<div dir="ltr"><div>Matthias,</div><div><br></div><div>I think you've raised a valid point. I'm working on ballot 213 "Revocation Timeline Extension" that makes changes to this section of the BRs, and I will draft some language to attempt to address this. If you have any ideas on how this requirement should be stated, please let me know.<br></div><div><br></div><div>Thanks,</div><div><br></div><div>Wayne<br></div><div><div class="gmail_extra"><div class="gmail_quote"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"></span><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div link="#0563C1" vlink="#954F72" lang="EN-US"><div class="m_6592802779281479964WordSection1"><span class=""><div><p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><br>I can't propose a ballot as I'm not a CAB member but adding the requirement of having to revoke certificates on the domain owner's request should probably be considered.<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:10.0pt;font-family:"Verdana",sans-serif"><u></u> <u></u></span></p></div></span></div></div>
</blockquote></div><br></div></div></div>