JWT Token
Decoded Header
Decoded Payload
Common Claims
Status
No JWT decoded yet.
This tool only **decodes** JWT content locally in your browser. Decoding does not verify the signature or prove the token is trustworthy [web:542][web:546].
How it works
JWTs are compact, URL-safe tokens commonly made of three dot-separated parts: header, payload, and signature [web:538][web:540]. The header and payload are Base64URL-encoded JSON segments, so a decoder tool can split the token, convert Base64URL to standard Base64, decode the bytes, and parse the JSON for inspection [web:543][web:549].
- JWTs usually contain three sections: header, payload, and signature [web:538][web:546].
- The header and payload are human-readable after Base64URL decoding and JSON parsing [web:542][web:549].
- Decoding is useful for debugging claims like `iss`, `sub`, `aud`, `iat`, and `exp`, but it is not the same as cryptographic verification [web:546][web:547].