This refers to the open source firewall IPFire
Using a hostkey and certificates from an external certificate authority is possible with the following steps and restrictions:
.p12. It needs to contain the host key and certificate signed by your CA.
/usr/lib/openvpn/verifyto get the value of CN=…