cert::Builder::generate should be broken up
cert::Builder interface is very convenient. But, it can't be used when adding, e.g., a subkey to an existing certificate. Instead, the code in
cert::Builder that is used to create the self-signature (and the back signature) need to be reproduced inline.
cert::Builder::generate should be refactored so that that functionality is available to the user.