Permit certificate revocation

[informartin]

CAs should be able to revoke issued certificates. Revoked certificates should not be permitted to be used for adding new signatures. However, signatures added while the certificate was valid should still be considered valid.