UPDATE: /u/tismond has confirmed that these are two subkeys created with the same master key, and /u/aznkidjoey confirms that his Nucleus profile announced a move to EIC. I msg'd Rex on EIC asking him to update his grams just for clarities sake, but it seems like there's nothing to see here other than a very well-regarded vendor on a new market.
ORIGINAL POST: At first glance everything looks OK, but I've seen so many scammers impersonate good vendors on new markets that I'm trying to be careful.
Two red flags:
Rex's grams profile (http://grams7enufi7jmdl.onion/infodesk/vendor/0x92D20C015AC94D23) lists lelantos and safe-mail addresses, whereas his EIC About page lists Sigaint.
The PGP key on the grams profile looks slightly different than the one listed on EIC. When I throw both of these into GPG it lists them as two subkeys of the same key. That's beyond my knowledge of how PGP works, and I don't know if it's spoofable.
Again, just being super careful given recent events. Probably the real deal and a slightly out of date grams profile, but thought I would ask.
[deleted]