# File lib/puppet/sslcertificates/ca.rb, line 196
196:     def revoke(serial, reason = OpenSSL::OCSP::REVOKED_STATUS_KEYCOMPROMISE)
197:         time = Time.now
198:         revoked = OpenSSL::X509::Revoked.new
199:         revoked.serial = serial
200:         revoked.time = time
201:         enum = OpenSSL::ASN1::Enumerated(reason)
202:         ext = OpenSSL::X509::Extension.new("CRLReason", enum)
203:         revoked.add_extension(ext)
204:         @crl.add_revoked(revoked)
205:         store_crl
206:     end