Decode JWT Claims Online
A JWT payload contains claims — statements about a user or system, encoded as JSON and base64url-encoded. Standard claims include iss (issuer), sub (subject), aud (audience), exp (expiration), nbf (not before), iat (issued at), and jti (JWT ID). Any additional fields are custom claims added by your application.
This tool decodes the payload instantly in your browser, formats the JSON for readability, and presents standard claims in a dedicated table. Timestamps (exp, nbf, iat) are shown as human-readable dates with relative time ("expires in 2h", "issued 3d ago") so you can spot stale or future-dated tokens at a glance.
No library, no server, no account — just paste and inspect.
How to use
- Paste your JWT token into the input field on the main tool page.
- The header and payload are decoded instantly — review claims, algorithm, and expiry.
- To verify the signature, paste your HMAC secret or PEM public key and click Verify Signature.