diff --git a/netlib/tcp.py b/netlib/tcp.py
index b1a6db5a7..64b9ce3bd 100644
--- a/netlib/tcp.py
+++ b/netlib/tcp.py
@@ -817,7 +817,7 @@ class BaseHandler(_Connection):
             until then we're conservative.
         """
 
-        context = self._create_ssl_context(**sslctx_kwargs)
+        context = self._create_ssl_context(ca_pemfile=chain_file, **sslctx_kwargs)
 
         context.use_privatekey(key)
         if isinstance(cert, certutils.SSLCert):
@@ -840,10 +840,6 @@ class BaseHandler(_Connection):
                 return True
             context.set_verify(SSL.VERIFY_PEER, save_cert)
 
-        # Cert Verify
-        if chain_file:
-            context.load_verify_locations(chain_file)
-
         if dhparams:
             SSL._lib.SSL_CTX_set_tmp_dh(context._context, dhparams)