To workaround this issue, please refer to the KB Using Certificate Analyzer Resolver (CARR) Script to fix certificate related issues in NSX and apply the script attached to it to release the certificate, which can then be deleted in the UI.
If you are contacting Broadcom support about this issue, in order to aid a timely response and resolution, please provide the following:
Handling Log Bundles for offline review with Broadcom support: