Impossible to edit CRLs in 2.1.1
Since lots of people will want/need to revoke their certs, this really should be fixed in 2.1.2
Updated by Jim Pingle over 7 years ago
A fix is coming but ideally you'd create a whole new CA and Cert structure if you believe yours has been compromised. Re-using the CA + Revoking certs should only be done if the CA's key had no chance of being compromised.
New CA + New certs is also faster than Revoking eleventy hundred certs plus regenerating them all. If you have to reissue all new clients anyway, there's little benefit to taking the revocation path.