I ended up figuring it out. I was using a call to get an access token silently, and while I was properly specifying the audience I needed for that call, I wasn’t doing it in the Auth0ProviderWithNavigate file, so I had to add the audience to the Auth0 Provider like this:
<Auth0Provider
domain={domain}
clientId={clientId}
cacheLocation="localstorage"
authorizationParams={{
audience: process.env.REACT_APP_API_SERVICE_AUDIENCE, // I had to add this
redirect_uri: redirectUri,
}}
onRedirectCallback={onRedirectCallback}
>
{children}
</Auth0Provider>