Now that we always generate an extra proper VerificationKey for each Tweak::ChangePubkey case, this /should/ never fail: it also helps split out the actual verification of the signature from the parsing and validation of the key itself.
These regressions make `spendauth.check()` fail.