As I understand it certain platforms (and certain versions of code) support specifying discontiguous port numbers in a named access list. There are things that we do not know about the environment of the original post and they might impact our answer. Was this extended access list a named list or a numbered list? Is it possible that it was implemented and working and then some change was made in the network (perhaps transition to a different platform or to a different version of code)?

I agree with @Martin L that my experience is frequently the ACL uses 2 lines, one for each protocol. But in truth you usually need only one and which one depends on whether your filter is applied inbound or outbound. You are usually looking at traffic from client to server or looking at traffic from server to client. It would be unusual for an access list to be evaluating both type of flows (and that is where you really need both lines). We frequently configure both and that is safe because no matter which way the acl gets applied it will work.

I wonder in the original post if perhaps the acl was working because the first port specified happened to match the type of traffic being used through that interface. And if perhaps in configuring a new interface the order of ports changed? Or perhaps the direction of the traffic changed?

As I understand the logic of the original post it was an attempt to match EITHER bootpc or bootps. Your suggestion with match one but not match the other.