JWT Decoder

Security

Decode a JSON Web Token's header and payload and read its claims — including human-readable expiry. Local only.

JWT

Header

{
  "alg": "HS256",
  "typ": "JWT"
}

Payload

{
  "sub": "1234567890",
  "name": "ShellQuest User",
  "role": "admin",
  "iat": 1516239022,
  "exp": 1900000000
}

Timestamps

iat (issued)Thu, 18 Jan 2018 01:30:22 GMT

exp (expires)Sun, 17 Mar 2030 17:46:40 GMT

Decoded locally — the token never leaves your browser. This reads the claims only; it does not verify the signature (that needs the secret or public key).

More tools

Password Generator→Hash Generator→Subnet Calculator→chmod Calculator→