Chain or path validation is the process by which end-entity (user or computer) certificates and all certification authority (CA) certificates are processed hierarchically until the certificate chain terminates at a trusted, self-signed certificate. Typically, this is a root CA certificate. Active Directory Certificate Services (AD CS) startup can fail if there are problems with availability, validity, and chain validation for the CA certificate.
AD CS published a CA certificate to Active Directory Domain Services
This behavior is by design.
Active Directory Certificate Services (AD CS) published the specified certification authority (CA) certificate to Active Directory Domain Services (AD DS).
This warning indicates that AD CS republished the CA certificate to AD DS because the certificate was not found in the AIA container (CN=AIA,CN=Public Key Services,CN=Services,DC=contoso,DC=com) in AD DS.