What is a Digital ID Certificate revocation list?
A Certificate Revocation List (CRL) is a list of digital ID certificates that have been revoked before their scheduled expiration date. There are several reasons why a certificate might need to be revoked and placed on a CRL. A certificate might have been compromised. A certificate might be used professionally by an individual for a company; for example, the official name associated with a certificate might be “Alice Avery, Vice President, Argo Corp.” If Alice were fired, her company would not want her to be able to sign messages with that certificate and therefore the company would place the certificate on the CRL. When verifying a signature, you can check the relevant CRL to make sure the signer’s certificate has not been revoked if the signed document is important enough to justify the time it takes to perform this check. Certification Authorities (CAs) maintained CRLs and provide information about revoked certificates originally certified by the CA. CRLs only list current certifica
