client-side · zero upload

JWT Decoder

Paste a JSON Web Token to inspect its header, payload and registered claims. Decoding and expiry checks run entirely in your browser — the token is never sent anywhere.

Encoded · jwt

Header · alg & type

Payload · claims

Registered claims · decoded

Signature · not verified

Decode only — not verified. This tool reads the token's contents but does not validate the signature. Never trust a JWT you haven't verified server-side.