I’ve never actually worked with Amazon API, but a couple things are worth noting / emphasizing from your screenshots:
The request to download the file must be made within 30 seconds of receiving the 307 redirect response, since the download URLs are short-lived.
The request to download the file must have the authorization header and only the authorization header - i.e. the request shouldn’t contain multiple means of authentication.