http://www.cajuntechie.org/2013/07/how-to-generate-revocation-certificate.html
Seen a lot of OPSEC issues around here lately and some notable busts. Everybody, but especially vendors, should always be prepared to revoke their keys when needed. Your revocation certificate should be help safely and securely away from your key itself. Somewhere you can get to it if your primary means of computation is comprimised.
Well.. how could someone manage to revoke their cert if they got busted n' in jail? Just encrypt your USB with Veracrypt with a good passphrase (with keyfile - optional but strongly recommended).