EFS Recovery Agent

[iwro]

I have got problem with certificate for efs recovery agent.

Few years ago I created first domain controler DC1 for my new Active Directory domain. On this domain controler I created CA server for certificates. In domain must exist EFS Recovery Agent (if user want to use EFS), and by default this is administrator of first domain controler. All worked ok, but when I replaced first domain controler with new server DC2 (added additional controler and next moved all roles on this server). Old DC1 was canceled. Next I installed CA server on DC2 and created EFS Recovery Agent for administrator. All worked ok, but one month ago certificate expired. So I deleted EFS Recovery Agent from domain, and created new one with new certificate. And I think, it was big mistake. Now I can,t use EFS in domain because I have message that EFS Recovery policy is configured incorect (exist expired certificate for EFS Recovery Agent). When I check certificate store on servers or desktop I see old certificate for EFS Recovery Agent, and new for EFS Recovery Agent, which I have created recently. My problem is with that old certificate. I don't know how remove this old one. I tryed revoke all certificates for administrator, but old certificate still exist.

Sorry for my English

Help