What if nip-05 was used for invalidating keys?
ex: array of keys, last key in array is considered valid and clients should consider all previous pubkeys as invalid.
Discussion
Can't this still be exploited by the attacker invalidating your current pubkey and replacing it with one he / she controls? It seems like key invalidation needs to happen outside the system somehow.
That would put providers in a extremely powerful position and make custodial nip05 a high risk
Bad idea.
The identity lies on the keypair, control lies on the privkey.
It's a bad idea to delegate control of your identity to the DNS domain admin or to the webadmin where is defined your NIP-05 alias.