Changes

Section 6.1.1 of Mozilla's Root Store Policy (starting with version 2.8) requires that the Subscriber Agreement or Terms of Use says: ''The CA operator's subscriber agreement for TLS end-entity certificates MUST inform certificate subscribers about the following revocation reasonsreason options listed above and provide explanation about when to choose each option. The Subscriber Agreement or Terms of Use Tools that the CA operator provides to the certificate subscriber MUST contain provisions imposing on allow for these options to be easily specified when the Applicant itself (or made by the Applicant on behalf certificate subscriber requests revocation of its principal or agent under a subcontractor or hosting service relationship) an obligation and warranty to specify their certificate, with the following default value being that no revocation reasons when they are applicable reason is provided (i.e. the default corresponds to the reason that CRLReason “unspecified (0)” which results in no reasonCode extension being provided in the subscriber is requesting that their certificate be revokedCRL).''