Paste a JWT to instantly decode its header and payload and optionally verify signatures with HMAC, RSA, ECDSA, or RSA-PSS keys, all processed locally in your browser.
All decoding and verification happens in your browser. Tokens are never sent to a server. Be careful where you paste JWTs as they may grant access to resources.
Encoded tokenPaste your JWT and optionally provide a key to verify