Certificate revocation lists

Certificates can be revoked when the key or CA has been compromised, or the certificate is no longer valid for the original purpose. CAs maintain a list of revoked certificates.

You can upload a certificate revocation list (CRL) of an external CA. Self-signed certificates that are revoked are automatically added to the CRL.