JWT 헤더와 페이로드를 로컬에서 안전하게 디코딩.
Signature is NOT verified. This tool only decodes the token locally in your browser — it never checks the signature against a secret, and nothing is sent anywhere.