JWT DecoderHeader, payload, expiry — local only
en

AppHelp

Decode a JWT and inspect its claims

Paste a JSON Web Token to see its decoded header, payload, and expiry status — everything runs locally.

{
  "alg": "HS256",
  "typ": "JWT"
}
{
  "sub": "1234567890",
  "name": "AppHelp User",
  "iat": 1516239022,
  "exp": 253402300799,
  "nbf": 1516239022
}
Issued at (iat): Thu, 18 Jan 2018 01:30:22 GMT (UTC) / 1/18/2018, 1:30:22 AM (local)
Not before (nbf): Thu, 18 Jan 2018 01:30:22 GMT (UTC) / 1/18/2018, 1:30:22 AM (local)
Expires at (exp): Fri, 31 Dec 9999 23:59:59 GMT (UTC) / 12/31/9999, 11:59:59 PM (local)
SflKxwRJSMeKKF2QT4fwpMeJf36POk6yJV_adQssw5c
Signature not verified, no secret needed.

Common tasks

  • jwt decoder online
  • free jwt decoder
  • jwt decoder no upload
  • browser local jwt decoder
  • jwt decoder for developers
  • token jwt decoder
  • decode jwt decoder
  • auth jwt decoder

Features

  • Decode JWT header and payload as formatted JSON
  • Human-readable exp, iat, and nbf timestamps
  • Validity status for expired or not-yet-valid tokens
  • Runs entirely in the browser

Frequently asked questions

Does this verify the JWT signature?
No. It only decodes the token for inspection, so no secret or key is required and the signature is shown raw.
Are the exp and iat values converted to dates?
Yes. Numeric exp, iat, and nbf claims are rendered as UTC and local times with a validity status pill.
Does it upload my token?
No. The token is decoded entirely in your browser and never sent anywhere.