L2 Construct

KeySigningKey

A Key Signing Key for a Route 53 Hosted Zone.

Import

import { KeySigningKey } from 'aws-cdk-lib/aws-route53';

Or use the module namespace:

import * as route53 from 'aws-cdk-lib/aws-route53';
// route53.KeySigningKey

Properties

Configuration passed to the constructor as KeySigningKeyProps.

hostedZoneRequired

IHostedZone

The hosted zone that this key will be used to sign.

kmsKeyRequired

IKey

The customer-managed KMS key that that will be used to sign the records. The KMS Key must be unique for each KSK within a hosted zone. Additionally, the KMS key must be an asymetric customer-managed key using the ECC_NIST_P256 algorithm.

keySigningKeyNameOptional

string

The name for the key signing key. This name must be unique within a hosted zone.

Default: an autogenerated name

statusOptional

KeySigningKeyStatus

The status of the key signing key.

Default: ACTIVE

Get the Amazon Route 53 Cheat Sheet

Everything you need to know about Amazon Route 53 on one page. HD quality, print-friendly.

Download Free Infographic

Quick Facts

LevelL2 (Higher-level)

Moduleaws-route53

Properties4

Related Constructs

Explore This Service

External Links

CDK API Documentation