profilephoto
f.zz.de
Blog About Me Impressum
posts /

Key transition

Posted Thu 04 Sep 2014 09:38:39 AM CEST
in 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1,SHA512


I am transitioning GPG keys from my old 1024-bit DSA and RSA Keys.

Since 2010-01-01 i am only issuing new signatures with the
new 4096 bit RSA key CB09F22F except for Debian work.

This transition document is signed with the 2 old and the new key to
validate the transition.

If you got this statement via mail there is a good chance you signed my old
keys. If you have signed my old key, I would appreciate signatures on my new
key as well, provided that your signing policy permits that without
re-authenticating me.

The old keys, which I am transitioning away from, are:

pub   1024D/75BE8097 1999-08-15
      Key fingerprint = 8607 9AD8 2274 25A1 1AF9  B4D1 51AC F6AD 75BE 8097
      uid                  Florian Lohoff <flo@rfc822.org>
      uid                  Florian Lohoff <flo@mini.gt.owl.de>
      uid                  Florian Lohoff <flo@owl.de>
sub   1024g/6FE3879F 1999-08-15

pub   1024R/C158CCED 1997-10-03
      Key fingerprint = 9B CF A5 8E 58 52 5C E3  38 65 53 CC 30 87 FC F8
uid                  Florian Lohoff <flo@rfc822.org>
uid                  Florian Lohoff <flo@owl.de>
uid                  Florian Lohoff <flo@mini.gt.owl.de>

The new key, to which I am transitioning, is:

pub   4096R/CB09F22F 2010-01-01
      Key fingerprint = 75BF 68EE 879B 5F6A 5AA5  0FCA 90DD 4120 CB09 F22F
uid                  Florian Lohoff <f@zz.de>
sub   4096R/761E0A69 2010-01-01

To fetch the full new key from a public key server using GnuPG, run:

  gpg --keyserver keys.gnupg.net --recv-key CB09F22F

If you have already validated my old key, you can then validate that
the new key is signed by my old key:

  gpg --check-sigs CB09F22F

If you then want to sign my new key, a simple and safe way to do that
is by using caff (shipped in Debian as part of the "signing-party"
package) as follows:

  caff CB09F22F

Please contact me via e-mail at <f@zz.de> if you have any questions
about this document or this transition.

This statement can also be found at https://pax.zz.de/f/transition.txt

    Florian Lohoff
    f@zz.de alias flo@rfc822.org alias flo@debian.org
    2014-09-04


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)

iD8DBQFUCBahUaz2rXW+gJcRAt/jAJ9IB/iMh/kXJ4do9oxIXvyS8NHzpwCcDAWU
yUxcukXdOqzFFL8+o0UnJHGJAJUDBQFUCBahWM+Py8FYzO0BCoVVA/4rBt+Hrzie
3LfsSBgQa7AYQ++BV76BmxGvL7LxsY7J0bBXApju1escE8FIaxngFHDwfLp5OeSu
K4DthHUltxDRuAPjDwPsxBMJTOTiJ3iToySr9G4DmwxZFCW6I7i9W+L61WMowATr
O97Uc1TQTnGPVTucEZy4fL5f0IAHhKKxMokCFQMFAVQIFqGQ3UEgywnyLwEKhVUP
/iSpV5YiNc+7EJ58QpIQ2KX8TId8wAV8pQEI4C7zfwXkLn0oCdPgxGjtYbAGR/ZO
IV9MoweMEUiBF+NJXaBfvX6/zXW6QvIz75WFpFx9JeR1h4CTRHNCX7+k9SLkgOfi
A5nuUTbe4c7j1qQ5V5o/aKCNSVxUKK5hc6YBqIkQZVTDy1zqyscS/cGSUB4z7/ZH
a2uzfsi8/WnIsMVOr4a5yLS5hv9AqvIxTg0eRWBKmvN3p/yYwxmMZp/QrFw8ayVV
671H8Kt7pWsY5Sb9pQc3yU4hzzpjUptBWHZxGPWH5cuad8WdJE4n2awlUadl4Ihj
sZEB/pzC7wQJ9fqqP7Q9hkEybhB40XjRplq+WSxYpN3K0j7twjEb50JrYZFaHFHp
GKLV+j7C7wBBcv1Un1Cyq0Vj4TKPmPQmW3fqqDJOWIMatYJ1He+Gvz0ukNB6d+fC
jRHYkCcS3A8trLkK5BTxianTnIJluOFzC1PkFUsjs4VFuk0s/nyBnqJeWMSl2/JQ
4OWEqTMP8eJE5DNACo/guWt7H5VClUth1y1a95tNPr281Ga/lyal1T7tozXmjtZa
kH6B3CM/i+0f63b8KeCct53vxwdN8DctCHdoiiweRkndRA7Bk9Ae+WKV5pUBZTiu
O+Okuq4mNsuJWrUl3Qn7tJna3Foeg/2vbyMitwvy20X+
=TsHx
-----END PGP SIGNATURE-----
Contact