DICE Certificates missing Extended Key Usage OIDs

[fdamato]

Caliptra DICE Certificates do not include required extensions to indicate the key usage (see TCG DICE Certificate Profile Spec).

• LDEVID shall contain:
  - tcg-dice-kp-identityLoc (because it is a Local Identity)
  - tcg-dice-kp-eca (because it is an embedded CA)
• FMC_Alias shall contain:
  - tcg-dice-kp-eca (because it is an embedded CA)
  - tcg-dice-kp-attestLoc (because we use it to sign PCRs)
  - RT_Alias shall contain:
  - tcg-dice-kp-eca (because it is an embedded CA)
• DPE LEAF shall contain:
  - tcg-dice-kp-attestLoc (because it is used to sign DPESign requests)
• DPE CA (in case of cdi-export) shall contain
  - tcg-dice-kp-eca (because it is an embedded CA)