Home › Developer Tools › JWT Decoder
Client-side JWT decoding only · never verifies or sends tokens · never share JWTs with untrusted tools
1. Paste your JWT
Drop the full token string into the input field. The three-part structure (header.payload.signature) is detected and split automatically.
2. Inspect the decoded parts
View the decoded header (algorithm, token type) and payload (claims, user data, expiry timestamp) in formatted, readable JSON.
3. Check expiry and claims
See key timestamps converted to readable dates - iat (issued at), exp (expiry), nbf (not before) - so you can tell at a glance whether the token is still valid.
Hash Generator
Generate SHA-256 hashes used in JWT signing verification.
Base64 to Image
Decode other Base64-encoded content the way JWT decodes its segments.
JSON Formatter
Format the decoded JWT payload for easier reading.
Unix Timestamp Converter
Convert JWT exp and iat Unix timestamps to readable dates.
- Decodes header and payload into formatted, readable JSON immediately.
- Converts exp, iat, and nbf Unix timestamps to human-readable dates.
- Flags token structure issues - malformed or non-JWT strings are flagged clearly.
- Fully client-side - tokens never leave your browser, safe for use with sensitive tokens.