$ route53-transfer --access-key-id=$AWS_ACCESS_KEY_ID --secret-key=$AWS_SECRET_ACCESS_KEY dump foo.com -
Traceback (most recent call last):
File "/usr/local/bin/route53-transfer", line 29, in <module>
app.run(params)
File "/usr/local/lib/python2.7/site-packages/route53_transfer/app.py", line 248, in run
dump(con, zone_name, get_file(filename, 'w'), vpc=vpc)
File "/usr/local/lib/python2.7/site-packages/route53_transfer/app.py", line 202, in dump
zone = get_zone(con, zone_name, vpc)
File "/usr/local/lib/python2.7/site-packages/route53_transfer/app.py", line 57, in get_zone
res = con.get_all_hosted_zones()
File "/usr/local/lib/python2.7/site-packages/boto/route53/connection.py", line 126, in get_all_hosted_zones
body)
boto.route53.exception.DNSServerError: DNSServerError: 403 Forbidden
<?xml version="1.0"?>
<ErrorResponse xmlns="https://route53.amazonaws.com/doc/2013-04-01/"><Error><Type>Sender</Type><Code>InvalidClientTokenId</Code><Message>The security token included in the request is invalid</Message></Error><RequestId>e23085b7-f27b-11e8-beff-6d5bf4106f1f</RequestId></ErrorResponse>
I seem to get an error when running this under an assumed role --