Does this verify JWT signatures?

No — this tool only decodes the payload. Signature verification requires the secret key.

Is my JWT sent to a server?

No. Decoding happens entirely in your browser.

A JSON Web Token is a compact, URL-safe way to represent claims between two parties.

Header (algorithm), Payload (claims), Signature — separated by dots.

exp is the expiration time (Unix timestamp). The tool shows it as a human-readable date.

claims

Decode and inspect JSON Web Tokens (JWT). View header, payload, and signature without verification.

JWT Token

Paste your JWT token into the input field.

The header and payload are decoded and displayed instantly.

View all claims including exp, iat, sub, and custom fields.

Encode and decode Base64 strings online. Also supports file to Base64 encoding for data URIs.

Format, validate, and minify JSON data online. Syntax highlighting, error detection, and tree view.

Generate MD5, SHA-1, SHA-256, SHA-512 hashes from text or files. Browser-based, private.