Attribute certificates are signed objects that assert additional properties with respect to some identity certificate (also called base certificate). An attribute certificate has no associated key pair and consequently cannot be used to establish identity.
Attribute certificates can be thought of as extensions to identity certificates, even if the attribute certificate may be signed by a different CA than the base certificate. When the associated attributes are mainly used for the purpose of authorization, an attribute certificate is calledauthorization certificate.
Select one or more certificates in the upper half of the result pane. (Press the Ctrl key on the keyboard to make multiple selections.) If you want to revoke several certificates in the same request, they will all be given the same reason code.
Click Add to move the certificate(s) to the lower half of the result pane.
If you have the role 'Revoke attribute certificate with password', the dialog box Enter Revocation Password will appear. Enter the password.