When any certificate is issued, it has a validity period which is defined by the Certification Authority. Usually, this is one or two years.
However, sometimes certificates should not be honored even during their validity period. For example, if the private key associated with a certificate is lost or exposed, then any authentication using that certificate should be denied.
That's where CRL comes...