openshift
diff --git a/‎test/extended/operators/certs.go‎
Lines changed: 46 additions & 0 deletions b/‎test/extended/operators/certs.go‎
Lines changed: 46 additions & 0 deletions
diff --git a/‎test/extended/util/annotate/generated/zz_generated.annotations.go‎
Lines changed: 2 additions & 0 deletions b/‎test/extended/util/annotate/generated/zz_generated.annotations.go‎
Lines changed: 2 additions & 0 deletions
@@ -0,0 +1,46 @@
+package operators
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+	"os"
+	"path/filepath"
+
+	g "github.com/onsi/ginkgo/v2"
+	o "github.com/onsi/gomega"
+	"github.com/openshift/library-go/pkg/certs/cert-inspection/certgraphanalysis"
+	"github.com/openshift/origin/pkg/monitortestlibrary/platformidentification"
+	exutil "github.com/openshift/origin/test/extended/util"
+)
+
+var _ = g.Describe("[sig-arch][Late]", func() {
+	defer g.GinkgoRecover()
+
+	oc := exutil.NewCLIWithoutNamespace("certificate-checker")
+
+	g.It("collect certificate data", func() {
+
+		ctx := context.Background()
+		kubeClient := oc.AdminKubeClient()
+		if ok, _ := exutil.IsMicroShiftCluster(kubeClient); ok {
+			g.Skip("microshift does not auto-collect TLS.")
+		}
+		jobType, err := platformidentification.GetJobType(context.TODO(), oc.AdminConfig())
+		o.Expect(err).NotTo(o.HaveOccurred())
+		tlsArtifactFilename := fmt.Sprintf("raw-tls-artifacts-%s-%s-%s-%s.json", jobType.Topology, jobType.Architecture, jobType.Platform, jobType.Network)
+
+		currentPKIContent, err := certgraphanalysis.GatherCertsFromPlatformNamespaces(ctx, kubeClient)
+		o.Expect(err).NotTo(o.HaveOccurred())
+
+		jsonBytes, err := json.MarshalIndent(currentPKIContent, "", "  ")
+		o.Expect(err).NotTo(o.HaveOccurred())
+
+		pkiDir := filepath.Join(exutil.ArtifactDirPath(), "rawTLSInfo")
+		err = os.MkdirAll(pkiDir, 0755)
+		o.Expect(err).NotTo(o.HaveOccurred())
+		err = os.WriteFile(filepath.Join(pkiDir, tlsArtifactFilename), jsonBytes, 0644)
+		o.Expect(err).NotTo(o.HaveOccurred())
+	})
+
+})