Cloudflare with S3 signed url

We’ve successfully use Cloudflare to serve the full content of our S3 bucket as suggested in:

However, we can’t figure out how to configure Cloudflare to allow the access only via S3 signed url.
For example, the S3 signed url for the object 001.jpg in MYBUCKET is https://s3.REGION.amazonaws.com/MYBUCKET/001.jpg?AWSAccessKeyId=xxx&Expires=1630977912&Signature=yyy
If we follow the configuration in the above link, the client can always access the object from
https://MYBUCKET/001.jpg
So, my question is, can we allow Cloudflare to access the object only via the url based on the S3 signed url (something like https://MYBUCKET/001.jpg?AWSAccessKeyId=xxx&Expires=1630977912&Signature=yyy) but disallow access for url without correct query parameters?