Which is extremely bad practice in its own right. Unless you have an offline master (which you should, by the way) there's no justification for a 5+ year expiration. Keys need to be rotated.

PS - A lot of CA software makes doing offline CAs extremely hard. I'm talking about Microsoft's stuff in particular.