Hey there @dalvishreya106 welcome to the community!
Is there a reason in particular your token doesn’t have a payload? Typically, this is considered an opaque token and is due to the fact that there was no audience specified in the authorization flow. The audience param here is key in that is the identifier of your API, and let’s the API (whichever library you are using to verify) that it is indeed the intended audience.