The answer is simple: because no Postfix access feature currently requires the info that you're referring to. Lack of demand.
More likely is that the a site allows access based on client
certificates from one trusted signer and in that case, why would
one need the complexity of all the possible names in a certificate?
Wietse
