Hi,
To know the issue more clearly, would you please confirm the following information:
1, Is your environment a 2 tier PKI or one tier PKI?
2,The damaged CA is a offline CA or an enterprise CA (Issue CA)?
3,If the old PKI is not used any more , we 'd better remove the old one ,and then install a new CA,
To remove the Orphaned Certificate Authority from AD, refer to the steps 5-9 in the following link:
https://video2.skills-academy.com/en-us/troubleshoot/windows-server/windows-security/decommission-enterprise-certification-authority-and-remove-objects
To create a new one tier pki or 2 tier pki, please refer to the following links:
https://social.technet.microsoft.com/wiki/contents/articles/11750.adcs-step-by-step-guide-single-tier-pki-hierarchy-deployment.aspx