Assertion encryption displays an error on the IDP side if the certificates contain non-ASCII characters in IssuerDN.