feat(account-keychain): implement TIP-1053 nonces

[legion2002]

Stacked on #3850. Implements TIP-1053 key authorization nonces behind T5 using the simplified nonce-presence semantics from the spec PR. Present nonce fields are included in the signed key authorization and consumed per account on successful authorization; absent nonce fields preserve legacy byte-equivalent encodings. Adds T5-gated AccountKeychain selectors to authorize with a nonce, burn a nonce, and query nonce consumption.

[github-actions]

⚠️ Changelog not found.

A changelog entry is required before merging. We've generated a suggested changelog based on your changes:

Preview

---
tempo-contracts: minor
tempo-precompiles: minor
tempo-primitives: minor
---

Added TIP-1053 key-authorization nonces: `authorizeKey` with nonce and `burnKeyAuthorizationNonce` precompile selectors (T5+), an `isKeyAuthorizationNonceUsed` view, and an optional `nonce` field on `KeyAuthorization` RLP encoding.

Add changelog to commit this to your branch.

[tempoxyz-cyclops-bot]

👁️ Cyclops Security Review

34a663c

🧭 Auditing · mode=normal · workers 0/3 done (3 left) · verify pending 0

Worker	Engine	Latest Status	Status
pr-3838-w1	claude-opus-4-7	🔍 Iteration 1 · Audit	Running
pr-3838-w2	amp/deep	🔍 Iteration 1 · Audit	Running
pr-3838-w3	gpt-5.4	🔍 Iteration 1 · Audit	Running

⚙️ Controls

• 🚀 Keep only 1 remaining iteration per worker after the current work finishes.
• 👀 Keep only 2 remaining iterations per worker after the current work finishes.
• ❤️ Let only worker 1 continue; other workers skip queued iterations.
• 😄 Let only worker 2 continue; other workers skip queued iterations.
• 🎉 End faster by skipping queued iterations and moving toward consolidation.
• 😕 Stop active workers/verifiers now and start consolidation immediately.

---

📜 3 events

🔍 pr-3838-w1 iter 1/3 [audit-general.md]
🔍 pr-3838-w2 iter 1/3 [audit-focused.md]
🔍 pr-3838-w3 iter 1/3 [audit-ripple.md]