Decode and analyze JSON Web Tokens (JWT). View header, payload, and signature with syntax highlighting. Check token expiration and validate structure.
JSON Web Tokens (JWT) are an open standard (RFC 7519) for securely transmitting information between parties as a JSON object. They consist of three parts separated by dots:
• Header: Contains the token type (JWT) and signing algorithm (e.g., HS256, RS256)
• Payload: Contains the claims (statements about the user and additional data)
• Signature: Used to verify the token hasn't been altered
Common Claims:
• iss (issuer): Who issued the token
• sub (subject): Who the token is about
• aud (audience): Who the token is intended for
• exp (expiration): When the token expires (Unix timestamp)
• iat (issued at): When the token was created (Unix timestamp)
Note: This tool only decodes JWT tokens. It does not verify signatures or validate tokens. All processing happens locally in your browser.
All processing happens locally in your browser. Your data is never uploaded to our servers.