Inspect token headers and payloads without sharing them.
Standard JWT debuggers often ask for your "Secret Key" to verify signatures, or they send your token to a backend. This tool only decodes the Base64 structure directly in your browser. We never see your data.
Tokens not working? Paste them here to instantly check the exp (Expiration) and iat (Issued At) timestamps
to see if your token has expired.
Rate your experience or recommend a new tool.