When using DevicePolicyManager.grantKeyPairToApp , how do you verify that the target application has access to the target cert?

Question

I am looking to verify that my custom installed X509 certs are usable by an application to which I have granted access using grantKeyPairToApp() method in DevicePolicyManager cl