Quick reference — files this folder expects
--------------------------------------------
  ca.crt
  issued/<vpn_username>.crt   OR  <vpn_username>.crt in this folder
  private/<vpn_username>.key  OR  <vpn_username>.key in this folder

Or set environment variable VPN_PKI_DIR to your Easy-RSA "pki" directory.

Ensure the web server user can read these files (chmod/chown). Do not commit
private keys to git.

If you do not have a PKI yet: build everything on your PC, then upload — see:
  SETUP-FROM-PC.txt

To install Easy-RSA on THIS server and auto-issue client certs when creating users
in vpn-admin.php, see:
  SERVER-EASYRSA.txt