Yes, although you might need to fudge keys if they're properly enforced. Looking at kbin I can see requests are at least signed with the private key. Not sure if the public key is stored somewhere in database, or is pulled from the instance using DNS as a security guarantor (I guess) every time.
I don't have any subscriptions to them, but I have those 1000+ errors just from posts their users were involved in.