Implement a client-side blacklist for authority certificate signing keys
We should have a way to blacklist authority signing keys at the client-side. In the longer term, we should implement a full on revocation (see #11458 (moved)), but for now, we can at least revoke certificates hard by blacklisting them client-side.
I think that the right way to do this is to have any signing keys on that blacklist always have their signatures treated as "BAD". This doesn't prevent us from fetching or holding those certs, and so doesn't mess up our cert fetching code.
Obviously, any fix here is a backport candidate.