A global company is designing a hybrid architecture to privately access AWS resources in the us-west-2 Region. Their existing setup includes a VPC with RFC 1918 IP address space, connected to an on-premises data center via AWS Direct Connect. Amazon Route 53 handles name resolution within the VPC, while on-premises DNS services are managed by local DNS servers in the data center. Applications in the data center require access to download objects from an Amazon S3 bucket in us-west-2. What solution can the company implement to access Amazon S3 without utilizing public IP address space? | AWS Certified Advanced Networking - Specialty Quiz