Which AWS service should a company use to check for IAM access keys that have not been rotated recently?

Explanations:

AWS WAF (Web Application Firewall) is designed to protect web applications from common web exploits and does not provide functionality for managing IAM access keys.

AWS Trusted Advisor offers best practice checks for AWS accounts, including checks for IAM access keys that have not been rotated within a certain timeframe, making it the correct choice for this requirement.

Amazon Inspector is a security assessment service that helps improve the security and compliance of applications deployed on AWS, but it does not monitor or manage IAM access keys.

AWS Certificate Manager (ACM) is used for managing SSL/TLS certificates, not for monitoring IAM access keys or their rotation status.