v1.1.1
Small hotfix release that adjust the Authority Key Identifier (AKI) of the Certificate Revocation List (CRL) to match the Subject Key Identifier (SKI) of the Certificate Authority (CA). There was a mismatch between OpenSSL and rcgen in the hash algorithm used to derive the identifier. In the long run OpenSSL should probably be replaced fully with rcgen. Also expand CRL test to test by connecting to a TLS server with a revoked certificate (which must fail). Also update dependencies.