The key vulnerability check basically hashes the key and searches for it in a blacklist of
256Ki entries. The code says that blacklist is not known to be the complete set of weak keys,
it could be just a subset.
Further comments of that really means depend on studying the OpenSSL code at depth, which I
hope someone will disclose soon.