Your key does not meet minimal requirements set forth in GLEP 63 [1]. glep63-check [2] reports: 0AF8B3A860381DD4 [Andreas Sturmlechner <andreas.sturmlechner@gmail.com>] [E] expire:none No expiration date on public key (<3 years recommended, 5 years max) 0AF8B3A860381DD4:E7255695D8BA079E [Andreas Sturmlechner <andreas.sturmlechner@gmail.com>] [W] subkey:multipurpose Subkey has multiple capabilities enabled (has: [esa]; use dedicated subkeys!) 0AF8B3A860381DD4:E7255695D8BA079E [Andreas Sturmlechner <andreas.sturmlechner@gmail.com>] [E] expire:none No expiration date on public key (<3 years recommended, 5 years max) 0AF8B3A860381DD4 [Andreas Sturmlechner <andreas.sturmlechner@gmail.com>] [E] subkey:none Having a dedicated signing subkey is required 0AF8B3A860381DD4 [Andreas Sturmlechner <andreas.sturmlechner@gmail.com>] [W] uid:nogentoo @gentoo.org e-mail not in key UIDs Please revoke that multi-purpose subkey, create *dedicated* subkeys for encryption and signing (I honestly doubt you use auth) and set expiration dates according to GLEP 63 [1]. [1]:https://www.gentoo.org/glep/glep-0063.html [2]:https://github.com/mgorny/glep63-check
Oh, and also please add your @gentoo.org address to UIDs.
(In reply to Michał Górny from comment #0) > (I honestly doubt you use auth) That fear is unwarranted.
Since GLEP 63 has changed, I'm closing the bugs as OBSOLETE.
