing CA, O="thawte, Inc.", C=US
Serial number: 17a64f4c199768ae0da4a1ff279c96d1
Valid from: Tue Mar 21 17:00:00 PDT 2017 until: Sat Jun 08 16:59:59 PDT 2019
Certificate fingerprints:
MD5: 38:91:C7:2B:85:D3:2C:74:2F:79:75:4D:0C:C8:A8:FC
SHA1: 91:E0:E0:92:E8:14:55:07:C9:41:9D:96:E1:C1:C2:66:B0:78:96:8C
SHA256: F3:EB:28:B1:CC:D3:84:87:93:C5:EC:CC:8E:4F:5E:87:C8:44:86:92:A4:CA:62:FB:A4:4B:7B:50:EA:E9:73:49
Signature algorithm name: SHA256withRSA
Version: 3
I hope this helps!
Best Regards,
Kristen