This refers to the open source firewall IPFire
Using a hostkey and certificates from an external certificate authority is possible with the following steps and restrictions:
.p12
. It needs to contain the host key and certificate signed by your CA./var/ipfire/ovpn/crls/cacrl.pem
/usr/lib/openvpn/verify
to get the value of CN=…