JWT Decoder
Signature is shown as-is. This tool decodes claims only and does not verify the signature.
Signature is shown as-is. This tool decodes claims only and does not verify the signature.
Decode JSON Web Tokens (JWTs) instantly in your browser. Paste a token to inspect
the header, payload claims, algorithm, and expiry status — with human-readable times for
iat, exp, and nbf.
No signup or server upload. Decoding runs locally on your device so tokens never leave your browser. This tool reads claims only; it does not verify signatures.
Bearer prefix) into the token field.alg) and token type (typ)sub, iss, aud, iat, expiat / exp Unix times to readable datesNo. Decoding only Base64URL-parses the header and payload. Verifying a signature requires the issuer’s secret or public key and is intentionally out of scope for this decoder.
Processing stays in your browser, but treat tokens as secrets. Prefer sample or expired tokens when possible, and avoid pasting long-lived production credentials on shared devices.
Status depends on the exp claim compared with the current time on your device.
The sample includes an exp far in the future so you can see a valid state.
Yes. Use the Unix Timestamp Converter for dedicated epoch conversions.