flex-etcd-iam error IAM roles

gistfile1.txt

  IAMRoleEtcd:
    Properties:
      RoleName: 'kube-etcd-role'
      AssumeRolePolicyDocument:
        Statement:
        - Action:
          - sts:AssumeRole
          Effect: Allow
          Principal:
            Service:
            - ec2.amazonaws.com
        Version: '2012-10-17'
      Path: "/"
      Policies:
      - PolicyDocument:
          Statement:
          - Action: kms:Decrypt
            Effect: Allow
            Resource:
              !ImportValue 'kms:key:assn:nonprod'
          - Action: ec2:DescribeTags
            Effect: Allow
            Resource: "*"
          - Action: ec2:DescribeVolumes
            Effect: Allow
            Resource: "*"
          - Action: ec2:AttachVolume
            Effect: Allow
            Resource: "*"
          - Action: ec2:DescribeVolumeStatus
            Effect: Allow
            Resource: "*"
          - Action: ec2:AssociateAddress
            Effect: Allow
            Resource: "*"
          - Effect: Allow
            Action:
            - s3:*
            Resource:
              !Sub 'arn:aws:s3:::assn-kube-*/*'
          - Action: ec2:DescribeInstances
            Resource: "*"
            Effect: Allow
          Version: '2012-10-17'
        PolicyName: root
    Type: AWS::IAM::Role