IAM Roles Anywhere allows servers, containers, and applications to use X.509 digital certificates to obtain temporary AWS credentials for the same IAM roles and policies that you normally have configured for your AWS workloads.
#root_certificate.config
https://gist.github.com/subudear/9b110099fe10bd99a15316faf22bef1a
#root_request.config
https://gist.github.com/subudear/2114a893e79ce9dae1dd0e911b6448ea
#client_certificate.config
https://gist.github.com/subudear/ed60102865382477c634eb9f7ba8d90e
#client_request.config
https://gist.github.com/subudear/0079ec39f35c981d59c1de17a4feb4f5
#aws_signing_helper link
https://docs.aws.amazon.com/rolesanywhere/latest/userguide/credential-helper.html
#Commands to create client private and public keys
https://gist.github.com/subudear/33f2ce145a3bc19dd88e820a71170419
#Commands to create CA private and public keys
https://gist.github.com/subudear/a73b152f11155765b1dcaedd959279c9