Decode the header and payload of a JSON Web Token and verify its HS256/384/512 or RS256/384/512 signature.
Everything runs in your browser. The token and the secret never leave your device.
Paste a JWT in the field on the left to see its header, payload and signature.