2024-10-17 19:09:41,804: kskm.common.config: INFO Loaded configuration from file ksrsigner.yaml SHA-256 d95f755a827febfe54c3068a3fc5f237a8999e99cb69e485f85e24cf29e99c62 WORDS sugar forever indulge existence miser integrate trouble yesteryear eating replica afflict maverick cowbell resistor uproot consensus retouch nebula quiver nebula spheroid guitarist tonic leprosy Vulcan finicky bluebird Saturday breakup ultimate python gadgetry
2024-10-17 19:09:41,834: kskm.skr.load: INFO Loaded SKR from file skr-root-2024-q4-0.xml SHA-256 a07a409e366d91d6f22664762c5ae320a6b66fd1b8b6d9db47600c45e9918d4f WORDS ragtime infancy crackdown onlooker Christmas hazardous pheasant speculate uproot caretaker flytrap impetus Burbank existence tissue butterfat rematch potato gremlin scavenger select potato sugar suspicious dashboard fortitude ammo detector treadmill miracle optic document
2024-10-17 19:09:41,840: kskm.tools.ksrsigner: INFO Previous SKR:
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO #  Inception           Expiration           ZSK Tags      KSK(CKA_LABEL)
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 1  2024-10-01T00:00:00 2024-10-22T00:00:00  20038,61050   20326(Klajeyz)/S
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 2  2024-10-11T00:00:00 2024-11-01T00:00:00  61050         20326(Klajeyz)/S
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 3  2024-10-21T00:00:00 2024-11-11T00:00:00  61050         20326(Klajeyz)/S
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 4  2024-10-31T00:00:00 2024-11-21T00:00:00  61050         20326(Klajeyz)/S
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 5  2024-11-10T00:00:00 2024-12-01T00:00:00  61050         20326(Klajeyz)/S
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 6  2024-11-20T00:00:00 2024-12-11T00:00:00  61050         20326(Klajeyz)/S
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 7  2024-11-30T00:00:00 2024-12-21T00:00:00  61050         20326(Klajeyz)/S
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 8  2024-12-10T00:00:00 2024-12-31T00:00:00  61050         20326(Klajeyz)/S
2024-10-17 19:09:41,841: kskm.tools.ksrsigner: INFO 9  2024-12-20T00:00:00 2025-01-10T00:00:00  26470,61050   20326(Klajeyz)/S
2024-10-17 19:09:41,842: kskm.ksr.load: INFO Loaded KSR from file ksr-root-2025-q1-1-d_to_c.xml SHA-256 83e1877a97f079e4464576588bc8f4d97386c0f3107d3394cd34561987424172 WORDS Mohawk tolerance Neptune infancy preshrunk upcoming jawbone tradition cubic detector inverse everyday obtuse retrieval upshot supportive hockey letterhead slowdown vertigo assume insincere chisel molecule spindle confidence egghead bottomless Neptune December cranky holiness
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO Validating KSR using request policy:
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   acceptable_domains: ['.']
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   approved_algorithms: ['RSASHA256']
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   check_bundle_intervals: True
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   check_bundle_overlap: True
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   check_chain_keys: True
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   check_chain_keys_in_hsm: True
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   check_chain_overlap: True
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   check_cycle_length: True
2024-10-17 19:09:41,846: kskm.ksr.validate: INFO   check_keys_match_ksk_operator_policy: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   check_keys_publish_safety: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   check_keys_retire_safety: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   dns_ttl: 172800
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   enable_unsupported_ecdsa: False
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   enable_unsupported_edwards_dsa: False
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   keys_match_zsk_policy: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   max_bundle_interval: 11 days, 0:00:00
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   max_cycle_inception_length: 81 days, 0:00:00
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   min_bundle_interval: 9 days, 0:00:00
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   min_cycle_inception_length: 79 days, 0:00:00
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   num_bundles: 9
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   num_different_keys_in_all_bundles: 3
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   num_keys_per_bundle: [2, 1, 1, 1, 1, 1, 1, 1, 2]
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   rsa_approved_exponents: [65537]
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   rsa_approved_key_sizes: [2048]
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   rsa_exponent_match_zsk_policy: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   signature_algorithms_match_zsk_policy: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   signature_check_expire_horizon: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   signature_horizon_days: 180
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   signature_validity_match_zsk_policy: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO   validate_signatures: True
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO KSR-DOMAIN: Verified domain '.'
