As far as I understand the code (it's complex), they are querying some license from the network based on the information of your band and probably your phone too. So unless we can capture this communication, we'll not be able to figure out the encryption keys by only capturing Bluetooth packets...