Add the following config, e.g. to /etc/httpd/conf/httpd.conf:
LogLevel info authz_core:debug
then make sure to reload apache (service httpd reload) and you will find a detailed reason, why access to a resource is granted or not in the error log.