validate

fun validate(jwt: String, expectedUri: String, idx: Int, trustList: List<X509Certificate>, currentTimeSeconds: Long, clockSkewSeconds: Long): AltIdAttestationStatus

Validates a Status List JWT (signature, signer trust, temporal claims, sub) and resolves the status value at idx. Split from the fetch for testability.