• External CRL (validity 24 hours)
• Download CRL via Cronjob (every Hour) and drop it in /var/etc/openvpn/server1/ca/CA_CERT_NAME.r0

This works well. If a Certificate is revoked and CRL was downloaded Client is not able to connect any more.

Problem:
Expiration Date of CRL seems to be cached.
I need to restart openVPN Service every 24h becuase otherwise Clients are not able to Connect because of Expired CRL.

This is really Strange. Why is revokation working with just Update the File but Expiration Date is not updated for OpenVPN Service?

I need a CRL solution without restarting openVPN every Day.
Any Ideas?

(I can not change CRL Expiration Date)