Create a token from editable header and payload JSON, then inspect it immediately below.
Paste a compact JWT to inspect its header, claims, and signature state.
This page generates, decodes, and verifies JSON Web Tokens locally in the browser. It shows the JOSE header, token claims, and time-based status for `exp`, `nbf`, and `iat`. No token or key material is sent to a server.
The page supports unsigned tokens (`none`), HMAC (`HS256`, `HS384`, `HS512`), RSA PKCS#1 (`RS256`, `RS384`, `RS512`), RSA-PSS (`PS256`, `PS384`, `PS512`), and ECDSA (`ES256`, `ES384`, `ES512`).
Use this tool when you need to create test tokens, inspect API claims, confirm signature validity with the right secret or key pair, or quickly check whether a token is expired.