๐Ÿชช JWT Decoder

๐Ÿ”’ ๅฎ‰ๅ…จ & ็”จๆˆถ็ซฏ่™•็†

Paste a JWT to decode its header and payload. Tokens are processed locally and never sent to a server.

Header 

                

                

                    Payload
                    

                

            


            

                Signature (raw)
                

                

                    Signature verification requires the issuer's secret/public key and is not performed here.
                

            


            
            
How to use

            
  1. Paste a JWT (three Base64URL segments separated by dots) into the input.
  2. Click Decode to view the header and payload as JSON.
  3. If the payload contains an exp claim, the page checks expiry against your local clock and shows valid / expired status.
  4. Signature verification requires the issuer's secret or public key and is NOT performed here โ€” this tool inspects the contents only.
JWTs are not encrypted. Anyone with the token can read its contents. Treat the payload as public information unless it's wrapped in JWE.


            
Examples

            
Sample token:
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.
eyJzdWIiOiIxMjM0NTY3ODkwIiwibmFtZSI6IkFkYSJ9.
TJVA95OrM7E2cBab30RMHrHDcEfxjoYZgeFONFh7HgQ
Decoded:
Header:  {"alg":"HS256","typ":"JWT"}
Payload: {"sub":"1234567890","name":"Ada"}


            

                
Related Tools

                

                    Base64 ConverterJSON FormatterHash Generator