diff --git a/api/renew.go b/api/renew.go
index 3cfd5fdf..6e9f680f 100644
--- a/api/renew.go
+++ b/api/renew.go
@@ -17,7 +17,6 @@ const (
 // Renew uses the information of certificate in the TLS connection to create a
 // new one.
 func Renew(w http.ResponseWriter, r *http.Request) {
-	//nolint:contextcheck // the reqest has the context
 	cert, err := getPeerCertificate(r)
 	if err != nil {
 		render.Error(w, err)
diff --git a/api/sshRekey.go b/api/sshRekey.go
index 977c4719..6c0a5064 100644
--- a/api/sshRekey.go
+++ b/api/sshRekey.go
@@ -83,7 +83,6 @@ func SSHRekey(w http.ResponseWriter, r *http.Request) {
 	notBefore := time.Unix(int64(oldCert.ValidAfter), 0)
 	notAfter := time.Unix(int64(oldCert.ValidBefore), 0)
 
-	//nolint:contextcheck // the reqest has the context
 	identity, err := renewIdentityCertificate(r, notBefore, notAfter)
 	if err != nil {
 		render.Error(w, errs.ForbiddenErr(err, "error renewing identity certificate"))
diff --git a/api/sshRenew.go b/api/sshRenew.go
index 456be3f6..4e4d0b04 100644
--- a/api/sshRenew.go
+++ b/api/sshRenew.go
@@ -75,7 +75,6 @@ func SSHRenew(w http.ResponseWriter, r *http.Request) {
 	notBefore := time.Unix(int64(oldCert.ValidAfter), 0)
 	notAfter := time.Unix(int64(oldCert.ValidBefore), 0)
 
-	//nolint:contextcheck // the reqest has the context
 	identity, err := renewIdentityCertificate(r, notBefore, notAfter)
 	if err != nil {
 		render.Error(w, errs.ForbiddenErr(err, "error renewing identity certificate"))