Skip openssh_cert test on Rocky Linux 9+ due to SHA-1 restrictions (#856)

* Make openssh_cert second algorithm tests compatible with Rocky

* Fix typo

* Merge conditions

Co-authored-by: Felix Fontein <felix@fontein.de>

---------

Co-authored-by: Felix Fontein <felix@fontein.de>

tests/integration/targets/openssh_cert/tests/key_idempotency.yml

@@ -74,10 +74,10 @@
         assert:
           that:
             - second_signature_algorithm is changed
-      # RHEL9 and Fedora 41 disable the SHA-1 algorithms by default, making this test fail with a 'libcrypt' error.
+      # RHEL9, Fedora 41 and Rocky 9 disable the SHA-1 algorithms by default, making this test fail with a 'libcrypt' error.
       # Other systems which impose a similar restriction may also need to skip this block in the future.
       when:
-        - not (ansible_facts['distribution'] == "RedHat" and (ansible_facts['distribution_major_version'] | int) >= 9)
+        - not (ansible_facts['distribution'] in ["RedHat", "Rocky"] and (ansible_facts['distribution_major_version'] | int) >= 9)
         - not (ansible_facts['distribution'] == "Fedora" and (ansible_facts['distribution_major_version'] | int) >= 41)
 
     - name: Omit signature algorithm