Base64 Decode
Decode Base64 text directly when you are working outside a JWT context.
Notes about token structure, expiry, and signature verification will appear here.
What this tool does
JWT Decoder splits a token into its header and payload, decodes the Base64URL segments, and shows the resulting JSON locally in the browser. It also surfaces useful hints from common timing claims such as exp and nbf.
This page is helpful when you need to inspect claims fast without sending the token to an external decoder.
Common use cases
- Inspecting access tokens during authentication debugging.
- Checking whether a token contains the expected claims.
- Reviewing expiration or not-before timestamps.
- Confirming whether a copied token has the correct JWT structure.
Input and output example
eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9...
The decoder extracts a JSON header and JSON payload so you can review claims without manually decoding Base64URL segments.
How to use this tool
- Paste the JWT into the input field.
- Click Decode JWT.
- Inspect the header and payload JSON output.
- Read the notes section for hints about expiration or signature presence.
Your token is processed in your browser and is not uploaded to our servers.
Common errors
- A malformed token may not contain enough dot-separated segments.
- Broken Base64URL data can stop the decode step.
- Decoded claims may be valid JSON but still represent an expired token.
- This page does not prove signature validity without the relevant secret or public key.
Related tools
FAQ
Does this validate the JWT signature?
No. It decodes the token and checks structural hints, but it does not verify the signature cryptographically.
Can I inspect expiration claims?
Yes. The notes section highlights common timing claims like exp and nbf.
Why use a local decoder?
It keeps the token on your device instead of sending it to another service.
Can I copy just the payload?
Yes. Use the copy payload button after decoding.