Paste a token to decode its header and payload. Nothing is sent — decoding runs entirely on this page.
Signature verification requires the issuer's secret/public key. Use the JWT Generator to sign new tokens with HS256/384/512.