2024-10-17 19:09:41,847: kskm.ksr.validate: INFO KSR-ID: Will be checked later, when SKR is available
2024-10-17 19:09:41,848: kskm.ksr.validate: INFO KSR-BUNDLE-UNIQUE: All 9 bundles have unique ids
2024-10-17 19:09:41,848: kskm.ksr.validate: INFO KSR-BUNDLE-KEYS: All 3 unique keys in the bundles accepted by policy
2024-10-17 19:09:41,849: kskm.ksr.validate: INFO KSR-BUNDLE-POP: All 9 bundles contain proof-of-possession
2024-10-17 19:09:41,849: kskm.ksr.validate: INFO KSR-BUNDLE-COUNT: Number of bundles (9) accepted
2024-10-17 19:09:41,849: kskm.ksr.validate: INFO KSR-BUNDLE-CYCLE-DURATION: The cycle length is in accordance with the KSK operator policy
2024-10-17 19:09:41,849: kskm.ksr.validate: INFO KSR-POLICY-KEYS: Validated number of keys per bundle, and for all bundles
2024-10-17 19:09:41,849: kskm.ksr.validate: INFO KSR-POLICY-ALG: All 1 ZSK operator signature algorithms accepted by policy
2024-10-17 19:09:41,849: kskm.ksr.validate: INFO KSR-POLICY-SIG-OVERLAP: All bundles overlap in accordance with the stated ZSK operator policy
2024-10-17 19:09:41,850: kskm.ksr.validate: INFO KSR-POLICY-SIG-VALIDITY: All 9 bundles have 21 days <= validity >= 21 days
2024-10-17 19:09:41,850: kskm.ksr.validate: INFO KSR-POLICY-SIG-HORIZON: All signatures expire in less than 180 days
2024-10-17 19:09:41,850: kskm.ksr.validate: INFO KSR-POLICY-BUNDLE-INTERVALS: All bundles intervals in accordance with the KSK operator policy
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO Request:
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO #  Inception           Expiration           ZSK Tags      KSK(CKA_LABEL)
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 1  2025-01-01T00:00:00 2025-01-22T00:00:00  26470,61050   
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 2  2025-01-11T00:00:00 2025-02-01T00:00:00  26470         
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 3  2025-01-21T00:00:00 2025-02-11T00:00:00  26470         
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 4  2025-01-31T00:00:00 2025-02-21T00:00:00  26470         
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 5  2025-02-10T00:00:00 2025-03-03T00:00:00  26470         
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 6  2025-02-20T00:00:00 2025-03-13T00:00:00  26470         
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 7  2025-03-02T00:00:00 2025-03-23T00:00:00  26470         
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 8  2025-03-12T00:00:00 2025-04-02T00:00:00  26470         
2024-10-17 19:09:41,850: kskm.tools.ksrsigner: INFO 9  2025-03-22T00:00:00 2025-04-12T00:00:00  53148,26470   
2024-10-17 19:09:41,850: kskm.misc.hsm: INFO Initializing PKCS#11 module aep using /opt/Keyper/PKCS11Provider/pkcs11.linux_gcc_4_1_2_glibc_2_5_x86_64.so.5.02
2024-10-17 19:09:42,024: kskm.misc.hsm: INFO HSM First slot:      ICANNKSK                        
2024-10-17 19:09:42,024: kskm.misc.hsm: INFO HSM ManufacturerID:  Ultra Electronics AEP Networks  
2024-10-17 19:09:42,024: kskm.misc.hsm: INFO HSM Model:           Keyper 9860-2   
2024-10-17 19:09:42,025: kskm.misc.hsm: INFO HSM Serial:          H2110010        
2024-10-17 19:09:42,025: kskm.misc.hsm: INFO Initializing PKCS#11 module luna using /usr/safenet/lunaclient/lib/libCryptoki2_64.so
2024-10-17 19:09:42,339: kskm.misc.hsm: INFO HSM First slot:      HSM9E_KSK-2024                  
