Issued: July 28, 2008
I'm going to replace my current DSA OpenPGP key (KeyID 0xF1E8E6E4 - 1024 bits generated on 2003-03-21) with a new RSA key (KeyID 0xE90C6E2B - 4096 bits generated on 2008-07-19).
The current DSA key is not to be considered compromised. It will remain my official key for regular communications until the new one is well connected (more than 20 certifications and MSD < 4.2). When this condition is met, the new RSA key becomes my official key and a 3-months expiration period is set for the DSA key.
The two keys are cross-certified and this document is signed with both current and new key.
The new key is available on public keyservers. My preferred keyserver is keyserver.linux.it. If you use the
no-honor-keyserver-url GnuPG option (or equivalent option in other OpenPGP software), please make sure to use an up-to-date keyserver. Many keyservers are still using very old and buggy releases of PKS software and does not correctly handle keys with multiple subkeys. The keyservers that can handle multiple subkeys are summarized as subkeys.pgp.net. Consider to set subkeys.pgp.net as your default keyserver and to add the
repair-pks-subkey-bug option to your GnuPG configuration.
pub 1024D/F1E8E6E4 2003-03-21 Key fingerprint = 67FE D145 9428 0231 47A0 23F7 3235 7A45 F1E8 E6E4 uid Fabrizio Tarizzo <fabrizio(%)fabriziotarizzo.org> uid Fabrizio Tarizzo <fabryt(%)yahoo.it> uid Fabrizio Tarizzo <fabrizio(%)linux.it> uid Fabrizio Tarizzo <fabrizio-ml(%)fabriziotarizzo.org>
pub 4096R/E90C6E2B 2008-07-19 Key fingerprint = 478F A2A0 1D61 3A7F 4835 AD6E 8FA2 40F6 E90C 6E2B uid Fabrizio Tarizzo <fabrizio(%)fabriziotarizzo.org> uid Fabrizio Tarizzo <fabrizio(%)linux.it> uid Fabrizio Tarizzo <fabrizio-ml(%)fabriziotarizzo.org>