Control: Route 53 domains should not expire within next 30 days
This control ensures that all the domain names registered with AWS Route 53 or transferred to AWS Route 53 are renewed 30 days before their validity period ends.
Run the control in your terminal:
powerpipe control run aws_compliance.control.route53_domain_expires_30_days
Snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe control run aws_compliance.control.route53_domain_expires_30_days --share
This control uses a named query:
select arn as resource, case when date(expiration_date) - date(current_date) >= 30 then 'ok' else 'alarm' end as status, title || ' set to expire in ' || extract(day from expiration_date - current_date) || ' days.' as reason , account_idfrom aws_route53_domain;