hello,
you can renew it by using certutil commands: https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/certutil
for example: certutil [options] -renewcert [reusekeys] [Machine\ParentCAName]
or if you have another CA gui version, you can connect remotely using certsrv.msc or add just the role and connect.