diff --git a/step-ca/certificate-authority-server-production.mdx b/step-ca/certificate-authority-server-production.mdx
index d485f640..5bc147f8 100644
--- a/step-ca/certificate-authority-server-production.mdx
+++ b/step-ca/certificate-authority-server-production.mdx
@@ -218,7 +218,7 @@ it can be rendered unusable by an attacker through revocation.
 
 But there are downsides:
 CRL adds a service dependency to your PKI.
-Clients check the CRL endpoint on every new connections,
+Clients check the CRL endpoint on every new connection,
 adding significant latency to the TLS handshake,
 and load on your CRL endpoint.