No matter how you like to participate in developer communities, Pulumi wants to meet you there. If you want to meet other Pulumi users to share use-cases and best practices, contribute code or documentation, see us at an event, or just tell a story about something cool you did with Pulumi, you are part of our community.

Pulumi Community

Here's code I've used for this same purpose for an internal service:

```
// Get certificate for desired endpoint
const certificate = new aws.acm.Certificate(name, {
    domainName: domainName,
    validationMethod: "DNS",
}, { provider: awsEastProvider });
const hostedZoneId = aws.route53.getZone({
    name: hostedZone,
}, { provider: awsProvider }).then(zone =&gt; zone.id);
const certificateValidationRecord = new aws.route53.Record(`${name}-validation`, {
    name: certificate.domainValidationOptions.apply(opt =&gt; opt[0].resourceRecordName),
    type: certificate.domainValidationOptions.apply(opt =&gt; opt[0].resourceRecordType),
    zoneId: hostedZoneId,
    records: [certificate.domainValidationOptions.apply(opt =&gt; opt[0].resourceRecordValue)],
    ttl: 60,
}, { provider: awsProvider });
const certificateValidation = new aws.acm.CertificateValidation(name, {
    certificateArn: certificate.arn,
    validationRecordFqdns: [certificateValidationRecord.fqdn],
}, { provider: awsEastProvider });
```

have you used the above code recently? I have to run pulumi up twice because the first time throws an error which looks like some kind of timing issue.