JWT decoder

Inspect JSON Web Tokens safely in your browser.

Paste a token, review header and payload claims, and spot expiration issues instantly. Pair it with the JSON formatter to explore complex payloads before sharing with teammates.

Client-side decodingSupports HS/RS/ES JWTsNo tokens leave your tab

Input JWT

Tip: JWTs are made of header, payload, and signature segments separated by periods.

Decoded header & payload

Review algorithms, claims, and signature output.

Headeralg · typ

Decode a token to inspect the header.

Payloadclaims

Decoded claims appear here.

Signature

Base64URL and hex views help when verifying signatures manually.

Base64URL: Decode to view the signature segment.
Standard Base64
Hex

Registered claims at a glance

Common fields like exp, iss, and aud translate into human timestamps.

Decode a token to highlight exp, iat, aud, iss, and more.

Frequently asked questions

Quick answers for developers landing here from search.

How do I decode a JWT?

Paste the token into the input and click Decode. The tool splits the header, payload, and signature so you can review them instantly.

Does this JWT decoder verify the signature?

No. It focuses on parsing and visualizing the token. Use your application secret or public key to verify signatures programmatically.

Are my tokens sent to a server?

No. All decoding happens in your browser. Nothing is stored or transmitted, which keeps secrets safe during debugging.