diff --git a/.gitignore b/.gitignore
index 211510d..7c15592 100644
--- a/.gitignore
+++ b/.gitignore
@@ -1 +1 @@
-SOURCES/Crypt-OpenSSL-RSA-0.31.tar.gz
+SOURCES/Crypt-OpenSSL-RSA-0.33.tar.gz
diff --git a/.perl-Crypt-OpenSSL-RSA.metadata b/.perl-Crypt-OpenSSL-RSA.metadata
index 51b4495..ed3b13d 100644
--- a/.perl-Crypt-OpenSSL-RSA.metadata
+++ b/.perl-Crypt-OpenSSL-RSA.metadata
@@ -1 +1 @@
-5028d060a546a4e1334b60d2fefd21cdd116afb1 SOURCES/Crypt-OpenSSL-RSA-0.31.tar.gz
+eb32f6103c71a1e1ef47ede383d6093bc1f9abf9 SOURCES/Crypt-OpenSSL-RSA-0.33.tar.gz
diff --git a/SOURCES/perl-Crypt-OpenSSL-RSA-openssl30.patch b/SOURCES/perl-Crypt-OpenSSL-RSA-openssl30.patch
index 2be5804..6e92f24 100644
--- a/SOURCES/perl-Crypt-OpenSSL-RSA-openssl30.patch
+++ b/SOURCES/perl-Crypt-OpenSSL-RSA-openssl30.patch
@@ -31,20 +31,10 @@ index c7d4bb7..3da6d1d 100644
  
          no_padding
 diff --git a/RSA.pm b/RSA.pm
-index 31e6949..1b63e99 100644
+index a08d9cc..b1a0e4b 100644
 --- a/RSA.pm
 +++ b/RSA.pm
-@@ -34,8 +34,7 @@ Crypt::OpenSSL::RSA - RSA encoding and decoding, using the openSSL libraries
-   Crypt::OpenSSL::Random::random_seed($good_entropy);
-   Crypt::OpenSSL::RSA->import_random_seed();
-   $rsa_pub = Crypt::OpenSSL::RSA->new_public_key($key_string);
--  $rsa_pub->use_sslv23_padding(); # use_pkcs1_oaep_padding is the default
--  $ciphertext = $rsa->encrypt($plaintext);
-+    $ciphertext = $rsa->encrypt($plaintext);
- 
-   $rsa_priv = Crypt::OpenSSL::RSA->new_private_key($key_string);
-   $plaintext = $rsa->encrypt($ciphertext);
-@@ -220,11 +219,6 @@ an empty encoding parameter. This mode of padding is recommended for
+@@ -248,13 +248,6 @@ an empty encoding parameter. This mode of padding is recommended for
  all new applications.  It is the default mode used by
  C<Crypt::OpenSSL::RSA>.
  
@@ -52,11 +42,13 @@ index 31e6949..1b63e99 100644
 -
 -Use C<PKCS #1 v1.5> padding with an SSL-specific modification that
 -denotes that the server is SSL3 capable.
+-
+-Not available since OpenSSL 3.
 -
  =item use_md5_hash
  
  Use the RFC 1321 MD5 hashing algorithm by Ron Rivest when signing and
-@@ -267,7 +261,7 @@ the text to be encrypted should be:
+@@ -297,7 +290,7 @@ the text to be encrypted should be:
  
  at most 42 bytes less than this size.
  
@@ -66,18 +58,22 @@ index 31e6949..1b63e99 100644
  at most 11 bytes less than this size.
  
 diff --git a/RSA.xs b/RSA.xs
-index d474d11..711e4e7 100644
+index 5f5cfae..4bbe0ac 100644
 --- a/RSA.xs
 +++ b/RSA.xs
-@@ -640,12 +640,6 @@ use_pkcs1_oaep_padding(p_rsa)
+@@ -680,16 +680,6 @@ use_pkcs1_oaep_padding(p_rsa)
    CODE:
      p_rsa->padding = RSA_PKCS1_OAEP_PADDING;
  
+-#if OPENSSL_VERSION_NUMBER < 0x30000000L
+-
 -void
 -use_sslv23_padding(p_rsa)
 -    rsaData* p_rsa;
 -  CODE:
 -    p_rsa->padding = RSA_SSLV23_PADDING;
+-
+-#endif
 -
  # Sign text. Returns the signature.
  
diff --git a/SPECS/perl-Crypt-OpenSSL-RSA.spec b/SPECS/perl-Crypt-OpenSSL-RSA.spec
index cc11146..79a631b 100644
--- a/SPECS/perl-Crypt-OpenSSL-RSA.spec
+++ b/SPECS/perl-Crypt-OpenSSL-RSA.spec
@@ -1,6 +1,6 @@
 Name:           perl-Crypt-OpenSSL-RSA
-Version:        0.31
-Release:        13%{?dist}
+Version:        0.33
+Release:        1%{?dist}
 Summary:        Perl interface to OpenSSL for RSA
 License:        GPL+ or Artistic
 URL:            https://metacpan.org/release/Crypt-OpenSSL-RSA
@@ -61,6 +61,10 @@ make test
 %{_mandir}/man3/*
 
 %changelog
+* Thu Jun 20 2024 Martin Osvald <mosvald@redhat.com> - 0.33-1
+- New version 0.33 supporting passphrase protected keys
+  Resolves: RHEL-38780
+
 * Mon Aug 09 2021 Mohan Boddu <mboddu@redhat.com> - 0.31-13
 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags
   Related: rhbz#1991688