ISO X.509-standard format certificate used within a certificate authority infrastructure for identifying and authenticating an entity, typically a person. An identity certificate is issued by a certificate authority (CA). It contains the name of the issuer (the CA), the distinguished name of the subject, a validity period, the signature algorithm that is used, the public key of the subject, and the signature of the CA. Many extensions are defined by version 3 of the X.509 standard. See http://www-itg.lbl.gov/security/Akenti/docs/IdentityCert.html for an example of an identity certificate issued by the Netscape CA.