OpenVPN-сервер

/system clock
set time-zone-autodetect=no time-zone-name=Europe/Moscow
/system ntp client set enabled=yes servers=0.ru.pool.ntp.org,1.ru.pool.ntp.org,3.ru.pool.ntp.org

/certificate 
add name=CA country="RU" state="MSK" locality="MSK" organization="GR" unit="IT" \
common-name="CA" key-size=2048 days-valid=3650 key-usage=crl-sign,key-cert-sign 
sign CA ca-crl-host=127.0.0.1

add name=ovpn-server country="RU" state="MSK" locality="MSK" organization="GR" unit="IT" \
common-name="ovpn-server" key-size=2048 days-valid=3650 key-usage=digital-signature,key-encipherment,tls-server 
sign ovpn-server ca="CA"

/certificate 
add name="~client-tmplate" country="RU" state="MSK" locality="MSK" organization="GR" unit="IT" \
common-name="~client-tmplate" key-size=2048 days-valid=3650 key-usage=tls-client 

Следующей командой создается серт для пользователя test01 копированием из заранее созданного темплейта:

/certificate add copy-from=~client-tmplate name="test01" common-name="test01"
sign mikrotik ca="CA"

/ip pool
add name=OpenVPN ranges=10.8.2.100-10.8.2.199
/ppp profile
add local-address=10.8.2.1 name=OpenVPN remote-address=OpenVPN
/ppp aaa
set accounting=yes
/interface ovpn-server server
set port=11194 mode=ip protocol=udp netmask=24 default-profile=OpenVPN certificate=ovpn-server \
require-client-certificate=yes tls-version=any auth=sha1,md5 cipher=aes256 enabled=yes

/ip firewall filter
add action=accept chain=input  dst-port=11194 protocol=udp comment=OpenVPN-Server place-before=0

/ppp secret add name=user01 password="СЛОЖНЫЙ_ПАРОЛЬ" service=ovpn profile=OpenVPN

Далее экспортируем сертификат CA, сертификат и ключ пользователя.
"Болванку" файла OVPN привожу как пример:

client
dev tun
proto udp
# Адрес и порт для подключения
remote 195.202.103.54 11194
# Маршрут в локальную сеть
route 192.168.1.0 255.255.255.0
auth-nocache
remote-cert-tls server
cipher AES-256-CBC
resolv-retry infinite
nobind
persist-key
persist-tun
verb 3
auth-user-pass

-----BEGIN CERTIFICATE-----
xQap/+jcBadct8veAWFguSqqmb2NHt21iv0gZ28Am5gFe9OvrK8QDYntH3fpIZJU
kSsOy7DfgxpyOpQK8fgmWIJgVnHw+gp+02W6pPczBYgMISV3Nq1k8vfTXPBuIb7d
YMOtuMC0Rshoi3TPaV8SBlWn0+5xaSZuKeX7DE7OtFVTUNSTAOhkV7mXNgCSsyhw
lvHVB7aJHuDfwTOD9zTB93E3ftOksocCAwEAAaOBlzCBlDAPBgNVHRMBAf8EBTAD
AQH/MA4GA1UdDwEB/wQEAwIBBjAdBgNVHQ4EFgQU0qAjhqhNQYwMGt8kHCUFBAAy
7McwLAYDVR0fBCUwIzAhoB+gHYYbaHR0cDovLzEyNy4wLjAuMS9jcmwvNTMuY3Js
MCQGCWCGSAGG+EIBDQQXFhVHZW5lcmF0ZWQgYnkgUm91dGVyT1MwDQYJKoZIhvcN
TW9zY293MQ8wDQYDVQQHDAZNb3Njb3cxCzAJBgNVBAoMAk1FMQswCQYDVQQLDAJJ
VDETMBEGA1UEAwwKQ0FfT3BlblZQTjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC
AQoCggEBAKMWpvUf4tVBFCJSb6TPgwUnSx5akM/eD8I5cmilpyymAG9dE/rF8fOq
Lk2PBY9nrrH0cBwxczlmNCyahoZrQwq/GtXhXJWv+KcD5NedSpcqY6Jjk3UikFYf
tGVyZcDuqbykAGPY7T2yA4410JLhOMOmmmAA030PZw8PtoDGwuqFyv1ckt/IobFz
-----END CERTIFICATE-----


-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----


-----BEGIN ENCRYPTED PRIVATE KEY-----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-----END ENCRYPTED PRIVATE KEY-----