Why does my Cloudtrail key have a random ID?

For some reason my S3 bucket for my Cloudtrail logs stores logs in the following format:

/AWSLogs/${SOME_RANDOM_ID}/${ACCOUNT_ID}/CloudTrail/${REGION}

Where there is this SOME_RANDOM_ID, which does not show up in the create statement when I go to create my Athena Table for my Cloudtrail logs. This caused all my queries to return 0 records and until I figured out what was going on.

I don't see this in the documentation under what conditions this happens, is this to partition writes to s3 to avoid SLAs on individual keys? Why is this happenening to me? Is anybody else experiencing this issue?

Solution

@Dunedan was right, the ${SOME_RANDON_ID} is equal to the output of aws organizations describe-organization --query "Organization.Id".

How to get logs each EBS snapshot done by EBS lifecycle manager in AWS
Terraform Cloudtrail AccessDeniedException: Access Denied: You do not have permission to operate on this resource
Console login events not showing in Cloudtrail
getting [ERROR] IndexError: list index out of range in lambda while trying to fetch InstanceId from RunInstance cloudtrail json log
Can CloudTrail Log SQS ReveiceMessage and SendMessage Events in Event History?
How to implement centralized Logging for an AWS Organization Account
Create an Eventbridge rule from a Cloudtrail event in order to trigger a Lambda
Invoking AWS CloudWatch Event Rule by some event
I need information about the BPImageWalker/2.0 function
Not able to Athena query CloudTrail Logs from KMS CMK Encrypted S3 bucket
AWS Cloudtrail - Access Key IDs Randomly Generated
how to trigger aws lambda function upon a new event being detected by cloudtrail
AWS CloudTrail DynamoDB response Element is always "null"
Getting AWS Cloud Trail events using Find-CTEvent with multiple lookup attributes
AWS S3 bucket logs vs AWS cloudtrail
How to listen events from amazon Neptune? Event Bridge possible?
How to trigger an AWS Event Rule when a S3 key with a specific suffix gets uploaded
Getting Cloudwatch to send CreateLogGroup messages to EventBridge
Enrich CloudWatch and CloudTrail with custom Lambda invocation input
Cloudtrail console resources missing from event record
Extract key values from CloudTrail Lookup-Events from AWS-CLI using jq
Are multi-region KMS keys required for encrypting a multi-region CloudTrail trail?
Cloudwatch alarm for IAM Policies changes doesn't work
How to get Number of read and write events using Athana from Cloudtrail
Getting details from cloudtrail
Boto3 CloudTrail API returns empty response
How can I choose a single dynamodb table as event type in Cloudtrail
Filter output of cloudtrail logs obtained using get_object from S3
How can I get the event from cloudtrail for a codebuild project deployed?
Pseudo parameter in cloudformation