I don’t really see the problem. In addition to creating a new certificate, you actually have to use it when you sign. If you use the old one it doesn’t matter. And it isn’t the keystore (a keystore can contain multiple certificates) that is the problem. you have to make sure you use the right alias, which is the part that actually holds the key. If you create a new alias but keep using the same old alias, it defeats the purpose.
So create a new certificate and make sure you actually use that one to sign the APK
solved You uploaded an APK signed with a certificate that expires too soon [duplicate]