I’m sure this has been asked 10,000 times before, in fact, I know I was one of those 10,000, but I’ve had 9,999 failures since 
I’m trying to set up a Routerboard 450G (OS 4.14) to be used as an OVPN server. I’ve got an OpenVPN server working just fine on a Fedora 14 box with self-signed certs for ca, server and clients. I am trying to replicate this process with the same easy-rsa tools.
I have tried:
pkitool --initca
pkitool --pass --server ovpn.antypas.net
pkitool --pass --client clientname.antypas.net
When I do this, I get the expected files:
ca.crt
ca.key
ovpn.antypas.net.crt
ovpn.antypas.net.key
clientname.antypas.net.crt
clientname.antypas.net.key
I then do the following
/certificate
import file=ca.crt
import ovpn.antypas.net.crt
import ovpn.antypas.net.key
I then check the /certificates window in Winbox and see that:
- The certs are now named cert1 and cert2 (??)
- The certs DO NOT have a KR by them
- Later I am told certificate not found
What am I missing?