From d19c2b99a8889588fddb7457ba0edc10813342ad Mon Sep 17 00:00:00 2001
From: Etienne Champetier <champetier.etienne@gmail.com>
Date: Tue, 27 Jun 2023 08:57:59 -0400
Subject: [PATCH] Revert "Make CA valid 1 hour in the past"

Kubernetes-commit: 56c5c8f7eef25748389987a416d272bf8db2431d
---
 util/cert/cert.go | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/util/cert/cert.go b/util/cert/cert.go
index a93613d3..37b023ef 100644
--- a/util/cert/cert.go
+++ b/util/cert/cert.go
@@ -71,7 +71,7 @@ func NewSelfSignedCACert(cfg Config, key crypto.Signer) (*x509.Certificate, erro
 			Organization: cfg.Organization,
 		},
 		DNSNames:              []string{cfg.CommonName},
-		NotBefore:             now.Add(-time.Hour).UTC(), // valid an hour earlier to avoid flakes
+		NotBefore:             now.UTC(),
 		NotAfter:              now.Add(duration365d * 10).UTC(),
 		KeyUsage:              x509.KeyUsageKeyEncipherment | x509.KeyUsageDigitalSignature | x509.KeyUsageCertSign,
 		BasicConstraintsValid: true,