@sally @SuperDicq @sampo @hj Expiration is kind of a joke, most people will just bump the date on the same subkey because if you use another subkey then you get subject to the mess that are keyservers.

And the identify keypair can't get rotated easily, hence why people just keep those for decades.

And a government or a corp wanting to break an OpenPGP keypair could just rent an ASIC-based machine for a bit (they're costy to buy sure but rent makes those things much cheaper).