Decode JSON Web Tokens · Header / Payload Viewer · Expiration Check
| Claim | Value | Description | Status |
|---|
JWT (JSON Web Token) is a compact, self-contained token format for securely transmitting information between parties. It consists of three parts: Header (algorithm & token type), Payload (claims), and Signature, separated by dots. Widely used in OAuth 2.0, OpenID Connect, and other authentication protocols.
No. All parsing happens locally in your browser. The token is never sent to any server. However, the decoded content is displayed on the page — we recommend closing or refreshing the page after use to clear the data.
The JWT Payload typically contains an exp (expiration time) field as a Unix timestamp (in seconds). This tool automatically detects the exp field and compares it with the current time, showing green "Valid" or red "Expired" status. If no exp field exists, it shows gray "Unknown".
Common registered claims include: iss (Issuer), sub (Subject/User ID), aud (Audience), exp (Expiration Time), nbf (Not Before), iat (Issued At), jti (JWT ID). You can also include custom private claims.