I have no idea if IOS support RSA authentication as a client, but you are trying it the wrong way. If the Catalyst has to log into the server, you need to export the public key of the Catalyst and place that into the autorized_hosts file on the server. You don't need the servers private key for that.