# What is RSA used for?

"RSA is a relatively slow algorithm, and because of this, it is less commonly used to directly encrypt user data. More often, RSA passes encrypted shared keys for symmetric key cryptography which in turn can perform bulk encryption-decryption operations at much higher speed." [Reference](https://en.wikipedia.org/wiki/RSA)

# How much data can RSA encrypt?

[Reference](https://info.townsendsecurity.com/bid/29195/how-much-data-can-you-encrypt-with-rsa-keys)

The modulus size is the key size in bits / 8. Thus a 1024-bit RSA key using OAEP padding can encrypt up to (1024/8) – 42 = 128 – 42 = 86 bytes.

A 2048-bit key can encrypt up to (2048/8) – 42 = 256 – 42 = 214 bytes.

# Display text information about the rsa key

```
# out.key is the decoded base64 version of the RSA private key which look something like this:
-----BEGIN RSA PRIVATE KEY-----
MIICWwIBAAKBgQCcT4ZjYnGiMYtEd7+/YtFgGE3egTkWBiwhWCn41LPSYsuq+4OQ
pnBMYR5YtLb94WO7i6vGaOONssHNdYAdnRDM8iLSv/rT0uOtgSwdZNiLC7n6gH/8
8RjFQELjmJWQzgsX8CUqdZo4JrMfBSmwwDYA5Bm0b76gzmqh+yLXa+unOQIDAQAB
AoGAacaS/Zw3o3d9c/bJJj07zJiF0WWG+PVyVZowxPdDPMKoamtLa86FvdoWzBZ2
orUsZVSuCFUgb9ogteWmreOE4uwAP+DF+2iSXt2VqLGIgobx6boF+NKc1soQADhT
6L6zfMK1MW6pH5XPcU5H8AMSYDDaQqxEmXJtk889LIMZUQECQQC44XV4jtL0r1dq
ccPrNR+LJxR112BO0HW/7nEQ0AKTmHHga/neuz32pquMSQ3lhutS5ndjssvbwtrn
3VuXJEBZAkEA2HCQ4lMv0r9cpvoiBMTtp9XKgHyNUngwtMR86zTM/+WnvXSZ9CfO
Yxr2UowgZ19O5zBd1kTdYBsLlUh/k2zB4QJAYkLyPHEsjf/jZh+xEYHakgrjRP6D
oWAKNUh1r4ne1LNhUvYQh+Dcvgs3gggR6rwatqTnL4YH83VNA48S7vHFgQJAdxVo
Ab43P8Ld3VkeQnV/NKqiIhNlRgyu76Zz/I0uhVT793ciBX2pRkndYQmMApQju3uX
BX8aNfhrZRVga+KYwQJAXcTJza783EyY5blSeb/ZRFc6cvqDD9QH4WET5oM4f1gZ
kfR7N/jpG8oOlfIywj5E+ZhrZI9DcTfB5gAiEDqkBg==
-----END RSA PRIVATE KEY-----

$ openssl rsa -noout -text -in out.key

# pub is the decoded base64 version of the RSA public key which look something like this:
-----BEGIN PUBLIC KEY-----
MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCcT4ZjYnGiMYtEd7+/YtFgGE3e
gTkWBiwhWCn41LPSYsuq+4OQpnBMYR5YtLb94WO7i6vGaOONssHNdYAdnRDM8iLS
v/rT0uOtgSwdZNiLC7n6gH/88RjFQELjmJWQzgsX8CUqdZo4JrMfBSmwwDYA5Bm0
b76gzmqh+yLXa+unOQIDAQAB
-----END PUBLIC KEY-----

$ openssl rsa -noout -text -inform PEM -in pub -pubin
```

# How to check if the RSA private key is formatted correctly

```
$ openssl rsa -in out.key -check -noout
RSA key ok
```

# Decrypt a binary blob using an RSA private key
```
$ base64 -D priv.b64 > out.key
$ openssl rsautl -decrypt -in blob -out message -inkey out.key
RSA operation error
140735780410248:error:0407106B:rsa routines:RSA_padding_check_PKCS1_type_2:block type is not 02:/BuildRoot/Library/Caches/com.apple.xbs/Sources/libressl/libressl-22/libressl/crypto/rsa/rsa_pk1.c:193:
140735780410248:error:04065072:rsa routines:RSA_EAY_PRIVATE_DECRYPT:padding check failed:/BuildRoot/Library/Caches/com.apple.xbs/Sources/libressl/libressl-22/libressl/crypto/rsa/rsa_eay.c:602:

# If you get this error, it may mean that the RSA key used was not the one used to encrypt the message
# ' "OpenSSL::PKey::RSAError: padding check failed" error received if the private
# key used to try and decrypt the value is not the pair of the public key used 
# to encrypt the value. '
```

# Past CTF Challenges
1. 2018 TAMU Reversing Band Aid: The last part of the challenge contains an RSA key