I guess you can write a script, use the proper openssl command to get the serial number of your certs, compare with the affected list, only renew affected certs.
Instructions are here: Revoking certain certificates on March 4
1 Like