amazon web services - Virtualmin, Route53, and AssumeRole error when managing DNS from CLI - Stack Overflow

I have a Rocky Linux server local in my home, set up with Virtualmin to manage websites, DNS, etc. One of the features of Virtualmin is that it can manage DNS on remote services, such as Route53, using an API and the proper keys.

I have Route53 set up, and a user "Virtualmin" created, with keys and with the permissions for Route53FullAccess assigned. On my Linux server, I have the AWS CLI environment configured with the keys for this user. When I tested the UI in Virtualmin, I got an error "Invalid Credentials", so I decided to take a step back and test from the command line first, before getting to the UI itself.

From the CLI, when I run the command "aws route53 list-hosted-zones" I get the following error:

root@www:~# aws route53 list-hosted-zones
An error occurred (AccessDenied) when calling the AssumeRole operation: User: arn:aws:iam::(account):user/Virtualmin is not authorized to perform: sts:AssumeRole on resource: arn:aws:iam::(account):user/Virtualmin

I did search on this, and I see several related issues, but most of them reference services other than Route53, and I can't find the corresponding services to set up trusts / permissions for this function.

What steps do I need to take to allow the account "Virtualmin" to make calls from my home server to Route53, to be able to manage my DNS? I am specifically looking for what roles, permissions, etc. to use since the other guides I have found do not specify which ones are needed for Route53, only other services like S3.