Tuttilo

RSA Key Generator

Generate RSA key pairs (1024, 2048, 4096 bit) in PEM format using Web Crypto API.

Related Tools

Base64 Encoder

Encode and decode text and files to Base64

Try now

Password Generator

Generate strong, secure passwords with customizable options

Try now

Hash Generator

Generate SHA-1, SHA-256, SHA-384 and SHA-512 hashes

Try now

UUID Generator

Generate random UUID v4 identifiers

Try now

RSA Key Generator β€” Generate Key Pairs Online

RSA Key Generator creates RSA key pairs using the Web Crypto API, outputting keys in standard SPKI (public) and PKCS#8 (private) PEM format.

Select your desired key size from the dropdown (1024, 2048, or 4096 bits) and click Generate. The tool creates an RSA key pair using the Web Crypto API's RSA-OAEP algorithm with SHA-256 hashing. The public key exports in SPKI (SubjectPublicKeyInfo) PEM format, while the private key exports in PKCS#8 PEM format. Both keys display in the output fields with copy buttons. Use the public key for encryption or signature verification, and keep the private key secret for decryption or signing. All key generation happens locally in your browser.

Developers setting up SSL/TLS certificates generate RSA key pairs for test environments or self-signed certificates. Security engineers create key pairs for testing asymmetric encryption implementations in applications. Backend developers generate keys for JWT signature verification or API authentication systems using RSA signatures. System administrators create SSH key pairs for server access, though this tool outputs PEM format rather than OpenSSH format.

Use 2048-bit keys minimum for production use; 1024-bit keys are no longer considered secure. 4096-bit keys provide extra security margin but are slower to generate and use; 2048-bit is the practical standard for most applications. Store private keys encrypted and never commit them to version control or share them over insecure channels. PEM format is widely compatible but includes header/footer markers and Base64 encoding; some tools need raw DER format instead. For SSH access specifically, use 'ssh-keygen' rather than this tool since SSH uses a different key format.

All processing happens directly in your browser. Your files never leave your device β€” no server uploads, no cloud storage, no data retention. The tool works offline once loaded, requires no registration, and is completely free with no usage limits.

Frequently Asked Questions

What key size should I use?

2048-bit is the current standard minimum. Use 4096-bit for higher security. 1024-bit is considered weak and should only be used for testing.

Are the keys secure?

Yes. Keys are generated using your browser native Web Crypto API with cryptographically secure random number generation. Nothing is sent to a server.

What format are the keys in?

Public keys use SPKI format, private keys use PKCS#8 format, both encoded as PEM (Base64 with headers). Compatible with OpenSSL and most tools.

Can I use these keys for SSH?

The generated keys are in PKCS#8/SPKI PEM format. You may need to convert them to OpenSSH format using ssh-keygen for SSH use.

Why does 4096-bit take longer?

Larger key sizes require finding larger prime numbers, which is computationally intensive. 4096-bit keys may take a few seconds to generate.