2024-10-17 19:09:42,340: kskm.misc.hsm: INFO HSM ManufacturerID:                                  
2024-10-17 19:09:42,340: kskm.misc.hsm: INFO HSM Model:           Luna G7         
2024-10-17 19:09:42,340: kskm.misc.hsm: INFO HSM Serial:          1658876115494   
2024-10-17 19:09:42,341: kskm.signer.verify_chain: INFO Checking coherence between SKR(n-1) and this KSR
2024-10-17 19:09:42,343: kskm.signer.verify_chain: INFO KSR-CHAIN-KEYS: The last keys in SKR(n-1) matches the first keys in this KSR
2024-10-17 19:09:42,343: kskm.signer.verify_chain: INFO KSR-CHAIN-OVERLAP: Overlap with last bundle in SKR(n-1) 9 days is in accordance with the KSR policy
2024-10-17 19:09:42,345: kskm.signer.verify_chain: INFO KSR-CHAIN-KEYS: All 1 signatures in the last bundle of the last SKR were made with keys present in the HSM(s)
2024-10-17 19:12:12,887: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,892: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,898: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,903: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,908: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,914: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,920: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,925: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,930: kskm.misc.hsm: INFO Signing 256 bytes with key key_label=Klajeyz RSA public_key=348 bytes, algorithm RSASHA256, mechanism CKM_RSA_X_509, hash using hsm=False
2024-10-17 19:12:12,935: kskm.signer.policy: INFO KSR-POLICY-SAFETY: PublishSafety validated
2024-10-17 19:12:12,935: kskm.signer.policy: INFO KSR-POLICY-SAFETY: RetireSafety validated
2024-10-17 19:12:12,935: kskm.tools.ksrsigner: INFO Generated SKR:
2024-10-17 19:12:12,936: kskm.tools.ksrsigner: INFO #  Inception           Expiration           ZSK Tags      KSK(CKA_LABEL)
2024-10-17 19:12:12,936: kskm.tools.ksrsigner: INFO 1  2025-01-01T00:00:00 2025-01-22T00:00:00  26470,61050   20326(Klajeyz)/S
2024-10-17 19:12:12,936: kskm.tools.ksrsigner: INFO 2  2025-01-11T00:00:00 2025-02-01T00:00:00  26470         20326(Klajeyz)/S
2024-10-17 19:12:12,936: kskm.tools.ksrsigner: INFO 3  2025-01-21T00:00:00 2025-02-11T00:00:00  26470         20326(Klajeyz)/S
2024-10-17 19:12:12,936: kskm.tools.ksrsigner: INFO 4  2025-01-31T00:00:00 2025-02-21T00:00:00  26470         20326(Klajeyz)/S
2024-10-17 19:12:12,936: kskm.tools.ksrsigner: INFO 5  2025-02-10T00:00:00 2025-03-03T00:00:00  26470         20326(Klajeyz)/S
2024-10-17 19:12:12,937: kskm.tools.ksrsigner: INFO 6  2025-02-20T00:00:00 2025-03-13T00:00:00  26470         20326(Klajeyz)/S
2024-10-17 19:12:12,937: kskm.tools.ksrsigner: INFO 7  2025-03-02T00:00:00 2025-03-23T00:00:00  26470         20326(Klajeyz)/S
2024-10-17 19:12:12,937: kskm.tools.ksrsigner: INFO 8  2025-03-12T00:00:00 2025-04-02T00:00:00  26470         20326(Klajeyz)/S
2024-10-17 19:12:12,937: kskm.tools.ksrsigner: INFO 9  2025-03-22T00:00:00 2025-04-12T00:00:00  53148,26470   20326(Klajeyz)/S
2024-10-17 19:12:13,046: kskm.signer: INFO Wrote SKR to file skr-root-2025-q1-1-d_to_c.xml SHA-256 f5eef5a7ea8b3367ac70449737183b6f120626846e395bb55c29a08a56d5cf42 WORDS vapor universe vapor paragraph Trojan Medusa chisel graduate ribcage hesitate crumpled mosquito clamshell borderline clockwork hemisphere atlas amulet bookshelf Jupiter goldfish corporate erase positive escape certify ragtime maverick egghead specialist stagehand December