Is there a way to search through all policies on the gateway to determine which private keys are getting used within Route Via Http(s) assertion calls?

Applicable to any CA API Gateway version.

You can look to execute the following kind of mysql query on the gateway database host:

mysql

use ssg;

select name from policy where xml like '%PrivateKeyName%' and xml like '%HttpRoutingAssertion%';

The results from the above query should give you a good starting point and provide any policy which is using a route via http(s) assertion and that particular private key in some capacity.