Is it possible for you to say the names secured by these certificates? That could make it easier to investigate.
https://certificate.revocationcheck.com/ is an online service that can show you what a third party sees, so that could be helpful even if you can’t tell us the affected name.
I doubt you’ve done this, but one easy way to get a revocation failure (or indeed any date-time based check failure) is to have the date set incorrectly, e.g. wrong time zone. So please do check that, especially if the revocationcheck web site says it’s fine but your server still says it isn’t.
It is possible to do the revocation check steps by hand, to try to diagnose what exactly goes wrong that way, but I don’t know the best way to go about that in Windows, so let’s come back to that only if the other ideas don’t help.