Run crlite as a separate service.

[sleepycat]

Tracker's https-scanner uses Mozilla's crlite project to determine if a certificate has been revoked. For simplicity, the latest revocation list is downloaded at build time, but this obviously raises questions about certificates that have been revoked since the last https-scanner build. Unless an open api/library can be found, or created, it seems what's needed is to run crlite as another service in Kubernetes. It's worth noting that Mozilla's crlite is built to run on Google Cloud.