AWS Certified Solutions Architect - Professional (#32)

A user is accessing an EC2 instance on the SSH port for IP 10.20.30.40/32. Which one is a secure way to configure that the instance can be accessed only from this IP?

In the security group, open port 22 for IP 10.20.30.40
In the security group, open port 22 for IP 10.20.30.0
In the security group, open port 22 for IP 10.20.30.40/32
In the security group, open port 22 for IP 10.20.30.40/0