# File lib/puppet/sslcertificates/ca.rb, line 196 196: def revoke(serial, reason = OpenSSL::OCSP::REVOKED_STATUS_KEYCOMPROMISE) 197: time = Time.now 198: revoked = OpenSSL::X509::Revoked.new 199: revoked.serial = serial 200: revoked.time = time 201: enum = OpenSSL::ASN1::Enumerated(reason) 202: ext = OpenSSL::X509::Extension.new("CRLReason", enum) 203: revoked.add_extension(ext) 204: @crl.add_revoked(revoked) 205: store_crl 206: end