iam role (access token) is refreshed for every s3 request , and so, that can result in a lot slower operations as a request for credential has to be done each time, even if access token is not expired.

A nice fix would be to take into account the expiration date of the token, to only refresh it when it is needed.