JWT Decoder
JWT Decoder
Decode JWT header and payload locally. Signature verification is not performed in this tool.
Result
Token not expired
Issued at: 2018-01-18T01:30:22.000Z • Expires: 3475-09-24T11:17:02.000Z
Live decode
Security note
Flow
- Split token by dot separators into segments.
- Decode first two segments from base64url to JSON.
- Show header payload and claim-derived timestamps.
Example
Worked example: sample token
- 1 Token split into three segments
- 2 Header and payload decoded
- 3 Expiration claim interpreted as timestamp
Decoded claims are visible for inspection.
How
- Paste full JWT token string.
- Review decoded header and payload fields.
- Check iat and exp hints without signature verification.
Avoid
- Assuming decoded output implies signature validity.
- Using malformed tokens with missing segments.
- Trusting token claims without server-side verification.
Checks
Best fit
JWT Decoder is built for decode jwt header and payload locally to inspect claims and expiration fields. If JWT Decoder does not match the input scope, compare the answer with a second method.
Input check
Check H before calculating: it means token header object and is measured in JSON.
Sanity check
For JWT Decoder, use the worked example as a quick benchmark: Decoded claims are visible for inspection. If the jwt decoder answer is far away, check whether an input, unit, or mode changed.
Before copying
Review this common issue first: assuming decoded output implies signature validity.
FAQ
Does this verify JWT signature?
No, it only decodes token segments for inspection.
Can it show expiration time?
Yes, exp and iat claims are interpreted when present.
Does jwt decoder send my input to a server?
No. JWT Decoder handles the input in your browser whenever possible, so routine conversions, previews, and copy actions stay on your device instead of being sent to Calctrove servers.
Switch
Switch9
No match.