Sometimes you will need to install an SSL and the person who ordered it sends in an encrypted key. Here is an example of an encrypted key:

—–BEGIN RSA PRIVATE KEY—–
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,F6FB1EFE755F8C56
BLAHBBLAHBLAHBLAHBBLAHBLAHBLAHBBLAHBLAH
BLAHBBLAHBLAHBLAHBBLAHBLAHBLAHBBLAHBLAH
—–END RSA PRIVATE KEY—–

In a Linux environment OpenSSL provides an easy way to un-encrypt this:

openssl rsa -in server.key.secure -out server.key

Make sure to replace “server.key.secure” with the filename of your encrypted key, and “server.key” with whatever you want the un-encrypted filename to be. If you are prompted for a passphrase whoever made the key specified one. Unfortunately you will not be able to decrypt the key without the correct passphrase.

2 Responses to “Decrypt an encrypted SSL key using OpenSSL”

Leave a Reply