Some extra logic assertions about the request would be useful

Currently request makes some assumptions about the data, but doesn't verify them right away. For example the issued/denied/revoked state correctness is not validated on read or write. Or that revoked cert has revocation date.
