This is curious - You should be able to hit /userinfo with an opaque access token as well. Are you receiving an ID token in this flow? What happens if you also include the profile scope as welll?
Please see the following regarding the opaque access token: