The Certificate Revocation List is a list of certificates that have been marked as invalid prior ro their expiry date. It is for browsers and other certificate clients to check that a certificate is trusted.
If the The Certificate Revocation (CRL) becomes mismatched - such as after an upgrade where the new Certificate Authority (CA) has not issued the certificates in the CRL then you see this error.
The fix is to manually recreate the CRL:
To manually create a CRL by using the CA administrative tool
[list]
1.In the CA snap-in, from console tree, click Revoked CertificatesOn the Action menu, click All Tasks and then PublishSelect New CRL which will then instruct the CA to replace the previous CRL[/list]
Now click OK and you're done.
The error should not reappear.