SSL has Certificate Revokation List, this could be implemented for Digital ID as well.

In fact, if British Digital ID is based on PKI, then CRL will come out of the box

https://en.wikipedia.org/wiki/Certificate_revocation_list