Maybe a noob question but why RSA?
As far as I understood, remote attestations on SGX relies on P256 curve.
https://www.intel.com/content/dam/develop/external/us/en/documents/intel-sgx-support-for-third-party-attestation-801017.pdf