Decode JWT header and payload from base64url and inspect claims without verifying the signature.
JWT Decoder is a free online tool that decodes a JSON Web Token header and payload from base64url and displays them as readable JSON. It shows key claims such as exp, iat, and nbf as human-readable dates. The tool runs in your browser and does not send data to the server. Note: signature is not verified, so this tool cannot confirm trust in the token.
Choose a related tool for the next step.
Data passed between tools is kept only in the current browser session.
JWT Decoder displays the contents of a JSON Web Token in a readable form. The tool decodes the header and payload from base64url, formats the JSON, shows the signature as a separate part, and displays key claims: alg, typ, kid, iss, sub, aud, iat, exp, nbf, and jti. This is useful for debugging APIs, authorization flows, OAuth, OpenID Connect, webhooks, and backend integrations.
The exp, iat, and nbf timestamp claims are converted to human-readable dates so you can instantly see whether the token has expired. The signature is not verified, so this tool cannot be used to confirm that a token is genuine.
All processing is done locally in the browser. Your token is not sent to the server.