You don't check with verisign, you use normal certificate validation (as you would with any other certificate).
A "sandbox" certificate is a self-signed certificate. You trust yourself (add your own certificate to the trusted root store) and so the certificate you signed yourself is trusted too.