I do not see the correlation between SSH and OVPN connections. Maybe a packet capture could provide more details, but they should not be related.
As for the certificates, I do not think it is possible, and makes little sense from a security stand point.
However, it is possible to generate certificates with a very long validity, using generation mechanism implemented in the router. Simply login to router's WebUI, navigate to System -> Administration -> Certificates and generate certificates according to your needs. There is a field Days valid, in which you can set certificate validity for up to 10 years.
Best regards,