I am interested in working as a PKI in OpenVPN. Created and sent the certificate to the user. After a while, I moved to the System - Trust - Certificates section. I opened the previously sent certificate for editing, did not change anything in the fields, and clicked save. Then I went to revoke the certificate, and the information about the certificate got into the crl. Logically, the user will not be able to connect, but is connecting. That's because the Serial Number was changed when you clicked save. It turns out that the certificate control is gone. What should I do or how should I not change the Serial Number?