Sometimes you will need to install an SSL and the person who ordered it sends in an encrypted key. Here is an example of an encrypted key:

—–BEGIN RSA PRIVATE KEY—–
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,F6FB1EFE755F8C56
BLAHBBLAHBLAHBLAHBBLAHBLAHBLAHBBLAHBLAH
BLAHBBLAHBLAHBLAHBBLAHBLAHBLAHBBLAHBLAH
—–END RSA PRIVATE KEY—–

In a Linux environment OpenSSL provides an easy way to un-encrypt this:

openssl rsa -in server.key.secure -out server.key

Make sure to replace “server.key.secure” with the filename of your encrypted key, and “server.key” with whatever you want the un-encrypted filename to be. If you are prompted for a passphrase whoever made the key specified one. Unfortunately you will not be able to decrypt the key without the correct passphrase.

One Response to “Decrypt an encrypted SSL key using OpenSSL”

Leave a Reply