JWT

Paste a JWT to inspect its header and payload. Decoding happens entirely in your browser.

Token

Expires 2096-10-02T07:06:40.000Z

Header

{
  "alg": "HS256",
  "typ": "JWT"
}

Payload

{
  "sub": "1234567890",
  "name": "Jane Doe",
  "iat": 1700000000,
  "exp": 4000000000
}

Signature (Base64URL)

B0r1uNcZ0sN6gFK1XlBjqW0kIzKLPB54Z6iH6Dn5OqI

About

Decoding is purely client-side; tokens never leave your browser.
This tool does not verify the signature — never trust a JWT without verifying it on a trusted server.
exp is shown as an ISO timestamp when present.