-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1,SHA512 I am transitioning to a new OpenPGP key. The old key uses a 1024-bit DSA master signing key, which is out-of-date and widely considered to be inadequate by the security community. The new key uses 4096-bit RSA, which is expected to be more secure. My new key is signed by my old key. Additionally, this transition document is signed with both keys to validate the transition. My old key will be revoked immediately following the signing of this message. Please ensure all private correspondence addressed to me is encrypted to my new key. Going forward, I will be making all personal signatures with the new key. The old key, from which I am transitioning, is: pub 1024D/0x80555CED7394F948 2007-08-16 uid Jean-Paul Guy Larocque uid [ revoked] Jean-Paul Guy Larocque uid Jean-Paul Guy Larocque sub 4096g/0xBD3F311E2AD0AE7C 2007-08-16 The new key, to which I am transitioning, is: pub 4096R/0xE979FFBEA002D20F 2016-08-16 [expires: 2017-01-31] Key fingerprint = A87B 1C5A 28C4 03BD 54BA CE8E E979 FFBE A002 D20F uid Jean-Paul Guy Larocque sub 4096R/0x87ED416214BBD2BB 2016-08-16 [expires: 2017-01-31] To fetch the full new key from a public key server using GnuPG, run: gpg --keyserver keys.gnupg.net --recv-key 'A87B 1C5A 28C4 03BD 54BA CE8E E979 FFBE A002 D20F' Then be sure that the correct key was fetched: gpg --list-key 'A87B 1C5A 28C4 03BD 54BA CE8E E979 FFBE A002 D20F' If you have already validated my old key, you can then validate that the new key is signed by my old key: gpg --check-sigs 'A87B 1C5A 28C4 03BD 54BA CE8E E979 FFBE A002 D20F' Please contact me if you have any questions about this document or this transition. (And thank you to Stefano Zacchiroli, who wrote a similar statement on which this document is based.) - -- Jean-Paul Larocque -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAlezIUwACgkQgFVc7XOU+UhK5ACdF7KGUsSWiRdQYhDsbBS+EMPE TRYAnR2Ni9I+Wtc/Z2EW8euDoiCruKTuiQIcBAEBCgAGBQJXsyFMAAoJEOl5/76g AtIP6O8P/R0JrgpRSBN6KTYcVjS3NIpixKOzNUqU62vetVkrMkN54h2l83Klauxd wZcf1Bt/0tdScIL8yjWCpQf2/yMgGmrQlZTm/buNJjxOUkjuJM9k2p9kst8fab3W oqZTaSWIPHlfiEZThBWHd6Uxe23hwXAXT3XRvNo0xGmJH/6FuOTY1FMrIbwPBace ypSc2iJgMPucnVV518wMrso71AO/ek+Z3gh/MQL0BMnvshAnRCHmVRZGtWwZHFYy Zi0iGCYhml+VMML8HJDvYNdnc68ft/SraBfJ3ruqHeCF4oYm6OPFLUyHt4GKRNsw FUWIHjn1RMS1wNJOEwPMDVscpiZ0nzcoph3rDrBr32G2yWW+kw4ynMiiKL5QL4Tj Pfoo0QmN+6fNcZKWVQokofbcNcCYDPzRr7C9NyzOiPtQRCj/2juNt03QIrzHmwK7 1oAJgcjOd5zIAWm5UNtHTbGG+WfdWm9xxqELwQWFn4/63o5pyXi0kX+9Ml7iFd9/ He/5pfUaBOIPi6diEhq3sTpF7w84f25rJPR5d3J67ZAHYE5ROWLCDCg4z4AV5wP4 yRePzuPn+ppvr8qpCAgliXrHKJz/BpCKIabEzhkAHdGgMeSwvPqrig4PEXRLVx13 HM4Ns/3ykzRdZo50SFYCcAzZ829X0aP0W4XTpC2shEdo3GdsmWyd =ks+A -----END PGP SIGNATURE----- -----BEGIN PGP PUBLIC KEY BLOCK----- Version: GnuPG v1 Comment: A revocation certificate should follow iJQEIBEKAFQFAlezImBNHQFXZWFrIGFsZ287IHJlcGxhY2VkIHdpdGggQTg3QiAx QzVBIDI4QzQgMDNCRCA1NEJBICBDRThFIEU5NzkgRkZCRSBBMDAyIEQyMEYACgkQ gFVc7XOU+UgkSgCeMH8wDJfBH7fG/+R3RI3yeOvcEA8AnA+ghT/XylKm3UOjmoW1 8iVCIVtA =M+5Y -----END PGP PUBLIC KEY BLOCK-----