---
apiVersion: certificates.k8s.io/v1
kind: CertificateSigningRequest
metadata:
  creationTimestamp: "2026-05-27T14:06:10Z"
  generateName: csr-
  managedFields:
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:metadata:
        f:generateName: {}
    manager: ovnkube
    operation: Update
    time: "2026-05-27T14:06:10Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:conditions:
          .: {}
          k:{"type":"Approved"}:
            .: {}
            f:lastTransitionTime: {}
            f:lastUpdateTime: {}
            f:message: {}
            f:reason: {}
            f:status: {}
            f:type: {}
    manager: ovnkube-identity
    operation: Update
    subresource: approval
    time: "2026-05-27T14:06:10Z"
  - apiVersion: certificates.k8s.io/v1
    fieldsType: FieldsV1
    fieldsV1:
      f:status:
        f:certificate: {}
    manager: kube-controller-manager
    operation: Update
    subresource: status
    time: "2026-05-27T14:06:21Z"
  name: csr-r2d5s
  resourceVersion: "7248"
  uid: 3eb35001-f4f5-4bf1-b85a-4ca69f8e7cd0
spec:
  expirationSeconds: 86400
  extra:
    authentication.kubernetes.io/credential-id:
    - X509SHA256=a53ce9f291da1473944043dd78df1d6dd3d9057e947e608d2ab265d67492949f
  groups:
  - system:nodes
  - system:authenticated
  request: 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
  signerName: kubernetes.io/kube-apiserver-client
  usages:
  - digital signature
  - client auth
  username: system:node:ip-10-0-143-12.ec2.internal
status:
  certificate: LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUN3akNDQWFxZ0F3SUJBZ0lRWTFvRmszN1N5bm1mamhqNnU5cGd6REFOQmdrcWhraUc5dzBCQVFzRkFEQXUKTVJJd0VBWURWUVFMRXdsdmNHVnVjMmhwWm5ReEdEQVdCZ05WQkFNVEQydDFZbVV0WTNOeUxYTnBaMjVsY2pBZQpGdzB5TmpBMU1qY3hOREF4TWpGYUZ3MHlOakExTWpneE5EQXhNakZhTUZFeEdUQVhCZ05WQkFvVEVITjVjM1JsCmJUcHZkbTR0Ym05a1pYTXhOREF5QmdOVkJBTVRLM041YzNSbGJUcHZkbTR0Ym05a1pUcHBjQzB4TUMwd0xURTAKTXkweE1pNWxZekl1YVc1MFpYSnVZV3d3V1RBVEJnY3Foa2pPUFFJQkJnZ3Foa2pPUFFNQkJ3TkNBQVRJVXNlZAp0RXJ5TDRWV1N6TUlJMkZUL0pnaG5qM3R3enBqanlSN2ZyK3djdmh0ekYzQUdLNlU5bCtqUERUWW1EcG5DdVJTCnJidThrRlhRR3B6em1UOFJvNEdETUlHQU1BNEdBMVVkRHdFQi93UUVBd0lIZ0RBVEJnTlZIU1VFRERBS0JnZ3IKQmdFRkJRY0RBakFNQmdOVkhSTUJBZjhFQWpBQU1Fc0dBMVVkSXdSRU1FS0FRTXY4eEk0L3U0OFVTZEdYaWc3VApkL29acDd1L0ZkTFlyOWtFL3BwN0k4UjN6dnpyK2Vxd2lEU0M3MnBUeXpwTXByK20yd3JmN0I0akJwVWJ2NVZUCmJmVXdEUVlKS29aSWh2Y05BUUVMQlFBRGdnRUJBQ2lnR2JFekgrcmtjU3RrdDU0Z1RydmhVUXowMUZlQW10Z0sKNUxYNEpURnJXQlVjRlMxQmQxT0IxR0xadVJkMVRCMXVWK08vaG5OSFFBV3YvL05PKyt3eXFzOU9BY0pyZEV1NApQQ0pkOW80NXh1Wm0vZkxjWGVuNWJVd1JYVXoyREdReXFmc0JuM3BUelRTbitzbE5PcTdZVEI5NjZub1QxUkVUCkx4dUlrb3VMaE8rYVU1anZ4M0lyaUxPZ2ljSURVZTMzWWhRaEZwemFLSjVvZDZXNXVQb2tEMUQremFLbE1NK3oKU2RlUWtRbVlVWTI0VXlaUXFxUit0K0JjVmw1ZlZzaHZPZ0d2alJqREh3WHRzWFFFc3k4TzZqbkMwOEJCMmUwTgpzWHRVUkJKY1VOY1pkajBnZ2VVNkwvUXJxbm1Eakxvd3ZSTUhLVC9vWFkzamRQYmZtUmM9Ci0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0K
  conditions:
  - lastTransitionTime: "2026-05-27T14:06:10Z"
    lastUpdateTime: "2026-05-27T14:06:10Z"
    message: Auto-approved CSR "csr-r2d5s"
    reason: AutoApproved
    status: "True"
    type: Approved