Not sure if you should be worried - but it’s a known thing that not the entire Macos app contents is signed, see here for instance: RAATServer and Roon MacOS applications "Missing Code Signature"
Up to now there’s no official statement on why that is like it is nor has there been any change the last few releases.
That’s something for Roonlabs to explain, too. What it could be - you might see this in the “About” box - is a place to look for updates. Roon does this regularly. If “About” says “There was an error checking for an update” for the Bridge device it would indicate that those IPs point to update locations.