An X.500-formatted distinguished name that identifies the entity that is bound to the public key in an X.509 certificate.