I kept banging my head against the wall today trying to figure out why the RSA keys I was generating were encrypted (they have this stuff in them)
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,BEA1180EADE1524F
I finally realized that the issue was that I was passing a password into the "openssl_pkey_export" method inadvertently.
So the moral of the story is: you have to use NULL as the password. using an empty string will still cause the key to be encrypted.