DecipherOnly is defined in RFC 5280
as a Key Usage bit
that is asserted when the Certificate Subject Public Key
is used only
for deciphering data while performing Key agreement
DecipherOnly is bit is undefined in the absence of the keyAgreement bit.
There might be more information for this subject on one of the following: