if you run on an ec2-instance, you probably don't have to specify -instance-id & -region
if you run on an ec2-instance and the instance is associated with an appropriate IAM Role, you probably don't have to specify -access-key-id & -secret-access-key