Improve certificate notification

* don't remove notification on timeout
* show certificate subject in notification sub-text
* reject certificate temporarily if notificate is swiped out
* show toast when certificate is rejected temporarily