Hi guys,
I'm hitting an error with the current Aliro 1.0.0 lib.
When a credential is signed today but its validFrom is in the future (e.g. signed=2026-06-17, validFrom=2026-06-29) and the card is tapped within the validity window, the lib rejects it:
ALIRO: Signed timestamp is before validFrom timestamp
ALIRO: Failed to verify signed items
The lib appears to require signed >= validFrom. But ISO/IEC 18013-5 ValidityInfo states "validFrom shall be equal or later than the signed element", so signed < validFrom is the normal case for pre-provisioned credentials.
A few questions:
Is rejecting signed < validFrom intentional? If so, which spec or profile requires it?
If not, can the check be updated to allow a future-dated validFrom?
Thanks,
Hoai Nguyen