pfSense

Tested on 24.11, I can confirm this.

This fix would be very useful for simplifying remote VPN management. If it were working as expected, the same alias could be used both for the firewall rules allowing the traffic and for the route injection with OpenVPN to configure the routes to the client connected to the VPN. This way, adding or removing an IP range from the VPN would only require modifying the alias.

Relates to: https://redmine.pfsense.org/issues/2668

I've verified every time I reboot the firewall, OpenVPN configuration contains the alias instead of the alias values.

I've been checking the source code and I think it could be a problem related to the boot order.
https://github.com/pfsense/pfsense/blob/3b681a5bd7b5788ef8593a28a7431b4d6a0921cf/src/etc/inc/util.inc#L3512

If OpenVPN service starts before aliases have been loaded into the variable $aliastable, the function alias_to_subnets_recursive will return an empty array and the function openvpn_gen_route_ipv4 will write a config line with the alias as-is without replacing it. And this is exactly the reported bug on this ticket.
I've seen the boot service order is managed by /etc/rc.bootup and it seems OpenVPN starts before having aliases loaded... Not sure which is the cleanest way to fix this.

The next time you see this happen, please run these from the php shell in the console menu (option 12) and let us know whether the routes are then restored to the server config file or if it still shows only the alias.

require_once("/etc/inc/openvpn.inc");

openvpn_resync_all();