The decoded token example and the token from the request are different. It looks like the encoded token from the request is an Access Token, and the decoded token you provided is an identity token.
I also don’t see you sending an audience param in the request (although I see one in the access token you sent). Because of this, you should receive an opaque (non-JWT) token in return. I’m not sure how you got that access token.
Can you DM me a HAR file of the auth transaction?