Skip to content

Instantly share code, notes, and snippets.

@rafasc

rafasc/gist:b4426b8b59bf64e8fecb3aa94ee564ec

Forked from fredreichbier/gist:4399625
Created March 22, 2018 03:46
Show Gist options
  • Save rafasc/b4426b8b59bf64e8fecb3aa94ee564ec to your computer and use it in GitHub Desktop.
Save rafasc/b4426b8b59bf64e8fecb3aa94ee564ec to your computer and use it in GitHub Desktop.
Download ZIP
How to extract your private ssh key from gpg-agent
Raw
gistfile1.rst

How to extract a SSH private key from gpg-agent

Problem: Lost private key file ~/.ssh/id_rsa, but could connect to remote hosts via pubkey auth anyway: gpg-agent cached the private key. How to get the private key?

Solution: Use gpg-protect-tool to get the key (you need to know the passphrase of course):

gpgsm --call-protect-tool --p12-export ~/.gnupg/private-keys-v1.d/your-keyfile.key >key.p12

Now you have a PKCS12 file and you can extract the private key like this:

openssl pkcs12 -in key.p12 -out privkey.pem

And there is your extracted private key.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment