The id field would be opaque with the accepted characters matching unreserved URI characters as defined in RFC3986
this was chosen to avoid having to encode special characters in the URL. Max length 128.